Internet Engineering Task Force 110, 9 Mar 2021

Previous Meeting Next Meeting

⏯

youtube image

►

From YouTube: IETF110-MASQUE-20210309-1600

Description

MASQUE meeting session at IETF110
2021/03/09 1600

https://datatracker.ietf.org/meeting/110/proceedings/

A

uh Just give it one or two more minutes for people to find one.

B

Can you hear me right, I assume so everyone's been very quiet, uh mic check, testing one two great okay! Thank you.

C

We can hear you fine, I would say not only to david, but also to chris.

A

Thanks magnus.

A

Dog has returned for second meeting of the day.

A

A

um Let me kick things off: uh welcome everyone to the mask meeting for ietf 110 um uh eric, and I are pleased to have you here with us, even though it's quite early for us on the west coast.

A

Hopefully this is a productive meeting next slide. Please.

A

uh As a reminder, um uh this is being recorded. um uh I I assume most people are familiar with meet echo, but if you're, not um the the button should be fairly explanatory in terms of how to run the queue unmute yourself and so on. um As a reminder, please state your name at the mic. If you have before you start speaking, so the note taker can log it accordingly um and, as always uh just please be respectful and courteous to others next slide. Please.

A

This is the notewell um uh as in a I assume. Most of you have seen this by now, given that we're already well into iatf week, but if you haven't, please take a moment to familiarize yourself with it, either here or online um and understand what it means to contribute to the ietf. um I like to call it specifically the code of contact again just to encourage people to be respectful and kind to others.

A

A

Here's some links to help get you going. um The agenda is here, although it's also listed from the appointed from the data tracker, we have a link to the notes here in the java room um before going forward, do need to pause and see if we can get someone to take notes.

A

Maybe someone already has no, it doesn't look like it. So we'd be very grateful if someone could take notes um should be fairly simple, um given that this is recorded and transcripts are recorded.

A

A

Any takers, it's very.

A

A

Thank you, whoever that was. Thank you, um oh uh philip. Thank you. I appreciate it um and, if folks are, you know, want to jump on the the notes page and help them out. That would be greatly appreciated as well.

A

All right um next slide, please so. Here's the agenda for today um uh just like to go through uh our primary working group documents, h3 datagrams, connect, udp and ip processing requirements and then, as always as time permits, uh hopefully we can get to tommy's draft quicker we're practicing at the end, um the pause for a brief moment to see if anyone has any sort of adjustments or uh bashing they'd like to do before we kick things off.

A

All right hearing, nothing uh we'll turn it over or we'll pull up the slides for lucas and we can uh get going ah lucas. You need a mask or you need a mask.

D

Well, you know, put your hands in your pockets traps and uh you know get going.

D

I presume you can hear me: okay,.

D

Is that a yes or no? Yes, thank you, david.

E

D

um So so, I'm going to present today about using quick data grounds with http 3, which we kind of interchangeably call http 3 datagrams, but I'm going to come on to that slightly in a few slides. So let's get started with the first slide.

D

The 15 second summary of where we're at uh we've adopted this document. So after the I think the interim, we had some positive feedback about adopting this thing into mask, there's a bit of overlap between this document and others, and it could have fitted into the http working group and we've had that discussion. But mask is our home now, and this is where we're going to talk about stuff. So um hp3 datagram is like datagram, but the frame load must start with the flow id anyone familiar with the history of where h3 datagram came from.

D

um Well now we kind of just shifted the flow id from one place to the other, without really moving it, but how it's used is changed, and that raises some discussion that doesn't need to take place here necessarily, but in this quick datagram draft.

D

So I presume some of this might be discussed in tomorrow's quick session, so I encourage anyone interested in this topic to attend quick as well tomorrow, um but anyway ignoring that what are flows what's this flow id thing, we kind of think of them as a logical, bi-directional exchange of http, 3 datagrams, and the main use case here is to support demultiplexing.

D

So you would imagine an application using http. 3 has different contexts for things and it wants to support different flows and make sure that the right messages get read out or put in the right place, but to do that effectively requires some peer coordination, so you want to be able to say from a client tell the server what a particular flow id maps to so the way that we do, that is, to use http messages to associate a message to a flow id next slide. Please.

D

So so, just to remind people of the draft. This isn't like a question, but just just to us to come up with some premises of the design and to assert that everyone's happy with them as a as a group for this adopted document.

D

So the first one of these is that all flows have an identifier which is a value chosen by a flow identifier allocation service, as described in the in the spec, um and that flow id today is defined as a 62-bit integer um in that range. So it's a non-negative integer and when that's carried in a frame.

D

So when it's carried in the datagram frame as its payload, it's encoded as a quick variable length integer.

D

But when it's carried in a header, the datagram flow id header, which I'll show shortly um we're restricted by the rules of structured field. Integer encoding. So there's a hard limit on that flow id of uh 0 to 10 to the 15 minus 1, which is all written down and and there's some um kind of quirks in that we might change that. There's some open issues that we're not going to discuss today, but if anyone's interested go to our github repo and uh have a look so next slide.

D

And then the premise of two is that, although this is called h3 datagram, um we presume that there might be this.

F

Yep, so sorry to jump in, should we maybe pause on the design premise to give people a chance to uh object if they disagree with it, because I think it would be good to get working group consensus on that point.

D

Sure I agree: should we go back a slide and pose that question.

D

Does anyone disagree with this design.

D

D

How long would you like to wait david.

A

I think that's long enough, we can move on.

D

That's good, okay, uh back back to this one! Yes, so the case here is that um no sorry getting distracted that, uh yes, you can use quick datagrams when you're using http 3., when, when that's the application protocol, you select and you can use these flow ids encoded in the payload of the quick datagram, and you can use that for demultiplexing.

D

But we should support some applications that might not actually want that behavior. They might be comfortable with inventing their own demultiplexing layer. Maybe they want to extend things in a different way or whatever, like we shouldn't close the door to people who might want to do things differently, although it's not our concern about how they do that and the way that we can achieve this is via this h3 datagram setting, which allows the endpoints to negotiate that you know one both opt into this thing.

D

This feature that they will use flow ids as described in the spec. um So, yes, I think that's a good point to pause again and to ask people. Are they happy with this premise? Does anyone object or have an issue with.

G

H

Ben schwartz, um unless we have, if we don't have a use case for opting out of this right now, can we define it later when we need it as an opt out.

F

Something has co-authored answer been here uh the so this document changes the semantics of http, uh as in in http 3 by default, the datagram frames aren't to be sent, and so, if we want to give them semantics- which we do here by like, for example, starting with a flow id, we need a setting that is like how http 3 works, uh because some other extension later down the road could say that the datagram frame in http 3 starts with an emoji, for example, or something silly.

F

uh And so, if we want this, we need a setting, that's kind of how that works. um Okay,.

H

F

H

It's not entirely clear to me that this is true, but I I can believe it's true if you want an answer to your datagrams um that if you know, if you're, if you're not content to just throw them across the wire and see if you get something back.

F

Yeah, but you shouldn't be sending something across the wire unless you know that it's not going to break the other side. uh If you send.

I

F

The other side says you're not allowed to send this. It closes your connection you're, going to have a bad day.

H

Yes, um so that's then that's another question like if today, if we, if you start firing quick datagrams at some h3n point, that's never heard of them. What happens.

F

uh Right now, it's undefined so that endpoint could uh could close the connection it could crash. It could email your private keys to the nsa uh and that's why we want to define it.

H

Okay got it yeah.

D

So this is not.

H

Proposing a this is not proposing a mechanism to define other rules. This is just noting that somebody could thank you.

F

Absolutely this is all this is saying, is uh the in in order to tell the other, um your endpoint, that you are conformant with this document. You have this setting. That's all this. Does.

D

Yeah and just to add, you know we we have the transport parameter, negotiation for the quick datagram, but just receiving that doesn't help because, as david said, it's it's completely undefined. What receiving a datagram should should do, and I would say, based on some my personal past experience of say, trying to deprecate a default feature that wasn't negotiated via a setting, um as in the form of priorities in h2.

D

Has its own challenges too so trying to turn something off after the horse is bolted, is kind of harder than it seems. So I personally I support this premise, um but I think it's good to have this discussion.

A

uh It probably cut me off, I was just alex you're up.

J

um So I have a quick question about the uh one of the rules for using quick, datagram uh frame. Payload feature that you're mentioning there. Well, I'm totally in favor of having the settings to say. We want to turn this feature on, but the use case of other applications might not want to demultiplexing seems like a anti-feature to me, because you could always use a very low flow id and therefore only sacrifice like one or two bytes, and I feel like in terms of compatibility.

J

We might want to say that the flow id is mandatory and if you want to put everything on one flow, that's up to you and I would prefer that design. Because then it means that we can multiplex multiple things over the same h3 connection, some of which may want to do your own multiplexing and some of which may not without having to tie the faith of the entire connection.

D

I think that's a valid view, but personally, I think just because we have this setting, as it's stated it doesn't. It doesn't add any complexity to our specification to support any case where demultiplexing might be needed. Someone later could come along and define a new. You know extension to hp3 that effectively supersedes this, and people could be free to negotiate that and do what they want if they didn't want to eat this kind of short flow id.

D

I'm not saying I would do that myself or I can think of someone who actually would, but I don't want to constrain other extensions that might exist.

J

I I understand what you're saying, but it leaves me on the team.

A

Mike uh go ahead.

K

I think you wanted video rather than screen.

L

Yes, I accidentally was trying to screen share so um just first off wanting to point out that h3 does not prohibit datagram there's no such frame in quick v1. Therefore h3 says nothing about it. They just have no defined semantics, uh but the thing that h3 does have and h2 as well is kind of a difficulty with negotiating things with the peer you advertise statements about your capability and then have some rules about what you do with those sets where they overlap.

L

So let's say that something could do this type of h3 datagram and could do something else.

L

We would have to define rules for how you advertise the set of things that you can do and what happens when both of you support more than one, and I don't think we want to wade into that mess here.

L

I'm that makes me sympathetic to the you know: just do you support datagram or not, and they always have the flow id, and then you just have to figure out how you allocate flow ids, how you reserve them otherwise we're getting into defining negotiations, and I in a registration we don't need that right now,.

F

Just to jump in I'm just from the questions seeing a bit of confusion, I think that maybe that first line on the under the title in this slide is a bit confusing.

F

All we're trying to say is this: setting tells the peer that you support the specification, that's it um and that's how we've understood like the mechanisms of defining semantics and http 3 to work, because if something doesn't have semantics and we give it semantics, we need to make sure that the other side understands. That's all we're saying we're not suggesting any complication or ways to demultiplex other applications. Here.

L

Yeah, I I agree with that. The issue is when you start talking about what other applications might or might not want.

L

If you support this and something else that can use datagram, the meaning of that is almost as undefined as not sending anything.

F

Oh, I I totally agree. I think that is completely out of scope and illegal. uh The the idea of the setting here is, if later down the road someone says it comes up with a better design. They could not send this setting and send another setting and they would have their own different datagram thing. That is completely incompatible with this one, but the connection would only use that one.

F

I do not foresee any use for two of them at the same time, because that is a huge can of worms that we do not want to open.

L

Yeah the trouble is, if you didn't, want the ability to negotiate down to this one with your peer, but that um I agree. Let's leave that problem for another day. If we have to have it.

F

A

Tommy go ahead.

M

Cool um yeah, so just echoing what a lot of people have said on chat already, um I think we need to use the settings. um Just how it is is, I believe, the correct way. I think it's more for future proofing, also to be very explicit that the h3 application is intending to do this um to some of the earlier points of you know. Why do we actually need this, or how would we use the negotiation versus not on the connect udp draft?

M

There's a conversation we're having on one of the issues around um if like how extreme chunks could work and if they could share flow ids with datagrams and effectively. This setting would be very, very useful there to know for sure you know. Does this hop at the http layer support datagrams? If it doesn't, you interpret connect udp differently, um I'm not saying that's necessarily where we're going to go, but that is an example of why you need the setting, um because you could have an implementation, that your quick layer always advertises that it supports datagrams.

M

But your h3 application on top at the moment does not, and you don't want to have to force that coordination. So I think we just leave it, as is.

N

I'm trying to come up here, uh yep. Well, I want to jump in to echo uh some of where I think the conversation is on chat, but I I really want to say that uh this, let's not over engineer this, and I want to say this now, because I do I want to say this for subsequent design premises as well. uh We want to build to the use cases. We have right now uh as long as we don't block other use cases from happening in the future.

N

I think that should be good enough, and this one clearly does not block us from doing other use cases in the future. I want to see an hd, datagram new and then a newer and newest datagram settings in the future. I don't want to preempt those now um so yeah. I'm I think this is. This is fine. This is great. If we want to change the semantics of what each datagram means we can redefine.

N

um Well, we can define newer settings in the future.

A

O

Hi guys, david a long time ago, you articulated the desire for mask servers or mass proxies. I guess to not um freely advertise their capability, and I wonder if this is an unavoidable effect of this design. That um I mean, unless servers are withholding settings of the clients and settings that http could be clued, that the server has mass capability.

F

um So I totally agree with you. I believe, very strongly that mass capability should not be advertised uh and the key property there is that it shouldn't stick out.

F

So my solution to this problem is: google will send this on every single, quick connection, a gp3 connection, and uh if we get everyone to do that, then we don't have this problem, because all we're saying is, we wrote some code to support http 3 datagram, we're not saying that we're actually going to let you do connect udp, we're not going to let you do connect ip or whatever cool things mask sums up with in the future.

F

We're just saying we have an http 3 stack that happens to support datagrams and if enough of the open source or it doesn't have to be open enough of the widely deployed implementations do this, then this doesn't stick out.

O

Okay, I mean obviously, if other h3 datagram applications become very popular. Then this is going to be. um Then then I don't think there's an issue here, but if, but if like, for whatever reason, web transport is kind of a dud, then and quick, is it I mean and mask is the dominant application here.

O

I think we have a problem for people who are not as careful as you and I don't know if we need to put something in security considerations for a mask to to um to kind of call that out and the mitigations like withholding settings, etc.

O

That's that's reasonable.

D

Yeah, I think that's good feedback. um I'd just say that, like having this feature on, doesn't mean that the server needs to do anything like you can reject any request that you want in http that and that's one of the benefits of actually tying the usage of datagrams to messages. We can just benefit from all that prior work.

A

D

Can't hear you christian you're.

F

P

I saw that the hand tool was on muting your microphone with him.

F

P

Anymore, are you okay and it was pretty much the same question as martin I mean I am very sensitive to this privacy issue, and uh I know that there are guys out there that are running bots to find whatever proxies they are that they want to shut down on our block and so having a big sign that says: hey.

E

P

A proxy right here in the setting is not without consequences, and so at the very minimum I mean david's answer shall be expanded in the as a privacy consideration in the security section and that's a very minimum. My my actual desire would be to be able to renegotiate the setting once the user is authenticated, but that's probably harder.

A

D

Which doesn't let you send settings after the handshake.

F

But I'll I'll definitely mention this in the security considerations section and totally agree with you. Okay,.

A

All right uh thanks all uh it sounds like we're, uh mostly in favor of the design premise on the previous slide, so um note that potentially update the security considerations accordingly and move on.

D

Cool, um so this slide is just stolen from david. I believe um from some previous talk. I don't know which one it is, but basically, if we're, if we're happy with the concept of flow ids, then we'll want to discuss um what the values are, the values that we use and so um on the left-hand side. We have a a simple approach, say that, um given that this flow id is associated with a request, we just go for a simple one-to-one mapping.

D

We use the request stream id is the flow id that would appear in the datagrams.

D

There's some downsides to that, mainly on that one-to-one mapping due to the unique way that streams are used in quick. We can only benefit from a quarter of the available id space, so we might have some longer encodings and some overheads, which is it's not a huge downside, but for some people it could be, um and on the other side of things, we've got not a one-to-one mapping. um So we have what we we identify as a distinct namespace, um so that we can.

D

We can allocate flow ids in this namespace separately from the the request streams and the ids of those request, streams that spawn those flow ids. So, in order to do this, we've got this flow id datagram, floyd header, um the the use of the flow id, is explicitly negotiated.

D

Using that header, a client would send this header in, in the request, say, for a connect, udp request, as just an example, um and the server would echo that value back to confirm that that flow id is fine to use, um and the benefit of doing this, as in this decoupled way is that it supports a many-to-one mapping and I've got some slides following this. That will explore that a bit more, so you don't need to rely just on your imagination.

D

um There's an example of how this is used in the notorious uh poorly mass, quick proxy, which we never seem to find time to talk about. So I hope we do today because that'll give you a better impression of things um but yeah the the authors.

D

The specification uses this right hand design at the moment um and again we'd like to double check. That's the right thing to use, um and we we have some opinions on why we think that is better, but no matter what we need to pick one because other drafts depend on the decision here. So if we go on to the next slide.

D

The discussion here really boils down to multiplicity and what people might like to to do with datagram. So you know the simple case that I just mentioned: the one-to-one stream or what one stream to one flow. um This is like the minimum that all implementations of h3 data grammarly to support. There's there's like no point of of having one stream to no flow, that's just normal http and there's there's no, so that you can have a flow without an association to a request so option.

D

One on this, this slide is, is what we have to do and then there's additional things that we can do that might have benefits of some use cases. So you could have streams referring to the same flow across different http requests, um and you can see tommy's draft for that and then there's another case where we might want one stream or one request to establish multiple flows in kind of one trip again.

D

This would work the same as a you know, the client requesting for those flows to be created and the server, echoing back um all of those flow ids to confirm that they're supported and that they've been created.

D

Or perhaps you know it can't create all of them because of an extension that I'll show in the next slide, um and it only confirms some of the flows that it was happy to create um and so to support this multiplicity in the the last version of the draft. uh We we.

F

uh Lucas, sorry again, maybe let's take a moment to talk about whether we want to do multiple city or not before we go into the datagram format, if that's okay, so um so so the the question kind of for the working group here and actually, if you could go back to slide five is so far. We've seen two two designs: um one is uh what we currently have in the draft, uh which is to say there is a namespace for datagram flow ids and you allocate them like the even ones or clients.

F

The odd ones are on the server and then you exchange them via header. That gives you enough flexibility that x, extensions can decide to. You know, do many to one or one to many. There is another design that is slightly simpler, which is to just use the uh stream id. uh That is a lot more constraining. It makes uh tommy's extension, not work and the fa and from implementation. We know that it's not that much simpler, because we got uh intro-op with four implementations on the datagram flow id design.

F

So what we'd like to do in this session- and I mean I'll- let the chairs handle that is reach, ideally consensus on one of those two approaches.

F

uh So we can, you know, put that to rest and move on, and one last thing I'll also say is the current design in the draft which has its own namespace is designed in such a way that if an implementation wants to only use the request stream id that actually works, because the fact that the two namespaces are technically different doesn't mean you can't reuse the same value for both.

F

So if someone for some reason thinks this is too complicated to implement and wants their datagram floy allocation, I uh flow id allocation service to only ever return the exact same value as the stream. They can totally do that, and so that's why I'm personally pretty strongly in favor of these more extensible design. That is only marginally more complex, uh but we'd really like to get everyone's take on this. So we can discuss it and then ideally reach consensus.

F

uh Should we start with the queue um ian.

A

um Specifically, just to echo what david saying we'd like to know whether or not we should basically stick with what's in the draft right now um and we'd like to really nail this down. Of course we'll confirm on the list. But um let's have the discussion now and with that ian.

F

uh Thanks um uh on this particular side, I think I want to call it first um on the left-hand side, the 25 of available ids, I mean you could fix that by dividing by four. So I'm not sure. If that's actually a german comment um and then the other one I was going to say is that reusing flow ids is, I would say, an actively harmful idea, and I think this might have been pointed out in a prior meeting. uh We we should not do that.

F

If we do the datagram flow id header, um I prefer simpler if we can get away with simpler, um and so I think, unfortunately, I need to see the rest of the presentations, because I haven't read tommy's most recent draft recently enough to swap in why the extra complexity is necessary. I have read david's draft on ecn.

F

In that context, I don't think I like using multiple flow ids. I think there might be other.

I

Designs that I prefer, um but maybe either I can quickly read on this graph during this meeting or the presentation will make it obvious. So I guess I need more information, but I I would like to really be motivated that we really need.

F

This extra level of interaction so yeah, we please read the drafts uh and uh and if you have points about complexity, um the code base that you and I share supports this and it's about 10 lines. uh It just uses a un-64 on the quick session object. So I would like to hear statements about why people think this is complex.

A

M

All right, um so you know I I definitely support not making the identifier that goes at the beginning of h3. Datagram have to be a duplicate of an identifier that comes from a quick stream, partly just for layering there, but I I want to challenge us to kind of rethink, how we're framing this um in the discussion that we've been having around okay, what are the different uses for these flow ids and why you would have multiple not talking about the quick aware processing but like looking at the ecn example.

M

Essentially, there are two two ideas being brought up there like one is: we have a flow id that represents okay. This is you know, ecn marking of this, for this connect udp stream. The other flow id is ecn marking. That means this, for this connect for the same connect, udp stream.

M

The other way to do it is to say you have the stream id from the original stream as the first integer that goes into the datagram, and then, after that, you have this other number identifier that you choose as like. An ecn specific marker that says, okay, this everything from here on is this flag or not.

M

What I would and- and similarly when we're talking about like the stream chunks in connect udp, we have a question of do. We use like a new name space for stream chunks or are we using datagram flow ids, and I would challenge us to say that we don't really need datagram flow ids at all that these are not actually identifying streams. Fundamentally, like there's kind of a reason, we didn't put the flow identifiers into quick datagrams itself, because it's totally up to application interpretation.

M

What a given message means. So, at the end of the day, all of these use cases, I would argue whether it's normal connected udp, whether it's ecn, whether it's quick aware, don't really care about a flow of datagrams. They care about some application defined meaning for a given message and that meaning may have nothing to do with a quick stream identifier that tying ourselves to saying that this is a flow that we should think of as a quick stream, I think, is pretty limiting and we could just say nix that field and call it.

M

You know your message, group identifier or whatever else: um it's not it's not really the same thing as a stream.

A

uh Luke, unless david or lucas you'd like to respond to that.

Q

All right, uh I'm luke, um I think the it might help to draw some parallels here. uh In my mind, this is in udp land. This is close to uh uh how rtp and rtcp works with the different flows in the same connection where they just have one port for rtp and another port for rpcp, um and that's fine, like you could have that if you were using mask for for that, you'd set up a header, you'd, say rtp. Is this flow id and rtcp? Is this other flow id?

Q

If you wanted to reuse the shared connect um or you could go a route where you kind of have the mux together? um uh As I know, webrtc does a lot today where it's using a single part, so I don't think it matters too much. I would like more examples where it's useful to have a multiple flows on the same connect um request, uh because you can only there's always like an alternative like rapping. uh Whoever just mentioned is another way or yeah.

Q

I don't know it seems like there's not really a requirement per se to have multiple flow ids.

F

So to uh to answer your question about examples, uh the way I think about it and uh we'll we'll discuss this a bit further in the next presentation about connect. Udp um often these features um the lifetime of the feature is tied to the to the stream.

F

So that's true, for example, in connect udp uh when the stream gets like reset. You close your target bound udp, socket, for example, uh and in web transport. There's kind of a similar idea where a web transport session has a bunch of streams, has a bunch of datagrams.

F

uh If the stream, like established your transport session, gets killed. That's when you clear all your state, so lifetime is important and I think it's important to tie a lifetime. So let's say, for example, uh in your, so I'm not an expert in rtp, but when you have a protocol that requires two sub protocols to work, it is really useful to tie their lifetimes together, because if one of them drops and not the other, that's an extra complexity. You need to handle.

F

So to give you an example, and that's something that like not again, this is an example, so don't jump into the solution. Solving of this, but if and when we build connect ip as part of this working group, let's say we have a flow id that is. Okay here are regular ip data ip packets, and then we have a compression extension that is oh by the way. If the ip header is exactly this, you can just send this flow id instead and that and that and then just the ip payload um again.

F

This is a vpn tunnel with optional compression, and you want to tie the lifetime of those two things together. So in my mind you want them to share one stream, which is responsible for the lifetime, but then you want sub flows of datagrams. So that's how I see an example of why this is useful. Like you said, all of these are at the end of the day, isomorphic you could instead say you get one flow id and then you add an extra layer of demultiplexing after that. I think that would be unfortunate.

F

So that's why I think, like this model is simple enough, but powerful enough to allow all these extensions.

A

um All right so we're going to cut the queue at this point um it looks like this is uh probably something that needs a lot more discussion, uh most likely on the list so um uh for the people that are remaining in the queue. If you have uh particular comments that you'd like to weigh in that, you could be brief about. um Please do so, uh but to make time for the rest of the presentations we need to we'll take this to the list when done alex.

J

I just want to add and address something that tommy said. I actually feel like this not being in the quick standard was actually a mistake, and I do think that we need this concept, and I think the thing which probably is up for discussion is whether or not flow id is the right term, but I do think that we need some capability to be able to distinguish whether or not a bunch of datagrams are to be used in a particular purpose. Otherwise you can't multiplex within quick, multiple things which are using datagrams.

J

So I think that we do need this extension point and, if renaming, it is something that makes people more comfortable with it, then we should possibly look into that like, for example, I would love to be able to have um web rtc and a connect udp connection going over the same h3 thing, and we can't do that unless we have a way to identify them without requiring each individual implementation.

J

Do something different and do that the multiplexing that david was saying would be unfortunate.

F

I'm not trying to understand what you're s or I I get. What you're saying and I think you know being able to multiplex different things over one quick connection is important, but are you saying uh in the specific context of this question, are you arguing for a particular solution?

F

Because, uh because I think what you're saying is we need an identifier at the start of the datagram, and I think everyone agrees on that. One.

J

Yes- and I was mostly wanting to address something that tommy was saying where he was saying- challenge is to figure out whether or not we even need this, and I think the answer is we absolutely need this. The argument that it wasn't included in quick is not a strong one. The specific choice between what is simpler here versus, not, I think, is in the eye of the beholder. I actually personally think the name space is simpler.

J

If I were to make an argument, um but I think that the concept that we need to be able to identify this, it probably should have some sort of way to be bound to a stream for a lifetime. Whether or not that's, mandatory or not, is to be discussed.

F

I think we're in agreement there and I think you might have misunderstood what tommy was saying but tommy's back in the queue. So I'm going to let him uh say that.

R

Could you just clarify, you said was simpler for the notetaker.

F

uh uh Alex can you clarify which one you said was simpler.

J

I personally feel the distinct namespace option is simpler, because then I don't have to think about what happens if we like mismatch them. So I actually disagree with the reuse being marked as simpler.

M

Cool that's good, to clarify yeah and to clarify the comment around. Why quick doesn't have it? I don't I'm not trying to use that as an argument, for you know why it needs to be here. It's more that fundamentally, this field only has meaning from the application semantics that are defining how it wants to communicate a given message- and that's you know so in quick.

M

A stream is identified by something that has transport level properties, and I think really here the only way we can def decide what a quick, what an h3 datagram means is based on the header fields that come in an http request that first define that value and so for connect. Udp, that's going to be used in one way. Web transport is going to use it in another way, and extensions connect. Udp can use them in still other ways, and these are all really unique to whatever semantics those header fields have so like.

M

I don't think this document needs to create preconceptions around what this essentially arbitrary set of bytes at the beginning of datagram means.

A

Okay, um so we have drained the queue now. um What I'd like to do very quickly before moving on, then um it's just a quick show of hands to see where people are sort of leaning, either left or right in terms of reusing um stream id and matching it to floaty or using the distinct name space. So I'm going to do is throw up a show of hands for option two and give folks a quick moment to fill that out should see it now.

A

Tommy you're still in the cube by the way, um did you have something else to say? Okay,.

A

A

Okay, um so end session um seems like people are mostly in favor of this. uh Now I'm gonna flip it around and ask the opposite question um there. You.

A

A

I feel like there should be music to go with these show of hands.

B

Well, you could uh you could whistle the jeopardy theme yeah whistle.

A

B

A

Is louder than my whistling royalty-free version.

A

um All right, so uh it's more or less the the exact opposite, um uh so that I mean it looks like very clearly one it's pointing in one way, uh which is option two. uh We will uh we'll confirm this sort of consensus on the list um uh and with that I think we can move forward.

D

Chairs, how are we doing for time? I'm just aware: there's there's other presentations here and I think some of these slides effectively depend on the the outcome of that further discussion.

A

um How many slides you have left.

D

uh There are 12 totals so six.

B

um David I'll I'll I'll just put it over to you how much time so what I would personally suggest.

F

um Is like, I think, the most important uh our questions we have for this session is kind of nailing down. um You know the wire format and I think uh like, for example, this call we just had, I would say lucas, uh it would be nice to spend the time we need on the datagram flow id header, because since or I mean we'll confirm this on the list, but if we assume that the list matches what happened in the room, we need the datagram floyd header.

F

So maybe let's go through all of the ones uh about the format of the header, because I think it would be really useful to nail that down today and then on the other issues that are a bit more niche. Maybe we can bunt on those for today. That's what I would suggest.

D

Yeah I mean there's only one other issue and that's around the flow id reuse. So let's just see how we get on um just chairs, interrupt yeah.

F

I think and that one I get a sense that we're going to close that one in 30 seconds. So maybe you go through all your slides and then we'll we'll see how it goes.

D

Cool, um so we've talked a bit about multiplicity. I want to stress that the the concept of a separate namespace for flow ids is is slightly tangential to some of the multiplicity that we're going to be talking about here. It would be possible to have a flow id header that only lets you send one um value in it, and so that's that's something we we need to bottom out as well as part of this this discussion. So if you go into the next slide, I think people understand multiplicity at a base level.

D

um But what we have is um you know an ability to send multiple ids that are integers and what the draft currently says is that it kind of tries to describe these flow ids. You have this minimal.

D

You always have to support one, otherwise, there's no point in in trying to negotiate it, but that you might have more and that those extra flows are kind of in support of extension, behavior that may or may not be supported at the the peer you're trying to negotiate the extension with and therefore we want to give those those flows, um a name or some some handle that the other side can look at and think I don't support that parameter. I'm therefore effectively going to ignore this entry in the list and I'll just respond with.

D

um You know that the mandatory flow, if I was going to support that under the hood, this thing looks like just a name, um but it is a proper structured field parameter. Although I've seen the comments that the syntax isn't just one, it's a question mark one. But but the gist is it's bull, and if you care to look it, it could look like that and that's what the spec says today.

D

But we have an open question based on the the interim discussion that this maybe isn't completely straightforward and doesn't necessarily support the extension cases that we had in mind. It doesn't articulate them very well. So if you've gone to the next slide,.

D

We have on the github repo issue, 24, which just says parameters should not be named, so this is opened by tommy um and to kind of paraphrase or summarize what he said there um in order to use parameters more conventionally and to clarify what the specs current design is trying to to achieve and to clarify that the design allows additional parameters other than just this weird name thing that we could do something different and there were two suggestions on that issue along with another alternative that is more detailed on the next slide, but just to go over these suggestion.

D

One is that, um rather than have like unnamed parameters, you just you define an extension point say in this case, like a rick, asked the extension point where you would say for for these different flows um as part of the extension.

D

These are the the kind of characteristics of that extension that I want to send different messages on in this connection, and if you don't understand that extension at all you, you don't understand the parameter, you would ignore it and deal with it effectively.

D

If you did understand the extension, but maybe not one of the extension code points here again, you can you can deal with it.

D

uh Suggestion two here is is very similar, but slightly different in that you wouldn't um split the extension code point into specifically rick astley and sub extensions, but you would have just this common name parameter that we would define in this specification and then allow extensions to have a name and again, whatever the endpoints are doing, to determine if they support extensions or flows, they have something obvious.

D

Basically, an implementation needs to look at this header and decide what it supports, what it wants to do and what it can echo back to to the peer that instigated it, um but there's another alternative. That's come up that isn't on the issue itself, but uh is worth describing. So if we go on to the next slide.

D

From the basis of what we're trying to achieve um this alternative is is trying to say that we coin not only this uh effectively, like extension, parameter, name and value field, but also a default um parameter that could appear on any flow id that is expressed in a header, um and the purpose of this is to state that or to make it easier for an endpoint that doesn't understand any extensions to kind of effectively strip them out.

D

Ignore them, and just look at that list of flow ids and easily identify the default flow that the the peer was trying to request that potentially makes it less ambiguous um and easier to do, and so. In this example, we talked about an ecn extension um and you could see if you don't support ecn like most people. You would just ignore that parameter and pick flow id 42. In that first example. The benefit of this kind of design is that it allows maybe a better composition of extensions.

D

That seems a bit controversial given some of the discussion earlier, but that you know we can use this um combination of evil and rick astley to come up with different, weird combinations of stuff for different flow ids, but have a very clear ability to select a default, which I think is pretty unambiguous to anyone who would just look at this and and and read it on spec.

D

S

A

D

The next slide, or have you got some questions.

A

Yeah, you got two questions queued up um start with martin.

G

So lucas, I think, what's unstated in these two slides- has been the the point that um in the first one you sort of have to understand the the name, the name of the parameter and the value of the name parameter depending on which option you have in order to make any sense of this particular item and um the the assumption there is that if you see something there is this, the sender saying is the center of the header, the receiver of the flow id. Or is it something else.

F

So let me maybe try to explain here. The idea is that um so we have a list, so there can be multiple flow ids uh with this one stream and then the receiver. uh So let's say the the proxy in this case um will do different things with these different floyds. So, for example, one of them means a different value of the cn bit in the header. The the important distinction here is the it's possible. The proxy doesn't understand the uh the extension and we want it to.

F

Let's say in the example of an ecn extension: you want that to back up a bit. Okay,.

G

Back up a bit, this is this: the client saying use flow id 46 for ect1 markings when you send packets to me or send datagram frames to me. Is that what it's saying.

F

A yes and it's also, actually it's saying it's saying if you want to send it to me, use this and also, if I send you a datagram with floyd46, that's what I'm trying to tell you it's bidirectional.

G

uh That the server would have to echo that, in order to acknowledge that it supports that so.

T

There's a bit there's both.

G

Unidirectional um advertisements is it's like the stp thing. If you send me this thing, I will interpret it as this and so on. I.

F

Totally agree the uh the server echoes this and uh actually that that is a bug that we just found out uh right now. The echoing is in the connect udp document. We want to bring it down to this one because you're totally right. We need that um so yeah, sorry yeah, that we didn't state that that is kind of the assumption of what these are for. Yeah.

G

Yeah, so I I think the default thing doesn't make any sense in that context, because what you're asking someone to sign on for is, if you don't understand, all of these other things just send here and that doesn't really give you any um any knowledge about what you've just signed on to to the semantics of so you're selling. Onto saying this is not a ct, but you didn't understand the ecn parameter anyway, and so you're going to be sending these packets the client's going to go. Oh yeah, fine!

G

These are these are not ect packets but well. Some of them were not ect, but some of them were ect 0 and the server didn't know well. So.

F

He here's here's what we mean um on the um for and again just using ecn as an as an example. Here, um let's say I'm doing a connect udp out from the client to the proxy and I'm gonna start sending some packets.

F

The proxy doesn't support the ecn extension. So it's going to fall back to regular connect, udp and it's going to pull packets out of a udp socket, not know what the ect markings were on them and when it turns around to put them in a datagram, it needs to put them on the one. That means not ect yeah yeah, you know, and so then the question is we need a or, unless I'm misunderstanding, I think we need a way for the proxy to know, okay, which of these four numbers.

F

Should I be sending to you and the initially in the document.

G

F

Okay, sorry go ahead.

G

Sorry I was making a different point, which is that now the client and the server don't agree on the semantics of what the contents of those datagram frames, because one of them understands ecn the ecn parameter and what that means, and the other one doesn't and you're allowing that that mismatch to occur.

D

I I see martin's point. I I think if, if we had to go with this root of a design, I won't just suggest that implementations have a default. That is, is like not tied to any extension, just a plain datagram and and if they can't do that, if they really need to, then then they shouldn't be expecting to have wide interrupt on on the internet without some form of up like alternative negotiation. Here.

F

And that's kind of what we're seeing martin is that for the ecn extension. Not ect is the same as this. This extension doesn't exist um because and so that that's what we want is a graceful fallback. You don't want to do a connect, udp request with vcn and then go. Oh, I don't speak ecn and then I have to do a different connect. Udp request.

F

Without ecm you just seamlessly say: okay, I don't support this and I'm we're just going to use one flow id, which is the default one for udp packets and they don't carry ecm semantics.

G

So but you accomplish the same by not marking 42 with anything.

F

Right, don't you? Yes, oh so, then that's one of the things I was thinking and here's another wrench thrown into these gears um is imagine you have another extension which is like timestamps or something, and you have this ecn extension and then you have this other extension. That's on all of them, then you don't know which is which and that's why actually tommy came up with the idea of a default one which is the okay.

F

I have no idea what's going on and I don't want to do the okay these two, these two uh parameters- I don't understand, so I'm going to clear them and all that, oh, I just look for default. I go with that. It. It makes parsing a lot simpler.

G

Yeah but the the timestamp one's an excellent example, so the timestamp one says: um if this parameter is present, the front of the packet will have a four byte timestamp added to the front of it.

G

Now the endpoint that's consuming. That's sending that information is not adding that four byte thing, because it didn't understand it and you've got interoperability failure. So the this this seems like the wrong design to me.

F

Okay, so just to make sure I understand you uh if we were to say extension that you know want to use multiple um flow, ids and fall back. Gracefully must have one that does like that does not carry any parameters. Would that make you happy, because that is an alternate design which I think would work.

G

uh You don't have to use the word, must you you can just say. If you expect it to work, then this is a pattern that you're going to have to follow. Otherwise, yeah interoperability.

F

So, in that case,.

G

F

So, in the uh looking at this side we remove default, and we just say if the ecn parameter is not present, it means not ect. um Do you think that would be a good design.

G

For ecn, assuming that we go with the ecn design, yes, that would be fine.

F

Cool um I'm totally okay, with using this design.

K

Victor all right, we're gonna, we're gonna, cut the cue here and see if we can narrow ourselves down to a set of options, we try to wrap things up. Can.

S

You hear me yes, yes, okay, uh I first I was going to ask a clarifying question, so my understanding was that the purpose of datagram draft is define how to multiplex multiple flow of datagrams over http free and how to manage their lifetimes correct.

S

Am I correct? That is one of the purposes? Yes, uh I'm mostly observing that the annotations uh do not really seem to have to do anything with this and they more seem to do with specifically mask semantics.

S

So I do wonder if they belong in this header or they should go to a separate header, because if you don't use any of those, this makes parting datagram flow id much more complex, whereas normally you would expect to be able to just use, stir, split and convert them to integers.

F

So that's a very good question and we should have clarified that the reason this needs to be there is that is intermediaries.

F

um The datagram flow id is a special header in the sense that intermediaries are expected to parse it because datagram flow ids are a per quick connection concept.

F

So, if you have an intermediary between your client and your connect, udp proxy, uh it might use a different datagram flow id on both legs there, and so the intermediary needs to be able to parse the datagram flow id header because they might rewrite those numbers and therefore the added extensibility information is in a parameter there. So when the intermediary rewrites those it takes, the parameters as an opaque string doesn't do anything with them and leaves them there to go upward. That's why it's part of the same header as opposed to a different one.

S

uh I think I understand not I'm not sure how much I agree with that, given that I've not thought about alternative approaches to solving that problem, uh but thank you for clarifying that.

F

Cool thanks, miriam and uh christian. I think they cut the cue after myria.

E

Yeah, so um looking at this example even more, I think you're overloading the singling of the flow id with actually negotiation with an extent of an extension, and you also put like part of the semantics of the extensions into the scheme here.

E

So um basically, all you need to know to follow this exact same scheme here is like you, have a base flow idea of 42 and then both ends understand that they uh know what the ecn extension is and how to use it. And then you could just say you know these two bits of the flow id are now the ecn field or the last two bits or we add another, two bits after the flow idea whatever.

E

So all you need is really to make sure that both endpoints understand the same semantics, and that means you just have to have to have a negotiation for extensions and by doing it this way here you. This is a little bit error prone, because what happens? If you don't like specify all the semantics fully, because you have like these four bits and you need four different streams for bits and if you only specify two of them, then you don't really know what to do here.

E

So I would really rather separate these things out and and uh have signaling of the flow id separate from negotiation of the extensions.

F

So on I mean if you have an alternate design, I would love to see it, but I this this design came to be because I couldn't come up with a different way that would work in the presence of intermediaries and I think with uh it would we can add that, on a slide later with uh mt's proposal, we end up with something simple, which is extensions, can use parameters period.

F

The uh the base document here doesn't need to specify any of the semantics of the parameters, just that you know this is an http header and it can carry parameters. uh We need a way to to have extensibility at the end of the day,.

D

A strong reason not to have any extensibility.

F

I think uh we would be really painting ourselves in a corner if we didn't have an extensibility mechanism in this. uh In the specification no.

E

You definitely want one. You can have a separate header right and just say I support ecn, because here you're mixing up support of ec and and defining semantics for ecn, because you need to define all the four all the four states for ecn correctly to make this work.

E

While it's always clear that, if you want to use ec- and you need four code points.

F

um But you need to say which is which, and uh so this is a list, and maybe the the property that we didn't uh forgot to mention. Http headers can be reordered, the ordering of http headers doesn't have a semantic, and there and also um structured field lists can be encoded as separate headers. Therefore, the ordering of a list has no semantics.

F

That is not something we can choose, that is a property of http and that's why you can't just tell the extension use them in this order and you need a way to annotate them individually and from my response to victor uh you. So the ecm extension has a separate.

K

You, don't you don't.

F

K

Has been cut david, would you mind taking the rest of that explanation to the list.

F

All right, marielle, let's.

K

Take this secret to the soft.

F

List yeah. Oh sorry, let's take this offline and onto the list.

E

Yeah, I'm a little bit sorry here because I think we're about to understand each other, but not quite there.

D

uh Okay: let's go back to the presentation, which would be a lovely slide that will make the chairs happy.

D

Slide 10, please, yes, uh do we think we can pick an option. um So if we agree to keep this datagram flow id header, are we able to pick a format? So I think of the three options we presented here. There's probably a fourth which is is the zeroth option, which is do nothing but based on the previous interim um and some of the discussion here I don't. I don't think anyone would be in favor of that.

D

But it's something to consider, but the options here are what are presented so option. One is to require extensions to effectively define a parameter name of their own and then some of the values that they they support or some of the variants. I don't know what we want to call those things, but it would look like that option.

D

Two is that we define a common name parameter and then extensions could just define their own names in their own specifications as they need and that we can create some language that describes how how a server or whatever would read that name and decide to do things and then option three. Is this default um thing?

D

So? Yes, do we want to raise some hands chairs, how to run an assessment of these options or that the people think they want none of them? I don't quite know the best gauge.

A

Well quickly, uh ben is in the queue I don't know if he has a clarifying question or something ben.

H

uh Based on the jabber thread, I don't. I don't think that we are anywhere close to to consensus on what should happen here generally, so I don't think we should spend time to do a consensus. Call.

A

Yeah, I think I would agree with that. um uh I I think, and the issue exists. uh I think we need to take the syllabus for more discussion and we can resolve it at that point we will.

F

Certainly, do a consensus call.

A

F

I'll take an action item to write up the options uh and bring that to the list. Thank you. Dude.

D

Okay, um so moving on quickly, the the final issue we have is about flow id reuse. um So this issue is created by martin siemen. um I think ecker created a similar one, so we we've them together, just to say that um you know the premise here is that flow ids carried in every frame and that there could be some attraction to using small ones.

D

We introduced some notion that the flow id allocation service can support retiring and reuse of flow ids, but that places some burden on applications to tell the service when things are ready to be retired and detecting when it's suitable or safe to retire or reuse can be hard, and so there's a risk that recycled flow ids are used incorrectly with all the bad stuff. That could happen from that. So we we normally have a flow id. That's a 62-bit integer, although not all of the spaces available.

D

But the question here is enough numbers: do we really need all this potential complexity and risk in order to save some bytes? um From from from some of the opinions we've seen and heard, um we would probably look at dropping this thing just so. We could make progress, but the question to the working group would be: is anyone opposed to dropping this feature? Does anyone really want oid reused to main stay in the document.

A

Before we turn it over, please try to keep the comments and questions very short uh clarifying if at best yeah tell me.

M

Yeah, I just want to say I I think we should not have any of this retire reuse stuff. It adds a lot of complexity. I don't think it has any particular value, and I just want to point out like that is reuse after retirement should be distinct from allowing extensions to use numbers how they want right like I, I think we should not have this feature. We shouldn't have any constraints, though, necessarily on what an extension wants to do with the meaning of this arbitrary value that they have.

M

It's not a flow idea. Yeah.

F

M

Is specifically.

F

About the concept of retiring- uh and uh I mean we've- heard kind of overwhelming support on the issue to just remove this feature entirely, and maybe someone can add it later as an extension, so we're going to just do that online. Unless someone wants to object loudly.

F

H

Yeah, I think reuse sounds insecure. um It's one thing to to allow an adversary to create replays of packets within a single context. uh Enabling replays across contexts sounds much more dangerous. Yeah.

F

Okay, then everyone all right if everyone's in agreement, let's just remove it.

A

Yeah uh ian, do you have a clarifying question.

F

I have a question: um are we I think we should remove it totally? um How are we gonna enforce this um if we are going to force it, but it's not it's not trivial without requiring, say flow ids be allocated in sequence, order or so on and so forth.

F

um Can I ask you to follow an issue for that ian. Please, that's a reasonable question. Sure thanks all right, the editors will write a pr to just remove this and we'll be done, and and for the record it was one person who asked us to add this feature and we added it in and then they found the issue to ask us to remove it. So just make up your mind, but anyway, let's just remove it. Move on everything's, good.

A

All right, um yeah, thank you.

D

Lucas, thanks for the time.

A

um Yeah, I think that was incredibly productive. We have nice um certainly have. uh It seems to be consensus on both design premises um and we can uh flesh out the the formatting issues later on in the list. uh We'll we'll confirm everything on the list as well um so david hand it over to you. Please be quick.

B

F

All right I will, uh I will be as quick as possible, so hi everyone, I'm david scanazzi and I will say hi to all masked enthusiasts and martin thompson. Who's decided. He is not enthusiastic about anything um all right, then uh next slide perfect. Thank you uh also, for the record uh lucas totally copied all my memes I'm kind of annoyed because he got to present before me, but uh all right. So what if you haven't been following? Mass connect, udp is connect for udp and it uses datagram frames next slide. Please.

F

All right, so we did an interop at the hackathon last week with four completely independent implementations, and it worked so that was really great.

F

um So far, we only didn't drop over the datagram encoding of udp packets, not the stream one, and you know if you look especially on the issues for the repository that is more in flux. So that makes sense- and I think our next goal in terms of it drop, will be to really try the stream encodings to get a sense for how good the different options are and for the folks that aren't on this interop matrix um that have quick implementations.

F

Please show up. It was surprisingly easy to add the support and uh the more people we have, the better uh notion we can get for complexities of part of the spec all right. Thanks next slide,.

F

uh So this this was brought up if memory serves by kazuo about whether we need a setting for connect udp in general, new http methods do not require settings like new http methods are already an extension point in http and, unlike you know, the conversation we were having earlier about the datagram flow id, which changes semantics.

F

uh The method doesn't change the semantics of that header. It only changes semantics for the rest of the stream and that's perfectly legal. The one problem that kazoo identified is there are broken servers out there, because this is the internet and everything is terrible.

F

um There are some servers that so in theory, what you're supposed to do as a server in http is you parse the headers, and then you decide what to do with it and, for example, if it's a post, you decide to wait for the fin on the stream to to send that data to your back end or whatever. um But there are a bunch there.

F

I don't know about a bunch. We don't have data here, there's some servers that will um wait for the fin, no matter what it won't actually process. The full settings frame until they get the fin and that would completely break if for connect udp, but also for connect like this isn't a new thing uh and so kazuho proposed to add a setting uh to be able to handle those servers. And I see kazoo in the queue. So please jump in.

F

You just have to click the unmute and there you go.

F

Now hold on, we can't hear you uh you're unmuted, but I can't hear you.

F

U

F

Say something? Yes: now we can hear you right.

U

So the problem is not only with a broken service, but the servers are working according to spec and in http servers are allowed to not send a response until it receives the entire request up to the end of the request body.

U

But if we define a new tunneling scheme, then the request, the the end of the request body, never arrives to the server and the server would simply wait for him. Eventually, the timeout would kick in, but there was, but the actual problem for connect udp is that the client would sending datagrams repeatedly because there's no response, so the timeout would even be do it.

U

So I think that the fader mode is not great, so I think we need to decide between if we are fine with and it was hitting the future and the downside is, as you said, it's about the future sticking out, but I think we have a tradeoff here.

F

Yeah, no, it's absolutely a trade-off, because the the impact of this breaking is like bad performance on the client uh and then, but in the other direction like should we be constraining ourselves because there's a broken server out there like at some point we can't spend like like.

F

Does this mean that every new method is going to require a setting and, on the point of you know not sticking out, this starts to stick out a bit more because um I mean maybe the header would be hey, I'm not a completely busted server, but so what do people think ben.

H

Yeah, it's not like you use, connect udp with random hyperlinks that you've you followed across the web right like connect udp is is as specific as like ssh you, you know exactly which server you're connected to, and you know that it supports, connect udp or you wouldn't be trying it.

H

So I don't think we need to worry about it.

F

Thanks ben mt.

G

I agree with that. I think we absolutely have to worry about this. This is uh just another method uh to to the server the setting and doesn't.

E

G

Setting there, and so that server is going to do exactly the sorts of things that kazoo was worried about, and that would be perfectly normal. It's not broken it's working and at that point I think we're in a pretty terrible place.

G

The setting doesn't stick out if you put it on every connection, if you're willing to do it in one place, then say that you're willing to do it everywhere. Just don't actually actually exercise that capability, and then you don't stick out at all. So it seems to me that cleaner is not just cleaner. It's um we don't cause servers to break when they're doing the right thing.

F

So, just actually as a clarification uh martin, um I might and when you're saying the server is doing the right thing. uh Are you saying that, like not parsing, the headers until you receive the fin on the stream is the right thing, because that that goes against the spec? Doesn't it.

G

No, but it it may be the case that the the server is a proxy or a gateway, or something like that and starts forwarding all of this stuff, and they might, I don't know, uh you're, not seeing a content length right, there's no expectation that the client's going to be setting a content length or anything like this in something like h3, and so it's just going to start forwarding stuff, and it may have some buffering rules that it needs to follow, and it does that it's just going to sit there hanging, it's kind of who knows.

G

Okay, thanks valid.

A

At this point, at this point, we're going to cut the cube um so jonah.

N

um Thanks david, um I wanted to poke on the question on the point of sticking out just a bit, because I don't think I fully appreciate it. Can you say a bit more about what it means for this to stick out, and why is that a a key problem here.

F

Absolutely so that that was one of the original I mean that was the goal of the first mask proposal. uh I mean mask, has evolved quite a bit since then, um but the idea is behind mask.

F

Is we do a lot of cool features that aren't what you're traditionally used to from an http server, but we make it look like regular http and what that means is you know, especially as we go down the road with connect, ip and stuff, you can do magic, vpn things for something that looks like the web, and so what I mean by sticking out is let's say: you have a web server that just serves, gets and posts and you have a web server that gives you full vpn uh things uh it we want it.

F

We want to prevent sensors from being able to probe the server and go hey. Do you speak mask? Oh, you do, okay, let's, let's put your um your ip on a block list, and so that's what I mean by sticking out where you don't notice, so necessarily that there's this magic functionality.

N

The only way you find out about that from a proxy is by actually trying to use mask with that proxy. Isn't that right.

F

Well, that's the goal. So let's say: if you, uh for example, you had a connect ip, but then it would require an authentication header on that http request and if you have the header and you you'll get a 200 and if you don't instead of seeing access denied it'll, say: oh on some unsupported method, I've never heard of what you're saying.

N

So I don't know what are you I.

F

N

To spend sorry, I interrupted you there.

F

All right so, then, the if that that means that people can't probe. But then, if you have a I'm a masked vpn's uh server as a setting, then people can notice this even if they haven't authenticated. I think the key difference is you want to um give this information to folks with the password and not to others, but if you want, maybe we should take this offline because we're a little short yeah.

N

I think I think I think it might be worth articulating. This particular threat model a little more carefully because I'm not sure how much of this is uh real, but that's where I'm coming from. um But yes, okay,.

F

Let's take this: let's take this offline, then um uh phillip, is this uh a scribe comment.

R

I I was just gonna say: I'm astonished that we still have that uh thin stuff left in http. I thought it had gone 25 years ago.

F

Nice all right thanks jonathan.

V

um So I guess my question is I mean: is this actually over a case where um these bro, I think it's sort of related to the question of you know um the you know you don't connect. Gdp to random servers is ever a case where you know. Is it just that you get the failure? You know the correct behavior. With these servers you get the failure sooner rather than after the timeout.

V

You know you get an you know if it if this, if we're just working around the fact that some servers will give you, you know uh timed out rather than unknown. You know timed out after 30 seconds, rather than you know, unknown method immediately. I think that's not worth worrying about. You know. You already know you're talking to the wrong cert. You know you know you're talking to the wrong server, no you're talking to the wrong server 30 seconds earlier. It's not a huge win. It's already configuration error, go fix it.

V

um So I think I would say don't worry about this because you know if you're talking, unless there's some case, where you'd expect that you know, like you, have some proxy such that you'd actually successfully get a connect udp if we're doing the right thing and the settings were there, but um you know if, because it's broken you don't, I don't see how that would work so other than that. I don't see why this is worth worrying about.

F

Okay, thanks um what I'm getting here and cheers correct me. If I'm wrong is uh we have people with opinions on you want to mute jonathan? We have people with opinions on both sides of this, so I don't think we're going to reach a resolution in the room today. So I'd say: let's take it to the issue and move on to the next.

F

Slide all right: oh that's, another fun one, uh so initially connect udp didn't have a target uri or a scheme, because I pretty much took the definition of connect copy, pasted it and added slapped on udp in there. Then people rightfully commented that you're not allowed to do that in http.

F

The semantics say that all methods, with the exception of connect, but that exception doesn't apply to new methods, need a scheme and a path. So, let's just add a scheme and a path. The path is slash done, have a nice day the scheme it really.

F

In my opinion, it is completely pointless. This is just to um be, uh you know, compliant with some existing specifications, and so at first I created a mask scheme and then folks were telling me that, oh you can't just do that. That's a lot more work and work for no benefit is not something I like to do so. Then I said like how about we just use. Https like the scheme is completely useless. It will not be acted on by anyone, but if we need a value in there and it needs to not be empty.

F

What's the downside of using https um thoughts, comments, questions.

F

T

uh First, first of all off, I think this is a total bike, um so the color of your bicep painting is not very important, but I think it's a little bit. uh uh Martin thompson points out that there are two udp schemes and we should have a third. I think that's the point of his comment anyway, uh since this is not really used, we can use either udp scheme and get the um get the same results right. So I would use udp here just because it's it's a bike.

F

That totally I agree, I honestly don't care as long as you don't have to, I don't have to jump through 17 hoops to get a to get the uh the new scheme overlords uh in my in their good graces, kazuo.

U

Assuming that we agree on by using a settings frame I'll point out that we already have a way of negotiating a tunnel that can handle arbitrary protocol and that's rfc841.

U

So assuming that we go with exposing well sending settings, I don't think we need a new negotiation scheme for this simply choose a scheme name and use a connect method. That's enough!.

F

uh I mean, oh, so that's an other design decision which I thought we had reached agreement on, where we could have used extended, connect with a protocol, but we decided to go with connect2udp instead, um I don't think there's too much interest in revisiting that, because that's also a bike shed at the end of the day, they're completely isomorphic, um but I'd rather just stick with this for now, just because we agreed on this like last year. At some point, I think.

U

Well, I think my argument is that that decision was based on the assumption that we wouldn't use using settings.

F

All right, so maybe we need to put a pin in this uh until we've reached uh consensus on the previous slide. So maybe we'll take this one. Also to the list last issue which right now the two are on the same issue number 23, which uh we should probably split it up, because it's kind of a mess. But I can take care of that.

F

M

Yeah, I just wanted to bring up something I think I brought up at the interim um do do you think we need to have this document specify the specific scheme you need to use like we can say you must have a scheme. Do we need to mandate what it is? I don't think other methods mandate, what scheme you must use with them like gantt or any other ones. So can we just make it not our problem.

F

uh That would equally be totally fine uh to me. uh I remember some people having strong opinions against that when you proposed it on the issue- um and I am seeing all sorts of various amusing uh scheme proposals here, left and right here thanks everyone uh all right. Let's maybe take this to the issue and uh maybe can maybe we should consult with the hdp working group to see what is legit, um because I know they have strong opinions there.

F

um I because I honestly don't care what the color of the bike shed is as long as I don't have to spend a lot of money on the paint.

K

So, let's, let's split it out into its own issue, so that we can track it separately and then we can bring it to http as necessary.

F

All right, let's do that um and uh all right or john, I have a quick thing on this one before we move on.

N

Yeah we're going to raise the third option, which is to basically completely point this out entirely from this, which is to say that the receiver, if it receives a scheme, ignores it entirely, and so therefore we don't care what the center sends. I think.

F

That's exactly what tommy just proposed! Okay,.

T

Let's stick it to the issue.

F

Yep all right uh this um actually, so I I have a few more well, let's see how many slides do I have like this is six um all right. How about this uh we're we're really short on time, and I want to leave time for the other presentations. I'm gonna quickly present these, but maybe unless, like maybe let's say, keep the discussion on the list or on the issue as opposed to here. So we can leave time for the other presentations so very quickly here or chairs. How does that sound.

F

Let's do it that sounds great: okay, okay, cool all right, so here um right now the negotiation is done at the start of the stream in the datagram flow id header.

F

uh Some folks were saying: well, it would be cool if we could um uh negotiate them like halfway through a stream uh yeah, it would be cool um and there are some advantages for doing that. There are some downsides because, like well added complexity in the protocol, but also out of complexity and uh intermediary implementation.

F

um So my personal take is maybe let's not tackle this for now. We can handle this with an extension later. But if you have opinions, please come to the issue next slide.

F

And um so, similarly, right now, the stream encoding uh uses what I've called chunk types uh which have their own iana registry uh tommy proposes to instead using the flow ids.

F

um That has the advantage of not having two separate um uh name spaces, but it adds some other complexities for cases where you don't have uh fluidities, for example, or you know what it means for intermediaries.

F

um I mean uh like the more we talk about it, the more I'm not sure. So I would say, let's punt this, for now, let's implement one of those things either or both and see how it feels to implement them to make an informed decision. But again, please come to the issue. If you have thoughts next slide, please uh connection migration.

F

So if you're doing quick over mask over quick or sorry quick over connect udp, um you can end up in a situation where the mask connection, by which I mean the one where the connect qdp uh request goes over, is migrating and that one will reset its congestion controller in response to migration, the inner you know encapsulated or tunneled. However, you want to call it end to end quick connection will not necessarily notice this migration.

F

The client will notice, but the target server won't actually know that it happened, so it might send a full window of data which then the intermediate or the proxy sorry is gonna, get it and then it's not gonna be able to put it on datagram frames because those are protected by connection control. So it's going to drop them on the floor.

F

We should definitely add some text uh to do this uh and we might have some ideas of mitigation such as uh maybe the proxy should switch its target target facing port to make the server realize that a port migration happened again. uh This is tricky and I'm sure there are a lot of implications. So please bring thoughts, ideas, suggestions to the issue and next slide, please, which should bring me to the end of my slides. Yes, this is all the slides I had for today.

F

Thank you very much and dallas you're.

W

Up, okay, um hi everyone, I'm dallas, mccall and I'll, be talking about mask ip processing requirements today. um So, if you can move to the next slide, uh I'd like to start with discussing like a few fundamental features of the requirements um and then uh time permitting I'd, also like to discuss some of the open issues that we have.

W

So the first one which seems quite existential, is uh let's: let's go ahead and agree on what we mean when we're talking about ig boxing um in the in the current requirements document that uh we we have posted um we're discussing, proxying ip packets, uh including the header. um Alternatively, there's been the suggestion of uh proxying ip payloads, uh which would include uh sending the metadata for the the actual flows through some side channel.

W

um I like to go back and and kind of look at the the the use cases that we're discussing for both of these and the the the trivially used case, where we're discussing uh uh connecting basically one flow with like one ip endpoint on either end um is just as easy. I would argue uh using approach one here or approach, two.

W

That said, I think that uh uh the vpn approach, the approach one is- is much simpler uh in the case where we're we're considering multiple uh flows so so say like in a client to network vpn, where you have some clients sending uh uh flows to a hundred different backends uh being able to keep track of that metadata seems seems rather expensive.

W

So the proposal here is: uh can we go with one and then ensure that we have extensions available to be able to enable this uh ip payload? As an optimization um I'd like to leave this open to any questions or discussion um here.

E

Yeah um thanks for putting this down this way. That really makes sense to me. um So the point about option two is actually that we are kind of already halfway there, because it's very similar to connect udp like if you take connect udp and you add like a little bit to it. Then you get the same thing for ip proxy.

E

um So uh somehow I have the feeling we maybe need those or we want both, and maybe we want to go. uh We don't want to say like do one first and then later on the other, because both of them might not be very complicated, but I also can't give you a final answer right now,.

W

Okay, uh alex: do you have a response to that.

J

Yeah, I just want to say that I don't think it is fair to use the existence of another draft in order to inform the requirements of a different one, because we can also just as easily say just as we have the connect udp draft. We also have an implementation that currently does the more vpn style thing within google and partly also open sourced. So I don't think that for a requirements document we can immediately use the existence of uh running code.

J

Because, honestly, if we do, then it also very strongly favors the current approach that is already in the proxy requirements.

E

Okay, um I just yeah, so I think the the I was just talking about you know. What's the solution, we want to see here um and I'm not sure on what the right one is, but for the requirements document I actually want a document that doesn't favor any of the two solutions and and just keeps that open for a later decision when we actually know what it means to implement one or the other solution and how complicated it is.

E

So I think the requirement should be as neutral as possible and anything that would favor one of the other solutions should be defined as something that's optional or not um required or not mandatory. That's the right word.

W

Yeah, so I I think we might might kind of be agreeing. So I I the the the point that I'm trying to get across is that the the the thing that we want to define requirements for is on one side of this proxy feed in ip packets and on the far side of this proxy send out ip packets um and and so the the the whether or not we uh strip off the headers and put them onto something else and then and then re-combobulate them on.

W

The far side seems like sort of an implementation detail, and that's that's uh kind of why I was hoping that we'd be able to sort of at the level of the requirements. Just say all we're doing is taking ip packets from one side to the other side. And then we should have the extension knobs to be able to munch those packets in some useful way, such as this, where we're compressing the headers. um But but that seems kind of like a further detail.

E

Yeah, I fully agree and I think, for the base kind of forwarding requirement. That's what we already did with the text change from the last time. We just have to make sure the other requirements are also in the same level. Here.

W

Okay, um it looks like there's a few more people in the queue uh benjamin.

H

Hey, uh I think there are several requirements that I want to capture here. um One of them is uh this: transport needs to be lossless for any ip packet present or future.

H

um That tightly constrains a lot of the kinds of encodings that that we're talking about sorry.

G

H

um Let me try that again, I said lossless like a lot of the it's it's very common for um anything that tries to proxy an ip payload with metadata by side channels is going to be trying to re re-encode, essentially create a compression format for um for ip packets. It's very easy to turn that into a lossy compression format accidentally because there's an unlimited space of potential future variability.

H

It's ossifying, if you're not very careful to stick to the invariance provided by the the underlying format. So I think.

J

That real, quick uh there is a later requirement which is not discussed on this in this slide deck about optionally, having reliable, retransmission and and option, and and using h2 and h3 streams. So that's not.

F

What I'm talking about.

T

F

On alex, that's um I when he said lossless now I found that's why I got me confused as well: it's not uh lossless in the sense of packet loss. It's lossless instead of fidelity loss in compression, and I think uh maybe, if I can slightly restate what you said ben to to clarify is the. If we have something that just compresses, then you can fall into this trap. Whereas that's if we do something that by default sends full uh payloads, then there is that trap doesn't exist.

F

Right is that right.

H

Right this is why, in dough, we ended up shipping entire dns udp formatted payloads in base64, in in urls, rather than risk, trying to re-encode the information and uh and end up introducing a conversion loss. The.

H

uh I think there's also an implementation simplicity requirement like if we.

E

H

Something that's tremendously complicated to implement that's very challenging as a vpn implementer shipping ip blobs around without having to look inside them, is strongly preferable and also there's another requirement here that I think has been missing a lot from this discussion, which is mtu. Consistency we just recently saw had an issue where a slight miscalculation in the in the mtu expectations of dtls sctp uh resulted in in a user-facing outage, because we didn't quite get it right. Having variable overheads is pretty scary. We already have some of that, but um let's not make it worse.

F

Cool thanks ben, so I I actually want to underscore a little bit what ben said and having implemented a uh an ip tunnel uh in a previous life between apple watch and iphone. Actually uh with compression uh the big learning there was that a design that takes the fields it wants and sends them is what ben was calling lossy it can cause serious problems if something happens that you didn't think of, whereas the design that we eventually landed on that worked really well was by default.

F

You send uncompressed and if you see something that your compressor knows, that it can compress in a way with 100 fidelity, then it compresses, but you always have the escape hatch of sending uncompressed, and I think that is an important design decision and that's kind of one of the things we reflect here with option, one you proxy ip packets. We can talk about compression later, maybe it's in the course spec.

F

Maybe it's in extensions, but the core fundamental property is that we proxy ip packets and another point I'd like to make is to strongly disagree with miria's point, which is maria said that um the requirements document shouldn't be opinionated here and should allow both. We can't do that like we. The point of this requirements document is to guide what we're going to build, and so, if we can't agree on what the name, what mask ip proxy means we're never going to get anywhere like the or the requirement.

F

Second is not going to be useful, so my personal as an individual take here is that we really should agree on what this means and what ip proxying is, and we built that we're not saying that mask won't, build the option too at some point in the future. Who knows like that can always happen later, but for now it would be nice to get a requirement stock out the door with option one, and that way we can start building a protocol for it. I think that is really the the best way forward.

F

And uh that's it uh ecker.

I

Yeah- and I think I largely agree with what david just said, um I think the fundamental feature here is like ipp: packets come in and iv packets go out and um and that's what needs to happen and like what and and then you know and then some very vague, like words about like what, in the middle like what to like you know and with the with the denim that then made that any ip packets go in any any packets go out, um um and then some very vague words about, like maybe some nice things that might happen in the middle that are like.

I

You know, engineering guidelines as it should be too complicated, and maybe you should be changing your cpu or whatever right. um uh I guess I am starting to wonder frankly, if we've like outlived the usefulness of this um of this requirements exercise um you know, uh you know. I think this is really done in tempest with the problem, but um I'm now starting to feel like this is like becoming proxy arguments about what the fight, what the you know, what the protocol looked like in the end.

I

um So uh um you know I do think this point. We should resolve in favor of point one here, um but I also think perhaps we should just say like hey. This document is kind of like, though it's not kind of like that. It's not so exciting.

I

E

Actually, okay.

I

And I certainly do not think that, like um that that the external interface should be somehow proxying things that are not ip datagrams on the in or the out of the at least not for.

F

Initially, yeah cool thanks eric mike.

L

Hearing a lot of opinions on the question being asked on the slide being presented as statements of fact, so we don't what we're trying to build is essentially a black box, the the future design. Yes, it's a black box as to what happens between the client and the proxy.

L

The requirements draft is trying to talk about inputs and outputs of the black box, and we should absolutely be agnostic about what's happening inside it, but we cannot be agnostic about what's entering and exiting so we need to decide. Are we supporting arbitrary ip header options? Are we supporting ip arbitrary ip versions across this tunnel like if there's an ipv10? Should it be able to transit this?

L

We make that decision. We write it down on the requirements draft and we move on. We don't have to don't have to design the inside, but this is not designing. The inside.

K

All right we're going to cut and see if we can wrap things up on this. I do think the point about requirements versus proxy discussions around versus a discussion around what we think we actually want as an implementation is well taken. So let's try to keep a focus on. You know we. The second bullet here says some use. Cases can be implemented with either if there are use cases that cannot be implemented with either. I think that would be the thing to bring up right now.

F

Oh yeah, you want to go ahead.

E

Yeah, um I do agree that there should be an option where you can proc, where you can like put packets in ip packets, and then you get the same ip packet out at the other end, but they also use cases where it's actually unnecessary to create the whole ip header. When you just create the payload and you can create the ap header later at the proxy and that just saves you some overhead that saves you some bites, and all I want is that we don't preclude to have this option.

E

However, it looks like I I mean, like I think compression is actually wrong term. I brought it up a couple of minutes ago, but it's not the right term here. It's just like you, don't even create the ip header at the input, because you you don't need to um so I don't want to preclude in the requirements that we also can easily support this case, and- and I can well imagine that we come up with a solution where both is easily possible without a lot of overheat.

F

So my understanding of one here miriah is that it doesn't preclude this case. um You can at some point you know later either again can be in the core protocol, but most likely an extension say. Okay, I don't want to be transferring the ip header or um I don't want to be building the ip header. I mean at the end of the day that uh the fact that you built an ip header that you chose not to send or you just didn't build. It is an implementation detail that has no impact on the protocol.

F

So I don't think that's something we need to discuss at all and in terms of what impacts the protocol proposal. One here uh totally solves this. Unless you have a use case that it wouldn't solve.

E

So when you hook up a proposal, that's kind of the design you have in your mind, right.

F

I'm sorry, that's.

E

You that's because you have a certain design in your mind, I'm just talking about from requirement sites. I just want to not preclude this case.

I

Where you don't have to build the ip header, that's all I want.

E

How the design looks, I agree with you that I think the design is very, very similar and like not far away and more or less um easy to achieve.

J

Mariah we I I feel, like you're belaboring the point. We have repeatedly said that you're, basically, we are all in agreement here.

E

No, I didn't understand what you said, because I guess eric was talking over you. Sorry.

X

Yes, we we haven't, you please, please follow the queue. So then david can repeat what alex said.

F

Sorry, just I I think alex is saying that we're like we're in agreement that, like what you're saying uh it can be implemented there, and it's just the only point of disagreement between you- and I I think here and is that what should the requirements document say and like having a specific architecture?

F

Choice is, I think, important in a requirements document, because if we can't even think about what the architecture it is we're building, then what is the point of a requirements document, because uh we thought, like the three authors when we wrote this, we took this as an axiomatic. We thought that it was clear that we were forming ipagets and based. You know some discussions with you.

F

We realized that that wasn't an obvious statement and that's why we want to reach uh to to have this discussion working open, which consensus on the over architectural bit, which is oh max ip proxying means we proxy ip packets, and uh I mean I I understand that you disagree with that, but I'm getting a sense that we're uh the authors aren't alone in thinking that this is a reasonable architecture. Choice.

E

So it doesn't mean it doesn't matter. If that's a reasonable architecture choice, I don't think you should make the architectural choice in the requirements document, and I agree with ecker that we probably got over the point where this requirement discussion is useful and we have to talk about mechanisms.

E

So I don't think we are totally disagreeing here. We just like have a different understanding about what a requirement should document should be.

Y

Okay, that's that's totally fair. Thank you. Magnus.

C

Yes, so um I do think the tough requirements document is maybe not requirements.

C

It's maybe not clear on the requirements on the ip protocol level and- and I think I think might still we still have the question here- I think on in some degree, on on how much router functionality in this protocol should be, because you I mean the site to site, seem to require some router functionality and endpoints and and how that interacts with the rest of the network.

C

F

Topic of artifacture, actually we have some slides uh later and I think that's a separate question from this one. So if we could maybe put in that until then, if that's okay, sure.

W

Yes and speaking of, if you can move along to the next slide, I think that's about where we can talk about that.

A

uh Actually um dallas uh what we'd like to do at this point is: do a hum between option or yeah option, one and two just to really nail this down um and then confirm on the list, because uh we have been sort of floating around uh these two different proposals for a while. Now um we just like to get consensus. So what I'm gonna do now is do a show of hands for uh option one and then option two um so uh start with option. One just take a moment to fill it.

A

A

Okay, um so the results are in I'm just going to flip it around now.

A

F

A

Okay, um so it sounds like most. People are in favor of option one, um uh but there was also some support for option. Two um uh well we'll confirm: that's all on the list, um but it it sounds like things are leading in a particular way. um They also can flip it back to you but note that we're at the top of the hour and mostly out of time. So just a quick question before we start here.

A

um uh Yeah is this something we can discuss on the list or do you need air time right now.

W

Because this is going to take more than one minute to discuss, so maybe let's move it to the list all right, great.

B

uh That's fine, so we'll we'll.

F

Do that, in addition to the list, perhaps uh an interim, so we can keep the conversation going in the near future. Would that be a good idea.

A

Yeah, thank you. I was just going to say that um we're, uh as is per mass tradition, now we're going to have an interim uh likely soon, so you should see a dutiful go out with times um between now and ietf11 made you one or or more than one, depending on how much work needs to get done. But hopefully we can resolve some of these issues then and continue progress. So eric do you have anything to say before we wrap up.

K

Just a thank you to our scribes and notetakers and such um if there's anything that as we talk about requirements, it really is time to start making some decisions and moving forwards beyond requirements to what we're actually going to do so. The we we are talking about packets and payloads, and can we do both? Should we do one? Does that even belong in requirements? The thing that I think would be most helpful is if we can detail the use cases that we cannot do with either that would require both or one or the other.

K

So if folks have those use cases, uh there was a decidedly mixed result on payloads, despite packets, having fairly strong support. So please please, please bring that use case description to the list so that we can be done with requirements and move on.

A

Yeah well said eric all right um with that. Thank you all very much for your time and discussion and uh we'll see you at the interim.

F

Thanks, everyone have a great day.