particle-os/debian-forge-composer
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
debian-forge-composer/internal/worker/client.go
Sanne Raymaekers fd4a3a941a worker: let client register itself with the worker server 
Sends a status update to the worker server every 5 minutes.

Also fixes a bug where the body the worker client sent would be empty if
it had to refresh the JWT token. Instead of io.Reader use io.ReadSeeker
so the body can be reread to create the second request (after the token
refresh).
2023-12-06 17:22:36 +01:00

526 lines
12 KiB
Go
Raw Blame History

package worker
import (
"bytes"
"context"
"crypto/tls"
"encoding/json"
"errors"
"fmt"
"io"
"net"
"net/http"
"net/url"
"sync"
"time"
"github.com/google/uuid"
"github.com/sirupsen/logrus"
"github.com/osbuild/osbuild-composer/internal/common"
"github.com/osbuild/osbuild-composer/internal/worker/api"
)
type Client struct {
server *url.URL
requester *http.Client
offlineToken string
oAuthURL string
accessToken string
clientId string
clientSecret string
workerID uuid.UUID
tokenMu sync.RWMutex
workerIDMu sync.RWMutex
}
type ClientConfig struct {
BaseURL string
TlsConfig *tls.Config
OfflineToken string
OAuthURL string
ClientId string
ClientSecret string
BasePath string
ProxyURL string
}
type Job interface {
Id() uuid.UUID
Type() string
Args(args interface{}) error
DynamicArgs(i int, args interface{}) error
NDynamicArgs() int
Update(result interface{}) error
Canceled() (bool, error)
UploadArtifact(name string, readSeeker io.ReadSeeker) error
}
var ErrClientRequestJobTimeout = errors.New("Dequeue timed out, retry")
type job struct {
client *Client
id uuid.UUID
location string
artifactLocation string
jobType string
args json.RawMessage
dynamicArgs []json.RawMessage
}
type tokenResponse struct {
AccessToken string `json:"access_token"`
}
func NewClient(conf ClientConfig) (*Client, error) {
server, err := url.Parse(conf.BaseURL)
if err != nil {
return nil, err
}
api.BasePath = conf.BasePath
server, err = server.Parse(api.BasePath + "/")
if err != nil {
panic(err)
}
if conf.OAuthURL != "" {
if conf.ClientId == "" {
return nil, fmt.Errorf("OAuthURL token url specified but no client id")
}
if conf.OfflineToken == "" && conf.ClientSecret == "" {
return nil, fmt.Errorf("OAuthURL token url specified but no client secret or offline token")
}
}
requester := &http.Client{}
transport := http.DefaultTransport.(*http.Transport).Clone()
if conf.ProxyURL != "" {
proxyURL, err := url.Parse(conf.ProxyURL)
if err != nil {
return nil, err
}
transport.Proxy = func(request *http.Request) (*url.URL, error) {
return proxyURL, nil
}
}
if conf.TlsConfig != nil {
transport.TLSClientConfig = conf.TlsConfig
}
requester.Transport = transport
client := &Client{
server: server,
requester: requester,
offlineToken: conf.OfflineToken,
oAuthURL: conf.OAuthURL,
clientId: conf.ClientId,
clientSecret: conf.ClientSecret,
}
err = client.registerWorker()
if err != nil {
return client, err
}
go client.workerHeartbeat()
return client, nil
}
func NewClientUnix(conf ClientConfig) *Client {
server, err := url.Parse("http://localhost/")
if err != nil {
panic(err)
}
api.BasePath = conf.BasePath
server, err = server.Parse(api.BasePath + "/")
if err != nil {
panic(err)
}
requester := &http.Client{
Transport: &http.Transport{
DialContext: func(context context.Context, network, addr string) (net.Conn, error) {
return net.Dial("unix", conf.BaseURL)
},
},
}
client := &Client{
server: server,
requester: requester,
}
err = client.registerWorker()
if err != nil {
panic(err)
}
go client.workerHeartbeat()
return client
}
func (c *Client) registerWorker() error {
c.workerIDMu.Lock()
defer c.workerIDMu.Unlock()
url, err := c.server.Parse("workers")
if err != nil {
return err
}
var buf bytes.Buffer
err = json.NewEncoder(&buf).Encode(api.PostWorkersRequest{
Arch: common.CurrentArch(),
})
if err != nil {
logrus.Errorf("Unable create worker request: %v", err)
return err
}
resp, err := c.NewRequest("POST", url.String(), map[string]string{"Content-Type": "application/json"}, bytes.NewReader(buf.Bytes()))
if err != nil {
logrus.Errorf("Unable to register worker: %v", err)
return err
}
defer resp.Body.Close()
if resp.StatusCode != http.StatusCreated {
return errorFromResponse(resp, "error registering worker")
}
var wresp api.PostWorkersResponse
err = json.NewDecoder(resp.Body).Decode(&wresp)
if err != nil {
return err
}
workerID, err := uuid.Parse(wresp.WorkerId)
if err != nil {
return err
}
c.workerID = workerID
return nil
}
func (c *Client) workerHeartbeat() {
//nolint:staticcheck // avoid SA1015, this is an endless function
for range time.Tick(time.Minute * 1) {
workerID := func() uuid.UUID {
c.workerIDMu.RLock()
defer c.workerIDMu.RUnlock()
return c.workerID
}
if workerID() == uuid.Nil {
err := c.registerWorker()
if err != nil {
logrus.Errorf("Error registering worker, %v", err)
continue
}
}
url, err := c.server.Parse(fmt.Sprintf("workers/%s/status", workerID()))
if err != nil {
logrus.Errorf("Error parsing worker status: %v", err)
continue
}
var buf bytes.Buffer
resp, err := c.NewRequest("POST", url.String(), map[string]string{"Content-Type": "application/json"}, bytes.NewReader(buf.Bytes()))
if err != nil {
logrus.Errorf("Error updating worker status: %v", err)
continue
}
if resp.StatusCode == http.StatusBadRequest {
logrus.Warning("Registering worker again")
err = c.registerWorker()
if err != nil {
logrus.Errorf("Error registering worker, %v", err)
}
continue
}
if resp.StatusCode != http.StatusOK {
logrus.Errorf("Error updating worker status: %d", resp.StatusCode)
continue
}
}
}
func (c *Client) refreshAccessToken() error {
c.tokenMu.Lock()
defer c.tokenMu.Unlock()
data := url.Values{}
if c.offlineToken != "" {
data.Set("grant_type", "refresh_token")
data.Set("client_id", c.clientId)
data.Set("refresh_token", c.offlineToken)
}
if c.clientSecret != "" {
data.Set("grant_type", "client_credentials")
data.Set("client_id", c.clientId)
data.Set("client_secret", c.clientSecret)
}
resp, err := c.requester.PostForm(c.oAuthURL, data)
if err != nil {
return err
}
var tr tokenResponse
err = json.NewDecoder(resp.Body).Decode(&tr)
if err != nil {
return err
}
c.accessToken = tr.AccessToken
return nil
}
func (c *Client) NewRequest(method, url string, headers map[string]string, body io.ReadSeeker) (*http.Response, error) {
token := func() string {
c.tokenMu.RLock()
defer c.tokenMu.RUnlock()
return c.accessToken
}
newRequest := func() (*http.Request, error) {
if body != nil {
_, err := body.Seek(0, 0)
if err != nil {
return nil, err
}
}
req, err := http.NewRequest(method, url, body)
if err != nil {
return nil, err
}
if c.oAuthURL != "" {
req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", token()))
}
for k, v := range headers {
req.Header.Add(k, v)
}
return req, nil
}
req, err := newRequest()
if err != nil {
return nil, err
}
resp, err := c.requester.Do(req)
if err != nil {
return nil, err
}
if resp.StatusCode == http.StatusUnauthorized && c.oAuthURL != "" {
err = c.refreshAccessToken()
if err != nil {
return nil, err
}
req, err = newRequest()
if err != nil {
return nil, err
}
resp, err = c.requester.Do(req)
}
return resp, err
}
func (c *Client) RequestJob(types []string, arch string) (Job, error) {
url, err := c.server.Parse("jobs")
if err != nil {
// This only happens when "jobs" cannot be parsed.
panic(err)
}
reqBody := api.RequestJobJSONRequestBody{
Types: types,
Arch: arch,
}
workerID := func() uuid.UUID {
c.workerIDMu.RLock()
defer c.workerIDMu.RUnlock()
return c.workerID
}()
if workerID != uuid.Nil {
reqBody.WorkerId = common.ToPtr(workerID.String())
}
var buf bytes.Buffer
err = json.NewEncoder(&buf).Encode(reqBody)
if err != nil {
panic(err)
}
response, err := c.NewRequest("POST", url.String(), map[string]string{"Content-Type": "application/json"}, bytes.NewReader(buf.Bytes()))
if err != nil {
return nil, err
}
defer response.Body.Close()
if response.StatusCode == http.StatusNoContent {
return nil, ErrClientRequestJobTimeout
}
if response.StatusCode != http.StatusCreated {
return nil, errorFromResponse(response, "error requesting job")
}
var jr api.RequestJobResponse
err = json.NewDecoder(response.Body).Decode(&jr)
if err != nil {
return nil, fmt.Errorf("error parsing response: %v", err)
}
location, err := c.server.Parse(jr.Location)
if err != nil {
return nil, fmt.Errorf("error parsing location url in response: %v", err)
}
artifactLocation, err := c.server.Parse(jr.ArtifactLocation)
if err != nil {
return nil, fmt.Errorf("error parsing artifact location url in response: %v", err)
}
jobId, err := uuid.Parse(jr.Id)
if err != nil {
return nil, fmt.Errorf("error parsing job id in response: %v", err)
}
args := json.RawMessage{}
if jr.Args != nil {
args = *jr.Args
}
dynamicArgs := []json.RawMessage{}
if jr.DynamicArgs != nil {
dynamicArgs = *jr.DynamicArgs
}
return &job{
client: c,
id: jobId,
jobType: jr.Type,
args: args,
dynamicArgs: dynamicArgs,
location: location.String(),
artifactLocation: artifactLocation.String(),
}, nil
}
func (j *job) Id() uuid.UUID {
return j.id
}
func (j *job) Type() string {
return j.jobType
}
func (j *job) Args(args interface{}) error {
err := json.Unmarshal(j.args, args)
if err != nil {
return fmt.Errorf("error parsing job arguments: %v", err)
}
return nil
}
func (j *job) NDynamicArgs() int {
return len(j.dynamicArgs)
}
func (j *job) DynamicArgs(i int, args interface{}) error {
err := json.Unmarshal(j.dynamicArgs[i], args)
if err != nil {
return fmt.Errorf("error parsing job arguments: %v", err)
}
return nil
}
func (j *job) Update(result interface{}) error {
var buf bytes.Buffer
err := json.NewEncoder(&buf).Encode(updateJobRequest{
Result: result,
})
if err != nil {
panic(err)
}
response, err := j.client.NewRequest("PATCH", j.location, map[string]string{"Content-Type": "application/json"}, bytes.NewReader(buf.Bytes()))
if err != nil {
return fmt.Errorf("error fetching job info: %v", err)
}
defer response.Body.Close()
if response.StatusCode != http.StatusOK {
return errorFromResponse(response, "error setting job status")
}
return nil
}
func (j *job) Canceled() (bool, error) {
response, err := j.client.NewRequest("GET", j.location, map[string]string{}, nil)
if err != nil {
return false, fmt.Errorf("error fetching job info: %v", err)
}
defer response.Body.Close()
if response.StatusCode != http.StatusOK {
return false, errorFromResponse(response, "error fetching job info")
}
var jr api.GetJobResponse
err = json.NewDecoder(response.Body).Decode(&jr)
if err != nil {
return false, fmt.Errorf("error parsing reponse: %v", err)
}
return jr.Canceled, nil
}
func (j *job) UploadArtifact(name string, readSeeker io.ReadSeeker) error {
if j.artifactLocation == "" {
return fmt.Errorf("server does not accept artifacts for this job")
}
loc, err := url.Parse(j.artifactLocation)
if err != nil {
return fmt.Errorf("error parsing job location: %v", err)
}
loc, err = loc.Parse(url.PathEscape(name))
if err != nil {
panic(err)
}
response, err := j.client.NewRequest("PUT", loc.String(), map[string]string{"Content-Type": "application/octet-stream"}, readSeeker)
if err != nil {
return fmt.Errorf("error uploading artifact: %v", err)
}
if response.StatusCode != 200 {
return errorFromResponse(response, "error uploading artifact")
}
return nil
}
// Parses an api.Error from a response and returns it as a golang error. Other
// errors, such failing to parse the response, are returned as golang error as
// well. If client code expects an error, it gets one.
func errorFromResponse(response *http.Response, message string) error {
var e api.Error
err := json.NewDecoder(response.Body).Decode(&e)
if err != nil {
return fmt.Errorf("failed to parse error response: %v", err)
}
return fmt.Errorf("%v: %v — %s (%v)", message, response.StatusCode, e.Reason, e.Code)
}
Reference in a new issue View git blame Copy permalink