IETF Logo Mail Archive

[tsvwg] summary of issues for draft-touch-tsvwg-udp-options-05.txt

Joe Touch <touch@isi.edu> Tue, 28 February 2017 22:52 UTC

Return-Path: <touch@isi.edu>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAA18129415 for <tsvwg@ietfa.amsl.com>; Tue, 28 Feb 2017 14:52:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1ze0WOwgCRuG for <tsvwg@ietfa.amsl.com>; Tue, 28 Feb 2017 14:52:05 -0800 (PST)
Received: from nitro.isi.edu (nitro.isi.edu [128.9.208.207]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DABA612940E for <tsvwg@ietf.org>; Tue, 28 Feb 2017 14:52:05 -0800 (PST)
Received: from [128.9.160.81] (nib.isi.edu [128.9.160.81]) (authenticated bits=0) by nitro.isi.edu (8.13.8/8.13.8) with ESMTP id v1SMpdCC008641 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Tue, 28 Feb 2017 14:51:39 -0800 (PST)
To: tsvwg <tsvwg@ietf.org>
References: <148823787288.13843.6091386736320524682.idtracker@ietfa.amsl.com> <800de1a6-cb9b-f22b-946a-8b6832fc9a05@isi.edu> <20170228163751.GA89477@cowbell.employees.org> <7d58ead9-2d1a-d35c-7cd2-90526918838c@isi.edu> <20170228204607.GA71184@cowbell.employees.org> <CALx6S36RvV0i4VSO=F5g6f4r4i2_VYmN6K1wygJZY7EsthFKEA@mail.gmail.com> <fed51ce6-d852-9f4d-91ff-08d69e80e2a0@isi.edu> <20170228214648.GB4674@cowbell.employees.org> <CALx6S36Q1=2GPKQudPr=-ZBr4RuSE+AatGSi5M7ssshTzwkpjA@mail.gmail.com> <58848ac9-3b90-1c39-8f69-7d439bc90d2b@isi.edu>
From: Joe Touch <touch@isi.edu>
Message-ID: <489f9fd5-b085-260e-bbcd-42ae5b0dc328@isi.edu>
Date: Tue, 28 Feb 2017 14:51:39 -0800
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.1
MIME-Version: 1.0
In-Reply-To: <58848ac9-3b90-1c39-8f69-7d439bc90d2b@isi.edu>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
X-MailScanner-ID: v1SMpdCC008641
X-ISI-4-69-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/_AeqIm2ZPO4GzZeaf0QfCrXFFIw>
Subject: [tsvwg] summary of issues for draft-touch-tsvwg-udp-options-05.txt
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Feb 2017 22:52:07 -0000

Hi, all,

Thanks for the lively discussion! I hope this bodes well for accepting
this as a WG doc. Again, I'd prefer if I had deployable running code,
but we do have multiple implementations that worked, just not ready for
prime time.

Here's a quick summary of the issues just raised, both for me (for the
next edit) and in case any new issues are of interest.

Please do let me know if I missed or incorrectly summarized anything
below...

Thanks!

Joe

-----------------------------------------------------

Editorial:

- fix Identification field length in Fig 15v s. text (should be 32 bits)

-----------------------------------------------------

Use cases:

- add DNSSEC impact on segment size and IP fragment problems with
network traversal

    add ref to draft-muks-dns-message-fragments app-layer solution

    note that FRAG works well when request is small because it can
indicate FRAG support for large response

- discuss impact to UDP API

    who sets these? OS or app?

    which ones are transparent? which are NOT?

-----------------------------------------------------

Option design:

FRAG:

    - should FRAG have a reassembly checksum?

    - should FRAG have a post-reassembly length verification?

    - use LITE to support backwards transparent FRAG (thanks, C. M. 
Heard!) (if so, need final reassembly checksum!)

    - what happens if LITE and FRAG are present with non-trivial
covered/not-covered areas?

    - rename "segmentation" to avoid confusion with IP layer mechanism?
(or is SAR too overloaded with ATM?)

ACS:

    - address ACS interaction with LITE and FRAG (ACS covers UDP
payload, but NOT IP or UDP header except len?)

    - clarify ACS covers each received UDP segment or fragment, NOT
reassembled result

    - indicate which CRC-16 polynomial

OCS:

    - clarify OCS covers header within each received UDP segment or
fragment, NOT reassembled result

    - should OCS be mandatory, and if so, make it just the UDP checksum
on the option area?

LITE

    - revise Sec 7 vs. UDP Lite and omit EOL discussion (not relevant
given new swap mechanism)

EOL

    - explain possible uses (given removal from Section 7)

    - if removed, consider changing NOP to 0

Another security option?

    - HMAC for IPv6 SR option(see Tom Herbert's GUE variant)

ALL (general):

    - revisit MUST IMPLEMENT list (add MSS, FRAG, TIME?)

    - create a list of required ordering

        OCS first (always)

        AE next (if it appears)

        TIME, MSS

        FRAG (last? otherwise security/safety mechanisms wouldn't
protect the reassembly process?)

-----------------------------------------------------

v2.23.0 | Report a Bug | By Email