feat(context): add response.grpc_status

[douglas-reid]

Description:

This PR allows access to the gRPC status codes via the extensions common filter context. This will make it possible to report gRPC status codes in metrics and logs. This is a part of the work from: https://tinyurl.com/yy2cwmv5. A companion PR that hopes to use this code is istio/proxy#2624.

Risk Level: low
Testing: unit
Docs Changes: Updated RBAC filter attributes doc
Release Notes: none

Signed-off-by: Douglas Reid douglas-reid@users.noreply.github.com

[htuch]

@kyessenov would you have some time to take a first pass at this? Thanks.

[douglas-reid]

@htuch I believe @kyessenov is on vacation, so it will be a little while until he can take a look.

[mandarjog]

@PiotrSikora can you take a look?

[PiotrSikora]

LGTM, thanks!

[mattklein123]

LGTM with a small test question, thanks.

/wait

[mattklein123]

Do you have a test case that covers no headers/trailers and/or bad header/trailer values? (Optimally you could use Common::getGrpcStatus but not sure if it's worth it or not.

[douglas-reid]

Thanks for the pointer to the Common:getGrpcStatus bit. I did not know that existed. That led me to look at the access log code that uses it, which ultimately led me to expand the fallbacks.

Now, after looking in trailers and headers, this will attempt to look at http response code and finally return Unknown if not found.

Matching the logging behavior seemed important.

I added a bunch of test cases for this updated behavior to match. Please let me know what you think.

[mattklein123]

Thanks, is there is any reasonable way to unify this logic and the access log logic so they don't fall out of sync? I agree they should be the same.

/wait-any

[PiotrSikora]

I don't think that returning grpc-status: 2 (unknown) when it wasn't present in the response is a correct thing to do.

[douglas-reid]

@PiotrSikora I was trying to match:

envoy/source/common/access_log/access_log_impl.cc

Lines 231 to 261 in 5248a4f

	bool GrpcStatusFilter::evaluate(const StreamInfo::StreamInfo& info, const Http::HeaderMap&,
	const Http::HeaderMap& response_headers,
	const Http::HeaderMap& response_trailers) {
	// The gRPC specification does not guarantee a gRPC status code will be returned from a gRPC
	// request. When it is returned, it will be in the response trailers. With that said, Envoy will
	// treat a trailers-only response as a headers-only response, so we have to check the following
	// in order:
	// 1. response_trailers gRPC status, if it exists.
	// 2. response_headers gRPC status, if it exists.
	// 3. Inferred from info HTTP status, if it exists.
	//
	// If none of those options exist, it will default to Grpc::Status::WellKnownGrpcStatus::Unknown.
	const std::array<absl::optional<Grpc::Status::GrpcStatus>, 3> optional_statuses = {{
	{Grpc::Common::getGrpcStatus(response_trailers)},
	{Grpc::Common::getGrpcStatus(response_headers)},
	{info.responseCode() ? absl::optional<Grpc::Status::GrpcStatus>(
	Grpc::Utility::httpToGrpcStatus(info.responseCode().value()))
	: absl::nullopt},
	}};
	Grpc::Status::GrpcStatus status = Grpc::Status::WellKnownGrpcStatus::Unknown;
	for (const auto& optional_status : optional_statuses) {
	if (optional_status.has_value()) {
	status = optional_status.value();
	break;
	}
	}
	const bool found = statuses_.find(status) != statuses_.end();
	return exclude_ ? !found : found;
	}

.

If not UNKNOWN, what status would you expect as a return value?

[PiotrSikora]

@douglas-reid fair point wrt being consistent with the access loggers, but I don't think any status should be returned as a value if there was no status sent on the wire...

Can't the return value by {}, absl::nullopt, or something else in that style?

[douglas-reid]

It can definitely return {}. That was the way I had it originally.

I guess we need to decide on exactly what to do.

BTW, it looks like choosing "Unknown" has some prior art:

https://github.com/grpc/grpc-go/blob/master/internal/transport/http_util.go#L281-L288

[PiotrSikora]

I think it should be {}. There is quite a difference between missing field and grpc-status: 2.

[kyessenov]

I think it should be {}. Otherwise, we run the risk of confusing the consumer for a non-gRPC request.

[kyessenov]

I'm not happy about the linear performance here. Maybe add a TODO to cache the computed value?

[douglas-reid]

@mattklein123 @PiotrSikora @kyessenov please take another look. I've updated the PR to extract the fallback logic to the Common lib. Additionally, this PR should preserve the access_logger Unknown behavior, while not adopting that in the RBAC expr context (returning {} instead). Tests have been updated to match.

[mattklein123]

Nice, thanks!