Explain asymmetric confirmation condition #2881
Conversation
This leads to indefinite Handshake messages from one side, as Handshake packets can never be acknowledged. As discussed, sending anything that elicits an ACK should fix this. But making a connection where you sit entirely idle leads to a weird corner case. Closes #2863.
martinthomson
added
design
|
I don’t think this fixes the issue I raised. You don’t only have to send, but also to retransmit the 1-RTT packets. We have a bunch of text in the recovery document that tells us to do not do this. |
|
I considered that, and you refer to the fact that the cryptographic handshake packets are the ones that are sent when you have a loss detection timeout. And that these are the only packets that are sent. I worded this carefully to say that you send 1-RTT, ack-eliciting packets. Should I say "In addition to retransmitting crypto packets, ..." or something along those lines? |
|
If that’s the way we’re going to fix this (I’m not sure if it’s the best way), we would need to edit the recovery document as well. That would be a pretty ugly special case in the retransmission algorithm we describe. |
|
Well, keep in mind that "recovery" for PING, which is the way you would approach this if you never had anything to send, depends on you generating a new PING with every transmission. So it's not that terrible. For our implementation, we would simply crank the lever and spit out another packet when the PTO fires, which would produce a packet that coalesced the missing Handshake with a 1-RTT packet. It only gets hairy when the lost Handshake packet overflows the MTU. Which, sadly, is possible. If we lost more than a PMTU, it gets a little hairy, because we will probably won't send any 1-RTT packets ever. I might be willing to let the connection time out in that case though. |
If I understand your point correctly, you would either need to change
I don't think timing out is acceptable in the case where just 2 packets are lost. In my opinion, the only case where a timeout is justifiable is if the connection is (effectively) blackholed. You can see the root cause of #2863 as not a problem with loss recovery at all, but with our definition of "handshake confirmed": The server is dropping the keys too early. If the server kept the keys for longer, this loss pattern would harm the connection at all. |
|
Don't the Handshake packets consume cwnd also? |
@martinthomson That's exactly the problem. They consume cwnd, although they're not even lost (as in "dropped by the network"), just dropped as undecryptable by the peer. In this situation, freeing up this cwnd is only possible after completion of the handshake, when all loss recovery state for non-1-RTT packets is dropped. |
|
So whatever we do to get to confirmation helps. But until that point, we're headed to a completely unrecoverable state. |
|
We would have to say that the 1-RTT packet has to be treated like a probe packet (i.e. not blocked by the congestion controller). |
|
Why? The retransmitted Handshake packets aren't and in this case these are the ones that will run the CWND down. The 1-RTT PING barely counts. Can't we just let the CWND burn down? Do you really think that by this point you will want to send more than CWND worth of these? I know that it's small at this point (maybe just one packet more than baseline), but if we use INIT_CWND = not_too_small, then we get quite a few goes before this becomes terminal. |
|
Depending on the application this is actually quite likely, or even the common case. Assume that the client has a bit of data to send in the first flight, then this would fill up the cwnd completely. You don't even need must, just 10 packets, minus the Handshake packets in flight (which might contain a certificate chain), and their retransmissions.
The problem is not the size of the 1-RTT PING, but the fact that we might already be congestion limited once we try to send it. |
Right, but this is a condition where 1-RTT packets might not be processed by the server. The client can't know if the server really needs the Handshake packets or the 1-RTT packet. If we want to exempt anything from CWND, wouldn't we need to exempt both? |
draft-ietf-quic-recovery.md
Outdated
|
|
||
| If the handshake is complete, but not confirmed (see Section 4.1.1 and Section | ||
| 4.1.2 of {{QUIC-TLS}}), in addition to sending unacknowledged crytographic | ||
| handshake data, endpoints SHOULD send an ack-eliciting 1-RTT packet. This can |
There was a problem hiding this comment.
| handshake data, endpoints SHOULD send an ack-eliciting 1-RTT packet. This can | |
| Handshake data, endpoints SHOULD send an ack-eliciting 1-RTT packet. This can |
|
This PR and that issue are labeled transport+design, so presumably it'd need a consensus call? |
|
I merged #2806, so you'll need to resolve conflicts, unless you want me to try to do that? |
draft-ietf-quic-recovery.md
Outdated
| @@ -629,6 +629,14 @@ MAY use alternate strategies for determining the content of probe packets, | |||
| including sending new or retransmitted data based on the application's | |||
| priorities. | |||
|
|
|||
| If the handshake is complete, but not confirmed (see Section 4.1.1 and Section | |||
There was a problem hiding this comment.
I think it might make sense to work this into the "Handshakes and New Paths" section above?
The way I'm now thinking of this is: It's the client's job to drive the handshake to confirmation, and here's what is necessary to ensure that occurs... Does that make sense?
There was a problem hiding this comment.
Also, now that I read the existing text again, I'm wondering if the "Sending Probe Packets" section should be before "Handshakes and New Paths"?
There was a problem hiding this comment.
I will leave that change to you, but I have moved this up to the Handshakes and New Paths section.
|
OBE |
This leads to indefinite Handshake messages from one side, as Handshake
packets can never be acknowledged. As discussed, sending anything that
elicits an ACK should fix this. But making a connection where you sit
entirely idle leads to a weird corner case.
Closes #2863.