pika icon indicating copy to clipboard operation
pika copied to clipboard

Published 20 hours ago verified publisher icon OpenAtomFoundation

feat: update codis fe / proxy with tls; topom updated

Open kolinfluence opened this issue 1 year ago • 18 comments
trafficstars

codis fe / proxy tls + topom update

Summary by CodeRabbit

  • New Features

    • Added TLS configuration options for secure communication (--tls-cert, --tls-key, --tls=N).
    • Introduced TLS support for the proxy server including configuration and listener creation.
    • Enhanced Redis Sentinel configuration settings for improved reliability.

  • Bug Fixes

    • Improved lock release logic in Topom struct to handle token-based releases.

  • Refactor

    • Updated Proxy struct to include TLS-related fields.
    • Adjusted listener creation logic to handle TLS configuration.

kolinfluence avatar Feb 01 '24 18:02 kolinfluence

@AlexStocks please look into it.

sprappcom avatar Feb 02 '24 19:02 sprappcom

noted. will revert.

kolinfluence avatar Mar 11 '24 00:03 kolinfluence

@machinly pls check again, i've done all. sorry for the issues. for code generation, do provide what examples you think is good. for the cert is just dummy test like your "filesystem" thing.

kolinfluence avatar Mar 14 '24 13:03 kolinfluence

codis-fe cannot access, have you tried in you local env? image

luky116 avatar Apr 21 '24 15:04 luky116

proxy cannot connect?

image

luky116 avatar Apr 21 '24 15:04 luky116

Judging from your code, you want to add the TLS protocol to the redis protocol port of the proxy layer. If so, can dashboard and fe not add TLS? Because they interact through the http protocol, the proxy's redis protocol port is only responsible for the user's redis client connection.

luky116 avatar Apr 21 '24 16:04 luky116

@luky116 sorry was busy playing with lru benchmark tests update here so a bit lagged behind on pika (but it's on my radar daily). https://github.com/cloudxaas/gocache/tree/main/lrux/bytes need fast lru. (promoting it coz may be able to be used in codis too and would hope for improvement to make it faster, kind of applicable to cache)

back to your question...

  1. the dashboard and fe is added for remote users to the dashboard and fe. it's optional configuration parameter. if you set tls = true, then it will do the tls feature, else wont affect performance at runtime.

  2. it'll be useful for wider adoption considering a lot of dev can remotely access their dashboard / fe etc knowing it's more secure. basically it wont affect the runtime performance.

  3. dashboard and fe why not add tls to interact with https protocol too? ok i see your point. so maybe we can also do a tlsfe = 1, tlsdashboard = 1, tlspika = 1 etc kind of parameter too. we can allow http/https to run concurrently without affecting performance and the fe/dashboard choosing which to connect to.

good?

kolinfluence avatar Apr 21 '24 18:04 kolinfluence

proxy cannot connect?

image

you need to use redis-cli with secure tls to connect put redis-cli --tls as option parameter

pls remember it will only use tls for proxy if it's set to true. so accordingly, we will need to put tls-something for everything else etc where we want tls to have. so maybe tls-pika = true in future when pika has tls? but proxy shld definitely have tls.

kolinfluence avatar Apr 21 '24 18:04 kolinfluence

@CodiumAI-Agent /review

AlexStocks avatar Jun 05 '24 07:06 AlexStocks

PR Review 🔍

⏱️ Estimated effort to review [1-5]

4, because the PR involves multiple files with significant changes including the introduction of TLS in the network layer, modifications to configuration handling, and updates to the proxy and topom modules. The complexity of the changes and the security implications of correctly implementing TLS require careful review to ensure reliability and security.

🧪 Relevant tests

No

⚡ Possible issues

Possible Bug: The error handling in the TLS setup could be improved by providing more specific error messages or handling specific types of errors differently.

Performance Concern: The introduction of TLS might impact the performance due to encryption overhead. It would be beneficial to benchmark the performance before and after these changes to ensure that the impact is within acceptable limits.

🔒 Security concerns

No

Code feedback:
relevant filecodis/cmd/fe/main.go
suggestion      

Consider setting more fields in the tls.Config to ensure better security, such as MinVersion to enforce the use of TLS 1.2 or higher. This helps prevent the use of older, less secure versions of TLS. [important]
relevant lineCertificates: []tls.Certificate{cert},
relevant filecodis/pkg/proxy/proxy.go
suggestion      

Add error logging before returning the error when the TLS certificate fails to load. This will help in debugging issues related to TLS configuration by providing a clear log message about what went wrong. [important]
relevant linereturn errors.Trace(err)
relevant filecodis/pkg/models/store.go
suggestion      

Implement error handling for the case when Decode returns nil but no error. This could potentially lead to a situation where the function proceeds without a valid token, which might not be the intended behavior. [medium]
relevant lineif t.Token == token {
relevant filecodis/pkg/topom/topom.go
suggestion      

Add validation for the input byte slice b in the Decode function to check if it's nil or empty before attempting to decode it. This prevents unnecessary processing and potential errors when dealing with empty data. [medium]
relevant lineif err := jsonDecode(s, b); err != nil {

CodiumAI-Agent avatar Jun 05 '24 07:06 CodiumAI-Agent

@CodiumAI-Agent /improve

AlexStocks avatar Jun 05 '24 13:06 AlexStocks

PR Code Suggestions ✨

CategorySuggestion                                                                                                                                    Score
Security
Remove the private key from the codebase to enhance security

It is highly insecure to store private keys within the codebase, especially in plaintext
format. This can lead to security vulnerabilities as unauthorized users could potentially
access sensitive information. Consider using environment variables or a secure vault
solution to manage private keys.

codis/key.pem [1-28]

------BEGIN PRIVATE KEY-----
-MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQClOgprziC/+nQe
-...
------END PRIVATE KEY-----
+# Private key securely stored outside of the codebase
Suggestion importance[1-10]: 10

Why: Storing private keys in the codebase is a significant security risk. Using environment variables or secure vault solutions is a best practice to prevent unauthorized access to sensitive information.

10
Possible bug
Add checks for TLS certificate and key file paths before loading them

Consider adding a check for the --tls-cert and --tls-key flags before attempting to load
the TLS key pair. This ensures that the necessary parameters are provided, avoiding
runtime panics due to missing arguments.

codis/cmd/fe/main.go [205]

-cert, err := tls.LoadX509KeyPair(utils.ArgumentMust(d, "--tls-cert"), utils.ArgumentMust(d, "--tls-key"))
+certFile, keyFile := utils.ArgumentMust(d, "--tls-cert"), utils.ArgumentMust(d, "--tls-key")
+if certFile == "" || keyFile == "" {
+    log.Panic("TLS certificate or key file path must be provided")
+}
+cert, err := tls.LoadX509KeyPair(certFile, keyFile)
Suggestion importance[1-10]: 9

Why: This suggestion addresses a potential runtime panic by ensuring that the necessary TLS certificate and key file paths are provided before attempting to load them. This is a crucial check that enhances the robustness of the code.

9
Ensure safe token comparison by checking for nil after decoding

Add error handling for the Decode function to ensure that the token comparison only occurs
if the decoding is successful. This prevents potential nil pointer dereferences.

codis/pkg/models/store.go [133-138]

-t, err := Decode(b); 
+t, err := Decode(b)
 if err != nil {
     return err
 }
-if t.Token == token {
+if t != nil && t.Token == token {
     return s.Release()
 }
Suggestion importance[1-10]: 8

Why: This suggestion prevents potential nil pointer dereferences by ensuring that the token comparison only occurs if the decoding is successful. This is an important fix to avoid runtime errors.

8
Enhancement
Improve error handling for IP replacement to manage failures more effectively

Add error handling for utils.ReplaceUnspecifiedIP to handle potential failures gracefully
instead of only logging the error. This ensures that the function's failure is properly
managed.

codis/pkg/proxy/proxy.go [145-147]

 x, err := utils.ReplaceUnspecifiedIP(proto, l.Addr().String(), config.HostProxy)
 if err != nil {
+    log.Errorf("Failed to replace unspecified IP: %s", err)
     return err
 }
Suggestion importance[1-10]: 7

Why: The suggestion improves error handling by logging the error and returning it, which helps in debugging and ensures that failures are managed properly. However, it is a minor enhancement rather than a critical fix.

7
Wrap errors in the Decode function to enhance error information

Add error wrapping in the Decode function to provide more context about the error, which
can be useful for debugging.

codis/pkg/topom/topom.go [24-25]

 if err := jsonDecode(s, b); err != nil {
-    return nil,err
+    return nil, fmt.Errorf("json decode error: %w", err)
 }
Suggestion importance[1-10]: 6

Why: The suggestion enhances error information by wrapping errors with additional context. This is useful for debugging but is a minor improvement.

6

CodiumAI-Agent avatar Jun 05 '24 13:06 CodiumAI-Agent

will get back next week.

i was wondering if i can also improve the whole net thing with gnet. the performance will be much faster.

https://github.com/panjf2000/gnet

what do u guys think?

sprappcom avatar Jul 05 '24 06:07 sprappcom

[!WARNING]

Rate limit exceeded

@kolinfluence has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 20 minutes and 2 seconds before requesting another review.

How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

Commits

Files that changed from the base of the PR and between 1a4e5c41986fbb194331138d07ad8cfe42811850 and c491c6ad56165bc87940eedcf19ed0ff48415d01.

Walkthrough

The changes introduce TLS support for secure communication across various components of the Codis project. This involves updates to configuration files, enhancements to proxy and main function logic, and modifications to the Store and Topom structs for improved locking and decoding functionalities.

Changes

File Change Summary
codis/cmd/fe/main.go Added TLS configuration, options for TLS certificate and key, and modified listener logic for TLS support.
codis/config/proxy.toml Introduced TLS configuration options for the proxy with proxy_tls, proxy_tls_cert, and proxy_tls_key.
codis/pkg/models/proxy.go Added TLS-related fields to the Proxy struct.
codis/pkg/models/store.go Added ReleaseByToken method to the Store struct.
codis/pkg/models/topom.go Added Decode function to the Topom struct.
codis/pkg/proxy/config.go Added TLS-related fields and variables to the Config struct.
codis/pkg/proxy/proxy.go Introduced TLS support in the proxy server, adjusting the setup method for TLS configuration.
codis/pkg/topom/config.go Enhanced Redis Sentinel configuration settings for improved failover and server state checking intervals.
codis/pkg/topom/topom.go Modified Close method in Topom struct to use ReleaseByToken for releasing locks with token.

Sequence Diagram(s)

sequenceDiagram
    participant User
    participant Main as Main.go
    participant Proxy as Proxy.go
    participant Config as Config.go

    User->>Main: Start Codis Server
    Main->>Config: Load Configuration
    Main->>Proxy: Initialize Proxy with Config
    alt TLS Enabled
        Proxy->>Config: Check TLS Settings
        Proxy->>Proxy: Load TLS Certificate and Key
        Proxy->>Proxy: Create TLS Listener
    else TLS Disabled
        Proxy->>Proxy: Create Standard Listener
    end
    Proxy->>User: Server Ready

Poem

In Codis lands where data flows,
Secure channels now will grow.
With TLS we guard the gates,
Protecting secrets, thwarting fates. Proxies strengthened, new paths arise,
As tokens lock and errors paralyze.
Codis evolves to safer shores,
A haven built for data stores.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share
Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>.
    • Generate unit testing code for this file.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit testing code for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai generate interesting stats about this repository and render them as a table.
    • @coderabbitai show all the console.log statements in this repository.
    • @coderabbitai read src/utils.ts and generate unit testing code.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

coderabbitai[bot] avatar Jul 05 '24 07:07 coderabbitai[bot]

@machinly @chejinge ok?

kolinfluence avatar Jul 05 '24 07:07 kolinfluence