Re: [tcpm] ICMPv6 Error Handling at TCP draft-fujisaki-tcpm-icmpv6-reaction-00.txt
Fernando Gont <fernando@gont.com.ar> Sun, 18 March 2007 08:52 UTC
Return-path: <tcpm-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HSr7t-0005c7-I3; Sun, 18 Mar 2007 04:52:29 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HSr7s-0005c2-Sf for tcpm@ietf.org; Sun, 18 Mar 2007 04:52:28 -0400
Received: from smtp1.xmundo.net ([201.216.232.80]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1HSr7r-0005Ny-Ay for tcpm@ietf.org; Sun, 18 Mar 2007 04:52:28 -0400
Received: from venus.xmundo.net (venus.xmundo.net [201.216.232.56]) by smtp1.xmundo.net (Postfix) with ESMTP id A3EE1F0C44B; Sun, 18 Mar 2007 05:52:26 -0300 (ART)
Received: from fgont.gont.com.ar (113-165-231-201.fibertel.com.ar [201.231.165.113]) (authenticated bits=0) by venus.xmundo.net (8.13.8/8.12.11) with ESMTP id l2I8q0ZF028138; Sun, 18 Mar 2007 05:52:12 -0300
Message-Id: <7.0.1.0.0.20070318041131.07eb4868@gont.com.ar>
X-Mailer: QUALCOMM Windows Eudora Version 7.0.1.0
Date: Sun, 18 Mar 2007 05:00:37 -0300
To: Arifumi Matsumoto <arifumi@nttv6.net>, tcpm@ietf.org
From: Fernando Gont <fernando@gont.com.ar>
Subject: Re: [tcpm] ICMPv6 Error Handling at TCP draft-fujisaki-tcpm-icmpv6-reaction-00.txt
In-Reply-To: <45F0E432.5040401@nttv6.net>
References: <45F0E432.5040401@nttv6.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-2.0.2 (venus.xmundo.net [201.216.232.56]); Sun, 18 Mar 2007 05:52:19 -0300 (ART)
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 8b431ad66d60be2d47c7bfeb879db82c
Cc:
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
Errors-To: tcpm-bounces@ietf.org
At 01:36 09/03/2007, Arifumi Matsumoto wrote:
>we've posted an I-D that defines TCP reactions(soft/hard) to ICMPv6
>error messages.
>This document translates ICMPv4 codes and into ICMPv6 codes in order to define
>soft error / hard error classification for ICMPv6 codes.
We have been talking about ICMP errors on this list for about three
years now. The direction the industry has taken is to get away from
tying a specific reaction (basically "abort the connection" or "do
nothing") to each error message type/code, regardless of e.g.,
connection state.
By translating ICMPv4 codes into ICMPv6 codes you'd basically be
moving ICMPv6 a number of years back in time. The ICMPv6 spec already
includes text that gives you freedom in how to respond to ICMPv6
error messages (e.g., abort a connection in a non-synchronized state
in response to an ICMP error message, or not abort the connection in
response to an error message when the connection is in any of the
synchronized states, or whatever). This freedom already lets you
implement the soft errors behaviour if you want to address the
problem of long delays between connection establishment attempts in
v6 scenarios, as described in the soft errors draft of this WG.
If you translate the ICMPv4 codes into ICMPv6 codes, then:
* For those scenarios in which the lack of v6 connectivity is
signaled by a so-called "soft error", you won't have solved anything
(as RFC1122 tells you not to abort the connection attempt).
* For conenctions in the synchronized states, the hard errors would
open the door to connection-reset attacks, as discussed in the icmp
attacks draft of this WG.
Implementations have been moving away from the strict type/code ->
{hard, soft} error classification since more than ten years ago. And
I honestly think it would be quite a challenge to get the industry
implement an ICMP error processing policy it has already decided not
to implement for ICMPv4.
Thanks,
--
Fernando Gont
e-mail: fernando@gont.com.ar || fgont@acm.org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
_______________________________________________
tcpm mailing list
tcpm@ietf.org
https://www1.ietf.org/mailman/listinfo/tcpm
- [tcpm] ICMPv6 Error Handling at TCP draft-fujisak… Arifumi Matsumoto
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Fernando Gont
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… (Tomohiro -INSTALLER- Fujisaki/藤崎 智宏 )
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Fernando Gont
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Arifumi Matsumoto
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Fernando Gont
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Arifumi Matsumoto
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Fernando Gont
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Arifumi Matsumoto
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… (Tomohiro -INSTALLER- Fujisaki/藤崎 智宏 )
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Fernando Gont
- Re: [tcpm] ICMPv6 Error Handling at TCP draft-fuj… Fernando Gont