IETF Logo Mail Archive

Re: [tcpm] New Version Notification for draft-touch-tcpm-tcp-edo-01.txt

Joe Touch <touch@isi.edu> Fri, 23 May 2014 16:56 UTC

Return-Path: <touch@isi.edu>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B0F0F1A073E for <tcpm@ietfa.amsl.com>; Fri, 23 May 2014 09:56:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.851
X-Spam-Level:
X-Spam-Status: No, score=-4.851 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.651] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uOx864p9aYME for <tcpm@ietfa.amsl.com>; Fri, 23 May 2014 09:56:02 -0700 (PDT)
Received: from vapor.isi.edu (vapor.isi.edu [128.9.64.64]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 655021A0743 for <tcpm@ietf.org>; Fri, 23 May 2014 09:56:02 -0700 (PDT)
Received: from [128.9.160.166] (abc.isi.edu [128.9.160.166]) (authenticated bits=0) by vapor.isi.edu (8.13.8/8.13.8) with ESMTP id s4NGtidO011346 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Fri, 23 May 2014 09:55:45 -0700 (PDT)
Message-ID: <537F7D91.10802@isi.edu>
Date: Fri, 23 May 2014 09:55:45 -0700
From: Joe Touch <touch@isi.edu>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: Bob Briscoe <bob.briscoe@bt.com>
References: <20140425221257.12559.43206.idtracker@ietfa.amsl.com> <2586_1398464386_535ADF82_2586_915_1_535ADF56.9050106@isi.edu> <CF8D8E25-E435-4199-8FD6-3F7066447292@iki.fi> <5363AF84.8090701@mti-systems.com> <5363B397.8090009@isi.edu> <CAO249yeyr5q21-=e6p5azwULOh1_jUsniZ6YPcDYd69av8MMYw@mail.gmail.com> <DCC98F94-EA74-4AAA-94AE-E399A405AF13@isi.edu> <655C07320163294895BBADA28372AF5D2CFE36@FR712WXCHMBA15.zeu.alcatel-lucent.com> <20140503122950.GM44329@verdi> <655C07320163294895BBADA28372AF5D2D009E@FR712WXCHMBA15.zeu.alcatel-lucent.com> <201405221710.s4MHAY4S002037@bagheera.jungle.bt.co.uk> <537E3ACD.5000308@isi.edu> <537E48CE.8040704@mti-systems.com> <537E66A7.4080907@isi.edu> <201405231003.s4NA3PAB005137@bagheera.jungle.bt.co.uk>
In-Reply-To: <201405231003.s4NA3PAB005137@bagheera.jungle.bt.co.uk>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Archived-At: http://mailarchive.ietf.org/arch/msg/tcpm/ugIkZ8kn7DgAIfkNicUZvycsXnk
Cc: "tcpm@ietf.org" <tcpm@ietf.org>
Subject: Re: [tcpm] New Version Notification for draft-touch-tcpm-tcp-edo-01.txt
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 May 2014 16:56:03 -0000

Hi, Bob,

On 5/23/2014 3:03 AM, Bob Briscoe wrote:
> Joe, and everyone else who wants to work on this,
>
> Just because it's easier to make a chocolate teapot than a cast-iron
> one, doesn't imply that there is any need for chocolate teapots.

You don't get a cast iron teapot just because you want one either ;-)

> IOW, we will be asking the IESG to spend reviewer time on EDO, so we
> need to give some plausible indication that someone might find it useful
> and it's not just an academic exercise.

Sometimes the answer "you can't have A, but at least here's B" is more 
than an exercise; it educates the community. By not providing either 
answer, we have continued to drag this issue around the block for far 
too long -- and spent far too many cycles in this and other WGs seeking 
solutions.

 > The current draft solely gives
> SACK + MPTCP + TCP-AO as an example, but is that really something that
> can't be done today?

Current total for SYN options in widespread concurrent use (as already 
described in sec 6.4):

	2	SACK permitted
	10	timestamp
	3	window scale
	4	MSS
	------------------
	11 bytes

The current DO field is 4 bits, with a max value of 15 = 60 bytes for 
the total header, less 20 for the base TCP header which leaves 40 for 
options.

So let's see what happens when we add:

	11	widespread basic options
	16	TCP-AO
	20	MPTCP
	--------------------
	47

That's more than 40.

> Adding more complexity to the TCP stack (with the potential for more
> vulnerabilities) is only worthwhile if there's an identifiable benefit,
> otherwise few production stacks are going to implement it anyway.

There are two identifiable benefits:

	1) explain the ways we already know we can't extend the SYN
	so we stop wasting time trying them repeatedly (i.e., education)

	2) provide a solution for the other segments, so that can be
	used - e.g., for large SACK responses

	3) educate the community

Joe

v2.23.0 | Report a Bug | By Email