Persist proxies from config files

[mkeeler]

Also change how loadProxies works. Now it will load all persisted proxies into a map, then when loading config file proxies will look up the previous proxy token in that map.

The new test is actually testing that proxy tokens are saved/restored between unloading/reloading of the proxy configuration (happens during a restart or during a online config reload). Additionally its also testing that removing a proxy from the config will remove it from what gets persisted to disk and wont get reload the next time the proxies are read from disk.

Additionally I tested manually with running a config file managed proxy, performing online reloads and restarting the process. It no longer kills the existing proxy and restarts it.

Some behavior that is currently still in there is that proxy configurations can be overwritten for config-file based proxies via the API. During the next reload the configuration will be reloaded from the config and the API registration will be effectively gone.

There is a edge case where you have a proxy in the config, do an online register via the API, remove it from the config and when you reload/restart the API proxy is still valid and gets loaded properly. I don't think this is incorrect, just behavior that might not be immediately apparent.

[banks]

Some behavior that is currently still in there

To be clear for other readers, that is the same issue that occurs now - if you update a config-file registration via API it's new config will survive until agent reloads. After reload, agent will see both states and will treat the config file is authoritative so effectively "undoes" the changes made via the API.

I think that edge case is arguably the desired behaviour but might confuse someone. In practice you should choose one of files or API for registering a particular instance so this is moot now and after this PR.

[banks]

This looks great!

Mostly nit picks, one thing that seems worth changing to not end up in a worse state than now in case snapshot files are corrupt.

[banks]

nit: idiomatic go comments always start with the name of the variable or function being documented. Even though this is private and so will never show up in Godoc, it seems better to stick to the convention unless it's really awkward for some reason.

In this case it's trivial to add // proxyLock protects proxy...

[mkeeler]

I never knew that was a thing. I will update it.

[banks]

bikeshed: is it clearer to say FromFile? Technically "config" is also provided via the API, the distinction here is really the source (file vs API).

[banks]

nit: document the new param semantics.

[banks]

nit: go vet will complain a public function has no doc comment. Maybe just copy paste the old one here?

[banks]

ditto

[banks]

nit: it's more idiomatic in go to prefer to return in the branch rather than indent the rest of the method in an else. We could just return nil here and then remove the else below.

[mkeeler]

I forgot for a moment you can do a range on a nil slice and it will do nothing. Otherwise the else would be necessary to prevent that as we wouldn't return for an IsNotExist error.

[banks]

Ah true, I thought all of the rest of the method was guarded by else so return nil here was fine but yeah all good 😄

[banks]

Interesting thought: these failures have changed with this refactor. Before if a snapshot file was corrupt or broken in some way, the proxies from config would still be loaded and just the API persisted ones after the failing one in the dir list would fail to load.

I don't think that was strongly principled but it's now the case that a corrupt snapshot file prevents us from loading any proxies at all even from config...

Maybe we should move this whole loop out into another method and then still continue if it errors but log the error. That way we can still load proxies from config file as before even if the state files are jank. (and then we'd blow away the state which "fixes" the problem with the caveat that API registered stuff might dissappear. That at least is the same as now though not worse.

[mkeeler]

Moving it out isn't really necessary. Instead I can just change the return fmt.Errorf into a.logger.Printf and all will be well.

[banks]

Right but you need to stop the current loop iteration too. Return and separate method seems clean to me just like you did 👍

[banks]

Great 🎉

[banks]

Hmm the test failures actually look legit:

--- FAIL: TestAgent_PurgeProxyOnDuplicate (0.03s)
    agent_test.go:1527: 
        	Error Trace:	agent_test.go:1527
        	Error:      	An error is expected but got nil.
        	Test:       	TestAgent_PurgeProxyOnDuplicate
        	Messages:   	should have removed remote state
--- FAIL: TestAgent_ReLoadProxiesFromConfig (0.19s)
    agent_test.go:2890: 
        	Error Trace:	agent_test.go:2890
        	Error:      	"map[web-proxy:%!s(*local.ManagedProxy=&{0xc009de59c0 9336b181-3b34-a340-b656-a90f3ae3a186 0xc009dc8300})]" should have 0 item(s), but has 1
        	Test:       	TestAgent_ReLoadProxiesFromConfig

Can you check those out?

[mkeeler]

So they do. Apparently my GOTEST_FLAGS="-run TestAgent_*Prox*" wasn't running everything I thought it was.

[mkeeler]

@banks Fortunately it was the tests that needed updating. Serves me right for trying to use two wildcards in a test name match.

[mkeeler]

Locally ran make test and everything passed without needing a retry.

[banks]

FWIW I think -run can be is a regex:

Yep:

$ go help testflag
...
	-run regexp
	    Run only those tests and examples matching the regular expression.
	    For tests, the regular expression is split by unbracketed slash (/)
	    characters into a sequence of regular expressions, and each part
	    of a test's identifier must match the corresponding element in
	    the sequence, if any. Note that possible parents of matches are
	    run too, so that -run=X/Y matches and runs and reports the result
	    of all tests matching X, even those without sub-tests matching Y,
	    because it must run them to look for those sub-tests.