quic: start re-enabling quic with openssl 3.5

Start working on re-enabling QUIC support with the availability
of OpenSSL 3.5. This will be a multi-step process.

Signed-off-by: James M Snell <[email protected]>
PR-URL: #59249
Reviewed-By: Matteo Collina <[email protected]>

Author: jasnell

deps/ngtcp2/ngtcp2.gyp

@@ -48,7 +48,7 @@
       'ngtcp2/crypto/shared.c'
     ],
     'ngtcp2_sources_quictls': [
-      'ngtcp2/crypto/quictls/quictls.c'
+      #'ngtcp2/crypto/quictls/quictls.c'
     ],
     'ngtcp2_sources_boringssl': [
       'ngtcp2/crypto/boringssl/boringssl.c'

node.gyp

@@ -187,6 +187,8 @@
       'src/udp_wrap.cc',
       'src/util.cc',
       'src/uv.cc',
+      'src/quic/cid.cc',
+      'src/quic/data.cc',
       # headers to make for a more pleasant IDE experience
       'src/aliased_buffer.h',
       'src/aliased_buffer-inl.h',
@@ -323,6 +325,10 @@
       'src/udp_wrap.h',
       'src/util.h',
       'src/util-inl.h',
+      'src/quic/cid.h',
+      'src/quic/data.h',
+      'src/quic/defs.h',
+      'src/quic/guard.h',
     ],
     'node_crypto_sources': [
       'src/crypto/crypto_aes.cc',
@@ -379,8 +385,6 @@
     'node_quic_sources': [
       'src/quic/application.cc',
       'src/quic/bindingdata.cc',
-      'src/quic/cid.cc',
-      'src/quic/data.cc',
       'src/quic/endpoint.cc',
       'src/quic/http3.cc',
       'src/quic/logstream.cc',
@@ -394,8 +398,6 @@
       'src/quic/transportparams.cc',
       'src/quic/application.h',
       'src/quic/bindingdata.h',
-      'src/quic/cid.h',
-      'src/quic/data.h',
       'src/quic/endpoint.h',
       'src/quic/http3.h',
       'src/quic/logstream.h',

node.gypi

@@ -380,6 +380,8 @@
           'defines': [ 'OPENSSL_API_COMPAT=0x10100000L', ],
           'dependencies': [
             './deps/openssl/openssl.gyp:openssl',
+            './deps/ngtcp2/ngtcp2.gyp:ngtcp2',
+            './deps/ngtcp2/ngtcp2.gyp:nghttp3',
 
             # For tests
             './deps/openssl/openssl.gyp:openssl-cli',

src/quic/cid.cc

@@ -1,12 +1,14 @@
-#if HAVE_OPENSSL && NODE_OPENSSL_HAS_QUIC
-#include "cid.h"
+#if HAVE_OPENSSL
+#include "guard.h"
+#ifndef OPENSSL_NO_QUIC
 #include <crypto/crypto_util.h>
 #include <memory_tracker-inl.h>
 #include <node_mutex.h>
 #include <string_bytes.h>
+#include "cid.h"
+#include "defs.h"
 #include "nbytes.h"
 #include "ncrypto.h"
-#include "quic/defs.h"
 
 namespace node::quic {
 
@@ -77,7 +79,7 @@ std::string CID::ToString() const {
   return std::string(dest, written);
 }
 
-CID CID::kInvalid{};
+const CID CID::kInvalid{};
 
 // ============================================================================
 // CID::Hash
@@ -95,12 +97,12 @@ size_t CID::Hash::operator()(const CID& cid) const {
 // CID::Factory
 
 namespace {
-class RandomCIDFactory : public CID::Factory {
+class RandomCIDFactory final : public CID::Factory {
  public:
   RandomCIDFactory() = default;
   DISALLOW_COPY_AND_MOVE(RandomCIDFactory)
 
-  CID Generate(size_t length_hint) const override {
+  const CID Generate(size_t length_hint) const override {
     DCHECK_GE(length_hint, CID::kMinLength);
     DCHECK_LE(length_hint, CID::kMaxLength);
     Mutex::ScopedLock lock(mutex_);
@@ -110,8 +112,8 @@ class RandomCIDFactory : public CID::Factory {
     return CID(start, length_hint);
   }
 
-  CID GenerateInto(ngtcp2_cid* cid,
-                   size_t length_hint = CID::kMaxLength) const override {
+  const CID GenerateInto(ngtcp2_cid* cid,
+                         size_t length_hint = CID::kMaxLength) const override {
     DCHECK_GE(length_hint, CID::kMinLength);
     DCHECK_LE(length_hint, CID::kMaxLength);
     Mutex::ScopedLock lock(mutex_);
@@ -135,7 +137,7 @@ class RandomCIDFactory : public CID::Factory {
     }
   }
 
-  static constexpr int kPoolSize = 4096;
+  static constexpr int kPoolSize = 1024 * 16;
   mutable int pos_ = kPoolSize;
   mutable uint8_t pool_[kPoolSize];
   mutable Mutex mutex_;
@@ -148,4 +150,5 @@ const CID::Factory& CID::Factory::random() {
 }
 
 }  // namespace node::quic
-#endif  // HAVE_OPENSSL && NODE_OPENSSL_HAS_QUIC
+#endif  // OPENSSL_NO_QUIC
+#endif  // HAVE_OPENSS

src/quic/cid.h

@@ -1,7 +1,7 @@
 #pragma once
 
 #if defined(NODE_WANT_INTERNALS) && NODE_WANT_INTERNALS
-#if HAVE_OPENSSL && NODE_OPENSSL_HAS_QUIC
+
 #include <memory_tracker.h>
 #include <ngtcp2/ngtcp2.h>
 #include <string>
@@ -51,7 +51,7 @@ class CID final : public MemoryRetainer {
 
   CID(const CID& other);
   CID& operator=(const CID& other);
-  CID(CID&&) = delete;
+  DISALLOW_MOVE(CID)
 
   struct Hash final {
     size_t operator()(const CID& cid) const;
@@ -68,14 +68,16 @@ class CID final : public MemoryRetainer {
   operator bool() const;
   size_t length() const;
 
+  // Returns a hex-encoded string representation of the CID useful
+  // for debugging.
   std::string ToString() const;
 
   SET_NO_MEMORY_INFO()
   SET_MEMORY_INFO_NAME(CID)
   SET_SELF_SIZE(CID)
 
   template <typename T>
-  using Map = std::unordered_map<CID, T, CID::Hash>;
+  using Map = std::unordered_map<const CID, T, CID::Hash>;
 
   // A CID::Factory, as the name suggests, is used to create new CIDs.
   // Per https://datatracker.ietf.org/doc/draft-ietf-quic-load-balancers/, QUIC
@@ -85,13 +87,13 @@ class CID final : public MemoryRetainer {
   // but will allow user code to provide their own CID::Factory implementation.
   class Factory;
 
-  static CID kInvalid;
+  static const CID kInvalid;
 
   // The default constructor creates an empty, zero-length CID.
   // Zero-length CIDs are not usable. We use them as a placeholder
   // for a missing or empty CID value. This is public only because
   // it is required for the CID::Map implementation. It should not
-  // be used. Use kInvalid instead.
+  // be used directly. Use kInvalid instead.
   CID();
 
  private:
@@ -107,12 +109,12 @@ class CID::Factory {
 
   // Generate a new CID. The length_hint must be between CID::kMinLength
   // and CID::kMaxLength. The implementation can choose to ignore the length.
-  virtual CID Generate(size_t length_hint = CID::kMaxLength) const = 0;
+  virtual const CID Generate(size_t length_hint = CID::kMaxLength) const = 0;
 
   // Generate a new CID into the given ngtcp2_cid. This variation of
   // Generate should be used far less commonly.
-  virtual CID GenerateInto(ngtcp2_cid* cid,
-                           size_t length_hint = CID::kMaxLength) const = 0;
+  virtual const CID GenerateInto(
+      ngtcp2_cid* cid, size_t length_hint = CID::kMaxLength) const = 0;
 
   // The default random CID generator instance.
   static const Factory& random();
@@ -123,5 +125,4 @@ class CID::Factory {
 
 }  // namespace node::quic
 
-#endif  // HAVE_OPENSSL && NODE_OPENSSL_HAS_QUIC
 #endif  // defined(NODE_WANT_INTERNALS) && NODE_WANT_INTERNALS