Use more scalable connection tracking

ammario · ammario · commit 939a07d6b6a4 · 2022-08-30T03:36:30.000Z
diff --git a/agent/agent.go b/agent/agent.go
@@ -95,7 +95,7 @@ func New(dialer Dialer, options *Options) io.Closer {
 		postKeys:               options.UploadWireguardKeys,
 		listenWireguardPeers:   options.ListenWireguardPeers,
 		stats: &Stats{
-			ActiveConns: make(map[int64]*ConnStats),
+			ProtocolStats: make(map[string]*ProtocolStats),
 		},
 		statsReporter: options.StatsReporter,
 	}
@@ -350,13 +350,19 @@ func (a *agent) init(ctx context.Context) {
 
 	go a.run(ctx)
 	if a.statsReporter != nil {
-		err := a.statsReporter(ctx, a.logger, func() *Stats {
+		cl, err := a.statsReporter(ctx, a.logger, func() *Stats {
 			return a.stats.Copy()
 		})
 		if err != nil {
 			a.logger.Error(ctx, "report stats", slog.Error(err))
 			return
 		}
+		a.connCloseWait.Add(1)
+		go func() {
+			defer a.connCloseWait.Done()
+			<-a.closed
+			cl.Close()
+		}()
 	}
 }
 
diff --git a/agent/stats.go b/agent/stats.go
@@ -2,87 +2,96 @@ package agent
 
 import (
 	"context"
+	"io"
 	"net"
 	"sync"
 	"sync/atomic"
-	"time"
-
-	"golang.org/x/exp/maps"
 
 	"cdr.dev/slog"
 )
 
 // ConnStats wraps a net.Conn with statistics.
 type ConnStats struct {
-	CreatedAt time.Time `json:"created_at,omitempty"`
-	Protocol  string    `json:"protocol,omitempty"`
-
-	// RxBytes must be read with atomic.
-	RxBytes uint64 `json:"rx_bytes,omitempty"`
-
-	// TxBytes must be read with atomic.
-	TxBytes  uint64 `json:"tx_bytes,omitempty"`
+	*ProtocolStats
 	net.Conn `json:"-"`
 }
 
 var _ net.Conn = new(ConnStats)
 
 func (c *ConnStats) Read(b []byte) (n int, err error) {
 	n, err = c.Conn.Read(b)
-	atomic.AddUint64(&c.RxBytes, uint64(n))
+	atomic.AddInt64(&c.RxBytes, int64(n))
 	return n, err
 }
 
 func (c *ConnStats) Write(b []byte) (n int, err error) {
 	n, err = c.Conn.Write(b)
-	atomic.AddUint64(&c.TxBytes, uint64(n))
+	atomic.AddInt64(&c.TxBytes, int64(n))
 	return n, err
 }
 
+type ProtocolStats struct {
+	NumConns int64 `json:"num_comms,omitempty"`
+
+	// RxBytes must be read with atomic.
+	RxBytes int64 `json:"rx_bytes,omitempty"`
+
+	// TxBytes must be read with atomic.
+	TxBytes int64 `json:"tx_bytes,omitempty"`
+}
+
 var _ net.Conn = new(ConnStats)
 
 // Stats records the Agent's network connection statistics for use in
 // user-facing metrics and debugging.
 type Stats struct {
-	sync.RWMutex `json:"-"`
-	// ActiveConns are identified by their start time in nanoseconds.
-	ActiveConns map[int64]*ConnStats `json:"active_conns,omitempty"`
+	sync.RWMutex  `json:"-"`
+	ProtocolStats map[string]*ProtocolStats `json:"conn_stats,omitempty"`
 }
 
 func (s *Stats) Copy() *Stats {
 	s.RLock()
-	ss := &Stats{
-		ActiveConns: maps.Clone(s.ActiveConns),
+	ss := Stats{ProtocolStats: make(map[string]*ProtocolStats, len(s.ProtocolStats))}
+	for k, cs := range s.ProtocolStats {
+		ss.ProtocolStats[k] = &ProtocolStats{
+			NumConns: atomic.LoadInt64(&cs.NumConns),
+			RxBytes:  atomic.LoadInt64(&cs.RxBytes),
+			TxBytes:  atomic.LoadInt64(&cs.TxBytes),
+		}
 	}
 	s.RUnlock()
-	return ss
+	return &ss
 }
 
 // goConn launches a new connection-processing goroutine, account for
 // s.Conns in a thread-safe manner.
 func (s *Stats) goConn(conn net.Conn, protocol string, fn func(conn net.Conn)) {
-	sc := &ConnStats{
-		CreatedAt: time.Now(),
-		Protocol:  protocol,
-		Conn:      conn,
-	}
-
-	key := sc.CreatedAt.UnixNano()
-
 	s.Lock()
-	s.ActiveConns[key] = sc
+	ps, ok := s.ProtocolStats[protocol]
+	if !ok {
+		ps = &ProtocolStats{}
+		s.ProtocolStats[protocol] = ps
+	}
 	s.Unlock()
 
+	cs := &ConnStats{
+		ProtocolStats: ps,
+		Conn:          conn,
+	}
+
 	go func() {
+		atomic.AddInt64(&ps.NumConns, 1)
 		defer func() {
-			s.Lock()
-			delete(s.ActiveConns, key)
-			s.Unlock()
+			atomic.AddInt64(&ps.NumConns, -1)
 		}()
 
-		fn(sc)
+		fn(cs)
 	}()
 }
 
 // StatsReporter periodically accept and records agent stats.
-type StatsReporter func(ctx context.Context, log slog.Logger, stats func() *Stats) error
+type StatsReporter func(
+	ctx context.Context,
+	log slog.Logger,
+	stats func() *Stats,
+) (io.Closer, error)
diff --git a/coderd/database/databasefake/databasefake.go b/coderd/database/databasefake/databasefake.go
@@ -23,6 +23,7 @@ func New() database.Store {
 		mutex: &sync.RWMutex{},
 		data: &data{
 			apiKeys:             make([]database.APIKey, 0),
+			agentStats:          make([]database.AgentStat, 0),
 			organizationMembers: make([]database.OrganizationMember, 0),
 			organizations:       make([]database.Organization, 0),
 			users:               make([]database.User, 0),
@@ -78,6 +79,7 @@ type data struct {
 	userLinks           []database.UserLink
 
 	// New tables
+	agentStats                     []database.AgentStat
 	auditLogs                      []database.AuditLog
 	files                          []database.File
 	gitSSHKey                      []database.GitSSHKey
@@ -135,6 +137,22 @@ func (q *fakeQuerier) AcquireProvisionerJob(_ context.Context, arg database.Acqu
 	return database.ProvisionerJob{}, sql.ErrNoRows
 }
 
+func (q *fakeQuerier) InsertAgentStat(_ context.Context, p database.InsertAgentStatParams) (database.AgentStat, error) {
+	q.mutex.Lock()
+	defer q.mutex.Unlock()
+
+	stat := database.AgentStat{
+		ID:          p.ID,
+		CreatedAt:   p.CreatedAt,
+		WorkspaceID: p.WorkspaceID,
+		AgentID:     p.AgentID,
+		UserID:      p.UserID,
+		Payload:     p.Payload,
+	}
+	q.agentStats = append(q.agentStats, stat)
+	return stat, nil
+}
+
 func (q *fakeQuerier) ParameterValue(_ context.Context, id uuid.UUID) (database.ParameterValue, error) {
 	q.mutex.Lock()
 	defer q.mutex.Unlock()
diff --git a/coderd/workspaceagents.go b/coderd/workspaceagents.go
@@ -164,10 +164,28 @@ func (api *API) workspaceAgentReportStats(rw http.ResponseWriter, r *http.Reques
 	defer api.websocketWaitGroup.Done()
 
 	workspaceAgent := httpmw.WorkspaceAgent(r)
-	workspace, err := api.Database.GetWorkspaceResourceByID(r.Context(), workspaceAgent.ResourceID)
+	resource, err := api.Database.GetWorkspaceResourceByID(r.Context(), workspaceAgent.ResourceID)
 	if err != nil {
 		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
-			Message: "Failed to accept websocket.",
+			Message: "Failed to get workspace resource.",
+			Detail:  err.Error(),
+		})
+		return
+	}
+
+	build, err := api.Database.GetWorkspaceBuildByJobID(r.Context(), resource.JobID)
+	if err != nil {
+		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+			Message: "Failed to get build.",
+			Detail:  err.Error(),
+		})
+		return
+	}
+
+	workspace, err := api.Database.GetWorkspaceByID(r.Context(), build.WorkspaceID)
+	if err != nil {
+		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+			Message: "Failed to get workspace.",
 			Detail:  err.Error(),
 		})
 		return
@@ -191,7 +209,7 @@ func (api *API) workspaceAgentReportStats(rw http.ResponseWriter, r *http.Reques
 	}
 
 	ctx := r.Context()
-	timer := time.NewTimer(interval)
+	timer := time.NewTicker(interval)
 	for {
 		err := wsjson.Write(ctx, conn, codersdk.AgentStatsReportRequest{})
 		if err != nil {
@@ -212,11 +230,36 @@ func (api *API) workspaceAgentReportStats(rw http.ResponseWriter, r *http.Reques
 			return
 		}
 
+		repJSON, err := json.Marshal(rep)
+		if err != nil {
+			httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+				Message: "Failed to marshal stat json.",
+				Detail:  err.Error(),
+			})
+			return
+		}
+
 		api.Logger.Debug(ctx, "read stats report",
 			slog.F("agent", workspaceAgent.ID),
+			slog.F("resource", resource.ID),
 			slog.F("workspace", workspace.ID),
-			slog.F("report", rep),
+			slog.F("conns", rep.ProtocolStats),
 		)
+		_, err = api.Database.InsertAgentStat(ctx, database.InsertAgentStatParams{
+			ID:          uuid.NewString(),
+			CreatedAt:   time.Now(),
+			AgentID:     workspaceAgent.ID,
+			WorkspaceID: build.WorkspaceID,
+			UserID:      workspace.OwnerID,
+			Payload:     json.RawMessage(repJSON),
+		})
+		if err != nil {
+			httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+				Message: "Failed to insert agent stat.",
+				Detail:  err.Error(),
+			})
+			return
+		}
 
 		select {
 		case <-timer.C:
diff --git a/coderd/workspaceagents_test.go b/coderd/workspaceagents_test.go
@@ -137,7 +137,7 @@ func TestWorkspaceReportStats(t *testing.T) {
 	_, err = session.Output("echo hello")
 	require.NoError(t, err)
 
-	time.Sleep(time.Second * 10)
+	time.Sleep(time.Second * 1)
 	require.NoError(t, err)
 }
 
diff --git a/codersdk/workspaceagents.go b/codersdk/workspaceagents.go
@@ -484,28 +484,44 @@ func (c *Client) turnProxyDialer(ctx context.Context, httpClient *http.Client, p
 	})
 }
 
+type CloseFunc func() error
+
+func (c CloseFunc) Close() error {
+	return c()
+}
+
 // AgentReportStats begins a stat streaming connection with the Coder server.
 // It is resilient to network failures and intermittent coderd issues.
-func (c *Client) AgentReportStats(ctx context.Context, log slog.Logger, stats func() *agent.Stats) error {
+func (c *Client) AgentReportStats(
+	ctx context.Context,
+	log slog.Logger,
+	stats func() *agent.Stats,
+) (io.Closer, error) {
 	serverURL, err := c.URL.Parse("/api/v2/workspaceagents/me/report-stats")
 	if err != nil {
-		return xerrors.Errorf("parse url: %w", err)
+		return nil, xerrors.Errorf("parse url: %w", err)
 	}
 
 	jar, err := cookiejar.New(nil)
 	if err != nil {
-		return xerrors.Errorf("create cookie jar: %w", err)
+		return nil, xerrors.Errorf("create cookie jar: %w", err)
 	}
 
 	jar.SetCookies(serverURL, []*http.Cookie{{
 		Name:  SessionTokenKey,
 		Value: c.SessionToken,
 	}})
+
 	httpClient := &http.Client{
 		Jar: jar,
 	}
 
+	doneCh := make(chan struct{})
+	ctx, cancel := context.WithCancel(ctx)
+
 	go func() {
+		defer close(doneCh)
+
 		for r := retry.New(time.Second, time.Hour); r.Wait(ctx); {
 			err = func() error {
 				conn, res, err := websocket.Dial(ctx, serverURL.String(), &websocket.DialOptions{
@@ -527,13 +543,8 @@ func (c *Client) AgentReportStats(ctx context.Context, log slog.Logger, stats fu
 						return err
 					}
 
-					s := stats()
 					resp := AgentStatsReportResponse{
-						Conns: make([]agent.ConnStats, 0, len(s.ActiveConns)),
-					}
-
-					for _, cs := range s.ActiveConns {
-						resp.Conns = append(resp.Conns, *cs)
+						ProtocolStats: stats().ProtocolStats,
 					}
 
 					err = wsjson.Write(ctx, conn, resp)
@@ -542,13 +553,17 @@ func (c *Client) AgentReportStats(ctx context.Context, log slog.Logger, stats fu
 					}
 				}
 			}()
-			if err != nil {
+			if err != nil && ctx.Err() == nil {
 				log.Error(ctx, "report stats", slog.Error(err))
 			}
 		}
 	}()
 
-	return nil
+	return CloseFunc(func() error {
+		cancel()
+		<-doneCh
+		return nil
+	}), nil
 }
 
 // AgentStatsReportRequest is a WebSocket request by coderd
@@ -559,5 +574,5 @@ type AgentStatsReportRequest struct {
 // AgentStatsReportResponse is returned for each report
 // request by the agent.
 type AgentStatsReportResponse struct {
-	Conns []agent.ConnStats `json:"conns,omitempty"`
+	ProtocolStats map[string]*agent.ProtocolStats `json:"conn_stats,omitempty"`
 }

Original file line number	Diff line number	Diff line change
`@@ -137,7 +137,7 @@ func TestWorkspaceReportStats(t *testing.T) {`
`137`	`137`	`_, err = session.Output("echo hello")`
`138`	`138`	`require.NoError(t, err)`
`139`	`139`
`140`		`- time.Sleep(time.Second * 10)`
	`140`	`+ time.Sleep(time.Second * 1)`
`141`	`141`	`require.NoError(t, err)`
`142`	`142`	`}`
`143`	`143`