Reject IETF RETRY packets before they hit QUIC_BUGs gfe-relnote: Fix QUIC framer bugs protected behind QUIC_VERSION_99, quic_supports_tls_handshake, and other QUIC flags This is expected to fix crbug.com/952581 PiperOrigin-RevId: 244394240 Change-Id: I8b4ad2af67f690db5c12fb902277a324a63ae244

commit: 2ceb97cd7a50342618eee63f76eb997b6ad47ce5 [log] [tgz]
author: nharper <nharper@google.com> Fri Apr 19 11:38:59 2019 -0700
committer: Copybara-Service <copybara-worker@google.com> Mon Apr 22 08:40:36 2019 -0700
tree: a1e2a23122a9596ec12eb0565e159b7da37efc95
parent: 67d7a3c8f9ae080d52454c3dc416f498ec5d26ce [diff] [blame]
diff --git a/quic/core/quic_framer.cc b/quic/core/quic_framer.cc
index 0c65dc2..cc10cca 100644
--- a/quic/core/quic_framer.cc
+++ b/quic/core/quic_framer.cc

@@ -2514,6 +2514,12 @@
           set_detailed_error("Illegal long header type value.");
           return false;
         }
+        if (header->long_packet_type == RETRY &&
+            (version().KnowsWhichDecrypterToUse() ||
+             supports_multiple_packet_number_spaces_)) {
+          set_detailed_error("Not yet supported IETF RETRY packet received.");
+          return RaiseError(QUIC_INVALID_PACKET_HEADER);
+        }
         header->packet_number_length = GetLongHeaderPacketNumberLength(
             header->version.transport_version, type);
       }
commit	2ceb97cd7a50342618eee63f76eb997b6ad47ce5	[log] [tgz]
author	nharper <nharper@google.com>	Fri Apr 19 11:38:59 2019 -0700
committer	Copybara-Service <copybara-worker@google.com>	Mon Apr 22 08:40:36 2019 -0700
tree	a1e2a23122a9596ec12eb0565e159b7da37efc95
parent	67d7a3c8f9ae080d52454c3dc416f498ec5d26ce [diff] [blame]