blob: adaf7ceff6d57ce63d4ce2bfa08e737074642b91 [file] [log] [blame]
// Copyright 2016 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "net/quic/core/crypto/crypto_framer.h"
#include "net/quic/core/crypto/quic_crypto_server_config.h"
#include "net/quic/core/quic_packets.h"
namespace net {
// The StatelessRejector receives CHLO messages and generates an SREJ
// message in response, if the CHLO can be statelessly rejected.
class StatelessRejector {
enum State {
UNKNOWN, // State has not yet been determined
UNSUPPORTED, // Stateless rejects are not supported
FAILED, // There was an error processing the CHLO.
ACCEPTED, // The CHLO was accepted
REJECTED, // The CHLO was rejected.
StatelessRejector(QuicVersion version,
const QuicVersionVector& versions,
const QuicCryptoServerConfig* crypto_config,
QuicCompressedCertsCache* compressed_certs_cache,
const QuicClock* clock,
QuicRandom* random,
QuicByteCount chlo_packet_size,
const QuicSocketAddress& client_address,
const QuicSocketAddress& server_address);
// Called when |chlo| is received for |connection_id|.
void OnChlo(QuicVersion version,
QuicConnectionId connection_id,
QuicConnectionId server_designated_connection_id,
const CryptoHandshakeMessage& chlo);
class ProcessDoneCallback {
virtual ~ProcessDoneCallback() = default;
virtual void Run(std::unique_ptr<StatelessRejector> rejector) = 0;
// Perform processing to determine whether the CHLO received in OnChlo should
// be statelessly rejected, and invoke the callback once a decision has been
// made.
static void Process(std::unique_ptr<StatelessRejector> rejector,
std::unique_ptr<ProcessDoneCallback> done_cb);
// Returns the state of the rejector after OnChlo() has been called.
State state() const { return state_; }
// Returns the error code when state() returns FAILED.
QuicErrorCode error() const { return error_; }
// Returns the error details when state() returns FAILED.
std::string error_details() const { return error_details_; }
// Returns the connection ID.
QuicConnectionId connection_id() const { return connection_id_; }
// Returns the SREJ message when state() returns REJECTED.
const CryptoHandshakeMessage& reply() const { return *reply_; }
// Helper class which is passed in to
// QuicCryptoServerConfig::ValidateClientHello.
class ValidateCallback;
friend class ValidateCallback;
class ProcessClientHelloCallback;
friend class ProcessClientHelloCallback;
void ProcessClientHello(
std::unique_ptr<StatelessRejector> rejector,
std::unique_ptr<StatelessRejector::ProcessDoneCallback> done_cb);
void ProcessClientHelloDone(
QuicErrorCode error,
const std::string& error_details,
std::unique_ptr<CryptoHandshakeMessage> message,
std::unique_ptr<StatelessRejector> rejector,
std::unique_ptr<StatelessRejector::ProcessDoneCallback> done_cb);
State state_;
QuicErrorCode error_;
std::string error_details_;
QuicVersion version_;
QuicVersionVector versions_;
QuicConnectionId connection_id_;
QuicConnectionId server_designated_connection_id_;
QuicByteCount chlo_packet_size_;
QuicSocketAddress client_address_;
QuicSocketAddress server_address_;
const QuicClock* clock_;
QuicRandom* random_;
const QuicCryptoServerConfig* crypto_config_;
QuicCompressedCertsCache* compressed_certs_cache_;
CryptoHandshakeMessage chlo_;
std::unique_ptr<CryptoHandshakeMessage> reply_;
CryptoFramer crypto_framer_;
QuicReferenceCountedPointer<QuicSignedServerConfig> signed_config_;
QuicReferenceCountedPointer<QuicCryptoNegotiatedParameters> params_;
} // namespace net