Re: Is the invariants draft really standards track?
Christian Huitema <huitema@huitema.net> Wed, 27 May 2020 16:03 UTC
Return-Path: <huitema@huitema.net>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F6E13A0F64 for <quic@ietfa.amsl.com>; Wed, 27 May 2020 09:03:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GXbd7KFadpTv for <quic@ietfa.amsl.com>; Wed, 27 May 2020 09:03:03 -0700 (PDT)
Received: from mx43-out1.antispamcloud.com (mx43-out1.antispamcloud.com [138.201.61.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 241843A0F5A for <quic@ietf.org>; Wed, 27 May 2020 09:02:59 -0700 (PDT)
Received: from xse44.mail2web.com ([66.113.196.44] helo=xse.mail2web.com) by mx170.antispamcloud.com with esmtp (Exim 4.92) (envelope-from <huitema@huitema.net>) id 1jdyVx-000nJ6-Hi for quic@ietf.org; Wed, 27 May 2020 18:02:53 +0200
Received: from xsmtp22.mail2web.com (unknown [10.100.68.61]) by xse.mail2web.com (Postfix) with ESMTPS id 49XFHT5QBbz7LvM for <quic@ietf.org>; Wed, 27 May 2020 08:34:12 -0700 (PDT)
Received: from [10.5.2.49] (helo=xmail11.myhosting.com) by xsmtp22.mail2web.com with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:256) (Exim 4.92) (envelope-from <huitema@huitema.net>) id 1jdy4K-000177-LY for quic@ietf.org; Wed, 27 May 2020 08:34:12 -0700
Received: (qmail 20134 invoked from network); 27 May 2020 15:34:11 -0000
Received: from unknown (HELO [192.168.1.107]) (Authenticated-user:_huitema@huitema.net@[172.58.46.176]) (envelope-sender <huitema@huitema.net>) by xmail11.myhosting.com (qmail-ldap-1.03) with ESMTPA for <jared@puck.nether.net>; 27 May 2020 15:34:11 -0000
Subject: Re: Is the invariants draft really standards track?
To: Kyle Rose <krose@krose.org>, Ian Swett <ianswett=40google.com@dmarc.ietf.org>
Cc: Lars Eggert <lars@eggert.org>, IETF QUIC WG <quic@ietf.org>, Martin Duke <martin.h.duke@gmail.com>, Jared Mauch <jared@puck.nether.net>
References: <CAM4esxQBqfrz24riPQA_VGKcGp_TzW0pqb97KfFMtNdW9pUfDg@mail.gmail.com> <833A693C-62E6-4889-9954-FCE65A839A7C@eggert.org> <CAKcm_gPMO2DtqvKucqVw0zDjSniSOmFD4p1Tp4YLjr9WSWdEUw@mail.gmail.com> <CAJU8_nUN42gGmQof24XD9-EjXedyzcarDyRP8MGe1qW-BZ=+Aw@mail.gmail.com>
From: Christian Huitema <huitema@huitema.net>
Autocrypt: addr=huitema@huitema.net; prefer-encrypt=mutual; keydata= mQENBFIRX8gBCAC26usy/Ya38IqaLBSu33vKD6hP5Yw390XsWLaAZTeQR64OJEkoOdXpvcOS HWfMIlD5s5+oHfLe8jjmErFAXYJ8yytPj1fD2OdSKAe1TccUBiOXT8wdVxSr5d0alExVv/LO I/vA2aU1TwOkVHKSapD7j8/HZBrqIWRrXUSj2f5n9tY2nJzG9KRzSG0giaJWBfUFiGb4lvsy IaCaIU0YpfkDDk6PtK5YYzuCeF0B+O7N9LhDu/foUUc4MNq4K3EKDPb2FL1Hrv0XHpkXeMRZ olpH8SUFUJbmi+zYRuUgcXgMZRmZFL1tu6z9h6gY4/KPyF9aYot6zG28Qk/BFQRtj7V1ABEB AAG0J0NocmlzdGlhbiBIdWl0ZW1hIDxodWl0ZW1hQGh1aXRlbWEubmV0PokBOQQTAQIAIwUC UhFfyAIbLwcLCQgHAwIBBhUIAgkKCwQWAgMBAh4BAheAAAoJEJNDCbJVyA1yhbYH/1ud6x6m VqGIp0JcZUfSQO8w+TjugqxCyGNn+w/6Qb5O/xENxNQ4HaMQ5uSRK9n8WKKDDRSzwZ4syKKf wbkfj05vgFxrjCynVbm1zs2X2aGXh+PxPL/WHUaxzEP7KjYbLtCUZDRzOOrm+0LMktngT/k3 6+EZoLEM52hwwpIAzJoscyEz7QfqMOZtFm6xQnlvDQeIrHx0KUvwo/vgDLK3SuruG1CSHcR0 D24kEEUa044AIUKBS3b0b8AR7f6mP2NcnLpdsibtpabi9BzqAidcY/EjTaoea46HXALk/eJd 6OLkLE6UQe1PPzQC4jB7rErX2BxnSkHDw50xMgLRcl5/b1a5AQ0EUhFfyAEIAKp7Cp8lqKTV CC9QiAf6QTIjW+lie5J44Ad++0k8gRgANZVWubQuCQ71gxDWLtxYfFkEXjG4TXV/MUtnOliG 5rc2E+ih6Dg61Y5PQakm9OwPIsOx+2R+iSW325ngln2UQrVPgloO83QiUoi7mBJPbcHlxkhZ bd3+EjFxSLIQogt29sTcg2oSh4oljUpz5niTt69IOfZx21kf29NfDE+Iw56gfrxI2ywZbu5o G+d0ZSp0lsovygpk4jK04fDTq0vxjEU5HjPcsXC4CSZdq5E2DrF4nOh1UHkHzeaXdYR2Bn1Y wTePfaHBFlvQzI+Li/Q6AD/uxbTM0vIcsUxrv3MNHCUAEQEAAYkCPgQYAQIACQUCUhFfyAIb LgEpCRCTQwmyVcgNcsBdIAQZAQIABgUCUhFfyAAKCRC22tOSFDh1UOlBB/94RsCJepNvmi/c YiNmMnm0mKb6vjv43OsHkqrrCqJSfo95KHyl5Up4JEp8tiJMyYT2mp4IsirZHxz/5lqkw9Az tcGAF3GlFsj++xTyD07DXlNeddwTKlqPRi/b8sppjtWur6Pm+wnAHp0mQ7GidhxHccFCl65w uT7S/ocb1MjrTgnAMiz+x87d48n1UJ7yIdI41Wpg2XFZiA9xPBiDuuoPwFj14/nK0elV5Dvq 4/HVgfurb4+fd74PV/CC/dmd7hg0ZRlgnB5rFUcFO7ywb7/TvICIIaLWcI42OJDSZjZ/MAzz BeXm263lHh+kFxkh2LxEHnQGHCHGpTYyi4Z3dv03HtkH/1SI8joQMQq00Bv+RdEbJXfEExrT u4gtdZAihwvy97OPA2nCdTAHm/phkzryMeOaOztI4PS8u2Ce5lUB6P/HcGtK/038KdX5MYST Fn8KUDt4o29bkv0CUXwDzS3oTzPNtGdryBkRMc9b+yn9+AdwFEH4auhiTQXPMnl0+G3nhKr7 jvzVFJCRif3OAhEm4vmBNDE3uuaXFQnbK56GJrnqVN+KX5Z3M7X3fA8UcVCGOEHXRP/aubiw Ngawj0V9x+43kUapFp+nF69R53UI65YtJ95ec4PTO/Edvap8h1UbdEOc4+TiYwY1TBuIKltY 1cnrjgAWUh/Ucvr++/KbD9tD6C8=
Message-ID: <9cd91c24-c730-22a4-7aa0-baf61613b3ce@huitema.net>
Date: Wed, 27 May 2020 08:34:12 -0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.8.0
MIME-Version: 1.0
In-Reply-To: <CAJU8_nUN42gGmQof24XD9-EjXedyzcarDyRP8MGe1qW-BZ=+Aw@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------C1E3A4839C02CF542F052249"
Content-Language: en-US
X-Originating-IP: 66.113.196.44
X-Spampanel-Domain: xsmtpout.mail2web.com
X-Spampanel-Username: 66.113.196.44/32
Authentication-Results: antispamcloud.com; auth=pass smtp.auth=66.113.196.44/32@xsmtpout.mail2web.com
X-Spampanel-Outgoing-Class: unsure
X-Spampanel-Outgoing-Evidence: Combined (0.15)
X-Recommended-Action: accept
X-Filter-ID: Mvzo4OR0dZXEDF/gcnlw0cz3TYWAMatow42l8TcmTKWpSDasLI4SayDByyq9LIhVUZbR67CQ7/vm /hHDJU4RXkTNWdUk1Ol2OGx3IfrIJKywOmJyM1qr8uRnWBrbSAGDcnqpk5VeF3xR4kF6iVwRtbgN zB/4Jkrw1eDLcif59ft7PNA0As83Pdj0IcpzMxlBU7Tmz6iKnkQL9gqsxD347235Nhqq+/HvroPq 8GSPg+60/QPNqXybIny9WGhadIo/0w0RB5vhZeNQMVT8ptSkfLyme9ldZJ7uNXfg/GfS8fUvP/L5 rCqHDsKZM+xa1iwJX+gRCHfMVnsAk591zk0uilUI+ZL4xWiN8NS6C+dmX6OEdA4u1aThyWrQ/ou2 +v/lmX4Em37yFgrCB6NHRn1g+f3uncIqYSL3lhh5c81YyJqFoLZMmkWsaurVZfvqROaDnDtHb8z5 dpPkEuJ8Snwqla7jUnW3hy14Yji8fo+4xCnSRo4Rcu5Z37rMuDjCny5fE9ykbJ7I9co1MAEE3ruN Xsm8UJsAPvDcVSKtDCYkioPY5Qx4fJOk03R5fJtf/Dv/dkIzS7m4GUpXCY1Y3j3ilQ8EW2aDkYIa 2M5pALviQranAWRfft7O67lvSj/BJ2SQIy6nXX4lIbhiZdycsC8sWpMUcaso4BrbXbBfCEGegFaH gbVpRK3T9+h2PwMALJBC8U0Qc2cItWeQn0hrqUcNc7dCp3Zd9clP8wSiJZWbJCg35R5vCGCRun6Y x0PkyFKGUmJL8/wiW6IDBeXl/RY0UzXg724gFzhHYUe+7aKm0vW15i+Ms26DGliV48eCwarSTi+J 2sBvM/O0p+zizleC4lU8fDj1CnRx+r4b/1Q/PZ/Um5+9cYZbxLoI+xclcaT5vOnCUbNPgcPcQwzM gKHyQxUo+ql2ySTkvEFH/23XMww2BnTTFGX5/yI4Ky+1ZJcbGqc5H4PEZHeoI/d6LWFf332z7LMw LGdoi9FMQ5j9dQUvMi1YKAun15JQSJLyCT5k+MTObVKxHy/dols381l9r9ft9daDonlwd6LnuX+J u10=
X-Report-Abuse-To: spam@quarantine11.antispamcloud.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/JrJPaM3VvPdykuN2JI-ESXFjifU>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 May 2020 16:03:05 -0000
On 5/27/2020 8:28 AM, Kyle Rose wrote: > On Wed, May 27, 2020 at 10:34 AM Ian Swett > <ianswett=40google.com@dmarc.ietf.org > <mailto:40google.com@dmarc.ietf.org>> wrote: > > I was agreeing with MT, but I'm happy to see some more MUSTs added > if people feel that'd be helpful. > > > Coincidentally, we were just talking about this internally at Akamai > yesterday. IMO, an invariants document isn't really helpful if it > isn't normative, and for it to be normative it (or a related practices > doc for operators) really needs to spell out clear boundaries for > operators with MUSTs.. > > The example that came up yesterday was around operators filtering QUIC > in the event of a DDoS: one recommendation based on some conversations > going back at least to Prague 2019 was to hash packets on 4-tuple and > filter those below a hash value chosen for a desired ingress limit > instead of doing what most operators do with UDP today, which is to > cap UDP throughput and just drop packets randomly or tail drop. Interesting. Did they consider using the CID, or a fraction of it? This looks entirely like the scenario for which we developed stateless retry. > > This recommendation certainly imposes some constraints on future > protocol development that motivate new invariants: for instance, it > would preclude sharding a connection across multiple source ports (not > that there is necessarily a reason to do this; it's just an example). > But more importantly, it goes beyond invariants: it's one among many > practices compatible with the current set of invariants, some > reasonable and some terrible. This would break the "preferred address" redirection. Preferred address migration may or may not be spelled out in the invariants. > > Operators are going to do things to QUIC traffic, so it would be good > to offer them recommendations that are compatible with broad > deployability. Yes, we do need the invariants for that. -- Christian Huitema
- Is the invariants draft really standards track? Martin Duke
- Re: Is the invariants draft really standards trac… Martin Thomson
- Re: Is the invariants draft really standards trac… Roberto Peon
- Re: Is the invariants draft really standards trac… Ian Swett
- Re: Is the invariants draft really standards trac… Jana Iyengar
- Re: Is the invariants draft really standards trac… Lars Eggert
- Re: Is the invariants draft really standards trac… Ian Swett
- Re: Is the invariants draft really standards trac… Martin Duke
- Re: Is the invariants draft really standards trac… Kyle Rose
- Re: Is the invariants draft really standards trac… Christian Huitema
- Re: Is the invariants draft really standards trac… Jana Iyengar
- RE: Is the invariants draft really standards trac… Lubashev, Igor
- Re: Is the invariants draft really standards trac… Jared Mauch
- Re: Is the invariants draft really standards trac… Paul Vixie
- Re: Is the invariants draft really standards trac… Martin Duke
- Re: Is the invariants draft really standards trac… Martin Duke
- RE: Is the invariants draft really standards trac… Lubashev, Igor
- Re: Is the invariants draft really standards trac… Martin Duke
- RE: Is the invariants draft really standards trac… Lubashev, Igor
- Re: Is the invariants draft really standards trac… Christian Huitema
- Re: Is the invariants draft really standards trac… Benjamin Kaduk
- Re: Is the invariants draft really standards trac… Ted Hardie
- Re: Is the invariants draft really standards trac… Christian Huitema
- Re: Is the invariants draft really standards trac… Martin Duke
- Re: Is the invariants draft really standards trac… Christian Huitema
- Re: Is the invariants draft really standards trac… Martin Duke
- Re: Is the invariants draft really standards trac… Paul Vixie
- RE: Is the invariants draft really standards trac… Mike Bishop
- Re: Is the invariants draft really standards trac… Paul Vixie