Google Git
Sign in
apache / apisix / 81120e401dec76364252418137e07c2f6a13bfe5 / . / apisix / core / etcd.lua
blob: 50c13ccae5481c36619bc4303921c8fa75a9f26c [file] [log] [blame]
--
-- Licensed to the Apache Software Foundation (ASF) under one or more
-- contributor license agreements. See the NOTICE file distributed with
-- this work for additional information regarding copyright ownership.
-- The ASF licenses this file to You under the Apache License, Version 2.0
-- (the "License"); you may not use this file except in compliance with
-- the License. You may obtain a copy of the License at
--
-- http://www.apache.org/licenses/LICENSE-2.0
--
-- Unless required by applicable law or agreed to in writing, software
-- distributed under the License is distributed on an "AS IS" BASIS,
-- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-- See the License for the specific language governing permissions and
-- limitations under the License.
--
local fetch_local_conf = require("apisix.core.config_local").local_conf
local etcd = require("resty.etcd")
local clone_tab = require("table.clone")
local ipairs = ipairs
local string = string
local tonumber = tonumber
local _M = {}
-- this function create the etcd client instance used in the Admin API
local function new()
local local_conf, err = fetch_local_conf()
if not local_conf then
return nil, nil, err
end
local etcd_conf = clone_tab(local_conf.etcd)
local prefix = etcd_conf.prefix
etcd_conf.http_host = etcd_conf.host
etcd_conf.host = nil
etcd_conf.prefix = nil
etcd_conf.protocol = "v3"
etcd_conf.api_prefix = "/v3"
etcd_conf.ssl_verify = true
-- default to verify etcd cluster certificate
etcd_conf.ssl_verify = true
if etcd_conf.tls then
if etcd_conf.tls.verify == false then
etcd_conf.ssl_verify = false
end
if etcd_conf.tls.cert then
etcd_conf.ssl_cert_path = etcd_conf.tls.cert
etcd_conf.ssl_key_path = etcd_conf.tls.key
end
end
local etcd_cli
etcd_cli, err = etcd.new(etcd_conf)
if not etcd_cli then
return nil, nil, err
end
return etcd_cli, prefix
end
_M.new = new
-- convert ETCD v3 entry to v2 one
local function kvs_to_node(kvs)
local node = {}
node.key = kvs.key
node.value = kvs.value
node.createdIndex = tonumber(kvs.create_revision)
node.modifiedIndex = tonumber(kvs.mod_revision)
return node
end
_M.kvs_to_node = kvs_to_node
local function kvs_to_nodes(res)
res.body.node.dir = true
res.body.node.nodes = {}
for i=2, #res.body.kvs do
res.body.node.nodes[i-1] = kvs_to_node(res.body.kvs[i])
end
return res
end
local function not_found(res)
res.body.message = "Key not found"
res.reason = "Not found"
res.status = 404
return res
end
-- When `is_dir` is true, returns the value of both the dir key and its descendants.
-- Otherwise, return the value of key only.
function _M.get_format(res, real_key, is_dir, formatter)
if res.body.error == "etcdserver: user name is empty" then
return nil, "insufficient credentials code: 401"
end
if res.body.error == "etcdserver: permission denied" then
return nil, "etcd forbidden code: 403"
end
res.headers["X-Etcd-Index"] = res.body.header.revision
if not res.body.kvs then
return not_found(res)
end
res.body.action = "get"
if formatter then
return formatter(res)
end
if not is_dir then
local key = res.body.kvs[1].key
if key ~= real_key then
return not_found(res)
end
res.body.node = kvs_to_node(res.body.kvs[1])
else
-- In etcd v2, the direct key asked for is `node`, others which under this dir are `nodes`
-- While in v3, this structure is flatten and all keys related the key asked for are `kvs`
res.body.node = kvs_to_node(res.body.kvs[1])
if not res.body.kvs[1].value then
-- remove last "/" when necessary
if string.byte(res.body.node.key, -1) == 47 then
res.body.node.key = string.sub(res.body.node.key, 1, #res.body.node.key-1)
end
res = kvs_to_nodes(res)
end
end
res.body.kvs = nil
return res
end
function _M.watch_format(v3res)
local v2res = {}
v2res.headers = {
["X-Etcd-Index"] = v3res.result.header.revision
}
v2res.body = {
node = {}
}
local compact_revision = v3res.result.compact_revision
if compact_revision and tonumber(compact_revision) > 0 then
-- When the revisions are compacted, there might be compacted changes
-- which are unsynced. So we need to do a fully sync.
-- TODO: cover this branch in CI
return nil, "compacted"
end
for i, event in ipairs(v3res.result.events) do
v2res.body.node[i] = kvs_to_node(event.kv)
if event.type == "DELETE" then
v2res.body.action = "delete"
end
end
return v2res
end
function _M.get(key, is_dir)
local etcd_cli, prefix, err = new()
if not etcd_cli then
return nil, err
end
key = prefix .. key
-- in etcd v2, get could implicitly turn into readdir
-- while in v3, we need to do it explicitly
local res, err = etcd_cli:readdir(key)
if not res then
return nil, err
end
return _M.get_format(res, key, is_dir)
end
local function set(key, value, ttl)
local etcd_cli, prefix, err = new()
if not etcd_cli then
return nil, err
end
-- lease substitute ttl in v3
local res, err
if ttl then
local data, grant_err = etcd_cli:grant(tonumber(ttl))
if not data then
return nil, grant_err
end
res, err = etcd_cli:set(prefix .. key, value, {prev_kv = true, lease = data.body.ID})
else
res, err = etcd_cli:set(prefix .. key, value, {prev_kv = true})
end
if not res then
return nil, err
end
res.headers["X-Etcd-Index"] = res.body.header.revision
-- etcd v3 set would not return kv info
res.body.action = "set"
res.body.node = {}
res.body.node.key = prefix .. key
res.body.node.value = value
res.status = 201
if res.body.prev_kv then
res.status = 200
res.body.prev_kv = nil
end
return res, nil
end
_M.set = set
function _M.atomic_set(key, value, ttl, mod_revision)
local etcd_cli, prefix, err = new()
if not etcd_cli then
return nil, err
end
local lease_id
if ttl then
local data, grant_err = etcd_cli:grant(tonumber(ttl))
if not data then
return nil, grant_err
end
lease_id = data.body.ID
end
key = prefix .. key
local compare = {
{
key = key,
target = "MOD",
result = "EQUAL",
mod_revision = mod_revision,
}
}
local success = {
{
requestPut = {
key = key,
value = value,
lease = lease_id,
}
}
}
local res, err = etcd_cli:txn(compare, success)
if not res then
return nil, err
end
if not res.body.succeeded then
return nil, "value changed before overwritten"
end
res.headers["X-Etcd-Index"] = res.body.header.revision
-- etcd v3 set would not return kv info
res.body.action = "compareAndSwap"
res.body.node = {
key = key,
value = value,
}
res.status = 201
return res, nil
end
function _M.push(key, value, ttl)
local etcd_cli, _, err = new()
if not etcd_cli then
return nil, err
end
-- Create a new revision and use it as the id.
-- It will be better if we use snowflake algorithm like manager-api,
-- but we haven't found a good library. It costs too much to write
-- our own one as the admin-api will be replaced by manager-api finally.
local res, err = set("/gen_id", 1)
if not res then
return nil, err
end
-- manually add suffix
local index = res.body.header.revision
index = string.format("%020d", index)
res, err = set(key .. "/" .. index, value, ttl)
if not res then
return nil, err
end
res.body.action = "create"
return res, nil
end
function _M.delete(key)
local etcd_cli, prefix, err = new()
if not etcd_cli then
return nil, err
end
local res, err = etcd_cli:delete(prefix .. key)
if not res then
return nil, err
end
res.headers["X-Etcd-Index"] = res.body.header.revision
if not res.body.deleted then
return not_found(res), nil
end
-- etcd v3 set would not return kv info
res.body.action = "delete"
res.body.node = {}
res.body.key = prefix .. key
return res, nil
end
function _M.server_version()
local etcd_cli, err = new()
if not etcd_cli then
return nil, err
end
return etcd_cli:version()
end
return _M