Xen project Mailing List

Re: Failed TCP connection reset when processing overlapping data segments

To: Lucas Aubard <lucas.aubard@xxxxxxxx>

From: Anil Madhavapeddy <avsm2@xxxxxxxxxxxx>

Date: Wed, 16 Apr 2025 14:20:05 +0100

Cc: Hannes Mehnert <hannes@xxxxxxxxxxx>, mirageos-devel <mirageos-devel@xxxxxxxxxxxxxxxxxxxx>, Johan Mazel <Johan.Mazel@xxxxxxxxxxx>, gilles guette <gilles.guette@xxxxxxxxxxxxxxxxx>, Pierre Chifflier <Pierre.Chifflier@xxxxxxxxxxx>

Delivery-date: Wed, 16 Apr 2025 13:20:46 +0000

Feedback-id: i9ebc46d9:Fastmail

List-id: Developer list for MirageOS <mirageos-devel.lists.xenproject.org>

> On Apr 16, 2025, at 8:28 AM, Lucas Aubard <lucas.aubard@xxxxxxxx> wrote: > > The behavior you describe for processing overlapping data segments makes > sense to me. I must admit I'm still in the dark as to why this makes more sense today to do this than in 2013, when we dropped that data in preference for an unambiguous retransmission in case the stack was under attack. What's changed such that we can now accept overlapping TCP segments for the same data? There are a few reasons I can think of that may explain it (but I haven't checked): - perhaps datacenter Linux wants to avoid retransmissions at all costs - perhaps the security model has been revved somehow to delegate this to the higher levels of the stack (DTLS) - or perhaps out of order transmissions are more common (multipath?) so we now need to deal with it. I'm not really sure which of these are true or not, but without determining this, it seems unwise to depend on other stacks' behavior here. best, Anil

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.