Skip to content

Add http stream content size handler (fixed #120246) #121095

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jan 29, 2025
Merged

Add http stream content size handler (fixed #120246) #121095

merged 1 commit into from
Jan 29, 2025

Conversation

@mhl-b
Copy link
Contributor

@mhl-b mhl-b commented Jan 28, 2025

Reapplying #120246 with fix after it's being reverted #120934.

Fix. In original PR requests without Expect: 100-Continue and oversized are rejected with subsequent channel closure. This is not what netty does and introduced breakage on elasticsearch-js client. The expected behaviour is that ES should reject request and discard body without closing connection.

Description from original PR.

Netty's HttpObjectAggregator handles for Expect: 100-Continue and chunked oversized requests besides aggregating parts. But HTTP stream handling does not use aggregator and we plan to remove it completely. That means we need to handle these cases by ourself.

This PR introduces Netty4HttpContentSizeHandler that handles expect-continue and oversized requests in the same way as HttpObjectAggregator. Some parts are copied from netty's code and simplified for our usage. Follow up on #117787 split into smaller pieces.

Once we completely switch to HTTP stream this handler will replace HttpObjectAggregator. For now there is conditional logic between stream and aggregation.

There is an interesting interaction between HttpRequestDecoder and HttpObjectAggregator . When aggregator responds with 413-too-large to expect-100-continue it resets HttpRequestDecoder through userEvent in pipeline.
Aggregator sends event and Decoder resets state.
This reset is required to avoid treating subsequent request as content of rejected request. But this is private code. Public interface is HttpRequestDecoder#reset(), so Netty4HttpContentSizeHandler requires explicit access to decoder and reset.

@mhl-b mhl-b added >non-issue :Distributed Coordination/Network Http and internode communication implementations v9.0.0 Team:Distributed Coordination Meta label for Distributed Coordination team v8.18.0 labels Jan 28, 2025
@elasticsearchmachine
Copy link
Collaborator

elasticsearchmachine commented Jan 28, 2025

Pinging @elastic/es-distributed-coordination (Team:Distributed Coordination)

mhl-b
mhl-b commented Jan 28, 2025
View reviewed changes
...ansport-netty4/src/main/java/org/elasticsearch/http/netty4/Netty4HttpContentSizeHandler.java
Comment on lines +131 to +138
if (isOversized) {
if (isContinueExpected) {
// Client is allowed to send content without waiting for Continue.
// See https://www.rfc-editor.org/rfc/rfc9110.html#section-10.1.1-11.3
// this content will result in HttpRequestDecoder failure and send downstream
decoder.reset();
}
ctx.writeAndFlush(TOO_LARGE.retainedDuplicate()).addListener(ChannelFutureListener.CLOSE_ON_FAILURE);
Copy link
Contributor Author

@mhl-b mhl-b Jan 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The fix. No longer close connection. Previous version:

        if (isOversized) {
            if (isContinueExpected) {
                // Client is allowed to send content without waiting for Continue.
                // See https://www.rfc-editor.org/rfc/rfc9110.html#section-10.1.1-11.3
                // this content will result in HttpRequestDecoder failure and send downstream
                decoder.reset();
                ctx.writeAndFlush(TOO_LARGE.retainedDuplicate()).addListener(ChannelFutureListener.CLOSE_ON_FAILURE);
            } else {
                // Client is sending oversized content, we cannot safely take it. Closing channel.
                ctx.writeAndFlush(TOO_LARGE_CLOSE.retainedDuplicate()).addListener(ChannelFutureListener.CLOSE);
            }

@mhl-b mhl-b mentioned this pull request Jan 28, 2025
Closed
@mhl-b mhl-b changed the title Add http stream content size handler (fixed) Add http stream content size handler (fixed #120246) Jan 28, 2025
DaveCTurner
DaveCTurner approved these changes Jan 29, 2025
View reviewed changes
Copy link
Contributor

@DaveCTurner DaveCTurner left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@mhl-b mhl-b added the auto-backport Automatically create backport pull requests when merged label Jan 29, 2025
@mhl-b mhl-b merged commit 1901c71 into elastic:main Jan 29, 2025
16 checks passed
@elasticsearchmachine
Copy link
Collaborator

elasticsearchmachine commented Jan 29, 2025

💔 Backport failed

Status Branch Result
8.x Commit could not be cherrypicked due to conflicts

You can use sqren/backport to manually backport by running backport --upstream elastic/elasticsearch --pr 121095

@mhl-b mhl-b mentioned this pull request Jan 30, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DaveCTurner DaveCTurner DaveCTurner approved these changes

@Tim-Brooks Tim-Brooks Awaiting requested review from Tim-Brooks

@ldematte ldematte Awaiting requested review from ldematte

Assignees

No one assigned

Labels

auto-backport Automatically create backport pull requests when merged :Distributed Coordination/Network Http and internode communication implementations >non-issue Team:Distributed Coordination Meta label for Distributed Coordination team v8.18.0 v9.0.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@mhl-b @elasticsearchmachine @DaveCTurner