IETF Logo Mail Archive

Re: [multipathtcp] Multipath deployment and fate sharing

"Laganier, Julien" <julienl@qualcomm.com> Mon, 14 December 2009 16:39 UTC

Return-Path: <julienl@qualcomm.com>
X-Original-To: multipathtcp@core3.amsl.com
Delivered-To: multipathtcp@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D45A13A68DC for <multipathtcp@core3.amsl.com>; Mon, 14 Dec 2009 08:39:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.937
X-Spam-Level:
X-Spam-Status: No, score=-102.937 tagged_above=-999 required=5 tests=[AWL=-1.578, BAYES_00=-2.599, SARE_LWSHORTT=1.24, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eZvFmpyqrvIn for <multipathtcp@core3.amsl.com>; Mon, 14 Dec 2009 08:39:19 -0800 (PST)
Received: from wolverine02.qualcomm.com (wolverine02.qualcomm.com [199.106.114.251]) by core3.amsl.com (Postfix) with ESMTP id CF2CA3A686E for <multipathtcp@ietf.org>; Mon, 14 Dec 2009 08:39:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=qualcomm.com; i=julienl@qualcomm.com; q=dns/txt; s=qcdkim; t=1260808747; x=1292344747; h=from:to:cc:date:subject:thread-topic:thread-index: message-id:references:in-reply-to:accept-language: content-language:x-ms-has-attach:x-ms-tnef-correlator: acceptlanguage:content-type:content-transfer-encoding: mime-version; z=From:=20"Laganier,=20Julien"=20<julienl@qualcomm.com> |To:=20Iljitsch=20van=20Beijnum=20<iljitsch@muada.com>, =20Joe=20Touch=20<touch@ISI.EDU>|CC:=20"multipathtcp@ietf .org=20List"=20<multipathtcp@ietf.org>|Date:=20Mon,=2014 =20Dec=202009=2008:38:54=20-0800|Subject:=20RE:=20[multip athtcp]=20Multipath=20deployment=20and=20fate=20sharing |Thread-Topic:=20[multipathtcp]=20Multipath=20deployment =20and=20fate=20sharing|Thread-Index:=20Acp8tc/QrItNZmxTT VejT7gjgrOQUgAIupWg|Message-ID:=20<BF345F63074F8040B58C00 A186FCA57F1C67584040@NALASEXMB04.na.qualcomm.com> |References:=20<E9EE0C1A-C9D3-4EBC-97FD-E1B1628CD2E7@iki. fi>=0D=0A=09<3c3e3fca0911090542h54e45784qbdbf1f338a4c3e90 @mail.gmail.com>=0D=0A=09<E03D46E1-51EA-4273-A8A7-4F37F88 B2E92@iki.fi>=0D=0A=09<20091123.092214.140617438.nishida@ sfc.wide.ad.jp>=0D=0A=09<48DA092B-F3BC-432E-A199-B265DDED 39DA@iki.fi>=0D=0A=09<3c3e3fca0911240434p4d95ec7an34615ae 218faa4f@mail.gmail.com>=0D=0A=09<C622F375-EE67-46AE-AC28 -6617CFEF6D12@lurchi.franken.de>=0D=0A=09<BF345F63074F804 0B58C00A186FCA57F1C65FB29B9@NALASEXMB04.na.qualcomm.com> =0D=0A=09<4B0C607A.6060503@isi.edu>=0D=0A=09<BF345F63074F 8040B58C00A186FCA57F1C65FB29C0@NALASEXMB04.na.qualcomm.co m>=0D=0A=09<4B0C6590.9010000@isi.edu>=0D=0A=09<BF345F6307 4F8040B58C00A186FCA57F1C65FB29C6@NALASEXMB04.na.qualcomm. com>=0D=0A=09<4B0C6C13.2060103@isi.edu>=0D=0A=09<BF345F63 074F8040B58C00A186FCA57F1C65FB29CB@NALASEXMB04.na.qualcom m.com>=0D=0A=09<4B0C6FBE.40003@isi.edu>=0D=0A=09<alpine.D EB.2.00.0911250211520.23603@ayourtch-lnx.stdio.be>=0D=0A =09<alpine.DEB.2.00.0911250428590.23603@ayourtch-lnx.stdi o.be>=0D=0A=09<BE063B0C-BB34-4C75-A57E-1BAB0BE6780A@cs.uc l.ac.uk>=0D=0A=09<4B0D52D5.9090403@isi.edu>=20<58B2A4B2-F 276-4E96-87FB-F8273FD78ED0@muada.com>|In-Reply-To:=20<58B 2A4B2-F276-4E96-87FB-F8273FD78ED0@muada.com> |Accept-Language:=20en-US|Content-Language:=20en-US |X-MS-Has-Attach:|X-MS-TNEF-Correlator:|acceptlanguage: =20en-US|Content-Type:=20text/plain=3B=20charset=3D"us-as cii"|Content-Transfer-Encoding:=20quoted-printable |MIME-Version:=201.0; bh=awMoJFZl+DxAjPX6FXX0HeYKW5Tvzqsk3B7v5FM2xXc=; b=FRVDAcCMyx5JZn0guHrJfzSFxGVpPgnLTXvKJjDvq4XnkId1vLEGP8yI rzpXTjWSODcvw8lsgNvIT+g0cUxzEsmQMQZIYWHK0NtuM+EClPa1Ws7mY DeMz8XYKjirhtleRbZQF1I1m8e94gM4oBgL5V3/x3RYvQjru5vG5waTRx U=;
X-IronPort-AV: E=McAfee;i="5400,1158,5832"; a="29873287"
Received: from pdmz-ns-mip.qualcomm.com (HELO ithilien.qualcomm.com) ([199.106.114.10]) by wolverine02.qualcomm.com with ESMTP; 14 Dec 2009 08:39:06 -0800
Received: from ironstorm.qualcomm.com (ironstorm.qualcomm.com [172.30.39.153]) by ithilien.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id nBEGcu9x025814 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for <multipathtcp@ietf.org>; Mon, 14 Dec 2009 08:39:06 -0800
X-IronPort-AV: E=Sophos;i="4.47,395,1257148800"; d="scan'208";a="23133176"
Received: from nasanexhub04.qualcomm.com (HELO nasanexhub04.na.qualcomm.com) ([129.46.134.222]) by ironstorm.qualcomm.com with ESMTP/TLS/RC4-MD5; 14 Dec 2009 08:38:56 -0800
Received: from nalasexhub04.na.qualcomm.com (10.47.130.55) by nasanexhub04.na.qualcomm.com (129.46.134.222) with Microsoft SMTP Server (TLS) id 8.2.176.0; Mon, 14 Dec 2009 08:38:55 -0800
Received: from NALASEXMB04.na.qualcomm.com ([10.47.7.114]) by nalasexhub04.na.qualcomm.com ([10.47.130.55]) with mapi; Mon, 14 Dec 2009 08:38:55 -0800
From: "Laganier, Julien" <julienl@qualcomm.com>
To: Iljitsch van Beijnum <iljitsch@muada.com>, Joe Touch <touch@ISI.EDU>
Date: Mon, 14 Dec 2009 08:38:54 -0800
Thread-Topic: [multipathtcp] Multipath deployment and fate sharing
Thread-Index: Acp8tc/QrItNZmxTTVejT7gjgrOQUgAIupWg
Message-ID: <BF345F63074F8040B58C00A186FCA57F1C67584040@NALASEXMB04.na.qualcomm.com>
References: <E9EE0C1A-C9D3-4EBC-97FD-E1B1628CD2E7@iki.fi> <3c3e3fca0911090542h54e45784qbdbf1f338a4c3e90@mail.gmail.com> <E03D46E1-51EA-4273-A8A7-4F37F88B2E92@iki.fi> <20091123.092214.140617438.nishida@sfc.wide.ad.jp> <48DA092B-F3BC-432E-A199-B265DDED39DA@iki.fi> <3c3e3fca0911240434p4d95ec7an34615ae218faa4f@mail.gmail.com> <C622F375-EE67-46AE-AC28-6617CFEF6D12@lurchi.franken.de> <BF345F63074F8040B58C00A186FCA57F1C65FB29B9@NALASEXMB04.na.qualcomm.com> <4B0C607A.6060503@isi.edu> <BF345F63074F8040B58C00A186FCA57F1C65FB29C0@NALASEXMB04.na.qualcomm.com> <4B0C6590.9010000@isi.edu> <BF345F63074F8040B58C00A186FCA57F1C65FB29C6@NALASEXMB04.na.qualcomm.com> <4B0C6C13.2060103@isi.edu> <BF345F63074F8040B58C00A186FCA57F1C65FB29CB@NALASEXMB04.na.qualcomm.com> <4B0C6FBE.40003@isi.edu> <alpine.DEB.2.00.0911250211520.23603@ayourtch-lnx.stdio.be> <alpine.DEB.2.00.0911250428590.23603@ayourtch-lnx.stdio.be> <BE063B0C-BB34-4C75-A57E-1BAB0BE6780A@cs.ucl.ac.uk> <4B0D52D5.9090403@isi.edu> <58B2A4B2-F276-4E96-87FB-F8273FD78ED0@muada.com>
In-Reply-To: <58B2A4B2-F276-4E96-87FB-F8273FD78ED0@muada.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "multipathtcp@ietf.org List" <multipathtcp@ietf.org>
Subject: Re: [multipathtcp] Multipath deployment and fate sharing
X-BeenThere: multipathtcp@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Multi-path extensions for TCP <multipathtcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/multipathtcp>
List-Post: <mailto:multipathtcp@ietf.org>
List-Help: <mailto:multipathtcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Dec 2009 16:39:20 -0000

Hello Iljitsch,

Iljitsch van Beijnum wrote:
>
> Joe Touch wrote:
> >
> > However, anything that would cause the original subflow to fail even 
> > when tunneled over other interfaces still, IMO, needs to cause the 
> > whole set to go down. The key example is loss of the IP address 
> > associated with the original flow - either when the interface goes 
> > down, or when it's lost via failed DHCP renewals, or when it's 
> > otherwise explicitly reconfigured.
>
> There are several issues here. But before we delve in: why didn't we 
> have this discussion in shim6, where the exact same problem is present?

In the MPTCP fate sharing discussion there are two situations to consider:

1- a peer stop to use the original IP address but nobody else uses it
2- a peer stop to use the original IP address but somebody else starts to use it (e.g., address is re-allocated via DHCP)

In SHIM6 only the situation #1 is likely to occur, because as Marcelo pointed out earlier, SHIM6 security relies on the use of a specific type of addresses (Hash Based Addresses and Cryptographically Generated Addresses) whose size and random nature make them unlikely to ever collide, thus situation #2 cannot happen in SHIM6.

So SHIM6 decided that in situation #1 it was perfectly okay that a TCP connection continue to work even though the IPv6 address to which the TCP connection was originally bound (Upper Layer ID in SHIM6 terms) is no longer reachable/available. I tend to think that the same applies to MPTCP under situation #1. If we were to base MPTCP security over IPv6 on the use of HBA's and CGA's as well, we could guarantee that situation #2 doesn't occur, and thus be left to deal with situation #1 only and maintain same properties as SHIM6, i.e. no fate sharing for IPv6.

With IPv4 of course the situation would be different due to the IPv4 address space exhaustion, presence of NATs, and DHCP allocation with short term leases. So in IPv4 we can't rule out situation #2, and thus we want to make fate sharing the default IPv4. 

Not a perfect situation of course, but one in which at least we provide better functionality where possible (with IPv6, by leveraging on its IID addressing space size) and maintain existing functionality and semantic for the other situations (with IPv4, with NATs and DHCP)

--julien

PS: it also makes MPTCP over IPv6 more attractive than MPTCP over IPv4 and gives a good reason to migrate to IPv6 transports :)

v2.23.0 | Report a Bug | By Email