From e9e14ed087bb4ed8e8ac1bab743ef5dd9598310c Mon Sep 17 00:00:00 2001 From: PleasantMachine9 <65126927+PleasantMachine9@users.noreply.github.com> Date: Sat, 4 Dec 2021 19:59:55 +0100 Subject: [PATCH] support unix domain sockets as host in grpc_client This allows communication with a grpc server that is listening on the HTTP/2-over-UDS scheme. UDS sockets compared with loopback TCP: * UDS needs no loopback IP interface * UDS can use filesystem-based access control * UDS has no TCP/IP stack encapsulation overhead (higher throughput, less CPU use depending on use-case) * For UDS, the HTTP/2 pseudo-header `:authority` needs a workaround, as the hostname is not a string but a tuple, and it may contain nul or slash characters which are not valid to send as values. The grpc-go client implementation sets the `:authority` to the hardcoded string `"localhost"`, so that behavior is followed, see https://github.com/grpc/grpc-go/pull/3730 If the `{local, UnixSockPath}` tuple is passed along from grpcbox to chatterbox, then the functionality is working well, so there is not much impact on grpcbox aside from updating the `:authority` field appropriately. Note: the UDS usage is not documented in `chatterbox`, their spec says that the host must be type `string()` but it causes no issues with their library if that is not the case, as they just pass the value through to `gen_tcp` which supports the unix socket notation. --- README.md | 11 +++++++++++ src/grpcbox.app.src | 2 +- src/grpcbox_subchannel.erl | 18 ++++++++++++++++++ 3 files changed, 30 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index b546df4..2a9a2b3 100644 --- a/README.md +++ b/README.md @@ -277,6 +277,17 @@ If no channel is specified in the options to a rpc call the `default_channel` is {client, #{channels => [{default_channel, [{http, "localhost", 8080, []}], #{}}]}} ``` +Unix sockets (UDS) may also be used with the same notation that is defined in `gen_tcp`. Considerations: +* for UDS, only the `http` scheme is permitted +* the port must strictly be `0` +* only available on POSIX operating systems +* abstract UDS are only available on Linux, and such sockets' names must start with a zero byte +``` +{client, #{channels => [{default_channel, [{http, {local, "/path/to/unix/socket_name"}, 0, []}], #{}}]}} +%% or to use an abstract Unix socket: +%% {client, #{channels => [{default_channel, [{http, {local, [0 | "socket_name"]}, 0, []}], #{}}]}} +``` + The empty map at the end can contain configuration for the load balancing algorithm, interceptors, statistics handling and compression: ``` diff --git a/src/grpcbox.app.src b/src/grpcbox.app.src index 960d08e..d242c87 100644 --- a/src/grpcbox.app.src +++ b/src/grpcbox.app.src @@ -9,7 +9,7 @@ acceptor_pool, gproc, ctx]}, - {env, [{client, #{channels => [%% {default_channel, round_robin, [{http, "localhost", 8080, []}], #{}} + {env, [{client, #{channels => [%% {default_channel, [{http, "localhost", 8080, []}], #{}} ]}}, {grpc_opts, #{service_protos => [], diff --git a/src/grpcbox_subchannel.erl b/src/grpcbox_subchannel.erl index a6613fa..1b7446a 100644 --- a/src/grpcbox_subchannel.erl +++ b/src/grpcbox_subchannel.erl @@ -36,6 +36,24 @@ init([Name, Channel, Endpoint, Encoding, StatsHandler]) -> endpoint=Endpoint, channel=Channel}}. +%% In case of unix socket transport +%% (defined as tuple {local, _UnixPath} in gen_tcp), +%% there is no standard on what the authority field value +%% should be, as HTTP/2 over UDS is not formally specified. +%% To follow other gRPC implementations' behavior, +%% the "localhost" value is used. +info_map({Scheme, {local, _UnixPath} = Host, Port, _}, Encoding, StatsHandler) -> + case {Scheme, Port} of + %% The ssl layer is not functional over unix sockets currently, + %% and the port is strictly required to be 0 by gen_tcp. + {http, 0} -> + #{authority => <<"localhost">>, + scheme => <<"http">>, + encoding => Encoding, + stats_handler => StatsHandler}; + _ -> + error({badarg, [Scheme, Host, Port]}) + end; info_map({http, Host, 80, _}, Encoding, StatsHandler) -> #{authority => list_to_binary(Host), scheme => <<"http">>,