feat: TlsSocket AsyncWriteSome and AsyncReadSome #376
Conversation
Signed-off-by: kostas <[email protected]>
|
Do not review, it's not ready |
| @@ -388,6 +388,7 @@ void EpollSocket::AsyncWriteSome(const iovec* v, uint32_t len, io::AsyncProgress | |||
| async_write_pending_ = 1; | |||
| } | |||
|
|
|||
| // TODO implement async functionality | |||
| void EpollSocket::AsyncReadSome(const iovec* v, uint32_t len, io::AsyncProgressCb cb) { | |||
There was a problem hiding this comment.
epoll AsyncRead is synchronous
Signed-off-by: kostas <[email protected]>
util/tls/certificates/ca-cert.pem
Outdated
| @@ -0,0 +1,34 @@ | |||
| -----BEGIN CERTIFICATE----- | |||
There was a problem hiding this comment.
I think 50 years will be enough for this to last 🤓 (that's the --days I used to generate it)
There was a problem hiding this comment.
IMO I realized that we can generate the certificates with cmake as well. Not sure if it's worth it or not 🤔
There was a problem hiding this comment.
In my opinion, the better idea is to add a custom step for generating all keys and certificates on the cmake step.
You never know who or how can use these certificates and blame authors for that.
|
Codecov ReportAttention: Patch coverage is
❗ Your organization needs to install the Codecov GitHub app to enable full functionality. Additional details and impacted files@@ Coverage Diff @@
## master #376 +/- ##
==========================================
+ Coverage 77.60% 78.67% +1.06%
==========================================
Files 103 111 +8
Lines 7824 9825 +2001
==========================================
+ Hits 6072 7730 +1658
- Misses 1752 2095 +343 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
Signed-off-by: kostas <[email protected]>
| @@ -50,6 +50,7 @@ struct AsyncReadState { | |||
|
|
|||
| AsyncReadState(AsyncSource* source, const iovec* v, uint32_t length) | |||
| : arr(length), owner(source) { | |||
| cur = arr.data(); | |||
There was a problem hiding this comment.
Ouch -- we now got unit tests though 😄
util/tls/tls_socket.h
Outdated
|
|
||
| // Main loop | ||
| void Run() override; | ||
| virtual void CompleteAsyncReq(io::Result<size_t> result) override; |
There was a problem hiding this comment.
override always requires to override virtual method.
virtual keyword is optional in such cases.
There was a problem hiding this comment.
Good catch! I will fix. I also need to address a few things functionality/testing wise :)
There was a problem hiding this comment.
Copilot wasn't able to review any files in this pull request.
Files not reviewed (5)
- io/io.cc: Language not supported
- util/fibers/epoll_socket.cc: Language not supported
- util/tls/tls_socket.cc: Language not supported
- util/tls/tls_socket.h: Language not supported
- util/tls/tls_socket_test.cc: Language not supported
kostasrim
changed the title
util/tls/tls_socket_test.cc
Outdated
| iovec send_vec{.iov_base = &send_buf, .iov_len = payload_sz_}; | ||
| iovec read_vec{.iov_base = &res, .iov_len = payload_sz_}; | ||
|
|
||
| // We don't need to call ssl_renegotiate here, the first read will also negotiate the protocol |
There was a problem hiding this comment.
The first AsyncRead causes the read to write, so the AsyncWrite that follows can't progress and it subscribes itself to the pending list. When AsyncRead finishes the renegotiation, it wakes up the pending (the AsyncWrite) and it makes progress. We would have deadlocked otherwise. This is equivalent to Yielding when WRITE/READ in progress
|
Can I review it @kostasrim ? |
| void CompleteAsyncReq(io::Result<size_t> result) override; | ||
| }; | ||
|
|
||
| friend AsyncWriteReq; |
There was a problem hiding this comment.
i think it will work without friend decl
|
|
||
| // TODO clean up the optional before we yield such that progress callback can dispatch another | ||
| // async operation | ||
| std::optional<AsyncWriteReq> async_write_req_; |
There was a problem hiding this comment.
most of our use with tls is synchronous, so I suggest to make them at least unique_ptr (could even be plain pointers), to reduce the size of TlsSocket for most cases.
this will also allow to move Async state definitions to cc file.
There was a problem hiding this comment.
Yep that makes sense. It's 130 bytes roughly extra per object
| void TlsSocket::AsyncReadSome(const iovec* v, uint32_t len, io::AsyncProgressCb cb) { | ||
| io::Result<size_t> res = ReadSome(v, len); | ||
| cb(res); | ||
| CHECK(!async_read_req_.has_value()); |
There was a problem hiding this comment.
This is not how I would design it.
TlsEngine could already have a ready read buffer. you could return quickly by fetching it without doing any async stuff. Only if the buffer is empty it's worth dispatching the upstream read.
There was a problem hiding this comment.
Well, isn't that what I do here? We don't start/submit any async operation. We construct
the object and call Run() and within this function we will read the EngineBuffer first if there are bytes available -- so we are on the fast path already, that is, we don't dispatch upstream.
As I am changing it now to a unique ptr, we now always get an allocation. I think the cost would be insignificant because the allocator will be able to satisfy that without actually requesting more memory and this is not a common path anyways.
| } | ||
| } | ||
|
|
||
| void TlsSocket::AsyncWriteReq::Run() { |
There was a problem hiding this comment.
why do we have while (true) here but we return in most cases?
it's hard to understand this logic - at first I thought Run is fiber-blocking.
There was a problem hiding this comment.
what I am trying to understand - what is the path to the second loop?
There was a problem hiding this comment.
There are no fiber blocks, everything is async and yes we need that. An example would be:
- We push to the engine
- We call HandleOpAsync because last_push.engine_opcode < 0 and we submit an async operation to the underline socket. Its completion handler will call
Run()again. - The fiber continues doing its work while the underline async operation is in flight
- The async operation completes, invokes the completion handler which calls
Run()again. Our state now isMaybeSendOutputAsyncTagso we reach that branch but the conditionlast_push.written() > 0is not true. Now we loop, push to the engine again and proceed.
| return; | ||
| } | ||
| last_push = *push_res; | ||
| state = AsyncWriteReq::HandleOpAsyncTag; |
There was a problem hiding this comment.
seems like switch case without breaks would work here
| void TlsSocket::AsyncReadReq::Run() { | ||
| DCHECK_GT(len, 0u); | ||
|
|
||
| while (true) { |
There was a problem hiding this comment.
here as well, why do we need a loop?
There was a problem hiding this comment.
I need to check this one
|
In general this PR is fairly big and it is hard to reason about design choices at this point. And also do a proper code review. I suggest to start smaller. Say, implement only the read path, while use synchronous stubs to handle |
I followed a similar design to what you did with async reads/writes for plain sockets. The difference is that the state machine for the tls stuff is a little bit more complicated and I find it harder to express those branches/flows async. For example, if we had coros, I would not need to do state tracking on some of the loops because once the completion handler for the inflight async operation completes, it would just call the coro handler which would resume from where it was suspended before the async operation started. Now it has to reach Run() first and drive down to its path. continuations would also help here, and I even took that route on a certain path (ofc not proper proper continuation). |
Implement async io for
TlsSocket.Resolves #361 when ready.