Fixed missing TLS files + Refactoring (#102)

* skipping HTTPS server configuration in case no TLS certificates are provided
* linting code using several linters
* fixed documentation
* upgraded docker images version for redis, node, and nginx
* fixed missing depencencies for github action tests
* refactored error handling
* removed stutter namings
* refactored redis mutex locks
* refactored redis circuit breaker calls
* refactored config to get values automatically from env vars
* refactored utils functions
* breaking change: CACHE_ALLOWED_STATUSES and CACHE_ALLOWED_METHODS will now support spaces instead of commas
* added tests for CONNECT HTTP method
* refactored domainConfig to be included in RequestCall (reduced coupling with config.go)
* resolved some TODOs
* RedirectToHTTPS can use customizable RedirectStatusCode per domain
* replaced SIGKILL handling with SIGTERM
* customize TLS config per domain: CurvePreferences, MinVersion, MaxVersion, and CipherSuites
* refactored transport.handleBody as there was no real error (removed also shouldPanicOnCopyError and ctx)
* fixed nginx configuration for ssl settings
* added more tests and increased coverage

Author: fabiocicerchia

.env.dist

@@ -11,8 +11,8 @@
 ################################################################################
 
 # --- GENERIC
-SERVER_HTTP_PORT=80
 SERVER_HTTPS_PORT=443
+SERVER_HTTP_PORT=80
 
 # --- GZIP
 # Automatically enable GZip compression on all requests.
@@ -79,7 +79,7 @@ FORWARD_SCHEME=
 
 # List of IPs/Hostnames to be used as load balanced backend servers.
 # They'll be selected using a round robin algorithm.
-# A list of comma-separated IPs or Hostnames.
+# A list of space-separated IPs or Hostnames.
 LB_ENDPOINT_LIST=
 
 # Forces redirect from HTTP to HTTPS.
@@ -92,10 +92,10 @@ REDIRECT_STATUS_CODE=301
 
 # --- CACHE
 # --- REDIS SERVER
+REDIS_DB=0
 REDIS_HOST=
 REDIS_PASSWORD=
 REDIS_PORT=6379
-REDIS_DB=0
 
 # --- TTL
 # Fallback storage TTL when saving the cache when no header is specified.

.github/linters/.golangci.yml

@@ -0,0 +1,17 @@
+linters:
+  enable-all: true
+  disable:
+    - gochecknoglobals
+    - interfacer
+    - maligned
+    - scopelint
+    - wrapcheck
+
+issues:
+  exclude-rules:
+    - text: could not import C
+      linters: [typecheck]
+    - text: undefined
+      linters: [typecheck]
+    - text: undeclared name
+      linters: [typecheck]

.github/linters/.jscpd.json

@@ -0,0 +1,8 @@
+{
+  "threshold": 0,
+  "reporters": ["html", "markdown"],
+  "ignore": [
+    "**/*_test.go",
+    "**/*.md"
+  ]
+}

.github/linters/.markdown-lint.yml

@@ -1,8 +1,12 @@
 line-length: false
-MD033:
+MD014: false # Dollar signs used before commands without showing output
+MD024: false # Multiple headings with the same content
+MD026: # Trailing punctuation in heading
+  punctuation: ".,;:!。，；：！？"
+MD029: false # Ordered list item prefix
+MD033: # Inline HTML
   allowed_elements:
+    - center
     - details
     - summary
-MD026:
-  punctuation: ".,;:!。，；：！？"
-MD038: false
+MD038: false # Spaces inside code span elements

.github/workflows/linter.yml

@@ -17,4 +17,3 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
           VALIDATE_ALL_CODEBASE: true
           DOCKERFILE_HADOLINT_FILE_NAME: .hadolint.yml
-          FILTER_REGEX_EXCLUDE: "nginx/(1.17.10|1.18.0|1.19.0|1.19.1|1.19.2)|tpl/.+.sh"

.github/workflows/main.yml

@@ -17,7 +17,7 @@ jobs:
     container: golang:alpine
     services:
       redis:
-        image: redis:6.0.8-alpine3.12
+        image: redis:6.2.5-alpine3.14
         ports:
           - 6379/tcp
         options: >-
@@ -58,7 +58,7 @@ jobs:
       - name: Install Dependencies
         run: |
           apk update
-          apk add bash curl gcc libc-dev make nghttp2 nodejs npm redis
+          apk add bash curl gcc git libc-dev make nghttp2 nodejs npm redis openssh musl-dev net-snmp-dev
 
       - name: Build
         run: make build-race
@@ -67,7 +67,6 @@ jobs:
         run: |
           echo "127.0.0.1 testing.local www.testing.local" | tee -a /etc/hosts
           ./go-proxy-cache -debug -config=test/full-setup/config.yml &
-          npm install test/full-setup
           make test
         env:
           REDIS_HOST: redis

Makefile

@@ -94,6 +94,7 @@ test-endtoend: ## test endtoend
 	go test -race -count=1 --tags=endtoend ./...
 
 test-ws: ## test websocket
+	cd test/full-setup && npm install
 	node test/full-setup/ws_client.js
 
 test-http2: ## test HTTP2

cache/cache.go

@@ -10,28 +10,35 @@ package cache
 // Repo: https://github.com/fabiocicerchia/go-proxy-cache
 
 import (
-	"errors"
-	"fmt"
 	"net/http"
 	"net/url"
 	"strings"
 	"time"
 
+	"github.com/pkg/errors"
+
 	"github.com/fabiocicerchia/go-proxy-cache/cache/engine"
 	"github.com/fabiocicerchia/go-proxy-cache/utils"
 	"github.com/fabiocicerchia/go-proxy-cache/utils/slice"
 	log "github.com/sirupsen/logrus"
 )
 
-// CacheObj - Contains cache settings and current cached/cacheable object.
-type CacheObj struct {
-	AllowedStatuses []int
-	AllowedMethods  []string
-	CurrentObj      URIObj
-	DomainID        string
+var errMissingRedisConnection = errors.New("missing redis connection")
+var errNotAllowed = errors.New("not allowed")
+var errCannotFetchMetadata = errors.New("cannot fetch metadata")
+var errCannotGetKey = errors.New("cannot get key")
+var errCannotDecode = errors.New("cannot decode")
+var errVaryWildcard = errors.New("vary: *")
+
+// Object - Contains cache settings and current cached/cacheable object.
+type Object struct {
+	AllowedStatuses  []int
+	AllowedMethods   []string
+	CurrentURIObject URIObj
+	DomainID         string
 }
 
-// URIObj - Holds details about the response
+// URIObj - Holds details about the response.
 type URIObj struct {
 	URL             url.URL
 	Host            string
@@ -44,35 +51,34 @@ type URIObj struct {
 }
 
 // IsStatusAllowed - Checks if a status code is allowed to be cached.
-func (c CacheObj) IsStatusAllowed() bool {
-	return slice.ContainsInt(c.AllowedStatuses, c.CurrentObj.StatusCode)
+func (c Object) IsStatusAllowed() bool {
+	return slice.ContainsInt(c.AllowedStatuses, c.CurrentURIObject.StatusCode)
 }
 
 // IsMethodAllowed - Checks if a HTTP method is allowed to be cached.
-func (c CacheObj) IsMethodAllowed() bool {
-	return slice.ContainsString(c.AllowedMethods, c.CurrentObj.Method)
+func (c Object) IsMethodAllowed() bool {
+	return slice.ContainsString(c.AllowedMethods, c.CurrentURIObject.Method)
 }
 
 // IsValid - Verifies the validity of a cacheable object.
-func (c CacheObj) IsValid() (bool, error) {
-	if !c.IsStatusAllowed() || slice.LenSliceBytes(c.CurrentObj.Content) == 0 {
-		return false, fmt.Errorf(
-			"not allowed. status %d - content length %d",
-			c.CurrentObj.StatusCode,
-			slice.LenSliceBytes(c.CurrentObj.Content),
-		)
+func (c Object) IsValid() (bool, error) {
+	if !c.IsStatusAllowed() || slice.LenSliceBytes(c.CurrentURIObject.Content) == 0 {
+		return false, errors.Wrapf(errNotAllowed,
+			"status %d - content length %d",
+			c.CurrentURIObject.StatusCode,
+			slice.LenSliceBytes(c.CurrentURIObject.Content))
 	}
 
 	return true, nil
 }
 
-func (c CacheObj) handleMetadata(domainID string, targetURL url.URL, expiration time.Duration) ([]string, error) {
-	meta, err := GetVary(c.CurrentObj.ResponseHeaders)
+func (c Object) handleMetadata(domainID string, targetURL url.URL, expiration time.Duration) ([]string, error) {
+	meta, err := GetVary(c.CurrentURIObject.ResponseHeaders)
 	if err != nil {
 		return []string{}, err
 	}
 
-	_, err = StoreMetadata(domainID, c.CurrentObj.Method, targetURL, meta, expiration)
+	_, err = StoreMetadata(domainID, c.CurrentURIObject.Method, targetURL, meta, expiration)
 	if err != nil {
 		return []string{}, err
 	}
@@ -81,15 +87,21 @@ func (c CacheObj) handleMetadata(domainID string, targetURL url.URL, expiration
 }
 
 // StoreFullPage - Stores the whole page response in cache.
-func (c CacheObj) StoreFullPage(expiration time.Duration) (bool, error) {
+func (c Object) StoreFullPage(expiration time.Duration) (bool, error) {
 	if !c.IsStatusAllowed() || !c.IsMethodAllowed() || expiration < 1 {
-		log.Debugf("Not allowed to be stored. Status: %v - Method: %v - Expiration: %v", c.IsStatusAllowed(), c.IsMethodAllowed(), expiration)
+		log.Debugf(
+			"Not allowed to be stored. Status: %v - Method: %v - Expiration: %v",
+			c.IsStatusAllowed(),
+			c.IsMethodAllowed(),
+			expiration,
+		)
+
 		return false, nil
 	}
 
-	targetURL := c.CurrentObj.URL
-	targetURL.Scheme = c.CurrentObj.Scheme
-	targetURL.Host = c.CurrentObj.Host
+	targetURL := c.CurrentURIObject.URL
+	targetURL.Scheme = c.CurrentURIObject.Scheme
+	targetURL.Host = c.CurrentURIObject.Host
 
 	meta, err := c.handleMetadata(c.DomainID, targetURL, expiration)
 	if err != nil {
@@ -98,61 +110,61 @@ func (c CacheObj) StoreFullPage(expiration time.Duration) (bool, error) {
 
 	conn := engine.GetConn(c.DomainID)
 	if conn == nil {
-		return false, fmt.Errorf("missing redis connection for %s", c.DomainID)
+		return false, errors.Wrapf(errMissingRedisConnection, "Error for %s", c.DomainID)
 	}
 
-	encoded, err := conn.Encode(c.CurrentObj)
+	encoded, err := conn.Encode(c.CurrentURIObject)
 	if err != nil {
 		return false, err
 	}
 
-	key := StorageKey(c.CurrentObj.Method, targetURL, meta, c.CurrentObj.RequestHeaders)
+	key := StorageKey(c.CurrentURIObject.Method, targetURL, meta, c.CurrentURIObject.RequestHeaders)
 
 	return conn.Set(key, encoded, expiration)
 }
 
 // RetrieveFullPage - Retrieves the whole page response from cache.
-func (c *CacheObj) RetrieveFullPage(method string, url url.URL, reqHeaders http.Header) error {
+func (c *Object) RetrieveFullPage(method string, url url.URL, reqHeaders http.Header) error {
 	obj := &URIObj{}
 
 	meta, err := FetchMetadata(c.DomainID, method, url)
 	if err != nil {
-		return fmt.Errorf("cannot fetch metadata: %s", err)
+		return errors.Wrap(errCannotFetchMetadata, err.Error())
 	}
 
 	conn := engine.GetConn(c.DomainID)
 	if conn == nil {
-		return fmt.Errorf("missing redis connection for %s", c.DomainID)
+		return errors.Wrapf(errMissingRedisConnection, "Error for %s", c.DomainID)
 	}
 
 	key := StorageKey(method, url, meta, reqHeaders)
 	log.Debugf("StorageKey: %s", key)
 
 	encoded, err := conn.Get(key)
 	if err != nil {
-		return fmt.Errorf("cannot get key: %s", err)
+		return errors.Wrap(errCannotGetKey, err.Error())
 	}
 
 	err = conn.Decode(encoded, obj)
 	if err != nil {
-		return fmt.Errorf("cannot decode: %s", err)
+		return errors.Wrap(errCannotDecode, err.Error())
 	}
 
-	c.CurrentObj = *obj
+	c.CurrentURIObject = *obj
 
 	return nil
 }
 
 // PurgeFullPage - Deletes the whole page response from cache.
-func (c CacheObj) PurgeFullPage(method string, url url.URL) (bool, error) {
+func (c Object) PurgeFullPage(method string, url url.URL) (bool, error) {
 	err := PurgeMetadata(c.DomainID, url)
 	if err != nil {
 		return false, err
 	}
 
 	conn := engine.GetConn(c.DomainID)
 	if conn == nil {
-		return false, fmt.Errorf("missing redis connection for %s", c.DomainID)
+		return false, errors.Wrapf(errMissingRedisConnection, "Error for %s", c.DomainID)
 	}
 
 	var meta []string
@@ -161,6 +173,7 @@ func (c CacheObj) PurgeFullPage(method string, url url.URL) (bool, error) {
 	match := utils.StringSeparatorOne + "PURGE" + utils.StringSeparatorOne
 	replace := utils.StringSeparatorOne + "*" + utils.StringSeparatorOne
 	keyPattern := strings.Replace(key, match, replace, 1) + "*"
+
 	affected, err := conn.DelWildcard(keyPattern)
 	if err != nil {
 		return false, err
@@ -192,7 +205,7 @@ func FetchMetadata(domainID string, method string, url url.URL) ([]string, error
 
 	conn := engine.GetConn(domainID)
 	if conn == nil {
-		return []string{}, fmt.Errorf("missing redis connection for %s", domainID)
+		return []string{}, errors.Wrapf(errMissingRedisConnection, "Error for %s", domainID)
 	}
 
 	return conn.List(key)
@@ -204,10 +217,11 @@ func PurgeMetadata(domainID string, url url.URL) error {
 
 	conn := engine.GetConn(domainID)
 	if conn == nil {
-		return fmt.Errorf("missing redis connection for %s", domainID)
+		return errors.Wrapf(errMissingRedisConnection, "Error for %s", domainID)
 	}
 
 	_, err := conn.DelWildcard(keyPattern)
+
 	return err
 }
 
@@ -217,10 +231,11 @@ func StoreMetadata(domainID string, method string, url url.URL, meta []string, e
 
 	conn := engine.GetConn(domainID)
 	if conn == nil {
-		return false, fmt.Errorf("missing redis connection for %s", domainID)
+		return false, errors.Wrapf(errMissingRedisConnection, "Error for %s", domainID)
 	}
 
-	_ = conn.Del(key) //nolint:golint,errcheck
+	_ = conn.Del(key)
+
 	err := conn.Push(key, meta)
 	if err != nil {
 		return false, err
@@ -242,7 +257,7 @@ func GetVary(headers http.Header) ([]string, error) {
 	vary := headers.Get("Vary")
 
 	if vary == "*" {
-		return []string{}, errors.New("vary: *")
+		return []string{}, errVaryWildcard
 	}
 
 	varyList := strings.Split(vary, ",")