commit 4702db63068d88f18261819ba8cf5e82f30cea1b
author Adam Langley <agl@google.com> Mon Feb 26 13:51:55 2018 -0800
committer CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Tue Feb 27 20:13:53 2018 +0000
tree 8aa006e9bf59013b65ad124baeba8c98cf1055c1
parent 8041d8c40eaaf8ce1506c2c8c5c97344e578a143

Update dummy PQ extension for round two.

In this round, Google servers will echo the extension in order to test
the latency of both parties sending a PQ key-agreement message.

The extension is sent (and echoed) for both full and resumption
handshakes. This is intended to mirror the overhead of TLS 1.3 (even
when using TLS 1.2), as a resumption in TLS 1.3 still does a fresh key
agreement.

Change-Id: I9ad163afac4fd1d916f9c7359ec32994e283abeb
Reviewed-on: https://boringssl-review.googlesource.com/26185
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

ssl/internal.h

diff --git a/ssl/internal.h b/ssl/internal.h
index b67637d..a2205c9 100644
--- a/ssl/internal.h
+++ b/ssl/internal.h
@@ -1514,6 +1514,10 @@
   // grease_seed is the entropy for GREASE values. It is valid if
   // |grease_seeded| is true.
   uint8_t grease_seed[ssl_grease_last_index + 1] = {0};
+
+  // dummy_pq_padding_len is the length of the extension that should be echoed
+  // in a ServerHello, or zero if no extension should be echoed.
+  uint16_t dummy_pq_padding_len = 0;
 };
 
 UniquePtr<SSL_HANDSHAKE> ssl_handshake_new(SSL *ssl);