Extract inbound tcp and websocket connection flow to separate classes, unify retrying#773
Open
Vlatombe wants to merge 19 commits into
Open
Extract inbound tcp and websocket connection flow to separate classes, unify retrying#773Vlatombe wants to merge 19 commits into
Vlatombe wants to merge 19 commits into
Conversation
A more ambitious attempt to extract logic from Engine into separate classes
Member
jglick
reviewed
Nov 4, 2024
jglick
reviewed
Nov 4, 2024
jglick
reviewed
Nov 4, 2024
jglick
reviewed
Nov 4, 2024
Comment on lines
+95
to
+101
| private final RSAPublicKey publicKey; | ||
| private final Map<String, String> headers; | ||
|
|
||
| public EngineJnlpConnectionStateListener(RSAPublicKey publicKey, Map<String, String> headers) { | ||
| this.publicKey = publicKey; | ||
| this.headers = headers; | ||
| } |
Member
Author
There was a problem hiding this comment.
Too bad JnlpConnectionStateListener is an abstract class (for no good reason)
jglick
reviewed
Nov 4, 2024
Member
|
Seems OK from a quick glance, though the diff is too long to readily see what is actually being edited. |
And implement records
Vlatombe
commented
Nov 5, 2024
| private static class NoReconnectException extends RuntimeException {} | ||
|
|
||
| @Test(timeout = 30_000) | ||
| @Test(timeout = 10_000) |
Member
Author
There was a problem hiding this comment.
Shortening timeout since the new retry logic is snappier
Comment on lines
+95
to
+101
| private final RSAPublicKey publicKey; | ||
| private final Map<String, String> headers; | ||
|
|
||
| public EngineJnlpConnectionStateListener(RSAPublicKey publicKey, Map<String, String> headers) { | ||
| this.publicKey = publicKey; | ||
| this.headers = headers; | ||
| } |
Member
Author
There was a problem hiding this comment.
Too bad JnlpConnectionStateListener is an abstract class (for no good reason)
|
|
||
| public Engine( | ||
| EngineListener listener, | ||
| List<URL> hudsonUrls, |
Comment on lines
-547
to
-585
| SSLContext context; | ||
| // prepare our SSLContext | ||
| try { | ||
| context = SSLContext.getInstance("TLS"); | ||
| } catch (NoSuchAlgorithmException e) { | ||
| throw new IllegalStateException("Java runtime specification requires support for TLS algorithm", e); | ||
| } | ||
| char[] password = "password".toCharArray(); | ||
| KeyStore store; | ||
| try { | ||
| store = KeyStore.getInstance(KeyStore.getDefaultType()); | ||
| } catch (KeyStoreException e) { | ||
| throw new IllegalStateException("Java runtime specification requires support for JKS key store", e); | ||
| } | ||
| try { | ||
| store.load(null, password); | ||
| } catch (NoSuchAlgorithmException e) { | ||
| throw new IllegalStateException("Java runtime specification requires support for JKS key store", e); | ||
| } catch (CertificateException e) { | ||
| throw new IllegalStateException("Empty keystore", e); | ||
| } | ||
| KeyManagerFactory kmf; | ||
| try { | ||
| kmf = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm()); | ||
| } catch (NoSuchAlgorithmException e) { | ||
| throw new IllegalStateException( | ||
| "Java runtime specification requires support for default key manager", e); | ||
| } | ||
| try { | ||
| kmf.init(store, password); | ||
| } catch (KeyStoreException | NoSuchAlgorithmException | UnrecoverableKeyException e) { | ||
| throw new IllegalStateException(e); | ||
| } | ||
| try { | ||
| context.init(kmf.getKeyManagers(), new TrustManager[] {agentTrustManager}, null); | ||
| } catch (KeyManagementException e) { | ||
| events.error(e); | ||
| return; | ||
| } |
| @SuppressFBWarnings( | ||
| value = {"REC_CATCH_EXCEPTION"}, | ||
| justification = "checked exceptions were a mistake to begin with; connecting to Jenkins from agent") | ||
| private void runWebSocket() { |
Member
Author
There was a problem hiding this comment.
Moved to WebSocketConnector
Comment on lines
-861
to
-911
| private static class ExponentialRetry { | ||
| final int factor; | ||
| final Instant beginning; | ||
| final Duration delay; | ||
| final Duration timeout; | ||
| final Duration incrementDelay; | ||
| final Duration maxDelay; | ||
|
|
||
| ExponentialRetry(Duration timeout) { | ||
| this(Duration.ofSeconds(0), timeout, 2, Duration.ofSeconds(1), Duration.ofSeconds(10)); | ||
| } | ||
|
|
||
| ExponentialRetry( | ||
| Duration initialDelay, Duration timeout, int factor, Duration incrementDelay, Duration maxDelay) { | ||
| this.beginning = Instant.now(); | ||
| this.delay = initialDelay; | ||
| this.timeout = timeout; | ||
| this.factor = factor; | ||
| this.incrementDelay = incrementDelay; | ||
| this.maxDelay = maxDelay; | ||
| } | ||
|
|
||
| ExponentialRetry(ExponentialRetry previous) { | ||
| beginning = previous.beginning; | ||
| factor = previous.factor; | ||
| timeout = previous.timeout; | ||
| incrementDelay = previous.incrementDelay; | ||
| maxDelay = previous.maxDelay; | ||
| delay = min(maxDelay, previous.delay.multipliedBy(previous.factor).plus(incrementDelay)); | ||
| } | ||
|
|
||
| private static Duration min(Duration a, Duration b) { | ||
| return a.compareTo(b) < 0 ? a : b; | ||
| } | ||
|
|
||
| boolean timeoutExceeded() { | ||
| return Util.shouldBailOut(beginning, timeout); | ||
| } | ||
|
|
||
| ExponentialRetry next(EngineListenerSplitter events) throws InterruptedException { | ||
| var next = new ExponentialRetry(this); | ||
| if (next.timeoutExceeded()) { | ||
| events.status("Bailing out after " + DurationFormatter.format(next.timeout)); | ||
| return null; | ||
| } else { | ||
| events.status("Waiting " + DurationFormatter.format(next.delay) + " before retry"); | ||
| Thread.sleep(next.delay.toMillis()); | ||
| } | ||
| return next; | ||
| } | ||
| } |
| } | ||
| } | ||
|
|
||
| private void innerRun(IOHub hub, SSLContext context, ExecutorService service) { |
Member
Author
There was a problem hiding this comment.
Moved to InboundTCPConnector
| private static final Logger LOGGER = Logger.getLogger(Engine.class.getName()); | ||
|
|
||
| @SuppressFBWarnings(value = "PATH_TRAVERSAL_IN", justification = "File path is loaded from system properties.") | ||
| static KeyStore getCacertsKeyStore() |
| return this.protocolName; | ||
| } | ||
|
|
||
| private class EngineJnlpConnectionStateListener extends JnlpConnectionStateListener { |
Member
Author
There was a problem hiding this comment.
Moved to InboundTCPConnector
Vlatombe
commented
Nov 5, 2024
| } | ||
| value = {"HARD_CODE_PASSWORD", "REC_CATCH_EXCEPTION"}, | ||
| justification = "Password doesn't need to be protected.; We need to catch all exceptions") | ||
| public void run() { |
Member
Author
There was a problem hiding this comment.
This method contains the key structural changes.
Vlatombe
commented
Nov 5, 2024
Comment on lines
+162
to
+172
| var clientProtocols = new JnlpProtocolHandlerFactory(data.executor()) | ||
| .withIOHub(hub) | ||
| .withSSLContext(context) | ||
| .withPreferNonBlockingIO(false) // we only have one connection, prefer blocking I/O | ||
| .handlers(); | ||
| var negotiatedProtocols = clientProtocols.stream() | ||
| .filter(JnlpProtocolHandler::isEnabled) | ||
| .filter(p -> endpoint.isProtocolSupported(p.getName())) | ||
| .collect(Collectors.toSet()); | ||
| var serverProtocols = endpoint.getProtocols() == null ? "?" : String.join(",", endpoint.getProtocols()); | ||
| LOGGER.info(buildDebugProtocolsMessage(serverProtocols, clientProtocols, negotiatedProtocols)); |
Member
Author
There was a problem hiding this comment.
Gives clearer output to users on which protocols are supported on either side of the connection.
timja
approved these changes
Nov 5, 2024
timja
reviewed
Nov 6, 2024
timja
reviewed
Nov 6, 2024
timja
added
the
enhancement
Member
|
See this document for a discussion of various retry strategies. Exponential backoff does appear to be a strict improvement over the status quo, as it balances retries against latency when the controller is unavailable for an unknown duration; however, in contrast with jitter-based solutions, it does not resolve contention for the controller. As in #676, testing of various retry strategies in real-world scenarios is needed to evaluate the effectiveness of those strategies. I would be fine with this PR if it was a simple refactoring that did not introduce exponential backoff. I would also be fine with introducing exponential backoff it was confirmed to have a positive impact in a functional test scenario. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Extracts Inbound TCP and websocket connection flows to separate classes, and unify the retrying logic, so that both Inbound TCP and Websocket use retries, with exponential retries.
Bumped requirement to Java 17, since we are past End-october, and records makes things pretttier.
Testing done
Submitter checklist