2014-03-30 18:28:04 +00:00
|
|
|
package weed_server
|
|
|
|
|
|
|
|
|
|
import (
|
2019-06-23 22:29:49 +00:00
|
|
|
"context"
|
|
|
|
|
"fmt"
|
2018-08-13 08:22:32 +00:00
|
|
|
"net/http"
|
2018-12-06 07:24:25 +00:00
|
|
|
"os"
|
2023-12-21 00:21:11 +00:00
|
|
|
"strings"
|
2020-03-30 08:19:33 +00:00
|
|
|
"sync"
|
2019-06-23 22:29:49 +00:00
|
|
|
"time"
|
2018-08-13 08:22:32 +00:00
|
|
|
|
2022-07-29 07:17:28 +00:00
|
|
|
"github.com/seaweedfs/seaweedfs/weed/stats"
|
2020-10-21 00:41:39 +00:00
|
|
|
|
2019-12-31 19:52:54 +00:00
|
|
|
"google.golang.org/grpc"
|
|
|
|
|
|
2022-07-29 07:17:28 +00:00
|
|
|
"github.com/seaweedfs/seaweedfs/weed/util/grace"
|
|
|
|
|
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/operation"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/pb"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/pb/filer_pb"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/pb/master_pb"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/util"
|
|
|
|
|
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/filer"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/arangodb"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/cassandra"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/elastic/v7"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/etcd"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/hbase"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/leveldb"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/leveldb2"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/leveldb3"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/mongodb"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/mysql"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/mysql2"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/postgres"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/postgres2"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/redis"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/redis2"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/redis3"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/sqlite"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/filer/ydb"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/glog"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/notification"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/notification/aws_sqs"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/notification/gocdk_pub_sub"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/notification/google_pub_sub"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/notification/kafka"
|
|
|
|
|
_ "github.com/seaweedfs/seaweedfs/weed/notification/log"
|
|
|
|
|
"github.com/seaweedfs/seaweedfs/weed/security"
|
2014-03-30 18:28:04 +00:00
|
|
|
)
|
|
|
|
|
|
2018-07-07 09:18:47 +00:00
|
|
|
type FilerOption struct {
|
2023-08-24 14:08:56 +00:00
|
|
|
Masters *pb.ServerDiscovery
|
2022-05-02 04:59:16 +00:00
|
|
|
FilerGroup string
|
2021-03-30 09:10:50 +00:00
|
|
|
Collection string
|
|
|
|
|
DefaultReplication string
|
|
|
|
|
DisableDirListing bool
|
|
|
|
|
MaxMB int
|
|
|
|
|
DirListingLimit int
|
|
|
|
|
DataCenter string
|
|
|
|
|
Rack string
|
2021-12-22 13:57:26 +00:00
|
|
|
DataNode string
|
2021-03-30 09:10:50 +00:00
|
|
|
DefaultLevelDbDir string
|
|
|
|
|
DisableHttp bool
|
2021-09-13 05:47:52 +00:00
|
|
|
Host pb.ServerAddress
|
2021-03-30 09:10:50 +00:00
|
|
|
recursiveDelete bool
|
|
|
|
|
Cipher bool
|
2021-04-01 09:21:40 +00:00
|
|
|
SaveToFilerLimit int64
|
2021-03-30 09:10:50 +00:00
|
|
|
ConcurrentUploadLimit int64
|
2022-06-14 16:30:49 +00:00
|
|
|
ShowUIDirectoryDelete bool
|
2022-08-05 08:16:42 +00:00
|
|
|
DownloadMaxBytesPs int64
|
2023-02-25 17:48:59 +00:00
|
|
|
DiskType string
|
2023-12-21 00:21:11 +00:00
|
|
|
AllowedOrigins []string
|
2018-07-07 09:18:47 +00:00
|
|
|
}
|
|
|
|
|
|
2014-03-30 18:28:04 +00:00
|
|
|
type FilerServer struct {
|
2022-08-11 05:27:13 +00:00
|
|
|
inFlightDataSize int64
|
|
|
|
|
inFlightDataLimitCond *sync.Cond
|
|
|
|
|
|
2021-12-05 08:42:25 +00:00
|
|
|
filer_pb.UnimplementedSeaweedFilerServer
|
2019-02-18 20:11:52 +00:00
|
|
|
option *FilerOption
|
|
|
|
|
secret security.SigningKey
|
2020-09-01 07:21:19 +00:00
|
|
|
filer *filer.Filer
|
FEATURE: add JWT to HTTP endpoints of Filer and use them in S3 Client
- one JWT for reading and one for writing, analogous to how the JWT
between Master and Volume Server works
- I did not implement IP `whiteList` parameter on the filer
Additionally, because http_util.DownloadFile now sets the JWT,
the `download` command should now work when `jwt.signing.read` is
configured. By looking at the code, I think this case did not work
before.
## Docs to be adjusted after a release
Page `Amazon-S3-API`:
```
# Authentication with Filer
You can use mTLS for the gRPC connection between S3-API-Proxy and the filer, as
explained in [Security-Configuration](Security-Configuration) -
controlled by the `grpc.*` configuration in `security.toml`.
Starting with version XX, it is also possible to authenticate the HTTP
operations between the S3-API-Proxy and the Filer (especially
uploading new files). This is configured by setting
`filer_jwt.signing.key` and `filer_jwt.signing.read.key` in
`security.toml`.
With both configurations (gRPC and JWT), it is possible to have Filer
and S3 communicate in fully authenticated fashion; so Filer will reject
any unauthenticated communication.
```
Page `Security Overview`:
```
The following items are not covered, yet:
- master server http REST services
Starting with version XX, the Filer HTTP REST services can be secured
with a JWT, by setting `filer_jwt.signing.key` and
`filer_jwt.signing.read.key` in `security.toml`.
...
Before version XX: "weed filer -disableHttp", disable http operations, only gRPC operations are allowed. This works with "weed mount" by FUSE. It does **not work** with the [S3 Gateway](Amazon S3 API), as this does HTTP calls to the Filer.
Starting with version XX: secured by JWT, by setting `filer_jwt.signing.key` and `filer_jwt.signing.read.key` in `security.toml`. **This now works with the [S3 Gateway](Amazon S3 API).**
...
# Securing Filer HTTP with JWT
To enable JWT-based access control for the Filer,
1. generate `security.toml` file by `weed scaffold -config=security`
2. set `filer_jwt.signing.key` to a secret string - and optionally filer_jwt.signing.read.key` as well to a secret string
3. copy the same `security.toml` file to the filers and all S3 proxies.
If `filer_jwt.signing.key` is configured: When sending upload/update/delete HTTP operations to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.key`.
If `filer_jwt.signing.read.key` is configured: When sending GET or HEAD requests to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.read.key`.
The S3 API Gateway reads the above JWT keys and sends authenticated
HTTP requests to the filer.
```
Page `Security Configuration`:
```
(update scaffold file)
...
[filer_jwt.signing]
key = "blahblahblahblah"
[filer_jwt.signing.read]
key = "blahblahblahblah"
```
Resolves: #158
2021-12-29 18:47:53 +00:00
|
|
|
filerGuard *security.Guard
|
2019-02-18 20:11:52 +00:00
|
|
|
grpcDialOption grpc.DialOption
|
2020-03-30 08:19:33 +00:00
|
|
|
|
2020-09-17 13:43:54 +00:00
|
|
|
// metrics read from the master
|
|
|
|
|
metricsAddress string
|
|
|
|
|
metricsIntervalSec int
|
|
|
|
|
|
2020-03-30 08:19:33 +00:00
|
|
|
// notifying clients
|
2020-04-05 07:51:16 +00:00
|
|
|
listenersLock sync.Mutex
|
|
|
|
|
listenersCond *sync.Cond
|
2020-05-05 09:05:28 +00:00
|
|
|
|
2021-12-30 08:23:57 +00:00
|
|
|
// track known metadata listeners
|
|
|
|
|
knownListenersLock sync.Mutex
|
2022-07-23 17:50:28 +00:00
|
|
|
knownListeners map[int32]int32
|
2014-03-30 18:28:04 +00:00
|
|
|
}
|
|
|
|
|
|
2018-07-07 09:18:47 +00:00
|
|
|
func NewFilerServer(defaultMux, readonlyMux *http.ServeMux, option *FilerOption) (fs *FilerServer, err error) {
|
2018-10-07 17:54:05 +00:00
|
|
|
|
FEATURE: add JWT to HTTP endpoints of Filer and use them in S3 Client
- one JWT for reading and one for writing, analogous to how the JWT
between Master and Volume Server works
- I did not implement IP `whiteList` parameter on the filer
Additionally, because http_util.DownloadFile now sets the JWT,
the `download` command should now work when `jwt.signing.read` is
configured. By looking at the code, I think this case did not work
before.
## Docs to be adjusted after a release
Page `Amazon-S3-API`:
```
# Authentication with Filer
You can use mTLS for the gRPC connection between S3-API-Proxy and the filer, as
explained in [Security-Configuration](Security-Configuration) -
controlled by the `grpc.*` configuration in `security.toml`.
Starting with version XX, it is also possible to authenticate the HTTP
operations between the S3-API-Proxy and the Filer (especially
uploading new files). This is configured by setting
`filer_jwt.signing.key` and `filer_jwt.signing.read.key` in
`security.toml`.
With both configurations (gRPC and JWT), it is possible to have Filer
and S3 communicate in fully authenticated fashion; so Filer will reject
any unauthenticated communication.
```
Page `Security Overview`:
```
The following items are not covered, yet:
- master server http REST services
Starting with version XX, the Filer HTTP REST services can be secured
with a JWT, by setting `filer_jwt.signing.key` and
`filer_jwt.signing.read.key` in `security.toml`.
...
Before version XX: "weed filer -disableHttp", disable http operations, only gRPC operations are allowed. This works with "weed mount" by FUSE. It does **not work** with the [S3 Gateway](Amazon S3 API), as this does HTTP calls to the Filer.
Starting with version XX: secured by JWT, by setting `filer_jwt.signing.key` and `filer_jwt.signing.read.key` in `security.toml`. **This now works with the [S3 Gateway](Amazon S3 API).**
...
# Securing Filer HTTP with JWT
To enable JWT-based access control for the Filer,
1. generate `security.toml` file by `weed scaffold -config=security`
2. set `filer_jwt.signing.key` to a secret string - and optionally filer_jwt.signing.read.key` as well to a secret string
3. copy the same `security.toml` file to the filers and all S3 proxies.
If `filer_jwt.signing.key` is configured: When sending upload/update/delete HTTP operations to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.key`.
If `filer_jwt.signing.read.key` is configured: When sending GET or HEAD requests to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.read.key`.
The S3 API Gateway reads the above JWT keys and sends authenticated
HTTP requests to the filer.
```
Page `Security Configuration`:
```
(update scaffold file)
...
[filer_jwt.signing]
key = "blahblahblahblah"
[filer_jwt.signing.read]
key = "blahblahblahblah"
```
Resolves: #158
2021-12-29 18:47:53 +00:00
|
|
|
v := util.GetViper()
|
|
|
|
|
signingKey := v.GetString("jwt.filer_signing.key")
|
|
|
|
|
v.SetDefault("jwt.filer_signing.expires_after_seconds", 10)
|
|
|
|
|
expiresAfterSec := v.GetInt("jwt.filer_signing.expires_after_seconds")
|
|
|
|
|
|
|
|
|
|
readSigningKey := v.GetString("jwt.filer_signing.read.key")
|
|
|
|
|
v.SetDefault("jwt.filer_signing.read.expires_after_seconds", 60)
|
|
|
|
|
readExpiresAfterSec := v.GetInt("jwt.filer_signing.read.expires_after_seconds")
|
|
|
|
|
|
2023-12-21 00:21:11 +00:00
|
|
|
v.SetDefault("cors.allowed_origins.values", "*")
|
|
|
|
|
|
|
|
|
|
if (option.AllowedOrigins == nil) || (len(option.AllowedOrigins) == 0) {
|
|
|
|
|
allowedOrigins := v.GetString("cors.allowed_origins.values")
|
|
|
|
|
domains := strings.Split(allowedOrigins, ",")
|
|
|
|
|
option.AllowedOrigins = domains
|
|
|
|
|
}
|
|
|
|
|
|
2014-03-30 18:28:04 +00:00
|
|
|
fs = &FilerServer{
|
2021-03-30 09:10:50 +00:00
|
|
|
option: option,
|
|
|
|
|
grpcDialOption: security.LoadClientTLS(util.GetViper(), "grpc.filer"),
|
2022-07-23 17:50:28 +00:00
|
|
|
knownListeners: make(map[int32]int32),
|
2021-03-30 09:10:50 +00:00
|
|
|
inFlightDataLimitCond: sync.NewCond(new(sync.Mutex)),
|
2014-03-30 18:28:04 +00:00
|
|
|
}
|
2020-04-05 07:51:16 +00:00
|
|
|
fs.listenersCond = sync.NewCond(&fs.listenersLock)
|
2018-06-01 07:39:39 +00:00
|
|
|
|
2023-08-24 14:08:56 +00:00
|
|
|
option.Masters.RefreshBySrvIfAvailable()
|
|
|
|
|
if len(option.Masters.GetInstances()) == 0 {
|
2018-06-01 07:39:39 +00:00
|
|
|
glog.Fatal("master list is required!")
|
|
|
|
|
}
|
2023-10-12 21:29:55 +00:00
|
|
|
v.SetDefault("filer.options.max_file_name_length", 255)
|
|
|
|
|
maxFilenameLength := v.GetUint32("filer.options.max_file_name_length")
|
|
|
|
|
fs.filer = filer.NewFiler(*option.Masters, fs.grpcDialOption, option.Host, option.FilerGroup, option.Collection, option.DefaultReplication, option.DataCenter, maxFilenameLength, func() {
|
2020-07-06 06:05:02 +00:00
|
|
|
fs.listenersCond.Broadcast()
|
|
|
|
|
})
|
2020-03-06 08:49:47 +00:00
|
|
|
fs.filer.Cipher = option.Cipher
|
FEATURE: add JWT to HTTP endpoints of Filer and use them in S3 Client
- one JWT for reading and one for writing, analogous to how the JWT
between Master and Volume Server works
- I did not implement IP `whiteList` parameter on the filer
Additionally, because http_util.DownloadFile now sets the JWT,
the `download` command should now work when `jwt.signing.read` is
configured. By looking at the code, I think this case did not work
before.
## Docs to be adjusted after a release
Page `Amazon-S3-API`:
```
# Authentication with Filer
You can use mTLS for the gRPC connection between S3-API-Proxy and the filer, as
explained in [Security-Configuration](Security-Configuration) -
controlled by the `grpc.*` configuration in `security.toml`.
Starting with version XX, it is also possible to authenticate the HTTP
operations between the S3-API-Proxy and the Filer (especially
uploading new files). This is configured by setting
`filer_jwt.signing.key` and `filer_jwt.signing.read.key` in
`security.toml`.
With both configurations (gRPC and JWT), it is possible to have Filer
and S3 communicate in fully authenticated fashion; so Filer will reject
any unauthenticated communication.
```
Page `Security Overview`:
```
The following items are not covered, yet:
- master server http REST services
Starting with version XX, the Filer HTTP REST services can be secured
with a JWT, by setting `filer_jwt.signing.key` and
`filer_jwt.signing.read.key` in `security.toml`.
...
Before version XX: "weed filer -disableHttp", disable http operations, only gRPC operations are allowed. This works with "weed mount" by FUSE. It does **not work** with the [S3 Gateway](Amazon S3 API), as this does HTTP calls to the Filer.
Starting with version XX: secured by JWT, by setting `filer_jwt.signing.key` and `filer_jwt.signing.read.key` in `security.toml`. **This now works with the [S3 Gateway](Amazon S3 API).**
...
# Securing Filer HTTP with JWT
To enable JWT-based access control for the Filer,
1. generate `security.toml` file by `weed scaffold -config=security`
2. set `filer_jwt.signing.key` to a secret string - and optionally filer_jwt.signing.read.key` as well to a secret string
3. copy the same `security.toml` file to the filers and all S3 proxies.
If `filer_jwt.signing.key` is configured: When sending upload/update/delete HTTP operations to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.key`.
If `filer_jwt.signing.read.key` is configured: When sending GET or HEAD requests to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.read.key`.
The S3 API Gateway reads the above JWT keys and sends authenticated
HTTP requests to the filer.
```
Page `Security Configuration`:
```
(update scaffold file)
...
[filer_jwt.signing]
key = "blahblahblahblah"
[filer_jwt.signing.read]
key = "blahblahblahblah"
```
Resolves: #158
2021-12-29 18:47:53 +00:00
|
|
|
// we do not support IP whitelist right now
|
|
|
|
|
fs.filerGuard = security.NewGuard([]string{}, signingKey, expiresAfterSec, readSigningKey, readExpiresAfterSec)
|
2018-06-01 07:39:39 +00:00
|
|
|
|
2020-09-30 16:15:55 +00:00
|
|
|
fs.checkWithMaster()
|
2020-04-03 07:40:54 +00:00
|
|
|
|
2021-09-13 05:47:52 +00:00
|
|
|
go stats.LoopPushingMetric("filer", string(fs.option.Host), fs.metricsAddress, fs.metricsIntervalSec)
|
2021-11-06 21:23:35 +00:00
|
|
|
go fs.filer.KeepMasterClientConnected()
|
2018-05-26 10:49:46 +00:00
|
|
|
|
2019-06-05 08:30:24 +00:00
|
|
|
if !util.LoadConfiguration("filer", false) {
|
2022-03-06 13:27:25 +00:00
|
|
|
v.SetDefault("leveldb2.enabled", true)
|
|
|
|
|
v.SetDefault("leveldb2.dir", option.DefaultLevelDbDir)
|
2018-12-06 07:24:25 +00:00
|
|
|
_, err := os.Stat(option.DefaultLevelDbDir)
|
|
|
|
|
if os.IsNotExist(err) {
|
|
|
|
|
os.MkdirAll(option.DefaultLevelDbDir, 0755)
|
|
|
|
|
}
|
2020-07-08 06:06:48 +00:00
|
|
|
glog.V(0).Infof("default to create filer store dir in %s", option.DefaultLevelDbDir)
|
2020-12-23 01:33:37 +00:00
|
|
|
} else {
|
|
|
|
|
glog.Warningf("skipping default store dir in %s", option.DefaultLevelDbDir)
|
2018-12-06 07:24:25 +00:00
|
|
|
}
|
2019-06-05 08:30:24 +00:00
|
|
|
util.LoadConfiguration("notification", false)
|
2018-05-14 06:56:16 +00:00
|
|
|
|
2019-12-31 19:52:54 +00:00
|
|
|
fs.option.recursiveDelete = v.GetBool("filer.options.recursive_delete")
|
2020-04-07 08:58:48 +00:00
|
|
|
v.SetDefault("filer.options.buckets_folder", "/buckets")
|
2020-04-07 08:30:53 +00:00
|
|
|
fs.filer.DirBucketsPath = v.GetString("filer.options.buckets_folder")
|
2020-11-17 00:56:49 +00:00
|
|
|
// TODO deprecated, will be be removed after 2020-12-31
|
2022-07-29 07:17:28 +00:00
|
|
|
// replaced by https://github.com/seaweedfs/seaweedfs/wiki/Path-Specific-Configuration
|
2021-05-22 07:24:23 +00:00
|
|
|
// fs.filer.FsyncBuckets = v.GetStringSlice("filer.options.buckets_fsync")
|
2022-05-31 04:27:48 +00:00
|
|
|
isFresh := fs.filer.LoadConfiguration(v)
|
2018-08-19 22:17:55 +00:00
|
|
|
|
2020-01-29 17:09:55 +00:00
|
|
|
notification.LoadConfiguration(v, "notification.")
|
2018-08-13 08:20:49 +00:00
|
|
|
|
2018-10-07 17:54:05 +00:00
|
|
|
handleStaticResources(defaultMux)
|
2019-03-21 23:00:46 +00:00
|
|
|
if !option.DisableHttp {
|
2023-10-08 14:03:18 +00:00
|
|
|
defaultMux.HandleFunc("/healthz", fs.filerHealthzHandler)
|
2019-03-21 23:00:46 +00:00
|
|
|
defaultMux.HandleFunc("/", fs.filerHandler)
|
|
|
|
|
}
|
2017-05-28 03:14:22 +00:00
|
|
|
if defaultMux != readonlyMux {
|
2020-11-27 21:42:14 +00:00
|
|
|
handleStaticResources(readonlyMux)
|
2017-05-28 03:14:22 +00:00
|
|
|
readonlyMux.HandleFunc("/", fs.readonlyFilerHandler)
|
|
|
|
|
}
|
2014-03-30 18:28:04 +00:00
|
|
|
|
2022-05-30 23:28:36 +00:00
|
|
|
existingNodes := fs.filer.ListExistingPeerUpdates()
|
2022-05-31 04:27:48 +00:00
|
|
|
startFromTime := time.Now().Add(-filer.LogFlushInterval)
|
|
|
|
|
if isFresh {
|
|
|
|
|
glog.V(0).Infof("%s bootstrap from peers %+v", option.Host, existingNodes)
|
2022-05-31 18:55:58 +00:00
|
|
|
if err := fs.filer.MaybeBootstrapFromPeers(option.Host, existingNodes, startFromTime); err != nil {
|
2023-12-07 16:13:42 +00:00
|
|
|
glog.Fatalf("%s bootstrap from %+v: %v", option.Host, existingNodes, err)
|
2022-05-31 04:27:48 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
fs.filer.AggregateFromPeers(option.Host, existingNodes, startFromTime)
|
2020-07-08 06:06:48 +00:00
|
|
|
|
2020-11-15 22:06:03 +00:00
|
|
|
fs.filer.LoadFilerConf()
|
|
|
|
|
|
2021-07-29 05:43:12 +00:00
|
|
|
fs.filer.LoadRemoteStorageConfAndMapping()
|
|
|
|
|
|
2020-04-28 06:10:23 +00:00
|
|
|
grace.OnInterrupt(func() {
|
2020-03-15 03:30:26 +00:00
|
|
|
fs.filer.Shutdown()
|
|
|
|
|
})
|
|
|
|
|
|
2023-06-25 21:30:58 +00:00
|
|
|
fs.filer.Dlm.LockRing.SetTakeSnapshotCallback(fs.OnDlmChangeSnapshot)
|
2023-06-25 07:58:21 +00:00
|
|
|
|
2023-09-19 01:47:34 +00:00
|
|
|
return fs, nil
|
2019-06-23 22:29:49 +00:00
|
|
|
}
|
|
|
|
|
|
2020-09-30 16:15:55 +00:00
|
|
|
func (fs *FilerServer) checkWithMaster() {
|
2020-04-03 07:47:33 +00:00
|
|
|
|
2019-06-23 22:29:49 +00:00
|
|
|
isConnected := false
|
|
|
|
|
for !isConnected {
|
2023-08-24 14:08:56 +00:00
|
|
|
fs.option.Masters.RefreshBySrvIfAvailable()
|
|
|
|
|
for _, master := range fs.option.Masters.GetInstances() {
|
2021-12-26 08:15:03 +00:00
|
|
|
readErr := operation.WithMasterServerClient(false, master, fs.grpcDialOption, func(masterClient master_pb.SeaweedClient) error {
|
2020-09-30 16:15:55 +00:00
|
|
|
resp, err := masterClient.GetMasterConfiguration(context.Background(), &master_pb.GetMasterConfigurationRequest{})
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("get master %s configuration: %v", master, err)
|
|
|
|
|
}
|
|
|
|
|
fs.metricsAddress, fs.metricsIntervalSec = resp.MetricsAddress, int(resp.MetricsIntervalSeconds)
|
|
|
|
|
return nil
|
|
|
|
|
})
|
2020-04-03 07:47:48 +00:00
|
|
|
if readErr == nil {
|
|
|
|
|
isConnected = true
|
|
|
|
|
} else {
|
|
|
|
|
time.Sleep(7 * time.Second)
|
|
|
|
|
}
|
2019-06-23 22:29:49 +00:00
|
|
|
}
|
|
|
|
|
}
|
2020-09-19 07:03:00 +00:00
|
|
|
|
2014-03-30 18:28:04 +00:00
|
|
|
}
|