mvfst

lib/mvfst

Fork 0

mirror of https://github.com/facebookincubator/mvfst.git synced 2025-11-09 10:00:57 +03:00

Commit Graph

Author	SHA1	Message	Date
Matt Joras	41fbfa84c5	Change idle_timeout transport parameter to milliseconds Summary: This changed in to be in milliseconds d19 forward. Reviewed By: yangchi Differential Revision: D15183837 fbshipit-source-id: 561218321dcb51ec41093cafbdb967db2d4b3660	2019-05-02 15:50:27 -07:00
Aman Sharma	c04e0e08a2	Implementing stateless retry on the client Summary: This diff implements the handling of retry packets. As per the spec: 1. A client MUST accept and process at most one Retry packet for each connection attempt. After the client has received and processed an Initial or Retry packet from the server, it MUST discard any subsequent Retry packets that it receives. 2. Clients MUST discard Retry packets that contain an Original Destination Connection ID field that does not match the Destination Connection ID from its Initial packet. This prevents an off-path attacker from injecting a Retry packet. 3. The client responds to a Retry packet with an Initial packet that includes the provided Retry Token to continue connection establishment. 4. A client sets the Destination Connection ID field of this Initial packet to the value from the Source Connection ID in the Retry packet. Changing Destination Connection ID also results in a change to the keys used to protect the Initial packet. It also sets the Token field to the token provided in the Retry. Reviewed By: mjoras Differential Revision: D14464508 fbshipit-source-id: 212539a588378fb0d795caaec150959680172781	2019-05-01 16:49:05 -07:00
udippant	50d4939e9e	Initial commit of mvfst	2019-04-22 23:42:46 -07:00

Author

SHA1

Message

Date

Matt Joras

41fbfa84c5

Change idle_timeout transport parameter to milliseconds

Summary: This changed in to be in milliseconds d19 forward.

Reviewed By: yangchi

Differential Revision: D15183837

fbshipit-source-id: 561218321dcb51ec41093cafbdb967db2d4b3660

2019-05-02 15:50:27 -07:00

Aman Sharma

c04e0e08a2

Implementing stateless retry on the client

Summary:
This diff implements the handling of retry packets. As per the spec:
1. A client MUST accept and process at most one Retry packet for each connection attempt.  After the client has received and processed an Initial or Retry packet from the server, it MUST discard any subsequent Retry packets that it receives.
2. Clients MUST discard Retry packets that contain an Original Destination Connection ID field that does not match the Destination Connection ID from its Initial packet. This prevents an off-path attacker from injecting a Retry packet.
3. The client responds to a Retry packet with an Initial packet that includes the provided Retry Token to continue connection establishment.
4. A client sets the Destination Connection ID field of this Initial packet to the value from the Source Connection ID in the Retry packet.  Changing Destination Connection ID also results in a change to the keys used to protect the Initial packet.  It also sets the Token field to the token provided in the Retry.

Reviewed By: mjoras

Differential Revision: D14464508

fbshipit-source-id: 212539a588378fb0d795caaec150959680172781

2019-05-01 16:49:05 -07:00

udippant

50d4939e9e

Initial commit of mvfst

2019-04-22 23:42:46 -07:00

3 Commits