Use Balsa HTTP/1 codec #21245
Comments
bencebeky
added
enhancement
|
cc @envoyproxy/envoy-maintainers in case this wasn't on everyone's radar already |
|
@bencebeky hi, could you compare Balsa with http-parser to show the advantage of transition? |
|
Yeah, is there any reason to make this transition? |
|
Ah, I should have cross-linked when I was triaging. The decision points largely documented at https://docs.google.com/document/d/1Z8neuR6GTL61EU8jC88SD2as6Nmq15B-BNWC-SBVKns/edit after a couple of rounds of discussion at the community meeting (notes here https://docs.google.com/document/d/1Yc4zkV-A_cC_R3C0u6D15WQAsRSxADs8p2l8UMMa4P4/edit# as it's not convenient for all time zones) |
|
FYI, the balsa link is broken. They just moved it to: https://github.com/google/quiche/tree/main/quiche/balsa. |
Thank you. I edited to OP for convenience. |
* Simplify Parser::execute() and Parser::errnoName(). The motivation is to not expose integer error codes internal to http-parser. This will make it easier to add another Parser implementation based on a different library. LegacyHttpParserImpl::execute() returns HTTP_PARSER_ERRNO. This serves two purposes at the sole call site in ConnectionImpl::dispatchSlice(): first, it is converted to a ParserStatus and compared to Success and Pause. This PR calls getStatus() directly instead. Then the errno is fed back to LegacyHttpParserImpl::errnoName(), which converts it to a string. This PR removes the errnoName() argument and makes this method call HTTP_PARSER_ERRNO instead (via Impl::getErrno()). This allows the error code to be removed from the return struct of Parser::execute() altogether. Also, errnoName() is renamed to the more generic errorMessage(), to reflect that other Parser implementations might not call internal error codes "errno". Note that comparing an int to statusToInt(Success) (or Pause) is equivalent to feeding that int to intToStatus and comparting the result to Success (or Pause). Tracking issue: #21245 Signed-off-by: Bence Béky <bnc@google.com> * Restore accidentally deleted destructor. Signed-off-by: Bence Béky <bnc@google.com> * Update Parser::errorMessage() comment. Signed-off-by: Bence Béky <bnc@google.com> * Add const to two local variables. Signed-off-by: Bence Béky <bnc@google.com> Co-authored-by: Bence Béky <bnc@google.com>
The motivation is that the int errno is implementation-specific (in this case defined by http-parser). Removing this method from the abstract Parser interface and changing ParserCallbacks::setAndCheckCallbackStatus* methods to return ParserStatus instead of this implementation-specific int will make it simpler to add another Parser implementation, one not based on http-parser. Instead of applying statusToInt() within setAndCheckCallbackStatus() and setAndCheckCallbackStatusOr() before returning in ConnectionImpl, return ParserStatus, and apply statusToInt() within LegacyHttpParserImpl. This allows statusToInt() to be moved to legacy_parser_impl.cc anonymous namespace, right next to its counterpart intToStatus(). Tracking issue: #21245 Signed-off-by: Bence Béky <bnc@google.com>
* Simplify Parser::execute() and Parser::errnoName(). The motivation is to not expose integer error codes internal to http-parser. This will make it easier to add another Parser implementation based on a different library. LegacyHttpParserImpl::execute() returns HTTP_PARSER_ERRNO. This serves two purposes at the sole call site in ConnectionImpl::dispatchSlice(): first, it is converted to a ParserStatus and compared to Success and Pause. This PR calls getStatus() directly instead. Then the errno is fed back to LegacyHttpParserImpl::errnoName(), which converts it to a string. This PR removes the errnoName() argument and makes this method call HTTP_PARSER_ERRNO instead (via Impl::getErrno()). This allows the error code to be removed from the return struct of Parser::execute() altogether. Also, errnoName() is renamed to the more generic errorMessage(), to reflect that other Parser implementations might not call internal error codes "errno". Note that comparing an int to statusToInt(Success) (or Pause) is equivalent to feeding that int to intToStatus and comparting the result to Success (or Pause). Tracking issue: envoyproxy#21245 Signed-off-by: Bence Béky <bnc@google.com> * Restore accidentally deleted destructor. Signed-off-by: Bence Béky <bnc@google.com> * Update Parser::errorMessage() comment. Signed-off-by: Bence Béky <bnc@google.com> * Add const to two local variables. Signed-off-by: Bence Béky <bnc@google.com> Co-authored-by: Bence Béky <bnc@google.com>
The motivation is that the int errno is implementation-specific (in this case defined by http-parser). Removing this method from the abstract Parser interface and changing ParserCallbacks::setAndCheckCallbackStatus* methods to return ParserStatus instead of this implementation-specific int will make it simpler to add another Parser implementation, one not based on http-parser. Instead of applying statusToInt() within setAndCheckCallbackStatus() and setAndCheckCallbackStatusOr() before returning in ConnectionImpl, return ParserStatus, and apply statusToInt() within LegacyHttpParserImpl. This allows statusToInt() to be moved to legacy_parser_impl.cc anonymous namespace, right next to its counterpart intToStatus(). Tracking issue: envoyproxy#21245 Signed-off-by: Bence Béky <bnc@google.com>
|
This issue has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in the next 7 days unless it is tagged "help wanted" or "no stalebot" or other activity occurs. Thank you for your contributions. |
github-actions
bot
added
the
stale
|
no stalebot |
KBaichoo
added
no stalebot
Add unused BalsaParser. Add first draft of BalsaParser implementation, which is currently unused. This fails a large number of tests and will require a lot of work until it can be wired up to ConnectionImpl. Also make Parser::getStatus() const. That change is too trivial for a separate PR. Tracking issue: #21245 Signed-off-by: Bence Béky <bnc@google.com>
…nvoyproxy#28070) * Add test to document broken behavior. * [balsa] Do not signal error on POST method with no body. This is for consistency with http-parser behavior. Tracking issue: envoyproxy#21245 * Fix two existing tests. Also remove newly added test, which turns out to be redundant with existing tests. --------- Signed-off-by: Bence Béky <bnc@google.com> Signed-off-by: asheryer <asheryer@amazon.com>
* [balsa] Add config field to enable custom methods. This is no behavioral change by default: only methods from a hard-coded list (that matches the list hard-coded in http-parser, and is slightly different from the one that will be used by UHV) are accepted. Then the new knob is true, BalsaParser does the exact same validation as UHV will by default: method has to be non-empty and only contain allowed characters. When UHV method validation logic is turned on in the future, all validation can be removed from BalsaParser. When non-UHV mode is deprecated, this new proto field can be removed. Tracking issue: envoyproxy#21245 Signed-off-by: Bence Béky <bnc@google.com> Signed-off-by: Ryan Eskin <ryan.eskin89@protonmail.com>
…nvoyproxy#28070) * Add test to document broken behavior. * [balsa] Do not signal error on POST method with no body. This is for consistency with http-parser behavior. Tracking issue: envoyproxy#21245 * Fix two existing tests. Also remove newly added test, which turns out to be redundant with existing tests. --------- Signed-off-by: Bence Béky <bnc@google.com> Signed-off-by: Ryan Eskin <ryan.eskin89@protonmail.com>
Tracking issue: #21245 Signed-off-by: Bence Béky <bnc@google.com> Commit Message: [balsa] Disallow invalid character in response header names. Additional Description: This is for consistency with http-parser behavior. Risk Level: low, changed code protected by existing default-false runtime flag. Testing: //test/common/http/http1:codec_impl_test Release Notes: n/a Platform Specific Features: n/a Runtime guard: envoy.reloadable_features.http1_use_balsa_parser Co-authored-by: Bence Béky <bnc@google.com>
This feature has been widely deployed by two large projects at different companies without any production issues. A third project has enabled it in staging and in end-to-end tests. Manual load testing does not show significant change in CPU or memory usage compared to the legacy HTTP/1 parser. Tracking issue: #21245 Commit Message: Default-enable BalsaParser. Additional Description: Risk Level: medium Testing: unit tests and e2e test within Envoy and by multiple embedders Docs Changes: n/a Release Notes: Default-enable BalsaParser. Platform Specific Features: n/a Signed-off-by: Bence Béky <bnc@google.com> Co-authored-by: Bence Béky <bnc@google.com>
|
Hi @bencebeky. I've recently bumped into the lack of custom methods support issue #18819 in one of our prod environments. Interestingly http-parser does support some custom methods but they are all hardcoded. It looks like the solution to custom methods is to migrate to this Balsa library. Could you please clarify where is this work, and when is it expected to land? Is there possibly a way to use Balsa even today (maybe with some limitations/corner cases)? Thanks! |
|
Iirc, balsa is enabled by default after envoy 1.28. |
|
Hi, as noted above, Balsa is default enabled. However, this is only the first step towards allowing arbitrary methods. BalsaParser has the list of allowed methods copied over verbatim from http-parser, see envoy/source/common/http/http1/balsa_parser.cc Lines 54 to 59 in 2970ddb There's a related project called UHV ("universal header validator" or "unified header validation") that moves validation logic, including method validation, from the individual HTTP/1, HTTP/2, HTTP/3 codec implementations to a centralized place. It will provide a configuration setting for enabling custom methods. |
|
Thanks @bencebeky! Would envoy community accept addition of new methods to Balsa? The method we need right now is the BITS_POST which is used by BITS Upload Protocol. It acts exactly like POST, just has different name. The UHV work - is it tracked via #10646? |
|
Yep, that's the correct issue for UHV. You should be able to test with UHV on using envoy.reloadable_features.enable_universal_header_validator though there may be some minor differences not yet runtime guarded. I believe once you're using balsa and uhv you can follow thorugh on the TODO to complete defer method validation ot UHV and extend UHV to allow custom methods. Happy to do the review along with @yanavlasov |
Delay resetting BalsaFrame until the first byte of the next message is parsed. This is necessary for being able to access information about the parsed headers after the message is fully parsed, for example, response status code, and content-length and transfer-encoding headers. Fixes #34096 Balsa implementation tracking issue: #21245 Commit Message: [balsa] Delay resetting BalsaFrame. Additional Description: Risk Level: low Testing: test/extensions/transport_sockets/http_11_proxy:connect_test Docs Changes: n/a Release Notes: n/a Platform Specific Features: n/a Runtime guard: yes Signed-off-by: Bence Béky <bnc@google.com> Co-authored-by: Bence Béky <bnc@google.com>
The current HTTP/1 codec is http-parser. The plan is to transition Envoy to use Balsa instead. [edit: fix link]
The text was updated successfully, but these errors were encountered: