IETF Logo Mail Archive

Re: [tsvwg] Review of draft-ietf-tsvwg-udp-options-32

Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com> Tue, 09 April 2024 10:31 UTC

Return-Path: <zahed.sarker.ietf@gmail.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 79B21C14F6A8; Tue, 9 Apr 2024 03:31:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.095
X-Spam-Level:
X-Spam-Status: No, score=-7.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D1_jueCCVCCe; Tue, 9 Apr 2024 03:31:22 -0700 (PDT)
Received: from mail-pl1-x62a.google.com (mail-pl1-x62a.google.com [IPv6:2607:f8b0:4864:20::62a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 77EA6C14F6AA; Tue, 9 Apr 2024 03:31:22 -0700 (PDT)
Received: by mail-pl1-x62a.google.com with SMTP id d9443c01a7336-1e3f17c6491so20052305ad.2; Tue, 09 Apr 2024 03:31:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1712658682; x=1713263482; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=e9uAqJANEXHxh2tNefu8aLfL4x25HmzMBbwClRljeG8=; b=KPTbWrjRst+Jw8ow7wyej7DBzuOoVMO1qR9GNH/FmlosjeycYuA0I3CrpybIZ3JKQ7 ankqKQjFW3REuh6WWVgwDt+uPbCdcQeakCp/ZM4I8k6q1LZX9PwmrgH6V5HR3lcNfBFx uABxMUtl/BJav1fzWJXDRR+yQS1QjyK+oU3PDaWhZr9DeTvLa+lpPBOb+5iOkU1ujYP1 AjGxKEdAJYF5umz4kxhfUo1yvokLdybIUEu8bcm6zJ3wet4ZpKaQeALsnW1SMMRe4FCA DltLqWQhpxp+vRlg/CX5qFk5Pm5SJ5FRfyvZXeo19AiSIn1apSv93a2K9/scgsEnQKJf ltdg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712658682; x=1713263482; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=e9uAqJANEXHxh2tNefu8aLfL4x25HmzMBbwClRljeG8=; b=b+wtg9BV9tNgDJgWGtbXkjMr4IPRPuOtF/BqAz84tD0CgFrp+1dBiNC+fpvAjeN4Rn cbldHRDPu74MJr4ZLMIc0h7mTCdCX1K4/IroQMBvsncpe8jDhSEH2vxxJIeXKEXuCRB8 ZbatWljLajkkINp2qCtMiEg11LPMnkbcsnlt6rZhcBjH8wnWmd1eyT3eRCWp05+34Sll pEawvSFHyrzQJVGP0a0cxJxfxRNFRoAKv0r/fFo5PWZcdViXU2CaMtbfH8Xj3zQNKpeL yueg7IW11HT0SMeEBxMEISSgYJBrsqZC2O9ibtq6uvsFNYoEV47RQ98QwcU/Hpz3VerR qqsg==
X-Forwarded-Encrypted: i=1; AJvYcCVpuajIA0k5b+mE4zw6SmkI6iODvsFcKn8TnfTHD2pywRHDOA9k+2Ab8V37LGgjYDR2NWG1o6XgIfIdcEJCwjVthRvnqiwVrIj9f8aM/E/URhT6DLeVw1aF+FtNRbKLFhQsVo2+bpFuQ4A=
X-Gm-Message-State: AOJu0Yxq+RtnfBlD5aO+gONi4brAvWN9OmmGoRSYF0KF/7/ZIWfdAhIT 9WMqlKoTaBb4phw0Jwd4i1ZaGLWszrrqXDUE9nk0g9HbMYyB7zYT4qdUjQRFaFc+KWGiFS33d81 ZSaD3nSuCgTUelAjQiDF6/x/W4pk=
X-Google-Smtp-Source: AGHT+IG2LLdUtam0yiXa2vU4s3Kl02GEX3MjgWfqDq7W6NrVg356WN6bCtkMeQjIjbSCdGdOzCC+zJKdMY/dNK58Xac=
X-Received: by 2002:a17:902:f60f:b0:1e4:3535:a85 with SMTP id n15-20020a170902f60f00b001e435350a85mr4666201plg.7.1712658681700; Tue, 09 Apr 2024 03:31:21 -0700 (PDT)
MIME-Version: 1.0
References: <CAM4esxSpwRF5E3Xc_hotgvCSdKVe4BY_zRUKAzHvW48JEtWqTA@mail.gmail.com> <CACL_3VGOLkJU1m7pqSXRRouCKwdQ6yrbmaPwoa22Jr-N3FZNzA@mail.gmail.com> <fccb92b0-dbc8-4cb2-b49c-1f603297d721@huitema.net>
In-Reply-To: <fccb92b0-dbc8-4cb2-b49c-1f603297d721@huitema.net>
From: Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com>
Date: Tue, 09 Apr 2024 12:31:10 +0200
Message-ID: <CAEh=tcd2FzQxgbSivuX2cEg2FpsnkoqdFw5gMhrx3pkT_JV88Q@mail.gmail.com>
To: Christian Huitema <huitema@huitema.net>
Cc: "C. M. Heard" <heard@pobox.com>, Martin Duke <martin.h.duke@gmail.com>, tsvwg <tsvwg@ietf.org>, draft-ietf-tsvwg-udp-options.all@ietf.org
Content-Type: multipart/alternative; boundary="00000000000058299a0615a76cd8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/n0RZOdD0FCtTnr0n-FjbrDvMIsY>
Subject: Re: [tsvwg] Review of draft-ietf-tsvwg-udp-options-32
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Apr 2024 10:31:24 -0000

Hi all,

Putting my AD hat on, if we specify protocol features only for endpoints to
consume and not for endpoints to network, then we should make sure that is
case when we design and describe it. We cannot expect all the
intermediaries are well behaved or features are used as intended when
designed. From that point of view it is not good enough to send information
in clear and just say "UDP Options are for Transport, Not Transit". With
the current, well placed, scrutiny of privacy and security on all the
protocols that IETF is producing- It would require a huge exception to get
it published.

The questions I would like to get answer is  -

      Is it OK for the endpoints to send information in UDP options which
can be read (only) by the transit nodes and react to it? if NO,  then how
to prevent that to happen?

//Zahed

On Fri, Apr 5, 2024 at 2:29 AM Christian Huitema <huitema@huitema.net>
wrote:

>
>
> On 4/4/2024 2:22 PM, C. M. Heard wrote:
> > On Tue, Apr 2, 2024 at 2:23 PM Martin Duke wrote:
> >
> >     ...
> >
> >     - I appreciate the work to make this an end-to-end signal, and that
> >     UDP has pre-existing limitations in this regard. I also think the
> >     use cases are probably valuable.
> >
> >     But in 2024, if we want to make rules about what the network can and
> >     can't do, we enforce it with encryption and authentication. I
> >     recognize that these were originally in the draft, and were removed
> >     for very good reasons. But I'm also worried that, if successful:
> >     - This will attract "helpful" middlebox functions like MSS clamping.
> >     - This is an attractive nuisance for various path signaling schemes.
> >     They are going to come here because other avenues (DSCP, IPv6
> >     Extension Headers) have been blocked. And that eventually UDP
> >     options will be blocked for the same reason that those were blocked.
> >     I suppose that enough fortitude in TSVWG can forestall this
> >     happening. Personally, I would strongly encourage these efforts to
> >     use encapsulation, or any other mechanism, to avoid compromise of
> >     the E2E channel you are building here.
> >     - To the extent that new options are "opt-in" by the endpoint, I'm
> >     fine with it. But if we reach a point where identifying signals are
> >     required by the network to participate, that's not so great. I'm not
> >     sure that this architecture has much in the way of safeguards to
> >     prevent that outcome.
> >
> >     This isn't really actionable because I genuinely don't know what to
> >     do, and luckily for me, I don't have to decide anymore. But I ask
> >     the proponents and the working group to reflect on this a bit more.
> >     And we should consciously decide, as a community, if path signaling
> >     over UDP is a thing we support or not.
> >
> >
> > TSVWG went over this ground, to some extent at least, during the initial
> > discussions of the initial versions of draft-reddy-tsvwg-explcit-signal
> > (now expired) and draft-kaippallimalil-tsvwg-media-hdr-wireless (still
> > active). After several threads in which the merits of using UDP options
> > for host-to-network signaling was discussed (see, e.g., Challenges for
> > host to network signaling via UDP Options
> > <
> https://mailarchive.ietf.org/arch/msg/tsvwg/SpcVd6EB1Zi6FUhhyn2-o6nxuq4/> and
> other messages in that thread), I think most in the WG came around to the
> position of *_not_* wanting to see UDP options used for host-to-network
> signaling, The chairs are, or course, the folks who can make authoritative
> statements, but that was my impression, at least. The current version of
> draft-kaippallimalil-tsvwg-media-hdr-wireless does propose to use UDP
> options for signaling, but as part of a tunnel encapsulation arrangement,
> which does not conflict with the desired E2E nature of UDP options.
>
> I think that the WG is well meaning, but as Martin says, this is 2024.
> Just saying that a protocol is mean to be end-to-end is no guarantee
> that it will not actually be used and abused by intermediaries. After
> all, the TCP headers are clearly end-to-end similar intermediaries have
> been abusing TCP headers for a long time. Intentions are nice, but in
> 2024 if the protocol does not enforce its end to end nature then it is
> not end-to-end.
>
> In the absence of features like end-to-end encryption or, at a minimum,
> end-to-end cryptographic checksums, this protocol is open to
> intermediaries, even if the intent was end-to-end.
>
> -- Christian Huitema
>

v2.23.0 | Report a Bug | By Email