Re: [Taps] TAPS Transports and ICMP
Joe Touch <touch@isi.edu> Wed, 15 July 2015 18:24 UTC
Return-Path: <touch@isi.edu>
X-Original-To: taps@ietfa.amsl.com
Delivered-To: taps@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD1531B33C9 for <taps@ietfa.amsl.com>; Wed, 15 Jul 2015 11:24:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.91
X-Spam-Level:
X-Spam-Status: No, score=-6.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KTu-35dAIwhK for <taps@ietfa.amsl.com>; Wed, 15 Jul 2015 11:24:38 -0700 (PDT)
Received: from vapor.isi.edu (vapor.isi.edu [128.9.64.64]) (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6832E1B33CF for <taps@ietf.org>; Wed, 15 Jul 2015 11:24:38 -0700 (PDT)
Received: from [128.9.160.211] (mul.isi.edu [128.9.160.211]) (authenticated bits=0) by vapor.isi.edu (8.13.8/8.13.8) with ESMTP id t6FINupa017019 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Wed, 15 Jul 2015 11:23:57 -0700 (PDT)
Message-ID: <55A6A53C.3010009@isi.edu>
Date: Wed, 15 Jul 2015 11:23:56 -0700
From: Joe Touch <touch@isi.edu>
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: Karen Elisabeth Egede Nielsen <karen.nielsen@tieto.com>, Michael Tuexen <Michael.Tuexen@lurchi.franken.de>
References: <00597CB8-D128-408A-8F35-BA98CDF45A62@cisco.com> <55707211.8010609@isi.edu> <26B9DE0B-4D38-430D-A9A1-921CD0067C70@cisco.com> <5570988A.6040208@isi.edu> <97FD8853-7345-40E9-A523-8AF53FB2303B@lurchi.franken.de> <2b5eb97add78e6c5b3c91b94080479da@mail.gmail.com>
In-Reply-To: <2b5eb97add78e6c5b3c91b94080479da@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Archived-At: <http://mailarchive.ietf.org/arch/msg/taps/iLmlLDuxcV664U8JiVQUU49Zei0>
Cc: "Pal Martinsen (palmarti)" <palmarti@cisco.com>, taps@ietf.org, touch@isi.edu
Subject: Re: [Taps] TAPS Transports and ICMP
X-BeenThere: taps@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussions on Transport Services <taps.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/taps>, <mailto:taps-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/taps/>
List-Post: <mailto:taps@ietf.org>
List-Help: <mailto:taps-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/taps>, <mailto:taps-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jul 2015 18:24:39 -0000
On 7/15/2015 4:16 AM, Karen Elisabeth Egede Nielsen wrote: ... >>>> Any pitfalls with ICMP when doing SCTP? >>> >>> In many ways, SCTP subsumes similar requirements as TCP, but that's >>> probably buried in the SCTP docs. >> It is. See >> https://tools.ietf.org/html/rfc4960#appendix-C >> > > [Karen ] In this context then it is noteworthy to observe that SCTP defacto > API (spec or implementations, I know) > does not prescribe for that the SCTP transport passes information of > received ICMP messages (any kind/type/code) up to SCTP User. > Here SCTP is significantly different from UDP and TCP defacto APIs. > > For security reasons SCTP demands for hard reaction to receipt of protocol > unreachable, > but that is a protocol feature not an api issue. Agreed, however the other ways that SCTP doesn't pass validated ICMPs to the user seems like a mistake to me. In particular, destination unreachables can cause the SCTP connection to go into a dead state (mark the dest unreachable or increment the path error counter) without indicating anything to the user. This seems incorrect to me, given the number of other ways in which SCTP can shut down a connection (heartbeat failure, retransmission failre) and is supposed to pass that info to the user. So, IMO, this is a great example of why studying these APIs as abstractions is important and would have prevented this (IMO) oversight. Or can someone in the SCTP team explain why shutting connections down due to other reasons is a user signal but validated ICMP signals are not? Joe
- [Taps] TAPS Transports and ICMP Pal Martinsen (palmarti)
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Pal Martinsen (palmarti)
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Pal Martinsen (palmarti)
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Pal Martinsen (palmarti)
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Pal Martinsen (palmarti)
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Karen Elisabeth Egede Nielsen
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Karen Elisabeth Egede Nielsen
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Karen Elisabeth Egede Nielsen
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Karen Elisabeth Egede Nielsen
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Karen Elisabeth Egede Nielsen
- Re: [Taps] TAPS Transports and ICMP Michael Tuexen
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Joe Touch
- Re: [Taps] TAPS Transports and ICMP Karen Elisabeth Egede Nielsen