basic support for TCP fast open

[wfurt]

There are three somewhat separated parts here:

1. This adds API approved in TCP Fast Open implementation? #1476. It is just simple enum so we can do all platforms right.
2. bring platform parity for patten described in Socket connect with payload via SocketAsyncEventArgs fails #79654 (and TCP Fast Open implementation? #1476 as well)

using var client = new Socket(AddressFamily.InterNetwork, SocketType.Stream, ProtocolType.Tcp);
var saea = new SocketAsyncEventArgs();
saea.RemoteEndPoint = new IPEndPoint(IPAddress.Loopback, 42);
saea.SetBuffer(new byte[42]); // <== the presence of the buffer is what triggers the failure

Tis currently works on Windows using connectex. With this PR it will light up on macOS using connectx and on Linux using combination of Connect & Send. Test added in #79669 is now portable across platforms.

3. With the work above, we will attempt TFO if combined. On Windows connectex can already do that so as connectx on macOS. To make it work consistently across platforms I used TCP_FASTOPEN_CONNECT. That is available since Kernel 4.11 and that should cover all supported releases AFAIK. This is still best effort as the actual behavior will change based on /proc setting as well as TCP cookie availability. If either one is missing we will simply fallback to behavior described in 2)

[dotnet-issue-labeler]

Note regarding the new-api-needs-documentation label:

This serves as a reminder for when your PR is modifying a ref *.cs file and adding/modifying public APIs, please make sure the API implementation in the src *.cs file is documented with triple slash comments, so the PR reviewers can sign off that change.

[antonfirsov]

Have you validated this with packet captures on all 3 platforms?

I don't know how it works on Mac, but note that this does not add support for server-side TFO on Linux therefore it's not a full implementation of #1476. We should either document this limitation or implement (& validate) server-side TFO.

[antonfirsov]

We should document the concerns (=fully controlled datapath needed) and the limitations around this flag.

[wfurt]

yes, I have no problem with good description. Even the man page for Linux talks about differences based on cookie availability.

[wfurt]

I don't know how it works on Mac, but note that this does not add support for server-side TFO on Linux

what do you think is missing?

[wfurt]

Have you validated this with packet captures on all 3 platforms?

I did macOS & Linux since Windows was reported working.

[antonfirsov]

what do you think is missing?

With server side sockets (listener/accept) TCP_FASTOPEN_CONNECT will not make it set a TFO cookie (and it's only being set on connect). The server side needs TCP_FASTOPEN enabled to operate. (This is Linux, didn't research how it works on Mac.)

[wfurt]

what do you think is missing?

With server side sockets (listener/accept) TCP_FASTOPEN_CONNECT will not make it set a TFO cookie (and it's only being set on connect). The server side needs TCP_FASTOPEN enabled to operate. (This is Linux, didn't research how it works on Mac.)

yes, This is what the part 1) does e.g. the new SocketOption

case SocketOptionName_SO_TCP_FASTOPEN:
           *optName = TCP_FASTOPEN;
            return true;

[antonfirsov]

case SocketOptionName_SO_TCP_FASTOPEN:

That logic is only triggered for mapping SocketOptionName.FastOpen to TCP_FASTOPEN in SystemNative_GetSockOpt. Maybe I'm missing something, but I don't see a logic enabling TCP_FASTOPEN for listener sockets after listen.SetSocketOption(SocketOptionLevel.Tcp, SocketOptionName.FastOpen, 1) calls.

[wfurt]

That logic is only triggered for mapping SocketOptionName.FastOpen to TCP_FASTOPEN in SystemNative_GetSockOpt. Maybe I'm missing something, but I don't see a logic enabling TCP_FASTOPEN for listener sockets after listen.SetSocketOption(SocketOptionLevel.Tcp, SocketOptionName.FastOpen, 1) calls.

This part I don't understand. The rest works just like any other option. We map the .NET value to platform value and call setsockopt. No additional code is needed besides the mapping.

[antonfirsov]

No additional code is needed besides the mapping.

Ok, it should be good (I missed part of the overall option setting logic). We still need the option roundtrip tests though.

[antonfirsov]

I strongly believe that we need to document the risks of TFO in an easily discoverable way, including the fact that it's only recommended for fully controlled datapaths. I think this summary - or if it's valid for enum members - a remarks section would be a good place.

[wfurt]

What dog you suggest? Remarks probably should be edited directly in doc repo...?
I was thinking about it more and perps we can add something like

This enables TCP Fast Open as defined in RFC-7413. The actual observed behavior depend on OS configuration and state of kernel TCP cookie cache. Enabling TFO can impact interoperability and casue connectivity issues.

[antonfirsov]

This enables TCP Fast Open as defined in RFC-7413. The actual observed behavior depend on OS configuration and state of kernel TCP cookie cache. Enabling TFO can impact interoperability and casue connectivity issues.

I would be ok with changing the summary to the text above & opening an issue against https://github.com/dotnet/dotnet-api-docs/ to track adding more detailed information to an appropriate place, SocketOptionName enum remarks maybe.

[wfurt]

dotnet/dotnet-api-docs#9910 created to track adding remarks.

[antonfirsov]

LGTM assuming the test failure will be addressed.

[antonfirsov]

Nit: it might be worth to move this into a separate file.

[antonfirsov]

/azp run runtime-libraries-coreclr outerloop

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[wfurt]

all the outer loop tests failures seems unrelated.

[antonfirsov]

@wfurt the failure I mentioned is not in outerloop. It's still there in the latest runtime run, and there were no commits addressing it: https://github.com/dotnet/runtime/pull/99490/checks?check_run_id=25312010880

[wfurt]

it was clean on the last run - but I guess that was lock. it should be fixed by #102668 e.g. #102650