Re: [quicwg/base-drafts] Define an anti-forgery limit (#3620)

Martin Thomson <> Fri, 22 May 2020 05:03 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 4F9793A0E9D for <>; Thu, 21 May 2020 22:03:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.555
X-Spam-Status: No, score=-1.555 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id NMit2271ID6x for <>; Thu, 21 May 2020 22:03:40 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id C9D083A0C8E for <>; Thu, 21 May 2020 22:03:39 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id E555C282D0E for <>; Thu, 21 May 2020 22:03:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1590123818; bh=//BlULtM+QpoWIiWo0nSl/genvCU4oMXCHQ22MWhplk=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=yKUPVQyS3AWvb+eQdYHwerE5H8qME2AGzYKzSCjEE3+HlK8f+N+dS/aEb9uiFAPIL xbT2WzdR6ronTHGvEBxN+KAm86k9OT4y7n+4Ci077XDG/B09nyBHWklrNI3GTHsV6T UXBuQVQbpyVOOQ1SGXjHJZp/YmKk6/DssofjdCog=
Date: Thu, 21 May 2020 22:03:38 -0700
From: Martin Thomson <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/pull/3620/>
In-Reply-To: <quicwg/base-drafts/pull/>
References: <quicwg/base-drafts/pull/>
Subject: Re: [quicwg/base-drafts] Define an anti-forgery limit (#3620)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5ec75d2ad6be3_4b163fdbdcecd96424969e"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinthomson
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 22 May 2020 05:03:43 -0000

In the interest of transparency, I have added one more commit here.

When I did the same for DTLS, ekr observed that if you have updated, you might safely stop trying to accept packets with the old keys rather than killing the connection.  That results in loss for any packets that genuinely did want to use the exhausted keys, but that is probably less disruptive than having the connection drop.  Of course, you can't always update, so closure is still likely necessary in some cases.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: