http2: major update to internals

[jasnell]

This update does several significant things:

1. It eliminates the base Nghttp2* classes and folds those
   in to node::http2::Http2Session and node::http2::Http2Stream
2. It makes node::http2::Http2Stream a StreamBase instance and
   sends that out to JS-land to act as the [kHandle] for the
   JavaScript Http2Stream class.
3. It shifts some of the callbacks from C++ off of the JavaScript
   Http2Session class to the Http2Stream class.
4. It refactors the data provider structure for FD and Stream
   based sending to help encapsulate those functions easier
5. It streamlines some of the functions at the C++ layer to
   eliminate now unnecessary redirections
6. It cleans up node_http2.cc for better readability and
   maintainability
7. It refactors some of the debug output
8. Because Http2Stream instances are now StreamBases, they are
   now also trackable using async-hooks
9. The Stream::OnRead algorithm has been simplified with a
   couple bugs fixed.
10. I've eliminated node_http2_core.h and node_http2_core-inl.h
11. Detect invalid handshake a report protocol error to session
12. Add Http2Session.prototype.ping

@mcollina @apapirovski @addaleax @sebdeckers @nodejs/http2

Checklist

• make -j4 test (UNIX), or vcbuild test (Windows) passes
• tests and/or benchmarks are included
• documentation is changed or added
• commit message follows commit guidelines

Affected core subsystem(s)

http2

[addaleax]

It makes node::http2::Http2Stream a StreamBase instance and
sends that out to JS-land to act as the [kHandle] for the
JavaScript Http2Stream class.

Yay for that!

It eliminates the base Nghttp2* classes and folds those in to node::http2::Http2Session and node::http2::Http2Stream

Tbh, I did like the distinction between the C++ wrapper for nghttp2 and our own Node code… I guess this is okay tho.

Also, the moving-code-around bits folded in with the rest of the changes into a single huge commit makes reviewing a bit harder than it could be ;)

[addaleax]

While you’re at it, could you make these const? Otherwise it’s technically global mutable state…

[sebdeckers]

@jasnell To prepare for an eventual QUIC layer, I had thought the "folding" of these classes would happen the other way around, i.e. retaining only the Nghttp2 classes and dropping the generic Http2Session/Http2Stream. I don't mean to bikeshed, the changes LGTM. Merely wondering if you had other future plans and considerations here.

[sebdeckers]

I only reviewed changes on the JS side.

[sebdeckers]

Why only one ping at a time? I see no such limitation in the http2 spec.

[jasnell]

The protocol doesn't limit it, but PING is a potential DOS vector. The one at a time limit is intended to avoid the possibility of abuse.

[sebdeckers]

What risk does PING pose over sending any other outgoing REQUEST/SETTINGS/PRIORITY frame?

Multiple outstanding PINGs could occur as keepalive heartbeat messages under high RTT conditions.

[jasnell]

We also currently limit SETTINGS frame too, just not as strictly. The risk is in allowing node.js to be used inappropriately as an attack tool. It may be ok tho

[jasnell]

We could allow a configurable upper limit on the number of outstanding pings, allowing more than one to be sent at a time, and using a stack for the Http2Ping callbacks

[sebdeckers]

The FIFO approach should generally work, though, if I understand the spec correctly, there is a potential case where outstanding PING are not ACKed in the same order as the outgoing sequence. Methods for dealing with this would be limiting concurrency to 1, or matching the ACKed payload (assuming unique bytes).

[sebdeckers]

Could ping expose an (optional) 8-octet payload param?

[jasnell]

Yeah, I'm considering that, just not sure how useful it's going to be if we stick with the one at a time limit.

[sebdeckers]

Some considerations:

• Analysis/performance tools might want to send PING floods.
• When RTT exceeds keepalive interval. (Ouch! 😵)
• Avoid global state. Or at least do not expose it to the user.
• Follow what the spec says. Implementation is no place for protocol design.

[sebdeckers]

nit: goAway to be consistent with pushPromise, rstStream.

[jasnell]

The spec treats it as GOAWAY and PUSH_PROMISE / RST_STREAM, I was segmenting based on the presence of the _

[sebdeckers]

Oops?

[jasnell]

Heh, yup

[sebdeckers]

nit: does ESLint not complain about this extra blank line?

[sebdeckers]

Extract 0b111111... trick to a const to avoid repetitive calculation, or does V8 optimise that automatically?

[jasnell]

I believe v8 optimizes these but it's still worthwhile avoid repetition

[sebdeckers]

Q: Why is this preferred? (IIRC we discussed this before so I'm curious why change it now.)

[jasnell]

Under turbofan using the literal is more performant it turns out, and after evaluating, there's no real benefit to making these particular objects have that null prototype

[addaleax]

IIRC, since about the time of TF being enabled (not sure it’s related), Object.create(null) acts as a hint to the engine that the object is in dictionary mode, i.e. kind of acts like a Map.

So not using a null-prototype object here seems like a good idea.

[sebdeckers]

TIL 🌈✨ Thanks!

[sebdeckers]

Additional notable changelog:

• Http2Session.priority() is removed. Only use Http2Stream.priority().

Do we need to worry about deprecating this API?

[jasnell]

While the code is still in experimental status, we shouldn't need to sorry about deprecating those, although we'll want to call it out as a notable change.

As for the possibility of introducing something like quic, we'd have to step back later and evaluate that. These changes shouldn't make it more difficult tho.

[addaleax]

If you want to deviate from errback style, it might be a good idea to add a custom util.promisify variant (or stick with errback)

[jasnell]

Yeah, I'm debating back and forth on this one

[sebdeckers]

Alternatively, this could accept a payload argument and simply send out a PING frame. Any received PING frames would emit a ping event with the payload as argument. That avoids state (leaking memory) and allows users to implement promises or callbacks as well as limit or allow parallel PINGs.

[apapirovski]

Amazing! 🥇 A lot here so will need to go through this in stages, but had a few nits/questions to start.

[apapirovski]

Is there a particular reason we do this? It's definitely faster without the bind & call. We could potentially rename self to something better if that's not very readable (like stream or session depending on the context). Especially since these are one-time use only, we're not storing the bound version or anything.

(There are a few other places this is the case.)

[jasnell]

More of a preference than anything. Not opposed to switching it back

[apapirovski]

I'm fine with it either way. It's a super minor thing. Wanted to make sure I wasn't missing anything.

Can always open my own PR if it really bugs me one day... 😆

[apapirovski]

Could you elaborate on this change? Maximum stream ID being reached means the whole session is probably in trouble, no?

[jasnell]

More of an ergonomics thing, really. Yes it affects the session but it feels more natural to watch for the error on the steam itself. May be revisiting that tho

[apapirovski]

Makes sense 👍 I can definitely see arguments both ways.

[apapirovski]

It seems like we could just not set the target by default since each case branch redefines it, including default.

Or if we don't anticipate it changing, maybe just remove target altogether and replace it with hard-coded this. Can always change later if a session error comes to exist in this branch.

[jasnell]

+1

[apapirovski]

Complete nit, but since id is now used only once, can we delete(this[kID]); instead?

[addaleax]

Maybe I’m missing context, but delete is always going to change the map of the object whose property is being delete, so you don’t usually want that for performance reasons if it’s not necessary.

(And if you delete anything but the most recently added property, you’re going to switch the object into dictionary mode, which is even worse.)

[apapirovski]

Sorry, to be clear I just mean this: this[kSession][kState].streams.delete(this[kID]);. Avoid the unnecessary const declaration (which was there because id was reused in the earlier version).

[jasnell]

@addaleax ... Keep in mind that this is Map, not a regular object.

[ronkorving]

Are there any performance implications to this many changes? If any, hopefully all good ones ;)

[jasnell]

I benchmarked carefully as I went through to make sure there were no regressions with perf. It's partly what took so long to get this going (change, bench, change, bench, change,... Lol). The most significant impact is on the Http2Stream class becoming the StreamBase and the change there was negligible.

[jasnell]

Quick note: there are a number of more substantial changes that need to be made to the Closing/Error state handling for both Http2Session and Http2Stream that will need to build on top of these changes. They are rather large and significant changes that I'd much prefer doing in a separate PR once this lands.

[jasnell]

CI: https://ci.nodejs.org/job/node-test-pull-request/11558/
New CI: https://ci.nodejs.org/job/node-test-pull-request/11560/

[jasnell]

Failed on one of the windows variants... passed on everything else... trying one more time:

CI: https://ci.nodejs.org/job/node-test-pull-request/11565/

[jasnell]

Ok, CI appears to be good on all platforms now (there are still a handful running at the moment but they passed on the previous run)

[jasnell]

CI is good. Will squash the commits.

@nodejs/http2 ... there are some other large changes that need to build on top of this so I'd appreciate some sign offs so I can get this landed :-)

[addaleax]

@jasnell Do you think you could split the commits so that moving code around is its separate thing? I know that’s quite a task, but it would really help a lot…

[jasnell]

umm... at this point, that would be extremely difficult to do, as moving the code around was not done as a separate task. It was done all at once while making the specific individual changes.

[addaleax]

nit: 8 bytes

[addaleax]

nit: 8 bytes

[addaleax]

typo: minumum

[addaleax]

mhhhhh… auto? 😄

[jasnell]

yeah yeah... ;-) I haven't quite managed to get used to using auto too much. I'm working on it, I swear ;-)

[addaleax]

Just so you know what I’m having in mind for this: I’d keep a boolean flag on a each session that keeps track of whether a send callback is scheduled to be executed, and use the SetImmediate() from #17117 to schedule it once it becomes necessary (if that flag is not already set).

In particular I’d really like to avoid iterating over all sessions.

[jasnell]

whether or not there is data to send is not always easily visible. nghttp has a want_write function that can be checked to see if a particular session has data to send.

[addaleax]

nghttp2 doesn't do it's own I/O so it's always something that we do that makes it want to write something, right? We should use want_write after such an action to check.

(Fwiw, I would be up for trying to do this myself once this PR is merged, and if I prove myself wrong, so be it. ;))

[jasnell]

I'm not saying it's a bad idea :-) ... just saying that it's not always immediately visible.

Btw... Currently, we are already calling SendPendingData() immediately after receiving and processing data on a socket. It's entirely possible that we could eliminate the prep_t call entirely, I just haven't worked on that yet.

[jasnell]

To expand a bit... the underlying nghttp2_session will have data to write to the output stream in one of two cases:

1. We receive data from the socket and pass it in to nghttp2_session. This will trigger a series of synchronous callbacks to user code. In some cases, nghttp2 will push it's own data onto the send queue during this time, in other cases user code will push it's own data onto the send queue. Either way, when we're doing receiving the chunk of data, we call SendPendingData() to push out whatever was sent.

2. User-code takes other actions independent of receiving data from the socket. The uv_prep_t is really in place to handle this second set of actions. Rather than calling SendPendingData() multiple times, once after each action, the data is allowed to batch up in nghttp2 internal queue and is sent on each tick of the event loop.

So what you're suggesting is absolutely doable. First, keep the SendPendingData() in place for 1, then for 2, if any action occurring outside of the receive callback cycle puts data into the queue, schedule an env->SetImmediate() to call SendPendingData() on the next tick.

[addaleax]

ditto

[addaleax]

ditto

[addaleax]

ditto

[addaleax]

OneByteString() uses v8::NewStringType::kNormal – can you use kInternalized, since these are static strings (i.e. call NewFromOneByte directly with that flag)?

[jasnell]

Good call :)

[addaleax]

Not making a base class destructor virtual is kind of dangerous… The small overhead might be worth avoiding the surprise of future crashes?

[jasnell]

Yeah, good point :)

[jasnell]

that was the result of an over-zealous and lazy replace ;-)

[jasnell]

CI: https://ci.nodejs.org/job/node-test-pull-request/11567/

[addaleax]

Landed in 69e6c5a

Added semver-minor label for the new ping methods