Re: [Ntp] I-D Action: draft-ietf-ntp-update-registries-09.txt
Danny Mayer <mayer@pdmconsulting.net> Sat, 02 December 2023 20:40 UTC
Return-Path: <mayer@pdmconsulting.net>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0FBCBC032104 for <ntp@ietfa.amsl.com>; Sat, 2 Dec 2023 12:40:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OlXADfKPAohR for <ntp@ietfa.amsl.com>; Sat, 2 Dec 2023 12:40:36 -0800 (PST)
Received: from chessie.everett.org (chessie.fmt1.pfcs.com [66.220.13.234]) by ietfa.amsl.com (Postfix) with ESMTP id A2C0AC032102 for <ntp@ietf.org>; Sat, 2 Dec 2023 12:40:36 -0800 (PST)
Received: from [192.168.1.152] (pool-108-26-215-237.bstnma.fios.verizon.net [108.26.215.237]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by chessie.everett.org (Postfix) with ESMTPSA id 4SjMJM4nqSzMR8y; Sat, 2 Dec 2023 20:40:35 +0000 (UTC)
Message-ID: <7d536bef-0ace-47e3-9dc5-36e7f5e95571@pdmconsulting.net>
Date: Sat, 02 Dec 2023 15:40:33 -0500
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: Hal Murray <halmurray@sonic.net>, "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
Cc: "ntp@ietf.org" <ntp@ietf.org>
References: <20231127025215.B19BF28C1C3@107-137-68-211.lightspeed.sntcca.sbcglobal.net>
From: Danny Mayer <mayer@pdmconsulting.net>
Autocrypt: addr=mayer@pdmconsulting.net; keydata= xsBNBFuvm5wBCAC9DxF2vFcA4FES0ajbbUz/YPUHec/4/4QaZnXjEBNUCcYqRKhDsGrabF7b 1IVW2VV00dKDk9Hxk2cZ0OtDAoTFVozlhMPQbbQHW5FCUCmvmOUfTcqjnYSXjt3UULLvKoZh PwteuoZEBVno+SkiMYbkCVUyEvjgcQyMAOdFdJbKS3lKqU7t8OxIgsH5lHdddMcOGDvYYREs Rhd3tTwFwssvg91I2Xh+b7x7EPoIqptcopLc2oGeX3ccuXZuqKqRNTViODIBT79bxenl38y4 +uSgYoZSGNCXJe83W7JMXf5TmeTbzaxoJsw93kXH71y2DbNqIt2AMOGDJIdWVxf7aHvBABEB AAHNJURhbm55IE1heWVyIDxtYXllckBwZG1jb25zdWx0aW5nLm5ldD7CwJQEEwEIAD4CGwMF CwkIBwIGFQoJCAsCBBYCAwECHgECF4AWIQRgb1gA0HP+S+QJ2mb9HkdxwIhMygUCYdyOwwUJ C22tJwAKCRD9HkdxwIhMytnkB/9J5WuA9vlZ1sKbzyyCUnwTKnpFbYujcL0aML6vpaUqScI5 ieVFrJtsu1VexJrsl1k2fxGoFaCr8ox1Kdw6dSgRgMMhXCpQI1xgnAjVIwVZs0Bdn3imWEUG M/Sc6Wci0B/fw/XO/UydgjAOdq6PHP0hlT9cjyupNNSgIBVDpVRY0kVhVuDp/UcFvKoqcthK 6h748nPwdBbL6HCfdgoQzKEjD27eba2pTPF9ToJcggOkNU33jyF4fBSsOl93YZuoc7dgsW+g fMIpVHV812A9yHoROeySM4kIFwWhUTGfyt+nBR2SVuvzqI+q7dgaVgnUkm+iq4WqTz2r/xCq cVBf5jftzsBNBFuvm5wBCACfJdNthq1KqkrY55kHGoyYPenUWRbaMbSiTanMZ+U67W+4eErS gK4OeRLuWvEj5hrd2oq/Fowj6qIZZ5lUm3uTOIQQLYchZSMemwAhkVdvu4gFTDldUnxgphrY DMmOc2oxKl+FHmJUYCvBEIzLJkPhGHApHMgW5y7/lHZL8QE55+aZINC4LgqOWhx7WzjpkH9e bA+TnoqKJdPXWKtqD8EU9m/LxDpXMulMArEZ/dlYfhfakJoj6iDC9yTIxfAkN4k5U5Y7MmeS lNPEobdz+Y/UvoKTXWOr88W+dSce0toSwfuA2R5Ji0DzIQ7VJSxRHoMhGZkt3z3otlhqSutv 6gCDABEBAAHCwJAEGAEIACYCGwwWIQRgb1gA0HP+S+QJ2mb9HkdxwIhMygUCYdyOxAUJC22t JwAeCRD9HkdxwIhMygkQ/R5HccCITMoJEP0eR3HAiEzKxKMH/3Gsrl+Vkn6GzJCp4jJ+hQh2 g3AS+quSBIEAWH7RNEPj9oP6jw86yCUR7OnKs+WSLK7xkshzlzpFgfX8opvH8+ipXlh6tN5+ g7zUk3wayXSXsea2ESqQ9KiEC9ja9G87vBSULQ/+5ffjFfy2rMHF1hHHmulRX79CgF8Q5Os1 azIry6nvetO9l1v6L2okD5oqUI1CobkeLMYPLKE5o3aMRwNI1z+5/WXcPKNrFqDQ9idVdmW0 +AF1nsHbs1gArYIFmI4YHXSDpB4ti8WjZU8yXUtN0eN++VAvqyjfT1FyR3fdNgFpGXp6+mwi swgmoEjf/GNcN3zs0X590bfaYPJfv/0=
In-Reply-To: <20231127025215.B19BF28C1C3@107-137-68-211.lightspeed.sntcca.sbcglobal.net>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/9RjPsVfLP6yRKlst8phPlTkqRqw>
Subject: Re: [Ntp] I-D Action: draft-ietf-ntp-update-registries-09.txt
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 02 Dec 2023 20:40:39 -0000
On 11/26/23 9:52 PM, Hal Murray wrote: > Could you please save/reserve extensiion Field Type 0x0000? Yes. This is actually a crypto-NAK as defined in RFC 5905 Section 9.2 though it's not called an extension field there. > > I don't have a good writeup. The idea is tangled up with 7822. The problem > is how to distinguish an extension from a MAC. That was the problem I was grappling with in that RFC. As the author of that section you can blame me it it's a bit mangled! > > Shared key MACs have a 4 byte key number and 16 or 20 bytes of MAC. The key > number space was shared by autokey and manual assignments. The manual mode > was restricted to the lower 65K. So sites that are not using autokey don't > need the at least 28 byte length restriction from RFC 7822 for the last > extension. If the type field is 0, the rest is a MAC rather than an extension. I did come up with an idea about handling a variable length MAC since the RFC was published though there may be some corner cases that would not be handled correctly. The problem is not having a length field to state how long it is supposed to be. The existing MAC should be replaced by an extension field MAC in a NTP v5 implementation so we have a length field we can depend on. Danny
- [Ntp] I-D Action: draft-ietf-ntp-update-registrie… internet-drafts
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Miroslav Lichvar
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Hal Murray
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Miroslav Lichvar
- Re: [Ntp] [EXT] Re: I-D Action: draft-ietf-ntp-up… Windl, Ulrich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Danny Mayer
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… James Browning
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Salz, Rich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Hal Murray
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Salz, Rich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Salz, Rich
- Re: [Ntp] [EXT] I-D Action: draft-ietf-ntp-update… Windl, Ulrich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Salz, Rich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Windl, Ulrich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Hal Murray
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Salz, Rich
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Danny Mayer
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Hal Murray
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Miroslav Lichvar
- Re: [Ntp] I-D Action: draft-ietf-ntp-update-regis… Miroslav Lichvar