Re: Robert Wilton's Discuss on draft-ietf-quic-bit-grease-04: (with DISCUSS and COMMENT)
Martin Thomson <mt@lowentropy.net> Fri, 01 July 2022 00:05 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9530FC14F74F; Thu, 30 Jun 2022 17:05:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=EIOaRMWl; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=ZahLLPl0
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nK_2fh1JL9q8; Thu, 30 Jun 2022 17:05:18 -0700 (PDT)
Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11510C14792E; Thu, 30 Jun 2022 17:05:17 -0700 (PDT)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id EDAB632009DA; Thu, 30 Jun 2022 20:05:16 -0400 (EDT)
Received: from imap41 ([10.202.2.91]) by compute3.internal (MEProxy); Thu, 30 Jun 2022 20:05:17 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=cc:cc:content-type:date:date:from:from:in-reply-to :in-reply-to:message-id:mime-version:references:reply-to:sender :subject:subject:to:to; s=fm3; t=1656633916; x=1656720316; bh=+D pMzHVoYrL3qhIM0y1z02u/lT7KnQQXF2N8ai1UT9A=; b=EIOaRMWlt2qfAfdwOQ B2tzWRwd+OXoGKZOPSiTyXZtIHds7YdI8/Do67AQSsEcwlFuE0ZjXRTMBZ/2/y4Y 6uh0oKLTqJLDNeuVQ/CCnw7K83WHfzVbMJTEKfuZpzw3cvYk1yVEOker4gfd2vOi FFYpwJfUGeMAGLcT1Djz6bOS3rP7dQc71dKlWDaHARYOWsibkbFz66i6go3m1Fti a1DpaN4hEU1eSfliM4nHa/5+/OsEwBFPbEPJ4FRjiEvfORfhPD4r2OSV4CksH6p1 72oT6Bvxq613Gqv/K8XJ416X+gwyK4G1jIlM7MoMbY4cd/JBvu0CPmJ5epM0DkQh LTWQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:date:date:feedback-id :feedback-id:from:from:in-reply-to:in-reply-to:message-id :mime-version:references:reply-to:sender:subject:subject:to:to :x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm2; t=1656633916; x=1656720316; bh=+DpMzHVoYrL3qhIM0y1z02u/lT7K nQQXF2N8ai1UT9A=; b=ZahLLPl03EKDJXY4qBhx3Dk96pOIlzosXV0DJPSBVyda MF4siKbq+Yt3kQEdKMmQJ73Qs0tdmx5XgygSnCY2Z6KkvMFPZWgZOW9dd4xp3tuS vmU/qHOIYNVZqZFfIaqTf0rQ09cVLzqaaEU+eFbWyJEAwqMEj9Mxtqa2aMASmTJ1 Cy1ItEm+K1CzyB+o767FjgYzrSm5lQA5tesEcywAt4iiJhVoJwFjXM0lVidQlQ99 PCke/uWhAw1lJatRDEUBJvJZCPRd3XBfX9vgPLoA6inLle/U4UQqg5TgDeldW93T 4H6mLd6iapwFZITNBDaCePchI1lxnWw0O1xG38miUQ==
X-ME-Sender: <xms:PDq-Yn6OiW1dwQGEfZ1Q9z23UIrpNovdmdkvI-0bRS7ahMKHiUiauw> <xme:PDq-Ys77tCFVN_Ot6fO72k82B76jJRKmpDErN5R7JHDpFaUA5GcsjAjX6ZDxUoI0V YQqpx0vuNNSbUqjzqU>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrudehvddgfedvucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepofgfggfkjghffffhvfevufgtsehttdertderredtnecuhfhrohhmpedfofgr rhhtihhnucfvhhhomhhsohhnfdcuoehmtheslhhofigvnhhtrhhophihrdhnvghtqeenuc ggtffrrghtthgvrhhnpeetffffhffgvdelueehudffvddtjeffvdeifeejhfeufefhlefg hfejieevueekgeenucffohhmrghinhepghhithhhuhgsrdgtohhmnecuvehluhhsthgvrh fuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhtsehlohifvghnthhrohhp hidrnhgvth
X-ME-Proxy: <xmx:PDq-YueikrE5LMNdlZa60z5kW9az304FcEwtrx2aiNrS-ucNNJTmxA> <xmx:PDq-YoJSoh30Vok5Vc6_C_0Z6IAyEMMkdALQenZ1sOQBrlp0mRhPvg> <xmx:PDq-YrKxWXx1L18oB1CW8R3e0vtAJrjDlUYxu1qhhb9PyiXDqMDSNQ> <xmx:PDq-Yj0esJtBg2UBnFFyztlwvOhguNwT174sbOpCNC3TLyrbTFRdzA>
Feedback-ID: ic129442d:Fastmail
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 1D2632340077; Thu, 30 Jun 2022 20:05:16 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.7.0-alpha0-713-g1f035dc716-fm-20220617.001-g1f035dc7
Mime-Version: 1.0
Message-Id: <a41a6106-fba3-40ed-9ba4-84b9f650c0a3@beta.fastmail.com>
In-Reply-To: <165658054200.27449.15470492546513991560@ietfa.amsl.com>
References: <165658054200.27449.15470492546513991560@ietfa.amsl.com>
Date: Fri, 01 Jul 2022 10:04:56 +1000
From: Martin Thomson <mt@lowentropy.net>
To: "Rob Wilton (rwilton)" <rwilton@cisco.com>, The IESG <iesg@ietf.org>
Cc: draft-ietf-quic-bit-grease@ietf.org, WG Chairs <quic-chairs@ietf.org>, quic@ietf.org, Lucas Pardue <lucaspardue.24.7@gmail.com>
Subject: Re: Robert Wilton's Discuss on draft-ietf-quic-bit-grease-04: (with DISCUSS and COMMENT)
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/Km57Spq4GesOdhc-AatcDYoT3XE>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Jul 2022 00:05:23 -0000
Hi Rob, On Thu, Jun 30, 2022, at 19:15, Robert Wilton via Datatracker wrote: > (1) The purpose of having a fixed value is to allow QUIC to be > efficiently distinguished from other protocols; > > This sentence seems inconsistent with draft-ietf-quic-manageability that states > that this bit cannot be used reliably to indicate QUIC traffic. That appears to be a misreading of the text. The failing here is that this text doesn't say *by whom*. It only refers to RFC 7983[bis]. I thought that was sufficient. Would this be clearer? > The purpose of having a fixed value is to allow endpoints to efficiently distinguish QUIC from other protocols; [...] Note that this is only *mostly* correct. Endpoints can cooperate with intermediaries to disable this extension if identification or demultiplexing is useful. I believe that this is what Google's current deployment does, for example. That's independent of the RFC 7983-related use, where the same is also possible. > Ultimately, for QUIC, it isn't really clear to me whether: > (i) Intermediates nodes are not expected to be able to efficiently identify > QUIC traffic. (ii) Intermediate nodes are expected to efficiently identify QUIC > v1 traffic only. > > Assuming that the quic bit grease extension ends up with reasonable deployment > then I think that we end up with (i). Is that correct and the intention? Yes. > (2) > This document already has a comment in the security section about the potential > security impact of using this extension. I think that this document could > benefit from an Operational Considerations section to highlight that using this > extension is likely to impact the ability of intermediate devices to identify > QUIC packets which may change how the network handles QUIC packets, either by > giving them special treatment compared to other UDP traffic, or categorizing > them and handling them the same as all other UDP traffic. Or perhaps the > security section paragraph could be expanded to cover this point (although it > isn't really security, but observed functionality). I'm happy to add a pointer to the manageability draft to that text. That covers all of that material much better than any new section I could write might. See https://github.com/quicwg/quic-bit-grease/pull/28 for the two tweaks mentioned.
- Robert Wilton's Discuss on draft-ietf-quic-bit-gr… Robert Wilton via Datatracker
- Re: Robert Wilton's Discuss on draft-ietf-quic-bi… Martin Thomson
- RE: Robert Wilton's Discuss on draft-ietf-quic-bi… Rob Wilton (rwilton)