IETF Logo Mail Archive

Re: [Ntp] Quick review of WGLC for status change for draft-ietf-ntp-update-registries

Harlan Stenn <stenn@nwtime.org> Mon, 15 August 2022 22:21 UTC

Return-Path: <stenn@nwtime.org>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB89AC152590 for <ntp@ietfa.amsl.com>; Mon, 15 Aug 2022 15:21:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.105
X-Spam-Level:
X-Spam-Status: No, score=-1.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, RDNS_NONE=0.793, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, T_SPF_HELO_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ugfirw_yoZ-E for <ntp@ietfa.amsl.com>; Mon, 15 Aug 2022 15:21:43 -0700 (PDT)
Received: from chessie.everett.org (unknown [IPv6:2001:470:1:205::234]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 221B5C1524D6 for <ntp@ietf.org>; Mon, 15 Aug 2022 15:21:43 -0700 (PDT)
Received: from [10.208.75.149] (071-084-168-128.res.spectrum.com [71.84.168.128]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by chessie.everett.org (Postfix) with ESMTPSA id 4M67zp4tbszMNZL; Mon, 15 Aug 2022 22:21:42 +0000 (UTC)
Message-ID: <9634a3f6-21af-5f4a-8cc7-bf8eb4538137@nwtime.org>
Date: Mon, 15 Aug 2022 15:21:40 -0700
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.12.0
Content-Language: en-US
To: Miroslav Lichvar <mlichvar@redhat.com>
Cc: Danny Mayer <mayer@pdmconsulting.net>, ntp@ietf.org
References: <PH0PR06MB70611F2331D8255F7E2B6604C2999@PH0PR06MB7061.namprd06.prod.outlook.com> <0b4c7efa-3977-b588-0974-33b6a9437e52@nwtime.org> <YvDWC27qKnODlD52@localhost> <0b57b7db-772e-f5e6-e6a0-a433673f3d77@nwtime.org> <YvED7T5R0UsRWbv3@localhost> <b64c6a0a-ea2e-0a19-4bb9-38bfaa2e5032@nwtime.org> <YvIUIu1LaloEjJMb@localhost> <a500eea8-e6a1-c10f-2385-3a05fb0e9638@pdmconsulting.net> <Yvomi1Y5hWhPi8Av@localhost> <c8a64fac-a11c-8d96-b14e-b780419c86d1@nwtime.org> <YvoxVCe3TG5XOIOV@localhost>
From: Harlan Stenn <stenn@nwtime.org>
In-Reply-To: <YvoxVCe3TG5XOIOV@localhost>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/2-y0VWMv6h6_Um1TU0srdkEK_rs>
Subject: Re: [Ntp] Quick review of WGLC for status change for draft-ietf-ntp-update-registries
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Aug 2022 22:21:47 -0000

On 8/15/2022 4:43 AM, Miroslav Lichvar wrote:
> On Mon, Aug 15, 2022 at 04:09:12AM -0700, Harlan Stenn wrote:
>> ntpd implemented the V1 EF format back around 2000.  When 5906 was
>> published, it used the V2 EF format.
>>
>> The code was not updated to use the V2 format.
> 
> What are the benefits of the V2 format over V1? To me it looks like
> different ordering of bits in the EF type field, which could not
> possibly have any advantage that would be worth the break in
> compatibility.
> 
> Why was this incompatibility not mentioned in RFC 5906?

My guess is that folks found the v1 format to be ugly in the way the 
fields were laid out.  As in, it offended "enough" peoples' OCD-ness.

I have no idea why it was not mentioned in 5906.

>> It is not difficult to support the v1 and v2 EF types.
> 
> If there are no conflicts.

I disagree.

The only use of the v1 format was for autokey.

TTBOMK the only users of the v1 format are ntp-4 implementations.  They 
will ONLY recognize autokey stuff.

Was this collision something that happens on an initial NTS handshake or 
was it farther down the line?

This all sounds kinda fishy to me.

The autokey stuff REQUIRES an authenticated packet, so this certainly 
would not be a problem on the receiving ntpd side.

The same should be true for a server that only speaks NTS.  But for this 
collision to be an issue here, it would mean that the client thinks it 
should be setting up an autokey association with the NTS server.

So am I missing something, or is this just drama based on a hypothetical?

> We already have one, which can resolved in the context of other EFs in
> the packet, but that will not generally be true for all future EFs.

Sorry, I'm still not seeing that there is anything "real" here.

-- 
Harlan Stenn <stenn@nwtime.org>
http://networktimefoundation.org - be a member!

v2.23.0 | Report a Bug | By Email