Re: QPACK proposal: wrap absolute index values

Dmitri Tikhonov <> Mon, 06 August 2018 12:19 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 4B1101294D7 for <>; Mon, 6 Aug 2018 05:19:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id FmlWkbD6fQ-u for <>; Mon, 6 Aug 2018 05:19:54 -0700 (PDT)
Received: from ( [IPv6:2607:f8b0:400d:c0d::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id A3D6D130DC3 for <>; Mon, 6 Aug 2018 05:19:54 -0700 (PDT)
Received: by with SMTP id y5-v6so13422855qti.12 for <>; Mon, 06 Aug 2018 05:19:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20150623; h=date:from:to:cc:subject:message-id:mail-followup-to:references :mime-version:content-disposition:in-reply-to:user-agent; bh=67eI+xGW0k3S2qV/lKvgZjLD2MekFLDphO0kbdk8rTU=; b=robdJMazzg2zXMTFc12QSHvEDECBDD7cjFzyav+aCppJi3O7a9LmtIhSqKCFsSgbiL s3THpyHQ5VUxsZmLCIIGD5pDk5ZDfnJwG4iSXZdzVqO/T2EsgsDVvy2DOKtL2K5nOMPk 8xbKKIdHF+YQaIVHFxP40PB9zuk10uTTAHqrvx5RWK//7wVVqm8jKYwOee9PdZYsmgg4 ypRyhaH1ohMFIMCD60R2iPUQYoA53PnaNMNrPSCRUYQ1viSVC/Bh5BQofOo2Wk25mWwm BE8QRLRU4gKpEH7AOBw8QoTvNsvm/Q/VerX+fY1xj2aat5Ynno3jSpE7XgDLOdbo555g MMqA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id :mail-followup-to:references:mime-version:content-disposition :in-reply-to:user-agent; bh=67eI+xGW0k3S2qV/lKvgZjLD2MekFLDphO0kbdk8rTU=; b=t06wwVqoROk8yEAYUMGRowsv4WgymfFtBqerHMgggQ1cT/Np36d7seOnVmatbksrjV 0rSIyd/387MmaCftxx3GCuvxaEwFuCe9C8vFEgCrbbTyZp3isCV2sFQsvCJyhOFfeyvh cL3n8d3yp0eX1xoC/prJU5uluCF/x5eQWyK89c8h/mWgU98masV01ZBWU/5vnLRlDT1Z AyX2clayndr8Br9v22u7lbdO4ZLsryoXOAdhr32lzhs6kYFQ+aCy0Q3dMVvAsBSzBtuh dBdESZg1PqL7MTdg2Zc06EmM+YAD14LerEYOeoWr+AppYPUXTGglOLyiN0mxnAwBtG5h dVPg==
X-Gm-Message-State: AOUpUlGyIvaN0I5UoVgGBb0KdvJZi7W5MQgJlHQncDWuIWEMdFXpsa6e WGuPquTwGEz+frUqBlZgWxiO1A==
X-Google-Smtp-Source: AAOMgpcxpOBUiJ45z4NxpgwI8nZStMaxhnqnt+phFH3rBB+oQ2Yp/ach1m0qhZjLGUrGfYN4tAwzlQ==
X-Received: by 2002:a0c:bc8a:: with SMTP id l10-v6mr12809216qvg.130.1533557993800; Mon, 06 Aug 2018 05:19:53 -0700 (PDT)
Received: from ubuntu-dmitri ( []) by with ESMTPSA id w39-v6sm616942qtk.74.2018. (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 06 Aug 2018 05:19:53 -0700 (PDT)
Date: Mon, 6 Aug 2018 08:19:48 -0400
From: Dmitri Tikhonov <>
To: Martin Thomson <>
Cc: QUIC WG <>
Subject: Re: QPACK proposal: wrap absolute index values
Message-ID: <20180806121947.GA31889@ubuntu-dmitri>
Mail-Followup-To: Martin Thomson <>, QUIC WG <>
References: <20180805154649.GA14245@ubuntu-dmitri> <> <20180806043610.GC25402@ubuntu-dmitri> <20180806044626.GD25402@ubuntu-dmitri> <>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <>
User-Agent: Mutt/1.5.24 (2015-08-30)
Archived-At: <>
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 06 Aug 2018 12:19:56 -0000

On Mon, Aug 06, 2018 at 04:52:34PM +1000, Martin Thomson wrote:
> On Mon, Aug 6, 2018 at 2:46 PM Dmitri Tikhonov
> <> wrote:
> >       bool
> >       isHeaderBlocked (unsigned LargestRef)
> Thanks for sharing code.  Note that I'm not just interested in whether
> I'm blocked, but for how many table updates I should block for, but I
> can use this function (repeatedly if necessary) to make that
> determination, I guess.

Well, that's just pseudo-code, you know.  I'd never CamelCase real

> It took me ages to understand this code.  Are you expecting all the
> arithmetic for CurMax to be modulo MaxEntries*2 ?  Because if that is
> the case, then this makes sense.  Without that stipulation, I really
> struggled.

Yes, all the arithmetic for the absolute index is modulo MaxEntries * 2.

> 2. You can't receive a header block with a largest reference that is
> more than MaxEntries new.  This doesn't hold because we don't cap the
> amount that a header block can be blocked by.

This is true -- my assertion about the future horizon is incorrect.
Somehow I assumed that the mirror argument about the encoder worked,
but it does not.  For example, nothing prevents the encoder from
pumping the table full of speculative updates, maybe even a few times
over, before ever using it.

> Now, it's arguably a
> reasonable restriction, because it takes multiple round trips to reach
> a state where that header block can be used, but we don't currently
> prevent someone from doing something like that.
> Now, it's reasonable to assume that you can't have more than
> MaxEntries worth of updates in flight, which means that in one round
> trip, this will never happen.  But we don't say that you can't
> reference dynamic table entries that are far in the future.  For this
> to work, we would have to prohibit that.  Maybe we should, because
> referencing entries that can't be sent is a footgun, just as
> referencing entries that have not yet been sent is a footgun (it can
> deadlock flow control if you do that).

Yes, for the proposed mechanism to work, we'd have to mandate that the
encoder not create new entries past some limit, which is a function of
the known decoder state (based on TSS or Header Acks) and MaxEntries.

Thanks for identifying this flaw.  The change is larger than I was
hoping it would be.  It's still worth it.

  - Dmitri.