IETF Logo Mail Archive

Re: Consensus Calls for Transport/TLS issues, post-Cupertino

"Martin Thomson" <mt@lowentropy.net> Thu, 31 October 2019 00:54 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 916021208E0 for <quic@ietfa.amsl.com>; Wed, 30 Oct 2019 17:54:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=obuori3g; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=rlVKXZRy
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YuxQZvCnP4Ut for <quic@ietfa.amsl.com>; Wed, 30 Oct 2019 17:54:27 -0700 (PDT)
Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3328A1208FF for <quic@ietf.org>; Wed, 30 Oct 2019 17:54:27 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 6E23F21CDD for <quic@ietf.org>; Wed, 30 Oct 2019 20:54:26 -0400 (EDT)
Received: from imap2 ([10.202.2.52]) by compute1.internal (MEProxy); Wed, 30 Oct 2019 20:54:26 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type:content-transfer-encoding; s=fm3; bh=ggpny 8ywCsobdxUAc1VEo5Ld+MB9CRPmVvdOTtL29Jg=; b=obuori3g1mwQZrQZ/tLMV HeL3tcpDQiyoQAhvcgu9w40XgYp9dpvi3yuV8XA/MaJijRZx7gH+LjkFyY6SrHpu WuGb3/yArh/hJhO+GVcXskaJeG6HyeJH0dHvDnv19gG42WrUANhfDQ5ljaCuP8N6 XY0V46xBhhTlderDudj0713J70Wmf80ALYn13g4xCq0eMpQU08BA6+Aci4Y0SF+c d+NNAzVOv3p2GmnAH+NYH95KpulS56CpsET+ph8Pk0gscgWXrphsyr6vYvsOaGXd GyohWUm7JGk7vPvZTl8y3Tl8P1oJDs6MdrmLkR7ULnsmOUv+op6tEPeFyzq26vsF g==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; bh=ggpny8ywCsobdxUAc1VEo5Ld+MB9CRPmVvdOTtL29 Jg=; b=rlVKXZRygqEx+HXADO3SLAW49AV+DbUmpqyCpFmEuluJgxXX3O0GYMCom B2U0+5pQHBYLZVWwPIQbT0Dfhrsoob5F6bmfm8jSggLs0Z3tRR968slVpQiFSdJe fMApN1Ba7Y6MlpMFOAXk8xoWX06T8Ej0laZlV0UanZ/1II20P02zEWHnRhtsSBi+ hnYU1EY0ICgZHyQ2c1/rFsBB+xu3eS/ykfeF+yikgs7PJYwa64X8eMfiZst+eZ/0 vT9p/Kv+h3rs4cCGztyFmAZcQTQQzZ09ZzvuczBhkYOBTLKZlBE/4atvXfksEuCK KPRGwmng3q4EKOfeDfojZZ7WVdTzw==
X-ME-Sender: <xms:wjC6Xas1xfsHMyrP9T8Iog0o0u9wEWX9E1b5MlwQtbBYJhryP52P8A>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedruddtgedgvdekucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfgjfhffhffvufgtgfesth hqredtreerjeenucfhrhhomhepfdforghrthhinhcuvfhhohhmshhonhdfuceomhhtsehl ohifvghnthhrohhphidrnhgvtheqnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmtheslh hofigvnhhtrhhophihrdhnvghtnecuvehluhhsthgvrhfuihiivgeptd
X-ME-Proxy: <xmx:wjC6XYMX_MFBYqGC79VDtcJoCte8BoFPOR2PPhSxu30XUXVFKPYLcQ> <xmx:wjC6XUfU2KaPPGCQFkp6o0iOTXxFgRiBNmZYkO7Os-bfSBvapL9EYQ> <xmx:wjC6XXnDmH6yN4VWrf7OtQ30bxvnj5A47rDYyqXYUSzI2t_NZVm8bg> <xmx:wjC6Xa84Dq92oHoi5Ay_ZKiF92OrQ3IPrkHVTfX9GjtB8atjFpLDaQ>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 045A0E00A5; Wed, 30 Oct 2019 20:54:26 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.1.7-509-ge3ec61c-fmstable-20191030v1
Mime-Version: 1.0
Message-Id: <3d4976da-b03d-469c-9242-4073d88048e3@www.fastmail.com>
In-Reply-To: <CABcZeBO_af+CZZse+-WpjRQWj35UjRpvZMTq0_wCGoMBQE0Z2g@mail.gmail.com>
References: <4D6397AF-B411-4E67-AFD2-76E8F2AD462C@mnot.net> <CANatvzwYA-NN+p5jLu4vpgKY_G-ZoUM03CacZWS2FAPyPqgiiw@mail.gmail.com> <BN3PR00MB0083E9A10A58F4CCC7B8A5C6B3680@BN3PR00MB0083.namprd00.prod.outlook.com> <22517ab5-9a6c-4486-b7ea-03badc064cbe@www.fastmail.com> <CANatvzx=RWB1Bio7tqX7nN_Vn1SfSaE69LZbuiU5pWeXP=BwNQ@mail.gmail.com> <DB6PR10MB176678E88FF226C2EB8FF78EAC680@DB6PR10MB1766.EURPRD10.PROD.OUTLOOK.COM> <CACpbDccOe01VBjwwy=mdSi5nync8bXa506OMTbLPpBH-hoj4Sw@mail.gmail.com> <CAPDSy+4S06qHBbitdH07Ah6gJYV+ZMY4huYLVGw14Q-n6isCrg@mail.gmail.com> <BN6PR2201MB17008576E4F8400B5DDB696FDA6B0@BN6PR2201MB1700.namprd22.prod.outlook.com> <CACpbDcf+n47NXh8XMEKx6n1fiJPZ+WyuivNmuBy1vKhZYZe6Uw@mail.gmail.com> <CAM4esxQYyTQPpF13v0AT4R=TcFOa9=UCn0nWsiqwMReYFOYDYg@mail.gmail.com> <CABcZeBM2QGC+wx-UUKMkJDqxKscOgJfhqwPhr7QXg3h-GpZwfQ@mail.gmail.com> <4d408d7a-7c50-4ccc-a42b-fb2b71b0c507@www.fastmail.com> <CABcZeBMdQPMeu862uizQYKr451Y9mvwhZ4MT7h_te5ho_Y9DOQ@mail.gmail.com> <98b890c7-d57f-484c-88d5-056e4e607465@www.fastmail.com> <CABcZeBP4BwBsySd8Phhg3fd3kTMoS6E=j5tit3pg7JKe7vrb6Q@mail.gmail.com> <1e5ae15f-56cf-47c5-930a-9f5bae59763b@www.fastmail.com> <CABcZeBP2yHXaaXYtAwYfqshrENwMaMCQsmnOd3KD2DurwGy8dg@mail.gmail.com> <CAN1APdeNFGuZh5gX0MBC-CotdSeHzrHk7jqUtZJKyCcFMc2aew@mail.gmail.com> <CABcZeBO_af+CZZse+-WpjRQWj35UjRpvZMTq0_wCGoMBQE0Z2g@mail.gmail.com>
Date: Thu, 31 Oct 2019 11:54:06 +1100
From: Martin Thomson <mt@lowentropy.net>
To: quic@ietf.org
Subject: Re: Consensus Calls for Transport/TLS issues, post-Cupertino
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/fpaEK_nicuQEvfGEHi6CcICnXEo>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Oct 2019 00:54:34 -0000

On Thu, Oct 31, 2019, at 08:21, Eric Rescorla wrote:
> On Wed, Oct 30, 2019 at 2:06 PM Mikkel Fahnøe Jørgensen 
> <mikkelfj@gmail.com> wrote:
> >> I'm going to stop here, because it seems that you're assuming we don't just keep the keys indefinitely. How does that lead to deadlock?
> > 
> 
> > The problem is that having keys indefinitely leads to various problems.
> 
> I've heard that asserted but I'm not so sure.

The problems I'm aware of are largely edifices of our own construction.

The primary one I am aware of is that we don't know what to do about sending Handshake packets after a migration.  This is fixable, because it is a definitional problem.  We haven't defined what to do.  The problem is, I think just limited to the use of Source Connection ID on long header packets.  I personally would prefer not to have to fix this one.

If you don't continue sending Handshake packets, that has the same effect as discarding keys for the side that is being starved of acknowledgments.

We could also build, as Mike alludes to, an implicit acknowledgment.  We currently have one for the Initial->Handshake transition and we could build another.  That only reduces this from a symmetric issue to an asymmetric one unless we address the existing problem.

If we were able to reduce this to just a client-side problem, then we might also say that clients can't migrate prior to verifying that all Handshake data was transmitted to as to avoid any need for problems.  Then migration becomes proof positive that the client is done transmitting and that can be the signal.

Of course, this is all getting increasingly byzantine.

v2.23.0 | Report a Bug | By Email