mirror of
https://github.com/minio/minio.git
synced 2025-01-27 06:33:18 -05:00
server/mux: Fix serverMux to set deadlines based on UTC time. (#4146)
Avoid using `time.Now()` instead rely on UTC time for the final deadline, this is to be consistent with all our internal functions. Reduce the default read timeout to 15 seconds in lieu with a newly discovered issue - https://github.com/minio/minio/issues/4139 Additionally also change the Read() conn wrapper to set deadline only upon successful Reads().
This commit is contained in:
parent
a4305742e8
commit
5a3c5aec31
@ -113,30 +113,41 @@ func (c *ConnMux) PeekProtocol() (string, error) {
|
|||||||
return protocolTLS, nil
|
return protocolTLS, nil
|
||||||
}
|
}
|
||||||
|
|
||||||
// Read - streams the ConnMux buffer when reset flag is activated, otherwise
|
// Read reads from the tcp session for data sent by
|
||||||
// streams from the incoming network connection
|
// the client, additionally sets deadline for 15 secs
|
||||||
func (c *ConnMux) Read(b []byte) (n int, e error) {
|
// after each successful read. Deadline cancels and
|
||||||
// Push read deadline
|
// returns error if the client does not send any
|
||||||
c.Conn.SetReadDeadline(time.Now().Add(defaultTCPReadTimeout))
|
// data in 15 secs. Also keeps track of the total
|
||||||
|
// bytes received from the client.
|
||||||
|
func (c *ConnMux) Read(b []byte) (n int, err error) {
|
||||||
|
// Update total incoming number of bytes.
|
||||||
|
defer globalConnStats.incInputBytes(n)
|
||||||
|
|
||||||
// Update server's connection statistics
|
n, err = c.peeker.Read(b)
|
||||||
defer func() {
|
if err != nil {
|
||||||
globalConnStats.incInputBytes(n)
|
return n, err
|
||||||
}()
|
|
||||||
|
|
||||||
return c.peeker.Read(b)
|
|
||||||
}
|
}
|
||||||
|
|
||||||
func (c *ConnMux) Write(b []byte) (n int, e error) {
|
// Read deadline was already set previously, set again
|
||||||
// Update server's connection statistics
|
// after a successful read operation for future read
|
||||||
defer func() {
|
// operations.
|
||||||
globalConnStats.incOutputBytes(n)
|
c.Conn.SetReadDeadline(UTCNow().Add(defaultTCPReadTimeout))
|
||||||
}()
|
|
||||||
// Run the underlying net.Conn Write() func
|
// Success.
|
||||||
|
return n, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
// Write to the client over a tcp session, additionally
|
||||||
|
// keeps track of the total bytes written by the server.
|
||||||
|
func (c *ConnMux) Write(b []byte) (n int, err error) {
|
||||||
|
// Update total outgoing number of bytes.
|
||||||
|
defer globalConnStats.incOutputBytes(n)
|
||||||
|
|
||||||
|
// Call the conn write wrapper.
|
||||||
return c.Conn.Write(b)
|
return c.Conn.Write(b)
|
||||||
}
|
}
|
||||||
|
|
||||||
// Close the connection.
|
// Close closes the underlying tcp connection.
|
||||||
func (c *ConnMux) Close() (err error) {
|
func (c *ConnMux) Close() (err error) {
|
||||||
// Make sure that we always close a connection,
|
// Make sure that we always close a connection,
|
||||||
return c.Conn.Close()
|
return c.Conn.Close()
|
||||||
@ -188,14 +199,14 @@ type ListenerMuxAcceptRes struct {
|
|||||||
// Default keep alive interval timeout, on your Linux system to figure out
|
// Default keep alive interval timeout, on your Linux system to figure out
|
||||||
// maximum probes sent
|
// maximum probes sent
|
||||||
//
|
//
|
||||||
// $ cat /proc/sys/net/ipv4/tcp_keepalive_probes
|
// > cat /proc/sys/net/ipv4/tcp_keepalive_probes
|
||||||
// 9
|
// ! 9
|
||||||
//
|
//
|
||||||
// Effective value of total keep alive comes upto 9 x 10 * time.Second = 1.5 Minutes.
|
// Final value of total keep-alive comes upto 9 x 10 * seconds = 1.5 minutes.
|
||||||
var defaultKeepAliveTimeout = 10 * time.Second // 10 seconds.
|
const defaultKeepAliveTimeout = 10 * time.Second // 10 seconds.
|
||||||
|
|
||||||
// Timeout to close connection when a client is not sending any data
|
// Timeout to close and return error to the client when not sending any data.
|
||||||
var defaultTCPReadTimeout = 30 * time.Second
|
const defaultTCPReadTimeout = 15 * time.Second // 15 seconds.
|
||||||
|
|
||||||
// newListenerMux listens and wraps accepted connections with tls after protocol peeking
|
// newListenerMux listens and wraps accepted connections with tls after protocol peeking
|
||||||
func newListenerMux(listener net.Listener, config *tls.Config) *ListenerMux {
|
func newListenerMux(listener net.Listener, config *tls.Config) *ListenerMux {
|
||||||
@ -224,7 +235,7 @@ func newListenerMux(listener net.Listener, config *tls.Config) *ListenerMux {
|
|||||||
}
|
}
|
||||||
|
|
||||||
// Enable Read timeout
|
// Enable Read timeout
|
||||||
conn.SetReadDeadline(time.Now().Add(defaultTCPReadTimeout))
|
conn.SetReadDeadline(UTCNow().Add(defaultTCPReadTimeout))
|
||||||
|
|
||||||
// Enable keep alive for each connection.
|
// Enable keep alive for each connection.
|
||||||
conn.SetKeepAlive(true)
|
conn.SetKeepAlive(true)
|
||||||
@ -236,12 +247,12 @@ func newListenerMux(listener net.Listener, config *tls.Config) *ListenerMux {
|
|||||||
// Wrap the connection with ConnMux to be able to peek the data in the incoming connection
|
// Wrap the connection with ConnMux to be able to peek the data in the incoming connection
|
||||||
// and decide if we need to wrap the connection itself with a TLS or not
|
// and decide if we need to wrap the connection itself with a TLS or not
|
||||||
go func(connMux *ConnMux) {
|
go func(connMux *ConnMux) {
|
||||||
protocol, err := connMux.PeekProtocol()
|
protocol, cerr := connMux.PeekProtocol()
|
||||||
if err != nil {
|
if cerr != nil {
|
||||||
// io.EOF is usually returned by non-http clients,
|
// io.EOF is usually returned by non-http clients,
|
||||||
// just close the connection to avoid any leak.
|
// just close the connection to avoid any leak.
|
||||||
if err != io.EOF {
|
if cerr != io.EOF {
|
||||||
errorIf(err, "Unable to peek into incoming protocol")
|
errorIf(cerr, "Unable to peek into incoming protocol")
|
||||||
}
|
}
|
||||||
connMux.Close()
|
connMux.Close()
|
||||||
return
|
return
|
||||||
@ -252,8 +263,8 @@ func newListenerMux(listener net.Listener, config *tls.Config) *ListenerMux {
|
|||||||
// Make sure to handshake so that we know that this
|
// Make sure to handshake so that we know that this
|
||||||
// is a TLS connection, if not we should close and reject
|
// is a TLS connection, if not we should close and reject
|
||||||
// such a connection.
|
// such a connection.
|
||||||
if err = tlsConn.Handshake(); err != nil {
|
if cerr = tlsConn.Handshake(); cerr != nil {
|
||||||
errorIf(err, "TLS handshake failed")
|
errorIf(cerr, "TLS handshake failed")
|
||||||
tlsConn.Close()
|
tlsConn.Close()
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
Loading…
x
Reference in New Issue
Block a user