forked from Bo0mer/mozzle
-
Notifications
You must be signed in to change notification settings - Fork 0
/
monitor.go
410 lines (371 loc) · 10.6 KB
/
monitor.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
package mozzle
import (
"context"
"crypto/tls"
"fmt"
"io/ioutil"
"log"
"net"
"net/http"
"net/url"
"os"
"sync"
"time"
"golang.org/x/oauth2"
"github.com/Bo0mer/ccv2"
"github.com/cloudfoundry/noaa/consumer"
"github.com/cloudfoundry/sonde-go/events"
)
// DefaultRPCTimeout is the default timeout when making remote calls.
const DefaultRPCTimeout = 15 * time.Second
// DefaultRefreshInterval is the default interval for refreshing application
// states.
const DefaultRefreshInterval = 15 * time.Second
// Firehose should implement a streaming firehose client that streams all
// log and event messages.
type Firehose interface {
// Stream should listen indefinitely for all log and event messages.
//
// The clients should not made any assumption about the order of the
// received events.
//
// Whenever an error is encountered, the error should be sent down the error
// channel and Stream should attempt to reconnect indefinitely.
Stream(appGUID string, authToken string) (outputChan <-chan *events.Envelope, errorChan <-chan error)
}
// Target describes a monitoring target.
type Target struct {
API string
Username string
Password string
// Token should be a valid OAuth2 bearer token, including a refresh token.
// If token is provided the username and password fields should be left emtpy.
Token *oauth2.Token
Insecure bool
Org string
Space string
// RPCTimeout configures the timeouts when making RPCs.
RPCTimeout time.Duration
// RefreshInterval configures the polling interval for application
// state changes.
RefreshInterval time.Duration
}
// AppMonitor implements a Cloud Foundry application monitor that collects
// various application metrics and emits them using a provided emitter.
type AppMonitor struct {
// Emitter is the emitter used for sending metrics.
Emitter Emitter
// CloudController client for the API.
CloudController *ccv2.Client
// Firehose streaming client used for receiving logs and events.
Firehose Firehose
// UAA should provide valid OAuth2 tokens for the specific Cloud Foundry system.
UAA oauth2.TokenSource
// ErrLog is used for logging erros that occur when monitoring applications.
ErrLog *log.Logger
// RPCTimeout configures the timeouts when making RPCs.
RPCTimeout time.Duration
// RefreshInterval configures the polling interval for application
// state changes.
RefreshInterval time.Duration
initOnce sync.Once
mu sync.Mutex // guards
monitored map[string]struct{}
}
// Monitor monitors a target for events and emits them using the provided.
// Emitter.
// It is wrapper for creating new AppMonitor and starting it for the specified
// organization and space.
// It uses default implementations of Firehose, UAA and ccv2.Client.
func Monitor(ctx context.Context, t Target, e Emitter) (err error) {
u, err := url.Parse(t.API)
if err != nil {
return err
}
var httpClient = http.DefaultClient
if t.Insecure {
httpClient = defaultInsecureClient
}
cf := &ccv2.Client{
API: u,
HTTPClient: httpClient,
}
if t.RPCTimeout == 0 {
t.RPCTimeout = DefaultRPCTimeout
}
infoCtx, cancel := context.WithTimeout(ctx, t.RPCTimeout)
defer cancel()
info, err := cf.Info(infoCtx)
if err != nil {
return err
}
oauthConfig := &oauth2.Config{
ClientID: "cf",
Endpoint: oauth2.Endpoint{
AuthURL: info.TokenEndpoint + "/oauth/auth",
TokenURL: info.TokenEndpoint + "/oauth/token",
},
}
// clientCtx is used to pass a non-default *http.Client to package aouth2.
clientCtx := context.WithValue(context.Background(), oauth2.HTTPClient, httpClient)
var token = t.Token
if token == nil {
token, err = oauthConfig.PasswordCredentialsToken(clientCtx, t.Username, t.Password)
if err != nil {
return err
}
}
cf = &ccv2.Client{
API: u,
HTTPClient: oauthConfig.Client(clientCtx, token),
}
tlsConfig := &tls.Config{InsecureSkipVerify: t.Insecure}
firehose := consumer.New(info.DopplerEndpoint, tlsConfig, nil)
defer func() {
if cerr := firehose.Close(); cerr != nil && err == nil {
err = cerr
}
}()
uaa := oauthConfig.TokenSource(clientCtx, token)
tr := tokenRefresher{uaa}
firehose.RefreshTokenFrom(&tr)
mon := AppMonitor{
ErrLog: log.New(os.Stderr, "mozzle: ", 0),
RefreshInterval: t.RefreshInterval,
RPCTimeout: t.RPCTimeout,
CloudController: cf,
Firehose: firehose,
Emitter: e,
UAA: uaa,
}
return mon.Monitor(ctx, t.Org, t.Space)
}
// Monitor starts monitoring all applications under the specified organization
// and space.
// Monitor blocks until the context is canceled.
func (m *AppMonitor) Monitor(ctx context.Context, org, space string) error {
m.initOnce.Do(func() {
m.monitored = make(map[string]struct{})
if m.ErrLog == nil {
m.ErrLog = log.New(ioutil.Discard, "", 0)
}
if m.RPCTimeout == 0 {
m.RPCTimeout = DefaultRPCTimeout
}
if m.RefreshInterval == 0 {
m.RefreshInterval = DefaultRefreshInterval
}
})
spaceCtx, cancel := context.WithTimeout(ctx, m.RPCTimeout)
defer cancel()
spaceEntity, err := getSpace(spaceCtx, m.CloudController, org, space)
if err != nil {
return err
}
applications := func() ([]application, error) {
appQuery := ccv2.Query{
Filter: ccv2.FilterSpaceGUID,
Op: ccv2.OperatorEqual,
Value: spaceEntity.GUID,
}
appCtx, cancel := context.WithTimeout(ctx, m.RPCTimeout)
defer cancel()
apps, err := m.CloudController.Applications(appCtx, appQuery)
if err != nil {
return nil, err
}
var res []application
for _, app := range apps {
res = append(res, application{app, org, space})
}
return res, nil
}
ticker := time.NewTicker(m.RefreshInterval)
defer ticker.Stop()
for {
select {
case <-ticker.C:
apps, err := applications()
if err != nil {
m.ErrLog.Printf("error fetching apps: %v\n", err)
continue
}
m.mu.Lock()
for _, app := range apps {
if _, ok := m.monitored[app.GUID]; ok {
continue
}
m.monitored[app.GUID] = struct{}{}
go m.monitorApp(ctx, app)
}
m.mu.Unlock()
case <-ctx.Done():
return ctx.Err()
}
}
}
// monitorApp monitors particular application.
func (m *AppMonitor) monitorApp(ctx context.Context, app application) {
monitorCtx, cancel := context.WithCancel(ctx)
defer func() {
m.mu.Lock()
delete(m.monitored, app.GUID)
m.mu.Unlock()
cancel()
}()
go m.monitorFirehose(monitorCtx, app)
ticker := time.NewTicker(m.RefreshInterval)
defer ticker.Stop()
for {
select {
case now := <-ticker.C:
if err := m.emitAppSummary(ctx, app); isAppNotFound(err) {
return
}
m.emitAppEvents(ctx, app, now.Add(-1*m.RefreshInterval))
case <-ctx.Done():
return
}
}
}
// monitorFirehose streams events from the firehose endpoint and creates
// metrics based on the received events.
func (m *AppMonitor) monitorFirehose(ctx context.Context, app application) {
token, err := m.UAA.Token()
if err != nil {
return
}
tokenStr := token.TokenType + " " + token.AccessToken
msgChan, errorChan := m.Firehose.Stream(app.GUID, tokenStr)
for {
select {
case event := <-msgChan:
switch event.GetEventType() {
case events.Envelope_ContainerMetric:
containerMetrics{event.GetContainerMetric(), app}.EmitTo(m.Emitter)
case events.Envelope_HttpStartStop:
httpMetrics{event.GetHttpStartStop(), app}.EmitTo(m.Emitter)
}
case <-ctx.Done():
m.ErrLog.Printf("stopping firehose monitor for app %s due to: %v",
app.GUID, ctx.Err())
return
case err, ok := <-errorChan:
if !ok {
m.ErrLog.Printf("firehose error chan closed, exiting\n")
return
}
m.ErrLog.Printf("error streaming from firehose: %v\n", err)
}
}
}
func (m *AppMonitor) emitAppSummary(ctx context.Context, app application) error {
summaryCtx, cancel := context.WithTimeout(ctx, m.RPCTimeout)
defer cancel()
summary, err := m.CloudController.ApplicationSummary(summaryCtx, app.Application)
if err != nil {
m.ErrLog.Printf("error fetching app summary: %v\n", err)
return err
}
applicationMetrics{summary, app}.EmitTo(m.Emitter)
return nil
}
func (m *AppMonitor) emitAppEvents(ctx context.Context, app application, since time.Time) {
events, err := m.appEventsSince(ctx, app, since)
if err != nil {
m.ErrLog.Printf("error fetching app events: %v\n", err)
return
}
for _, event := range events {
applicationEvent{event, app}.EmitTo(m.Emitter)
}
}
func (m *AppMonitor) appEventsSince(ctx context.Context, app application, t time.Time) ([]ccv2.Event, error) {
acteeQuery := ccv2.Query{
Filter: ccv2.FilterActee,
Op: ccv2.OperatorEqual,
Value: app.GUID,
}
timestampQuery := ccv2.Query{
Filter: ccv2.FilterTimestamp,
Op: ccv2.OperatorGreater,
Value: t.String(),
}
eventsCtx, cancel := context.WithTimeout(ctx, m.RPCTimeout)
defer cancel()
return m.CloudController.Events(eventsCtx, acteeQuery, timestampQuery)
}
// getSpace returns the Space entity described by the org, space pair.
func getSpace(ctx context.Context, cc *ccv2.Client, org, space string) (ccv2.Space, error) {
orgs, err := cc.Organizations(ctx,
ccv2.Query{
Filter: ccv2.FilterName,
Op: ccv2.OperatorEqual,
Value: org,
})
if err != nil {
return ccv2.Space{}, err
}
if len(orgs) != 1 {
return ccv2.Space{}, fmt.Errorf("%q does not describe a single organization", org)
}
spaces, err := cc.Spaces(ctx,
ccv2.Query{
Filter: ccv2.FilterOrganizationGUID,
Op: ccv2.OperatorEqual,
Value: orgs[0].GUID,
},
ccv2.Query{
Filter: ccv2.FilterName,
Op: ccv2.OperatorEqual,
Value: space,
})
if err != nil {
return ccv2.Space{}, err
}
if len(spaces) != 1 {
return ccv2.Space{}, fmt.Errorf("%q does not describe a single space", space)
}
return spaces[0], nil
}
func isAppNotFound(err error) bool {
rerr, ok := err.(*ccv2.UnexpectedResponseError)
if !ok {
return false
}
// If the HTTP status code is Not Found (404), the application is missing.
return rerr.StatusCode == 404
}
// application wraps ccv2.Application and adds the name of the org and space
// in which the application resides.
type application struct {
ccv2.Application
Org string
Space string
}
type tokenRefresher struct {
oauth2.TokenSource
}
func (tr *tokenRefresher) RefreshAuthToken() (string, error) {
t, err := tr.Token()
if err != nil {
return "", err
}
return t.TokenType + " " + t.AccessToken, nil
}
var defaultInsecureClient = &http.Client{
Transport: &http.Transport{
Proxy: http.ProxyFromEnvironment,
DialContext: (&net.Dialer{
Timeout: 30 * time.Second,
KeepAlive: 30 * time.Second,
}).DialContext,
MaxIdleConns: 100,
IdleConnTimeout: 90 * time.Second,
TLSHandshakeTimeout: 10 * time.Second,
ExpectContinueTimeout: 1 * time.Second,
TLSClientConfig: &tls.Config{
InsecureSkipVerify: true,
},
},
}