[quicwg/base-drafts] 6f9f8d: Curtail CONNECTION_CLOSE for small Initial
Martin Thomson <noreply@github.com> Wed, 12 February 2020 00:02 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C644412006D for <quic-issues@ietfa.amsl.com>; Tue, 11 Feb 2020 16:02:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7
X-Spam-Level:
X-Spam-Status: No, score=-7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 40N1AB7f6olo for <quic-issues@ietfa.amsl.com>; Tue, 11 Feb 2020 16:02:42 -0800 (PST)
Received: from out-2.smtp.github.com (out-2.smtp.github.com [192.30.252.193]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E2DBA12004C for <quic-issues@ietf.org>; Tue, 11 Feb 2020 16:02:41 -0800 (PST)
Date: Tue, 11 Feb 2020 16:02:40 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1581465761; bh=yEVlj+pzQ9jN1hPSmqHk1bGxTLE3AxZbXK1mC5JEAbo=; h=Date:From:To:Subject:From; b=gEy9i98hF8GmJJOIZgcByc3fy1kOYC+/HGrvYmg7MT0lPndzBij1Ks2vBcCB5bxn/ F74Xz5JTPQ4nNo5B5E7FL5PCwU4w205oLhAz8elQ8f3dzyf6jDCAh7ub+lnLmFKo1r 8YjFlbcCOnquV4EZjUOkxROnw35Gv47ol8JqzaQA=
From: Martin Thomson <noreply@github.com>
To: quic-issues@ietf.org
Message-ID: <quicwg/base-drafts/push/refs/heads/master/922bd6-f45e58@github.com>
Subject: [quicwg/base-drafts] 6f9f8d: Curtail CONNECTION_CLOSE for small Initial
Mime-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-Auto-Response-Suppress: All
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/0HSpIH4uUMr2zkRNSVHPq-YNdw0>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Feb 2020 00:02:47 -0000
Branch: refs/heads/master Home: https://github.com/quicwg/base-drafts Commit: 6f9f8d7ffca4eed3373bb9f64261f85fd5f76b1a https://github.com/quicwg/base-drafts/commit/6f9f8d7ffca4eed3373bb9f64261f85fd5f76b1a Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-09 (Mon, 09 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Curtail CONNECTION_CLOSE for small Initial This is trickier than I had imagined. Sending CONNECTION_CLOSE is probably fine, but it's harder to do this correctly now. You can't just send an unauthenticated CONNECTION_CLOSE because that might disrupt a real connection. So there are two goals in tension: 1. Don't kill an active connection (attempt) unnecessarily. 2. Provide feedback about errors. The observation is that an attacker can disrupt connections by eliciting a CONNECTION_CLOSE, so feedback naturally leads to an exposure to a DoS attack. That's unfortunate, but we have established that we don't care about DoS by an on-path attacker prior to handshake completion. Anything we do here has got to be best effort. DoS prevention would say that you just discard junk, and that is probably the right answer. But we have a number of cases where the robustness of the system depends on getting feedback. Either way, we agreed to allow CONNECTION_CLOSE in Initial, so the exposure exists anyway. So this contains advice. Maybe too much advice, but I thought that I'd see what people thought. Closes #3269. Commit: ffa7f98abc53f92a0e98fe927e65cea492736e4c https://github.com/quicwg/base-drafts/commit/ffa7f98abc53f92a0e98fe927e65cea492736e4c Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-10 (Tue, 10 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Add point about off-path packets to handshake DoS section Commit: 173d00664bd9c547cd042401621e80bed802e7dc https://github.com/quicwg/base-drafts/commit/173d00664bd9c547cd042401621e80bed802e7dc Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-10 (Tue, 10 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Reword Commit: a2f06723986f303023c8fcfc8bd9c3a5ddb5368c https://github.com/quicwg/base-drafts/commit/a2f06723986f303023c8fcfc8bd9c3a5ddb5368c Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-10 (Tue, 10 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Does this help? Commit: e99cd67f95601f37b2b6930f28693b7d3a1044aa https://github.com/quicwg/base-drafts/commit/e99cd67f95601f37b2b6930f28693b7d3a1044aa Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-11 (Wed, 11 Dec 2019) Changed paths: M draft-ietf-quic-transport.md A metadata.min.js Log Message: ----------- Merge branch 'master' into close-small-initial Commit: f302f3ec69913684ce35c61df7fb0fd9a461e3bf https://github.com/quicwg/base-drafts/commit/f302f3ec69913684ce35c61df7fb0fd9a461e3bf Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-11 (Wed, 11 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Stateless immediate close This says that immediate close when you don't have state doesn't have to establish state. Thus, if an endpoint has to immediately close, which can do so without entering the closing period, which would establish state. It makes a general statement, which is that during the handshake - that is, for unauthenticated inputs - packets can be discarded rather than causing an immediate close. This greatly simplifies the text for a small initial. Now it only needs to say "MUST discard, MAY immediate close as well". Commit: 7864bda6e4dd98d9e033ce49be4350d849b7f361 https://github.com/quicwg/base-drafts/commit/7864bda6e4dd98d9e033ce49be4350d849b7f361 Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-11 (Wed, 11 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Rewording suggestions Co-Authored-By: Jana Iyengar <jri.ietf@gmail.com> Commit: 47228989491e2cdf3606c5d9745c43fb8aac2afd https://github.com/quicwg/base-drafts/commit/47228989491e2cdf3606c5d9745c43fb8aac2afd Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-11 (Wed, 11 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Rewrap Commit: 6971443498f64d31ec7bebeadfe2215e21c4b19a https://github.com/quicwg/base-drafts/commit/6971443498f64d31ec7bebeadfe2215e21c4b19a Author: Martin Thomson <mt@lowentropy.net> Date: 2019-12-11 (Wed, 11 Dec 2019) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Refer to fields properly Commit: 5020e34e82d19398cb90acb3a450d6e140e4bf9a https://github.com/quicwg/base-drafts/commit/5020e34e82d19398cb90acb3a450d6e140e4bf9a Author: Martin Thomson <mt@lowentropy.net> Date: 2020-02-12 (Wed, 12 Feb 2020) Changed paths: M draft-ietf-quic-http.md M draft-ietf-quic-qpack.md M draft-ietf-quic-recovery.md M draft-ietf-quic-tls.md M draft-ietf-quic-transport.md R initial-protection.js R metadata.min.js A protection-samples.js Log Message: ----------- Merge branch 'master' into close-small-initial Commit: f45e58d6934099faa40a8d569e50b2bcf21015db https://github.com/quicwg/base-drafts/commit/f45e58d6934099faa40a8d569e50b2bcf21015db Author: Martin Thomson <mt@lowentropy.net> Date: 2020-02-12 (Wed, 12 Feb 2020) Changed paths: M draft-ietf-quic-transport.md Log Message: ----------- Merge pull request #3292 from quicwg/close-small-initial Define stateless CONNECTION_CLOSE Compare: https://github.com/quicwg/base-drafts/compare/922bd62ad235...f45e58d69340
- [quicwg/base-drafts] 6f9f8d: Curtail CONNECTION_C… Martin Thomson