Comments (6)
This is possible today, but it should be required or highly recommended.
from base-drafts.
When fixing this, also fix the following inconsistency(noted by Mirja):
Section 4.2 (Regular Packets) page 10 says: "The first packet send by an endpoint MUST have a packet number of 1."
And section 7 (Packetization and Reliability) page 28 says: "That is, the first packet in both directions of the connection MUST have a packet number of 0."
from base-drafts.
Reading the motivation (re: off-path guessing of connection ID), I'm hopeful that a client would use a good Random Number Generator (RNG) and not produce a "guessable" connection ID. The presumption of a "good RNG" is indeed central to having many clients connecting to a single server (without collision). If one would posit a poor RNG... then in addition to collisio problems, I'd be wary that a RNG used to select a "unguessable" initial packet number would be problematic. Bottom line: I don't grok the security based motivation.
The other motivation is to prevent "ossification." Can someone provide a plausible motivation for a "need" to start at a different packet number, and avoid "ossification" in this context? I would have expected that standardization in this area simplifies code, and would not be a long-term problem.
from base-drafts.
Discussed in Tokyo; agreement that it's a good idea. Randomise some number of the bottom bits.
from base-drafts.
Currently, we aren't sure how many bits are going to be in initial packets. When @ekr produces a proposal for the packet headers, I think that this should include a fixed-size slot for the packet number. That will make this easier to write up.
from base-drafts.
This was addressed in #283.
from base-drafts.
Related Issues (20)
- Auth48: Combined internal references HOT 3
- Solidarity bot: Invalid HOT 4
- auth48 http/3: cite http2bis HOT 1
- Auth48: Keywords HOT 1
- Is "to the encoder" intended? (comment 2) HOT 4
- Auth48: Artwork types HOT 2
- Auth48: Difficult to parse sentence / duplicated words HOT 2
- Auth48: Huffman-coded versus Huffman encoded HOT 1
- To avoid awkward hyphenation, may we rephrase this text? Original (comment 6) HOT 2
- Should the following text be formatted using <aside>? (comment 7) HOT 2
- RFC Editor comment 8 HOT 1
- Auth48: SETTING_ => SETTINGS_ HOT 1
- Auth48: Capitalization and terminology consistency HOT 5
- Auth48: Servers and non-0-RTT clients HOT 1
- Stale contact information for Buck HOT 1
- STOP_SENDING to QPACK streams HOT 7
- CONTRIBUTING.md has out-of-date URLs HOT 1
- Marking packets as lost on PTO
- Add text on flow control deadlocks HOT 3
- Wiki: Implementations overview "destroyed" HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from base-drafts.