Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption
Claudio Porfiri <claudio.porfiri@ericsson.com> Wed, 12 April 2023 12:43 UTC
Return-Path: <claudio.porfiri@ericsson.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF4A5C15170B for <tsvwg@ietfa.amsl.com>; Wed, 12 Apr 2023 05:43:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FiAiDvZ5BImm for <tsvwg@ietfa.amsl.com>; Wed, 12 Apr 2023 05:43:51 -0700 (PDT)
Received: from EUR03-DBA-obe.outbound.protection.outlook.com (mail-dbaeur03on20618.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe1a::618]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B47D2C151707 for <tsvwg@ietf.org>; Wed, 12 Apr 2023 05:43:50 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jdwWwnZf15fMfemk9xaVhRqV/2CV+9gm6do/O5DPAwXhkWAZ4ajEh4eTsxka4XlIDEBBoTJLVMEzQuVmWe3LsWZXsd2TrCBXgYvERlxdg91qQEPDBkxMt7jNK1jaIHtRuhhhvxP2K3a/djSwHIEdcXS9O43SVJlixbQZvhSIVNrmrKBIWGPtIm6h/J7ToNSsCoxvqmS4J1za4UqMRGFNjK6AXwa52RTt4R2XKfHYfgtxVw1Oyk5ZgP0uSbl/AlpV6HC2tKZI3VEIXeucueya3iWko1jiGbHIdMnrcQJ+a9t9Cdm3Ub9M0Ku6wA7A85RMGq4QUlOPGeZIlh9iPCSlxw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=mlKGUqKM6GSeje3UHYMS24ULlUbkqzowz9o6i1G7Re8=; b=UqVqmrAuJoV6wnk/O7r4FNhh3lWZHeR8zaQeGrJRBW3kEYn3r5Cc9yDUUdWfUxug/6RCU9a/3Lo7CcTZnW5EhMlDYKD8qzhkhGN40NRjj637i8LSvxyz/BC28Ril6W9oS5KDMYZkUFHIE/xwUI1CRwLNXxdtXZnkUkYQDldSIBUMQ93TO+SawUkKV2eGUY6T4U5jkE5vzhepSN0zBO7MHLsZgzbRQpWFFo3Q6XnfTnTtzA0AplvwHRLif8hJPPTxK/+6pYZml8R4HXV8h8BpLBp4r69tI+zfbl5oLw8fLbF6ygj7nhQv1YhYQRX4eSDnmbcmZeP7GjYWusxdOAZHwg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mlKGUqKM6GSeje3UHYMS24ULlUbkqzowz9o6i1G7Re8=; b=o0BwaM6eDWvSjMtC1q9RBs99BeCWOupsmTzFLkhOPXQR96VcpMFsR4e63BRdCEC++25ezJZnphE94gGyH9hg60SzxPthwEGpHby99DfnKwvr6ceXPrvjkRU2/VS6F4sq1b7qiziFVKDD1rRYE3/5O4MtY4b5Lv88I86yomwDsbo=
Received: from PA4PR07MB7568.eurprd07.prod.outlook.com (2603:10a6:102:c7::23) by GVXPR07MB9870.eurprd07.prod.outlook.com (2603:10a6:150:11d::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6298.30; Wed, 12 Apr 2023 12:43:45 +0000
Received: from PA4PR07MB7568.eurprd07.prod.outlook.com ([fe80::d4d:a381:2309:57c8]) by PA4PR07MB7568.eurprd07.prod.outlook.com ([fe80::d4d:a381:2309:57c8%5]) with mapi id 15.20.6298.030; Wed, 12 Apr 2023 12:43:45 +0000
From: Claudio Porfiri <claudio.porfiri@ericsson.com>
To: "tsvwg@ietf.org" <tsvwg@ietf.org>
CC: Nils Ohlmeier <nils.ohlmeier@8x8.com>, "tuexen@fh-muenster.de" <tuexen@fh-muenster.de>
Thread-Topic: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption
Thread-Index: AQHZbJk7cHZauluwYEuIF283T6i1Cq8nmQKAgAABenA=
Date: Wed, 12 Apr 2023 12:43:45 +0000
Message-ID: <PA4PR07MB75688C3004CC917EDE628819879B9@PA4PR07MB7568.eurprd07.prod.outlook.com>
References: <9F7A670A-EA7E-4194-8125-B1DB7030802B@8x8.com> <CFBF062F-91DA-4B54-ACA9-36933EF08788@fh-muenster.de>
In-Reply-To: <CFBF062F-91DA-4B54-ACA9-36933EF08788@fh-muenster.de>
Accept-Language: en-US, sv-SE
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PA4PR07MB7568:EE_|GVXPR07MB9870:EE_
x-ms-office365-filtering-correlation-id: cf4b27cb-fd1e-45f4-e9f8-08db3b538dd5
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PA4PR07MB7568.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(366004)(136003)(39860400002)(396003)(346002)(376002)(451199021)(86362001)(54906003)(44832011)(66899021)(478600001)(33656002)(82960400001)(316002)(41300700001)(122000001)(38100700002)(8936002)(8676002)(52536014)(5660300002)(4326008)(66946007)(64756008)(66556008)(66476007)(76116006)(55016003)(99936003)(66446008)(53546011)(9686003)(6506007)(26005)(38070700005)(186003)(6916009)(83380400001)(71200400001)(2906002)(7696005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_0085_01D96D4D.2E403710"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PA4PR07MB7568.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: cf4b27cb-fd1e-45f4-e9f8-08db3b538dd5
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Apr 2023 12:43:45.0540 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ehrUNDbr73Hl7Vdq7+v5cVfu6/xJKNwhl9CA73l10NJVDOmIIQiCPSUGDGrzCK2niks7/Nr2IY7cGXdU1qZg0L2MCIPs6i2aGovOpfXu1mU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GVXPR07MB9870
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/ow8Oy7_f_CmGNdTLhsjHjNuqEuM>
Subject: Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Apr 2023 12:43:55 -0000
Hello, About the problem with legacy midbox, unfortunately this is due to a bad design habit where nodes that should only look at IP header do deeper analysis and decide to drop packets even if they are not supposed to do any firewalling. It's a pity as the adoption of zero checksum may benefit also other SCTP transports other than DTLS where the payload is protected in some reliable way, and there are initiatives in that sense like the crypto chunk draft that would also benefit from zero checksum. As a matter of facts, the zero checksum is currently limited to the cases listed in the draft. For the time being the zero checksum, as specified in the draft, is welcome. Related to the midbox behavior, recently a new version of connection tracker in Linux Kernel for SCTP has been mainstreamed that avoids deep packet inspection, so that it would work with zero checksum when SCTP is using IPV4 and IPv6. I am not aware of a similar change in BSD connection tracker. Best regards, Claudio Porfiri -----Original Message----- From: tsvwg <tsvwg-bounces@ietf.org> On Behalf Of tuexen@fh-muenster.de Sent: Wednesday, 12 April 2023 14:20 To: Nils Ohlmeier <nils.ohlmeier@8x8.com> Cc: tsvwg@ietf.org Subject: Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 adoption > On 11. Apr 2023, at 19:15, Nils Ohlmeier <nils.ohlmeier@8x8.com> wrote: > > Hello, > > I’m supporting adoption of draft draft-tuexen-tsvwg-sctp-zero-checksum-02, because it is going to be useful for all WebRTC endpoints out there to have the option to skip the checksum step. > > I also reviewed the draft. The only concern I found is this sentence: > > "Since the lower layer of SCTP can not be IPv4 or IPv6 as specified in [RFC9260] or UDP as specified in [RFC6951], no problems with middle boxes expecting correct CRC32c checksums in the SCTP packets are expected.” > > Which confuses me, because it sounds to me like this is trying to say that SCTP over IPv4 or IPv6 can not be done. Which obviously doesn’t make any sense. But I honestly fail to parse what this sentence is suppose to tell me (besides no problems with middle boxes is expected). Would using One example of such a lower layer is the use of SCTP over DTLS as described in [RFC8261] (as used in the WebRTC context). Counter examples include: * SCTP over IPv4 or IPv6 as specified in [RFC9260]. * SCTP over UDP as specified in [RFC6951]. * The use of SCTP Authentication as specified in [RFC4895]. Therefore using an incorrect zero checksum will not result in problems with middle boxes expecting correct CRC32c checksums in SCTP packets. be clearer? Best regards Michael > > Best > Nils Ohlmeier
- [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum-02 … Nils Ohlmeier
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Claudio Porfiri
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Nils Ohlmeier
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Nils Ohlmeier
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Magnus Westerlund
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Magnus Westerlund
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Magnus Westerlund
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Magnus Westerlund
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Magnus Westerlund
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Magnus Westerlund
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… tuexen
- Re: [tsvwg] draft-tuexen-tsvwg-sctp-zero-checksum… Michael Tuexen