Re: [quicwg/base-drafts] Allow reuse of stateless reset tokens (#2733)
MikkelFJ <notifications@github.com> Tue, 21 May 2019 09:34 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1B3C71200C1 for <quic-issues@ietfa.amsl.com>; Tue, 21 May 2019 02:34:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.009
X-Spam-Level:
X-Spam-Status: No, score=-8.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_32=0.001, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O3DJ_RqmtArF for <quic-issues@ietfa.amsl.com>; Tue, 21 May 2019 02:34:24 -0700 (PDT)
Received: from out-1.smtp.github.com (out-1.smtp.github.com [192.30.252.192]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 74446120045 for <quic-issues@ietf.org>; Tue, 21 May 2019 02:34:24 -0700 (PDT)
Date: Tue, 21 May 2019 02:34:22 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1558431262; bh=wvKMwg7IZl81FjmD7C8kInr4FE5sHckDNP9yaUxTYtY=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=jsnkxkuzTnv8yIvr0hTFJwCSCTa0eki7gYmXic9Tcdvyw62m1rYVCn7mOPMTSXntF ZbAVULG3dqtZnw5dvVWTNaUiKP18DPIHT9LaRSR+Pi90P8m2UhywL5jTes7hvSRcs8 t/aKUWMEZFCxni0WcALnXNoRliegoBaxr61BmQGo=
From: MikkelFJ <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJK2EL52HKLJJ7PRWHA526D4J5EVBNHHBVHINUM@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/2733/review/239930816@github.com>
In-Reply-To: <quicwg/base-drafts/pull/2733@github.com>
References: <quicwg/base-drafts/pull/2733@github.com>
Subject: Re: [quicwg/base-drafts] Allow reuse of stateless reset tokens (#2733)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5ce3c61ee2003_66643facfd0cd96c269625"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: mikkelfj
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/zUnnxTaco3FNHSRmMeAMchDX6OQ>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 May 2019 09:34:26 -0000
mikkelfj commented on this pull request.
> @@ -2476,6 +2476,14 @@ the same static key (see {{reset-oracle}}). A connection ID from a connection
that is reset by revealing the Stateless Reset Token MUST NOT be reused for new
connections at nodes that share a static key.
+The same Stateless Reset Token MAY be used for multiple connection IDs on the
+same connection. An endpoint that reuses a Stateless Reset Token MUST ensure
+that any connection ID used on the connection is matched to the active
+connection, including any routing performed at load balancers, even when a
+connection ID has been retired. Otherwise, an attacker might be able to send a
+packet with a retired connection ID and cause the endpoint to produce a
+Stateless Reset.
+
Note that Stateless Reset packets do not have any cryptographic protection.
I don't understand this text. I can see the issuer of the reset can and should coordinate with load balancers, but the text reads as if the sender is responsible for the receiver matching up the connection ID, or that an active connection should be matched sender side when the reset is transmitted to cancel an unknown connection, which by definition isn't possible. In part it is unclear what is mean by connection ID since there are two kinds.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/2733#pullrequestreview-239930816
- [quicwg/base-drafts] Allow reuse of stateless res… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… MikkelFJ
- Re: [quicwg/base-drafts] Allow reuse of stateless… Kazuho Oku
- Re: [quicwg/base-drafts] Allow reuse of stateless… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… Mark Nottingham
- Re: [quicwg/base-drafts] Allow reuse of stateless… Eric Kinnear
- Re: [quicwg/base-drafts] Allow reuse of stateless… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… MikkelFJ
- Re: [quicwg/base-drafts] Allow reuse of stateless… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… Martin Thomson
- Re: [quicwg/base-drafts] Allow reuse of stateless… Jana Iyengar
- Re: [quicwg/base-drafts] Allow reuse of stateless… Jana Iyengar