Re: [quicwg/base-drafts] Add Advice and Rules for CONN_CLOSE in Initial and Handshake (#1786)

martinduke <> Fri, 28 September 2018 01:48 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id DD3DE130DD5 for <>; Thu, 27 Sep 2018 18:48:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -8
X-Spam-Status: No, score=-8 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id qlwXJUl4Rw9g for <>; Thu, 27 Sep 2018 18:48:47 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 5D934130DD4 for <>; Thu, 27 Sep 2018 18:48:47 -0700 (PDT)
Date: Thu, 27 Sep 2018 18:48:45 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1538099325; bh=D/uya7XIzbqoiksWnMg3JNVAhMCqxReqsY4h9tYorSk=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=aCxU7D8hdpMF4eeB7CLkg0NlEhBOeXqL+hioMG5XLJVWNAT3M9JV7K7c6/0XZvGKz lLZnkggWsQy8M/wD9CmLT9IQjf+J5G4e6QXNrRC3hApyBgVKcPrTvCR5hXFht1scY0 Ed8oLvgBJiizORPQcFEoPPVq3ayfP6Bfta6Z6FEc=
From: martinduke <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/issues/1786/>
In-Reply-To: <quicwg/base-drafts/issues/>
References: <quicwg/base-drafts/issues/>
Subject: Re: [quicwg/base-drafts] Add Advice and Rules for CONN_CLOSE in Initial and Handshake (#1786)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5bad887d8d6a6_24b23f7f0b8d45b82367d5"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinduke
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 28 Sep 2018 01:48:49 -0000

I think you're convincing me to generalize this issue into "Don't tear down the connection due to a Initial Packet if you're already at Handshake or later". We'll always be vulnerable to injection, but by carefully wording it we can limit that vulnerablity to 1.5 RTTs.

That is much simpler guidance and avoids opening all the issues that this discussion has brought up..

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: