IETF Logo Mail Archive

Re: [tcpm] Exceeding value in MSS option?

Frode Kileng <frodek@tele.no> Mon, 26 October 2020 15:45 UTC

Return-Path: <frodek@tele.no>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E8E993A0C70 for <tcpm@ietfa.amsl.com>; Mon, 26 Oct 2020 08:45:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.345
X-Spam-Level:
X-Spam-Status: No, score=-2.345 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.247, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=tele.no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LMjgqOaoyNZx for <tcpm@ietfa.amsl.com>; Mon, 26 Oct 2020 08:45:36 -0700 (PDT)
Received: from gorgon.tele.no (gorgon.tele.no [IPv6:2001:700:800::70]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 644F73A0C96 for <tcpm@ietf.org>; Mon, 26 Oct 2020 08:45:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tele.no; s=20180731; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version :Date:Message-ID:From:References:Cc:To:Subject:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=6fWlGzCPYs3WpbqbBJ0/zjSp0IQ8LTKxoErkIf+LlLY=; b=S93dzls0MFkCIHtTF3t0adPYC4 orUnT7WUpQ/mFBz+yzKhh4o+xTSEQntZAa0H9UmsR8ywVsmblqd3xLcnI93mDbA2vSCfG4XiX2vzj QD9x7JCFrRIVIAO7AQmLHgkYMmAQTSg+45T+sviAybjd642CweGjc5gxQgSELC11lmwNDDjqjtIdI 5KahCGAW8WLMiPxi8EmnK1rVrcUDn5qa2XMJZNGfwXkPkOw9d+Y74xO1RFfwFxlyUByyMzy1hXt7W 5LGKq5n9I1uxMOpDGeSAcADny/ZuLxpLERRzOUbGCVlzSXRLZNzzKQ9Vt/JaGCwrqvq/kQ+EyXEig oq8zjn5A==;
Received: from pilt2.tele.no ([2001:700:800::21] helo=[127.0.0.1]) by gorgon.tele.no with esmtp (Exim 4.92) (envelope-from <frodek@tele.no>) id 1kX4gZ-0005Ee-GT; Mon, 26 Oct 2020 16:45:27 +0100
To: Joe Touch <touch@strayalpha.com>, Michael Tuexen <Michael.Tuexen@lurchi.franken.de>
Cc: "tcpm@ietf.org Extensions" <tcpm@ietf.org>
References: <9C8105AE-483B-463F-8EBC-D00199974976@lurchi.franken.de> <64E62006-FF20-42E0-83CB-12C622135251@strayalpha.com>
From: Frode Kileng <frodek@tele.no>
Message-ID: <4b50b01f-1e39-82c5-1488-1063ef4f0066@tele.no>
Date: Mon, 26 Oct 2020 16:45:27 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.3.1
MIME-Version: 1.0
In-Reply-To: <64E62006-FF20-42E0-83CB-12C622135251@strayalpha.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/XwTcm1cz8To8qNlF_dD9DG9dD0U>
Subject: Re: [tcpm] Exceeding value in MSS option?
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Oct 2020 15:45:41 -0000

On 26/10/2020 15:24, Joe Touch wrote:
>> On Oct 26, 2020, at 2:35 AM, Michael Tuexen <Michael.Tuexen@lurchi.franken.de> wrote:
>>
>>> On 26. Oct 2020, at 08:52, Frode Kileng <frodek@tele.no> wrote:
>>>
>>>
>>> On 23/10/2020 17:11, Joseph Touch wrote:
>>>>>> On Oct 23, 2020, at 1:37 AM, Frode Kileng <frodek@tele.no <mailto:frodek@tele.no>> wrote:
>>>>>>
>>>>>> Although maybe not  a "general problem",  a study of MSS middlebox manipluation in  23 European and Asian mobile networks did reveal some issues:
>>>>>>
>>>>>> - 20 of 23 networks always inserts MSS.
>>>> That IS a general problem, FWIW.
>>>>
>>>> Besides being published, it should also be reported to the operators of those networks as violating TCP specs.
>>> Do you mean as in "layering violation" or is it explicitly stated in an RFC that MSS clamping is not allowed.
>> I think we should differentiate two issues:
>> (a) a middlebox which reduces the MSS already in an SYN/SYN-ACK segement.
>> (b) a middlebox which adds an MSS option, which wasn't there in the SYN/SYN-ACK segment.
> You can if you want; I do not. Both are violations of TCP processing, whose headers aren’t permitted to be altered in flight. Saying it’s for the good of the endpoints doesn’t change the issue that it should be reported and fixed as an error.
>
> If TCP is given an MSS by the other end of a connection and packets don’t get through, it can always lower the segment sizes it sends - the is what PLPMTUD does.

I think there may be other more important fights out there than 
convincing ~90% of the world mobile network operators and their vendors 
that a practice solving potential black-holing and typically improves 
performance should stop because it's a layering violation. For example 
that 2/3rd of the mobile networks I tested have a TCP Proxy and over 70% 
of such networks breaks MPTCP, TFO or ECN.


Regards

Frode Kileng

v2.23.0 | Report a Bug | By Email