# HG changeset patch
# User Roman Arutyunyan <arut@nginx.com>
# Date 1685258227 -14400
# Node ID b4a57278bf24dd28d39afea0eb09732c05bf1606
# Parent  6c75d2484267b2a1e0d98a7a6ccd3c78c09a0816
QUIC: fixed compat with ciphers other than AES128 (ticket #2500).

Previously, rec.level field was not uninitialized in SSL_provide_quic_data().
As a result, its value was always ssl_encryption_initial.  Later in
ngx_quic_ciphers() such level resulted in resetting the cipher to
TLS1_3_CK_AES_128_GCM_SHA256 and using AES128 to encrypt the packet.

Now the level is initialized and the right cipher is used.

diff -r 6c75d2484267 -r b4a57278bf24 src/event/quic/ngx_event_quic_openssl_compat.c
--- a/src/event/quic/ngx_event_quic_openssl_compat.c	Mon May 29 15:03:31 2023 +0400
+++ b/src/event/quic/ngx_event_quic_openssl_compat.c	Sun May 28 11:17:07 2023 +0400
@@ -463,6 +463,7 @@
         rec.log = c->log;
         rec.number = com->read_record++;
         rec.keys = &com->keys;
+        rec.level = level;
 
         if (level == ssl_encryption_initial) {
             n = ngx_min(len, 65535);