Re: [quicwg/base-drafts] Authenticate connection IDs (#3499)

Mike Bishop <> Wed, 29 April 2020 16:18 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 614123A1398 for <>; Wed, 29 Apr 2020 09:18:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.302
X-Spam-Status: No, score=-2.302 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.82, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id EZJVjKhNYNhP for <>; Wed, 29 Apr 2020 09:18:28 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id E1D3E3A1399 for <>; Wed, 29 Apr 2020 09:18:27 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id F41FD6A0A52 for <>; Wed, 29 Apr 2020 09:18:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1588177107; bh=0ycZ8VT/DF+/cSLyu2p50rk0GhruYRbMrdUuWvyFLuo=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=UKjQkVAmeGtbNCSbL8CvKJOdE2ulhhxa7oe8hcvxit712jKVlVlz6pXTWby0ZCqvQ pWsk+1ch7jLXLdx5Bjs3PwhmwnseWNh2bNDYEFCbQBD8iVg0hxcGppUNCOUsT7Dbcu eYQBI90dcikzOUmffLTJwr2httdXS6rvRaCjiBL4=
Date: Wed, 29 Apr 2020 09:18:26 -0700
From: Mike Bishop <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/pull/3499/review/>
In-Reply-To: <quicwg/base-drafts/pull/>
References: <quicwg/base-drafts/pull/>
Subject: Re: [quicwg/base-drafts] Authenticate connection IDs (#3499)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5ea9a8d2e4391_3dd13ff89decd9682342672"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: MikeBishop
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 29 Apr 2020 16:18:31 -0000

@MikeBishop approved this pull request.

> +treat any of the following as a connection error of type PROTOCOL_VIOLATION:
+* absence of the initial_connection_id transport parameter from either
+  endpoint,
+* absence of the original_connection_id transport parameter from the server,
+* absence of the retry_connection_id transport parameter from the server after
+  receiving a Retry packet,
+* presence of the retry_connection_id transport parameter when no Retry packet
+  was received, or
+* a mismatch between values received from a peer in these transport parameters
+  and the value sent in the corresponding Destination Connection ID fields of
+  Initial packets.

  Initial packets or the Source Connection ID field of a Retry packet.
...though perhaps this is fine, since the client will then use this value as its DCID for the next Initial packet.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: