mirror/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2025-06-22 22:10:45 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Style.

Browse Source
This commit is contained in:
Vladimir Homutov 2020-03-05 17:24:04 +03:00
parent 32b2728ebb
commit fe30a167d2
1 changed files with 10 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/event/ngx_event_quic.c
View File

@ -994,13 +994,13 @@ ngx_quic_process_handshake_header(ngx_connection_t *c, ngx_quic_header_t *pkt)
static ngx_int_t static ngx_int_t
ngx_quic_initial_secret(ngx_connection_t *c) ngx_quic_initial_secret(ngx_connection_t *c)
{ {
ngx_quic_connection_t *qc = c->quic;
size_t is_len; size_t is_len;
uint8_t is[SHA256_DIGEST_LENGTH]; uint8_t is[SHA256_DIGEST_LENGTH];
ngx_uint_t i; ngx_uint_t i;
const EVP_MD *digest; const EVP_MD *digest;
const EVP_CIPHER *cipher; const EVP_CIPHER *cipher;
ngx_quic_connection_t *qc;
static const uint8_t salt[20] = static const uint8_t salt[20] =
"\xc3\xee\xf7\x12\xc7\x2e\xbb\x5a\x11\xa7" "\xc3\xee\xf7\x12\xc7\x2e\xbb\x5a\x11\xa7"
"\xd2\x43\x2b\xb4\x63\x65\xbe\xf9\xf5\x02"; "\xd2\x43\x2b\xb4\x63\x65\xbe\xf9\xf5\x02";
@ -1010,6 +1010,8 @@ ngx_quic_initial_secret(ngx_connection_t *c)
cipher = EVP_aes_128_gcm(); cipher = EVP_aes_128_gcm();
digest = EVP_sha256(); digest = EVP_sha256();
qc = c->quic;
if (ngx_hkdf_extract(is, &is_len, digest, qc->dcid.data, qc->dcid.len, if (ngx_hkdf_extract(is, &is_len, digest, qc->dcid.data, qc->dcid.len,
salt, sizeof(salt)) salt, sizeof(salt))
!= NGX_OK) != NGX_OK)
@ -1264,7 +1266,7 @@ ngx_quic_new_connection(ngx_connection_t *c, ngx_ssl_t *ssl, ngx_buf_t *b)
out = pkt.payload; out = pkt.payload;
if (out.data[0] != 0x06) { if (out.data[0] != NGX_QUIC_FT_CRYPTO) {
ngx_log_error(NGX_LOG_INFO, c->log, 0, ngx_log_error(NGX_LOG_INFO, c->log, 0,
"unexpected frame in initial packet"); "unexpected frame in initial packet");
return NGX_ERROR; return NGX_ERROR;
@ -1407,7 +1409,7 @@ ngx_quic_handshake_input(ngx_connection_t *c, ngx_buf_t *b)
out = pkt.payload; out = pkt.payload;
if (out.data[0] != 0x06) { if (out.data[0] != NGX_QUIC_FT_CRYPTO) {
ngx_log_error(NGX_LOG_INFO, c->log, 0, ngx_log_error(NGX_LOG_INFO, c->log, 0,
"non-CRYPTO frame in HS packet, skipping"); "non-CRYPTO frame in HS packet, skipping");
return NGX_OK; return NGX_OK;