IETF Logo Mail Archive

Re: [Ntp] WGLC: draft-ietf-ntp-interleaved-modes

Daniel Franke <dfoxfranke@gmail.com> Wed, 19 December 2018 17:40 UTC

Return-Path: <dfoxfranke@gmail.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1EA64130E7D for <ntp@ietfa.amsl.com>; Wed, 19 Dec 2018 09:40:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6z30XOK1sf1x for <ntp@ietfa.amsl.com>; Wed, 19 Dec 2018 09:40:38 -0800 (PST)
Received: from mail-qk1-x72b.google.com (mail-qk1-x72b.google.com [IPv6:2607:f8b0:4864:20::72b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9DFC7128766 for <ntp@ietf.org>; Wed, 19 Dec 2018 09:40:38 -0800 (PST)
Received: by mail-qk1-x72b.google.com with SMTP id q70so12163987qkh.6 for <ntp@ietf.org>; Wed, 19 Dec 2018 09:40:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=wUw+t57gQA0v3ulX7BQh5O+X5ph0FNCBKyEPsXEGgm8=; b=SlCHePmG4PIZvh7nVUxPXXFsy8jjqsb8n/KrVGwMc/ypaz/ITBjdqNymYH0zGgIYHM nB6lUEEi6sy5Gfdr8tjHTZShR1Gy9bmhWJ9mBwLpWz5hvkLRaTVMLGAAUkkR5Ajxtu0l uCIVkXhQolA/5irrN2+bWLSkS/u0SjkejbejqVpdiMtFT/mRegvrWzaF3wjYorKbBNAH zomoycfidSiFSA9Hf4QQZxeL1ipoSPv3XT2GNn0wGCoWNBlwpTjc3bU46SGU7SdN14t5 U3YFIybuTn6nPk8qrCwFe/1Q1iwTshCmjshSlrggZ0gdKhGmXI8KxU3XexNuTcx6eVvf UYiQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=wUw+t57gQA0v3ulX7BQh5O+X5ph0FNCBKyEPsXEGgm8=; b=eWstkXEOgMrx0youw6O13G6jI0RZDwuVuMkVMsRIh9hVhEwib7yHK5uoImrq54SW0x WHShMRAnHdseRstCKrqrZbwwGuAZCoHr8x8UJUEuLWoOa29E7c1MdsW3AAynRHRMp0MP rGO5c+GkM9Q6YvmsR2dxC3nJWr0CJwCYm8Txz1q+C2lLZijBYDhk3d5aSeDKMzEDSTQW PxQkUyoEwY5DpOhWkSV+AH0KeDZF5eV2yrEWRZu2cy1rNrb0RjgWHylIne8RPh3M/Wif JbbNwJ1lP3BEKz21WKA0P9y7wytinuLHwKfbl5wmVjvr9chnjsnttvZuFHrJhrBa4Ywh tUlg==
X-Gm-Message-State: AA+aEWbcytxEDTNop1MgIksR/uqsQPAPapO6YC9zkWDVPrMmNTROC4Cs KTwm2ATMOJ584CNMKm+dvgJff0ivnafV8fjwUDLUGAci
X-Google-Smtp-Source: AFSGD/WUFwI4d1njMzYeify7xGphplrjv3U+8tlmdt8rFcrR+Z+vleSJHVVym+MOMnOcIuSpagjMd9bU6FsjwJ9dhno=
X-Received: by 2002:a37:5dc3:: with SMTP id r186mr21472691qkb.90.1545241237591; Wed, 19 Dec 2018 09:40:37 -0800 (PST)
MIME-Version: 1.0
References: <2C2DBD6F-727F-48DB-BB48-14CE7F7F8B95@isoc.org>
In-Reply-To: <2C2DBD6F-727F-48DB-BB48-14CE7F7F8B95@isoc.org>
From: Daniel Franke <dfoxfranke@gmail.com>
Date: Wed, 19 Dec 2018 12:40:26 -0500
Message-ID: <CAJm83bBWve8DiQksQhnVF1uhnaN0kD-1kuJTDw-hoByyH7kMoA@mail.gmail.com>
To: Karen O'Donoghue <odonoghue@isoc.org>
Cc: "ntp@ietf.org" <ntp@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/xLsiykKdnjG0rcM7evsWIATvYrQ>
Subject: Re: [Ntp] WGLC: draft-ietf-ntp-interleaved-modes
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Dec 2018 17:40:41 -0000

Sorry for not getting this in during the WGLC period. I strongly
object to this document but nonetheless support advancing it because I
have already raised all these objections at several prior meetings and
it's clear that I'm in the rough on WG consensus. I will communicate
them again during the IETF Last Call period and hope that the IESG
finds them persuasive.

The core of my objection is that this proposal radically and
needlessly alters the semantics of existing timestamp fields and then
relies on a very brittle mechanism to disambiguate which semantics are
intended. Servers which implement this proposal will reply with
interleaved semantics if the origin timestamp in the client's request
is non-zero and matches the receive timestamp of a reply the server
previously sent within some scope, where the bounds of that scope (IP,
port, time window) are largely left to implementers' discretion.
Existing RFCs do not adequately ensure that existing implementations
that are not aware of interleaved mode will never send a request of
this form. If a client fully implements RFC 5905 and is there is no
other request in the same scope, then it's okay: it will instead set
its request's origin timestamp to the server's previous reply's
transmit timestamp, and this proposal correctly requires that the
receive and transmit timestamps in the reply not be equal. However,
this breaks down as soon as there are multiple clients in the same
scope (e.g., both behind the same NAT), especially if some of them are
non-conforming. At minimum, servers must then ensure that they never
send a transmit timestamp that matches *any* receive timestamp sent to
the same scope. Even then, non-conforming clients can break conforming
clients within their scope by sending colliding timestamps.

These failures may prove rare in practice, but there is no excuse for
taking the risk given that there is a much cleaner alternative: do not
alter any existing semantics, and instead put interleaved timestamps
into an extension field. Even if all known failure modes can be
satisfactorily resolved without doing this, it's the right thing as a
matter of basic principle and the WG's resistance to taking this
approach baffles me.

Finally, one unrelated nit: [I-D.ietf-ntp-data-minimization] is listed
as an informative reference, but it's referenced in sentences that use
RFC 2119 language, so it needs to be normative.

On Tue, Nov 6, 2018 at 3:49 PM Karen O'Donoghue <odonoghue@isoc.org> wrote:
>
> Folks,
>
> This message initiates a three plus week working group last call for:
>
> NTP Interleaved Modes
> https://datatracker.ietf.org/doc/draft-ietf-ntp-interleaved-modes/
>
> Please review the referenced document and send any comments to the mailing list including your assessment of whether this document is mature enough to proceed to the IESG. Please note that these messages of support for progression to the mailing list will be used to determine WG consensus to proceed.
>
> Please send all comments in by COB on Friday 30 November. We realize this is a bit longer than normal but we are coming out of an IETF week and heading into the Thanksgiving holiday in the US.
>
> Thanks!
> Karen and Dieter
>
> _______________________________________________
> ntp mailing list
> ntp@ietf.org
> https://www.ietf.org/mailman/listinfo/ntp

v2.23.0 | Report a Bug | By Email