Stating that only the client can open new paths, or explain competition

[huitema]

Carsten's review (issue #629) points an issue with the current draft: on one hand, we never say that only the client can open a new path; on the other hand, we do not say what happens if the client and the server open a new path simultaneously. We have two options: state that we inherit the restriction from RFC 9000 and that only the client can open new paths; or, explain what happens if the server tries to open a path.

Mandating that only the client creates paths is the simplest solution, even if it is not the most satisfactory. We could simply simply write that "attempts by servers to open paths is not supported. It is likely to fail if the client is behind a NAT, and would result in undefined behavior if client and server simultaneously try to open the same path ID." We would then rely on future extensions, such as peer-to-peer coordinated NAT traversal, to lift that restriction.

[tzaeschke]

Originally posted by @huitema in #629:

The "client only" part is controversial, so I opened issue #631 to discuss how to respond.

Could you give some context why this was considered controversial, are you referring to #329/#331?

---

I think it would be nice to allow server side migration, but looking at #329 , #331 and #354, one obstacle is how to negotiate MAX_PATH_ID. This may be too big of a change at this stage?

"attempts by servers to open paths is not supported. It is likely to fail if the client is behind a NAT, and would result in undefined behavior if client and server simultaneously try to open the same path ID."

Maybe we could reintroduce the "even" path IDs for clients and phrase the restriction as: "attempts by servers to open paths is not supported. Protocol extension may use odd path IDs on the server side for server side path initiation."?

Side note, with my path-aware-networking hat on, I would argue that server side path migration can be quite useful even if the client's network address doesn't change (no NAT migration), instead only the route between endpoints would change, or the server could announce a preferred address later during the connection.

[huitema]

We have written this draft with the constraint that paths are only started by the client -- see for example Marten Seeman's post. I understand that we have scenarios that work better if paths can be opened by the server as well, but yes, explicitly supporting that would be too much of a change.

The problem is that we have a bit of a muddle. The text dances around the issue a bit, does not actually write that the server SHOULD NOT attempt to initiate paths, yet does not provide any mechanism to resolve conflicts if both client and server open a path at the same time with different characteristics. I think that we have to formally acknowledge the restriction.

[flub]

It has always been my understanding that only clients can open new paths. I think explicitly clarifying this would help. I think currently half the wording in 3.1 is explicit about client/server and half the wording is vague about "endpoint" or "peer".

I'm not sure why you would chose SHOULD NOT, what stops this from being a MUST NOT?

As pointed out the current mechanism makes it really hard for the server and client to pick path IDs that agree and the whole draft seems to be written with the assumption that only the client chooses those. We noticed this when we were implementing https://datatracker.ietf.org/doc/draft-seemann-quic-nat-traversal/ where we had to make the server perform holepunching using off-path PATH_CHALLENGEs of an already open path ID instead of immediately using the intended path ID because of how difficult this coordination is otherwise.

[huitema]

@flub yes, this is indeed the issue. Stating clearly that only the client opens path will probably save implementers a lot of headaches.

By the way, yes, we do have an issue with the handling of sacrificial "bubbles" in NAT traversal. Maybe we need to somehow create a special packet type, or maybe a special frame type, so we avoid confusion with path creation or NAT traversal.

[BillGageIETF]

An alternative would be to define a new frame type that allows the server to advertise an alternate address to the client. The client MAY open a new path using the advertised address.

I proposed something like this in https://www.ietf.org/archive/id/draft-gage-quic-pathmgmt-05.html#name-address-advertisement

[huitema]

Solved by PR #633

[mirjak]

Just for the sake of completeness, we still have issue #47 which was discussed a couple of times in the group with the conclusion to leave this to a future extension (given that we would anyway need another transport parameter to indicate the server path limit as discussed in more detail in #329).

I personally don't think the extra MUST that was added to restrict to client initiated path was needed. I guess non-normative language would have been sufficient but no problem this way either...