Re: [quicwg/base-drafts] Remove amplification throttle if the server receives Initial that echoes its high entropy SCID. (#3834)
Christian Huitema <notifications@github.com> Wed, 08 July 2020 02:11 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAE193A0FAC for <quic-issues@ietfa.amsl.com>; Tue, 7 Jul 2020 19:11:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.009
X-Spam-Level:
X-Spam-Status: No, score=-2.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_16=1.092, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id anL_WX1Skcmq for <quic-issues@ietfa.amsl.com>; Tue, 7 Jul 2020 19:11:20 -0700 (PDT)
Received: from out-27.smtp.github.com (out-27.smtp.github.com [192.30.252.210]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BEB4D3A0FAB for <quic-issues@ietf.org>; Tue, 7 Jul 2020 19:11:20 -0700 (PDT)
Received: from github-lowworker-ca5950c.va3-iad.github.net (github-lowworker-ca5950c.va3-iad.github.net [10.48.17.57]) by smtp.github.com (Postfix) with ESMTP id 02459E0AB5 for <quic-issues@ietf.org>; Tue, 7 Jul 2020 19:11:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1594174280; bh=fFMxihvU0sjrqqENc6ac4rrD43GuPAtZfSttR8Pi33s=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=xr18EUK2yhGjIgEHl1hO4XQx5dJ0Op7U4PxWYpYwhvmr30erJKTuZxGlNP370/WFK IFlOZ327oAV0LAAHqdzcX2HEvaLnD7d1NhwCIf6HId3AMd21dr4Sn5MLYzbjki8PUf JAwYA6o0BiTDQKKTQmNuVpb7w2J98ysdZtwzf9cI=
Date: Tue, 07 Jul 2020 19:11:19 -0700
From: Christian Huitema <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJK46GA2R6CHQ2L74UGF5CEGEPEVBNHHCN2E4VA@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/3834/655238040@github.com>
In-Reply-To: <quicwg/base-drafts/issues/3834@github.com>
References: <quicwg/base-drafts/issues/3834@github.com>
Subject: Re: [quicwg/base-drafts] Remove amplification throttle if the server receives Initial that echoes its high entropy SCID. (#3834)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5f052b47e71e2_48a43fa8890cd96c1065fd"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: huitema
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/KJebD5T6_eOjjDadd8piEgAmNfo>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jul 2020 02:11:22 -0000
The server could also inject entropy by selecting a large sequence number for the Initial packet. In theory nothing would break if the server picked a random 61 bit number for the first Initial packet instead of zero. If the client acks that and repeats the proper CID, then the server can legitimately assume that the client's address is validated. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/3834#issuecomment-655238040
- [quicwg/base-drafts] Remove amplification throttl… ekr
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… ekr
- Re: [quicwg/base-drafts] Remove amplification thr… Marten Seemann
- Re: [quicwg/base-drafts] Remove amplification thr… ekr
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… ekr
- Re: [quicwg/base-drafts] Remove amplification thr… Marten Seemann
- Re: [quicwg/base-drafts] Remove amplification thr… Christian Huitema
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… Christian Huitema
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… Mike Bishop
- Re: [quicwg/base-drafts] Remove amplification thr… ianswett
- Re: [quicwg/base-drafts] Remove amplification thr… ekr
- Re: [quicwg/base-drafts] Remove amplification thr… Christian Huitema
- Re: [quicwg/base-drafts] Remove amplification thr… Jana Iyengar
- Re: [quicwg/base-drafts] Remove amplification thr… Lucas Pardue
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… Lars Eggert
- Re: [quicwg/base-drafts] Remove amplification thr… ianswett
- Re: [quicwg/base-drafts] Remove amplification thr… Lars Eggert
- Re: [quicwg/base-drafts] Remove amplification thr… Jana Iyengar
- Re: [quicwg/base-drafts] Remove amplification thr… Jana Iyengar
- Re: [quicwg/base-drafts] Remove amplification thr… MikkelFJ
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… MikkelFJ
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson
- Re: [quicwg/base-drafts] Remove amplification thr… Martin Thomson