From d06b41c670e29de9d09f0f088e007611f3800db9 Mon Sep 17 00:00:00 2001 From: alyssawilk Date: Tue, 9 Feb 2021 10:24:14 -0500 Subject: [PATCH] http3: adding upstream API hooks (#14839) Only adding explicit (hard-configured, or downstream-initiated) HTTP/3. Getting Auto for UDP/TCP is going to take substantially more work. HTTP/3 config will be rejected initially to keep this PR simple as possible. Risk Level: Low (unused, hidden) Testing: new unit tests Docs Changes: n/a Release Notes: n/a Part of #14829 Signed-off-by: Alyssa Wilk --- api/envoy/config/core/v3/protocol.proto | 8 +++ api/envoy/config/core/v4alpha/protocol.proto | 10 ++++ .../http/v3/http_protocol_options.proto | 8 ++- .../http/v4alpha/http_protocol_options.proto | 8 ++- .../envoy/config/core/v3/protocol.proto | 8 +++ .../envoy/config/core/v4alpha/protocol.proto | 10 ++++ .../http/v3/http_protocol_options.proto | 8 ++- .../http/v4alpha/http_protocol_options.proto | 8 ++- include/envoy/upstream/upstream.h | 2 + .../common/upstream/cluster_manager_impl.cc | 6 +-- source/common/upstream/upstream_impl.cc | 8 +++ source/extensions/upstreams/http/config.cc | 21 +++++++- source/extensions/upstreams/http/config.h | 2 + test/common/upstream/upstream_impl_test.cc | 50 +++++++++++++++++++ 14 files changed, 149 insertions(+), 8 deletions(-) diff --git a/api/envoy/config/core/v3/protocol.proto b/api/envoy/config/core/v3/protocol.proto index 80d971c1466b..7108fba33fc2 100644 --- a/api/envoy/config/core/v3/protocol.proto +++ b/api/envoy/config/core/v3/protocol.proto @@ -389,3 +389,11 @@ message GrpcProtocolOptions { Http2ProtocolOptions http2_protocol_options = 1; } + +// [#not-implemented-hide:] +// +// A message which allows using HTTP/3 as an upstream protocol. +// +// Eventually this will include configuration for tuning HTTP/3. +message Http3ProtocolOptions { +} diff --git a/api/envoy/config/core/v4alpha/protocol.proto b/api/envoy/config/core/v4alpha/protocol.proto index 60f0b3210805..86bec0ec81a9 100644 --- a/api/envoy/config/core/v4alpha/protocol.proto +++ b/api/envoy/config/core/v4alpha/protocol.proto @@ -382,3 +382,13 @@ message GrpcProtocolOptions { Http2ProtocolOptions http2_protocol_options = 1; } + +// [#not-implemented-hide:] +// +// A message which allows using HTTP/3 as an upstream protocol. +// +// Eventually this will include configuration for tuning HTTP/3. +message Http3ProtocolOptions { + option (udpa.annotations.versioning).previous_message_type = + "envoy.config.core.v3.Http3ProtocolOptions"; +} diff --git a/api/envoy/extensions/upstreams/http/v3/http_protocol_options.proto b/api/envoy/extensions/upstreams/http/v3/http_protocol_options.proto index e7cf42df2387..00cac9d27336 100644 --- a/api/envoy/extensions/upstreams/http/v3/http_protocol_options.proto +++ b/api/envoy/extensions/upstreams/http/v3/http_protocol_options.proto @@ -58,7 +58,7 @@ option (udpa.annotations.file_status).package_version_status = ACTIVE; // .... [further cluster config] // [#next-free-field: 6] message HttpProtocolOptions { - // If this is used, the cluster will only operate on one of the possible upstream protocols (HTTP/1.1, HTTP/2). + // If this is used, the cluster will only operate on one of the possible upstream protocols. // Note that HTTP/2 should generally be used for upstream clusters doing gRPC. message ExplicitHttpConfig { oneof protocol_config { @@ -67,6 +67,9 @@ message HttpProtocolOptions { config.core.v3.Http1ProtocolOptions http_protocol_options = 1; config.core.v3.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v3.Http3ProtocolOptions http3_protocol_options = 3; } } @@ -76,6 +79,9 @@ message HttpProtocolOptions { config.core.v3.Http1ProtocolOptions http_protocol_options = 1; config.core.v3.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v3.Http3ProtocolOptions http3_protocol_options = 3; } // If this is used, the cluster can use either HTTP/1 or HTTP/2, and will use whichever diff --git a/api/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto b/api/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto index 277ceb9aa989..e3cf4476983a 100644 --- a/api/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto +++ b/api/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto @@ -62,7 +62,7 @@ message HttpProtocolOptions { option (udpa.annotations.versioning).previous_message_type = "envoy.extensions.upstreams.http.v3.HttpProtocolOptions"; - // If this is used, the cluster will only operate on one of the possible upstream protocols (HTTP/1.1, HTTP/2). + // If this is used, the cluster will only operate on one of the possible upstream protocols. // Note that HTTP/2 should generally be used for upstream clusters doing gRPC. message ExplicitHttpConfig { option (udpa.annotations.versioning).previous_message_type = @@ -74,6 +74,9 @@ message HttpProtocolOptions { config.core.v4alpha.Http1ProtocolOptions http_protocol_options = 1; config.core.v4alpha.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v4alpha.Http3ProtocolOptions http3_protocol_options = 3; } } @@ -86,6 +89,9 @@ message HttpProtocolOptions { config.core.v4alpha.Http1ProtocolOptions http_protocol_options = 1; config.core.v4alpha.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v4alpha.Http3ProtocolOptions http3_protocol_options = 3; } // If this is used, the cluster can use either HTTP/1 or HTTP/2, and will use whichever diff --git a/generated_api_shadow/envoy/config/core/v3/protocol.proto b/generated_api_shadow/envoy/config/core/v3/protocol.proto index 80d971c1466b..7108fba33fc2 100644 --- a/generated_api_shadow/envoy/config/core/v3/protocol.proto +++ b/generated_api_shadow/envoy/config/core/v3/protocol.proto @@ -389,3 +389,11 @@ message GrpcProtocolOptions { Http2ProtocolOptions http2_protocol_options = 1; } + +// [#not-implemented-hide:] +// +// A message which allows using HTTP/3 as an upstream protocol. +// +// Eventually this will include configuration for tuning HTTP/3. +message Http3ProtocolOptions { +} diff --git a/generated_api_shadow/envoy/config/core/v4alpha/protocol.proto b/generated_api_shadow/envoy/config/core/v4alpha/protocol.proto index c9fc21d4cfa4..829415c69f16 100644 --- a/generated_api_shadow/envoy/config/core/v4alpha/protocol.proto +++ b/generated_api_shadow/envoy/config/core/v4alpha/protocol.proto @@ -392,3 +392,13 @@ message GrpcProtocolOptions { Http2ProtocolOptions http2_protocol_options = 1; } + +// [#not-implemented-hide:] +// +// A message which allows using HTTP/3 as an upstream protocol. +// +// Eventually this will include configuration for tuning HTTP/3. +message Http3ProtocolOptions { + option (udpa.annotations.versioning).previous_message_type = + "envoy.config.core.v3.Http3ProtocolOptions"; +} diff --git a/generated_api_shadow/envoy/extensions/upstreams/http/v3/http_protocol_options.proto b/generated_api_shadow/envoy/extensions/upstreams/http/v3/http_protocol_options.proto index e7cf42df2387..00cac9d27336 100644 --- a/generated_api_shadow/envoy/extensions/upstreams/http/v3/http_protocol_options.proto +++ b/generated_api_shadow/envoy/extensions/upstreams/http/v3/http_protocol_options.proto @@ -58,7 +58,7 @@ option (udpa.annotations.file_status).package_version_status = ACTIVE; // .... [further cluster config] // [#next-free-field: 6] message HttpProtocolOptions { - // If this is used, the cluster will only operate on one of the possible upstream protocols (HTTP/1.1, HTTP/2). + // If this is used, the cluster will only operate on one of the possible upstream protocols. // Note that HTTP/2 should generally be used for upstream clusters doing gRPC. message ExplicitHttpConfig { oneof protocol_config { @@ -67,6 +67,9 @@ message HttpProtocolOptions { config.core.v3.Http1ProtocolOptions http_protocol_options = 1; config.core.v3.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v3.Http3ProtocolOptions http3_protocol_options = 3; } } @@ -76,6 +79,9 @@ message HttpProtocolOptions { config.core.v3.Http1ProtocolOptions http_protocol_options = 1; config.core.v3.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v3.Http3ProtocolOptions http3_protocol_options = 3; } // If this is used, the cluster can use either HTTP/1 or HTTP/2, and will use whichever diff --git a/generated_api_shadow/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto b/generated_api_shadow/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto index 277ceb9aa989..e3cf4476983a 100644 --- a/generated_api_shadow/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto +++ b/generated_api_shadow/envoy/extensions/upstreams/http/v4alpha/http_protocol_options.proto @@ -62,7 +62,7 @@ message HttpProtocolOptions { option (udpa.annotations.versioning).previous_message_type = "envoy.extensions.upstreams.http.v3.HttpProtocolOptions"; - // If this is used, the cluster will only operate on one of the possible upstream protocols (HTTP/1.1, HTTP/2). + // If this is used, the cluster will only operate on one of the possible upstream protocols. // Note that HTTP/2 should generally be used for upstream clusters doing gRPC. message ExplicitHttpConfig { option (udpa.annotations.versioning).previous_message_type = @@ -74,6 +74,9 @@ message HttpProtocolOptions { config.core.v4alpha.Http1ProtocolOptions http_protocol_options = 1; config.core.v4alpha.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v4alpha.Http3ProtocolOptions http3_protocol_options = 3; } } @@ -86,6 +89,9 @@ message HttpProtocolOptions { config.core.v4alpha.Http1ProtocolOptions http_protocol_options = 1; config.core.v4alpha.Http2ProtocolOptions http2_protocol_options = 2; + + // [#not-implemented-hide:] + config.core.v4alpha.Http3ProtocolOptions http3_protocol_options = 3; } // If this is used, the cluster can use either HTTP/1 or HTTP/2, and will use whichever diff --git a/include/envoy/upstream/upstream.h b/include/envoy/upstream/upstream.h index 792047b0ee40..a784c35b5498 100644 --- a/include/envoy/upstream/upstream.h +++ b/include/envoy/upstream/upstream.h @@ -706,6 +706,8 @@ class ClusterInfo { // If USE_ALPN and HTTP2 are true, the upstream protocol will be negotiated using ALPN. // If ALPN is attempted but not supported by the upstream HTTP/1.1 is used. static const uint64_t USE_ALPN = 0x8; + // Whether the upstream supports HTTP3. This is used when creating connection pools. + static const uint64_t HTTP3 = 0x10; }; virtual ~ClusterInfo() = default; diff --git a/source/common/upstream/cluster_manager_impl.cc b/source/common/upstream/cluster_manager_impl.cc index 35ac22b48195..e9af3f815dd9 100644 --- a/source/common/upstream/cluster_manager_impl.cc +++ b/source/common/upstream/cluster_manager_impl.cc @@ -1490,9 +1490,9 @@ Http::ConnectionPool::InstancePtr ProdClusterManagerFactory::allocateConnPool( const Network::ConnectionSocket::OptionsSharedPtr& options, const Network::TransportSocketOptionsSharedPtr& transport_socket_options, ClusterConnectivityState& state) { - if (protocols.size() == 2 && - ((protocols[0] == Http::Protocol::Http2 && protocols[1] == Http::Protocol::Http11) || - (protocols[1] == Http::Protocol::Http2 && protocols[0] == Http::Protocol::Http11))) { + if (protocols.size() == 2) { + ASSERT((protocols[0] == Http::Protocol::Http2 && protocols[1] == Http::Protocol::Http11) || + (protocols[1] == Http::Protocol::Http2 && protocols[0] == Http::Protocol::Http11)); return std::make_unique(dispatcher, api_.randomGenerator(), host, priority, options, transport_socket_options, state); diff --git a/source/common/upstream/upstream_impl.cc b/source/common/upstream/upstream_impl.cc index 436debbaaebf..747d4079fcde 100644 --- a/source/common/upstream/upstream_impl.cc +++ b/source/common/upstream/upstream_impl.cc @@ -895,8 +895,12 @@ ClusterInfoImpl::upstreamHttpProtocol(absl::optional downstream_ features_ & Upstream::ClusterInfo::Features::USE_DOWNSTREAM_PROTOCOL) { return {downstream_protocol.value()}; } else if (features_ & Upstream::ClusterInfo::Features::USE_ALPN) { + ASSERT(!(features_ & Upstream::ClusterInfo::Features::HTTP3)); return {Http::Protocol::Http2, Http::Protocol::Http11}; } else { + if (features_ & Upstream::ClusterInfo::Features::HTTP3) { + return {Http::Protocol::Http3}; + } return {(features_ & Upstream::ClusterInfo::Features::HTTP2) ? Http::Protocol::Http2 : Http::Protocol::Http11}; } @@ -929,6 +933,10 @@ ClusterImplBase::ClusterImplBase( fmt::format("ALPN configured for cluster {} which has a non-ALPN transport socket: {}", cluster.name(), cluster.DebugString())); } + if ((info_->features() & ClusterInfoImpl::Features::HTTP3)) { + throw EnvoyException( + fmt::format("HTTP3 not yet supported: {}", cluster.name(), cluster.DebugString())); + } // Create the default (empty) priority set before registering callbacks to // avoid getting an update the first time it is accessed. diff --git a/source/extensions/upstreams/http/config.cc b/source/extensions/upstreams/http/config.cc index 2d8cbd447c4f..eff6d2d4af20 100644 --- a/source/extensions/upstreams/http/config.cc +++ b/source/extensions/upstreams/http/config.cc @@ -41,6 +41,19 @@ getHttp2Options(const envoy::extensions::upstreams::http::v3::HttpProtocolOption return options.explicit_http_config().http2_protocol_options(); } +absl::optional +getHttp3Options(const envoy::extensions::upstreams::http::v3::HttpProtocolOptions& options) { + if (options.has_use_downstream_protocol_config() && + options.use_downstream_protocol_config().has_http3_protocol_options()) { + return options.use_downstream_protocol_config().http3_protocol_options(); + } + if (options.has_explicit_http_config() && + options.explicit_http_config().has_http3_protocol_options()) { + return options.explicit_http_config().http3_protocol_options(); + } + return {}; +} + } // namespace uint64_t ProtocolOptionsConfigImpl::parseFeatures(const envoy::config::cluster::v3::Cluster& config, @@ -50,13 +63,15 @@ uint64_t ProtocolOptionsConfigImpl::parseFeatures(const envoy::config::cluster:: if (options.use_http2_) { features |= Upstream::ClusterInfo::Features::HTTP2; } + if (options.use_http3_) { + features |= Upstream::ClusterInfo::Features::HTTP3; + } if (options.use_downstream_protocol_) { features |= Upstream::ClusterInfo::Features::USE_DOWNSTREAM_PROTOCOL; } if (options.use_alpn_) { features |= Upstream::ClusterInfo::Features::USE_ALPN; } - if (config.close_connections_on_host_health_failure()) { features |= Upstream::ClusterInfo::Features::CLOSE_CONNECTIONS_ON_HOST_HEALTH_FAILURE; } @@ -67,12 +82,16 @@ ProtocolOptionsConfigImpl::ProtocolOptionsConfigImpl( const envoy::extensions::upstreams::http::v3::HttpProtocolOptions& options) : http1_settings_(Envoy::Http::Utility::parseHttp1Settings(getHttpOptions(options))), http2_options_(Http2::Utility::initializeAndValidateOptions(getHttp2Options(options))), + http3_options_(getHttp3Options(options)), common_http_protocol_options_(options.common_http_protocol_options()), upstream_http_protocol_options_( options.has_upstream_http_protocol_options() ? absl::make_optional( options.upstream_http_protocol_options()) : absl::nullopt) { + if (http3_options_.has_value()) { + use_http3_ = true; + } if (options.has_explicit_http_config() && options.explicit_http_config().has_http2_protocol_options()) { use_http2_ = true; diff --git a/source/extensions/upstreams/http/config.h b/source/extensions/upstreams/http/config.h index 6d84667b8caa..bd620bc15761 100644 --- a/source/extensions/upstreams/http/config.h +++ b/source/extensions/upstreams/http/config.h @@ -41,12 +41,14 @@ class ProtocolOptionsConfigImpl : public Upstream::ProtocolOptionsConfig { const Envoy::Http::Http1Settings http1_settings_; const envoy::config::core::v3::Http2ProtocolOptions http2_options_; + absl::optional http3_options_{}; const envoy::config::core::v3::HttpProtocolOptions common_http_protocol_options_; const absl::optional upstream_http_protocol_options_; bool use_downstream_protocol_{}; bool use_http2_{}; + bool use_http3_{}; bool use_alpn_{}; }; diff --git a/test/common/upstream/upstream_impl_test.cc b/test/common/upstream/upstream_impl_test.cc index a45d21b7c88d..75632568d3ee 100644 --- a/test/common/upstream/upstream_impl_test.cc +++ b/test/common/upstream/upstream_impl_test.cc @@ -3008,6 +3008,8 @@ TEST_F(ClusterInfoImplTest, UseDownstreamHttpProtocol) { cluster->info()->upstreamHttpProtocol({Http::Protocol::Http11})[0]); EXPECT_EQ(Http::Protocol::Http2, cluster->info()->upstreamHttpProtocol({Http::Protocol::Http2})[0]); + EXPECT_EQ(Http::Protocol::Http3, + cluster->info()->upstreamHttpProtocol({Http::Protocol::Http3})[0]); } TEST_F(ClusterInfoImplTest, UpstreamHttp2Protocol) { @@ -3049,6 +3051,54 @@ TEST_F(ClusterInfoImplTest, UpstreamHttp11Protocol) { cluster->info()->upstreamHttpProtocol({Http::Protocol::Http2})[0]); } +TEST_F(ClusterInfoImplTest, Http3) { + const std::string yaml = R"EOF( + name: name + connect_timeout: 0.25s + type: STRICT_DNS + lb_policy: MAGLEV + load_assignment: + endpoints: + - lb_endpoints: + - endpoint: + address: + socket_address: + address: foo.bar.com + port_value: 443 + )EOF"; + + BazFactory baz_factory; + Registry::InjectFactory registered_factory(baz_factory); + auto cluster1 = makeCluster(yaml); + ASSERT_TRUE(cluster1->info()->idleTimeout().has_value()); + EXPECT_EQ(std::chrono::hours(1), cluster1->info()->idleTimeout().value()); + + const std::string explicit_http3 = R"EOF( + typed_extension_protocol_options: + envoy.extensions.upstreams.http.v3.HttpProtocolOptions: + "@type": type.googleapis.com/envoy.extensions.upstreams.http.v3.HttpProtocolOptions + explicit_http_config: + http3_protocol_options: {} + )EOF"; + + const std::string downstream_http3 = R"EOF( + typed_extension_protocol_options: + envoy.extensions.upstreams.http.v3.HttpProtocolOptions: + "@type": type.googleapis.com/envoy.extensions.upstreams.http.v3.HttpProtocolOptions + common_http_protocol_options: + idle_timeout: 1s + )EOF"; + + { + EXPECT_THROW_WITH_REGEX(makeCluster(yaml + explicit_http3), EnvoyException, + "HTTP3 not yet supported: name.*"); + } + { + EXPECT_THROW_WITH_REGEX(makeCluster(yaml + explicit_http3), EnvoyException, + "HTTP3 not yet supported: name.*"); + } +} + // Validate empty singleton for HostsPerLocalityImpl. TEST(HostsPerLocalityImpl, Empty) { EXPECT_FALSE(HostsPerLocalityImpl::empty()->hasLocalLocality());