QUIC CONFORMANCE: RFC 9000 s. 12.5: Ensure CFQ can not be used to send disallowed frame types in a given PN space

Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/21135)
2024-12-15 06:01:37 +08:00 · 2023-06-06 16:25:11 +01:00 · 2023-06-06 16:25:11 +01:00 · 8d2e353df4
commit 8d2e353df4
parent 5a1b1d2be3
1 changed files with 2 additions and 2 deletions
--- a/ssl/quic/quic_txp.c
+++ b/ssl/quic/quic_txp.c
@ -656,7 +656,7 @@ static const struct archetype_data archetypes[QUIC_ENC_LEVEL_NUM][TX_PACKETISER_
            /*allow_stream_rel                =*/ 0,
            /*allow_conn_fc                   =*/ 0,
            /*allow_conn_close                =*/ 1,
-            /*allow_cfq_other                 =*/ 1,
+            /*allow_cfq_other                 =*/ 0,
            /*allow_new_token                 =*/ 0,
            /*allow_force_ack_eliciting       =*/ 1,
        },
@ -693,7 +693,7 @@ static const struct archetype_data archetypes[QUIC_ENC_LEVEL_NUM][TX_PACKETISER_
            /*allow_stream_rel                =*/ 0,
            /*allow_conn_fc                   =*/ 0,
            /*allow_conn_close                =*/ 1,
-            /*allow_cfq_other                 =*/ 1,
+            /*allow_cfq_other                 =*/ 0,
            /*allow_new_token                 =*/ 0,
            /*allow_force_ack_eliciting       =*/ 1,
        },