My notes on TCP/IP stacks.

Please excuse, some if this is just stuff I grabed off of web sites for further investigation.

TCP/IP stacks


Mini TCP/IP stacks.

uIP   http://www.sics.se/~adam/uip/index.php/Main_Page

lwIP  http://savannah.nongnu.org/projects/lwip/    lwIP is significantly more complex

uC/IP http://sourceforge.net/projects/ucip/   uC/IP - TCP/IP for microcontrollers

Alpine - user space TCP/IP  (have source code somewhere)

UPDATE July 20, 2011:

I found my Alpine code, but it's only the Alpine4Linux. 

The file can be downloaded from : http://www.dnull.com/Alpine/

I'd like to put these up on source forge or at least something like box.net where the code can no longer get lost. 

Daytona ""   http://nms.lcs.mit.edu/~kandula/data/daytona.pdf

----------------


> i want to move tcp/ip stack(including routing and
> netfilter) to userspace, my goal is to trace all the
> instructions involved in a firewall and router since i
> don't know how to trace these instructions inside the
> kernel. i want to get something like:
>
> incoming ip packets(a file)-->fake ISR-->tcp/ip
> stack-->outgoing ip packets( to /dev/null).
>
> my question is: is it possible and relatively easy to
> move tcp/ip stack to user space?
This comes up fairly frequently, it might be a good addition to the FAQ.
Here's my attempt at an answer culled from prior messages.

Several people have user-mode network stacks at various levels of
development, but it is *highly* unlikely for them ever to get into
the kernel proper (see the monolithic versus microkernel debate at
http://www.kernel.org/pub/linux/docs/lkml/#s15-4).

Here are some URLs to which you can refer for more information:
        http://www.cl.cam.ac.uk/Research/SRG/netos/arsenic/
        http://www.cs.nwu.edu/~pdinda/minet/minet.html
        http://www.joerch.org/tcpip/
        http://freshmeat.net/projects/libutcp/

However, for security purposes, you probably do not want a user-mode stack.
You want an extensible packet handling mechanism, and can be found with:
        iptables/ipchains -- the native Linux firewalling tools,
                http://netfilter.samba.org/
        tc -- the Traffic control program,
                http://www.sparre.dk/pub/linux/tc/
        libpcap -- packet capture library,
                http://www.tcpdump.org
------------------------------

---------------------
I've started a syncookie fw using a daemon process  ???

I do this using the REDIRECT ( ipchains ) / QUEUE ( ipfilter ) targets,
to get the packets to userspace. Once there, you can do what you want
using libpcap or syuscalls.

-------------------------------------------------------

[10] C.A. Thekkath, T.D. Nguyen, E.Moy and E.D.
Lazowska, ‘Implementing Network Protocols at User
Level,’ in Proceedings SIGCOMM 1993,
San Francisco, pp. 64-73, September, 1993.

[13] C. Maeda and B.N. Bershad, ‘Protocol service
decomposition for high-performance networking,’ in
14th ACM Symposium on Operating Systems
Principles, December 1993.

------------------------------------------------------
[15] G.L. Peterson, “Myths about the mutual exclusion
problem,’ in Information Processing Letters, Vol. 12,
No. 3, pp. 115-116, June 1981.
A Appendices
A.1 Peterson’s algorithm
Peterson’s algorithm for mutual exclusion between two
processes is as follows (also see [15]):
Lock()
{
wantAccess[ME]=TRUE;
nextAccess=YOU;
while (wantAccess[YOU] && nextAccess==YOU)
/* Add yield code here */
;
}
Release()
{
wantAccess[ME]=0;
}

A.2 Edwards’ Algorithm
This algorithm for mutual exclusion exploits the fact that
the child process runs at real-time priority and so cannot be
pre-empted by the user process:
Lock()
{
#ifdef CHILD_PROCESS
if (disable_child) {
/* If user process has disabled us
* then we block and wait for him to
* wake us up
*/
child_blocking=TRUE;
WaitOnSemaphoreForWakeup();
}
#else
/* We know child must be blocked at the
* moment (thus not holding lock) as it
* runs as a real-time priority so can
* not be pre-empted
*/
disable_child=TRUE;
#endif
}
Release()
{
#ifdef CHILD_PROCESS
if (wakeup_user_process) {
WakeupSleepingUserProcess();
}
#else
disable_child=FALSE;
if (child_blocking) {
child_blocking=FALSE;
SignalWaitSemaphore();
}
#endif
}

-------------------------------------------
http://www.vzavenue.net/~neelnatu/alpine4linux/alpine4linux.txt
 

UPDATE July 20, 2011:

I found my Alpine code, but it's only the Alpine4Linux. 

The file can be downloaded from : http://www.dnull.com/Alpine/

--------------------------------------------------

Date: Fri, 30 May 2003 11:53:23 -0700 (PDT)
To: freebsd-net@freebsd.org

natun@rpi.edu or neelnatu@yahoo.com

Neelkanth Natu (neelnatu@yahoo.com)

Hi all,

Alpine4Linux is a userlevel FreeBSD 4.8 networking stack running on top of a stock Linux kernel.  It is an implementation of an idea that I came across in a paper[1] by David Ely, Stefan Savage and David Wetherall.

Alpine4Linux consists of a userland server program that runs the FreeBSD kernel code as well as
the unmodified networking stack. Client programs use the Alpine stack by setting the LD_PRELOAD
environment variable to link to libraries, that intercept socket related system calls. These
intercepted system calls are routed to the Alpine server over a TCP connection established on the loopback interface.

Alpine4Linux goes great lengths to ensure that its behavior is identical to that of a FreeBSD
kernel as far as networking is concerned. Thus, in addition to the unmodified FreeBSD stack.
Alpine4Linux also has unmodified socket layer code, file descriptor code, tsleep and wakeup for
e.g. It also has a rich client-side library that supports almost all socket functions as well as
functions like fork() that are commonly used by server programs.

I have tested stock Linux programs like telnet, nmap, ifconfig, vsftpd-1.1.3 etc. against
the Alpine stack. I have only compiled it on a Redhat 8.x Linux box, so if someone manages to run it on another Linux distribution/kernel please let me know.

You can find more information at: http://www.vzavenue.net/~neelnatu/alpine4linux

Hopefully someone finds use for this.

thanks
Neel

[1] Alpine: A user-level infrastructure for network protocol development
    David Ely, Stefan Savage, David Wetherall
    http://alpine.cs.washington.edu/

----------------------------------------------------------


Application-L evel Protocol Infrastructure for Network Experimentation
alpine_debug.c
Alpine_FreeBSD3x-0.10.tar.gz.
http://web.archive.org/web/20050208075748/http://alpine.cs.washington.edu/distfiles/Alpine_FreeBSD3x-0.10.tar.gz

-----------------------

--------------
TCP_congestion_avoidance_algorithm

http://www.cs.arizona.edu/projects/protocols/
http://en.wikipedia.org/wiki/TCP_Vegas
http://en.wikipedia.org/wiki/TCP_congestion_avoidance_algorithm
 
TCP Tahoe and Reno
TCP Vegas
TCP New Reno
TCP Hybla   high-latency terrestrial or satellite radio link
TCP BIC     In linux 2.6.8 through 2.6.18
TCP CUBIC  In linux  since version 2.6.19
Compound TCP (CTCP) is a Microsoft algorithm that is part of the Windows Vista and Window Server 2008 TCP
YeAH TCP - Yet Another Highspeed TCP - Linux

2.6.22
TCP Illinois congestion control. This is an implementation of TCP Illinois invented by Shao Liu at University of Illinois. It is a another variant of Reno which adapts the alpha and beta parameters based on RTT. The basic idea is to increase window less rapidly as delay approaches the maximum. See the papers and talks to get a more complete description

YeAH-TCP congestion control algorithm implementation. YeAH-TCP is a sender-side high-speed enabled TCP congestion control algorithm, which uses a mixed loss/delay approach to compute the congestion window. It's design goals target high efficiency, internal, RTT and Reno fairness, resilience to link loss while keeping network elements load as low as possible. For further details look here: http://wil.cs.caltech.edu/pfldnet2007/paper/YeAH_TCP.pdf

TCP cubic update for 2.6.22. The new version improves on its scalability, fairness and stability. So in all properties, we confirmed it shows better performance


Fastsoft
http://www.fastsoft.com/downloads/FASTTCP-IEEENetwork-0501.pdf

-----------------------------------

http://www.sics.se/~adam/miniweb/

web-enabled embedded systems

Many devices (printers, etc.) now use not just standard Internet Protocol but have a small web server embedded in them for input and to indicate status rather than using floppy disks or LCD panels or tiny little keyboards or other proprietary communication protocols.
[FIXME: Is there a better file for me to keep this category ?]
web appliances

• Stanford University Wearable Computing Laboratory World's Smallest Operational Web Server (to date) http://wearables.stanford.edu/
• Embedded Ethernet: vendors that have Ethernet on their microcontrollers. http://microcontroller.com/EmbeddedSystems.asp?c=21
• ~$77 USD http://www.dontronics.com/projecsystems.htmlsmall, solid-state Web server with 32k nonvolatile memory, 2 A/D inputs for 0-5v measurement, etc. recommends _TCP/IP Lean: Web Servers for Embedded Systems_ book by Jeremy Bentham.
  
• Tiny TCP/Tiny WEB Servers/etc. http://unusualresearch.com/tinytcp/tinytcp.htm
• Embedded systems as web servers(!) see _Personal Engineering_ http://www.pein.com/1996 Dec p. 8 "The shrinking Web server" article by Russ Lindgren;
• Connecting an M68HC08 Family Microcontroller to an Internet Service Provider (ISP) Using the Point-to-Point Protocol (PPP) http://e-www.motorola.com/brdata/PDFDB/docs/AN2120.pdf
• TINI: Tiny InterNet Interface http://www.ibutton.com/TINI/
• embedded web server http://www.jumptec.de/"world's smallest web server" looks like it's slightly smaller than a deck of playing cards.
• ``An Embeddable HTTP Server: Web-enabling embedded devices'' article by M. Tim Jones _Dr. Dobb's Journal_ October 2001 http://www.ddjembedded.com/resources/articles/2001/0110h/0110h.htm
• http://www.suroot.net/html/article.php?sid=87&mode=thread&order=0&thold=0`` uIP ... is probably the smallest TCP/IP stack ever written in a high level language. uIP is written in the C programming language and the source code is free to distribute and use for both non-commercial and commercial use (the full BSD-style license is here). Follow the link near the bottom of the page for a c64 running as a web server. '' http://sourceforge.net/projects/ucip/
• IPic - A Match Head Sized Web-Server http://www-ccs.cs.umass.edu/~shri/iPic.html"this chip includes a web-server, which I do believe to be the smallest web-server -- in physical size as well as in code-size. " (has lots of links to other small embedded web servers, including one that runs on the C64)
• uWebserver http://www.mycal.net/wsweb/
• An Internet Oven Monitor by Bill Eichin http://www.elecdesign.com/Pages/magpages/dec1799/ifd/1217ifd1.htm
  
  I hear "netcat" could be useful. ftp://avian.org/src/hacks/nc110.tgz
  Other than Apache, http://www.imatix.com/also has a free web server. Lots of open source software here.
  anonymous proxy server in 100 lines of Perl http://www.ics.uci.edu/pub/websoft/libwww-perl/archive/1996h2/0404.html
  
• http://www.barnnetwork.com/barnnet/has a embedded system that displays status via the web.
• the article '$25 Web Server' on www.circuitcellar.com/online ???
• Embedded Internet Workshop http://www.circuitcellar.com/eiw_proc/proceedings.htmEmbedded Web Servers
• Atmel Corp. http://www.atmel.com/and emWare Inc. http://www.emware.com/are integrating emWare's EMIT (Embedded Micro Internetworking Technology) software with Atmel's 8 bit Flash AVR microcontrollers ... so "developers can quickly create Internet-enabled embedded networks for AVR-controlled electronic devices ... user interfaces can be a ... standard web browser ... through a remote web server, a directly connected laptop, or a PDA." -- from article in _Electronic Design_ http://www.elecdesign.com/1998-11-01.
• Patriot Scientific Corporation http://www.ptsc.com/interesting radar systems, designed native Java "shBoom(tm) microprocessor for "embedded web servers". http://www.circuitcellar.com/articles/misc/tom-92.pdf
• http://www.zdnet.com/anchordesk/story/story_2363.htmlweb-enabled embedded systems
• QNX Software Systems Ltd. (QSSL) a demo that fits a full HTML 3.2 browser, POSIX-certified real-time OS, windowing system, TCP/IP, embedded Web server, Internet dialer, text editor, file browser and other applications onto a single, self-booting 1.44 MB floppy. ... using less than 2 MB of RAM and 4 MB of ROM ... You can download the demo from Internet Appliance Toolkit (AIT) http://www.qnx.com/iat... the Odin Reference Design Kit "all the hardware you need ... NTSC TV and SVGA monitor out, PC Card socket ... fax/modem, Ethernet, ... schematics ... bill of material ... to build a full-featured Internet appliance for under $200 ... with Odin and the AIT" ... Odin from National Semiconductor http://www.national.com/ns486... -- from advertisement in _Computer Design_ http://www.computer-design.com/1997 Nov
• U S Software http://www.ussw.com/Hillsboro, OR sells TCP/IP protocol suite for many embedded processors.

[ Intelligent Instrumentation, Inc. http://www.instrument.com/ethernet data acquisition system ] is very similar ...



---------------------------------------

Fixing the Unfairness of TCP Congestion Control

"George Ou, Technical Director of ZDNet, has an analysis today of an engineering proposal to address congestion issues on the internet. It's an interesting read, with sections such as "The politicization of an engineering problem" and "Dismantling the dogma of flow rate fairness". Short and long term answers are suggested, along with some examples of what incentives it might take to get this to work. Whichever side of the neutrality debate you're on, this is worth consideration."

By 1999, the first P2P (peer-to-peer) application called Swarmcast began to blatantly exploit Jacobson’s TCP congestion control mechanism.  Using a technique called “parallel incremental downloading”, Swarmcast could grab a much larger share of the pie at the expense of others by exploiting the multi-stream and persistence loophole.  These two loopholes would be used by every P2P application since.