Unix Domain Socket Listeners #109
Conversation
| # ip, host:port | ||
| (?:(?<host>[^:]+):(?<port>\d+)) | | ||
| # unix socket path | ||
| (?<path>[^,:]+) |
There was a problem hiding this comment.
I haven't tested this against abstract namespace sockets, but my wetware suggests it should work
| raise "Invalid value for #{addr.inspect}: bind address must be of the form address:port[,flags...] or /path/to/unix/socket[,flags...]" | ||
| end | ||
|
|
||
| flags = $~["flags"].split(",").reject(&:empty?).map(&:downcase) |
There was a problem hiding this comment.
We can bind the match to a variable, instead of $~ but this was the original patch
| @@ -26,4 +25,6 @@ Gem::Specification.new do |gem| | |||
| gem.add_development_dependency "minitest", "~> 5" | |||
| gem.add_development_dependency "mocha", "~> 1" | |||
| gem.add_development_dependency "subprocess", "~> 1" | |||
| gem.add_development_dependency "pry" | |||
There was a problem hiding this comment.
debugging interprocess communication is still hard
| end | ||
|
|
||
| def family | ||
| "AF_INET" |
There was a problem hiding this comment.
So, I tried making this Socket::AF_INET but there are some gotchyas. This eventually maps to socket.h and I vaguely recall these differing between systems (specifically OSX and Linux)
When dumping this state, the string "AF_INET" was more helpful than 2
require 'socket'
irb(main):002:0> Socket::AF_INET
=> 2
This also lets one import state between platforms (probably only helpful for debugging/dev)
(likewise for Unix#family below)
| @@ -349,6 +349,7 @@ def self.prepare_child_environment(index) | |||
|
|
|||
| ENV["EINHORN_FD_COUNT"] = Einhorn::State.bind_fds.length.to_s | |||
| Einhorn::State.bind_fds.each_with_index { |fd, i| ENV["EINHORN_FD_#{i}"] = fd.to_s } | |||
| Einhorn::State.bind.each_with_index { |bind, i| ENV["EINHORN_FD_FAMILY_#{i}"] = bind.family.to_s } | |||
There was a problem hiding this comment.
Added to_s here to match the line above, and because of the Socket::AF_INET thing above.
It is currently silly, and boils down to: "AF_UNIX".to_s
| @@ -6,11 +6,11 @@ module SafeYAML | |||
| YAML.safe_load("---", permitted_classes: []) | |||
| rescue ArgumentError | |||
| def self.load(payload) | |||
| YAML.safe_load(payload, [Set, Symbol, Time], [], true) | |||
| YAML.safe_load(payload, [Set, Symbol, Time, Einhorn::Bind::Inet, Einhorn::Bind::Unix], [], true) | |||
There was a problem hiding this comment.
This and the line below feels bad. I can parse out the struct / array, but it may get dicey compatibility wise?
Granted the "downgrade case" here isn't possible.
(if I have a running Einhorn that has Einhorn::Bind:Unix, a downgrade of einhorn can't happen, without the class definition)
| @@ -35,9 +35,28 @@ class UpgradeTests < EinhornIntegrationTestCase | |||
| @port = find_free_port | |||
| @server_program = File.join(@dir, "env_printer.rb") | |||
| @socket_path = File.join(@dir, "einhorn.sock") | |||
|
|
|||
| mangler = ('a'..'z').to_a.shuffle[0,8].join | |||
| @unix_listener_socket_path = "unix-listener-einhorn-#{mangler}.sock" | |||
There was a problem hiding this comment.
this is in pwd rather than @dir because of unix domain socket length limitations.
I considered the abstract socket namespace, but didn't go with it, since I figured this was a more common pattern.
| # exec the new einhorn with the same environment: | ||
| reexec_cmdline = "env VAR=a bundle exec --keep-file-descriptors einhorn" | ||
|
|
||
| with_running_einhorn(%W[einhorn -m manual -b #{@unix_listener_socket_path} --reexec-as=#{reexec_cmdline} -d #{@socket_path} -- ruby #{@server_program} VAR], |
There was a problem hiding this comment.
duplicating every test was daunting, with the slight variation of wait_for_open_{socket, port}
|
I have no idea what a Unix domain socket is. I have no idea why users would want this. Please educate and discuss before throwing a large pull request at an OSS maintainer. |
|
Hey @mperham sorry, I think we had some crossed wires internally! You can ignore this for now, it should be able to get closed out. |
|
While The Manual is terse to say the least, you probably know more than you think! I'll aim to channel Julia Evan's Explanation, but may come up short. From running the tests, we can see einhorn makes zooming in and finding one in the wild here: Indeed So here we see some examples, but what are they? Why do we care about them? How can they help us solve real problems? All great questions! Let's take them one by one. What are they?At a high level, they're a file handle you can read and write from, that (should) have a process on the other side reading and writing back. Remember that, as the above They're similar to a FIFO or named pipe, but offer some other properties around permissions, ordering, and bidirectional data flow. You can sudo strace -- ruby -e 'require "socket"; UNIXSocket.new("/tmp/einhorn-example-srv.sock")' |& grep -C3 connect
mprotect(0x7f0f4403b000, 4096, PROT_READ) = 0
socket(AF_UNIX, SOCK_STREAM|SOCK_CLOEXEC, 0) = 5
fcntl(5, F_GETFD) = 0x1 (flags FD_CLOEXEC)
connect(5, {sa_family=AF_UNIX, sun_path="/tmp/einhorn-example-srv.sock"}, 110) = 0
fstat(5, {st_mode=S_IFSOCK|0777, st_size=0, ...}) = 0
rt_sigaction(SIGINT, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f0f47b68090}, {sa_handler=0x7f0f47ebf570, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f0f47b68090}, 8) = 0
rt_sigaction(SIGINT, {sa_handler=SIG_DFL, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f0f47b68090}, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f0f47b68090}, 8) = 0All this to say, they're a way to accept connections, from things that share the same filesystem [namespace]. Why do we care about them?I think Julia answers this better, but in addition to her explanation, UDS listeners are a bit faster performance wise, and sometimes are a way to side step listening port conflicts. (While there is SO_REUSE_PORT in TCP, in general, only a single process can bind a listening port, causing the dreaded E_ADDR_IN_USE error when the second process tries to listen) (where as with UDS, you could design things to listening at How can they help us solve real problems?Here is where we get to What I'm Really Trying To Do! As our tests show, we basically always bind to As we both know, Ruby services generally pre-fork, and have a one-process-per-request model. When we're running O(10s) or even O(100s) of Ruby Workers, listening on localhost, this works fine. (The core thing here is, you'll only ever have concurrency equal to the number of app worker pids from However, let's say we swapped out Ruby for something like Golang or Java. These languages are a bit easier to do threading and concurrency. Let's stick to the This is where you might end up. Each one of these is a connection from something like One nitty gritty that is important here, is that A TCP Connection is identified by the UNIQUE 5 tuple
So above, that's We can tweak this a little bit with but you run out of juice a bit before 64k, meaning you can only have ~64k unique 5 tuples when talking to yourself over localhost! This means that, once you run out of ephemeral ports (and the rest of the 5 tuple is the same) our child process can no longer accept connections! For our web services, we've side stepped this by using Http/2 which allows multiplexing requests over the same connection, but for TCP/L4 like services, we can't do that, as those protocols don't have the same multiplexing. All this to say, the goal here is to accept more than 64k connections per einhorn child group (since the 5 tuple will be shared with all siblings listening on the same FD) |
|
Thanks, I appreciate the explanation and it sounds like that really could be a big issue for use at scale! If you wish to close this PR, go ahead or we can continue discussing a merge. I'd like a wiki page or .md doc written on the feature, explaining how to configure and use it. Your comment would be an excellent start for that doc. |
Based on: #60
This adds support for Unix Domain Socket listeners.
I'm not super thrilled about all the aspects here, but I wanted to open this sooner, rather than later: