Re: [multipathtcp] Negotiating TCP extensions in the SYN-SYN/ACK
Michio Honda <micchie@sfc.wide.ad.jp> Fri, 08 March 2013 22:12 UTC
Return-Path: <micchie@sfc.wide.ad.jp>
X-Original-To: multipathtcp@ietfa.amsl.com
Delivered-To: multipathtcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA71721F85AF for <multipathtcp@ietfa.amsl.com>; Fri, 8 Mar 2013 14:12:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A29IBB2anJqR for <multipathtcp@ietfa.amsl.com>; Fri, 8 Mar 2013 14:12:56 -0800 (PST)
Received: from mail.sfc.wide.ad.jp (mail.sfc.wide.ad.jp [IPv6:2001:200:0:8803:203:178:142:146]) by ietfa.amsl.com (Postfix) with ESMTP id 2CC7021F855A for <multipathtcp@ietf.org>; Fri, 8 Mar 2013 14:12:55 -0800 (PST)
Received: from x1-bge.casa (unknown [78.134.62.250]) by mail.sfc.wide.ad.jp (Postfix) with ESMTPSA id E9A5E278088; Sat, 9 Mar 2013 07:12:52 +0900 (JST)
Mime-Version: 1.0 (Apple Message framework v1283)
Content-Type: text/plain; charset="us-ascii"
From: Michio Honda <micchie@sfc.wide.ad.jp>
In-Reply-To: <513A2A8D.7030706@isi.edu>
Date: Fri, 08 Mar 2013 23:06:46 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <451BAAC1-21C1-44A0-B2E6-CBED384185F1@sfc.wide.ad.jp>
References: <4371274.S5HZgQNjGG@cpaasch-mac> <513A011E.8020708@isi.edu> <CADRHXGunWDUFo7P1fm9NaqrEG2NrHJPrv3ADgWHKu=O2tC31xQ@mail.gmail.com> <513A2A8D.7030706@isi.edu>
To: Joe Touch <touch@isi.edu>
X-Mailer: Apple Mail (2.1283)
Cc: MultiPath TCP - IETF WG <multipathtcp@ietf.org>
Subject: Re: [multipathtcp] Negotiating TCP extensions in the SYN-SYN/ACK
X-BeenThere: multipathtcp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multi-path extensions for TCP <multipathtcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/multipathtcp>
List-Post: <mailto:multipathtcp@ietf.org>
List-Help: <mailto:multipathtcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Mar 2013 22:12:56 -0000
Just a note, we should distinguish middleboxes from buggy endpoints. Exchanging options on data packets just confirms that a middlebox does not affect options. Preventing from such a buggy endpoint should happen independently, for example, defining a rule like "Returning value of the option MUST differ from the original one". Cheers, - Michio On Mar 8, 2013, at 7:14 PM, Joe Touch wrote: > > > On 3/8/2013 10:10 AM, Mark Handley wrote: >> On 8 March 2013 15:17, Joe Touch <touch@isi.edu> wrote: >>>> What they seem to do is to NOP all the undesired known options and echo >>>> the unknown ones in the SYN/ACK. >>> >>> >>> That's easy to debug - it's a major error of their stack, and needs to be >>> corrected. >> >> I think we're all agreed on that. >> >>> There is no reason to address this in mptcp or any other option. >>> >>> >>>> This shows how important it is that TCP extensions should not only >>>> rely on the SYN-SYN/ACK exchange to negotiate support for a new TCP >>>> option. >>> >>> >>> I disagree; it shows the impact of an incorrect implementation. "Be generous >>> in what you receive" doesn't include this sort of case. >> >> Unfortunately that's the same reason ECN is still largely undeployed >> 15 years on - new functionality really must not cause previously >> working things to break, even if other people have done stupid things. >> Otherwise you get condemned in the real world as undeployable and >> join the very large stack of other undeployed RFCs. >> >> MPTCP gets this right, though not for this reason - the same check is >> needed for option-stripping middleboxes on the return path to avoid >> the server thinking something has been negotiated and the client >> thinking it has not. > > Well, I'd rather not see new TCP options expect to have to have an active challenge-response *solely* to get around this sort of error. > > Joe > > > _______________________________________________ > multipathtcp mailing list > multipathtcp@ietf.org > https://www.ietf.org/mailman/listinfo/multipathtcp
- [multipathtcp] Negotiating TCP extensions in the … Christoph Paasch
- Re: [multipathtcp] Negotiating TCP extensions in … Joe Touch
- Re: [multipathtcp] Negotiating TCP extensions in … Mark Handley
- Re: [multipathtcp] Negotiating TCP extensions in … Joe Touch
- Re: [multipathtcp] Negotiating TCP extensions in … Michio Honda
- Re: [multipathtcp] Negotiating TCP extensions in … Joe Touch