a tale of two checksums
play

A Tale of Two Checksums draft-ietf-fairhurst-udp-options-cco-00 - PowerPoint PPT Presentation

Jan 12, 2023 •279 likes •516 views

A Tale of Two Checksums draft-ietf-fairhurst-udp-options-cco-00 Gorry Fairhurst, Tom Jones, Ra ff aele Zullo tom@erg.abdn.ac.uk IETF 103 - Bangkok 1 UDP Option Area IP transport payload

  1. A Tale of Two Checksums draft-ietf-fairhurst-udp-options-cco-00 Gorry Fairhurst, Tom Jones, Ra ff aele Zullo tom@erg.abdn.ac.uk IETF 103 - Bangkok 1

  2. UDP Option Area IP transport payload <-------------------------------------------------> +--------+---------+----------------------+------------------+ | IP Hdr | UDP Hdr | UDP user data | surplus area | +--------+---------+----------------------+------------------+ <------------------------------> RFC793 2

  3. UDP Option TLV +--------+ +--------+ | Kind=0 | | Kind=1 | +--------+ +--------+ EOL NOP +--------+--------+ | Kind=2 | Ones8 | +--------+--------+ OCS +--------+--------+--------+--------+ | Kind=3 | Len=4 | CRC16sum | +--------+--------+--------+--------+ ACS 3

  4. An innocuous little bug void in_delayed_cksum( struct mbuf *m) { struct ip *ip; uint16_t csum, offset, ip_len; ip = mtod(m, struct ip *); offset = ip->ip_hl << 2 ; ip_len = ntohs(ip->ip_len); csum = in_cksum_skip(m, ip_len, offset); if (m->m_pkthdr.csum_flags & CSUM_UDP && csum == 0 ) csum = 0xffff ; offset += m->m_pkthdr.csum_data; /* checksum offset */ /* find the mbuf in the chain where the checksum starts*/ while ((m != NULL ) && (offset >= m->m_len)) { offset -= m->m_len; m = m->m_next; } *(u_short *)(m->m_data + offset) = csum; } 4

  5. An innocuous little bug void in_delayed_cksum( struct mbuf *m) { struct ip *ip; uint16_t csum, offset, ip_len; ip = mtod(m, struct ip *); offset = ip->ip_hl << 2 ; ip_len = ntohs(ip->ip_len); csum = in_cksum_skip(m, ip_len, offset); if (m->m_pkthdr.csum_flags & CSUM_UDP && csum == 0 ) csum = 0xffff ; offset += m->m_pkthdr.csum_data; /* checksum offset */ /* find the mbuf in the chain where the checksum starts*/ while ((m != NULL ) && (offset >= m->m_len)) { offset -= m->m_len; m = m->m_next; } *(u_short *)(m->m_data + offset) = csum; } 5

  6. • Fixed in FreeBSD by r334705 • The IETF - Making the Internet Better! 6

  7. • Fixed in FreeBSD by r334705 • The IETF - Making the Internet Better! 6

  8. Measuring UDP Options • There are no UDP Options hosts on the internet ( yet! ) • Measurements with Mobile Tracebox Core* • UDP is di ffi cult to measure • STUN • DNS • NTP • HTTP tricks *https://erg.abdn.ac.uk/~ra ff aele 7

  9. More dangerous than gator wrestling 8

  10. Middlebox Pathologies “... middle boxes can silently discard packets for other reasons. For example, on the Juniper SRX, the default behavior for a stateful firewall is to discard all packets with incorrect checksums .” - Ron Bionica 9

  11. Middlebox Pathologies • Works • Full Payload Checksum • Full Payload Checksum, UDP length Pseudoheader • UDP Length Checksum, IP length Pseudoheader • Only passes 0s as options space • Only passes IP payload length == UDP Length 10

  12. The CCO Option +---------+--------+------------+ | Kind=xx | Len=4 | Checksum | +---------+--------+------------+ 1 byte 1 byte 2 bytes UDP CCO Option Format 11

  13. The Magic CCO Option 12

  14. It works against CPE too! • Dlink: DIR-655-A2, A3, A4, B1; DIR 619-Ax; DI-614+-B2 • Jensen: AirLink WBR 7954 v2, v3; AirLink 1000Gv2 (A) • Linksys: E2500, WRT54G/GL/GS v1.1, WRT54G, E4200 • Netgear: WGR 614v7, v9; WNDR3400 • Topcom; WBR 254G, BR 604 • TP-Link: TL-MR3020 v1, TL-WR703N • 3g modem: WR3G050-02 • ZyXEL: P-2812HNU-F3 • Xiaomi: Router 3C 17 Pass UDP Options, 6 Drop UDP Options Courtesy of Runa Barik, University of Oslo 13

  15. Please read draft-ietf-fairhurst-udp-options-cco-00 This work is partially supported by the European Commission under Horizon 2020 grant agreement no. 688421 Measurement and Architecture for a Middleboxed Internet (MAMI). 14

  16. The Full Picture 15

  17. The Full Picture 16

  18. The Full Picture 17

  19. The Full Picture 18

  20. The Full Picture 19

  21. The Full Picture 20

  22. The Full Picture 21

  23. The Full Picture 22

Recommend

The Telescope Array Low-Energy Extension (TALE) C. Jui For the TA/TALE Collaboration ISVHECRI,

The Telescope Array Low-Energy Extension (TALE) C. Jui For the TA/TALE Collaboration ISVHECRI,

The Telescope Array Low-Energy Extension (TALE) C. Jui For the TA/TALE Collaboration ISVHECRI, FNAL, July 1, 2010 Features in the UHECR spectrum: The minority straight-forward View CMBR photons interact with cosmic ray protons: Pion

520 views • 20 slides
The Environmentalists Tale Damnation, Purgatory and Armageddon The Environmentalists Tale 2

The Environmentalists Tale Damnation, Purgatory and Armageddon The Environmentalists Tale 2

The Environmentalists Tale Damnation, Purgatory and Armageddon The Environmentalists Tale 2 Environmental Eden Managing Ecology Shift in livelihood strategies Barka Alla, North of Kutum, North Darfur 70% 60% 50% 40% Before Currently

341 views • 21 slides
Error Detection Two types Error Detection Codes (e.g. CRC, Parity, Checksums) Error

Error Detection Two types Error Detection Codes (e.g. CRC, Parity, Checksums) Error

Error Detection Two types Error Detection Codes (e.g. CRC, Parity, Checksums) Error Correction Codes (e.g. Hamming, Reed Solomon) Basic Idea Add redundant information to determine if errors have been introduced Why

643 views • 25 slides
A Tale of two Patients A Tale of two Patients 1) 71 yo with persistent AF since 2018. OSA

A Tale of two Patients A Tale of two Patients 1) 71 yo with persistent AF since 2018. OSA

9/14/2019 Disclosures Should We Ablate Asymptomatic AF? CHRS 2019 I have ablated patients with asymptomatic AF. Edward Paul Gerstenfeld, MD, FHRS @Ed_Gerst Professor of Medicine University of California, San Francisco A Tale of two

452 views • 10 slides
Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits (where k n ). k is smaller then n except in unusual circumstances Example: ASCII parity bit ASCII has 7 bits; 8th bit is

979 views • 40 slides
The tale fundamental group, tale homotopy and anabelian geometry Axel Sarlin |

The tale fundamental group, tale homotopy and anabelian geometry Axel Sarlin |

The tale fundamental group, tale homotopy and anabelian geometry Axel Sarlin | axel@sarlin.mobi Lecture notes This is a typed-out and slightly expanded version of my notes that I made whilst preparing the presentation of my thesis [Sar17]

113 views • 7 slides
City of Forest Park A Tale of Two TIFs A Tale of Two TIFs It was the best of times, it was

City of Forest Park A Tale of Two TIFs A Tale of Two TIFs It was the best of times, it was

City of Forest Park A Tale of Two TIFs A Tale of Two TIFs It was the best of times, it was the worst of times, it was the age of wisdom, it was the age of foolishness The Best of Times Carillon TIF 123 acres, home to citys

421 views • 16 slides
A Tale of Testing the Untestable A Tale of Testing the Untestable Angie Jones Senior Developer

A Tale of Testing the Untestable A Tale of Testing the Untestable Angie Jones Senior Developer

A Tale of Testing the Untestable A Tale of Testing the Untestable Angie Jones Senior Developer Advocate, Applitools http://angiejones.tech Director, Test Automation University http://testautomationu.com San Francisco, CA, USA @techgirl1908

991 views • 82 slides
STAFFING AT HEALTHEAST THE TALE OF TWO HEALTHEASTS It was the best of times, it was the worst of

STAFFING AT HEALTHEAST THE TALE OF TWO HEALTHEASTS It was the best of times, it was the worst of

STAFFING AT HEALTHEAST THE TALE OF TWO HEALTHEASTS It was the best of times, it was the worst of timesit was the spring of hope, it was the winter of despair ( Tale of Two Cities , Charles Dickens). The presentation and reception of MNA

325 views • 30 slides
NEC Forum Tale of Two Contracts Ir. Ir. PAUL LEE PAUL LEE, , Kai Kai-hung hung Assistant

NEC Forum Tale of Two Contracts Ir. Ir. PAUL LEE PAUL LEE, , Kai Kai-hung hung Assistant

NEC Forum Tale of Two Contracts Ir. Ir. PAUL LEE PAUL LEE, , Kai Kai-hung hung Assistant Managing Director Hsin Chong Construction Company Ltd. P. 1 NEC Forum Tale of Two Contracts Ta Tale of two le of two co contra ntracts

381 views • 11 slides
A Tale of Two Indices: Positive vs. Normative Indexation in the Emerging Markets April 2020 A

A Tale of Two Indices: Positive vs. Normative Indexation in the Emerging Markets April 2020 A

A Tale of Two Indices: Positive vs. Normative Indexation in the Emerging Markets April 2020 A Tale of Two Indices Overview Available at www.seafarerfunds.com/a-tale-of-two-indices Steph Gan examines questions that are fundamental to the

117 views • 11 slides
The 42 Year-Old Tennis Player Heard a Crack: What I Do, Tension Side or Compression Side, and

The 42 Year-Old Tennis Player Heard a Crack: What I Do, Tension Side or Compression Side, and

The 42 Year-Old Tennis Player Heard a Crack: What I Do, Tension Side or Compression Side, and Outcomes Edward A. Perez, M.D. Campbell Clinic/University of Tennessee Memphis, TN A Tale of 4 Hips A Tale of 4 Hips A Tale of 4 Hips A Tale of

641 views • 60 slides
Hash Functions Vincent Rijmen Challenges and Perspectives for Academia and Industry Antwerp, May

Hash Functions Vincent Rijmen Challenges and Perspectives for Academia and Industry Antwerp, May

Hash Functions Vincent Rijmen Challenges and Perspectives for Academia and Industry Antwerp, May 27 th , 2008 A cryptographic hash function produces cryptographic checksums or fingerprints cryptographic checksums or fingerprints Fast

716 views • 25 slides
ors a tale of two special events which one? Who is this guy? And why does he think he knows

ors a tale of two special events which one? Who is this guy? And why does he think he knows

How How to to Cre Create te Uni Uniqu que e Fun Fundr drais isin ing g Ev Even ents ts tha that t Ex Exci cite te You Your r Don Donor ors a tale of two special events which one? Who is this guy? And why does he think

1.03k views • 72 slides
High Performance Multi-Node File Copies and Checksums for Clustered File Systems Paul Kolano,

High Performance Multi-Node File Copies and Checksums for Clustered File Systems Paul Kolano,

High Performance Multi-Node File Copies and Checksums for Clustered File Systems Paul Kolano, Bob Ciotti NASA Advanced Supercomputing Division {paul.kolano,bob.ciotti}@nasa.gov Overview Problem background Multi-threaded copies

658 views • 37 slides
Three Talks: 1. How does the solar wind blow? 2 A Tale of Two Space Plasma Physics 2. A Tale of

Three Talks: 1. How does the solar wind blow? 2 A Tale of Two Space Plasma Physics 2. A Tale of

Three Talks: 1. How does the solar wind blow? 2 A Tale of Two Space Plasma Physics 2. A Tale of Two Space Plasma Physics Paradigms 3. Why have we not solved the substorm problem? How does the Solar Wind Blow? o does t e So a d o George

527 views • 26 slides
Console Games to iOS: A Technical Overview of Adaptation Stphane Khalil Jacoby CTO / Co-Founder

Console Games to iOS: A Technical Overview of Adaptation Stphane Khalil Jacoby CTO / Co-Founder

Bringing Large Scale Console Games to iOS: A Technical Overview of Adaptation Stphane Khalil Jacoby CTO / Co-Founder @ The Bards Tale: A little history The Bards Tale: October 2004 The Bards Tale: October 2004 The Bards Tale:

450 views • 44 slides
LMU LMU M-SC SCHO HOOL/C /CAR ARBONV NVIEW ANNU ANNUAL AL AD AD INDU NDUSTRY Y TALE

LMU LMU M-SC SCHO HOOL/C /CAR ARBONV NVIEW ANNU ANNUAL AL AD AD INDU NDUSTRY Y TALE

LMU LMU M-SC SCHO HOOL/C /CAR ARBONV NVIEW ANNU ANNUAL AL AD AD INDU NDUSTRY Y TALE ALENT NT SU SURVEY September 2016 TH THE A E ADVER ERTI TISING I G INDUSTR TRY H HAS B BEEN EEN T TALKING G ABOUT TALE ABO ALENT NT

540 views • 20 slides
The tale of a Virtual Research Community in NMR and

The tale of a Virtual Research Community in NMR and

The tale of a Virtual Research Community in NMR and structural Biology User Forum 2011, Vilnius A Worldwide e-Infrastucture Contract n: RI-261572

515 views • 35 slides
The Importance ce of Or, Why Content Strategy Matters to Micr crocopy Even the Smallest

The Importance ce of Or, Why Content Strategy Matters to Micr crocopy Even the Smallest

The Importance ce of Or, Why Content Strategy Matters to Micr crocopy Even the Smallest Pieces of Content Michelle Dupler Content Strategist / ICC / Columbus, Ohio A Tale of Two Doormats A Tale of Two Doormats A Tale of Two Doormats

717 views • 34 slides
X11 and Wayland A tale of two implementations 1 / 20 Concepts What is hikari and what am I

X11 and Wayland A tale of two implementations 1 / 20 Concepts What is hikari and what am I

X11 and Wayland A tale of two implementations 1 / 20 Concepts What is hikari and what am I trying to achieve? window manager / compositor and Goals started 1.5 years ago written from scratch stacking / tiling hybrid approach inspired by cwm

249 views • 21 slides
I can t believe it s not butter The tale of digitalisation, competition and

I can t believe it s not butter The tale of digitalisation, competition and

I can t believe it s not butter The tale of digitalisation, competition and misconception Ariel Ezrachi Slaughter and May Professor of Competition Law Director, The University of Oxford Centre for Competition Law and Policy Outline

281 views • 17 slides
WHO ARE THE SE TALE NTE D PE OPLE AND WHAT DO THE Y HAVE IN COMMON? MARK MCEWAN (

WHO ARE THE SE TALE NTE D PE OPLE AND WHAT DO THE Y HAVE IN COMMON? MARK MCEWAN (

WHO ARE THE SE TALE NTE D PE OPLE AND WHAT DO THE Y HAVE IN COMMON? MARK MCEWAN ( opened ONE at Hazelton Hotel; shows on Food Network Canada Top Chef &amp; Heat ) DINA PUGLIESE ( CityTV Breakfast Television Host ) GIGI GORGEOUS

632 views • 40 slides
M.S. Petrovi , A.I. Strini , N.B . Aleksi and M.R. Beli 1 OR THE TALE OF THE PAPER THAT

M.S. Petrovi , A.I. Strini , N.B . Aleksi and M.R. Beli 1 OR THE TALE OF THE PAPER THAT

Solitons in strongly nonlocal nematic liquid crystals M.S. Petrovi , A.I. Strini , N.B . Aleksi and M.R. Beli 1 OR THE TALE OF THE PAPER THAT REFUSES TO GET PUBLISHED Institute of Physics, P.O.Box 68, 11001 Belgrade, Serbia, 1 Texas

533 views • 28 slides

More recommend