arnaucube
/
derosuite
mirror of https://github.com/arnaucube/derosuite.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17 Commits
1 Branch
0 Tags
68 MiB
Tree: 222cdca240
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '222cdca240'
${ noResults }
derosuite/vendor/golang.org/x/tools/cmd/tip/tip.go

402 lines
9.6 KiB
Raw Normal View History

Status update release 1
6 years ago
  1. // Copyright 2014 The Go Authors. All rights reserved.
  2. // Use of this source code is governed by the Apache 2.0
  3. // license that can be found in the LICENSE file.
  5. // Command tip is the tip.golang.org server,
  6. // serving the latest HEAD straight from the Git oven.
  7. package main
  9. import (
  10. "bufio"
  11. "encoding/json"
  12. "errors"
  13. "flag"
  14. "fmt"
  15. "io"
  16. "io/ioutil"
  17. "log"
  18. "net/http"
  19. "net/http/httputil"
  20. "net/url"
  21. "os"
  22. "os/exec"
  23. "path/filepath"
  24. "sync"
  25. "time"
  26. )
  28. const (
  29. repoURL = "https://go.googlesource.com/"
  30. metaURL = "https://go.googlesource.com/?b=master&format=JSON"
  31. startTimeout = 10 * time.Minute
  32. )
  34. var startTime = time.Now()
  36. var (
  37. autoCertDomain = flag.String("autocert", "", "if non-empty, listen on port 443 and serve a LetsEncrypt cert for this hostname")
  38. autoCertCacheBucket = flag.String("autocert-bucket", "", "if non-empty, the Google Cloud Storage bucket in which to store the LetsEncrypt cache")
  39. )
  41. // runHTTPS, if non-nil, specifies the function to serve HTTPS.
  42. // It is set non-nil in cert.go with the "autocert" build tag.
  43. var runHTTPS func(http.Handler) error
  45. func main() {
  46. flag.Parse()
  48. const k = "TIP_BUILDER"
  49. var b Builder
  50. switch os.Getenv(k) {
  51. case "godoc":
  52. b = godocBuilder{}
  53. case "talks":
  54. b = talksBuilder{}
  55. default:
  56. log.Fatalf("Unknown %v value: %q", k, os.Getenv(k))
  57. }
  59. p := &Proxy{builder: b}
  60. go p.run()
  61. mux := newServeMux(p)
  63. log.Printf("Starting up tip server for builder %q", os.Getenv(k))
  65. errc := make(chan error, 1)
  67. go func() {
  68. errc <- http.ListenAndServe(":8080", mux)
  69. }()
  70. if *autoCertDomain != "" {
  71. if runHTTPS == nil {
  72. errc <- errors.New("can't use --autocert without building binary with the autocert build tag")
  73. } else {
  74. go func() {
  75. errc <- runHTTPS(mux)
  76. }()
  77. }
  78. log.Printf("Listening on port 443 with LetsEncrypt support on domain %q", *autoCertDomain)
  79. }
  80. if err := <-errc; err != nil {
  81. p.stop()
  82. log.Fatal(err)
  83. }
  84. }
  86. // Proxy implements the tip.golang.org server: a reverse-proxy
  87. // that builds and runs godoc instances showing the latest docs.
  88. type Proxy struct {
  89. builder Builder
  91. mu sync.Mutex // protects the followin'
  92. proxy http.Handler
  93. cur string // signature of gorepo+toolsrepo
  94. cmd *exec.Cmd // live godoc instance, or nil for none
  95. side string
  96. hostport string // host and port of the live instance
  97. err error
  98. }
  100. type Builder interface {
  101. Signature(heads map[string]string) string
  102. Init(dir, hostport string, heads map[string]string) (*exec.Cmd, error)
  103. HealthCheck(hostport string) error
  104. }
  106. func (p *Proxy) ServeHTTP(w http.ResponseWriter, r *http.Request) {
  107. if r.URL.Path == "/_tipstatus" {
  108. p.serveStatus(w, r)
  109. return
  110. }
  111. p.mu.Lock()
  112. proxy := p.proxy
  113. err := p.err
  114. p.mu.Unlock()
  115. if proxy == nil {
  116. s := "starting up"
  117. if err != nil {
  118. s = err.Error()
  119. }
  120. http.Error(w, s, http.StatusInternalServerError)
  121. return
  122. }
  123. proxy.ServeHTTP(w, r)
  124. }
  126. func (p *Proxy) serveStatus(w http.ResponseWriter, r *http.Request) {
  127. p.mu.Lock()
  128. defer p.mu.Unlock()
  129. fmt.Fprintf(w, "side=%v\ncurrent=%v\nerror=%v\nuptime=%v\n", p.side, p.cur, p.err, int(time.Since(startTime).Seconds()))
  130. }
  132. func (p *Proxy) serveHealthCheck(w http.ResponseWriter, r *http.Request) {
  133. p.mu.Lock()
  134. defer p.mu.Unlock()
  136. // NOTE: (App Engine only; not GKE) Status 502, 503, 504 are
  137. // the only status codes that signify an unhealthy app. So
  138. // long as this handler returns one of those codes, this
  139. // instance will not be sent any requests.
  140. if p.proxy == nil {
  141. log.Printf("Health check: not ready")
  142. http.Error(w, "Not ready", http.StatusServiceUnavailable)
  143. return
  144. }
  146. if err := p.builder.HealthCheck(p.hostport); err != nil {
  147. log.Printf("Health check failed: %v", err)
  148. http.Error(w, "Health check failed", http.StatusServiceUnavailable)
  149. return
  150. }
  151. io.WriteString(w, "ok")
  152. }
  154. // run runs in its own goroutine.
  155. func (p *Proxy) run() {
  156. p.side = "a"
  157. for {
  158. p.poll()
  159. time.Sleep(30 * time.Second)
  160. }
  161. }
  163. func (p *Proxy) stop() {
  164. p.mu.Lock()
  165. defer p.mu.Unlock()
  166. if p.cmd != nil {
  167. p.cmd.Process.Kill()
  168. }
  169. }
  171. // poll runs from the run loop goroutine.
  172. func (p *Proxy) poll() {
  173. heads := gerritMetaMap()
  174. if heads == nil {
  175. return
  176. }
  178. sig := p.builder.Signature(heads)
  180. p.mu.Lock()
  181. changes := sig != p.cur
  182. curSide := p.side
  183. p.cur = sig
  184. p.mu.Unlock()
  186. if !changes {
  187. return
  188. }
  190. newSide := "b"
  191. if curSide == "b" {
  192. newSide = "a"
  193. }
  195. dir := filepath.Join(os.TempDir(), "tip", newSide)
  196. if err := os.MkdirAll(dir, 0755); err != nil {
  197. p.err = err
  198. return
  199. }
  200. hostport := "localhost:8081"
  201. if newSide == "b" {
  202. hostport = "localhost:8082"
  203. }
  204. cmd, err := p.builder.Init(dir, hostport, heads)
  205. if err != nil {
  206. err = fmt.Errorf("builder.Init: %v", err)
  207. } else {
  208. go func() {
  209. // TODO(adg,bradfitz): be smarter about dead processes
  210. if err := cmd.Wait(); err != nil {
  211. log.Printf("process in %v exited: %v", dir, err)
  212. }
  213. }()
  214. err = waitReady(p.builder, hostport)
  215. if err != nil {
  216. cmd.Process.Kill()
  217. err = fmt.Errorf("waitReady: %v", err)
  218. }
  219. }
  221. p.mu.Lock()
  222. defer p.mu.Unlock()
  223. if err != nil {
  224. log.Println(err)
  225. p.err = err
  226. return
  227. }
  229. u, err := url.Parse(fmt.Sprintf("http://%v/", hostport))
  230. if err != nil {
  231. err = fmt.Errorf("parsing hostport: %v", err)
  232. log.Println(err)
  233. p.err = err
  234. return
  235. }
  236. p.proxy = httputil.NewSingleHostReverseProxy(u)
  237. p.side = newSide
  238. p.hostport = hostport
  239. if p.cmd != nil {
  240. p.cmd.Process.Kill()
  241. }
  242. p.cmd = cmd
  243. }
  245. func newServeMux(p *Proxy) http.Handler {
  246. mux := http.NewServeMux()
  247. mux.Handle("/", httpsOnlyHandler{p})
  248. mux.HandleFunc("/_ah/health", p.serveHealthCheck)
  249. return mux
  250. }
  252. func waitReady(b Builder, hostport string) error {
  253. var err error
  254. deadline := time.Now().Add(startTimeout)
  255. for time.Now().Before(deadline) {
  256. if err = b.HealthCheck(hostport); err == nil {
  257. return nil
  258. }
  259. time.Sleep(time.Second)
  260. }
  261. return fmt.Errorf("timed out waiting for process at %v: %v", hostport, err)
  262. }
  264. func runErr(cmd *exec.Cmd) error {
  265. out, err := cmd.CombinedOutput()
  266. if err != nil {
  267. if len(out) == 0 {
  268. return err
  269. }
  270. return fmt.Errorf("%s\n%v", out, err)
  271. }
  272. return nil
  273. }
  275. func checkout(repo, hash, path string) error {
  276. // Clone git repo if it doesn't exist.
  277. if _, err := os.Stat(filepath.Join(path, ".git")); os.IsNotExist(err) {
  278. if err := os.MkdirAll(filepath.Dir(path), 0755); err != nil {
  279. return fmt.Errorf("mkdir: %v", err)
  280. }
  281. if err := runErr(exec.Command("git", "clone", repo, path)); err != nil {
  282. return fmt.Errorf("clone: %v", err)
  283. }
  284. } else if err != nil {
  285. return fmt.Errorf("stat .git: %v", err)
  286. }
  288. // Pull down changes and update to hash.
  289. cmd := exec.Command("git", "fetch")
  290. cmd.Dir = path
  291. if err := runErr(cmd); err != nil {
  292. return fmt.Errorf("fetch: %v", err)
  293. }
  294. cmd = exec.Command("git", "reset", "--hard", hash)
  295. cmd.Dir = path
  296. if err := runErr(cmd); err != nil {
  297. return fmt.Errorf("reset: %v", err)
  298. }
  299. cmd = exec.Command("git", "clean", "-d", "-f", "-x")
  300. cmd.Dir = path
  301. if err := runErr(cmd); err != nil {
  302. return fmt.Errorf("clean: %v", err)
  303. }
  304. return nil
  305. }
  307. var timeoutClient = &http.Client{Timeout: 10 * time.Second}
  309. // gerritMetaMap returns the map from repo name (e.g. "go") to its
  310. // latest master hash.
  311. // The returned map is nil on any transient error.
  312. func gerritMetaMap() map[string]string {
  313. res, err := timeoutClient.Get(metaURL)
  314. if err != nil {
  315. log.Printf("Error getting Gerrit meta map: %v", err)
  316. return nil
  317. }
  318. defer res.Body.Close()
  319. defer io.Copy(ioutil.Discard, res.Body) // ensure EOF for keep-alive
  320. if res.StatusCode != 200 {
  321. return nil
  322. }
  323. var meta map[string]struct {
  324. Branches map[string]string
  325. }
  326. br := bufio.NewReader(res.Body)
  327. // For security reasons or something, this URL starts with ")]}'\n" before
  328. // the JSON object. So ignore that.
  329. // Shawn Pearce says it's guaranteed to always be just one line, ending in '\n'.
  330. for {
  331. b, err := br.ReadByte()
  332. if err != nil {
  333. return nil
  334. }
  335. if b == '\n' {
  336. break
  337. }
  338. }
  339. if err := json.NewDecoder(br).Decode(&meta); err != nil {
  340. log.Printf("JSON decoding error from %v: %s", metaURL, err)
  341. return nil
  342. }
  343. m := map[string]string{}
  344. for repo, v := range meta {
  345. if master, ok := v.Branches["master"]; ok {
  346. m[repo] = master
  347. }
  348. }
  349. return m
  350. }
  352. func getOK(url string) (body []byte, err error) {
  353. res, err := timeoutClient.Get(url)
  354. if err != nil {
  355. return nil, err
  356. }
  357. body, err = ioutil.ReadAll(res.Body)
  358. res.Body.Close()
  359. if err != nil {
  360. return nil, err
  361. }
  362. if res.StatusCode != http.StatusOK {
  363. return nil, errors.New(res.Status)
  364. }
  365. return body, nil
  366. }
  368. // httpsOnlyHandler redirects requests to "http://example.com/foo?bar" to
  369. // "https://example.com/foo?bar". It should be used when the server is listening
  370. // for HTTP traffic behind a proxy that terminates TLS traffic, not when the Go
  371. // server is terminating TLS directly.
  372. type httpsOnlyHandler struct {
  373. h http.Handler
  374. }
  376. // isProxiedReq checks whether the server is running behind a proxy that may be
  377. // terminating TLS.
  378. func isProxiedReq(r *http.Request) bool {
  379. if _, ok := r.Header["X-Appengine-Https"]; ok {
  380. return true
  381. }
  382. if _, ok := r.Header["X-Forwarded-Proto"]; ok {
  383. return true
  384. }
  385. return false
  386. }
  388. func (h httpsOnlyHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
  389. if r.Header.Get("X-Appengine-Https") == "off" || r.Header.Get("X-Forwarded-Proto") == "http" ||
  390. (!isProxiedReq(r) && r.TLS == nil) {
  391. r.URL.Scheme = "https"
  392. r.URL.Host = r.Host
  393. http.Redirect(w, r, r.URL.String(), http.StatusFound)
  394. return
  395. }
  396. if r.Header.Get("X-Appengine-Https") == "on" || r.Header.Get("X-Forwarded-Proto") == "https" ||
  397. (!isProxiedReq(r) && r.TLS != nil) {
  398. // Only set this header when we're actually in production.
  399. w.Header().Set("Strict-Transport-Security", "max-age=31536000; preload")
  400. }
  401. h.h.ServeHTTP(w, r)
  402. }