IETF Logo Mail Archive

Re: [Masque] Updated proposed charter text

Mirja Kuehlewind <mirja.kuehlewind@ericsson.com> Mon, 06 April 2020 18:07 UTC

Return-Path: <mirja.kuehlewind@ericsson.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 887E03A0A29 for <masque@ietfa.amsl.com>; Mon, 6 Apr 2020 11:07:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.167
X-Spam-Level:
X-Spam-Status: No, score=-2.167 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.168, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F_kHqA1SkP2I for <masque@ietfa.amsl.com>; Mon, 6 Apr 2020 11:07:37 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60058.outbound.protection.outlook.com [40.107.6.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D5F703A0A16 for <masque@ietf.org>; Mon, 6 Apr 2020 11:07:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=PkAEkbwjUQbCd1WfuBa2lVldfsZ8jZJTddV35X4t+0s/wvPAqw5dGeENoS6rmH5C3E9MIz7X5YVANVjussUIHJSRqmsGjWRnyGGyp7V0ov101Cqv1nKz5cVua7HrIPryBaqGgb/OFxnz0NHvq+XVqZQAkhP4Z75OVWiROI/xPG4rkWkSmSGSZ5KdGDb6Y6fqmKaUpLv2uIWsddisN3ZqxHpJ63qhPgIS92qtv+qvMd3C76YWwd6l+w4uuLdd6dGIcnKlgTb/Gknv4k6aaJ2UJ42F362jtrFra4pH0oPE40BBI+KFd5aEFMoX5a44T1DVvbo85SwdiyMrC3hoyWVKHQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bBDGNHg1lxq7nMkTzMvTbJAz/9/1qnb1YjAKDLydspo=; b=K31Pjtc4eoLH3bMkux811nscdVElXsKTPRZ4FKF+3icamDPaHLoEgXDsdUe3pGmqSK7bb6IP+k3TWyeBD7lgz9fckyILIB6Uegico847XOyOoRt+V+Sa/5zBoLXu46u6QGFVbCcZdoVSWg0GtpoPYIIvgmP4QxAWJOem+NIdYvnsfbxylPKqWL5QzTp10COz+gz11V6vR78S8EYxJ4GmZ6D3einY7D8Z1x6Ot5St+b4gl8DvsVJ8UBcLGJdZKxmBmXxiz6hQxaaZ2tXonqqRqElL3vMUz2zXzZrYLaJfr1BTnbZc/XAuAEKn4ky37xuFewUUI7dX5BSFA0SZR6dAQg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bBDGNHg1lxq7nMkTzMvTbJAz/9/1qnb1YjAKDLydspo=; b=n//xcSmqi7yvLC5uYSAw8kQSuMdjHqB/m5bkbj+pcA0GDYSrtn8+XuteW9P+Iip91jv9rjsvu/YoXVgp/fENJn+9Zjqv1/gZZLi+XaM3f5bVF+hQ/N3Syin7/1kQaUY1sf7R30Bxrr31d4eZC4nmKP+MCapzsFfR0AddzYs75Nk=
Received: from AM0PR07MB4691.eurprd07.prod.outlook.com (52.135.149.158) by AM0PR07MB5825.eurprd07.prod.outlook.com (20.178.113.212) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2900.13; Mon, 6 Apr 2020 18:07:34 +0000
Received: from AM0PR07MB4691.eurprd07.prod.outlook.com ([fe80::298a:36c6:fff4:f8f8]) by AM0PR07MB4691.eurprd07.prod.outlook.com ([fe80::298a:36c6:fff4:f8f8%3]) with mapi id 15.20.2900.012; Mon, 6 Apr 2020 18:07:34 +0000
From: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>
To: Lucas Pardue <lucaspardue.24.7@gmail.com>, Eric Rescorla <ekr@rtfm.com>
CC: Christopher Wood <caw@heapingbits.net>, "masque@ietf.org" <masque@ietf.org>
Thread-Topic: [Masque] Updated proposed charter text
Thread-Index: AQHWB3uA92K/zczuiE+AorwaveT5nqhnYlAAgATBMoCAAENJAP//35UAgAADMQCAADl8AP//4fQAgAAEXgCAACWvAA==
Date: Mon, 06 Apr 2020 18:07:34 +0000
Message-ID: <E8E269F3-25C1-40F6-843A-AC399EA039E3@ericsson.com>
References: <89136f8b-70bd-40a0-b6d1-0e8a62a50ece@www.fastmail.com> <HE1PR07MB442601004BE58A00FD2D6B04E2C70@HE1PR07MB4426.eurprd07.prod.outlook.com> <30d32d26-7a6d-48d9-92b7-326ad08e5f08@www.fastmail.com> <2B89357E-FA42-48D7-9645-781CBE912DFC@ericsson.com> <CABcZeBNC8qDLtovoymAt771edBJnM2d-Otq0rjOFdgxR4YsohQ@mail.gmail.com> <CALGR9oYUdiipkLqHuvnJXmWxc7guPnW3PA-wLK5nEQU8W6p=UA@mail.gmail.com> <EE2EF5DC-006A-4028-AB92-4D0DC711AA72@ericsson.com> <CABcZeBOhKv8rQpRTSLpJ-vsSfMvAOWy9bJtfH+5MXq8rJnJBCw@mail.gmail.com> <CALGR9obwXy-vCbYaqt==-m_WWpUHCYQF1u7nZydSnXz8zeDEcg@mail.gmail.com>
In-Reply-To: <CALGR9obwXy-vCbYaqt==-m_WWpUHCYQF1u7nZydSnXz8zeDEcg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.22.0.200209
authentication-results: spf=none (sender IP is ) smtp.mailfrom=mirja.kuehlewind@ericsson.com;
x-originating-ip: [2003:de:e727:100:5872:25f2:750a:99b9]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 02184b15-5f90-4c3b-bbf0-08d7da5561da
x-ms-traffictypediagnostic: AM0PR07MB5825:
x-microsoft-antispam-prvs: <AM0PR07MB582518D3D43C0435FBC29D32F4C20@AM0PR07MB5825.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0365C0E14B
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR07MB4691.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10009020)(4636009)(39860400002)(346002)(376002)(366004)(396003)(136003)(36756003)(6506007)(71200400001)(66946007)(76116006)(66446008)(64756008)(66556008)(66476007)(316002)(5660300002)(54906003)(110136005)(966005)(15650500001)(8936002)(6486002)(478600001)(53546011)(6512007)(2616005)(81156014)(4326008)(33656002)(44832011)(86362001)(2906002)(186003)(8676002)(81166006); DIR:OUT; SFP:1101;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: MZEJcCaweqFbaF1lj6zvYWcpN51MYW1KHNbvGtbjgTjNEdI7BOBzf9ZX4F3u/fOB+QO34MLemyX7ljO0JV/foCXhzEljdx3ir6yKkBSOtJYFe0+4+TuH0ClE5htN49QpS80as+m7INX/Vs/mYsjqMk7wYqd4OZdqFIVg2RcCxcr8tw4nmuEud+tJ4uCU6wOSLy71tthiJb2+KO004B49luFXzBlNdqzbiFlBJRcAQG3k6hEg5Z6jPtCPVS4bnpQw7oAdOIKrf6zaxRXD/neLI9+i9HDSt5O2eQAMsZD2vnMZTujGEULb5hvXGqobOVBFarqFUuWcQNkCYx3MnACr/rwjKmviQI82yRwVvMQeq15gCQPox4eAVcgZnQ4JCpFdsbG8MePs+ZsxNVIrnw3kJze+KIZId9/Ve+cHjmY1qqmHI+XdFave+Q4uCWybVnhzYN3BxV0cPPF4QFwaKeRIluFTBzgVhJPY5eOCM7sQ+XBz5N0Ev/+zYlR4hRFNtSWmBfgfFKaySnh0LH2AkCG9fg==
x-ms-exchange-antispam-messagedata: OGeIT/1Gm54OEG2mKDmGOt8ot9rfCga667fG8/j8V7gAkHcS2UwoDHJ6sYAEtP3TvV6g/QMhDFNoIdUtOrPSTsqod/wXszzBIWnF6b21KyEDg2LjSext4QBKelRIKoo/cd0vQW5pxEG8dgE9kySq4g0cA+iaw4wy7+AYF5be87OAueAxeJmA6ABKlyIY/mXgplkrPB7kNcKVzWkyNlMO6g==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_E8E269F325C140F6843AAC399EA039E3ericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 02184b15-5f90-4c3b-bbf0-08d7da5561da
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Apr 2020 18:07:34.4465 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: vlzUKeFFv+FpaDKe/WXbOwSJ9qjv0D1hii3hE2aVpIt4OzcvdByXIVPRJXC+aBMlgHDyusqxOIEFg45vxmK4GV6U/CnBP5v6T91E/txz42g=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR07MB5825
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/BmLNlxfz61YWMKDg2R9bAoV7Hl8>
Subject: Re: [Masque] Updated proposed charter text
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Apr 2020 18:07:40 -0000

Hi Lucas,

see below.

From: Lucas Pardue <lucaspardue.24.7@gmail.com>
Date: Monday, 6. April 2020 at 19:52
To: Eric Rescorla <ekr@rtfm.com>
Cc: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>, Christopher Wood <caw@heapingbits.net>, "masque@ietf.org" <masque@ietf.org>
Subject: Re: [Masque] Updated proposed charter text

I think there is some philosophical difference and view of the layering here.
Another way to look at it is that we want to use the HTTP semantic over one QUIC connection to bootstrap proxied stream- or datagram-based flows within that connection[1].

[MK] Yes I think we agree here.

HTTP/3 is today the specification of HTTP over QUIC, and it uses the "h3" ALPN. It might be desirable to define a different HTTP over QUIC mapping, e.g. "masque", that uses the same serialization as HTTP/3 but includes some extra features, constraints etc.

[MK ]And I guess we will need to have some discussion about this in the working group. So coming back to the original point about the wording in the charter: I still think saying QUIC connection (as you just did above) would be more generic/correct and would also be more clear about allowing this discussion to happen in the working group rather than prematurely precluding it now.



This seems like a good point to consider BCP56bis[2] and decide where on the spectrum of HTTP/non-HTTP MASQUE falls.

Lucas

[1] Without specifying the same connection, one could imagine using an HTTP/3 connection to bootstrap a new QUIC connection that uses some other ALPN ID. I don't think that is what we want.
[2] https://httpwg.org/http-extensions/draft-ietf-httpbis-bcp56bis.html#used<https://protect2.fireeye.com/v1/url?k=7d7ed50c-21aadd4f-7d7e9597-86a1150bc3ba-fe685d39dbe6fef0&q=1&e=5f8eaa70-762d-4d24-ad87-cb1c21b4c56f&u=https%3A%2F%2Fhttpwg.org%2Fhttp-extensions%2Fdraft-ietf-httpbis-bcp56bis.html%23used>

On Mon, Apr 6, 2020 at 6:37 PM Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>> wrote:


On Mon, Apr 6, 2020 at 10:24 AM Mirja Kuehlewind <mirja.kuehlewind@ericsson.com<mailto:mirja.kuehlewind@ericsson.com>> wrote:
Hi Lucas, hi Ekr,

see inline.

From: Lucas Pardue <lucaspardue.24.7@gmail.com<mailto:lucaspardue.24.7@gmail.com>>
Date: Monday, 6. April 2020 at 17:59
To: Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>>
Cc: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com<mailto:mirja.kuehlewind@ericsson.com>>, Christopher Wood <caw@heapingbits.net<mailto:caw@heapingbits.net>>, "masque@ietf.org<mailto:masque@ietf.org>" <masque@ietf.org<mailto:masque@ietf.org>>
Subject: Re: [Masque] Updated proposed charter text



On Mon, Apr 6, 2020 at 4:48 PM Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>> wrote:

On Mon, Apr 6, 2020 at 8:43 AM Mirja Kuehlewind <mirja.kuehlewind=40ericsson.com@dmarc..ietf.org<mailto:40ericsson.com@dmarc.ietf.org>> wrote:
Hi Chris,

In draft-schinazi-masque-protocol I would say that the QUIC, UDP, and IP proxying services run directly on top of QUIC without any HTTP in between (HTTP is only used only for the negotiation part but not for the forwarding/multiplexing).

Philosophy aside, do we agree that these messages would be carried in QUIC Datagram frames (https://tools.ietf.org/html/draft-ietf-quic-datagram-00)?

[MK] Yes, for datagram-based flows. And QUIC stream frames for stream-based flows.

OK.

Therefore I think it would be more correct to actually change this one occurrence of HTTP3 back to  QUIC in the following sentence:

"The primary goal of this working group is to develop mechanisms that allow configuring and concurrently running multiple proxied stream- and datagram-based flows inside a HTTP/3 connection"

I'm not sure that this is right. If you use the H3 ALPN token and then use H3 to negotiate but also negotiate datagram, this seems like an H3 connection to me.

[MK] I guess it gets a bit philosophical now: If we would have an own ALPN token for masque (which is reasonable for some use cases) but still use the HTTP-based scheme as proposed in draft-schinazi-masque-protocol by POSTing for configuration parameters, would that still be H3?
Well, ISTM that if we are using H3 for negotiation, then we should be using the H3 ALPN token.

-Ekr



[MK] I mean I think we are aligned here what we want. I just don’t want to be over-restrictive in the charter by calling it there a H3 connection while calling it a QUIC connection would be fine as well.



-Ekr


I would find using "QUIC" in place of "HTTP/3" confusing. QUIC requires an authenticated negotiation of the application protocol and we use ALPN for that today. There is no mechanism to my knowledge that would allow the creation of just a QUIC connection, and I don't even think MASQUE requires that.

IMO it be more accurate for us to say, "The primary goal of this working group is to develop HTTP mechanisms that allow configuration of QUIC transport features inside an HTTP/3 connection, with the aim to concurrently run multiple proxied stream- and datagram-based flows."

[MK] I think we need more than just “configuration of QUIC transport features“ as the forwarding part itself and any operations needed for the forwarding part e.g. address translation or some kind of header compression are not a QUIC transport feature.

[MK] However basically asking you the same again: draft-schinazi-masque-protocol proposed a POST-based mechanism to exchange configuration parameter. Is that really a HTTP mechanism for you? For me that a new protocol that uses HTTP underneath.

Mirja

v2.23.0 | Report a Bug | By Email