[quicwg/base-drafts] Output of the discard keys design team (#2673)
David Schinazi <notifications@github.com> Tue, 07 May 2019 21:20 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C46E812014B for <quic-issues@ietfa.amsl.com>; Tue, 7 May 2019 14:20:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.009
X-Spam-Level:
X-Spam-Status: No, score=-3.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rAfuK16HzoWh for <quic-issues@ietfa.amsl.com>; Tue, 7 May 2019 14:20:44 -0700 (PDT)
Received: from out-22.smtp.github.com (out-22.smtp.github.com [192.30.252.205]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 39C4D120086 for <quic-issues@ietf.org>; Tue, 7 May 2019 14:20:44 -0700 (PDT)
Date: Tue, 07 May 2019 14:20:43 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1557264043; bh=kPGN7LIKSPLVyBXBJBjim7vsdvZz+IT05nRZcpEIuhI=; h=Date:From:Reply-To:To:Cc:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=UiEv3YAo3UlbfNv6+3ZD5VZ0bGwRpYd94hpmeQKNODp/IMflqznuZsNI4ZLO7B+IT w4LOnhyy9rRrxTM8CR6baSNsZAG3hXjnMJauzuNQpH2ocxYwKJCweckqlTwmqevsmQ mIbHZ6jy9IvkcNHyGoa3YLx4eHb0+CYfyIY4Rll0=
From: David Schinazi <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJK4X33WKQJ2OJQRULGV234USXEVBNHHBUUAEMU@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/2673@github.com>
Subject: [quicwg/base-drafts] Output of the discard keys design team (#2673)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5cd1f6ab24e8_9b43fdc612cd9681058484"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: DavidSchinazi
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/xkCVSRdhqF4jKqV4lbEqNRvZkAQ>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 May 2019 21:20:46 -0000
This PR is the output of the discard keys design team, and has reached consensus amongst design team members (modulo wordsmithing). It describes methods for discarding QUIC packet protection keys, and adds normative text to ensure that this mechanism is not vulnerable to deadlocks. This PR also formalizes the concept of handshake complete and handshake confirmed. Finally, this PR also moved some text around to avoid repetitions. We believe that this PR prevents the potential deadlocks discussed in issues #2214 and #2267. You can view, comment on, or merge this pull request online at: https://github.com/quicwg/base-drafts/pull/2673 -- Commit Summary -- * First draft of the output of the discard keys design team * Incorporated feedback from Martin Thomson and Marten Seeman * Make discarding handshake keys a SHOULD * Further review comments from Martin Thomson * Comments from EKR * More changes from MT and EKR * Merge branch 'master' into design_team_discard_keys -- File Changes -- M draft-ietf-quic-tls.md (170) -- Patch Links -- https://github.com/quicwg/base-drafts/pull/2673.patch https://github.com/quicwg/base-drafts/pull/2673.diff -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/pull/2673
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- [quicwg/base-drafts] Output of the discard keys d… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… Martin Thomson
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… Martin Thomson
- Re: [quicwg/base-drafts] Output of the discard ke… MikkelFJ
- Re: [quicwg/base-drafts] Output of the discard ke… Martin Thomson
- Re: [quicwg/base-drafts] Output of the discard ke… MikkelFJ
- Re: [quicwg/base-drafts] Output of the discard ke… Christopher Wood
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… Mike Bishop
- Re: [quicwg/base-drafts] Output of the discard ke… ianswett
- Re: [quicwg/base-drafts] Output of the discard ke… ianswett
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… Jana Iyengar
- Re: [quicwg/base-drafts] Output of the discard ke… MikkelFJ
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… Jana Iyengar
- Re: [quicwg/base-drafts] Output of the discard ke… Jana Iyengar
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… David Schinazi
- Re: [quicwg/base-drafts] Output of the discard ke… Jana Iyengar
- Re: [quicwg/base-drafts] Output of the discard ke… Martin Thomson