Add parallel execution to assist. #26563
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -188,80 +188,108 @@ func (h *Handler) executeCommand( | |
| h.log.Debugf("Found %d hosts to run Assist command %q on.", len(hosts), req.Command) | ||
|
|
||
| mfaCacheFn := getMFACacheFn() | ||
| interactiveCommand := strings.Split(req.Command, " ") | ||
|
|
||
| runCmd := func(host *hostInfo) error { | ||
| sessionData, err := h.generateCommandSession(host, req.Login, clusterName, sessionCtx.cfg.User) | ||
| if err != nil { | ||
| h.log.WithError(err).Debug("Unable to generate new ssh session.") | ||
| return trace.Wrap(err) | ||
| } | ||
|
|
||
| h.log.Debugf("New command request for server=%s, id=%v, login=%s, sid=%s, websid=%s.", | ||
| host.hostName, host.id, req.Login, sessionData.ID, sessionCtx.GetSessionID()) | ||
|
|
||
| commandHandlerConfig := CommandHandlerConfig{ | ||
| SessionCtx: sessionCtx, | ||
| AuthProvider: clt, | ||
| SessionData: sessionData, | ||
| KeepAliveInterval: keepAliveInterval, | ||
| ProxyHostPort: h.ProxyHostPort(), | ||
| InteractiveCommand: interactiveCommand, | ||
| Router: h.cfg.Router, | ||
| TracerProvider: h.cfg.TracerProvider, | ||
| LocalAuthProvider: h.auth.accessPoint, | ||
| mfaFuncCache: mfaCacheFn, | ||
| } | ||
|
|
||
| handler, err := newCommandHandler(ctx, commandHandlerConfig) | ||
| if err != nil { | ||
| h.log.WithError(err).Error("Unable to create terminal.") | ||
| return trace.Wrap(err) | ||
| } | ||
| handler.ws = &noopCloserWS{ws} | ||
|
|
||
| h.userConns.Add(1) | ||
| defer h.userConns.Add(-1) | ||
|
|
||
| h.log.Infof("Executing command: %#v.", req) | ||
| httplib.MakeTracingHandler(handler, teleport.ComponentProxy).ServeHTTP(w, r) | ||
|
|
||
| msgPayload, err := json.Marshal(struct { | ||
| NodeID string `json:"node_id"` | ||
| ExecutionID string `json:"execution_id"` | ||
| SessionID string `json:"session_id"` | ||
| }{ | ||
| NodeID: host.id, | ||
| ExecutionID: req.ExecutionID, | ||
| SessionID: string(sessionData.ID), | ||
| }) | ||
|
|
||
| if err != nil { | ||
| return trace.Wrap(err) | ||
| } | ||
|
|
||
| err = clt.CreateAssistantMessage(ctx, &assist.CreateAssistantMessageRequest{ | ||
| ConversationId: req.ConversationID, | ||
| Username: identity.TeleportUser, | ||
| Message: &assist.AssistantMessage{ | ||
| Type: string(assistlib.MessageKindCommandResult), | ||
| CreatedTime: timestamppb.New(time.Now().UTC()), | ||
| Payload: string(msgPayload), | ||
| }, | ||
| }) | ||
|
|
||
| return trace.Wrap(err) | ||
| } | ||
|
|
||
| runCommands(hosts, runCmd, h.log) | ||
|
|
||
| return nil, nil | ||
| } | ||
|
|
||
| // runCommands runs the given command on the given hosts. | ||
| func runCommands(hosts []hostInfo, runCmd func(host *hostInfo) error, log logrus.FieldLogger) { | ||
| // Create a synchronization channel to limit the number of concurrent commands. | ||
| // The maximum number of concurrent commands is 30 - it is arbitrary. | ||
| syncChan := make(chan struct{}, 30) | ||
|
There was a problem hiding this comment. can/should we put this in a configuration resource somewhere? I can imagine someone wanting to play with/adjust this. There was a problem hiding this comment. I was also thinking about it, but our "configuration management" looks a bit messy now. There was a problem hiding this comment. No concerns, we'll likely leave it as default on Cloud. There was a problem hiding this comment. @xacrimon I created a new issue to address this comment, as I don't want to introduce more changes after people have already reviewed it. https://github.com/gravitational/teleport.e/issues/1516 There was a problem hiding this comment. should this use There was a problem hiding this comment. I was also thinking about it, but Go has divided opinions about semaphores in general. I remember a proposal to remove semaphores in Go 2, which had many examples of why you should not use than. Now even stdlib recommends "kind of" against them https://pkg.go.dev/sync#Cond There was a problem hiding this comment. that's uh, certainly a way to design a language. anyhow, in that case, fine by me. |
||
| // WaiteGroup to wait for all commands to finish. | ||
| wg := sync.WaitGroup{} | ||
|
|
||
| for _, host := range hosts { | ||
| host := host | ||
| wg.Add(1) | ||
|
|
||
| go func() { | ||
| defer wg.Done() | ||
|
|
||
| // Limit the number of concurrent commands. | ||
| syncChan <- struct{}{} | ||
| defer func() { | ||
| // Release the command slot. | ||
| <-syncChan | ||
| }() | ||
|
|
||
| if err := runCmd(&host); err != nil { | ||
| log.WithError(err).Warnf("Failed to start session: %v", host.hostName) | ||
| } | ||
| }() | ||
| } | ||
|
|
||
| // Wait for all commands to finish. | ||
| wg.Wait() | ||
| } | ||
|
|
||
| // getMFACacheFn returns a function that caches the result of the given | ||
| // get function. The cache is protected by a mutex, so it is safe to call | ||
| // the returned function from multiple goroutines. | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
can we move this into a seperate function at all?
executeCommandis already pretty unwieldy to look at.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I've tried, but this function uses 11 variables from the outer scope. I've tried to move them to a new struct, but IMO, at that point, it's not worth it. If you have a strong opinion about that I can do it.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
👍 fine then