forked from metalbear-co/mirrord
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Improve retry for port-forward variant of mirrord agent connection (m…
…etalbear-co#2761) * Simple port-forward retry * This? * Ops * Update * Fix External proxy trace logs * Changelog * Errors * Ops * Simpler approach * Docs
- Loading branch information
1 parent
356e727
commit e713731
Showing
6 changed files
with
236 additions
and
27 deletions.
There are no files selected for viewing
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
Add a retry for port-forward agent connection if error was recived via error channel after websocket was established. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,220 @@ | ||
use std::{ | ||
future::Future, | ||
pin::Pin, | ||
task::{Context, Poll}, | ||
time::Duration, | ||
}; | ||
|
||
use k8s_openapi::api::core::v1::Pod; | ||
use kube::{Api, Client}; | ||
use pin_project_lite::pin_project; | ||
use tokio::io::{AsyncRead, AsyncWrite, AsyncWriteExt}; | ||
use tokio_retry::{ | ||
strategy::{jitter, ExponentialBackoff}, | ||
Retry, | ||
}; | ||
|
||
use crate::{ | ||
api::kubernetes::{get_k8s_resource_api, AgentKubernetesConnectInfo, UnpinStream}, | ||
error::{KubeApiError, Result}, | ||
}; | ||
|
||
pin_project! { | ||
/// A wrapper for [`AsyncRead`] & [`AsyncWrite`] that dosn't call shutdown from [`AsyncWrite`] api | ||
/// but it is done manually with `manual_shutdown` | ||
struct ManualShutdown<S> { | ||
#[pin] | ||
inner: S, | ||
} | ||
} | ||
|
||
impl<S> ManualShutdown<S> { | ||
fn new(inner: S) -> Self { | ||
ManualShutdown { inner } | ||
} | ||
} | ||
|
||
impl<S> ManualShutdown<S> | ||
where | ||
S: AsyncWrite + Unpin, | ||
{ | ||
async fn manual_shutdown(&mut self) -> Result<(), std::io::Error> { | ||
self.inner.shutdown().await | ||
} | ||
} | ||
|
||
impl<S> AsyncRead for ManualShutdown<S> | ||
where | ||
S: AsyncRead, | ||
{ | ||
fn poll_read( | ||
self: Pin<&mut Self>, | ||
cx: &mut Context<'_>, | ||
buf: &mut tokio::io::ReadBuf<'_>, | ||
) -> Poll<Result<(), std::io::Error>> { | ||
self.project().inner.poll_read(cx, buf) | ||
} | ||
} | ||
|
||
impl<S> AsyncWrite for ManualShutdown<S> | ||
where | ||
S: AsyncWrite, | ||
{ | ||
fn poll_write( | ||
self: Pin<&mut Self>, | ||
cx: &mut Context<'_>, | ||
buf: &[u8], | ||
) -> Poll<Result<usize, std::io::Error>> { | ||
self.project().inner.poll_write(cx, buf) | ||
} | ||
|
||
fn poll_flush(self: Pin<&mut Self>, cx: &mut Context<'_>) -> Poll<Result<(), std::io::Error>> { | ||
self.project().inner.poll_flush(cx) | ||
} | ||
|
||
/// Does nothing, call `manual_shutdown` for actuall inner shutdown call | ||
fn poll_shutdown( | ||
self: Pin<&mut Self>, | ||
_: &mut Context<'_>, | ||
) -> Poll<Result<(), std::io::Error>> { | ||
Poll::Ready(Ok(())) | ||
} | ||
} | ||
|
||
type RetryStrategy = dyn Iterator<Item = Duration> + Send; | ||
|
||
async fn create_portforward_streams( | ||
pod_api: &Api<Pod>, | ||
connect_info: &AgentKubernetesConnectInfo, | ||
retry_strategy: &mut RetryStrategy, | ||
) -> Result<( | ||
Box<dyn UnpinStream>, | ||
Box<dyn Future<Output = Option<String>> + Unpin + Send>, | ||
)> { | ||
let ports = &[connect_info.agent_port]; | ||
let mut port_forwarder = Retry::spawn(retry_strategy, || { | ||
tracing::trace!("port-forward to pod {:?}", &connect_info); | ||
pod_api.portforward(&connect_info.pod_name, ports) | ||
}) | ||
.await?; | ||
|
||
let stream = Box::new( | ||
port_forwarder | ||
.take_stream(connect_info.agent_port) | ||
.ok_or(KubeApiError::PortForwardFailed)?, | ||
); | ||
|
||
let error_future = Box::new( | ||
port_forwarder | ||
.take_error(connect_info.agent_port) | ||
.ok_or(KubeApiError::PortForwardFailed)?, | ||
); | ||
|
||
Ok((stream, error_future)) | ||
} | ||
|
||
pub struct SinglePortForwarder { | ||
connect_info: AgentKubernetesConnectInfo, | ||
|
||
retry_strategy: Box<RetryStrategy>, | ||
|
||
pod_api: Api<Pod>, | ||
|
||
sink: ManualShutdown<Box<dyn UnpinStream>>, | ||
|
||
stream: Box<dyn UnpinStream>, | ||
|
||
error_future: Box<dyn Future<Output = Option<String>> + Unpin + Send>, | ||
} | ||
|
||
impl SinglePortForwarder { | ||
pub async fn connect( | ||
client: &Client, | ||
connect_info: AgentKubernetesConnectInfo, | ||
sink: Box<dyn UnpinStream>, | ||
) -> Result<Self> { | ||
let mut retry_strategy = Box::new(ExponentialBackoff::from_millis(10).map(jitter).take(5)); | ||
|
||
let pod_api: Api<Pod> = get_k8s_resource_api(client, connect_info.namespace.as_deref()); | ||
|
||
let (stream, error_future) = | ||
create_portforward_streams(&pod_api, &connect_info, &mut retry_strategy).await?; | ||
|
||
let sink = ManualShutdown::new(sink); | ||
|
||
Ok(SinglePortForwarder { | ||
connect_info, | ||
retry_strategy, | ||
pod_api, | ||
sink, | ||
stream, | ||
error_future, | ||
}) | ||
} | ||
|
||
pub async fn into_retry_future(self) { | ||
let SinglePortForwarder { | ||
mut error_future, | ||
mut stream, | ||
mut sink, | ||
retry_strategy, | ||
connect_info, | ||
pod_api, | ||
} = self; | ||
|
||
let mut retry_strategy = retry_strategy.peekable(); | ||
|
||
loop { | ||
tokio::select! { | ||
error = error_future.as_mut() => { | ||
|
||
if retry_strategy.peek().is_none() || error.is_none() { | ||
tracing::warn!(?connect_info, "fininsed retry strategy closing connection"); | ||
|
||
break; | ||
} | ||
|
||
if let Some(error) = error { | ||
tracing::warn!(?connect_info, %error, "error while performing port-forward, retrying"); | ||
} | ||
|
||
match create_portforward_streams(&pod_api, &connect_info, &mut retry_strategy).await { | ||
Ok((next_stream, next_error_future)) => { | ||
let _ = stream.shutdown().await; | ||
|
||
stream = next_stream; | ||
error_future = next_error_future; | ||
|
||
tracing::trace!(?connect_info, "retry connect successful"); | ||
} | ||
Err(error) => { | ||
tracing::error!(?connect_info, %error, "retry connect failed"); | ||
|
||
break; | ||
} | ||
} | ||
} | ||
copy_result = tokio::io::copy_bidirectional(&mut stream, &mut sink) => { | ||
if let Err(error) = copy_result { | ||
tracing::error!(?connect_info, %error, "unable to copy_bidirectional agent stream to local sink"); | ||
|
||
break; | ||
} | ||
} | ||
} | ||
} | ||
|
||
let _ = sink.manual_shutdown().await; | ||
} | ||
} | ||
|
||
pub async fn retry_portforward( | ||
client: &Client, | ||
connect_info: AgentKubernetesConnectInfo, | ||
) -> Result<(Box<dyn UnpinStream>, SinglePortForwarder)> { | ||
let (lhs, rhs) = tokio::io::duplex(4096); | ||
|
||
let port_forwarder = SinglePortForwarder::connect(client, connect_info, Box::new(rhs)).await?; | ||
|
||
Ok((Box::new(lhs), port_forwarder)) | ||
} |