Re: [quicwg/base-drafts] Handling of corrupt Retry packets (#3014)

Lars Eggert <> Wed, 16 October 2019 17:45 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id CF390120957 for <>; Wed, 16 Oct 2019 10:45:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -6.382
X-Spam-Status: No, score=-6.382 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id 6XYopPZGW5u5 for <>; Wed, 16 Oct 2019 10:45:51 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 1DC5F12086F for <>; Wed, 16 Oct 2019 10:45:51 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id 88FFC261587 for <>; Wed, 16 Oct 2019 10:45:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1571247950; bh=F1CsKkCKpfbPHS0U5RDK6b1Z7lPsPT+/1R6+ZI7vHO0=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=ZBd3QgLRudH1w4/WrckY51kRXzxoG10y+LqgAbvTHxI7hsjiBEtBKOMLRVXhvDChW 7XYzdw0yhlB5lY/xjVhK03s1Mstr62TiCX/OwFIlkedvZ4vh/3lzcN4Yiyob7KZTfl Rw6fwRxcktWDEn4LnbZuzYi8ft0CfCdx9jf+TOro=
Date: Wed, 16 Oct 2019 10:45:50 -0700
From: Lars Eggert <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/issues/3014/>
In-Reply-To: <quicwg/base-drafts/issues/>
References: <quicwg/base-drafts/issues/>
Subject: Re: [quicwg/base-drafts] Handling of corrupt Retry packets (#3014)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5da7574e439ad_1373fdd2fecd96049576"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: larseggert
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 16 Oct 2019 17:46:05 -0000

Discussed in Cupertino. Agreement in the room for MANDATORY use of AES-GCM with zero key and zero nonce to protect the Retry token. The entire packet would be AAD. @DavidSchinazi's addition of potentially eliding DCID to be thought through by assignee of issue.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: