mirror of
https://github.com/prometheus/alertmanager
synced 2024-12-28 00:52:13 +00:00
ff85bec45b
* Add TLS option to gossip cluster Co-authored-by: Sharad Gaur <sharadgaur@gmail.com> Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * generate new certs that expire in 100 years Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * Fix tls_connection attributes Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * Improve error message Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * Fix tls client config docs Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * Add capacity arg to message buffer Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * fix formatting Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * Update version; add version validation Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * use lru cache for connection pool Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * lock reading from the connection Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * when extracting net.Conn from tlsConn, lock and throw away wrapper Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * Add mutex to connection pool to protect cache Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> * fix linting Signed-off-by: Dustin Hooten <dustinhooten@gmail.com> Co-authored-by: Sharad Gaur <sharadgaur@gmail.com>
85 lines
2.1 KiB
Go
85 lines
2.1 KiB
Go
// Copyright 2020 Prometheus Team
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package cluster
|
|
|
|
import (
|
|
"crypto/tls"
|
|
"fmt"
|
|
"sync"
|
|
"time"
|
|
|
|
lru "github.com/hashicorp/golang-lru"
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
const capacity = 1024
|
|
|
|
type connectionPool struct {
|
|
mtx sync.Mutex
|
|
cache *lru.Cache
|
|
tlsConfig *tls.Config
|
|
}
|
|
|
|
func newConnectionPool(tlsClientCfg *tls.Config) (*connectionPool, error) {
|
|
cache, err := lru.NewWithEvict(
|
|
capacity, func(_ interface{}, value interface{}) {
|
|
conn, ok := value.(*tlsConn)
|
|
if ok {
|
|
_ = conn.Close()
|
|
}
|
|
},
|
|
)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "failed to create new LRU")
|
|
}
|
|
return &connectionPool{
|
|
cache: cache,
|
|
tlsConfig: tlsClientCfg,
|
|
}, nil
|
|
}
|
|
|
|
// borrowConnection returns a *tlsConn from the pool. The connection does not
|
|
// need to be returned to the pool because each connection has its own locking.
|
|
func (pool *connectionPool) borrowConnection(addr string, timeout time.Duration) (*tlsConn, error) {
|
|
pool.mtx.Lock()
|
|
defer pool.mtx.Unlock()
|
|
if pool.cache == nil {
|
|
return nil, errors.New("connection pool closed")
|
|
}
|
|
key := fmt.Sprintf("%s/%d", addr, int64(timeout))
|
|
value, exists := pool.cache.Get(key)
|
|
if exists {
|
|
conn, ok := value.(*tlsConn)
|
|
if ok && conn.alive() {
|
|
return conn, nil
|
|
}
|
|
}
|
|
conn, err := dialTLSConn(addr, timeout, pool.tlsConfig)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
pool.cache.Add(key, conn)
|
|
return conn, nil
|
|
}
|
|
|
|
func (pool *connectionPool) shutdown() {
|
|
pool.mtx.Lock()
|
|
defer pool.mtx.Unlock()
|
|
if pool.cache == nil {
|
|
return
|
|
}
|
|
pool.cache.Purge()
|
|
pool.cache = nil
|
|
}
|