IETF Logo Mail Archive

Re: [tsvwg] Regarding DTLS and UDP options

Joe Touch <touch@isi.edu> Mon, 17 April 2017 22:26 UTC

Return-Path: <touch@isi.edu>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAECE1315A7 for <tsvwg@ietfa.amsl.com>; Mon, 17 Apr 2017 15:26:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r4c2Rr7QbQso for <tsvwg@ietfa.amsl.com>; Mon, 17 Apr 2017 15:26:29 -0700 (PDT)
Received: from nitro.isi.edu (nitro.isi.edu [128.9.208.207]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CD00A13159A for <tsvwg@ietf.org>; Mon, 17 Apr 2017 15:26:29 -0700 (PDT)
Received: from [128.9.184.37] ([128.9.184.37]) (authenticated bits=0) by nitro.isi.edu (8.13.8/8.13.8) with ESMTP id v3HMQ0rr008404 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Mon, 17 Apr 2017 15:26:00 -0700 (PDT)
To: Tom Herbert <tom@herbertland.com>
References: <CACL_3VFeJs7KzG9Bchh15bfZ3CmaOPWcfisEreNoGYK5CsEJ+g@mail.gmail.com> <3a4a6b78-8146-de4c-6246-7bd09de44f1c@isi.edu> <CACL_3VFkr3mGe-yTbvHrTZcKVCpEv3FeSOyoShUxCK5+9Tdqqg@mail.gmail.com> <c79fe3d0-8567-ea7d-72fc-bd33732df60e@isi.edu> <CACL_3VHmoCSo23OWqQFq7upw749CqMK7iazXrBKZARzwbzY5mw@mail.gmail.com> <f97f08d4-0070-437a-e22a-8782497c76eb@isi.edu> <4e36af95-84c3-bc7e-b18a-614f8bfab662@isi.edu> <58F48403.8080302@erg.abdn.ac.uk> <a0f656e8-e847-db54-6046-2078364d428b@isi.edu> <CALx6S36HYHdbGoJHNb+mVY6reu9RLikLxDJqrPgwO9tF1EfSgQ@mail.gmail.com> <8b1829ba-4e8d-5ee1-e24c-f42962f47dde@isi.edu> <CALx6S36=7KbTtv9QNUBTg6gPYQQighsPD_+mWNc=wUQTX70VBQ@mail.gmail.com> <8378ae17-c023-25a2-76e7-07b858916849@isi.edu> <CALx6S35chiqMtqKa+zahfZnLZrQzfYUF7D9m0QGbkwFVpRwHag@mail.gmail.com> <bfc36611-6817-fbf9-a9c7-5bdde179b665@isi.edu>
Cc: "gorry@erg.abdn.ac.uk" <gorry@erg.abdn.ac.uk>, tsvwg <tsvwg@ietf.org>
From: Joe Touch <touch@isi.edu>
Message-ID: <d4bad914-4246-c47f-4067-2fa0217c9926@isi.edu>
Date: Mon, 17 Apr 2017 15:25:59 -0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <bfc36611-6817-fbf9-a9c7-5bdde179b665@isi.edu>
Content-Type: multipart/alternative; boundary="------------0E5ADB72A8EF5AD3556C21C9"
X-MailScanner-ID: v3HMQ0rr008404
X-ISI-4-69-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/_JQdoHswBzVTSfPbQAEqFrcwrBs>
Subject: Re: [tsvwg] Regarding DTLS and UDP options
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Apr 2017 22:26:31 -0000


On 4/17/2017 3:09 PM, Joe Touch wrote:
> Hi, Tom,
>
>
> On 4/17/2017 3:00 PM, Tom Herbert wrote:
>> On Mon, Apr 17, 2017 at 2:07 PM, Joe Touch <touch@isi.edu> wrote:
>>> ...
>>> I don't think we should be writing rules to indicate who should NOT be
>>> changing them, if we already have rules indicating the only parties that
>>> can. (granted, the requirement in 7 needs to be revised in 2119-speak).
>>>
>> Joe,
>>
>> You may want to look at IPv6 EH description for guidance. Even with
>> all the words about how extension headers can't be examined or
>> processed with the exception of HBH options, there still has been
>> considerable discussion on what intermediate devices can or can't do.

For the benefit of others on this list who might not have followed this
issue, FWIW, this discussion happened during the revision of RFC2460 on
the v6ops and main IETF list.

RFC 2460 said the following:

   With one exception, extension headers are not examined or processed
   by any node along a packet's delivery path

The one exception was HBH headers.

Discussion centered around a few issues:
    - 2460 said "not examined or processed" - did that include inserting
or deleting new EHs, which might arguably require neither examining nor
processing?
    - what does "processing" mean? (does it include altering? does it
include making a header longer or shorter?)
    - would not adding new EHs ossify IPv6?

It took a while to converge on the following:
    - that text now explicitly excludes inserting or deleting EHs
    - there are still arguments about what "processing" means, but that
term was accepted, given the clarification of inserting/deleting as
distinct operations
    - it was clarified (at least on the mailing lists) that the HBH
itself is already extensible, so disabling new EHs that change en-route
wasn't ossifying

------
For IPv6, this might have been important because it already did specify
cases where some EHs were modified in transit while others were not.

That's not the case for transport options, which is why I believe it is
unnecessary to provide detail on what devices en-route shouldn't be doing.

Joe

v2.23.0 | Report a Bug | By Email