Re: [quicwg/base-drafts] First byte changes (#2006)

Igor Lubashev <notifications@github.com> Mon, 19 November 2018 22:52 UTC

Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A5951252B7 for <quic-issues@ietfa.amsl.com>; Mon, 19 Nov 2018 14:52:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.47
X-Spam-Level:
X-Spam-Status: No, score=-3.47 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hu_k2SRVhVv8 for <quic-issues@ietfa.amsl.com>; Mon, 19 Nov 2018 14:52:28 -0800 (PST)
Received: from o6.sgmail.github.com (o6.sgmail.github.com [192.254.113.101]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 430F6129BBF for <quic-issues@ietf.org>; Mon, 19 Nov 2018 14:52:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:in-reply-to:references:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=r8uD6BFEsV87sS+Tb9vyrZIWSYM=; b=bA4jkxt9n3xy9ULi yohWIf3/2grsIk8UQxRRlrx/QpjzSD9W4ean1M3NAmLCIXujAxRFhQVq2sRYg9kQ eMS8opuEuYHZzkZi/gGnfzsExEdH5Vc/CdPm1DQCMFtbgrXjJ+dk5YUvwi9Zans0 5WEo/T9RpJWDias8L/9t6rtNy+g=
Received: by filter0595p1iad2.sendgrid.net with SMTP id filter0595p1iad2-13767-5BF33EAA-2E 2018-11-19 22:52:26.992672136 +0000 UTC m=+196141.848776580
Received: from github-lowworker-56a5eb2.cp1-iad.github.net (unknown [192.30.252.33]) by ismtpd0001p1iad2.sendgrid.net (SG) with ESMTP id pSIDwWh1Q82RAHCW7GUlmw for <quic-issues@ietf.org>; Mon, 19 Nov 2018 22:52:27.036 +0000 (UTC)
Received: from github.com (localhost [127.0.0.1]) by github-lowworker-56a5eb2.cp1-iad.github.net (Postfix) with ESMTP id 0111FC11B5 for <quic-issues@ietf.org>; Mon, 19 Nov 2018 14:52:27 -0800 (PST)
Date: Mon, 19 Nov 2018 22:52:27 +0000
From: Igor Lubashev <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abc5be283a430fce7621e718208837adadae2b98ff92cf00000001180b00aa92a169ce16b57ba1@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/2006/review/176535280@github.com>
In-Reply-To: <quicwg/base-drafts/pull/2006@github.com>
References: <quicwg/base-drafts/pull/2006@github.com>
Subject: Re: [quicwg/base-drafts] First byte changes (#2006)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5bf33eaaf2cf1_156f3fac948d45c0747b0"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: igorlord
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak0vBz9HdwiOYqNUPjf/ET5Rv/BC+fusGj3d0v KSHbh4vS1K3EdddYgD1yrh/kzLGQykVltDk7UdhEVuZwJBQJKxy+Z7K6dY3ArlP8RBDT4HQb/MdmGa XngmBNvBRErCvKZL6rSnBHK0a9PIISN3tQQY87GxQea8zGziLPf5V7PHPWrzItXpn0mCg8prCQAVxu I=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/b7n8IAn9zkkS3lu781z46fC86Yo>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Nov 2018 22:52:31 -0000

igorlord commented on this pull request.



>  
-: The fourth bit (0x10) of byte 0 is set to 1.
+: The next two bits (those with a mask of 0x18) of byte 0 are reserved.  These
+  bits are protected using header protection (see Section 5.4 of
+  {{QUIC-TLS}}).  The value included prior to protection MUST be set to 0.  An

@kazuho, the suggestion is not bits-on-the-wire are 0 (which is an ossification concern).

The suggestion is that bits can be anything and they are AEAD protected but not masked -- just like the latency spin bit.  They could be set randomly or not randomly -- up to the endpoint.  An endpoint can already disclose any and all info to anyone without peer's consent, and these bits are by far not the most convenient mechanism for such disclosures.

Do I understand it correctly that the worry is about an _accidental_ and not a _deliberate_ disclosure?  (I do not think a worry about ossification of some experimental use it warranted, do you?)

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/2006#discussion_r234812492