cargo / quinn-proto

quinn-proto

cargo

State machine for the QUIC transport protocol

Audits

PE Patrick Elsen 2026-05-28

quinn-proto@0.11.14 · 1 finding

quinn-proto 0.11.14 is the sans-I/O QUIC protocol state machine (RFC 9000). The codebase contains exactly five unsafe blocks, all calling VarInt::from_u64_unchecked with structurally bounded values; the invariants hold but lack SAFETY comments (one low-severity finding). The anti-amplification limit, retry/validation token handling, frame parser, and stream-count enforcement were reviewed and are correct. Crypto is delegated to rustls. Four fuzz targets cover the untrusted-input surface.

concurrency-documentedconcurrency-safecrypto-safehas-binarieshas-build-exechas-fuzz-testshas-install-exechas-integration-testshas-property-testshas-unit-testsimpl-algorithmimpl-concurrencyimpl-cryptoimpl-datastructureimpl-interpreterimpl-jitimpl-parserimpl-protocolis-benignparser-impl-safeparser-impl-testedprotocol-impl-safeprotocol-impl-testedunsafe-documentedunsafe-minimalunsafe-safeunsafe-testeduses-concurrencyuses-cryptouses-environmentuses-execuses-filesystemuses-interpreteruses-jituses-networkuses-unsafe