Re: TCP timestamp starting value (wa: A strange TCP timestamp problem?)

To: tech-net%netbsd.org@localhost
Subject: Re: TCP timestamp starting value (wa: A strange TCP timestamp problem?)
From: Joerg Sonnenberger <joerg%bec.de@localhost>
Date: Thu, 21 Jul 2016 01:06:53 +0200

On Wed, Jul 20, 2016 at 06:43:53PM +0200, Edgar Fuß wrote:
> The starting value of 1 was chosen (over some form or uptime as other OSes do) 
> in order not to leak any information about the system's uptime. The same can 
> be aceived by using something proportional to real time.
> The attached patch implements that (with an arbitrary offset to prevent 
> near-time 32-bit-overflow). The same could be achieved, of course, by simply 
> sampling real time at TCP stack initialization; however, the suggested patch 
> is less intrusive and would allow for run-time tweaking.

Wouldn't a better idea be to compute HASH(cookie,src,dst) + uptime for
some random cookie created at boot time? Essentially, you give each
target a unique monotonic time base, without leaking any data about the
perceived local time.

Joerg

Follow-Ups:
- Re: TCP timestamp starting value
  - From: Edgar Fuß

References:
- A strange TCP timestamp problem?
  - From: Dave Huang
- Re: A strange TCP timestamp problem?
  - From: Christos Zoulas
- Re: A strange TCP timestamp problem?
  - From: Edgar Fuß
- TCP timestamp starting value (wa: A strange TCP timestamp problem?)
  - From: Edgar Fuß

Prev by Date: TCP timestamp starting value (wa: A strange TCP timestamp problem?)
Next by Date: Re: TCP timestamp starting value (wa: A strange TCP timestamp problem?)
Previous by Thread: TCP timestamp starting value (wa: A strange TCP timestamp problem?)
Next by Thread: Re: TCP timestamp starting value
Indexes:

Home | Main Index | Thread Index | Old Index