http: Use GURL as HTTP URL parser utility

[dio]

Commit Message: http: Use GURL as HTTP URL parser utility
Additional Description: This replaces http_parser's URL parser with GURL.
Risk Level: Medium?
Testing: Unit
Docs Changes: N/A
Release Notes: N/A

Signed-off-by: Dhi Aurrahman dio@tetrate.io

[dio]

Since we put /Za when compiling on Windows, MSVC's C4067 warning is treated as an error.

[wrowe]

I find it interesting given that googletest itself supports msvc, but does not support clang-cl.

[dio]

string16 doesn't make sense to use on 2-byte wchar_t systems (e.g. Windows).

[wrowe]

I trust this patch is operating entirely on ISO-8859-1 with utf-8 enablement? Should be no wide char anything, this isn't java.

[dio]

@htuch: What's the rationale for this patch to grow larger?
@dio: This is for accommodating windows with msvc compiler that we have.

[htuch]

So, I'm still not super happy with the size of this patch. @wrowe @sunjayBhatia do you have any thoughts on what we can do to avoid having to hand craft this in Envoy? If @dio merges, would you folks be able to followup with upstream to eliminate this patch?

[wrowe]

Can we put this review on full pause until we have 11107 merged, and rebased? That will pick up //test/... and we'll be in a better position to give this our full attention, since regressions are taking up most of our free cycles for the past days.

[dio]

SGTM. I leave it to @htuch to decide.

[htuch]

Sure, we can wait for #11107.

[wrowe]

So today we should see 11107 merged. We did go ahead this week and build dio's branch locally with //test/... on Windows, and didn't observe any significant or outright failures, although there are several compilation emits that should be addressed before we merge this to master. This will become apparent to all when it is rebuilt after 11107.

[wrowe]

Just to make things very clear, we are patching the deliberate exclusion of one particular architecture, which served no purpose and discouraged development by any interested contributor. I don't know how a patch to revert such a silly commit would be received at the upstream community, so we can make no promises how long a patch will have to live at envoy, @htuch

[dio]

#11107 is merged and this PR has picked it up.

[htuch]

Great. I'm wondering if we can get some agreement on the long term ownership of this patch. From my perspective, a patch this size is not sustainable in Envoy and that can't be the long term strategy; this will impact our velocity and add friction to upgrading to new versions of GURL in response to security issues. OTOH, I'm eager to move forward and we can accept a patch in the interim.

@dio would it make sense to just try upstream this and see what happens?
@wrowe would you folks be able to take over this patch and long term efforts to shrink it down via tactical upstreaming if this can't be easily done?

[dio]

@htuch: This is an autoconf dependency, can we just use foreign_cc to avoid having to hand-maintain a bespoke BUILD file for the project?
@dio: I'm testing it, but it seems the build time is significantly increasing.
@htuch: Interesting, I wonder if it's doing something like building tests or additional libraries. Might be possible to control with some autoconf flags...
@dio: I believe I have turned off everything (that makes sense, like examples, tests, even tools). And it is tricky to force using msvc (when using configure it tends to use mingw and it is failed at configure stage, and I don't think we want to mix mingw and msvc).

Ref: #10599 (comment)

[wrowe]

I'm confused, what is an autoconf dependency? If one is introduced by this patch, that will break the contribution of all four engineers working on the Windows port by breaking master. The one I am familiar with is the opentracing dependency which we have excluded for now, but that only breaks tracing extensions. Breaking http/1 seems unwise. Otherwise the basic idea of this bazel BUILD hack looks entirely reasonable, and there is no expectation it would be fixed upstream, because we are cherry-picking a project for subcomponents that don't have any independent project management and don't appear to be supported stand-alone.

[htuch]

I'm OK with this BUILD (as it isn't a huge patch). In terms of being an autoconf dependency, I'm basically saying it should build under rules_foreign_cc, which knows how to build autoconf.

gperftools is an autoconf dep today that we build this way, see https://github.com/envoyproxy/envoy/blob/master/bazel/foreign_cc/BUILD#L13.

Are you saying in the future, we can't take any external dependency that is autoconf based?

[wrowe]

Correct, autoconf is gnu tooling and while it runs in tandem the pseudo-unix cygwin toolchain there is no Windows port, and it's likely to be a thorn in the side of other odd SDKs on mobile and such.

Most every project building on autoconf offers an alternative mechanism for some windows build, however well thought out and supported, or not. external/org_unicode_icuuc/icu4c/source/allinone/ is the Windows build logic by the icu4c maintainers.

Most projects are moving in the direction of supporting CMake for a much simpler cross-platform experience, even as they retain autoconf. This makes the build agnostic of the flavor of Visual Studio and even msvc vs llvm clang-cl.

For Envoy, maintaining a bazel BUILD file for this project makes perfect sense, since the lib objects all match the compiler and link choices of this project. We need to evaluate what the autoconf results produce in terms of source file toggles and changes, even if we avoid these long-term.

For upstream, propose a CMakeFiles.txt to cover their existing autoconf determinations. Our rules_foreign_cc support in bazel is much better with CMake than less-predictable autoconf output. This probably results in the most flexibility to the maintainers and would be our simplest solution short of this short-term BUILD maintenance.

[htuch]

@wrowe can you propose some amendment to https://github.com/envoyproxy/envoy/blob/master/bazel/EXTERNAL_DEPS.md based on this?

I don't think it sounds unreasonable, but we should take this through a review process and ensure folks are aligned, as it's a major project restriction.

How come gperftools isn't impacting you? Don't you use tcmalloc?

[wrowe]

tcmalloc is disabled on Windows if you look at .bazelrc

[wrowe]

gperftools as of 2015 was being ported to Windows using the tcmalloc_minimal implementation. We have have documented this exclusion for Windows both in .bazelrc and in bazel/foreign_cc/BUILD.

Until bazel test //test/... is largely building clean with all currently tagged "fails_on_windows", gperftools hasn't been and won't be a particularly high priority. The same is true for opentracing and all tracing extensions on Windows.

THE major difference between all that and this proposed enhancement is that the envoyproxy is really nothing without a url parser.

[htuch]

This is fine, but I would like to get this down in writing, so that we can ensure everyone is on-board and don't relitigate this each time we add a new dependency. Can you do the PR to https://github.com/envoyproxy/envoy/blob/master/bazel/EXTERNAL_DEPS.md arguing to remove autoconf in rules_foreign_cc for Windows reasons for all deps that are core across platforms?

[dio]

@alyssawilk I'm not sure if this is the right thing to do for making sure CONNECT works.

[alyssawilk]

I guess I'm a bit confused why EXPECT_FALSE(url.initialize("foo.com:65536", is_connect)); fails. Could be I'm insufficiently caffeinated though :-P

Also as long as I'm looking, do we think this should be runtime guarded, even with a shorter duration? I could imagine this having behavioral changes in weird corner cases though ideally it should be good

[dio]

65536 is greater than std::numeric_limits<uint16_t>::max(). Not in 1-65535 valid port range.

[dio]

re: Runtime guard. SGTM.

[alyssawilk]

Ah, gotcha. maybe comments there but yeah, otherwise this looks fine.
If folks prefer we could also split out connect validation into its own class since it's a weird one-off but I suspect it'll be useful to have a consistent API and this how the old class worked so LGTM!

[htuch]

Looks good to me, thanks for reviving. My main concern is just around the size of the manual patch for GURL and ICUUC. If there is any way or plan to reduce it, it would be really awesome. Otherwise I'm happy to ship and iterate.

[htuch]

So, I'm still not super happy with the size of this patch. @wrowe @sunjayBhatia do you have any thoughts on what we can do to avoid having to hand craft this in Envoy? If @dio merges, would you folks be able to followup with upstream to eliminate this patch?

[dio]

@htuch after this is merged, I'll try to play around with the autoconf flags once again. Since the time taken by the build using the resulted Makefile takes a longer time, it probably requires more patience 🙂.

[dio]

/azp run envoy-presubmit

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[dio]

Merging master to pick up #11107.

[htuch]

LGTM modulo the patch/ICUUC threads. Excited to see this ready to land..

[htuch]

Great. I'm wondering if we can get some agreement on the long term ownership of this patch. From my perspective, a patch this size is not sustainable in Envoy and that can't be the long term strategy; this will impact our velocity and add friction to upgrading to new versions of GURL in response to security issues. OTOH, I'm eager to move forward and we can accept a patch in the interim.

@dio would it make sense to just try upstream this and see what happens?
@wrowe would you folks be able to take over this patch and long term efforts to shrink it down via tactical upstreaming if this can't be easily done?

[htuch]

This is fine, but I would like to get this down in writing, so that we can ensure everyone is on-board and don't relitigate this each time we add a new dependency. Can you do the PR to https://github.com/envoyproxy/envoy/blob/master/bazel/EXTERNAL_DEPS.md arguing to remove autoconf in rules_foreign_cc for Windows reasons for all deps that are core across platforms?

[dio]

would it make sense to just try upstream this and see what happens?

Do you mean to submit it to the Chromium project? I can try. Probably, we need @alyssawilk's perspective and guidance on how to do that properly.

[htuch]

@dio yep. I think @alyssawilk and @danzh2010 probably could both give some advice on how to approach. Doesn't Chromium build for Windows anyway? I'm pretty sure I remember running Chrome on Windows last time I used it :-P

[dio]

@htuch haha, yeah. However only clang-cl is supported on Windows, see https://crbug.com/988071. We're doing MSVC. I'm a bit scared. 😶

[htuch]

@dio maybe just start by opening a Chromium issue and see if it's not too controversial?

[stale]

This pull request has been automatically marked as stale because it has not had activity in the last 7 days. It will be closed in 7 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions!

[dio]

I'm trying to join the discussion here: https://bugs.chromium.org/p/chromium/issues/detail?id=1053958.

[htuch]

@dio I think if you can just tag the patch with a TODO and #11974 for now, we can move forward with this PR. Ideally we can undo the patch once we move to clang-cl.exe.

[dio]

Thanks, @htuch! Updated the patch with TODO.

[htuch]

LGTM, thanks! Epic.

[moderation]

@dio is there any reason you picked this April 2019 rather than the latest https://github.com/unicode-org/icu/releases/tag/release-67-1 ?

[dio]

The BUILD file is inspired from Tensorflow project as known to be stable. Will try to update along the way. Thanks for the reminder! https://github.com/tensorflow/tensorflow/blob/master/third_party/icu/workspace.bzl. Tracked in here. #12015