Internet DRAFT - draft-fairhurst-tsvwg-udp-options-dplpmtud
draft-fairhurst-tsvwg-udp-options-dplpmtud
Internet Engineering Task Force G. Fairhurst
Internet-Draft T. Jones
Intended status: Standards Track University of Aberdeen
Expires: February 13, 2022 August 12, 2021
Datagram PLPMTUD for UDP Options
draft-fairhurst-tsvwg-udp-options-dplpmtud-05
Abstract
This document specifies how a UDP Options sender implements Datagram
Packetization Layer Path Maximum Transmission Unit Discovery
(DPLPMTUD) as a robust method for Path Maximum Transmission Unit
Discovery. This is a robust method for Path MTU Discovery (PMTUD)
that uses the UDP Options Packetization Layer (PL). It allows a
datagram application that uses this PL, to discover the largest size
of datagram that can be sent across a network path.
Status of This Memo
This Internet-Draft is submitted in full conformance with the
provisions of BCP 78 and BCP 79.
Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet-
Drafts is at https://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress."
This Internet-Draft will expire on February 13, 2022.
Copyright Notice
Copyright (c) 2021 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents
(https://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents
carefully, as they describe your rights and restrictions with respect
to this document. Code Components extracted from this document must
include Simplified BSD License text as described in Section 4.e of
Fairhurst & Jones Expires February 13, 2022 [Page 1]
�
Internet-Draft UDPO DPLPMTUD August 2021
the Trust Legal Provisions and are provided without warranty as
described in the Simplified BSD License.
Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 2
2. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 3
3. DPLPMTUD for UDP Options . . . . . . . . . . . . . . . . . . 3
3.1. Confirmation of Connectivity across a Path . . . . . . . 3
3.2. Sending UDP-Options Probe Packets . . . . . . . . . . . . 3
3.2.1. Sending Packet Probes using the Echo Request Option
Request Option . . . . . . . . . . . . . . . . . . . 4
3.2.2. Sending Packet Probes that include Application Data . 5
3.3. Validating the Path with UDP Options . . . . . . . . . . 5
3.3.1. Sending Packet Probes using Timestamps . . . . . . . 6
3.4. PTB Message Handling for this Method . . . . . . . . . . 6
4. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . 7
5. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 7
6. Security Considerations . . . . . . . . . . . . . . . . . . . 7
7. References . . . . . . . . . . . . . . . . . . . . . . . . . 7
7.1. Normative References . . . . . . . . . . . . . . . . . . 7
7.2. Informative References . . . . . . . . . . . . . . . . . 8
Appendix A. Revision Notes . . . . . . . . . . . . . . . . . . . 9
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 9
1. Introduction
The User Datagram Protocol [RFC0768] offers a minimal transport
service on top of IP and is frequently used as a substrate for other
protocols. Section 3.5 of UDP Guidelines [RFC8085] recommends that
applications implement some form of Path MTU Discovery to avoid the
generation of IP fragments:
"Consequently, an application SHOULD either use the path MTU
information provided by the IP layer or implement Path MTU Discovery
(PMTUD)".
The UDP API [RFC8304] provides calls for applications to receive ICMP
Packet Too Big (PTB) messages and to control the maximum size of
datagrams that are sent, but does not offer any automated mechanisms
for an application to discover the maximum packet size supported by a
path. Applications and upper layer protocols implement mechanisms
for path MTU discovery above the UDP API.
Packetization Layer PMTUD (PLPMTUD) [RFC4821] describes a method for
a Packetization Layer (PL) (such as UDP with options) to search for
the largest Packetization Layer PMTU (PLPMTU) supported on a path.
Datagram PLPMTUD (DPLPMTUD) [RFC8899] specifies this support for
Fairhurst & Jones Expires February 13, 2022 [Page 2]
�
Internet-Draft UDPO DPLPMTUD August 2021
datagram transports. PLPMTUD and DPLPMTUD use a probing mechanism
that does not solely rely on ICMP PTB messages and works in the
presence of lost probes.
UDP Options [I-D.ietf-tsvwg-udp-options] supplies functionality that
can be used to implement DPLPMTUD within the UDP transport service.
This document specifies this additional functionality. Implementing
DPLPMTUD using UDP Options avoids the need for each upper layer
protocol or application to implement the DPLPMTUD method. This
provides a standard method for applications to discover the current
maximum packet size for a path and to detect when this changes.
2. Terminology
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
"SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
document are to be interpreted as described in BCP 14 [RFC2119]
[RFC8174] when, and only when, they appear in all capitals, as shown
here.
The structure of the present document follows the structure used to
describe DPLPMTUD for other transports [RFC8899].
3. DPLPMTUD for UDP Options
The DPLPMTUD PL endpoint implements the method specified in
[RFC8899].
3.1. Confirmation of Connectivity across a Path
The DPLPMTUD method requires a PL to be able to confirm connectivity
on the path (see Section 5.1.4 of [RFC8899]), but UDP does not offer
a mechanism for this.
UDP Options can provide this required functionality. A UDP Options
sender implementing this specification SHOULD elicit a positive
confirmation of connectivity of the path, using a suitable confirmed
UDP Option (i.e., Timestamps, ECHO Request/Response).
3.2. Sending UDP-Options Probe Packets
DPLPMTUD relies upon the ability of a sender PL to generate probe
packets with a specific size, and to confirm when these are delivered
across the path. Therefore, a UDP Options sender needs to be able to
send probes up to the maximum for the size the local interface
supports, which MUST NOT be further constrained by the maximum PMTU
set by network layer mechanisms (such as PMTUD [RFC1063][RFC8201]).
Fairhurst & Jones Expires February 13, 2022 [Page 3]
�
Internet-Draft UDPO DPLPMTUD August 2021
DPLPMTUD needs to be able to generate probe packets that are not
delivered to the upper layer protocol as a part of the end-to-end
transport data (i.e. to ensure any added padding data is not
delivered to the upper layer protocol at the receiver). UDP Options
provide the necessary additional support required to do this within
the transport layer.
There are various designs described in DPLPMTUD for the sending of a
Packet Probe to test the size of packet supported by a path (see
Section 4.1 of [RFC8899]). This prevents "Probing using padding
data" or "Probing using application data and padding data" (see
Section 4.1 of [RFC8899]).
A PL needs to determine whether the current path supports datagrams
used as Probe Packets. DPLPMTUD SHOULD send (or add) a UDP Option
(e.g., Timestamps, ECHO Request/Response) to a Packet Probe to elicit
a positive confirmation that the path has delivered the Probe Packet
of the corresponding size. From time to time, such probes can also
be used to determine whether the current path can support a larger
size of datagram that the current PLPMTU.
A PL also needs to determine that the current path supports the size
of datagram that the application is currently sending when in the
DPLPMTUD search_done state i.e., to detect black-holing of data (see
Section 4.2 of [RFC8899]). UDP Options can provide this by eliciting
a positive confirmation that the path has delivered a Datagram of the
corresponding size.
3.2.1. Sending Packet Probes using the Echo Request Option Request
Option
The RECOMMENDED method sends a Probe Packet with the Echo Request
Option (RES) together with any padding needed to inflate the required
size. The reception of this option generates an Echo Response Option
that confirms reception of each received Probe Packet.
Probe Packets consume network capacity and incur endpoint processing
(see Section 4.1 of [RFC8899]). Implementations ought to send a
Probe Packet with a Request Probe Option only when required by their
local DPLPMTUD state machine, i.e., when probing to grow the PLPMTU
or to confirm the current PLPMTU.
Implementations MAY track multiple requests and respond acknowledging
them with a single packet.
The UDP Options used in this method are described in section 6 of
[I-D.ietf-tsvwg-udp-options]:
Fairhurst & Jones Expires February 13, 2022 [Page 4]
�
Internet-Draft UDPO DPLPMTUD August 2021
o The Echo Request Option (RES) is set by a sending PL to solicit a
response from a remote endpoint. A four-byte token identifies
each request.
o The Echo Response Option (REQ) is generated by the UDP Options
receiver in response to reception of a previously received Echo
Request Option. Each Echo Response Option echoes a previously
received four-byte token.
The token value allows implementations to distinguish between
acknowledgements for initial Probe Packets and acknowledgements
confirming receipt of subsequent Probe Packets (e.g., travelling
along alternate paths with a larger round trip time). This needs
each Probe Packet needs to be uniquely identifiable by the UDP
Options sender within the Maximum Segment Lifetime (MSL). The UDP
Options sender therefore MUST NOT recycle token values until they
have expired or have been acknowledged. A four byte value for the
token field provides sufficient space for multiple unique probes to
be made within the MSL.
The initial value of the four byte token field SHOULD be assigned to
a randomised value to enhance protection from off-path attacks, as
described in section 5.1 of [RFC8085]).
The procedure to handle the loss of a datagram is the responsibility
of the sender of the request. Implementations MAY track multiple
requests and respond to them with a single packet carrying the Echo
Response Option (REQ).
3.2.2. Sending Packet Probes that include Application Data
The RECOMMENDED approach to generating a Probe Packet is to send a
probe formed of a UDP Options datagram contains only control
information, padded to the size required for the probe. This allows
"Probing using padding data"[RFC8899], and avoids a need to
retransmit application data when a probe fails.
If an application/transport needs protection from the loss of data in
the Probe Packet payload, the application/ transport could perform
transport-layer retransmission/repair of the data block (e.g., by
retransmission after loss is detected or by duplicating the data
block in a datagram without the padding) [RFC8085].
3.3. Validating the Path with UDP Options
A PL also needs to validate that the path continues to support the
PLPMTU discovered in a previous search for a suitable PLPMTU value
(see Section 6.1.4 of [RFC8899]). This confirmation MAY be provided
Fairhurst & Jones Expires February 13, 2022 [Page 5]
�
Internet-Draft UDPO DPLPMTUD August 2021
by an upper layer protocol confirming correct reception of data by
the remote PL, but there is no generic mechanism to access this upper
layer information.
This function can be implemented within UDP Options, by generating a
Probe Packet of size PLPMTU to confirm the path. This Probe Packet
MUST elicit a response from the remote PL and could use either the
ECHO Response Option or the TimeStamp option (see Section 5.9
[I-D.ietf-tsvwg-udp-options]).
A sender MAY choose to include application data in Probe Packets (see
Section 4.1 of [RFC8899] for discussion of the merits and demerits of
this approach). For example, this might reduce the need to send an
additional datagram when confirming that the current path supports
datagrams of size PLPMTU.
3.3.1. Sending Packet Probes using Timestamps
Reception of a valid Timestamp Option echoed by the remote endpoint
can be used to infer connectivity. It can also confirm that packets
of the current size are being received by the remote PL. This can
provide useful feedback, even over paths with asymmetric capacity
and/or that carry UDP Option flows that have asymmetric datagram
rates, because an echo of the most recent timestamp still indicates
reception of at least one packet of the transmitted size. This is
sufficient to confirm there is no black hole (see Section 2.1 of
[RFC2923]).
When sending a probe to increase the PLPMTU, such a Timestamp might
be unable to unambiguously identify that a specific Probe Packet has
been received [KP87]. Timestamp mechanisms therefore cannot be used
to confirm the reception of individual probe messages and cannot be
used to stimulate a response from the remote peer.
Note: Probe Packets used to search for a larger PLPMTU MUST include
the Echo Request Option.
3.4. PTB Message Handling for this Method
A UDP Options sender can ignore received ICMP PTB messages, and this
support is OPTIONAL for use with DPLPMTUD.
A UDP Options sender that utilises ICMP PTB messages received to a
Probe Packet MUST use the quoted packet to validate the UDP port
information in combination with the token and/or timestamp value
contained in the UDP Option, before processing the packet using the
DPLPMTUD method (see Section 4.4.1 of [RFC8899]). An implementation
Fairhurst & Jones Expires February 13, 2022 [Page 6]
�
Internet-Draft UDPO DPLPMTUD August 2021
unable to support this validation needs to ignore received ICMP PTB
messages.
4. Acknowledgements
Gorry Fairhurst and Tom Jones are supported by funding provided by
the University of Aberdeen.
5. IANA Considerations
This memo includes no requests to IANA.
6. Security Considerations
The security considerations for using UDP Options are described in
[I-D.ietf-tsvwg-udp-options]. The proposed new method does not
change the integrity protection offered by the UDP options method.
The specification recommends that the token in the REQ/RES message is
initialised to a randomised value to enhance protection from off-path
attacks.
The security considerations for using DPLPMTUD are described in
[RFC8899]. The proposed new method does not change the ICMP PTB
message validation method described DPLPMTUD: A UDP Options sender
that utilises ICMP PTB messages received to a Probe Packet MUST use
the quoted packet to validate the UDP port information in combination
with the token and/or timestamp value contained in the UDP Option,
before processing the packet using the DPLPMTUD method.
7. References
7.1. Normative References
[I-D.ietf-tsvwg-udp-options]
Touch, J., "Transport Options for UDP", draft-ietf-tsvwg-
udp-options-09 (work in progress), November 2020.
[RFC0768] Postel, J., "User Datagram Protocol", STD 6, RFC 768,
DOI 10.17487/RFC0768, August 1980,
<https://www.rfc-editor.org/info/rfc768>.
[RFC1191] Mogul, J. and S. Deering, "Path MTU discovery", RFC 1191,
DOI 10.17487/RFC1191, November 1990,
<https://www.rfc-editor.org/info/rfc1191>.
Fairhurst & Jones Expires February 13, 2022 [Page 7]
�
Internet-Draft UDPO DPLPMTUD August 2021
[RFC2119] Bradner, S., "Key words for use in RFCs to Indicate
Requirement Levels", BCP 14, RFC 2119,
DOI 10.17487/RFC2119, March 1997,
<https://www.rfc-editor.org/info/rfc2119>.
[RFC8174] Leiba, B., "Ambiguity of Uppercase vs Lowercase in RFC
2119 Key Words", BCP 14, RFC 8174, DOI 10.17487/RFC8174,
May 2017, <https://www.rfc-editor.org/info/rfc8174>.
[RFC8899] Fairhurst, G., Jones, T., Tuexen, M., Ruengeler, I., and
T. Voelker, "Packetization Layer Path MTU Discovery for
Datagram Transports", RFC 8899, DOI 10.17487/RFC8899,
September 2020, <https://www.rfc-editor.org/info/rfc8899>.
7.2. Informative References
[KP87] Karn, P. and C. Partridge, "Improving Round-Trip Time
Estimates in Reliable Transport Protocols", 1987.
[RFC1063] Mogul, J., Kent, C., Partridge, C., and K. McCloghrie, "IP
MTU discovery options", RFC 1063, DOI 10.17487/RFC1063,
July 1988, <https://www.rfc-editor.org/info/rfc1063>.
[RFC2923] Lahey, K., "TCP Problems with Path MTU Discovery",
RFC 2923, DOI 10.17487/RFC2923, September 2000,
<https://www.rfc-editor.org/info/rfc2923>.
[RFC4821] Mathis, M. and J. Heffner, "Packetization Layer Path MTU
Discovery", RFC 4821, DOI 10.17487/RFC4821, March 2007,
<https://www.rfc-editor.org/info/rfc4821>.
[RFC8085] Eggert, L., Fairhurst, G., and G. Shepherd, "UDP Usage
Guidelines", BCP 145, RFC 8085, DOI 10.17487/RFC8085,
March 2017, <https://www.rfc-editor.org/info/rfc8085>.
[RFC8201] McCann, J., Deering, S., Mogul, J., and R. Hinden, Ed.,
"Path MTU Discovery for IP version 6", STD 87, RFC 8201,
DOI 10.17487/RFC8201, July 2017,
<https://www.rfc-editor.org/info/rfc8201>.
[RFC8304] Fairhurst, G. and T. Jones, "Transport Features of the
User Datagram Protocol (UDP) and Lightweight UDP (UDP-
Lite)", RFC 8304, DOI 10.17487/RFC8304, February 2018,
<https://www.rfc-editor.org/info/rfc8304>.
Fairhurst & Jones Expires February 13, 2022 [Page 8]
�
Internet-Draft UDPO DPLPMTUD August 2021
Appendix A. Revision Notes
XXX Note to RFC-Editor: please remove this entire section prior to
publication. XXX
Individual draft-00.
o This version contains a description for consideration and comment
by the TSVWG.
Individual draft-01.
o Address Nits
o Change Probe Request and Probe Reponse options to Echo to align
names with draft-ietf-tsvwg-udp-options
o Remove Appendix B, Informative Description of new UDP Options
o Add additional sections around Probe Packet generation
Individual draft-02.
o Address Nits
Individual draft-03.
o Referenced DPLPMTUD RFC.
o Tidied language to clarify the method.
Individual draft-04
o Reworded text on probing with data a little.
o Removed paragraph on suspending ICMP PTB suspension.
Individual draft -05
o Fixed typos.
Authors' Addresses
Fairhurst & Jones Expires February 13, 2022 [Page 9]
�
Internet-Draft UDPO DPLPMTUD August 2021
Godred Fairhurst
University of Aberdeen
School of Engineering
Fraser Noble Building
Aberdeen AB24 3UE
UK
Email: gorry@erg.abdn.ac.uk
Tom Jones
University of Aberdeen
School of Engineering
Fraser Noble Building
Aberdeen AB24 3UE
UK
Email: tom@erg.abdn.ac.uk
Fairhurst & Jones Expires February 13, 2022 [Page 10]
