Re: [quicwg/base-drafts] Add Advice and Rules for CONN_CLOSE in Initial and Handshake (#1786)
martinduke <notifications@github.com> Fri, 28 September 2018 01:48 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD3DE130DD5 for <quic-issues@ietfa.amsl.com>; Thu, 27 Sep 2018 18:48:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8
X-Spam-Level:
X-Spam-Status: No, score=-8 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qlwXJUl4Rw9g for <quic-issues@ietfa.amsl.com>; Thu, 27 Sep 2018 18:48:47 -0700 (PDT)
Received: from out-6.smtp.github.com (out-6.smtp.github.com [192.30.252.197]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5D934130DD4 for <quic-issues@ietf.org>; Thu, 27 Sep 2018 18:48:47 -0700 (PDT)
Date: Thu, 27 Sep 2018 18:48:45 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1538099325; bh=D/uya7XIzbqoiksWnMg3JNVAhMCqxReqsY4h9tYorSk=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=aCxU7D8hdpMF4eeB7CLkg0NlEhBOeXqL+hioMG5XLJVWNAT3M9JV7K7c6/0XZvGKz lLZnkggWsQy8M/wD9CmLT9IQjf+J5G4e6QXNrRC3hApyBgVKcPrTvCR5hXFht1scY0 Ed8oLvgBJiizORPQcFEoPPVq3ayfP6Bfta6Z6FEc=
From: martinduke <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab563b13c21059bc5361fc68be296dfe66fafc6b4d92cf0000000117c54a7d92a169ce159f31b4@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/1786/425294726@github.com>
In-Reply-To: <quicwg/base-drafts/issues/1786@github.com>
References: <quicwg/base-drafts/issues/1786@github.com>
Subject: Re: [quicwg/base-drafts] Add Advice and Rules for CONN_CLOSE in Initial and Handshake (#1786)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5bad887d8d6a6_24b23f7f0b8d45b82367d5"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinduke
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/nVrpqvC4f7HIMa81wpNZO_PWbeU>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Sep 2018 01:48:49 -0000
I think you're convincing me to generalize this issue into "Don't tear down the connection due to a Initial Packet if you're already at Handshake or later". We'll always be vulnerable to injection, but by carefully wording it we can limit that vulnerablity to 1.5 RTTs. That is much simpler guidance and avoids opening all the issues that this discussion has brought up.. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/1786#issuecomment-425294726
- [quicwg/base-drafts] Add Advice and Rules for CON… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… ianswett
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… Mike Bishop
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… Ryan Hamilton
- Re: [quicwg/base-drafts] Add Advice and Rules for… ianswett
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… ianswett
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… ianswett
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… Martin Thomson
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… ianswett
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… Ryan Hamilton
- Re: [quicwg/base-drafts] Add Advice and Rules for… MikkelFJ
- Re: [quicwg/base-drafts] Add Advice and Rules for… Kazuho Oku
- Re: [quicwg/base-drafts] Add Advice and Rules for… Kazuho Oku
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… Kazuho Oku
- Re: [quicwg/base-drafts] Add Advice and Rules for… ianswett
- Re: [quicwg/base-drafts] Add Advice and Rules for… Kazuho Oku
- Re: [quicwg/base-drafts] Add Advice and Rules for… martinduke
- Re: [quicwg/base-drafts] Add Advice and Rules for… Martin Thomson