knative · knative-prow · Aug 2, 2023 · Jul 14, 2023 · Jul 14, 2023 · Jul 14, 2023
diff --git a/pkg/broker/filter/filter_handler.go b/pkg/broker/filter/filter_handler.go
@@ -17,13 +17,13 @@ limitations under the License.
 package filter
 
 import (
+	"bytes"
 	"context"
 	"encoding/json"
 	"errors"
 	"fmt"
 	"io"
 	"net/http"
-	"strings"
 	"time"
 
 	opencensusclient "github.com/cloudevents/sdk-go/observability/opencensus/v2/client"
@@ -38,7 +38,7 @@ import (
 	"knative.dev/pkg/logging"
 
 	"knative.dev/eventing/pkg/apis"
-	channelAttributes "knative.dev/eventing/pkg/channel/attributes"
+	"knative.dev/eventing/pkg/utils"
 
 	eventingv1 "knative.dev/eventing/pkg/apis/eventing/v1"
 	"knative.dev/eventing/pkg/apis/feature"
@@ -51,7 +51,6 @@ import (
 	"knative.dev/eventing/pkg/kncloudevents"
 	"knative.dev/eventing/pkg/reconciler/sugar/trigger/path"
 	"knative.dev/eventing/pkg/tracing"
-	"knative.dev/eventing/pkg/utils"
 )
 
 const (
@@ -65,24 +64,6 @@ const (
 	defaultMaxIdleConnectionsPerHost = 100
 )
 
-const (
-	// NoResponse signals the step that send event to trigger's subscriber hasn't started
-	NoResponse = -1
-)
-
-// ErrHandler handle the different errors of filter dispatch process
-type ErrHandler struct {
-	ResponseCode int
-	ResponseBody []byte
-	err          error
-}
-
-// HeaderProxyAllowList contains the headers that are proxied from the reply; other than the CloudEvents headers.
-// Other headers are not proxied because of security concerns.
-var HeaderProxyAllowList = map[string]struct{}{
-	strings.ToLower("Retry-After"): {},
-}
-
 // Handler parses Cloud Events, determines if they pass a filter, and sends them to a subscriber.
 type Handler struct {
 	// reporter reports stats of status code and dispatch time
@@ -93,7 +74,7 @@ type Handler struct {
 	withContext   func(ctx context.Context) context.Context
 }
 
-// NewHandler creates a new Handler and its associated MessageReceiver.
+// NewHandler creates a new Handler and its associated EventReceiver.
 func NewHandler(logger *zap.Logger, triggerInformer v1.TriggerInformer, reporter StatsReporter, wc func(ctx context.Context) context.Context) (*Handler, error) {
 	kncloudevents.ConfigureConnectionArgs(&kncloudevents.ConnectionArgs{
 		MaxIdleConns:        defaultMaxIdleConnections,
@@ -164,10 +145,7 @@ func (h *Handler) ServeHTTP(writer http.ResponseWriter, request *http.Request) {
 
 	ctx := h.withContext(request.Context())
 
-	message := cehttp.NewMessageFromHttpRequest(request)
-	defer message.Finish(nil)
-
-	event, err := binding.ToEvent(ctx, message)
+	event, err := cehttp.NewEventFromHTTPRequest(request)
 	if err != nil {
 		h.logger.Warn("failed to extract event from request", zap.Error(err))
 		writer.WriteHeader(http.StatusBadRequest)
@@ -242,123 +220,64 @@ func (h *Handler) ServeHTTP(writer http.ResponseWriter, request *http.Request) {
 		URL:     t.Status.SubscriberURI,
 		CACerts: t.Status.SubscriberCACerts,
 	}
-	h.send(ctx, writer, request.Header, target, reportArgs, event, t, ttl)
+	h.send(ctx, writer, utils.PassThroughHeaders(request.Header), target, reportArgs, event, t, ttl)
 }
 
 func (h *Handler) send(ctx context.Context, writer http.ResponseWriter, headers http.Header, target duckv1.Addressable, reportArgs *ReportArgs, event *cloudevents.Event, t *eventingv1.Trigger, ttl int32) {
-	// send the event to trigger's subscriber
-	response, responseErr := h.sendEvent(ctx, headers, target, event, t, reportArgs)
 
-	if responseErr.err != nil {
-		h.logger.Error("failed to send event", zap.Error(responseErr.err))
-		// If error is not because of the response, it should respond with http.StatusInternalServerError
-		if responseErr.ResponseCode == NoResponse {
+	additionalHeaders := headers.Clone()
+	additionalHeaders.Set(apis.KnNamespaceHeader, t.GetNamespace())
 
+	dispatchInfo, err := kncloudevents.SendEvent(ctx, *event, target, kncloudevents.WithHeader(additionalHeaders))
+	if err != nil {
+		h.logger.Error("failed to send event", zap.Error(err))
+
+		// If error is not because of the response, it should respond with http.StatusInternalServerError
+		if dispatchInfo.ResponseCode <= 0 {
 			writer.WriteHeader(http.StatusInternalServerError)
 			_ = h.reporter.ReportEventCount(reportArgs, http.StatusInternalServerError)
 			return
 		}
-		// If error has a response propagate subscriber's headers back to channel
-		if response != nil {
-			proxyHeaders(response.Header, writer)
-		}
-		writer.WriteHeader(responseErr.ResponseCode)
+
+		h.reporter.ReportEventDispatchTime(reportArgs, dispatchInfo.ResponseCode, dispatchInfo.Duration)
+
+		writeHeaders(utils.PassThroughHeaders(dispatchInfo.ResponseHeader), writer)
+		writer.WriteHeader(dispatchInfo.ResponseCode)
 
 		// Read Response body to responseErr
 		errExtensionInfo := broker.ErrExtensionInfo{
 			ErrDestination:  target.URL,
-			ErrResponseBody: responseErr.ResponseBody,
+			ErrResponseBody: dispatchInfo.ResponseBody,
 		}
 		errExtensionBytes, msErr := json.Marshal(errExtensionInfo)
 		if msErr != nil {
 			h.logger.Error("failed to marshal errExtensionInfo", zap.Error(msErr))
 			return
 		}
-		_, _ = writer.Write(errExtensionBytes)
-		_ = h.reporter.ReportEventCount(reportArgs, responseErr.ResponseCode)
+		_, err = writer.Write(errExtensionBytes)
+		if err != nil {
+			h.logger.Error("failed to write error response", zap.Error(err))
+		}
+		_ = h.reporter.ReportEventCount(reportArgs, dispatchInfo.ResponseCode)
 
 		return
 	}
 
 	h.logger.Debug("Successfully dispatched message", zap.Any("target", target))
 
+	h.reporter.ReportEventDispatchTime(reportArgs, dispatchInfo.ResponseCode, dispatchInfo.Duration)
+
 	// If there is an event in the response write it to the response
-	statusCode, err := h.writeResponse(ctx, writer, response, ttl, target.URL.String())
+	statusCode, err := h.writeResponse(ctx, writer, dispatchInfo, ttl, target.URL.String())
 	if err != nil {
 		h.logger.Error("failed to write response", zap.Error(err))
 	}
 	_ = h.reporter.ReportEventCount(reportArgs, statusCode)
 }
 
-func (h *Handler) sendEvent(ctx context.Context, headers http.Header, target duckv1.Addressable, event *cloudevents.Event, t *eventingv1.Trigger, reporterArgs *ReportArgs) (*http.Response, ErrHandler) {
-	responseErr := ErrHandler{
-		ResponseCode: NoResponse,
-	}
-
-	// Send the event to the subscriber
-	req, err := kncloudevents.NewCloudEventRequest(ctx, target)
-	if err != nil {
-		responseErr.err = fmt.Errorf("failed to create the request: %w", err)
-		return nil, responseErr
-	}
-
-	message := binding.ToMessage(event)
-	defer message.Finish(nil)
-
-	additionalHeaders := utils.PassThroughHeaders(headers)
-	additionalHeaders.Set(apis.KnNamespaceHeader, t.GetNamespace())
-
-	// Following the spec https://github.com/knative/specs/blob/main/specs/eventing/data-plane.md#derived-reply-events
-	additionalHeaders.Set("prefer", "reply")
-
-	err = kncloudevents.WriteRequestWithAdditionalHeaders(ctx, message, req, additionalHeaders)
-	if err != nil {
-		responseErr.err = fmt.Errorf("failed to write request: %w", err)
-		return nil, responseErr
-	}
-
-	start := time.Now()
-	resp, err := req.Send()
-	dispatchTime := time.Since(start)
-	if err != nil {
-		responseErr.ResponseCode = http.StatusInternalServerError
-		responseErr.ResponseBody = []byte(fmt.Sprintf("dispatch error: %s", err.Error()))
-		responseErr.err = fmt.Errorf("failed to dispatch message: %w", err)
-		return resp, responseErr
-	}
-
-	sc := 0
-	if resp != nil {
-		sc = resp.StatusCode
-		responseErr.ResponseCode = sc
-	}
-
-	_ = h.reporter.ReportEventDispatchTime(reporterArgs, sc, dispatchTime)
-
-	if resp.StatusCode < http.StatusOK ||
-		resp.StatusCode >= http.StatusMultipleChoices {
-		// Read response body into errHandler for failures
-		body := make([]byte, channelAttributes.KnativeErrorDataExtensionMaxLength)
-
-		readLen, readErr := resp.Body.Read(body)
-		if readErr != nil && readErr != io.EOF {
-			h.logger.Error("failed to read response body into DispatchExecutionInfo", zap.Error(readErr))
-			responseErr.ResponseBody = []byte(fmt.Sprintf("dispatch error: %s", readErr.Error()))
-		} else {
-			responseErr.ResponseBody = body[:readLen]
-		}
-		responseErr.err = fmt.Errorf("unexpected HTTP response, expected 2xx, got %d", resp.StatusCode)
-
-		// Reject non-successful responses.
-		return resp, responseErr
-	}
-
-	return resp, responseErr
-}
-
 // The return values are the status
-func (h *Handler) writeResponse(ctx context.Context, writer http.ResponseWriter, resp *http.Response, ttl int32, target string) (int, error) {
-	response := cehttp.NewMessageFromHttpResponse(resp)
+func (h *Handler) writeResponse(ctx context.Context, writer http.ResponseWriter, dispatchInfo *kncloudevents.DispatchInfo, ttl int32, target string) (int, error) {
+	response := cehttp.NewMessage(dispatchInfo.ResponseHeader, io.NopCloser(bytes.NewReader(dispatchInfo.ResponseBody)))
 	defer response.Finish(nil)
 
 	if response.ReadEncoding() == binding.EncodingUnknown {
@@ -375,10 +294,10 @@ func (h *Handler) writeResponse(ctx context.Context, writer http.ResponseWriter,
 			writer.WriteHeader(http.StatusBadGateway)
 			return http.StatusBadGateway, errors.New("received a non-empty response not recognized as CloudEvent. The response MUST be either empty or a valid CloudEvent")
 		}
-		proxyHeaders(resp.Header, writer) // Proxy original Response Headers for downstream use
+		writeHeaders(dispatchInfo.ResponseHeader, writer) // Proxy original Response Headers for downstream use
 		h.logger.Debug("Response doesn't contain a CloudEvent, replying with an empty response", zap.Any("target", target))
-		writer.WriteHeader(resp.StatusCode)
-		return resp.StatusCode, nil
+		writer.WriteHeader(dispatchInfo.ResponseCode)
+		return dispatchInfo.ResponseCode, nil
 	}
 
 	event, err := binding.ToEvent(ctx, response)
@@ -400,15 +319,15 @@ func (h *Handler) writeResponse(ctx context.Context, writer http.ResponseWriter,
 	defer eventResponse.Finish(nil)
 
 	// Proxy the original Response Headers for downstream use
-	proxyHeaders(resp.Header, writer)
+	writeHeaders(dispatchInfo.ResponseHeader, writer)
 
-	if err := cehttp.WriteResponseWriter(ctx, eventResponse, resp.StatusCode, writer); err != nil {
+	if err := cehttp.WriteResponseWriter(ctx, eventResponse, dispatchInfo.ResponseCode, writer); err != nil {
 		return http.StatusInternalServerError, fmt.Errorf("failed to write response event: %w", err)
 	}
 
 	h.logger.Debug("Replied with a CloudEvent response", zap.Any("target", target))
 
-	return resp.StatusCode, nil
+	return dispatchInfo.ResponseCode, nil
 }
 
 func (h *Handler) reportArrivalTime(event *event.Event, reportArgs *ReportArgs) {
@@ -523,19 +442,11 @@ func triggerFilterAttribute(filter *eventingv1.TriggerFilter, attributeName stri
 	return attributeValue
 }
 
-// proxyHeaders adds the specified HTTP Headers to the ResponseWriter.
-func proxyHeaders(httpHeader http.Header, writer http.ResponseWriter) {
+// writeHeaders adds the specified HTTP Headers to the ResponseWriter.
+func writeHeaders(httpHeader http.Header, writer http.ResponseWriter) {
 	for headerKey, headerValues := range httpHeader {
-		// *Only* proxy some headers because of security reasons
-		if isInProxyHeaderAllowList(headerKey) {
-			for _, headerValue := range headerValues {
-				writer.Header().Add(headerKey, headerValue)
-			}
+		for _, headerValue := range headerValues {
+			writer.Header().Add(headerKey, headerValue)
 		}
 	}
 }
-
-func isInProxyHeaderAllowList(headerKey string) bool {
-	_, exists := HeaderProxyAllowList[strings.ToLower(headerKey)]
-	return exists
-}
diff --git a/pkg/broker/filter/filter_handler_test.go b/pkg/broker/filter/filter_handler_test.go
@@ -508,7 +508,7 @@ func TestReceiver(t *testing.T) {
 				return
 			}
 			if err != nil || event == nil {
-				t.Fatalf("Expected response event, actually nil")
+				t.Fatalf("Expected response event, actually nil (err: %+v)", err)
 			}
 
 			// The TTL will be added again.

diff --git a/pkg/broker/filter/server_manager.go b/pkg/broker/filter/server_manager.go
@@ -36,8 +36,8 @@ func NewServerManager(ctx context.Context, logger *zap.Logger, cmw configmap.Wat
 		logger.Info("failed to get TLS server config", zap.Error(err))
 	}
 
-	httpReceiver := kncloudevents.NewHTTPMessageReceiver(httpPort)
-	httpsReceiver := kncloudevents.NewHTTPMessageReceiver(httpsPort, kncloudevents.WithTLSConfig(tlsConfig))
+	httpReceiver := kncloudevents.NewHTTPEventReceiver(httpPort)
+	httpsReceiver := kncloudevents.NewHTTPEventReceiver(httpsPort, kncloudevents.WithTLSConfig(tlsConfig))
 
 	return eventingtls.NewServerManager(ctx, httpReceiver, httpsReceiver, handler, cmw)
 }

diff --git a/pkg/broker/ingress/ingress_handler.go b/pkg/broker/ingress/ingress_handler.go
@@ -49,8 +49,6 @@ import (
 )
 
 const (
-	// noDuration signals that the dispatch step hasn't started
-	noDuration                       = -1
 	defaultMaxIdleConnections        = 1000
 	defaultMaxIdleConnectionsPerHost = 1000
 )
@@ -228,8 +226,8 @@ func (h *Handler) ServeHTTP(writer http.ResponseWriter, request *http.Request) {
 		eventType: event.Type(),
 	}
 
-	statusCode, dispatchTime := h.receive(ctx, request.Header, event, brokerNamespace, brokerName)
-	if dispatchTime > noDuration {
+	statusCode, dispatchTime := h.receive(ctx, utils.PassThroughHeaders(request.Header), event, brokerNamespace, brokerName)
+	if dispatchTime > kncloudevents.NoDuration {
 		_ = h.Reporter.ReportEventDispatchTime(reporterArgs, statusCode, dispatchTime)
 	}
 	_ = h.Reporter.ReportEventCount(reporterArgs, statusCode)
@@ -259,7 +257,6 @@ func toKReference(broker *eventingv1.Broker) *duckv1.KReference {
 }
 
 func (h *Handler) receive(ctx context.Context, headers http.Header, event *cloudevents.Event, brokerNamespace, brokerName string) (int, time.Duration) {
-
 	// Setting the extension as a string as the CloudEvents sdk does not support non-string extensions.
 	event.SetExtension(broker.EventArrivalTime, cloudevents.Timestamp{Time: time.Now()})
 	if h.Defaulter != nil {
@@ -269,51 +266,20 @@ func (h *Handler) receive(ctx context.Context, headers http.Header, event *cloud
 
 	if ttl, err := broker.GetTTL(event.Context); err != nil || ttl <= 0 {
 		h.Logger.Debug("dropping event based on TTL status.", zap.Int32("TTL", ttl), zap.String("event.id", event.ID()), zap.Error(err))
-		return http.StatusBadRequest, noDuration
+		return http.StatusBadRequest, kncloudevents.NoDuration
 	}
 
 	channelAddress, err := h.getChannelAddress(brokerName, brokerNamespace)
 	if err != nil {
 		h.Logger.Warn("Broker not found in the namespace", zap.Error(err))
-		return http.StatusBadRequest, noDuration
+		return http.StatusBadRequest, kncloudevents.NoDuration
 	}
 
-	return h.send(ctx, headers, event, *channelAddress)
-}
-
-func (h *Handler) send(ctx context.Context, headers http.Header, event *cloudevents.Event, target duckv1.Addressable) (int, time.Duration) {
-
-	request, err := kncloudevents.NewCloudEventRequest(ctx, target)
-	if err != nil {
-		h.Logger.Error("failed to create event request.", zap.Error(err))
-		return http.StatusInternalServerError, noDuration
-	}
-
-	message := binding.ToMessage(event)
-	defer message.Finish(nil)
-
-	additionalHeaders := utils.PassThroughHeaders(headers)
-	err = kncloudevents.WriteRequestWithAdditionalHeaders(ctx, message, request, additionalHeaders)
-	if err != nil {
-		h.Logger.Error("failed to write request additionalHeaders.", zap.Error(err))
-		return http.StatusInternalServerError, noDuration
-	}
-
-	resp, dispatchTime, err := h.sendAndRecordDispatchTime(request)
-	if resp != nil {
-		defer resp.Body.Close()
-	}
+	dispatchInfo, err := kncloudevents.SendEvent(ctx, *event, *channelAddress, kncloudevents.WithHeader(headers))
 	if err != nil {
 		h.Logger.Error("failed to dispatch event", zap.Error(err))
-		return http.StatusInternalServerError, dispatchTime
+		return http.StatusInternalServerError, kncloudevents.NoDuration
 	}
 
-	return resp.StatusCode, dispatchTime
-}
-
-func (h *Handler) sendAndRecordDispatchTime(request *kncloudevents.CloudEventRequest) (*http.Response, time.Duration, error) {
-	start := time.Now()
-	resp, err := request.Send()
-	dispatchTime := time.Since(start)
-	return resp, dispatchTime, err
+	return dispatchInfo.ResponseCode, dispatchInfo.Duration
 }
diff --git a/pkg/broker/ingress/server_manager.go b/pkg/broker/ingress/server_manager.go
@@ -36,8 +36,8 @@ func NewServerManager(ctx context.Context, logger *zap.Logger, cmw configmap.Wat
 		logger.Info("failed to get TLS server config", zap.Error(err))
 	}
 
-	httpReceiver := kncloudevents.NewHTTPMessageReceiver(httpPort)
-	httpsReceiver := kncloudevents.NewHTTPMessageReceiver(httpsPort, kncloudevents.WithTLSConfig(tlsConfig))
+	httpReceiver := kncloudevents.NewHTTPEventReceiver(httpPort)
+	httpsReceiver := kncloudevents.NewHTTPEventReceiver(httpsPort, kncloudevents.WithTLSConfig(tlsConfig))
 
 	return eventingtls.NewServerManager(ctx, httpReceiver, httpsReceiver, handler, cmw)
 }