You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

267 lines
6.9 KiB

  1. // Copyright 2019 The Gitea Authors. All rights reserved.
  2. // Use of this source code is governed by a MIT-style
  3. // license that can be found in the LICENSE file.
  4. // This code is highly inspired by endless go
  5. package graceful
  6. import (
  7. "crypto/tls"
  8. "io/ioutil"
  9. "net"
  10. "os"
  11. "strings"
  12. "sync"
  13. "sync/atomic"
  14. "syscall"
  15. "time"
  16. "code.gitea.io/gitea/modules/log"
  17. )
  18. var (
  19. // DefaultReadTimeOut default read timeout
  20. DefaultReadTimeOut time.Duration
  21. // DefaultWriteTimeOut default write timeout
  22. DefaultWriteTimeOut time.Duration
  23. // DefaultMaxHeaderBytes default max header bytes
  24. DefaultMaxHeaderBytes int
  25. )
  26. func init() {
  27. DefaultMaxHeaderBytes = 0 // use http.DefaultMaxHeaderBytes - which currently is 1 << 20 (1MB)
  28. }
  29. // ServeFunction represents a listen.Accept loop
  30. type ServeFunction = func(net.Listener) error
  31. // Server represents our graceful server
  32. type Server struct {
  33. network string
  34. address string
  35. listener net.Listener
  36. wg sync.WaitGroup
  37. state state
  38. lock *sync.RWMutex
  39. BeforeBegin func(network, address string)
  40. OnShutdown func()
  41. }
  42. // NewServer creates a server on network at provided address
  43. func NewServer(network, address string) *Server {
  44. if GetManager().IsChild() {
  45. log.Info("Restarting new server: %s:%s on PID: %d", network, address, os.Getpid())
  46. } else {
  47. log.Info("Starting new server: %s:%s on PID: %d", network, address, os.Getpid())
  48. }
  49. srv := &Server{
  50. wg: sync.WaitGroup{},
  51. state: stateInit,
  52. lock: &sync.RWMutex{},
  53. network: network,
  54. address: address,
  55. }
  56. srv.BeforeBegin = func(network, addr string) {
  57. log.Debug("Starting server on %s:%s (PID: %d)", network, addr, syscall.Getpid())
  58. }
  59. return srv
  60. }
  61. // ListenAndServe listens on the provided network address and then calls Serve
  62. // to handle requests on incoming connections.
  63. func (srv *Server) ListenAndServe(serve ServeFunction) error {
  64. go srv.awaitShutdown()
  65. l, err := GetListener(srv.network, srv.address)
  66. if err != nil {
  67. log.Error("Unable to GetListener: %v", err)
  68. return err
  69. }
  70. srv.listener = newWrappedListener(l, srv)
  71. srv.BeforeBegin(srv.network, srv.address)
  72. return srv.Serve(serve)
  73. }
  74. // ListenAndServeTLS listens on the provided network address and then calls
  75. // Serve to handle requests on incoming TLS connections.
  76. //
  77. // Filenames containing a certificate and matching private key for the server must
  78. // be provided. If the certificate is signed by a certificate authority, the
  79. // certFile should be the concatenation of the server's certificate followed by the
  80. // CA's certificate.
  81. func (srv *Server) ListenAndServeTLS(certFile, keyFile string, serve ServeFunction) error {
  82. config := &tls.Config{}
  83. if config.NextProtos == nil {
  84. config.NextProtos = []string{"http/1.1"}
  85. }
  86. config.Certificates = make([]tls.Certificate, 1)
  87. certPEMBlock, err := ioutil.ReadFile(certFile)
  88. if err != nil {
  89. log.Error("Failed to load https cert file %s for %s:%s: %v", certFile, srv.network, srv.address, err)
  90. return err
  91. }
  92. keyPEMBlock, err := ioutil.ReadFile(keyFile)
  93. if err != nil {
  94. log.Error("Failed to load https key file %s for %s:%s: %v", keyFile, srv.network, srv.address, err)
  95. return err
  96. }
  97. config.Certificates[0], err = tls.X509KeyPair(certPEMBlock, keyPEMBlock)
  98. if err != nil {
  99. log.Error("Failed to create certificate from cert file %s and key file %s for %s:%s: %v", certFile, keyFile, srv.network, srv.address, err)
  100. return err
  101. }
  102. return srv.ListenAndServeTLSConfig(config, serve)
  103. }
  104. // ListenAndServeTLSConfig listens on the provided network address and then calls
  105. // Serve to handle requests on incoming TLS connections.
  106. func (srv *Server) ListenAndServeTLSConfig(tlsConfig *tls.Config, serve ServeFunction) error {
  107. go srv.awaitShutdown()
  108. l, err := GetListener(srv.network, srv.address)
  109. if err != nil {
  110. log.Error("Unable to get Listener: %v", err)
  111. return err
  112. }
  113. wl := newWrappedListener(l, srv)
  114. srv.listener = tls.NewListener(wl, tlsConfig)
  115. srv.BeforeBegin(srv.network, srv.address)
  116. return srv.Serve(serve)
  117. }
  118. // Serve accepts incoming HTTP connections on the wrapped listener l, creating a new
  119. // service goroutine for each. The service goroutines read requests and then call
  120. // handler to reply to them. Handler is typically nil, in which case the
  121. // DefaultServeMux is used.
  122. //
  123. // In addition to the standard Serve behaviour each connection is added to a
  124. // sync.Waitgroup so that all outstanding connections can be served before shutting
  125. // down the server.
  126. func (srv *Server) Serve(serve ServeFunction) error {
  127. defer log.Debug("Serve() returning... (PID: %d)", syscall.Getpid())
  128. srv.setState(stateRunning)
  129. GetManager().RegisterServer()
  130. err := serve(srv.listener)
  131. log.Debug("Waiting for connections to finish... (PID: %d)", syscall.Getpid())
  132. srv.wg.Wait()
  133. srv.setState(stateTerminate)
  134. GetManager().ServerDone()
  135. // use of closed means that the listeners are closed - i.e. we should be shutting down - return nil
  136. if err != nil && strings.Contains(err.Error(), "use of closed") {
  137. return nil
  138. }
  139. return err
  140. }
  141. func (srv *Server) getState() state {
  142. srv.lock.RLock()
  143. defer srv.lock.RUnlock()
  144. return srv.state
  145. }
  146. func (srv *Server) setState(st state) {
  147. srv.lock.Lock()
  148. defer srv.lock.Unlock()
  149. srv.state = st
  150. }
  151. type filer interface {
  152. File() (*os.File, error)
  153. }
  154. type wrappedListener struct {
  155. net.Listener
  156. stopped bool
  157. server *Server
  158. }
  159. func newWrappedListener(l net.Listener, srv *Server) *wrappedListener {
  160. return &wrappedListener{
  161. Listener: l,
  162. server: srv,
  163. }
  164. }
  165. func (wl *wrappedListener) Accept() (net.Conn, error) {
  166. var c net.Conn
  167. // Set keepalive on TCPListeners connections.
  168. if tcl, ok := wl.Listener.(*net.TCPListener); ok {
  169. tc, err := tcl.AcceptTCP()
  170. if err != nil {
  171. return nil, err
  172. }
  173. _ = tc.SetKeepAlive(true) // see http.tcpKeepAliveListener
  174. _ = tc.SetKeepAlivePeriod(3 * time.Minute) // see http.tcpKeepAliveListener
  175. c = tc
  176. } else {
  177. var err error
  178. c, err = wl.Listener.Accept()
  179. if err != nil {
  180. return nil, err
  181. }
  182. }
  183. closed := int32(0)
  184. c = wrappedConn{
  185. Conn: c,
  186. server: wl.server,
  187. closed: &closed,
  188. }
  189. wl.server.wg.Add(1)
  190. return c, nil
  191. }
  192. func (wl *wrappedListener) Close() error {
  193. if wl.stopped {
  194. return syscall.EINVAL
  195. }
  196. wl.stopped = true
  197. return wl.Listener.Close()
  198. }
  199. func (wl *wrappedListener) File() (*os.File, error) {
  200. // returns a dup(2) - FD_CLOEXEC flag *not* set so the listening socket can be passed to child processes
  201. return wl.Listener.(filer).File()
  202. }
  203. type wrappedConn struct {
  204. net.Conn
  205. server *Server
  206. closed *int32
  207. }
  208. func (w wrappedConn) Close() error {
  209. if atomic.CompareAndSwapInt32(w.closed, 0, 1) {
  210. defer func() {
  211. if err := recover(); err != nil {
  212. select {
  213. case <-GetManager().IsHammer():
  214. // Likely deadlocked request released at hammertime
  215. log.Warn("Panic during connection close! %v. Likely there has been a deadlocked request which has been released by forced shutdown.", err)
  216. default:
  217. log.Error("Panic during connection close! %v", err)
  218. }
  219. }
  220. }()
  221. w.server.wg.Done()
  222. }
  223. return w.Conn.Close()
  224. }