nginx-quic: src/event/ngx_event

comparison src/event/ngx_event_quic.c @ 8084:eece8e35e64d quic

QUIC: allowed old DCID for initial packets until first ACK. If a packet sent in response to an initial client packet was lost, then successive client initial packets were dropped by nginx with the unexpected dcid message logged. This was because the new DCID generated by the server was not available to the client.

author	Roman Arutyunyan <arut@nginx.com>
date	Wed, 09 Sep 2020 16:35:29 +0300
parents	702f1d2581a4
children	dbcb9d0a3df1

comparison

equal deleted inserted replaced

-:702f1d2581a4
+:eece8e35e64d
 static ngx_int_t
 ngx_quic_check_peer(ngx_quic_connection_t *qc, ngx_quic_header_t *pkt)
 {
-ngx_str_t             *dcid;
 ngx_queue_t           *q;
+ngx_quic_send_ctx_t   *ctx;
 ngx_quic_client_id_t  *cid;
-dcid = ngx_quic_pkt_zrtt(pkt->flags) ? &qc->odcid : &qc->dcid;
+ctx = ngx_quic_get_send_ctx(qc, ssl_encryption_initial);
-if (pkt->dcid.len != dcid->len) {
+if (ngx_quic_pkt_zrtt(pkt->flags)
-ngx_log_error(NGX_LOG_INFO, pkt->log, 0, "quic unexpected quic dcidl");
+|| (ngx_quic_pkt_in(pkt->flags) && ctx->largest_ack == (uint64_t) -1))
-return NGX_ERROR;
+{
-}
+if (pkt->dcid.len == qc->odcid.len
+&& ngx_memcmp(pkt->dcid.data, qc->odcid.data, qc->odcid.len) == 0)
-if (ngx_memcmp(pkt->dcid.data, dcid->data, dcid->len) != 0) {
+{
-ngx_log_error(NGX_LOG_INFO, pkt->log, 0, "quic unexpected quic dcid");
+goto found;
-return NGX_ERROR;
+}
 }
+if (!ngx_quic_pkt_zrtt(pkt->flags)) {
+if (pkt->dcid.len == qc->dcid.len
+&& ngx_memcmp(pkt->dcid.data, qc->dcid.data, qc->dcid.len) == 0)
+{
+goto found;
+}
+}
+ngx_log_error(NGX_LOG_INFO, pkt->log, 0, "quic unexpected quic dcid");
+return NGX_ERROR;
+found:
 for (q = ngx_queue_head(&qc->client_ids);
 q != ngx_queue_sentinel(&qc->client_ids);
 q = ngx_queue_next(q))
 {

Mercurial > hg > nginx-quic

comparison src/event/ngx_event_quic.c @ 8084:eece8e35e64d quic