IETF Logo Mail Archive

Re: [multipathtcp] [Int-area] SOCKS 6 Draft

Vladimir Olteanu <vladimir.olteanu@cs.pub.ro> Wed, 19 July 2017 19:23 UTC

Return-Path: <vladimir.olteanu@cs.pub.ro>
X-Original-To: multipathtcp@ietfa.amsl.com
Delivered-To: multipathtcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4552129AD3; Wed, 19 Jul 2017 12:23:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.452
X-Spam-Level:
X-Spam-Status: No, score=-0.452 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_BRBL_LASTEXT=1.449, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dsuHGA-kkdpz; Wed, 19 Jul 2017 12:23:25 -0700 (PDT)
Received: from vesa.cs.pub.ro (vesa.cs.pub.ro [141.85.227.187]) by ietfa.amsl.com (Postfix) with ESMTP id 48DE3127078; Wed, 19 Jul 2017 12:23:23 -0700 (PDT)
IronPort-PHdr: 9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A2A7AwBmsG9ZRwPjVY1cDg0BAQEDAQEBCQEBARYBAQEDAQEBCQEBAZQlkFEimBWFRwKEOQEBAQEBAQEBAgEFAQEzWIIzJAGCQQEFI0oMEAsEFCoCAkMUBgEMCAEBii+zJoImJ4p2AQEBAQEBAQMBAQEBAQEBAQEBAR2DKINNggwLgm6EVIMpgmEFkV+NWoImpCOVWgJWgQsxIYYUHIEoQooTAQEB
X-IPAS-Result: A2A7AwBmsG9ZRwPjVY1cDg0BAQEDAQEBCQEBARYBAQEDAQEBCQEBAZQlkFEimBWFRwKEOQEBAQEBAQEBAgEFAQEzWIIzJAGCQQEFI0oMEAsEFCoCAkMUBgEMCAEBii+zJoImJ4p2AQEBAQEBAQMBAQEBAQEBAQEBAR2DKINNggwLgm6EVIMpgmEFkV+NWoImpCOVWgJWgQsxIYYUHIEoQooTAQEB
X-IronPort-AV: E=Sophos;i="5.40,381,1496091600"; d="scan'208,217";a="1111131"
Received: from mail.cs.pub.ro (HELO vmail.cs.pub.ro) ([141.85.227.3]) by vesa.cs.pub.ro with ESMTP; 19 Jul 2017 22:23:19 +0300
Received: from localhost (localhost [127.0.0.1]) by vmail.cs.pub.ro (Postfix) with ESMTP id 80DC21A6014C; Wed, 19 Jul 2017 22:23:19 +0300 (EEST)
Received: from vmail.cs.pub.ro ([127.0.0.1]) by localhost (vmail.cs.pub.ro [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id L4owHU7GrhcW; Wed, 19 Jul 2017 22:23:19 +0300 (EEST)
Received: from vmail.cs.pub.ro (localhost [127.0.0.1]) by vmail.cs.pub.ro (Postfix) with ESMTPS id 5F6D21A61C08; Wed, 19 Jul 2017 22:23:19 +0300 (EEST)
Received: from painkiller.localdomain (unknown [185.156.120.80]) by vmail.cs.pub.ro (Postfix) with ESMTPSA id C4B041A6014C; Wed, 19 Jul 2017 22:23:18 +0300 (EEST)
To: Joe Touch <touch@isi.edu>, Dragoș Niculescu <dragos.niculescu@cs.pub.ro>
Cc: mohamed boucadair <mohamed.boucadair@orange.com>, David Schinazi <dschinazi@apple.com>, multipathtcp <multipathtcp@ietf.org>, int-area <Int-area@ietf.org>
References: <149871247634.6490.5928844232347189122.idtracker@ietfa.amsl.com> <787AE7BB302AE849A7480A190F8B93300A000764@OPEXCLILMA3.corporate.adroot.infra.ftgroup> <b33e4726-f255-75f7-5203-9e30faa36659@cs.pub.ro> <787AE7BB302AE849A7480A190F8B93300A000D16@OPEXCLILMA3.corporate.adroot.infra.ftgroup> <a922a59f-2670-8d50-f3c5-99e1c29848ca@cs.pub.ro> <ec8cae81-dbeb-ed92-33ca-678bb2b5efeb@isi.edu> <1459306318.3890958.1499330475778.JavaMail.zimbra@cs.pub.ro> <c15031f3-95cf-d341-2ddb-0b3850a74d76@isi.edu> <53068639.4279258.1500018250846.JavaMail.zimbra@cs.pub.ro> <0f8dd648-d89f-50ee-716a-7547ee34885a@isi.edu>
From: Vladimir Olteanu <vladimir.olteanu@cs.pub.ro>
Message-ID: <f7121225-ce5f-4002-d3cf-202dcdd11f04@cs.pub.ro>
Date: Wed, 19 Jul 2017 22:23:17 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <0f8dd648-d89f-50ee-716a-7547ee34885a@isi.edu>
Content-Type: multipart/alternative; boundary="------------9C4C7B278A2763B8E578AF50"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/multipathtcp/YDVkTlaK9YlaQxPHQiZ_mb05ZEk>
Subject: Re: [multipathtcp] [Int-area] SOCKS 6 Draft
X-BeenThere: multipathtcp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Multi-path extensions for TCP <multipathtcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/multipathtcp/>
List-Post: <mailto:multipathtcp@ietf.org>
List-Help: <mailto:multipathtcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Jul 2017 19:23:27 -0000

On 07/19/2017 09:26 PM, Joe Touch wrote:
>
>
>
> On 7/14/2017 12:44 AM, Dragoș Niculescu wrote:
>>>> SOCKSv6 proposal makes use of extra data in the SYN (SOCKS data, and user data),
>>>> but
>>>> its correctness and backward compatibility does not depend on TFO, only its RTT
>>>> performance.
>>>> In fact, when TFO is not available neither between client and proxy, nor between
>>>> proxy and
>>>> server the SOCKSv6 RTT is still lower than SOCKSv4 and SOCKSv5. But TFO is
>>>> likely to be the most
>>>> common case in the future - Linux kernel has TFO client side on by default since
>>>> 3.12
>>>> (November 2013)[1], and it seems to be the default in all Android phones and
>>>> default
>>>> Linux installs.
>>> What happens with a legacy receiver?
>>>
>>> Joe
>> Legacy receiver will use plain TCP.
>
> No - a legacy receiver will interpret the SYN information as user 
> data, which there is no way to "undo".
>
> You can't know that you're not talking to a legacy receiver until you 
> receive the SYN-ACK. Even if you cache TFO availability, you could be 
> wrong - the endpoint could reboot or be replaced with a new endpoint, etc.
>
> Ultimately, the onus is on you to NEVER poison a TCP connection that 
> could be to a legacy receiver. That's a requirement in RFC793.
> Joe
>
I think there's a misunderstanding here. SOCKSv6 runs strictly on top of 
TCP. The "user data" to which we're referring is data meant to be 
relayed by the proxy to the server. The SYN's payload (both SOCKS 
request and said user data) is irrevocably part of the client-proxy data 
stream and we do not change it retroactively after learning that the 
proxy does not support TFO.

Vlad

v2.23.0 | Report a Bug | By Email