Re: so_rerror

To: Roy Marples <roy%marples.name@localhost>, tech-net%netbsd.org@localhost
Subject: Re: so_rerror
From: christos%zoulas.com@localhost (Christos Zoulas)
Date: Sun, 4 Nov 2018 10:18:08 -0500

On Nov 4,  1:56am, roy%marples.name@localhost (Roy Marples) wrote:
-- Subject: Re: so_rerror

| I don't have a single NetBSD system where I can turn this option on (for 
| example, it's not found on ERLITE) and have all the programs I need to 
| run on it actually work.
|
| It's good to know that the only machine I have where the default out of 
| the box config actually works or it's intended use is my ERLITE. That 
| can't be said of my x86 or amd64 platforms.

This is because work is on-going to enable it and make it usable on
all platforms (I have not added mips support for it yet). There are more
pressing things to fix on ERLITE rather than PaX/MPROTECT (like running 64
bit binaries). When find some time, I think I will be first making 64
binaries work on it, before dealing with PaX...

| Can you explain how it was broken and what do you to make it work again?

I turned off logging completely to fix it. Logging ended up taking
up all the I/O cycles because each time logging overflowed syslogd
ended up logging that logging overflowed... This worked just fine
before the changes.

| Which is why we need a better solution than what we have.
| dynamically increasing/decreasing buffer size is a good solution for 
| this, which should make everyone happy.

That will never fix the problem; in fact it will make the situation
worse because of bufferbloat, resource consumption on low resource
sysrems, and increased latency. As people have explained numerous
times before this is UDP and you should be prepared to lose packets
(the transport is unreliable). If you want to build a reliable
transport on top of UDP rerror is not enough, you need to use a
packet sequence number or something to detect lost packets.

Yes it is good to detect lost packets when you can so rerror is
generally a good thing, and if it was done on day one it would
probably be fine to keep. I would also be nice to have on by default
eventually, but right now it makes the situation worse than before.

| > Nevertheless now everyone can have it the way the like... There is
| > a sysctl to turn it on globally and a per-socket setsockopt to override.
| 
| And we want a secure system where a lot of useful programs don't run and 
| sweeps overflow issues under the carpet by default? Not me!

Yes, for the programs that want this behavior. Let us not forget that
this started because of the aberrant behavior of the routing socket
where because of the compatibility messages we ended up overflowing
and losing. Instead of fixing the root cause (don't send compat
stuff to the programs that don't need them -- programs understand only
one version of the messages and throw away the rest), we decided to 
detect the dropped packet problem by introducing so_rerror. This
detection could have also be done by using the sequence number, or
a similar id based protocol.

christos

Follow-Ups:
- Re: so_rerror
  - From: Robert Elz
- Re: so_rerror
  - From: Roy Marples

References:
- Re: so_rerror
  - From: Roy Marples

Prev by Date: Re: so_rerror
Next by Date: Re: so_rerror
Previous by Thread: Re: so_rerror
Next by Thread: Re: so_rerror
Indexes:

Home | Main Index | Thread Index | Old Index