mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-08-06 07:07:04 +02:00
Code Issues Projects Releases Wiki Activity

MINOR: quic-be: discard the 0-RTT keys

Browse Source 
This patch allows the discarding of the 0-RTT keys as soon as 1-RTT keys
are available.
This commit is contained in:
Frederic Lecaille 2025-08-02 10:43:51 +02:00
parent d43f07b649
commit 477ed7d25b
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
src/quic_ssl.c
View File

@ -291,6 +291,19 @@ static int ha_quic_set_encryption_secrets(SSL *ssl, enum ssl_encryption_level_t
struct quic_tls_kp *nxt_rx = &qc->ku.nxt_rx;
struct quic_tls_kp *nxt_tx = &qc->ku.nxt_tx;
/* RFC 9000
* 4.9.3. Discarding 0-RTT Keys 0-RTT and 1-RTT packets share the same
* packet number space, and clients do not send 0-RTT packets after
* sending a 1-RTT packet (Section 5.6).
*
* Therefore, a client SHOULD discard 0-RTT keys as soon as it installs
* 1-RTT keys as they have no use after that moment.
*/
if (objt_server(qc->target) && qc->eel) {
TRACE_PROTO("discarding Early Data keys", QUIC_EV_CONN_PHPKTS, qc);
qc_enc_level_free(qc, &qc->eel);
}
#if !defined(USE_QUIC_OPENSSL_COMPAT) && !defined(HAVE_OPENSSL_QUIC)
if (objt_server(qc->target)) {
const unsigned char *tp;