net/quic/crypto/quic_encrypter.h

   1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
   2 // Use of this source code is governed by a BSD-style license that can be
   3 // found in the LICENSE file.
   4
   5 #ifndef NET_QUIC_CRYPTO_QUIC_ENCRYPTER_H_
   6 #define NET_QUIC_CRYPTO_QUIC_ENCRYPTER_H_
   7
   8 #include "net/base/net_export.h"
   9 #include "net/quic/quic_protocol.h"
  10
  11 namespace net {
  12
  13 class NET_EXPORT_PRIVATE QuicEncrypter {
  14  public:
  15   virtual ~QuicEncrypter() {}
  16
  17   static QuicEncrypter* Create(QuicTag algorithm);
  18
  19   // Sets the encryption key. Returns true on success, false on failure.
  20   //
  21   // NOTE: The key is the client_write_key or server_write_key derived from
  22   // the master secret.
  23   virtual bool SetKey(base::StringPiece key) = 0;
  24
  25   // Sets the fixed initial bytes of the nonce. Returns true on success,
  26   // false on failure.
  27   //
  28   // NOTE: The nonce prefix is the client_write_iv or server_write_iv
  29   // derived from the master secret. A 64-bit packet sequence number will
  30   // be appended to form the nonce.
  31   //
  32   //                          <------------ 64 bits ----------->
  33   //   +---------------------+----------------------------------+
  34   //   |    Fixed prefix     |      Packet sequence number      |
  35   //   +---------------------+----------------------------------+
  36   //                          Nonce format
  37   //
  38   // The security of the nonce format requires that QUIC never reuse a
  39   // packet sequence number, even when retransmitting a lost packet.
  40   virtual bool SetNoncePrefix(base::StringPiece nonce_prefix) = 0;
  41
  42   // Returns a newly created QuicData object containing the encrypted
  43   // |plaintext| as well as a MAC over both |plaintext| and |associated_data|,
  44   // or nullptr if there is an error. |sequence_number| is appended to the
  45   // |nonce_prefix| value provided in SetNoncePrefix() to form the nonce.
  46   virtual bool EncryptPacket(QuicPacketSequenceNumber sequence_number,
  47                              base::StringPiece associated_data,
  48                              base::StringPiece plaintext,
  49                              char* output,
  50                              size_t* output_length,
  51                              size_t max_output_length) = 0;
  52
  53   // GetKeySize() and GetNoncePrefixSize() tell the HKDF class how many bytes
  54   // of key material needs to be derived from the master secret.
  55   // NOTE: the sizes returned by GetKeySize() and GetNoncePrefixSize() are
  56   // also correct for the QuicDecrypter of the same algorithm. So only
  57   // QuicEncrypter has these two methods.
  58
  59   // Returns the size in bytes of a key for the algorithm.
  60   virtual size_t GetKeySize() const = 0;
  61   // Returns the size in bytes of the fixed initial part of the nonce.
  62   virtual size_t GetNoncePrefixSize() const = 0;
  63
  64   // Returns the maximum length of plaintext that can be encrypted
  65   // to ciphertext no larger than |ciphertext_size|.
  66   virtual size_t GetMaxPlaintextSize(size_t ciphertext_size) const = 0;
  67
  68   // Returns the length of the ciphertext that would be generated by encrypting
  69   // to plaintext of size |plaintext_size|.
  70   virtual size_t GetCiphertextSize(size_t plaintext_size) const = 0;
  71
  72   // For use by unit tests only.
  73   virtual base::StringPiece GetKey() const = 0;
  74   virtual base::StringPiece GetNoncePrefix() const = 0;
  75 };
  76
  77 }  // namespace net
  78
  79 #endif  // NET_QUIC_CRYPTO_QUIC_ENCRYPTER_H_