proxy: Canonicalize TLS config paths before polling filesystem metadata (#1076)

This branch changes the polling-based implementation of TLS config file watches to fully canonicalize the path to each config file prior to polling for its metadata. Doing so fixes the issues detecting changes when the watched path is a symbolic link to another symbolic link (see #1061), which is how Kubernetes implements ConfigMaps mounted as volumes. I've manually tested this with Conduit running in Docker for Mac Kubernetes, by volume-mounting a ConfigMap containing the TLS config files, and regenerating, deleting, and adding the certificates. Watching the Conduit logs confirms that the changes are now successfully detected. Note that we have to re-canonicalize the path every time we poll the filesystem for metadata. Otherwise, if the file is a symlink and the link target changes, we will continue polling the _old_ link target's path, and fail to detect any changes to the _new_ link target. Signed-off-by: Eliza Weisman <eliza@buoyant.io>
2018-06-06 13:43:17 -07:00 · 2018-06-06 13:43:17 -07:00 · f17b09898a
parent 143f3668d1
commit f17b09898a
1 changed files with 23 additions and 9 deletions
--- a/proxy/src/transport/tls/config.rs
+++ b/proxy/src/transport/tls/config.rs
@ -1,5 +1,5 @@
 use std::{
-    fs::{self, File},
+    fs::File,
    io::{self, Cursor, Read},
    path::PathBuf,
    sync::Arc,
@ -73,19 +73,33 @@ impl CommonSettings {
            self.end_entity_cert.clone(),
            self.private_key.clone(),
        ];
+
+        fn last_modified(path: &PathBuf) -> Option<SystemTime> {
+            // We have to canonicalize the path _every_ time we poll the fs,
+            // rather than once when we start watching, because if it's a
+            // symlink, the target may change. If that happened, and we
+            // continued watching the original canonical path, we wouldn't see
+            // any subsequent changes to the new symlink target.
+            path.canonicalize()
+                .and_then(|canonical| {
+                    trace!("last_modified: {:?} -> {:?}", path, canonical);
+                    canonical.symlink_metadata()
+                        .and_then(|meta| meta.modified())
+                })
+                .map_err(|e| if e.kind() != io::ErrorKind::NotFound {
+                    // Don't log if the files don't exist, since this
+                    // makes the logs *quite* noisy.
+                    warn!("error reading metadata for {:?}: {}", path, e)
+                })
+                .ok()
+        }
+
        let mut max: Option<SystemTime> = None;
        Interval::new(Instant::now(), interval)
            .map_err(|e| error!("timer error: {:?}", e))
            .filter_map(move |_| {
                for path in &paths  {
-                    let t = fs::metadata(path)
-                        .and_then(|meta| meta.modified())
-                        .map_err(|e| if e.kind() != io::ErrorKind::NotFound {
-                            // Don't log if the files don't exist, since this
-                            // makes the logs *quite* noisy.
-                            warn!("metadata for {:?}: {}", path, e)
-                        })
-                        .ok();
+                    let t = last_modified(path);
                    if t > max {
                        max = t;
                        trace!("{:?} changed at {:?}", path, t);