Extract inbound tcp and websocket connection flow to separate classes, unify retrying #773
+1,139
−945
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
A more ambitious attempt to extract logic from Engine into separate classes
jglick
reviewed
Nov 4, 2024
jglick
reviewed
Nov 4, 2024
src/main/java/org/jenkinsci/remoting/engine/AbstractEndpointConnector.java
Outdated
Show resolved
Hide resolved
jglick
reviewed
Nov 4, 2024
src/main/java/org/jenkinsci/remoting/engine/EndpointConnector.java
Outdated
Show resolved
Hide resolved
jglick
reviewed
Nov 4, 2024
Comment on lines
+95
to
+101
| private final RSAPublicKey publicKey; | ||
| private final Map<String, String> headers; | ||
|
|
||
| public EngineJnlpConnectionStateListener(RSAPublicKey publicKey, Map<String, String> headers) { | ||
| this.publicKey = publicKey; | ||
| this.headers = headers; | ||
| } |
There was a problem hiding this comment.
Too bad JnlpConnectionStateListener is an abstract class (for no good reason)
jglick
reviewed
Nov 4, 2024
| return null; | ||
| } | ||
|
|
||
| // TODO JDK17+ record |
|
Seems OK from a quick glance, though the diff is too long to readily see what is actually being edited. |
And implement records
Vlatombe
commented
Nov 5, 2024
| @@ -146,7 +146,7 @@ public void error(Throwable t) { | |||
|
|
|||
| private static class NoReconnectException extends RuntimeException {} | |||
|
|
|||
| @Test(timeout = 30_000) | |||
| @Test(timeout = 10_000) | |||
There was a problem hiding this comment.
Shortening timeout since the new retry logic is snappier
Comment on lines
+95
to
+101
| private final RSAPublicKey publicKey; | ||
| private final Map<String, String> headers; | ||
|
|
||
| public EngineJnlpConnectionStateListener(RSAPublicKey publicKey, Map<String, String> headers) { | ||
| this.publicKey = publicKey; | ||
| this.headers = headers; | ||
| } |
There was a problem hiding this comment.
Too bad JnlpConnectionStateListener is an abstract class (for no good reason)
| @@ -269,7 +222,7 @@ public Engine(EngineListener listener, List<URL> hudsonUrls, String secretKey, S | |||
|
|
|||
| public Engine( | |||
| EngineListener listener, | |||
| List<URL> hudsonUrls, | |||
Comment on lines
-547
to
-585
| SSLContext context; | ||
| // prepare our SSLContext | ||
| try { | ||
| context = SSLContext.getInstance("TLS"); | ||
| } catch (NoSuchAlgorithmException e) { | ||
| throw new IllegalStateException("Java runtime specification requires support for TLS algorithm", e); | ||
| } | ||
| char[] password = "password".toCharArray(); | ||
| KeyStore store; | ||
| try { | ||
| store = KeyStore.getInstance(KeyStore.getDefaultType()); | ||
| } catch (KeyStoreException e) { | ||
| throw new IllegalStateException("Java runtime specification requires support for JKS key store", e); | ||
| } | ||
| try { | ||
| store.load(null, password); | ||
| } catch (NoSuchAlgorithmException e) { | ||
| throw new IllegalStateException("Java runtime specification requires support for JKS key store", e); | ||
| } catch (CertificateException e) { | ||
| throw new IllegalStateException("Empty keystore", e); | ||
| } | ||
| KeyManagerFactory kmf; | ||
| try { | ||
| kmf = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm()); | ||
| } catch (NoSuchAlgorithmException e) { | ||
| throw new IllegalStateException( | ||
| "Java runtime specification requires support for default key manager", e); | ||
| } | ||
| try { | ||
| kmf.init(store, password); | ||
| } catch (KeyStoreException | NoSuchAlgorithmException | UnrecoverableKeyException e) { | ||
| throw new IllegalStateException(e); | ||
| } | ||
| try { | ||
| context.init(kmf.getKeyManagers(), new TrustManager[] {agentTrustManager}, null); | ||
| } catch (KeyManagementException e) { | ||
| events.error(e); | ||
| return; | ||
| } |
| @SuppressFBWarnings( | ||
| value = {"REC_CATCH_EXCEPTION"}, | ||
| justification = "checked exceptions were a mistake to begin with; connecting to Jenkins from agent") | ||
| private void runWebSocket() { |
There was a problem hiding this comment.
Moved to WebSocketConnector
Comment on lines
-861
to
-911
| private static class ExponentialRetry { | ||
| final int factor; | ||
| final Instant beginning; | ||
| final Duration delay; | ||
| final Duration timeout; | ||
| final Duration incrementDelay; | ||
| final Duration maxDelay; | ||
|
|
||
| ExponentialRetry(Duration timeout) { | ||
| this(Duration.ofSeconds(0), timeout, 2, Duration.ofSeconds(1), Duration.ofSeconds(10)); | ||
| } | ||
|
|
||
| ExponentialRetry( | ||
| Duration initialDelay, Duration timeout, int factor, Duration incrementDelay, Duration maxDelay) { | ||
| this.beginning = Instant.now(); | ||
| this.delay = initialDelay; | ||
| this.timeout = timeout; | ||
| this.factor = factor; | ||
| this.incrementDelay = incrementDelay; | ||
| this.maxDelay = maxDelay; | ||
| } | ||
|
|
||
| ExponentialRetry(ExponentialRetry previous) { | ||
| beginning = previous.beginning; | ||
| factor = previous.factor; | ||
| timeout = previous.timeout; | ||
| incrementDelay = previous.incrementDelay; | ||
| maxDelay = previous.maxDelay; | ||
| delay = min(maxDelay, previous.delay.multipliedBy(previous.factor).plus(incrementDelay)); | ||
| } | ||
|
|
||
| private static Duration min(Duration a, Duration b) { | ||
| return a.compareTo(b) < 0 ? a : b; | ||
| } | ||
|
|
||
| boolean timeoutExceeded() { | ||
| return Util.shouldBailOut(beginning, timeout); | ||
| } | ||
|
|
||
| ExponentialRetry next(EngineListenerSplitter events) throws InterruptedException { | ||
| var next = new ExponentialRetry(this); | ||
| if (next.timeoutExceeded()) { | ||
| events.status("Bailing out after " + DurationFormatter.format(next.timeout)); | ||
| return null; | ||
| } else { | ||
| events.status("Waiting " + DurationFormatter.format(next.delay) + " before retry"); | ||
| Thread.sleep(next.delay.toMillis()); | ||
| } | ||
| return next; | ||
| } | ||
| } |
| } | ||
| } | ||
|
|
||
| private void innerRun(IOHub hub, SSLContext context, ExecutorService service) { |
There was a problem hiding this comment.
Moved to InboundTCPConnector
| @@ -1156,139 +585,13 @@ public static Engine current() { | |||
|
|
|||
| private static final Logger LOGGER = Logger.getLogger(Engine.class.getName()); | |||
|
|
|||
| @SuppressFBWarnings(value = "PATH_TRAVERSAL_IN", justification = "File path is loaded from system properties.") | |||
| static KeyStore getCacertsKeyStore() | |||
| @@ -1312,53 +615,4 @@ public String getAgentName() { | |||
| public String getProtocolName() { | |||
| return this.protocolName; | |||
| } | |||
|
|
|||
| private class EngineJnlpConnectionStateListener extends JnlpConnectionStateListener { | |||
There was a problem hiding this comment.
Moved to InboundTCPConnector
Vlatombe
commented
Nov 5, 2024
| } | ||
| value = {"HARD_CODE_PASSWORD", "REC_CATCH_EXCEPTION"}, | ||
| justification = "Password doesn't need to be protected.; We need to catch all exceptions") | ||
| public void run() { |
There was a problem hiding this comment.
This method contains the key structural changes.
Vlatombe
commented
Nov 5, 2024
Comment on lines
+162
to
+172
| var clientProtocols = new JnlpProtocolHandlerFactory(data.executor()) | ||
| .withIOHub(hub) | ||
| .withSSLContext(context) | ||
| .withPreferNonBlockingIO(false) // we only have one connection, prefer blocking I/O | ||
| .handlers(); | ||
| var negotiatedProtocols = clientProtocols.stream() | ||
| .filter(JnlpProtocolHandler::isEnabled) | ||
| .filter(p -> endpoint.isProtocolSupported(p.getName())) | ||
| .collect(Collectors.toSet()); | ||
| var serverProtocols = endpoint.getProtocols() == null ? "?" : String.join(",", endpoint.getProtocols()); | ||
| LOGGER.info(buildDebugProtocolsMessage(serverProtocols, clientProtocols, negotiatedProtocols)); |
There was a problem hiding this comment.
Gives clearer output to users on which protocols are supported on either side of the connection.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Extracts Inbound TCP and websocket connection flows to separate classes, and unify the retrying logic, so that both Inbound TCP and Websocket use retries, with exponential retries.
Bumped requirement to Java 17, since we are past End-october, and records makes things pretttier.
Testing done
Submitter checklist