[Ntp] Grease in Roughtime

David Venhoek <david@venhoek.nl> Tue, 17 September 2024 11:52 UTC

Return-Path: <david@venhoek.nl>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E36A8C17C8B0 for <ntp@ietfa.amsl.com>; Tue, 17 Sep 2024 04:52:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=venhoek-nl.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1FDDZOAwYHYD for <ntp@ietfa.amsl.com>; Tue, 17 Sep 2024 04:52:29 -0700 (PDT)
Received: from mail-ej1-x635.google.com (mail-ej1-x635.google.com [IPv6:2a00:1450:4864:20::635]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C433C14F68D for <ntp@ietf.org>; Tue, 17 Sep 2024 04:52:28 -0700 (PDT)
Received: by mail-ej1-x635.google.com with SMTP id a640c23a62f3a-a8a765f980dso100437166b.1 for <ntp@ietf.org>; Tue, 17 Sep 2024 04:52:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=venhoek-nl.20230601.gappssmtp.com; s=20230601; t=1726573947; x=1727178747; darn=ietf.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=cgXowxroka3TKcR9F+nQjiDICroK9UNZBfqF5pMaXrU=; b=smf18PpN81ixRB5UkV2exAwy2fvP2b+lD3+moZGOvNmAZB8lzIi+MXL1YFrXW5yfVh P2q15lvHRKW/ZzPawwLjj02dF5w50fdEBIvG/l+Eg0H5RzTboVkavjHl9J8szYrcfHwE p0DRArmXIHc+5ked2mlZPfv0fi8/RWe4raehtzaGeuUnEEAWNBkIAmz4jUp81MhOmtG1 Ht8MyjNK+PRkZkH0gvu3WoR2DIdomMYvcx33xwR6IOCzg7zLfvMrGOlVC2id8CrzZEOS x4zMmJjT49jRBR1KvYCU7hTcgXGnC2BsdJPSW7BRS9pBBujseoT4FLD07YLnru6HfooV 0NwQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1726573947; x=1727178747; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=cgXowxroka3TKcR9F+nQjiDICroK9UNZBfqF5pMaXrU=; b=IKmbIKEJnAtfiEw/Z5EliHOYMUrP6npPffc2eNRw1jXZYqzR9yqJnCQfMPxBDdz0vo 4KexPyBnbFbuQzUeBzGdEzyOHnvZltzfb+M5woC+supEFS23OxIK2Lr6hYi74o0PfCJM p+8uMx+GWtjSQ84XIrFmttucpcTxIKMVn6jIErmez828XjZo8sqz3fIKKKsPM2N6bIZ3 jtncucAsdG1tCDr5tvovaB5YcOL2oHfZDQdUbIwI+amqniEyRJCqILAVq2IMxqFTidKn BdKvy+yb63dYa22wyf2jSd8BBmr9nTQYvfqeuYGadaUc0hTWNipkWJlqOX2Kvw+zXYTE lS9g==
X-Gm-Message-State: AOJu0Yxj8ew2a4LqdlRx/u6GTTQUASmueoB8Dmi/mhv+fVFzevB+35N4 wvVV7EsuPEncBDjbKca6r0s4nTn3Vd6B0HrRP4Yy8BXhKahF3XHnDGvvnzAZkWFch1mN8Ddmwmo 3UeptGlxTe7dLxfYJT79p+D9YBpyGU6b6iBCax48/d519283P
X-Google-Smtp-Source: AGHT+IFzyzg4Fs5a6SUcOBviCYcvqZMyKbIzuRWxvsqb3LoqsgzP+WyZo3tpqsExkZliRvKK+ZLqi0WLuanayc8lirk=
X-Received: by 2002:a17:907:7d87:b0:a8a:93ce:d252 with SMTP id a640c23a62f3a-a9029453485mr760416366b.6.1726573946591; Tue, 17 Sep 2024 04:52:26 -0700 (PDT)
MIME-Version: 1.0
From: David Venhoek <david@venhoek.nl>
Date: Tue, 17 Sep 2024 13:52:15 +0200
Message-ID: <CAPz_-SUY9egByeG+cSHXFqbc6XzRmkpCF7Y4QS2ud0LmOjccAA@mail.gmail.com>
To: NTP WG <ntp@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Message-ID-Hash: GMQXW2UYHIW7DQVUR2NXBLDGBB5STQOA
X-Message-ID-Hash: GMQXW2UYHIW7DQVUR2NXBLDGBB5STQOA
X-MailFrom: david@venhoek.nl
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ntp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Ntp] Grease in Roughtime
List-Id: Network Time Protocol <ntp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/qa0iCrhqeVEtwt28pGH32dSV0sY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Owner: <mailto:ntp-owner@ietf.org>
List-Post: <mailto:ntp@ietf.org>
List-Subscribe: <mailto:ntp-join@ietf.org>
List-Unsubscribe: <mailto:ntp-leave@ietf.org>

Going over the draft of roughtime, I noticed a few issues regarding
tags and versions

First of all, regarding the ver tag, there is no requirement for
servers to ignore unknown versions in that tag. this means that
technically it is valid behavior right now for a server receiving
unknown versions to reject that packet, even if there is version
overlap. This seems highly undesirable

Second, the grease section seems to contain no mechanisms for actually
exercising either the ignoring of unknown tags by servers (or clients
for that matter) nor for exercising the version negotiation mechanism.
Given the experience in TLS with this, this is probably a really good
idea to include.

Finally, the grease section indicates the server must send malformed
packets some amount of the time to clients to exercise the rejection
mechanism, but doesn't specify in which way it may malform the
packets. Thus servers could do this in ways that could potentially
reduce future design space. I would be much more comfortable if we
specified a specific set of things the server is allowed to do to
create malformed packets, so that we at least have control over which
parts of the future design space are excluded.

Kind regards,
David Venhoek