Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-30 Thread Ilari Liusvaara
On Thu, Dec 28, 2017 at 04:12:52PM +, Matt Caswell wrote: > > > The point is a stateless server will not know about CH1 at the point > that it receives CCS. Actually, as Ilari points out, there could be any > junk (including partial records) arriving between CH1 and CH2. So this > feels more

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-29 Thread Matt Caswell
On 28/12/17 18:06, Eric Rescorla wrote: > I must be missing your point. According to the spec as it stands even > with a stateful server I MUST ignore a CCS that comes first. Since this > is a stateful server it may end up negotiating TLSv1.2 - which requires > us to abort the han

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Eric Rescorla
On Thu, Dec 28, 2017 at 10:02 AM, Matt Caswell wrote: > > > On 28/12/17 17:55, Eric Rescorla wrote: > > > > On Thu, Dec 28, 2017 at 9:51 AM, Matt Caswell > > wrote: > > > > > > > > On 28/12/17 17:42, Eric Rescorla wrote: > > > > > > > > > On Thu, Dec 28,

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Matt Caswell
On 28/12/17 17:55, Eric Rescorla wrote: > > On Thu, Dec 28, 2017 at 9:51 AM, Matt Caswell > wrote: > > > > On 28/12/17 17:42, Eric Rescorla wrote: > > > > > > On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell > >

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Eric Rescorla
On Thu, Dec 28, 2017 at 9:51 AM, Matt Caswell wrote: > > > On 28/12/17 17:42, Eric Rescorla wrote: > > > > > > On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell > > wrote: > > > > > > > > On 28/12/17 12:28, Eric Rescorla wrote: > > > I think it would be helpful >

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Matt Caswell
On 28/12/17 17:42, Eric Rescorla wrote: > > > On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell > wrote: > > > > On 28/12/17 12:28, Eric Rescorla wrote: > >     I think it would be helpful > >     to be more explicit in the text if that is the case, i.e. ide

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Eric Rescorla
On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell wrote: > > > On 28/12/17 12:28, Eric Rescorla wrote: > > I think it would be helpful > > to be more explicit in the text if that is the case, i.e. identify > the > > first point in the handshake and the last point in the handshake > where

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Matt Caswell
On 28/12/17 12:28, Eric Rescorla wrote: > I think it would be helpful > to be more explicit in the text if that is the case, i.e. identify the > first point in the handshake and the last point in the handshake where > CCS is valid. There probably should also be some words about ho

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Ilari Liusvaara
On Thu, Dec 28, 2017 at 08:54:45AM +, Matt Caswell wrote: > > So, do you believe that the correct interpretation of "any time during > the handshake" includes the first message? I think it would be helpful > to be more explicit in the text if that is the case, i.e. identify the > first point i

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Eric Rescorla
On Thu, Dec 28, 2017 at 12:54 AM, Matt Caswell wrote: > > > On 27/12/17 19:33, Eric Rescorla wrote: > > > > > > On Wed, Dec 27, 2017 at 11:17 AM, Matt Caswell > > wrote: > > > > Consider the scenario where a server is operating statelessly (i.e. > > using the coo

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-28 Thread Matt Caswell
On 27/12/17 19:33, Eric Rescorla wrote: > > > On Wed, Dec 27, 2017 at 11:17 AM, Matt Caswell > wrote: > > Consider the scenario where a server is operating statelessly (i.e. > using the cookie extension) and a client is operating in middlebox > compat mode

Re: [TLS] Interaction between cookies and middlebox compat mode

2017-12-27 Thread Eric Rescorla
On Wed, Dec 27, 2017 at 11:17 AM, Matt Caswell wrote: > Consider the scenario where a server is operating statelessly (i.e. > using the cookie extension) and a client is operating in middlebox > compat mode. > > In that case the client sends an initial ClientHello and receives a > ServerHello(HRR

[TLS] Interaction between cookies and middlebox compat mode

2017-12-27 Thread Matt Caswell
Consider the scenario where a server is operating statelessly (i.e. using the cookie extension) and a client is operating in middlebox compat mode. In that case the client sends an initial ClientHello and receives a ServerHello(HRR) back with a cookie in it. Before it sends its second ClientHello