Add support for multi-process port sharing with CIBIR.#5798
Add support for multi-process port sharing with CIBIR.#5798ProjectsByJackHe wants to merge 7 commits intomainfrom
Conversation
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #5798 +/- ##
==========================================
- Coverage 85.99% 84.79% -1.21%
==========================================
Files 60 60
Lines 18729 18729
==========================================
- Hits 16106 15881 -225
- Misses 2623 2848 +225 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
|
|
||
| if (Socket->CibirIdLength) { | ||
| // | ||
| // Setting SO_REUSEADDR does NOT robustly allow |
There was a problem hiding this comment.
Can you explain in this comment how/why the option is not robust on Windows and how it is robust on Linux?
Does it make sense for this socket option to be set on both (all?) platforms if it has different semantics?
There was a problem hiding this comment.
Sure thing for 1)
For 2), no it does not make sense, but we never ran into problems because it was never exercised.
| // Clean up all partially-initialized per-proc sockets since | ||
| // we're skipping OS socket creation (XDP-only via CIBIR). | ||
| // | ||
| for (uint16_t i = 0; i < SocketCount; i++) { |
There was a problem hiding this comment.
This seems fairly duplicative of part of CxPlatSocketContextUninitialize - can it be refactored into a common subroutine?
| uint8_t HasFixedRemoteAddress : 1; | ||
| uint8_t RawSocketAvailable : 1; | ||
|
|
||
| uint8_t SkipCreatingOsSockets : 1; |
There was a problem hiding this comment.
nit: newline spacing of these bitfields is inconsistent.
There was a problem hiding this comment.
Noted, will fix all nits once core logic addressed.
docs/Settings.md
Outdated
| | `QUIC_PARAM_LISTENER_LOCAL_ADDRESS`<br> 0 | QUIC_ADDR | Get-only | Get the full address tuple the server is listening on. | | ||
| | `QUIC_PARAM_LISTENER_STATS`<br> 1 | QUIC_LISTENER_STATISTICS | Get-only | Get statistics specific to this Listener instance. | | ||
| | `QUIC_PARAM_LISTENER_CIBIR_ID`<br> 2 | uint8_t[] | Both | The CIBIR well-known idenfitier. | | ||
| | `QUIC_PARAM_LISTENER_CIBIR_ID`<br> 2 | uint8_t[] | Both | Sets a CIBIR (CID-Based Identification and Routing) well-known identifier. CIBIR does 2 things when set: 1. XDP will now steer packets to the correct process/listener by matching the CIBIR prefix within the packet QUIC Connection ID. 2. In the case of a port collision when reserving OS UDP/TCP sockets, MsQuic will continue with initializing the datapath. If XDP is not available/enabled, then no traffic will flow for the listener that experiences a collision. | |
There was a problem hiding this comment.
If XDP is not available/enabled, then no traffic will flow for the listener that experiences a collision.
Is the collision bubbled up to the app? If not, what is the benefit of allowing a listener to be created that will silently not receive the intended traffic? If it is bubbled up as an error, are we saying we'll create the listener, but it just won't receive traffic, or we'll return an error and no listener?
There was a problem hiding this comment.
Really good points. This PR was opened early so we can unblock SQL. We can flesh out the details more.
I chose the design of logging a warning when XDP is not available/not enabled for ease of debugging / unit testing. But we can find a better solution.
I am leaning towards just straight up failing the binding creation if you have a listener trying to use CIBIR but xdp is not available/enabled.
guhetier
left a comment
guhetier
left a comment
There was a problem hiding this comment.
In general, I am concerned that we keep adding incremental exceptions to the port reservation logic to solve the next issue, but without having a clear design goal.
This code will be hard to maintain and confusing for apps as there is no simple rule about what can be done with ports.
I think we need to take the time soon to come up with a clear story about when can port be shared and when they can't + document it + check we implement it.
I agree. I added a CIBIR.md. We could perhaps put the port reservation logic design in there (not yet done). |
please see the updated XDP.md and CIBIR.md |
3 participants
Description
Fixes #5795
The XDP datapath can be configured to intercept packets based on QUIC Connection ID instead of local port.
This behavior existed in MsQuic but was not heavily exercised until recently.
One issue was that MsQuic always attempted to reserve UDP / TCP sockets for each application server process.
But for multiple server processes that may want to share a single port, we would run into port collision errors.
This PR adds support for CIBIR across multiple processes on the same port and document the behavior
Testing
A new DataPathTest was added.
Documentation
Settings.md