Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixes to IESG review comments #5

Merged
merged 7 commits into from
Nov 6, 2018
Merged

Fixes to IESG review comments #5

Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
095a5ae
Clarified that Max-Age is used same way as for 5.03
akeranen Oct 24, 2018
0beaebd
Nit fix
akeranen Oct 24, 2018
614b48a
Note about default Max-Age
akeranen Oct 24, 2018
fe17d1f
Added Benjamin's text about 5.03 instead of 4.29 to other clients
akeranen Oct 24, 2018
19f70bf
Clarified that server may get reqs during Max-Age due reqs in flight
akeranen Oct 24, 2018
c84ede2
Added sec cons reference to RFC7252
akeranen Oct 24, 2018
68d4f37
Final IESG review fixes (#6)
akeranen Nov 6, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 29 additions & 15 deletions draft-ietf-core-too-many-reqs.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,9 +54,9 @@ CoAP Response Codes are similar to the HTTP {{?RFC7230}} Status Codes
and many codes are shared with similar semantics by both CoAP and
HTTP. HTTP has the code "429" registered for "Too Many Requests"
{{RFC6585}}. This document registers a CoAP Response Code "4.29" for
similar purpose and also defines use of the Max-Age option (see
Section 5.10.5 of {{RFC7252}}) to indicate a back-off period after
which a client can try the request again.
similar purpose and uses the Max-Age option (see Section 5.10.5 of
{{RFC7252}}) to indicate a back-off period after which a client can
try the request again.

While a server may not be able to respond to one kind of request, it
may be able to respond to a request of different kind, even from the
Expand All @@ -71,9 +71,10 @@ decide how the similarity of the requests should be evaluated.

The 4.29 code is similar to the 5.03 "Service Unavailable" {{RFC7252}}
code in a way that the 5.03 code can also be used by a server to
signal an overload situation. However the 4.29 code indicates that the
too frequent requests from the requesting client are the reason for
the overload.
signal an overload situation. The 5.03 code also uses the Max-Age
option to indicate the time after which a client can retry. However
the 4.29 code indicates that the too-frequent requests from the
requesting client are the reason for the overload.

# Terminology

Expand All @@ -100,34 +101,46 @@ An action result payload (see Section 5.5.1 of {{RFC7252}}) can be
sent by the server to give more guidance to the client, e.g., about
the details of the overload situation.

The 4.29 Response Code is only returned to the client(s) sending
requests too frequently; if other clients are sending requests that
cannot be served due to server overload, the 5.03 Response Code is
more appropriate.

If a client repeats a request that was answered with 4.29 before Max-
Age time has passed, it is possible the client did not recognize the
error code and the server MAY respond with a more generic error code
(e.g., 5.03). Server MAY also limit how often it answers to a client,
e.g., to once every estimated RTT (if such estimate is available).
However, both of these methods add per-client state to the server
which may be counterproductive to reducing load.
Age time has passed, it is possible that the client sent multiple
requests before receiving the first answer or that the client did not
recognize the Response Code. To slow down clients that do not
recognize the 4.29 code, the server MAY respond with a more generic
error code (e.g., 5.03). The server SHOULD rate-limit 4.29 replies
taking into account its usual load shedding policies. However, any
such method that adds per-client state to the server may be
counterproductive to reducing load.


# CoAP Client Behavior

If a client receives the 4.29 Response Code from a CoAP server to a
request, it SHOULD NOT send a similar request to the server before the
time indicated in the Max-Age option has passed.
time indicated in the Max-Age option has passed. If the 4.29 response
does not contain a Max-Age option, the default value (60 seconds, as
defined in Section 5.10.5 of {{RFC7252}}) is assumed.

Note that a client may receive a 4.29 Response Code already on a first
request to a server. This can happen, for example, if there is a proxy
on the path and the server replies based on the load from multiple
clients aggregated by the proxy, or if a client has restarted recently
and does not remember its recent requests.

A client MUST NOT rely on a server being able to send the 4.29
A client should not rely on a server being able to send the 4.29
Response Code in an overload situation because an overloaded server
may not be able to reply at all to some requests.


# Security Considerations {#SecurityConsiderations}

Security considerations of {{RFC7252}} apply also to this Response
Code.

Replying to CoAP requests with a Response Code consumes resources from
a server. For a server under attack it may be more appropriate to
simply drop requests without responding at all. However, dropping
Expand Down Expand Up @@ -158,7 +171,8 @@ Parameters Registry", "CoAP Response Codes" sub-registry:

* Reference: [[This document]]


IANA is requested to add this document as an additional reference for
the Max-Age option in the "CoAP Option Numbers" sub-registry.

# Acknowledgements {#acks}

Expand Down