[Ntp] Grease in Roughtime
David Venhoek <david@venhoek.nl> Tue, 17 September 2024 11:52 UTC
Return-Path: <david@venhoek.nl>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E36A8C17C8B0 for <ntp@ietfa.amsl.com>; Tue, 17 Sep 2024 04:52:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=venhoek-nl.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1FDDZOAwYHYD for <ntp@ietfa.amsl.com>; Tue, 17 Sep 2024 04:52:29 -0700 (PDT)
Received: from mail-ej1-x635.google.com (mail-ej1-x635.google.com [IPv6:2a00:1450:4864:20::635]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C433C14F68D for <ntp@ietf.org>; Tue, 17 Sep 2024 04:52:28 -0700 (PDT)
Received: by mail-ej1-x635.google.com with SMTP id a640c23a62f3a-a8a765f980dso100437166b.1 for <ntp@ietf.org>; Tue, 17 Sep 2024 04:52:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=venhoek-nl.20230601.gappssmtp.com; s=20230601; t=1726573947; x=1727178747; darn=ietf.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=cgXowxroka3TKcR9F+nQjiDICroK9UNZBfqF5pMaXrU=; b=smf18PpN81ixRB5UkV2exAwy2fvP2b+lD3+moZGOvNmAZB8lzIi+MXL1YFrXW5yfVh P2q15lvHRKW/ZzPawwLjj02dF5w50fdEBIvG/l+Eg0H5RzTboVkavjHl9J8szYrcfHwE p0DRArmXIHc+5ked2mlZPfv0fi8/RWe4raehtzaGeuUnEEAWNBkIAmz4jUp81MhOmtG1 Ht8MyjNK+PRkZkH0gvu3WoR2DIdomMYvcx33xwR6IOCzg7zLfvMrGOlVC2id8CrzZEOS x4zMmJjT49jRBR1KvYCU7hTcgXGnC2BsdJPSW7BRS9pBBujseoT4FLD07YLnru6HfooV 0NwQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1726573947; x=1727178747; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=cgXowxroka3TKcR9F+nQjiDICroK9UNZBfqF5pMaXrU=; b=IKmbIKEJnAtfiEw/Z5EliHOYMUrP6npPffc2eNRw1jXZYqzR9yqJnCQfMPxBDdz0vo 4KexPyBnbFbuQzUeBzGdEzyOHnvZltzfb+M5woC+supEFS23OxIK2Lr6hYi74o0PfCJM p+8uMx+GWtjSQ84XIrFmttucpcTxIKMVn6jIErmez828XjZo8sqz3fIKKKsPM2N6bIZ3 jtncucAsdG1tCDr5tvovaB5YcOL2oHfZDQdUbIwI+amqniEyRJCqILAVq2IMxqFTidKn BdKvy+yb63dYa22wyf2jSd8BBmr9nTQYvfqeuYGadaUc0hTWNipkWJlqOX2Kvw+zXYTE lS9g==
X-Gm-Message-State: AOJu0Yxj8ew2a4LqdlRx/u6GTTQUASmueoB8Dmi/mhv+fVFzevB+35N4 wvVV7EsuPEncBDjbKca6r0s4nTn3Vd6B0HrRP4Yy8BXhKahF3XHnDGvvnzAZkWFch1mN8Ddmwmo 3UeptGlxTe7dLxfYJT79p+D9YBpyGU6b6iBCax48/d519283P
X-Google-Smtp-Source: AGHT+IFzyzg4Fs5a6SUcOBviCYcvqZMyKbIzuRWxvsqb3LoqsgzP+WyZo3tpqsExkZliRvKK+ZLqi0WLuanayc8lirk=
X-Received: by 2002:a17:907:7d87:b0:a8a:93ce:d252 with SMTP id a640c23a62f3a-a9029453485mr760416366b.6.1726573946591; Tue, 17 Sep 2024 04:52:26 -0700 (PDT)
MIME-Version: 1.0
From: David Venhoek <david@venhoek.nl>
Date: Tue, 17 Sep 2024 13:52:15 +0200
Message-ID: <CAPz_-SUY9egByeG+cSHXFqbc6XzRmkpCF7Y4QS2ud0LmOjccAA@mail.gmail.com>
To: NTP WG <ntp@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Message-ID-Hash: GMQXW2UYHIW7DQVUR2NXBLDGBB5STQOA
X-Message-ID-Hash: GMQXW2UYHIW7DQVUR2NXBLDGBB5STQOA
X-MailFrom: david@venhoek.nl
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ntp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Ntp] Grease in Roughtime
List-Id: Network Time Protocol <ntp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/qa0iCrhqeVEtwt28pGH32dSV0sY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Owner: <mailto:ntp-owner@ietf.org>
List-Post: <mailto:ntp@ietf.org>
List-Subscribe: <mailto:ntp-join@ietf.org>
List-Unsubscribe: <mailto:ntp-leave@ietf.org>
Going over the draft of roughtime, I noticed a few issues regarding tags and versions First of all, regarding the ver tag, there is no requirement for servers to ignore unknown versions in that tag. this means that technically it is valid behavior right now for a server receiving unknown versions to reject that packet, even if there is version overlap. This seems highly undesirable Second, the grease section seems to contain no mechanisms for actually exercising either the ignoring of unknown tags by servers (or clients for that matter) nor for exercising the version negotiation mechanism. Given the experience in TLS with this, this is probably a really good idea to include. Finally, the grease section indicates the server must send malformed packets some amount of the time to clients to exercise the rejection mechanism, but doesn't specify in which way it may malform the packets. Thus servers could do this in ways that could potentially reduce future design space. I would be much more comfortable if we specified a specific set of things the server is allowed to do to create malformed packets, so that we at least have control over which parts of the future design space are excluded. Kind regards, David Venhoek
- [Ntp] Grease in Roughtime David Venhoek
- [Ntp] Re: Grease in Roughtime Marcus Dansarie
- [Ntp] Re: Grease in Roughtime kristof.teichel
- [Ntp] Re: Grease in Roughtime Marcus Dansarie
- [Ntp] Re: Grease in Roughtime kristof.teichel
- [Ntp] Re: Grease in Roughtime David Venhoek
- [Ntp] Re: Grease in Roughtime Marcus Dansarie
- [Ntp] Re: Grease in Roughtime Marcus Dansarie