Re: [tsvwg] Comment on draft-ietf-tsvwg-transport-encrypt
Erik Kline <ek.ietf@gmail.com> Sat, 29 February 2020 03:27 UTC
Return-Path: <ek.ietf@gmail.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B2C633A0A69 for <tsvwg@ietfa.amsl.com>; Fri, 28 Feb 2020 19:27:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yDJwZVaMXPEs for <tsvwg@ietfa.amsl.com>; Fri, 28 Feb 2020 19:27:54 -0800 (PST)
Received: from mail-ot1-x334.google.com (mail-ot1-x334.google.com [IPv6:2607:f8b0:4864:20::334]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10CD33A0A68 for <tsvwg@ietf.org>; Fri, 28 Feb 2020 19:27:53 -0800 (PST)
Received: by mail-ot1-x334.google.com with SMTP id j14so283658otq.3 for <tsvwg@ietf.org>; Fri, 28 Feb 2020 19:27:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=cqLo1BjL3YMcHJl5RJBjVWpNSuIz0Lg7ceVMQ595BjE=; b=dAAosxfN3hsdMV0WG0T5jiUZMZXDoB9izDrFBiq/dCrWdSZRmpPZCCh/6tqXC/1cB2 iCt2jGUaV1KNW9mpNUIqIIsNk8033YYWRvAHuVRDDsbRjnadnWLO/+eSSn7HBH01ZlUl qy/wcka5aEhGTYHfZKnUyGiuCvP0zWajQ5FVnP6ZQdtoU13rT7mrWqOtan2Qu3PkmSlI Mtxf9J/WZKSwNCBYdd4A4JjcP26YcORZ2ywj87SyDACN5UMnmkxx0SuzqNTFhj3W0+J+ Xre18r1Ny+4tF3UiZ1Un8xo2DkRafs8DkNB5iIV4+oaLea/SmoCVrxlNoYz7cO/coPaD 9tUw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=cqLo1BjL3YMcHJl5RJBjVWpNSuIz0Lg7ceVMQ595BjE=; b=Oi51x8As8EEO0ETr6xd2tSBDbG1u5uX98LxcJ5AGDUsusjM2B5xd27CYVCCxKTUuba FlsdKLzTKPoQKu/1GadiYNiryDqIgAUAOYV5+wZtEFYB+9VNeW3H8REW0yxD09XGE2X5 X694jwshMGkBqA1CzAOp1HMDPmmTQxFsKqEJWKkCDy++iZYlEYdR6Js5LjA//DMX2ngj FZUulpDteh8eHsCJQCo8ibb7VPpxVxz2INRvfDN5r9Yz1AwfQ36Az6V3zN9bRu1vX+SQ /XrYXfZBPNz2f+8zIlyTuGADf5K/GdEnCN9LRJPRoZEoWGEDP0jqIWOuvoXq5JyxYNLO Hfnw==
X-Gm-Message-State: APjAAAUtxQodO2iMqxaVNK9AC2Vddc5yJusZbqUzvbAdwJj9KDTPeiVJ HlAkDRtDfDXJXCua3b8LscDw+gR/GE15NL8/950=
X-Google-Smtp-Source: APXvYqxGCW4f3fB4ICBgrz2DUya5NsQyqL4pXlCkVSBZ3NipSGNxRVg0lP7SFuoxft5LlIr5q9HBNtZLLMHEfYrLA7I=
X-Received: by 2002:a9d:443:: with SMTP id 61mr5169808otc.357.1582946872267; Fri, 28 Feb 2020 19:27:52 -0800 (PST)
MIME-Version: 1.0
References: <CALx6S37iBDc7KxOL60=HC_QkWH06-5MU2rqrK=w+mqiKkSdc0w@mail.gmail.com> <CAKKJt-cznw56bimFtqt5Z1Wg_vOKy=id-uD5BWurHDYSQzuPRw@mail.gmail.com> <CAMGpriXDBWxwEXCwqPXX+QPhtQ0Z5NeVMEiEEQRjudR3ZZXW6g@mail.gmail.com> <CALx6S37XFh7Ph2oBjfsiYu0gq=a7yAD+zWHPi5fGHY6T94N-bg@mail.gmail.com> <CACL_3VEM1rbNMRtFn2MBXorqcOAiNXR2xWaOHQDZhm=tin3CEA@mail.gmail.com>
In-Reply-To: <CACL_3VEM1rbNMRtFn2MBXorqcOAiNXR2xWaOHQDZhm=tin3CEA@mail.gmail.com>
From: Erik Kline <ek.ietf@gmail.com>
Date: Fri, 28 Feb 2020 19:27:41 -0800
Message-ID: <CAMGpriWGREvyvimycP0FrT5BM2r1q3uaGSDC6L+QQ8wVS4_RCw@mail.gmail.com>
To: "C. M. Heard" <heard@pobox.com>
Cc: Tom Herbert <tom@herbertland.com>, tsvwg <tsvwg@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000000519c9059fae8afc"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/qUvctcgu6MEPcijwlYcyr4ECZxw>
Subject: Re: [tsvwg] Comment on draft-ietf-tsvwg-transport-encrypt
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 29 Feb 2020 03:27:56 -0000
On Fri, Feb 28, 2020 at 6:06 PM C. M. Heard <heard@pobox.com> wrote: > On Fri, Feb 28, 2020 at 4:18 PM Tom Herbert <tom@herbertland.com> wrote: > >> On Fri, Feb 28, 2020, 4:10 PM Erik Kline <ek.ietf@gmail.com> wrote: >> >>> It also seems possible that some UDP options ( >>> https://tools.ietf.org/html/draft-ietf-tsvwg-udp-options) might come >>> along that could help things like QUIC effectively have a path-modifiable >>> portion that (a) isn't a HbH extension header and (b) isn't covered by >>> something cryptographic that would break if it were modified in-flight. >>> >> >> "things like QUIC" would mean protocols encapsulated in UDP. The point of >> HBH is that it works transparently for _all_ transport protocols whether >> they are encrypted. Besides, UDP options hasn't yet been proven deployable, >> so good chance it would just be trading one set of problems for another... >> > > Also, UDP options as specified in the current WG draft are not intended to > be modifiable in flight: > > >> Options MUST NOT be modified in transit. This includes those > already defined as well as new options. New options MUST NOT require > or intend optionally for modification of any UDP options, including > their new areas, in transit. > > I find that a little sad, actually. I would expect UDP MSS clamping to be a thing (in the absence of an AH it should be fine). I understand the architectural impurity of it, but I also feel like TCP MSS clamping is the only path MTU mechanism that has a great success rate of working in the Internet -- for better or worse. Forbidding UDP MSS clamping seems to me to be ignoring this state of affairs.
- [tsvwg] Comment on draft-ietf-tsvwg-transport-enc… Tom Herbert
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Spencer Dawkins at IETF
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Erik Kline
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Tom Herbert
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Tom Herbert
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Joseph Touch
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Joseph Touch
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… C. M. Heard
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Joseph Touch
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Tom Herbert
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Joseph Touch
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Erik Kline
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Joseph Touch
- Re: [tsvwg] Comment on draft-ietf-tsvwg-transport… Gorry (erg)