package quic import ( "bytes" "math" "github.com/golang/mock/gomock" "github.com/lucas-clemente/quic-go/ackhandler" "github.com/lucas-clemente/quic-go/internal/flowcontrol" "github.com/lucas-clemente/quic-go/internal/handshake" "github.com/lucas-clemente/quic-go/internal/protocol" "github.com/lucas-clemente/quic-go/internal/wire" . "github.com/onsi/ginkgo" . "github.com/onsi/gomega" ) type mockSealer struct{} func (s *mockSealer) Seal(dst, src []byte, packetNumber protocol.PacketNumber, associatedData []byte) []byte { return append(src, bytes.Repeat([]byte{0}, 12)...) } func (s *mockSealer) Overhead() int { return 12 } var _ handshake.Sealer = &mockSealer{} type mockCryptoSetup struct { handleErr error divNonce []byte encLevelSeal protocol.EncryptionLevel encLevelSealCrypto protocol.EncryptionLevel } var _ handshake.CryptoSetup = &mockCryptoSetup{} func (m *mockCryptoSetup) HandleCryptoStream() error { return m.handleErr } func (m *mockCryptoSetup) Open(dst, src []byte, packetNumber protocol.PacketNumber, associatedData []byte) ([]byte, protocol.EncryptionLevel, error) { return nil, protocol.EncryptionUnspecified, nil } func (m *mockCryptoSetup) GetSealer() (protocol.EncryptionLevel, handshake.Sealer) { return m.encLevelSeal, &mockSealer{} } func (m *mockCryptoSetup) GetSealerForCryptoStream() (protocol.EncryptionLevel, handshake.Sealer) { return m.encLevelSealCrypto, &mockSealer{} } func (m *mockCryptoSetup) GetSealerWithEncryptionLevel(protocol.EncryptionLevel) (handshake.Sealer, error) { return &mockSealer{}, nil } func (m *mockCryptoSetup) DiversificationNonce() []byte { return m.divNonce } func (m *mockCryptoSetup) SetDiversificationNonce(divNonce []byte) { m.divNonce = divNonce } func (m *mockCryptoSetup) ConnectionState() ConnectionState { panic("not implemented") } var _ = Describe("Packet packer", func() { var ( packer *packetPacker publicHeaderLen protocol.ByteCount maxFrameSize protocol.ByteCount cryptoStream cryptoStreamI mockStreamFramer *MockStreamFrameSource ) BeforeEach(func() { version := versionGQUICFrames mockSender := NewMockStreamSender(mockCtrl) mockSender.EXPECT().onHasStreamData(gomock.Any()).AnyTimes() cryptoStream = newCryptoStream(mockSender, flowcontrol.NewStreamFlowController(version.CryptoStreamID(), false, flowcontrol.NewConnectionFlowController(1000, 1000, nil), 1000, 1000, 1000, nil), version) mockStreamFramer = NewMockStreamFrameSource(mockCtrl) packer = newPacketPacker( 0x1337, 1, &mockCryptoSetup{encLevelSeal: protocol.EncryptionForwardSecure}, mockStreamFramer, protocol.PerspectiveServer, version, ) publicHeaderLen = 1 + 8 + 2 // 1 flag byte, 8 connection ID, 2 packet number maxFrameSize = protocol.MaxPacketSize - protocol.ByteCount((&mockSealer{}).Overhead()) - publicHeaderLen packer.hasSentPacket = true packer.version = version }) It("returns nil when no packet is queued", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) p, err := packer.PackPacket() Expect(p).To(BeNil()) Expect(err).ToNot(HaveOccurred()) }) It("packs single packets", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() f := &wire.StreamFrame{ StreamID: 5, Data: []byte{0xDE, 0xCA, 0xFB, 0xAD}, } mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Return([]*wire.StreamFrame{f}) p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).ToNot(BeNil()) b := &bytes.Buffer{} f.Write(b, packer.version) Expect(p.frames).To(Equal([]wire.Frame{f})) Expect(p.raw).To(ContainSubstring(string(b.Bytes()))) }) It("stores the encryption level a packet was sealed with", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Return([]*wire.StreamFrame{{ StreamID: 5, Data: []byte("foobar"), }}) packer.cryptoSetup.(*mockCryptoSetup).encLevelSeal = protocol.EncryptionForwardSecure p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionForwardSecure)) }) Context("generating a packet header", func() { const ( versionPublicHeader = protocol.Version39 // a QUIC version that uses the Public Header format versionIETFHeader = protocol.VersionTLS // a QUIC version taht uses the IETF Header format ) Context("Public Header (for gQUIC)", func() { BeforeEach(func() { packer.version = versionPublicHeader }) It("it omits the connection ID for forward-secure packets", func() { ph := packer.getHeader(protocol.EncryptionForwardSecure) Expect(ph.OmitConnectionID).To(BeFalse()) packer.SetOmitConnectionID() ph = packer.getHeader(protocol.EncryptionForwardSecure) Expect(ph.OmitConnectionID).To(BeTrue()) }) It("doesn't omit the connection ID for non-forward-secure packets", func() { packer.SetOmitConnectionID() ph := packer.getHeader(protocol.EncryptionSecure) Expect(ph.OmitConnectionID).To(BeFalse()) }) It("adds the Version Flag to the Public Header before the crypto handshake is finished", func() { packer.perspective = protocol.PerspectiveClient ph := packer.getHeader(protocol.EncryptionSecure) Expect(ph.VersionFlag).To(BeTrue()) }) It("doesn't add the Version Flag to the Public Header for forward-secure packets", func() { packer.perspective = protocol.PerspectiveClient ph := packer.getHeader(protocol.EncryptionForwardSecure) Expect(ph.VersionFlag).To(BeFalse()) }) Context("diversificaton nonces", func() { var nonce []byte BeforeEach(func() { nonce = bytes.Repeat([]byte{'e'}, 32) packer.cryptoSetup.(*mockCryptoSetup).divNonce = nonce }) It("doesn't include a div nonce, when sending a packet with initial encryption", func() { ph := packer.getHeader(protocol.EncryptionUnencrypted) Expect(ph.DiversificationNonce).To(BeEmpty()) }) It("includes a div nonce, when sending a packet with secure encryption", func() { ph := packer.getHeader(protocol.EncryptionSecure) Expect(ph.DiversificationNonce).To(Equal(nonce)) }) It("doesn't include a div nonce, when sending a packet with forward-secure encryption", func() { ph := packer.getHeader(protocol.EncryptionForwardSecure) Expect(ph.DiversificationNonce).To(BeEmpty()) }) It("doesn't send a div nonce as a client", func() { packer.perspective = protocol.PerspectiveClient ph := packer.getHeader(protocol.EncryptionSecure) Expect(ph.DiversificationNonce).To(BeEmpty()) }) }) }) Context("Header (for IETF draft QUIC)", func() { BeforeEach(func() { packer.version = versionIETFHeader }) It("uses the Long Header format for non-forward-secure packets", func() { h := packer.getHeader(protocol.EncryptionSecure) Expect(h.IsLongHeader).To(BeTrue()) Expect(h.PacketNumberLen).To(Equal(protocol.PacketNumberLen4)) Expect(h.Version).To(Equal(versionIETFHeader)) }) It("uses the Short Header format for forward-secure packets", func() { h := packer.getHeader(protocol.EncryptionForwardSecure) Expect(h.IsLongHeader).To(BeFalse()) Expect(h.PacketNumberLen).To(BeNumerically(">", 0)) }) It("it omits the connection ID for forward-secure packets", func() { h := packer.getHeader(protocol.EncryptionForwardSecure) Expect(h.OmitConnectionID).To(BeFalse()) packer.SetOmitConnectionID() h = packer.getHeader(protocol.EncryptionForwardSecure) Expect(h.OmitConnectionID).To(BeTrue()) }) It("doesn't omit the connection ID for non-forward-secure packets", func() { packer.SetOmitConnectionID() h := packer.getHeader(protocol.EncryptionSecure) Expect(h.OmitConnectionID).To(BeFalse()) }) }) }) It("packs a CONNECTION_CLOSE", func() { ccf := wire.ConnectionCloseFrame{ ErrorCode: 0x1337, ReasonPhrase: "foobar", } p, err := packer.PackConnectionClose(&ccf) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(1)) Expect(p.frames[0]).To(Equal(&ccf)) }) It("doesn't send any other frames when sending a CONNECTION_CLOSE", func() { // expect no mockStreamFramer.PopStreamFrames ccf := &wire.ConnectionCloseFrame{ ErrorCode: 0x1337, ReasonPhrase: "foobar", } packer.controlFrames = []wire.Frame{&wire.MaxStreamDataFrame{StreamID: 37}} p, err := packer.PackConnectionClose(ccf) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{ccf})) }) It("packs only control frames", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) packer.QueueControlFrame(&wire.RstStreamFrame{}) packer.QueueControlFrame(&wire.MaxDataFrame{}) p, err := packer.PackPacket() Expect(p).ToNot(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(2)) Expect(p.raw).NotTo(BeEmpty()) }) It("increases the packet number", func() { mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Times(2) packer.QueueControlFrame(&wire.RstStreamFrame{}) p1, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p1).ToNot(BeNil()) packer.QueueControlFrame(&wire.RstStreamFrame{}) p2, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p2).ToNot(BeNil()) Expect(p2.header.PacketNumber).To(BeNumerically(">", p1.header.PacketNumber)) }) It("packs a STOP_WAITING frame first", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) packer.packetNumberGenerator.next = 15 swf := &wire.StopWaitingFrame{LeastUnacked: 10} packer.QueueControlFrame(&wire.RstStreamFrame{}) packer.QueueControlFrame(swf) p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).ToNot(BeNil()) Expect(p.frames).To(HaveLen(2)) Expect(p.frames[0]).To(Equal(swf)) }) It("sets the LeastUnackedDelta length of a STOP_WAITING frame", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) packetNumber := protocol.PacketNumber(0xDECAFB) // will result in a 4 byte packet number packer.packetNumberGenerator.next = packetNumber swf := &wire.StopWaitingFrame{LeastUnacked: packetNumber - 0x100} packer.QueueControlFrame(&wire.RstStreamFrame{}) packer.QueueControlFrame(swf) p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames[0].(*wire.StopWaitingFrame).PacketNumberLen).To(Equal(protocol.PacketNumberLen4)) }) It("does not pack a packet containing only a STOP_WAITING frame", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) swf := &wire.StopWaitingFrame{LeastUnacked: 10} packer.QueueControlFrame(swf) p, err := packer.PackPacket() Expect(p).To(BeNil()) Expect(err).ToNot(HaveOccurred()) }) It("packs a packet if it has queued control frames, but no new control frames", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) packer.controlFrames = []wire.Frame{&wire.BlockedFrame{}} p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).ToNot(BeNil()) }) It("refuses to send a packet that doesn't contain crypto stream data, if it has never sent a packet before", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() packer.hasSentPacket = false packer.controlFrames = []wire.Frame{&wire.BlockedFrame{}} p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).To(BeNil()) }) It("packs many control frames into 1 packets", func() { f := &wire.AckFrame{LargestAcked: 1} b := &bytes.Buffer{} err := f.Write(b, packer.version) Expect(err).ToNot(HaveOccurred()) maxFramesPerPacket := int(maxFrameSize) / b.Len() var controlFrames []wire.Frame for i := 0; i < maxFramesPerPacket; i++ { controlFrames = append(controlFrames, f) } packer.controlFrames = controlFrames payloadFrames, err := packer.composeNextPacket(maxFrameSize, false) Expect(err).ToNot(HaveOccurred()) Expect(payloadFrames).To(HaveLen(maxFramesPerPacket)) payloadFrames, err = packer.composeNextPacket(maxFrameSize, false) Expect(err).ToNot(HaveOccurred()) Expect(payloadFrames).To(BeEmpty()) }) It("packs a lot of control frames into 2 packets if they don't fit into one", func() { blockedFrame := &wire.BlockedFrame{} maxFramesPerPacket := int(maxFrameSize) / int(blockedFrame.MinLength(packer.version)) var controlFrames []wire.Frame for i := 0; i < maxFramesPerPacket+10; i++ { controlFrames = append(controlFrames, blockedFrame) } packer.controlFrames = controlFrames payloadFrames, err := packer.composeNextPacket(maxFrameSize, false) Expect(err).ToNot(HaveOccurred()) Expect(payloadFrames).To(HaveLen(maxFramesPerPacket)) payloadFrames, err = packer.composeNextPacket(maxFrameSize, false) Expect(err).ToNot(HaveOccurred()) Expect(payloadFrames).To(HaveLen(10)) }) It("only increases the packet number when there is an actual packet to send", func() { mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) packer.packetNumberGenerator.nextToSkip = 1000 p, err := packer.PackPacket() Expect(p).To(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(packer.packetNumberGenerator.Peek()).To(Equal(protocol.PacketNumber(1))) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Return([]*wire.StreamFrame{{ StreamID: 5, Data: []byte{0xDE, 0xCA, 0xFB, 0xAD}, }}) p, err = packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).ToNot(BeNil()) Expect(p.header.PacketNumber).To(Equal(protocol.PacketNumber(1))) Expect(packer.packetNumberGenerator.Peek()).To(Equal(protocol.PacketNumber(2))) }) It("adds a PING frame when it's supposed to send a retransmittable packet", func() { mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Times(2) packer.QueueControlFrame(&wire.AckFrame{}) packer.QueueControlFrame(&wire.StopWaitingFrame{}) packer.MakeNextPacketRetransmittable() p, err := packer.PackPacket() Expect(p).ToNot(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(3)) Expect(p.frames).To(ContainElement(&wire.PingFrame{})) // make sure the next packet doesn't contain another PING packer.QueueControlFrame(&wire.AckFrame{}) p, err = packer.PackPacket() Expect(p).ToNot(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(1)) }) It("waits until there's something to send before adding a PING frame", func() { mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Times(2) packer.MakeNextPacketRetransmittable() p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).To(BeNil()) packer.QueueControlFrame(&wire.AckFrame{}) p, err = packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(2)) Expect(p.frames).To(ContainElement(&wire.PingFrame{})) }) It("doesn't send a PING if it already sent another retransmittable frame", func() { mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Times(2) packer.MakeNextPacketRetransmittable() packer.QueueControlFrame(&wire.MaxDataFrame{}) p, err := packer.PackPacket() Expect(p).ToNot(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(1)) packer.QueueControlFrame(&wire.AckFrame{}) p, err = packer.PackPacket() Expect(p).ToNot(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(1)) }) Context("STREAM frame handling", func() { It("does not splits a STREAM frame with maximum size, for gQUIC frames", func() { mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).DoAndReturn(func(maxSize protocol.ByteCount) []*wire.StreamFrame { f := &wire.StreamFrame{ Offset: 1, StreamID: 5, DataLenPresent: true, } f.Data = bytes.Repeat([]byte{'f'}, int(maxSize-f.MinLength(packer.version))) return []*wire.StreamFrame{f} }) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(1)) Expect(p.raw).To(HaveLen(int(protocol.MaxPacketSize))) Expect(p.frames[0].(*wire.StreamFrame).DataLenPresent).To(BeFalse()) p, err = packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).To(BeNil()) }) It("does not splits a STREAM frame with maximum size, for IETF draft style frame", func() { packer.version = versionIETFFrames mockStreamFramer.EXPECT().HasCryptoStreamData().Times(2) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).DoAndReturn(func(maxSize protocol.ByteCount) []*wire.StreamFrame { f := &wire.StreamFrame{ Offset: 1, StreamID: 5, DataLenPresent: true, } f.Data = bytes.Repeat([]byte{'f'}, int(maxSize-f.MinLength(packer.version))) return []*wire.StreamFrame{f} }) mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(1)) Expect(p.raw).To(HaveLen(int(protocol.MaxPacketSize))) Expect(p.frames[0].(*wire.StreamFrame).DataLenPresent).To(BeFalse()) p, err = packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).To(BeNil()) }) It("packs multiple small STREAM frames into single packet", func() { f1 := &wire.StreamFrame{ StreamID: 5, Data: []byte("frame 1"), DataLenPresent: true, } f2 := &wire.StreamFrame{ StreamID: 5, Data: []byte("frame 2"), DataLenPresent: true, } f3 := &wire.StreamFrame{ StreamID: 3, Data: []byte("frame 3"), DataLenPresent: true, } mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Return([]*wire.StreamFrame{f1, f2, f3}) p, err := packer.PackPacket() Expect(p).ToNot(BeNil()) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(HaveLen(3)) Expect(p.frames[0].(*wire.StreamFrame).Data).To(Equal([]byte("frame 1"))) Expect(p.frames[1].(*wire.StreamFrame).Data).To(Equal([]byte("frame 2"))) Expect(p.frames[2].(*wire.StreamFrame).Data).To(Equal([]byte("frame 3"))) Expect(p.frames[0].(*wire.StreamFrame).DataLenPresent).To(BeTrue()) Expect(p.frames[1].(*wire.StreamFrame).DataLenPresent).To(BeTrue()) Expect(p.frames[2].(*wire.StreamFrame).DataLenPresent).To(BeFalse()) }) It("refuses to send unencrypted stream data on a data stream", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() // don't expect a call to mockStreamFramer.PopStreamFrames packer.cryptoSetup.(*mockCryptoSetup).encLevelSeal = protocol.EncryptionUnencrypted p, err := packer.PackPacket() Expect(err).NotTo(HaveOccurred()) Expect(p).To(BeNil()) }) It("sends non forward-secure data as the client", func() { f := &wire.StreamFrame{ StreamID: 5, Data: []byte("foobar"), } mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()).Return([]*wire.StreamFrame{f}) packer.perspective = protocol.PerspectiveClient packer.cryptoSetup.(*mockCryptoSetup).encLevelSeal = protocol.EncryptionSecure p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionSecure)) Expect(p.frames).To(Equal([]wire.Frame{f})) }) It("does not send non forward-secure data as the server", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() // don't expect a call to mockStreamFramer.PopStreamFrames packer.cryptoSetup.(*mockCryptoSetup).encLevelSeal = protocol.EncryptionSecure p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p).To(BeNil()) }) It("sends unencrypted stream data on the crypto stream", func() { f := &wire.StreamFrame{ StreamID: packer.version.CryptoStreamID(), Data: []byte("foobar"), } mockStreamFramer.EXPECT().HasCryptoStreamData().Return(true) mockStreamFramer.EXPECT().PopCryptoStreamFrame(gomock.Any()).Return(f) packer.cryptoSetup.(*mockCryptoSetup).encLevelSealCrypto = protocol.EncryptionUnencrypted p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{f})) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionUnencrypted)) }) It("sends encrypted stream data on the crypto stream", func() { f := &wire.StreamFrame{ StreamID: packer.version.CryptoStreamID(), Data: []byte("foobar"), } mockStreamFramer.EXPECT().HasCryptoStreamData().Return(true) mockStreamFramer.EXPECT().PopCryptoStreamFrame(gomock.Any()).Return(f) packer.cryptoSetup.(*mockCryptoSetup).encLevelSealCrypto = protocol.EncryptionSecure p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{f})) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionSecure)) }) It("does not pack STREAM frames if not allowed", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() // don't expect a call to mockStreamFramer.PopStreamFrames packer.cryptoSetup.(*mockCryptoSetup).encLevelSeal = protocol.EncryptionUnencrypted ack := &wire.AckFrame{LargestAcked: 10} packer.QueueControlFrame(ack) p, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{ack})) }) }) It("packs a single ACK", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) ack := &wire.AckFrame{LargestAcked: 42} packer.QueueControlFrame(ack) p, err := packer.PackPacket() Expect(err).NotTo(HaveOccurred()) Expect(p).ToNot(BeNil()) Expect(p.frames[0]).To(Equal(ack)) }) It("does not return nil if we only have a single ACK but request it to be sent", func() { mockStreamFramer.EXPECT().HasCryptoStreamData() mockStreamFramer.EXPECT().PopStreamFrames(gomock.Any()) ack := &wire.AckFrame{} packer.QueueControlFrame(ack) p, err := packer.PackPacket() Expect(err).NotTo(HaveOccurred()) Expect(p).ToNot(BeNil()) }) Context("retransmitting of handshake packets", func() { swf := &wire.StopWaitingFrame{LeastUnacked: 1} sf := &wire.StreamFrame{ StreamID: 1, Data: []byte("foobar"), } BeforeEach(func() { packer.QueueControlFrame(swf) }) It("packs a retransmission for a packet sent with no encryption", func() { packet := &ackhandler.Packet{ EncryptionLevel: protocol.EncryptionUnencrypted, Frames: []wire.Frame{sf}, } p, err := packer.PackHandshakeRetransmission(packet) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{swf, sf})) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionUnencrypted)) }) It("doesn't add a STOP_WAITING frame for IETF QUIC", func() { packer.version = versionIETFFrames packet := &ackhandler.Packet{ EncryptionLevel: protocol.EncryptionUnencrypted, Frames: []wire.Frame{sf}, } p, err := packer.PackHandshakeRetransmission(packet) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{sf})) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionUnencrypted)) }) It("packs a retransmission for a packet sent with initial encryption", func() { nonce := bytes.Repeat([]byte{'e'}, 32) packer.cryptoSetup.(*mockCryptoSetup).divNonce = nonce packet := &ackhandler.Packet{ EncryptionLevel: protocol.EncryptionSecure, Frames: []wire.Frame{sf}, } p, err := packer.PackHandshakeRetransmission(packet) Expect(err).ToNot(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{swf, sf})) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionSecure)) // a packet sent by the server with initial encryption contains the SHLO // it needs to have a diversification nonce Expect(p.raw).To(ContainSubstring(string(nonce))) }) It("includes the diversification nonce on packets sent with initial encryption", func() { packet := &ackhandler.Packet{ EncryptionLevel: protocol.EncryptionSecure, Frames: []wire.Frame{sf}, } p, err := packer.PackHandshakeRetransmission(packet) Expect(err).ToNot(HaveOccurred()) Expect(p.encryptionLevel).To(Equal(protocol.EncryptionSecure)) }) // this should never happen, since non forward-secure packets are limited to a size smaller than MaxPacketSize, such that it is always possible to retransmit them without splitting the StreamFrame // (note that the retransmitted packet needs to have enough space for the StopWaitingFrame) It("refuses to send a packet larger than MaxPacketSize", func() { packet := &ackhandler.Packet{ EncryptionLevel: protocol.EncryptionSecure, Frames: []wire.Frame{ &wire.StreamFrame{ StreamID: 1, Data: bytes.Repeat([]byte{'f'}, int(protocol.MaxPacketSize-5)), }, }, } _, err := packer.PackHandshakeRetransmission(packet) Expect(err).To(MatchError("PacketPacker BUG: packet too large")) }) It("pads Initial packets to the required minimum packet size", func() { f := &wire.StreamFrame{ StreamID: packer.version.CryptoStreamID(), Data: []byte("foobar"), } mockStreamFramer.EXPECT().HasCryptoStreamData().Return(true) mockStreamFramer.EXPECT().PopCryptoStreamFrame(gomock.Any()).Return(f) packer.version = protocol.VersionTLS packer.hasSentPacket = false packer.perspective = protocol.PerspectiveClient packer.cryptoSetup.(*mockCryptoSetup).encLevelSealCrypto = protocol.EncryptionUnencrypted packet, err := packer.PackPacket() Expect(err).ToNot(HaveOccurred()) Expect(packet.raw).To(HaveLen(protocol.MinInitialPacketSize)) Expect(packet.frames).To(HaveLen(1)) sf := packet.frames[0].(*wire.StreamFrame) Expect(sf.Data).To(Equal([]byte("foobar"))) Expect(sf.DataLenPresent).To(BeTrue()) }) It("refuses to retransmit packets that were sent with forward-secure encryption", func() { p := &ackhandler.Packet{ EncryptionLevel: protocol.EncryptionForwardSecure, } _, err := packer.PackHandshakeRetransmission(p) Expect(err).To(MatchError("PacketPacker BUG: forward-secure encrypted handshake packets don't need special treatment")) }) It("refuses to retransmit packets without a STOP_WAITING Frame", func() { packer.stopWaiting = nil _, err := packer.PackHandshakeRetransmission(&ackhandler.Packet{ EncryptionLevel: protocol.EncryptionSecure, }) Expect(err).To(MatchError("PacketPacker BUG: Handshake retransmissions must contain a STOP_WAITING frame")) }) }) Context("packing ACK packets", func() { It("packs ACK packets", func() { packer.QueueControlFrame(&wire.AckFrame{}) p, err := packer.PackAckPacket() Expect(err).NotTo(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{&wire.AckFrame{DelayTime: math.MaxInt64}})) }) It("packs ACK packets with STOP_WAITING frames", func() { packer.QueueControlFrame(&wire.AckFrame{}) packer.QueueControlFrame(&wire.StopWaitingFrame{}) p, err := packer.PackAckPacket() Expect(err).NotTo(HaveOccurred()) Expect(p.frames).To(Equal([]wire.Frame{ &wire.AckFrame{DelayTime: math.MaxInt64}, &wire.StopWaitingFrame{PacketNumber: 1, PacketNumberLen: 2}, })) }) }) })