IETF Logo Mail Archive

Re: [Tsvwg] ICMP protocol unreachable

"Brian F. G. Bidulock" <bidulock@openss7.org> Wed, 18 October 2006 02:19 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1Ga11g-00089G-3K; Tue, 17 Oct 2006 22:19:24 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Ga0yV-0006Cj-2E for tsvwg@ietf.org; Tue, 17 Oct 2006 22:16:07 -0400
Received: from gw.openss7.com ([142.179.199.224]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Ga0lB-0004Wt-Hm for tsvwg@ietf.org; Tue, 17 Oct 2006 22:02:22 -0400
Received: from ns.pigworks.openss7.net (IDENT:HAKc4PsqKQGO+c25+QKBW/72P5W1GJY0@ns1.evil.openss7.net [192.168.9.1]) by gw.openss7.com (8.11.6/8.11.6) with ESMTP id k9I22CD01249; Tue, 17 Oct 2006 20:02:12 -0600
Received: (from brian@localhost) by ns.pigworks.openss7.net (8.11.6/8.11.6) id k9I22Ch19663; Tue, 17 Oct 2006 20:02:12 -0600
Date: Tue, 17 Oct 2006 20:02:12 -0600
From: "Brian F. G. Bidulock" <bidulock@openss7.org>
To: Michael Tuexen <Michael.Tuexen@lurchi.franken.de>
Subject: Re: [Tsvwg] ICMP protocol unreachable
Message-ID: <20061017200211.A19104@openss7.org>
Mail-Followup-To: Michael Tuexen <Michael.Tuexen@lurchi.franken.de>, IETF Transport Area Mailing List <tsvwg@ietf.org>, Randall Stewart <randall@lakerest.net>
References: <4524F815.809@alcatel.com> <45256370.6080207@lakerest.net> <20061017054938.A31166@openss7.org> <858C0FBB-8AAB-4682-B63C-F6632BDDDADF@lurchi.franken.de> <20061017070714.A2544@openss7.org> <922A9C3A-7562-4BD2-AC06-46188E8D4FE8@lurchi.franken.de>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <922A9C3A-7562-4BD2-AC06-46188E8D4FE8@lurchi.franken.de>; from Michael.Tuexen@lurchi.franken.de on Tue, Oct 17, 2006 at 09:48:04PM +0200
Organization: http://www.openss7.org/
Dsn-Notification-To: <bidulock@openss7.org>
X-Spam-Score: 0.2 (/)
X-Scan-Signature: 25620135586de10c627e3628c432b04a
Cc: IETF Transport Area Mailing List <tsvwg@ietf.org>, Randall Stewart <randall@lakerest.net>
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: bidulock@openss7.org
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
Errors-To: tsvwg-bounces@ietf.org

Michael,

Michael Tuexen wrote:                       (Tue, 17 Oct 2006 21:48:04)
> Brian,
> 
> see my comments in-line.
> 
> Best regards
> Michael
> 
> On Oct 17, 2006, at 3:07 PM, Brian F. G. Bidulock wrote:
> 
> > Michael,
> >
> > But there is no risk from CONFIRMED addresses and therefore
> > aborting the association cannot be required for messages
> > sent to them, and you cannot justify the MUST for them.  I
> > don't think the MUST can be justified for single-homed
> > associations either.
> For me there is no difference in getting an ICMP(protocol unreachable)
> and an ABORT. So they should be handled the same way. Think about
> an application using a user land implementation. It the application
> crashes you get back an ICMP(protocol unreachable) which tells
> you the same as an SCTP kernel implementation when an application
> has crashed, which would most likely be an ABORT.

As you may, but I think it is unreasonable to force all other
implementations to view the world the same.  Receiving a valid ICMP
protocol unreachable might very well indicate that, for example, a
kernel module implementation has unloaded, however, depending on the
application, aborting the association in response is not necessarily the
right thing to do.  For carrier grade applications (e.g, SIGTRAN) the
assumption that the peer will recover very soon is valid.  Rather than
having a kernel module upgrade (removal then insertion) of very short
duration abort a bunch of associations, it is preferable to instead
persist in the associations and take advantage of SCTP's restart
procedures when the peer recovers.

So, as there is no security risk in sending to confirmed addresses (as
stated in 2960bis for normal data transmission), and there are no
interoperability concerns (all ICMP errors can be ignored for other
transport protocols), using MUST in that case is against the principle
of not using MUST arbitrarily to make an implementation do something a
certain way.

> >
> >  a) there is no risk for sending messages to confirmed addresses.
> See above.
> >  b) ignoring protocol unreachable would be realigned to that
> >     for TCP for confirmed addresses, increasing interoperability
> I do not know what the concept of confirmed address means for TCP.

Following the definition in 2960bis, the destination address (one) on
the initiating side is confirmed (passed down by the user).

So tell my why an SCTP association that is single-homed on both ends
should not be able to behave the same way with regard to ICMP messages
as a TCP connection?

> >
> > Please make this an official Last Call issue.
> Not sure what this means, but the documents you are discussing
> is in WG LC. So this is a comment within the WG LC period.

I mean that this is not just an interesting discussion, it is a comment
and issue raised during WG LC on draft-ietf-tsvwg-2960bis.  If someone
is making a list of those, please place this on the list.

--brian

-- 
Brian F. G. Bidulock
bidulock@openss7.org
http://www.openss7.org/

v2.23.0 | Report a Bug | By Email