IETF Logo Mail Archive

[quicwg/base-drafts] Can Finished be sent as 1-RTT data? (#785)

Christian Huitema <notifications@github.com> Wed, 20 September 2017 16:44 UTC

Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4C4B133020 for <quic-issues@ietfa.amsl.com>; Wed, 20 Sep 2017 09:44:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.616
X-Spam-Level:
X-Spam-Status: No, score=-0.616 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_28=1.404, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uzNlWOV8z6w4 for <quic-issues@ietfa.amsl.com>; Wed, 20 Sep 2017 09:44:05 -0700 (PDT)
Received: from o1.sgmail.github.com (o1.sgmail.github.com [192.254.114.176]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AD64913202D for <quic-issues@ietf.org>; Wed, 20 Sep 2017 09:44:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=Yl7Bd9Iozlccdk2g1d74ZEaAwLo=; b=ko2mbWw6fM6/UzDt nblBK/3uKlpqc3Q3UiVdmRJKeiVFbrwSx2H38FNApSk96whkBgviYWcFrnPV2KJ0 6gfxgsX3NJWhNivH0oZHUZsEEazCotAWO/A3pIR3Cka/WFtocw8GploL7vyJ2akP dMXznreQcdqJgvl8VfU2rt3VZHc=
Received: by filter0975p1mdw1.sendgrid.net with SMTP id filter0975p1mdw1-31678-59C29AD4-1A 2017-09-20 16:44:04.751148367 +0000 UTC
Received: from github-smtp2a-ext-cp1-prd.iad.github.net (github-smtp2a-ext-cp1-prd.iad.github.net [192.30.253.16]) by ismtpd0008p1iad1.sendgrid.net (SG) with ESMTP id eNVF2ahBQaSLt2wAUQbhAg for <quic-issues@ietf.org>; Wed, 20 Sep 2017 16:44:04.621 +0000 (UTC)
Date: Wed, 20 Sep 2017 16:44:04 +0000
From: Christian Huitema <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab103b27830f741c472deff078da4f899ec34e3d5b92cf0000000115da5cd492a169ce0f7388f0@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/785@github.com>
Subject: [quicwg/base-drafts] Can Finished be sent as 1-RTT data? (#785)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_59c29ad429399_7c9a3fcd85a9ef88434d9"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: huitema
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak0HpnnDR03SKd8J9GMhGC+w5S1oDfNuyg08T/ TwjvoVv+7u4MT3OYnUMvx0qcSaRrwD/9ugspQahEc3zWesEWLyuvBq9H6l3j1iMw9rUUtaGuwVj+bL tcim6G4EPrvHUqTd9Meev+Gi0GEz1/8ED9arWNX1781GBfWan1UV1B9IkeJE9JmcnA0Agw3cmy15s8 g=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/0N4TxLnLnGQKqyKa5cctU65isTQ>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Sep 2017 16:44:07 -0000

I know that in TLS 1.3, the answer is no. But the TLS answer applies to TLS over TCP, for which TLS manages the transition from handshake data to application data. QUIC is arguably different. The stream zero frame will carry the Finished message as an encrypted handshake message. But the spec is a bit ambiguous as to whether this stream zero frame shall be carried as "Client Clear Text" or "1-RTT Data". 

I would much prefer 1-RTT data, because of repetition handling. If we imposed Client Clear Text, and the packet is lost, the stream zero frame will have to be retransmitted again as client clear text. That means interleaving clear text data and encrypted data within a single set of sequence number, and I am convinced that that can be abused to carry some kind of denial of service.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/785

v2.39.1 | Report a Bug | By Email | System Status