linkerd
/
linkerd2-proxy
mirror of https://github.com/linkerd/linkerd2-proxy.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Make a generic Watch stack (#104) 

The TLS-configuration-watching logic in `app::outbound::tls_config` need
not be specific to the outbound types, or even TLS configuration.

Instead, this change extends the `watch` stack module with a Stack type
that can satisfy the TLS use case independently of the concrete types at
play.
This commit is contained in:
Oliver Gould 2018-10-26 13:30:09 -07:00 committed by GitHub
parent 4625302bd9
commit 2109f37531
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 158 additions and 113 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

160
lib/stack/src/watch.rs
View File

@ -1,15 +1,35 @@
extern crate futures_watch;
use self::futures_watch::Watch;
use futures::{future::MapErr, Async, Future, Poll, Stream};
use std::{error, fmt};
use svc;
/// Implemented by targets that can be updated by a `Watch<U>`
pub trait WithUpdate<U> {
type Updated;
fn with_update(&self, update: &U) -> Self::Updated;
}
#[derive(Debug)]
pub struct Layer<U> {
watch: Watch<U>,
}
#[derive(Debug)]
pub struct Stack<U, M> {
watch: Watch<U>,
inner: M,
}
/// A Service that updates itself as a Watch updates.
#[derive(Clone, Debug)]
pub struct Service<T, M: super::Stack<T>> {
watch: futures_watch::Watch<T>,
make: M,
#[derive(Debug)]
pub struct Service<T: WithUpdate<U>, U, M: super::Stack<T::Updated>> {
watch: Watch<U>,
target: T,
stack: M,
inner: M::Value,
}
@ -19,23 +39,77 @@ pub enum Error<I, M> {
Inner(I),
}
impl<T, M> Service<T, M>
/// A special implemtation of WithUpdate that clones the observed update value.
#[derive(Clone, Debug)]
pub struct CloneUpdate {}
// === impl Layer ===
pub fn layer<U>(watch: Watch<U>) -> Layer<U> {
Layer { watch }
}
impl<U> Clone for Layer<U> {
fn clone(&self) -> Self {
Self {
watch: self.watch.clone(),
}
}
}
impl<T, U, M> super::Layer<T, T::Updated, M> for Layer<U>
where
M: super::Stack<T>,
T: WithUpdate<U> + Clone,
M: super::Stack<T::Updated> + Clone,
{
pub fn try(watch: futures_watch::Watch<T>, make: M) -> Result<Self, M::Error> {
let inner = make.make(&*watch.borrow())?;
Ok(Self {
watch,
make,
type Value = <Stack<U, M> as super::Stack<T>>::Value;
type Error = <Stack<U, M> as super::Stack<T>>::Error;
type Stack = Stack<U, M>;
fn bind(&self, inner: M) -> Self::Stack {
Stack {
inner,
watch: self.watch.clone(),
}
}
}
// === impl Stack ===
impl<U, M: Clone> Clone for Stack<U, M> {
fn clone(&self) -> Self {
Self {
inner: self.inner.clone(),
watch: self.watch.clone(),
}
}
}
impl<T, U, M> super::Stack<T> for Stack<U, M>
where
T: WithUpdate<U> + Clone,
M: super::Stack<T::Updated> + Clone,
{
type Value = Service<T, U, M>;
type Error = M::Error;
fn make(&self, target: &T) -> Result<Self::Value, Self::Error> {
let inner = self.inner.make(&target.with_update(&*self.watch.borrow()))?;
Ok(Service {
inner,
watch: self.watch.clone(),
target: target.clone(),
stack: self.inner.clone(),
})
}
}
impl<T, M> svc::Service for Service<T, M>
// === impl Service ===
impl<T, U, M> svc::Service for Service<T, U, M>
where
M: super::Stack<T>,
T: WithUpdate<U>,
M: super::Stack<T::Updated>,
M::Value: svc::Service,
{
type Request = <M::Value as svc::Service>::Request;
@ -51,11 +125,11 @@ where
//
// `watch.poll()` can't actually fail; so errors are not considered.
while let Ok(Async::Ready(Some(()))) = self.watch.poll() {
let target = self.watch.borrow();
// `inner` is only updated if `target` is valid. The caller may
let updated = self.target.with_update(&*self.watch.borrow());
// `inner` is only updated if `updated` is valid. The caller may
// choose to continue using the service or discard as is
// appropriate.
self.inner = self.make.make(&*target).map_err(Error::Stack)?;
self.inner = self.stack.make(&updated).map_err(Error::Stack)?;
}
self.inner.poll_ready().map_err(Error::Inner)
@ -66,6 +140,51 @@ where
}
}
impl<U, M> Service<CloneUpdate, U, M>
where
U: Clone,
M: super::Stack<U>,
M::Value: svc::Service,
{
pub fn try(watch: Watch<U>, stack: M) -> Result<Self, M::Error> {
let inner = stack.make(&*watch.borrow())?;
Ok(Self {
inner,
watch,
stack,
target: CloneUpdate {},
})
}
}
impl<T, U, M> Clone for Service<T, U, M>
where
T: WithUpdate<U> + Clone,
M: super::Stack<T::Updated> + Clone,
M::Value: svc::Service + Clone,
{
fn clone(&self) -> Self {
Self {
inner: self.inner.clone(),
watch: self.watch.clone(),
stack: self.stack.clone(),
target: self.target.clone(),
}
}
}
// === impl CloneUpdate ===
impl<U: Clone> WithUpdate<U> for CloneUpdate {
type Updated = U;
fn with_update(&self, update: &U) -> U {
update.clone()
}
}
// === impl Error ===
impl<I: fmt::Display, M: fmt::Display> fmt::Display for Error<I, M> {
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
match self {
@ -82,11 +201,11 @@ mod tests {
extern crate linkerd2_task as task;
extern crate tokio;
use futures::future;
use self::task::test_util::BlockOnFor;
use self::tokio::runtime::current_thread::Runtime;
use std::time::Duration;
use super::*;
use futures::future;
use std::time::Duration;
use svc::Service as _Service;
const TIMEOUT: Duration = Duration::from_secs(60);
@ -116,8 +235,7 @@ mod tests {
}
macro_rules! call {
($svc:expr) => {
rt.block_on_for(TIMEOUT, $svc.call(()))
.expect("call")
rt.block_on_for(TIMEOUT, $svc.call(())).expect("call")
};
}
@ -130,7 +248,7 @@ mod tests {
}
}
let (watch, mut store) = futures_watch::Watch::new(1);
let (watch, mut store) = Watch::new(1);
let mut svc = Service::try(watch, Stack).unwrap();
assert_ready!(svc);

4
src/app/main.rs
View File

@ -23,7 +23,7 @@ use proxy::{
http::{
balance, client, insert_target, metrics::timestamp_request_open, normalize_uri, router,
},
limit, reconnect, timeout,
limit, reconnect, timeout
};
use svc::{self, Layer as _Layer, Stack as _Stack};
use tap;
@ -260,7 +260,7 @@ where
resolver,
)))
.and_then(outbound::orig_proto_upgrade::Layer::new())
.and_then(outbound::tls_config::Layer::new(tls_client_config))
.and_then(svc::watch::layer(tls_client_config))
.and_then(proxy::http::metrics::Layer::new(
http_metrics,
classify::Classify,

107
src/app/outbound.rs
View File

@ -4,9 +4,9 @@ use std::fmt;
use app::Destination;
use control::destination::{Metadata, ProtocolHint};
use proxy::http::{client, router, normalize_uri::ShouldNormalizeUri};
use svc::stack_per_request::ShouldStackPerRequest;
use svc::{self, stack_per_request::ShouldStackPerRequest};
use tap;
use transport::connect;
use transport::{connect, tls};
#[derive(Clone, Debug)]
pub struct Endpoint {
@ -42,6 +42,21 @@ impl ShouldStackPerRequest for Endpoint {
}
}
impl svc::watch::WithUpdate<tls::ConditionalClientConfig> for Endpoint {
type Updated = Self;
fn with_update(&self, client_config: &tls::ConditionalClientConfig) -> Self::Updated {
let mut ep = self.clone();
ep.connect.tls = ep.metadata.tls_identity().and_then(|identity| {
client_config.as_ref().map(|config| tls::ConnectionConfig {
server_identity: identity.clone(),
config: config.clone(),
})
});
ep
}
}
impl fmt::Display for Endpoint {
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
self.connect.addr.fmt(f)
@ -242,91 +257,3 @@ pub mod orig_proto_upgrade {
}
}
}
pub mod tls_config {
use futures_watch::Watch;
use super::Endpoint;
use svc;
use transport::tls;
#[derive(Debug, Clone)]
pub struct Layer{
watch: Watch<tls::ConditionalClientConfig>,
}
#[derive(Clone, Debug)]
pub struct Stack<M: svc::Stack<Endpoint>> {
watch: Watch<tls::ConditionalClientConfig>,
inner: M,
}
#[derive(Clone, Debug)]
pub struct StackEndpointWithTls<M: svc::Stack<Endpoint>> {
endpoint: Endpoint,
inner: M,
}
impl Layer {
pub fn new(watch: Watch<tls::ConditionalClientConfig>) -> Self {
Layer {
watch,
}
}
}
impl<M> svc::Layer<Endpoint, Endpoint, M> for Layer
where
M: svc::Stack<Endpoint> + Clone,
{
type Value = <Stack<M> as svc::Stack<Endpoint>>::Value;
type Error = <Stack<M> as svc::Stack<Endpoint>>::Error;
type Stack = Stack<M>;
fn bind(&self, inner: M) -> Self::Stack {
Stack {
inner,
watch: self.watch.clone(),
}
}
}
impl<M> svc::Stack<Endpoint> for Stack<M>
where
M: svc::Stack<Endpoint> + Clone,
{
type Value = svc::watch::Service<tls::ConditionalClientConfig, StackEndpointWithTls<M>>;
type Error = M::Error;
fn make(&self, endpoint: &Endpoint) -> Result<Self::Value, Self::Error> {
let inner = StackEndpointWithTls {
endpoint: endpoint.clone(),
inner: self.inner.clone(),
};
svc::watch::Service::try(self.watch.clone(), inner)
}
}
impl<M> svc::Stack<tls::ConditionalClientConfig> for StackEndpointWithTls<M>
where
M: svc::Stack<Endpoint>,
{
type Value = M::Value;
type Error = M::Error;
fn make(
&self,
client_config: &tls::ConditionalClientConfig,
) -> Result<Self::Value, Self::Error> {
let mut endpoint = self.endpoint.clone();
endpoint.connect.tls = endpoint.metadata.tls_identity().and_then(|identity| {
client_config.as_ref().map(|config| tls::ConnectionConfig {
server_identity: identity.clone(),
config: config.clone(),
})
});
self.inner.make(&endpoint)
}
}
}