-
Notifications
You must be signed in to change notification settings - Fork 204
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Packet number encryption #1079
Merged
Merged
Packet number encryption #1079
Changes from 1 commit
Commits
Show all changes
18 commits
Select commit
Hold shift + click to select a range
23018df
Initial cut at packet number encryption
martinthomson 41196ef
Constant time
martinthomson 1d6b979
That was a little unclear on a re-read
martinthomson 16b663a
That was a little unclear on a re-read, again
martinthomson 1ea1ae5
More tweaking (I have to stop this)
martinthomson 2325725
Some fairly obvious errors
martinthomson 86f262d
Don't mess with ChaCha20, use it directly
martinthomson 1aec4b0
Fix off-by-one error
martinthomson a5a6df0
Two *different* packet numbers
martinthomson e641b72
Remove repetition
martinthomson 3791020
Take and rework suggestions by @cwood
martinthomson 0f3c970
Just use AES-CTR
martinthomson 0c54fbf
Make the order of operations clearer.
martinthomson f163e2a
Revert unnecessary change
martinthomson d6d9837
Restore some of the endpoint-agnosticism that got lost in rebasing
martinthomson a1c4d41
Grammar boobo
martinthomson 8e7540f
Addressing nits from final review
martinthomson 947db7f
Remove confusion without changing the design
martinthomson File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm a bit confused. Why is the packet number length not known before hand? Doesn't the short packet header still indicate the length?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is in preparation for going to varint packet numbers. It would need a complete rewrite if this assumption were lifted.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
But this PR doesn't change the short header to use varint packet numbers... unless I missed something. Assuming I didn't, it looks like one of three things need to happen then:
If we are going to do it, I don't see why we don't just do (2) right now. Do you expect that to be a huge change?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Given where this PR is right now, given that the chairs have green-lighted this, and given that we're unicorning, I recommend landing this PR as is. Nick, can you open an issue to track this editorial issue, so that it doesn't get dropped?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I can open an issue, no problem. But we have waited and discussed all this time to ensure we get a good solution. Can't we take a bit longer just to iron out the details and get a complete solution merged all at once? It should be trivial enough to change the short header packet number encoding to varints.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I have fixed the incorrect statement, but left the design unchanged.