Re: [Int-area] New Version Notification for draft-olteanu-intarea-socks-6-02.txt
David Schinazi <dschinazi@apple.com> Tue, 06 March 2018 18:36 UTC
Return-Path: <dschinazi@apple.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A455B129C6B for <int-area@ietfa.amsl.com>; Tue, 6 Mar 2018 10:36:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.31
X-Spam-Level:
X-Spam-Status: No, score=-4.31 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BdVeZ8-Fexfw for <int-area@ietfa.amsl.com>; Tue, 6 Mar 2018 10:36:18 -0800 (PST)
Received: from mail-in6.apple.com (mail-out6.apple.com [17.151.62.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 691EF124F57 for <int-area@ietf.org>; Tue, 6 Mar 2018 10:36:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=apple.com; s=mailout2048s; c=relaxed/simple; q=dns/txt; i=@apple.com; t=1520361378; x=2384274978; h=From:Sender:Reply-To:Subject:Date:Message-id:To:Cc:MIME-version:Content-type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-reply-to:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=WijOFHZoYRsntcEpfAjmDbmg416+1UQZBA6zaBlULP0=; b=tZCxDdne7OX8JeuYBKKOjV2XQnKnbqlAWlpi5YZgHN21NrGDmvIIoqgWpdCUAAx7 M9a9gxRATSwDPBI/n4QC8xUHbIh5By0mglxd2YKWW2rQWxIrJ5VemIWGhQXPx+cm NrCJIdo+Wmy6IFnbgVyPel4+JjRODCBJ8xGQIJeDmD4IGpYDqxVVuBFaqogWzMsj Eo5ziqabuBVR5DevjXIugtnvI1o9ZWRBKmamRw9sKbw6DBvSVK00+Ytn8Uju4u43 K7dYt4H5xjNCWCk0GpUB51ATXw5irMq1qd71ECOEztRAU1a4dVZEhkqsboE2he/+ JP4Vp0OLt9xwt8HeP0wv/g==;
Received: from relay8.apple.com (relay8.apple.com [17.128.113.102]) (using TLS with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mail-in6.apple.com (Apple Secure Mail Relay) with SMTP id 75.D2.28259.2AFDE9A5; Tue, 6 Mar 2018 10:36:18 -0800 (PST)
X-AuditID: 11973e15-f06549e000006e63-67-5a9edfa2b913
Received: from nwk-mmpp-sz09.apple.com (nwk-mmpp-sz09.apple.com [17.128.115.80]) by relay8.apple.com (Apple SCV relay) with SMTP id 7C.8E.10701.2AFDE9A5; Tue, 6 Mar 2018 10:36:18 -0800 (PST)
MIME-version: 1.0
Content-type: multipart/alternative; boundary="Boundary_(ID_FJ40kF1o/HeAUSqLwJifXQ)"
Received: from [17.234.43.162] (unknown [17.234.43.162]) by nwk-mmpp-sz09.apple.com (Oracle Communications Messaging Server 8.0.2.2.20180130 64bit (built Jan 30 2018)) with ESMTPSA id <0P56003ACMCGW400@nwk-mmpp-sz09.apple.com>; Tue, 06 Mar 2018 10:36:17 -0800 (PST)
Sender: dschinazi@apple.com
From: David Schinazi <dschinazi@apple.com>
Message-id: <607A52AC-9E01-4F2B-8A67-7238517614FD@apple.com>
Date: Tue, 06 Mar 2018 10:36:15 -0800
In-reply-to: <0e68adaf-8241-b2b7-f20f-979f2a70eae3@cs.pub.ro>
Cc: "Int-area@ietf.org" <int-area@ietf.org>
To: Vladimir Olteanu <vladimir.olteanu@cs.pub.ro>
References: <152029076645.12757.10745042892446753636.idtracker@ietfa.amsl.com> <0e68adaf-8241-b2b7-f20f-979f2a70eae3@cs.pub.ro>
X-Mailer: Apple Mail (2.3445.5.20)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrILMWRmVeSWpSXmKPExsUi2FCYprvo/rwog3dveCxuzLrJYnGorYnZ gclj6smXrB5LlvxkCmCK4rJJSc3JLEst0rdL4MrYvOU0S8GfsIrfz2IbGDvduxg5OSQETCRu PNjI0sXIxSEksIZJom3aTiaYxO17F8FsIYGDjBLrzoiA2LwCghI/Jt9jAbGZBcIkJm4+xQzR PJFJYm7neUaQhLCAtETXhbusXYwcHGwCWhIH1hhB9NpI3J19kRWiJFpiUmcLmM0ioCqxrvsS 2C5OAVuJCatfsIC0MgtoS7w4qQoSFhEwlJi7ZzMbxKpGRok7/SvYIe5Ukpj+/TZYQkJgDpvE lvZ5TBMYhWYhuXUWklshbC2J749ageIgO+QlDp6XhQhrSjy794kdwtaWePLuAusCRrZVjEK5 iZk5upl5ZnqJBQU5qXrJ+bmbGEFxMN1OdAfjmVVWhxgFOBiVeHg37J8XJcSaWFZcmXuIUZqD RUmct2Pz3CghgfTEktTs1NSC1KL4otKc1OJDjEwcnFINjMEK7GrltQ3Pbt76+HRm4McvV4tZ fzJ9VHihMZnHdZL98f8tkopMVaUhtxrZL/j/jt0fH80yo0VdTVCobop+cMrpqT47uVsv+z7m d1ZUTj559GWusdbWT3MkmAI/V6zZ2P7T+7KhsbKEx7fzQScWX+D4bfMyS+Gv2ZxYyW9Vsz65 z1y+WWJyshJLcUaioRZzUXEiAAA4zTZkAgAA
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrCLMWRmVeSWpSXmKPExsUi2FAcoLvo/rwog5lzOCxuzLrJYnGorYnZ gclj6smXrB5LlvxkCmCK4rJJSc3JLEst0rdL4MrYvOU0S8GfsIrfz2IbGDvduxg5OSQETCRu 37vIBGILCRxklFh3RgTE5hUQlPgx+R4LiM0sECYxcfMp5i5GLqCaiUwSczvPM4IkhAWkJbou 3GXtYuTgYBPQkjiwxgii10bi7uyLrBAl0RKTOlvAbBYBVYl13ZfAdnEK2EpMWP2CBaSVWUBb 4sVJVZCwiIChxNw9m9kgVjUyStzpX8EOcaeSxPTvt9kmMPLPQnLeLCTnQdhaEt8ftQLFQcbK Sxw8LwsR1pR4du8TO4StLfHk3QXWBYxsqxgFilJzEist9BILCnJS9ZLzczcxgsO2MG0HY9Ny q0OMAhyMSjy8G/bPixJiTSwrrsw9xCjBwawkwqtzDCjEm5JYWZValB9fVJqTWnyIUZqDRUmc t/nnzCghgfTEktTs1NSC1CKYLBMHp1QD4+nmnqg8FpN/ycd5Z6zW2V6VfaV72iXbfPvvf4SZ lr19trlQecVrt1NcuRdVHv60eNHVPu2qiJjUuZjeuae/R0kqHeGbHzaV65HfoY/hgdMDJ8y8 em7l2Yj+T7Hbdfe0mGQLCJx36Ns4M32rji6f6D+T7Qti37XZHV/VKXigWeX2DD1uPlmXRCWW 4oxEQy3mouJEAN5rKj9XAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/26TzkmBO1o0if-RAJm0E3gqR6d0>
Subject: Re: [Int-area] New Version Notification for draft-olteanu-intarea-socks-6-02.txt
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Mar 2018 18:36:21 -0000
Hi Vladimir, Thank for updating the draft. To be honest I'm pretty surprised to see socket options sent over the wire here. Using the socket API is not a requirement to support TCP/IP and send data across the internet. Wouldn't it make more sense to send networking constructs over the wire instead of OS constructs? I understand the need to signal TFO support, but section 8.1 "Socket Options" appears to be creating an IANA registry for OS constructs. The target use-cases you describe (TFO and MPTCP) are networking constructs. Rephrasing this section as generic SOCKS options without mentioning sockets (which are an implementation detail) would address my concerns. Thanks, David Schinazi > On Mar 5, 2018, at 16:03, Vladimir Olteanu <vladimir.olteanu@cs.pub.ro> wrote: > > Hi, > > We've submitted a revision of the SOCKSv6 draft. > > We've added an extensible mechanism whereby clients can alter proxy's behavior, roughly in the style of setsockopt()/getsockopt(). (Individual socket options have to be standardized separately, and don't necessarily map 1:1 to the function calls. This is not a straight set/getsockopt() RPC.) We've included a few use cases: > * TFO (previously handled by a field in the request) > * discovery of MPTCP availability on the server side > * changing the MPTCP scheduler > > We've also addressed another security issue caused by sending SOCKS requests via TLS early data. > > Cheers, > Vlad > > > -------- Forwarded Message -------- > Subject: New Version Notification for draft-olteanu-intarea-socks-6-02.txt > Date: Mon, 05 Mar 2018 14:59:26 -0800 > From: internet-drafts@ietf.org <mailto:internet-drafts@ietf.org> > To: Vladimir Olteanu <vladimir.olteanu@cs.pub.ro> <mailto:vladimir.olteanu@cs.pub.ro>, Dragos Niculescu <dragos.niculescu@cs.pub.ro> <mailto:dragos.niculescu@cs.pub.ro> > > A new version of I-D, draft-olteanu-intarea-socks-6-02.txt > has been successfully submitted by Vladimir Olteanu and posted to the > IETF repository. > > Name: draft-olteanu-intarea-socks-6 > Revision: 02 > Title: SOCKS Protocol Version 6 > Document date: 2018-03-05 > Group: Individual Submission > Pages: 23 > URL: https://www.ietf.org/internet-drafts/draft-olteanu-intarea-socks-6-02.txt <https://www.ietf.org/internet-drafts/draft-olteanu-intarea-socks-6-02.txt> > Status: https://datatracker.ietf.org/doc/draft-olteanu-intarea-socks-6/ <https://datatracker.ietf.org/doc/draft-olteanu-intarea-socks-6/> > Htmlized: https://tools.ietf.org/html/draft-olteanu-intarea-socks-6-02 <https://tools.ietf.org/html/draft-olteanu-intarea-socks-6-02> > Htmlized: https://datatracker.ietf.org/doc/html/draft-olteanu-intarea-socks-6-02 <https://datatracker.ietf.org/doc/html/draft-olteanu-intarea-socks-6-02> > Diff: https://www.ietf.org/rfcdiff?url2=draft-olteanu-intarea-socks-6-02 <https://www.ietf.org/rfcdiff?url2=draft-olteanu-intarea-socks-6-02> > > Abstract: > The SOCKS protocol is used primarily to proxy TCP connections to > arbitrary destinations via the use of a proxy server. Under the > latest version of the protocol (version 5), it takes 2 RTTs (or 3, if > authentication is used) before data can flow between the client and > the server. > > This memo proposes SOCKS version 6, which reduces the number of RTTs > used, takes full advantage of TCP Fast Open, and adds support for > 0-RTT authentication. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > _______________________________________________ > Int-area mailing list > Int-area@ietf.org > https://www.ietf.org/mailman/listinfo/int-area
- [Int-area] Fwd: New Version Notification for draf… Vladimir Olteanu
- Re: [Int-area] New Version Notification for draft… David Schinazi
- Re: [Int-area] New Version Notification for draft… Vladimir Olteanu
- Re: [Int-area] Fwd: New Version Notification for … Vladimir Olteanu