IETF Logo Mail Archive

[quicwg/base-drafts] Address validation for connection migration (#732)

Martin Thomson <notifications@github.com> Tue, 15 August 2017 02:45 UTC

Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB61E1324AB for <quic-issues@ietfa.amsl.com>; Mon, 14 Aug 2017 19:45:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.799
X-Spam-Level:
X-Spam-Status: No, score=-4.799 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N-J5E__Uwban for <quic-issues@ietfa.amsl.com>; Mon, 14 Aug 2017 19:45:09 -0700 (PDT)
Received: from o5.sgmail.github.com (o5.sgmail.github.com [192.254.113.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E9D871324A1 for <quic-issues@ietf.org>; Mon, 14 Aug 2017 19:45:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=foizCNom83WPg3U23dcH6H6wtGY=; b=nkYbo+BfAEySimax YylOL4TUVCTPjA1HKaMaRiIaYR6Z0MwFb+TvjYExSy9+uXrMKjodMJCnpmPuqgzv +OZVckp9UniYXcLP3myAdfQowc5HZv0/BgmMj+Uqe2Ylx3t5cKPk8MyUFcw3w9SA rDKmwfIhnbnbwDRoSiyP4+izprQ=
Received: by filter0599p1mdw1.sendgrid.net with SMTP id filter0599p1mdw1-15176-59926033-22 2017-08-15 02:45:07.30302492 +0000 UTC
Received: from github-smtp2b-ext-cp1-prd.iad.github.net (github-smtp2b-ext-cp1-prd.iad.github.net [192.30.253.17]) by ismtpd0001p1iad1.sendgrid.net (SG) with ESMTP id VN0PLvjkR9iatnDg_MlAWg for <quic-issues@ietf.org>; Tue, 15 Aug 2017 02:45:07.242 +0000 (UTC)
Date: Tue, 15 Aug 2017 02:45:07 +0000
From: Martin Thomson <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab2cf57332828408fa8e1cfb83b9bc408b2353b06c92cf0000000115aa223292a169ce0ee9dd49@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/732@github.com>
Subject: [quicwg/base-drafts] Address validation for connection migration (#732)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5992603249d68_10a43f825ab69c2c89348"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinthomson
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak3/a4EFBr+MiBKSyee+M3QkGYQJkUFn/D6uFP HxEp8aa/bn1zmP49SpSjzTr43hCCgqGYI/jY6rl0Bfxm2TxfNMoAP3Gyphdrf0ug7sgyqirXnP29kC D5RI+dsGl2UDneMlAeRw8mMFYx3r8Vo/0JjO27rENc8K6H4nyWjRPOD3qDJbbWsHoSMpiotA14xbPr c=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/y0ozutQekq2WLIBQyIw-v__aTXc>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Aug 2017 02:45:11 -0000

This has been much-discussed, and it's a relatively isolated change, so I did it.

This modifies PING to have an optional payload and adds a PONG frame to echo
the PING.  An empty PING generates an ACK; a PING with a payload demands a
PONG.

Generating an unguessable PING is the basis of mid-connection address
validation.  If the PING is sent on the new path, and the PONG comes back, then
the remote address is probably OK to use.

I've taken the discussion in the issue into consideration here.  There's a lot
of potential nuance to capture in terms of how an endpoint might reduce and
restore send rates, but I've done what I can to thread the gap between allowing
unbounded sending along new and untested paths and allowing connections to get
back to doing business.

It's annoying that this makes PING and PONG so disparate.  I think that we have
a re-ordering of frames in our near future to correct minor infidelities like
this.  I didn't want to do that here and pollute this PR though.

Closes #161.
You can view, comment on, or merge this pull request online at:

  https://github.com/quicwg/base-drafts/pull/732

-- Commit Summary --

  * Address validation for connection migration

-- File Changes --

    M draft-ietf-quic-transport.md (122)

-- Patch Links --

https://github.com/quicwg/base-drafts/pull/732.patch
https://github.com/quicwg/base-drafts/pull/732.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/732

v2.43.4 | Report a Bug | By Email | System Status