mirror of
https://github.com/mattermost/mattermost.git
synced 2025-02-25 18:55:24 -06:00
005cc00ccc
* store failed timestamps on health check job instead of on registeredPlugin Update test * change EnsurePlugin calls * Make env.SetPluginState private * Write test for plugin deactivate and PluginStateFailedToStayRunning * Add license comment * adjust comments, use time.Since * Additional PR feedback: time.Since cleanup test cleanup remove duplicate .Store() call * PR Feedback - Add test case for reactivating the failed plugin - Change `crashed` to `healthy` and `hasPluginCrashed` to `isPluginHealthy` - remove stale timestamps from health check job * Keep registeredPlugins in env when plugin is deactivated, so the crashed state of a plugin can be persisted. * PR feedback * PR feedback from Jesse Co-authored-by: mattermod <mattermod@users.noreply.github.com>
125 lines
4.1 KiB
Go
125 lines
4.1 KiB
Go
// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.
|
|
// See LICENSE.txt for license information.
|
|
|
|
package plugin
|
|
|
|
import (
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/mattermost/mattermost-server/v5/mlog"
|
|
"github.com/mattermost/mattermost-server/v5/model"
|
|
)
|
|
|
|
const (
|
|
HEALTH_CHECK_INTERVAL = 30 * time.Second // How often the health check should run
|
|
HEALTH_CHECK_DEACTIVATION_WINDOW = 60 * time.Minute // How long we wait for num fails to occur before deactivating the plugin
|
|
HEALTH_CHECK_PING_FAIL_LIMIT = 3 // How many times we call RPC ping in a row before it is considered a failure
|
|
HEALTH_CHECK_NUM_RESTARTS_LIMIT = 3 // How many times we restart a plugin before we deactivate it
|
|
)
|
|
|
|
type PluginHealthCheckJob struct {
|
|
cancel chan struct{}
|
|
cancelled chan struct{}
|
|
cancelOnce sync.Once
|
|
env *Environment
|
|
failureTimestamps sync.Map
|
|
}
|
|
|
|
// run continuously performs health checks on all active plugins, on a timer.
|
|
func (job *PluginHealthCheckJob) run() {
|
|
mlog.Debug("Plugin health check job starting.")
|
|
defer close(job.cancelled)
|
|
|
|
ticker := time.NewTicker(HEALTH_CHECK_INTERVAL)
|
|
defer ticker.Stop()
|
|
|
|
for {
|
|
select {
|
|
case <-ticker.C:
|
|
activePlugins := job.env.Active()
|
|
for _, plugin := range activePlugins {
|
|
job.CheckPlugin(plugin.Manifest.Id)
|
|
}
|
|
case <-job.cancel:
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
// CheckPlugin determines the plugin's health status, then handles the error or success case.
|
|
// If the plugin passes the health check, do nothing.
|
|
// If the plugin fails the health check, the function either restarts or deactivates the plugin, based on the quantity and frequency of its failures.
|
|
func (job *PluginHealthCheckJob) CheckPlugin(id string) {
|
|
err := job.env.performHealthCheck(id)
|
|
if err == nil {
|
|
return
|
|
}
|
|
|
|
mlog.Error("Health check failed for plugin", mlog.String("id", id), mlog.Err(err))
|
|
timestamps := job.getStoredTimestamps(id)
|
|
timestamps = append(timestamps, time.Now())
|
|
|
|
if shouldDeactivatePlugin(timestamps) {
|
|
// Order matters here, must deactivate first and then set plugin state
|
|
mlog.Debug("Deactivating plugin due to multiple crashes", mlog.String("id", id))
|
|
job.env.Deactivate(id)
|
|
|
|
// Reset timestamp state for this plugin
|
|
job.failureTimestamps.Delete(id)
|
|
job.env.setPluginState(id, model.PluginStateFailedToStayRunning)
|
|
} else {
|
|
mlog.Debug("Restarting plugin due to failed health check", mlog.String("id", id))
|
|
if err := job.env.RestartPlugin(id); err != nil {
|
|
mlog.Error("Failed to restart plugin", mlog.String("id", id), mlog.Err(err))
|
|
}
|
|
|
|
// Store this failure so we can continue to monitor the plugin
|
|
job.failureTimestamps.Store(id, removeStaleTimestamps(timestamps))
|
|
}
|
|
}
|
|
|
|
// getStoredTimestamps returns the stored failure timestamps for a plugin.
|
|
func (job *PluginHealthCheckJob) getStoredTimestamps(id string) []time.Time {
|
|
timestamps, ok := job.failureTimestamps.Load(id)
|
|
if !ok {
|
|
timestamps = []time.Time{}
|
|
}
|
|
return timestamps.([]time.Time)
|
|
}
|
|
|
|
func newPluginHealthCheckJob(env *Environment) *PluginHealthCheckJob {
|
|
return &PluginHealthCheckJob{
|
|
cancel: make(chan struct{}),
|
|
cancelled: make(chan struct{}),
|
|
env: env,
|
|
}
|
|
}
|
|
|
|
func (job *PluginHealthCheckJob) Cancel() {
|
|
job.cancelOnce.Do(func() {
|
|
close(job.cancel)
|
|
})
|
|
<-job.cancelled
|
|
}
|
|
|
|
// shouldDeactivatePlugin determines if a plugin needs to be deactivated after the plugin has failed (HEALTH_CHECK_NUM_RESTARTS_LIMIT) times,
|
|
// within the configured time window (HEALTH_CHECK_DEACTIVATION_WINDOW).
|
|
func shouldDeactivatePlugin(failedTimestamps []time.Time) bool {
|
|
if len(failedTimestamps) < HEALTH_CHECK_NUM_RESTARTS_LIMIT {
|
|
return false
|
|
}
|
|
|
|
index := len(failedTimestamps) - HEALTH_CHECK_NUM_RESTARTS_LIMIT
|
|
return time.Since(failedTimestamps[index]) <= HEALTH_CHECK_DEACTIVATION_WINDOW
|
|
}
|
|
|
|
// removeStaleTimestamps only keeps the last HEALTH_CHECK_NUM_RESTARTS_LIMIT items in timestamps.
|
|
func removeStaleTimestamps(timestamps []time.Time) []time.Time {
|
|
if len(timestamps) > HEALTH_CHECK_NUM_RESTARTS_LIMIT {
|
|
timestamps = timestamps[len(timestamps)-HEALTH_CHECK_NUM_RESTARTS_LIMIT:]
|
|
}
|
|
|
|
return timestamps
|
|
}
|