IRCaBot 2.1.0
GPLv3 © acetone, 2021-2022
#i2p-dev
/2025/03/28
@eyedeekay
&kytv
&zzz
+R4SAS
+RN
+dr|z3d
+hk
+lbt
+orignal
+postman
+snex
+wodencafe
Arch
Dann
DeltaOreo
DiCEy1904
FreefallHeavens_
Irc2PGuest11045
Irc2PGuest3964
Irc2PGuest59134
Irc2PGuest61103
Onn4l7h
Onn4|7h
Sleepy_
Soni
StormyCloud_
T3s|4_
Teeed
acetone_
aeiou
aisle1
ardu
b3t4f4c3___
bak83_
carried6590763
dickless
dr4wd3_
enoxa
eyedeekay_bnc
hagen_
mareki2p
not_bob_afk
plap
poriori_
profetikla
qend-irc2p
radakayot_
rapidash
shiver_
solidx66_
u5657
uop23ip
w8rabbit
weko_
x74a6
zzz last call for translations, pulling in an hour
zzz orignal, ping re: path challenge/response
orignal I'm here
orignal be back in 2 hours
dr|z3d those routers would have been flagged as sybils if we had ip detection enabled.
orignal so, what's the secnario?
zzz I reviewed the path challenge/response specs, my code, your code, and my logs
zzz I have good news and bad news ))
zzz the good news is that most of what you have is correct
zzz the bad news is you've only done half of it
orignal probably
zzz there's two issues, the first one is bigger
orignal I did somthing but not sure it was everything
zzz 1) when you get a packet from the wrong endpoint, you're supposed to enter the 'path validation phase;
zzz which is a state machine. You reduce your send window to the old endpoint and send a path challenge to the new endpoint
zzz when you get a path response back, THEN you change the endpoint
zzz the whole system is to prevent attacks where MitMs resend a packet from a different endpoint to 'steal' the session
orignal and what I do now?
zzz you're just changing the endpoint immediately
zzz so it's missing the whole point
orignal thanks. will fix
zzz 2) (smaller issue)
zzz the spec says the path challenge should contain address block, datetime block, and ack block
zzz same for path response
zzz I don't think you're doing that
orignal probably now
orignal will fix irt
zzz thanks
zzz back on 1) the spec also talks about timers, retransmissions, failures, cancellation, etc. that the state machine should do
zzz it's not too hard but that's the guidance
orignal will read
zzz not promising I do it all right either, but I tried ))
zzz there's a LOT of port-hoppers out there, so it's not too hard to test
zzz most of this, including the treat model and state machine, we got from QUIC, so I think it's pretty solid
orignal new endpoints,yes, block yes, retranission not sure since onon always sayd that my retransmission is shit ))
zzz I have a separate state machine for it, my regular retranmission code is only for data packets
orignal got it
zzz thanks. I think the spec is _pretty_ good, but holler if you need any help