IETF Logo Mail Archive

Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption

Magnus Westerlund <magnus.westerlund@ericsson.com> Tue, 18 April 2023 09:06 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18487C16B5AF for <tsvwg@ietfa.amsl.com>; Tue, 18 Apr 2023 02:06:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.099
X-Spam-Level:
X-Spam-Status: No, score=-7.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N3MrvKpdeYTo for <tsvwg@ietfa.amsl.com>; Tue, 18 Apr 2023 02:06:13 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2087.outbound.protection.outlook.com [40.107.20.87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D6CBCC16B5B4 for <tsvwg@ietf.org>; Tue, 18 Apr 2023 02:06:12 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=G0F+T5NAkHr4US7xypIojzhBbYr726DBqQS687x8C+t2/HglZVcZhD1U7Z3WRHcb0hD1wTen/TB6BXqXx83Nd3f8FUpa9dhPnclgCWmlVoTfWVZwVAmbLcM/LJDXBtPCgFkj3tGhd6Qg+AYUXRvWm2yEe2zkp0hpukjSpHyKLbkcJ6FKBIa3xMuV9OT1+G5qrSW6TNtRVYZ4GZCXa0EQwgdqlwoQadnDuwGxWWiJsqU1uD7le3pZd+wvCdGllY41H3bsW7s8nv/kFUDggkSldWIcvSaJkwHSiYppLwjVewrcQmliOexsbDSDe2mcMllnqOFjEXb2TsISTPu1Vljndg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Wzm3yJpCXhY06aB49fOgldwMjT+luYAjFEpAvdGOLW8=; b=L58F+cFxxt6hy6FKbHgYJz9foA0WQtVMhkQ5k04JLn5AkHk3H84URrlD8/2XpJydE4wqs0xGRBQd08c9uQk4yzSUMWvTYzbvV8u9fstWNh6Wf8yutOfeTeYUSANVtejEh4gt0CUe/L+fVauk2zIvxhSyI8BBTTZytJrhNgzchJlP0jzhpMIV2ul9/aBe46+4QHfTS9Pe+SuUvDkpf/FO60S/b18r7tSTRnSugpzJUvgedjB7zNwIvvVsIFW0Fme0P2q+waWTz5B1NzoKCajQU5nKxi14689RbPN5jMEPsqzNziz5AksDd5RHvFmdLYLA0nGweRpRQ3Gl5ebyTM/dXQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Wzm3yJpCXhY06aB49fOgldwMjT+luYAjFEpAvdGOLW8=; b=hQeb338fzee5Em06YI84jJP+dC4l2NUaMBWagimFB3qODdaB1N5R9WJp94HervZedQwdE6OEgGhgbMRbYuJRORH3IQ3vzMjb9xKuQRkFaEInW7Kc8tEqDwIjlP37IMwnvrY2Dxn94VJLV7gwJSgjLQXReh1i+mTx6tnMlXy0iAA=
Received: from DU0PR07MB8970.eurprd07.prod.outlook.com (2603:10a6:10:40e::17) by AS8PR07MB7414.eurprd07.prod.outlook.com (2603:10a6:20b:2ae::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6298.45; Tue, 18 Apr 2023 09:06:07 +0000
Received: from DU0PR07MB8970.eurprd07.prod.outlook.com ([fe80::ffe4:ffd:2214:a1b8]) by DU0PR07MB8970.eurprd07.prod.outlook.com ([fe80::ffe4:ffd:2214:a1b8%6]) with mapi id 15.20.6298.045; Tue, 18 Apr 2023 09:06:07 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: "tuexen@fh-muenster.de" <tuexen@fh-muenster.de>, Nils Ohlmeier <nils.ohlmeier@8x8.com>
CC: "tsvwg@ietf.org" <tsvwg@ietf.org>
Thread-Topic: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption
Thread-Index: AQHZbJk7z3EhoxIDRUqudPFN6tJMvq8nmQKAgAkvD5Y=
Date: Tue, 18 Apr 2023 09:06:06 +0000
Message-ID: <DU0PR07MB89700E9D84EBBEF2F8835C99959D9@DU0PR07MB8970.eurprd07.prod.outlook.com>
References: <9F7A670A-EA7E-4194-8125-B1DB7030802B@8x8.com> <CFBF062F-91DA-4B54-ACA9-36933EF08788@fh-muenster.de>
In-Reply-To: <CFBF062F-91DA-4B54-ACA9-36933EF08788@fh-muenster.de>
Accept-Language: en-US, sv-SE
Content-Language: en-GB
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DU0PR07MB8970:EE_|AS8PR07MB7414:EE_
x-ms-office365-filtering-correlation-id: 9aa73b80-23a7-4528-eab4-08db3fec2503
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DU0PR07MB8970.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(39860400002)(376002)(346002)(366004)(136003)(396003)(451199021)(66556008)(2906002)(66946007)(66446008)(4326008)(66476007)(64756008)(5660300002)(44832011)(52536014)(8936002)(316002)(55016003)(86362001)(76116006)(91956017)(478600001)(41300700001)(110136005)(33656002)(7696005)(71200400001)(122000001)(186003)(53546011)(26005)(9686003)(82960400001)(6506007)(8676002)(38070700005)(99936003)(38100700002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="sha256"; boundary="_764B7662-0048-604A-BB88-1000A62922E4_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DU0PR07MB8970.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9aa73b80-23a7-4528-eab4-08db3fec2503
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Apr 2023 09:06:06.8556 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: dNS8o2n8I03cRKWtwCREk1EZdI0GIfV1lRpuYzdV0hlCjpArhRTQ3B2JjEIfmiA0nC5LFtQYAWdqfm1zxcTWHL9Y/hmcjApITXky7SQYPSU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR07MB7414
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/iRx0-mxxctUTYR2UlAmHCVZ7sV0>
Subject: Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Apr 2023 09:06:17 -0000

Hi Michael, 

I am slightly confused by your exclusion of UDP for the zero checksum. I would expect that IP/UDP/SCTP per RFC 6951 would actually make it across a network unless a firewall was present that actually checked the CRC on SCTP level with that encapsulation. Which would in fact be a bit surprising as the UDP payload can be a bit of anything unless the UDP port reveals the service and special rules exists. 

Thus, I would expect that SCTP zero checksum should be possible to deploy when RFC 6951 encapsulation occurs and the SCTP stack would be using SCTP-AUTH or CRYPTO chunk as alternative strong integrity verification. 

So I think the zero checksum could actually be allowed for UDP encapsulated SCTP when using a strong integrity mechanism. Just want to ensure that the document doesn’t include unnecessary scoping which doesn’t have technical merit. 

Cheers 

Magnus 



On 2023-04-12, 14:21, "tsvwg" <tsvwg-bounces@ietf.org> wrote: 
> On 11. Apr 2023, at 19:15, Nils Ohlmeier <nils.ohlmeier@8x8.com <mailto:nils.ohlmeier@8x8.com>> wrote: 

> 

> Hello, 

> 

> I’m supporting adoption of draft draft-tuexen-tsvwg-sctp-zero-checksum-02, because it is going to be useful for all WebRTC endpoints out there to have the option to skip the checksum step. 

> 

> I also reviewed the draft. The only concern I found is this sentence: 

> 

> "Since the lower layer of SCTP can not be IPv4 or IPv6 as specified in [RFC9260] or UDP as specified in [RFC6951], no problems with middle boxes expecting correct CRC32c checksums in the SCTP packets are expected.” 

> 

> Which confuses me, because it sounds to me like this is trying to say that SCTP over IPv4 or IPv6 can not be done. Which obviously doesn’t make any sense. But I honestly fail to parse what this sentence is suppose to tell me (besides no problems with middle boxes is expected). 

Would using 



One example of such a lower layer is the use of SCTP over DTLS as 

described in [RFC8261] (as used in the WebRTC context). Counter 

examples include: 



* SCTP over IPv4 or IPv6 as specified in [RFC9260]. 



* SCTP over UDP as specified in [RFC6951]. 



* The use of SCTP Authentication as specified in [RFC4895]. 



Therefore using an incorrect zero checksum will not result in 

problems with middle boxes expecting correct CRC32c checksums in SCTP 

packets. 



be clearer? 



Best regards 

Michael 

> 

> Best 

> Nils Ohlmeier

v2.30.2 | Report a Bug | By Email | System Status