IESG review Rob Wilton: Section 1 and section 2.1 - conflict: re protection?

Question

IESG review Rob Wilton: Section 1 and section 2.1 - conflict: re protection?

mirjak opened this issue 3 years ago · 2 comments

Section 1 states:

No information in the
protocol header, even that which can be inspected, is mutable by the
network. This is enforced through integrity protection of the wire
image [WIRE-IMAGE].

Section 2.1 states:

Retry (Section 17.2.5 of [QUIC-TRANSPORT]) and Version Negotiation
(Section 17.2.1 of [QUIC-TRANSPORT]) packets are not encrypted or
protected in any way.

Do these two statements conflict: re protection?

Answer 1 · 2022-05-31T18:04:14.000Z

retry packets are actually protected by the Retry Integrity Tag. However not sure about version negotiations...?

Answer 2 · 2022-06-01T17:58:45.000Z

The text in section 2.1. is already covered by issue #476 and fixed by PR #484 respectively. However, the text in section 1 needs fixing as well as VN packets are not really protected...