Re: [quicwg/base-drafts] Do not allow ICMP PTB to increase PMTU (#2161)
Gorry Fairhurst <notifications@github.com> Fri, 14 December 2018 17:07 UTC
Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CDD0130DE8 for <quic-issues@ietfa.amsl.com>; Fri, 14 Dec 2018 09:07:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.459
X-Spam-Level:
X-Spam-Status: No, score=-4.459 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8YPs99XtQTTD for <quic-issues@ietfa.amsl.com>; Fri, 14 Dec 2018 09:07:51 -0800 (PST)
Received: from o7.sgmail.github.com (o7.sgmail.github.com [167.89.101.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF3E9126BED for <quic-issues@ietf.org>; Fri, 14 Dec 2018 09:07:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:in-reply-to:references:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=zHh5RmDLu7j10xzJvF3T+kKR5S4=; b=wLCcNeIyCEgL0NwZ CQ6v47bLiMdVXLaMhbULOvMQsn1Cnjgn1b4EuEQeo6o3d5lhW36hOzOpQFqAl/4o pdDGMpvtB2OwJ/9NKZVzdAiUEIMPp8xLdYB18j0yb5HE/5ctn0ZbG4+s1rC1j47G d7iGPBblsb1mUf5QZQN/jdOmp5A=
Received: by filter0148p1iad2.sendgrid.net with SMTP id filter0148p1iad2-28611-5C13E35F-7 2018-12-14 17:07:43.067668254 +0000 UTC m=+68229.081773107
Received: from github-lowworker-1c220e1.cp1-iad.github.net (unknown [192.30.252.44]) by ismtpd0025p1iad2.sendgrid.net (SG) with ESMTP id YxjzbL_-RYa3xpjRwv9x7A for <quic-issues@ietf.org>; Fri, 14 Dec 2018 17:07:42.983 +0000 (UTC)
Received: from github.com (localhost [127.0.0.1]) by github-lowworker-1c220e1.cp1-iad.github.net (Postfix) with ESMTP id 007721612B8 for <quic-issues@ietf.org>; Fri, 14 Dec 2018 09:07:43 -0800 (PST)
Date: Fri, 14 Dec 2018 17:07:43 +0000
From: Gorry Fairhurst <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4aba369b9815d6c8f71ee2847d8a99dcdcb39ce801e92cf00000001182ba55e92a169ce174c2f88@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/2161/c447388870@github.com>
In-Reply-To: <quicwg/base-drafts/pull/2161@github.com>
References: <quicwg/base-drafts/pull/2161@github.com>
Subject: Re: [quicwg/base-drafts] Do not allow ICMP PTB to increase PMTU (#2161)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5c13e35ef2797_4df63fb9f14d45b4391970"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: gorryfair
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak09B9isV+Yb36U6+fp9/xlPi4Y+rLibfU+JW6 e7UKZOE0lOr9HTy0MdAwhNa7EYY5dp97B2o28PiLvlknZ1iyZf0e1jc/JueGqZchvINdXaLiw/95P9 IAfklWv3Uvr85QFOPicMBSwxxc2bom+V/DLsDTEK3JIzL4BWdS8zx2v/7sBZdla7w7iQ0mQzLrmVkJ o=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/u_xl7zeEuOsODKYlImBBoN2J2JI>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Dec 2018 17:07:53 -0000
On 14/12/2018, 16:30, Magnus Westerlund wrote: > > *@gloinul* commented on this pull request. > > ------------------------------------------------------------------------ > > In draft-ietf-quic-transport.md > <https://github.com/quicwg/base-drafts/pull/2161#discussion_r241813264>: > > > @@ -3139,7 +3139,8 @@ attacks that successfully guess the IP address 3-tuple and reduce the PMTU to a > bandwidth-inefficient value. > > An endpoint MUST ignore an ICMP message that claims the PMTU has decreased below > -1280 bytes. > +1280 bytes. And endpoint MUST ignore an ICMP message that attempts to increase > +PMTU, unless the ICMP message was received in response to a PMTU probe packet. > > Wouldn't the best thing here be to tweak the next paragraph to say > that any reactions to ICMP messages should be validated and DPLPMTUD > do specify how to do such validation both for increasing and > decreasing the PMTU? > > — > You are receiving this because you commented. > Reply to this email directly, view it on GitHub > <https://github.com/quicwg/base-drafts/pull/2161#discussion_r241813264>, > or mute the thread > <https://github.com/notifications/unsubscribe-auth/AHC1koQJq3mAAm889Dnr6rCmDGrSvVfBks5u49IugaJpZM4ZSdss>. > I think terminology needs to be correct. It was really hard to get the terminology consistent in DPLPMTUD, and since QUIC has not (yet) adopted the same language, this may be tricky to wordsmith, but here is what I suggest: Put simply, I would suggest a PTB message can NEVER increase the PLPMTU, even when it reports a value greater than the PLPMTU after a probe message. Unless someone explains different, I will continue to assert that PTB messages MUST be validated - at least the IP addresses, transport, and ports. Accepting arbitrary information to control the transport isn't a good start to building a useful protocol. I have reasons to suggest that endpoints also not to increase their PLPMTU based on the PTB reported size: (1) Because soemtimes the reported MTU size can be garbled, and I would encourage being conservative to avoid black-holing. (2) Because the sender still doesn't know an actual segment larger than the PLPMTU would transit the end to end path. (3) A path that is incosnistent in forwarding would result in more corner cases if you start reacting to PTB signals, relying on actual probes is simpler. Therefore, I would trigger a probe for the reported size. That's what DPLPMTUD currentl says (you could refer to that spec to explain this.) Gorry -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/pull/2161#issuecomment-447388870
- [quicwg/base-drafts] Do not allow ICMP PTB to inc… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Martin Thomson
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Gorry Fairhurst
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Magnus Westerlund
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Gorry Fairhurst
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Igor Lubashev
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Martin Thomson
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Magnus Westerlund
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… ianswett
- Re: [quicwg/base-drafts] Do not allow ICMP PTB to… Martin Thomson