IETF Logo Mail Archive

Re: [6lo] draft-ietf-6lo-minimal-fragment-00: When to remove VRB entries?

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Wed, 06 February 2019 16:47 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BC0C3130E65 for <6lo@ietfa.amsl.com>; Wed, 6 Feb 2019 08:47:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -19.195
X-Spam-Level:
X-Spam-Status: No, score=-19.195 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-4.553, DKIMWL_WL_MED=-0.142, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=mlwMNGwG; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=UwJx5zXD
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SoETjtTZMd8f for <6lo@ietfa.amsl.com>; Wed, 6 Feb 2019 08:47:19 -0800 (PST)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F24F0130E3F for <6lo@ietf.org>; Wed, 6 Feb 2019 08:47:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=13960; q=dns/txt; s=iport; t=1549471638; x=1550681238; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=pxzArI8zo9Gr4zL9f8GL9UFChBkwHTQlQCrw04RiuEE=; b=mlwMNGwGRzljkmIUiOMG1lDnx9rGKmM63hYT8nHEIdua8HezFQto/pYP PjNg8HS7mzHfbPDR3o2TP2jcreHlJzIDPFJBOiUQdoRUA1hYb6WLkHiZT z0DfYPX2FyTPOwcGqHeav2yfQ8mV83USG2VT7Mmp58H+4TOorZ13ODYWa 4=;
IronPort-PHdr: 9a23:bHuvyhRG2e/Dnx5nv25trAJaTtpsv++ubAcI9poqja5Pea2//pPkeVbS/uhpkESXBNfA8/wRje3QvuigQmEG7Zub+FE6OJ1XH15g640NmhA4RsuMCEn1NvnvOjQmHNlIWUV513q6KkNSXs35Yg6arw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BAAABID1tc/5ldJa1lGwEBAQEDAQEBBwMBAQGBVAMBAQELAYENI1ADZ3QECycKg3mDRwOPckqULYYDgRADVAsBASyEQAIXgwMiNwYNAQMBAQIBAQJtHAyFSwYjChMBATcBDwIBCA40AgICMCUCBA4NgxuBHUwDFQECoiACihRxgS+CeAEBBYURGIILCIl7gkgXgUA/gVeCTIRqGYMHMYImihCGCpJwCQKSWpJOm3MCBAIEBQINAQEFgVwigVZwFYMnghyDbopTcoEojDMBgR4BAQ
X-IronPort-AV: E=Sophos;i="5.58,340,1544486400"; d="scan'208,217";a="513380502"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 06 Feb 2019 16:47:04 +0000
Received: from XCH-ALN-012.cisco.com (xch-aln-012.cisco.com [173.36.7.22]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id x16Gl4BP025165 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 6 Feb 2019 16:47:04 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-ALN-012.cisco.com (173.36.7.22) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Wed, 6 Feb 2019 10:47:03 -0600
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Wed, 6 Feb 2019 10:47:03 -0600
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Wed, 6 Feb 2019 10:47:03 -0600
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector1-cisco-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pxzArI8zo9Gr4zL9f8GL9UFChBkwHTQlQCrw04RiuEE=; b=UwJx5zXDdMaMPXgPmmGud1XL6SsMkqFMtZb2TanDq930NUXXCuxoyPpxPqDZK/mL+oVNLyb2tFM9UEhXAQM/WIlNjbKTFp60B5YjGG8eR98j5BDpJiJxZab9gLyKwKSx1d4ThEe5xkV56Aosq15tKF6shzrnHKdf7a3Fsug/cSc=
Received: from SN6PR11MB3471.namprd11.prod.outlook.com (52.135.112.221) by SN6PR11MB3533.namprd11.prod.outlook.com (52.135.125.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.17; Wed, 6 Feb 2019 16:47:02 +0000
Received: from SN6PR11MB3471.namprd11.prod.outlook.com ([fe80::1c9f:935:667b:8957]) by SN6PR11MB3471.namprd11.prod.outlook.com ([fe80::1c9f:935:667b:8957%3]) with mapi id 15.20.1580.019; Wed, 6 Feb 2019 16:47:02 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Martine Lenders <m.lenders@fu-berlin.de>
CC: "6lo@ietf.org" <6lo@ietf.org>
Thread-Topic: [6lo] draft-ietf-6lo-minimal-fragment-00: When to remove VRB entries?
Thread-Index: AQHUvis8l/WCJnJQfkSfvBG+Jtz0TaXS4i3AgAAS94CAAAKVIA==
Date: Wed, 06 Feb 2019 16:46:59 +0000
Deferred-Delivery: Wed, 6 Feb 2019 16:46:41 +0000
Message-ID: <SN6PR11MB347150CAFCEE23351DEE74CCD86F0@SN6PR11MB3471.namprd11.prod.outlook.com>
References: <CALHmdRwqF972Y4DG8x9QW_fg+AkwnQtzUVSgyE77FBYYO0SLpQ@mail.gmail.com> <SN6PR11MB3471A33D03F27608E8EE59BAD86F0@SN6PR11MB3471.namprd11.prod.outlook.com> <CALHmdRyVG2EHVRx6cL2wEt+WZsNtj422c9B4Q7XTOrgF6hYpkw@mail.gmail.com>
In-Reply-To: <CALHmdRyVG2EHVRx6cL2wEt+WZsNtj422c9B4Q7XTOrgF6hYpkw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [173.38.220.34]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; SN6PR11MB3533; 6:jVPUJGCnJbpHV1YqMTF8ViWp1JCRo63+NerptIyMpK835DklDbcje1cI7UlbgWNmPr2zO207P2M9rB/UzNDZXASJdjylKyT0FPIj2aY5X8GD4zeJrzYSTeMrtLwiS53rnV07JEjbJg4njxjiYfirSU5rWvthnLQj2HrOgqnAkHcHeVmCmQtZsvvN8F/WnmTSzoZsy0yhwaxxNYIirdOk58p/mBrPAESt8b4ToV45bPVLRImvyTYLwUQe4NxM79X2bfN4aDpyVJ03tckhcdYsxBlYVaTFTZt3vZL8FZQ13JrVQdB+9npY7Ya8kkeHU7LWImKfJRQazP+xzw6jab60gTvFjr1wOiqmO0Sw5g+PhM0pt/VAUGWOHqnO5E+Th9WCTYuYRMnWPKmwllLlCTkM7fou4GdOO50MPUnwMiUE8aHcOGyfCnebAWvoM3Yc0DTt1t+DlAx8MH9t0Lp/QlHMsQ==; 5:rNkivciMaM+bJ1tgsOq3ytc9EUb7ytE1oB4s94bF8NZao9qCswM8fhzMx5CGTVzsVbLKPU9mmQYFB5m/L5STe921hhIZaU0TB7L/ayLcIADKxdbd93r45b+890n1ICdt5vDGWLflW9bf/ShMAJ4GzfP2utjn5hwTW2QAaRKroKGfv68hGgpWkhgiqqcXpbmYw8X0O3lob6wY2UxblWOO6A==; 7:0pNmpveUALtFBPsoquY1KRgMpNnqNyGswAtdVQIdTkYiK5/VoHpHLa9+Qr6d2/3p0SPtwc0vWIhN1dCwCyCzESW0cqtwKrsA4YtL0Tfmcolmxm7Skyuz/H3qxLNSYOfQQiAhiN6nVjmNwxUe3wOEYQ==
x-ms-office365-filtering-correlation-id: f40bf271-3f74-4231-1eb7-08d68c52b828
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(2017052603328)(7153060)(7193020); SRVR:SN6PR11MB3533;
x-ms-traffictypediagnostic: SN6PR11MB3533:
x-microsoft-antispam-prvs: <SN6PR11MB3533842396CD6053DF11549CD86F0@SN6PR11MB3533.namprd11.prod.outlook.com>
x-forefront-prvs: 0940A19703
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(376002)(136003)(366004)(396003)(346002)(199004)(189003)(6916009)(11346002)(7696005)(68736007)(6436002)(71190400001)(6666004)(2906002)(6246003)(446003)(71200400001)(53936002)(102836004)(229853002)(55016002)(6306002)(6506007)(105586002)(66066001)(86362001)(106356001)(186003)(6116002)(3846002)(8936002)(74316002)(81156014)(81166006)(33656002)(9686003)(14444005)(256004)(54896002)(97736004)(4326008)(26005)(7736002)(14454004)(76176011)(8676002)(486006)(99286004)(316002)(478600001)(790700001)(476003)(25786009); DIR:OUT; SFP:1101; SCL:1; SRVR:SN6PR11MB3533; H:SN6PR11MB3471.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: UojDu42P1+d/FxZEvTHk46ZA72e581WR0aAzmYTDVKDd7+lM9vR9l62i4Ni6USHra155ObehkTpMv/6srjNwYa4N08GTC7K7jLatJGelbX/4k9B5rDhXypG24TWB6OhSuoRmANI6D250ndAHjvUQHGL0vqf7I9Kti5mHewuUkbaYOnMRetZHda7ETpKoebrQeQ5HwbaZRiTAYLeyiHBYoz92TO3gLh3YF9stBnpuMW81bc8wTGt/Z9hB/5K6tYVs0/2f/3uMmGbd36v69q9Hc8ysDYiybUys43lsSZXXCis3E0dG0PftFULleWxyB5qJTxiMq+w4PokTPo3zhDBsV2xiSWHp/dB+/Qs8hdkNC3Qr5yMWb4UIy2QUlswK3MHP6k9Lr7n65lJK4jMERX+tGQdl+ADLjjQn6p779HFG3Ac=
Content-Type: multipart/alternative; boundary="_000_SN6PR11MB347150CAFCEE23351DEE74CCD86F0SN6PR11MB3471namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: f40bf271-3f74-4231-1eb7-08d68c52b828
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Feb 2019 16:47:02.3036 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR11MB3533
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.22, xch-aln-012.cisco.com
X-Outbound-Node: rcdn-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/RAWdEpqfM6ltbbdo20NhGk_G1oc>
Subject: Re: [6lo] draft-ietf-6lo-minimal-fragment-00: When to remove VRB entries?
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Feb 2019 16:47:23 -0000

Hello Martine

Fragments follow a same path, but this is not a guarantee that they will not be mis-ordered. So whatever you do, it should not be immediate but done upon a time out because once the VRB is gone, packets are dropped. Note that if the first packet is delayed, then minimal-fragment is in trouble.

That was clear ;-). However, I'm not sure it necessarily is in trouble. At least in our (classic) reassembly buffer implementation, enough of the original fragments data is still there (to detect overlaps), so that a refragmentation for the first x fragments is still possible, once the first fragment arrives and the reassembly buffer entry can be transformed into a VRB entry.

Well, then it’s hard to differentiate an early fragment from a late fragment, and there‘s possibly an additional risk of DoS attack compared to a packet where the IP header allows some checking.

For fragment-recovery-01 there is text in 7.3 about cleaning the VRB, basically an ACK that indicates a reset of a complete reception (all 0 or all 1) triggers a short timer to destroy the VRB. This is done in case the ack is lost on the rest of the way back and the last flow is retried. There is also text at the end of section 6 that indicates that a reset by the sender may not have an rfrag-ack request bit set. In that case, the same operation as if the RFRAG ack was received applies. I could add a word on that.

Ok, but for the sake of comparison I also need the minimal approach.

Minimal makes intermediate nodes virtual endpoints.
So I expect that the best you can do is behave like an end point and clear your state when 1) you have forwarded a complete virtual datagram and 2) upon time out in case of an error.
If you recreate a VRB for a late packet then yes, I’d protect case 1) that with a small time out to cover that situation.

All the best,

Pascal

v2.23.0 | Report a Bug | By Email