[quicwg/base-drafts] Two CHs handling the same SH (#4090)
ekr <notifications@github.com> Thu, 10 September 2020 22:14 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2CA4A3A0FAA for <quic-issues@ietfa.amsl.com>; Thu, 10 Sep 2020 15:14:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.696
X-Spam-Level:
X-Spam-Status: No, score=-1.696 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_28=1.404, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zWgU5MhfyHaz for <quic-issues@ietfa.amsl.com>; Thu, 10 Sep 2020 15:14:31 -0700 (PDT)
Received: from out-26.smtp.github.com (out-26.smtp.github.com [192.30.252.209]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 903B13A1140 for <quic-issues@ietf.org>; Thu, 10 Sep 2020 15:14:24 -0700 (PDT)
Received: from github-lowworker-e8b54ca.ac4-iad.github.net (github-lowworker-e8b54ca.ac4-iad.github.net [10.52.23.39]) by smtp.github.com (Postfix) with ESMTP id C73B15E0F13 for <quic-issues@ietf.org>; Thu, 10 Sep 2020 15:14:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1599776063; bh=ILpjUiT7HbM+M1ye3Yg0cOX5IiWbjUlDwKmBfNvUYfY=; h=Date:From:Reply-To:To:Cc:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=POqW/8e4EkVaL6dB+gOyk4ZGwNU6KxqzF1gust7I4pz5fsKxYD0ZYbZR+FOd5edaL 4VWJq/HFQ7vT3UtqdrfCZFixM0e+BuJgKrTbLBU3NQK32/ysyilCQXDpfrUYfMEc77 wZHEI3L02Wnaikx5C0ernHNBkSc6ShT3TBYERbds=
Date: Thu, 10 Sep 2020 15:14:23 -0700
From: ekr <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJKZHETBOF3HBSEIHLQV5M2DD7EVBNHHCTIYSKU@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/4090@github.com>
Subject: [quicwg/base-drafts] Two CHs handling the same SH (#4090)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5f5aa53fb6fa1_3ef119f0134215"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: ekr
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/Tb7pO1ZeZA5qQHGao7em9n1f8o0>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Sep 2020 22:14:44 -0000
Over in TLS, Mike Bishop posits the following scenario: > The client sends an Initial packet (randomly selected Destination CID), PTOs, then sends another Initial packet to the same Destination CID. On the server side, the infrastructure assumes that Initial packets whose CIDs aren’t issued by them can be routed to a random back-end, and that back-end will set a new DCID that routes to it in the future. > The client will receive either of the Server Initial packets, switch to the new DCID, and will reject the other because attempts to change the server’s CID a second time. The connection succeeds because whichever server’s ServerHello is used also has its DCID used, so all subsequent packets go to that back-end. https://mailarchive.ietf.org/arch/msg/tls/O5jDgpPyQ_BSIz8_LXmD5rbOHnw/ My response: > While it's not clear to me that QUIC explicitly prohibits this (it would be prohibited if CRYPTO frames were STREAM frames because of draft-ietf-tls-quic-transport S 2.2, it seems like it's quite bad practice because the result will be that the losing server has a pending handshake which it continues to retransmit on until the client times out. Is this in fact possible? Should we forbid it? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/4090
- Re: [quicwg/base-drafts] Two CHs handling the sam… David Schinazi
- [quicwg/base-drafts] Two CHs handling the same SH… ekr
- Re: [quicwg/base-drafts] Two CHs handling the sam… Martin Thomson
- Re: [quicwg/base-drafts] Two CHs handling the sam… ianswett
- Re: [quicwg/base-drafts] Two CHs handling the sam… ekr
- Re: [quicwg/base-drafts] Two CHs handling the sam… ianswett
- Re: [quicwg/base-drafts] Two CHs handling the sam… Igor Lubashev
- Re: [quicwg/base-drafts] Two CHs handling the sam… Martin Thomson
- Re: [quicwg/base-drafts] Two CHs handling the sam… Martin Thomson