netdev.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
* Assassination of TIME_WAIT state (RESEND)
@ 2004-08-04 13:22 Michael T Kerrisk
  0 siblings, 0 replies; only message in thread
From: Michael T Kerrisk @ 2004-08-04 13:22 UTC (permalink / raw)
  To: netdev

[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #1: Type: text/plain; charset="us-ascii", Size: 2745 bytes --]

Gidday,

I did try posting this many weeks back, but got response.
I'll take another shot -- does anyone have thoughts on the
questions below?

==

In the scenario below, one achieves assassination of the
TIME_WAIT state on Linux 2.6.5 and 2.4.x.  From a conversation
I had a while ago with Andi Kleen (see below), it appears
that this is expected behavior.  I have two (closely linked)
questions:

-- what is the rationale for this behavior (i.e., why assassinate
   in this scenario)?

-- why does Linux behave differently from FreeBSD and Solaris
   in this scenario?

Assume in the following scenario that SO_RESUSEADDR is set on
the server socket(s):

Server                           Client

1. Create listening socket
   bound to INADDR_ANY/port=9999
2. Accept a connection on
   the listening socket
                                 3. Create a socket bound
                                    to INADDR_ANY/port=50000
                                 4. Connect to server socket
                                    (on port 9999)
5. Close listening and
   connected sockets
                                 6. Close the socket

At this point, there is TCP on the server side in the TIME_WAIT
state: { local=localhost:9999, peer=XXX:50000 }

(re-run server)
7. Create listening socket
   bound to INADDR_ANY/port=9999
8. Accept a connection on
   the listening socket
                                 (re-run client while TIME_WAIT
                                 TCP still exists)
                                 9. Create a socket bound
                                    to INADDR_ANY/port=50000
                                 10.Connect to server socket
                                    (on port 9999)

On Linux the connect() in step 10 succeeds; the reason that it
does is that the TIME_WAIT TCP is immediately assassinated.  

A while back I asked Andi Kleen about this scenario, and he
commented that this behavious was:

> a (dubious) BSD extension, also implemented
> in linux (after all sockets is about being bug to bug coompatible).
> the kernel sees the TIME-WAIT and choses a sequence number with
> a large offset to avoid conflicts. When you don't have PAWS
> but still had a big window it is rather risky though.

However, when I try the above on FreeBSD 5.1 and Solaris 8, we see
different behavior: the TIME_WAIT TCP is NOT assassinated and the
connect() at step 10 fails with EADDRINUSE (which makes sense
because we can't create a duplicate 4-tuple...).

Cheers,

Michael

-- 
Michael Kerrisk
mtk-lists@gmx.net

NEU: WLAN-Router für 0,- EUR* - auch für DSL-Wechsler!
GMX DSL = supergünstig & kabellos http://www.gmx.net/de/go/dsl

^ permalink raw reply	[flat|nested] only message in thread
only message in thread, other threads:[~2004-08-04 13:22 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-08-04 13:22 Assassination of TIME_WAIT state (RESEND) Michael T Kerrisk

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).