use QUICHE built-in port and Server Preferred Address migration (#41798)

Commit Message: switch to use QUICHE built-in migration to handle port
migration upon path degrading and migration to Server Preferred
Address(SPA) .

This change introduces a `QuicClientPacketWriterFactory` to abstract the
creation of QUIC packet writers and their associated connection sockets.

It also change EnvoyQuicClientSession to construct with a different
QuicSpdyClientSession constructor which takes migration-related
parameters.

It also implements QUICHE migration related interfaces:
`QuicMigrationHelper` and `QuicPathContextFactory` for Envoy to provide
path validation context and to retrieve networks which is needed for
QUICHE built-in migration.

Added two more interfaces `getOrCreateMigrationHelper()` and
`setWriterFactory()` to `EnvoyQuicClientConnection`. Depending on which
one is called, the connection will conduct port migration and SPA
migration by itself or defer migration to QUICHE and act as a migration
helper.

For upstream connections created by the connection
pool,`EnvoyQuicClientSession` and `EnvoyQuicClientConnection` will
optionally be constructed and setup to enable QUICHE built-in migration.
A runtime feature, `envoy.reloadable_features.use_migration_in_quiche`,
is added for this purpose.


Risk Level: medium, new QUICHE code will be exercised
Testing: existing tests pass
Docs Changes: N/A
Release Notes: Y
Runtime guard: envoy.reloadable_features.use_migration_in_quiche

---------

Signed-off-by: Dan Zhang <[email protected]>
Co-authored-by: Dan Zhang <[email protected]>

Author: danzh2010

changelogs/current.yaml

@@ -42,6 +42,10 @@ minor_behavior_changes:
   change: |
     Check that the response header count is less than the configured limits before applying mutations, and do not
     add new headers if not.
+- area: quic
+  change: |
+    Switch to use QUICHE provided migration logic to handle port migration upon path degrading and migration to Server
+    Preferred Address. This behavior can be reverted by setting ``envoy.reloadable_features.use_migration_in_quiche``.
 - area: mobile
   change: |
     Use mobile specific network observer registries to propagate network change signals. This behavior can be reverted by

source/common/quic/BUILD

@@ -198,6 +198,7 @@ envoy_cc_library(
         ":envoy_quic_connection_helper_lib",
         ":envoy_quic_proof_verifier_lib",
         ":envoy_quic_utils_lib",
+        ":quic_client_packet_writer_factory_impl_lib",
         "//envoy/http:codec_interface",
         "//envoy/http:persistent_quic_info_interface",
         "//envoy/registry",
@@ -395,6 +396,18 @@ envoy_cc_library(
     ]),
 )
 
+envoy_cc_library(
+    name = "quic_client_packet_writer_factory_impl_lib",
+    srcs = envoy_select_enable_http3(["quic_client_packet_writer_factory_impl.cc"]),
+    hdrs = envoy_select_enable_http3(["quic_client_packet_writer_factory_impl.h"]),
+    deps = envoy_select_enable_http3([
+        ":envoy_quic_packet_writer_lib",
+        ":envoy_quic_utils_lib",
+        ":envoy_quic_client_connection_lib",
+        "//source/common/network:udp_packet_writer_handler_lib",
+    ]),
+)
+
 envoy_cc_library(
     name = "envoy_quic_client_connection_lib",
     srcs = envoy_select_enable_http3(["envoy_quic_client_connection.cc"]),
@@ -407,6 +420,7 @@ envoy_cc_library(
         "//source/common/network:udp_packet_writer_handler_lib",
         "//source/common/runtime:runtime_lib",
         "@com_github_google_quiche//:quic_core_connection_lib",
+        "@com_github_google_quiche//:quic_core_http_client_lib",
         "@envoy_api//envoy/config/core/v3:pkg_cc_proto",
     ]),
 )
@@ -479,6 +493,7 @@ envoy_cc_library(
         "@com_github_google_quiche//:quic_core_config_lib",
         "@com_github_google_quiche//:quic_core_http_header_list_lib",
         "@com_github_google_quiche//:quic_platform",
+        "@com_github_google_quiche//:quic_core_http_client_lib",
         "@envoy_api//envoy/config/core/v3:pkg_cc_proto",
         "@envoy_api//envoy/config/listener/v3:pkg_cc_proto",
     ]),

source/common/quic/client_connection_factory_impl.cc

@@ -1,5 +1,10 @@
 #include "source/common/quic/client_connection_factory_impl.h"
 
+#include "source/common/network/udp_packet_writer_handler_impl.h"
+#include "source/common/quic/envoy_quic_packet_writer.h"
+#include "source/common/quic/envoy_quic_utils.h"
+#include "source/common/quic/quic_client_packet_writer_factory_impl.h"
+#include "source/common/quic/quic_transport_socket_factory.h"
 #include "source/common/runtime/runtime_features.h"
 
 namespace Envoy {
@@ -10,6 +15,9 @@ PersistentQuicInfoImpl::PersistentQuicInfoImpl(Event::Dispatcher& dispatcher, ui
     : conn_helper_(dispatcher), alarm_factory_(dispatcher, *conn_helper_.GetClock()),
       buffer_limit_(buffer_limit), max_packet_length_(max_packet_length) {
   quiche::FlagRegistry::getInstance();
+  // Allow migration to server preferred address by default.
+  migration_config_.allow_server_preferred_address = true;
+  migration_config_.max_port_migrations_per_session = kMaxNumSocketSwitches;
   migration_config_.migrate_session_on_network_change = false;
 }
 
@@ -31,6 +39,11 @@ createPersistentQuicInfoForCluster(Event::Dispatcher& dispatcher,
   }
   quic_info->max_packet_length_ =
       PROTOBUF_GET_WRAPPED_OR_DEFAULT(quic_config, max_packet_length, 0);
+  uint32_t num_timeouts_to_trigger_port_migration =
+      PROTOBUF_GET_WRAPPED_OR_DEFAULT(quic_config, num_timeouts_to_trigger_port_migration, 0);
+  quic_info->migration_config_.allow_port_migration = (num_timeouts_to_trigger_port_migration > 0);
+  // TODO: make this an extension point.
+  quic_info->writer_factory_ = std::make_unique<QuicClientPacketWriterFactoryImpl>();
   return quic_info;
 }
 
@@ -52,14 +65,44 @@ std::unique_ptr<Network::ClientConnection> createQuicNetworkConnection(
   PersistentQuicInfoImpl* info_impl = reinterpret_cast<PersistentQuicInfoImpl*>(&info);
   quic::ParsedQuicVersionVector quic_versions = quic::CurrentSupportedHttp3Versions();
   ASSERT(!quic_versions.empty());
+  ASSERT(info_impl->writer_factory_ != nullptr);
+  QuicClientPacketWriterFactory::CreationResult creation_result =
+      info_impl->writer_factory_->createSocketAndQuicPacketWriter(
+          server_addr, quic::kInvalidNetworkHandle, local_addr, options);
+  const bool use_migration_in_quiche =
+      Runtime::runtimeFeatureEnabled("envoy.reloadable_features.use_migration_in_quiche");
+  quic::QuicForceBlockablePacketWriter* wrapper = nullptr;
+  if (use_migration_in_quiche) {
+    wrapper = new quic::QuicForceBlockablePacketWriter();
+    // Owns the inner writer.
+    wrapper->set_writer(creation_result.writer_.release());
+  }
   auto connection = std::make_unique<EnvoyQuicClientConnection>(
-      quic::QuicUtils::CreateRandomConnectionId(), server_addr, info_impl->conn_helper_,
-      info_impl->alarm_factory_, quic_versions, local_addr, dispatcher, options, generator);
+      quic::QuicUtils::CreateRandomConnectionId(), info_impl->conn_helper_,
+      info_impl->alarm_factory_,
+      (use_migration_in_quiche
+           ? wrapper
+           : static_cast<quic::QuicPacketWriter*>(creation_result.writer_.release())),
+      /*owns_writer=*/true, quic_versions, dispatcher, std::move(creation_result.socket_),
+      generator);
   // Override the max packet length of the QUIC connection if the option value is not 0.
   if (info_impl->max_packet_length_ > 0) {
     connection->SetMaxPacketLength(info_impl->max_packet_length_);
   }
 
+  EnvoyQuicClientConnection::EnvoyQuicMigrationHelper* migration_helper = nullptr;
+  quic::QuicConnectionMigrationConfig migration_config = info_impl->migration_config_;
+  if (use_migration_in_quiche) {
+    migration_helper = &connection->getOrCreateMigrationHelper(
+        *info_impl->writer_factory_,
+        makeOptRefFromPtr<EnvoyQuicNetworkObserverRegistry>(network_observer_registry));
+  } else {
+    // The connection needs to be aware of the writer factory so it can create migration probing
+    // sockets.
+    connection->setWriterFactory(*info_impl->writer_factory_);
+    // Disable all kinds of migration in QUICHE as the session won't be setup to handle it.
+    migration_config = quicConnectionMigrationDisableAllConfig();
+  }
   // TODO (danzh) move this temporary config and initial RTT configuration to h3 pool.
   quic::QuicConfig config = info_impl->quic_config_;
   // Update config with latest srtt, if available.
@@ -75,9 +118,10 @@ std::unique_ptr<Network::ClientConnection> createQuicNetworkConnection(
 
   // QUICHE client session always use the 1st version to start handshake.
   auto session = std::make_unique<EnvoyQuicClientSession>(
-      config, quic_versions, std::move(connection), server_id, std::move(crypto_config), dispatcher,
-      info_impl->buffer_limit_, info_impl->crypto_stream_factory_, quic_stat_names, rtt_cache,
-      scope, transport_socket_options, transport_socket_factory);
+      config, quic_versions, std::move(connection), wrapper, migration_helper, migration_config,
+      server_id, std::move(crypto_config), dispatcher, info_impl->buffer_limit_,
+      info_impl->crypto_stream_factory_, quic_stat_names, rtt_cache, scope,
+      transport_socket_options, transport_socket_factory);
   if (network_observer_registry != nullptr) {
     session->registerNetworkObserver(*network_observer_registry);
   }

source/common/quic/client_connection_factory_impl.h

@@ -37,6 +37,7 @@ struct PersistentQuicInfoImpl : public Http::PersistentQuicInfo {
   quic::QuicByteCount max_packet_length_;
   // TODO(danzh): Add a config knob to configure connection migration.
   quic::QuicConnectionMigrationConfig migration_config_;
+  QuicClientPacketWriterFactoryPtr writer_factory_;
 };
 
 std::unique_ptr<PersistentQuicInfoImpl>

source/common/quic/envoy_quic_client_connection.cc

@@ -6,7 +6,6 @@
 
 #include "source/common/network/socket_option_factory.h"
 #include "source/common/network/udp_packet_writer_handler_impl.h"
-#include "source/common/quic/envoy_quic_utils.h"
 #include "source/common/runtime/runtime_features.h"
 
 namespace Envoy {
@@ -24,29 +23,107 @@ class DeferredDeletableSocket : public Event::DeferredDeletable {
   std::unique_ptr<Network::ConnectionSocket> socket_;
 };
 
-EnvoyQuicClientConnection::EnvoyQuicClientConnection(
-    const quic::QuicConnectionId& server_connection_id,
-    Network::Address::InstanceConstSharedPtr& initial_peer_address,
-    quic::QuicConnectionHelperInterface& helper, quic::QuicAlarmFactory& alarm_factory,
-    const quic::ParsedQuicVersionVector& supported_versions,
-    Network::Address::InstanceConstSharedPtr local_addr, Event::Dispatcher& dispatcher,
-    const Network::ConnectionSocket::OptionsSharedPtr& options,
-    quic::ConnectionIdGeneratorInterface& generator)
-    : EnvoyQuicClientConnection(
-          server_connection_id, helper, alarm_factory, supported_versions, dispatcher,
-          createConnectionSocket(initial_peer_address, local_addr, options), generator) {}
+class EnvoyQuicClientPathValidationContext : public quic::QuicClientPathValidationContext {
+public:
+  EnvoyQuicClientPathValidationContext(quic::QuicSocketAddress self_address,
+                                       quic::QuicSocketAddress peer_address,
+                                       quic::QuicNetworkHandle network,
+                                       std::unique_ptr<EnvoyQuicPacketWriter>&& writer,
+                                       Network::ConnectionSocketPtr&& socket,
+                                       Event::Dispatcher& dispatcher)
+      : quic::QuicClientPathValidationContext(self_address, peer_address, network),
+        writer_(std::make_unique<quic::QuicForceBlockablePacketWriter>()),
+        socket_(std::move(socket)), dispatcher_(dispatcher) {
+    // Owns the writer.
+    writer_->set_writer(writer.release());
+  }
 
-EnvoyQuicClientConnection::EnvoyQuicClientConnection(
-    const quic::QuicConnectionId& server_connection_id, quic::QuicConnectionHelperInterface& helper,
-    quic::QuicAlarmFactory& alarm_factory, const quic::ParsedQuicVersionVector& supported_versions,
-    Event::Dispatcher& dispatcher, Network::ConnectionSocketPtr&& connection_socket,
-    quic::ConnectionIdGeneratorInterface& generator)
-    : EnvoyQuicClientConnection(
-          server_connection_id, helper, alarm_factory,
-          new EnvoyQuicPacketWriter(
-              std::make_unique<Network::UdpDefaultWriter>(connection_socket->ioHandle())),
-          /*owns_writer=*/true, supported_versions, dispatcher, std::move(connection_socket),
-          generator) {}
+  ~EnvoyQuicClientPathValidationContext() override {
+    if (socket_ != nullptr) {
+      // The socket wasn't used by the connection, the path validation must have failed. Now
+      // deferred delete it to avoid deleting IoHandle in a read loop.
+      dispatcher_.deferredDelete(std::make_unique<DeferredDeletableSocket>(std::move(socket_)));
+    }
+  }
+
+  bool ShouldConnectionOwnWriter() const override { return true; }
+  quic::QuicForceBlockablePacketWriter* ForceBlockableWriterToUse() override {
+    return writer_.get();
+  }
+
+  Network::ConnectionSocket& probingSocket() { return *socket_; }
+
+  quic::QuicForceBlockablePacketWriter* releaseWriter() { return writer_.release(); }
+  std::unique_ptr<Network::ConnectionSocket> releaseSocket() { return std::move(socket_); }
+
+private:
+  std::unique_ptr<quic::QuicForceBlockablePacketWriter> writer_;
+  Network::ConnectionSocketPtr socket_;
+  Event::Dispatcher& dispatcher_;
+};
+
+void EnvoyQuicClientConnection::EnvoyQuicClinetPathContextFactory::CreatePathValidationContext(
+    quic::QuicNetworkHandle network, quic::QuicSocketAddress peer_address,
+    std::unique_ptr<quic::QuicPathContextFactory::CreationResultDelegate> result_delegate) {
+  Network::Address::InstanceConstSharedPtr new_local_address;
+  if (network == quic::kInvalidNetworkHandle) {
+    // If there isn't a meaningful network handle to bind to, bind to the
+    // local address of the current socket.
+    Network::Address::InstanceConstSharedPtr current_local_address =
+        connection_.connectionSocket()->connectionInfoProvider().localAddress();
+    if (current_local_address->ip()->version() == Network::Address::IpVersion::v4) {
+      new_local_address = std::make_shared<Network::Address::Ipv4Instance>(
+          current_local_address->ip()->addressAsString(),
+          &current_local_address->socketInterface());
+    } else {
+      new_local_address = std::make_shared<Network::Address::Ipv6Instance>(
+          current_local_address->ip()->addressAsString(),
+          &current_local_address->socketInterface());
+    }
+  }
+  Network::Address::InstanceConstSharedPtr remote_address =
+      (connection_.peer_address() == peer_address)
+          ? connection_.connectionSocket()->connectionInfoProvider().remoteAddress()
+          : quicAddressToEnvoyAddressInstance(peer_address);
+  // new_local_address will be re-assigned if it is nullptr.
+  QuicClientPacketWriterFactory::CreationResult result =
+      writer_factory_.createSocketAndQuicPacketWriter(remote_address, network, new_local_address,
+                                                      connection_.connectionSocket()->options());
+  connection_.setUpConnectionSocket(*result.socket_, connection_.delegate_);
+  result_delegate->OnCreationSucceeded(std::make_unique<EnvoyQuicClientPathValidationContext>(
+      envoyIpAddressToQuicSocketAddress(new_local_address->ip()), peer_address, network,
+      std::move(result.writer_), std::move(result.socket_), connection_.dispatcher_));
+}
+
+quic::QuicNetworkHandle EnvoyQuicClientConnection::EnvoyQuicMigrationHelper::FindAlternateNetwork(
+    quic::QuicNetworkHandle /*network*/) {
+  return quic::kInvalidNetworkHandle;
+}
+
+quic::QuicNetworkHandle EnvoyQuicClientConnection::EnvoyQuicMigrationHelper::GetDefaultNetwork() {
+  return quic::kInvalidNetworkHandle;
+}
+
+void EnvoyQuicClientConnection::EnvoyQuicMigrationHelper::OnMigrationToPathDone(
+    std::unique_ptr<quic::QuicClientPathValidationContext> context, bool success) {
+  if (success) {
+    auto* envoy_context = static_cast<EnvoyQuicClientPathValidationContext*>(context.get());
+    // Connection already owns the writer.
+    envoy_context->releaseWriter();
+    ++connection_.num_socket_switches_;
+    connection_.setConnectionSocket(envoy_context->releaseSocket());
+    // Previous writer may have been force blocked and write events on it may have been dropped.
+    // Synthesize a write event in case this case to unblock the connection.
+    connection_.connectionSocket()->ioHandle().activateFileEvents(Event::FileReadyType::Write);
+    // Send something to notify the peer of the address change immediately.
+    connection_.SendPing();
+  }
+}
+
+std::unique_ptr<quic::QuicPathContextFactory>
+EnvoyQuicClientConnection::EnvoyQuicMigrationHelper::CreateQuicPathContextFactory() {
+  return std::make_unique<EnvoyQuicClinetPathContextFactory>(writer_factory_, connection_);
+}
 
 EnvoyQuicClientConnection::EnvoyQuicClientConnection(
     const quic::QuicConnectionId& server_connection_id, quic::QuicConnectionHelperInterface& helper,
@@ -153,8 +230,12 @@ void EnvoyQuicClientConnection::switchConnectionSocket(
 }
 
 void EnvoyQuicClientConnection::OnPathDegradingDetected() {
+  // This will trigger connection migration or port migration in QUICHE if
+  // migration_helper_ is initialized. Otherwise do it in this class.
   QuicConnection::OnPathDegradingDetected();
-  maybeMigratePort();
+  if (migration_helper_ == nullptr) {
+    maybeMigratePort();
+  }
 }
 
 void EnvoyQuicClientConnection::maybeMigratePort() {
@@ -181,18 +262,20 @@ void EnvoyQuicClientConnection::probeWithNewPort(const quic::QuicSocketAddress&
   }
 
   // The probing socket will have the same host but a different port.
-  auto probing_socket = createConnectionSocket(
-      peer_addr == peer_address() ? connectionSocket()->connectionInfoProvider().remoteAddress()
-                                  : quicAddressToEnvoyAddressInstance(peer_addr),
-      new_local_address, connectionSocket()->options());
-  setUpConnectionSocket(*probing_socket, delegate_);
-  auto writer = std::make_unique<EnvoyQuicPacketWriter>(
-      std::make_unique<Network::UdpDefaultWriter>(probing_socket->ioHandle()));
+  ASSERT(migration_helper_ == nullptr && writer_factory_.has_value());
+  QuicClientPacketWriterFactory::CreationResult creation_result =
+      writer_factory_->createSocketAndQuicPacketWriter(
+          (peer_addr == peer_address()
+               ? connectionSocket()->connectionInfoProvider().remoteAddress()
+               : quicAddressToEnvoyAddressInstance(peer_addr)),
+          quic::kInvalidNetworkHandle, new_local_address, connectionSocket()->options());
+  setUpConnectionSocket(*creation_result.socket_, delegate_);
+  auto writer = std::move(creation_result.writer_);
   quic::QuicSocketAddress self_address = envoyIpAddressToQuicSocketAddress(
-      probing_socket->connectionInfoProvider().localAddress()->ip());
+      creation_result.socket_->connectionInfoProvider().localAddress()->ip());
 
   auto context = std::make_unique<EnvoyQuicPathValidationContext>(
-      self_address, peer_addr, std::move(writer), std::move(probing_socket));
+      self_address, peer_addr, std::move(writer), std::move(creation_result.socket_));
   ValidatePath(std::move(context), std::make_unique<EnvoyPathValidationResultDelegate>(*this),
                reason);
 }
@@ -241,15 +324,21 @@ void EnvoyQuicClientConnection::onFileEvent(uint32_t events,
   ASSERT(events & (Event::FileReadyType::Read | Event::FileReadyType::Write));
 
   if (events & Event::FileReadyType::Write) {
-    OnBlockedWriterCanWrite();
+    writer()->SetWritable();
+    // The writer might still be force blocked for migration in progress, in
+    // which case no write should be attempted.
+    WriteIfNotBlocked();
   }
 
-  bool is_probing_socket =
+  // Check if the event is on the probing socket before read.
+  const bool is_probing_socket =
       HasPendingPathValidation() &&
       (&connection_socket ==
-       &static_cast<EnvoyQuicClientConnection::EnvoyQuicPathValidationContext*>(
-            GetPathValidationContext())
-            ->probingSocket());
+       (writer_factory_
+            ? &static_cast<EnvoyQuicPathValidationContext*>(GetPathValidationContext())
+                   ->probingSocket()
+            : &static_cast<EnvoyQuicClientPathValidationContext*>(GetPathValidationContext())
+                   ->probingSocket()));
 
   // It's possible for a write event callback to close the connection, in such case ignore read
   // event processing.
@@ -331,8 +420,19 @@ void EnvoyQuicClientConnection::OnCanWrite() {
   onWriteEventDone();
 }
 
+EnvoyQuicClientConnection::EnvoyQuicMigrationHelper&
+EnvoyQuicClientConnection::getOrCreateMigrationHelper(
+    QuicClientPacketWriterFactory& writer_factory,
+    OptRef<EnvoyQuicNetworkObserverRegistry> registry) {
+  if (migration_helper_ == nullptr) {
+    migration_helper_ = std::make_unique<EnvoyQuicMigrationHelper>(*this, registry, writer_factory);
+  }
+  return *migration_helper_;
+}
+
 void EnvoyQuicClientConnection::probeAndMigrateToServerPreferredAddress(
     const quic::QuicSocketAddress& server_preferred_address) {
+  ASSERT(migration_helper_ == nullptr);
   probeWithNewPort(server_preferred_address,
                    quic::PathValidationReason::kServerPreferredAddressMigration);
 }