As per the htsget spec implement the variants endpoint:

GET /variants/<id>

This entails understanding the current BAM (/reads) structure and following suit with how the code is currently structured. In particular, your implementation would have to be living in:

 htsget-mvp/htsget-search/src/htsget/bcf.rs

For information on how a bcf file looks inside (most importantly, its uncompressed counterpart, vcf), please refer to the appropriate PDF under hts-specs. That being said, Noodles has a fairly clean and straightforward module that describes that format idiomatically in Rust.

EDIT: Since the bcf crate for Noodles is currently in the works on the bcf branch, it'd be reasonable to implement vcf.gz business logic instead, plus this format is more commonly found in the wild than bcf, actually.

We should consider caching expensive computations, or functions that download lots of data. For example, we could cache s3 get object requests, or computations involving searching through entire index files. This could be done using Rust's cached crate, and may improve performance on successive queries with similar parameters.

A feature of htsget-rs is using GZI, which allows fine-grained byte range responses, without reading the underlying file. Its use should be documented, and it should be recommended as a supplementary index to the regular index files.

We should:

• check the format (cargo fmt)
• run static analysis with clipper (cargo clipper)
• run the tests (cargo test)

Possible starting example: https://github.com/chris-zen/kiro-synth/blob/master/.github/workflows/build.yaml

This is required to complete the serverless story after implementing the S3 storage backend. Using the lambda-rust-runtime: https://github.com/awslabs/aws-lambda-rust-runtime/

Relevant high level read about it:

https://www.ga4gh.org/news/crypt4gh-a-secure-method-for-sharing-human-genetic-data/

And the actual spec for this enhancement:

https://samtools.github.io/hts-specs/crypt4gh.pdf

Worth paying close attention to aspect A.3 Other Considerations since it directly affects how htsget should behave with this encryption scheme.

Some useful repos:

https://github.com/elixir-oslo/crypt4gh
https://github.com/EGA-archive/crypt4gh
https://github.com/neicnordic/LocalEGA-cryptor

/cc @viklund

• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/htsget/mod.rs#L40
• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/htsget/mod.rs#L91
• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/htsget/mod.rs#L156
• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/htsget/mod.rs#L187
• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/htsget/mod.rs#L220

According to the htsget spec:

This service info endpoint can be modeled in:

https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/htsget/mod.rs

As part of the whole htsget request/response structs.

We should really fix this issue in order to not download excessive bytes for the get_content() method. Potentially have those changes more upstream so that all storage backends can benefit from the improvement:

Otherwise the side effects are unnecessary egress charges for cloud and prohibitively slow requests/responses.

After this noodles fix the tests are failing for BAM. Maybe the tests are the ones at fault here, I will try to check if the new results are okay or not.

When re-running local benchmarks, the following error pops up:

docker: Error response from daemon: driver failed programming external connectivity on endpoint funny_shamir (cd4f2c17d628267d5e84b4b5f05ee7dbe3edddc4c049b43b7908490de6c3d165): Bind for 0.0.0.0:8082 failed: port is already allocated.

Perhaps use https://github.com/softprops/shiplift if killall-ing or docker rm containers is problematic.

Some parts of the code have errors that are vague, or lose information when wrapping the original error. For example, this error mapping, doesn't record why a Header could not be parsed. This should be improved so that information on why errors occur is properly returned to the user.

Take this repository:

https://github.com/umccr/s3-rust-noodles-bam

And:

1. Set it up, deploy, run as-is.
2. Add a sub-crate hooks to the same API endpoints as the HTTP one.
3. Benchmark.

After merging #56 , the errors below appeared. The main function only uses specific methods/objects relevant to it being async or blocking, so cargo build without flags yields the following:

warning: unused imports: `get`, `post`, `reads_service_info`, `variants_service_info`
 --> htsget-http-actix/src/main.rs:4:33
  |
4 | use crate::handlers::blocking::{get, post, reads_service_info, variants_service_info};
  |                                 ^^^  ^^^^  ^^^^^^^^^^^^^^^^^^  ^^^^^^^^^^^^^^^^^^^^^
  |
  = note: `#[warn(unused_imports)]` on by default

warning: function is never used: `reads`
  --> htsget-http-actix/src/handlers/blocking/get.rs:16:14
   |
16 | pub async fn reads<H: HtsGet>(
   |              ^^^^^
   |
   = note: `#[warn(dead_code)]` on by default

warning: function is never used: `variants`
  --> htsget-http-actix/src/handlers/blocking/get.rs:31:14
   |
31 | pub async fn variants<H: HtsGet>(
   |              ^^^^^^^^

warning: function is never used: `reads`
  --> htsget-http-actix/src/handlers/blocking/post.rs:14:14
   |
14 | pub async fn reads<H: HtsGet>(
   |              ^^^^^

warning: function is never used: `variants`
  --> htsget-http-actix/src/handlers/blocking/post.rs:28:14
   |
28 | pub async fn variants<H: HtsGet>(
   |              ^^^^^^^^

warning: function is never used: `get_service_info_json`
  --> htsget-http-actix/src/handlers/blocking/mod.rs:15:4
   |
15 | fn get_service_info_json<H: HtsGet>(app_state: &AppState<H>, endpoint: Endpoint) -> impl Responder {
   |    ^^^^^^^^^^^^^^^^^^^^^

warning: function is never used: `reads_service_info`
  --> htsget-http-actix/src/handlers/blocking/mod.rs:23:14
   |
23 | pub async fn reads_service_info<H: HtsGet>(app_state: Data<AppState<H>>) -> impl Responder {
   |              ^^^^^^^^^^^^^^^^^^

warning: function is never used: `variants_service_info`
  --> htsget-http-actix/src/handlers/blocking/mod.rs:28:14
   |
28 | pub async fn variants_service_info<H: HtsGet>(app_state: Data<AppState<H>>) -> impl Responder {
   |              ^^^^^^^^^^^^^^^^^^^^^

warning: type alias is never used: `HtsGetStorage`
  --> htsget-http-actix/src/main.rs:45:1
   |
45 | type HtsGetStorage = HtsGetFromStorage<LocalStorage>;
   | ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

warning: field is never read: `htsget`
  --> htsget-http-actix/src/main.rs:54:3
   |
54 |   htsget: H,
   |   ^^^^^^^^^

warning: field is never read: `config`
  --> htsget-http-actix/src/main.rs:55:3
   |
55 |   config: Config,
   |   ^^^^^^^^^^^^^^

warning: 11 warnings emitted

1. Fix caching mechanism on GHA, it currently takes too long and sometimes even times out: https://ectobit.com/blog/speed-up-github-actions-rust-pipelines/
2. Implement continuous benchmarking: https://github.com/benchmark-action/github-action-benchmark

Revisit noodles newest changes on noodles-htsget crate and refactor our htsget-search accordingly: https://github.com/zaeleus/noodles/commits/master/noodles-htsget

Should be analogous to the BAM search backend, with its own format/API particularities.

Context:

• A low prior change request: To add direct CORS support for built-in servers for standalone run

Use Case:

• Local dev run with cargo run -p htsget-http-actix to use htsget-rs as backend in Pipeline development and/or Portal integration with IGV.js

Workaround:

• Use Nginx/Haproxy to handle CORS then reverse proxy to htsget-rs servers

Need Changes:

I guess, this should be quick -- 2 parts in there:

• actix_cors crate for actix-web for Ticket server
• activate tower_http::cors feature in tower/axum for built-in storage streaming server

When a query is sent to htsget via, for instance, GET /reads/<id>, the spec says that id can be any of those things:

The spec is intentionally loose in this regard since different organizations might have differing requirements regarding how this endpoints and internal (organizational) structure they have in place.

A "resolver" interface should allow for those organizations to easily "plug and play" htsget into their systems more easily and/or filter what's a legal ID or not, perhaps via regexps like the reference implementation does.

Right now there are two ways of representing a Query in which the client didn't specify the headers class. It can be done using class: None or class: Class::Body. This duplicity could be avoided by having only Class in the Query struct, unless there is a specific reason not to.

Also note that the htsget specification only accepts the headers value in the class parameter.

Since Noodles finished up its support relatively recently, its up for grabs:

zaeleus/noodles#13

lower priority than the other formats and tasks though, since it's not used as much as .vcf.gz, but it would be great to have anyway for completeness and in-spec.

This task consists on implementing the specifics for the generic "storage" module, so this task will begin by understanding the contents on:

htsget-mvp/htsget-search/src/storage/local.rs

And then implementing the corresponding AWS S3 module:

htsget-mvp/htsget-search/src/storage/aws_s3.rs 

Please note that for now we are focusing on AWS's implementation of S3, but as you might be aware of, there are other S3 implementations such as Minio which we will not focus on for this task.

For instance, this implementation will begin by defining the bucket and key concepts in a structure that are relevant to S3:

/// Implementation for the [Storage] trait using AWS S3
#[derive(Debug)]
pub struct S3Storage {
  bucket: String,
  key: String,
}

For information on how S3 works, please refer to the official AWS S3 documentation.

Not to be confused with AWS S3 "internal" storage classes, namely: DEEP ARCHIVE, ARCHIVE, STANDARD, IA, etc...

VirtualPosition's encode the start of a BGZF block in it's high bits (known also as the compressed part or the coffset). When getting results from a BAI query with noodles, the ending VirtualPosition's compressed value is pointing to the beginning of a block that might still include reads that need to be returned. If we want to translate that ending VirtualPosition into a byte offset in the file, we need to know where does that block finishes, but that's not something that the BAI index provides out of the box.

Our current solution is dummy and it just adds the maximum block size to the compressed part for the ending intervals to make sure that we don't loose any reads (at the expense of possibly adding many reads that don't belong to the sequence range that was queried)

A better alternative would be to construct a HashMap<u64, u64> from the BAI that would map the block starting offsets to the beginning of the closer contiguous block that we can infer from the BAI index. We could use that map to know the corresponding end for every compressed offset that we get for an end interval. In case that we don't find it in the map, we could fall back to the current strategy of adding the maximum block size.

To get that information from the BAI we can do something like:

  let index = bai::read(path.as_ref().with_extension("bam.bai"))?;
  
  let mut ref_seq_intervals: Vec<HashMap<u64, u64>> = Vec::with_capacity(index.reference_sequences().len());

  for (idx, idx_ref_seq) in index.reference_sequences().iter().enumerate() {
    if let Some(metadata) = idx_ref_seq.metadata() {
      let blocks: HashSet<u64> = idx_ref_seq
        .bins()
        .iter()
        .flat_map(|bin| bin.chunks().iter())
        .flat_map(|chunk| vec![chunk.start(), chunk.end()])
        .map(|vpos| vpos.compressed())
        .collect();
      let mut blocks: Vec<u64> = blocks.into_iter().collect();
      blocks.sort_unstable();

      let intervals: HashMap<u64, u64> = blocks
        .iter()
        .take(blocks.len() - 1)
        .zip(blocks.iter().skip(1))
        .map(|(start, end)| (*start, *end))
        .collect();

      ref_seq_intervals.push(intervals);
    }
  }

Version: 75aed47

Error responses are missing the htsget container for the error object (see Htsget retrieval API spec v1.3.0 § Errors).

Actual

GET /reads/dne HTTP/1.1

{
    "error": "InvalidInput",
    "message": "Wrong key derived from ID: dne.bam"
}

Expected

{
    "htsget": {
        "error": "InvalidInput",
        "message": "Wrong key derived from ID: dne.bam"
    }
}

Those minor couple of defects are related to cargo-lambda/cargo-lambda#153.

$ cargo test
(...)
running 6 tests
test test_parameterized_get ... FAILED
test test_get ... FAILED
test test_parameterized_post_class_header ... FAILED
test test_service_info ... FAILED
test test_post ... FAILED
test test_parameterized_post ... FAILED

failures:

---- test_parameterized_get stdout ----
thread 'test_parameterized_get' panicked at 'Failed to invoke request.', htsget-http-lambda/tests/integration_tests.rs:55:3
note: run with `RUST_BACKTRACE=1` environment variable to display a backtrace

---- test_get stdout ----
thread 'test_get' panicked at 'Failed to invoke request.', htsget-http-lambda/tests/integration_tests.rs:55:3

---- test_parameterized_post_class_header stdout ----
thread 'test_parameterized_post_class_header' panicked at 'Failed to invoke request.', htsget-http-lambda/tests/integration_tests.rs:55:3

---- test_service_info stdout ----
thread 'test_service_info' panicked at 'Failed to invoke request.', htsget-http-lambda/tests/integration_tests.rs:55:3

---- test_post stdout ----
thread 'test_post' panicked at 'Failed to invoke request.', htsget-http-lambda/tests/integration_tests.rs:55:3

---- test_parameterized_post stdout ----
thread 'test_parameterized_post' panicked at 'Failed to invoke request.', htsget-http-lambda/tests/integration_tests.rs:55:3


failures:
    test_get
    test_parameterized_get
    test_parameterized_post
    test_parameterized_post_class_header
    test_post
    test_service_info

test result: FAILED. 0 passed; 6 failed; 0 ignored; 0 measured; 0 filtered out; finished in 21.99s

error: test failed, to rerun pass '-p htsget-http-lambda --test integration_tests'

% cargo test --no-default-features
   Compiling htsget-http-lambda v0.1.0 (/Users/rvalls/dev/umccr/htsget-rs/htsget-http-lambda)
   Compiling htsget-http-actix v0.1.0 (/Users/rvalls/dev/umccr/htsget-rs/htsget-http-actix)
error[E0004]: non-exhaustive patterns: `AwsS3Storage` not covered
  --> htsget-http-actix/src/main.rs:20:9
   |
20 |   match config.storage_type {
   |         ^^^^^^^^^^^^^^^^^^^ pattern `AwsS3Storage` not covered
   |
  ::: /Users/rvalls/dev/umccr/htsget-rs/htsget-config/src/config.rs:68:3
   |
68 |   AwsS3Storage,
   |   ------------ not covered
   |
   = help: ensure that all possible cases are being handled, possibly by adding wildcards or more match arms
   = note: the matched value is of type `StorageType`

For more information about this error, try `rustc --explain E0004`.
error: could not compile `htsget-http-actix` due to previous error
warning: build failed, waiting for other jobs to finish...
error[E0004]: non-exhaustive patterns: `AwsS3Storage` not covered
  --> htsget-http-lambda/src/main.rs:16:9
   |
16 |   match config.storage_type {
   |         ^^^^^^^^^^^^^^^^^^^ pattern `AwsS3Storage` not covered
   |
  ::: /Users/rvalls/dev/umccr/htsget-rs/htsget-config/src/config.rs:68:3
   |
68 |   AwsS3Storage,
   |   ------------ not covered
   |
   = help: ensure that all possible cases are being handled, possibly by adding wildcards or more match arms
   = note: the matched value is of type `StorageType`

error: build failed

As mentioned on the original GSoC proposals, this project is not complete until we validate that is well performant :)

For this, I've been cooking this repo: https://github.com/umccr/aws-benchmarks

As an example, using AWS S3 client libraries as subjects to test both CPU and I/O throughput on... but the idea is to apply those benches over here.

This task depends on #45 being finished.

For the current MVP, having blocking operations is fine. But for real life we should convert those interfaces to use async/await.

I think that this is something we can leave for later when we have the basic parts of the search logic well figured out, and possibly more relevant before we start working on the HTTP layer.

#[async_trait(?Send)]
pub trait Storage {
  async fn get<K: AsRef<str>>(&self, key: K, options: GetOptions) -> Result<PathBuf>;
  async fn url<K: AsRef<str>>(&self, key: K, options: UrlOptions) -> Result<Url>;
}

#[async_trait(?Send)]
pub trait HtsGet {
  async fn search(&self, query: Query) -> Result<Response>;
}

Right now the implementation of LocalStorage always adds the Range header to the url. It shouldn't be adding the header unless it is necessary. For more context look at the discussion in this PR

So we can develop and test searches for variants

From README.md:

This implementation gets rid of the unsafe interfacing with the C-based htslib, which has had many vulnerabilities along with other problematic third party dependencies such as OpenSSL.

There are four real CVEs listed for HTSlib. The last non-trivial one of those was fixed two years and seven releases ago.

Your “many vulnerabilities” link is to a list of HTSlib PRs derived from OSS-Fuzz reports, many of which will likely have been short-lived problems in code on the develop branch that were never present in an HTSlib release. Moreover, would you prefer to use a C library that is not being constantly fuzz-tested and does not have such issues identified and fixed?

As the author of this README text has previously been informed, HTSlib itself does not directly use OpenSSL. Only its S3 support (in hfile_s3*.c) — which can be built separately as a plugin if desired, thus isolating the dependency — will use OpenSSL as one option for providing the cryptographic routines it needs. If you prefer an HTSlib built without that dependency at all, it is simple to configure your HTSlib build accordingly.

So this text serves no purpose for your users, is largely incorrect or misleading, and casts unwarranted aspersions at HTSlib and its authors — several of whom, incidentally, are involved with htsget.

This text does not reflect well on your project.

Currently the search functions don't seem to do anything with the Query tags and fields. We should implement tag and field filtering as it's an optional part of the htsget protocol.

When returning the sliced data, those two formats are not hitting the client with the right EOF termination:

BAM: 1f 8b 08 04 00 00 00 00 00 ff 06 00 42 43 02 00 1b 00 03 00 00 00 00 00 00 00 00 00
CRAM: 0f 00 00 00 ff ff ff ff 0f e0 45 4f 46 00 00 00 00 01 00 05 bd d9 4f 00 01 00 06 06 01 00 01 00 01 00 ee 63 01 4b

Which leads to samtools (and most probably other clients) to error out accordingly:

[W::bam_hdr_read] EOF marker is absent. The input is probably truncated
[E::bgzf_read_block] Invalid BGZF header at offset 4668
[E::bgzf_read] Read block operation failed with error 2 after 0 of 4 bytes
samtools view: error reading file "bam_slice.bam": No such process
samtools view: error closing "bam_slice.bam": -1

There are noodles methods that return this const EOF per format, use them.

Caveats:

1. Do not append EOF if request is header, only body.
2. Do not append EOF if request is whole file/object.

https://github.com/umccr/htsget-rs/runs/6725133792?check_suite_focus=true#step:11:294

It seems that criterion is trying to fish out some prior result to compare against?: https://github.com/umccr/htsget-rs/runs/6725133792?check_suite_focus=true#step:13:20

Could also be related with my recent await-ification of many of the tests. I'll investigate.

Future proofing warning worth fixing too: https://github.com/umccr/htsget-rs/runs/6725133792?check_suite_focus=true#step:11:139

Also need to investigate on whether to run the benchmarks with --release mode on as it's the production baseline we want to compare against.

Also when running the benchmarks locally, they don't seem to finish?:

cargo bench --bench search-benchmarks --bench request-benchmarks -- LIGHT --output-format bencher | tee output.txt

Several tests are failing right now. It seems some new noodles updates broke them, I'm investigating which commit it was.

See this TODO.

class and the other missing attributes attributes are well specified in the htsget spec.

Context:

• At the mo; htsget-rs support single bucket configuration as follows.

export HTSGET_S3_BUCKET=my-primary-data

Desirable:

• It would be good; if we can configure it to multiple buckets as data may sparsely located across multiple locations/buckets

Related:

• This may also related to Htsget REST API endpoint resource ID mapping; currently is with regex pattern .* matching all keys under a bucket
• Hence, in-turn, this request indirectly refer to consider include bucket as part of its REST endpoint resource ID mapping
• i.e.

s3://my-bucket1/subject/key/to/data1.bam
s3://my-bucket2/another/subject/key/to/data1.bam

Then, Htsget REST endpoint resource ID will become

https://htsget-rs.my.org/my-bucket1/subject/key/to/data1.bam
https://htsget-rs.my.org/my-bucket2/another/subject/key/to/data1.bam

(or without extension suffix is fine)
https://htsget-rs.my.org/my-bucket1/subject/key/to/data1
https://htsget-rs.my.org/my-bucket2/another/subject/key/to/data1

Or, with htsget URI scheme (on-going discussion #581 umccr/data-portal-client#88)

htsget://data.my.org/my-bucket1/subject/key/to/data1
htsget://data.my.org/my-bucket2/another/subject/key/to/data1

LocalStorage returns an incorrect url ticket, and exposes an absolute path on response urls.

For the BAM format, we need to know the size of the file to provide a close byte range for all the unplaced unmapped reads. The current alternative is to leave the end part open.

Possible names:

• head: which the HTTP verb you would use to get the size information (as well as other details like whether it exists or not) from S3
• stats: which is the metadata information you get for a file in unix
• size: more limited scope and focused on just getting the size.

We have two options for the result (where T will depend on the final semantics that we decide for this new method):

• Result<Option<T>>: Result encodes either a success or a failure, and the Option whether the file exists or not.
• Result<T>: Result encodes both success/failure and whether the file exists or not as one of the possible Error variants.

One possible example:

pub trait Storage {
  fn get<K: AsRef<str>>(&self, key: K, options: GetOptions) -> Result<PathBuf>;
  fn url<K: AsRef<str>>(&self, key: K, options: UrlOptions) -> Result<Url>;

  fn size<K: AsRef<str>>(&self, key: K) -> Result<usize>;
}

https://support-docs.illumina.com/SW/ICAv1/Content/SW/ICA/Data_Download.htm

JSON responses always contain the same class string, either only "body" or only "header". Requests that contain a body response label the header as "body" as well. For example, this test returns a "body" class for the first byte range, even though it represents a "header":

Ok(
    Response {
        format: Bam,
        urls: [
            Url {
                url: "http://127.0.0.1:8081/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=0-4667",
                        },
                    ),
                ),
                class: Body,
            },
            Url {
                url: "http://127.0.0.1:8081/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=256721-647345",
                        },
                    ),
                ),
                class: Body,
            },
            Url {
                url: "http://127.0.0.1:8081/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=824361-842100",
                        },
                    ),
                ),
                class: Body,
            },
            Url {
                url: "http://127.0.0.1:8081/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=977196-996014",
                        },
                    ),
                ),
                class: Body,
            },
            Url {
                url: "data:;base64,H4sIBAAAAAAA/wYAQkMCABsAAwAAAAAAAAAAAA==",
                headers: None,
                class: Body,
            },
        ],
    },
)

This does not line up with the example in the htsget protocol, which labels headers with the "header" class:

{
   "htsget" : {
      "format" : "BAM",
      "urls" : [
         {
            "url" : "data:application/vnd.ga4gh.bam;base64,QkFNAQ==",
            "class" : "header"
         },
         {
            "url" : "https://htsget.blocksrv.example/sample1234/header",
            "class" : "header"
         },
         {
            "url" : "https://htsget.blocksrv.example/sample1234/run1.bam",
            "headers" : {
               "Authorization" : "Bearer xxxx",
               "Range" : "bytes=65536-1003750"
             },
            "class" : "body"
         },
         {
            "url" : "https://htsget.blocksrv.example/sample1234/run1.bam",
            "headers" : {
               "Authorization" : "Bearer xxxx",
               "Range" : "bytes=2744831-9375732"
            },
            "class" : "body"
         }
      ]
   }
}

I'm not sure what the best class for ranges that contain both header and body bytes is. Maybe in this case it would be best to drop the class string, as it is optional anyway.

As with the Go reference implementation, there's a need for a separate crate in the workspace (htsget-http?) that serves requests, deals with JWT tokens, CORS, htsget tickets, etc...

• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/storage/mod.rs#L136
• https://github.com/chris-zen/htsget-mvp/blob/main/htsget-search/src/storage/mod.rs#L161

Context:

• To allow Storage streaming server tower/Axum server to have option to configure either HTTP or HTTPS

Use Case:

• HTTP is still desirable for local dev because XHR JavaScript client (like the one embedded in igv.js) will fail and block with local self-singed (local-trusted-ca) certs in browser

Prefer:

• Would be great; if it comes out-of-the-box with HTTP scheme. Then, configurable to HTTPS as required.

To test the searches which referenceName is *.

This is most probably a regression introduced in the latest changes perhaps? I do recall those working, in any case, it's a good opportunity to put those tests under CI and not just have them on the README.md... I'll determine the root cause and fix this for good ;)

% curl '127.0.0.1:8080/variants/data/vcf/sample1-bcbio-cancer'
curl: (52) Empty reply from server
% curl --header "Content-Type: application/json" -d '{}' '127.0.0.1:8080/variants/data/vcf/sample1-bcbio-cancer'
curl: (52) Empty reply from server
% curl '127.0.0.1:8080/variants/data/vcf/sample1-bcbio-cancer?format=VCF&class=header'
curl: (52) Empty reply from server
% curl --header "Content-Type: application/json" -d '{"format": "VCF", "regions": [{"referenceName": "chrM"}]}' '127.0.0.1:8080/variants/data/vcf/sample1-bcbio-cancer'
curl: (52) Empty reply from server
% curl 127.0.0.1:8080/variants/service-info
{
  "id": "",
  "name": "HtsGet service",
  "version": "",
  "organization": {
    "name": "Snake oil",
    "url": "https://en.wikipedia.org/wiki/Snake_oil"
  },
  "type": {
    "group": "org.ga4gh",
    "artifact": "htsget",
    "version": "1.3.0"
  },
  "htsget": {
    "datatype": "variants",
    "formats": [
      "VCF",
      "BCF"
    ],
    "fieldsParametersEffective": false,
    "TagsParametersEffective": false
  },
  "contactUrl": "",
  "documentationUrl": "https://github.com/umccr/htsget-rs/tree/main/htsget-http-actix",
  "createdAt": "",
  "UpdatedAt": "",
  "environment": "testing"
}

Meanwhile on the other "server" console:

% cargo run -p htsget-http-actix
    Finished dev [unoptimized + debuginfo] target(s) in 0.24s
     Running `target/debug/htsget-http-actix`
thread 'actix-rt:worker:0' panicked at 'there is no reactor running, must be called from the context of a Tokio 1.x runtime', /Users/rvalls/.cargo/registry/src/github.com-1ecc6299db9ec823/tokio-1.12.0/src/runtime/blocking/pool.rs:84:33
note: run with `RUST_BACKTRACE=1` environment variable to display a backtrace
thread 'actix-rt:worker:1' panicked at 'there is no reactor running, must be called from the context of a Tokio 1.x runtime', /Users/rvalls/dev/umccr/htsget-rs/htsget-http-core/src/async_http_core.rs:45:18
thread 'actix-rt:worker:2' panicked at 'there is no reactor running, must be called from the context of a Tokio 1.x runtime', /Users/rvalls/.cargo/registry/src/github.com-1ecc6299db9ec823/tokio-1.12.0/src/runtime/blocking/pool.rs:84:33
thread 'actix-rt:worker:3' panicked at 'there is no reactor running, must be called from the context of a Tokio 1.x runtime', /Users/rvalls/dev/umccr/htsget-rs/htsget-http-core/src/async_http_core.rs:45:18

/cc @CastilloDel

As mentioned in several occasions before, format "search" implementations have a lot of commonalities, leading to code duplication.

This can be abstracted and simplified greatly.

In some cases we could get overlapping byte ranges like:

    Response {
        format: Bam,
        urls: [
            Url {
                url: "file:///Users/chris/dev/personal/htsget/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=4668-1042732",
                        },
                    ),
                ),
                class: None,
            },
            Url {
                url: "file:///Users/chris/dev/personal/htsget/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=977196-2177677",
                        },
                    ),
                ),
                class: None,
            },
            Url {
                url: "file:///Users/chris/dev/personal/htsget/data/htsnexus_test_NA12878.bam",
                headers: Some(
                    Headers(
                        {
                            "Range": "bytes=2060795-",
                        },
                    ),
                ),
                class: None,
            },
        ],
    }

Those should not be File::open. We just found out because we were trying to implement streaming traits for the S3Storage backend

To implement the benchmarks, we need to remove the file:// scheme (which also isn't allowed by the htsget spec). See here. Last time I just changed it for http://localhost, but this time I was thinking maybe we should take a more permanent route? If I understand correctly, LocalStorage shouldn't be constrained to localhost.