ed14061578
* Work on raft backend * Add logstore locally * Add encryptor and unsealable interfaces * Add clustering support to raft * Remove client and handler * Bootstrap raft on init * Cleanup raft logic a bit * More raft work * Work on TLS config * More work on bootstrapping * Fix build * More work on bootstrapping * More bootstrapping work * fix build * Remove consul dep * Fix build * merged oss/master into raft-storage * Work on bootstrapping * Get bootstrapping to work * Clean up FMS and node-id * Update local node ID logic * Cleanup node-id change * Work on snapshotting * Raft: Add remove peer API (#906) * Add remove peer API * Add some comments * Fix existing snapshotting (#909) * Raft get peers API (#912) * Read raft configuration * address review feedback * Use the Leadership Transfer API to step-down the active node (#918) * Raft join and unseal using Shamir keys (#917) * Raft join using shamir * Store AEAD instead of master key * Split the raft join process to answer the challenge after a successful unseal * get the follower to standby state * Make unseal work * minor changes * Some input checks * reuse the shamir seal access instead of new default seal access * refactor joinRaftSendAnswer function * Synchronously send answer in auto-unseal case * Address review feedback * Raft snapshots (#910) * Fix existing snapshotting * implement the noop snapshotting * Add comments and switch log libraries * add some snapshot tests * add snapshot test file * add TODO * More work on raft snapshotting * progress on the ConfigStore strategy * Don't use two buckets * Update the snapshot store logic to hide the file logic * Add more backend tests * Cleanup code a bit * [WIP] Raft recovery (#938) * Add recovery functionality * remove fmt.Printfs * Fix a few fsm bugs * Add max size value for raft backend (#942) * Add max size value for raft backend * Include physical.ErrValueTooLarge in the message * Raft snapshot Take/Restore API (#926) * Inital work on raft snapshot APIs * Always redirect snapshot install/download requests * More work on the snapshot APIs * Cleanup code a bit * On restore handle special cases * Use the seal to encrypt the sha sum file * Add sealer mechanism and fix some bugs * Call restore while state lock is held * Send restore cb trigger through raft log * Make error messages nicer * Add test helpers * Add snapshot test * Add shamir unseal test * Add more raft snapshot API tests * Fix locking * Change working to initalize * Add underlying raw object to test cluster core * Move leaderUUID to core * Add raft TLS rotation logic (#950) * Add TLS rotation logic * Cleanup logic a bit * Add/Remove from follower state on add/remove peer * add comments * Update more comments * Update request_forwarding_service.proto * Make sure we populate all nodes in the followerstate obj * Update times * Apply review feedback * Add more raft config setting (#947) * Add performance config setting * Add more config options and fix tests * Test Raft Recovery (#944) * Test raft recovery * Leave out a node during recovery * remove unused struct * Update physical/raft/snapshot_test.go * Update physical/raft/snapshot_test.go * fix vendoring * Switch to new raft interface * Remove unused files * Switch a gogo -> proto instance * Remove unneeded vault dep in go.sum * Update helper/testhelpers/testhelpers.go Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com> * Update vault/cluster/cluster.go * track active key within the keyring itself (#6915) * track active key within the keyring itself * lookup and store using the active key ID * update docstring * minor refactor * Small text fixes (#6912) * Update physical/raft/raft.go Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com> * review feedback * Move raft logical system into separate file * Update help text a bit * Enforce cluster addr is set and use it for raft bootstrapping * Fix tests * fix http test panic * Pull in latest raft-snapshot library * Add comment
305 lines
7 KiB
Go
305 lines
7 KiB
Go
package raft
|
|
|
|
import (
|
|
"fmt"
|
|
"io"
|
|
"sync"
|
|
"time"
|
|
)
|
|
|
|
// Future is used to represent an action that may occur in the future.
|
|
type Future interface {
|
|
// Error blocks until the future arrives and then
|
|
// returns the error status of the future.
|
|
// This may be called any number of times - all
|
|
// calls will return the same value.
|
|
// Note that it is not OK to call this method
|
|
// twice concurrently on the same Future instance.
|
|
Error() error
|
|
}
|
|
|
|
// IndexFuture is used for future actions that can result in a raft log entry
|
|
// being created.
|
|
type IndexFuture interface {
|
|
Future
|
|
|
|
// Index holds the index of the newly applied log entry.
|
|
// This must not be called until after the Error method has returned.
|
|
Index() uint64
|
|
}
|
|
|
|
// ApplyFuture is used for Apply and can return the FSM response.
|
|
type ApplyFuture interface {
|
|
IndexFuture
|
|
|
|
// Response returns the FSM response as returned
|
|
// by the FSM.Apply method. This must not be called
|
|
// until after the Error method has returned.
|
|
Response() interface{}
|
|
}
|
|
|
|
// ConfigurationFuture is used for GetConfiguration and can return the
|
|
// latest configuration in use by Raft.
|
|
type ConfigurationFuture interface {
|
|
IndexFuture
|
|
|
|
// Configuration contains the latest configuration. This must
|
|
// not be called until after the Error method has returned.
|
|
Configuration() Configuration
|
|
}
|
|
|
|
// SnapshotFuture is used for waiting on a user-triggered snapshot to complete.
|
|
type SnapshotFuture interface {
|
|
Future
|
|
|
|
// Open is a function you can call to access the underlying snapshot and
|
|
// its metadata. This must not be called until after the Error method
|
|
// has returned.
|
|
Open() (*SnapshotMeta, io.ReadCloser, error)
|
|
}
|
|
|
|
// LeadershipTransferFuture is used for waiting on a user-triggered leadership
|
|
// transfer to complete.
|
|
type LeadershipTransferFuture interface {
|
|
Future
|
|
}
|
|
|
|
// errorFuture is used to return a static error.
|
|
type errorFuture struct {
|
|
err error
|
|
}
|
|
|
|
func (e errorFuture) Error() error {
|
|
return e.err
|
|
}
|
|
|
|
func (e errorFuture) Response() interface{} {
|
|
return nil
|
|
}
|
|
|
|
func (e errorFuture) Index() uint64 {
|
|
return 0
|
|
}
|
|
|
|
// deferError can be embedded to allow a future
|
|
// to provide an error in the future.
|
|
type deferError struct {
|
|
err error
|
|
errCh chan error
|
|
responded bool
|
|
}
|
|
|
|
func (d *deferError) init() {
|
|
d.errCh = make(chan error, 1)
|
|
}
|
|
|
|
func (d *deferError) Error() error {
|
|
if d.err != nil {
|
|
// Note that when we've received a nil error, this
|
|
// won't trigger, but the channel is closed after
|
|
// send so we'll still return nil below.
|
|
return d.err
|
|
}
|
|
if d.errCh == nil {
|
|
panic("waiting for response on nil channel")
|
|
}
|
|
d.err = <-d.errCh
|
|
return d.err
|
|
}
|
|
|
|
func (d *deferError) respond(err error) {
|
|
if d.errCh == nil {
|
|
return
|
|
}
|
|
if d.responded {
|
|
return
|
|
}
|
|
d.errCh <- err
|
|
close(d.errCh)
|
|
d.responded = true
|
|
}
|
|
|
|
// There are several types of requests that cause a configuration entry to
|
|
// be appended to the log. These are encoded here for leaderLoop() to process.
|
|
// This is internal to a single server.
|
|
type configurationChangeFuture struct {
|
|
logFuture
|
|
req configurationChangeRequest
|
|
}
|
|
|
|
// bootstrapFuture is used to attempt a live bootstrap of the cluster. See the
|
|
// Raft object's BootstrapCluster member function for more details.
|
|
type bootstrapFuture struct {
|
|
deferError
|
|
|
|
// configuration is the proposed bootstrap configuration to apply.
|
|
configuration Configuration
|
|
}
|
|
|
|
// logFuture is used to apply a log entry and waits until
|
|
// the log is considered committed.
|
|
type logFuture struct {
|
|
deferError
|
|
log Log
|
|
response interface{}
|
|
dispatch time.Time
|
|
}
|
|
|
|
func (l *logFuture) Response() interface{} {
|
|
return l.response
|
|
}
|
|
|
|
func (l *logFuture) Index() uint64 {
|
|
return l.log.Index
|
|
}
|
|
|
|
type shutdownFuture struct {
|
|
raft *Raft
|
|
}
|
|
|
|
func (s *shutdownFuture) Error() error {
|
|
if s.raft == nil {
|
|
return nil
|
|
}
|
|
s.raft.waitShutdown()
|
|
if closeable, ok := s.raft.trans.(WithClose); ok {
|
|
closeable.Close()
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// userSnapshotFuture is used for waiting on a user-triggered snapshot to
|
|
// complete.
|
|
type userSnapshotFuture struct {
|
|
deferError
|
|
|
|
// opener is a function used to open the snapshot. This is filled in
|
|
// once the future returns with no error.
|
|
opener func() (*SnapshotMeta, io.ReadCloser, error)
|
|
}
|
|
|
|
// Open is a function you can call to access the underlying snapshot and its
|
|
// metadata.
|
|
func (u *userSnapshotFuture) Open() (*SnapshotMeta, io.ReadCloser, error) {
|
|
if u.opener == nil {
|
|
return nil, nil, fmt.Errorf("no snapshot available")
|
|
} else {
|
|
// Invalidate the opener so it can't get called multiple times,
|
|
// which isn't generally safe.
|
|
defer func() {
|
|
u.opener = nil
|
|
}()
|
|
return u.opener()
|
|
}
|
|
}
|
|
|
|
// userRestoreFuture is used for waiting on a user-triggered restore of an
|
|
// external snapshot to complete.
|
|
type userRestoreFuture struct {
|
|
deferError
|
|
|
|
// meta is the metadata that belongs with the snapshot.
|
|
meta *SnapshotMeta
|
|
|
|
// reader is the interface to read the snapshot contents from.
|
|
reader io.Reader
|
|
}
|
|
|
|
// reqSnapshotFuture is used for requesting a snapshot start.
|
|
// It is only used internally.
|
|
type reqSnapshotFuture struct {
|
|
deferError
|
|
|
|
// snapshot details provided by the FSM runner before responding
|
|
index uint64
|
|
term uint64
|
|
snapshot FSMSnapshot
|
|
}
|
|
|
|
// restoreFuture is used for requesting an FSM to perform a
|
|
// snapshot restore. Used internally only.
|
|
type restoreFuture struct {
|
|
deferError
|
|
ID string
|
|
}
|
|
|
|
// verifyFuture is used to verify the current node is still
|
|
// the leader. This is to prevent a stale read.
|
|
type verifyFuture struct {
|
|
deferError
|
|
notifyCh chan *verifyFuture
|
|
quorumSize int
|
|
votes int
|
|
voteLock sync.Mutex
|
|
}
|
|
|
|
// leadershipTransferFuture is used to track the progress of a leadership
|
|
// transfer internally.
|
|
type leadershipTransferFuture struct {
|
|
deferError
|
|
|
|
ID *ServerID
|
|
Address *ServerAddress
|
|
}
|
|
|
|
// configurationsFuture is used to retrieve the current configurations. This is
|
|
// used to allow safe access to this information outside of the main thread.
|
|
type configurationsFuture struct {
|
|
deferError
|
|
configurations configurations
|
|
}
|
|
|
|
// Configuration returns the latest configuration in use by Raft.
|
|
func (c *configurationsFuture) Configuration() Configuration {
|
|
return c.configurations.latest
|
|
}
|
|
|
|
// Index returns the index of the latest configuration in use by Raft.
|
|
func (c *configurationsFuture) Index() uint64 {
|
|
return c.configurations.latestIndex
|
|
}
|
|
|
|
// vote is used to respond to a verifyFuture.
|
|
// This may block when responding on the notifyCh.
|
|
func (v *verifyFuture) vote(leader bool) {
|
|
v.voteLock.Lock()
|
|
defer v.voteLock.Unlock()
|
|
|
|
// Guard against having notified already
|
|
if v.notifyCh == nil {
|
|
return
|
|
}
|
|
|
|
if leader {
|
|
v.votes++
|
|
if v.votes >= v.quorumSize {
|
|
v.notifyCh <- v
|
|
v.notifyCh = nil
|
|
}
|
|
} else {
|
|
v.notifyCh <- v
|
|
v.notifyCh = nil
|
|
}
|
|
}
|
|
|
|
// appendFuture is used for waiting on a pipelined append
|
|
// entries RPC.
|
|
type appendFuture struct {
|
|
deferError
|
|
start time.Time
|
|
args *AppendEntriesRequest
|
|
resp *AppendEntriesResponse
|
|
}
|
|
|
|
func (a *appendFuture) Start() time.Time {
|
|
return a.start
|
|
}
|
|
|
|
func (a *appendFuture) Request() *AppendEntriesRequest {
|
|
return a.args
|
|
}
|
|
|
|
func (a *appendFuture) Response() *AppendEntriesResponse {
|
|
return a.resp
|
|
}
|