Re: draft-duke-quic-load-balancers-05.txt
Sowmini Varadhan <sowmini05@gmail.com> Tue, 29 October 2019 21:04 UTC
Return-Path: <sowmini05@gmail.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 07AC8120119 for <quic@ietfa.amsl.com>; Tue, 29 Oct 2019 14:04:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.048
X-Spam-Level:
X-Spam-Status: No, score=0.048 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, FSL_HELO_FAKE=1.797, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OgvIEI57ps8e for <quic@ietfa.amsl.com>; Tue, 29 Oct 2019 14:04:37 -0700 (PDT)
Received: from mail-qt1-x829.google.com (mail-qt1-x829.google.com [IPv6:2607:f8b0:4864:20::829]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 49A8712006D for <quic@ietf.org>; Tue, 29 Oct 2019 14:04:37 -0700 (PDT)
Received: by mail-qt1-x829.google.com with SMTP id g50so172830qtb.4 for <quic@ietf.org>; Tue, 29 Oct 2019 14:04:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to:user-agent; bh=/B3Fft6DZPztXv8n5+6oDXh+nv6maexlf2NTGmJOIpI=; b=mbjxjl4gW26r4dDFMxsc7/zqs5VXTmggD16cJSlZpqYPrnJY3AZVVnIZI9G//lEhos rN4zWcQfj4dc4yUBmuXX5sw7Lxn/tSd+lO8JYoZHIDTTp0neqp35pHKMnhcDkXg6aaTI lDCHHUak5jL78zUlMtwiTJwETyT1bVwpjUj2wzgpVzfm/MjsfRVOBjF4XPxRPbPfojwB BVwyj3GC4p0cfeZNWDB/AL0f39cWg43M0bViwGtb2pCHm8CMTlwcxNcdTF4qzy+1G4Xx pNqZyHrcFqnUpmFBoEN83JjEnt1YtqQz7pQWO7i67MqYHXA+qg2hGJzby8UK7uljWDQm oPRQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to:user-agent; bh=/B3Fft6DZPztXv8n5+6oDXh+nv6maexlf2NTGmJOIpI=; b=mzBXXb2KPi4eGjgZ4SjuCgQ9o/wOEpbgI/S3T/ZiaNi3nWVqOz8Vaq8KTYojdo29xQ zJVXOVVQ+YbXknfooeh2/OEbMftZkTw2eFHxbKD/J+9J+HA24ZapytbQXlF8vzEzi3Ig AbZq8WGg2A32wmTYQldX+ZpLSmenbENkV3RIwUbv9iABRVNrSEydu8CBP+Hy9NpqSNnb Zao2qTOiYokOd9Ds7VpEeXRCcsC6IBRhFfFpiSQQhSd5YIzFZcTNZjY6I9GvpsZ0cEXN ht4bjRyi2ffmJHmRWDlhXhIFQOyTflYHEOezA2McdLbjizRZ/wPD5eqSVAgWpgNXUHK3 sPgw==
X-Gm-Message-State: APjAAAVB646WNAaRb5DMpOg84AVvHE/+qNqNznlCb1X6ee2BB4FQONCe gsn2IXQR+3tsxVob2+cNmPo=
X-Google-Smtp-Source: APXvYqyGdqju8Nijo69SYGDp44QEXaohiRoPNMKEq3aVNNcfs88gXeJbRlHbZ77qDSpVSNSSt1YphA==
X-Received: by 2002:aed:21c4:: with SMTP id m4mr1330598qtc.342.1572383076285; Tue, 29 Oct 2019 14:04:36 -0700 (PDT)
Received: from gmail.com (pool-74-104-133-20.bstnma.fios.verizon.net. [74.104.133.20]) by smtp.gmail.com with ESMTPSA id d139sm216188qkb.36.2019.10.29.14.04.35 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Tue, 29 Oct 2019 14:04:35 -0700 (PDT)
Date: Tue, 29 Oct 2019 17:04:28 -0400
From: Sowmini Varadhan <sowmini05@gmail.com>
To: Martin Duke <martin.h.duke@gmail.com>
Cc: IETF QUIC WG <quic@ietf.org>, Nick Banks <nibanks@microsoft.com>, sovaradh@microsoft.com
Subject: Re: draft-duke-quic-load-balancers-05.txt
Message-ID: <20191029210428.GA119@gmail.com>
References: <20191028194956.GC420@gmail.com> <CAM4esxTJUFD-G-WUOwZQbgSafpMJXHVtYCm1eF=_1g8tDxru=A@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CAM4esxTJUFD-G-WUOwZQbgSafpMJXHVtYCm1eF=_1g8tDxru=A@mail.gmail.com>
User-Agent: Mutt/1.9.4 (2018-02-28)
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/Wpn1lUIJVuWUOrlc8sHfIoFTRdk>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Oct 2019 21:04:39 -0000
On (10/29/19 13:25), Martin Duke wrote: > Hi Sowmini, > Thanks for the review. I'll file a PR for your editorial changes. sounds good, thanks for doing this! > 0b11 is 2 bits. The '0b' notation indicates each digit is a bit; '0x' > would be hexadecimal, where 2 characters = 1 Bytes. ah, this is the NIC data-sheet notation, that got me by surprise. If there is no strong objection, can we just list the code-points as "11" (I think this is the convention followed in other ietf rfcs, e.g., 3168, for the ECT code-points). > In section 4, it says: " The load balancer SHOULD route Initial and 0-RTT > packets from the client using an alternate algorithm". The point here is > that the destination CID for these packets is chosen by the client. It may > not be long enough to apply the chosen algorithm, so something else should > be done. However, " This algorithm SHOULD generate consistent results for > Initial and 0RTT packets that arrive with the same source and destination > connection ID" so they all end up at the same place. If the LB doesn't do > this, then the 0RTT packets will be lost. This is suboptimal but doesn't > break the protocol. ok, perhaps it would be helpful to add some discussion around this in the draft. [discussion for "Section 4.3.1 refers to "token"] > This is the QUIC-LB authentication token, which I should clarify. In any > case, I don't believe that servers get this token if there's out-of-band > configuration, so I need to fix this. Ok. [discussion around Section 5] > This is for the benefit of the QUIC server. When the server gets an > Initial Packet with a Retry token in it, it needs to extract the ODCID > from that token so that it can send it back in a transport parameter. If > the client got a Retry but then doesn't get the ODCID transport parameter, > it means there's an unauthorized man in the middle and the client should > terminate the connection. I see. In general, it would help to provide some context in this section about why any tweaks in the Retry Service are needed at all, along with your explanation above. Thanks! --Sowmini
- draft-duke-quic-load-balancers-05.txt Sowmini Varadhan
- Re: draft-duke-quic-load-balancers-05.txt Martin Duke
- Re: draft-duke-quic-load-balancers-05.txt Sowmini Varadhan
- Re: draft-duke-quic-load-balancers-05.txt Martin Duke
- Re: draft-duke-quic-load-balancers-05.txt Sowmini Varadhan