storj/pkg/rpc/dial_grpc.go

// Copyright (C) 2019 Storj Labs, Inc.
// See LICENSE for copying information.

// +build grpc

package rpc

import (
	"context"
	"crypto/tls"
	"net"
	"sync"

	"google.golang.org/grpc"
	"google.golang.org/grpc/credentials"
)

// dial performs the dialing to the grpc endpoint with tls.
func (d Dialer) dial(ctx context.Context, address string, tlsConfig *tls.Config) (_ *Conn, err error) {
	defer mon.Task()(&ctx)(&err)

	if d.DialTimeout > 0 {
		var cancel context.CancelFunc
		ctx, cancel = context.WithTimeout(ctx, d.DialTimeout)
		defer cancel()
	}

	creds := &captureStateCreds{TransportCredentials: credentials.NewTLS(tlsConfig)}
	conn, err := grpc.DialContext(ctx, address,
		grpc.WithTransportCredentials(creds),
		grpc.WithBlock(),
		grpc.FailOnNonTempDialError(true),
		grpc.WithContextDialer(d.dialContext))
	if err != nil {
		return nil, Error.Wrap(err)
	}

	state, ok := creds.Get()
	if !ok {
		_ = conn.Close()
		return nil, Error.New("unable to get tls connection state when dialing")
	}

	return &Conn{
		raw:   conn,
		state: state,
	}, nil
}

// dialUnencrypted performs dialing to the grpc endpoint with no tls.
func (d Dialer) dialUnencrypted(ctx context.Context, address string) (_ *Conn, err error) {
	defer mon.Task()(&ctx)(&err)

	if d.DialTimeout > 0 {
		var cancel context.CancelFunc
		ctx, cancel = context.WithTimeout(ctx, d.DialTimeout)
		defer cancel()
	}

	conn, err := grpc.DialContext(ctx, address,
		grpc.WithInsecure(),
		grpc.WithBlock(),
		grpc.FailOnNonTempDialError(true),
		grpc.WithContextDialer(d.dialContext))
	if err != nil {
		return nil, Error.Wrap(err)
	}

	return &Conn{raw: conn}, nil
}

// captureStateCreds captures the tls connection state from a client/server handshake.
type captureStateCreds struct {
	credentials.TransportCredentials
	once  sync.Once
	state tls.ConnectionState
	ok    bool
}

// Get returns the stored tls connection state.
func (c *captureStateCreds) Get() (state tls.ConnectionState, ok bool) {
	c.once.Do(func() {})
	return c.state, c.ok
}

// ClientHandshake dispatches to the underlying credentials and tries to store the
// connection state if possible.
func (c *captureStateCreds) ClientHandshake(ctx context.Context, authority string, rawConn net.Conn) (
	net.Conn, credentials.AuthInfo, error) {

	conn, auth, err := c.TransportCredentials.ClientHandshake(ctx, authority, rawConn)
	if tlsInfo, ok := auth.(credentials.TLSInfo); ok {
		c.once.Do(func() { c.state, c.ok = tlsInfo.State, true })
	}
	return conn, auth, err
}

// ServerHandshake dispatches to the underlying credentials and tries to store the
// connection state if possible.
func (c *captureStateCreds) ServerHandshake(rawConn net.Conn) (
	net.Conn, credentials.AuthInfo, error) {

	conn, auth, err := c.TransportCredentials.ServerHandshake(rawConn)
	if tlsInfo, ok := auth.(credentials.TLSInfo); ok {
		c.once.Do(func() { c.state, c.ok = tlsInfo.State, true })
	}
	return conn, auth, err
}
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`// Copyright (C) 2019 Storj Labs, Inc.`
			`// See LICENSE for copying information.`

drpc: enable by default (#3452) 2019-11-01 21:43:24 +00:00			`// +build grpc`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00
			`package rpc`

			`import (`
			`"context"`
			`"crypto/tls"`
			`"net"`
			`"sync"`

			`"google.golang.org/grpc"`
			`"google.golang.org/grpc/credentials"`
			`)`

			`// dial performs the dialing to the grpc endpoint with tls.`
			`func (d Dialer) dial(ctx context.Context, address string, tlsConfig tls.Config) (_ Conn, err error) {`
			`defer mon.Task()(&ctx)(&err)`

pkg/rpc: fix grpc dial timeouts (#3517) grpc doesn't exit dials right away if the context dialer returns an error. since that's the only spot where we were enforcing dial timeouts, dials could just leak for an unknown amount of time. add a timeout above the grpc dial because that's the documented way that grpc expected to be canceled. Change-Id: Ic47ac61ce8a5f721510cc2c4584f63d43fe4f2d5 2019-11-06 23:42:20 +00:00			`if d.DialTimeout > 0 {`
			`var cancel context.CancelFunc`
			`ctx, cancel = context.WithTimeout(ctx, d.DialTimeout)`
			`defer cancel()`
			`}`

pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`creds := &captureStateCreds{TransportCredentials: credentials.NewTLS(tlsConfig)}`
			`conn, err := grpc.DialContext(ctx, address,`
			`grpc.WithTransportCredentials(creds),`
			`grpc.WithBlock(),`
			`grpc.FailOnNonTempDialError(true),`
			`grpc.WithContextDialer(d.dialContext))`
			`if err != nil {`
			`return nil, Error.Wrap(err)`
			`}`

			`state, ok := creds.Get()`
			`if !ok {`
			`_ = conn.Close()`
			`return nil, Error.New("unable to get tls connection state when dialing")`
			`}`

			`return &Conn{`
			`raw: conn,`
			`state: state,`
			`}, nil`
			`}`

pkg/rpc: drpc connection pooling keep a pool of connections open when dialing for drpc. this makes it so that long lived clients (like lib/uplink's Project) don't continue to use a bad connection forever. it also allows for concurrent rpcs. Change-Id: If649b286050e4f09c413fadc3e1ce88f5fc6e600 2019-10-21 23:00:37 +01:00			`// dialUnencrypted performs dialing to the grpc endpoint with no tls.`
			`func (d Dialer) dialUnencrypted(ctx context.Context, address string) (_ *Conn, err error) {`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`defer mon.Task()(&ctx)(&err)`

pkg/rpc: fix grpc dial timeouts (#3517) grpc doesn't exit dials right away if the context dialer returns an error. since that's the only spot where we were enforcing dial timeouts, dials could just leak for an unknown amount of time. add a timeout above the grpc dial because that's the documented way that grpc expected to be canceled. Change-Id: Ic47ac61ce8a5f721510cc2c4584f63d43fe4f2d5 2019-11-06 23:42:20 +00:00			`if d.DialTimeout > 0 {`
			`var cancel context.CancelFunc`
			`ctx, cancel = context.WithTimeout(ctx, d.DialTimeout)`
			`defer cancel()`
			`}`

pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`conn, err := grpc.DialContext(ctx, address,`
pkg/rpc: add WithInsecure when doing non-tls dials Change-Id: I993f223f4ac78824b75a7725342ebf2ae0f74254 2019-09-27 16:07:14 +01:00			`grpc.WithInsecure(),`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`grpc.WithBlock(),`
			`grpc.FailOnNonTempDialError(true),`
			`grpc.WithContextDialer(d.dialContext))`
			`if err != nil {`
			`return nil, Error.Wrap(err)`
			`}`

			`return &Conn{raw: conn}, nil`
			`}`

			`// captureStateCreds captures the tls connection state from a client/server handshake.`
			`type captureStateCreds struct {`
			`credentials.TransportCredentials`
			`once sync.Once`
			`state tls.ConnectionState`
all: use pkg/rpc instead of pkg/transport all of the packages and tests work with both grpc and drpc. we'll probably need to do some jenkins pipelines to run the tests with drpc as well. most of the changes are really due to a bit of cleanup of the pkg/transport.Client api into an rpc.Dialer in the spirit of a net.Dialer. now that we don't need observers, we can pass around stateless configuration to everything rather than stateful things that issue observations. it also adds a DialAddressID for the case where we don't have a pb.Node, but we do have an address and want to assert some ID. this happened pretty frequently, and now there's no more weird contortions creating custom tls options, etc. a lot of the other changes are being consistent/using the abstractions in the rpc package to do rpc style things like finding peer information, or checking status codes. Change-Id: Ief62875e21d80a21b3c56a5a37f45887679f9412 2019-09-19 05:46:39 +01:00			`ok bool`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`}`

			`// Get returns the stored tls connection state.`
			`func (c *captureStateCreds) Get() (state tls.ConnectionState, ok bool) {`
all: use pkg/rpc instead of pkg/transport all of the packages and tests work with both grpc and drpc. we'll probably need to do some jenkins pipelines to run the tests with drpc as well. most of the changes are really due to a bit of cleanup of the pkg/transport.Client api into an rpc.Dialer in the spirit of a net.Dialer. now that we don't need observers, we can pass around stateless configuration to everything rather than stateful things that issue observations. it also adds a DialAddressID for the case where we don't have a pb.Node, but we do have an address and want to assert some ID. this happened pretty frequently, and now there's no more weird contortions creating custom tls options, etc. a lot of the other changes are being consistent/using the abstractions in the rpc package to do rpc style things like finding peer information, or checking status codes. Change-Id: Ief62875e21d80a21b3c56a5a37f45887679f9412 2019-09-19 05:46:39 +01:00			`c.once.Do(func() {})`
			`return c.state, c.ok`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`}`

			`// ClientHandshake dispatches to the underlying credentials and tries to store the`
			`// connection state if possible.`
			`func (c *captureStateCreds) ClientHandshake(ctx context.Context, authority string, rawConn net.Conn) (`
			`net.Conn, credentials.AuthInfo, error) {`

			`conn, auth, err := c.TransportCredentials.ClientHandshake(ctx, authority, rawConn)`
			`if tlsInfo, ok := auth.(credentials.TLSInfo); ok {`
all: use pkg/rpc instead of pkg/transport all of the packages and tests work with both grpc and drpc. we'll probably need to do some jenkins pipelines to run the tests with drpc as well. most of the changes are really due to a bit of cleanup of the pkg/transport.Client api into an rpc.Dialer in the spirit of a net.Dialer. now that we don't need observers, we can pass around stateless configuration to everything rather than stateful things that issue observations. it also adds a DialAddressID for the case where we don't have a pb.Node, but we do have an address and want to assert some ID. this happened pretty frequently, and now there's no more weird contortions creating custom tls options, etc. a lot of the other changes are being consistent/using the abstractions in the rpc package to do rpc style things like finding peer information, or checking status codes. Change-Id: Ief62875e21d80a21b3c56a5a37f45887679f9412 2019-09-19 05:46:39 +01:00			`c.once.Do(func() { c.state, c.ok = tlsInfo.State, true })`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`}`
			`return conn, auth, err`
			`}`

			`// ServerHandshake dispatches to the underlying credentials and tries to store the`
			`// connection state if possible.`
			`func (c *captureStateCreds) ServerHandshake(rawConn net.Conn) (`
			`net.Conn, credentials.AuthInfo, error) {`

			`conn, auth, err := c.TransportCredentials.ServerHandshake(rawConn)`
			`if tlsInfo, ok := auth.(credentials.TLSInfo); ok {`
all: use pkg/rpc instead of pkg/transport all of the packages and tests work with both grpc and drpc. we'll probably need to do some jenkins pipelines to run the tests with drpc as well. most of the changes are really due to a bit of cleanup of the pkg/transport.Client api into an rpc.Dialer in the spirit of a net.Dialer. now that we don't need observers, we can pass around stateless configuration to everything rather than stateful things that issue observations. it also adds a DialAddressID for the case where we don't have a pb.Node, but we do have an address and want to assert some ID. this happened pretty frequently, and now there's no more weird contortions creating custom tls options, etc. a lot of the other changes are being consistent/using the abstractions in the rpc package to do rpc style things like finding peer information, or checking status codes. Change-Id: Ief62875e21d80a21b3c56a5a37f45887679f9412 2019-09-19 05:46:39 +01:00			`c.once.Do(func() { c.state, c.ok = tlsInfo.State, true })`
pkg/rpc: build tag based selection of rpc details It provides an abstraction around the rpc details so that one can use dprc or gprc with the same code. It subsumes using the protobuf package directly for client interfaces as well as the pkg/transport package to perform dials. Change-Id: I8f5688bd71be8b0c766f13029128a77e5d46320b 2019-09-19 04:34:19 +01:00			`}`
			`return conn, auth, err`
			`}`