NotAShelf
a45ee57da7
Signed-off-by: NotAShelf <raf@notashelf.dev> Change-Id: I26a71054250c71747e92c2803d8c39ed6a6a6964
235 lines
6.4 KiB
Go
235 lines
6.4 KiB
Go
package server
|
|
|
|
import (
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"log/slog"
|
|
"net/http"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/prometheus/client_golang/prometheus/promhttp"
|
|
"notashelf.dev/ncro/internal/cache"
|
|
"notashelf.dev/ncro/internal/config"
|
|
"notashelf.dev/ncro/internal/metrics"
|
|
"notashelf.dev/ncro/internal/prober"
|
|
"notashelf.dev/ncro/internal/router"
|
|
)
|
|
|
|
// HTTP handler implementing the Nix binary cache protocol.
|
|
type Server struct {
|
|
router *router.Router
|
|
prober *prober.Prober
|
|
db *cache.DB
|
|
upstreams []config.UpstreamConfig
|
|
client *http.Client
|
|
cachePriority int
|
|
}
|
|
|
|
// Creates a Server.
|
|
func New(r *router.Router, p *prober.Prober, db *cache.DB, upstreams []config.UpstreamConfig, cachePriority int) *Server {
|
|
return &Server{
|
|
router: r,
|
|
prober: p,
|
|
db: db,
|
|
upstreams: upstreams,
|
|
client: &http.Client{Timeout: 60 * time.Second},
|
|
cachePriority: cachePriority,
|
|
}
|
|
}
|
|
|
|
func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
path := r.URL.Path
|
|
switch {
|
|
case path == "/nix-cache-info":
|
|
s.handleCacheInfo(w, r)
|
|
case path == "/health":
|
|
s.handleHealth(w, r)
|
|
case path == "/metrics":
|
|
promhttp.Handler().ServeHTTP(w, r)
|
|
case strings.HasSuffix(path, ".narinfo"):
|
|
s.handleNarinfo(w, r)
|
|
case strings.HasPrefix(path, "/nar/"):
|
|
s.handleNAR(w, r)
|
|
default:
|
|
http.NotFound(w, r)
|
|
}
|
|
}
|
|
|
|
func (s *Server) handleCacheInfo(w http.ResponseWriter, _ *http.Request) {
|
|
w.Header().Set("Content-Type", "text/plain")
|
|
fmt.Fprintln(w, "StoreDir: /nix/store")
|
|
fmt.Fprintln(w, "WantMassQuery: 1")
|
|
fmt.Fprintf(w, "Priority: %d\n", s.cachePriority)
|
|
}
|
|
|
|
func (s *Server) handleHealth(w http.ResponseWriter, _ *http.Request) {
|
|
type upstreamStatus struct {
|
|
URL string `json:"url"`
|
|
Status string `json:"status"`
|
|
LatencyMs float64 `json:"latency_ms"`
|
|
ConsecutiveFails uint32 `json:"consecutive_fails"`
|
|
}
|
|
type response struct {
|
|
Status string `json:"status"`
|
|
Upstreams []upstreamStatus `json:"upstreams"`
|
|
}
|
|
|
|
sorted := s.prober.SortedByLatency()
|
|
upstreams := make([]upstreamStatus, len(sorted))
|
|
var downCount int
|
|
var anyDegraded bool
|
|
for i, h := range sorted {
|
|
upstreams[i] = upstreamStatus{
|
|
URL: h.URL,
|
|
Status: h.Status.String(),
|
|
LatencyMs: h.EMALatency,
|
|
ConsecutiveFails: h.ConsecutiveFails,
|
|
}
|
|
if h.Status == prober.StatusDown {
|
|
downCount++
|
|
} else if h.Status == prober.StatusDegraded {
|
|
anyDegraded = true
|
|
}
|
|
}
|
|
|
|
overall := "ok"
|
|
switch {
|
|
case len(sorted) > 0 && downCount == len(sorted):
|
|
overall = "down"
|
|
case downCount > 0 || anyDegraded:
|
|
overall = "degraded"
|
|
}
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
json.NewEncoder(w).Encode(response{Status: overall, Upstreams: upstreams})
|
|
}
|
|
|
|
func (s *Server) handleNarinfo(w http.ResponseWriter, r *http.Request) {
|
|
hash := strings.TrimSuffix(strings.TrimPrefix(r.URL.Path, "/"), ".narinfo")
|
|
|
|
result, err := s.router.Resolve(hash, s.upstreamURLs())
|
|
if err != nil {
|
|
slog.Warn("narinfo resolve failed", "hash", hash, "error", err)
|
|
metrics.NarinfoRequests.WithLabelValues("error").Inc()
|
|
switch {
|
|
case errors.Is(err, router.ErrNotFound):
|
|
http.NotFound(w, r)
|
|
default:
|
|
http.Error(w, "upstream unavailable", http.StatusBadGateway)
|
|
}
|
|
return
|
|
}
|
|
|
|
slog.Info("narinfo routed", "hash", hash, "upstream", result.URL, "cache_hit", result.CacheHit)
|
|
metrics.NarinfoRequests.WithLabelValues("200").Inc()
|
|
|
|
if len(result.NarInfoBytes) > 0 {
|
|
w.Header().Set("Content-Type", "text/x-nix-narinfo")
|
|
w.WriteHeader(http.StatusOK)
|
|
w.Write(result.NarInfoBytes)
|
|
return
|
|
}
|
|
s.proxyRequest(w, r, result.URL+r.URL.Path)
|
|
}
|
|
|
|
func (s *Server) handleNAR(w http.ResponseWriter, r *http.Request) {
|
|
metrics.NARRequests.Inc()
|
|
|
|
// Consult route cache: the narURL is the path without the leading slash.
|
|
narURL := strings.TrimPrefix(r.URL.Path, "/")
|
|
var tried string
|
|
if entry, err := s.db.GetRouteByNarURL(narURL); err == nil && entry != nil && entry.IsValid() {
|
|
tried = entry.UpstreamURL
|
|
if s.tryNARUpstream(w, r, entry.UpstreamURL) {
|
|
return
|
|
}
|
|
}
|
|
|
|
// Fall back through all upstreams sorted by latency.
|
|
for _, h := range s.prober.SortedByLatency() {
|
|
if h.Status == prober.StatusDown || h.URL == tried {
|
|
continue
|
|
}
|
|
if s.tryNARUpstream(w, r, h.URL) {
|
|
return
|
|
}
|
|
}
|
|
http.NotFound(w, r)
|
|
}
|
|
|
|
// Attempts to serve a NAR from upstreamBase. Returns true if the upstream
|
|
// responded with a non-404 status.
|
|
func (s *Server) tryNARUpstream(w http.ResponseWriter, r *http.Request, upstreamBase string) bool {
|
|
targetURL := upstreamBase + r.URL.Path
|
|
req, err := http.NewRequestWithContext(r.Context(), r.Method, targetURL, r.Body)
|
|
if err != nil {
|
|
return false
|
|
}
|
|
for _, hdr := range []string{"Accept", "Accept-Encoding", "Range"} {
|
|
if v := r.Header.Get(hdr); v != "" {
|
|
req.Header.Set(hdr, v)
|
|
}
|
|
}
|
|
resp, err := s.client.Do(req)
|
|
if err != nil {
|
|
slog.Warn("NAR upstream failed", "upstream", upstreamBase, "error", err)
|
|
return false
|
|
}
|
|
if resp.StatusCode == http.StatusNotFound {
|
|
resp.Body.Close()
|
|
return false
|
|
}
|
|
defer resp.Body.Close()
|
|
slog.Debug("proxying NAR", "path", r.URL.Path, "upstream", upstreamBase)
|
|
s.copyResponse(w, resp)
|
|
return true
|
|
}
|
|
|
|
// Forwards r to targetURL and streams the response zero-copy.
|
|
func (s *Server) proxyRequest(w http.ResponseWriter, r *http.Request, targetURL string) {
|
|
req, err := http.NewRequestWithContext(r.Context(), r.Method, targetURL, r.Body)
|
|
if err != nil {
|
|
http.Error(w, "internal error", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
for _, h := range []string{"Accept", "Accept-Encoding", "Range"} {
|
|
if v := r.Header.Get(h); v != "" {
|
|
req.Header.Set(h, v)
|
|
}
|
|
}
|
|
resp, err := s.client.Do(req)
|
|
if err != nil {
|
|
slog.Error("upstream request failed", "url", targetURL, "error", err)
|
|
http.Error(w, "upstream error", http.StatusBadGateway)
|
|
return
|
|
}
|
|
defer resp.Body.Close()
|
|
s.copyResponse(w, resp)
|
|
}
|
|
|
|
// Copies response headers and body from resp to w.
|
|
func (s *Server) copyResponse(w http.ResponseWriter, resp *http.Response) {
|
|
for _, h := range []string{
|
|
"Content-Type", "Content-Length", "Content-Encoding",
|
|
"X-Nix-Signature", "Cache-Control", "Last-Modified",
|
|
} {
|
|
if v := resp.Header.Get(h); v != "" {
|
|
w.Header().Set(h, v)
|
|
}
|
|
}
|
|
w.WriteHeader(resp.StatusCode)
|
|
if _, err := io.Copy(w, resp.Body); err != nil {
|
|
slog.Warn("stream interrupted", "error", err)
|
|
}
|
|
}
|
|
|
|
func (s *Server) upstreamURLs() []string {
|
|
urls := make([]string, len(s.upstreams))
|
|
for i, u := range s.upstreams {
|
|
urls[i] = u.URL
|
|
}
|
|
return urls
|
|
}
|