grpc 1.65.1 → 1.66.0.pre3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Makefile +17 -7
- data/include/grpc/event_engine/event_engine.h +14 -0
- data/include/grpc/event_engine/extensible.h +3 -0
- data/include/grpc/event_engine/memory_request.h +18 -0
- data/include/grpc/support/log.h +0 -18
- data/include/grpc/support/metrics.h +14 -3
- data/include/grpc/support/port_platform.h +22 -0
- data/src/core/client_channel/client_channel.cc +125 -30
- data/src/core/client_channel/client_channel_filter.cc +37 -113
- data/src/core/client_channel/client_channel_internal.h +6 -0
- data/src/core/client_channel/config_selector.h +17 -14
- data/src/core/client_channel/direct_channel.cc +83 -0
- data/src/core/client_channel/direct_channel.h +101 -0
- data/src/core/client_channel/dynamic_filters.cc +3 -1
- data/src/core/client_channel/lb_metadata.cc +120 -0
- data/src/core/client_channel/lb_metadata.h +56 -0
- data/src/core/client_channel/load_balanced_call_destination.cc +8 -70
- data/src/core/client_channel/retry_filter.cc +1 -1
- data/src/core/client_channel/retry_filter_legacy_call_data.cc +164 -185
- data/src/core/client_channel/subchannel.cc +68 -49
- data/src/core/client_channel/subchannel.h +4 -10
- data/src/core/ext/filters/backend_metrics/backend_metric_filter.cc +6 -7
- data/src/core/ext/filters/backend_metrics/backend_metric_filter.h +2 -0
- data/src/core/ext/filters/census/grpc_context.cc +4 -4
- data/src/core/ext/filters/channel_idle/legacy_channel_idle_filter.cc +13 -14
- data/src/core/ext/filters/channel_idle/legacy_channel_idle_filter.h +4 -0
- data/src/core/ext/filters/fault_injection/fault_injection_filter.cc +4 -5
- data/src/core/ext/filters/fault_injection/fault_injection_filter.h +2 -0
- data/src/core/ext/filters/http/client/http_client_filter.cc +1 -1
- data/src/core/ext/filters/http/client/http_client_filter.h +2 -0
- data/src/core/ext/filters/http/client_authority_filter.cc +1 -2
- data/src/core/ext/filters/http/client_authority_filter.h +2 -0
- data/src/core/ext/filters/http/message_compress/compression_filter.cc +16 -19
- data/src/core/ext/filters/http/message_compress/compression_filter.h +5 -0
- data/src/core/ext/filters/http/server/http_server_filter.cc +4 -4
- data/src/core/ext/filters/http/server/http_server_filter.h +2 -0
- data/src/core/ext/filters/message_size/message_size_filter.cc +12 -14
- data/src/core/ext/filters/message_size/message_size_filter.h +4 -0
- data/src/core/ext/filters/rbac/rbac_filter.cc +1 -1
- data/src/core/ext/filters/rbac/rbac_filter.h +2 -0
- data/src/core/ext/filters/stateful_session/stateful_session_filter.cc +1 -2
- data/src/core/ext/filters/stateful_session/stateful_session_filter.h +2 -0
- data/src/core/ext/transport/chttp2/client/chttp2_connector.cc +53 -64
- data/src/core/ext/transport/chttp2/client/chttp2_connector.h +1 -1
- data/src/core/ext/transport/chttp2/server/chttp2_server.cc +90 -112
- data/src/core/ext/transport/chttp2/transport/bin_decoder.cc +17 -29
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.cc +195 -174
- data/src/core/ext/transport/chttp2/transport/chttp2_transport.h +2 -2
- data/src/core/ext/transport/chttp2/transport/flow_control.cc +3 -3
- data/src/core/ext/transport/chttp2/transport/frame_data.cc +3 -7
- data/src/core/ext/transport/chttp2/transport/frame_data.h +2 -1
- data/src/core/ext/transport/chttp2/transport/frame_ping.cc +7 -8
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.cc +12 -10
- data/src/core/ext/transport/chttp2/transport/frame_rst_stream.h +5 -3
- data/src/core/ext/transport/chttp2/transport/frame_settings.cc +9 -10
- data/src/core/ext/transport/chttp2/transport/frame_window_update.cc +7 -3
- data/src/core/ext/transport/chttp2/transport/frame_window_update.h +3 -1
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.cc +4 -5
- data/src/core/ext/transport/chttp2/transport/hpack_encoder.h +4 -5
- data/src/core/ext/transport/chttp2/transport/hpack_parser.cc +47 -38
- data/src/core/ext/transport/chttp2/transport/hpack_parser.h +2 -0
- data/src/core/ext/transport/chttp2/transport/internal.h +54 -9
- data/src/core/ext/transport/chttp2/transport/parsing.cc +59 -59
- data/src/core/ext/transport/chttp2/transport/stream_lists.cc +7 -7
- data/src/core/ext/transport/chttp2/transport/writing.cc +105 -79
- data/src/core/ext/transport/inproc/inproc_transport.cc +94 -35
- data/src/core/ext/transport/inproc/legacy_inproc_transport.cc +101 -98
- data/src/core/ext/upb-gen/envoy/admin/v3/certs.upb.h +11 -11
- data/src/core/ext/upb-gen/envoy/admin/v3/certs.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/clusters.upb.h +23 -23
- data/src/core/ext/upb-gen/envoy/admin/v3/clusters.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump.upb.h +11 -11
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump_shared.upb.h +50 -50
- data/src/core/ext/upb-gen/envoy/admin/v3/config_dump_shared.upb_minitable.c +57 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/init_dump.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/admin/v3/init_dump.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/listeners.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/admin/v3/listeners.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/memory.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/admin/v3/memory.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/metrics.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/metrics.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/mutex_stats.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/admin/v3/mutex_stats.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/admin/v3/server_info.upb.h +110 -78
- data/src/core/ext/upb-gen/envoy/admin/v3/server_info.upb_minitable.c +23 -15
- data/src/core/ext/upb-gen/envoy/admin/v3/tap.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/admin/v3/tap.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/annotations/deprecation.upb.h +4 -4
- data/src/core/ext/upb-gen/envoy/annotations/resource.upb.h +11 -2
- data/src/core/ext/upb-gen/envoy/annotations/resource.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/accesslog/v3/accesslog.upb.h +30 -30
- data/src/core/ext/upb-gen/envoy/config/accesslog/v3/accesslog.upb_minitable.c +48 -0
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb.h +361 -250
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb_minitable.c +139 -48
- data/src/core/ext/upb-gen/envoy/config/bootstrap/v3/bootstrap.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/circuit_breaker.upb.h +10 -10
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/circuit_breaker.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb.h +314 -137
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb_minitable.c +120 -22
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/cluster.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/filter.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb.h +115 -23
- data/src/core/ext/upb-gen/envoy/config/cluster/v3/outlier_detection.upb_minitable.c +27 -3
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb.h +31 -31
- data/src/core/ext/upb-gen/envoy/config/common/matcher/v3/matcher.upb_minitable.c +45 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb.h +23 -23
- data/src/core/ext/upb-gen/envoy/config/core/v3/address.upb_minitable.c +24 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/backoff.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/backoff.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb.h +646 -68
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.c +230 -16
- data/src/core/ext/upb-gen/envoy/config/core/v3/base.upb_minitable.h +5 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/config_source.upb.h +21 -21
- data/src/core/ext/upb-gen/envoy/config/core/v3/config_source.upb_minitable.c +21 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/event_service_config.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/config/core/v3/event_service_config.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/extension.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/extension.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_method_list.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_method_list.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_service.upb.h +130 -58
- data/src/core/ext/upb-gen/envoy/config/core/v3/grpc_service.upb_minitable.c +63 -12
- data/src/core/ext/upb-gen/envoy/config/core/v3/health_check.upb.h +104 -58
- data/src/core/ext/upb-gen/envoy/config/core/v3/health_check.upb_minitable.c +42 -11
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_service.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_uri.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/http_uri.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb.h +132 -72
- data/src/core/ext/upb-gen/envoy/config/core/v3/protocol.upb_minitable.c +65 -11
- data/src/core/ext/upb-gen/envoy/config/core/v3/proxy_protocol.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/proxy_protocol.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/resolver.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/core/v3/resolver.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/config/core/v3/socket_option.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb.h +7 -7
- data/src/core/ext/upb-gen/envoy/config/core/v3/substitution_format_string.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/core/v3/udp_socket_config.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/config/core/v3/udp_socket_config.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb.h +7 -7
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint_components.upb.h +58 -30
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/endpoint_components.upb_minitable.c +30 -7
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/load_report.upb.h +237 -33
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/load_report.upb_minitable.c +58 -12
- data/src/core/ext/upb-gen/envoy/config/endpoint/v3/load_report.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/envoy/config/listener/v3/api_listener.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/config/listener/v3/api_listener.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener.upb.h +59 -43
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener.upb_minitable.c +37 -6
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb.h +25 -25
- data/src/core/ext/upb-gen/envoy/config/listener/v3/listener_components.upb_minitable.c +21 -0
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb.h +66 -9
- data/src/core/ext/upb-gen/envoy/config/listener/v3/quic_config.upb_minitable.c +10 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/udp_listener_config.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/listener/v3/udp_listener_config.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/metrics_service.upb.h +5 -5
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/metrics_service.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/stats.upb.h +18 -18
- data/src/core/ext/upb-gen/envoy/config/metrics/v3/stats.upb_minitable.c +24 -0
- data/src/core/ext/upb-gen/envoy/config/overload/v3/overload.upb.h +17 -17
- data/src/core/ext/upb-gen/envoy/config/overload/v3/overload.upb_minitable.c +30 -0
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb.h +63 -34
- data/src/core/ext/upb-gen/envoy/config/rbac/v3/rbac.upb_minitable.c +39 -4
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb.h +9 -9
- data/src/core/ext/upb-gen/envoy/config/route/v3/route.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb.h +273 -229
- data/src/core/ext/upb-gen/envoy/config/route/v3/route_components.upb_minitable.c +191 -14
- data/src/core/ext/upb-gen/envoy/config/route/v3/scoped_route.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/config/route/v3/scoped_route.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb.h +31 -31
- data/src/core/ext/upb-gen/envoy/config/tap/v3/common.upb_minitable.c +36 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/datadog.upb.h +109 -12
- data/src/core/ext/upb-gen/envoy/config/trace/v3/datadog.upb_minitable.c +38 -11
- data/src/core/ext/upb-gen/envoy/config/trace/v3/datadog.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/config/trace/v3/dynamic_ot.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/http_tracer.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/http_tracer.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/lightstep.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/config/trace/v3/lightstep.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb.h +11 -11
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opencensus.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb.h +4 -4
- data/src/core/ext/upb-gen/envoy/config/trace/v3/opentelemetry.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/service.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/config/trace/v3/service.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/skywalking.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/config/trace/v3/skywalking.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/xray.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/config/trace/v3/xray.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/config/trace/v3/zipkin.upb.h +7 -7
- data/src/core/ext/upb-gen/envoy/config/trace/v3/zipkin.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb.h +114 -98
- data/src/core/ext/upb-gen/envoy/data/accesslog/v3/accesslog.upb_minitable.c +52 -3
- data/src/core/ext/upb-gen/envoy/extensions/clusters/aggregate/v3/cluster.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/common/fault/v3/fault.upb.h +7 -7
- data/src/core/ext/upb-gen/envoy/extensions/filters/common/fault/v3/fault.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/fault/v3/fault.upb.h +18 -18
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/fault/v3/fault.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/rbac/v3/rbac.upb.h +41 -9
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/rbac/v3/rbac.upb_minitable.c +15 -3
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb.h +8 -8
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/router/v3/router.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb.h +4 -4
- data/src/core/ext/upb-gen/envoy/extensions/filters/http/stateful_session/v3/stateful_session.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h +146 -130
- data/src/core/ext/upb-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb_minitable.c +74 -10
- data/src/core/ext/upb-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/extensions/http/stateful_session/cookie/v3/cookie.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/client_side_weighted_round_robin/v3/client_side_weighted_round_robin.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/common/v3/common.upb.h +10 -10
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/common/v3/common.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/pick_first/v3/pick_first.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/pick_first/v3/pick_first.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/ring_hash/v3/ring_hash.upb.h +7 -7
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/ring_hash/v3/ring_hash.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/wrr_locality/v3/wrr_locality.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/extensions/load_balancing_policies/wrr_locality/v3/wrr_locality.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb.h +111 -27
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb_minitable.c +43 -7
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/common.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/secret.upb.h +8 -8
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/secret.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb.h +35 -35
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls.upb_minitable.c +21 -0
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/extensions/transport_sockets/tls/v3/tls_spiffe_validator_config.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upb.h +16 -16
- data/src/core/ext/upb-gen/envoy/extensions/upstreams/http/v3/http_protocol_options.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/ads.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb.h +36 -36
- data/src/core/ext/upb-gen/envoy/service/discovery/v3/discovery.upb_minitable.c +42 -0
- data/src/core/ext/upb-gen/envoy/service/load_stats/v3/lrs.upb.h +4 -4
- data/src/core/ext/upb-gen/envoy/service/load_stats/v3/lrs.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb.h +20 -20
- data/src/core/ext/upb-gen/envoy/service/status/v3/csds.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/type/http/v3/cookie.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/http/v3/cookie.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/http/v3/path_transformation.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/type/http/v3/path_transformation.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/filter_state.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/filter_state.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/http_inputs.upb.h +5 -5
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/http_inputs.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/metadata.upb.h +4 -4
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/metadata.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/node.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/node.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/number.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/number.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/path.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/path.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/regex.upb.h +5 -5
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/regex.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/status_code_input.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/string.upb.h +37 -6
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/string.upb_minitable.c +20 -3
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/struct.upb.h +2 -2
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/struct.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb.h +8 -8
- data/src/core/ext/upb-gen/envoy/type/matcher/v3/value.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/envoy/type/metadata/v3/metadata.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/type/metadata/v3/metadata.upb_minitable.c +21 -0
- data/src/core/ext/upb-gen/envoy/type/tracing/v3/custom_tag.upb.h +13 -13
- data/src/core/ext/upb-gen/envoy/type/tracing/v3/custom_tag.upb_minitable.c +15 -0
- data/src/core/ext/upb-gen/envoy/type/v3/hash_policy.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/hash_policy.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/type/v3/http_status.upb.h +1 -1
- data/src/core/ext/upb-gen/envoy/type/v3/http_status.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/v3/percent.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/percent.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/type/v3/range.upb.h +6 -6
- data/src/core/ext/upb-gen/envoy/type/v3/range.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_strategy.upb.h +5 -5
- data/src/core/ext/upb-gen/envoy/type/v3/ratelimit_strategy.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/envoy/type/v3/semantic_version.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/semantic_version.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/envoy/type/v3/token_bucket.upb.h +3 -3
- data/src/core/ext/upb-gen/envoy/type/v3/token_bucket.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/google/api/annotations.upb.h +10 -1
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/checked.upb.h +32 -32
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/checked.upb_minitable.c +39 -0
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/syntax.upb.h +43 -43
- data/src/core/ext/upb-gen/google/api/expr/v1alpha1/syntax.upb_minitable.c +42 -0
- data/src/core/ext/upb-gen/google/api/http.upb.h +12 -12
- data/src/core/ext/upb-gen/google/api/http.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/google/api/httpbody.upb.h +2 -2
- data/src/core/ext/upb-gen/google/api/httpbody.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/google/protobuf/any.upb.h +2 -2
- data/src/core/ext/upb-gen/google/protobuf/any.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/google/protobuf/descriptor.upb.h +381 -177
- data/src/core/ext/upb-gen/google/protobuf/descriptor.upb_minitable.c +148 -22
- data/src/core/ext/upb-gen/google/protobuf/descriptor.upb_minitable.h +1 -0
- data/src/core/ext/upb-gen/google/protobuf/duration.upb.h +2 -2
- data/src/core/ext/upb-gen/google/protobuf/duration.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/google/protobuf/empty.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/google/protobuf/struct.upb.h +6 -6
- data/src/core/ext/upb-gen/google/protobuf/struct.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/google/protobuf/timestamp.upb.h +2 -2
- data/src/core/ext/upb-gen/google/protobuf/timestamp.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/google/protobuf/wrappers.upb.h +9 -9
- data/src/core/ext/upb-gen/google/protobuf/wrappers.upb_minitable.c +27 -0
- data/src/core/ext/upb-gen/google/rpc/status.upb.h +2 -2
- data/src/core/ext/upb-gen/google/rpc/status.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb.h +10 -10
- data/src/core/ext/upb-gen/opencensus/proto/trace/v1/trace_config.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/altscontext.upb.h +6 -6
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/altscontext.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/handshaker.upb.h +35 -35
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/handshaker.upb_minitable.c +36 -0
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/transport_security_common.upb.h +4 -4
- data/src/core/ext/upb-gen/src/proto/grpc/gcp/transport_security_common.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/src/proto/grpc/health/v1/health.upb.h +2 -2
- data/src/core/ext/upb-gen/src/proto/grpc/health/v1/health.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/src/proto/grpc/lb/v1/load_balancer.upb.h +18 -18
- data/src/core/ext/upb-gen/src/proto/grpc/lb/v1/load_balancer.upb_minitable.c +27 -0
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls.upb.h +4 -4
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls_config.upb.h +15 -15
- data/src/core/ext/upb-gen/src/proto/grpc/lookup/v1/rls_config.upb_minitable.c +27 -0
- data/src/core/ext/upb-gen/udpa/annotations/migrate.upb.h +54 -9
- data/src/core/ext/upb-gen/udpa/annotations/migrate.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/udpa/annotations/security.upb.h +12 -3
- data/src/core/ext/upb-gen/udpa/annotations/security.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/udpa/annotations/sensitive.upb.h +1 -1
- data/src/core/ext/upb-gen/udpa/annotations/status.upb.h +12 -3
- data/src/core/ext/upb-gen/udpa/annotations/status.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/udpa/annotations/versioning.upb.h +11 -2
- data/src/core/ext/upb-gen/udpa/annotations/versioning.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/validate/validate.upb.h +175 -166
- data/src/core/ext/upb-gen/validate/validate.upb_minitable.c +69 -0
- data/src/core/ext/upb-gen/xds/annotations/v3/migrate.upb.h +54 -9
- data/src/core/ext/upb-gen/xds/annotations/v3/migrate.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/xds/annotations/v3/security.upb.h +12 -3
- data/src/core/ext/upb-gen/xds/annotations/v3/security.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/annotations/v3/sensitive.upb.h +1 -1
- data/src/core/ext/upb-gen/xds/annotations/v3/status.upb.h +35 -8
- data/src/core/ext/upb-gen/xds/annotations/v3/status.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/xds/annotations/v3/versioning.upb.h +11 -2
- data/src/core/ext/upb-gen/xds/annotations/v3/versioning.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/core/v3/authority.upb.h +1 -1
- data/src/core/ext/upb-gen/xds/core/v3/authority.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/core/v3/cidr.upb.h +2 -2
- data/src/core/ext/upb-gen/xds/core/v3/cidr.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/core/v3/collection_entry.upb.h +5 -5
- data/src/core/ext/upb-gen/xds/core/v3/collection_entry.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/core/v3/context_params.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/core/v3/extension.upb.h +2 -2
- data/src/core/ext/upb-gen/xds/core/v3/extension.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/core/v3/resource.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/core/v3/resource.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/core/v3/resource_locator.upb.h +7 -7
- data/src/core/ext/upb-gen/xds/core/v3/resource_locator.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/core/v3/resource_name.upb.h +4 -4
- data/src/core/ext/upb-gen/xds/core/v3/resource_name.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/data/orca/v3/orca_load_report.upb.h +6 -6
- data/src/core/ext/upb-gen/xds/data/orca/v3/orca_load_report.upb_minitable.c +12 -0
- data/src/core/ext/upb-gen/xds/service/orca/v3/orca.upb.h +1 -1
- data/src/core/ext/upb-gen/xds/service/orca/v3/orca.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb.h +2 -2
- data/src/core/ext/upb-gen/xds/type/matcher/v3/cel.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/domain.upb.h +1 -1
- data/src/core/ext/upb-gen/xds/type/matcher/v3/domain.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/http_inputs.upb_minitable.c +3 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/ip.upb.h +2 -2
- data/src/core/ext/upb-gen/xds/type/matcher/v3/ip.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/matcher.upb.h +18 -18
- data/src/core/ext/upb-gen/xds/type/matcher/v3/matcher.upb_minitable.c +30 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/range.upb.h +3 -3
- data/src/core/ext/upb-gen/xds/type/matcher/v3/range.upb_minitable.c +18 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/regex.upb.h +2 -2
- data/src/core/ext/upb-gen/xds/type/matcher/v3/regex.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/type/matcher/v3/string.upb.h +6 -6
- data/src/core/ext/upb-gen/xds/type/matcher/v3/string.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/type/v3/cel.upb.h +4 -4
- data/src/core/ext/upb-gen/xds/type/v3/cel.upb_minitable.c +6 -0
- data/src/core/ext/upb-gen/xds/type/v3/range.upb.h +6 -6
- data/src/core/ext/upb-gen/xds/type/v3/range.upb_minitable.c +9 -0
- data/src/core/ext/upb-gen/xds/type/v3/typed_struct.upb.h +2 -2
- data/src/core/ext/upb-gen/xds/type/v3/typed_struct.upb_minitable.c +3 -0
- data/src/core/ext/upbdefs-gen/envoy/admin/v3/server_info.upbdefs.c +86 -81
- data/src/core/ext/upbdefs-gen/envoy/config/accesslog/v3/accesslog.upbdefs.c +61 -60
- data/src/core/ext/upbdefs-gen/envoy/config/bootstrap/v3/bootstrap.upbdefs.c +221 -210
- data/src/core/ext/upbdefs-gen/envoy/config/bootstrap/v3/bootstrap.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/cluster.upbdefs.c +317 -297
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/cluster.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/cluster/v3/outlier_detection.upbdefs.c +114 -105
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.c +185 -140
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/base.upbdefs.h +25 -0
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/config_source.upbdefs.c +10 -11
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/grpc_service.upbdefs.c +173 -164
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/health_check.upbdefs.c +197 -187
- data/src/core/ext/upbdefs-gen/envoy/config/core/v3/protocol.upbdefs.c +229 -222
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/endpoint_components.upbdefs.c +39 -36
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/load_report.upbdefs.c +122 -93
- data/src/core/ext/upbdefs-gen/envoy/config/endpoint/v3/load_report.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/listener.upbdefs.c +41 -39
- data/src/core/ext/upbdefs-gen/envoy/config/listener/v3/quic_config.upbdefs.c +20 -12
- data/src/core/ext/upbdefs-gen/envoy/config/rbac/v3/rbac.upbdefs.c +69 -65
- data/src/core/ext/upbdefs-gen/envoy/config/route/v3/route_components.upbdefs.c +611 -604
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/datadog.upbdefs.c +30 -20
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/datadog.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/dynamic_ot.upbdefs.c +18 -17
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/opencensus.upbdefs.c +62 -59
- data/src/core/ext/upbdefs-gen/envoy/config/trace/v3/zipkin.upbdefs.c +21 -20
- data/src/core/ext/upbdefs-gen/envoy/data/accesslog/v3/accesslog.upbdefs.c +145 -142
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/http/rbac/v3/rbac.upbdefs.c +36 -33
- data/src/core/ext/upbdefs-gen/envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.c +290 -288
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.c +82 -75
- data/src/core/ext/upbdefs-gen/envoy/extensions/transport_sockets/tls/v3/common.upbdefs.h +5 -0
- data/src/core/ext/upbdefs-gen/envoy/type/matcher/v3/string.upbdefs.c +39 -33
- data/src/core/ext/upbdefs-gen/google/protobuf/descriptor.upbdefs.c +281 -256
- data/src/core/ext/upbdefs-gen/google/protobuf/descriptor.upbdefs.h +5 -0
- data/src/core/handshaker/endpoint_info/endpoint_info_handshaker.cc +9 -7
- data/src/core/handshaker/handshaker.cc +122 -135
- data/src/core/handshaker/handshaker.h +51 -43
- data/src/core/handshaker/http_connect/http_connect_handshaker.cc +102 -137
- data/src/core/handshaker/http_connect/http_proxy_mapper.cc +20 -26
- data/src/core/handshaker/security/secure_endpoint.cc +36 -39
- data/src/core/handshaker/security/secure_endpoint.h +5 -3
- data/src/core/handshaker/security/security_handshaker.cc +95 -119
- data/src/core/handshaker/tcp_connect/tcp_connect_handshaker.cc +36 -49
- data/src/core/lib/channel/channel_args.h +5 -0
- data/src/core/lib/channel/channel_stack.cc +3 -8
- data/src/core/lib/channel/channel_stack.h +2 -12
- data/src/core/lib/channel/connected_channel.cc +2 -2
- data/src/core/lib/channel/promise_based_filter.cc +120 -145
- data/src/core/lib/channel/promise_based_filter.h +6 -18
- data/src/core/lib/compression/compression.cc +3 -3
- data/src/core/lib/compression/message_compress.cc +3 -3
- data/src/core/lib/config/config_vars.cc +1 -8
- data/src/core/lib/config/config_vars.h +0 -6
- data/src/core/lib/debug/trace.cc +1 -2
- data/src/core/lib/debug/trace_flags.cc +2 -0
- data/src/core/lib/debug/trace_flags.h +1 -0
- data/src/core/lib/debug/trace_impl.h +4 -0
- data/src/core/lib/event_engine/ares_resolver.cc +47 -0
- data/src/core/lib/event_engine/ares_resolver.h +13 -6
- data/src/core/lib/event_engine/cf_engine/cf_engine.cc +10 -11
- data/src/core/lib/event_engine/cf_engine/cfstream_endpoint.cc +29 -28
- data/src/core/lib/event_engine/cf_engine/dns_service_resolver.cc +0 -1
- data/src/core/lib/event_engine/default_event_engine.cc +6 -7
- data/src/core/lib/event_engine/event_engine.cc +8 -2
- data/src/core/lib/event_engine/event_engine_context.h +4 -2
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.cc +35 -33
- data/src/core/lib/event_engine/posix_engine/posix_endpoint.h +1 -1
- data/src/core/lib/event_engine/posix_engine/posix_engine.cc +7 -21
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener.cc +3 -3
- data/src/core/lib/event_engine/posix_engine/posix_engine_listener_utils.cc +6 -6
- data/src/core/lib/event_engine/posix_engine/tcp_socket_utils.cc +24 -14
- data/src/core/lib/event_engine/posix_engine/tcp_socket_utils.h +2 -0
- data/src/core/lib/event_engine/posix_engine/timer_manager.cc +7 -8
- data/src/core/lib/event_engine/thread_pool/thread_count.cc +3 -2
- data/src/core/lib/event_engine/thread_pool/work_stealing_thread_pool.cc +11 -11
- data/src/core/lib/event_engine/thready_event_engine/thready_event_engine.cc +32 -6
- data/src/core/lib/event_engine/windows/iocp.cc +10 -9
- data/src/core/lib/event_engine/windows/win_socket.cc +18 -14
- data/src/core/lib/event_engine/windows/windows_endpoint.cc +15 -12
- data/src/core/lib/event_engine/windows/windows_engine.cc +35 -40
- data/src/core/lib/event_engine/windows/windows_listener.cc +8 -11
- data/src/core/lib/experiments/config.cc +44 -16
- data/src/core/lib/experiments/config.h +55 -1
- data/src/core/lib/experiments/experiments.cc +15 -51
- data/src/core/lib/experiments/experiments.h +33 -49
- data/src/core/lib/gprpp/bitset.h +1 -1
- data/src/core/lib/gprpp/construct_destruct.h +2 -2
- data/src/core/lib/gprpp/debug_location.h +7 -0
- data/src/core/lib/gprpp/down_cast.h +2 -2
- data/src/core/lib/gprpp/dump_args.cc +8 -8
- data/src/core/lib/gprpp/dump_args.h +51 -3
- data/src/core/lib/gprpp/status_helper.cc +1 -1
- data/src/core/lib/gprpp/table.h +23 -15
- data/src/core/lib/gprpp/time.h +12 -17
- data/src/core/lib/gprpp/unique_type_name.h +28 -8
- data/src/core/lib/gprpp/work_serializer.cc +22 -17
- data/src/core/lib/iomgr/call_combiner.cc +28 -44
- data/src/core/lib/iomgr/call_combiner.h +7 -5
- data/src/core/lib/iomgr/cfstream_handle.cc +10 -10
- data/src/core/lib/iomgr/closure.h +5 -5
- data/src/core/lib/iomgr/combiner.cc +30 -39
- data/src/core/lib/iomgr/endpoint.h +2 -0
- data/src/core/lib/iomgr/endpoint_cfstream.cc +21 -25
- data/src/core/lib/iomgr/endpoint_pair_windows.cc +4 -4
- data/src/core/lib/iomgr/error.cc +3 -3
- data/src/core/lib/iomgr/ev_apple.cc +3 -3
- data/src/core/lib/iomgr/ev_epoll1_linux.cc +31 -38
- data/src/core/lib/iomgr/ev_poll_posix.cc +14 -14
- data/src/core/lib/iomgr/ev_posix.cc +5 -4
- data/src/core/lib/iomgr/ev_posix.h +3 -3
- data/src/core/lib/iomgr/event_engine_shims/closure.cc +6 -6
- data/src/core/lib/iomgr/event_engine_shims/endpoint.cc +9 -11
- data/src/core/lib/iomgr/event_engine_shims/tcp_client.cc +7 -10
- data/src/core/lib/iomgr/exec_ctx.cc +6 -6
- data/src/core/lib/iomgr/executor.cc +8 -5
- data/src/core/lib/iomgr/lockfree_event.cc +6 -9
- data/src/core/lib/iomgr/socket_utils_common_posix.cc +13 -13
- data/src/core/lib/iomgr/socket_windows.cc +3 -3
- data/src/core/lib/iomgr/tcp_client_cfstream.cc +8 -7
- data/src/core/lib/iomgr/tcp_client_posix.cc +6 -7
- data/src/core/lib/iomgr/tcp_posix.cc +32 -35
- data/src/core/lib/iomgr/tcp_server_posix.cc +29 -41
- data/src/core/lib/iomgr/tcp_server_windows.cc +2 -2
- data/src/core/lib/iomgr/tcp_windows.cc +8 -12
- data/src/core/lib/iomgr/timer_generic.cc +52 -61
- data/src/core/lib/iomgr/timer_manager.cc +4 -6
- data/src/core/lib/promise/activity.h +13 -2
- data/src/core/lib/promise/all_ok.h +15 -8
- data/src/core/lib/promise/cancel_callback.h +11 -7
- data/src/core/lib/promise/context.h +7 -7
- data/src/core/lib/promise/detail/join_state.h +418 -579
- data/src/core/lib/promise/detail/promise_factory.h +44 -27
- data/src/core/lib/promise/detail/promise_like.h +14 -5
- data/src/core/lib/promise/detail/seq_state.h +208 -614
- data/src/core/lib/promise/detail/status.h +34 -13
- data/src/core/lib/promise/for_each.h +25 -20
- data/src/core/lib/promise/if.h +19 -15
- data/src/core/lib/promise/interceptor_list.h +12 -13
- data/src/core/lib/promise/latch.h +9 -14
- data/src/core/lib/promise/loop.h +13 -8
- data/src/core/lib/promise/map.h +9 -8
- data/src/core/lib/promise/party.cc +85 -66
- data/src/core/lib/promise/party.h +68 -89
- data/src/core/lib/promise/pipe.h +2 -3
- data/src/core/lib/promise/poll.h +99 -33
- data/src/core/lib/promise/promise.h +11 -5
- data/src/core/lib/promise/race.h +10 -5
- data/src/core/lib/promise/seq.h +51 -36
- data/src/core/lib/promise/status_flag.h +146 -47
- data/src/core/lib/promise/try_join.h +34 -18
- data/src/core/lib/promise/try_seq.h +83 -46
- data/src/core/lib/resource_quota/arena.cc +19 -17
- data/src/core/lib/resource_quota/arena.h +30 -10
- data/src/core/lib/resource_quota/memory_quota.cc +14 -15
- data/src/core/lib/resource_quota/memory_quota.h +3 -2
- data/src/core/lib/resource_quota/periodic_update.cc +3 -2
- data/src/core/lib/security/authorization/grpc_server_authz_filter.cc +13 -17
- data/src/core/lib/security/authorization/grpc_server_authz_filter.h +2 -0
- data/src/core/lib/security/context/security_context.cc +31 -28
- data/src/core/lib/security/credentials/alts/check_gcp_environment.cc +1 -1
- data/src/core/lib/security/credentials/alts/check_gcp_environment_no_op.cc +1 -1
- data/src/core/lib/security/credentials/composite/composite_credentials.cc +7 -9
- data/src/core/lib/security/credentials/credentials.cc +11 -9
- data/src/core/lib/security/credentials/google_default/google_default_credentials.cc +2 -3
- data/src/core/lib/security/credentials/iam/iam_credentials.cc +3 -5
- data/src/core/lib/security/credentials/jwt/json_token.cc +1 -1
- data/src/core/lib/security/credentials/jwt/jwt_credentials.cc +8 -14
- data/src/core/lib/security/credentials/oauth2/oauth2_credentials.cc +19 -23
- data/src/core/lib/security/credentials/plugin/plugin_credentials.cc +11 -18
- data/src/core/lib/security/credentials/ssl/ssl_credentials.cc +16 -20
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc +5 -6
- data/src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.cc +2 -3
- data/src/core/lib/security/credentials/tls/grpc_tls_credentials_options.cc +5 -7
- data/src/core/lib/security/credentials/tls/tls_credentials.cc +2 -2
- data/src/core/lib/security/credentials/xds/xds_credentials.cc +12 -8
- data/src/core/lib/security/security_connector/security_connector.cc +3 -3
- data/src/core/lib/security/security_connector/ssl_utils.cc +9 -6
- data/src/core/lib/security/transport/auth_filters.h +4 -0
- data/src/core/lib/security/transport/client_auth_filter.cc +1 -2
- data/src/core/lib/security/transport/server_auth_filter.cc +8 -11
- data/src/core/lib/slice/slice_refcount.h +4 -6
- data/src/core/lib/surface/call.cc +33 -26
- data/src/core/lib/surface/call.h +9 -18
- data/src/core/lib/surface/call_details.cc +4 -3
- data/src/core/lib/surface/call_log_batch.cc +4 -5
- data/src/core/lib/surface/call_utils.cc +5 -7
- data/src/core/lib/surface/channel.cc +32 -34
- data/src/core/lib/surface/channel_create.cc +15 -6
- data/src/core/lib/surface/channel_init.cc +257 -196
- data/src/core/lib/surface/channel_init.h +156 -21
- data/src/core/lib/surface/client_call.cc +32 -21
- data/src/core/lib/surface/client_call.h +12 -12
- data/src/core/lib/surface/completion_queue.cc +51 -64
- data/src/core/lib/surface/filter_stack_call.cc +15 -14
- data/src/core/lib/surface/init.cc +25 -7
- data/src/core/lib/surface/lame_client.cc +1 -2
- data/src/core/lib/surface/lame_client.h +2 -0
- data/src/core/lib/surface/legacy_channel.cc +9 -7
- data/src/core/lib/surface/metadata_array.cc +4 -3
- data/src/core/lib/surface/server_call.cc +2 -0
- data/src/core/lib/surface/server_call.h +8 -6
- data/src/core/lib/surface/version.cc +2 -2
- data/src/core/lib/transport/bdp_estimator.cc +7 -9
- data/src/core/lib/transport/bdp_estimator.h +5 -5
- data/src/core/lib/transport/call_arena_allocator.h +2 -0
- data/src/core/lib/transport/call_filters.cc +72 -319
- data/src/core/lib/transport/call_filters.h +347 -770
- data/src/core/lib/transport/call_spine.cc +99 -72
- data/src/core/lib/transport/call_spine.h +23 -73
- data/src/core/lib/transport/call_state.cc +39 -0
- data/src/core/lib/transport/call_state.h +957 -0
- data/src/core/lib/transport/connectivity_state.cc +28 -25
- data/src/core/lib/transport/interception_chain.cc +6 -14
- data/src/core/lib/transport/interception_chain.h +34 -26
- data/src/core/lib/transport/metadata.cc +27 -3
- data/src/core/lib/transport/metadata.h +37 -2
- data/src/core/lib/transport/metadata_batch.h +5 -0
- data/src/core/lib/transport/transport.h +9 -5
- data/src/core/load_balancing/child_policy_handler.cc +24 -27
- data/src/core/load_balancing/grpclb/client_load_reporting_filter.cc +1 -2
- data/src/core/load_balancing/grpclb/client_load_reporting_filter.h +3 -0
- data/src/core/load_balancing/grpclb/grpclb.cc +109 -121
- data/src/core/load_balancing/health_check_client.cc +35 -41
- data/src/core/load_balancing/lb_policy.h +42 -22
- data/src/core/load_balancing/oob_backend_metric.cc +4 -4
- data/src/core/load_balancing/outlier_detection/outlier_detection.cc +86 -104
- data/src/core/load_balancing/pick_first/pick_first.cc +156 -180
- data/src/core/load_balancing/priority/priority.cc +63 -74
- data/src/core/load_balancing/ring_hash/ring_hash.cc +34 -40
- data/src/core/load_balancing/rls/rls.cc +136 -145
- data/src/core/load_balancing/round_robin/round_robin.cc +39 -38
- data/src/core/load_balancing/subchannel_interface.h +4 -0
- data/src/core/load_balancing/weighted_round_robin/weighted_round_robin.cc +75 -74
- data/src/core/load_balancing/weighted_target/weighted_target.cc +47 -55
- data/src/core/load_balancing/xds/cds.cc +22 -22
- data/src/core/load_balancing/xds/xds_cluster_impl.cc +100 -75
- data/src/core/load_balancing/xds/xds_cluster_manager.cc +31 -45
- data/src/core/load_balancing/xds/xds_override_host.cc +68 -91
- data/src/core/load_balancing/xds/xds_wrr_locality.cc +19 -18
- data/src/core/resolver/dns/c_ares/dns_resolver_ares.cc +9 -0
- data/src/core/resolver/dns/c_ares/grpc_ares_wrapper.cc +14 -24
- data/src/core/resolver/dns/c_ares/grpc_ares_wrapper.h +6 -6
- data/src/core/resolver/dns/event_engine/event_engine_client_channel_resolver.cc +4 -5
- data/src/core/resolver/dns/native/dns_resolver.cc +6 -7
- data/src/core/resolver/endpoint_addresses.h +3 -0
- data/src/core/resolver/resolver.h +0 -3
- data/src/core/resolver/xds/xds_dependency_manager.cc +67 -57
- data/src/core/resolver/xds/xds_dependency_manager.h +4 -0
- data/src/core/resolver/xds/xds_resolver.cc +72 -45
- data/src/core/resolver/xds/xds_resolver_attributes.h +5 -1
- data/src/core/server/server.cc +74 -78
- data/src/core/server/server_call_tracer_filter.cc +3 -2
- data/src/core/server/server_config_selector_filter.cc +6 -2
- data/src/core/server/xds_channel_stack_modifier.cc +1 -1
- data/src/core/server/xds_server_config_fetcher.cc +40 -44
- data/src/core/service_config/service_config_call_data.h +2 -1
- data/src/core/service_config/service_config_channel_arg_filter.cc +3 -2
- data/src/core/telemetry/call_tracer.cc +34 -0
- data/src/core/telemetry/call_tracer.h +15 -0
- data/src/core/telemetry/metrics.h +13 -8
- data/src/core/tsi/alts/frame_protector/frame_handler.cc +8 -7
- data/src/core/tsi/alts/handshaker/alts_handshaker_client.cc +8 -10
- data/src/core/tsi/alts/handshaker/alts_tsi_handshaker.cc +6 -9
- data/src/core/tsi/alts/handshaker/transport_security_common_api.cc +13 -21
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_grpc_integrity_only_record_protocol.cc +6 -8
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_grpc_privacy_integrity_record_protocol.cc +6 -8
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_grpc_record_protocol_common.cc +5 -5
- data/src/core/tsi/alts/zero_copy_frame_protector/alts_zero_copy_grpc_protector.cc +3 -6
- data/src/core/tsi/fake_transport_security.cc +7 -7
- data/src/core/tsi/ssl/key_logging/ssl_key_logging.cc +5 -7
- data/src/core/tsi/ssl_transport_security.cc +44 -29
- data/src/core/tsi/ssl_transport_security_utils.cc +3 -4
- data/src/core/util/android/log.cc +0 -12
- data/src/core/util/http_client/httpcli.cc +21 -33
- data/src/core/util/http_client/httpcli.h +3 -4
- data/src/core/util/http_client/parser.cc +3 -3
- data/src/core/util/latent_see.cc +113 -0
- data/src/core/util/latent_see.h +214 -0
- data/src/core/util/linux/cpu.cc +8 -7
- data/src/core/util/log.cc +2 -20
- data/src/core/util/posix/cpu.cc +3 -2
- data/src/core/util/posix/tmpfile.cc +5 -5
- data/src/core/util/time_precise.cc +4 -3
- data/src/core/{xds/grpc → util}/upb_utils.h +3 -5
- data/src/core/util/useful.h +39 -44
- data/src/core/xds/grpc/xds_audit_logger_registry.cc +1 -0
- data/src/core/xds/grpc/xds_bootstrap_grpc.cc +0 -125
- data/src/core/xds/grpc/xds_bootstrap_grpc.h +2 -27
- data/src/core/xds/grpc/xds_certificate_provider.cc +2 -1
- data/src/core/xds/grpc/xds_certificate_provider.h +3 -1
- data/src/core/xds/grpc/xds_client_grpc.cc +13 -14
- data/src/core/xds/grpc/xds_cluster.cc +0 -723
- data/src/core/xds/grpc/xds_cluster.h +2 -37
- data/src/core/xds/grpc/xds_cluster_parser.cc +730 -0
- data/src/core/xds/grpc/xds_cluster_parser.h +57 -0
- data/src/core/xds/grpc/xds_common_types.cc +33 -437
- data/src/core/xds/grpc/xds_common_types.h +7 -24
- data/src/core/xds/grpc/xds_common_types_parser.cc +467 -0
- data/src/core/xds/grpc/xds_common_types_parser.h +54 -0
- data/src/core/xds/grpc/xds_endpoint.cc +0 -419
- data/src/core/xds/grpc/xds_endpoint.h +0 -24
- data/src/core/xds/grpc/xds_endpoint_parser.cc +439 -0
- data/src/core/xds/grpc/xds_endpoint_parser.h +48 -0
- data/src/core/xds/grpc/xds_health_status.cc +0 -2
- data/src/core/xds/grpc/xds_health_status.h +0 -2
- data/src/core/xds/grpc/xds_http_fault_filter.cc +6 -1
- data/src/core/xds/grpc/xds_http_fault_filter.h +2 -1
- data/src/core/xds/grpc/{xds_http_filters.h → xds_http_filter.h} +6 -63
- data/src/core/xds/grpc/{xds_http_filters.cc → xds_http_filter_registry.cc} +2 -1
- data/src/core/xds/grpc/xds_http_filter_registry.h +98 -0
- data/src/core/xds/grpc/xds_http_rbac_filter.cc +5 -1
- data/src/core/xds/grpc/xds_http_rbac_filter.h +2 -1
- data/src/core/xds/grpc/xds_http_stateful_session_filter.cc +8 -2
- data/src/core/xds/grpc/xds_http_stateful_session_filter.h +2 -1
- data/src/core/xds/grpc/xds_lb_policy_registry.cc +4 -5
- data/src/core/xds/grpc/xds_listener.cc +18 -982
- data/src/core/xds/grpc/xds_listener.h +1 -33
- data/src/core/xds/grpc/xds_listener_parser.cc +997 -0
- data/src/core/xds/grpc/xds_listener_parser.h +60 -0
- data/src/core/xds/grpc/xds_route_config.cc +0 -915
- data/src/core/xds/grpc/xds_route_config.h +6 -38
- data/src/core/xds/grpc/xds_route_config_parser.cc +969 -0
- data/src/core/xds/grpc/xds_route_config_parser.h +80 -0
- data/src/core/xds/grpc/xds_routing.cc +1 -1
- data/src/core/xds/grpc/xds_routing.h +1 -1
- data/src/core/xds/grpc/xds_server_grpc.cc +161 -0
- data/src/core/xds/grpc/xds_server_grpc.h +63 -0
- data/src/core/xds/grpc/xds_transport_grpc.cc +4 -5
- data/src/core/xds/xds_client/xds_api.cc +10 -10
- data/src/core/xds/xds_client/xds_client.cc +144 -177
- data/src/core/xds/xds_client/xds_client_stats.cc +21 -24
- data/src/ruby/ext/grpc/rb_call.c +2 -2
- data/src/ruby/ext/grpc/rb_channel.c +14 -14
- data/src/ruby/ext/grpc/rb_channel_args.c +1 -1
- data/src/ruby/ext/grpc/rb_compression_options.c +3 -3
- data/src/ruby/ext/grpc/rb_event_thread.c +2 -2
- data/src/ruby/ext/grpc/rb_grpc.c +4 -4
- data/src/ruby/ext/grpc/rb_grpc.h +8 -0
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.c +0 -4
- data/src/ruby/ext/grpc/rb_grpc_imports.generated.h +0 -6
- data/src/ruby/ext/grpc/rb_server.c +1 -1
- data/src/ruby/lib/grpc/logconfig.rb +13 -0
- data/src/ruby/lib/grpc/version.rb +1 -1
- data/src/ruby/spec/logconfig_spec.rb +30 -0
- data/third_party/boringssl-with-bazel/src/crypto/bytestring/cbs.c +3 -5
- data/third_party/boringssl-with-bazel/src/crypto/cipher_extra/e_chacha20poly1305.c +7 -0
- data/third_party/boringssl-with-bazel/src/crypto/cpu_arm_linux.c +4 -1
- data/third_party/boringssl-with-bazel/src/crypto/cpu_intel.c +0 -15
- data/third_party/boringssl-with-bazel/src/crypto/crypto.c +7 -61
- data/third_party/boringssl-with-bazel/src/crypto/dilithium/dilithium.c +43 -1
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/aes.c +21 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/aes/internal.h +31 -7
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/bcm.c +0 -2
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/ec/p256-nistz.c +5 -0
- data/third_party/boringssl-with-bazel/src/crypto/fipsmodule/self_check/fips.c +6 -4
- data/third_party/boringssl-with-bazel/src/crypto/internal.h +22 -10
- data/third_party/boringssl-with-bazel/src/crypto/kyber/kyber.c +1 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/crypto.h +6 -11
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/dilithium.h +6 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/experimental/kyber.h +10 -0
- data/third_party/boringssl-with-bazel/src/include/openssl/span.h +26 -12
- data/third_party/boringssl-with-bazel/src/include/openssl/ssl.h +83 -33
- data/third_party/boringssl-with-bazel/src/ssl/d1_both.cc +6 -8
- data/third_party/boringssl-with-bazel/src/ssl/d1_pkt.cc +4 -4
- data/third_party/boringssl-with-bazel/src/ssl/dtls_record.cc +14 -13
- data/third_party/boringssl-with-bazel/src/ssl/extensions.cc +22 -16
- data/third_party/boringssl-with-bazel/src/ssl/handshake_client.cc +2 -1
- data/third_party/boringssl-with-bazel/src/ssl/handshake_server.cc +2 -1
- data/third_party/boringssl-with-bazel/src/ssl/internal.h +15 -15
- data/third_party/boringssl-with-bazel/src/ssl/ssl_key_share.cc +1 -0
- data/third_party/boringssl-with-bazel/src/ssl/ssl_lib.cc +38 -27
- data/third_party/boringssl-with-bazel/src/ssl/ssl_privkey.cc +59 -20
- data/third_party/boringssl-with-bazel/src/ssl/ssl_versions.cc +1 -1
- data/third_party/boringssl-with-bazel/src/ssl/tls13_both.cc +2 -1
- data/third_party/boringssl-with-bazel/src/ssl/tls_record.cc +1 -1
- data/third_party/upb/upb/base/string_view.h +1 -1
- data/third_party/upb/upb/json/decode.c +1 -0
- data/third_party/upb/upb/mem/arena.c +67 -2
- data/third_party/upb/upb/mem/arena.h +11 -9
- data/third_party/upb/upb/mem/internal/arena.h +11 -8
- data/third_party/upb/upb/message/accessors.c +6 -5
- data/third_party/upb/upb/message/accessors.h +49 -38
- data/third_party/upb/upb/message/array.c +26 -3
- data/third_party/upb/upb/message/array.h +17 -9
- data/third_party/upb/upb/message/compat.c +5 -5
- data/third_party/upb/upb/message/compat.h +3 -3
- data/third_party/upb/upb/message/copy.c +12 -13
- data/third_party/upb/upb/message/internal/accessors.h +45 -35
- data/third_party/upb/upb/message/internal/array.h +23 -15
- data/third_party/upb/upb/message/internal/compare_unknown.c +289 -0
- data/third_party/upb/upb/message/internal/compare_unknown.h +49 -0
- data/third_party/upb/upb/message/internal/extension.c +11 -12
- data/third_party/upb/upb/message/internal/extension.h +9 -12
- data/third_party/upb/upb/message/internal/map.h +15 -0
- data/third_party/upb/upb/message/internal/map_sorter.h +4 -5
- data/third_party/upb/upb/message/internal/message.c +20 -3
- data/third_party/upb/upb/message/internal/message.h +10 -0
- data/third_party/upb/upb/message/internal/tagged_ptr.h +5 -5
- data/third_party/upb/upb/message/internal/types.h +41 -1
- data/third_party/upb/upb/message/map.c +25 -0
- data/third_party/upb/upb/message/map.h +11 -7
- data/third_party/upb/upb/message/message.c +83 -4
- data/third_party/upb/upb/message/message.h +20 -1
- data/third_party/upb/upb/message/tagged_ptr.h +4 -8
- data/third_party/upb/upb/mini_descriptor/build_enum.c +3 -3
- data/third_party/upb/upb/mini_descriptor/build_enum.h +6 -14
- data/third_party/upb/upb/mini_descriptor/decode.c +12 -1
- data/third_party/upb/upb/mini_descriptor/link.c +16 -18
- data/third_party/upb/upb/mini_table/enum.h +2 -4
- data/third_party/upb/upb/mini_table/extension.h +4 -12
- data/third_party/upb/upb/mini_table/field.h +12 -38
- data/third_party/upb/upb/mini_table/file.h +6 -19
- data/third_party/upb/upb/mini_table/internal/enum.h +1 -1
- data/third_party/upb/upb/mini_table/internal/extension.h +9 -9
- data/third_party/upb/upb/mini_table/internal/field.h +23 -23
- data/third_party/upb/upb/mini_table/internal/file.h +7 -7
- data/third_party/upb/upb/mini_table/internal/message.h +51 -27
- data/third_party/upb/upb/mini_table/internal/sub.h +4 -4
- data/third_party/upb/upb/mini_table/message.h +13 -22
- data/third_party/upb/upb/mini_table/sub.h +4 -12
- data/third_party/upb/upb/port/def.inc +12 -6
- data/third_party/upb/upb/port/undef.inc +1 -1
- data/third_party/upb/upb/reflection/def.hpp +27 -0
- data/third_party/upb/upb/reflection/def_pool.h +2 -2
- data/third_party/upb/upb/reflection/enum_def.c +5 -1
- data/third_party/upb/upb/reflection/enum_def.h +1 -0
- data/third_party/upb/upb/reflection/enum_value_def.c +3 -8
- data/third_party/upb/upb/reflection/field_def.c +61 -24
- data/third_party/upb/upb/reflection/field_def.h +3 -0
- data/third_party/upb/upb/reflection/file_def.c +30 -4
- data/third_party/upb/upb/reflection/file_def.h +3 -0
- data/third_party/upb/upb/reflection/internal/upb_edition_defaults.h +1 -1
- data/third_party/upb/upb/reflection/message.c +19 -7
- data/third_party/upb/upb/reflection/message_def.c +14 -9
- data/third_party/upb/upb/reflection/method_def.h +8 -7
- data/third_party/upb/upb/reflection/service_def.h +6 -5
- data/third_party/upb/upb/text/encode.c +10 -3
- data/third_party/upb/upb/wire/decode.c +91 -57
- data/third_party/upb/upb/wire/decode.h +11 -1
- data/third_party/upb/upb/wire/encode.c +48 -30
- data/third_party/upb/upb/wire/encode.h +9 -1
- data/third_party/upb/upb/wire/eps_copy_input_stream.h +3 -3
- data/third_party/upb/upb/wire/internal/decode_fast.c +25 -29
- data/third_party/upb/upb/wire/internal/reader.h +3 -3
- data/third_party/upb/upb/wire/reader.c +1 -2
- data/third_party/upb/upb/wire/reader.h +4 -8
- metadata +31 -9
- data/src/core/client_channel/config_selector.cc +0 -60
- data/src/core/lib/event_engine/trace.h +0 -37
- data/src/core/lib/surface/api_trace.h +0 -50
@@ -0,0 +1,997 @@
|
|
1
|
+
//
|
2
|
+
// Copyright 2018 gRPC authors.
|
3
|
+
//
|
4
|
+
// Licensed under the Apache License, Version 2.0 (the "License");
|
5
|
+
// you may not use this file except in compliance with the License.
|
6
|
+
// You may obtain a copy of the License at
|
7
|
+
//
|
8
|
+
// http://www.apache.org/licenses/LICENSE-2.0
|
9
|
+
//
|
10
|
+
// Unless required by applicable law or agreed to in writing, software
|
11
|
+
// distributed under the License is distributed on an "AS IS" BASIS,
|
12
|
+
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
13
|
+
// See the License for the specific language governing permissions and
|
14
|
+
// limitations under the License.
|
15
|
+
//
|
16
|
+
|
17
|
+
#include "src/core/xds/grpc/xds_listener_parser.h"
|
18
|
+
|
19
|
+
#include <stdint.h>
|
20
|
+
|
21
|
+
#include <set>
|
22
|
+
#include <utility>
|
23
|
+
|
24
|
+
#include "absl/log/check.h"
|
25
|
+
#include "absl/log/log.h"
|
26
|
+
#include "absl/status/status.h"
|
27
|
+
#include "absl/status/statusor.h"
|
28
|
+
#include "absl/strings/str_cat.h"
|
29
|
+
#include "absl/strings/str_format.h"
|
30
|
+
#include "absl/strings/str_join.h"
|
31
|
+
#include "envoy/config/core/v3/address.upb.h"
|
32
|
+
#include "envoy/config/core/v3/base.upb.h"
|
33
|
+
#include "envoy/config/core/v3/config_source.upb.h"
|
34
|
+
#include "envoy/config/core/v3/protocol.upb.h"
|
35
|
+
#include "envoy/config/listener/v3/api_listener.upb.h"
|
36
|
+
#include "envoy/config/listener/v3/listener.upb.h"
|
37
|
+
#include "envoy/config/listener/v3/listener.upbdefs.h"
|
38
|
+
#include "envoy/config/listener/v3/listener_components.upb.h"
|
39
|
+
#include "envoy/config/route/v3/route.upb.h"
|
40
|
+
#include "envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upb.h"
|
41
|
+
#include "envoy/extensions/filters/network/http_connection_manager/v3/http_connection_manager.upbdefs.h"
|
42
|
+
#include "envoy/extensions/transport_sockets/tls/v3/tls.upb.h"
|
43
|
+
#include "google/protobuf/any.upb.h"
|
44
|
+
#include "google/protobuf/duration.upb.h"
|
45
|
+
#include "google/protobuf/wrappers.upb.h"
|
46
|
+
#include "upb/text/encode.h"
|
47
|
+
|
48
|
+
#include <grpc/support/port_platform.h>
|
49
|
+
|
50
|
+
#include "src/core/lib/address_utils/parse_address.h"
|
51
|
+
#include "src/core/lib/address_utils/sockaddr_utils.h"
|
52
|
+
#include "src/core/lib/debug/trace.h"
|
53
|
+
#include "src/core/lib/gprpp/host_port.h"
|
54
|
+
#include "src/core/lib/gprpp/match.h"
|
55
|
+
#include "src/core/lib/gprpp/validation_errors.h"
|
56
|
+
#include "src/core/lib/iomgr/sockaddr.h"
|
57
|
+
#include "src/core/lib/matchers/matchers.h"
|
58
|
+
#include "src/core/util/upb_utils.h"
|
59
|
+
#include "src/core/xds/grpc/xds_common_types.h"
|
60
|
+
#include "src/core/xds/grpc/xds_common_types_parser.h"
|
61
|
+
#include "src/core/xds/grpc/xds_route_config_parser.h"
|
62
|
+
#include "src/core/xds/xds_client/xds_resource_type.h"
|
63
|
+
|
64
|
+
namespace grpc_core {
|
65
|
+
|
66
|
+
namespace {
|
67
|
+
|
68
|
+
struct FilterChain {
|
69
|
+
struct FilterChainMatch {
|
70
|
+
uint32_t destination_port = 0;
|
71
|
+
std::vector<XdsListenerResource::FilterChainMap::CidrRange> prefix_ranges;
|
72
|
+
XdsListenerResource::FilterChainMap::ConnectionSourceType source_type =
|
73
|
+
XdsListenerResource::FilterChainMap::ConnectionSourceType::kAny;
|
74
|
+
std::vector<XdsListenerResource::FilterChainMap::CidrRange>
|
75
|
+
source_prefix_ranges;
|
76
|
+
std::vector<uint32_t> source_ports;
|
77
|
+
std::vector<std::string> server_names;
|
78
|
+
std::string transport_protocol;
|
79
|
+
std::vector<std::string> application_protocols;
|
80
|
+
|
81
|
+
std::string ToString() const;
|
82
|
+
} filter_chain_match;
|
83
|
+
|
84
|
+
std::shared_ptr<XdsListenerResource::FilterChainData> filter_chain_data;
|
85
|
+
};
|
86
|
+
|
87
|
+
std::string FilterChain::FilterChainMatch::ToString() const {
|
88
|
+
std::vector<std::string> contents;
|
89
|
+
if (destination_port != 0) {
|
90
|
+
contents.push_back(absl::StrCat("destination_port=", destination_port));
|
91
|
+
}
|
92
|
+
if (!prefix_ranges.empty()) {
|
93
|
+
std::vector<std::string> prefix_ranges_content;
|
94
|
+
prefix_ranges_content.reserve(prefix_ranges.size());
|
95
|
+
for (const auto& range : prefix_ranges) {
|
96
|
+
prefix_ranges_content.push_back(range.ToString());
|
97
|
+
}
|
98
|
+
contents.push_back(absl::StrCat(
|
99
|
+
"prefix_ranges={", absl::StrJoin(prefix_ranges_content, ", "), "}"));
|
100
|
+
}
|
101
|
+
if (source_type == XdsListenerResource::FilterChainMap::ConnectionSourceType::
|
102
|
+
kSameIpOrLoopback) {
|
103
|
+
contents.push_back("source_type=SAME_IP_OR_LOOPBACK");
|
104
|
+
} else if (source_type == XdsListenerResource::FilterChainMap::
|
105
|
+
ConnectionSourceType::kExternal) {
|
106
|
+
contents.push_back("source_type=EXTERNAL");
|
107
|
+
}
|
108
|
+
if (!source_prefix_ranges.empty()) {
|
109
|
+
std::vector<std::string> source_prefix_ranges_content;
|
110
|
+
source_prefix_ranges_content.reserve(source_prefix_ranges.size());
|
111
|
+
for (const auto& range : source_prefix_ranges) {
|
112
|
+
source_prefix_ranges_content.push_back(range.ToString());
|
113
|
+
}
|
114
|
+
contents.push_back(
|
115
|
+
absl::StrCat("source_prefix_ranges={",
|
116
|
+
absl::StrJoin(source_prefix_ranges_content, ", "), "}"));
|
117
|
+
}
|
118
|
+
if (!source_ports.empty()) {
|
119
|
+
contents.push_back(
|
120
|
+
absl::StrCat("source_ports={", absl::StrJoin(source_ports, ", "), "}"));
|
121
|
+
}
|
122
|
+
if (!server_names.empty()) {
|
123
|
+
contents.push_back(
|
124
|
+
absl::StrCat("server_names={", absl::StrJoin(server_names, ", "), "}"));
|
125
|
+
}
|
126
|
+
if (!transport_protocol.empty()) {
|
127
|
+
contents.push_back(absl::StrCat("transport_protocol=", transport_protocol));
|
128
|
+
}
|
129
|
+
if (!application_protocols.empty()) {
|
130
|
+
contents.push_back(absl::StrCat("application_protocols={",
|
131
|
+
absl::StrJoin(application_protocols, ", "),
|
132
|
+
"}"));
|
133
|
+
}
|
134
|
+
return absl::StrCat("{", absl::StrJoin(contents, ", "), "}");
|
135
|
+
}
|
136
|
+
|
137
|
+
void MaybeLogHttpConnectionManager(
|
138
|
+
const XdsResourceType::DecodeContext& context,
|
139
|
+
const envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager*
|
140
|
+
http_connection_manager_config) {
|
141
|
+
if (GRPC_TRACE_FLAG_ENABLED_OBJ(*context.tracer) && ABSL_VLOG_IS_ON(2)) {
|
142
|
+
const upb_MessageDef* msg_type =
|
143
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_getmsgdef(
|
144
|
+
context.symtab);
|
145
|
+
char buf[10240];
|
146
|
+
upb_TextEncode(
|
147
|
+
reinterpret_cast<const upb_Message*>(http_connection_manager_config),
|
148
|
+
msg_type, nullptr, 0, buf, sizeof(buf));
|
149
|
+
VLOG(2) << "[xds_client " << context.client
|
150
|
+
<< "] HttpConnectionManager: " << buf;
|
151
|
+
}
|
152
|
+
}
|
153
|
+
|
154
|
+
XdsListenerResource::HttpConnectionManager HttpConnectionManagerParse(
|
155
|
+
bool is_client, const XdsResourceType::DecodeContext& context,
|
156
|
+
XdsExtension extension, ValidationErrors* errors) {
|
157
|
+
if (extension.type !=
|
158
|
+
"envoy.extensions.filters.network.http_connection_manager.v3"
|
159
|
+
".HttpConnectionManager") {
|
160
|
+
errors->AddError("unsupported filter type");
|
161
|
+
return {};
|
162
|
+
}
|
163
|
+
auto* serialized_hcm_config =
|
164
|
+
absl::get_if<absl::string_view>(&extension.value);
|
165
|
+
if (serialized_hcm_config == nullptr) {
|
166
|
+
errors->AddError("could not parse HttpConnectionManager config");
|
167
|
+
return {};
|
168
|
+
}
|
169
|
+
const auto* http_connection_manager_proto =
|
170
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_parse(
|
171
|
+
serialized_hcm_config->data(), serialized_hcm_config->size(),
|
172
|
+
context.arena);
|
173
|
+
if (http_connection_manager_proto == nullptr) {
|
174
|
+
errors->AddError("could not parse HttpConnectionManager config");
|
175
|
+
return {};
|
176
|
+
}
|
177
|
+
MaybeLogHttpConnectionManager(context, http_connection_manager_proto);
|
178
|
+
XdsListenerResource::HttpConnectionManager http_connection_manager;
|
179
|
+
// xff_num_trusted_hops -- must be zero as per
|
180
|
+
// https://github.com/grpc/proposal/blob/master/A41-xds-rbac.md
|
181
|
+
if (envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_xff_num_trusted_hops(
|
182
|
+
http_connection_manager_proto) != 0) {
|
183
|
+
ValidationErrors::ScopedField field(errors, ".xff_num_trusted_hops");
|
184
|
+
errors->AddError("must be zero");
|
185
|
+
}
|
186
|
+
// original_ip_detection_extensions -- must be empty as per
|
187
|
+
// https://github.com/grpc/proposal/blob/master/A41-xds-rbac.md
|
188
|
+
{
|
189
|
+
size_t size;
|
190
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_original_ip_detection_extensions(
|
191
|
+
http_connection_manager_proto, &size);
|
192
|
+
if (size != 0) {
|
193
|
+
ValidationErrors::ScopedField field(errors,
|
194
|
+
".original_ip_detection_extensions");
|
195
|
+
errors->AddError("must be empty");
|
196
|
+
}
|
197
|
+
}
|
198
|
+
// common_http_protocol_options
|
199
|
+
const envoy_config_core_v3_HttpProtocolOptions* options =
|
200
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_common_http_protocol_options(
|
201
|
+
http_connection_manager_proto);
|
202
|
+
if (options != nullptr) {
|
203
|
+
// max_stream_duration
|
204
|
+
const google_protobuf_Duration* duration =
|
205
|
+
envoy_config_core_v3_HttpProtocolOptions_max_stream_duration(options);
|
206
|
+
if (duration != nullptr) {
|
207
|
+
ValidationErrors::ScopedField field(
|
208
|
+
errors, ".common_http_protocol_options.max_stream_duration");
|
209
|
+
http_connection_manager.http_max_stream_duration =
|
210
|
+
ParseDuration(duration, errors);
|
211
|
+
}
|
212
|
+
}
|
213
|
+
// http_filters
|
214
|
+
{
|
215
|
+
ValidationErrors::ScopedField field(errors, ".http_filters");
|
216
|
+
const auto& http_filter_registry =
|
217
|
+
static_cast<const GrpcXdsBootstrap&>(context.client->bootstrap())
|
218
|
+
.http_filter_registry();
|
219
|
+
size_t num_filters = 0;
|
220
|
+
const auto* http_filters =
|
221
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_http_filters(
|
222
|
+
http_connection_manager_proto, &num_filters);
|
223
|
+
std::set<absl::string_view> names_seen;
|
224
|
+
const size_t original_error_size = errors->size();
|
225
|
+
for (size_t i = 0; i < num_filters; ++i) {
|
226
|
+
ValidationErrors::ScopedField field(errors, absl::StrCat("[", i, "]"));
|
227
|
+
const auto* http_filter = http_filters[i];
|
228
|
+
// name
|
229
|
+
absl::string_view name = UpbStringToAbsl(
|
230
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpFilter_name(
|
231
|
+
http_filter));
|
232
|
+
{
|
233
|
+
ValidationErrors::ScopedField field(errors, ".name");
|
234
|
+
if (name.empty()) {
|
235
|
+
errors->AddError("empty filter name");
|
236
|
+
continue;
|
237
|
+
}
|
238
|
+
if (names_seen.find(name) != names_seen.end()) {
|
239
|
+
errors->AddError(absl::StrCat("duplicate HTTP filter name: ", name));
|
240
|
+
continue;
|
241
|
+
}
|
242
|
+
}
|
243
|
+
names_seen.insert(name);
|
244
|
+
// is_optional
|
245
|
+
const bool is_optional =
|
246
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpFilter_is_optional(
|
247
|
+
http_filter);
|
248
|
+
// typed_config
|
249
|
+
{
|
250
|
+
ValidationErrors::ScopedField field(errors, ".typed_config");
|
251
|
+
const google_protobuf_Any* typed_config =
|
252
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpFilter_typed_config(
|
253
|
+
http_filter);
|
254
|
+
auto extension = ExtractXdsExtension(context, typed_config, errors);
|
255
|
+
if (!extension.has_value()) continue;
|
256
|
+
const XdsHttpFilterImpl* filter_impl =
|
257
|
+
http_filter_registry.GetFilterForType(extension->type);
|
258
|
+
if (filter_impl == nullptr) {
|
259
|
+
if (!is_optional) errors->AddError("unsupported filter type");
|
260
|
+
continue;
|
261
|
+
}
|
262
|
+
if ((is_client && !filter_impl->IsSupportedOnClients()) ||
|
263
|
+
(!is_client && !filter_impl->IsSupportedOnServers())) {
|
264
|
+
if (!is_optional) {
|
265
|
+
errors->AddError(absl::StrCat("filter is not supported on ",
|
266
|
+
is_client ? "clients" : "servers"));
|
267
|
+
}
|
268
|
+
continue;
|
269
|
+
}
|
270
|
+
absl::optional<XdsHttpFilterImpl::FilterConfig> filter_config =
|
271
|
+
filter_impl->GenerateFilterConfig(context, std::move(*extension),
|
272
|
+
errors);
|
273
|
+
if (filter_config.has_value()) {
|
274
|
+
http_connection_manager.http_filters.emplace_back(
|
275
|
+
XdsListenerResource::HttpConnectionManager::HttpFilter{
|
276
|
+
std::string(name), std::move(*filter_config)});
|
277
|
+
}
|
278
|
+
}
|
279
|
+
}
|
280
|
+
if (errors->size() == original_error_size &&
|
281
|
+
http_connection_manager.http_filters.empty()) {
|
282
|
+
errors->AddError("expected at least one HTTP filter");
|
283
|
+
}
|
284
|
+
// Make sure that the last filter is terminal and non-last filters are
|
285
|
+
// non-terminal. Note that this check is being performed in a separate loop
|
286
|
+
// to take care of the case where there are two terminal filters in the list
|
287
|
+
// out of which only one gets added in the final list.
|
288
|
+
for (const auto& http_filter : http_connection_manager.http_filters) {
|
289
|
+
const XdsHttpFilterImpl* filter_impl =
|
290
|
+
http_filter_registry.GetFilterForType(
|
291
|
+
http_filter.config.config_proto_type_name);
|
292
|
+
if (&http_filter != &http_connection_manager.http_filters.back()) {
|
293
|
+
// Filters before the last filter must not be terminal.
|
294
|
+
if (filter_impl->IsTerminalFilter()) {
|
295
|
+
errors->AddError(
|
296
|
+
absl::StrCat("terminal filter for config type ",
|
297
|
+
http_filter.config.config_proto_type_name,
|
298
|
+
" must be the last filter in the chain"));
|
299
|
+
}
|
300
|
+
} else {
|
301
|
+
// The last filter must be terminal.
|
302
|
+
if (!filter_impl->IsTerminalFilter()) {
|
303
|
+
errors->AddError(
|
304
|
+
absl::StrCat("non-terminal filter for config type ",
|
305
|
+
http_filter.config.config_proto_type_name,
|
306
|
+
" is the last filter in the chain"));
|
307
|
+
}
|
308
|
+
}
|
309
|
+
}
|
310
|
+
}
|
311
|
+
// Found inlined route_config. Parse it to find the cluster_name.
|
312
|
+
if (envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_has_route_config(
|
313
|
+
http_connection_manager_proto)) {
|
314
|
+
const envoy_config_route_v3_RouteConfiguration* route_config =
|
315
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_route_config(
|
316
|
+
http_connection_manager_proto);
|
317
|
+
ValidationErrors::ScopedField field(errors, ".route_config");
|
318
|
+
http_connection_manager.route_config =
|
319
|
+
XdsRouteConfigResourceParse(context, route_config, errors);
|
320
|
+
} else {
|
321
|
+
// Validate that RDS must be used to get the route_config dynamically.
|
322
|
+
const envoy_extensions_filters_network_http_connection_manager_v3_Rds* rds =
|
323
|
+
envoy_extensions_filters_network_http_connection_manager_v3_HttpConnectionManager_rds(
|
324
|
+
http_connection_manager_proto);
|
325
|
+
if (rds == nullptr) {
|
326
|
+
errors->AddError("neither route_config nor rds fields are present");
|
327
|
+
} else {
|
328
|
+
// Get the route_config_name.
|
329
|
+
http_connection_manager.route_config = UpbStringToStdString(
|
330
|
+
envoy_extensions_filters_network_http_connection_manager_v3_Rds_route_config_name(
|
331
|
+
rds));
|
332
|
+
// Check that the ConfigSource specifies ADS.
|
333
|
+
const envoy_config_core_v3_ConfigSource* config_source =
|
334
|
+
envoy_extensions_filters_network_http_connection_manager_v3_Rds_config_source(
|
335
|
+
rds);
|
336
|
+
ValidationErrors::ScopedField field(errors, ".rds.config_source");
|
337
|
+
if (config_source == nullptr) {
|
338
|
+
errors->AddError("field not present");
|
339
|
+
} else if (!envoy_config_core_v3_ConfigSource_has_ads(config_source) &&
|
340
|
+
!envoy_config_core_v3_ConfigSource_has_self(config_source)) {
|
341
|
+
errors->AddError("ConfigSource does not specify ADS or SELF");
|
342
|
+
}
|
343
|
+
}
|
344
|
+
}
|
345
|
+
return http_connection_manager;
|
346
|
+
}
|
347
|
+
|
348
|
+
absl::StatusOr<std::shared_ptr<const XdsListenerResource>>
|
349
|
+
LdsResourceParseClient(
|
350
|
+
const XdsResourceType::DecodeContext& context,
|
351
|
+
const envoy_config_listener_v3_ApiListener* api_listener) {
|
352
|
+
auto lds_update = std::make_shared<XdsListenerResource>();
|
353
|
+
ValidationErrors errors;
|
354
|
+
ValidationErrors::ScopedField field(&errors, "api_listener.api_listener");
|
355
|
+
auto* api_listener_field =
|
356
|
+
envoy_config_listener_v3_ApiListener_api_listener(api_listener);
|
357
|
+
auto extension = ExtractXdsExtension(context, api_listener_field, &errors);
|
358
|
+
if (extension.has_value()) {
|
359
|
+
lds_update->listener = HttpConnectionManagerParse(
|
360
|
+
/*is_client=*/true, context, std::move(*extension), &errors);
|
361
|
+
}
|
362
|
+
if (!errors.ok()) {
|
363
|
+
return errors.status(absl::StatusCode::kInvalidArgument,
|
364
|
+
"errors validating ApiListener");
|
365
|
+
}
|
366
|
+
return std::move(lds_update);
|
367
|
+
}
|
368
|
+
|
369
|
+
XdsListenerResource::DownstreamTlsContext DownstreamTlsContextParse(
|
370
|
+
const XdsResourceType::DecodeContext& context,
|
371
|
+
const envoy_config_core_v3_TransportSocket* transport_socket,
|
372
|
+
ValidationErrors* errors) {
|
373
|
+
ValidationErrors::ScopedField field(errors, ".typed_config");
|
374
|
+
const auto* typed_config =
|
375
|
+
envoy_config_core_v3_TransportSocket_typed_config(transport_socket);
|
376
|
+
auto extension = ExtractXdsExtension(context, typed_config, errors);
|
377
|
+
if (!extension.has_value()) return {};
|
378
|
+
if (extension->type !=
|
379
|
+
"envoy.extensions.transport_sockets.tls.v3.DownstreamTlsContext") {
|
380
|
+
ValidationErrors::ScopedField field(errors, ".type_url");
|
381
|
+
errors->AddError("unsupported transport socket type");
|
382
|
+
return {};
|
383
|
+
}
|
384
|
+
absl::string_view* serialized_downstream_tls_context =
|
385
|
+
absl::get_if<absl::string_view>(&extension->value);
|
386
|
+
if (serialized_downstream_tls_context == nullptr) {
|
387
|
+
errors->AddError("can't decode DownstreamTlsContext");
|
388
|
+
return {};
|
389
|
+
}
|
390
|
+
const auto* downstream_tls_context_proto =
|
391
|
+
envoy_extensions_transport_sockets_tls_v3_DownstreamTlsContext_parse(
|
392
|
+
serialized_downstream_tls_context->data(),
|
393
|
+
serialized_downstream_tls_context->size(), context.arena);
|
394
|
+
if (downstream_tls_context_proto == nullptr) {
|
395
|
+
errors->AddError("can't decode DownstreamTlsContext");
|
396
|
+
return {};
|
397
|
+
}
|
398
|
+
XdsListenerResource::DownstreamTlsContext downstream_tls_context;
|
399
|
+
auto* common_tls_context =
|
400
|
+
envoy_extensions_transport_sockets_tls_v3_DownstreamTlsContext_common_tls_context(
|
401
|
+
downstream_tls_context_proto);
|
402
|
+
if (common_tls_context != nullptr) {
|
403
|
+
ValidationErrors::ScopedField field(errors, ".common_tls_context");
|
404
|
+
downstream_tls_context.common_tls_context =
|
405
|
+
CommonTlsContextParse(context, common_tls_context, errors);
|
406
|
+
// Note: We can't be more specific about the field names for these
|
407
|
+
// errors, because we don't know which fields they were found in
|
408
|
+
// inside of CommonTlsContext, so we make the error message a bit
|
409
|
+
// more verbose to compensate.
|
410
|
+
if (absl::holds_alternative<
|
411
|
+
CommonTlsContext::CertificateValidationContext::SystemRootCerts>(
|
412
|
+
downstream_tls_context.common_tls_context
|
413
|
+
.certificate_validation_context.ca_certs)) {
|
414
|
+
errors->AddError("system_root_certs not supported");
|
415
|
+
}
|
416
|
+
if (!downstream_tls_context.common_tls_context
|
417
|
+
.certificate_validation_context.match_subject_alt_names.empty()) {
|
418
|
+
errors->AddError("match_subject_alt_names not supported on servers");
|
419
|
+
}
|
420
|
+
}
|
421
|
+
// Note: We can't be more specific about the field name for this
|
422
|
+
// error, because we don't know which fields they were found in
|
423
|
+
// inside of CommonTlsContext, so we make the error message a bit
|
424
|
+
// more verbose to compensate.
|
425
|
+
if (downstream_tls_context.common_tls_context
|
426
|
+
.tls_certificate_provider_instance.instance_name.empty()) {
|
427
|
+
errors->AddError(
|
428
|
+
"TLS configuration provided but no "
|
429
|
+
"tls_certificate_provider_instance found");
|
430
|
+
}
|
431
|
+
auto* require_client_certificate =
|
432
|
+
envoy_extensions_transport_sockets_tls_v3_DownstreamTlsContext_require_client_certificate(
|
433
|
+
downstream_tls_context_proto);
|
434
|
+
if (require_client_certificate != nullptr) {
|
435
|
+
downstream_tls_context.require_client_certificate =
|
436
|
+
google_protobuf_BoolValue_value(require_client_certificate);
|
437
|
+
if (downstream_tls_context.require_client_certificate) {
|
438
|
+
auto* ca_cert_provider =
|
439
|
+
absl::get_if<CommonTlsContext::CertificateProviderPluginInstance>(
|
440
|
+
&downstream_tls_context.common_tls_context
|
441
|
+
.certificate_validation_context.ca_certs);
|
442
|
+
if (ca_cert_provider == nullptr ||
|
443
|
+
ca_cert_provider->instance_name.empty()) {
|
444
|
+
ValidationErrors::ScopedField field(errors,
|
445
|
+
".require_client_certificate");
|
446
|
+
errors->AddError(
|
447
|
+
"client certificate required but no certificate provider "
|
448
|
+
"instance specified for validation");
|
449
|
+
}
|
450
|
+
}
|
451
|
+
}
|
452
|
+
if (ParseBoolValue(
|
453
|
+
envoy_extensions_transport_sockets_tls_v3_DownstreamTlsContext_require_sni(
|
454
|
+
downstream_tls_context_proto))) {
|
455
|
+
ValidationErrors::ScopedField field(errors, ".require_sni");
|
456
|
+
errors->AddError("field unsupported");
|
457
|
+
}
|
458
|
+
if (envoy_extensions_transport_sockets_tls_v3_DownstreamTlsContext_ocsp_staple_policy(
|
459
|
+
downstream_tls_context_proto) !=
|
460
|
+
envoy_extensions_transport_sockets_tls_v3_DownstreamTlsContext_LENIENT_STAPLING) {
|
461
|
+
ValidationErrors::ScopedField field(errors, ".ocsp_staple_policy");
|
462
|
+
errors->AddError("value must be LENIENT_STAPLING");
|
463
|
+
}
|
464
|
+
return downstream_tls_context;
|
465
|
+
}
|
466
|
+
|
467
|
+
absl::optional<XdsListenerResource::FilterChainMap::CidrRange> CidrRangeParse(
|
468
|
+
const envoy_config_core_v3_CidrRange* cidr_range_proto,
|
469
|
+
ValidationErrors* errors) {
|
470
|
+
ValidationErrors::ScopedField field(errors, ".address_prefix");
|
471
|
+
XdsListenerResource::FilterChainMap::CidrRange cidr_range;
|
472
|
+
std::string address_prefix = UpbStringToStdString(
|
473
|
+
envoy_config_core_v3_CidrRange_address_prefix(cidr_range_proto));
|
474
|
+
auto address = StringToSockaddr(address_prefix, /*port=*/0);
|
475
|
+
if (!address.ok()) {
|
476
|
+
errors->AddError(address.status().message());
|
477
|
+
return absl::nullopt;
|
478
|
+
}
|
479
|
+
cidr_range.address = *address;
|
480
|
+
cidr_range.prefix_len = 0;
|
481
|
+
auto* prefix_len_proto =
|
482
|
+
envoy_config_core_v3_CidrRange_prefix_len(cidr_range_proto);
|
483
|
+
if (prefix_len_proto != nullptr) {
|
484
|
+
cidr_range.prefix_len = std::min(
|
485
|
+
google_protobuf_UInt32Value_value(prefix_len_proto),
|
486
|
+
(reinterpret_cast<const grpc_sockaddr*>(cidr_range.address.addr))
|
487
|
+
->sa_family == GRPC_AF_INET
|
488
|
+
? uint32_t{32}
|
489
|
+
: uint32_t{128});
|
490
|
+
}
|
491
|
+
// Normalize the network address by masking it with prefix_len
|
492
|
+
grpc_sockaddr_mask_bits(&cidr_range.address, cidr_range.prefix_len);
|
493
|
+
return cidr_range;
|
494
|
+
}
|
495
|
+
|
496
|
+
absl::optional<FilterChain::FilterChainMatch> FilterChainMatchParse(
|
497
|
+
const envoy_config_listener_v3_FilterChainMatch* filter_chain_match_proto,
|
498
|
+
ValidationErrors* errors) {
|
499
|
+
FilterChain::FilterChainMatch filter_chain_match;
|
500
|
+
const size_t original_error_size = errors->size();
|
501
|
+
// destination_port
|
502
|
+
auto* destination_port =
|
503
|
+
envoy_config_listener_v3_FilterChainMatch_destination_port(
|
504
|
+
filter_chain_match_proto);
|
505
|
+
if (destination_port != nullptr) {
|
506
|
+
filter_chain_match.destination_port =
|
507
|
+
google_protobuf_UInt32Value_value(destination_port);
|
508
|
+
}
|
509
|
+
// prefix_ranges
|
510
|
+
size_t size = 0;
|
511
|
+
auto* prefix_ranges = envoy_config_listener_v3_FilterChainMatch_prefix_ranges(
|
512
|
+
filter_chain_match_proto, &size);
|
513
|
+
filter_chain_match.prefix_ranges.reserve(size);
|
514
|
+
for (size_t i = 0; i < size; i++) {
|
515
|
+
ValidationErrors::ScopedField field(
|
516
|
+
errors, absl::StrCat(".prefix_ranges[", i, "]"));
|
517
|
+
auto cidr_range = CidrRangeParse(prefix_ranges[i], errors);
|
518
|
+
if (cidr_range.has_value()) {
|
519
|
+
filter_chain_match.prefix_ranges.push_back(*cidr_range);
|
520
|
+
}
|
521
|
+
}
|
522
|
+
// source_type
|
523
|
+
filter_chain_match.source_type =
|
524
|
+
static_cast<XdsListenerResource::FilterChainMap::ConnectionSourceType>(
|
525
|
+
envoy_config_listener_v3_FilterChainMatch_source_type(
|
526
|
+
filter_chain_match_proto));
|
527
|
+
// source_prefix_ranges
|
528
|
+
auto* source_prefix_ranges =
|
529
|
+
envoy_config_listener_v3_FilterChainMatch_source_prefix_ranges(
|
530
|
+
filter_chain_match_proto, &size);
|
531
|
+
filter_chain_match.source_prefix_ranges.reserve(size);
|
532
|
+
for (size_t i = 0; i < size; i++) {
|
533
|
+
ValidationErrors::ScopedField field(
|
534
|
+
errors, absl::StrCat(".source_prefix_ranges[", i, "]"));
|
535
|
+
auto cidr_range = CidrRangeParse(source_prefix_ranges[i], errors);
|
536
|
+
if (cidr_range.has_value()) {
|
537
|
+
filter_chain_match.source_prefix_ranges.push_back(*cidr_range);
|
538
|
+
}
|
539
|
+
}
|
540
|
+
// source_ports
|
541
|
+
auto* source_ports = envoy_config_listener_v3_FilterChainMatch_source_ports(
|
542
|
+
filter_chain_match_proto, &size);
|
543
|
+
filter_chain_match.source_ports.reserve(size);
|
544
|
+
for (size_t i = 0; i < size; i++) {
|
545
|
+
filter_chain_match.source_ports.push_back(source_ports[i]);
|
546
|
+
}
|
547
|
+
// server_names
|
548
|
+
auto* server_names = envoy_config_listener_v3_FilterChainMatch_server_names(
|
549
|
+
filter_chain_match_proto, &size);
|
550
|
+
for (size_t i = 0; i < size; i++) {
|
551
|
+
filter_chain_match.server_names.push_back(
|
552
|
+
UpbStringToStdString(server_names[i]));
|
553
|
+
}
|
554
|
+
// transport_protocol
|
555
|
+
filter_chain_match.transport_protocol = UpbStringToStdString(
|
556
|
+
envoy_config_listener_v3_FilterChainMatch_transport_protocol(
|
557
|
+
filter_chain_match_proto));
|
558
|
+
// application_protocols
|
559
|
+
auto* application_protocols =
|
560
|
+
envoy_config_listener_v3_FilterChainMatch_application_protocols(
|
561
|
+
filter_chain_match_proto, &size);
|
562
|
+
for (size_t i = 0; i < size; i++) {
|
563
|
+
filter_chain_match.application_protocols.push_back(
|
564
|
+
UpbStringToStdString(application_protocols[i]));
|
565
|
+
}
|
566
|
+
// Return result.
|
567
|
+
if (errors->size() != original_error_size) return absl::nullopt;
|
568
|
+
return filter_chain_match;
|
569
|
+
}
|
570
|
+
|
571
|
+
absl::optional<FilterChain> FilterChainParse(
|
572
|
+
const XdsResourceType::DecodeContext& context,
|
573
|
+
const envoy_config_listener_v3_FilterChain* filter_chain_proto,
|
574
|
+
ValidationErrors* errors) {
|
575
|
+
FilterChain filter_chain;
|
576
|
+
const size_t original_error_size = errors->size();
|
577
|
+
// filter_chain_match
|
578
|
+
auto* filter_chain_match =
|
579
|
+
envoy_config_listener_v3_FilterChain_filter_chain_match(
|
580
|
+
filter_chain_proto);
|
581
|
+
if (filter_chain_match != nullptr) {
|
582
|
+
ValidationErrors::ScopedField field(errors, ".filter_chain_match");
|
583
|
+
auto match = FilterChainMatchParse(filter_chain_match, errors);
|
584
|
+
if (match.has_value()) {
|
585
|
+
filter_chain.filter_chain_match = std::move(*match);
|
586
|
+
}
|
587
|
+
}
|
588
|
+
// filters
|
589
|
+
{
|
590
|
+
ValidationErrors::ScopedField field(errors, ".filters");
|
591
|
+
filter_chain.filter_chain_data =
|
592
|
+
std::make_shared<XdsListenerResource::FilterChainData>();
|
593
|
+
size_t size = 0;
|
594
|
+
auto* filters =
|
595
|
+
envoy_config_listener_v3_FilterChain_filters(filter_chain_proto, &size);
|
596
|
+
if (size != 1) {
|
597
|
+
errors->AddError(
|
598
|
+
"must have exactly one filter (HttpConnectionManager -- "
|
599
|
+
"no other filter is supported at the moment)");
|
600
|
+
}
|
601
|
+
// entries in filters list
|
602
|
+
for (size_t i = 0; i < size; ++i) {
|
603
|
+
ValidationErrors::ScopedField field(
|
604
|
+
errors, absl::StrCat("[", i, "].typed_config"));
|
605
|
+
auto* typed_config =
|
606
|
+
envoy_config_listener_v3_Filter_typed_config(filters[i]);
|
607
|
+
auto extension = ExtractXdsExtension(context, typed_config, errors);
|
608
|
+
if (extension.has_value()) {
|
609
|
+
filter_chain.filter_chain_data->http_connection_manager =
|
610
|
+
HttpConnectionManagerParse(/*is_client=*/false, context,
|
611
|
+
std::move(*extension), errors);
|
612
|
+
}
|
613
|
+
}
|
614
|
+
}
|
615
|
+
// transport_socket
|
616
|
+
auto* transport_socket =
|
617
|
+
envoy_config_listener_v3_FilterChain_transport_socket(filter_chain_proto);
|
618
|
+
if (transport_socket != nullptr) {
|
619
|
+
ValidationErrors::ScopedField field(errors, ".transport_socket");
|
620
|
+
filter_chain.filter_chain_data->downstream_tls_context =
|
621
|
+
DownstreamTlsContextParse(context, transport_socket, errors);
|
622
|
+
}
|
623
|
+
// Return result.
|
624
|
+
if (errors->size() != original_error_size) return absl::nullopt;
|
625
|
+
return filter_chain;
|
626
|
+
}
|
627
|
+
|
628
|
+
absl::optional<std::string> AddressParse(
|
629
|
+
const envoy_config_core_v3_Address* address_proto,
|
630
|
+
ValidationErrors* errors) {
|
631
|
+
if (address_proto == nullptr) {
|
632
|
+
errors->AddError("field not present");
|
633
|
+
return absl::nullopt;
|
634
|
+
}
|
635
|
+
ValidationErrors::ScopedField field(errors, ".socket_address");
|
636
|
+
const auto* socket_address =
|
637
|
+
envoy_config_core_v3_Address_socket_address(address_proto);
|
638
|
+
if (socket_address == nullptr) {
|
639
|
+
errors->AddError("field not present");
|
640
|
+
return absl::nullopt;
|
641
|
+
}
|
642
|
+
{
|
643
|
+
ValidationErrors::ScopedField field(errors, ".protocol");
|
644
|
+
if (envoy_config_core_v3_SocketAddress_protocol(socket_address) !=
|
645
|
+
envoy_config_core_v3_SocketAddress_TCP) {
|
646
|
+
errors->AddError("value must be TCP");
|
647
|
+
}
|
648
|
+
}
|
649
|
+
ValidationErrors::ScopedField field2(errors, ".port_value");
|
650
|
+
uint32_t port = envoy_config_core_v3_SocketAddress_port_value(socket_address);
|
651
|
+
if (port > 65535) {
|
652
|
+
errors->AddError("invalid port");
|
653
|
+
return absl::nullopt;
|
654
|
+
}
|
655
|
+
return JoinHostPort(
|
656
|
+
UpbStringToAbsl(
|
657
|
+
envoy_config_core_v3_SocketAddress_address(socket_address)),
|
658
|
+
port);
|
659
|
+
}
|
660
|
+
|
661
|
+
// An intermediate map for filter chains that we create to validate the list of
|
662
|
+
// filter chains received from the control plane and to finally create
|
663
|
+
// XdsListenerResource::FilterChainMap
|
664
|
+
struct InternalFilterChainMap {
|
665
|
+
using SourceIpMap =
|
666
|
+
std::map<std::string, XdsListenerResource::FilterChainMap::SourceIp>;
|
667
|
+
using ConnectionSourceTypesArray = std::array<SourceIpMap, 3>;
|
668
|
+
struct DestinationIp {
|
669
|
+
absl::optional<XdsListenerResource::FilterChainMap::CidrRange> prefix_range;
|
670
|
+
bool transport_protocol_raw_buffer_provided = false;
|
671
|
+
ConnectionSourceTypesArray source_types_array;
|
672
|
+
};
|
673
|
+
using DestinationIpMap = std::map<std::string, DestinationIp>;
|
674
|
+
DestinationIpMap destination_ip_map;
|
675
|
+
};
|
676
|
+
|
677
|
+
void AddFilterChainDataForSourcePort(
|
678
|
+
const FilterChain& filter_chain, uint32_t port,
|
679
|
+
XdsListenerResource::FilterChainMap::SourcePortsMap* ports_map,
|
680
|
+
ValidationErrors* errors) {
|
681
|
+
auto insert_result = ports_map->emplace(
|
682
|
+
port, XdsListenerResource::FilterChainMap::FilterChainDataSharedPtr{
|
683
|
+
filter_chain.filter_chain_data});
|
684
|
+
if (!insert_result.second) {
|
685
|
+
errors->AddError(absl::StrCat(
|
686
|
+
"duplicate matching rules detected when adding filter chain: ",
|
687
|
+
filter_chain.filter_chain_match.ToString()));
|
688
|
+
}
|
689
|
+
}
|
690
|
+
|
691
|
+
void AddFilterChainDataForSourcePorts(
|
692
|
+
const FilterChain& filter_chain,
|
693
|
+
XdsListenerResource::FilterChainMap::SourcePortsMap* ports_map,
|
694
|
+
ValidationErrors* errors) {
|
695
|
+
if (filter_chain.filter_chain_match.source_ports.empty()) {
|
696
|
+
AddFilterChainDataForSourcePort(filter_chain, 0, ports_map, errors);
|
697
|
+
} else {
|
698
|
+
for (uint32_t port : filter_chain.filter_chain_match.source_ports) {
|
699
|
+
AddFilterChainDataForSourcePort(filter_chain, port, ports_map, errors);
|
700
|
+
}
|
701
|
+
}
|
702
|
+
}
|
703
|
+
|
704
|
+
void AddFilterChainDataForSourceIpRange(
|
705
|
+
const FilterChain& filter_chain,
|
706
|
+
InternalFilterChainMap::SourceIpMap* source_ip_map,
|
707
|
+
ValidationErrors* errors) {
|
708
|
+
if (filter_chain.filter_chain_match.source_prefix_ranges.empty()) {
|
709
|
+
auto insert_result = source_ip_map->emplace(
|
710
|
+
"", XdsListenerResource::FilterChainMap::SourceIp());
|
711
|
+
AddFilterChainDataForSourcePorts(
|
712
|
+
filter_chain, &insert_result.first->second.ports_map, errors);
|
713
|
+
} else {
|
714
|
+
for (const auto& prefix_range :
|
715
|
+
filter_chain.filter_chain_match.source_prefix_ranges) {
|
716
|
+
auto addr_str = grpc_sockaddr_to_string(&prefix_range.address, false);
|
717
|
+
if (!addr_str.ok()) {
|
718
|
+
errors->AddError(absl::StrCat(
|
719
|
+
"error parsing source IP sockaddr (should not happen): ",
|
720
|
+
addr_str.status().message()));
|
721
|
+
continue;
|
722
|
+
}
|
723
|
+
auto insert_result = source_ip_map->emplace(
|
724
|
+
absl::StrCat(*addr_str, "/", prefix_range.prefix_len),
|
725
|
+
XdsListenerResource::FilterChainMap::SourceIp());
|
726
|
+
if (insert_result.second) {
|
727
|
+
insert_result.first->second.prefix_range.emplace(prefix_range);
|
728
|
+
}
|
729
|
+
AddFilterChainDataForSourcePorts(
|
730
|
+
filter_chain, &insert_result.first->second.ports_map, errors);
|
731
|
+
}
|
732
|
+
}
|
733
|
+
}
|
734
|
+
|
735
|
+
void AddFilterChainDataForSourceType(
|
736
|
+
const FilterChain& filter_chain,
|
737
|
+
InternalFilterChainMap::DestinationIp* destination_ip,
|
738
|
+
ValidationErrors* errors) {
|
739
|
+
CHECK(static_cast<unsigned int>(filter_chain.filter_chain_match.source_type) <
|
740
|
+
3u);
|
741
|
+
AddFilterChainDataForSourceIpRange(
|
742
|
+
filter_chain,
|
743
|
+
&destination_ip->source_types_array[static_cast<int>(
|
744
|
+
filter_chain.filter_chain_match.source_type)],
|
745
|
+
errors);
|
746
|
+
}
|
747
|
+
|
748
|
+
void AddFilterChainDataForApplicationProtocols(
|
749
|
+
const FilterChain& filter_chain,
|
750
|
+
InternalFilterChainMap::DestinationIp* destination_ip,
|
751
|
+
ValidationErrors* errors) {
|
752
|
+
// Only allow filter chains that do not mention application protocols
|
753
|
+
if (filter_chain.filter_chain_match.application_protocols.empty()) {
|
754
|
+
AddFilterChainDataForSourceType(filter_chain, destination_ip, errors);
|
755
|
+
}
|
756
|
+
}
|
757
|
+
|
758
|
+
void AddFilterChainDataForTransportProtocol(
|
759
|
+
const FilterChain& filter_chain,
|
760
|
+
InternalFilterChainMap::DestinationIp* destination_ip,
|
761
|
+
ValidationErrors* errors) {
|
762
|
+
const std::string& transport_protocol =
|
763
|
+
filter_chain.filter_chain_match.transport_protocol;
|
764
|
+
// Only allow filter chains with no transport protocol or "raw_buffer"
|
765
|
+
if (!transport_protocol.empty() && transport_protocol != "raw_buffer") {
|
766
|
+
return;
|
767
|
+
}
|
768
|
+
// If for this configuration, we've already seen filter chains that mention
|
769
|
+
// the transport protocol as "raw_buffer", we will never match filter chains
|
770
|
+
// that do not mention it.
|
771
|
+
if (destination_ip->transport_protocol_raw_buffer_provided &&
|
772
|
+
transport_protocol.empty()) {
|
773
|
+
return;
|
774
|
+
}
|
775
|
+
if (!transport_protocol.empty() &&
|
776
|
+
!destination_ip->transport_protocol_raw_buffer_provided) {
|
777
|
+
destination_ip->transport_protocol_raw_buffer_provided = true;
|
778
|
+
// Clear out the previous entries if any since those entries did not mention
|
779
|
+
// "raw_buffer"
|
780
|
+
destination_ip->source_types_array =
|
781
|
+
InternalFilterChainMap::ConnectionSourceTypesArray();
|
782
|
+
}
|
783
|
+
AddFilterChainDataForApplicationProtocols(filter_chain, destination_ip,
|
784
|
+
errors);
|
785
|
+
}
|
786
|
+
|
787
|
+
void AddFilterChainDataForServerNames(
|
788
|
+
const FilterChain& filter_chain,
|
789
|
+
InternalFilterChainMap::DestinationIp* destination_ip,
|
790
|
+
ValidationErrors* errors) {
|
791
|
+
// Don't continue adding filter chains with server names mentioned
|
792
|
+
if (filter_chain.filter_chain_match.server_names.empty()) {
|
793
|
+
AddFilterChainDataForTransportProtocol(filter_chain, destination_ip,
|
794
|
+
errors);
|
795
|
+
}
|
796
|
+
}
|
797
|
+
|
798
|
+
void AddFilterChainDataForDestinationIpRange(
|
799
|
+
const FilterChain& filter_chain,
|
800
|
+
InternalFilterChainMap::DestinationIpMap* destination_ip_map,
|
801
|
+
ValidationErrors* errors) {
|
802
|
+
if (filter_chain.filter_chain_match.prefix_ranges.empty()) {
|
803
|
+
auto insert_result = destination_ip_map->emplace(
|
804
|
+
"", InternalFilterChainMap::DestinationIp());
|
805
|
+
AddFilterChainDataForServerNames(filter_chain, &insert_result.first->second,
|
806
|
+
errors);
|
807
|
+
} else {
|
808
|
+
for (const auto& prefix_range :
|
809
|
+
filter_chain.filter_chain_match.prefix_ranges) {
|
810
|
+
auto addr_str = grpc_sockaddr_to_string(&prefix_range.address, false);
|
811
|
+
if (!addr_str.ok()) {
|
812
|
+
errors->AddError(absl::StrCat(
|
813
|
+
"error parsing destination IP sockaddr (should not happen): ",
|
814
|
+
addr_str.status().message()));
|
815
|
+
continue;
|
816
|
+
}
|
817
|
+
auto insert_result = destination_ip_map->emplace(
|
818
|
+
absl::StrCat(*addr_str, "/", prefix_range.prefix_len),
|
819
|
+
InternalFilterChainMap::DestinationIp());
|
820
|
+
if (insert_result.second) {
|
821
|
+
insert_result.first->second.prefix_range.emplace(prefix_range);
|
822
|
+
}
|
823
|
+
AddFilterChainDataForServerNames(filter_chain,
|
824
|
+
&insert_result.first->second, errors);
|
825
|
+
}
|
826
|
+
}
|
827
|
+
}
|
828
|
+
|
829
|
+
XdsListenerResource::FilterChainMap BuildFromInternalFilterChainMap(
|
830
|
+
InternalFilterChainMap* internal_filter_chain_map) {
|
831
|
+
XdsListenerResource::FilterChainMap filter_chain_map;
|
832
|
+
for (auto& destination_ip_pair :
|
833
|
+
internal_filter_chain_map->destination_ip_map) {
|
834
|
+
XdsListenerResource::FilterChainMap::DestinationIp destination_ip;
|
835
|
+
destination_ip.prefix_range = destination_ip_pair.second.prefix_range;
|
836
|
+
for (int i = 0; i < 3; i++) {
|
837
|
+
auto& source_ip_map = destination_ip_pair.second.source_types_array[i];
|
838
|
+
for (auto& source_ip_pair : source_ip_map) {
|
839
|
+
destination_ip.source_types_array[i].push_back(
|
840
|
+
std::move(source_ip_pair.second));
|
841
|
+
}
|
842
|
+
}
|
843
|
+
filter_chain_map.destination_ip_vector.push_back(std::move(destination_ip));
|
844
|
+
}
|
845
|
+
return filter_chain_map;
|
846
|
+
}
|
847
|
+
|
848
|
+
XdsListenerResource::FilterChainMap BuildFilterChainMap(
|
849
|
+
const std::vector<FilterChain>& filter_chains, ValidationErrors* errors) {
|
850
|
+
InternalFilterChainMap internal_filter_chain_map;
|
851
|
+
for (const auto& filter_chain : filter_chains) {
|
852
|
+
// Discard filter chain entries that specify destination port
|
853
|
+
if (filter_chain.filter_chain_match.destination_port != 0) continue;
|
854
|
+
AddFilterChainDataForDestinationIpRange(
|
855
|
+
filter_chain, &internal_filter_chain_map.destination_ip_map, errors);
|
856
|
+
}
|
857
|
+
return BuildFromInternalFilterChainMap(&internal_filter_chain_map);
|
858
|
+
}
|
859
|
+
|
860
|
+
absl::StatusOr<std::shared_ptr<const XdsListenerResource>>
|
861
|
+
LdsResourceParseServer(const XdsResourceType::DecodeContext& context,
|
862
|
+
const envoy_config_listener_v3_Listener* listener) {
|
863
|
+
ValidationErrors errors;
|
864
|
+
XdsListenerResource::TcpListener tcp_listener;
|
865
|
+
// address
|
866
|
+
{
|
867
|
+
ValidationErrors::ScopedField field(&errors, "address");
|
868
|
+
auto address = AddressParse(
|
869
|
+
envoy_config_listener_v3_Listener_address(listener), &errors);
|
870
|
+
if (address.has_value()) tcp_listener.address = std::move(*address);
|
871
|
+
}
|
872
|
+
// use_original_dst
|
873
|
+
if (ParseBoolValue(
|
874
|
+
envoy_config_listener_v3_Listener_use_original_dst(listener))) {
|
875
|
+
ValidationErrors::ScopedField field(&errors, "use_original_dst");
|
876
|
+
errors.AddError("field not supported");
|
877
|
+
}
|
878
|
+
// filter_chains
|
879
|
+
size_t num_filter_chains = 0;
|
880
|
+
{
|
881
|
+
ValidationErrors::ScopedField field(&errors, "filter_chains");
|
882
|
+
auto* filter_chains = envoy_config_listener_v3_Listener_filter_chains(
|
883
|
+
listener, &num_filter_chains);
|
884
|
+
std::vector<FilterChain> parsed_filter_chains;
|
885
|
+
parsed_filter_chains.reserve(num_filter_chains);
|
886
|
+
for (size_t i = 0; i < num_filter_chains; i++) {
|
887
|
+
ValidationErrors::ScopedField field(&errors, absl::StrCat("[", i, "]"));
|
888
|
+
auto filter_chain = FilterChainParse(context, filter_chains[i], &errors);
|
889
|
+
if (filter_chain.has_value()) {
|
890
|
+
parsed_filter_chains.push_back(std::move(*filter_chain));
|
891
|
+
}
|
892
|
+
}
|
893
|
+
tcp_listener.filter_chain_map =
|
894
|
+
BuildFilterChainMap(parsed_filter_chains, &errors);
|
895
|
+
}
|
896
|
+
// default_filter_chain
|
897
|
+
{
|
898
|
+
ValidationErrors::ScopedField field(&errors, "default_filter_chain");
|
899
|
+
auto* default_filter_chain =
|
900
|
+
envoy_config_listener_v3_Listener_default_filter_chain(listener);
|
901
|
+
if (default_filter_chain != nullptr) {
|
902
|
+
auto filter_chain =
|
903
|
+
FilterChainParse(context, default_filter_chain, &errors);
|
904
|
+
if (filter_chain.has_value() &&
|
905
|
+
filter_chain->filter_chain_data != nullptr) {
|
906
|
+
tcp_listener.default_filter_chain =
|
907
|
+
std::move(*filter_chain->filter_chain_data);
|
908
|
+
}
|
909
|
+
} else if (num_filter_chains == 0) {
|
910
|
+
// Make sure that there is at least one filter chain to use.
|
911
|
+
errors.AddError("must be set if filter_chains is unset");
|
912
|
+
}
|
913
|
+
}
|
914
|
+
// Return result.
|
915
|
+
if (!errors.ok()) {
|
916
|
+
return errors.status(absl::StatusCode::kInvalidArgument,
|
917
|
+
"errors validating server Listener");
|
918
|
+
}
|
919
|
+
auto lds_update = std::make_shared<XdsListenerResource>();
|
920
|
+
lds_update->listener = std::move(tcp_listener);
|
921
|
+
return lds_update;
|
922
|
+
}
|
923
|
+
|
924
|
+
absl::StatusOr<std::shared_ptr<const XdsListenerResource>> LdsResourceParse(
|
925
|
+
const XdsResourceType::DecodeContext& context,
|
926
|
+
const envoy_config_listener_v3_Listener* listener) {
|
927
|
+
// Check whether it's a client or server listener.
|
928
|
+
const envoy_config_listener_v3_ApiListener* api_listener =
|
929
|
+
envoy_config_listener_v3_Listener_api_listener(listener);
|
930
|
+
const envoy_config_core_v3_Address* address =
|
931
|
+
envoy_config_listener_v3_Listener_address(listener);
|
932
|
+
// TODO(roth): Re-enable the following check once
|
933
|
+
// github.com/istio/istio/issues/38914 is resolved.
|
934
|
+
// if (api_listener != nullptr && address != nullptr) {
|
935
|
+
// return absl::InvalidArgumentError(
|
936
|
+
// "Listener has both address and ApiListener");
|
937
|
+
// }
|
938
|
+
if (api_listener == nullptr && address == nullptr) {
|
939
|
+
return absl::InvalidArgumentError(
|
940
|
+
"Listener has neither address nor ApiListener");
|
941
|
+
}
|
942
|
+
// If api_listener is present, it's for a client; otherwise, it's
|
943
|
+
// for a server.
|
944
|
+
if (api_listener != nullptr) {
|
945
|
+
return LdsResourceParseClient(context, api_listener);
|
946
|
+
}
|
947
|
+
return LdsResourceParseServer(context, listener);
|
948
|
+
}
|
949
|
+
|
950
|
+
void MaybeLogListener(const XdsResourceType::DecodeContext& context,
|
951
|
+
const envoy_config_listener_v3_Listener* listener) {
|
952
|
+
if (GRPC_TRACE_FLAG_ENABLED_OBJ(*context.tracer) && ABSL_VLOG_IS_ON(2)) {
|
953
|
+
const upb_MessageDef* msg_type =
|
954
|
+
envoy_config_listener_v3_Listener_getmsgdef(context.symtab);
|
955
|
+
char buf[10240];
|
956
|
+
upb_TextEncode(reinterpret_cast<const upb_Message*>(listener), msg_type,
|
957
|
+
nullptr, 0, buf, sizeof(buf));
|
958
|
+
VLOG(2) << "[xds_client " << context.client << "] Listener: " << buf;
|
959
|
+
}
|
960
|
+
}
|
961
|
+
|
962
|
+
} // namespace
|
963
|
+
|
964
|
+
XdsResourceType::DecodeResult XdsListenerResourceType::Decode(
|
965
|
+
const XdsResourceType::DecodeContext& context,
|
966
|
+
absl::string_view serialized_resource) const {
|
967
|
+
DecodeResult result;
|
968
|
+
// Parse serialized proto.
|
969
|
+
auto* resource = envoy_config_listener_v3_Listener_parse(
|
970
|
+
serialized_resource.data(), serialized_resource.size(), context.arena);
|
971
|
+
if (resource == nullptr) {
|
972
|
+
result.resource =
|
973
|
+
absl::InvalidArgumentError("Can't parse Listener resource.");
|
974
|
+
return result;
|
975
|
+
}
|
976
|
+
MaybeLogListener(context, resource);
|
977
|
+
// Validate resource.
|
978
|
+
result.name =
|
979
|
+
UpbStringToStdString(envoy_config_listener_v3_Listener_name(resource));
|
980
|
+
auto listener = LdsResourceParse(context, resource);
|
981
|
+
if (!listener.ok()) {
|
982
|
+
if (GRPC_TRACE_FLAG_ENABLED_OBJ(*context.tracer)) {
|
983
|
+
LOG(ERROR) << "[xds_client " << context.client << "] invalid Listener "
|
984
|
+
<< *result.name << ": " << listener.status();
|
985
|
+
}
|
986
|
+
result.resource = listener.status();
|
987
|
+
} else {
|
988
|
+
if (GRPC_TRACE_FLAG_ENABLED_OBJ(*context.tracer)) {
|
989
|
+
LOG(INFO) << "[xds_client " << context.client << "] parsed Listener "
|
990
|
+
<< *result.name << ": " << (*listener)->ToString();
|
991
|
+
}
|
992
|
+
result.resource = std::move(*listener);
|
993
|
+
}
|
994
|
+
return result;
|
995
|
+
}
|
996
|
+
|
997
|
+
} // namespace grpc_core
|