-
Notifications
You must be signed in to change notification settings - Fork 204
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use CONNECTION_CLOSE rather than CRYPTO_CLOSE #1477
Changes from 1 commit
0acc8f8
9b80c45
a77b066
d768347
d4ec8a5
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -605,12 +605,12 @@ HelloRetryRequest is still used for incorrect key shares. | |
If TLS experiences an error, it generates an appropriate alert as defined in | ||
Section 6 of {{TLS13}}. | ||
|
||
A TLS alert is turned into a QUIC connection error by converting the alert | ||
description into a QUIC error code. The alert description is added to 0x200 to | ||
produce a QUIC error code from the range reserved for CRYPTO_ERROR. The | ||
resulting value is sent in a QUIC CONNECTION_CLOSE frame. | ||
A TLS alert is turned into a QUIC connection error by converting the one-octet | ||
alert description into a QUIC error code. The alert description is added to | ||
0x200 to produce a QUIC error code from the range reserved for CRYPTO_ERROR. | ||
The resulting value is sent in a QUIC CONNECTION_CLOSE frame. | ||
|
||
The alert level of all TLS alerts is "fatal", a TLS stack does not generate | ||
The alert level of all TLS alerts is "fatal", a TLS stack MUST NOT generate | ||
alerts at the "warning" level. | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. This is a bit confusing because stacks can in fact do that. Maybe MUST NOT? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I thought that this was OK. TLS 1.3 prohibits use of warning for anything but close_notify, and we don't allow TLS to close. I guess that MUST NOT isn't a problem though. |
||
|
||
|
||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Comma splice. Separate sentences or
;
.