Commit 2cb8fbac authored by Nick Thomas's avatar Nick Thomas

Merge branch 'buffer-api-failure-response' into 'master'

API improvements: buffering, metrics

Following discussion in https://gitlab.com/gitlab-org/gitlab-workhorse/merge_requests/94

This closes a hole in our Unicorn response buffering. The responses should be small, hence buffering in-memory.

See merge request !102
parents e69b6695 8662789a
package api package api
import ( import (
"bytes"
"encoding/json" "encoding/json"
"fmt" "fmt"
"io" "io"
"io/ioutil" "io/ioutil"
"net/http" "net/http"
"net/url" "net/url"
"strconv"
"strings" "strings"
"github.com/prometheus/client_golang/prometheus"
"gitlab.com/gitlab-org/gitlab-workhorse/internal/badgateway" "gitlab.com/gitlab-org/gitlab-workhorse/internal/badgateway"
"gitlab.com/gitlab-org/gitlab-workhorse/internal/helper" "gitlab.com/gitlab-org/gitlab-workhorse/internal/helper"
"gitlab.com/gitlab-org/gitlab-workhorse/internal/secret" "gitlab.com/gitlab-org/gitlab-workhorse/internal/secret"
) )
// Custom content type for API responses, to catch routing / programming mistakes const (
const ResponseContentType = "application/vnd.gitlab-workhorse+json" // Custom content type for API responses, to catch routing / programming mistakes
ResponseContentType = "application/vnd.gitlab-workhorse+json"
// This header carries the JWT token for gitlab-rails
RequestHeader = "Gitlab-Workhorse-Api-Request"
const RequestHeader = "Gitlab-Workhorse-Api-Request" failureResponseLimit = 32768
)
type API struct { type API struct {
Client *http.Client Client *http.Client
...@@ -25,6 +34,27 @@ type API struct { ...@@ -25,6 +34,27 @@ type API struct {
Version string Version string
} }
var (
requestsCounter = prometheus.NewCounterVec(
prometheus.CounterOpts{
Name: "gitlab_workhorse_internal_api_requests",
Help: "How many internal API requests have been completed by gitlab-workhorse, partitioned by status code and HTTP method.",
},
[]string{"code", "method"},
)
bytesTotal = prometheus.NewCounter(
prometheus.CounterOpts{
Name: "gitlab_workhorse_internal_api_failure_response_bytes",
Help: "How many bytes have been returned by upstream GitLab in API failure/rejection response bodies.",
},
)
)
func init() {
prometheus.MustRegister(requestsCounter)
prometheus.MustRegister(bytesTotal)
}
func NewAPI(myURL *url.URL, version string, roundTripper *badgateway.RoundTripper) *API { func NewAPI(myURL *url.URL, version string, roundTripper *badgateway.RoundTripper) *API {
return &API{ return &API{
Client: &http.Client{Transport: roundTripper}, Client: &http.Client{Transport: roundTripper},
...@@ -160,6 +190,7 @@ func (api *API) PreAuthorize(suffix string, r *http.Request) (httpResponse *http ...@@ -160,6 +190,7 @@ func (api *API) PreAuthorize(suffix string, r *http.Request) (httpResponse *http
httpResponse = nil httpResponse = nil
} }
}() }()
requestsCounter.WithLabelValues(strconv.Itoa(httpResponse.StatusCode), authReq.Method).Inc()
if httpResponse.StatusCode != http.StatusOK { if httpResponse.StatusCode != http.StatusOK {
return httpResponse, nil, nil return httpResponse, nil, nil
...@@ -187,8 +218,24 @@ func (api *API) PreAuthorizeHandler(next HandleFunc, suffix string) http.Handler ...@@ -187,8 +218,24 @@ func (api *API) PreAuthorizeHandler(next HandleFunc, suffix string) http.Handler
helper.Fail500(w, r, err) helper.Fail500(w, r, err)
return return
} }
if httpResponse != nil {
defer func() {
httpResponse.Body.Close()
}()
}
if httpResponse.StatusCode != http.StatusOK { if httpResponse.StatusCode != http.StatusOK {
// NGINX response buffering is disabled on this path (with
// X-Accel-Buffering: no) but we still want to free up the Unicorn worker
// that generated httpResponse as fast as possible. To do this we buffer
// the entire response body in memory before sending it on.
responseBody, err := bufferResponse(httpResponse.Body)
if err != nil {
helper.Fail500(w, r, err)
}
httpResponse.Body.Close() // Free up the Unicorn worker
bytesTotal.Add(float64(responseBody.Len()))
for k, v := range httpResponse.Header { for k, v := range httpResponse.Header {
// Accomodate broken clients that do case-sensitive header lookup // Accomodate broken clients that do case-sensitive header lookup
if k == "Www-Authenticate" { if k == "Www-Authenticate" {
...@@ -198,14 +245,14 @@ func (api *API) PreAuthorizeHandler(next HandleFunc, suffix string) http.Handler ...@@ -198,14 +245,14 @@ func (api *API) PreAuthorizeHandler(next HandleFunc, suffix string) http.Handler
} }
} }
w.WriteHeader(httpResponse.StatusCode) w.WriteHeader(httpResponse.StatusCode)
io.Copy(w, httpResponse.Body) if _, err := io.Copy(w, responseBody); err != nil {
httpResponse.Body.Close() helper.LogError(r, err)
}
return return
} }
// Close the body immediately, rather than waiting for the next handler
// to complete httpResponse.Body.Close() // Free up the Unicorn worker
httpResponse.Body.Close()
// Negotiate authentication (Kerberos) may need to return a WWW-Authenticate // Negotiate authentication (Kerberos) may need to return a WWW-Authenticate
// header to the client even in case of success as per RFC4559. // header to the client even in case of success as per RFC4559.
...@@ -219,3 +266,17 @@ func (api *API) PreAuthorizeHandler(next HandleFunc, suffix string) http.Handler ...@@ -219,3 +266,17 @@ func (api *API) PreAuthorizeHandler(next HandleFunc, suffix string) http.Handler
next(w, r, authResponse) next(w, r, authResponse)
}) })
} }
func bufferResponse(r io.Reader) (*bytes.Buffer, error) {
responseBody := &bytes.Buffer{}
n, err := io.Copy(responseBody, io.LimitReader(r, failureResponseLimit))
if err != nil {
return nil, err
}
if n == failureResponseLimit {
return nil, fmt.Errorf("response body exceeded maximum buffer size (%d bytes)", failureResponseLimit)
}
return responseBody, nil
}
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment