Use authority override from metadata (#458)

The destination controller may set a per-endpoint `override_authority`
field that sets a new `Host`/`:authority` value to be used on the
outbound request.

This change introduces an `override_authority` middleware that uses
this metadata to modify outbound requests when an override is set.

Author: zaharidichev

linkerd/app/inbound/src/endpoint.rs

@@ -51,8 +51,8 @@ impl connect::ConnectAddr for HttpEndpoint {
 }
 
 impl http::settings::HasSettings for HttpEndpoint {
-    fn http_settings(&self) -> &http::Settings {
-        &self.settings
+    fn http_settings(&self) -> http::Settings {
+        self.settings
     }
 }
 
@@ -149,8 +149,8 @@ impl http::normalize_uri::ShouldNormalizeUri for Target {
 }
 
 impl http::settings::HasSettings for Target {
-    fn http_settings(&self) -> &http::Settings {
-        &self.http_settings
+    fn http_settings(&self) -> http::Settings {
+        self.http_settings
     }
 }
 

linkerd/app/outbound/src/endpoint.rs

@@ -1,11 +1,13 @@
+use crate::http::uri::Authority;
 use indexmap::IndexMap;
 use linkerd2_app_core::{
     dst, metric_labels,
     metric_labels::{prefix_labels, EndpointLabels},
     profiles,
     proxy::{
         api_resolve::{Metadata, ProtocolHint},
-        http::{self, identity_from_header},
+        http::override_authority::CanOverrideAuthority,
+        http::{self, identity_from_header, Settings},
         identity,
         resolve::map_endpoint::MapEndpoint,
         tap,
@@ -107,7 +109,7 @@ impl<T> profiles::OverrideDestination for Target<T> {
 }
 
 impl<T: http::settings::HasSettings> http::settings::HasSettings for Target<T> {
-    fn http_settings(&self) -> &http::Settings {
+    fn http_settings(&self) -> http::Settings {
         self.inner.http_settings()
     }
 }
@@ -168,12 +170,11 @@ impl HttpEndpoint {
             return false;
         }
 
+        // Look at the original settings, ignoring any authority overrides.
         match self.settings {
             http::Settings::Http2 => false,
             http::Settings::Http1 {
-                keep_alive: _,
-                wants_h1_upgrade,
-                was_absolute_form: _,
+                wants_h1_upgrade, ..
             } => !wants_h1_upgrade,
         }
     }
@@ -189,7 +190,7 @@ impl std::hash::Hash for HttpEndpoint {
     fn hash<H: std::hash::Hasher>(&self, state: &mut H) {
         self.addr.hash(state);
         self.identity.hash(state);
-        self.settings.hash(state);
+        http::settings::HasSettings::http_settings(self).hash(state);
         // Ignore metadata.
     }
 }
@@ -207,8 +208,21 @@ impl connect::ConnectAddr for HttpEndpoint {
 }
 
 impl http::settings::HasSettings for HttpEndpoint {
-    fn http_settings(&self) -> &http::Settings {
-        &self.settings
+    fn http_settings(&self) -> http::Settings {
+        match self.settings {
+            Settings::Http1 {
+                keep_alive,
+                wants_h1_upgrade,
+                was_absolute_form,
+            } => Settings::Http1 {
+                keep_alive,
+                wants_h1_upgrade,
+                // Always use absolute form when an onverride is present.
+                was_absolute_form: self.metadata.authority_override().is_some()
+                    || was_absolute_form,
+            },
+            settings => settings,
+        }
     }
 }
 
@@ -283,6 +297,12 @@ impl MapEndpoint<Concrete<http::Settings>, Metadata> for FromMetadata {
     }
 }
 
+impl CanOverrideAuthority for Target<HttpEndpoint> {
+    fn override_authority(&self) -> Option<Authority> {
+        self.inner.metadata.authority_override().cloned()
+    }
+}
+
 impl Into<EndpointLabels> for Target<HttpEndpoint> {
     fn into(self) -> EndpointLabels {
         use linkerd2_app_core::metric_labels::{Direction, TlsId};

linkerd/app/outbound/src/lib.rs

@@ -9,6 +9,7 @@ pub use self::endpoint::{
     Concrete, HttpEndpoint, Logical, LogicalPerRequest, Profile, ProfilePerTarget, Target,
     TcpEndpoint,
 };
+use ::http::header::HOST;
 use futures::future;
 use linkerd2_app_core::{
     classify,
@@ -157,6 +158,7 @@ impl Config {
                     }))
                     .push(observability.clone())
                     .push(identity_headers.clone())
+                    .push(http::override_authority::Layer::new(vec![HOST.as_str(), CANONICAL_DST_HEADER]))
                     // Ensures that the request's URI is in the proper form.
                     .push(http::normalize_uri::layer())
                     // Upgrades HTTP/1 requests to be transported over HTTP/2 connections.

linkerd/app/outbound/src/orig_proto_upgrade.rs

@@ -1,4 +1,7 @@
-use crate::proxy::http::{orig_proto, settings::Settings};
+use crate::proxy::http::{
+    orig_proto,
+    settings::{HasSettings, Settings},
+};
 use crate::svc::stack;
 use crate::{HttpEndpoint, Target};
 use futures::{try_ready, Future, Poll};
@@ -47,7 +50,7 @@ where
             return Either::B(self.inner.new_service(endpoint));
         }
 
-        let was_absolute = endpoint.inner.settings.was_absolute_form();
+        let was_absolute = endpoint.http_settings().was_absolute_form();
         trace!(
             header = %orig_proto::L5D_ORIG_PROTO,
             was_absolute,
@@ -75,7 +78,8 @@ where
     fn call(&mut self, mut endpoint: Target<HttpEndpoint>) -> Self::Future {
         let can_upgrade = endpoint.inner.can_use_orig_proto();
 
-        let was_absolute = endpoint.inner.settings.was_absolute_form();
+        let was_absolute = endpoint.http_settings().was_absolute_form();
+
         if can_upgrade {
             trace!(
                 header = %orig_proto::L5D_ORIG_PROTO,

linkerd/proxy/http/src/client.rs

@@ -120,20 +120,21 @@ where
     fn call(&mut self, target: T) -> Self::Future {
         trace!("Building HTTP client");
         let connect = self.connect.clone();
-        match *target.http_settings() {
+        match target.http_settings() {
             Settings::Http1 {
                 keep_alive,
                 wants_h1_upgrade: _,
                 was_absolute_form,
             } => {
                 let exec =
                     tokio::executor::DefaultExecutor::current().instrument(info_span!("http1"));
+
                 let h1 = hyper::Client::builder()
                     .executor(exec)
                     .keep_alive(keep_alive)
-                    // hyper should never try to automatically set the Host
-                    // header, instead always just passing whatever we received.
-                    .set_host(false)
+                    // hyper should only try to automatically
+                    // set the host if the request was in absolute_form
+                    .set_host(was_absolute_form)
                     .build(HyperConnect::new(connect, target, was_absolute_form));
                 MakeFuture::Http1(Some(h1))
             }

linkerd/proxy/http/src/lib.rs

@@ -17,6 +17,7 @@ pub mod header_from_target;
 pub mod insert;
 pub mod normalize_uri;
 pub mod orig_proto;
+pub mod override_authority;
 pub mod settings;
 pub mod strip_header;
 pub mod timeout;

linkerd/proxy/http/src/override_authority.rs

@@ -0,0 +1,145 @@
+use super::h1;
+use futures::{try_ready, Future, Poll};
+use http::{self, header::AsHeaderName, uri::Authority};
+use std::fmt;
+use tracing::debug;
+
+pub trait CanOverrideAuthority {
+    fn override_authority(&self) -> Option<Authority>;
+}
+
+#[derive(Debug, Clone)]
+pub struct Layer<H> {
+    headers_to_strip: Vec<H>,
+}
+
+#[derive(Clone, Debug)]
+pub struct MakeSvc<H, M> {
+    headers_to_strip: Vec<H>,
+    inner: M,
+}
+
+pub struct MakeSvcFut<M, H> {
+    authority: Option<Authority>,
+    headers_to_strip: Vec<H>,
+    inner: M,
+}
+
+#[derive(Clone, Debug)]
+pub struct Service<S, H> {
+    authority: Option<Authority>,
+    headers_to_strip: Vec<H>,
+    inner: S,
+}
+
+// === impl Layer ===
+
+impl<H> Layer<H>
+where
+    H: AsHeaderName + Clone,
+{
+    pub fn new(headers_to_strip: Vec<H>) -> Self {
+        Self { headers_to_strip }
+    }
+}
+
+impl<H> Default for Layer<H> {
+    fn default() -> Self {
+        Self {
+            headers_to_strip: Vec::default(),
+        }
+    }
+}
+
+impl<H, M> tower::layer::Layer<M> for Layer<H>
+where
+    H: AsHeaderName + Clone,
+{
+    type Service = MakeSvc<H, M>;
+
+    fn layer(&self, inner: M) -> Self::Service {
+        Self::Service {
+            headers_to_strip: self.headers_to_strip.clone(),
+            inner,
+        }
+    }
+}
+
+impl<H, T, M> tower::Service<T> for MakeSvc<H, M>
+where
+    T: CanOverrideAuthority + Clone + Send + Sync + 'static,
+    M: tower::Service<T>,
+    H: AsHeaderName + Clone,
+{
+    type Response = Service<M::Response, H>;
+    type Error = M::Error;
+    type Future = MakeSvcFut<M::Future, H>;
+
+    fn poll_ready(&mut self) -> Poll<(), M::Error> {
+        self.inner.poll_ready()
+    }
+
+    fn call(&mut self, t: T) -> Self::Future {
+        let authority = t.override_authority();
+        let inner = self.inner.call(t);
+        MakeSvcFut {
+            authority,
+            headers_to_strip: self.headers_to_strip.clone(),
+            inner,
+        }
+    }
+}
+
+impl<F, H> Future for MakeSvcFut<F, H>
+where
+    F: Future,
+    H: AsHeaderName + Clone,
+{
+    type Item = Service<F::Item, H>;
+    type Error = F::Error;
+
+    fn poll(&mut self) -> Poll<Self::Item, Self::Error> {
+        let inner = try_ready!(self.inner.poll());
+        Ok(Service {
+            authority: self.authority.clone(),
+            headers_to_strip: self.headers_to_strip.clone(),
+            inner,
+        }
+        .into())
+    }
+}
+
+// === impl Service ===
+
+impl<S, H, B> tower::Service<http::Request<B>> for Service<S, H>
+where
+    S: tower::Service<http::Request<B>>,
+    H: AsHeaderName + fmt::Display + Clone,
+{
+    type Response = S::Response;
+    type Error = S::Error;
+    type Future = S::Future;
+
+    fn poll_ready(&mut self) -> Poll<(), Self::Error> {
+        self.inner.poll_ready()
+    }
+
+    fn call(&mut self, mut req: http::Request<B>) -> Self::Future {
+        if let Some(authority) = self.authority.clone() {
+            for header in self.headers_to_strip.iter() {
+                if let Some(value) = req.headers_mut().remove(header.clone()) {
+                    debug!(
+                        %header,
+                        ?value,
+                        "Stripped header",
+                    );
+                };
+            }
+
+            debug!(%authority, "Overriding");
+            h1::set_authority(req.uri_mut(), authority);
+        }
+
+        self.inner.call(req)
+    }
+}

linkerd/proxy/http/src/settings.rs

@@ -20,12 +20,12 @@ pub enum Settings {
 }
 
 pub trait HasSettings {
-    fn http_settings(&self) -> &Settings;
+    fn http_settings(&self) -> Settings;
 }
 
 impl HasSettings for Settings {
-    fn http_settings(&self) -> &Settings {
-        self
+    fn http_settings(&self) -> Settings {
+        *self
     }
 }