Re: [tcpm] Progressing draft-ietf-tcpm-converters

Yuchung Cheng <ycheng@google.com> Mon, 03 June 2019 17:59 UTC

Return-Path: <ycheng@google.com>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 55B0F120108 for <tcpm@ietfa.amsl.com>; Mon, 3 Jun 2019 10:59:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.509
X-Spam-Level:
X-Spam-Status: No, score=-17.509 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3NOKQCuTBQwz for <tcpm@ietfa.amsl.com>; Mon, 3 Jun 2019 10:59:23 -0700 (PDT)
Received: from mail-wr1-x432.google.com (mail-wr1-x432.google.com [IPv6:2a00:1450:4864:20::432]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5751612072D for <tcpm@ietf.org>; Mon, 3 Jun 2019 10:59:23 -0700 (PDT)
Received: by mail-wr1-x432.google.com with SMTP id x4so13070434wrt.6 for <tcpm@ietf.org>; Mon, 03 Jun 2019 10:59:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=c5RzgHYOrpbf92lR62sgHy0hcnn0/T19up/yDFr60z0=; b=vaY9kHcwihTcrshP+y4zf2dXn9HWfQGU8HW9JDQarJgfreTFZZMAE2GwpeFmoYfrUF dmAkZW+WV2HL74oXOmTYNojTeL+eyzSnUnGZlnUa7fxTMICY1d8dqpKzn4oG8Oa/2OmZ GRlwiBTR0TkvU9di8vwlNDJtsYD9fr/USYxXHfCp0lgpDls+GKarCQVhWES3nlKDylgQ cv7TPiN45vuBBrfrHgcbtTQmVmYGpXLBdkb/xJ+wks3Thw0xeTrLaPXPu46dyk7DeARe BO4QCAr+P0DtuiuU5E2XAP0/TRzqS908zAz0yZegi400TsyvlByfYNDOZ5wjF8So5uiV 9QrA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=c5RzgHYOrpbf92lR62sgHy0hcnn0/T19up/yDFr60z0=; b=dCX95rnCbO/IvFekNJh3XTfriBV7Tj/aWLcixfvYx9mNVNzDtzFvzbOXtyFqEyJoyE 4GaIylLq8Xo7EXLNasr5OJPmS71DjbHHOIraXnctu0tFi9dgYM/nn2MopBWv4w+ciImP 7SpjHu+HLn9p2/CQkcGfPpGOHp9nH1ZV+78F+u2KUaHkilJuVlSDWEXSQo5iW0bjbTuD u6GfZh2pZr2J4MYia1JM+vMq63qGjBAyHbibiFQwEXvFm6kuFoZn95nZ+5pODVc0ckYF IX/kKh3mQ5PcMphEc1mzlDYiV8S+zY5Rd3/NYa1+ELmmC3EidXfoCNa8U6qdWro2dcFq 1Dxw==
X-Gm-Message-State: APjAAAUmPrWR2Ob8d2scvrLaFlxzBZWtTwedRtU/bGBDZZHcN0Cr9Gjb +Qm2dyFwBQcNOdMggmnlSLa2qte7JN+DqrFe81RvGQmpWpo=
X-Google-Smtp-Source: APXvYqx/9VFaHLg9cB9dpoIdnS9QFWW15p7/aDRTUPUMXtxAWvzv8m5SSEMMaT3RyHM+FxdY3u7yj48EbmxmRoIRnOY=
X-Received: by 2002:adf:c606:: with SMTP id n6mr16939252wrg.62.1559584761260; Mon, 03 Jun 2019 10:59:21 -0700 (PDT)
MIME-Version: 1.0
References: <F92BF1E2-60EB-4E48-84A4-1C82589A056A@tessares.net> <CAK6E8=f-TAUWs3x4P9XHUHbvRhOqBhH9GU910Yoy5v_0vzUxAQ@mail.gmail.com> <A0496204-331F-4D8E-A1C1-83D3E1CE759B@tessares.net> <CAK6E8=e0RVzfRA0j=y8EZK0HonH6vaMBL6m-U3L+8cNO-zpqqw@mail.gmail.com> <787AE7BB302AE849A7480A190F8B93302EA8E8EF@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <CAK6E8=cDrLB0Oop2act7jCe_CYnNd2gJZU06ZHg_zJXXh_VOXg@mail.gmail.com> <MW2PR2101MB1049E8330D990998817F1A82B6020@MW2PR2101MB1049.namprd21.prod.outlook.com> <787AE7BB302AE849A7480A190F8B93302EA8F7C3@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <MW2PR2101MB10493385260DA9D53B92B1A4B61E0@MW2PR2101MB1049.namprd21.prod.outlook.com> <4258DCF5-1588-4B97-9C05-F0722E053072@tessares.net> <MW2PR2101MB1049AF12221F9EE37133F603B61F0@MW2PR2101MB1049.namprd21.prod.outlook.com> <3d979013-16d3-689f-45cb-e5b007fe7f13@wizmail.org>
In-Reply-To: <3d979013-16d3-689f-45cb-e5b007fe7f13@wizmail.org>
From: Yuchung Cheng <ycheng@google.com>
Date: Mon, 03 Jun 2019 10:58:43 -0700
Message-ID: <CAK6E8=fjfk=EMfvRL_eqco3-Siz1fHN46hAANwspDzK8vf+1kA@mail.gmail.com>
To: Jeremy Harris <jgh@wizmail.org>
Cc: "tcpm@ietf.org Extensions" <tcpm@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/XHfMMqaqTrNzP2x6_yWLYY8czu4>
Subject: Re: [tcpm] Progressing draft-ietf-tcpm-converters
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Jun 2019 17:59:25 -0000

On Mon, Jun 3, 2019 at 7:37 AM Jeremy Harris <jgh@wizmail.org> wrote:
>
> On 29/05/2019 17:27, Praveen Balasubramanian wrote:
> > 2. Ability to RECEIVE data in SYN payload on server. This is only supported on all OS *after* 3WHS is completed. This is per RFC 793. The only exception is if TFO API is used, and then if cookie is validated the application will  receive early-data. There is no way to retrieve early data otherwise.
>
> There is a bit in the tcp_fastopen sysctl for Linux described so:
>
>     0x200: (server) accept data-in-SYN w/o any cookie option present.
>
> It doesn't say explicitly that the data is presented to the application
> (neither does the doc for the with-cookie server TFO control bit).
> Does anybody know whether it is?
I am not sure what you mean - what is "it" in your last question?

when this option is used (0x200), TFO will accept the data in SYN w/o
or w/ any cookie. Accept(2) will return in 3WHS. but note that SYN-ACK
is returned immediately upon receiving SYN-data in this mode. so this
mode will not support the latest tcpm-converter proposal where SYN-ack
is delayed upon (in-data) cookie verification and proxy 3WHS
completion. This change requires non-trivial implementation for a
listener handling millions of requests in Linux.

>
> --
> Cheers,
>   Jeremy
>
> _______________________________________________
> tcpm mailing list
> tcpm@ietf.org
> https://www.ietf.org/mailman/listinfo/tcpm