summaryrefslogtreecommitdiffhomepage
path: root/src/event/quic/ngx_event_quic_protection.c
diff options
context:
space:
mode:
authorVladimir Homutov <vl@nginx.com>2021-02-08 16:49:33 +0300
committerVladimir Homutov <vl@nginx.com>2021-02-08 16:49:33 +0300
commiteab61bfc22b583031b5a6f42f9c277223ce18672 (patch)
tree665e150d9665600dd5b8280c7ec24501ba40bb4f /src/event/quic/ngx_event_quic_protection.c
parent040a23bfc316403fa374e55ce52de70ace3cff38 (diff)
downloadnginx-eab61bfc22b583031b5a6f42f9c277223ce18672.tar.gz
nginx-eab61bfc22b583031b5a6f42f9c277223ce18672.tar.bz2
QUIC: the "quic_host_key" directive.
The token generation in QUIC is reworked. Single host key is used to generate all required keys of needed sizes using HKDF. The "quic_stateless_reset_token_key" directive is removed. Instead, the "quic_host_key" directive is used, which reads key from file, or sets it to random bytes if not specified.
Diffstat (limited to 'src/event/quic/ngx_event_quic_protection.c')
-rw-r--r--src/event/quic/ngx_event_quic_protection.c51
1 files changed, 21 insertions, 30 deletions
diff --git a/src/event/quic/ngx_event_quic_protection.c b/src/event/quic/ngx_event_quic_protection.c
index 253f43482..130637aaf 100644
--- a/src/event/quic/ngx_event_quic_protection.c
+++ b/src/event/quic/ngx_event_quic_protection.c
@@ -942,58 +942,49 @@ ngx_quic_create_retry_packet(ngx_quic_header_t *pkt, ngx_str_t *res)
ngx_int_t
-ngx_quic_new_sr_token(ngx_connection_t *c, ngx_str_t *cid, ngx_str_t *secret,
- u_char *token)
+ngx_quic_derive_key(ngx_log_t *log, const char *label, ngx_str_t *secret,
+ ngx_str_t *salt, u_char *out, size_t len)
{
+ size_t is_len, info_len;
uint8_t *p;
- size_t is_len, key_len, info_len;
- ngx_str_t label;
const EVP_MD *digest;
- uint8_t info[20];
- uint8_t is[SHA256_DIGEST_LENGTH];
- uint8_t key[SHA256_DIGEST_LENGTH];
- /* 10.4.2. Calculating a Stateless Reset Token */
+ uint8_t is[SHA256_DIGEST_LENGTH];
+ uint8_t info[20];
digest = EVP_sha256();
- ngx_str_set(&label, "sr_token_key");
if (ngx_hkdf_extract(is, &is_len, digest, secret->data, secret->len,
- cid->data, cid->len)
+ salt->data, salt->len)
!= NGX_OK)
{
- ngx_ssl_error(NGX_LOG_INFO, c->log, 0,
- "ngx_hkdf_extract(%V) failed", &label);
+ ngx_ssl_error(NGX_LOG_INFO, log, 0,
+ "ngx_hkdf_extract(%s) failed", label);
return NGX_ERROR;
}
- key_len = SHA256_DIGEST_LENGTH;
+ info[0] = 0;
+ info[1] = len;
+ info[2] = ngx_strlen(label);
- info_len = 2 + 1 + label.len + 1;
+ info_len = 2 + 1 + info[2] + 1;
- info[0] = 0;
- info[1] = key_len;
- info[2] = label.len;
+ if (info_len >= 20) {
+ ngx_log_error(NGX_LOG_INFO, log, 0,
+ "ngx_quic_create_key label \"%s\" too long", label);
+ return NGX_ERROR;
+ }
- p = ngx_cpymem(&info[3], label.data, label.len);
+ p = ngx_cpymem(&info[3], label, info[2]);
*p = '\0';
- if (ngx_hkdf_expand(key, key_len, digest, is, is_len, info, info_len)
- != NGX_OK)
+ if (ngx_hkdf_expand(out, len, digest, is, is_len, info, info_len) != NGX_OK)
{
- ngx_ssl_error(NGX_LOG_INFO, c->log, 0,
- "ngx_hkdf_expand(%V) failed", &label);
+ ngx_ssl_error(NGX_LOG_INFO, log, 0,
+ "ngx_hkdf_expand(%s) failed", label);
return NGX_ERROR;
}
- ngx_memcpy(token, key, NGX_QUIC_SR_TOKEN_LEN);
-
-#if (NGX_DEBUG)
- ngx_log_debug2(NGX_LOG_DEBUG_EVENT, c->log, 0,
- "quic stateless reset token %*xs",
- (size_t) NGX_QUIC_SR_TOKEN_LEN, token);
-#endif
-
return NGX_OK;
}
generated by cgit (git 2.34.1) at 2025-12-31 23:41:33 +0000