|
|
@@ -453,8 +453,7 @@ type stream struct {
|
|
|
numTrailerValues int64
|
|
|
weight uint8
|
|
|
state streamState
|
|
|
- sentReset bool // only true once detached from streams map
|
|
|
- gotReset bool // only true once detacted from streams map
|
|
|
+ resetQueued bool // RST_STREAM queued for write; set by sc.resetStream
|
|
|
gotTrailerHeader bool // HEADER frame for trailers was seen
|
|
|
wroteHeaders bool // whether we wrote headers (not status 100)
|
|
|
reqBuf []byte // if non-nil, body pipe buffer to return later at EOF
|
|
|
@@ -874,8 +873,34 @@ func (sc *serverConn) writeFrameFromHandler(wr FrameWriteRequest) error {
|
|
|
func (sc *serverConn) writeFrame(wr FrameWriteRequest) {
|
|
|
sc.serveG.check()
|
|
|
|
|
|
+ // If true, wr will not be written and wr.done will not be signaled.
|
|
|
var ignoreWrite bool
|
|
|
|
|
|
+ // We are not allowed to write frames on closed streams. RFC 7540 Section
|
|
|
+ // 5.1.1 says: "An endpoint MUST NOT send frames other than PRIORITY on
|
|
|
+ // a closed stream." Our server never sends PRIORITY, so that exception
|
|
|
+ // does not apply.
|
|
|
+ //
|
|
|
+ // The serverConn might close an open stream while the stream's handler
|
|
|
+ // is still running. For example, the server might close a stream when it
|
|
|
+ // receives bad data from the client. If this happens, the handler might
|
|
|
+ // attempt to write a frame after the stream has been closed (since the
|
|
|
+ // handler hasn't yet been notified of the close). In this case, we simply
|
|
|
+ // ignore the frame. The handler will notice that the stream is closed when
|
|
|
+ // it waits for the frame to be written.
|
|
|
+ //
|
|
|
+ // As an exception to this rule, we allow sending RST_STREAM after close.
|
|
|
+ // This allows us to immediately reject new streams without tracking any
|
|
|
+ // state for those streams (except for the queued RST_STREAM frame). This
|
|
|
+ // may result in duplicate RST_STREAMs in some cases, but the client should
|
|
|
+ // ignore those.
|
|
|
+ if wr.StreamID() != 0 {
|
|
|
+ _, isReset := wr.write.(StreamError)
|
|
|
+ if state, _ := sc.state(wr.StreamID()); state == stateClosed && !isReset {
|
|
|
+ ignoreWrite = true
|
|
|
+ }
|
|
|
+ }
|
|
|
+
|
|
|
// Don't send a 100-continue response if we've already sent headers.
|
|
|
// See golang.org/issue/14030.
|
|
|
switch wr.write.(type) {
|
|
|
@@ -883,6 +908,11 @@ func (sc *serverConn) writeFrame(wr FrameWriteRequest) {
|
|
|
wr.stream.wroteHeaders = true
|
|
|
case write100ContinueHeadersFrame:
|
|
|
if wr.stream.wroteHeaders {
|
|
|
+ // We do not need to notify wr.done because this frame is
|
|
|
+ // never written with wr.done != nil.
|
|
|
+ if wr.done != nil {
|
|
|
+ panic("wr.done != nil for write100ContinueHeadersFrame")
|
|
|
+ }
|
|
|
ignoreWrite = true
|
|
|
}
|
|
|
}
|
|
|
@@ -908,11 +938,6 @@ func (sc *serverConn) startFrameWrite(wr FrameWriteRequest) {
|
|
|
case stateHalfClosedLocal:
|
|
|
panic("internal error: attempt to send frame on half-closed-local stream")
|
|
|
case stateClosed:
|
|
|
- if st.sentReset || st.gotReset {
|
|
|
- // Skip this frame.
|
|
|
- sc.scheduleFrameWrite()
|
|
|
- return
|
|
|
- }
|
|
|
panic(fmt.Sprintf("internal error: attempt to send a write %v on a closed stream", wr))
|
|
|
}
|
|
|
}
|
|
|
@@ -921,9 +946,7 @@ func (sc *serverConn) startFrameWrite(wr FrameWriteRequest) {
|
|
|
wpp.promisedID, err = wpp.allocatePromisedID()
|
|
|
if err != nil {
|
|
|
sc.writingFrameAsync = false
|
|
|
- if wr.done != nil {
|
|
|
- wr.done <- err
|
|
|
- }
|
|
|
+ wr.replyToWriter(err)
|
|
|
return
|
|
|
}
|
|
|
}
|
|
|
@@ -956,25 +979,9 @@ func (sc *serverConn) wroteFrame(res frameWriteResult) {
|
|
|
sc.writingFrameAsync = false
|
|
|
|
|
|
wr := res.wr
|
|
|
- st := wr.stream
|
|
|
-
|
|
|
- closeStream := endsStream(wr.write)
|
|
|
-
|
|
|
- if _, ok := wr.write.(handlerPanicRST); ok {
|
|
|
- sc.closeStream(st, errHandlerPanicked)
|
|
|
- }
|
|
|
|
|
|
- // Reply (if requested) to the blocked ServeHTTP goroutine.
|
|
|
- if ch := wr.done; ch != nil {
|
|
|
- select {
|
|
|
- case ch <- res.err:
|
|
|
- default:
|
|
|
- panic(fmt.Sprintf("unbuffered done channel passed in for type %T", wr.write))
|
|
|
- }
|
|
|
- }
|
|
|
- wr.write = nil // prevent use (assume it's tainted after wr.done send)
|
|
|
-
|
|
|
- if closeStream {
|
|
|
+ if writeEndsStream(wr.write) {
|
|
|
+ st := wr.stream
|
|
|
if st == nil {
|
|
|
panic("internal error: expecting non-nil stream")
|
|
|
}
|
|
|
@@ -987,15 +994,29 @@ func (sc *serverConn) wroteFrame(res frameWriteResult) {
|
|
|
// reading data (see possible TODO at top of
|
|
|
// this file), we go into closed state here
|
|
|
// anyway, after telling the peer we're
|
|
|
- // hanging up on them.
|
|
|
- st.state = stateHalfClosedLocal // won't last long, but necessary for closeStream via resetStream
|
|
|
- errCancel := streamError(st.id, ErrCodeCancel)
|
|
|
- sc.resetStream(errCancel)
|
|
|
+ // hanging up on them. We'll transition to
|
|
|
+ // stateClosed after the RST_STREAM frame is
|
|
|
+ // written.
|
|
|
+ st.state = stateHalfClosedLocal
|
|
|
+ sc.resetStream(streamError(st.id, ErrCodeCancel))
|
|
|
case stateHalfClosedRemote:
|
|
|
sc.closeStream(st, errHandlerComplete)
|
|
|
}
|
|
|
+ } else {
|
|
|
+ switch v := wr.write.(type) {
|
|
|
+ case StreamError:
|
|
|
+ // st may be unknown if the RST_STREAM was generated to reject bad input.
|
|
|
+ if st, ok := sc.streams[v.StreamID]; ok {
|
|
|
+ sc.closeStream(st, v)
|
|
|
+ }
|
|
|
+ case handlerPanicRST:
|
|
|
+ sc.closeStream(wr.stream, errHandlerPanicked)
|
|
|
+ }
|
|
|
}
|
|
|
|
|
|
+ // Reply (if requested) to unblock the ServeHTTP goroutine.
|
|
|
+ wr.replyToWriter(res.err)
|
|
|
+
|
|
|
sc.scheduleFrameWrite()
|
|
|
}
|
|
|
|
|
|
@@ -1092,8 +1113,7 @@ func (sc *serverConn) resetStream(se StreamError) {
|
|
|
sc.serveG.check()
|
|
|
sc.writeFrame(FrameWriteRequest{write: se})
|
|
|
if st, ok := sc.streams[se.StreamID]; ok {
|
|
|
- st.sentReset = true
|
|
|
- sc.closeStream(st, se)
|
|
|
+ st.resetQueued = true
|
|
|
}
|
|
|
}
|
|
|
|
|
|
@@ -1257,7 +1277,6 @@ func (sc *serverConn) processResetStream(f *RSTStreamFrame) error {
|
|
|
return ConnectionError(ErrCodeProtocol)
|
|
|
}
|
|
|
if st != nil {
|
|
|
- st.gotReset = true
|
|
|
st.cancelCtx()
|
|
|
sc.closeStream(st, streamError(f.StreamID, f.ErrCode))
|
|
|
}
|
|
|
@@ -1396,7 +1415,7 @@ func (sc *serverConn) processData(f *DataFrame) error {
|
|
|
// type PROTOCOL_ERROR."
|
|
|
return ConnectionError(ErrCodeProtocol)
|
|
|
}
|
|
|
- if st == nil || state != stateOpen || st.gotTrailerHeader {
|
|
|
+ if st == nil || state != stateOpen || st.gotTrailerHeader || st.resetQueued {
|
|
|
// This includes sending a RST_STREAM if the stream is
|
|
|
// in stateHalfClosedLocal (which currently means that
|
|
|
// the http.Handler returned, so it's done reading &
|
|
|
@@ -1416,6 +1435,10 @@ func (sc *serverConn) processData(f *DataFrame) error {
|
|
|
sc.inflow.take(int32(f.Length))
|
|
|
sc.sendWindowUpdate(nil, int(f.Length)) // conn-level
|
|
|
|
|
|
+ if st != nil && st.resetQueued {
|
|
|
+ // Already have a stream error in flight. Don't send another.
|
|
|
+ return nil
|
|
|
+ }
|
|
|
return streamError(id, ErrCodeStreamClosed)
|
|
|
}
|
|
|
if st.body == nil {
|
|
|
@@ -1524,6 +1547,11 @@ func (sc *serverConn) processHeaders(f *MetaHeadersFrame) error {
|
|
|
// open, let it process its own HEADERS frame (trailers at this
|
|
|
// point, if it's valid).
|
|
|
if st := sc.streams[f.StreamID]; st != nil {
|
|
|
+ if st.resetQueued {
|
|
|
+ // We're sending RST_STREAM to close the stream, so don't bother
|
|
|
+ // processing this frame.
|
|
|
+ return nil
|
|
|
+ }
|
|
|
return st.processTrailerHeaders(f)
|
|
|
}
|
|
|
|
Tom Bergan