Skip to content

STOP_SENDING for lower streams on receiving out-of-order higher streams #2875

New issue
New issue
Open
Open
STOP_SENDING for lower streams on receiving out-of-order higher streams#2875
Labels
priority/mediumRank 3size/medium
@NErinola

Description

@NErinola
NErinola
opened on Oct 29, 2025

Observation

The QUIC server sends STOP_SENDING frames for all streams of the same type with lower IDs when it receives a STREAM frame with an unexpected higher ID. After the handshake, STREAM frames may legitimately arrive out-of-order. For example, if a STREAM frame with ID 4 arrives before a STREAM frame with ID 0, the server sends a STOP_SENDING frame for the stream with ID 0. This behavior is not compliant with the QUIC specification and can lead to unnecessary stream terminations under normal network conditions.

PoC

  1. Complete the handshake with the server.
  2. Send a 1-RTT packet containing a STREAM frame for ID 4.
  3. Observe that the server sends a STOP_SENDING frame for the stream with ID 0.

Impact

  • No direct security vulnerability.
  • Natural packet reordering could lead to early stream termination and degraded performance.

Tested Implementation

  • v1.64.0
  • Example Server (Resumption)

Metadata

Metadata

Assignees

No one assigned

    Labels

    priority/mediumRank 3size/medium

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions