mirror of
https://github.com/status-im/consul.git
synced 2025-01-25 13:10:32 +00:00
c029b20615
The new controller caches are initialized before the DependencyMappers or the Reconciler run, but importantly they are not populated. The expectation is that when the WatchList call is made to the resource service it will send an initial snapshot of all resources matching a single type, and then perpetually send UPSERT/DELETE events afterward. This initial snapshot will cycle through the caching layer and will catch it up to reflect the stored data. Critically the dependency mappers and reconcilers will race against the restoration of the caches on server startup or leader election. During this time it is possible a mapper or reconciler will use the cache to lookup a specific relationship and not find it. That very same reconciler may choose to then recompute some persisted resource and in effect rewind it to a prior computed state. Change - Since we are updating the behavior of the WatchList RPC, it was aligned to match that of pbsubscribe and pbpeerstream using a protobuf oneof instead of the enum+fields option. - The WatchList rpc now has 3 alternating response events: Upsert, Delete, EndOfSnapshot. When set the initial batch of "snapshot" Upserts sent on a new watch, those operations will be followed by an EndOfSnapshot event before beginning the never-ending sequence of Upsert/Delete events. - Within the Controller startup code we will launch N+1 goroutines to execute WatchList queries for the watched types. The UPSERTs will be applied to the nascent cache only (no mappers will execute). - Upon witnessing the END operation, those goroutines will terminate. - When all cache priming routines complete, then the normal set of N+1 long lived watch routines will launch to officially witness all events in the system using the primed cached.
254 lines
6.5 KiB
Go
254 lines
6.5 KiB
Go
// Copyright (c) HashiCorp, Inc.
|
|
// SPDX-License-Identifier: BUSL-1.1
|
|
|
|
package inmem
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"github.com/hashicorp/consul/acl"
|
|
"github.com/hashicorp/consul/agent/consul/stream"
|
|
"github.com/hashicorp/consul/internal/storage"
|
|
"github.com/hashicorp/consul/proto-public/pbresource"
|
|
"github.com/hashicorp/consul/proto/private/pbsubscribe"
|
|
)
|
|
|
|
// Watch implements the storage.Watch interface using a stream.Subscription.
|
|
type Watch struct {
|
|
sub *stream.Subscription
|
|
query query
|
|
|
|
// events holds excess events when they are bundled in a stream.PayloadEvents,
|
|
// until Next is called again.
|
|
events []stream.Event
|
|
}
|
|
|
|
// Next returns the next WatchEvent, blocking until one is available.
|
|
func (w *Watch) Next(ctx context.Context) (*pbresource.WatchEvent, error) {
|
|
for {
|
|
e, err := w.nextEvent(ctx)
|
|
if err == stream.ErrSubForceClosed {
|
|
return nil, storage.ErrWatchClosed
|
|
}
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
event := e.Payload.(eventPayload).event
|
|
|
|
var resource *pbresource.Resource
|
|
switch {
|
|
case event.GetUpsert() != nil:
|
|
resource = event.GetUpsert().GetResource()
|
|
case event.GetDelete() != nil:
|
|
resource = event.GetDelete().GetResource()
|
|
case event.GetEndOfSnapshot() != nil:
|
|
return event, nil
|
|
default:
|
|
return nil, fmt.Errorf("unexpected resource event type: %T", event.GetEvent())
|
|
}
|
|
|
|
if w.query.matches(resource) {
|
|
return event, nil
|
|
}
|
|
}
|
|
}
|
|
|
|
func (w *Watch) nextEvent(ctx context.Context) (*stream.Event, error) {
|
|
if len(w.events) != 0 {
|
|
event := w.events[0]
|
|
w.events = w.events[1:]
|
|
return &event, nil
|
|
}
|
|
|
|
var idx uint64
|
|
for {
|
|
e, err := w.sub.Next(ctx)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if e.IsFramingEvent() {
|
|
continue
|
|
}
|
|
|
|
// This works around a *very* rare race-condition in the EventPublisher where
|
|
// it's possible to see duplicate events when events are published at the same
|
|
// time as the first subscription is created on a {topic, subject} pair.
|
|
//
|
|
// We see this problem when a call to WriteCAS is happening in parallel with
|
|
// a call to WatchList. It happens because our snapshot handler returns events
|
|
// that have not yet been published (in the gap between us committing changes
|
|
// to MemDB and the EventPublisher dispatching events onto its event buffers).
|
|
//
|
|
// An intuitive solution to this problem would be to take eventLock in the
|
|
// snapshot handler to avoid it racing with publishing, but this does not
|
|
// work because publishing is asynchronous.
|
|
//
|
|
// We should fix this problem at the root, but it's complicated, so for now
|
|
// we'll work around it.
|
|
if e.Index <= idx {
|
|
continue
|
|
}
|
|
idx = e.Index
|
|
|
|
switch t := e.Payload.(type) {
|
|
case eventPayload:
|
|
return &e, nil
|
|
case *stream.PayloadEvents:
|
|
if len(t.Items) == 0 {
|
|
continue
|
|
}
|
|
|
|
event, rest := t.Items[0], t.Items[1:]
|
|
w.events = rest
|
|
return &event, nil
|
|
}
|
|
}
|
|
}
|
|
|
|
// Close the watch and free its associated resources.
|
|
func (w *Watch) Close() { w.sub.Unsubscribe() }
|
|
|
|
var eventTopic = stream.StringTopic("resources")
|
|
|
|
type eventPayload struct {
|
|
subject stream.Subject
|
|
event *pbresource.WatchEvent
|
|
}
|
|
|
|
func (p eventPayload) Subject() stream.Subject { return p.subject }
|
|
|
|
// These methods are required by the stream.Payload interface, but we don't use them.
|
|
func (eventPayload) HasReadPermission(acl.Authorizer) bool { return false }
|
|
|
|
func (eventPayload) ToSubscriptionEvent(uint64) *pbsubscribe.Event { return nil }
|
|
|
|
type wildcardSubject struct {
|
|
resourceType storage.UnversionedType
|
|
}
|
|
|
|
func (s wildcardSubject) String() string {
|
|
return s.resourceType.Group + indexSeparator +
|
|
s.resourceType.Kind + indexSeparator +
|
|
storage.Wildcard
|
|
}
|
|
|
|
type tenancySubject struct {
|
|
// TODO(peering/v2) update tenancy subject to account for peer tenancies
|
|
resourceType storage.UnversionedType
|
|
tenancy *pbresource.Tenancy
|
|
}
|
|
|
|
func (s tenancySubject) String() string {
|
|
return s.resourceType.Group + indexSeparator +
|
|
s.resourceType.Kind + indexSeparator +
|
|
s.tenancy.Partition + indexSeparator +
|
|
|
|
s.tenancy.Namespace
|
|
}
|
|
|
|
// publishEvent sends the event to the relevant Watches.
|
|
func (s *Store) publishEvent(idx uint64, event *pbresource.WatchEvent) {
|
|
var id *pbresource.ID
|
|
switch {
|
|
case event.GetUpsert() != nil:
|
|
id = event.GetUpsert().GetResource().GetId()
|
|
case event.GetDelete() != nil:
|
|
id = event.GetDelete().GetResource().GetId()
|
|
default:
|
|
panic(fmt.Sprintf("(*Store).publishEvent cannot handle events of type %T", event.GetEvent()))
|
|
}
|
|
resourceType := storage.UnversionedTypeFrom(id.Type)
|
|
|
|
// We publish two copies of the event: one to the tenancy-specific subject and
|
|
// another to a wildcard subject. Ideally, we'd be able to put the type in the
|
|
// topic instead and use stream.SubjectWildcard, but this requires knowing all
|
|
// types up-front (to register the snapshot handlers).
|
|
s.pub.Publish([]stream.Event{
|
|
{
|
|
Topic: eventTopic,
|
|
Index: idx,
|
|
Payload: eventPayload{
|
|
subject: wildcardSubject{resourceType},
|
|
event: event,
|
|
},
|
|
},
|
|
{
|
|
Topic: eventTopic,
|
|
Index: idx,
|
|
Payload: eventPayload{
|
|
subject: tenancySubject{
|
|
resourceType: resourceType,
|
|
tenancy: id.Tenancy,
|
|
},
|
|
event: event,
|
|
},
|
|
},
|
|
})
|
|
}
|
|
|
|
// watchSnapshot implements a stream.SnapshotFunc to provide upsert events for
|
|
// the initial state of the world.
|
|
func (s *Store) watchSnapshot(req stream.SubscribeRequest, snap stream.SnapshotAppender) (uint64, error) {
|
|
var q query
|
|
switch t := req.Subject.(type) {
|
|
case tenancySubject:
|
|
q.resourceType = t.resourceType
|
|
q.tenancy = t.tenancy
|
|
case wildcardSubject:
|
|
q.resourceType = t.resourceType
|
|
q.tenancy = &pbresource.Tenancy{
|
|
Partition: storage.Wildcard,
|
|
Namespace: storage.Wildcard,
|
|
}
|
|
// TODO(peering/v2) maybe handle wildcards in peer tenancy
|
|
default:
|
|
return 0, fmt.Errorf("unhandled subject type: %T", req.Subject)
|
|
}
|
|
|
|
tx := s.txn(false)
|
|
defer tx.Abort()
|
|
|
|
idx, err := currentEventIndex(tx)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
results, err := listTxn(tx, q)
|
|
if err != nil {
|
|
return 0, nil
|
|
}
|
|
|
|
events := make([]stream.Event, 0, len(results)+1)
|
|
addEvent := func(event *pbresource.WatchEvent) {
|
|
events = append(events, stream.Event{
|
|
Topic: eventTopic,
|
|
Index: idx,
|
|
Payload: eventPayload{
|
|
subject: req.Subject,
|
|
event: event,
|
|
},
|
|
})
|
|
}
|
|
|
|
for _, r := range results {
|
|
addEvent(&pbresource.WatchEvent{
|
|
Event: &pbresource.WatchEvent_Upsert_{
|
|
Upsert: &pbresource.WatchEvent_Upsert{
|
|
Resource: r,
|
|
},
|
|
},
|
|
})
|
|
}
|
|
addEvent(&pbresource.WatchEvent{
|
|
Event: &pbresource.WatchEvent_EndOfSnapshot_{
|
|
EndOfSnapshot: &pbresource.WatchEvent_EndOfSnapshot{},
|
|
},
|
|
})
|
|
snap.Append(events)
|
|
|
|
return idx, nil
|
|
}
|