Re: [Lwip] Benjamin Kaduk's No Objection on draft-ietf-lwig-tcp-constrained-node-networks-11: (with COMMENT)
Carles Gomez Montenegro <carlesgo@entel.upc.edu> Fri, 30 October 2020 08:38 UTC
Return-Path: <carlesgo@entel.upc.edu>
X-Original-To: lwip@ietfa.amsl.com
Delivered-To: lwip@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51C4B3A0CED; Fri, 30 Oct 2020 01:38:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.033
X-Spam-Level:
X-Spam-Status: No, score=0.033 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_SORBS_HTTP=0.001, RCVD_IN_SORBS_SOCKS=1.927, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Iyku8EsU2k5b; Fri, 30 Oct 2020 01:38:45 -0700 (PDT)
Received: from violet.upc.es (violet.upc.es [147.83.2.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 26EF43A0CEB; Fri, 30 Oct 2020 01:38:43 -0700 (PDT)
Received: from entelserver.upc.edu (entelserver.upc.es [147.83.40.4]) by violet.upc.es (8.14.4/8.14.4/Debian-4.1ubuntu1) with ESMTP id 09U8ccdh038610; Fri, 30 Oct 2020 09:38:38 +0100
Received: from webmail.entel.upc.edu (webmail.entel.upc.edu [147.83.39.6]) by entelserver.upc.edu (Postfix) with ESMTP id 6F4351D53C1; Fri, 30 Oct 2020 09:38:37 +0100 (CET)
Received: from 83.38.106.121 by webmail.entel.upc.edu with HTTP; Fri, 30 Oct 2020 09:38:38 +0100
Message-ID: <f8e17cd5bb772b9e14dfc79e3c48fcec.squirrel@webmail.entel.upc.edu>
In-Reply-To: <160332053616.30085.4690118555174157505@ietfa.amsl.com>
References: <160332053616.30085.4690118555174157505@ietfa.amsl.com>
Date: Fri, 30 Oct 2020 09:38:38 +0100
From: Carles Gomez Montenegro <carlesgo@entel.upc.edu>
To: Benjamin Kaduk <kaduk@mit.edu>
Cc: The IESG <iesg@ietf.org>, draft-ietf-lwig-tcp-constrained-node-networks@ietf.org, lwig-chairs@ietf.org, lwip@ietf.org, Zhen Cao <zhencao.ietf@gmail.com>
User-Agent: SquirrelMail/1.4.21-1.fc14
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-Virus-Scanned: clamav-milter 0.100.3 at violet
X-Virus-Status: Clean
X-Greylist: IP, sender and recipient auto-whitelisted, not delayed by milter-greylist-4.3.9 (violet.upc.es [147.83.2.51]); Fri, 30 Oct 2020 09:38:38 +0100 (CET)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lwip/5eTk_-ISoHELaArbiGwqU7i3wxI>
Subject: Re: [Lwip] Benjamin Kaduk's No Objection on draft-ietf-lwig-tcp-constrained-node-networks-11: (with COMMENT)
X-BeenThere: lwip@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Lightweight IP stack. Official mailing list for IETF LWIG Working Group." <lwip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lwip>, <mailto:lwip-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lwip/>
List-Post: <mailto:lwip@ietf.org>
List-Help: <mailto:lwip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lwip>, <mailto:lwip-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Oct 2020 08:38:47 -0000
Hi Benjamin, Thank you very much for your review! We just submitted revision -12, which aims at addressing the comments received from the IESG and related reviewers: https://tools.ietf.org/html/draft-ietf-lwig-tcp-constrained-node-networks-12 Please find below our inline responses: > Benjamin Kaduk has entered the following ballot position for > draft-ietf-lwig-tcp-constrained-node-networks-11: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-lwig-tcp-constrained-node-networks/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Mostly just editorial nits, but please see the comment on Section 5.3. > > Section 2 > > (I believe the existence of the RFC 8174 version of the BCP 14 > boilerplate has already been noted.) Thanks. In fact, since the document does not use normative language, we removed Section 2 in the last document revision. > Section 3.2 > > or devices with a pool of multiple send/receive buffers. In the > latter case, it is possible that buffers also be shared for other > protocols. > > nit: s/be/are/ (or any number of other minor tweaks) Done. > One key use case for the use of TCP in CNNs is a model where > > nit: "use case for the use" is probably redundant: "use case for TCP in > CNNs" seems like it would work okay. Done, thanks. > middlebox (e.g. a firewall, NAT, etc.). Figure 1 illustrates such > scenario. Note that the scenario is asymmetric, as the unconstrained > > nit: "such a scenario". Done. > Section 3.3 > > o Unidirectional transfers: An IoT device (e.g. a sensor) can send > (repeatedly) updates to the other endpoint. Not in every case > there is a need for an application response back to the IoT > device. > > (editorial) I suggest "There is not always a need for an application > response back to the IoT device". Done. > Section 4.1.1 > > smaller than 1220 bytes (e.g. not larger than 1200 bytes). Note that > it is advised for TCP implementations to consume payload space > instead of increasing datagram size when including IP or TCP options > in an IP packet to be sent [RFC6691]. Therefore, the suggestion of > > [my reading of RFC 6691 is that it was required to consume payload > space, but only recommended to account for this behavior when > advertising MSS. I guess Erik covered this in his Discuss point already, > though.] As per a subsequent discussion on the tcpm mailing list, we updated the second paragraph of current Section 3.1.1 is as follows: NEW: An IPv6 datagram size exceeding 1280 bytes can be avoided by setting the TCP MSS not larger than 1220 bytes. Note that it is already a requirement that TCP implementations consume payload space instead of increasing datagram size when including IP or TCP options in an IP packet to be sent [RFC6691]. Therefore, it is not required to advertise an MSS smaller than 1220 bytes in order to accommodate TCP options. > Section 5.3 > > The message and latency overhead that stems from using a sequence of > short-lived connections could be reduced by TCP Fast Open (TFO) > [RFC7413], which is an experimental TCP extension, at the expense of > increased implementation complexity and increased TCP Control Block > (TCB) size. TFO allows data to be carried in SYN (and SYN-ACK) > > We should probably make at least a passing mention of the TFO security > considerations here, possibly with some discussion of why they are less > consequential for certain CNNs than in general. (Note that the security > considerations for TFO are not limited to just the risk of replay, and > that there are privacy considerations for the TFO cookie being used to > link together multiple TCP connections between the same endpoints.) We made the following change: OLD: The cookie needs to be refreshed (and obtained by the client) after a certain amount of time. Nevertheless, TFO is more efficient than frequently opening new TCP connections with the traditional three-way handshake, as long as the cookie can be reused in subsequent connections. NEW: The cookie needs to be refreshed (and obtained by the client) after a certain amount of time. While a given cookie is used for multiple connections between the same two endpoints, the latter may become vulnerable to privacy threats. In addition, a valid cookie may be stolen from a compromised host and may be used to perform SYN flood attacks, as well as amplified reflection attacks to victim hosts (see Section 5 of RFC 7413). Nevertheless, TFO is more efficient than frequently opening new TCP connections with the traditional three-way handshake, as long as the cookie can be reused in subsequent connections. > Section 10.1 > > RFC 3819 may not need to be listed as normative, given the nature of the > one place in which it is referenced. > > Similarly, we don't say much about TCP-AP other than it exists, so RFC > 5925 may not need to be normative either. Done! > Section 10.2 > > RFC 6092 appears to not be referenced from anywhere? We removed the reference (it was used in some older version of the draft). > idnits notes a couple other reference-related issues. We believe that we cleared those as well in -12. Thanks, Carles (on behalf of the authors)
- [Lwip] Benjamin Kaduk's No Objection on draft-iet… Benjamin Kaduk via Datatracker
- Re: [Lwip] Benjamin Kaduk's No Objection on draft… Carles Gomez Montenegro
- Re: [Lwip] Benjamin Kaduk's No Objection on draft… Benjamin Kaduk