IETF Logo Mail Archive

Re: [tcpm] Exceeding value in MSS option?

Mirja Kuehlewind <mirja.kuehlewind@ericsson.com> Tue, 20 October 2020 12:56 UTC

Return-Path: <mirja.kuehlewind@ericsson.com>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3238A3A0AAD for <tcpm@ietfa.amsl.com>; Tue, 20 Oct 2020 05:56:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Wq4CYT9BDHkj for <tcpm@ietfa.amsl.com>; Tue, 20 Oct 2020 05:56:35 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2051.outbound.protection.outlook.com [40.107.20.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DEF943A0AAA for <tcpm@ietf.org>; Tue, 20 Oct 2020 05:56:34 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Vuk4cvsf1sGV3JZLMDMutENyJvGxJzIPgzuV+lWJC9nElS+mYuMqu2pi9E6iwzN+w8FvSjZ06o8VmciXQWHu+Z6UByLIo5p5Bg/zTRiqpV/zVtFr4XFqcALSBNXcOtPzM/Fc0I6o7l4WwxT+yQ7G8i0rRidbYQnJzPy1AmMvE99AZOFdocEsbRFzM22iuVSwEkVIsreYhAEahu497a2jvfOFWrBwDY0C4lq4ksJFcREameVB0EnTHRMpJxJz71SuM0gtG/hjNJG/3IChqLEs3oKVvaQjU1rkrUGEV7NTuklCKRQSI+wcM72RsaBYPn9/MIl/6UMxs4VrDjjYfekimw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=cjaUClaXZ9MkPoJQ3JJf40kvcnBIoDopqZrXz9ZOh+0=; b=TNxGldN90uAke+lFePkMbkZU45KiR/ELuD706yxbWoRB8dAbxB3cxXmNLpL6OL36gjzFM/iclmhXRfepW7Sv8O0gcAmLaL7rUzsYJ5vw7v5BeN70AyXeiK/Uo2qiZhqvq/yGW80gBC+WEhucvvSyOuN9aSbZktm0Ambrrq0qoWAdmpSSQivhD375uAZPsCDBmyA5nUJ6QH7+mU1+5vcPr5vI24wvbVEWmL1RbE1gPDl71A/+d0/WcVVikNburgXi1L89B4rgtVU5DvDtxXPemuJ6wijK51tDW+olA4J8nol3BIP6uFzPkTzI8O/Xb4Q77eipeaIRDbyKcLavveXv+Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=cjaUClaXZ9MkPoJQ3JJf40kvcnBIoDopqZrXz9ZOh+0=; b=cy7KntghBNXg7jTNcDuJF6N4rIK9QUT7067rC4fcPZZzQ7U7mwE81o0Eeg38/HUd3VhS4GRV2vGpAq/eBVoT54x3jqs/XRk7iTX4Y1OcvijgBX0zEPXIFnPLBgnW8cKVvR5qhKOOdtCeVQRxOp3cZEl/1MCVPgA1woXWjzDZkEY=
Received: from AM0PR0702MB3713.eurprd07.prod.outlook.com (2603:10a6:208:19::10) by AM0PR07MB4724.eurprd07.prod.outlook.com (2603:10a6:208:7a::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3499.11; Tue, 20 Oct 2020 12:56:32 +0000
Received: from AM0PR0702MB3713.eurprd07.prod.outlook.com ([fe80::9820:af8a:cdbc:73b0]) by AM0PR0702MB3713.eurprd07.prod.outlook.com ([fe80::9820:af8a:cdbc:73b0%7]) with mapi id 15.20.3499.017; Tue, 20 Oct 2020 12:56:30 +0000
From: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>
To: Gorry Fairhurst <gorry@erg.abdn.ac.uk>, Martin Duke <martin.h.duke@gmail.com>, "tcpm@ietf.org Extensions" <tcpm@ietf.org>
Thread-Topic: [tcpm] Exceeding value in MSS option?
Thread-Index: AQHWpk1JHhzQC0EVBEuWzc7YdR1mRamgNS6AgABgmYA=
Date: Tue, 20 Oct 2020 12:56:30 +0000
Message-ID: <BB0640E4-C7A9-4E1C-9F29-BD373A220BAB@ericsson.com>
References: <CAM4esxQzydPBTjVQvtp3766mCH5L65LdRSkFzQkdeKgUfhKacA@mail.gmail.com> <bbb92279-70d1-57ef-1c08-7ebe3b7f671e@erg.abdn.ac.uk>
In-Reply-To: <bbb92279-70d1-57ef-1c08-7ebe3b7f671e@erg.abdn.ac.uk>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.42.20101102
authentication-results: erg.abdn.ac.uk; dkim=none (message not signed) header.d=none;erg.abdn.ac.uk; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [79.209.200.72]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d91f52b4-0dcb-4abc-12a8-08d874f790ea
x-ms-traffictypediagnostic: AM0PR07MB4724:
x-microsoft-antispam-prvs: <AM0PR07MB47247AFCEE3D49E836C01D00F41F0@AM0PR07MB4724.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 8OqhDI+X/RUm0CKpr2VPvMIYKP3+pnvwF6KeaZV8pG9YhzyPFSCUZtCFq/FBba6gB4gvQdBeeCQGpo38gUQo0IT5fkli1mHa/qGrwG4tAL3COJLGEdmgH9n0yLBtZrnojTNDAd7IhiD+WtAYdSfcye4xt8rxbEWCH+UGGsSI3mCV6c9F0J9HJJQu/D0405KvzyJhFMsuiwicTEebmY87pAm+LWUtEn5Ho2bPvO9aqyiz4tSIDedJy7zOfWR+GrB8UC3MsBwJu995GW9X/Q4BYd4F6rwfnLVNVDqs2Pmpacks0sqzrVuxQtWHvjZ85O9VVCqUc66Ey25bOslD2iI0ZuCH/Fi60LWRDifTw5t2DcTlGHt8p9W9QwbmSC55oi1xb/vp2ZAol391Bj529KDfR4wWQEPB5i6DNp4fIt+mkPA0DJeY1gdUakmfRbr2C9qs1CLihG30VUBTQcmq4rFssQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR0702MB3713.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(366004)(376002)(346002)(39860400002)(136003)(44832011)(36756003)(83380400001)(166002)(66574015)(110136005)(26005)(86362001)(2616005)(966005)(6512007)(478600001)(296002)(316002)(71200400001)(6506007)(53546011)(6486002)(8676002)(186003)(66476007)(66556008)(64756008)(66946007)(66446008)(2906002)(8936002)(76116006)(5660300002)(33656002)(15398625002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_BB0640E4C7A94E1C9F29BD373A220BABericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR0702MB3713.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d91f52b4-0dcb-4abc-12a8-08d874f790ea
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Oct 2020 12:56:30.8569 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: VeA/M1jltU9xiLQUn7kjCpdWKHblyFDz1oD76iVtQ4+2XkLyhJJRRm+Tt95ITWeBm5DMRtvUd9aH9+DTDip+cACcIA6aI8EZ1atbHJ86e0s=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR07MB4724
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/D9mi2NGsG6WnFDxxDNdW0WLbilE>
Subject: Re: [tcpm] Exceeding value in MSS option?
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Oct 2020 12:56:37 -0000

Hi Martin, hi Gorry,

I think Gorry’s paper does indicate that at least for MMS there are middleboxes that add this option. However, I don’t think there is evidence that there is a general problem about middlebox adding option (rather than removing them). I also reviewed the draft in tsv-art review and given that they say it’s actually not recommended and should only be done with care, I thought that text is okay. However, I guess there is room to improve the wording and explain a bit better, when and if this might be consider or not.

Mirja


From: tcpm <tcpm-bounces@ietf.org> on behalf of Gorry Fairhurst <gorry@erg.abdn.ac.uk>
Date: Tuesday, 20. October 2020 at 11:13
To: Martin Duke <martin.h.duke@gmail.com>, "tcpm@ietf.org Extensions" <tcpm@ietf.org>
Subject: Re: [tcpm] Exceeding value in MSS option?

On 19/10/2020 20:22, Martin Duke wrote:
Hello tcpm,

Section 4.2.2.6 of RFC 1122<https://datatracker.ietf.org/doc/html/rfc1122#page-85> is pretty clear that the TCP sender MUST consider all IP and TCP options when sizing payloads with respect to the advertised MSS option.

I'm reviewing a document<https://datatracker.ietf.org/doc/html/draft-ietf-lwig-tcp-constrained-node-networks-11#section-4.1.1> that advises that some endpoints may want to reduce their advertised MSS on IPv6 connections in case the peer isn't respecting that guidance. Is noncompliance with this provision a problem in the internet? Are there middleboxes injecting options that cause PMTU drops or fragmentation?

I have not heard of such problems, but thought I'd check with the community to see if this precaution makes any sense at all.

Thanks,
Martin




_______________________________________________

tcpm mailing list

tcpm@ietf.org<mailto:tcpm@ietf.org>

https://www.ietf.org/mailman/listinfo/tcpm

Hi Martin,

While a server advertising a restricted MSS clearly reduces the TCP packet size, it seems to me to be a rather poor solution to the problem in general, and only works for TCP.

If  it wants to say some advices, I think the IETF needs to consider current practice and the implications of this. I suspect the practice of clamping the IPv6 MSS at the server is already quite common, especially in IPv6 servers offering web content. MSS Clamping on-path is also common, but anyway I see some servers advertise an MSS much lower than permitted by the MTU. For example, see the section on MSS handling here:

https://tma.ifip.org/2018/wp-content/uploads/sites/3/2018/06/tma2018_paper57.pdf<https://protect2.fireeye.com/v1/url?k=c964a91f-97c41371-c964e984-866038973a15-4c538007322d8392&q=1&e=8b72cbc2-683a-493b-a075-c9df067b88f7&u=https%3A%2F%2Ftma.ifip.org%2F2018%2Fwp-content%2Fuploads%2Fsites%2F3%2F2018%2F06%2Ftma2018_paper57.pdf>

This might be because of the reasons for this are cited in RFC8900.

Gorry

v2.23.0 | Report a Bug | By Email