Re: [quicwg/base-drafts] Invert the connection ID logic during the handshake (#442)
Igor Lubashev <notifications@github.com> Wed, 26 April 2017 03:27 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4DC921204DA for <quic-issues@ietfa.amsl.com>; Tue, 25 Apr 2017 20:27:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.3
X-Spam-Level:
X-Spam-Status: No, score=-9.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-2.8, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aMQ698aLYMMC for <quic-issues@ietfa.amsl.com>; Tue, 25 Apr 2017 20:27:24 -0700 (PDT)
Received: from github-smtp2b-ext-cp1-prd.iad.github.net (github-smtp2-ext2.iad.github.net [192.30.252.193]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C820512426E for <quic-issues@ietf.org>; Tue, 25 Apr 2017 20:27:23 -0700 (PDT)
Date: Tue, 25 Apr 2017 20:27:23 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1493177243; bh=9QyRHKYHdAkK46dQus/i7D8xWbyh50RnTtPCUPKxzIg=; h=From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=0V3TBjC0uQt3olKbtj7dp4UU6JHv0mHiaSRc+Y3r0iqOQgE6jvD7l4m1hfHozZwMb iv1+XtdjI3RdK+2DFgdf+s73rydsMilQyLbOL0WVFwC2xWAaBFGsQGh9AKbgw0lv8s oJ4xgcDW9X0dut71SNcKgSDJQO2TGppd/uzsGrLE=
From: Igor Lubashev <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab9e2bf0748b9fce0c90e999e2fcb7c842d047a26492cf000000011517d59b92a169ce0d441b68@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/442/297227297@github.com>
In-Reply-To: <quicwg/base-drafts/issues/442@github.com>
References: <quicwg/base-drafts/issues/442@github.com>
Subject: Re: [quicwg/base-drafts] Invert the connection ID logic during the handshake (#442)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5900139b10ebf_63863fd42a353c3c4268e"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: igorlord
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/Jgmjbh7On0b3YYRvzv87W8v0YWg>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Apr 2017 03:27:26 -0000
The goal of the design is to support long-lived QUIC connections, especially across network migrations (wifi <-> cellular, for example). The initial few packets would need to be handled "statefully" by the load balancers, but the server-generated ConnectionID would include bits that help the load balancers identify the server handling this connection. Hence, CDN load balancers would be able to continue routing the packets correctly even if they start reaching a different load balancer, which can be in the same or even a completely different pop.
On Tuesday, April 25, 2017 4:46 PM, MikkelFJ <notifications@github.com> wrote:
Perhaps I am missing something fundamental, butIf a stream is set up during 0rtt or clear text, the stream cannot continue once the client id changes to server id if loadbalancers route traffic elsewhere when the id is updated. All the state machinery won't work.It's fine to have stateless setup, but then it needs to a UDP oriented approach such that streams and retransmissions are removed during this phase and replaced with a simpler retry until success. For example, periodically sent ClientHello until ServerFinal is received, and there would be no ServerNonFinal because that is stateful. ServerNonFinal is problematic regardless because it is not ordered by a stream, so this makes structuring the handshake rather complex.For 0RTT the entire point is to start early - so here the routing needs to reach a stateful server early. But then again, as long as replay attacks are not solved for 0RTT, they have limited.—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/442#issuecomment-297227297
- [quicwg/base-drafts] Invert the connection ID log… Martin Thomson
- Re: [quicwg/base-drafts] Invert the connection ID… MikkelFJ
- Re: [quicwg/base-drafts] Invert the connection ID… MikkelFJ
- Re: [quicwg/base-drafts] Invert the connection ID… janaiyengar
- Re: [quicwg/base-drafts] Invert the connection ID… Igor Lubashev
- Re: [quicwg/base-drafts] Invert the connection ID… Martin Thomson
- Re: [quicwg/base-drafts] Invert the connection ID… Brian Trammell
- Re: [quicwg/base-drafts] Invert the connection ID… martinduke
- Re: [quicwg/base-drafts] Invert the connection ID… Martin Thomson
- Re: [quicwg/base-drafts] Invert the connection ID… Martin Thomson