You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
netem should be able to parse QUIC Client Initials, in particular the TLS Client Hello contained in the Initial packet.
Background: QUIC Initial packets are protected by AEAD using initial (known!) keys. This Initial protection "exists to ensure that the sender of the packet is on the network path" (RFC 9000).
Such a parser is useful for netem because it will allow us to emulate packet filters, middleboxes, that inspect and filter based on Client Hello and QUIC header fields. Consequently, we can better test probe-cli's QUIC-based experiments using netemx.
We consider this issue finished, once the following tasks are resolved:
Implement a parser and decryption routine for QUIC Client Initials and QUIC CRYPTO frames, as described in RFC 9001. To parse the content of the TLS Client Hello, we can leverage the existing routine implemented in netem/tlsparse.go
Decide whether this parser should be extended to parse other QUIC packets, and/or other QUIC frame types as well, or whether we should stick to this specialized functionality (do we need to parse other QUIC packets/frames to extend netem?)
Implement unit tests using real QUIC Initial packets to ensure that the parser works.
The text was updated successfully, but these errors were encountered:
netem should be able to parse QUIC Client Initials, in particular the TLS Client Hello contained in the Initial packet.
Background: QUIC Initial packets are protected by AEAD using initial (known!) keys. This Initial protection "exists to ensure that the sender of the packet is on the network path" (RFC 9000).
Such a parser is useful for netem because it will allow us to emulate packet filters, middleboxes, that inspect and filter based on Client Hello and QUIC header fields. Consequently, we can better test probe-cli's QUIC-based experiments using netemx.
We consider this issue finished, once the following tasks are resolved:
The text was updated successfully, but these errors were encountered: