Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Filter mechanism for server transport creation and deletion

See original GitHub issue

To support a per-connection throttling mechanism used inside google, gRPC needs to allow user to add filters to the server that:

  1. Gets called when a server transport is created and handshake-completed, and has access to transport-specific attributes such as client address and identity.
  2. Adds per-transport attributes to ServerCall attributes.
  3. Gets called when a server transport is terminated.

I discussed a few options with @ejona86:

ServerInterceptor

The filter returns a ServerInterceptor when transport is created. The interceptor is transport-scoped, unlike ordinary interceptors that are service-scoped.

interface ServerTransportFilter {
  ServerInterceptor transportCreated(SomePublicServerTransportType transport);
  void transportTerminated(SomePublicServerTransportType transport);
}

Pros:

  1. Doesn’t touch transport API (ServerTransport, ServerStream) which are internal.
  2. Re-uses ServerInterceptor for purposes that ServerInterceptor is designed for (modifying ServerCall attributes etc).

Cons:

  1. Changes the scope of ServerInterceptor. @ejona86 thinks bonding ServerInterceptor to a transport is seemingly generic but actually an ad-hoc solution for a particular problem. I don’t necessarily agree though.

Decorating transport

The filter returns a decorated ServerListener at registration. Through a few more layers of wrapping, the filter would be able to decorate ServerListener.transportCreated(),ServerTransportListener.transportTerminated() and ServerStream.attributes().

Pros:

  1. Minimal API change

Cons:

  1. Heavily coupled with transport API which is internal.
  2. Duplicates the existing interceptor mechanism, but on ServerStream instead of ServerCall. It would be ideal to just decorate ServerCall, which is what ServerInterceptor does. ServerInterceptor currently is per-service, but our use case need it to be per-connection.
  3. Even more layers of decoration than the interceptors. The filter can be annoying to write.

Ad-hoc

Just for our original requirements, the filter would return per-transport attributes that are to be merged into ServerCall attributes.

interface ServerTransportFilter {
  Attributes transportCreated(SomePublicServerTransportType transport);
  void transportTerminated(SomePublicServerTransportType transport);
}

It probably won’t work in this form, because the attributes such as peer security identity may not be available immediately after the transport is created, if the security handshake has not completed yet. On the other hand, the first two options can work around this situation by reading the attributes only when the first stream is created.

Issue Analytics

  • State:closed
  • Created 7 years ago
  • Reactions:2
  • Comments:11 (10 by maintainers)

github_iconTop GitHub Comments

1reaction
zhangkun83commented, Aug 26, 2016

@ejona86 @louiscryan and I had a further discussion about this issue. We feel that the Context-based interface earlier has two issues:

  1. Obscure interface: Using Context cancellation to signal transport termination is implicit and somehow obscure.
  2. Context abuse: Context is for passing data that is either consumed by application or propagated downstream. Data generated by the filter is not necessarily consumed by application or propagated downstream. It seems like abusing the Context.

Our consensus is that we keep ServerCall.attributes(), use it to pass data from the filter to interceptors, and call out transport termination explicitly. We have agreed on the following interface:

abstract class ServerTransportFilter {
  // Called after all handshake (e.g., SSL) is done.
  // transportAttrs: contains original transport information, such as
  // socket address and SSL context.
  // return: will be merged into ServerCall.attrs
  Attributes transportReady(Attributes transportAttrs) {
    return transportAttrs;
  }

  // attrs: contains all the data returned by transportReady of the same filter
  void transportTerminated(Attributes attrs);
}

@lukaszx0 WRT Attributes vs. Context, we have drawn a clear line between them. I hope this addresses your confusion.

  • Context: for passing data that is either consumed by application or propagated downstream. E.g., deadline, tracing context, end-user credentials.
  • Attributes: for passing data from transport to ServerInterceptor, but not necessarily meant to be consumed by application or propagated downstream. Typically per-connection information such as client address, SSL context etc.

ServerInterceptor is the one that consumes Attributes and produces Context.

1reaction
lukaszx0commented, Aug 19, 2016

@zhangkun83 sorry for missing original mention.

I like the idea of using context for everything and removing ServerCall attributes. Even now, when I have fairly good knowledge of internals in this particular area I am sometimes confused if stuff is either in context or call attributes. Consolidating them into one place - context - would make things simpler.

Looping in @jhump who might have opinions on the main issue discussed here.

Read more comments on GitHub >

github_iconTop Results From Across the Web

Email Stuck in Exchange On-premises Transport Queues
1. Stop the Microsoft Filtering Management service. · 2. Use Task Manager to ensure that updateservice.exe is not running. · 3. Delete the ......
Read more >
HOW I DO IT: Purpose and the Creation of a “Deletion Transport”
A) Manual Deletion of objects requires lot of time and we need to delete all the sub objects, release the transport and then...
Read more >
RFC 6241: Network Configuration Protocol (NETCONF)
(2) The Messages layer provides a simple, transport-independent framing mechanism for encoding RPCs and notifications. Section 4 documents the RPC messages, ...
Read more >
Postfix After-Queue Content Filter
With the external content filter described here, mail is filtered AFTER it is queued. This approach decouples mail receiving processes from mail filtering...
Read more >
Guide to Infinispan Server
Can create and delete Infinispan resources in addition to ... for underlying server mechanisms such as cluster transport, security, ...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

Null pointer exception while setting a deadline on a stub

Next page

Contention in SerializingExecutor$TaskRunner.run