IETF Logo Mail Archive

Re: [quicwg/base-drafts] Duplicates are dropped (#1624)

ekr <notifications@github.com> Wed, 01 August 2018 12:30 UTC

Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 93FE2130F67 for <quic-issues@ietfa.amsl.com>; Wed, 1 Aug 2018 05:30:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.009
X-Spam-Level:
X-Spam-Status: No, score=-8.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VAbjW0DeHzc2 for <quic-issues@ietfa.amsl.com>; Wed, 1 Aug 2018 05:29:59 -0700 (PDT)
Received: from out-1.smtp.github.com (out-1.smtp.github.com [192.30.252.192]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B3D41130EB9 for <quic-issues@ietf.org>; Wed, 1 Aug 2018 05:29:59 -0700 (PDT)
Date: Wed, 01 Aug 2018 05:29:58 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1533126598; bh=o9IH+GEKQAvjHUMB8o+aBmLmHEpgw860Yl+Dppqh9BA=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=LvYJaFWdqWqySTabR0/5Is2nW0anKvD8ATsZ0d3y6/Yx/wfbfoR7IQk1Vjn2BYPOn 9+yd0ZU/jm0RPYAsIHVaxezIXm7aVjwbvqwsfEfBdz5o6iugmhVuIyRqO7Y/unNaz9 QGDR5tdqfxQ4BjqlKG7pAVPZ1RwFt9pvkfrP2EV0=
From: ekr <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab0231e0315c32bd58952c6b02948d56a6f7b9bba192cf00000001177969c692a169ce14a685b4@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/1624/c409557936@github.com>
In-Reply-To: <quicwg/base-drafts/pull/1624@github.com>
References: <quicwg/base-drafts/pull/1624@github.com>
Subject: Re: [quicwg/base-drafts] Duplicates are dropped (#1624)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5b61a7c67c472_5bac3f9cbd6d45b82321b8"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: ekr
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/4gMQmOe86NxGybWOoJgaT3bS13s>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.27
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Aug 2018 12:30:02 -0000

I'm with @mt here. It's not that hard to implement the now-conventional
anti-replay techniques, and if we don't do this, then we have to analyze
every single QUIC frame to guarantee it can't cause problems if replayed
(and moreover implementors need to enforce it). To take a simple example
from earlier, consider the flow control frames: if we require duplicate
suppression, then even if you miss the rule about things being
monotonically increasing, things are fine. However, if duplicates are
allowed, and you make that mistake, then attackers can just replay a flow
control frame and force you into a bad posture.

On Wed, Aug 1, 2018 at 12:23 AM, Martin Thomson <notifications@github.com>
wrote:

> I'm going to hold the line on MUST. The protocol doesn't make any sense if
> you get (valid) duplicates and don't discard them. Given that you have to
> track what you are acknowledging, then the only additional cost is the
> threshold, which is nearly zero. It can even *be* zero if you use the
> minimum value from what you are tracking.
>
> What do you gain by having anything less than MUST? That is, other than
> the potential for crazy non-determinism.
>
> —
> You are receiving this because you are subscribed to this thread.
> Reply to this email directly, view it on GitHub
> <https://github.com/quicwg/base-drafts/pull/1624#issuecomment-409476533>,
> or mute the thread
> <https://github.com/notifications/unsubscribe-auth/ABD1oWWTUfo-YA7nAp5RTM_MbNfsmPxAks5uMVd6gaJpZM4Vp4qq>
> .
>


-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/1624#issuecomment-409557936

v2.37.1 | Report a Bug | By Email | System Status