Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

core: Do not leak server state when application callbacks throw exceptions #3064

Merged
merged 8 commits into from
Jun 19, 2017
Merged

core: Do not leak server state when application callbacks throw exceptions #3064

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
a1db4c6
Make error detail transmissions opt in
zpencer Jun 1, 2017
d0a2ea3
Rename syncListener -> listener
zpencer Jun 7, 2017
ab44d1f
Move interceptor to utils package, make SynchronizedServerCall a stat…
zpencer Jun 9, 2017
027e994
Move unit tests
zpencer Jun 9, 2017
65e4d61
update for review comments
zpencer Jun 10, 2017
b65e09f
review comments
zpencer Jun 12, 2017
0514d6a
fix null trailers, do test field inits in declarations
zpencer Jun 13, 2017
7eb4eab
move test to util package
zpencer Jun 13, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
18 changes: 7 additions & 11 deletions ...er/StatusRuntimeExceptionTransmitter.java → ...mitStatusRuntimeExceptionInterceptor.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@
* limitations under the License.
*/

package io.grpc.util.interceptor.server;
package io.grpc.util;

import com.google.common.util.concurrent.MoreExecutors;
import com.google.common.util.concurrent.SettableFuture;
Expand All @@ -34,7 +34,8 @@

/**
* A class that intercepts uncaught exceptions of type {@link StatusRuntimeException} and handles
* them by closing the {@link ServerCall}, and transmitting the exception's details to the client.
* them by closing the {@link ServerCall}, and transmitting the exception's status and metadata
* to the client.
*
* <p>Without this interceptor, gRPC will strip all details and close the {@link ServerCall} with
* a generic {@link Status#UNKNOWN} code.
Expand All @@ -44,13 +45,12 @@
* if all clients are trusted.
*/
@ExperimentalApi("https://github.com/grpc/grpc-java/issues/2189")
public final class StatusRuntimeExceptionTransmitter implements ServerInterceptor {
private StatusRuntimeExceptionTransmitter() {
// do not instantiate
public final class TransmitStatusRuntimeExceptionInterceptor implements ServerInterceptor {
private TransmitStatusRuntimeExceptionInterceptor() {
}

public static ServerInterceptor instance() {
return new StatusRuntimeExceptionTransmitter();
return new TransmitStatusRuntimeExceptionInterceptor();
}

@Override
Expand Down Expand Up @@ -105,11 +105,7 @@ public void onReady() {
}

private void closeWithException(StatusRuntimeException t) {
Metadata metadata = Status.trailersFromThrowable(t);
if (metadata == null) {
metadata = new Metadata();
}
serverCall.close(t.getStatus(), metadata);
serverCall.close(t.getStatus(), t.getTrailers());
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

getTrailers may return null, but close() requires non-null Metadata

}
};
}
Expand Down
82 changes: 42 additions & 40 deletions core/src/test/java/io/grpc/util/interceptor/server/UtilServerInterceptorsTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,16 +17,12 @@
package io.grpc.util.interceptor.server;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This needs to move folder/package as well.


import static com.google.common.collect.Iterables.getOnlyElement;
import static org.mockito.Matchers.any;
import static org.mockito.Matchers.same;
import static org.mockito.Mockito.doThrow;
import static org.mockito.Mockito.times;
import static org.mockito.Mockito.verify;

import io.grpc.Metadata;
import io.grpc.MethodDescriptor;
import io.grpc.MethodDescriptor.Marshaller;
import io.grpc.MethodDescriptor.MethodType;
import io.grpc.ServerCall;
import io.grpc.ServerCallHandler;
import io.grpc.ServerInterceptors;
Expand All @@ -36,12 +32,13 @@
import io.grpc.Status;
import io.grpc.StatusRuntimeException;
import io.grpc.testing.NoopServerCall;
import io.grpc.testing.TestMethodDescriptors;
import io.grpc.util.TransmitStatusRuntimeExceptionInterceptor;
import java.util.Arrays;
import org.junit.Before;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.junit.runners.JUnit4;
import org.mockito.Mock;
import org.mockito.Mockito;
import org.mockito.MockitoAnnotations;

Expand All @@ -51,42 +48,27 @@
*/
@RunWith(JUnit4.class)
public class UtilServerInterceptorsTest {
@Mock
private Marshaller<String> requestMarshaller;

@Mock
private Marshaller<Integer> responseMarshaller;
private MethodDescriptor<String, Integer> flowMethod = TestMethodDescriptors.noopMethod();
private ServerCall<String, Integer> call = Mockito.spy(new NoopServerCall<String, Integer>());
private final Metadata headers = new Metadata();

@Mock
private ServerServiceDefinition serviceDefinition;
private ServerCallHandler<String, Integer> handler;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Make a concrete implementation instead of a mock?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Most of these fields can turn into concrete implementations without too much boiler plate, so changing those as well.


@Mock
private ServerCall.Listener<String> listener;

private MethodDescriptor<String, Integer> flowMethod;

private ServerCall<String, Integer> call = new NoopServerCall<String, Integer>();

private ServerServiceDefinition serviceDefinition;

private final Metadata headers = new Metadata();

/** Set up for test. */
@Before
public void setUp() {
MockitoAnnotations.initMocks(this);
flowMethod = MethodDescriptor.<String, Integer>newBuilder()
.setType(MethodType.UNKNOWN)
.setFullMethodName("basic/flow")
.setRequestMarshaller(requestMarshaller)
.setResponseMarshaller(responseMarshaller)
.build();

Mockito.when(handler.startCall(
Mockito.<ServerCall<String, Integer>>any(), Mockito.<Metadata>any()))
.thenReturn(listener);

serviceDefinition = ServerServiceDefinition.builder(new ServiceDescriptor("basic", flowMethod))
handler = new ServerCallHandler<String, Integer>() {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This initialization can be done at declaration time, and then serviceDefinition can also be initialized when declared. That would leave just initMocks in setup.

@Override
public ServerCall.Listener<String> startCall(
ServerCall<String, Integer> call, Metadata headers) {
return listener;
}
};
serviceDefinition = ServerServiceDefinition.builder(
new ServiceDescriptor("service_foo", flowMethod))
.addMethod(flowMethod, handler).build();
}

Expand All @@ -103,18 +85,38 @@ private static ServerMethodDefinition<String, Integer> getSoleMethod(
public void statusRuntimeExceptionTransmitter() {
final Status expectedStatus = Status.UNAVAILABLE;
final Metadata expectedMetadata = new Metadata();
call = Mockito.spy(call);
final StatusRuntimeException exception =
new StatusRuntimeException(expectedStatus, expectedMetadata);
doThrow(exception).when(listener).onMessage(any(String.class));
doThrow(exception).when(listener).onCancel();
doThrow(exception).when(listener).onComplete();
doThrow(exception).when(listener).onHalfClose();
doThrow(exception).when(listener).onReady();
listener = new ServerCall.Listener<String>() {
@Override
public void onMessage(String message) {
throw exception;
}

@Override
public void onHalfClose() {
throw exception;
}

@Override
public void onCancel() {
throw exception;
}

@Override
public void onComplete() {
throw exception;
}

@Override
public void onReady() {
throw exception;
}
};

ServerServiceDefinition intercepted = ServerInterceptors.intercept(
serviceDefinition,
Arrays.asList(StatusRuntimeExceptionTransmitter.instance()));
Arrays.asList(TransmitStatusRuntimeExceptionInterceptor.instance()));
// The interceptor should have handled the error by directly closing the ServerCall
// and the exception should not propagate to the method's caller
getSoleMethod(intercepted).getServerCallHandler().startCall(call, headers).onMessage("hello");
Expand Down