quiche/cid.rs
1// Copyright (C) 2022, Cloudflare, Inc.
2// All rights reserved.
3//
4// Redistribution and use in source and binary forms, with or without
5// modification, are permitted provided that the following conditions are
6// met:
7//
8// * Redistributions of source code must retain the above copyright notice,
9// this list of conditions and the following disclaimer.
10//
11// * Redistributions in binary form must reproduce the above copyright
12// notice, this list of conditions and the following disclaimer in the
13// documentation and/or other materials provided with the distribution.
14//
15// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
16// IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
17// THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
18// PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR
19// CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
20// EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
21// PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
22// PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
23// LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
24// NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
25// SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26
27use crate::Error;
28use crate::Result;
29
30use crate::frame;
31
32use crate::packet::ConnectionId;
33
34use std::collections::HashSet;
35use std::collections::VecDeque;
36
37use smallvec::SmallVec;
38
39/// Used to calculate the cap for the queue of retired connection IDs for which
40/// a RETIRED_CONNECTION_ID frame have not been sent, as a multiple of
41/// `active_conn_id_limit` (see RFC 9000, section 5.1.2).
42const RETIRED_CONN_ID_LIMIT_MULTIPLIER: usize = 3;
43
44#[derive(Default)]
45struct BoundedConnectionIdSeqSet {
46 /// The inner set.
47 inner: HashSet<u64>,
48
49 /// The maximum number of elements that the set can have.
50 capacity: usize,
51}
52
53impl BoundedConnectionIdSeqSet {
54 /// Creates a set bounded by `capacity`.
55 fn new(capacity: usize) -> Self {
56 Self {
57 inner: HashSet::new(),
58 capacity,
59 }
60 }
61
62 fn insert(&mut self, e: u64) -> Result<bool> {
63 if self.inner.len() >= self.capacity {
64 return Err(Error::IdLimit);
65 }
66
67 Ok(self.inner.insert(e))
68 }
69
70 fn remove(&mut self, e: &u64) -> bool {
71 self.inner.remove(e)
72 }
73
74 fn front(&self) -> Option<u64> {
75 self.inner.iter().next().copied()
76 }
77
78 fn is_empty(&self) -> bool {
79 self.inner.is_empty()
80 }
81}
82
83/// A structure holding a `ConnectionId` and all its related metadata.
84#[derive(Debug, Default)]
85pub struct ConnectionIdEntry {
86 /// The Connection ID.
87 pub cid: ConnectionId<'static>,
88
89 /// Its associated sequence number.
90 pub seq: u64,
91
92 /// Its associated reset token. Initial CIDs may not have any reset token.
93 pub reset_token: Option<u128>,
94
95 /// The path identifier using this CID, if any.
96 pub path_id: Option<usize>,
97}
98
99#[derive(Default)]
100struct BoundedNonEmptyConnectionIdVecDeque {
101 /// The inner `VecDeque`.
102 inner: VecDeque<ConnectionIdEntry>,
103
104 /// The maximum number of elements that the `VecDeque` can have.
105 capacity: usize,
106}
107
108impl BoundedNonEmptyConnectionIdVecDeque {
109 /// Creates a `VecDeque` bounded by `capacity` and inserts
110 /// `initial_entry` in it.
111 fn new(capacity: usize, initial_entry: ConnectionIdEntry) -> Self {
112 let mut inner = VecDeque::with_capacity(1);
113 inner.push_back(initial_entry);
114 Self { inner, capacity }
115 }
116
117 /// Updates the maximum capacity of the inner `VecDeque` to `new_capacity`.
118 /// Does nothing if `new_capacity` is lower or equal to the current
119 /// `capacity`.
120 fn resize(&mut self, new_capacity: usize) {
121 if new_capacity > self.capacity {
122 self.capacity = new_capacity;
123 }
124 }
125
126 /// Returns the oldest inserted entry still present in the `VecDeque`.
127 fn get_oldest(&self) -> &ConnectionIdEntry {
128 self.inner.front().expect("vecdeque is empty")
129 }
130
131 /// Gets a immutable reference to the entry having the provided `seq`.
132 fn get(&self, seq: u64) -> Option<&ConnectionIdEntry> {
133 // We need to iterate over the whole map to find the key.
134 self.inner.iter().find(|e| e.seq == seq)
135 }
136
137 /// Gets a mutable reference to the entry having the provided `seq`.
138 fn get_mut(&mut self, seq: u64) -> Option<&mut ConnectionIdEntry> {
139 // We need to iterate over the whole map to find the key.
140 self.inner.iter_mut().find(|e| e.seq == seq)
141 }
142
143 /// Returns an iterator over the entries in the `VecDeque`.
144 fn iter(&self) -> impl Iterator<Item = &ConnectionIdEntry> {
145 self.inner.iter()
146 }
147
148 /// Returns the number of elements in the `VecDeque`.
149 fn len(&self) -> usize {
150 self.inner.len()
151 }
152
153 /// Inserts the provided entry in the `VecDeque`.
154 ///
155 /// This method ensures the unicity of the `seq` associated to an entry. If
156 /// an entry has the same `seq` than `e`, this method updates the entry in
157 /// the `VecDeque` and the number of stored elements remains unchanged.
158 ///
159 /// If inserting a new element would exceed the collection's capacity, this
160 /// method raises an [`IdLimit`].
161 ///
162 /// [`IdLimit`]: enum.Error.html#IdLimit
163 fn insert(&mut self, e: ConnectionIdEntry) -> Result<()> {
164 // Ensure we don't have duplicates.
165 match self.get_mut(e.seq) {
166 Some(oe) => *oe = e,
167 None => {
168 if self.inner.len() >= self.capacity {
169 return Err(Error::IdLimit);
170 }
171 self.inner.push_back(e);
172 },
173 };
174 Ok(())
175 }
176
177 /// Removes all the elements in the collection and inserts the provided one.
178 fn clear_and_insert(&mut self, e: ConnectionIdEntry) {
179 self.inner.clear();
180 self.inner.push_back(e);
181 }
182
183 /// Removes the element in the collection having the provided `seq`.
184 ///
185 /// If this method is called when there remains a single element in the
186 /// collection, this method raises an [`OutOfIdentifiers`].
187 ///
188 /// Returns `Some` if the element was in the collection and removed, or
189 /// `None` if it was not and nothing was modified.
190 ///
191 /// [`OutOfIdentifiers`]: enum.Error.html#OutOfIdentifiers
192 fn remove(&mut self, seq: u64) -> Result<Option<ConnectionIdEntry>> {
193 if self.inner.len() <= 1 {
194 return Err(Error::OutOfIdentifiers);
195 }
196
197 Ok(self
198 .inner
199 .iter()
200 .position(|e| e.seq == seq)
201 .and_then(|index| self.inner.remove(index)))
202 }
203}
204
205#[derive(Default)]
206pub struct ConnectionIdentifiers {
207 /// All the Destination Connection IDs provided by our peer.
208 dcids: BoundedNonEmptyConnectionIdVecDeque,
209
210 /// All the Source Connection IDs we provide to our peer.
211 scids: BoundedNonEmptyConnectionIdVecDeque,
212
213 /// Source Connection IDs that should be announced to the peer.
214 advertise_new_scid_seqs: VecDeque<u64>,
215
216 /// Retired Destination Connection IDs that should be announced to the peer.
217 retire_dcid_seqs: BoundedConnectionIdSeqSet,
218
219 /// Retired Source Connection IDs that should be notified to the
220 /// application.
221 retired_scids: VecDeque<ConnectionId<'static>>,
222
223 /// Largest "Retire Prior To" we received from the peer.
224 largest_peer_retire_prior_to: u64,
225
226 /// Largest sequence number we received from the peer.
227 largest_destination_seq: u64,
228
229 /// Next sequence number to use.
230 next_scid_seq: u64,
231
232 /// "Retire Prior To" value to advertise to the peer.
233 retire_prior_to: u64,
234
235 /// The maximum number of source Connection IDs our peer allows us.
236 source_conn_id_limit: usize,
237
238 /// Does the host use zero-length source Connection ID.
239 zero_length_scid: bool,
240
241 /// Does the host use zero-length destination Connection ID.
242 zero_length_dcid: bool,
243}
244
245impl ConnectionIdentifiers {
246 /// Creates a new `ConnectionIdentifiers` with the specified destination
247 /// connection ID limit and initial source Connection ID. The destination
248 /// Connection ID is set to the empty one.
249 pub fn new(
250 mut destination_conn_id_limit: usize, initial_scid: &ConnectionId,
251 initial_path_id: usize, reset_token: Option<u128>,
252 ) -> ConnectionIdentifiers {
253 // It must be at least 2.
254 if destination_conn_id_limit < 2 {
255 destination_conn_id_limit = 2;
256 }
257
258 // Initially, the limit of active source connection IDs is 2.
259 let source_conn_id_limit = 2;
260
261 // Record the zero-length SCID status.
262 let zero_length_scid = initial_scid.is_empty();
263
264 let initial_scid =
265 ConnectionId::from_ref(initial_scid.as_ref()).into_owned();
266
267 // We need to track up to (2 * source_conn_id_limit - 1) source
268 // Connection IDs when the host wants to force their renewal.
269 let scids = BoundedNonEmptyConnectionIdVecDeque::new(
270 2 * source_conn_id_limit - 1,
271 ConnectionIdEntry {
272 cid: initial_scid,
273 seq: 0,
274 reset_token,
275 path_id: Some(initial_path_id),
276 },
277 );
278
279 let dcids = BoundedNonEmptyConnectionIdVecDeque::new(
280 destination_conn_id_limit,
281 ConnectionIdEntry {
282 cid: ConnectionId::default(),
283 seq: 0,
284 reset_token: None,
285 path_id: Some(initial_path_id),
286 },
287 );
288
289 // Because we already inserted the initial SCID.
290 let next_scid_seq = 1;
291 ConnectionIdentifiers {
292 scids,
293 dcids,
294 retire_dcid_seqs: BoundedConnectionIdSeqSet::new(
295 destination_conn_id_limit * RETIRED_CONN_ID_LIMIT_MULTIPLIER,
296 ),
297 next_scid_seq,
298 source_conn_id_limit,
299 zero_length_scid,
300 ..Default::default()
301 }
302 }
303
304 /// Sets the maximum number of source connection IDs our peer allows us.
305 pub fn set_source_conn_id_limit(&mut self, v: u64) {
306 // Bound conn id limit so our scids queue sizing is valid.
307 let v = std::cmp::min(v, (usize::MAX / 2) as u64) as usize;
308
309 // It must be at least 2.
310 if v >= 2 {
311 self.source_conn_id_limit = v;
312 // We need to track up to (2 * source_conn_id_limit - 1) source
313 // Connection IDs when the host wants to force their renewal.
314 self.scids.resize(2 * v - 1);
315 }
316 }
317
318 /// Gets the destination Connection ID associated with the provided sequence
319 /// number.
320 #[inline]
321 pub fn get_dcid(&self, seq_num: u64) -> Result<&ConnectionIdEntry> {
322 self.dcids.get(seq_num).ok_or(Error::InvalidState)
323 }
324
325 /// Gets the source Connection ID associated with the provided sequence
326 /// number.
327 #[inline]
328 pub fn get_scid(&self, seq_num: u64) -> Result<&ConnectionIdEntry> {
329 self.scids.get(seq_num).ok_or(Error::InvalidState)
330 }
331
332 /// Adds a new source identifier, and indicates whether it should be
333 /// advertised through a `NEW_CONNECTION_ID` frame or not.
334 ///
335 /// At any time, the peer cannot have more Destination Connection IDs than
336 /// the maximum number of active Connection IDs it negotiated. In such case
337 /// (i.e., when [`active_source_cids()`] - `peer_active_conn_id_limit` = 0,
338 /// if the caller agrees to request the removal of previous connection IDs,
339 /// it sets the `retire_if_needed` parameter. Otherwise, an [`IdLimit`] is
340 /// returned.
341 ///
342 /// Note that setting `retire_if_needed` does not prevent this function from
343 /// returning an [`IdLimit`] in the case the caller wants to retire still
344 /// unannounced Connection IDs.
345 ///
346 /// When setting the initial Source Connection ID, the `reset_token` may be
347 /// `None`. However, other Source CIDs must have an associated
348 /// `reset_token`. Providing `None` as the `reset_token` for non-initial
349 /// SCIDs raises an [`InvalidState`].
350 ///
351 /// In the case the provided `cid` is already present, it does not add it.
352 /// If the provided `reset_token` differs from the one already registered,
353 /// returns an `InvalidState`.
354 ///
355 /// Returns the sequence number associated to that new source identifier.
356 ///
357 /// [`active_source_cids()`]: struct.ConnectionIdentifiers.html#method.active_source_cids
358 /// [`InvalidState`]: enum.Error.html#InvalidState
359 /// [`IdLimit`]: enum.Error.html#IdLimit
360 pub fn new_scid(
361 &mut self, cid: ConnectionId<'static>, reset_token: Option<u128>,
362 advertise: bool, path_id: Option<usize>, retire_if_needed: bool,
363 ) -> Result<u64> {
364 if self.zero_length_scid {
365 return Err(Error::InvalidState);
366 }
367
368 // Check whether the number of source Connection IDs does not exceed the
369 // limit. If the host agrees to retire old CIDs, it can store up to
370 // (2 * source_active_conn_id - 1) source CIDs. This limit is enforced
371 // when calling `self.scids.insert()`.
372 if self.scids.len() >= self.source_conn_id_limit {
373 if !retire_if_needed {
374 return Err(Error::IdLimit);
375 }
376
377 // We need to retire the lowest one.
378 self.retire_prior_to = self.lowest_usable_scid_seq()? + 1;
379 }
380
381 let seq = self.next_scid_seq;
382
383 if reset_token.is_none() && seq != 0 {
384 return Err(Error::InvalidState);
385 }
386
387 // Check first that the SCID has not been inserted before.
388 if let Some(e) = self.scids.iter().find(|e| e.cid == cid) {
389 if e.reset_token != reset_token {
390 return Err(Error::InvalidState);
391 }
392 return Ok(e.seq);
393 }
394
395 self.scids.insert(ConnectionIdEntry {
396 cid,
397 seq,
398 reset_token,
399 path_id,
400 })?;
401 self.next_scid_seq += 1;
402
403 self.mark_advertise_new_scid_seq(seq, advertise);
404
405 Ok(seq)
406 }
407
408 /// Sets the initial destination identifier.
409 pub fn set_initial_dcid(
410 &mut self, cid: ConnectionId<'static>, reset_token: Option<u128>,
411 path_id: Option<usize>,
412 ) {
413 // Record the zero-length DCID status.
414 self.zero_length_dcid = cid.is_empty();
415 self.dcids.clear_and_insert(ConnectionIdEntry {
416 cid,
417 seq: 0,
418 reset_token,
419 path_id,
420 });
421 }
422
423 /// Adds a new Destination Connection ID (originating from a
424 /// NEW_CONNECTION_ID frame) and process all its related metadata.
425 ///
426 /// Returns an error if the provided Connection ID or its metadata are
427 /// invalid.
428 ///
429 /// Returns a list of tuples (DCID sequence number, Path ID), containing the
430 /// sequence number of retired DCIDs that were linked to their respective
431 /// Path ID.
432 pub fn new_dcid(
433 &mut self, cid: ConnectionId<'static>, seq: u64, reset_token: u128,
434 retire_prior_to: u64, retired_path_ids: &mut SmallVec<[(u64, usize); 1]>,
435 ) -> Result<()> {
436 if self.zero_length_dcid {
437 return Err(Error::InvalidState);
438 }
439
440 // If an endpoint receives a NEW_CONNECTION_ID frame that repeats a
441 // previously issued connection ID with a different Stateless Reset
442 // Token field value or a different Sequence Number field value, or if a
443 // sequence number is used for different connection IDs, the endpoint
444 // MAY treat that receipt as a connection error of type
445 // PROTOCOL_VIOLATION.
446 if let Some(e) = self.dcids.iter().find(|e| e.cid == cid || e.seq == seq)
447 {
448 if e.cid != cid || e.seq != seq || e.reset_token != Some(reset_token)
449 {
450 return Err(Error::InvalidFrame);
451 }
452 // The identifier is already there, nothing to do.
453 return Ok(());
454 }
455
456 // The value in the Retire Prior To field MUST be less than or equal to
457 // the value in the Sequence Number field. Receiving a value in the
458 // Retire Prior To field that is greater than that in the Sequence
459 // Number field MUST be treated as a connection error of type
460 // FRAME_ENCODING_ERROR.
461 if retire_prior_to > seq {
462 return Err(Error::InvalidFrame);
463 }
464
465 // An endpoint that receives a NEW_CONNECTION_ID frame with a sequence
466 // number smaller than the Retire Prior To field of a previously
467 // received NEW_CONNECTION_ID frame MUST send a corresponding
468 // RETIRE_CONNECTION_ID frame that retires the newly received connection
469 // ID, unless it has already done so for that sequence number.
470 if seq < self.largest_peer_retire_prior_to {
471 self.mark_retire_dcid_seq(seq, true)?;
472 return Ok(());
473 }
474
475 if seq > self.largest_destination_seq {
476 self.largest_destination_seq = seq;
477 }
478
479 let new_entry = ConnectionIdEntry {
480 cid: cid.clone(),
481 seq,
482 reset_token: Some(reset_token),
483 path_id: None,
484 };
485
486 let mut retired_dcid_queue_err = None;
487
488 // A receiver MUST ignore any Retire Prior To fields that do not
489 // increase the largest received Retire Prior To value.
490 //
491 // After processing a NEW_CONNECTION_ID frame and adding and retiring
492 // active connection IDs, if the number of active connection IDs exceeds
493 // the value advertised in its active_connection_id_limit transport
494 // parameter, an endpoint MUST close the connection with an error of type
495 // CONNECTION_ID_LIMIT_ERROR.
496 if retire_prior_to > self.largest_peer_retire_prior_to {
497 let retired = &mut self.retire_dcid_seqs;
498
499 // The insert entry MUST have a sequence higher or equal to the ones
500 // being retired.
501 if new_entry.seq < retire_prior_to {
502 return Err(Error::OutOfIdentifiers);
503 }
504
505 // To avoid exceeding the capacity of the inner `VecDeque`, we first
506 // remove the elements and then insert the new one.
507 let index = self
508 .dcids
509 .inner
510 .partition_point(|e| e.seq < retire_prior_to);
511
512 for e in self.dcids.inner.drain(..index) {
513 if let Some(pid) = e.path_id {
514 retired_path_ids.push((e.seq, pid));
515 }
516
517 if let Err(e) = retired.insert(e.seq) {
518 // Delay propagating the error as we need to try to insert
519 // the new DCID first.
520 retired_dcid_queue_err = Some(e);
521 break;
522 }
523 }
524
525 self.largest_peer_retire_prior_to = retire_prior_to;
526 }
527
528 // Note that if no element has been retired and the `VecDeque` reaches
529 // its capacity limit, this will raise an `IdLimit`.
530 self.dcids.insert(new_entry)?;
531
532 // Propagate the error triggered when inserting a retired DCID seq to
533 // the queue.
534 if let Some(e) = retired_dcid_queue_err {
535 return Err(e);
536 }
537
538 Ok(())
539 }
540
541 /// Retires the Source Connection ID having the provided sequence number.
542 ///
543 /// In case the retired Connection ID is the same as the one used by the
544 /// packet requesting the retiring, or if the retired sequence number is
545 /// greater than any previously advertised sequence numbers, it returns an
546 /// [`InvalidState`].
547 ///
548 /// Returns the path ID that was associated to the retired CID, if any.
549 ///
550 /// [`InvalidState`]: enum.Error.html#InvalidState
551 pub fn retire_scid(
552 &mut self, seq: u64, pkt_dcid: &ConnectionId,
553 ) -> Result<Option<usize>> {
554 if seq >= self.next_scid_seq {
555 return Err(Error::InvalidState);
556 }
557
558 let pid = if let Some(e) = self.scids.remove(seq)? {
559 if e.cid == *pkt_dcid {
560 return Err(Error::InvalidState);
561 }
562
563 // Notifies the application.
564 self.retired_scids.push_back(e.cid);
565
566 // Retiring this SCID may increase the retire prior to.
567 let lowest_scid_seq = self.lowest_usable_scid_seq()?;
568 self.retire_prior_to = lowest_scid_seq;
569
570 e.path_id
571 } else {
572 None
573 };
574
575 Ok(pid)
576 }
577
578 /// Retires the Destination Connection ID having the provided sequence
579 /// number.
580 ///
581 /// If the caller tries to retire the last destination Connection ID, this
582 /// method triggers an [`OutOfIdentifiers`].
583 ///
584 /// If the caller tries to retire a non-existing Destination Connection
585 /// ID sequence number, this method returns an [`InvalidState`].
586 ///
587 /// Returns the path ID that was associated to the retired CID, if any.
588 ///
589 /// [`OutOfIdentifiers`]: enum.Error.html#OutOfIdentifiers
590 /// [`InvalidState`]: enum.Error.html#InvalidState
591 pub fn retire_dcid(&mut self, seq: u64) -> Result<Option<usize>> {
592 if self.zero_length_dcid {
593 return Err(Error::InvalidState);
594 }
595
596 let e = self.dcids.remove(seq)?.ok_or(Error::InvalidState)?;
597
598 self.mark_retire_dcid_seq(seq, true)?;
599
600 Ok(e.path_id)
601 }
602
603 /// Returns an iterator over the source connection IDs.
604 pub fn scids_iter(&self) -> impl Iterator<Item = &ConnectionId> {
605 self.scids.iter().map(|e| &e.cid)
606 }
607
608 /// Updates the Source Connection ID entry with the provided sequence number
609 /// to indicate that it is now linked to the provided path ID.
610 pub fn link_scid_to_path_id(
611 &mut self, dcid_seq: u64, path_id: usize,
612 ) -> Result<()> {
613 let e = self.scids.get_mut(dcid_seq).ok_or(Error::InvalidState)?;
614 e.path_id = Some(path_id);
615 Ok(())
616 }
617
618 /// Updates the Destination Connection ID entry with the provided sequence
619 /// number to indicate that it is now linked to the provided path ID.
620 pub fn link_dcid_to_path_id(
621 &mut self, dcid_seq: u64, path_id: usize,
622 ) -> Result<()> {
623 let e = self.dcids.get_mut(dcid_seq).ok_or(Error::InvalidState)?;
624 e.path_id = Some(path_id);
625 Ok(())
626 }
627
628 /// Gets the minimum Source Connection ID sequence number whose removal has
629 /// not been requested yet.
630 #[inline]
631 pub fn lowest_usable_scid_seq(&self) -> Result<u64> {
632 self.scids
633 .iter()
634 .filter_map(|e| {
635 if e.seq >= self.retire_prior_to {
636 Some(e.seq)
637 } else {
638 None
639 }
640 })
641 .min()
642 .ok_or(Error::InvalidState)
643 }
644
645 /// Gets the lowest Destination Connection ID sequence number that is not
646 /// associated to a path.
647 #[inline]
648 pub fn lowest_available_dcid_seq(&self) -> Option<u64> {
649 self.dcids
650 .iter()
651 .filter_map(|e| {
652 if e.path_id.is_none() {
653 Some(e.seq)
654 } else {
655 None
656 }
657 })
658 .min()
659 }
660
661 /// Finds the sequence number of the Source Connection ID having the
662 /// provided value and the identifier of the path using it, if any.
663 #[inline]
664 pub fn find_scid_seq(
665 &self, scid: &ConnectionId,
666 ) -> Option<(u64, Option<usize>)> {
667 self.scids.iter().find_map(|e| {
668 if e.cid == *scid {
669 Some((e.seq, e.path_id))
670 } else {
671 None
672 }
673 })
674 }
675
676 /// Returns the number of Source Connection IDs that have not been
677 /// assigned to a path yet.
678 ///
679 /// Note that this function is only meaningful if the host uses non-zero
680 /// length Source Connection IDs.
681 #[inline]
682 pub fn available_scids(&self) -> usize {
683 self.scids.iter().filter(|e| e.path_id.is_none()).count()
684 }
685
686 /// Returns the number of Destination Connection IDs that have not been
687 /// assigned to a path yet.
688 ///
689 /// Note that this function returns 0 if the host uses zero length
690 /// Destination Connection IDs.
691 #[inline]
692 pub fn available_dcids(&self) -> usize {
693 if self.zero_length_dcid() {
694 return 0;
695 }
696 self.dcids.iter().filter(|e| e.path_id.is_none()).count()
697 }
698
699 /// Returns the oldest active source Connection ID of this connection.
700 #[inline]
701 pub fn oldest_scid(&self) -> &ConnectionIdEntry {
702 self.scids.get_oldest()
703 }
704
705 /// Returns the oldest known active destination Connection ID of this
706 /// connection.
707 ///
708 /// Note that due to e.g., reordering at reception side, the oldest known
709 /// active destination Connection ID is not necessarily the one having the
710 /// lowest sequence.
711 #[inline]
712 pub fn oldest_dcid(&self) -> &ConnectionIdEntry {
713 self.dcids.get_oldest()
714 }
715
716 /// Adds or remove the source Connection ID sequence number from the
717 /// source Connection ID set that need to be advertised to the peer through
718 /// NEW_CONNECTION_ID frames.
719 #[inline]
720 pub fn mark_advertise_new_scid_seq(
721 &mut self, scid_seq: u64, advertise: bool,
722 ) {
723 if advertise {
724 self.advertise_new_scid_seqs.push_back(scid_seq);
725 } else if let Some(index) = self
726 .advertise_new_scid_seqs
727 .iter()
728 .position(|s| *s == scid_seq)
729 {
730 self.advertise_new_scid_seqs.remove(index);
731 }
732 }
733
734 /// Adds or remove the destination Connection ID sequence number from the
735 /// retired destination Connection ID set that need to be advertised to the
736 /// peer through RETIRE_CONNECTION_ID frames.
737 #[inline]
738 pub fn mark_retire_dcid_seq(
739 &mut self, dcid_seq: u64, retire: bool,
740 ) -> Result<()> {
741 if retire {
742 self.retire_dcid_seqs.insert(dcid_seq)?;
743 } else {
744 self.retire_dcid_seqs.remove(&dcid_seq);
745 }
746
747 Ok(())
748 }
749
750 /// Gets a source Connection ID's sequence number requiring advertising it
751 /// to the peer through NEW_CONNECTION_ID frame, if any.
752 ///
753 /// If `Some`, it always returns the same value until it has been removed
754 /// using `mark_advertise_new_scid_seq`.
755 #[inline]
756 pub fn next_advertise_new_scid_seq(&self) -> Option<u64> {
757 self.advertise_new_scid_seqs.front().copied()
758 }
759
760 /// Gets a destination Connection IDs's sequence number that need to send
761 /// RETIRE_CONNECTION_ID frames.
762 ///
763 /// If `Some`, it always returns the same value until it has been removed
764 /// using `mark_retire_dcid_seq`.
765 #[inline]
766 pub fn next_retire_dcid_seq(&self) -> Option<u64> {
767 self.retire_dcid_seqs.front()
768 }
769
770 /// Returns true if there are new source Connection IDs to advertise.
771 #[inline]
772 pub fn has_new_scids(&self) -> bool {
773 !self.advertise_new_scid_seqs.is_empty()
774 }
775
776 /// Returns true if there are retired destination Connection IDs to\
777 /// advertise.
778 #[inline]
779 pub fn has_retire_dcids(&self) -> bool {
780 !self.retire_dcid_seqs.is_empty()
781 }
782
783 /// Returns whether zero-length source CIDs are used.
784 #[inline]
785 pub fn zero_length_scid(&self) -> bool {
786 self.zero_length_scid
787 }
788
789 /// Returns whether zero-length destination CIDs are used.
790 #[inline]
791 pub fn zero_length_dcid(&self) -> bool {
792 self.zero_length_dcid
793 }
794
795 /// Gets the NEW_CONNECTION_ID frame related to the source connection ID
796 /// with sequence `seq_num`.
797 pub fn get_new_connection_id_frame_for(
798 &self, seq_num: u64,
799 ) -> Result<frame::Frame> {
800 let e = self.scids.get(seq_num).ok_or(Error::InvalidState)?;
801 Ok(frame::Frame::NewConnectionId {
802 seq_num,
803 retire_prior_to: self.retire_prior_to,
804 conn_id: e.cid.to_vec(),
805 reset_token: e.reset_token.ok_or(Error::InvalidState)?.to_be_bytes(),
806 })
807 }
808
809 /// Returns the number of source Connection IDs that are active. This is
810 /// only meaningful if the host uses non-zero length Source Connection IDs.
811 #[inline]
812 pub fn active_source_cids(&self) -> usize {
813 self.scids.len()
814 }
815
816 /// Returns the number of source Connection IDs that are retired. This is
817 /// only meaningful if the host uses non-zero length Source Connection IDs.
818 #[inline]
819 pub fn retired_source_cids(&self) -> usize {
820 self.retired_scids.len()
821 }
822
823 pub fn pop_retired_scid(&mut self) -> Option<ConnectionId<'static>> {
824 self.retired_scids.pop_front()
825 }
826}
827
828#[cfg(test)]
829mod tests {
830 use super::*;
831 use crate::testing::create_cid_and_reset_token;
832
833 #[test]
834 fn ids_new_scids() {
835 let (scid, _) = create_cid_and_reset_token(16);
836 let (dcid, _) = create_cid_and_reset_token(16);
837
838 let mut ids = ConnectionIdentifiers::new(2, &scid, 0, None);
839 ids.set_source_conn_id_limit(3);
840 ids.set_initial_dcid(dcid, None, Some(0));
841
842 assert_eq!(ids.available_dcids(), 0);
843 assert_eq!(ids.available_scids(), 0);
844 assert!(!ids.has_new_scids());
845 assert_eq!(ids.next_advertise_new_scid_seq(), None);
846
847 let (scid2, rt2) = create_cid_and_reset_token(16);
848
849 assert_eq!(ids.new_scid(scid2, Some(rt2), true, None, false), Ok(1));
850 assert_eq!(ids.available_dcids(), 0);
851 assert_eq!(ids.available_scids(), 1);
852 assert!(ids.has_new_scids());
853 assert_eq!(ids.next_advertise_new_scid_seq(), Some(1));
854
855 let (scid3, rt3) = create_cid_and_reset_token(16);
856
857 assert_eq!(ids.new_scid(scid3, Some(rt3), true, None, false), Ok(2));
858 assert_eq!(ids.available_dcids(), 0);
859 assert_eq!(ids.available_scids(), 2);
860 assert!(ids.has_new_scids());
861 assert_eq!(ids.next_advertise_new_scid_seq(), Some(1));
862
863 // If now we give another CID, it reports an error since it exceeds the
864 // limit of active CIDs.
865 let (scid4, rt4) = create_cid_and_reset_token(16);
866
867 assert_eq!(
868 ids.new_scid(scid4, Some(rt4), true, None, false),
869 Err(Error::IdLimit),
870 );
871 assert_eq!(ids.available_dcids(), 0);
872 assert_eq!(ids.available_scids(), 2);
873 assert!(ids.has_new_scids());
874 assert_eq!(ids.next_advertise_new_scid_seq(), Some(1));
875
876 // Assume we sent one of them.
877 ids.mark_advertise_new_scid_seq(1, false);
878 assert_eq!(ids.available_dcids(), 0);
879 assert_eq!(ids.available_scids(), 2);
880 assert!(ids.has_new_scids());
881 assert_eq!(ids.next_advertise_new_scid_seq(), Some(2));
882
883 // Send the other.
884 ids.mark_advertise_new_scid_seq(2, false);
885
886 assert_eq!(ids.available_dcids(), 0);
887 assert_eq!(ids.available_scids(), 2);
888 assert!(!ids.has_new_scids());
889 assert_eq!(ids.next_advertise_new_scid_seq(), None);
890 }
891
892 #[test]
893 fn new_dcid_event() {
894 let (scid, _) = create_cid_and_reset_token(16);
895 let (dcid, _) = create_cid_and_reset_token(16);
896
897 let mut retired_path_ids = SmallVec::new();
898
899 let mut ids = ConnectionIdentifiers::new(2, &scid, 0, None);
900 ids.set_initial_dcid(dcid, None, Some(0));
901
902 assert_eq!(ids.available_dcids(), 0);
903 assert_eq!(ids.dcids.len(), 1);
904
905 let (dcid2, rt2) = create_cid_and_reset_token(16);
906
907 assert_eq!(
908 ids.new_dcid(dcid2, 1, rt2, 0, &mut retired_path_ids),
909 Ok(()),
910 );
911 assert_eq!(retired_path_ids, SmallVec::from_buf([]));
912 assert_eq!(ids.available_dcids(), 1);
913 assert_eq!(ids.dcids.len(), 2);
914
915 // Now we assume that the client wants to advertise more source
916 // Connection IDs than the advertised limit. This is valid if it
917 // requests its peer to retire enough Connection IDs to fit within the
918 // limits.
919 let (dcid3, rt3) = create_cid_and_reset_token(16);
920 assert_eq!(
921 ids.new_dcid(dcid3, 2, rt3, 1, &mut retired_path_ids),
922 Ok(())
923 );
924 assert_eq!(retired_path_ids, SmallVec::from_buf([(0, 0)]));
925 // The CID module does not handle path replacing. Fake it now.
926 ids.link_dcid_to_path_id(1, 0).unwrap();
927 assert_eq!(ids.available_dcids(), 1);
928 assert_eq!(ids.dcids.len(), 2);
929 assert!(ids.has_retire_dcids());
930 assert_eq!(ids.next_retire_dcid_seq(), Some(0));
931
932 // Fake RETIRE_CONNECTION_ID sending.
933 let _ = ids.mark_retire_dcid_seq(0, false);
934 assert!(!ids.has_retire_dcids());
935 assert_eq!(ids.next_retire_dcid_seq(), None);
936
937 // Now tries to experience CID retirement. If the server tries to remove
938 // non-existing DCIDs, it fails.
939 assert_eq!(ids.retire_dcid(0), Err(Error::InvalidState));
940 assert_eq!(ids.retire_dcid(3), Err(Error::InvalidState));
941 assert!(!ids.has_retire_dcids());
942 assert_eq!(ids.dcids.len(), 2);
943
944 // Now it removes DCID with sequence 1.
945 assert_eq!(ids.retire_dcid(1), Ok(Some(0)));
946 // The CID module does not handle path replacing. Fake it now.
947 ids.link_dcid_to_path_id(2, 0).unwrap();
948 assert_eq!(ids.available_dcids(), 0);
949 assert!(ids.has_retire_dcids());
950 assert_eq!(ids.next_retire_dcid_seq(), Some(1));
951 assert_eq!(ids.dcids.len(), 1);
952
953 // Fake RETIRE_CONNECTION_ID sending.
954 let _ = ids.mark_retire_dcid_seq(1, false);
955 assert!(!ids.has_retire_dcids());
956 assert_eq!(ids.next_retire_dcid_seq(), None);
957
958 // Trying to remove the last DCID triggers an error.
959 assert_eq!(ids.retire_dcid(2), Err(Error::OutOfIdentifiers));
960 assert_eq!(ids.available_dcids(), 0);
961 assert!(!ids.has_retire_dcids());
962 assert_eq!(ids.dcids.len(), 1);
963 }
964
965 #[test]
966 fn new_dcid_reordered() {
967 let (scid, _) = create_cid_and_reset_token(16);
968 let (dcid, _) = create_cid_and_reset_token(16);
969
970 let mut retired_path_ids = SmallVec::new();
971
972 let mut ids = ConnectionIdentifiers::new(2, &scid, 0, None);
973 ids.set_initial_dcid(dcid, None, Some(0));
974
975 assert_eq!(ids.available_dcids(), 0);
976 assert_eq!(ids.dcids.len(), 1);
977
978 // Skip DCID #1 (e.g due to packet loss) and insert DCID #2.
979 let (dcid, rt) = create_cid_and_reset_token(16);
980 assert!(ids.new_dcid(dcid, 2, rt, 1, &mut retired_path_ids).is_ok());
981 assert_eq!(ids.dcids.len(), 1);
982
983 let (dcid, rt) = create_cid_and_reset_token(16);
984 assert!(ids.new_dcid(dcid, 3, rt, 2, &mut retired_path_ids).is_ok());
985 assert_eq!(ids.dcids.len(), 2);
986
987 let (dcid, rt) = create_cid_and_reset_token(16);
988 assert!(ids.new_dcid(dcid, 4, rt, 3, &mut retired_path_ids).is_ok());
989 assert_eq!(ids.dcids.len(), 2);
990
991 // Insert DCID #1 (e.g due to packet reordering).
992 let (dcid, rt) = create_cid_and_reset_token(16);
993 assert!(ids.new_dcid(dcid, 1, rt, 0, &mut retired_path_ids).is_ok());
994 assert_eq!(ids.dcids.len(), 2);
995
996 // Try inserting DCID #1 again (e.g. due to retransmission).
997 let (dcid, rt) = create_cid_and_reset_token(16);
998 assert!(ids.new_dcid(dcid, 1, rt, 0, &mut retired_path_ids).is_ok());
999 assert_eq!(ids.dcids.len(), 2);
1000 }
1001
1002 #[test]
1003 fn new_dcid_partial_retire_prior_to() {
1004 let (scid, _) = create_cid_and_reset_token(16);
1005 let (dcid, _) = create_cid_and_reset_token(16);
1006
1007 let mut retired_path_ids = SmallVec::new();
1008
1009 let mut ids = ConnectionIdentifiers::new(5, &scid, 0, None);
1010 ids.set_initial_dcid(dcid, None, Some(0));
1011
1012 assert_eq!(ids.available_dcids(), 0);
1013 assert_eq!(ids.dcids.len(), 1);
1014
1015 let (dcid, rt) = create_cid_and_reset_token(16);
1016 assert!(ids.new_dcid(dcid, 1, rt, 0, &mut retired_path_ids).is_ok());
1017 assert_eq!(ids.dcids.len(), 2);
1018
1019 let (dcid, rt) = create_cid_and_reset_token(16);
1020 assert!(ids.new_dcid(dcid, 2, rt, 0, &mut retired_path_ids).is_ok());
1021 assert_eq!(ids.dcids.len(), 3);
1022
1023 let (dcid, rt) = create_cid_and_reset_token(16);
1024 assert!(ids.new_dcid(dcid, 3, rt, 0, &mut retired_path_ids).is_ok());
1025 assert_eq!(ids.dcids.len(), 4);
1026
1027 let (dcid, rt) = create_cid_and_reset_token(16);
1028 assert!(ids.new_dcid(dcid, 4, rt, 0, &mut retired_path_ids).is_ok());
1029 assert_eq!(ids.dcids.len(), 5);
1030
1031 // Retire a DCID from the middle of the list
1032 assert!(ids.retire_dcid(3).is_ok());
1033
1034 // Retire prior to DCID that was just retired.
1035 //
1036 // This is largely to test that the `partition_point()` call above
1037 // returns a meaningful value even if the actual sequence that is
1038 // searched isn't present in the list.
1039 let (dcid, rt) = create_cid_and_reset_token(16);
1040 assert!(ids.new_dcid(dcid, 5, rt, 3, &mut retired_path_ids).is_ok());
1041 assert_eq!(ids.dcids.len(), 2);
1042 }
1043
1044 #[test]
1045 fn retire_scids() {
1046 let (scid, _) = create_cid_and_reset_token(16);
1047 let (dcid, _) = create_cid_and_reset_token(16);
1048
1049 let mut ids = ConnectionIdentifiers::new(3, &scid, 0, None);
1050 ids.set_initial_dcid(dcid, None, Some(0));
1051 ids.set_source_conn_id_limit(3);
1052
1053 let (scid2, rt2) = create_cid_and_reset_token(16);
1054 let (scid3, rt3) = create_cid_and_reset_token(16);
1055
1056 assert_eq!(
1057 ids.new_scid(scid2.clone(), Some(rt2), true, None, false),
1058 Ok(1),
1059 );
1060 assert_eq!(ids.scids.len(), 2);
1061 assert_eq!(
1062 ids.new_scid(scid3.clone(), Some(rt3), true, None, false),
1063 Ok(2),
1064 );
1065 assert_eq!(ids.scids.len(), 3);
1066
1067 assert_eq!(ids.pop_retired_scid(), None);
1068
1069 assert_eq!(ids.retire_scid(0, &scid2), Ok(Some(0)));
1070
1071 assert_eq!(ids.pop_retired_scid(), Some(scid));
1072 assert_eq!(ids.pop_retired_scid(), None);
1073
1074 assert_eq!(ids.retire_scid(1, &scid3), Ok(None));
1075
1076 assert_eq!(ids.pop_retired_scid(), Some(scid2));
1077 assert_eq!(ids.pop_retired_scid(), None);
1078 }
1079}