Fix connection broker mode for stat / listings #1394
Description
The "connection broker" mode for an origin allows it to be run from behind a firewall and require no host certificate.
However, recent new features have partially broken the mode. I spot two issues:
- In the new code @haoming29 added to have the director do a HEAD against the origin as part of the origin-selection process.
- When the client does a PROPFIND against the director for an object listing, the director will redirect it to the origin (which wouldn't work here).
Suggested fixes:
- In
broker/client.go, we already have a function that will return a TCP socket connected to the origin based on the origin name and broker address. Add a new method to the director module that returns ahttp.Transportobject which is aware of the origins that need a connection broker. Internally, this new object would implement theDialContextmethod. WithinDialContext, if the requested hostname is that of an origin which needs a connection broker, invoke the connection broker logic to get a newnet.Connfrombroker.ConnectToOriginand return that. Otherwise, perform a "normal" dial to create a TCP socket. - Migrate any place where we invoke
GetTransportin the director to the director-specific logic from step (1). - When handling a PROPFIND request, instead of redirecting to the origin, proxy the request to the origin.
- This means all clients will go through the director and not contact the origin, allowing the director to reverse the connection.
- Additionally, we could implement rate-limits for object listing in the future. Golang has powerful libraries for rate limiting -- and we know metadata queries are one potential way to overload the object stores behind an origin. Alternatively, we could just proxy for origins that require connection brokers and otherwise redirect.