[PATCH 08 of 10] QUIC: idle mode for main connection
Roman Arutyunyan
arut at nginx.com
Tue Nov 29 14:00:40 UTC 2022
Hi,
On Mon, Nov 28, 2022 at 09:40:05PM +0400, Sergey Kandaurov wrote:
> On Thu, Nov 24, 2022 at 07:15:31PM +0400, Roman Arutyunyan wrote:
> > Hi,
> >
> > On Thu, Oct 20, 2022 at 06:25:03PM +0400, Roman Arutyunyan wrote:
> > > Hi,
> > >
> > > On Thu, Oct 20, 2022 at 03:50:15PM +0400, Sergey Kandaurov wrote:
> > > > On Thu, Sep 08, 2022 at 01:06:35PM +0400, Roman Arutyunyan wrote:
> > > > > # HG changeset patch
> > > > > # User Roman Arutyunyan <arut at nginx.com>
> > > > > # Date 1662627133 -14400
> > > > > # Thu Sep 08 12:52:13 2022 +0400
> > > > > # Branch quic
> > > > > # Node ID e0634a484d9a2d82d43f565d64a0a22e989ac1cb
> > > > > # Parent 1dd6fabfdcb5b52af495f9d8fc00f64ae36a537c
> > > > > QUIC: idle mode for main connection.
> > > > >
> > > > > Now main QUIC connection for HTTP/3 always has c->idle flag set. This allows
> > > > > the connection to receive worker shutdown notification. It is passed to
> > > > > application level via a new conf->shutdown() callback.
> > > > >
> > > > > The HTTP/3 shutdown callback sends GOAWAY to client and gracefully shuts down
> > > > > the QUIC connection.
> > > > >
> > > > > diff --git a/src/event/quic/ngx_event_quic.c b/src/event/quic/ngx_event_quic.c
> > > > > --- a/src/event/quic/ngx_event_quic.c
> > > > > +++ b/src/event/quic/ngx_event_quic.c
> > > > > @@ -341,6 +341,7 @@ ngx_quic_new_connection(ngx_connection_t
> > > > > return NULL;
> > > > > }
> > > > >
> > > > > + c->idle = 1;
> > > > > ngx_reusable_connection(c, 1);
> > > > >
> > > > > ngx_log_debug0(NGX_LOG_DEBUG_EVENT, c->log, 0,
> > > > > @@ -420,9 +421,9 @@ ngx_quic_input_handler(ngx_event_t *rev)
> > > > > }
> > > > >
> > > > > if (c->close) {
> > > > > - qc->error = NGX_QUIC_ERR_NO_ERROR;
> > > > > - qc->error_reason = "graceful shutdown";
> > > > > - ngx_quic_close_connection(c, NGX_ERROR);
> > > > > + if (qc->conf->shutdown) {
> > > >
> > > > As previously discussed in private, this will need an additional check
> > > > that we are not yet in qc->closing.
> > > >
> > > > > + qc->conf->shutdown(c);
> > > > > + }
> > > > > return;
> > > > > }
> > >
> > >
> > > Yes, added the check. Also, c->close is reset here similarly to HTTP/2
> > > since we want to be able to handle future packets normally.
> > >
> > > Also, current code which closes the connection instantly should remain for
> > > connection reuse. To tell reuse from shutdown we can check ngx_exiting.
> > > Assuming reuse does not make sense in shutdown mode, this will work good.
> > >
> > > > > diff --git a/src/event/quic/ngx_event_quic.h b/src/event/quic/ngx_event_quic.h
> > > > > --- a/src/event/quic/ngx_event_quic.h
> > > > > +++ b/src/event/quic/ngx_event_quic.h
> > > > > @@ -28,6 +28,9 @@
> > > > > #define NGX_QUIC_STREAM_UNIDIRECTIONAL 0x02
> > > > >
> > > > >
> > > > > +typedef void (*ngx_quic_shutdown_pt)(ngx_connection_t *c);
> > > > > +
> > > > > +
> > > > > typedef enum {
> > > > > NGX_QUIC_STREAM_SEND_READY = 0,
> > > > > NGX_QUIC_STREAM_SEND_SEND,
> > > > > @@ -74,6 +77,8 @@ typedef struct {
> > > > > ngx_int_t stream_reject_code_uni;
> > > > > ngx_int_t stream_reject_code_bidi;
> > > > >
> > > > > + ngx_quic_shutdown_pt shutdown;
> > > > > +
> > > > > u_char av_token_key[NGX_QUIC_AV_KEY_LEN];
> > > > > u_char sr_token_key[NGX_QUIC_SR_KEY_LEN];
> > > > > } ngx_quic_conf_t;
> > > > > diff --git a/src/http/v3/ngx_http_v3.h b/src/http/v3/ngx_http_v3.h
> > > > > --- a/src/http/v3/ngx_http_v3.h
> > > > > +++ b/src/http/v3/ngx_http_v3.h
> > > > > @@ -141,6 +141,7 @@ struct ngx_http_v3_session_s {
> > > > > uint64_t next_push_id;
> > > > > uint64_t max_push_id;
> > > > > uint64_t goaway_push_id;
> > > > > + uint64_t next_request_id;
> > > > >
> > > > > off_t total_bytes;
> > > > > off_t payload_bytes;
> > > > > @@ -158,6 +159,7 @@ void ngx_http_v3_init(ngx_connection_t *
> > > > > void ngx_http_v3_reset_connection(ngx_connection_t *c);
> > > > > ngx_int_t ngx_http_v3_init_session(ngx_connection_t *c);
> > > > > ngx_int_t ngx_http_v3_check_flood(ngx_connection_t *c);
> > > > > +void ngx_http_v3_shutdown(ngx_connection_t *c);
> > > > >
> > > > > ngx_int_t ngx_http_v3_read_request_body(ngx_http_request_t *r);
> > > > > ngx_int_t ngx_http_v3_read_unbuffered_request_body(ngx_http_request_t *r);
> > > > > diff --git a/src/http/v3/ngx_http_v3_module.c b/src/http/v3/ngx_http_v3_module.c
> > > > > --- a/src/http/v3/ngx_http_v3_module.c
> > > > > +++ b/src/http/v3/ngx_http_v3_module.c
> > > > > @@ -249,6 +249,8 @@ ngx_http_v3_create_srv_conf(ngx_conf_t *
> > > > > h3scf->quic.stream_reject_code_bidi = NGX_HTTP_V3_ERR_REQUEST_REJECTED;
> > > > > h3scf->quic.active_connection_id_limit = NGX_CONF_UNSET_UINT;
> > > > >
> > > > > + h3scf->quic.shutdown = ngx_http_v3_shutdown;
> > > > > +
> > > > > return h3scf;
> > > > > }
> > > > >
> > > > > diff --git a/src/http/v3/ngx_http_v3_request.c b/src/http/v3/ngx_http_v3_request.c
> > > > > --- a/src/http/v3/ngx_http_v3_request.c
> > > > > +++ b/src/http/v3/ngx_http_v3_request.c
> > > > > @@ -97,6 +97,37 @@ ngx_http_v3_init(ngx_connection_t *c)
> > > > > }
> > > > >
> > > > >
> > > > > +void
> > > > > +ngx_http_v3_shutdown(ngx_connection_t *c)
> > > > > +{
> > > > > + ngx_http_v3_session_t *h3c;
> > > >
> > > > extra indent
> > > >
> > > > > +
> > > > > + ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http3 shutdown");
> > > > > +
> > > > > + h3c = ngx_http_v3_get_session(c);
> > > > > +
> > > > > + if (h3c == NULL) {
> > > > > + ngx_quic_finalize_connection(c, NGX_HTTP_V3_ERR_NO_ERROR,
> > > > > + "connection shutdown");
> > > > > + return;
> > > > > + }
> > > > > +
> > > > > + if (!h3c->goaway) {
> > > > > + h3c->goaway = 1;
> > > > > +
> > > > > +#if (NGX_HTTP_V3_HQ)
> > > > > + if (!h3c->hq)
> > > > > +#endif
> > > > > + {
> > > > > + (void) ngx_http_v3_send_goaway(c, h3c->next_request_id);
> > > > > + }
> > > > > +
> > > > > + ngx_http_v3_shutdown_connection(c, NGX_HTTP_V3_ERR_NO_ERROR,
> > > > > + "connection shutdown");
> > > > > + }
> > > >
> > > > Note that this callback is used to be called from a read event as part of
> > > > graceful shutdown.
> > > > With ngx_quic_finalize_connection() remade in patch #4 (reusable mode)
> > > > to defer closing QUIC connection to a posted event, this call now results
> > > > in a posted event, which no one can fulfill, hence no further action until
> > > > quic idle timeout fires.
> > > > It could be fixed by executing known posted events after shutdown callback
> > > > or more globally - as part of graceful shutdown itself.
> > >
> > > Yes, events posted from ngx_close_idle_connections() are not handled right away.
> > > Instead, they are handled at the end of the next cycle, which normally
> > > happens after a timeout. There seems to be no pretty way to fix this, unless
> > > we handle posted events in ngx_worker_process_cycle() right after
> > > ngx_close_idle_connections(). We are trying to avoid global changes like this.
> > >
> > > I suggest posting current connection read event as a next posted event. This
> > > will effectively set next cycle timeout to be zero and eliminate the problem.
> > >
> > > > > +}
> > > > > +
> > > > > +
> > > > > static void
> > > > > ngx_http_v3_init_request_stream(ngx_connection_t *c)
> > > > > {
> > > > > @@ -137,6 +168,8 @@ ngx_http_v3_init_request_stream(ngx_conn
> > > > >
> > > > > pc = c->quic->parent;
> > > > >
> > > > > + h3c->next_request_id = c->quic->id + 0x04;
> > > > > +
> > > > > if (n + 1 == clcf->keepalive_requests
> > > > > || ngx_current_msec - pc->start_time > clcf->keepalive_time)
> > > > > {
> > > > > @@ -146,7 +179,7 @@ ngx_http_v3_init_request_stream(ngx_conn
> > > > > if (!h3c->hq)
> > > > > #endif
> > > > > {
> > > > > - if (ngx_http_v3_send_goaway(c, (n + 1) << 2) != NGX_OK) {
> > > > > + if (ngx_http_v3_send_goaway(c, h3c->next_request_id) != NGX_OK) {
> > > > > ngx_http_close_connection(c);
> > > > > return;
> > > > > }
> > > > >
> > > > > _______________________________________________
> > > > > nginx-devel mailing list -- nginx-devel at nginx.org
> > > > > To unsubscribe send an email to nginx-devel-leave at nginx.org
> > > > _______________________________________________
> > > > nginx-devel mailing list -- nginx-devel at nginx.org
> > > > To unsubscribe send an email to nginx-devel-leave at nginx.org
> > >
> > > Attached is a diff to the current patch.
> > >
> > > --
> > > Roman
> >
> > > # HG changeset patch
> > > # User Roman Arutyunyan <arut at nginx.com>
> > > # Date 1666273166 -14400
> > > # Thu Oct 20 17:39:26 2022 +0400
> > > # Branch quic
> > > # Node ID d6c725081a0b024886822e1cc722fdace9c32621
> > > # Parent a4ba2ac5fa55ef94bb75a66e66e0b19d792fed10
> > > [mq]: quic-idle-fix1
> > >
> > > diff --git a/src/event/quic/ngx_event_quic.c b/src/event/quic/ngx_event_quic.c
> > > --- a/src/event/quic/ngx_event_quic.c
> > > +++ b/src/event/quic/ngx_event_quic.c
> > > @@ -421,9 +421,22 @@ ngx_quic_input_handler(ngx_event_t *rev)
> > > }
> > >
> > > if (c->close) {
> > > - if (qc->conf->shutdown) {
> > > + c->close = 0;
> > > +
> > > + if (!ngx_exiting) {
> > > + qc->error = NGX_QUIC_ERR_NO_ERROR;
> > > + qc->error_reason = "graceful shutdown";
> > > + ngx_quic_close_connection(c, NGX_ERROR);
> > > + return;
> > > + }
> > > +
> > > + if (!qc->closing && qc->conf->shutdown) {
> > > + /* do not delay events posted by shutdown() */
> > > + ngx_post_event(rev, &ngx_posted_next_events);
> >
> > Following the change http://hg.nginx.org/nginx/rev/b809f53d3f5b, this part
> > is no longer needed. The new diff attached.
>
> Note that adding support for "idle mode for main connection" combined
> with b809f53d3f5b uncovers a socket leak due to qc->close.cancelable set.
>
> In more details:
> - there can be connections with stretched pto e.g. due to missing client ack,
> large enough such that a close timer (3*pto) fires after the idle timer
> - now that QUIC connection is handled on graceful shutdown as idle,
> entering graceful shutdown results in setting a close timer, and closing
> can take additional cycle following the "qc->close.timer_set" condition
> - pto and idle timers fired (and removed)
> - only close and, possibly, keepalive timers left; both cancelable
>
> I suggest removing the cancelable property of a close timer
> given that we want to wait for 3*PTO while in a closing state
> and send back sensible CONNECTION_CLOSE to any further input
> (otherwise it would emit less sensible stateless reset).
> This will fix leaving event cycle without non-cancelable timers set.
Setting "cancelable" for a client-related entity looks wrong both in QUIC and
HTTP/3. IMHO it should be removed, see attach.
> > > +
> > > qc->conf->shutdown(c);
> > > }
> > > +
> > > return;
> > > }
> >
> >
> > --
> > Roman Arutyunyan
>
> > # HG changeset patch
> > # User Roman Arutyunyan <arut at nginx.com>
> > # Date 1669302768 -14400
> > # Thu Nov 24 19:12:48 2022 +0400
> > # Branch quic
> > # Node ID ec21165abb4333f77fb85e956cccf300c8ae1acf
> > # Parent 6fba6061b65f0ee41c231bde6b738cfae00bb179
> > [mq]: quic-idle-fix1
> >
> > diff --git a/src/event/quic/ngx_event_quic.c b/src/event/quic/ngx_event_quic.c
> > --- a/src/event/quic/ngx_event_quic.c
> > +++ b/src/event/quic/ngx_event_quic.c
> > @@ -421,9 +421,19 @@ ngx_quic_input_handler(ngx_event_t *rev)
> > }
> >
> > if (c->close) {
> > - if (qc->conf->shutdown) {
> > + c->close = 0;
> > +
> > + if (!ngx_exiting) {
> > + qc->error = NGX_QUIC_ERR_NO_ERROR;
> > + qc->error_reason = "graceful shutdown";
> > + ngx_quic_close_connection(c, NGX_ERROR);
> > + return;
> > + }
> > +
> > + if (!qc->closing && qc->conf->shutdown) {
> > qc->conf->shutdown(c);
> > }
> > +
> > return;
> > }
> >
> > diff --git a/src/http/v3/ngx_http_v3_request.c b/src/http/v3/ngx_http_v3_request.c
> > --- a/src/http/v3/ngx_http_v3_request.c
> > +++ b/src/http/v3/ngx_http_v3_request.c
> > @@ -101,7 +101,7 @@ ngx_http_v3_init(ngx_connection_t *c)
> > void
> > ngx_http_v3_shutdown(ngx_connection_t *c)
> > {
> > - ngx_http_v3_session_t *h3c;
> > + ngx_http_v3_session_t *h3c;
> >
> > ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http3 shutdown");
> >
>
> Looks good.
> _______________________________________________
> nginx-devel mailing list -- nginx-devel at nginx.org
> To unsubscribe send an email to nginx-devel-leave at nginx.org
-------------- next part --------------
# HG changeset patch
# User Roman Arutyunyan <arut at nginx.com>
# Date 1669730306 -14400
# Tue Nov 29 17:58:26 2022 +0400
# Branch quic
# Node ID 174c09dedc046aac2ca5308ab8957fc61b27c778
# Parent 576d9decab8bdb34a85b0cf52acf3afb3ae97b8d
imported patch quic-idle-fix2
diff --git a/src/event/quic/ngx_event_quic.c b/src/event/quic/ngx_event_quic.c
--- a/src/event/quic/ngx_event_quic.c
+++ b/src/event/quic/ngx_event_quic.c
@@ -275,22 +275,18 @@ ngx_quic_new_connection(ngx_connection_t
qc->pto.log = c->log;
qc->pto.data = c;
qc->pto.handler = ngx_quic_pto_handler;
- qc->pto.cancelable = 1;
qc->push.log = c->log;
qc->push.data = c;
qc->push.handler = ngx_quic_push_handler;
- qc->push.cancelable = 1;
qc->close.log = c->log;
qc->close.data = c;
qc->close.handler = ngx_quic_close_handler;
- qc->close.cancelable = 1;
qc->path_validation.log = c->log;
qc->path_validation.data = c;
qc->path_validation.handler = ngx_quic_path_validation_handler;
- qc->path_validation.cancelable = 1;
qc->conf = conf;
diff --git a/src/http/v3/ngx_http_v3.c b/src/http/v3/ngx_http_v3.c
--- a/src/http/v3/ngx_http_v3.c
+++ b/src/http/v3/ngx_http_v3.c
@@ -55,7 +55,6 @@ ngx_http_v3_init_session(ngx_connection_
h3c->keepalive.log = pc->log;
h3c->keepalive.data = pc;
h3c->keepalive.handler = ngx_http_v3_keepalive_handler;
- h3c->keepalive.cancelable = 1;
h3c->table.send_insert_count.log = pc->log;
h3c->table.send_insert_count.data = pc;
More information about the nginx-devel
mailing list