[AVTCORE] Roman Danyliw's No Objection on draft-ietf-payload-vp9-13: (with COMMENT)

Roman Danyliw via Datatracker <noreply@ietf.org> Wed, 02 June 2021 16:16 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-payload-vp9@ietf.org, avtcore-chairs@ietf.org, avt@ietf.org, bernard.aboba@gmail.com, bernard.aboba@gmail.com
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Roman Danyliw <rdd@cert.org>
Message-ID: <162265058467.12641.14507999218364492698@ietfa.amsl.com>
Date: Wed, 02 Jun 2021 09:16:24 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/avt/sDetgm6_KzZrd95G0mFzxrWC_IU>
Subject: [AVTCORE] Roman Danyliw's No Objection on draft-ietf-payload-vp9-13: (with COMMENT)

Roman Danyliw has entered the following ballot position for
draft-ietf-payload-vp9-13: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-payload-vp9/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thank you to Rifaat Shekh-Yusef for the SECDIR review.

** Section 8. Thanks for mentioning the denial of service via computational
complexity issue.  Since the VP9 spec doesn’t say it, but other codec documents
typically do (RFC6386 and draft-ietf-cellar-ffv1), please also considering
adding a comment about processing un-trusted input.  Roughly:

OLD
   This RTP payload format and its media decoder do not exhibit any
   significant non-uniformity in the receiver-side computational
   complexity for packet processing, and thus are unlikely to pose a
   denial-of-service threat due to the receipt of pathological data.
   Nor does the RTP payload format contain any active content.

NEW
Implementations of this RTP payload format need to take appropriate security
considerations into account.  It is extremely important for the decoder to be
robust against malicious payloads and ensure that they do not cause the decoder
to overrun its allocated memory.  An overrun in allocated memory could lead to
arbitrary code execution by an attacker.  The same applies to the encoder, even
though problems in encoders are typically rarer.

This RTP payload format and its media decoder do not exhibit any significant
non-uniformity in the receiver-side computational complexity for packet
processing, and thus are unlikely to pose a denial-of-service threat due to the
receipt of pathological data.  Nor does the RTP payload format contain any
active content.

** Nits

-- Section 3.  Editorial.  Per “Layers are designed (and MUST be encoded) …”,
it seems odd to have normative language as a parenthetical.

-- Section 3.  Editorial.  s/a the term/the term/

-- Section 6.1.2. Typo. s/ capabilties/ capabilities/

[AVTCORE] Roman Danyliw's No Objection on draft-i… Roman Danyliw via Datatracker
Re: [AVTCORE] Roman Danyliw's No Objection on dra… Jonathan Lennox
Re: [AVTCORE] Roman Danyliw's No Objection on dra… Roman Danyliw