a tale of two checksums
play

A Tale of Two Checksums draft-ietf-fairhurst-udp-options-cco-00 - PowerPoint PPT Presentation

Jan 12, 2023 •279 likes •516 views

A Tale of Two Checksums draft-ietf-fairhurst-udp-options-cco-00 Gorry Fairhurst, Tom Jones, Ra ff aele Zullo tom@erg.abdn.ac.uk IETF 103 - Bangkok 1 UDP Option Area IP transport payload

  1. A Tale of Two Checksums draft-ietf-fairhurst-udp-options-cco-00 Gorry Fairhurst, Tom Jones, Ra ff aele Zullo tom@erg.abdn.ac.uk IETF 103 - Bangkok 1

  2. UDP Option Area IP transport payload <-------------------------------------------------> +--------+---------+----------------------+------------------+ | IP Hdr | UDP Hdr | UDP user data | surplus area | +--------+---------+----------------------+------------------+ <------------------------------> RFC793 2

  3. UDP Option TLV +--------+ +--------+ | Kind=0 | | Kind=1 | +--------+ +--------+ EOL NOP +--------+--------+ | Kind=2 | Ones8 | +--------+--------+ OCS +--------+--------+--------+--------+ | Kind=3 | Len=4 | CRC16sum | +--------+--------+--------+--------+ ACS 3

  4. An innocuous little bug void in_delayed_cksum( struct mbuf *m) { struct ip *ip; uint16_t csum, offset, ip_len; ip = mtod(m, struct ip *); offset = ip->ip_hl << 2 ; ip_len = ntohs(ip->ip_len); csum = in_cksum_skip(m, ip_len, offset); if (m->m_pkthdr.csum_flags & CSUM_UDP && csum == 0 ) csum = 0xffff ; offset += m->m_pkthdr.csum_data; /* checksum offset */ /* find the mbuf in the chain where the checksum starts*/ while ((m != NULL ) && (offset >= m->m_len)) { offset -= m->m_len; m = m->m_next; } *(u_short *)(m->m_data + offset) = csum; } 4

  5. An innocuous little bug void in_delayed_cksum( struct mbuf *m) { struct ip *ip; uint16_t csum, offset, ip_len; ip = mtod(m, struct ip *); offset = ip->ip_hl << 2 ; ip_len = ntohs(ip->ip_len); csum = in_cksum_skip(m, ip_len, offset); if (m->m_pkthdr.csum_flags & CSUM_UDP && csum == 0 ) csum = 0xffff ; offset += m->m_pkthdr.csum_data; /* checksum offset */ /* find the mbuf in the chain where the checksum starts*/ while ((m != NULL ) && (offset >= m->m_len)) { offset -= m->m_len; m = m->m_next; } *(u_short *)(m->m_data + offset) = csum; } 5

  6. • Fixed in FreeBSD by r334705 • The IETF - Making the Internet Better! 6

  7. • Fixed in FreeBSD by r334705 • The IETF - Making the Internet Better! 6

  8. Measuring UDP Options • There are no UDP Options hosts on the internet ( yet! ) • Measurements with Mobile Tracebox Core* • UDP is di ffi cult to measure • STUN • DNS • NTP • HTTP tricks *https://erg.abdn.ac.uk/~ra ff aele 7

  9. More dangerous than gator wrestling 8

  10. Middlebox Pathologies “... middle boxes can silently discard packets for other reasons. For example, on the Juniper SRX, the default behavior for a stateful firewall is to discard all packets with incorrect checksums .” - Ron Bionica 9

  11. Middlebox Pathologies • Works • Full Payload Checksum • Full Payload Checksum, UDP length Pseudoheader • UDP Length Checksum, IP length Pseudoheader • Only passes 0s as options space • Only passes IP payload length == UDP Length 10

  12. The CCO Option +---------+--------+------------+ | Kind=xx | Len=4 | Checksum | +---------+--------+------------+ 1 byte 1 byte 2 bytes UDP CCO Option Format 11

  13. The Magic CCO Option 12

  14. It works against CPE too! • Dlink: DIR-655-A2, A3, A4, B1; DIR 619-Ax; DI-614+-B2 • Jensen: AirLink WBR 7954 v2, v3; AirLink 1000Gv2 (A) • Linksys: E2500, WRT54G/GL/GS v1.1, WRT54G, E4200 • Netgear: WGR 614v7, v9; WNDR3400 • Topcom; WBR 254G, BR 604 • TP-Link: TL-MR3020 v1, TL-WR703N • 3g modem: WR3G050-02 • ZyXEL: P-2812HNU-F3 • Xiaomi: Router 3C 17 Pass UDP Options, 6 Drop UDP Options Courtesy of Runa Barik, University of Oslo 13

  15. Please read draft-ietf-fairhurst-udp-options-cco-00 This work is partially supported by the European Commission under Horizon 2020 grant agreement no. 688421 Measurement and Architecture for a Middleboxed Internet (MAMI). 14

  16. The Full Picture 15

  17. The Full Picture 16

  18. The Full Picture 17

  19. The Full Picture 18

  20. The Full Picture 19

  21. The Full Picture 20

  22. The Full Picture 21

  23. The Full Picture 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The Telescope Array Low-Energy Extension (TALE) C. Jui For the TA/TALE Collaboration ISVHECRI,

The Telescope Array Low-Energy Extension (TALE) C. Jui For the TA/TALE Collaboration ISVHECRI,

The Telescope Array Low-Energy Extension (TALE) C. Jui For the TA/TALE Collaboration ISVHECRI, FNAL, July 1, 2010 Features in the UHECR spectrum: The minority straight-forward View CMBR photons interact with cosmic ray protons: Pion

520 views • 20 slides
The Environmentalists Tale Damnation, Purgatory and Armageddon The Environmentalists Tale 2

The Environmentalists Tale Damnation, Purgatory and Armageddon The Environmentalists Tale 2

The Environmentalists Tale Damnation, Purgatory and Armageddon The Environmentalists Tale 2 Environmental Eden Managing Ecology Shift in livelihood strategies Barka Alla, North of Kutum, North Darfur 70% 60% 50% 40% Before Currently

341 views • 21 slides
Error Detection Two types Error Detection Codes (e.g. CRC, Parity, Checksums) Error

Error Detection Two types Error Detection Codes (e.g. CRC, Parity, Checksums) Error

Error Detection Two types Error Detection Codes (e.g. CRC, Parity, Checksums) Error Correction Codes (e.g. Hamming, Reed Solomon) Basic Idea Add redundant information to determine if errors have been introduced Why

643 views • 25 slides
A Tale of two Patients A Tale of two Patients 1) 71 yo with persistent AF since 2018. OSA

A Tale of two Patients A Tale of two Patients 1) 71 yo with persistent AF since 2018. OSA

9/14/2019 Disclosures Should We Ablate Asymptomatic AF? CHRS 2019 I have ablated patients with asymptomatic AF. Edward Paul Gerstenfeld, MD, FHRS @Ed_Gerst Professor of Medicine University of California, San Francisco A Tale of two

452 views • 10 slides
Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits (where k n ). k is smaller then n except in unusual circumstances Example: ASCII parity bit ASCII has 7 bits; 8th bit is

979 views • 40 slides
The tale fundamental group, tale homotopy and anabelian geometry Axel Sarlin |

The tale fundamental group, tale homotopy and anabelian geometry Axel Sarlin |

The tale fundamental group, tale homotopy and anabelian geometry Axel Sarlin | axel@sarlin.mobi Lecture notes This is a typed-out and slightly expanded version of my notes that I made whilst preparing the presentation of my thesis [Sar17]

113 views • 7 slides
City of Forest Park A Tale of Two TIFs A Tale of Two TIFs It was the best of times, it was

City of Forest Park A Tale of Two TIFs A Tale of Two TIFs It was the best of times, it was

City of Forest Park A Tale of Two TIFs A Tale of Two TIFs It was the best of times, it was the worst of times, it was the age of wisdom, it was the age of foolishness The Best of Times Carillon TIF 123 acres, home to citys

421 views • 16 slides
A Tale of Testing the Untestable A Tale of Testing the Untestable Angie Jones Senior Developer

A Tale of Testing the Untestable A Tale of Testing the Untestable Angie Jones Senior Developer

A Tale of Testing the Untestable A Tale of Testing the Untestable Angie Jones Senior Developer Advocate, Applitools http://angiejones.tech Director, Test Automation University http://testautomationu.com San Francisco, CA, USA @techgirl1908

991 views • 82 slides
STAFFING AT HEALTHEAST THE TALE OF TWO HEALTHEASTS It was the best of times, it was the worst of

STAFFING AT HEALTHEAST THE TALE OF TWO HEALTHEASTS It was the best of times, it was the worst of

STAFFING AT HEALTHEAST THE TALE OF TWO HEALTHEASTS It was the best of times, it was the worst of timesit was the spring of hope, it was the winter of despair ( Tale of Two Cities , Charles Dickens). The presentation and reception of MNA

325 views • 30 slides
NEC Forum Tale of Two Contracts Ir. Ir. PAUL LEE PAUL LEE, , Kai Kai-hung hung Assistant

NEC Forum Tale of Two Contracts Ir. Ir. PAUL LEE PAUL LEE, , Kai Kai-hung hung Assistant

NEC Forum Tale of Two Contracts Ir. Ir. PAUL LEE PAUL LEE, , Kai Kai-hung hung Assistant Managing Director Hsin Chong Construction Company Ltd. P. 1 NEC Forum Tale of Two Contracts Ta Tale of two le of two co contra ntracts

381 views • 11 slides
A Tale of Two Indices: Positive vs. Normative Indexation in the Emerging Markets April 2020 A

A Tale of Two Indices: Positive vs. Normative Indexation in the Emerging Markets April 2020 A

A Tale of Two Indices: Positive vs. Normative Indexation in the Emerging Markets April 2020 A Tale of Two Indices Overview Available at www.seafarerfunds.com/a-tale-of-two-indices Steph Gan examines questions that are fundamental to the

117 views • 11 slides
The 42 Year-Old Tennis Player Heard a Crack: What I Do, Tension Side or Compression Side, and

The 42 Year-Old Tennis Player Heard a Crack: What I Do, Tension Side or Compression Side, and

The 42 Year-Old Tennis Player Heard a Crack: What I Do, Tension Side or Compression Side, and Outcomes Edward A. Perez, M.D. Campbell Clinic/University of Tennessee Memphis, TN A Tale of 4 Hips A Tale of 4 Hips A Tale of 4 Hips A Tale of

641 views • 60 slides
Hash Functions Vincent Rijmen Challenges and Perspectives for Academia and Industry Antwerp, May

Hash Functions Vincent Rijmen Challenges and Perspectives for Academia and Industry Antwerp, May

Hash Functions Vincent Rijmen Challenges and Perspectives for Academia and Industry Antwerp, May 27 th , 2008 A cryptographic hash function produces cryptographic checksums or fingerprints cryptographic checksums or fingerprints Fast

716 views • 25 slides
ors a tale of two special events which one? Who is this guy? And why does he think he knows

ors a tale of two special events which one? Who is this guy? And why does he think he knows

How How to to Cre Create te Uni Uniqu que e Fun Fundr drais isin ing g Ev Even ents ts tha that t Ex Exci cite te You Your r Don Donor ors a tale of two special events which one? Who is this guy? And why does he think

1.03k views • 72 slides
High Performance Multi-Node File Copies and Checksums for Clustered File Systems Paul Kolano,

High Performance Multi-Node File Copies and Checksums for Clustered File Systems Paul Kolano,

High Performance Multi-Node File Copies and Checksums for Clustered File Systems Paul Kolano, Bob Ciotti NASA Advanced Supercomputing Division {paul.kolano,bob.ciotti}@nasa.gov Overview Problem background Multi-threaded copies

658 views • 37 slides
Three Talks: 1. How does the solar wind blow? 2 A Tale of Two Space Plasma Physics 2. A Tale of

Three Talks: 1. How does the solar wind blow? 2 A Tale of Two Space Plasma Physics 2. A Tale of

Three Talks: 1. How does the solar wind blow? 2 A Tale of Two Space Plasma Physics 2. A Tale of Two Space Plasma Physics Paradigms 3. Why have we not solved the substorm problem? How does the Solar Wind Blow? o does t e So a d o George

527 views • 26 slides
High Performance pgBackRest David Steele Crunchy Data PGConf.EU 2018 October 24, 2018 Agenda

High Performance pgBackRest David Steele Crunchy Data PGConf.EU 2018 October 24, 2018 Agenda

High Performance pgBackRest David Steele Crunchy Data PGConf.EU 2018 October 24, 2018 Agenda 1 Introduction 2 Core Commands 3 Archive Push 4 Backup Archive Get 5 Restore 6 Other Considerations 7 8 Questions? 2 / 16 About the

513 views • 16 slides
Introduction to the Transport Layer CSC 249 Feb 13, 2018 1 Transport Layer Overview q Tasks

Introduction to the Transport Layer CSC 249 Feb 13, 2018 1 Transport Layer Overview q Tasks

Introduction to the Transport Layer CSC 249 Feb 13, 2018 1 Transport Layer Overview q Tasks performed by the transport layer v Services provided to the application layer v Services expected from the network layer q Multiplexing and

437 views • 8 slides
ChainSoft: Collaborative Software Development using Smart Contracts Micha Krl

ChainSoft: Collaborative Software Development using Smart Contracts Micha Krl

ChainSoft: Collaborative Software Development using Smart Contracts Micha Krl &lt;m.krol@ucl.ac.uk&gt; , Sergi Re &lt;s.ren@ucl.ac.uk&gt; , Onur Ascigil &lt;o.ascigil@ucl.ac.uk&gt; , Ioannis Psaras &lt;i.psaras@ucl.ac.uk&gt;

331 views • 19 slides
MySQL Backup and Restore at Facebook Scale Ola Berjak Production Engineer at MySQL

MySQL Backup and Restore at Facebook Scale Ola Berjak Production Engineer at MySQL

MySQL Backup and Restore at Facebook Scale Ola Berjak Production Engineer at MySQL Infrastructure, Facebook London MySQL Backup and Restore at Facebook Scale and how its not rocket science Ola Berjak Production Engineer at MySQL

849 views • 60 slides
Checking-in on Network Functions by Zeeshan Lakhani and Heather Miller @ The rise of network

Checking-in on Network Functions by Zeeshan Lakhani and Heather Miller @ The rise of network

Checking-in on Network Functions by Zeeshan Lakhani and Heather Miller @ The rise of network functions? Lakhani/Miller Checking-in on Network Functions 2 The rise of network functions? LB Firewall IDS Lakhani/Miller Checking-in on

846 views • 47 slides
CLOC, SILC and OTR Kazuhiko Minematsu (NEC Corporation) Recent Advances in Authenticated

CLOC, SILC and OTR Kazuhiko Minematsu (NEC Corporation) Recent Advances in Authenticated

CLOC, SILC and OTR Kazuhiko Minematsu (NEC Corporation) Recent Advances in Authenticated Encryption 2016 Kolkata, India 1 Outline Describe AE schemes, CLOC, SILC and OTR Merged as CLOC and SILC for CAESAR Both are CAESAR

1.18k views • 66 slides
Library of Congress Classification: Module 3.1 1 Library of Congress Classification: Module 3.1

Library of Congress Classification: Module 3.1 1 Library of Congress Classification: Module 3.1

Library of Congress Classification: Module 3.1 1 Library of Congress Classification: Module 3.1 Over the next two modules, we will demonstrate how to use the functionality built into Classification Web to find classification numbers for

682 views • 55 slides
PCE Hierarchical SDNs draft-chen-pce-h-sdns-00 Huaimo Chen (huaimo.chen@huawei.com) Mehmet Toy

PCE Hierarchical SDNs draft-chen-pce-h-sdns-00 Huaimo Chen (huaimo.chen@huawei.com) Mehmet Toy

PCE Hierarchical SDNs draft-chen-pce-h-sdns-00 Huaimo Chen (huaimo.chen@huawei.com) Mehmet Toy (mehmet_toy@cable.comcast.com) Lei Liu (lliu@us.fujitsu.com) Vic Liu (liuzhiheng@chinamobile.com) Introduction Hierarchical PCE: RFC 6805 as

300 views • 8 slides

More recommend