Welcome! Log In Create A New Profile

Re: [PATCH 2 of 2] QUIC: init_streams() callback

Forum List Message List New Topic Print View

Roman Arutyunyan

June 02, 2022 09:46AM

On Tue, May 31, 2022 at 01:53:08AM +0400, Sergey Kandaurov wrote:
>
> > On 18 May 2022, at 10:57, Roman Arutyunyan <arut@nginx.com> wrote:
> >
> > # HG changeset patch
> > # User Roman Arutyunyan <arut@nginx.com>
> > # Date 1652856132 -14400
> > # Wed May 18 10:42:12 2022 +0400
> > # Branch quic
> > # Node ID a0f2d69f1fe43dfc718262235bf04d7b05f1fd68
> > # Parent 67ae4b649f2e38a44b245b7a842cf396c8250f02
> > QUIC: init_streams() callback.
> >
> > It's called after handshake completion to initialize application-level data
> > prior to creating streams.
>
> See below for 0-RTT case.
>
> >
> > HTTP/3 callback implementation switches main QUIC connection to idle and
> > reusable modes and sets keepalive timer.
> >
> > diff --git a/src/event/quic/ngx_event_quic.h b/src/event/quic/ngx_event_quic.h
> > --- a/src/event/quic/ngx_event_quic.h
> > +++ b/src/event/quic/ngx_event_quic.h
> > @@ -28,6 +28,9 @@
> > #define NGX_QUIC_STREAM_UNIDIRECTIONAL 0x02
> >
> >
> > +typedef ngx_int_t (*ngx_quic_init_streams_pt)(ngx_connection_t *c);
> > +
> > +
> > typedef enum {
> > NGX_QUIC_STREAM_SEND_READY = 0,
> > NGX_QUIC_STREAM_SEND_SEND,
> > @@ -74,6 +77,8 @@ typedef struct {
> > ngx_int_t stream_reject_code_uni;
> > ngx_int_t stream_reject_code_bidi;
> >
> > + ngx_quic_init_streams_pt init_streams;
> > +
> > u_char av_token_key[NGX_QUIC_AV_KEY_LEN];
> > u_char sr_token_key[NGX_QUIC_SR_KEY_LEN];
> > } ngx_quic_conf_t;
> > diff --git a/src/event/quic/ngx_event_quic_streams.c b/src/event/quic/ngx_event_quic_streams.c
> > --- a/src/event/quic/ngx_event_quic_streams.c
> > +++ b/src/event/quic/ngx_event_quic_streams.c
> > @@ -21,6 +21,7 @@ static ngx_quic_stream_t *ngx_quic_get_s
> > static ngx_int_t ngx_quic_reject_stream(ngx_connection_t *c, uint64_t id);
> > static void ngx_quic_init_stream_handler(ngx_event_t *ev);
> > static void ngx_quic_init_streams_handler(ngx_connection_t *c);
> > +static ngx_int_t ngx_quic_do_init_streams(ngx_connection_t *c);
> > static ngx_quic_stream_t *ngx_quic_create_stream(ngx_connection_t *c,
> > uint64_t id);
> > static void ngx_quic_empty_handler(ngx_event_t *ev);
> > @@ -571,15 +572,22 @@ ngx_quic_init_streams(ngx_connection_t *
> > return NGX_OK;
> > }
> >
> > - ngx_quic_init_streams_handler(c);
> > -
> > - return NGX_OK;
> > + return ngx_quic_do_init_streams(c);
> > }
> >
> >
> > static void
> > ngx_quic_init_streams_handler(ngx_connection_t *c)
> > {
> > + if (ngx_quic_do_init_streams(c) != NGX_OK) {
> > + ngx_quic_close_connection(c, NGX_ERROR);
> > + }
> > +}
> > +
> > +
> > +static ngx_int_t
> > +ngx_quic_do_init_streams(ngx_connection_t *c)
> > +{
> > ngx_queue_t *q;
> > ngx_quic_stream_t *qs;
> > ngx_quic_connection_t *qc;
> > @@ -588,6 +596,12 @@ ngx_quic_init_streams_handler(ngx_connec
> >
> > qc = ngx_quic_get_connection(c);
> >
> > + if (qc->conf->init_streams) {
> > + if (qc->conf->init_streams(c) != NGX_OK) {
> > + return NGX_ERROR;
> > + }
> > + }
> > +
> > for (q = ngx_queue_head(&qc->streams.uninitialized);
> > q != ngx_queue_sentinel(&qc->streams.uninitialized);
> > q = ngx_queue_next(q))
> > @@ -597,6 +611,8 @@ ngx_quic_init_streams_handler(ngx_connec
> > }
> >
> > qc->streams.initialized = 1;
> > +
> > + return NGX_OK;
> > }
> >
> >
> > diff --git a/src/http/v3/ngx_http_v3.c b/src/http/v3/ngx_http_v3.c
> > --- a/src/http/v3/ngx_http_v3.c
> > +++ b/src/http/v3/ngx_http_v3.c
> > @@ -17,21 +17,15 @@ static void ngx_http_v3_cleanup_session(
> > ngx_int_t
> > ngx_http_v3_init_session(ngx_connection_t *c)
> > {
> > - ngx_connection_t *pc;
> > ngx_pool_cleanup_t *cln;
> > ngx_http_connection_t *hc;
> > ngx_http_v3_session_t *h3c;
> >
> > - pc = c->quic->parent;
> > - hc = pc->data;
> > -
> > - if (hc->v3_session) {
> > - return NGX_OK;
> > - }
> > + hc = c->data;
> >
> > ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http3 init session");
> >
> > - h3c = ngx_pcalloc(pc->pool, sizeof(ngx_http_v3_session_t));
> > + h3c = ngx_pcalloc(c->pool, sizeof(ngx_http_v3_session_t));
> > if (h3c == NULL) {
> > goto failed;
> > }
> > @@ -42,16 +36,16 @@ ngx_http_v3_init_session(ngx_connection_
> > ngx_queue_init(&h3c->blocked);
> > ngx_queue_init(&h3c->pushing);
> >
> > - h3c->keepalive.log = pc->log;
> > - h3c->keepalive.data = pc;
> > + h3c->keepalive.log = c->log;
> > + h3c->keepalive.data = c;
> > h3c->keepalive.handler = ngx_http_v3_keepalive_handler;
> > h3c->keepalive.cancelable = 1;
> >
> > - h3c->table.send_insert_count.log = pc->log;
> > - h3c->table.send_insert_count.data = pc;
> > + h3c->table.send_insert_count.log = c->log;
> > + h3c->table.send_insert_count.data = c;
> > h3c->table.send_insert_count.handler = ngx_http_v3_inc_insert_count_handler;
> >
> > - cln = ngx_pool_cleanup_add(pc->pool, 0);
> > + cln = ngx_pool_cleanup_add(c->pool, 0);
> > if (cln == NULL) {
> > goto failed;
> > }
> > diff --git a/src/http/v3/ngx_http_v3.h b/src/http/v3/ngx_http_v3.h
> > --- a/src/http/v3/ngx_http_v3.h
> > +++ b/src/http/v3/ngx_http_v3.h
> > @@ -153,6 +153,7 @@ struct ngx_http_v3_session_s {
> >
> > void ngx_http_v3_init(ngx_connection_t *c);
> > void ngx_http_v3_reset_connection(ngx_connection_t *c);
> > +ngx_int_t ngx_http_v3_init_streams(ngx_connection_t *c);
> > ngx_int_t ngx_http_v3_init_session(ngx_connection_t *c);
> > ngx_int_t ngx_http_v3_check_flood(ngx_connection_t *c);
> >
> > diff --git a/src/http/v3/ngx_http_v3_module.c b/src/http/v3/ngx_http_v3_module.c
> > --- a/src/http/v3/ngx_http_v3_module.c
> > +++ b/src/http/v3/ngx_http_v3_module.c
> > @@ -249,6 +249,8 @@ ngx_http_v3_create_srv_conf(ngx_conf_t *
> > h3scf->quic.stream_reject_code_bidi = NGX_HTTP_V3_ERR_REQUEST_REJECTED;
> > h3scf->quic.active_connection_id_limit = NGX_CONF_UNSET_UINT;
> >
> > + h3scf->quic.init_streams = ngx_http_v3_init_streams;
> > +
> > return h3scf;
> > }
> >
> > diff --git a/src/http/v3/ngx_http_v3_request.c b/src/http/v3/ngx_http_v3_request.c
> > --- a/src/http/v3/ngx_http_v3_request.c
> > +++ b/src/http/v3/ngx_http_v3_request.c
> > @@ -93,11 +93,6 @@ ngx_http_v3_init(ngx_connection_t *c)
> > }
> > #endif
> >
> > - if (ngx_http_v3_init_session(c) != NGX_OK) {
> > - ngx_http_close_connection(c);
> > - return;
> > - }
> > -
> > if (c->quic->id & NGX_QUIC_STREAM_UNIDIRECTIONAL) {
> > ngx_http_v3_init_uni_stream(c);
> >
> > @@ -107,6 +102,43 @@ ngx_http_v3_init(ngx_connection_t *c)
> > }
> >
> >
> > +ngx_int_t
> > +ngx_http_v3_init_streams(ngx_connection_t *c)
> > +{
> > + ngx_http_v3_session_t *h3c;
> > + ngx_http_connection_t *hc;
> > + ngx_http_v3_srv_conf_t *h3scf;
> > + ngx_http_core_loc_conf_t *clcf;
> > +
> > + if (ngx_terminate || ngx_exiting) {
> > + return NGX_ERROR;
> > + }
> > +
> > + hc = c->data;
> > +
> > + h3scf = ngx_http_get_module_srv_conf(hc->conf_ctx, ngx_http_v3_module);
> > +
> > +#if (NGX_HTTP_V3_HQ)
> > + if (h3scf->hq) {
> > + return NGX_OK;
> > + }
> > +#endif
>
> Clang complains about unused variables:
>
> diff --git a/src/http/v3/ngx_http_v3_request.c b/src/http/v3/ngx_http_v3_request.c
> --- a/src/http/v3/ngx_http_v3_request.c
> +++ b/src/http/v3/ngx_http_v3_request.c
> @@ -106,22 +106,26 @@ ngx_int_t
> ngx_http_v3_init_streams(ngx_connection_t *c)
> {
> ngx_http_v3_session_t *h3c;
> +#if (NGX_HTTP_V3_HQ)
> ngx_http_connection_t *hc;
> ngx_http_v3_srv_conf_t *h3scf;
> +#endif
> ngx_http_core_loc_conf_t *clcf;
>
> if (ngx_terminate || ngx_exiting) {
> return NGX_ERROR;
> }
>
> +#if (NGX_HTTP_V3_HQ)
> +
> hc = c->data;
>
> h3scf = ngx_http_get_module_srv_conf(hc->conf_ctx, ngx_http_v3_module);
>
> -#if (NGX_HTTP_V3_HQ)
> if (h3scf->hq) {
> return NGX_OK;
> }
> +
> #endif

Thanks, fixed.

> if (ngx_http_v3_init_session(c) != NGX_OK) {
>
> > +
> > + if (ngx_http_v3_init_session(c) != NGX_OK) {
> > + return NGX_ERROR;
> > + }
>
> If 0-RTT data is accepted, ngx_http_v3_init_session() is called too early,
> before SSL_do_handshake() is used to apply client transport parameters.
> In particular that means inability to open a server unidirectional stream.

Discussed this. The issue manifests itself with QuicTLS because of callback
order. With BoringSSL is ok.

I suggest another patch that relocates ngx_quic_init_streams() call from
where we receive early keys to where we successfully decrypt the first
early data packet. This relocation should fix the issue for all libraries.

> > +
> > + c->idle = 1;
> > + ngx_reusable_connection(c, 1);
> > +
> > + h3c = ngx_http_v3_get_session(c);
> > + clcf = ngx_http_v3_get_module_loc_conf(c, ngx_http_core_module);
> > + ngx_add_timer(&h3c->keepalive, clcf->keepalive_timeout);
> > +
> > + return NGX_OK;
> > +}
> > +
> > +
> > #if (NGX_HTTP_V3_HQ)
> >
> > static void
> >
>
> --
> Sergey Kandaurov
>
> _______________________________________________
> nginx-devel mailing list -- nginx-devel@nginx.org
> To unsubscribe send an email to nginx-devel-leave@nginx.org
_______________________________________________
nginx-devel mailing list -- nginx-devel@nginx.org
To unsubscribe send an email to nginx-devel-leave@nginx.org

Reply Quote

RSS

Subject	Author	Views	Posted
[PATCH 0 of 2] QUIC connection reuse	Roman Arutyunyan	1402	May 18, 2022 03:00AM
[PATCH 1 of 2] QUIC: reusable and idle modes for main connection	Roman Arutyunyan	203	May 18, 2022 03:02AM
Re: [PATCH 1 of 2] QUIC: reusable and idle modes for main connection	Sergey Kandaurov	260	May 30, 2022 09:56AM
Re: [PATCH 1 of 2] QUIC: reusable and idle modes for main connection	Roman Arutyunyan	195	June 02, 2022 09:42AM
[PATCH 2 of 2] QUIC: init_streams() callback	Roman Arutyunyan	207	May 18, 2022 03:04AM
Re: [PATCH 2 of 2] QUIC: init_streams() callback	Sergey Kandaurov	208	May 30, 2022 05:56PM
Re: [PATCH 2 of 2] QUIC: init_streams() callback	Roman Arutyunyan	187	June 02, 2022 09:46AM
[PATCH 0 of 3] QUIC connection reuse	Roman Arutyunyan	195	June 02, 2022 09:54AM
[PATCH 2 of 3] QUIC: relocated early streams initialization	Roman Arutyunyan	201	June 02, 2022 09:54AM
Re: [PATCH 2 of 3] QUIC: relocated early streams initialization	Sergey Kandaurov	192	June 06, 2022 06:44AM
[PATCH 0 of 8] QUIC connection reuse	Roman Arutyunyan	171	June 23, 2022 12:00PM
[PATCH 2 of 8] QUIC: ngx_quic_terminate_connection() function	Roman Arutyunyan	201	June 23, 2022 12:00PM
[PATCH 1 of 8] QUIC: treat qc->error == -1 as a missing error	Roman Arutyunyan	318	June 23, 2022 12:00PM
Re: [PATCH 1 of 8] QUIC: treat qc->error == -1 as a missing error	Sergey Kandaurov	203	August 02, 2022 09:50AM
Re: [PATCH 1 of 8] QUIC: treat qc->error == -1 as a missing error	Roman Arutyunyan	143	August 23, 2022 08:22AM
[PATCH 4 of 8] QUIC: removed ngx_quic_shutdown_connection()	Roman Arutyunyan	225	June 23, 2022 12:00PM
Re: [PATCH 4 of 8] QUIC: removed ngx_quic_shutdown_connection()	Sergey Kandaurov	177	August 02, 2022 11:46AM
Re: [PATCH 4 of 8] QUIC: removed ngx_quic_shutdown_connection()	Roman Arutyunyan	144	August 23, 2022 08:30AM
[PATCH 5 of 8] HTTP/3: keepalive timer for hq mode	Roman Arutyunyan	175	June 23, 2022 12:00PM
[PATCH 8 of 8] QUIC: application init() callback	Roman Arutyunyan	174	June 23, 2022 12:00PM
[PATCH 3 of 8] QUIC: reusable mode for main connection	Roman Arutyunyan	167	June 23, 2022 12:00PM
[PATCH 7 of 8] HTTP/3: renamed functions	Roman Arutyunyan	163	June 23, 2022 12:00PM
[PATCH 6 of 8] QUIC: idle mode for main connection	Roman Arutyunyan	186	June 23, 2022 12:00PM
[PATCH 0 of 9] QUIC connection reuse	Roman Arutyunyan	153	August 23, 2022 08:52AM
[PATCH 5 of 9] QUIC: do not send MAX_STREAMS in shutdown state	Roman Arutyunyan	171	August 23, 2022 08:52AM
[PATCH 4 of 9] QUIC: defer stream removal until all its data is acked	Roman Arutyunyan	139	August 23, 2022 08:52AM
[PATCH 1 of 9] QUIC: treat qc->error == -1 as a missing error	Roman Arutyunyan	139	August 23, 2022 08:52AM
[PATCH 7 of 9] QUIC: idle mode for main connection	Roman Arutyunyan	143	August 23, 2022 08:52AM
[PATCH 8 of 9] HTTP/3: renamed functions	Roman Arutyunyan	172	August 23, 2022 08:52AM
[PATCH 9 of 9] QUIC: application init() callback	Roman Arutyunyan	161	August 23, 2022 08:54AM
[PATCH 6 of 9] HTTP/3: unified hq code with HTTP/3 code	Roman Arutyunyan	137	August 23, 2022 08:54AM
[PATCH 00 of 10] QUIC connection reuse	Roman Arutyunyan	139	September 08, 2022 05:08AM
[PATCH 06 of 10] QUIC: do not send MAX_STREAMS in shutdown state	Roman Arutyunyan	130	September 08, 2022 05:08AM
[PATCH 03 of 10] QUIC: post close event for connection close	Roman Arutyunyan	143	September 08, 2022 05:10AM
[PATCH 02 of 10] QUIC: made ngx_quic_finalize_connecion() more graceful	Roman Arutyunyan	138	September 08, 2022 05:10AM
[PATCH 07 of 10] HTTP/3: unified hq code with regular HTTP/3 code	Roman Arutyunyan	134	September 08, 2022 05:10AM
Re: [PATCH 07 of 10] HTTP/3: unified hq code with regular HTTP/3 code	Sergey Kandaurov	125	October 20, 2022 07:36AM
Re: [PATCH 07 of 10] HTTP/3: unified hq code with regular HTTP/3 code	Roman Arutyunyan	150	October 20, 2022 09:56AM
[PATCH 04 of 10] QUIC: reusable mode for main connection	Roman Arutyunyan	147	September 08, 2022 05:10AM
Re: [PATCH 04 of 10] QUIC: reusable mode for main connection	Sergey Kandaurov	110	November 28, 2022 11:12AM
[PATCH 08 of 10] QUIC: idle mode for main connection	Roman Arutyunyan	152	September 08, 2022 05:10AM
Re: [PATCH 08 of 10] QUIC: idle mode for main connection	Sergey Kandaurov	158	October 20, 2022 07:52AM
Re: [PATCH 08 of 10] QUIC: idle mode for main connection	Roman Arutyunyan	143	October 20, 2022 10:26AM
Re: [PATCH 08 of 10] QUIC: idle mode for main connection	Roman Arutyunyan	187	November 24, 2022 10:18AM
Re: [PATCH 08 of 10] QUIC: idle mode for main connection	Sergey Kandaurov	119	November 28, 2022 12:42PM
Re: [PATCH 08 of 10] QUIC: idle mode for main connection	Roman Arutyunyan	112	November 29, 2022 09:02AM
Re: [PATCH 08 of 10] QUIC: idle mode for main connection	Roman Arutyunyan	130	November 30, 2022 05:14AM
[PATCH 05 of 10] QUIC: defer stream removal until all its data is acked	Roman Arutyunyan	141	September 08, 2022 05:10AM
[PATCH 10 of 10] QUIC: application init() callback	Roman Arutyunyan	142	September 08, 2022 05:10AM
Re: [PATCH 10 of 10] QUIC: application init() callback	Sergey Kandaurov	129	October 20, 2022 07:54AM
Re: [PATCH 10 of 10] QUIC: application init() callback	Roman Arutyunyan	160	October 20, 2022 10:34AM
Re: [PATCH 10 of 10] QUIC: application init() callback	Roman Arutyunyan	195	October 25, 2022 05:12AM
[PATCH 09 of 10] HTTP/3: renamed functions	Roman Arutyunyan	213	September 08, 2022 05:10AM

Sorry, you do not have permission to post/reply in this forum.

Online Users

Guests: 207

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018