Rooba
/
perkeep
mirror of https://github.com/perkeep/perkeep.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
perkeep/pkg/serverinit/serverinit.go

711 lines
20 KiB
Go
Raw Blame History

/*
Copyright 2011 Google Inc.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
// Package serverinit is responsible for mapping from a Camlistore
// configuration file and instantiating HTTP Handlers for all the
// necessary endpoints.
package serverinit
import (
"bytes"
"encoding/json"
"errors"
"expvar"
"fmt"
"io"
"log"
"net"
"net/http"
"net/http/pprof"
"os"
"regexp"
"runtime"
rpprof "runtime/pprof"
"strconv"
"strings"
"camlistore.org/pkg/auth"
"camlistore.org/pkg/blobserver"
"camlistore.org/pkg/blobserver/handlers"
"camlistore.org/pkg/httputil"
"camlistore.org/pkg/index"
"camlistore.org/pkg/jsonconfig"
"camlistore.org/pkg/server/app"
"camlistore.org/pkg/types/serverconfig"
)
const camliPrefix = "/camli/"
var ErrCamliPath = errors.New("Invalid Camlistore request path")
type handlerConfig struct {
prefix string // "/foo/"
htype string // "localdisk", etc
conf jsonconfig.Obj // never nil
internal bool // if true, not accessible over HTTP
settingUp, setupDone bool
}
type handlerLoader struct {
installer HandlerInstaller
baseURL string
config map[string]*handlerConfig // prefix -> config
handler map[string]interface{} // prefix -> http.Handler / func / blobserver.Storage
curPrefix string
closers []io.Closer
prefixStack []string
reindex bool
// optional context (for App Engine, the first request that
// started up the process). we may need this if setting up
// handlers involves doing datastore/memcache/blobstore
// lookups.
context *http.Request
}
// A HandlerInstaller is anything that can register an HTTP Handler at
// a prefix path. Both *http.ServeMux and camlistore.org/pkg/webserver.Server
// implement HandlerInstaller.
type HandlerInstaller interface {
Handle(path string, h http.Handler)
}
type storageAndConfig struct {
blobserver.Storage
config *blobserver.Config
}
// parseCamliPath looks for "/camli/" in the path and returns
// what follows it (the action).
func parseCamliPath(path string) (action string, err error) {
camIdx := strings.Index(path, camliPrefix)
if camIdx == -1 {
return "", ErrCamliPath
}
action = path[camIdx+len(camliPrefix):]
return
}
func unsupportedHandler(conn http.ResponseWriter, req *http.Request) {
httputil.BadRequestError(conn, "Unsupported camlistore path or method.")
}
func (s *storageAndConfig) Config() *blobserver.Config {
return s.config
}
// GetStorage returns the unwrapped blobserver.Storage interface value for
// callers to type-assert optional interface implementations on. (e.g. EnumeratorConfig)
func (s *storageAndConfig) GetStorage() blobserver.Storage {
return s.Storage
}
// action is the part following "/camli/" in the URL. It's either a
// string like "enumerate-blobs", "stat", "upload", or a blobref.
func camliHandlerUsingStorage(req *http.Request, action string, storage blobserver.StorageConfiger) (http.Handler, auth.Operation) {
var handler http.Handler
op := auth.OpAll
switch req.Method {
case "GET", "HEAD":
switch action {
case "enumerate-blobs":
handler = handlers.CreateEnumerateHandler(storage)
op = auth.OpGet
case "stat":
handler = handlers.CreateStatHandler(storage)
case "ws":
handler = nil // TODO: handlers.CreateSocketHandler(storage)
op = auth.OpDiscovery // rest of operation auth checks done in handler
default:
handler = handlers.CreateGetHandler(storage)
op = auth.OpGet
}
case "POST":
switch action {
case "stat":
handler = handlers.CreateStatHandler(storage)
op = auth.OpStat
case "upload":
handler = handlers.CreateBatchUploadHandler(storage)
op = auth.OpUpload
case "remove":
handler = handlers.CreateRemoveHandler(storage)
}
case "PUT":
handler = handlers.CreatePutUploadHandler(storage)
op = auth.OpUpload
}
if handler == nil {
handler = http.HandlerFunc(unsupportedHandler)
}
return handler, op
}
// where prefix is like "/" or "/s3/" for e.g. "/camli/" or "/s3/camli/*"
func makeCamliHandler(prefix, baseURL string, storage blobserver.Storage, hf blobserver.FindHandlerByTyper) http.Handler {
if !strings.HasSuffix(prefix, "/") {
panic("expected prefix to end in slash")
}
baseURL = strings.TrimRight(baseURL, "/")
canLongPoll := true
// TODO(bradfitz): set to false if this is App Engine, or provide some way to disable
storageConfig := &storageAndConfig{
storage,
&blobserver.Config{
Writable: true,
Readable: true,
Deletable: false,
URLBase: baseURL + prefix[:len(prefix)-1],
CanLongPoll: canLongPoll,
HandlerFinder: hf,
},
}
return http.HandlerFunc(func(conn http.ResponseWriter, req *http.Request) {
action, err := parseCamliPath(req.URL.Path[len(prefix)-1:])
if err != nil {
log.Printf("Invalid request for method %q, path %q",
req.Method, req.URL.Path)
unsupportedHandler(conn, req)
return
}
handler := auth.RequireAuth(camliHandlerUsingStorage(req, action, storageConfig))
handler.ServeHTTP(conn, req)
})
}
func (hl *handlerLoader) FindHandlerByType(htype string) (prefix string, handler interface{}, err error) {
nFound := 0
for pfx, config := range hl.config {
if config.htype == htype {
nFound++
prefix, handler = pfx, hl.handler[pfx]
}
}
if nFound == 0 {
return "", nil, blobserver.ErrHandlerTypeNotFound
}
if htype == "jsonsign" && nFound > 1 {
// TODO: do this for all handler types later? audit
// callers of FindHandlerByType and see if that's
// feasible. For now I'm only paranoid about jsonsign.
return "", nil, fmt.Errorf("%d handlers found of type %q; ambiguous", nFound, htype)
}
return
}
func (hl *handlerLoader) AllHandlers() (types map[string]string, handlers map[string]interface{}) {
types = make(map[string]string)
handlers = make(map[string]interface{})
for pfx, config := range hl.config {
types[pfx] = config.htype
handlers[pfx] = hl.handler[pfx]
}
return
}
func (hl *handlerLoader) setupAll() {
for prefix := range hl.config {
hl.setupHandler(prefix)
}
}
func (hl *handlerLoader) configType(prefix string) string {
if h, ok := hl.config[prefix]; ok {
return h.htype
}
return ""
}
func (hl *handlerLoader) getOrSetup(prefix string) interface{} {
hl.setupHandler(prefix)
return hl.handler[prefix]
}
func (hl *handlerLoader) MyPrefix() string {
return hl.curPrefix
}
func (hl *handlerLoader) BaseURL() string {
return hl.baseURL
}
func (hl *handlerLoader) GetStorage(prefix string) (blobserver.Storage, error) {
hl.setupHandler(prefix)
if s, ok := hl.handler[prefix].(blobserver.Storage); ok {
return s, nil
}
return nil, fmt.Errorf("bogus storage handler referenced as %q", prefix)
}
func (hl *handlerLoader) GetHandler(prefix string) (interface{}, error) {
hl.setupHandler(prefix)
if s, ok := hl.handler[prefix].(blobserver.Storage); ok {
return s, nil
}
if h, ok := hl.handler[prefix].(http.Handler); ok {
return h, nil
}
return nil, fmt.Errorf("bogus http or storage handler referenced as %q", prefix)
}
func (hl *handlerLoader) GetHandlerType(prefix string) string {
return hl.configType(prefix)
}
func exitFailure(pattern string, args ...interface{}) {
if !strings.HasSuffix(pattern, "\n") {
pattern = pattern + "\n"
}
panic(fmt.Sprintf(pattern, args...))
}
func (hl *handlerLoader) setupHandler(prefix string) {
h, ok := hl.config[prefix]
if !ok {
exitFailure("invalid reference to undefined handler %q", prefix)
}
if h.setupDone {
// Already setup by something else reference it and forcing it to be
// setup before the bottom loop got to it.
return
}
hl.prefixStack = append(hl.prefixStack, prefix)
if h.settingUp {
buf := make([]byte, 1024)
buf = buf[:runtime.Stack(buf, false)]
exitFailure("loop in configuration graph; %q tried to load itself indirectly: %q\nStack:\n%s",
prefix, hl.prefixStack, buf)
}
h.settingUp = true
defer func() {
// log.Printf("Configured handler %q", prefix)
h.setupDone = true
hl.prefixStack = hl.prefixStack[:len(hl.prefixStack)-1]
r := recover()
if r == nil {
if hl.handler[prefix] == nil {
panic(fmt.Sprintf("setupHandler for %q didn't install a handler", prefix))
}
} else {
panic(r)
}
}()
hl.curPrefix = prefix
if strings.HasPrefix(h.htype, "storage-") {
stype := strings.TrimPrefix(h.htype, "storage-")
// Assume a storage interface
pstorage, err := blobserver.CreateStorage(stype, hl, h.conf)
if err != nil {
exitFailure("error instantiating storage for prefix %q, type %q: %v",
h.prefix, stype, err)
}
if ix, ok := pstorage.(*index.Index); ok && hl.reindex {
log.Printf("Reindexing %s ...", h.prefix)
if err := ix.Reindex(); err != nil {
exitFailure("Error reindexing %s: %v", h.prefix, err)
}
}
hl.handler[h.prefix] = pstorage
if h.internal {
hl.installer.Handle(prefix, unauthorizedHandler{})
} else {
hl.installer.Handle(prefix+"camli/", makeCamliHandler(prefix, hl.baseURL, pstorage, hl))
}
if cl, ok := pstorage.(blobserver.ShutdownStorage); ok {
hl.closers = append(hl.closers, cl)
}
return
}
var hh http.Handler
if h.htype == "app" {
ap, err := app.NewHandler(h.conf, hl.baseURL+"/", prefix)
if err != nil {
exitFailure("error setting up app for prefix %q: %v", h.prefix, err)
}
hh = ap
auth.AddMode(ap.AuthMode())
if ap.ProgramName() == "publisher" {
if err := hl.initPublisherRootNode(ap); err != nil {
exitFailure("Error looking/setting up root node for publisher on %v: %v", h.prefix, err)
}
}
} else {
var err error
hh, err = blobserver.CreateHandler(h.htype, hl, h.conf)
if err != nil {
exitFailure("error instantiating handler for prefix %q, type %q: %v",
h.prefix, h.htype, err)
}
}
hl.handler[prefix] = hh
var wrappedHandler http.Handler
if h.internal {
wrappedHandler = unauthorizedHandler{}
} else {
wrappedHandler = &httputil.PrefixHandler{prefix, hh}
if handlerTypeWantsAuth(h.htype) {
wrappedHandler = auth.Handler{wrappedHandler}
}
}
hl.installer.Handle(prefix, wrappedHandler)
}
type unauthorizedHandler struct{}
func (unauthorizedHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
http.Error(w, "Unauthorized", http.StatusUnauthorized)
}
func handlerTypeWantsAuth(handlerType string) bool {
// TODO(bradfitz): ask the handler instead? This is a bit of a
// weird spot for this policy maybe?
switch handlerType {
case "ui", "search", "jsonsign", "sync", "status":
return true
}
return false
}
// A Config is the wrapper around a Camlistore JSON configuration file.
// Files on disk can be in either high-level or low-level format, but
// the Load function always returns the Config in its low-level format.
type Config struct {
jsonconfig.Obj
UIPath string // Not valid until after InstallHandlers
// apps is the list of server apps configured during InstallHandlers,
// and that should be started after camlistored has started serving.
apps []*app.Handler
}
// detectConfigChange returns an informative error if conf contains obsolete keys.
func detectConfigChange(conf jsonconfig.Obj) error {
oldHTTPSKey, oldHTTPSCert := conf.OptionalString("HTTPSKeyFile", ""), conf.OptionalString("HTTPSCertFile", "")
if oldHTTPSKey != "" || oldHTTPSCert != "" {
return fmt.Errorf("Config keys %q and %q have respectively been renamed to %q and %q, please fix your server config.",
"HTTPSKeyFile", "HTTPSCertFile", "httpsKey", "httpsCert")
}
return nil
}
// LoadFile returns a low-level "handler config" from the provided filename.
// If the config file doesn't contain a top-level JSON key of "handlerConfig"
// with boolean value true, the configuration is assumed to be a high-level
// "user config" file, and transformed into a low-level config.
func LoadFile(filename string) (*Config, error) {
return load(filename, nil)
}
type jsonFileImpl struct {
*bytes.Reader
name string
}
func (jsonFileImpl) Close() error { return nil }
func (f jsonFileImpl) Name() string { return f.name }
// Load returns a low-level "handler config" from the provided config.
// If the config doesn't contain a top-level JSON key of "handlerConfig"
// with boolean value true, the configuration is assumed to be a high-level
// "user config" file, and transformed into a low-level config.
func Load(config []byte) (*Config, error) {
return load("", func(filename string) (jsonconfig.File, error) {
if filename != "" {
return nil, errors.New("JSON files with includes not supported with jsonconfig.Load")
}
return jsonFileImpl{bytes.NewReader(config), "config file"}, nil
})
}
func load(filename string, opener func(filename string) (jsonconfig.File, error)) (*Config, error) {
c := &jsonconfig.ConfigParser{Open: opener}
m, err := c.ReadFile(filename)
if err != nil {
return nil, err
}
obj := jsonconfig.Obj(m)
conf := &Config{
Obj: obj,
}
if lowLevel := obj.OptionalBool("handlerConfig", false); lowLevel {
return conf, nil
}
// Check whether the high-level config uses the old names.
if err := detectConfigChange(obj); err != nil {
return nil, err
}
// Because the original high-level config might have expanded
// through the use of functions, we re-encode the map back to
// JSON here so we can unmarshal it into the hiLevelConf
// struct later.
highExpandedJSON, err := json.Marshal(m)
if err != nil {
return nil, fmt.Errorf("Can't re-marshal high-level JSON config: %v", err)
}
var hiLevelConf serverconfig.Config
if err := json.Unmarshal(highExpandedJSON, &hiLevelConf); err != nil {
return nil, fmt.Errorf("Could not unmarshal into a serverconfig.Config: %v", err)
}
conf, err = genLowLevelConfig(&hiLevelConf)
if err != nil {
return nil, fmt.Errorf(
"failed to transform user config file into internal handler configuration: %v",
err)
}
if v, _ := strconv.ParseBool(os.Getenv("CAMLI_DEBUG_CONFIG")); v {
jsconf, _ := json.MarshalIndent(conf.Obj, "", " ")
log.Printf("From high-level config, generated low-level config: %s", jsconf)
}
return conf, nil
}
func (config *Config) checkValidAuth() error {
authConfig := config.OptionalString("auth", "")
mode, err := auth.FromConfig(authConfig)
if err == nil {
auth.SetMode(mode)
}
return err
}
// InstallHandlers creates and registers all the HTTP Handlers needed by config
// into the provided HandlerInstaller.
//
// baseURL is required and specifies the root of this webserver, without trailing slash.
// context may be nil (used and required by App Engine only)
//
// The returned shutdown value can be used to cleanly shut down the
// handlers.
func (config *Config) InstallHandlers(hi HandlerInstaller, baseURL string, reindex bool, context *http.Request) (shutdown io.Closer, err error) {
defer func() {
if e := recover(); e != nil {
log.Printf("Caught panic installer handlers: %v", e)
err = fmt.Errorf("Caught panic: %v", e)
}
}()
if err := config.checkValidAuth(); err != nil {
return nil, fmt.Errorf("error while configuring auth: %v", err)
}
prefixes := config.RequiredObject("prefixes")
if err := config.Validate(); err != nil {
return nil, fmt.Errorf("configuration error in root object's keys: %v", err)
}
if v := os.Getenv("CAMLI_PPROF_START"); v != "" {
cpuf := mustCreate(v + ".cpu")
defer cpuf.Close()
memf := mustCreate(v + ".mem")
defer memf.Close()
rpprof.StartCPUProfile(cpuf)
defer rpprof.StopCPUProfile()
defer rpprof.WriteHeapProfile(memf)
}
hl := &handlerLoader{
installer: hi,
baseURL: baseURL,
config: make(map[string]*handlerConfig),
handler: make(map[string]interface{}),
context: context,
reindex: reindex,
}
for prefix, vei := range prefixes {
if !strings.HasPrefix(prefix, "/") {
exitFailure("prefix %q doesn't start with /", prefix)
}
if !strings.HasSuffix(prefix, "/") {
exitFailure("prefix %q doesn't end with /", prefix)
}
pmap, ok := vei.(map[string]interface{})
if !ok {
exitFailure("prefix %q value is a %T, not an object", prefix, vei)
}
pconf := jsonconfig.Obj(pmap)
enabled := pconf.OptionalBool("enabled", true)
if !enabled {
continue
}
handlerType := pconf.RequiredString("handler")
handlerArgs := pconf.OptionalObject("handlerArgs")
internal := pconf.OptionalBool("internal", false)
if err := pconf.Validate(); err != nil {
exitFailure("configuration error in prefix %s: %v", prefix, err)
}
h := &handlerConfig{
prefix: prefix,
htype: handlerType,
conf: handlerArgs,
internal: internal,
}
hl.config[prefix] = h
if handlerType == "ui" {
config.UIPath = prefix
}
}
hl.setupAll()
// Now that everything is setup, run any handlers' InitHandler
// methods.
// And register apps that will be started later.
for pfx, handler := range hl.handler {
if starter, ok := handler.(*app.Handler); ok {
config.apps = append(config.apps, starter)
}
if in, ok := handler.(blobserver.HandlerIniter); ok {
if err := in.InitHandler(hl); err != nil {
return nil, fmt.Errorf("Error calling InitHandler on %s: %v", pfx, err)
}
}
}
if v, _ := strconv.ParseBool(os.Getenv("CAMLI_HTTP_EXPVAR")); v {
hi.Handle("/debug/vars", expvarHandler{})
}
if v, _ := strconv.ParseBool(os.Getenv("CAMLI_HTTP_PPROF")); v {
hi.Handle("/debug/pprof/", profileHandler{})
}
hi.Handle("/debug/config", auth.RequireAuth(configHandler{config}, auth.OpAll))
hi.Handle("/debug/logs", auth.RequireAuth(http.HandlerFunc(logsHandler), auth.OpAll))
return multiCloser(hl.closers), nil
}
// StartApps starts all the server applications that were configured
// during InstallHandlers. It should only be called after camlistored
// has started serving, since these apps might request some configuration
// from Camlistore to finish initializing.
func (config *Config) StartApps() error {
for _, ap := range config.apps {
if err := ap.Start(); err != nil {
return fmt.Errorf("error starting app %v: %v", ap.ProgramName(), err)
}
}
return nil
}
// AppURL returns a map of app name to app base URL for all the configured
// server apps.
func (config *Config) AppURL() map[string]string {
appURL := make(map[string]string, len(config.apps))
for _, ap := range config.apps {
appURL[ap.ProgramName()] = ap.BackendURL()
}
return appURL
}
func mustCreate(path string) *os.File {
f, err := os.Create(path)
if err != nil {
log.Fatalf("Failed to create %s: %v", path, err)
}
return f
}
type multiCloser []io.Closer
func (s multiCloser) Close() (err error) {
for _, cl := range s {
if err1 := cl.Close(); err == nil && err1 != nil {
err = err1
}
}
return
}
// expvarHandler publishes expvar stats.
type expvarHandler struct{}
func (expvarHandler) ServeHTTP(w http.ResponseWriter, req *http.Request) {
w.Header().Set("Content-Type", "application/json; charset=utf-8")
fmt.Fprintf(w, "{\n")
first := true
expvar.Do(func(kv expvar.KeyValue) {
if !first {
fmt.Fprintf(w, ",\n")
}
first = false
fmt.Fprintf(w, "%q: %s", kv.Key, kv.Value)
})
fmt.Fprintf(w, "\n}\n")
}
type configHandler struct {
c *Config
}
var (
knownKeys = regexp.MustCompile(`(?ms)^\s+"_knownkeys": {.+?},?\n`)
sensitiveLine = regexp.MustCompile(`(?m)^\s+\"(auth|aws_secret_access_key|password)\": "[^\"]+".*\n`)
)
func (h configHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
w.Header().Set("Content-Type", "text/plain; charset=utf-8")
b, _ := json.MarshalIndent(h.c.Obj, "", " ")
b = knownKeys.ReplaceAll(b, nil)
b = sensitiveLine.ReplaceAllFunc(b, func(ln []byte) []byte {
i := bytes.IndexByte(ln, ':')
return []byte(string(ln[:i+1]) + " REDACTED\n")
})
w.Write(b)
}
// profileHandler publishes server profile information.
type profileHandler struct{}
func (profileHandler) ServeHTTP(rw http.ResponseWriter, req *http.Request) {
switch req.URL.Path {
case "/debug/pprof/cmdline":
pprof.Cmdline(rw, req)
case "/debug/pprof/profile":
pprof.Profile(rw, req)
case "/debug/pprof/symbol":
pprof.Symbol(rw, req)
default:
pprof.Index(rw, req)
}
}
func logsHandler(w http.ResponseWriter, r *http.Request) {
c := &http.Client{
Transport: &http.Transport{
Dial: func(network, addr string) (net.Conn, error) {
return net.Dial("unix", "/run/camjournald.sock")
},
},
}
res, err := c.Get("http://journal/entries")
if err != nil {
http.Error(w, err.Error(), 500)
return
}
w.Header().Set("Content-Type", "text/plain; charset=utf-8")
io.Copy(w, res.Body)
}
Reference in New Issue View Git Blame Copy Permalink