Skip to content

Commit 889f6cd

Browse files
DavidSchinaziDavidSchinazi
committed
reflow
1 parent eb9af6b commit 889f6cd

File tree

1 file changed

+8
-8
lines changed

1 file changed

+8
-8
lines changed

draft-ietf-quic-version-negotiation.md

+8-8
Original file line numberDiff line numberDiff line change
@@ -421,8 +421,8 @@ As an example, let's assume a client supports hypothetical QUIC versions 10, 12,
421421
and 14 with a preference for higher versions. The client initiates a connection
422422
attempt with version 12. Let's explore two independent example scenarios:
423423

424-
* In the first scenario, the server supports versions 10, 13, and 14 but only
425-
13 and 14 are Fully-Deployed. The server sends a Version Negotiation packet with
424+
* In the first scenario, the server supports versions 10, 13, and 14 but only 13
425+
and 14 are Fully-Deployed. The server sends a Version Negotiation packet with
426426
versions 10, 13, and 14. This triggers an incompatible version negotiation and
427427
the client initiates a new connection with version 14. Then the server's Other
428428
Versions field contains 13 and 14. In that scenario, the client would have
@@ -431,12 +431,12 @@ attempt with version 12. Let's explore two independent example scenarios:
431431

432432
* In the second scenario, the server supports versions 10, 13, and 14 and they
433433
are all Fully-Deployed. However, the attacker forges a Version Negotiation
434-
packet with versions 10 and 13. This triggers an incompatible version negotiation and the
435-
client initiates a new connection with version 10. Then the server's Other
436-
Versions field contains 10, 13 and 14. In that scenario, the client would have
437-
picked 14 instead of 10 if it had received a Version Negotiation packet with
438-
versions 10, 13 and 14, therefore the client aborts the handshake with a
439-
version negotiation error.
434+
packet with versions 10 and 13. This triggers an incompatible version
435+
negotiation and the client initiates a new connection with version 10. Then
436+
the server's Other Versions field contains 10, 13 and 14. In that scenario,
437+
the client would have picked 14 instead of 10 if it had received a Version
438+
Negotiation packet with versions 10, 13 and 14, therefore the client aborts
439+
the handshake with a version negotiation error.
440440

441441
This validation of Other Versions is not sufficient to prevent downgrade.
442442
Downgrade prevention also depends on the client ignoring Version Negotiation

0 commit comments

Comments
 (0)