mirror of
https://git.haproxy.org/git/haproxy.git/
synced 2025-08-10 00:57:02 +02:00
b76ae69513
Implement the emission of Retry packets. These packets are emitted in response to Initial from clients without token. The token from the Retry packet contains the ODCID from the Initial packet. By default, Retry packet emission is disabled and the handshake can continue without address validation. To enable Retry, a new bind option has been defined named "quic-force-retry". If set, the handshake must be conducted only after receiving a token in the Initial packet.
17 lines
446 B
C
17 lines
446 B
C
#include <haproxy/api.h>
|
|
#include <haproxy/listener.h>
|
|
#include <haproxy/proxy-t.h>
|
|
|
|
static int bind_parse_quic_force_retry(char **args, int cur_arg, struct proxy *px, struct bind_conf *conf, char **err)
|
|
{
|
|
conf->quic_force_retry = 1;
|
|
return 0;
|
|
}
|
|
|
|
static struct bind_kw_list bind_kws = { "QUIC", { }, {
|
|
{ "quic-force-retry", bind_parse_quic_force_retry, 0 },
|
|
{ NULL, NULL, 0 },
|
|
}};
|
|
|
|
INITCALL1(STG_REGISTER, bind_register_keywords, &bind_kws);
|