trillium-http 1.3.3

the http implementation for the trillium toolkit
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320

use rcgen::{CertifiedKey, generate_simple_self_signed};
use rustls::pki_types::CertificateDer;
use std::{future::Future, io, sync::Arc};
use trillium_http::{
    Conn, HttpContext, Upgrade,
    h3::{H3Connection, H3Error, H3ErrorCode, H3StreamResult, UniStreamResult},
};
use trillium_quinn::{QuicConfig, QuinnTransport};
use trillium_server_common::{
    Info, QuicConfig as QuicConfigTrait, QuicConnectionTrait, QuicEndpoint, QuicTransportReceive,
    QuicTransportSend, Server,
};
use trillium_smol::{SmolRuntime, SmolTransport, SmolUdpSocket, async_net::TcpStream};
use trillium_testing::{Runtime, runtime};

/// Phantom [`Server`] used solely as the type witness for
/// `<QuicConfig as QuicConfigTrait<S>>::bind`. We never construct one — the
/// trait impl only needs `S::Runtime` + `S::UdpTransport` to satisfy
/// trillium-quinn's bounds; none of the `Server` methods are reachable from
/// the bind call.
enum FixtureServer {}

impl Server for FixtureServer {
    type Runtime = SmolRuntime;
    type Transport = SmolTransport<TcpStream>;
    type UdpTransport = SmolUdpSocket;

    fn runtime() -> Self::Runtime {
        unreachable!("FixtureServer is uninhabited")
    }

    async fn accept(&mut self) -> io::Result<Self::Transport> {
        match *self {}
    }

    fn from_host_and_port(_host: &str, _port: u16) -> Self {
        unreachable!("FixtureServer is uninhabited")
    }
}

/// E2e test fixture that runs trillium-http's HTTP/3 driver against a real quinn endpoint
/// bound to `127.0.0.1:0`. Bypasses `trillium::Handler` and `trillium-server-common`'s
/// h3 driver orchestration; tests provide a `Fn(Conn<QuinnTransport>) -> Fut` directly,
/// plus an optional upgrade closure for tests that exercise the `Conn::upgrade()` →
/// `Upgrade` path.
///
/// Each fixture generates a fresh self-signed certificate for `localhost`; the test
/// retrieves it via [`H3Server::cert_der`] and trusts it in the trillium-client
/// configuration.
#[derive(Debug)]
pub struct H3Server {
    base_url: String,
    cert_der: CertificateDer<'static>,
    context: Arc<HttpContext>,
}

impl H3Server {
    pub async fn new<H, HFut>(handler: H) -> Self
    where
        H: Fn(Conn<QuinnTransport>) -> HFut + Send + Sync + 'static,
        HFut: Future<Output = Conn<QuinnTransport>> + Send + 'static,
    {
        Self::with_upgrade(handler, noop_upgrade).await
    }

    pub async fn with_upgrade<H, HFut, U, UFut>(handler: H, upgrade_handler: U) -> Self
    where
        H: Fn(Conn<QuinnTransport>) -> HFut + Send + Sync + 'static,
        HFut: Future<Output = Conn<QuinnTransport>> + Send + 'static,
        U: Fn(Upgrade<QuinnTransport>) -> UFut + Send + Sync + 'static,
        UFut: Future<Output = ()> + Send + 'static,
    {
        let CertifiedKey { cert, signing_key } =
            generate_simple_self_signed(vec!["localhost".to_string()]).unwrap();
        let cert_pem = cert.pem().into_bytes();
        let key_pem = signing_key.serialize_pem().into_bytes();
        let cert_der = cert.der().clone();

        let quic = QuicConfig::from_single_cert(&cert_pem, &key_pem);
        let rt = SmolRuntime::default();
        let mut info = Info::default();
        // Resolve "localhost" so the OS picks whichever address it prefers (127.0.0.1 on macOS
        // via /etc/hosts), so the client — which connects via "localhost:{port}" for SNI — hits
        // the same address. Binding to "127.0.0.1:0" can mismatch with a localhost client that
        // resolves IPv6 first.
        let resolved: std::net::SocketAddr = {
            use std::net::ToSocketAddrs;
            ("localhost", 0)
                .to_socket_addrs()
                .expect("resolve localhost")
                .next()
                .expect("at least one address for localhost")
        };
        let endpoint =
            <QuicConfig as QuicConfigTrait<FixtureServer>>::bind(quic, resolved, rt, &mut info)
                .expect("QuicConfig::bind returned None")
                .expect("QuicConfig::bind failed");
        let addr = endpoint.local_addr().expect("local_addr");
        let base_url = format!("https://localhost:{}/", addr.port());

        let context = Arc::new(HttpContext::new());
        let handler = Arc::new(handler);
        let upgrade_handler = Arc::new(upgrade_handler);
        let trillium_rt: Runtime = runtime().into();

        let endpoint = Arc::new(endpoint);
        let swansong = context.swansong().clone();
        let context_for_loop = context.clone();
        let trillium_rt_for_loop = trillium_rt.clone();

        trillium_rt.spawn(async move {
            while let Some(connection) = swansong.interrupt(endpoint.accept()).await.flatten() {
                let h3 = H3Connection::new(context_for_loop.clone());
                let connection = Arc::new(connection);
                let handler = handler.clone();
                let upgrade_handler = upgrade_handler.clone();
                let trillium_rt = trillium_rt_for_loop.clone();
                trillium_rt.clone().spawn(run_connection(
                    connection,
                    h3,
                    handler,
                    upgrade_handler,
                    trillium_rt,
                ));
            }
        });

        Self {
            base_url,
            cert_der,
            context,
        }
    }

    pub fn base_url(&self) -> &str {
        &self.base_url
    }

    pub fn cert_der(&self) -> &CertificateDer<'static> {
        &self.cert_der
    }

    pub async fn shut_down(self) {
        self.context.shut_down().await;
    }
}

async fn noop_upgrade<T>(_: Upgrade<T>) {}

async fn run_connection<C, H, HFut, U, UFut>(
    connection: Arc<C>,
    h3: Arc<H3Connection>,
    handler: Arc<H>,
    upgrade_handler: Arc<U>,
    rt: Runtime,
) where
    C: QuicConnectionTrait + 'static,
    H: Fn(Conn<C::BidiStream>) -> HFut + Send + Sync + 'static,
    HFut: Future<Output = Conn<C::BidiStream>> + Send + 'static,
    U: Fn(Upgrade<C::BidiStream>) -> UFut + Send + Sync + 'static,
    UFut: Future<Output = ()> + Send + 'static,
{
    spawn_outbound_control(&connection, &h3, &rt);
    spawn_qpack_encoder(&connection, &h3, &rt);
    spawn_qpack_decoder(&connection, &h3, &rt);
    spawn_inbound_uni(&connection, &h3, &rt);
    accept_bidi_loop(connection, h3, handler, upgrade_handler, rt).await;
}

async fn accept_bidi_loop<C, H, HFut, U, UFut>(
    connection: Arc<C>,
    h3: Arc<H3Connection>,
    handler: Arc<H>,
    upgrade_handler: Arc<U>,
    rt: Runtime,
) where
    C: QuicConnectionTrait + 'static,
    H: Fn(Conn<C::BidiStream>) -> HFut + Send + Sync + 'static,
    HFut: Future<Output = Conn<C::BidiStream>> + Send + 'static,
    U: Fn(Upgrade<C::BidiStream>) -> UFut + Send + Sync + 'static,
    UFut: Future<Output = ()> + Send + 'static,
{
    loop {
        match h3.swansong().interrupt(connection.accept_bidi()).await {
            None => break,
            Some(Err(_)) => break,
            Some(Ok((stream_id, transport))) => {
                let connection = connection.clone();
                let h3 = h3.clone();
                let handler = handler.clone();
                let upgrade_handler = upgrade_handler.clone();
                rt.spawn(async move {
                    let handler_fn = {
                        let handler = handler.clone();
                        move |conn: Conn<_>| {
                            let handler = handler.clone();
                            async move { handler(conn).await }
                        }
                    };
                    let result = h3
                        .clone()
                        .process_inbound_bidi_with_reset(
                            transport,
                            handler_fn,
                            stream_id,
                            |t, code| {
                                let raw = u64::from(code);
                                t.stop(raw);
                                t.reset(raw);
                            },
                        )
                        .await;

                    match result {
                        Ok(H3StreamResult::Request(conn)) if conn.should_upgrade() => {
                            upgrade_handler(Upgrade::from(conn)).await;
                        }
                        Ok(H3StreamResult::Request(_)) => {}
                        Ok(H3StreamResult::WebTransport { mut transport, .. }) => {
                            transport.stop(H3ErrorCode::StreamCreationError.into());
                            transport.reset(H3ErrorCode::StreamCreationError.into());
                        }
                        Err(error) => handle_error(error, &*connection, &h3),
                    }
                });
            }
        }
    }
    h3.shut_down();
}

fn spawn_inbound_uni<C>(connection: &Arc<C>, h3: &Arc<H3Connection>, rt: &Runtime)
where
    C: QuicConnectionTrait + 'static,
{
    let (connection, h3, rt) = (connection.clone(), h3.clone(), rt.clone());
    rt.clone().spawn(async move {
        while let Some(Ok((_id, recv))) = h3.swansong().interrupt(connection.accept_uni()).await {
            let (connection, h3) = (connection.clone(), h3.clone());
            rt.spawn(async move {
                let close_connection = {
                    let connection = connection.clone();
                    let h3 = h3.clone();
                    move |code: H3ErrorCode| {
                        connection.close(code.into(), code.reason().as_bytes());
                        h3.shut_down();
                    }
                };
                let result = h3
                    .process_inbound_uni_with_close(recv, close_connection)
                    .await;
                match result {
                    Ok(UniStreamResult::Handled) => {}
                    Ok(UniStreamResult::WebTransport { mut stream, .. }) => {
                        stream.stop(H3ErrorCode::StreamCreationError.into());
                    }
                    Ok(UniStreamResult::Unknown { mut stream, .. }) => {
                        stream.stop(H3ErrorCode::StreamCreationError.into());
                    }
                    Err(error) => handle_error(error, &*connection, &h3),
                }
            });
        }
        h3.shut_down();
    });
}

fn spawn_outbound_control<C>(connection: &Arc<C>, h3: &Arc<H3Connection>, rt: &Runtime)
where
    C: QuicConnectionTrait + 'static,
{
    let (connection, h3) = (connection.clone(), h3.clone());
    rt.spawn(async move {
        if let Ok((_id, stream)) = connection.open_uni().await
            && let Err(error) = h3.run_outbound_control(stream).await
        {
            handle_error(error, &*connection, &h3);
        }
        h3.shut_down();
    });
}

fn spawn_qpack_encoder<C>(connection: &Arc<C>, h3: &Arc<H3Connection>, rt: &Runtime)
where
    C: QuicConnectionTrait + 'static,
{
    let (connection, h3) = (connection.clone(), h3.clone());
    rt.spawn(async move {
        if let Ok((_id, stream)) = connection.open_uni().await
            && let Err(error) = h3.run_encoder(stream).await
        {
            handle_error(error, &*connection, &h3);
        }
        h3.shut_down();
    });
}

fn spawn_qpack_decoder<C>(connection: &Arc<C>, h3: &Arc<H3Connection>, rt: &Runtime)
where
    C: QuicConnectionTrait + 'static,
{
    let (connection, h3) = (connection.clone(), h3.clone());
    rt.spawn(async move {
        if let Ok((_id, stream)) = connection.open_uni().await
            && let Err(error) = h3.run_decoder(stream).await
        {
            handle_error(error, &*connection, &h3);
        }
        h3.shut_down();
    });
}

fn handle_error<C: QuicConnectionTrait>(error: H3Error, connection: &C, h3: &H3Connection) {
    if let H3Error::Protocol(code) = error
        && code.is_connection_error()
    {
        connection.close(code.into(), code.reason().as_bytes());
        h3.shut_down();
    }
}