IETF Logo Mail Archive

Re: [multipathtcp] Negotiating TCP extensions in the SYN-SYN/ACK

Michio Honda <micchie@sfc.wide.ad.jp> Fri, 08 March 2013 22:12 UTC

Return-Path: <micchie@sfc.wide.ad.jp>
X-Original-To: multipathtcp@ietfa.amsl.com
Delivered-To: multipathtcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA71721F85AF for <multipathtcp@ietfa.amsl.com>; Fri, 8 Mar 2013 14:12:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A29IBB2anJqR for <multipathtcp@ietfa.amsl.com>; Fri, 8 Mar 2013 14:12:56 -0800 (PST)
Received: from mail.sfc.wide.ad.jp (mail.sfc.wide.ad.jp [IPv6:2001:200:0:8803:203:178:142:146]) by ietfa.amsl.com (Postfix) with ESMTP id 2CC7021F855A for <multipathtcp@ietf.org>; Fri, 8 Mar 2013 14:12:55 -0800 (PST)
Received: from x1-bge.casa (unknown [78.134.62.250]) by mail.sfc.wide.ad.jp (Postfix) with ESMTPSA id E9A5E278088; Sat, 9 Mar 2013 07:12:52 +0900 (JST)
Mime-Version: 1.0 (Apple Message framework v1283)
Content-Type: text/plain; charset="us-ascii"
From: Michio Honda <micchie@sfc.wide.ad.jp>
In-Reply-To: <513A2A8D.7030706@isi.edu>
Date: Fri, 08 Mar 2013 23:06:46 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <451BAAC1-21C1-44A0-B2E6-CBED384185F1@sfc.wide.ad.jp>
References: <4371274.S5HZgQNjGG@cpaasch-mac> <513A011E.8020708@isi.edu> <CADRHXGunWDUFo7P1fm9NaqrEG2NrHJPrv3ADgWHKu=O2tC31xQ@mail.gmail.com> <513A2A8D.7030706@isi.edu>
To: Joe Touch <touch@isi.edu>
X-Mailer: Apple Mail (2.1283)
Cc: MultiPath TCP - IETF WG <multipathtcp@ietf.org>
Subject: Re: [multipathtcp] Negotiating TCP extensions in the SYN-SYN/ACK
X-BeenThere: multipathtcp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multi-path extensions for TCP <multipathtcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/multipathtcp>
List-Post: <mailto:multipathtcp@ietf.org>
List-Help: <mailto:multipathtcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Mar 2013 22:12:56 -0000

Just a note, we should distinguish middleboxes from buggy endpoints.
Exchanging options on data packets just confirms that a middlebox does not affect options.
Preventing from such a buggy endpoint should happen independently, for example, defining a rule like "Returning value of the option MUST differ from the original one".

Cheers,
- Michio

On Mar 8, 2013, at 7:14 PM, Joe Touch wrote:

> 
> 
> On 3/8/2013 10:10 AM, Mark Handley wrote:
>> On 8 March 2013 15:17, Joe Touch <touch@isi.edu> wrote:
>>>> What they seem to do is to NOP all the undesired known options and echo
>>>> the unknown ones in the SYN/ACK.
>>> 
>>> 
>>> That's easy to debug - it's a major error of their stack, and needs to be
>>> corrected.
>> 
>> I think we're all agreed on that.
>> 
>>> There is no reason to address this in mptcp or any other option.
>>> 
>>> 
>>>> This shows how important it is that TCP extensions should not only
>>>> rely on the SYN-SYN/ACK exchange to negotiate support for a new TCP
>>>> option.
>>> 
>>> 
>>> I disagree; it shows the impact of an incorrect implementation. "Be generous
>>> in what you receive" doesn't include this sort of case.
>> 
>> Unfortunately that's the same reason ECN is still largely undeployed
>> 15 years on - new functionality really must not cause previously
>> working things to break, even if other people have done stupid things.
>>  Otherwise you get condemned in the real world as undeployable and
>> join the very large stack of other undeployed RFCs.
>> 
>> MPTCP gets this right, though not for this reason - the same check is
>> needed for option-stripping middleboxes on the return path to avoid
>> the server thinking something has been negotiated and the client
>> thinking it has not.
> 
> Well, I'd rather not see new TCP options expect to have to have an active challenge-response *solely* to get around this sort of error.
> 
> Joe
> 
> 
> _______________________________________________
> multipathtcp mailing list
> multipathtcp@ietf.org
> https://www.ietf.org/mailman/listinfo/multipathtcp

v2.23.0 | Report a Bug | By Email