mirror of
https://github.com/fleetdm/fleet
synced 2026-05-23 08:58:41 +00:00
47b423ee29
This should support Redis in both cluster and non-cluster modes. Updates were made separately to github.com/throttled/throttled to support the slight changes in types. Co-authored-by: Joseph Macaulay <joseph.macaulay@uber.com> Co-authored-by: Zach Wasserman <zach@fleetdm.com>
202 lines
4.9 KiB
Go
202 lines
4.9 KiB
Go
package pubsub
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/fleetdm/fleet/server/kolide"
|
|
"github.com/gomodule/redigo/redis"
|
|
"github.com/mna/redisc"
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
type redisQueryResults struct {
|
|
// connection pool
|
|
pool *redisc.Cluster
|
|
duplicateResults bool
|
|
}
|
|
|
|
var _ kolide.QueryResultStore = &redisQueryResults{}
|
|
|
|
// NewRedisPool creates a Redis connection pool using the provided server
|
|
// address, password and database.
|
|
func NewRedisPool(server, password string, database int, useTLS bool) (*redisc.Cluster, error) {
|
|
//Create the Cluster
|
|
cluster := &redisc.Cluster{
|
|
StartupNodes: []string{
|
|
fmt.Sprint(server),
|
|
},
|
|
CreatePool: func(server string, opts ...redis.DialOption) (*redis.Pool, error) {
|
|
return &redis.Pool{
|
|
MaxIdle: 3,
|
|
IdleTimeout: 240 * time.Second,
|
|
Dial: func() (redis.Conn, error) {
|
|
c, err := redis.Dial(
|
|
"tcp",
|
|
server,
|
|
redis.DialDatabase(database),
|
|
redis.DialUseTLS(useTLS),
|
|
redis.DialConnectTimeout(5*time.Second),
|
|
redis.DialKeepAlive(10*time.Second),
|
|
// Read/Write timeouts not set here because we may see results
|
|
// only rarely on the pub/sub channel.
|
|
)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if password != "" {
|
|
if _, err := c.Do("AUTH", password); err != nil {
|
|
c.Close()
|
|
return nil, err
|
|
}
|
|
}
|
|
return c, err
|
|
},
|
|
TestOnBorrow: func(c redis.Conn, t time.Time) error {
|
|
if time.Since(t) < time.Minute {
|
|
return nil
|
|
}
|
|
_, err := c.Do("PING")
|
|
return err
|
|
},
|
|
}, nil
|
|
},
|
|
}
|
|
|
|
if err := cluster.Refresh(); err != nil && !isClusterDisabled(err) {
|
|
return nil, errors.Wrap(err, "refresh cluster")
|
|
}
|
|
|
|
return cluster, nil
|
|
}
|
|
|
|
func isClusterDisabled(err error) bool {
|
|
return strings.Contains(err.Error(), "ERR This instance has cluster support disabled")
|
|
}
|
|
|
|
// NewRedisQueryResults creats a new Redis implementation of the
|
|
// QueryResultStore interface using the provided Redis connection pool.
|
|
func NewRedisQueryResults(pool *redisc.Cluster, duplicateResults bool) *redisQueryResults {
|
|
return &redisQueryResults{pool: pool, duplicateResults: duplicateResults}
|
|
}
|
|
|
|
func pubSubForID(id uint) string {
|
|
return fmt.Sprintf("results_%d", id)
|
|
}
|
|
|
|
func (r *redisQueryResults) WriteResult(result kolide.DistributedQueryResult) error {
|
|
conn := r.pool.Get()
|
|
defer conn.Close()
|
|
|
|
channelName := pubSubForID(result.DistributedQueryCampaignID)
|
|
|
|
jsonVal, err := json.Marshal(&result)
|
|
if err != nil {
|
|
return errors.Wrap(err, "marshalling JSON for result")
|
|
}
|
|
|
|
n, err := redis.Int(conn.Do("PUBLISH", channelName, string(jsonVal)))
|
|
|
|
if n != 0 && r.duplicateResults {
|
|
redis.Int(conn.Do("PUBLISH", "LQDuplicate", string(jsonVal)))
|
|
}
|
|
|
|
if err != nil {
|
|
return errors.Wrap(err, "PUBLISH failed to channel "+channelName)
|
|
}
|
|
if n == 0 {
|
|
return noSubscriberError{channelName}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// receiveMessages runs in a goroutine, forwarding messages from the Pub/Sub
|
|
// connection over the provided channel. This effectively allows a select
|
|
// statement to run on conn.Receive() (by running on the channel that is being
|
|
// fed by this function)
|
|
func receiveMessages(conn *redis.PubSubConn, outChan chan<- interface{}) {
|
|
defer func() {
|
|
close(outChan)
|
|
}()
|
|
|
|
for {
|
|
msg := conn.Receive()
|
|
outChan <- msg
|
|
switch msg := msg.(type) {
|
|
case error:
|
|
// If an error occurred (i.e. connection was closed),
|
|
// then we should exit
|
|
return
|
|
case redis.Subscription:
|
|
// If the subscription count is 0, the ReadChannel call
|
|
// that invoked this goroutine has unsubscribed, and we
|
|
// can exit
|
|
if msg.Count == 0 {
|
|
return
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (r *redisQueryResults) ReadChannel(ctx context.Context, query kolide.DistributedQueryCampaign) (<-chan interface{}, error) {
|
|
outChannel := make(chan interface{})
|
|
|
|
conn := redis.PubSubConn{Conn: r.pool.Get()}
|
|
|
|
pubSubName := pubSubForID(query.ID)
|
|
conn.Subscribe(pubSubName)
|
|
|
|
msgChannel := make(chan interface{})
|
|
// Run a separate goroutine feeding redis messages into
|
|
// msgChannel
|
|
go receiveMessages(&conn, msgChannel)
|
|
|
|
go func() {
|
|
defer close(outChannel)
|
|
defer conn.Close()
|
|
|
|
for {
|
|
// Loop reading messages from conn.Receive() (via
|
|
// msgChannel) until the context is cancelled.
|
|
select {
|
|
case msg, ok := <-msgChannel:
|
|
if !ok {
|
|
return
|
|
}
|
|
switch msg := msg.(type) {
|
|
case redis.Message:
|
|
var res kolide.DistributedQueryResult
|
|
err := json.Unmarshal(msg.Data, &res)
|
|
if err != nil {
|
|
outChannel <- err
|
|
}
|
|
outChannel <- res
|
|
case error:
|
|
outChannel <- errors.Wrap(msg, "reading from redis")
|
|
}
|
|
|
|
case <-ctx.Done():
|
|
conn.Unsubscribe()
|
|
|
|
}
|
|
}
|
|
|
|
}()
|
|
return outChannel, nil
|
|
}
|
|
|
|
// HealthCheck verifies that the redis backend can be pinged, returning an error
|
|
// otherwise.
|
|
func (r *redisQueryResults) HealthCheck() error {
|
|
conn := r.pool.Get()
|
|
defer conn.Close()
|
|
|
|
if _, err := conn.Do("PING"); err != nil {
|
|
return errors.Wrap(err, "reading from redis")
|
|
}
|
|
return nil
|
|
}
|