Re: [quicwg/base-drafts] Subsequent Initial Packets with Token Field (#1649)
Martin Thomson <notifications@github.com> Mon, 24 September 2018 23:08 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F11C131169 for <quic-issues@ietfa.amsl.com>; Mon, 24 Sep 2018 16:08:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.01
X-Spam-Level:
X-Spam-Status: No, score=-8.01 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UgN_c3yaEeE9 for <quic-issues@ietfa.amsl.com>; Mon, 24 Sep 2018 16:08:02 -0700 (PDT)
Received: from out-9.smtp.github.com (out-9.smtp.github.com [192.30.254.192]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A7334130E60 for <quic-issues@ietf.org>; Mon, 24 Sep 2018 16:08:02 -0700 (PDT)
Date: Mon, 24 Sep 2018 16:08:01 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1537830482; bh=e/zgA7iBCTMC0vAz7jqPLy5/1zD/htCHAHYisgr4m4E=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=QTDuUC1B2fzCj982E9Nlj4rbBYY/jQOaSEHliONviDRVG4TRI8EPDXNviuhefdX5A dzeRV7AdfBstTbLqm+4zosXvZ7D4F+6s7VHGv+Ln/btVOVRwm30iouWEhjaTUQPrXy +rgcjqKZr8Bz5mzxuj0imb9V8bnxdoPTaHg9rwts=
From: Martin Thomson <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abf965edb87efc493278d49f4d20dfd095a06e6d7a92cf0000000117c1305192a169ce14d6881b@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/1649/424154721@github.com>
In-Reply-To: <quicwg/base-drafts/issues/1649@github.com>
References: <quicwg/base-drafts/issues/1649@github.com>
Subject: Re: [quicwg/base-drafts] Subsequent Initial Packets with Token Field (#1649)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5ba96e51bc7e5_15183fa5cded45c416152"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinthomson
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/wWi6SJLKTwbcopDLuW7v2cXAY8A>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Sep 2018 23:08:05 -0000
Rule here is, in light of #1764, that the client needs to send 1200+ datagram until it knows (for certain) that the server has validated the client source address. The way servers validate the client's source address in the handshake is by receiving packets with Handshake keys (or higher, but we know that 1-RTT packets aren't read until Handshake packets are all read). So the way the client learns that the server is OK is to get an ACK at the Handshake encryption level (or higher, see above). The token only appears in the first one, and the packet sent in response to a Retry. That is probably more aggressive than necessary, but it keeps things simple. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/1649#issuecomment-424154721
- [quicwg/base-drafts] Subsequent Initial Packets w… Nick Banks
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Martin Thomson
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Kazuho Oku
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Nick Banks
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Kazuho Oku
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Nick Banks
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Kazuho Oku
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Martin Thomson
- Re: [quicwg/base-drafts] Subsequent Initial Packe… Martin Thomson
- Re: [quicwg/base-drafts] Subsequent Initial Packe… janaiyengar