Add a ServeHTTP method to *grpc.Server #514
Conversation
|
Some errors on travis: go test -v -race -cpu 1,4 google.golang.org/grpc/... |
|
@iamqizhao, yeah, I saw that. I can't reproduce yet locally. I'm trying to figure out what's different between travis and my machines. |
|
@iamqizhao, also, all these tests are way too noisy with expected log spam mixed in with real errors. We need to quiet these tests up so real problems are easy to see. |
|
My experience with travis is that its VM/container is much slower than our desktop so that it sometimes can expose some races which are hard to show on our desktops. |
|
The problem with this test is that it creates more goroutines than the race detector is capable of tracking. I will shorten this test when running in race mode. |
|
We found a Contributor License Agreement for you (the sender of this pull request) and all commit authors, but as best as we can tell these commits were authored by someone else. If that's the case, please add them to this pull request and have them confirm that they're okay with these commits being contributed to Google. If we're mistaken and you did author these commits, just reply here to confirm. |
|
CLAs look good, thanks! |
| if *httpMode { | ||
| // Running a gRPC server when you need to integrate with an existing | ||
| // net/http server on the same port: (using HTTP routing as needed) | ||
| http.Handle("/", s) |
There was a problem hiding this comment.
could you have one of the examples listen on a path that isn't "/"? It's not clear to me what client changes would be required.
There was a problem hiding this comment.
I don't think gRPC the protocol supports such a thing, so client libraries don't have a way to do it.
Where this is more useful is you're now able to use an net/http.Handler-based router that routes based on the content-type of requests, routing gRPC in one direction (even sub-muxing on service or path), and other stuff to your main website.
There was a problem hiding this comment.
Understood. In CockroachDB we're incrementally migrating from net/rpc to grpc - looks like net/rpc already gets out of the way by using a DefaultRPCPath and grpc sets a useful content-type. Seems like that might be enough. Thanks!
There was a problem hiding this comment.
In CockroachDB we're incrementally migrating from net/rpc to grpc
Nice!
There was a problem hiding this comment.
Having some trouble with this - it doesn't seem that the content type is coming through on grpc-initiated requests.
Having applied this diff to grpc (on top of this PR):
diff --git a/server.go b/server.go
index 577c031..276b98e 100644
--- a/server.go
+++ b/server.go
@@ -438,6 +438,7 @@ func (hl *handlerListener) authenticateConn(rawConn net.Conn) {
func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
st, err := transport.NewServerHandlerTransport(w, r)
if err != nil {
+ grpclog.Printf("error: %s", err)
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
I see many instances of error: transport: invalid request content-type. Having inspected the request headers myself, I can tell you they're empty. Any ideas what might be going on here?
EDIT: go 1.5, using http2.ConfigureServer(&httpServer, nil) for http2 support.
There was a problem hiding this comment.
I believe so - note that NewServerHandlerTransport first checks the r.ProtoMajor and then the content-type, so r.ProtoMajor must be 2.
There was a problem hiding this comment.
@tamird, I modified the greeter_server/main.go like:
http.Handle("/", myMux{s})
...
type myMux struct {
gs *grpc.Server
}
func (m myMux) ServeHTTP(w http.ResponseWriter, r *http.Request) {
log.Printf("Got request: %#v", r)
m.gs.ServeHTTP(w, r)
}And hit it with greeter_client and got this output logged:
2016/02/02 05:19:06 Running hello server on localhost:50051 ...
2016/02/02 05:19:10 Got request: &http.Request{Method:"POST", URL:(*url.URL)(0xc820278300), Proto:"HTTP/2.0", ProtoMajor:2, ProtoMinor:0, Header:http.Header{"Content-Type":[]string{"application/grpc"}, "User-Agent":[]string{"grpc-go/0.11"}, "Te":[]string{"trailers"}}, Body:(*http.http2requestBody)(0xc820270810), ContentLength:-1, TransferEncoding:[]string(nil), Close:false, Host:"localhost", Form:url.Values(nil), PostForm:url.Values(nil), MultipartForm:(*multipart.Form)(nil), Trailer:http.Header(nil), RemoteAddr:"127.0.0.1:43332", RequestURI:"/helloworld.Greeter/SayHello", TLS:(*tls.ConnectionState)(0xc820244d10), Cancel:(<-chan struct {})(nil)}
Seems to be working for me. That was with Go 1.6. I also tried with Go 1.5, which required that I changed the example code to:
var httpServer http.Server
httpServer.Handler = myMux{s}
httpServer.Addr = *listen
http2.ConfigureServer(&httpServer, nil)
log.Fatal(httpServer.ListenAndServeTLS(file("server1.pem"), file("server1.key")))... and then it logged the same output using Go 1.5.
What is your code?
There was a problem hiding this comment.
My code looks roughly the same:
rpcServer := rpc.NewServer(nodeRPCContext)
grpcServer := grpc.NewServer()
handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
log.Printf("Got request: %#v", r)
if r.ProtoMajor == 2 && strings.Contains(r.Header.Get("Content-Type"), "application/grpc") {
grpcServer.ServeHTTP(w, r)
} else {
rpcServer.ServeHTTP(w, r)
}
})
ln, err := listen(addr, nodeRPCContext.GetServerTLSConfig()) // ends up calling tls.NewListener
if err != nil {
return nil, err
}
var mu sync.Mutex
activeConns := make(map[net.Conn]struct{})
httpServer := http.Server{
Handler: handler,
ConnState: func(conn net.Conn, state http.ConnState) {
mu.Lock()
switch state {
case http.StateNew:
activeConns[conn] = struct{}{}
case http.StateClosed:
delete(activeConns, conn)
}
mu.Unlock()
},
}
if err := http2.ConfigureServer(&httpServer, nil); err != nil {
return nil, err
}
log.Fatal(httpServer.Serve(ln))
Here's what that Printf line logs:
Got request: &http.Request{Method:"PRI", URL:(*url.URL)(0xc8204b8100), Proto:"HTTP/2.0", ProtoMajor:2, ProtoMinor:0, Header:http.Header{}, Body:(*struct { http.eofReaderWithWriteTo; io.Closer })(0x59dcf10), ContentLength:0, TransferEncoding:[]string(nil), Close:false, Host:"", Form:url.Values(nil), PostForm:url.Values(nil), MultipartForm:(*multipart.Form)(nil), Trailer:http.Header(nil), RemoteAddr:"127.0.0.1:51108", RequestURI:"*", TLS:(*tls.ConnectionState)(0xc8205b02c0), Cancel:(<-chan struct {})(nil)}
Note that this is a bidirectional streaming RPC, not sure if it matters.
The code is here: https://github.com/cockroachdb/cockroach/blob/gossip-grpc/server/node_test.go#L68 but it may be quite hard to understand how everything works :(
There was a problem hiding this comment.
Found it. We are using a custom net.Listener implementation, and hitting this: https://github.com/golang/go/blob/release-branch.go1.5/src/net/http/server.go#L1296
See also golang/go#12737.
EDIT: nope, that was obviously wrong. Still stumped. I've edited my standard library to add some logging:
diff --git a/src/net/http/server.go b/src/net/http/server.go
index a3e4355..834a1b6 100644
--- a/src/net/http/server.go
+++ b/src/net/http/server.go
@@ -1293,7 +1293,9 @@ func (c *conn) serve() {
}
}()
+ log.Printf("type assertion")
if tlsConn, ok := c.rwc.(*tls.Conn); ok {
+ log.Printf("type assertion ok")
if d := c.server.ReadTimeout; d != 0 {
c.rwc.SetReadDeadline(time.Now().Add(d))
}
@@ -1306,6 +1308,8 @@ func (c *conn) serve() {
}
c.tlsState = new(tls.ConnectionState)
*c.tlsState = tlsConn.ConnectionState()
+ log.Printf("proto: %s", c.tlsState.NegotiatedProtocol)
+ log.Printf("tlsnNextProto map: %s", c.server.TLSNextProto)
if proto := c.tlsState.NegotiatedProtocol; validNPN(proto) {
if fn := c.server.TLSNextProto[proto]; fn != nil {
h := initNPNRequest{tlsConn, serverHandler{c.server}}
This produces:
I0202 06:40:42.176913 82232 server.go:1296 type assertion
I0202 06:40:42.176923 82232 server.go:1298 type assertion ok
I0202 06:40:42.186413 82232 server.go:1311 proto:
I0202 06:40:42.186444 82232 server.go:1312 tlsnNextProto map: map[h2:%!!(MISSING)s(func(*http.Server, *tls.Conn, http.Handler)=0x4662ad0) h2-14:%!!(MISSING)s(func(*http.Server, *tls.Conn, http.Handler)=0x4662ad0)]
Somehow NegotiatedProtocol is not being set. Will continue investingating.
There was a problem hiding this comment.
Ah, turns out this is because http2.ConfigureServer mutates server.TLSConfig, which is not the config we're using to create our listener. Initializing our server.TLSConfig to our config before the call to ConfigureServer makes this work!
| @@ -47,9 +49,19 @@ const ( | |||
| defaultName = "world" | |||
| ) | |||
|
|
|||
| var withInsecureTLS = flag.Bool("insecure_tls", false, "Use Insecure TLS; suitable for hitting the greeter_server in -use_http mode") | |||
There was a problem hiding this comment.
why do we need to skip verify when using -use_http mode?
There was a problem hiding this comment.
Because I only implemented ServeHTTP for TLS. That's all Go's http2 currently does.
There was a problem hiding this comment.
Oh, you mean I should use the root CA option? I remember seeing that somewhere.
I could do that.
|
Can you put the greeter change into a separate pull request? And can you add a http server listening on the same port and a http client in the greeter client? I think after that the greeter is a much better example to show how to use the feature introduced by the new ServeHTTP. Thank you. |
|
Done. Removed example changes for now. They can come in a separate change later. |
| } | ||
| } | ||
|
|
||
| type handlerListener struct { |
There was a problem hiding this comment.
Add some comments to this struct?
|
Done. PTAL. |
| rawConn, err := hl.Listener.Accept() | ||
| if err != nil { | ||
| select { | ||
| case hl.acceptc <- err: |
There was a problem hiding this comment.
Since hl.authenticateConn(rawConn) is running in a separate goroutine, this could run into out-of-order issue:
at iteration N: a valid rawConn is generated and h1.authenticateConn is scheduled;
at iteration N+1: an error is returned by hl.Listener.Accept
But line#410 and line#432 could be executed in any order. Assume line#410 in the iteration N+1 gets executed first, then the "conn" in line#432 (iteration N) could be leaked -- the error got read and line#432 is executed (conn is written into hl.acceptc). But nobody will read from hl.acceptc again (http accept loop exits due to the error).
There was a problem hiding this comment.
I think handlerListener is complex enough and worth doing some unit tests.
|
PTAL. I've updated this. I also got sick of Github's crap pull request code review system, so I'm mirroring this review here: https://go-review.googlesource.com/#/c/19272/ Feel free to leave comments there instead of here and I'll keep updating both this pull request & that review (increasingly automated) In particular, Gerrit lets you easily see the diff between versions. Here you can see that I just deleted the net.Listener implementation you didn't like: https://go-review.googlesource.com/#/c/19272/2..3/server.go |
|
@bradfitz, @iamqizhao: cockroachdb/cockroach#4080 is currently blocked on this. What can I do to help get this over the finish line? |
|
Thanks for early adopting. We will check this in ASAP. It may take a bit more time because it is a big change. Notice that this change directs your traffic onto a new transport which has not been exercised much in grpc world (yes, http2 package is heavily tested and it passes all end2end tests in grpc). So take your own risk here if you want to use it in prod. |
|
Understood, thanks. Cockroachdb doesn't currently run in "production", so
|
bradfitz
force-pushed
the
servehttp
branch
5 times, most recently
from
8c9ca55
to
61d3357
Compare
|
Gerrit code review: https://go-review.googlesource.com/19272 (at git rev 61d3357) |
|
Gerrit code review: https://go-review.googlesource.com/19272 (at git rev eb0e517) |
|
Gerrit code review: https://go-review.googlesource.com/19272 (at git rev 81d512c) |
|
Gerrit code review: https://go-review.googlesource.com/19272 (at git rev d0f39dd) |
| func (s *Server) useTransportAuthenticator(rawConn net.Conn) (net.Conn, credentials.AuthInfo, error) { | ||
| creds, ok := s.opts.creds.(credentials.TransportAuthenticator) | ||
| if !ok { | ||
| return rawConn, nil, nil |
There was a problem hiding this comment.
Edit: nevermind. Gerrit was just confusing me with its terrible usability. The code does in fact do what I expected.
I'm not sure I understand everything completely, but isn't it likely that the existing server will have already performed the TLS handshake? In that case, we want the GRPC Server not to have creds, and we should try to cast rawConn to a tls.Conn, and return an AuthInfo of TLSInfo{tlsConn.ConnectionState()}
This adds new http.Handler-based ServerTransport in the process, reusing the HTTP/2 server code in x/net/http2 or Go 1.6+. All end2end tests pass with this new ServerTransport. Fixes grpc#75 Also: Updates grpc#495 (lets user fix it with middleware in front) Updates grpc#468 (x/net/http2 validates) Updates grpc#147 (possible with x/net/http2) Updates grpc#104 (x/net/http2 does this)
|
Gerrit code review: https://go-review.googlesource.com/19272 (at git rev 7346c87) |
|
Travis finally scheduled. Build passed. |
Add a ServeHTTP method to *grpc.Server
| ht.writeCommonHeaders(s) | ||
| ht.rw.Write(data) | ||
| if !opts.Delay { | ||
| ht.rw.(http.Flusher).Flush() |
There was a problem hiding this comment.
I guess this wasn't in an earlier version of this change, because I'm only noticing the problem now. The presence of this Flush() call makes it unsafe to call Send() on a stream from multiple goroutines. Here's an excerpt from a data race we encounter in our tests https://gist.github.com/tamird/f1bb77e6b5f865c888ed
There was a problem hiding this comment.
Thanks! Please file a bug. Clearly we need both a new test, as well as documentation on the ServerTransport interface about the expectations of implementations.
The fix seems easy enough, though.
There was a problem hiding this comment.
I'm not sure a Stream or ClientStream is intended to be safe for concurrent use (except for maybe getting its Context).
There was a problem hiding this comment.
Heh, Send() even races with writeFrameAsync. I added mutexes around my own usage and still saw data races https://gist.github.com/91bb4577bced458d01d2
|
FWIW, while testing https://github.com/philips/grpc-gateway-example as-is, and also testing my own usage of |
This adds new http.Handler-based ServerTransport in the process,
reusing the HTTP/2 server code in x/net/http2 or Go 1.6+.
All end2end tests pass with this new ServerTransport.
Fixes #75
Also:
Updates #495 (lets user fix it with middleware in front)
Updates #468 (x/net/http2 validates)
Updates #147 (possible with x/net/http2)
Updates #104 (x/net/http2 does this)