Send correct stateless reset token when using TLS When using TLS, the stateless reset token needs to be populated in the QuicConfig early in the session's lifetime to ensure it's correctly encoded in the server's transport parameters. Previously the server would send an all-zeroes token. I've confirmed that EndToEndTestWithTls.SendStatelessResetTokenInShlo fails without the fix and passes with the fix. gfe-relnote: send correct reset token, protected by disabled TLS flag PiperOrigin-RevId: 261374750 Change-Id: I60725c5eb6cedfa1b06cf3797bf258875fb495eb

commit: 4e3e65776a613132d628ca7d2be7571cb26f37c4 [log] [tgz]
author: dschinazi <dschinazi@google.com> Fri Aug 02 12:57:17 2019 -0700
committer: Copybara-Service <copybara-worker@google.com> Fri Aug 02 16:18:42 2019 -0700
tree: 87b888b962cb5c04ff69ab61248250098d66a10a
parent: 43eefae7ff3b3a723826fff477120c40733c6d76 [diff] [blame]
diff --git a/quic/core/quic_session.cc b/quic/core/quic_session.cc
index 1dbaf44..ba53d5e 100644
--- a/quic/core/quic_session.cc
+++ b/quic/core/quic_session.cc

@@ -93,6 +93,10 @@
   closed_streams_clean_up_alarm_ =
       QuicWrapUnique<QuicAlarm>(connection_->alarm_factory()->CreateAlarm(
           new ClosedStreamsCleanUpDelegate(this)));
+  if (perspective() == Perspective::IS_SERVER &&
+      connection_->version().handshake_protocol == PROTOCOL_TLS1_3) {
+    config_.SetStatelessResetTokenToSend(GetStatelessResetToken());
+  }
 }
 
 void QuicSession::Initialize() {
commit	4e3e65776a613132d628ca7d2be7571cb26f37c4	[log] [tgz]
author	dschinazi <dschinazi@google.com>	Fri Aug 02 12:57:17 2019 -0700
committer	Copybara-Service <copybara-worker@google.com>	Fri Aug 02 16:18:42 2019 -0700
tree	87b888b962cb5c04ff69ab61248250098d66a10a
parent	43eefae7ff3b3a723826fff477120c40733c6d76 [diff] [blame]