| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 15 Jul 2012 11:53:30 +0200 From: Eric Dumazet <eric.dumazet@...il.com> To: Piotr Sawuk <a9702387@...t.univie.ac.at> Cc: netdev@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: resurrecting tcphealth On Sun, 2012-07-15 at 11:17 +0200, Piotr Sawuk wrote: > On So, 15.07.2012, 09:16, Eric Dumazet wrote: > > On Sun, 2012-07-15 at 01:43 +0200, Piotr Sawuk wrote: > > > >> oh, and again I recommend the really short although outdated thesis > >> > >> [1] https://sacerdoti.org/tcphealth/tcphealth-paper.pdf > > > > A thesis saying SACK are not useful is highly suspect. > > > > Instead of finding why they behave not so good and fix the bugs, just > > say "SACK addition to TCP is not critical" > the actual quotation is "We also found that the number of unnecessary > duplicate packets were quite small potentially indicating that the SACK > addition to TCP is not critical." > > > > Really ? > > no, not really. he he actually said that SACK has been made mostly obsolete > by "Linux 2.2 implements fast retransmits for up to two packet gaps, thus > reducing the need for course grained timeouts due to the lack of SACK." and > he was a bit more careful and admitted that further tests with tcphealth are > needed to check if SACK really makes that big a difference. he admitted "It > could be that SACK's advantage lies in other areas such as very large > downloads or when using slow and unreliable network links." all these things > could be checked again nowadays, with larger files available and wlan-users > and higher traffic -- just find something without SACK... There are hundred of papers about TCP behavior. Many are very good. This one seems not the best of them by far, and is based on measures done on 2001 (!!!), on a single computer (!!!), connected to a particular ISP (!!!), using a wireless pcmcia network card. (!!!) At that time, almost no clients were using SACK. Because windows 98/XP dont negociate SACK by default (you need to tweak registry) Its like saying ECN is useless : If ECN users are under 1 % of total number of users, network is still under pressure and ECN benefits cannot rise because of misbehavior of other flows. With RTT of 100 ms, SACK are clearly a win for long transferts. A single drop shall retransmit a single packet instead of ~500 packets. Only fools could deny this fact. Studying DuplicateAcks to detect retransmits is clearly wrong. Really, dont recommend this paper, it contains a lot of false statements. One example : "we discovered some surprising things as the high percentage of lost or reordered packets from supposedly highly reliable and fast services as Akamai networks". I cant believe such nonsense can be written, and recommended. So you can add more counters to TCP stack because having them is good to better understand TCP behavior and what can be done to improve it, but dont base this work on dubious 'tcphealth'. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists