Re: [tsvwg] [Fwd: I-D Action: draft-westerlund-tsvwg-dtls-over-sctp-bis-00.txt]

Magnus Westerlund <magnus.westerlund@ericsson.com> Mon, 15 February 2021 10:01 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1AECB3A1065 for <tsvwg@ietfa.amsl.com>; Mon, 15 Feb 2021 02:01:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.771
X-Spam-Level:
X-Spam-Status: No, score=-0.771 tagged_above=-999 required=5 tests=[DKIMWL_WL_HIGH=-0.57, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qmzEJQJe6B5y for <tsvwg@ietfa.amsl.com>; Mon, 15 Feb 2021 02:01:06 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2048.outbound.protection.outlook.com [40.107.20.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AA3843A105F for <tsvwg@ietf.org>; Mon, 15 Feb 2021 02:01:05 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=nshIH7nZRUCa3TTtxe/3AWZCLXU6ZE0dWDrvpwaQhVR9COE7PvXFq98Bg4Hv+wYM45CbjKpW3jtBHB/B4jt8zZCDeSdnZlRs3zHO/CCIUCEmoDVzN+14C2DVHvqGqMbPKu/PL0pFMZ9XMoHIIFxUY9w0IXXURDd4pq8SMFuRNzQ/GYCr7wdk2r/rcsm11SeIgQsNa7gnI2q+7N75ZrTkQlKQxSwnM/khdUpYGKggb1xMmwHZR8SVXchK2fY/zZIHviYGACzK6O5lqCUbvGTNtRPp9eEgEdPaZdzd9D+da3XsuGZRjnjFREqAuxAzXBI0XoYquqL9G3lMqk19/7u2Yw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tbBsCBjkPJqa2TZM3W86PJtl0VTh5sroMOuLg3u5FNM=; b=gn/FIYsfwijrFEbdsv/nY9WvpYJ5MTmEjJP/x+dR3HVc4nkfwypB4g7WSW+O58ue/PWyvPKbR58dbMeyFknxMavYhAWjOZhqpGXCk0N7blu5CEeVljtdYlmWSHn8AecvgF9tit27aZTIFJ4phLMqWZNnuCgszRRev0RczBLxCPtMYqkOIFWFzaEm60SJbM1MzIuOYA9ucc6zOBQcr/euhKBR9JKeTt67UyDxa133bdhSS45sXnS8RD4jOQYlxtbIFv+t/w2JGytuUGPlms11WWQLOrJjXgB62oBDIV3QfE3LkOdsO+/V9wB7QzK+okh1+kMVmAOnc+0FkS68i92RVg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tbBsCBjkPJqa2TZM3W86PJtl0VTh5sroMOuLg3u5FNM=; b=I1AYBkZVHIPL5+pH+Jo6+TEs01wJfTVOvTFfQR+H/qyjrYuwGUBusyKJgitGcsDnn9yaQaqB3Tpw4KWHVvp+3cpJ0Gan/NCWscqWZZeH0QZZts90kvlCtstiwAA3eDBaudxAzCIsTPdCUBnanntOmyzLuxNkV+YBj9+T8fZ0ULU=
Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR0702MB3706.eurprd07.prod.outlook.com (2603:10a6:7:8d::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3868.19; Mon, 15 Feb 2021 10:00:42 +0000
Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::910d:a18f:b2ad:7976]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::910d:a18f:b2ad:7976%5]) with mapi id 15.20.3868.020; Mon, 15 Feb 2021 10:00:42 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: "gorry@erg.abdn.ac.uk" <gorry@erg.abdn.ac.uk>, "tsvwg@ietf.org" <tsvwg@ietf.org>
Thread-Topic: [tsvwg] [Fwd: I-D Action: draft-westerlund-tsvwg-dtls-over-sctp-bis-00.txt]
Thread-Index: AQHW6yyIepKtE3doPEKG9iwbUljogqpRbTqAgAe/OAA=
Date: Mon, 15 Feb 2021 10:00:42 +0000
Message-ID: <25a0f665e12d67071a371e0df92b6b2e814918d6.camel@ericsson.com>
References: <161070670982.3503.691422081028831338@ietfa.amsl.com> <1aebe31b1b3881ac566e38f619a543915e0878b9.camel@ericsson.com> <2e2b03c7-4c34-0501-99fc-c9a3d424a73d@erg.abdn.ac.uk>
In-Reply-To: <2e2b03c7-4c34-0501-99fc-c9a3d424a73d@erg.abdn.ac.uk>
Accept-Language: sv-SE, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2
authentication-results: erg.abdn.ac.uk; dkim=none (message not signed) header.d=none;erg.abdn.ac.uk; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [192.176.1.83]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 93f72259-a834-4830-1211-08d8d1988e53
x-ms-traffictypediagnostic: HE1PR0702MB3706:
x-microsoft-antispam-prvs: <HE1PR0702MB370699A95FD126295B99453995889@HE1PR0702MB3706.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 8io1zSBQfVGS4/6nvfmWJIZ/ZJUJjydXGoBeWzzvHHwhZEPTs0zZdieQKvMYVQ6rSa9d3zdZsPbRKIPHb78W4WDMQXJ7VB6JZj6h8/VYCiQ+Ih5wmARTISfv393aYxT4RZU0SijGqELrConMkcYza1cBczKBHQToKkfnetKCWj95GY4X3HW9gRt2jHwW6eJXCXptPzeocM6eyOOz0hdLFXXCZi8S+5kLt3rP6TCzW0xvvZ2C6BLqB7hIxzQij6hhNdKFhvN59jAUNtU5+IxwSVj6z2Cz8YoaK3IORDlTmaaUIbff88q9hab8Y0TpmCsMAf261fsam39NZGvgrEVTSgZ6uVHB7uIY9ZVAeTs8oEnalpvE65uAotTZZ+HLPNpC5lVj86SwHqZGkMWjoqUP3GKRpXu9vmaeD02HSLvMqlVUHKpZgYjNWj9NKAdnoxeDkH9UQxcbd6gyBH4c7+yVlCuxcJxWzkpsJ/wAOipySkhcK8Q3k29jQF/HZwunMHB14VtYuwoZbQo2Tn7NAr0a1A2hgrUIda0CKOgZa6bOowuE+aiPCWkjn1F90x/n9eTi
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(366004)(346002)(39860400002)(136003)(376002)(66446008)(2906002)(5660300002)(26005)(86362001)(53546011)(44832011)(71200400001)(83380400001)(478600001)(316002)(66476007)(186003)(66946007)(66556008)(66616009)(2616005)(76116006)(64756008)(8936002)(110136005)(6506007)(36756003)(6512007)(99936003)(8676002)(6486002)(296002)(99106002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-aattEpR63RA2iAshcXQE"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 93f72259-a834-4830-1211-08d8d1988e53
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Feb 2021 10:00:42.5328 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: izmhDNmOW7xHdYeJLq8A2ruIr47YY+wp1dx9OaA1Z67ui6OejYwV2WmloQ4ZXBSsvwOdK0gqx37Tl5aM/nMKE8eBkp/ZSxg9/DGSjySwF1E=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0702MB3706
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/t14hc6nNgp0ni230cb5WxRBLFbg>
Subject: Re: [tsvwg] [Fwd: I-D Action: draft-westerlund-tsvwg-dtls-over-sctp-bis-00.txt]
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Feb 2021 10:01:08 -0000

Thanks,

Getting feedback is excellent. We will address your comments and plan to submit
a new draft before the cut-off date next week.

Cheers

Magnus

On Wed, 2021-02-10 at 11:42 +0000, Gorry Fairhurst wrote:
> I have a few comments below...
> 
> 
> On 15/01/2021 10:52, Magnus Westerlund wrote:
> > TSVWG,
> > 
> > We have just submitted a draft that is intended to specify a replacement to
> > RFC
> > 6083 (DTLS over SCTP). The main reason for updating this RFC is that it
> > contains
> > a limiation that the SCTP user messages protected by DTLS was limited to
> > 16383
> > bytes. It was realized in 3GPP that they have several signalling messages
> > that
> > could become larger than that. Thus, from us author's perspective addressing
> > this issue at the root, i.e. in the IETF RFC that specifies DTLS protection
> > of
> > SCTP user messages is the best plase to solve this.
> > 
> > 3GPP will discuss the general issue more in two weeks time at their meeting.
> > However, this work should be completed during this 3GPP release which means
> > at
> > the earliest end of the year, but likely sometime in the first half of next
> > year.
> > 
> > When addressing the main issue of message sizes that are supported we are
> > also
> > addressing some additional issues including cipher requirements for the HMAC
> > of
> > the SCTP messages.
> > 
> > So I hope there are some interest in supporting this work.
> > 
> > Cheers
> > 
> > Magnus Westerlund
> 
> I read the new ID, and I think I understand the motivation, I do have a 
> few comments (as an individual WG member):
> 
> Thanks for this contribution relating to the maintenance of the DTLS 
> over SCTP spec!
> 
> There are a few typos in rev 00, which seem relatively easy to fix, and 
> may help anyone reading this with a view to whether it is complete and 
> could bve adopted, so I'm listing some here:
> 
> - Typo? /For receiver supporting partial delivery/For a receiver 
> supporting partial delivery/
> 
> - English unclear in this part?
> 
> /This
>     as the receiver can move parts of the DTLS protected user message
>     from the SCTP receiver buffer into a buffer for DTLS processing. .  And
>     when each complete DTLS record have been received from SCTP it can in
>     its turn be processed and the plain text fragment can in its turn be
>     partially delivered to the user application. /
> 
> - Typo? … any or the limitation?
> 
> /To ensure that the sender have some understanding of limitation on the 
> receiver size
> - /To ensure that the sender have some understanding of the maximum 
> receiver size/
> Although this sentence could also be easier to erad if it were to start 
> with /A TLS extension…
> … question: is this topic linked to the change in section 5.2?
> 
> - I found this sentence a little unclear:
> 
> /In cases
>     where one or more user messages are affected by packet loss of it's
>     DATA chunks more data may requiring buffer in the receiver./
> 
> 
> - - I found this sentence  unclear. Maybe this could be better as 
> something like:
> - /If one has partial delivery in both SCTP API and the ULP API and
>     parital processing in the DTLS/SCTP implementation the buffering
>     space in the DTLS/SCTP layer should be no more than two DTLS records.
> 
> /If an implementation supports partial delivery in both the SCTP API and 
> the ULP API, and also
>     parital processing in the DTLS/SCTP implementation, then the buffering
>     space in the DTLS/SCTP layer ought to be no more than two DTLS records./
> 
> - In Section 3.5, the text probably would benefit from being slightly 
> clearer that the
> 
> /DTLS Path MTU discovery function MUST NOT be used/, since this appears 
> an important detail.
> - Would an additional ref to sect 4.4 of DTLS help make this clearer?
> 
> - I was unsure about:
> /Connection ID SHOULD NOT be negotiated./
> - is this better as:
> /The DTLS Connection ID SHOULD NOT be negotiated.
> - If so, this could cross perhaps ref section 9 of DTLS?
> 
> /SHOULD register and use a separate payload protocol identifier (PPID) /
> - Please add where/how this is registered?
> 
> - Sect 4.7 Where is renegotiation described … could there also be 
> perhaps a cross ref?
> 
> - In Sect 4.8:
>   / As renegotiation is not used in DTLS 1.2, all user data is sent in
>     epoch 1./
> - I’m not sure I understand. Is the “all data” statement related to DTLS 
> 1.2, or 1.3 or something completely different?
> 
> - Typo: add ’s’ /to define a setting that represent the policy/to define 
> a setting that represents the policy/
> 
> - Typos?:/A SCTP client that receives an INIT-ACK which doesn't contain the
>     DTLS-supported message but do include
> /A SCTP client that receives an INIT-ACK that doesn't contain the
>     DTLS-supported message but does include/
> 
> I hope this might help prepare a -01 version of the ID.
> 
> Best wishes,
> 
> Gorry (as individual)
>