CESNET
diff --git a/‎src/plugins/process/quic/CMakeLists.txt‎
Lines changed: 20 additions & 3 deletions b/‎src/plugins/process/quic/CMakeLists.txt‎
Lines changed: 20 additions & 3 deletions
diff --git a/‎src/plugins/process/quic/README.md‎
Lines changed: 47 additions & 0 deletions b/‎src/plugins/process/quic/README.md‎
Lines changed: 47 additions & 0 deletions
diff --git a/‎src/plugins/process/quic/src/opensslContext.hpp‎
Lines changed: 49 additions & 0 deletions b/‎src/plugins/process/quic/src/opensslContext.hpp‎
Lines changed: 49 additions & 0 deletions
@@ -3,18 +3,35 @@ project(ipfixprobe-process-quic VERSION 1.0.0 DESCRIPTION "ipfixprobe-process-qu
 add_library(ipfixprobe-process-quic MODULE
 	src/quic.cpp
 	src/quic.hpp
-	src/quic_parser.cpp
-	src/quic_parser.hpp
+	src/quicParser.cpp
+	src/quicParser.hpp
+	src/quicConnectionId.hpp
+	src/quicContext.hpp
+	src/quicFields.hpp
+	src/quicHeaderView.hpp
+	src/quicHeaderView.cpp
+	src/quicInitialHeaderView.hpp
+	src/quicInitialHeaderView.cpp
+	src/quicInitialSecrets.hpp
+	src/quicPacketType.hpp
+	src/quicSalt.hpp
+	src/quicTemporalStorage.hpp
+	src/quicTypesCumulative.hpp
+	src/quicVariableInt.hpp
+	src/quicVersion.hpp
 )
 
 set_target_properties(ipfixprobe-process-quic PROPERTIES
 	CXX_VISIBILITY_PRESET hidden
 	VISIBILITY_INLINES_HIDDEN YES
 )
 
-target_include_directories(ipfixprobe-process-quic PRIVATE
+target_include_directories(ipfixprobe-process-quic PRIVATE 
 	${CMAKE_SOURCE_DIR}/include/
+	${CMAKE_SOURCE_DIR}/include/ipfixprobe/processPlugin
+	${CMAKE_SOURCE_DIR}/include/ipfixprobe/pluginFactory
 	${CMAKE_SOURCE_DIR}/src/plugins/process/common
+	${adaptmon_SOURCE_DIR}/lib/include/public/
 )
 
 target_link_libraries(ipfixprobe-process-quic PRIVATE
 
@@ -0,0 +1,47 @@
+# QUIC Plugin
+
+The **QUIC Plugin** parses QUIC packets and exports extracted values.
+
+## Features
+
+- Removes plugin data if some parsing fails.
+- Allocates memory only if the flow is considered to belong to QUIC.
+
+## Output Fields
+
+| Field Name            | Data Type           | Description                                                     |
+| --------------------- | ------------------- | --------------------------------------------------------------- |
+| `QUIC_SNI`            | `string`            | Subject Name Indentifier (SNI) from the QUIC handshake          |
+| `QUIC_USER_AGENT`     | `string`            | User Agent from the QUIC handshake                              |
+| `QUIC_VERSION`        | `uint32_t`          | QUIC version used in the connection                             |
+| `QUIC_CLIENT_VERSION` | `uint32_t`          | QUIC version used by the client                                 |
+| `QUIC_TOKEN_LENGTH`   | `uint16_t`          | Length of the token used in the handshake                       |
+| `QUIC_OCCID`          | `string`            | Original Connection ID used in the handshake                    |
+| `QUIC_OSCID`          | `string`            | Original Source Connection ID used in the handshake             |
+| `QUIC_SCID`           | `string`            | Source Connection ID used in the handshake                      |
+| `QUIC_RETRY_SCID`     | `string`            | Source Connection ID from the Retry packet                      |
+| `QUIC_MULTIPLEXED`    | `uint8_t`           | Whether the connection is multiplexed (1) or not (0)            |
+| `QUIC_ZERO_RTT`       | `uint8_t`           | Whether 0-RTT was used (1) or not (0)                           |
+| `QUIC_SERVER_PORT`    | `uint16_t`          | Server port used in the connection                              |
+| `QUIC_PACKETS`        | `array of uint8_t`  | Cumulative of header types observed in each QUIC packet         |
+| `QUIC_CH_PARSED`      | `uint8_t`           | Whether the Client Hello was successfully parsed (1) or not (0) |
+| `QUIC_TLS_EXT_TYPE`   | `array of uint16_t` | Types of TLS extensions in the Client Hello                     |
+| `QUIC_TLS_EXT_LEN`    | `array of uint16_t` | Lengths of TLS extensions in the Client Hello                   |
+| `QUIC_TLS_EXT`        | `array of bytes`    | Data of TLS extensions in the Client Hello                      |
+
+## Usage
+
+### YAML Configuration
+
+Add the plugin to your ipfixprobe YAML configuration:
+
+```yaml
+process_plugins:
+  - quic
+```
+
+### CLI Usage
+
+You can also enable the plugin directly from the command line:
+
+`ipfixprobe -p quic ...`
@@ -0,0 +1,49 @@
+/**
+ * @file
+ * @brief Provides OpenSSL wrappers to help maintain lifetime.
+ * @author Damir Zainullin <[email protected]>
+ * @date 2025
+ *
+ * @copyright Copyright (c) 2025 CESNET, z.s.p.o.
+ */
+
+#pragma once
+
+#include <memory>
+
+#include <openssl/evp.h>
+
+namespace ipxp::process::quic {
+
+/**
+ * @brief Unique pointer types for OpenSSL cipher contexts with automatic cleanup.
+ */
+using CipherContext = std::unique_ptr<EVP_CIPHER_CTX, decltype(&EVP_CIPHER_CTX_free)>;
+
+/**
+ * @brief Unique pointer type for OpenSSL key context with automatic cleanup.
+ */
+using KeyContext = std::unique_ptr<EVP_PKEY_CTX, decltype(&EVP_PKEY_CTX_free)>;
+
+/**
+ * @brief Creates a new OpenSSL cipher context with destructor.
+ *
+ * @return New cipher context.
+ */
+auto createCipherContext
+	= []() -> CipherContext { return CipherContext(EVP_CIPHER_CTX_new(), EVP_CIPHER_CTX_free); };
+
+/**
+ * @brief Creates a new KeyContext for HKDF operations using OpenSSL.
+ *
+ * This lambda function initializes an EVP_PKEY_CTX context for HKDF (HMAC-based Extract-and-Expand
+ * Key Derivation Function). The context is wrapped which ensures proper cleanup using
+ * EVP_PKEY_CTX_free.
+ *
+ * @return New key context.
+ */
+auto createKeyContext = []() -> KeyContext {
+	return KeyContext(EVP_PKEY_CTX_new_id(EVP_PKEY_HKDF, nullptr), EVP_PKEY_CTX_free);
+};
+
+} // namespace ipxp::process::quic