Página inicial Explorar Ajuda
Registrar Entrar
publics
/
sarama
0
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: 5466b37850
Branches Tags
sarama
/
broker.go

broker.go 40 KB
Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441 
  1. package sarama
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/tls"
    5. 

  5. 	"encoding/binary"
    6. 

  6. 	"fmt"
    7. 

  7. 	"io"
    8. 

  8. 	"net"
    9. 

  9. 	"sort"
    10. 

  10. 	"strconv"
    11. 

  11. 	"strings"
    12. 

  12. 	"sync"
    13. 

  13. 	"sync/atomic"
    14. 

  14. 	"time"
    15. 

  15. 

  16. 	"github.com/rcrowley/go-metrics"
    17. 

  17. )
    18. 

  18. 

  19. // Broker represents a single Kafka broker connection. All operations on this object are entirely concurrency-safe.
    20. 

  20. type Broker struct {
    21. 

  21. 	conf *Config
    22. 

  22. 	rack *string
    23. 

  23. 

  24. 	id            int32
    25. 

  25. 	addr          string
    26. 

  26. 	correlationID int32
    27. 

  27. 	conn          net.Conn
    28. 

  28. 	connErr       error
    29. 

  29. 	lock          sync.Mutex
    30. 

  30. 	opened        int32
    31. 

  31. 	responses     chan responsePromise
    32. 

  32. 	done          chan bool
    33. 

  33. 

  34. 	registeredMetrics []string
    35. 

  35. 

  36. 	incomingByteRate       metrics.Meter
    37. 

  37. 	requestRate            metrics.Meter
    38. 

  38. 	requestSize            metrics.Histogram
    39. 

  39. 	requestLatency         metrics.Histogram
    40. 

  40. 	outgoingByteRate       metrics.Meter
    41. 

  41. 	responseRate           metrics.Meter
    42. 

  42. 	responseSize           metrics.Histogram
    43. 

  43. 	requestsInFlight       metrics.Counter
    44. 

  44. 	brokerIncomingByteRate metrics.Meter
    45. 

  45. 	brokerRequestRate      metrics.Meter
    46. 

  46. 	brokerRequestSize      metrics.Histogram
    47. 

  47. 	brokerRequestLatency   metrics.Histogram
    48. 

  48. 	brokerOutgoingByteRate metrics.Meter
    49. 

  49. 	brokerResponseRate     metrics.Meter
    50. 

  50. 	brokerResponseSize     metrics.Histogram
    51. 

  51. 	brokerRequestsInFlight metrics.Counter
    52. 

  52. 

  53. 	kerberosAuthenticator GSSAPIKerberosAuth
    54. 

  54. }
    55. 

  55. 

  56. // SASLMechanism specifies the SASL mechanism the client uses to authenticate with the broker
    57. 

  57. type SASLMechanism string
    58. 

  58. 

  59. const (
    60. 

  60. 	// SASLTypeOAuth represents the SASL/OAUTHBEARER mechanism (Kafka 2.0.0+)
    61. 

  61. 	SASLTypeOAuth = "OAUTHBEARER"
    62. 

  62. 	// SASLTypePlaintext represents the SASL/PLAIN mechanism
    63. 

  63. 	SASLTypePlaintext = "PLAIN"
    64. 

  64. 	// SASLTypeSCRAMSHA256 represents the SCRAM-SHA-256 mechanism.
    65. 

  65. 	SASLTypeSCRAMSHA256 = "SCRAM-SHA-256"
    66. 

  66. 	// SASLTypeSCRAMSHA512 represents the SCRAM-SHA-512 mechanism.
    67. 

  67. 	SASLTypeSCRAMSHA512 = "SCRAM-SHA-512"
    68. 

  68. 	SASLTypeGSSAPI      = "GSSAPI"
    69. 

  69. 	// SASLHandshakeV0 is v0 of the Kafka SASL handshake protocol. Client and
    70. 

  70. 	// server negotiate SASL auth using opaque packets.
    71. 

  71. 	SASLHandshakeV0 = int16(0)
    72. 

  72. 	// SASLHandshakeV1 is v1 of the Kafka SASL handshake protocol. Client and
    73. 

  73. 	// server negotiate SASL by wrapping tokens with Kafka protocol headers.
    74. 

  74. 	SASLHandshakeV1 = int16(1)
    75. 

  75. 	// SASLExtKeyAuth is the reserved extension key name sent as part of the
    76. 

  76. 	// SASL/OAUTHBEARER initial client response
    77. 

  77. 	SASLExtKeyAuth = "auth"
    78. 

  78. )
    79. 

  79. 

  80. // AccessToken contains an access token used to authenticate a
    81. 

  81. // SASL/OAUTHBEARER client along with associated metadata.
    82. 

  82. type AccessToken struct {
    83. 

  83. 	// Token is the access token payload.
    84. 

  84. 	Token string
    85. 

  85. 	// Extensions is a optional map of arbitrary key-value pairs that can be
    86. 

  86. 	// sent with the SASL/OAUTHBEARER initial client response. These values are
    87. 

  87. 	// ignored by the SASL server if they are unexpected. This feature is only
    88. 

  88. 	// supported by Kafka >= 2.1.0.
    89. 

  89. 	Extensions map[string]string
    90. 

  90. }
    91. 

  91. 

  92. // AccessTokenProvider is the interface that encapsulates how implementors
    93. 

  93. // can generate access tokens for Kafka broker authentication.
    94. 

  94. type AccessTokenProvider interface {
    95. 

  95. 	// Token returns an access token. The implementation should ensure token
    96. 

  96. 	// reuse so that multiple calls at connect time do not create multiple
    97. 

  97. 	// tokens. The implementation should also periodically refresh the token in
    98. 

  98. 	// order to guarantee that each call returns an unexpired token.  This
    99. 

  99. 	// method should not block indefinitely--a timeout error should be returned
    100. 

  100. 	// after a short period of inactivity so that the broker connection logic
    101. 

  101. 	// can log debugging information and retry.
    102. 

  102. 	Token() (*AccessToken, error)
    103. 

  103. }
    104. 

  104. 

  105. // SCRAMClient is a an interface to a SCRAM
    106. 

  106. // client implementation.
    107. 

  107. type SCRAMClient interface {
    108. 

  108. 	// Begin prepares the client for the SCRAM exchange
    109. 

  109. 	// with the server with a user name and a password
    110. 

  110. 	Begin(userName, password, authzID string) error
    111. 

  111. 	// Step steps client through the SCRAM exchange. It is
    112. 

  112. 	// called repeatedly until it errors or `Done` returns true.
    113. 

  113. 	Step(challenge string) (response string, err error)
    114. 

  114. 	// Done should return true when the SCRAM conversation
    115. 

  115. 	// is over.
    116. 

  116. 	Done() bool
    117. 

  117. }
    118. 

  118. 

  119. type responsePromise struct {
    120. 

  120. 	requestTime   time.Time
    121. 

  121. 	correlationID int32
    122. 

  122. 	headerVersion int16
    123. 

  123. 	packets       chan []byte
    124. 

  124. 	errors        chan error
    125. 

  125. }
    126. 

  126. 

  127. // NewBroker creates and returns a Broker targeting the given host:port address.
    128. 

  128. // This does not attempt to actually connect, you have to call Open() for that.
    129. 

  129. func NewBroker(addr string) *Broker {
    130. 

  130. 	return &Broker{id: -1, addr: addr}
    131. 

  131. }
    132. 

  132. 

  133. // Open tries to connect to the Broker if it is not already connected or connecting, but does not block
    134. 

  134. // waiting for the connection to complete. This means that any subsequent operations on the broker will
    135. 

  135. // block waiting for the connection to succeed or fail. To get the effect of a fully synchronous Open call,
    136. 

  136. // follow it by a call to Connected(). The only errors Open will return directly are ConfigurationError or
    137. 

  137. // AlreadyConnected. If conf is nil, the result of NewConfig() is used.
    138. 

  138. func (b *Broker) Open(conf *Config) error {
    139. 

  139. 	if !atomic.CompareAndSwapInt32(&b.opened, 0, 1) {
    140. 

  140. 		return ErrAlreadyConnected
    141. 

  141. 	}
    142. 

  142. 

  143. 	if conf == nil {
    144. 

  144. 		conf = NewConfig()
    145. 

  145. 	}
    146. 

  146. 

  147. 	err := conf.Validate()
    148. 

  148. 	if err != nil {
    149. 

  149. 		return err
    150. 

  150. 	}
    151. 

  151. 

  152. 	b.lock.Lock()
    153. 

  153. 

  154. 	go withRecover(func() {
    155. 

  155. 		defer b.lock.Unlock()
    156. 

  156. 

  157. 		dialer := conf.getDialer()
    158. 

  158. 		b.conn, b.connErr = dialer.Dial("tcp", b.addr)
    159. 

  159. 		if b.connErr != nil {
    160. 

  160. 			Logger.Printf("Failed to connect to broker %s: %s\n", b.addr, b.connErr)
    161. 

  161. 			b.conn = nil
    162. 

  162. 			atomic.StoreInt32(&b.opened, 0)
    163. 

  163. 			return
    164. 

  164. 		}
    165. 

  165. 		if conf.Net.TLS.Enable {
    166. 

  166. 			b.conn = tls.Client(b.conn, validServerNameTLS(b.addr, conf.Net.TLS.Config))
    167. 

  167. 		}
    168. 

  168. 

  169. 		b.conn = newBufConn(b.conn)
    170. 

  170. 		b.conf = conf
    171. 

  171. 

  172. 		// Create or reuse the global metrics shared between brokers
    173. 

  173. 		b.incomingByteRate = metrics.GetOrRegisterMeter("incoming-byte-rate", conf.MetricRegistry)
    174. 

  174. 		b.requestRate = metrics.GetOrRegisterMeter("request-rate", conf.MetricRegistry)
    175. 

  175. 		b.requestSize = getOrRegisterHistogram("request-size", conf.MetricRegistry)
    176. 

  176. 		b.requestLatency = getOrRegisterHistogram("request-latency-in-ms", conf.MetricRegistry)
    177. 

  177. 		b.outgoingByteRate = metrics.GetOrRegisterMeter("outgoing-byte-rate", conf.MetricRegistry)
    178. 

  178. 		b.responseRate = metrics.GetOrRegisterMeter("response-rate", conf.MetricRegistry)
    179. 

  179. 		b.responseSize = getOrRegisterHistogram("response-size", conf.MetricRegistry)
    180. 

  180. 		b.requestsInFlight = metrics.GetOrRegisterCounter("requests-in-flight", conf.MetricRegistry)
    181. 

  181. 		// Do not gather metrics for seeded broker (only used during bootstrap) because they share
    182. 

  182. 		// the same id (-1) and are already exposed through the global metrics above
    183. 

  183. 		if b.id >= 0 {
    184. 

  184. 			b.registerMetrics()
    185. 

  185. 		}
    186. 

  186. 

  187. 		if conf.Net.SASL.Enable {
    188. 

  188. 			b.connErr = b.authenticateViaSASL()
    189. 

  189. 

  190. 			if b.connErr != nil {
    191. 

  191. 				err = b.conn.Close()
    192. 

  192. 				if err == nil {
    193. 

  193. 					Logger.Printf("Closed connection to broker %s\n", b.addr)
    194. 

  194. 				} else {
    195. 

  195. 					Logger.Printf("Error while closing connection to broker %s: %s\n", b.addr, err)
    196. 

  196. 				}
    197. 

  197. 				b.conn = nil
    198. 

  198. 				atomic.StoreInt32(&b.opened, 0)
    199. 

  199. 				return
    200. 

  200. 			}
    201. 

  201. 		}
    202. 

  202. 

  203. 		b.done = make(chan bool)
    204. 

  204. 		b.responses = make(chan responsePromise, b.conf.Net.MaxOpenRequests-1)
    205. 

  205. 

  206. 		if b.id >= 0 {
    207. 

  207. 			Logger.Printf("Connected to broker at %s (registered as #%d)\n", b.addr, b.id)
    208. 

  208. 		} else {
    209. 

  209. 			Logger.Printf("Connected to broker at %s (unregistered)\n", b.addr)
    210. 

  210. 		}
    211. 

  211. 		go withRecover(b.responseReceiver)
    212. 

  212. 	})
    213. 

  213. 

  214. 	return nil
    215. 

  215. }
    216. 

  216. 

  217. // Connected returns true if the broker is connected and false otherwise. If the broker is not
    218. 

  218. // connected but it had tried to connect, the error from that connection attempt is also returned.
    219. 

  219. func (b *Broker) Connected() (bool, error) {
    220. 

  220. 	b.lock.Lock()
    221. 

  221. 	defer b.lock.Unlock()
    222. 

  222. 

  223. 	return b.conn != nil, b.connErr
    224. 

  224. }
    225. 

  225. 

  226. //Close closes the broker resources
    227. 

  227. func (b *Broker) Close() error {
    228. 

  228. 	b.lock.Lock()
    229. 

  229. 	defer b.lock.Unlock()
    230. 

  230. 

  231. 	if b.conn == nil {
    232. 

  232. 		return ErrNotConnected
    233. 

  233. 	}
    234. 

  234. 

  235. 	close(b.responses)
    236. 

  236. 	<-b.done
    237. 

  237. 

  238. 	err := b.conn.Close()
    239. 

  239. 

  240. 	b.conn = nil
    241. 

  241. 	b.connErr = nil
    242. 

  242. 	b.done = nil
    243. 

  243. 	b.responses = nil
    244. 

  244. 

  245. 	b.unregisterMetrics()
    246. 

  246. 

  247. 	if err == nil {
    248. 

  248. 		Logger.Printf("Closed connection to broker %s\n", b.addr)
    249. 

  249. 	} else {
    250. 

  250. 		Logger.Printf("Error while closing connection to broker %s: %s\n", b.addr, err)
    251. 

  251. 	}
    252. 

  252. 

  253. 	atomic.StoreInt32(&b.opened, 0)
    254. 

  254. 

  255. 	return err
    256. 

  256. }
    257. 

  257. 

  258. // ID returns the broker ID retrieved from Kafka's metadata, or -1 if that is not known.
    259. 

  259. func (b *Broker) ID() int32 {
    260. 

  260. 	return b.id
    261. 

  261. }
    262. 

  262. 

  263. // Addr returns the broker address as either retrieved from Kafka's metadata or passed to NewBroker.
    264. 

  264. func (b *Broker) Addr() string {
    265. 

  265. 	return b.addr
    266. 

  266. }
    267. 

  267. 

  268. // Rack returns the broker's rack as retrieved from Kafka's metadata or the
    269. 

  269. // empty string if it is not known.  The returned value corresponds to the
    270. 

  270. // broker's broker.rack configuration setting.  Requires protocol version to be
    271. 

  271. // at least v0.10.0.0.
    272. 

  272. func (b *Broker) Rack() string {
    273. 

  273. 	if b.rack == nil {
    274. 

  274. 		return ""
    275. 

  275. 	}
    276. 

  276. 	return *b.rack
    277. 

  277. }
    278. 

  278. 

  279. //GetMetadata send a metadata request and returns a metadata response or error
    280. 

  280. func (b *Broker) GetMetadata(request *MetadataRequest) (*MetadataResponse, error) {
    281. 

  281. 	response := new(MetadataResponse)
    282. 

  282. 

  283. 	err := b.sendAndReceive(request, response)
    284. 

  284. 

  285. 	if err != nil {
    286. 

  286. 		return nil, err
    287. 

  287. 	}
    288. 

  288. 

  289. 	return response, nil
    290. 

  290. }
    291. 

  291. 

  292. //GetConsumerMetadata send a consumer metadata request and returns a consumer metadata response or error
    293. 

  293. func (b *Broker) GetConsumerMetadata(request *ConsumerMetadataRequest) (*ConsumerMetadataResponse, error) {
    294. 

  294. 	response := new(ConsumerMetadataResponse)
    295. 

  295. 

  296. 	err := b.sendAndReceive(request, response)
    297. 

  297. 

  298. 	if err != nil {
    299. 

  299. 		return nil, err
    300. 

  300. 	}
    301. 

  301. 

  302. 	return response, nil
    303. 

  303. }
    304. 

  304. 

  305. //FindCoordinator sends a find coordinate request and returns a response or error
    306. 

  306. func (b *Broker) FindCoordinator(request *FindCoordinatorRequest) (*FindCoordinatorResponse, error) {
    307. 

  307. 	response := new(FindCoordinatorResponse)
    308. 

  308. 

  309. 	err := b.sendAndReceive(request, response)
    310. 

  310. 

  311. 	if err != nil {
    312. 

  312. 		return nil, err
    313. 

  313. 	}
    314. 

  314. 

  315. 	return response, nil
    316. 

  316. }
    317. 

  317. 

  318. //GetAvailableOffsets return an offset response or error
    319. 

  319. func (b *Broker) GetAvailableOffsets(request *OffsetRequest) (*OffsetResponse, error) {
    320. 

  320. 	response := new(OffsetResponse)
    321. 

  321. 

  322. 	err := b.sendAndReceive(request, response)
    323. 

  323. 

  324. 	if err != nil {
    325. 

  325. 		return nil, err
    326. 

  326. 	}
    327. 

  327. 

  328. 	return response, nil
    329. 

  329. }
    330. 

  330. 

  331. //Produce returns a produce response or error
    332. 

  332. func (b *Broker) Produce(request *ProduceRequest) (*ProduceResponse, error) {
    333. 

  333. 	var (
    334. 

  334. 		response *ProduceResponse
    335. 

  335. 		err      error
    336. 

  336. 	)
    337. 

  337. 

  338. 	if request.RequiredAcks == NoResponse {
    339. 

  339. 		err = b.sendAndReceive(request, nil)
    340. 

  340. 	} else {
    341. 

  341. 		response = new(ProduceResponse)
    342. 

  342. 		err = b.sendAndReceive(request, response)
    343. 

  343. 	}
    344. 

  344. 

  345. 	if err != nil {
    346. 

  346. 		return nil, err
    347. 

  347. 	}
    348. 

  348. 

  349. 	return response, nil
    350. 

  350. }
    351. 

  351. 

  352. //Fetch returns a FetchResponse or error
    353. 

  353. func (b *Broker) Fetch(request *FetchRequest) (*FetchResponse, error) {
    354. 

  354. 	response := new(FetchResponse)
    355. 

  355. 

  356. 	err := b.sendAndReceive(request, response)
    357. 

  357. 	if err != nil {
    358. 

  358. 		return nil, err
    359. 

  359. 	}
    360. 

  360. 

  361. 	return response, nil
    362. 

  362. }
    363. 

  363. 

  364. //CommitOffset return an Offset commit response or error
    365. 

  365. func (b *Broker) CommitOffset(request *OffsetCommitRequest) (*OffsetCommitResponse, error) {
    366. 

  366. 	response := new(OffsetCommitResponse)
    367. 

  367. 

  368. 	err := b.sendAndReceive(request, response)
    369. 

  369. 	if err != nil {
    370. 

  370. 		return nil, err
    371. 

  371. 	}
    372. 

  372. 

  373. 	return response, nil
    374. 

  374. }
    375. 

  375. 

  376. //FetchOffset returns an offset fetch response or error
    377. 

  377. func (b *Broker) FetchOffset(request *OffsetFetchRequest) (*OffsetFetchResponse, error) {
    378. 

  378. 	response := new(OffsetFetchResponse)
    379. 

  379. 

  380. 	err := b.sendAndReceive(request, response)
    381. 

  381. 	if err != nil {
    382. 

  382. 		return nil, err
    383. 

  383. 	}
    384. 

  384. 

  385. 	return response, nil
    386. 

  386. }
    387. 

  387. 

  388. //JoinGroup returns a join group response or error
    389. 

  389. func (b *Broker) JoinGroup(request *JoinGroupRequest) (*JoinGroupResponse, error) {
    390. 

  390. 	response := new(JoinGroupResponse)
    391. 

  391. 

  392. 	err := b.sendAndReceive(request, response)
    393. 

  393. 	if err != nil {
    394. 

  394. 		return nil, err
    395. 

  395. 	}
    396. 

  396. 

  397. 	return response, nil
    398. 

  398. }
    399. 

  399. 

  400. //SyncGroup returns a sync group response or error
    401. 

  401. func (b *Broker) SyncGroup(request *SyncGroupRequest) (*SyncGroupResponse, error) {
    402. 

  402. 	response := new(SyncGroupResponse)
    403. 

  403. 

  404. 	err := b.sendAndReceive(request, response)
    405. 

  405. 	if err != nil {
    406. 

  406. 		return nil, err
    407. 

  407. 	}
    408. 

  408. 

  409. 	return response, nil
    410. 

  410. }
    411. 

  411. 

  412. //LeaveGroup return a leave group response or error
    413. 

  413. func (b *Broker) LeaveGroup(request *LeaveGroupRequest) (*LeaveGroupResponse, error) {
    414. 

  414. 	response := new(LeaveGroupResponse)
    415. 

  415. 

  416. 	err := b.sendAndReceive(request, response)
    417. 

  417. 	if err != nil {
    418. 

  418. 		return nil, err
    419. 

  419. 	}
    420. 

  420. 

  421. 	return response, nil
    422. 

  422. }
    423. 

  423. 

  424. //Heartbeat returns a heartbeat response or error
    425. 

  425. func (b *Broker) Heartbeat(request *HeartbeatRequest) (*HeartbeatResponse, error) {
    426. 

  426. 	response := new(HeartbeatResponse)
    427. 

  427. 

  428. 	err := b.sendAndReceive(request, response)
    429. 

  429. 	if err != nil {
    430. 

  430. 		return nil, err
    431. 

  431. 	}
    432. 

  432. 

  433. 	return response, nil
    434. 

  434. }
    435. 

  435. 

  436. //ListGroups return a list group response or error
    437. 

  437. func (b *Broker) ListGroups(request *ListGroupsRequest) (*ListGroupsResponse, error) {
    438. 

  438. 	response := new(ListGroupsResponse)
    439. 

  439. 

  440. 	err := b.sendAndReceive(request, response)
    441. 

  441. 	if err != nil {
    442. 

  442. 		return nil, err
    443. 

  443. 	}
    444. 

  444. 

  445. 	return response, nil
    446. 

  446. }
    447. 

  447. 

  448. //DescribeGroups return describe group response or error
    449. 

  449. func (b *Broker) DescribeGroups(request *DescribeGroupsRequest) (*DescribeGroupsResponse, error) {
    450. 

  450. 	response := new(DescribeGroupsResponse)
    451. 

  451. 

  452. 	err := b.sendAndReceive(request, response)
    453. 

  453. 	if err != nil {
    454. 

  454. 		return nil, err
    455. 

  455. 	}
    456. 

  456. 

  457. 	return response, nil
    458. 

  458. }
    459. 

  459. 

  460. //ApiVersions return api version response or error
    461. 

  461. func (b *Broker) ApiVersions(request *ApiVersionsRequest) (*ApiVersionsResponse, error) {
    462. 

  462. 	response := new(ApiVersionsResponse)
    463. 

  463. 

  464. 	err := b.sendAndReceive(request, response)
    465. 

  465. 	if err != nil {
    466. 

  466. 		return nil, err
    467. 

  467. 	}
    468. 

  468. 

  469. 	return response, nil
    470. 

  470. }
    471. 

  471. 

  472. //CreateTopics send a create topic request and returns create topic response
    473. 

  473. func (b *Broker) CreateTopics(request *CreateTopicsRequest) (*CreateTopicsResponse, error) {
    474. 

  474. 	response := new(CreateTopicsResponse)
    475. 

  475. 

  476. 	err := b.sendAndReceive(request, response)
    477. 

  477. 	if err != nil {
    478. 

  478. 		return nil, err
    479. 

  479. 	}
    480. 

  480. 

  481. 	return response, nil
    482. 

  482. }
    483. 

  483. 

  484. //DeleteTopics sends a delete topic request and returns delete topic response
    485. 

  485. func (b *Broker) DeleteTopics(request *DeleteTopicsRequest) (*DeleteTopicsResponse, error) {
    486. 

  486. 	response := new(DeleteTopicsResponse)
    487. 

  487. 

  488. 	err := b.sendAndReceive(request, response)
    489. 

  489. 	if err != nil {
    490. 

  490. 		return nil, err
    491. 

  491. 	}
    492. 

  492. 

  493. 	return response, nil
    494. 

  494. }
    495. 

  495. 

  496. //CreatePartitions sends a create partition request and returns create
    497. 

  497. //partitions response or error
    498. 

  498. func (b *Broker) CreatePartitions(request *CreatePartitionsRequest) (*CreatePartitionsResponse, error) {
    499. 

  499. 	response := new(CreatePartitionsResponse)
    500. 

  500. 

  501. 	err := b.sendAndReceive(request, response)
    502. 

  502. 	if err != nil {
    503. 

  503. 		return nil, err
    504. 

  504. 	}
    505. 

  505. 

  506. 	return response, nil
    507. 

  507. }
    508. 

  508. 

  509. //AlterPartitionReassignments sends a alter partition reassignments request and
    510. 

  510. //returns alter partition reassignments response
    511. 

  511. func (b *Broker) AlterPartitionReassignments(request *AlterPartitionReassignmentsRequest) (*AlterPartitionReassignmentsResponse, error) {
    512. 

  512. 	response := new(AlterPartitionReassignmentsResponse)
    513. 

  513. 

  514. 	err := b.sendAndReceive(request, response)
    515. 

  515. 	if err != nil {
    516. 

  516. 		return nil, err
    517. 

  517. 	}
    518. 

  518. 

  519. 	return response, nil
    520. 

  520. }
    521. 

  521. 

  522. //ListPartitionReassignments sends a list partition reassignments request and
    523. 

  523. //returns list partition reassignments response
    524. 

  524. func (b *Broker) ListPartitionReassignments(request *ListPartitionReassignmentsRequest) (*ListPartitionReassignmentsResponse, error) {
    525. 

  525. 	response := new(ListPartitionReassignmentsResponse)
    526. 

  526. 

  527. 	err := b.sendAndReceive(request, response)
    528. 

  528. 	if err != nil {
    529. 

  529. 		return nil, err
    530. 

  530. 	}
    531. 

  531. 

  532. 	return response, nil
    533. 

  533. }
    534. 

  534. 

  535. //DeleteRecords send a request to delete records and return delete record
    536. 

  536. //response or error
    537. 

  537. func (b *Broker) DeleteRecords(request *DeleteRecordsRequest) (*DeleteRecordsResponse, error) {
    538. 

  538. 	response := new(DeleteRecordsResponse)
    539. 

  539. 

  540. 	err := b.sendAndReceive(request, response)
    541. 

  541. 	if err != nil {
    542. 

  542. 		return nil, err
    543. 

  543. 	}
    544. 

  544. 

  545. 	return response, nil
    546. 

  546. }
    547. 

  547. 

  548. //DescribeAcls sends a describe acl request and returns a response or error
    549. 

  549. func (b *Broker) DescribeAcls(request *DescribeAclsRequest) (*DescribeAclsResponse, error) {
    550. 

  550. 	response := new(DescribeAclsResponse)
    551. 

  551. 

  552. 	err := b.sendAndReceive(request, response)
    553. 

  553. 	if err != nil {
    554. 

  554. 		return nil, err
    555. 

  555. 	}
    556. 

  556. 

  557. 	return response, nil
    558. 

  558. }
    559. 

  559. 

  560. //CreateAcls sends a create acl request and returns a response or error
    561. 

  561. func (b *Broker) CreateAcls(request *CreateAclsRequest) (*CreateAclsResponse, error) {
    562. 

  562. 	response := new(CreateAclsResponse)
    563. 

  563. 

  564. 	err := b.sendAndReceive(request, response)
    565. 

  565. 	if err != nil {
    566. 

  566. 		return nil, err
    567. 

  567. 	}
    568. 

  568. 

  569. 	return response, nil
    570. 

  570. }
    571. 

  571. 

  572. //DeleteAcls sends a delete acl request and returns a response or error
    573. 

  573. func (b *Broker) DeleteAcls(request *DeleteAclsRequest) (*DeleteAclsResponse, error) {
    574. 

  574. 	response := new(DeleteAclsResponse)
    575. 

  575. 

  576. 	err := b.sendAndReceive(request, response)
    577. 

  577. 	if err != nil {
    578. 

  578. 		return nil, err
    579. 

  579. 	}
    580. 

  580. 

  581. 	return response, nil
    582. 

  582. }
    583. 

  583. 

  584. //InitProducerID sends an init producer request and returns a response or error
    585. 

  585. func (b *Broker) InitProducerID(request *InitProducerIDRequest) (*InitProducerIDResponse, error) {
    586. 

  586. 	response := new(InitProducerIDResponse)
    587. 

  587. 

  588. 	err := b.sendAndReceive(request, response)
    589. 

  589. 	if err != nil {
    590. 

  590. 		return nil, err
    591. 

  591. 	}
    592. 

  592. 

  593. 	return response, nil
    594. 

  594. }
    595. 

  595. 

  596. //AddPartitionsToTxn send a request to add partition to txn and returns
    597. 

  597. //a response or error
    598. 

  598. func (b *Broker) AddPartitionsToTxn(request *AddPartitionsToTxnRequest) (*AddPartitionsToTxnResponse, error) {
    599. 

  599. 	response := new(AddPartitionsToTxnResponse)
    600. 

  600. 

  601. 	err := b.sendAndReceive(request, response)
    602. 

  602. 	if err != nil {
    603. 

  603. 		return nil, err
    604. 

  604. 	}
    605. 

  605. 

  606. 	return response, nil
    607. 

  607. }
    608. 

  608. 

  609. //AddOffsetsToTxn sends a request to add offsets to txn and returns a response
    610. 

  610. //or error
    611. 

  611. func (b *Broker) AddOffsetsToTxn(request *AddOffsetsToTxnRequest) (*AddOffsetsToTxnResponse, error) {
    612. 

  612. 	response := new(AddOffsetsToTxnResponse)
    613. 

  613. 

  614. 	err := b.sendAndReceive(request, response)
    615. 

  615. 	if err != nil {
    616. 

  616. 		return nil, err
    617. 

  617. 	}
    618. 

  618. 

  619. 	return response, nil
    620. 

  620. }
    621. 

  621. 

  622. //EndTxn sends a request to end txn and returns a response or error
    623. 

  623. func (b *Broker) EndTxn(request *EndTxnRequest) (*EndTxnResponse, error) {
    624. 

  624. 	response := new(EndTxnResponse)
    625. 

  625. 

  626. 	err := b.sendAndReceive(request, response)
    627. 

  627. 	if err != nil {
    628. 

  628. 		return nil, err
    629. 

  629. 	}
    630. 

  630. 

  631. 	return response, nil
    632. 

  632. }
    633. 

  633. 

  634. //TxnOffsetCommit sends a request to commit transaction offsets and returns
    635. 

  635. //a response or error
    636. 

  636. func (b *Broker) TxnOffsetCommit(request *TxnOffsetCommitRequest) (*TxnOffsetCommitResponse, error) {
    637. 

  637. 	response := new(TxnOffsetCommitResponse)
    638. 

  638. 

  639. 	err := b.sendAndReceive(request, response)
    640. 

  640. 	if err != nil {
    641. 

  641. 		return nil, err
    642. 

  642. 	}
    643. 

  643. 

  644. 	return response, nil
    645. 

  645. }
    646. 

  646. 

  647. //DescribeConfigs sends a request to describe config and returns a response or
    648. 

  648. //error
    649. 

  649. func (b *Broker) DescribeConfigs(request *DescribeConfigsRequest) (*DescribeConfigsResponse, error) {
    650. 

  650. 	response := new(DescribeConfigsResponse)
    651. 

  651. 

  652. 	err := b.sendAndReceive(request, response)
    653. 

  653. 	if err != nil {
    654. 

  654. 		return nil, err
    655. 

  655. 	}
    656. 

  656. 

  657. 	return response, nil
    658. 

  658. }
    659. 

  659. 

  660. //AlterConfigs sends a request to alter config and return a response or error
    661. 

  661. func (b *Broker) AlterConfigs(request *AlterConfigsRequest) (*AlterConfigsResponse, error) {
    662. 

  662. 	response := new(AlterConfigsResponse)
    663. 

  663. 

  664. 	err := b.sendAndReceive(request, response)
    665. 

  665. 	if err != nil {
    666. 

  666. 		return nil, err
    667. 

  667. 	}
    668. 

  668. 

  669. 	return response, nil
    670. 

  670. }
    671. 

  671. 

  672. //DeleteGroups sends a request to delete groups and returns a response or error
    673. 

  673. func (b *Broker) DeleteGroups(request *DeleteGroupsRequest) (*DeleteGroupsResponse, error) {
    674. 

  674. 	response := new(DeleteGroupsResponse)
    675. 

  675. 

  676. 	if err := b.sendAndReceive(request, response); err != nil {
    677. 

  677. 		return nil, err
    678. 

  678. 	}
    679. 

  679. 

  680. 	return response, nil
    681. 

  681. }
    682. 

  682. 

  683. //DescribeLogDirs sends a request to get the broker's log dir paths and sizes
    684. 

  684. func (b *Broker) DescribeLogDirs(request *DescribeLogDirsRequest) (*DescribeLogDirsResponse, error) {
    685. 

  685. 	response := new(DescribeLogDirsResponse)
    686. 

  686. 

  687. 	err := b.sendAndReceive(request, response)
    688. 

  688. 	if err != nil {
    689. 

  689. 		return nil, err
    690. 

  690. 	}
    691. 

  691. 

  692. 	return response, nil
    693. 

  693. }
    694. 

  694. 

  695. // readFull ensures the conn ReadDeadline has been setup before making a
    696. 

  696. // call to io.ReadFull
    697. 

  697. func (b *Broker) readFull(buf []byte) (n int, err error) {
    698. 

  698. 	if err := b.conn.SetReadDeadline(time.Now().Add(b.conf.Net.ReadTimeout)); err != nil {
    699. 

  699. 		return 0, err
    700. 

  700. 	}
    701. 

  701. 

  702. 	return io.ReadFull(b.conn, buf)
    703. 

  703. }
    704. 

  704. 

  705. // write  ensures the conn WriteDeadline has been setup before making a
    706. 

  706. // call to conn.Write
    707. 

  707. func (b *Broker) write(buf []byte) (n int, err error) {
    708. 

  708. 	if err := b.conn.SetWriteDeadline(time.Now().Add(b.conf.Net.WriteTimeout)); err != nil {
    709. 

  709. 		return 0, err
    710. 

  710. 	}
    711. 

  711. 

  712. 	return b.conn.Write(buf)
    713. 

  713. }
    714. 

  714. 

  715. func (b *Broker) send(rb protocolBody, promiseResponse bool, responseHeaderVersion int16) (*responsePromise, error) {
    716. 

  716. 	b.lock.Lock()
    717. 

  717. 	defer b.lock.Unlock()
    718. 

  718. 

  719. 	if b.conn == nil {
    720. 

  720. 		if b.connErr != nil {
    721. 

  721. 			return nil, b.connErr
    722. 

  722. 		}
    723. 

  723. 		return nil, ErrNotConnected
    724. 

  724. 	}
    725. 

  725. 

  726. 	if !b.conf.Version.IsAtLeast(rb.requiredVersion()) {
    727. 

  727. 		return nil, ErrUnsupportedVersion
    728. 

  728. 	}
    729. 

  729. 

  730. 	req := &request{correlationID: b.correlationID, clientID: b.conf.ClientID, body: rb}
    731. 

  731. 	buf, err := encode(req, b.conf.MetricRegistry)
    732. 

  732. 	if err != nil {
    733. 

  733. 		return nil, err
    734. 

  734. 	}
    735. 

  735. 

  736. 	requestTime := time.Now()
    737. 

  737. 	// Will be decremented in responseReceiver (except error or request with NoResponse)
    738. 

  738. 	b.addRequestInFlightMetrics(1)
    739. 

  739. 	bytes, err := b.write(buf)
    740. 

  740. 	b.updateOutgoingCommunicationMetrics(bytes)
    741. 

  741. 	if err != nil {
    742. 

  742. 		b.addRequestInFlightMetrics(-1)
    743. 

  743. 		return nil, err
    744. 

  744. 	}
    745. 

  745. 	b.correlationID++
    746. 

  746. 

  747. 	if !promiseResponse {
    748. 

  748. 		// Record request latency without the response
    749. 

  749. 		b.updateRequestLatencyAndInFlightMetrics(time.Since(requestTime))
    750. 

  750. 		return nil, nil
    751. 

  751. 	}
    752. 

  752. 

  753. 	promise := responsePromise{requestTime, req.correlationID, responseHeaderVersion, make(chan []byte), make(chan error)}
    754. 

  754. 	b.responses <- promise
    755. 

  755. 

  756. 	return &promise, nil
    757. 

  757. }
    758. 

  758. 

  759. func (b *Broker) sendAndReceive(req protocolBody, res protocolBody) error {
    760. 

  760. 	responseHeaderVersion := int16(-1)
    761. 

  761. 	if res != nil {
    762. 

  762. 		responseHeaderVersion = res.headerVersion()
    763. 

  763. 	}
    764. 

  764. 

  765. 	promise, err := b.send(req, res != nil, responseHeaderVersion)
    766. 

  766. 	if err != nil {
    767. 

  767. 		return err
    768. 

  768. 	}
    769. 

  769. 

  770. 	if promise == nil {
    771. 

  771. 		return nil
    772. 

  772. 	}
    773. 

  773. 

  774. 	select {
    775. 

  775. 	case buf := <-promise.packets:
    776. 

  776. 		return versionedDecode(buf, res, req.version())
    777. 

  777. 	case err = <-promise.errors:
    778. 

  778. 		return err
    779. 

  779. 	}
    780. 

  780. }
    781. 

  781. 

  782. func (b *Broker) decode(pd packetDecoder, version int16) (err error) {
    783. 

  783. 	b.id, err = pd.getInt32()
    784. 

  784. 	if err != nil {
    785. 

  785. 		return err
    786. 

  786. 	}
    787. 

  787. 

  788. 	host, err := pd.getString()
    789. 

  789. 	if err != nil {
    790. 

  790. 		return err
    791. 

  791. 	}
    792. 

  792. 

  793. 	port, err := pd.getInt32()
    794. 

  794. 	if err != nil {
    795. 

  795. 		return err
    796. 

  796. 	}
    797. 

  797. 

  798. 	if version >= 1 {
    799. 

  799. 		b.rack, err = pd.getNullableString()
    800. 

  800. 		if err != nil {
    801. 

  801. 			return err
    802. 

  802. 		}
    803. 

  803. 	}
    804. 

  804. 

  805. 	b.addr = net.JoinHostPort(host, fmt.Sprint(port))
    806. 

  806. 	if _, _, err := net.SplitHostPort(b.addr); err != nil {
    807. 

  807. 		return err
    808. 

  808. 	}
    809. 

  809. 

  810. 	return nil
    811. 

  811. }
    812. 

  812. 

  813. func (b *Broker) encode(pe packetEncoder, version int16) (err error) {
    814. 

  814. 	host, portstr, err := net.SplitHostPort(b.addr)
    815. 

  815. 	if err != nil {
    816. 

  816. 		return err
    817. 

  817. 	}
    818. 

  818. 

  819. 	port, err := strconv.Atoi(portstr)
    820. 

  820. 	if err != nil {
    821. 

  821. 		return err
    822. 

  822. 	}
    823. 

  823. 

  824. 	pe.putInt32(b.id)
    825. 

  825. 

  826. 	err = pe.putString(host)
    827. 

  827. 	if err != nil {
    828. 

  828. 		return err
    829. 

  829. 	}
    830. 

  830. 

  831. 	pe.putInt32(int32(port))
    832. 

  832. 

  833. 	if version >= 1 {
    834. 

  834. 		err = pe.putNullableString(b.rack)
    835. 

  835. 		if err != nil {
    836. 

  836. 			return err
    837. 

  837. 		}
    838. 

  838. 	}
    839. 

  839. 

  840. 	return nil
    841. 

  841. }
    842. 

  842. 

  843. func (b *Broker) responseReceiver() {
    844. 

  844. 	var dead error
    845. 

  845. 

  846. 	for response := range b.responses {
    847. 

  847. 		if dead != nil {
    848. 

  848. 			// This was previously incremented in send() and
    849. 

  849. 			// we are not calling updateIncomingCommunicationMetrics()
    850. 

  850. 			b.addRequestInFlightMetrics(-1)
    851. 

  851. 			response.errors <- dead
    852. 

  852. 			continue
    853. 

  853. 		}
    854. 

  854. 

  855. 		var headerLength = getHeaderLength(response.headerVersion)
    856. 

  856. 		header := make([]byte, headerLength)
    857. 

  857. 

  858. 		bytesReadHeader, err := b.readFull(header)
    859. 

  859. 		requestLatency := time.Since(response.requestTime)
    860. 

  860. 		if err != nil {
    861. 

  861. 			b.updateIncomingCommunicationMetrics(bytesReadHeader, requestLatency)
    862. 

  862. 			dead = err
    863. 

  863. 			response.errors <- err
    864. 

  864. 			continue
    865. 

  865. 		}
    866. 

  866. 

  867. 		decodedHeader := responseHeader{}
    868. 

  868. 		err = versionedDecode(header, &decodedHeader, response.headerVersion)
    869. 

  869. 		if err != nil {
    870. 

  870. 			b.updateIncomingCommunicationMetrics(bytesReadHeader, requestLatency)
    871. 

  871. 			dead = err
    872. 

  872. 			response.errors <- err
    873. 

  873. 			continue
    874. 

  874. 		}
    875. 

  875. 		if decodedHeader.correlationID != response.correlationID {
    876. 

  876. 			b.updateIncomingCommunicationMetrics(bytesReadHeader, requestLatency)
    877. 

  877. 			// TODO if decoded ID < cur ID, discard until we catch up
    878. 

  878. 			// TODO if decoded ID > cur ID, save it so when cur ID catches up we have a response
    879. 

  879. 			dead = PacketDecodingError{fmt.Sprintf("correlation ID didn't match, wanted %d, got %d", response.correlationID, decodedHeader.correlationID)}
    880. 

  880. 			response.errors <- dead
    881. 

  881. 			continue
    882. 

  882. 		}
    883. 

  883. 

  884. 		buf := make([]byte, decodedHeader.length-int32(headerLength)+4)
    885. 

  885. 		bytesReadBody, err := b.readFull(buf)
    886. 

  886. 		b.updateIncomingCommunicationMetrics(bytesReadHeader+bytesReadBody, requestLatency)
    887. 

  887. 		if err != nil {
    888. 

  888. 			dead = err
    889. 

  889. 			response.errors <- err
    890. 

  890. 			continue
    891. 

  891. 		}
    892. 

  892. 

  893. 		response.packets <- buf
    894. 

  894. 	}
    895. 

  895. 	close(b.done)
    896. 

  896. }
    897. 

  897. 

  898. func getHeaderLength(headerVersion int16) int8 {
    899. 

  899. 	if headerVersion < 1 {
    900. 

  900. 		return 8
    901. 

  901. 	} else {
    902. 

  902. 		// header contains additional tagged field length (0), we don't support actual tags yet.
    903. 

  903. 		return 9
    904. 

  904. 	}
    905. 

  905. }
    906. 

  906. 

  907. func (b *Broker) authenticateViaSASL() error {
    908. 

  908. 	switch b.conf.Net.SASL.Mechanism {
    909. 

  909. 	case SASLTypeOAuth:
    910. 

  910. 		return b.sendAndReceiveSASLOAuth(b.conf.Net.SASL.TokenProvider)
    911. 

  911. 	case SASLTypeSCRAMSHA256, SASLTypeSCRAMSHA512:
    912. 

  912. 		return b.sendAndReceiveSASLSCRAMv1()
    913. 

  913. 	case SASLTypeGSSAPI:
    914. 

  914. 		return b.sendAndReceiveKerberos()
    915. 

  915. 	default:
    916. 

  916. 		return b.sendAndReceiveSASLPlainAuth()
    917. 

  917. 	}
    918. 

  918. }
    919. 

  919. 

  920. func (b *Broker) sendAndReceiveKerberos() error {
    921. 

  921. 	b.kerberosAuthenticator.Config = &b.conf.Net.SASL.GSSAPI
    922. 

  922. 	if b.kerberosAuthenticator.NewKerberosClientFunc == nil {
    923. 

  923. 		b.kerberosAuthenticator.NewKerberosClientFunc = NewKerberosClient
    924. 

  924. 	}
    925. 

  925. 	return b.kerberosAuthenticator.Authorize(b)
    926. 

  926. }
    927. 

  927. 

  928. func (b *Broker) sendAndReceiveSASLHandshake(saslType SASLMechanism, version int16) error {
    929. 

  929. 	rb := &SaslHandshakeRequest{Mechanism: string(saslType), Version: version}
    930. 

  930. 

  931. 	req := &request{correlationID: b.correlationID, clientID: b.conf.ClientID, body: rb}
    932. 

  932. 	buf, err := encode(req, b.conf.MetricRegistry)
    933. 

  933. 	if err != nil {
    934. 

  934. 		return err
    935. 

  935. 	}
    936. 

  936. 

  937. 	requestTime := time.Now()
    938. 

  938. 	// Will be decremented in updateIncomingCommunicationMetrics (except error)
    939. 

  939. 	b.addRequestInFlightMetrics(1)
    940. 

  940. 	bytes, err := b.write(buf)
    941. 

  941. 	b.updateOutgoingCommunicationMetrics(bytes)
    942. 

  942. 	if err != nil {
    943. 

  943. 		b.addRequestInFlightMetrics(-1)
    944. 

  944. 		Logger.Printf("Failed to send SASL handshake %s: %s\n", b.addr, err.Error())
    945. 

  945. 		return err
    946. 

  946. 	}
    947. 

  947. 	b.correlationID++
    948. 

  948. 

  949. 	header := make([]byte, 8) // response header
    950. 

  950. 	_, err = b.readFull(header)
    951. 

  951. 	if err != nil {
    952. 

  952. 		b.addRequestInFlightMetrics(-1)
    953. 

  953. 		Logger.Printf("Failed to read SASL handshake header : %s\n", err.Error())
    954. 

  954. 		return err
    955. 

  955. 	}
    956. 

  956. 

  957. 	length := binary.BigEndian.Uint32(header[:4])
    958. 

  958. 	payload := make([]byte, length-4)
    959. 

  959. 	n, err := b.readFull(payload)
    960. 

  960. 	if err != nil {
    961. 

  961. 		b.addRequestInFlightMetrics(-1)
    962. 

  962. 		Logger.Printf("Failed to read SASL handshake payload : %s\n", err.Error())
    963. 

  963. 		return err
    964. 

  964. 	}
    965. 

  965. 

  966. 	b.updateIncomingCommunicationMetrics(n+8, time.Since(requestTime))
    967. 

  967. 	res := &SaslHandshakeResponse{}
    968. 

  968. 

  969. 	err = versionedDecode(payload, res, 0)
    970. 

  970. 	if err != nil {
    971. 

  971. 		Logger.Printf("Failed to parse SASL handshake : %s\n", err.Error())
    972. 

  972. 		return err
    973. 

  973. 	}
    974. 

  974. 

  975. 	if res.Err != ErrNoError {
    976. 

  976. 		Logger.Printf("Invalid SASL Mechanism : %s\n", res.Err.Error())
    977. 

  977. 		return res.Err
    978. 

  978. 	}
    979. 

  979. 

  980. 	Logger.Print("Successful SASL handshake. Available mechanisms: ", res.EnabledMechanisms)
    981. 

  981. 	return nil
    982. 

  982. }
    983. 

  983. 

  984. // Kafka 0.10.x supported SASL PLAIN/Kerberos via KAFKA-3149 (KIP-43).
    985. 

  985. // Kafka 1.x.x onward added a SaslAuthenticate request/response message which
    986. 

  986. // wraps the SASL flow in the Kafka protocol, which allows for returning
    987. 

  987. // meaningful errors on authentication failure.
    988. 

  988. //
    989. 

  989. // In SASL Plain, Kafka expects the auth header to be in the following format
    990. 

  990. // Message format (from https://tools.ietf.org/html/rfc4616):
    991. 

  991. //
    992. 

  992. //   message   = [authzid] UTF8NUL authcid UTF8NUL passwd
    993. 

  993. //   authcid   = 1*SAFE ; MUST accept up to 255 octets
    994. 

  994. //   authzid   = 1*SAFE ; MUST accept up to 255 octets
    995. 

  995. //   passwd    = 1*SAFE ; MUST accept up to 255 octets
    996. 

  996. //   UTF8NUL   = %x00 ; UTF-8 encoded NUL character
    997. 

  997. //
    998. 

  998. //   SAFE      = UTF1 / UTF2 / UTF3 / UTF4
    999. 

  999. //                  ;; any UTF-8 encoded Unicode character except NUL
    1000. 

  1000. //
    1001. 

  1001. // With SASL v0 handshake and auth then:
    1002. 

  1002. // When credentials are valid, Kafka returns a 4 byte array of null characters.
    1003. 

  1003. // When credentials are invalid, Kafka closes the connection.
    1004. 

  1004. //
    1005. 

  1005. // With SASL v1 handshake and auth then:
    1006. 

  1006. // When credentials are invalid, Kafka replies with a SaslAuthenticate response
    1007. 

  1007. // containing an error code and message detailing the authentication failure.
    1008. 

  1008. func (b *Broker) sendAndReceiveSASLPlainAuth() error {
    1009. 

  1009. 	// default to V0 to allow for backward compatibility when SASL is enabled
    1010. 

  1010. 	// but not the handshake
    1011. 

  1011. 	if b.conf.Net.SASL.Handshake {
    1012. 

  1012. 		handshakeErr := b.sendAndReceiveSASLHandshake(SASLTypePlaintext, b.conf.Net.SASL.Version)
    1013. 

  1013. 		if handshakeErr != nil {
    1014. 

  1014. 			Logger.Printf("Error while performing SASL handshake %s\n", b.addr)
    1015. 

  1015. 			return handshakeErr
    1016. 

  1016. 		}
    1017. 

  1017. 	}
    1018. 

  1018. 

  1019. 	if b.conf.Net.SASL.Version == SASLHandshakeV1 {
    1020. 

  1020. 		return b.sendAndReceiveV1SASLPlainAuth()
    1021. 

  1021. 	}
    1022. 

  1022. 	return b.sendAndReceiveV0SASLPlainAuth()
    1023. 

  1023. }
    1024. 

  1024. 

  1025. // sendAndReceiveV0SASLPlainAuth flows the v0 sasl auth NOT wrapped in the kafka protocol
    1026. 

  1026. func (b *Broker) sendAndReceiveV0SASLPlainAuth() error {
    1027. 

  1027. 	length := len(b.conf.Net.SASL.AuthIdentity) + 1 + len(b.conf.Net.SASL.User) + 1 + len(b.conf.Net.SASL.Password)
    1028. 

  1028. 	authBytes := make([]byte, length+4) //4 byte length header + auth data
    1029. 

  1029. 	binary.BigEndian.PutUint32(authBytes, uint32(length))
    1030. 

  1030. 	copy(authBytes[4:], b.conf.Net.SASL.AuthIdentity+"\x00"+b.conf.Net.SASL.User+"\x00"+b.conf.Net.SASL.Password)
    1031. 

  1031. 

  1032. 	requestTime := time.Now()
    1033. 

  1033. 	// Will be decremented in updateIncomingCommunicationMetrics (except error)
    1034. 

  1034. 	b.addRequestInFlightMetrics(1)
    1035. 

  1035. 	bytesWritten, err := b.write(authBytes)
    1036. 

  1036. 	b.updateOutgoingCommunicationMetrics(bytesWritten)
    1037. 

  1037. 	if err != nil {
    1038. 

  1038. 		b.addRequestInFlightMetrics(-1)
    1039. 

  1039. 		Logger.Printf("Failed to write SASL auth header to broker %s: %s\n", b.addr, err.Error())
    1040. 

  1040. 		return err
    1041. 

  1041. 	}
    1042. 

  1042. 

  1043. 	header := make([]byte, 4)
    1044. 

  1044. 	n, err := b.readFull(header)
    1045. 

  1045. 	b.updateIncomingCommunicationMetrics(n, time.Since(requestTime))
    1046. 

  1046. 	// If the credentials are valid, we would get a 4 byte response filled with null characters.
    1047. 

  1047. 	// Otherwise, the broker closes the connection and we get an EOF
    1048. 

  1048. 	if err != nil {
    1049. 

  1049. 		Logger.Printf("Failed to read response while authenticating with SASL to broker %s: %s\n", b.addr, err.Error())
    1050. 

  1050. 		return err
    1051. 

  1051. 	}
    1052. 

  1052. 

  1053. 	Logger.Printf("SASL authentication successful with broker %s:%v - %v\n", b.addr, n, header)
    1054. 

  1054. 	return nil
    1055. 

  1055. }
    1056. 

  1056. 

  1057. // sendAndReceiveV1SASLPlainAuth flows the v1 sasl authentication using the kafka protocol
    1058. 

  1058. func (b *Broker) sendAndReceiveV1SASLPlainAuth() error {
    1059. 

  1059. 	correlationID := b.correlationID
    1060. 

  1060. 

  1061. 	requestTime := time.Now()
    1062. 

  1062. 

  1063. 	// Will be decremented in updateIncomingCommunicationMetrics (except error)
    1064. 

  1064. 	b.addRequestInFlightMetrics(1)
    1065. 

  1065. 	bytesWritten, err := b.sendSASLPlainAuthClientResponse(correlationID)
    1066. 

  1066. 	b.updateOutgoingCommunicationMetrics(bytesWritten)
    1067. 

  1067. 

  1068. 	if err != nil {
    1069. 

  1069. 		b.addRequestInFlightMetrics(-1)
    1070. 

  1070. 		Logger.Printf("Failed to write SASL auth header to broker %s: %s\n", b.addr, err.Error())
    1071. 

  1071. 		return err
    1072. 

  1072. 	}
    1073. 

  1073. 

  1074. 	b.correlationID++
    1075. 

  1075. 

  1076. 	bytesRead, err := b.receiveSASLServerResponse(&SaslAuthenticateResponse{}, correlationID)
    1077. 

  1077. 	b.updateIncomingCommunicationMetrics(bytesRead, time.Since(requestTime))
    1078. 

  1078. 

  1079. 	// With v1 sasl we get an error message set in the response we can return
    1080. 

  1080. 	if err != nil {
    1081. 

  1081. 		Logger.Printf("Error returned from broker during SASL flow %s: %s\n", b.addr, err.Error())
    1082. 

  1082. 		return err
    1083. 

  1083. 	}
    1084. 

  1084. 

  1085. 	return nil
    1086. 

  1086. }
    1087. 

  1087. 

  1088. // sendAndReceiveSASLOAuth performs the authentication flow as described by KIP-255
    1089. 

  1089. // https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=75968876
    1090. 

  1090. func (b *Broker) sendAndReceiveSASLOAuth(provider AccessTokenProvider) error {
    1091. 

  1091. 	if err := b.sendAndReceiveSASLHandshake(SASLTypeOAuth, SASLHandshakeV1); err != nil {
    1092. 

  1092. 		return err
    1093. 

  1093. 	}
    1094. 

  1094. 

  1095. 	token, err := provider.Token()
    1096. 

  1096. 	if err != nil {
    1097. 

  1097. 		return err
    1098. 

  1098. 	}
    1099. 

  1099. 

  1100. 	message, err := buildClientFirstMessage(token)
    1101. 

  1101. 	if err != nil {
    1102. 

  1102. 		return err
    1103. 

  1103. 	}
    1104. 

  1104. 

  1105. 	challenged, err := b.sendClientMessage(message)
    1106. 

  1106. 	if err != nil {
    1107. 

  1107. 		return err
    1108. 

  1108. 	}
    1109. 

  1109. 

  1110. 	if challenged {
    1111. 

  1111. 		// Abort the token exchange. The broker returns the failure code.
    1112. 

  1112. 		_, err = b.sendClientMessage([]byte(`\x01`))
    1113. 

  1113. 	}
    1114. 

  1114. 

  1115. 	return err
    1116. 

  1116. }
    1117. 

  1117. 

  1118. // sendClientMessage sends a SASL/OAUTHBEARER client message and returns true
    1119. 

  1119. // if the broker responds with a challenge, in which case the token is
    1120. 

  1120. // rejected.
    1121. 

  1121. func (b *Broker) sendClientMessage(message []byte) (bool, error) {
    1122. 

  1122. 	requestTime := time.Now()
    1123. 

  1123. 	// Will be decremented in updateIncomingCommunicationMetrics (except error)
    1124. 

  1124. 	b.addRequestInFlightMetrics(1)
    1125. 

  1125. 	correlationID := b.correlationID
    1126. 

  1126. 

  1127. 	bytesWritten, err := b.sendSASLOAuthBearerClientMessage(message, correlationID)
    1128. 

  1128. 	b.updateOutgoingCommunicationMetrics(bytesWritten)
    1129. 

  1129. 	if err != nil {
    1130. 

  1130. 		b.addRequestInFlightMetrics(-1)
    1131. 

  1131. 		return false, err
    1132. 

  1132. 	}
    1133. 

  1133. 

  1134. 	b.correlationID++
    1135. 

  1135. 

  1136. 	res := &SaslAuthenticateResponse{}
    1137. 

  1137. 	bytesRead, err := b.receiveSASLServerResponse(res, correlationID)
    1138. 

  1138. 

  1139. 	requestLatency := time.Since(requestTime)
    1140. 

  1140. 	b.updateIncomingCommunicationMetrics(bytesRead, requestLatency)
    1141. 

  1141. 

  1142. 	isChallenge := len(res.SaslAuthBytes) > 0
    1143. 

  1143. 

  1144. 	if isChallenge && err != nil {
    1145. 

  1145. 		Logger.Printf("Broker rejected authentication token: %s", res.SaslAuthBytes)
    1146. 

  1146. 	}
    1147. 

  1147. 

  1148. 	return isChallenge, err
    1149. 

  1149. }
    1150. 

  1150. 

  1151. func (b *Broker) sendAndReceiveSASLSCRAMv1() error {
    1152. 

  1152. 	if err := b.sendAndReceiveSASLHandshake(b.conf.Net.SASL.Mechanism, SASLHandshakeV1); err != nil {
    1153. 

  1153. 		return err
    1154. 

  1154. 	}
    1155. 

  1155. 

  1156. 	scramClient := b.conf.Net.SASL.SCRAMClientGeneratorFunc()
    1157. 

  1157. 	if err := scramClient.Begin(b.conf.Net.SASL.User, b.conf.Net.SASL.Password, b.conf.Net.SASL.SCRAMAuthzID); err != nil {
    1158. 

  1158. 		return fmt.Errorf("failed to start SCRAM exchange with the server: %s", err.Error())
    1159. 

  1159. 	}
    1160. 

  1160. 

  1161. 	msg, err := scramClient.Step("")
    1162. 

  1162. 	if err != nil {
    1163. 

  1163. 		return fmt.Errorf("failed to advance the SCRAM exchange: %s", err.Error())
    1164. 

  1164. 	}
    1165. 

  1165. 

  1166. 	for !scramClient.Done() {
    1167. 

  1167. 		requestTime := time.Now()
    1168. 

  1168. 		// Will be decremented in updateIncomingCommunicationMetrics (except error)
    1169. 

  1169. 		b.addRequestInFlightMetrics(1)
    1170. 

  1170. 		correlationID := b.correlationID
    1171. 

  1171. 		bytesWritten, err := b.sendSaslAuthenticateRequest(correlationID, []byte(msg))
    1172. 

  1172. 		b.updateOutgoingCommunicationMetrics(bytesWritten)
    1173. 

  1173. 		if err != nil {
    1174. 

  1174. 			b.addRequestInFlightMetrics(-1)
    1175. 

  1175. 			Logger.Printf("Failed to write SASL auth header to broker %s: %s\n", b.addr, err.Error())
    1176. 

  1176. 			return err
    1177. 

  1177. 		}
    1178. 

  1178. 

  1179. 		b.correlationID++
    1180. 

  1180. 		challenge, err := b.receiveSaslAuthenticateResponse(correlationID)
    1181. 

  1181. 		if err != nil {
    1182. 

  1182. 			b.addRequestInFlightMetrics(-1)
    1183. 

  1183. 			Logger.Printf("Failed to read response while authenticating with SASL to broker %s: %s\n", b.addr, err.Error())
    1184. 

  1184. 			return err
    1185. 

  1185. 		}
    1186. 

  1186. 

  1187. 		b.updateIncomingCommunicationMetrics(len(challenge), time.Since(requestTime))
    1188. 

  1188. 		msg, err = scramClient.Step(string(challenge))
    1189. 

  1189. 		if err != nil {
    1190. 

  1190. 			Logger.Println("SASL authentication failed", err)
    1191. 

  1191. 			return err
    1192. 

  1192. 		}
    1193. 

  1193. 	}
    1194. 

  1194. 

  1195. 	Logger.Println("SASL authentication succeeded")
    1196. 

  1196. 	return nil
    1197. 

  1197. }
    1198. 

  1198. 

  1199. func (b *Broker) sendSaslAuthenticateRequest(correlationID int32, msg []byte) (int, error) {
    1200. 

  1200. 	rb := &SaslAuthenticateRequest{msg}
    1201. 

  1201. 	req := &request{correlationID: correlationID, clientID: b.conf.ClientID, body: rb}
    1202. 

  1202. 	buf, err := encode(req, b.conf.MetricRegistry)
    1203. 

  1203. 	if err != nil {
    1204. 

  1204. 		return 0, err
    1205. 

  1205. 	}
    1206. 

  1206. 

  1207. 	return b.write(buf)
    1208. 

  1208. }
    1209. 

  1209. 

  1210. func (b *Broker) receiveSaslAuthenticateResponse(correlationID int32) ([]byte, error) {
    1211. 

  1211. 	buf := make([]byte, responseLengthSize+correlationIDSize)
    1212. 

  1212. 	_, err := b.readFull(buf)
    1213. 

  1213. 	if err != nil {
    1214. 

  1214. 		return nil, err
    1215. 

  1215. 	}
    1216. 

  1216. 

  1217. 	header := responseHeader{}
    1218. 

  1218. 	err = versionedDecode(buf, &header, 0)
    1219. 

  1219. 	if err != nil {
    1220. 

  1220. 		return nil, err
    1221. 

  1221. 	}
    1222. 

  1222. 

  1223. 	if header.correlationID != correlationID {
    1224. 

  1224. 		return nil, fmt.Errorf("correlation ID didn't match, wanted %d, got %d", b.correlationID, header.correlationID)
    1225. 

  1225. 	}
    1226. 

  1226. 

  1227. 	buf = make([]byte, header.length-correlationIDSize)
    1228. 

  1228. 	_, err = b.readFull(buf)
    1229. 

  1229. 	if err != nil {
    1230. 

  1230. 		return nil, err
    1231. 

  1231. 	}
    1232. 

  1232. 

  1233. 	res := &SaslAuthenticateResponse{}
    1234. 

  1234. 	if err := versionedDecode(buf, res, 0); err != nil {
    1235. 

  1235. 		return nil, err
    1236. 

  1236. 	}
    1237. 

  1237. 	if res.Err != ErrNoError {
    1238. 

  1238. 		return nil, res.Err
    1239. 

  1239. 	}
    1240. 

  1240. 	return res.SaslAuthBytes, nil
    1241. 

  1241. }
    1242. 

  1242. 

  1243. // Build SASL/OAUTHBEARER initial client response as described by RFC-7628
    1244. 

  1244. // https://tools.ietf.org/html/rfc7628
    1245. 

  1245. func buildClientFirstMessage(token *AccessToken) ([]byte, error) {
    1246. 

  1246. 	var ext string
    1247. 

  1247. 

  1248. 	if token.Extensions != nil && len(token.Extensions) > 0 {
    1249. 

  1249. 		if _, ok := token.Extensions[SASLExtKeyAuth]; ok {
    1250. 

  1250. 			return []byte{}, fmt.Errorf("the extension `%s` is invalid", SASLExtKeyAuth)
    1251. 

  1251. 		}
    1252. 

  1252. 		ext = "\x01" + mapToString(token.Extensions, "=", "\x01")
    1253. 

  1253. 	}
    1254. 

  1254. 

  1255. 	resp := []byte(fmt.Sprintf("n,,\x01auth=Bearer %s%s\x01\x01", token.Token, ext))
    1256. 

  1256. 

  1257. 	return resp, nil
    1258. 

  1258. }
    1259. 

  1259. 

  1260. // mapToString returns a list of key-value pairs ordered by key.
    1261. 

  1261. // keyValSep separates the key from the value. elemSep separates each pair.
    1262. 

  1262. func mapToString(extensions map[string]string, keyValSep string, elemSep string) string {
    1263. 

  1263. 	buf := make([]string, 0, len(extensions))
    1264. 

  1264. 

  1265. 	for k, v := range extensions {
    1266. 

  1266. 		buf = append(buf, k+keyValSep+v)
    1267. 

  1267. 	}
    1268. 

  1268. 

  1269. 	sort.Strings(buf)
    1270. 

  1270. 

  1271. 	return strings.Join(buf, elemSep)
    1272. 

  1272. }
    1273. 

  1273. 

  1274. func (b *Broker) sendSASLPlainAuthClientResponse(correlationID int32) (int, error) {
    1275. 

  1275. 	authBytes := []byte(b.conf.Net.SASL.AuthIdentity + "\x00" + b.conf.Net.SASL.User + "\x00" + b.conf.Net.SASL.Password)
    1276. 

  1276. 	rb := &SaslAuthenticateRequest{authBytes}
    1277. 

  1277. 	req := &request{correlationID: correlationID, clientID: b.conf.ClientID, body: rb}
    1278. 

  1278. 	buf, err := encode(req, b.conf.MetricRegistry)
    1279. 

  1279. 	if err != nil {
    1280. 

  1280. 		return 0, err
    1281. 

  1281. 	}
    1282. 

  1282. 

  1283. 	return b.write(buf)
    1284. 

  1284. }
    1285. 

  1285. 

  1286. func (b *Broker) sendSASLOAuthBearerClientMessage(initialResp []byte, correlationID int32) (int, error) {
    1287. 

  1287. 	rb := &SaslAuthenticateRequest{initialResp}
    1288. 

  1288. 

  1289. 	req := &request{correlationID: correlationID, clientID: b.conf.ClientID, body: rb}
    1290. 

  1290. 

  1291. 	buf, err := encode(req, b.conf.MetricRegistry)
    1292. 

  1292. 	if err != nil {
    1293. 

  1293. 		return 0, err
    1294. 

  1294. 	}
    1295. 

  1295. 

  1296. 	return b.write(buf)
    1297. 

  1297. }
    1298. 

  1298. 

  1299. func (b *Broker) receiveSASLServerResponse(res *SaslAuthenticateResponse, correlationID int32) (int, error) {
    1300. 

  1300. 	buf := make([]byte, responseLengthSize+correlationIDSize)
    1301. 

  1301. 	bytesRead, err := b.readFull(buf)
    1302. 

  1302. 	if err != nil {
    1303. 

  1303. 		return bytesRead, err
    1304. 

  1304. 	}
    1305. 

  1305. 

  1306. 	header := responseHeader{}
    1307. 

  1307. 	err = versionedDecode(buf, &header, 0)
    1308. 

  1308. 	if err != nil {
    1309. 

  1309. 		return bytesRead, err
    1310. 

  1310. 	}
    1311. 

  1311. 

  1312. 	if header.correlationID != correlationID {
    1313. 

  1313. 		return bytesRead, fmt.Errorf("correlation ID didn't match, wanted %d, got %d", b.correlationID, header.correlationID)
    1314. 

  1314. 	}
    1315. 

  1315. 

  1316. 	buf = make([]byte, header.length-correlationIDSize)
    1317. 

  1317. 	c, err := b.readFull(buf)
    1318. 

  1318. 	bytesRead += c
    1319. 

  1319. 	if err != nil {
    1320. 

  1320. 		return bytesRead, err
    1321. 

  1321. 	}
    1322. 

  1322. 

  1323. 	if err := versionedDecode(buf, res, 0); err != nil {
    1324. 

  1324. 		return bytesRead, err
    1325. 

  1325. 	}
    1326. 

  1326. 

  1327. 	if res.Err != ErrNoError {
    1328. 

  1328. 		return bytesRead, res.Err
    1329. 

  1329. 	}
    1330. 

  1330. 

  1331. 	return bytesRead, nil
    1332. 

  1332. }
    1333. 

  1333. 

  1334. func (b *Broker) updateIncomingCommunicationMetrics(bytes int, requestLatency time.Duration) {
    1335. 

  1335. 	b.updateRequestLatencyAndInFlightMetrics(requestLatency)
    1336. 

  1336. 	b.responseRate.Mark(1)
    1337. 

  1337. 

  1338. 	if b.brokerResponseRate != nil {
    1339. 

  1339. 		b.brokerResponseRate.Mark(1)
    1340. 

  1340. 	}
    1341. 

  1341. 

  1342. 	responseSize := int64(bytes)
    1343. 

  1343. 	b.incomingByteRate.Mark(responseSize)
    1344. 

  1344. 	if b.brokerIncomingByteRate != nil {
    1345. 

  1345. 		b.brokerIncomingByteRate.Mark(responseSize)
    1346. 

  1346. 	}
    1347. 

  1347. 

  1348. 	b.responseSize.Update(responseSize)
    1349. 

  1349. 	if b.brokerResponseSize != nil {
    1350. 

  1350. 		b.brokerResponseSize.Update(responseSize)
    1351. 

  1351. 	}
    1352. 

  1352. }
    1353. 

  1353. 

  1354. func (b *Broker) updateRequestLatencyAndInFlightMetrics(requestLatency time.Duration) {
    1355. 

  1355. 	requestLatencyInMs := int64(requestLatency / time.Millisecond)
    1356. 

  1356. 	b.requestLatency.Update(requestLatencyInMs)
    1357. 

  1357. 

  1358. 	if b.brokerRequestLatency != nil {
    1359. 

  1359. 		b.brokerRequestLatency.Update(requestLatencyInMs)
    1360. 

  1360. 	}
    1361. 

  1361. 

  1362. 	b.addRequestInFlightMetrics(-1)
    1363. 

  1363. }
    1364. 

  1364. 

  1365. func (b *Broker) addRequestInFlightMetrics(i int64) {
    1366. 

  1366. 	b.requestsInFlight.Inc(i)
    1367. 

  1367. 	if b.brokerRequestsInFlight != nil {
    1368. 

  1368. 		b.brokerRequestsInFlight.Inc(i)
    1369. 

  1369. 	}
    1370. 

  1370. }
    1371. 

  1371. 

  1372. func (b *Broker) updateOutgoingCommunicationMetrics(bytes int) {
    1373. 

  1373. 	b.requestRate.Mark(1)
    1374. 

  1374. 	if b.brokerRequestRate != nil {
    1375. 

  1375. 		b.brokerRequestRate.Mark(1)
    1376. 

  1376. 	}
    1377. 

  1377. 

  1378. 	requestSize := int64(bytes)
    1379. 

  1379. 	b.outgoingByteRate.Mark(requestSize)
    1380. 

  1380. 	if b.brokerOutgoingByteRate != nil {
    1381. 

  1381. 		b.brokerOutgoingByteRate.Mark(requestSize)
    1382. 

  1382. 	}
    1383. 

  1383. 

  1384. 	b.requestSize.Update(requestSize)
    1385. 

  1385. 	if b.brokerRequestSize != nil {
    1386. 

  1386. 		b.brokerRequestSize.Update(requestSize)
    1387. 

  1387. 	}
    1388. 

  1388. }
    1389. 

  1389. 

  1390. func (b *Broker) registerMetrics() {
    1391. 

  1391. 	b.brokerIncomingByteRate = b.registerMeter("incoming-byte-rate")
    1392. 

  1392. 	b.brokerRequestRate = b.registerMeter("request-rate")
    1393. 

  1393. 	b.brokerRequestSize = b.registerHistogram("request-size")
    1394. 

  1394. 	b.brokerRequestLatency = b.registerHistogram("request-latency-in-ms")
    1395. 

  1395. 	b.brokerOutgoingByteRate = b.registerMeter("outgoing-byte-rate")
    1396. 

  1396. 	b.brokerResponseRate = b.registerMeter("response-rate")
    1397. 

  1397. 	b.brokerResponseSize = b.registerHistogram("response-size")
    1398. 

  1398. 	b.brokerRequestsInFlight = b.registerCounter("requests-in-flight")
    1399. 

  1399. }
    1400. 

  1400. 

  1401. func (b *Broker) unregisterMetrics() {
    1402. 

  1402. 	for _, name := range b.registeredMetrics {
    1403. 

  1403. 		b.conf.MetricRegistry.Unregister(name)
    1404. 

  1404. 	}
    1405. 

  1405. 	b.registeredMetrics = nil
    1406. 

  1406. }
    1407. 

  1407. 

  1408. func (b *Broker) registerMeter(name string) metrics.Meter {
    1409. 

  1409. 	nameForBroker := getMetricNameForBroker(name, b)
    1410. 

  1410. 	b.registeredMetrics = append(b.registeredMetrics, nameForBroker)
    1411. 

  1411. 	return metrics.GetOrRegisterMeter(nameForBroker, b.conf.MetricRegistry)
    1412. 

  1412. }
    1413. 

  1413. 

  1414. func (b *Broker) registerHistogram(name string) metrics.Histogram {
    1415. 

  1415. 	nameForBroker := getMetricNameForBroker(name, b)
    1416. 

  1416. 	b.registeredMetrics = append(b.registeredMetrics, nameForBroker)
    1417. 

  1417. 	return getOrRegisterHistogram(nameForBroker, b.conf.MetricRegistry)
    1418. 

  1418. }
    1419. 

  1419. 

  1420. func (b *Broker) registerCounter(name string) metrics.Counter {
    1421. 

  1421. 	nameForBroker := getMetricNameForBroker(name, b)
    1422. 

  1422. 	b.registeredMetrics = append(b.registeredMetrics, nameForBroker)
    1423. 

  1423. 	return metrics.GetOrRegisterCounter(nameForBroker, b.conf.MetricRegistry)
    1424. 

  1424. }
    1425. 

  1425. 

  1426. func validServerNameTLS(addr string, cfg *tls.Config) *tls.Config {
    1427. 

  1427. 	if cfg == nil {
    1428. 

  1428. 		cfg = &tls.Config{}
    1429. 

  1429. 	}
    1430. 

  1430. 	if cfg.ServerName != "" {
    1431. 

  1431. 		return cfg
    1432. 

  1432. 	}
    1433. 

  1433. 

  1434. 	c := cfg.Clone()
    1435. 

  1435. 	sn, _, err := net.SplitHostPort(addr)
    1436. 

  1436. 	if err != nil {
    1437. 

  1437. 		Logger.Println(fmt.Errorf("failed to get ServerName from addr %w", err))
    1438. 

  1438. 	}
    1439. 

  1439. 	c.ServerName = sn
    1440. 

  1440. 	return c
    1441. 

  1441. }
    1442.