envoyproxy · zuercher · Jan 23, 2018 · Jan 16, 2018 · Jan 21, 2018 · Jan 21, 2018
diff --git a/bazel/repository_locations.bzl b/bazel/repository_locations.bzl
@@ -71,7 +71,7 @@ REPOSITORY_LOCATIONS = dict(
         urls = ["https://github.com/google/protobuf/archive/v3.5.0.tar.gz"],
     ),
     envoy_api = dict(
-        commit = "f268484d221509b175c46cce6c4cc3593a0ede5e",
+        commit = "b4a303154703d19f49b63e5529877772ce5da617",
         remote = "https://github.com/envoyproxy/data-plane-api",
     ),
     grpc_httpjson_transcoding = dict(

diff --git a/source/server/http/health_check.cc b/source/server/http/health_check.cc
@@ -43,10 +43,19 @@ HealthCheckFilterConfig::createFilter(const envoy::api::v2::filter::http::Health
                                                     std::chrono::milliseconds(cache_time_ms)));
   }
 
-  return [&context, pass_through_mode, cache_manager,
-          hc_endpoint](Http::FilterChainFactoryCallbacks& callbacks) -> void {
-    callbacks.addStreamFilter(Http::StreamFilterSharedPtr{
-        new HealthCheckFilter(context, pass_through_mode, cache_manager, hc_endpoint)});
+  ClusterMinHealthyPercentagesSharedPtr cluster_min_healthy_percentages;
+  if (!pass_through_mode && !proto_config.cluster_min_healthy_percentages().empty()) {
+    auto* cluster_to_percentage = new ClusterMinHealthyPercentages();
+    for (const auto& item : proto_config.cluster_min_healthy_percentages()) {
+      cluster_to_percentage->emplace(std::make_pair(item.first, item.second.value()));
+    }
+    cluster_min_healthy_percentages.reset(cluster_to_percentage);
+  }
+
+  return [&context, pass_through_mode, cache_manager, hc_endpoint,
+          cluster_min_healthy_percentages](Http::FilterChainFactoryCallbacks& callbacks) -> void {
+    callbacks.addStreamFilter(Http::StreamFilterSharedPtr{new HealthCheckFilter(
+        context, pass_through_mode, cache_manager, hc_endpoint, cluster_min_healthy_percentages)});
   };
 }
 
@@ -155,6 +164,32 @@ void HealthCheckFilter::onComplete() {
     Http::Code final_status = Http::Code::OK;
     if (cache_manager_) {
       final_status = cache_manager_->getCachedResponseCode();
+    } else if (cluster_min_healthy_percentages_ != nullptr &&
+               !cluster_min_healthy_percentages_->empty()) {
+      const auto clusters(context_.clusterManager().clusters());
+      for (const auto& item : *cluster_min_healthy_percentages_) {
+        const std::string& cluster_name = item.first;
+        const double min_healthy_percentage = item.second;
+        auto match = clusters.find(cluster_name);
+        if (match == clusters.end()) {
+          final_status = Http::Code::ServiceUnavailable;
+          break;
+        }
+        const auto& stats = match->second.get().info()->stats();
+        const uint64_t membership_total = stats.membership_total_.value();
+        if (membership_total == 0) {
+          if (min_healthy_percentage == 0.0) {
+            continue;
+          } else {
+            final_status = Http::Code::ServiceUnavailable;
+            break;
+          }
+        }
+        if (100.0 * stats.membership_healthy_.value() < membership_total * min_healthy_percentage) {
+          final_status = Http::Code::ServiceUnavailable;
+          break;
+        }
+      }
     }
 
     if (!Http::CodeUtility::is2xx(enumToInt(final_status))) {

diff --git a/source/server/http/health_check.h b/source/server/http/health_check.h
@@ -68,15 +68,19 @@ class HealthCheckCacheManager {
 
 typedef std::shared_ptr<HealthCheckCacheManager> HealthCheckCacheManagerSharedPtr;
 
+typedef std::map<std::string, double> ClusterMinHealthyPercentages;
+typedef std::shared_ptr<const ClusterMinHealthyPercentages> ClusterMinHealthyPercentagesSharedPtr;
+
 /**
  * Health check responder filter.
  */
 class HealthCheckFilter : public Http::StreamFilter {
 public:
   HealthCheckFilter(Server::Configuration::FactoryContext& context, bool pass_through_mode,
-                    HealthCheckCacheManagerSharedPtr cache_manager, const std::string& endpoint)
+                    HealthCheckCacheManagerSharedPtr cache_manager, const std::string& endpoint,
+                    ClusterMinHealthyPercentagesSharedPtr cluster_min_healthy_percentages)
       : context_(context), pass_through_mode_(pass_through_mode), cache_manager_(cache_manager),
-        endpoint_(endpoint) {}
+        endpoint_(endpoint), cluster_min_healthy_percentages_(cluster_min_healthy_percentages) {}
 
   // Http::StreamFilterBase
   void onDestroy() override {}
@@ -109,5 +113,6 @@ class HealthCheckFilter : public Http::StreamFilter {
   bool pass_through_mode_{};
   HealthCheckCacheManagerSharedPtr cache_manager_{};
   const std::string endpoint_;
+  ClusterMinHealthyPercentagesSharedPtr cluster_min_healthy_percentages_{};
 };
 } // namespace Envoy
diff --git a/test/server/http/health_check_test.cc b/test/server/http/health_check_test.cc
@@ -2,10 +2,12 @@
 #include <memory>
 
 #include "common/buffer/buffer_impl.h"
+#include "common/upstream/upstream_impl.h"
 
 #include "server/http/health_check.h"
 
 #include "test/mocks/server/mocks.h"
+#include "test/mocks/upstream/cluster_info.h"
 #include "test/test_common/printers.h"
 #include "test/test_common/utility.h"
 
@@ -36,8 +38,11 @@ class HealthCheckFilterTest : public testing::Test {
     prepareFilter(pass_through);
   }
 
-  void prepareFilter(bool pass_through) {
-    filter_.reset(new HealthCheckFilter(context_, pass_through, cache_manager_, "/healthcheck"));
+  void
+  prepareFilter(bool pass_through,
+                ClusterMinHealthyPercentagesSharedPtr cluster_min_healthy_percentages = nullptr) {
+    filter_.reset(new HealthCheckFilter(context_, pass_through, cache_manager_, "/healthcheck",
+                                        cluster_min_healthy_percentages));
     filter_->setDecoderFilterCallbacks(callbacks_);
   }
 
@@ -49,6 +54,30 @@ class HealthCheckFilterTest : public testing::Test {
   NiceMock<Http::MockStreamDecoderFilterCallbacks> callbacks_;
   Http::TestHeaderMapImpl request_headers_;
   Http::TestHeaderMapImpl request_headers_no_hc_;
+
+  class MockHealthCheckCluster : public Upstream::MockCluster {
+  public:
+    MockHealthCheckCluster(uint64_t membership_total, uint64_t membership_healthy)
+        : info_(new ClusterInfo(membership_total, membership_healthy)) {}
+
+    Upstream::ClusterInfoConstSharedPtr info() const override { return info_; }
+
+    class ClusterInfo : public Upstream::MockClusterInfo {
+    public:
+      ClusterInfo(uint64_t membership_total, uint64_t membership_healthy)
+          : stats_(Upstream::ClusterInfoImpl::generateStats(stats_store_)) {
+        stats_.membership_total_.set(membership_total);
+        stats_.membership_healthy_.set(membership_healthy);
+      }
+
+      Upstream::ClusterStats& stats() const override { return stats_; }
+
+    private:
+      mutable Upstream::ClusterStats stats_;
+    };
+
+    Upstream::ClusterInfoConstSharedPtr info_;
+  };
 };
 
 class HealthCheckFilterNoPassThroughTest : public HealthCheckFilterTest {
@@ -84,6 +113,82 @@ TEST_F(HealthCheckFilterNoPassThroughTest, NotHcRequest) {
   EXPECT_STREQ("true", service_response.EnvoyImmediateHealthCheckFail()->value().c_str());
 }
 
+TEST_F(HealthCheckFilterNoPassThroughTest, ComputedHealth) {
+  // Test health non-pass-through health checks without upstream cluster
+  // minimum health specified.
+  prepareFilter(false);
+  {
+    Http::TestHeaderMapImpl health_check_response{{":status", "200"}};
+    EXPECT_CALL(context_, healthCheckFailed()).WillOnce(Return(false));
+    EXPECT_CALL(callbacks_, encodeHeaders_(HeaderMapEqualRef(&health_check_response), true))
+        .Times(1);
+    EXPECT_EQ(Http::FilterHeadersStatus::StopIteration,
+              filter_->decodeHeaders(request_headers_, true));
+  }
+  {
+    Http::TestHeaderMapImpl health_check_response{{":status", "503"}};
+    EXPECT_CALL(context_, healthCheckFailed()).WillOnce(Return(true));
+    EXPECT_CALL(callbacks_, encodeHeaders_(HeaderMapEqualRef(&health_check_response), true))
+        .Times(1);
+    EXPECT_EQ(Http::FilterHeadersStatus::StopIteration,
+              filter_->decodeHeaders(request_headers_, true));
+  }
+
+  // Test health non-pass-through health checks with upstream cluster
+  // minimum health specified.
+  prepareFilter(false, ClusterMinHealthyPercentagesSharedPtr(
+                           new ClusterMinHealthyPercentages{{"www1", 50.0}, {"www2", 75.0}}));
+  {
+    // This should pass, because each upstream cluster has at least the
+    // minimum percentage of healthy servers.
+    Http::TestHeaderMapImpl health_check_response{{":status", "200"}};
+    MockHealthCheckCluster cluster_www1(100, 50);
+    MockHealthCheckCluster cluster_www2(1000, 800);
+    Upstream::ClusterManager::ClusterInfoMap cluster_info_map{
+        {"www1", std::reference_wrapper<const Upstream::Cluster>(cluster_www1)},
+        {"www2", std::reference_wrapper<const Upstream::Cluster>(cluster_www2)}};
+    EXPECT_CALL(context_, healthCheckFailed()).WillOnce(Return(false));
+    EXPECT_CALL(context_, clusterManager()).Times(1);
+    EXPECT_CALL(context_.cluster_manager_, clusters()).WillOnce(Return(cluster_info_map));
+    EXPECT_CALL(callbacks_, encodeHeaders_(HeaderMapEqualRef(&health_check_response), true))
+        .Times(1);
+    EXPECT_EQ(Http::FilterHeadersStatus::StopIteration,
+              filter_->decodeHeaders(request_headers_, true));
+  }
+  {
+    // This should fail, because one upstream cluster has too few healthy servers.
+    Http::TestHeaderMapImpl health_check_response{{":status", "503"}};
+    MockHealthCheckCluster cluster_www1(100, 49);
+    MockHealthCheckCluster cluster_www2(1000, 800);
+    Upstream::ClusterManager::ClusterInfoMap cluster_info_map{
+        {"www1", std::reference_wrapper<const Upstream::Cluster>(cluster_www1)},
+        {"www2", std::reference_wrapper<const Upstream::Cluster>(cluster_www2)}};
+    EXPECT_CALL(context_, healthCheckFailed()).WillOnce(Return(false));
+    EXPECT_CALL(context_, clusterManager()).Times(1);
+    EXPECT_CALL(context_.cluster_manager_, clusters()).WillOnce(Return(cluster_info_map));
+    EXPECT_CALL(callbacks_, encodeHeaders_(HeaderMapEqualRef(&health_check_response), true))
+        .Times(1);
+    EXPECT_EQ(Http::FilterHeadersStatus::StopIteration,
+              filter_->decodeHeaders(request_headers_, true));
+  }
+  {
+    // This should fail, because one upstream cluster has no servers at all.
+    Http::TestHeaderMapImpl health_check_response{{":status", "503"}};
+    MockHealthCheckCluster cluster_www1(0, 0);
+    MockHealthCheckCluster cluster_www2(1000, 800);
+    Upstream::ClusterManager::ClusterInfoMap cluster_info_map{
+        {"www1", std::reference_wrapper<const Upstream::Cluster>(cluster_www1)},
+        {"www2", std::reference_wrapper<const Upstream::Cluster>(cluster_www2)}};
+    EXPECT_CALL(context_, healthCheckFailed()).WillOnce(Return(false));
+    EXPECT_CALL(context_, clusterManager()).Times(1);
+    EXPECT_CALL(context_.cluster_manager_, clusters()).WillOnce(Return(cluster_info_map));
+    EXPECT_CALL(callbacks_, encodeHeaders_(HeaderMapEqualRef(&health_check_response), true))
+        .Times(1);
+    EXPECT_EQ(Http::FilterHeadersStatus::StopIteration,
+              filter_->decodeHeaders(request_headers_, true));
+  }
+}
+
 TEST_F(HealthCheckFilterNoPassThroughTest, HealthCheckFailedCallbackCalled) {
   EXPECT_CALL(context_, healthCheckFailed()).WillOnce(Return(true));
   EXPECT_CALL(callbacks_.request_info_, healthCheck(true));