fix: Drop of Initial space only after sending 1st Handshake

[larseggert]

This is what RFC9000 says, and it helps with servers that expect ACKs in the Initial packet number space to happen. It also eliminates a difference in behavior we had when a client received an Initial packet containing an ACK and a CRYPTO frame vs. a CRYPTO frame and an ACK, where that CRYPTO frame caused the Initial packet number space to be dropped.

Broken out of #1998

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 95.33%. Comparing base (55e3a93) to head (3c42d4b).

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2118      +/-   ##
==========================================
- Coverage   95.35%   95.33%   -0.02%     
==========================================
  Files         112      112              
  Lines       36336    36333       -3     
==========================================
- Hits        34648    34638      -10     
- Misses       1688     1695       +7     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Failed Interop Tests

QUIC Interop Runner, client vs. server

neqo-latest as client

• neqo-latest vs. aioquic: Z
• neqo-latest vs. kwik: Z
• neqo-latest vs. msquic: A
• neqo-latest vs. mvfst: A L1 C1
• neqo-latest vs. xquic: A

neqo-latest as server

• lsquic vs. neqo-latest: C1
• msquic vs. neqo-latest: U
• mvfst vs. neqo-latest: Z A L1 C1
• quiche vs. neqo-latest: C1
• quinn vs. neqo-latest: V2
• xquic vs. neqo-latest: M

All results

Succeeded Interop Tests

QUIC Interop Runner, client vs. server

neqo-latest as client

• neqo-latest vs. aioquic: H DC LR C20 M S R 3 B U A L1 L2 C1 C2 6 V2
• neqo-latest vs. go-x-net: H DC LR M B U A L2 C2 6
• neqo-latest vs. haproxy: H DC LR C20 M S R Z 3 B U A L1 L2 C1 C2 6 V2
• neqo-latest vs. kwik: H DC LR C20 M S R 3 B U A L1 L2 C1 C2 6 V2
• neqo-latest vs. lsquic: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• neqo-latest vs. msquic: H DC LR C20 M S R Z B U L1 L2 C1 C2 6 V2
• neqo-latest vs. mvfst: H DC LR M R Z 3 B U L2 C2 6
• neqo-latest vs. neqo: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• neqo-latest vs. neqo-latest: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• neqo-latest vs. nginx: H DC LR C20 M S R Z 3 B U A L1 L2 C1 C2 6
• neqo-latest vs. ngtcp2: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• neqo-latest vs. picoquic: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• neqo-latest vs. quic-go: H DC LR C20 M S R Z 3 B U A L1 L2 C1 C2 6
• neqo-latest vs. quiche: H DC LR C20 M S R Z 3 B U A L1 L2 C1 C2 6
• neqo-latest vs. quinn: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6
• neqo-latest vs. s2n-quic: H DC LR C20 M S R 3 B U E A L1 L2 C1 C2 6
• neqo-latest vs. xquic: H DC LR C20 M R Z 3 B U L1 L2 C1 C2 6

neqo-latest as server

• aioquic vs. neqo-latest: H DC LR C20 M S R Z 3 B A L1 L2 C1 C2 6 V2
• chrome vs. neqo-latest: 3
• go-x-net vs. neqo-latest: H DC LR M B U A L2 C2 6
• kwik vs. neqo-latest: H DC LR C20 M S R Z 3 B U A L1 L2 C1 C2 6 V2
• lsquic vs. neqo-latest: H DC LR M S R 3 B E A L1 L2 C2 6 V2
• msquic vs. neqo-latest: H DC LR C20 M S R Z B A L1 L2 C1 C2 6 V2
• mvfst vs. neqo-latest: H DC LR M 3 B L2 C2 6
• neqo vs. neqo-latest: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• ngtcp2 vs. neqo-latest: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• picoquic vs. neqo-latest: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6 V2
• quic-go vs. neqo-latest: H DC LR C20 M S R Z 3 B U A L1 L2 C1 C2 6
• quiche vs. neqo-latest: H DC LR M S R Z 3 B A L1 L2 C2 6
• quinn vs. neqo-latest: H DC LR C20 M S R Z 3 B U E A L1 L2 C1 C2 6
• s2n-quic vs. neqo-latest: H DC LR M S R 3 B E A L1 L2 C1 C2 6
• xquic vs. neqo-latest: H DC LR C20 S R Z 3 B U A L1 L2 C1 C2 6

Unsupported Interop Tests

QUIC Interop Runner, client vs. server

neqo-latest as client

• neqo-latest vs. aioquic: E
• neqo-latest vs. go-x-net: C20 S R Z 3 E L1 C1 V2
• neqo-latest vs. haproxy: E
• neqo-latest vs. kwik: E
• neqo-latest vs. msquic: 3 E
• neqo-latest vs. mvfst: C20 S E V2
• neqo-latest vs. nginx: E V2
• neqo-latest vs. quic-go: E V2
• neqo-latest vs. quiche: E V2
• neqo-latest vs. quinn: V2
• neqo-latest vs. s2n-quic: Z V2
• neqo-latest vs. xquic: S E V2

neqo-latest as server

• aioquic vs. neqo-latest: U E
• chrome vs. neqo-latest: H DC LR C20 M S R Z B U E A L1 L2 C1 C2 6 V2
• go-x-net vs. neqo-latest: C20 S R Z 3 E L1 C1 V2
• kwik vs. neqo-latest: E
• lsquic vs. neqo-latest: C20 Z U
• msquic vs. neqo-latest: 3 E
• mvfst vs. neqo-latest: C20 S R U E V2
• quic-go vs. neqo-latest: E V2
• quiche vs. neqo-latest: C20 U E V2
• s2n-quic vs. neqo-latest: C20 Z U V2
• xquic vs. neqo-latest: E V2

[github-actions]

Benchmark results

Performance differences relative to 55e3a93.

coalesce_acked_from_zero 1+1 entries: 💚 Performance has improved.

       time:   [99.020 ns 99.373 ns 99.748 ns]
       change: [-12.625% -12.109% -11.519%] (p = 0.00 < 0.05)
Found 13 outliers among 100 measurements (13.00%)

10 (10.00%) high mild

3 (3.00%) high severe

coalesce_acked_from_zero 3+1 entries: 💚 Performance has improved.

       time:   [116.71 ns 117.07 ns 117.47 ns]
       change: [-33.575% -33.290% -33.015%] (p = 0.00 < 0.05)
Found 17 outliers among 100 measurements (17.00%)

1 (1.00%) low severe

2 (2.00%) low mild

3 (3.00%) high mild

11 (11.00%) high severe

coalesce_acked_from_zero 10+1 entries: 💚 Performance has improved.

       time:   [116.19 ns 116.44 ns 116.81 ns]
       change: [-39.985% -35.771% -33.269%] (p = 0.00 < 0.05)
Found 14 outliers among 100 measurements (14.00%)

4 (4.00%) low severe

3 (3.00%) low mild

4 (4.00%) high mild

3 (3.00%) high severe

coalesce_acked_from_zero 1000+1 entries: 💚 Performance has improved.

       time:   [97.353 ns 97.537 ns 97.759 ns]
       change: [-32.104% -31.560% -30.951%] (p = 0.00 < 0.05)
Found 7 outliers among 100 measurements (7.00%)

2 (2.00%) high mild

5 (5.00%) high severe

RxStreamOrderer::inbound_frame(): Change within noise threshold.

       time:   [111.59 ms 111.73 ms 111.95 ms]
       change: [+0.1729% +0.3073% +0.5402%] (p = 0.00 < 0.05)
Found 12 outliers among 100 measurements (12.00%)

5 (5.00%) low mild

6 (6.00%) high mild

1 (1.00%) high severe

transfer/pacing-false/varying-seeds: No change in performance detected.

       time:   [27.051 ms 28.047 ms 29.043 ms]
       change: [-6.8650% -1.8673% +3.1094%] (p = 0.48 > 0.05)

transfer/pacing-true/varying-seeds: No change in performance detected.

       time:   [34.872 ms 36.392 ms 37.908 ms]
       change: [-10.358% -4.9922% +1.1502%] (p = 0.10 > 0.05)
Found 2 outliers among 100 measurements (2.00%)

1 (1.00%) low mild

1 (1.00%) high mild

transfer/pacing-false/same-seed: 💚 Performance has improved.

       time:   [9.3547 ms 9.7340 ms 10.139 ms]
       change: [-66.135% -64.408% -62.490%] (p = 0.00 < 0.05)
Found 3 outliers among 100 measurements (3.00%)

3 (3.00%) high mild

transfer/pacing-true/same-seed: 💚 Performance has improved.

       time:   [27.417 ms 29.036 ms 30.657 ms]
       change: [-38.208% -33.603% -29.174%] (p = 0.00 < 0.05)
Found 1 outliers among 100 measurements (1.00%)

1 (1.00%) high mild

1-conn/1-100mb-resp (aka. Download)/client: 💚 Performance has improved.

       time:   [113.54 ms 113.86 ms 114.18 ms]
       thrpt:  [875.83 MiB/s 878.25 MiB/s 880.74 MiB/s]
change:
       time:   [-2.1369% -1.7783% -1.3912%] (p = 0.00 < 0.05)
       thrpt:  [+1.4109% +1.8104% +2.1836%]
Found 1 outliers among 100 measurements (1.00%)

1 (1.00%) low mild

1-conn/10_000-parallel-1b-resp (aka. RPS)/client: No change in performance detected.

       time:   [312.32 ms 316.44 ms 320.43 ms]
       thrpt:  [31.208 Kelem/s 31.601 Kelem/s 32.018 Kelem/s]
change:
       time:   [-2.9836% -1.2214% +0.5215%] (p = 0.17 > 0.05)
       thrpt:  [-0.5188% +1.2365% +3.0754%]
Found 1 outliers among 100 measurements (1.00%)

1 (1.00%) low mild

1-conn/1-1b-resp (aka. HPS)/client: No change in performance detected.

       time:   [33.676 ms 33.863 ms 34.064 ms]
       thrpt:  [29.357  elem/s 29.530  elem/s 29.694  elem/s]
change:
       time:   [-0.4043% +0.3648% +1.0771%] (p = 0.36 > 0.05)
       thrpt:  [-1.0656% -0.3635% +0.4060%]
Found 13 outliers among 100 measurements (13.00%)

6 (6.00%) low mild

2 (2.00%) high mild

5 (5.00%) high severe

Client/server transfer results

Transfer of 33554432 bytes over loopback.

Client	Server	CC	Pacing	Mean [ms]	Min [ms]	Max [ms]	Relative
msquic	msquic			202.4 ± 91.5	102.7	322.0	1.00
neqo	msquic	reno	on	229.3 ± 47.3	203.3	375.0	1.00
neqo	msquic	reno		219.5 ± 14.1	202.6	243.7	1.00
neqo	msquic	cubic	on	217.6 ± 12.2	203.2	240.9	1.00
neqo	msquic	cubic		249.2 ± 83.0	203.2	468.3	1.00
msquic	neqo	reno	on	93.8 ± 18.2	82.3	143.8	1.00
msquic	neqo	reno		133.4 ± 78.4	83.1	365.3	1.00
msquic	neqo	cubic	on	99.7 ± 23.2	81.4	171.6	1.00
msquic	neqo	cubic		139.6 ± 93.4	81.9	366.7	1.00
neqo	neqo	reno	on	149.1 ± 17.5	124.9	180.8	1.00
neqo	neqo	reno		241.3 ± 108.0	133.9	394.5	1.00
neqo	neqo	cubic	on	144.0 ± 16.9	121.7	171.7	1.00
neqo	neqo	cubic		231.8 ± 110.5	134.9	539.6	1.00

⬇️ Download logs

[github-actions]

Firefox builds for this PR

The following builds are available for testing. Crossed-out builds did not succeed.

• Linux: Debug Release
• macOS: Debug Release
• Windows: Debug Release

[mxinden]

This makes sense to me.

Can you link to the concrete section of RFC 9000 you are referring to?

I can only find the following in RFC 9001 4.9.1:

The successful use of Handshake packets indicates that no more Initial packets need to be exchanged, as these keys can only be produced after receiving all CRYPTO frames from Initial packets. Thus, a client MUST discard Initial keys when it first sends a Handshake packet and a server MUST discard Initial keys when it first successfully processes a Handshake packet. Endpoints MUST NOT send Initial packets after this point.

https://www.rfc-editor.org/rfc/rfc9001#section-4.9.1

[larseggert]

That is the section in question.

[larseggert]

@martinthomson I'd appreciate a review, since the code I am touching is pretty complex.