Date: Fri, 20 Apr 2018 17:48:54 +0000 (UTC)
From: Mike Bishop <notifications@github.com>
Reply-To: quicwg/base-drafts
 <reply+0166e4ab7120324a9967bd2e458dc5517a6c0ad8a03b9adf92cf0000000116f1ea0692a169ce12d68139@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/1307/review/114065522@github.com>
In-Reply-To: <quicwg/base-drafts/pull/1307@github.com>
References: <quicwg/base-drafts/pull/1307@github.com>
Subject: Re: [quicwg/base-drafts] Change Packet Number Gap to Packet Number
 Offset (#1307)
Mime-Version: 1.0
Content-Type: multipart/alternative;
 boundary="--==_mimepart_5ada28067878a_78013fb188d04f841286dd";
 charset=UTF-8
Content-Transfer-Encoding: 7bit
Precedence: list
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/L-oghKVSNAzKvZpC9Y21FVHY80Y>

----==_mimepart_5ada28067878a_78013fb188d04f841286dd
Content-Type: text/plain;
 charset=UTF-8
Content-Transfer-Encoding: 7bit

MikeBishop requested changes on this pull request.

I think @marten-seemann is correct -- this solution only makes sense as a transform on every packet, not just as something to do on particular packets with a new CID.  That's my key feedback on fixing the PR.

On the proposal itself, however, I share @huitema's concerns that correlation of gaps between flows is still possible.  A future PR for a shuffle can make that harder for an observer, but only so much (observing over the shuffle window, you can perform the same analysis).

> @@ -832,6 +832,27 @@ Use of a secure random number generator {{?RFC4086}} is not necessary for
 generating the initial packet number, nor is it necessary that the value be
 uniformly distributed.
 
+### New Connection ID Packet Numbers
+
+Packets with with new connection IDs have special rules for encoding the packet
+number in the headers.  They use an offset (see {{packet-number-offset}}) to
+transform the packet number via the following:

The gap in the actual packet number was introduced at the point you sent the first packet with a new CID.  This proposal is a transformation of the actual packet number for wire presentation, so it needs to occur every time.

> @@ -832,6 +832,27 @@ Use of a secure random number generator {{?RFC4086}} is not necessary for
 generating the initial packet number, nor is it necessary that the value be
 uniformly distributed.
 
+### New Connection ID Packet Numbers
+
+Packets with with new connection IDs have special rules for encoding the packet
+number in the headers.  They use an offset (see {{packet-number-offset}}) to
+transform the packet number via the following:
+
+~~~
+transformed_packet_number = (packet_number + offset) % 2^62

This might actually be okay, but the possibility that the transformed packet number might wrap around to zero before being truncated feels a little odd.

> @@ -832,6 +832,27 @@ Use of a secure random number generator {{?RFC4086}} is not necessary for
 generating the initial packet number, nor is it necessary that the value be
 uniformly distributed.
 
+### New Connection ID Packet Numbers
+
+Packets with with new connection IDs have special rules for encoding the packet
+number in the headers.  They use an offset (see {{packet-number-offset}}) to
+transform the packet number via the following:
+
+~~~
+transformed_packet_number = (packet_number + offset) % 2^62
+~~~
+
+Once transformed, the normal rules of packet number encoding are followed, only
+encoding the least number of bits required.

"only" and "the least" feels duplicative.  Maybe just replace the part with the comma with a reference to the section where the truncation is defined?

Better yet, since this is effectively a transform on every packet number, put this in the section about truncation (it becomes a description of how the 64-bit number is encoded on the wire) and make this section purely about determining what the offset will be.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/1307#pullrequestreview-114065522
----==_mimepart_5ada28067878a_78013fb188d04f841286dd
Content-Type: text/html;
 charset=UTF-8
Content-Transfer-Encoding: 7bit

<p><b>@MikeBishop</b> requested changes on this pull request.</p>

<p>I think <a class="user-mention" data-hovercard-user-id="1478487" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/marten-seemann">@marten-seemann</a> is correct -- this solution only makes sense as a transform on every packet, not just as something to do on particular packets with a new CID.  That's my key feedback on fixing the PR.</p>
<p>On the proposal itself, however, I share <a class="user-mention" data-hovercard-user-id="7464128" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/huitema">@huitema</a>'s concerns that correlation of gaps between flows is still possible.  A future PR for a shuffle can make that harder for an observer, but only so much (observing over the shuffle window, you can perform the same analysis).</p><hr>

<p>In <a href="https://github.com/quicwg/base-drafts/pull/1307#discussion_r183121350">draft-ietf-quic-transport.md</a>:</p>
<pre style='color:#555'>&gt; @@ -832,6 +832,27 @@ Use of a secure random number generator {{?RFC4086}} is not necessary for
 generating the initial packet number, nor is it necessary that the value be
 uniformly distributed.
 
+### New Connection ID Packet Numbers
+
+Packets with with new connection IDs have special rules for encoding the packet
+number in the headers.  They use an offset (see {{packet-number-offset}}) to
+transform the packet number via the following:
</pre>
<p>The gap in the actual packet number was introduced at the point you sent the first packet with a new CID.  This proposal is a transformation of the actual packet number for wire presentation, so it needs to occur every time.</p>

<hr>

<p>In <a href="https://github.com/quicwg/base-drafts/pull/1307#discussion_r183122022">draft-ietf-quic-transport.md</a>:</p>
<pre style='color:#555'>&gt; @@ -832,6 +832,27 @@ Use of a secure random number generator {{?RFC4086}} is not necessary for
 generating the initial packet number, nor is it necessary that the value be
 uniformly distributed.
 
+### New Connection ID Packet Numbers
+
+Packets with with new connection IDs have special rules for encoding the packet
+number in the headers.  They use an offset (see {{packet-number-offset}}) to
+transform the packet number via the following:
+
+~~~
+transformed_packet_number = (packet_number + offset) % 2^62
</pre>
<p>This might actually be okay, but the possibility that the transformed packet number might wrap around to zero before being truncated feels a little odd.</p>

<hr>

<p>In <a href="https://github.com/quicwg/base-drafts/pull/1307#discussion_r183122787">draft-ietf-quic-transport.md</a>:</p>
<pre style='color:#555'>&gt; @@ -832,6 +832,27 @@ Use of a secure random number generator {{?RFC4086}} is not necessary for
 generating the initial packet number, nor is it necessary that the value be
 uniformly distributed.
 
+### New Connection ID Packet Numbers
+
+Packets with with new connection IDs have special rules for encoding the packet
+number in the headers.  They use an offset (see {{packet-number-offset}}) to
+transform the packet number via the following:
+
+~~~
+transformed_packet_number = (packet_number + offset) % 2^62
+~~~
+
+Once transformed, the normal rules of packet number encoding are followed, only
+encoding the least number of bits required.
</pre>
<p>"only" and "the least" feels duplicative.  Maybe just replace the part with the comma with a reference to the section where the truncation is defined?</p>
<p>Better yet, since this is effectively a transform on every packet number, put this in the section about truncation (it becomes a description of how the 64-bit number is encoded on the wire) and make this section purely about determining what the offset will be.</p>

<p style="font-size:small;-webkit-text-size-adjust:none;color:#666;">&mdash;<br />You are receiving this because you are subscribed to this thread.<br />Reply to this email directly, <a href="https://github.com/quicwg/base-drafts/pull/1307#pullrequestreview-114065522">view it on GitHub</a>, or <a href="https://github.com/notifications/unsubscribe-auth/AWbkq8cRDbKvvDXHFP0wc0-QmZ7pijxgks5tqh-GgaJpZM4Tch4q">mute the thread</a>.<img src="https://github.com/notifications/beacon/AWbkq1c35Y9LMplDzhYFxcdiwKmxAfuRks5tqh-GgaJpZM4Tch4q.gif" height="1" width="1" alt="" /></p>
<div itemscope itemtype="http://schema.org/EmailMessage">
<div itemprop="action" itemscope itemtype="http://schema.org/ViewAction">
  <link itemprop="url" href="https://github.com/quicwg/base-drafts/pull/1307#pullrequestreview-114065522"></link>
  <meta itemprop="name" content="View Pull Request"></meta>
</div>
<meta itemprop="description" content="View this Pull Request on GitHub"></meta>
</div>

<script type="application/json" data-scope="inboxmarkup">{"api_version":"1.0","publisher":{"api_key":"05dde50f1d1a384dd78767c55493e4bb","name":"GitHub"},"entity":{"external_key":"github/quicwg/base-drafts","title":"quicwg/base-drafts","subtitle":"GitHub repository","main_image_url":"https://cloud.githubusercontent.com/assets/143418/17495839/a5054eac-5d88-11e6-95fc-7290892c7bb5.png","avatar_image_url":"https://cloud.githubusercontent.com/assets/143418/15842166/7c72db34-2c0b-11e6-9aed-b52498112777.png","action":{"name":"Open in GitHub","url":"https://github.com/quicwg/base-drafts"}},"updates":{"snippets":[{"icon":"PERSON","message":"@MikeBishop requested changes on #1307"}],"action":{"name":"View Pull Request","url":"https://github.com/quicwg/base-drafts/pull/1307#pullrequestreview-114065522"}}}</script>
----==_mimepart_5ada28067878a_78013fb188d04f841286dd--