IETF Logo Mail Archive

Re: Expected Client Response to SERVER_BUSY

Töma Gavrichenkov <ximaera@gmail.com> Wed, 20 February 2019 22:56 UTC

Return-Path: <ximaera@gmail.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A802F130E9C for <quic@ietfa.amsl.com>; Wed, 20 Feb 2019 14:56:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zRk-yuyIysfI for <quic@ietfa.amsl.com>; Wed, 20 Feb 2019 14:56:52 -0800 (PST)
Received: from mail-yb1-xb29.google.com (mail-yb1-xb29.google.com [IPv6:2607:f8b0:4864:20::b29]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4060E12D7EA for <quic@ietf.org>; Wed, 20 Feb 2019 14:56:52 -0800 (PST)
Received: by mail-yb1-xb29.google.com with SMTP id j189so10290586ybj.9 for <quic@ietf.org>; Wed, 20 Feb 2019 14:56:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=mlPG5bT1MfMKc/8YBPAN28vs55zVUlu1lNP193ZKhYE=; b=Q6cDqQgKSF6RVipFGK/nCIW85stBZFWKYK3zSTOOtvaMGTipD3y1bw7z7t7Vg6BfAG hgq/hnF1Oc1BUz6CvBCx3foEMaE19vIy9uo+eUndKzCPCByN2Kjshxfz3VJS7+vDbI/T F8hK8W0REHbutiL0BydMeEOuvLzKMJ6P/Pbe40q11ebZHppR5zuDI+DRsasiZuMVhFl9 rv3ub6qG6ENtc0TBt5vQzpM5Y4t0r/UP8UxNBCxNP6YVAopYtkaXhYY36jSiSL89W9p9 nL0geW/KUna1bR+CKgO7zgTTMRbQcvy5B97qJt59hMWSOr32F08xfrX/L+iJu1mzP38G of3w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=mlPG5bT1MfMKc/8YBPAN28vs55zVUlu1lNP193ZKhYE=; b=JjU02Kha8Q6BZo6d7zhGpdMJ5iCb29Mn+4K0bK86a327+RXrr6kBMoSFFkqgPIbHum 1gkXY5KMPGTYLz9E2thi3DQbQSgEeHAxyau2ycYhAT0h1RCWNLPz24dniM5Mh640D7Dm 6khuQoaUURAkOe+wewXKsoL+GcnKaHxP47UEEt5F2i5biYmMdeKrxeMHA3SVC85oBWzJ Wmv2TLXTV8aJxVhsEzx5R/Kh6v0JFxeVCu0Crw90OR8Fw89YGAnoxgjPZE12k5ROQvxG osobi7F1vALJANGhb9FpMt5UEOLz6gBpqdS+0/bYNm5tcHdhVzgvIgW2DGDWkZ6lWXkq sarA==
X-Gm-Message-State: AHQUAuaNDh/mIG4YtXhFOaNMVq+jpUJ2ivnZP3CJaj8NnXrGfcuJIMtk Xno5h2YHxqmo/4ZvFQb93K03SpNeDakM4u04FYE=
X-Google-Smtp-Source: AHgI3Ia/MjG0iLwrS5Y/tQgifvs7JpjjVmyLr57JSbTGDYcCWsMr8yS7LOUyIOAAmIEV/+fprRuOQrP25Eu4vLHahQU=
X-Received: by 2002:a5b:903:: with SMTP id a3mr30892271ybq.445.1550703411086; Wed, 20 Feb 2019 14:56:51 -0800 (PST)
MIME-Version: 1.0
References: <CY4PR21MB0854341128C64E450E7C2DA2B37C0@CY4PR21MB0854.namprd21.prod.outlook.com> <CAKcm_gPmQiMhzfXnkEB4u+X+84bCbL8FE3Lj3ZdPPQBBu+4uPg@mail.gmail.com> <1AF7E952-4542-4C40-8652-BFFBFA61784A@trammell.ch> <CAKcm_gN11=DcV2v-JrX+Ym88D7P1Ey3rDvYomTf1seemsWDSwA@mail.gmail.com> <CY4PR21MB0854D8F7383CDF72EEDAE9FBB37D0@CY4PR21MB0854.namprd21.prod.outlook.com> <CALZ3u+Zmau+167msd9+OGcU+V00+__yLK83ByNEqvWhm7yFORg@mail.gmail.com> <CY4PR21MB0854E1E9AAF564CD8B12305CB37D0@CY4PR21MB0854.namprd21.prod.outlook.com> <CALZ3u+b_NqyrSAkqiuXnnVVL+T0XiExPDUP5JyuzvZVaXqHtCA@mail.gmail.com> <a861dc7b-c1a4-fa72-649a-4f98050aa6f5@huitema.net> <CALZ3u+YxHeVuF-27pjO6gGZ__RT7Y9cAx0vE+x-n8vJbWM+L6g@mail.gmail.com> <CC1D0429-A09E-4844-90B9-2C053FE583E8@fb.com>
In-Reply-To: <CC1D0429-A09E-4844-90B9-2C053FE583E8@fb.com>
From: Töma Gavrichenkov <ximaera@gmail.com>
Date: Wed, 20 Feb 2019 14:56:32 -0800
Message-ID: <CALZ3u+Y1X0XxfbbiAH1S-fajz3nXybGP3tqED6tYQmsihzCzQw@mail.gmail.com>
Subject: Re: Expected Client Response to SERVER_BUSY
To: Roberto Peon <fenix@fb.com>
Cc: Praveen Balasubramanian <pravb@microsoft.com>, IETF QUIC WG <quic@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f849e405825b4546"
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/dQ_tgWwfQGmMLBNUWe3ZbJdE2MM>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Feb 2019 22:56:54 -0000

> This mechanism provides a very low CPU cost
> fast fallback to TCP under DoS attacks until all
> infrastructure can support QUIC natively

There are [a] few use cases when switching from TCP to QUIC v1 (in its
current state) is not feasible because of huge operational costs. So it
would be a more long term solution than that, probably till v2 or even
further.

> anything we do to allow non-malicious ones to
> respond appropriately requires pre-sharing,
> or for the connection to succeed

The question here is basically how to ensure the latter given a X00 Gbps
attack scale if you're neither Facebook nor Google.

> In some circumstances, falling back to TCP
> may be something that the application shouldn't do

Well, maybe, but then IMO the consequences of not being able to benefit
from switching to TCP if you're doing certain things with QUIC should be
outlined in the spec. Again, this is an application-level thing *now*, but
formerly the transport used to take full care of it, and the change in that
sort of breaks the habit of the users.

--
Töma

v2.23.0 | Report a Bug | By Email