[quicwg/base-drafts] Why does stateless reset have to be checked after MAC failure (#2152)
ekr <notifications@github.com> Thu, 13 December 2018 19:41 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC655130E43 for <quic-issues@ietfa.amsl.com>; Thu, 13 Dec 2018 11:41:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.842
X-Spam-Level:
X-Spam-Status: No, score=-7.842 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RwoQPTitor-N for <quic-issues@ietfa.amsl.com>; Thu, 13 Dec 2018 11:41:30 -0800 (PST)
Received: from out-1.smtp.github.com (out-1.smtp.github.com [192.30.252.192]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E1E76130E3F for <quic-issues@ietf.org>; Thu, 13 Dec 2018 11:41:29 -0800 (PST)
Date: Thu, 13 Dec 2018 11:41:28 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1544730088; bh=/dkIEvLmOBuDVdsJu+0Avs505zu7qXannuZgT3s8Qpc=; h=Date:From:Reply-To:To:Cc:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=U/dKJIeKSZlZKhCYeoY9qLdhG0uhJsoiedGSjs0gmENNZ6BjElCU7q3QYX+l0GJ22 KWTn3wgqOgW0X3hGshPCnzyKiAHT+q3aTgOG8bkXBjqj5ck93qVQjCdTE4h8CrLxmp 6jou9F9sdO9ZtGtA2d+4U5wI+m+Q9hal7pu+koWo=
From: ekr <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abe27f5e353ca8678041fbae0408a0a4468427f3eb92cf00000001182a77e892a169ce174b967d@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/2152@github.com>
Subject: [quicwg/base-drafts] Why does stateless reset have to be checked after MAC failure (#2152)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5c12b5e8104ab_fe03fd0002d45b438373"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: ekr
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/Dnw8LyJz6NtYP01GWR2UAcw3-kk>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Dec 2018 19:41:32 -0000
``` An endpoint detects a potential stateless reset when a packet with a short header either cannot be decrypted or is marked as a duplicate packet. The endpoint then compares the last 16 bytes of the packet with the Stateless Reset Token provided by its peer, either in a NEW_CONNECTION_ID frame or the server's transport parameters. If these values are identical, the endpoint MUST enter the draining period and not send any further packets on this connection. If the comparison fails, the packet can be discarded. ``` Why does the text mandate this order? You need a constant time comparison in any case. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/2152
- [quicwg/base-drafts] Why does stateless reset hav… ekr
- Re: [quicwg/base-drafts] Why does stateless reset… Mike Bishop
- Re: [quicwg/base-drafts] Why does stateless reset… ekr
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… Kazuho Oku
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… MikkelFJ
- Re: [quicwg/base-drafts] Why does stateless reset… Kazuho Oku
- Re: [quicwg/base-drafts] Why does stateless reset… Kazuho Oku
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… Kazuho Oku
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… Kazuho Oku
- Re: [quicwg/base-drafts] Why does stateless reset… ekr
- Re: [quicwg/base-drafts] Why does stateless reset… Jana Iyengar
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… Christian Huitema
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson
- Re: [quicwg/base-drafts] Why does stateless reset… Jana Iyengar
- Re: [quicwg/base-drafts] Why does stateless reset… Lars Eggert
- Re: [quicwg/base-drafts] Why does stateless reset… Martin Thomson