Re: [quicwg/base-drafts] Authenticate connection IDs (#3499)

David Schinazi <> Thu, 05 March 2020 01:07 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 60F463A0524 for <>; Wed, 4 Mar 2020 17:07:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.482
X-Spam-Status: No, score=-1.482 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id f5pJ2WxuLRCG for <>; Wed, 4 Mar 2020 17:07:26 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id ECE8C3A048D for <>; Wed, 4 Mar 2020 17:07:25 -0800 (PST)
Date: Wed, 04 Mar 2020 17:07:23 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1583370443; bh=wVynfRXcOCGxu53G49yidroz8VzpsbaiUlIKk9n4qLM=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=pjA2bu9rH12mh7sYE4qlYM9Swu6yeD+ii4AE1JF/uDa4SVXQtOWpAksMj8yMLjmql yFuOneQ7su8d6OgGQYKwh0udVfbcKAWXjpTW6zZy3OZvtcaacFLMep5r8g9oiepj2R olx++hLu54ehnTHJ5nlrsBUm513dCqBoEoqwtVPQ=
From: David Schinazi <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/pull/3499/>
In-Reply-To: <quicwg/base-drafts/pull/>
References: <quicwg/base-drafts/pull/>
Subject: Re: [quicwg/base-drafts] Authenticate connection IDs (#3499)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5e6050cb9243a_1f4b3f91bc0cd964139628"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: DavidSchinazi
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 05 Mar 2020 01:07:34 -0000

I agree that this is the right fix. However, I think I would prefer to allow the server to reuse the client's initial DCID when sending the first server initial when there are no retries involved. From a theoretical standpoint, requiring the server to change the CID makes the one offered by the client useless which seems silly - but that is admittedly a very weak argument. From a practical standpoint, that would allow us to deploy this change faster.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: