Add a special vhost for health checking that uses /etc/nolvs

quentinmit · quentinmit · commit fc2fa3c6445f · 2020-03-10T23:19:04.000-04:00
Also adds another special vhost for debugging/monitoring
diff --git a/server/common/oursrc/scripts-proxy/main.go b/server/common/oursrc/scripts-proxy/main.go
@@ -28,14 +28,27 @@ func always(context.Context, string) bool {
 }
 
 type ldapTarget struct {
-	localPoolRange *net.IPNet
-	ldap           *ldap.Pool
+	localPoolRange    *net.IPNet
+	ldap              *ldap.Pool
+	statuszServer     *HijackedServer
+	unavailableServer *HijackedServer
 }
 
 func (l *ldapTarget) HandleConn(netConn net.Conn) {
 	var pool string
 	var err error
 	if conn, ok := netConn.(*tcpproxy.Conn); ok {
+		switch conn.HostName {
+		case "proxy.scripts.scripts.mit.edu":
+			// Special handling for proxy.scripts.scripts.mit.edu
+			l.statuszServer.HandleConn(netConn)
+			return
+		case "heartbeat.scripts.scripts.mit.edu":
+			if nolvsPresent() {
+				l.unavailableServer.HandleConn(netConn)
+				return
+			}
+		}
 		pool, err = l.ldap.ResolvePool(conn.HostName)
 		if err != nil {
 			log.Printf("resolving %q: %v", conn.HostName, err)
@@ -87,8 +100,10 @@ func main() {
 
 	var p tcpproxy.Proxy
 	t := &ldapTarget{
-		localPoolRange: ipnet,
-		ldap:           ldapPool,
+		localPoolRange:    ipnet,
+		ldap:              ldapPool,
+		statuszServer:     NewHijackedServer(nil),
+		unavailableServer: NewUnavailableServer(),
 	}
 	for _, addr := range strings.Split(*httpAddrs, ",") {
 		p.AddHTTPHostMatchRoute(addr, always, t)
diff --git a/server/common/oursrc/scripts-proxy/statusz.go b/server/common/oursrc/scripts-proxy/statusz.go
@@ -0,0 +1,55 @@
+package main
+
+import (
+	"errors"
+	"net"
+	"net/http"
+	_ "net/http/pprof"
+	"os"
+)
+
+func nolvsPresent() bool {
+	if _, err := os.Stat("/etc/nolvs"); err == nil {
+		return true
+	}
+	return false
+}
+
+type HijackedServer struct {
+	connCh chan net.Conn
+}
+
+func NewHijackedServer(handler http.Handler) *HijackedServer {
+	s := &HijackedServer{
+		connCh: make(chan net.Conn),
+	}
+	go http.Serve(s, handler)
+	return s
+}
+
+func (s *HijackedServer) Accept() (net.Conn, error) {
+	c, ok := <-s.connCh
+	if ok {
+		return c, nil
+	}
+	return nil, errors.New("closed")
+}
+
+func (s *HijackedServer) Close() error {
+	close(s.connCh)
+	return nil
+}
+
+func (s *HijackedServer) Addr() net.Addr {
+	return nil
+}
+
+func (s *HijackedServer) HandleConn(c net.Conn) {
+	s.connCh <- c
+}
+
+func NewUnavailableServer() *HijackedServer {
+	return NewHijackedServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		http.Error(w, "0 proxy nolvs", http.StatusServiceUnavailable)
+	}))
+}
