reactor · violetagg · Apr 19, 2024 · Apr 13, 2024
diff --git a/docs/modules/ROOT/pages/http-client.adoc b/docs/modules/ROOT/pages/http-client.adoc
@@ -333,7 +333,7 @@ include::{examples-dir}/http2/H2CApplication.java[lines=18..41]
 {http-source-link}/reactor/netty/http/HttpProtocol.java
 [%unbreakable]
 ----
-include::{sourcedir}/reactor/netty/http/HttpProtocol.java[lines=24..52]
+include::{sourcedir}/reactor/netty/http/HttpProtocol.java[lines=24..58]
 ----
 
 include::partial$proxy.adoc[]

diff --git a/docs/modules/ROOT/pages/http-server.adoc b/docs/modules/ROOT/pages/http-server.adoc
@@ -501,7 +501,35 @@ hello
 
 {http-source-link}/reactor/netty/http/HttpProtocol.java
 ----
-include::{sourcedir}/reactor/netty/http/HttpProtocol.java[lines=24..52]
+include::{sourcedir}/reactor/netty/http/HttpProtocol.java[lines=24..58]
+----
+
+[[HTTP3]]
+== HTTP/3
+
+By default, the `HTTP` server supports `HTTP/1.1`. If you need `HTTP/3`, you can get it through configuration.
+In addition to the protocol configuration, you need to add dependency to `io.netty.incubator:netty-incubator-codec-http3`.
+
+The following listing presents a simple `HTTP3` example:
+
+{examples-link}/http3/Application.java
+----
+include::{examples-dir}/http3/Application.java[lines=18..52]
+----
+<1> Configures the server to support only `HTTP/3`
+<2> Configures `SSL`
+<3> Configures `HTTP/3` settings
+
+The application should now behave as follows:
+
+[source,bash]
+----
+$ curl --http3 https://localhost:8080 -i
+HTTP/3 200
+server: reactor-netty
+content-length: 5
+
+hello
 ----
 
 [[metrics]]

diff --git a/reactor-netty-core/src/main/java/reactor/netty/transport/ServerTransport.java b/reactor-netty-core/src/main/java/reactor/netty/transport/ServerTransport.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2020-2023 VMware, Inc. or its affiliates, All Rights Reserved.
+ * Copyright (c) 2020-2024 VMware, Inc. or its affiliates, All Rights Reserved.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -38,6 +38,7 @@
 import io.netty.channel.ChannelOption;
 import io.netty.channel.EventLoopGroup;
 import io.netty.channel.ServerChannel;
+import io.netty.channel.socket.DatagramChannel;
 import io.netty.channel.unix.DomainSocketAddress;
 import io.netty.handler.codec.DecoderException;
 import io.netty.util.AttributeKey;
@@ -110,9 +111,13 @@ public Mono<? extends DisposableServer> bind() {
 
 			ConnectionObserver childObs =
 					new ChildObserver(config.defaultChildObserver().then(config.childObserver()));
-			Acceptor acceptor = new Acceptor(config.childEventLoopGroup(), config.channelInitializer(childObs, null, true),
-					config.childOptions, config.childAttrs, isDomainSocket);
-			TransportConnector.bind(config, new AcceptorInitializer(acceptor), local, isDomainSocket)
+			ChannelInitializer<Channel> channelInitializer = config.channelInitializer(childObs, null, true);
+			if (!config.channelType(isDomainSocket).equals(DatagramChannel.class)) {
+				Acceptor acceptor = new Acceptor(config.childEventLoopGroup(), channelInitializer,
+						config.childOptions, config.childAttrs, isDomainSocket);
+				channelInitializer = new AcceptorInitializer(acceptor);
+			}
+			TransportConnector.bind(config, channelInitializer, local, isDomainSocket)
 			                  .subscribe(disposableServer);
 		});
 

diff --git a/reactor-netty-core/src/main/java/reactor/netty/transport/TransportConfig.java b/reactor-netty-core/src/main/java/reactor/netty/transport/TransportConfig.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2020-2023 VMware, Inc. or its affiliates, All Rights Reserved.
+ * Copyright (c) 2020-2024 VMware, Inc. or its affiliates, All Rights Reserved.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -113,7 +113,7 @@ public final ChannelGroup channelGroup() {
 	 * @param onServer channel initializer for the server or for the client
 	 * @return the {@link ChannelInitializer} that will be used for initializing the channel pipeline
 	 */
-	public final ChannelInitializer<Channel> channelInitializer(ConnectionObserver connectionObserver,
+	public ChannelInitializer<Channel> channelInitializer(ConnectionObserver connectionObserver,
 			@Nullable SocketAddress remoteAddress, boolean onServer) {
 		requireNonNull(connectionObserver, "connectionObserver");
 		return new TransportChannelInitializer(this, connectionObserver, remoteAddress, onServer);

diff --git a/reactor-netty-examples/build.gradle b/reactor-netty-examples/build.gradle
@@ -31,6 +31,7 @@ dependencies {
 	runtimeOnly "io.netty:netty-tcnative-boringssl-static:$boringSslVersion$os_suffix"
 	// Needed for proxy testing
 	runtimeOnly "io.netty:netty-handler-proxy:$nettyVersion"
+	runtimeOnly "io.netty.incubator:netty-incubator-codec-http3:$nettyHttp3Version"
 }
 
 description = "Examples for the Reactor Netty library"
diff --git a/...les/src/main/java/reactor/netty/examples/documentation/http/server/http3/Application.java b/...les/src/main/java/reactor/netty/examples/documentation/http/server/http3/Application.java
@@ -0,0 +1,52 @@
+/*
+ * Copyright (c) 2024 VMware, Inc. or its affiliates, All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package reactor.netty.examples.documentation.http.server.http3;
+
+import reactor.core.publisher.Mono;
+import reactor.netty.DisposableServer;
+import reactor.netty.http.Http3SslContextSpec;
+import reactor.netty.http.HttpProtocol;
+import reactor.netty.http.server.HttpServer;
+
+import java.io.File;
+import java.time.Duration;
+
+public class Application {
+
+	public static void main(String[] args) throws Exception {
+		File certChainFile = new File("certificate chain file");
+		File keyFile = new File("private key file");
+
+		Http3SslContextSpec serverCtx = Http3SslContextSpec.forServer(keyFile, null, certChainFile);
+
+		DisposableServer server =
+				HttpServer.create()
+				          .port(8080)
+				          .protocol(HttpProtocol.HTTP3)                 //<1>
+				          .secure(spec -> spec.sslContext(serverCtx))   //<2>
+				          .idleTimeout(Duration.ofSeconds(5))
+				          .http3Settings(spec -> spec.maxData(10000000) //<3>
+				                                     .maxStreamDataBidirectionalLocal(1000000)
+				                                     .maxStreamDataBidirectionalRemote(1000000)
+				                                     .maxStreamsBidirectional(100))
+				          .handle((request, response) -> response.header("server", "reactor-netty")
+				                                                 .sendString(Mono.just("hello")))
+				          .bindNow();
+
+		server.onDispose()
+		      .block();
+	}
+}
diff --git a/reactor-netty-http/src/main/java/reactor/netty/http/Http3SettingsSpec.java b/reactor-netty-http/src/main/java/reactor/netty/http/Http3SettingsSpec.java
@@ -15,6 +15,11 @@
  */
 package reactor.netty.http;
 
+import io.netty.incubator.codec.quic.QuicTokenHandler;
+import reactor.util.annotation.Nullable;
+
+import java.util.Objects;
+
 /**
  * A configuration builder to fine tune the HTTP/3 settings.
  *
@@ -78,6 +83,16 @@ public interface Builder {
 		 * @return {@code this}
 		 */
 		Builder maxStreamsBidirectional(long maxStreamsBidirectional);
+
+		/**
+		 * Set the {@link QuicTokenHandler} that is used to generate and validate tokens or
+		 * {@code null} if no tokens should be used at all.
+		 * Default to {@code null}.
+		 *
+		 * @param tokenHandler  the {@link QuicTokenHandler} to use.
+		 * @return {@code this}
+		 */
+		Builder tokenHandler(QuicTokenHandler tokenHandler);
 	}
 
 	/**
@@ -125,6 +140,16 @@ public long maxStreamsBidirectional() {
 		return maxStreamsBidirectional;
 	}
 
+	/**
+	 * Return the configured {@link QuicTokenHandler} or null.
+	 *
+	 * @return the configured {@link QuicTokenHandler} or null
+	 */
+	@Nullable
+	public QuicTokenHandler tokenHandler() {
+		return tokenHandler;
+	}
+
 	@Override
 	public boolean equals(Object o) {
 		if (this == o) {
@@ -137,7 +162,8 @@ public boolean equals(Object o) {
 		return maxData == that.maxData &&
 				maxStreamDataBidirectionalLocal == that.maxStreamDataBidirectionalLocal &&
 				maxStreamDataBidirectionalRemote == that.maxStreamDataBidirectionalRemote &&
-				maxStreamsBidirectional == that.maxStreamsBidirectional;
+				maxStreamsBidirectional == that.maxStreamsBidirectional &&
+				Objects.equals(tokenHandler, that.tokenHandler);
 	}
 
 	@Override
@@ -147,19 +173,22 @@ public int hashCode() {
 		result = 31 * result + Long.hashCode(maxStreamDataBidirectionalLocal);
 		result = 31 * result + Long.hashCode(maxStreamDataBidirectionalRemote);
 		result = 31 * result + Long.hashCode(maxStreamsBidirectional);
+		result = 31 * result + Objects.hashCode(tokenHandler);
 		return result;
 	}
 
 	final long maxData;
 	final long maxStreamDataBidirectionalLocal;
 	final long maxStreamDataBidirectionalRemote;
 	final long maxStreamsBidirectional;
+	final QuicTokenHandler tokenHandler;
 
 	Http3SettingsSpec(Build build) {
 		this.maxData = build.maxData;
 		this.maxStreamDataBidirectionalLocal = build.maxStreamDataBidirectionalLocal;
 		this.maxStreamDataBidirectionalRemote = build.maxStreamDataBidirectionalRemote;
 		this.maxStreamsBidirectional = build.maxStreamsBidirectional;
+		this.tokenHandler = build.tokenHandler;
 	}
 
 	static final class Build implements Builder {
@@ -172,6 +201,7 @@ static final class Build implements Builder {
 		long maxStreamDataBidirectionalLocal = DEFAULT_MAX_STREAM_DATA_BIDIRECTIONAL_LOCAL;
 		long maxStreamDataBidirectionalRemote = DEFAULT_MAX_STREAM_DATA_BIDIRECTIONAL_REMOTE;
 		long maxStreamsBidirectional = DEFAULT_MAX_STREAMS_BIDIRECTIONAL;
+		QuicTokenHandler tokenHandler;
 
 		@Override
 		public Http3SettingsSpec build() {
@@ -213,5 +243,11 @@ public Builder maxStreamsBidirectional(long maxStreamsBidirectional) {
 			this.maxStreamsBidirectional = maxStreamsBidirectional;
 			return this;
 		}
+
+		@Override
+		public Builder tokenHandler(QuicTokenHandler tokenHandler) {
+			this.tokenHandler = tokenHandler;
+			return this;
+		}
 	}
 }
diff --git a/reactor-netty-http/src/main/java/reactor/netty/http/server/Http3ChannelInitializer.java b/reactor-netty-http/src/main/java/reactor/netty/http/server/Http3ChannelInitializer.java
@@ -0,0 +1,120 @@
+/*
+ * Copyright (c) 2024 VMware, Inc. or its affiliates, All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package reactor.netty.http.server;
+
+import io.netty.channel.Channel;
+import io.netty.channel.ChannelInitializer;
+import io.netty.channel.ChannelOption;
+import io.netty.incubator.codec.quic.QuicServerCodecBuilder;
+import io.netty.incubator.codec.quic.QuicSslContext;
+import io.netty.util.AttributeKey;
+import reactor.netty.http.Http3SettingsSpec;
+
+import java.time.Duration;
+import java.util.Map;
+import java.util.concurrent.TimeUnit;
+
+import static io.netty.incubator.codec.http3.Http3.newQuicServerCodecBuilder;
+
+final class Http3ChannelInitializer extends ChannelInitializer<Channel> {
+
+	final Map<AttributeKey<?>, ?>     attributes;
+	final Map<AttributeKey<?>, ?>     childAttributes;
+	final Map<ChannelOption<?>, ?>    childOptions;
+	final Duration                    idleTimeout;
+	final Http3SettingsSpec           http3Settings;
+	final Map<ChannelOption<?>, ?>    options;
+	final ChannelInitializer<Channel> quicChannelInitializer;
+	final QuicSslContext              quicSslContext;
+
+	Http3ChannelInitializer(HttpServerConfig config, ChannelInitializer<Channel> quicChannelInitializer) {
+		this.attributes = config.attributes();
+		this.childAttributes = config.childAttributes();
+		this.childOptions = config.childOptions();
+		this.idleTimeout = config.idleTimeout();
+		this.http3Settings = config.http3SettingsSpec();
+		this.options = config.options();
+		this.quicChannelInitializer = quicChannelInitializer;
+		if (config.sslProvider.getSslContext() instanceof QuicSslContext) {
+			this.quicSslContext = (QuicSslContext) config.sslProvider.getSslContext();
+		}
+		else {
+			throw new IllegalArgumentException("The configured SslContext is not QuicSslContext");
+		}
+	}
+
+	@Override
+	protected void initChannel(Channel channel) {
+		QuicServerCodecBuilder quicServerCodecBuilder =
+				newQuicServerCodecBuilder().sslContext(quicSslContext)
+				                           .handler(quicChannelInitializer);
+
+		if (http3Settings != null) {
+			quicServerCodecBuilder.initialMaxData(http3Settings.maxData())
+			                      .initialMaxStreamDataBidirectionalLocal(http3Settings.maxStreamDataBidirectionalLocal())
+			                      .initialMaxStreamDataBidirectionalRemote(http3Settings.maxStreamDataBidirectionalRemote())
+			                      .initialMaxStreamsBidirectional(http3Settings.maxStreamsBidirectional())
+			                      .tokenHandler(http3Settings.tokenHandler());
+		}
+
+		if (idleTimeout != null) {
+			quicServerCodecBuilder.maxIdleTimeout(idleTimeout.toMillis(), TimeUnit.MILLISECONDS);
+		}
+
+		attributes(quicServerCodecBuilder, attributes);
+		channelOptions(quicServerCodecBuilder, options);
+		streamAttributes(quicServerCodecBuilder, childAttributes);
+		streamChannelOptions(quicServerCodecBuilder, childOptions);
+
+		channel.pipeline().addLast(quicServerCodecBuilder.build());
+
+		channel.pipeline().remove(this);
+	}
+
+	@SuppressWarnings("unchecked")
+	static void attributes(QuicServerCodecBuilder quicServerCodecBuilder, Map<AttributeKey<?>, ?> attrs) {
+		for (Map.Entry<AttributeKey<?>, ?> e : attrs.entrySet()) {
+			quicServerCodecBuilder.attr((AttributeKey<Object>) e.getKey(), e.getValue());
+		}
+	}
+
+	@SuppressWarnings({"unchecked", "ReferenceEquality"})
+	static void channelOptions(QuicServerCodecBuilder quicServerCodecBuilder, Map<ChannelOption<?>, ?> options) {
+		for (Map.Entry<ChannelOption<?>, ?> e : options.entrySet()) {
+			// ReferenceEquality is deliberate
+			if (e.getKey() != ChannelOption.SO_REUSEADDR) {
+				quicServerCodecBuilder.option((ChannelOption<Object>) e.getKey(), e.getValue());
+			}
+		}
+	}
+
+	@SuppressWarnings("unchecked")
+	static void streamAttributes(QuicServerCodecBuilder quicServerCodecBuilder, Map<AttributeKey<?>, ?> attrs) {
+		for (Map.Entry<AttributeKey<?>, ?> e : attrs.entrySet()) {
+			quicServerCodecBuilder.streamAttr((AttributeKey<Object>) e.getKey(), e.getValue());
+		}
+	}
+
+	@SuppressWarnings({"unchecked", "ReferenceEquality"})
+	static void streamChannelOptions(QuicServerCodecBuilder quicServerCodecBuilder, Map<ChannelOption<?>, ?> options) {
+		for (Map.Entry<ChannelOption<?>, ?> e : options.entrySet()) {
+			// ReferenceEquality is deliberate
+			if (e.getKey() != ChannelOption.TCP_NODELAY) {
+				quicServerCodecBuilder.streamOption((ChannelOption<Object>) e.getKey(), e.getValue());
+			}
+		}
+	}
+}