mirror/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2025-06-22 13:51:12 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Close connection with PROTOCOL_VIOLATION on decryption failure.

Browse Source 
A previously used undefined error code is now replaced with the generic one.

Note that quic-transport prescribes keeping connection intact, discarding such
QUIC packets individually, in the sense that coalesced packets could be there.
This is selectively handled in the next change.
This commit is contained in:
Sergey Kandaurov 2020-06-23 11:57:00 +03:00
parent 82519e1af2
commit d7baead1e8
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/event/ngx_event_quic_protection.c
View File

@ -1050,7 +1050,7 @@ ngx_quic_decrypt(ngx_quic_header_t *pkt, ngx_ssl_conn_t *ssl_conn,
if (ngx_quic_tls_hp(pkt->log, ciphers.hp, secret, mask, sample)
!= NGX_OK)
{
pkt->error = NGX_QUIC_ERR_CRYPTO_ERROR;
pkt->error = NGX_QUIC_ERR_PROTOCOL_VIOLATION;
return NGX_ERROR;
}
@ -1130,7 +1130,7 @@ ngx_quic_decrypt(ngx_quic_header_t *pkt, ngx_ssl_conn_t *ssl_conn,
#endif
if (rc != NGX_OK) {
pkt->error = NGX_QUIC_ERR_CRYPTO_ERROR;
pkt->error = NGX_QUIC_ERR_PROTOCOL_VIOLATION;
return rc;
}