| OLD | NEW |
|---|
| 1 // Copyright (c) 2013 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2013 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "net/quic/crypto/aead_base_decrypter.h" | 5 #include "net/quic/crypto/aead_base_decrypter.h" |
| 6 | 6 |
| 7 #include <openssl/err.h> | 7 #include <openssl/err.h> |
| 8 #include <openssl/evp.h> | 8 #include <openssl/evp.h> |
| 9 | 9 |
| 10 #include "base/memory/scoped_ptr.h" | 10 #include "base/memory/scoped_ptr.h" |
| (...skipping 68 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 79 bool AeadBaseDecrypter::Decrypt(StringPiece nonce, | 79 bool AeadBaseDecrypter::Decrypt(StringPiece nonce, |
| 80 StringPiece associated_data, | 80 StringPiece associated_data, |
| 81 StringPiece ciphertext, | 81 StringPiece ciphertext, |
| 82 uint8* output, | 82 uint8* output, |
| 83 size_t* output_length) { | 83 size_t* output_length) { |
| 84 if (ciphertext.length() < auth_tag_size_ || | 84 if (ciphertext.length() < auth_tag_size_ || |
| 85 nonce.size() != nonce_prefix_size_ + sizeof(QuicPacketSequenceNumber)) { | 85 nonce.size() != nonce_prefix_size_ + sizeof(QuicPacketSequenceNumber)) { |
| 86 return false; | 86 return false; |
| 87 } | 87 } |
| 88 | 88 |
| 89 ssize_t len = EVP_AEAD_CTX_open( | 89 if (!EVP_AEAD_CTX_open( |
| 90 ctx_.get(), output, ciphertext.size(), | 90 ctx_.get(), output, output_length, ciphertext.size(), |
| 91 reinterpret_cast<const uint8_t*>(nonce.data()), nonce.size(), | 91 reinterpret_cast<const uint8_t*>(nonce.data()), nonce.size(), |
| 92 reinterpret_cast<const uint8_t*>(ciphertext.data()), ciphertext.size(), | 92 reinterpret_cast<const uint8_t*>(ciphertext.data()), ciphertext.size(), |
| 93 reinterpret_cast<const uint8_t*>(associated_data.data()), | 93 reinterpret_cast<const uint8_t*>(associated_data.data()), |
| 94 associated_data.size()); | 94 associated_data.size())) { |
| 95 | |
| 96 if (len < 0) { | |
| 97 // Because QuicFramer does trial decryption, decryption errors are expected | 95 // Because QuicFramer does trial decryption, decryption errors are expected |
| 98 // when encryption level changes. So we don't log decryption errors. | 96 // when encryption level changes. So we don't log decryption errors. |
| 99 ClearOpenSslErrors(); | 97 ClearOpenSslErrors(); |
| 100 return false; | 98 return false; |
| 101 } | 99 } |
| 102 | 100 |
| 103 *output_length = len; | |
| 104 return true; | 101 return true; |
| 105 } | 102 } |
| 106 | 103 |
| 107 QuicData* AeadBaseDecrypter::DecryptPacket( | 104 QuicData* AeadBaseDecrypter::DecryptPacket( |
| 108 QuicPacketSequenceNumber sequence_number, | 105 QuicPacketSequenceNumber sequence_number, |
| 109 StringPiece associated_data, | 106 StringPiece associated_data, |
| 110 StringPiece ciphertext) { | 107 StringPiece ciphertext) { |
| 111 if (ciphertext.length() < auth_tag_size_) { | 108 if (ciphertext.length() < auth_tag_size_) { |
| 112 return NULL; | 109 return NULL; |
| 113 } | 110 } |
| (...skipping 20 matching lines...) Expand all Loading... |
| 134 | 131 |
| 135 StringPiece AeadBaseDecrypter::GetNoncePrefix() const { | 132 StringPiece AeadBaseDecrypter::GetNoncePrefix() const { |
| 136 if (nonce_prefix_size_ == 0) { | 133 if (nonce_prefix_size_ == 0) { |
| 137 return StringPiece(); | 134 return StringPiece(); |
| 138 } | 135 } |
| 139 return StringPiece(reinterpret_cast<const char*>(nonce_prefix_), | 136 return StringPiece(reinterpret_cast<const char*>(nonce_prefix_), |
| 140 nonce_prefix_size_); | 137 nonce_prefix_size_); |
| 141 } | 138 } |
| 142 | 139 |
| 143 } // namespace net | 140 } // namespace net |
| OLD | NEW |
|---|
Chromium Code Reviews
