Improve logs in the GCP proxy

Tweaked a few logging levels to not spam error level logs. Also make it easy to debug issues in case relay retry fails. [1] Put non-fatal exceptions that should be logged at warning in their explicit sets. Also always use the root cause to determine if an exception is non-fatal, because sometimes the actual causes are wrapped inside other exceptions. [2] Record the cause of a relay failure, and record if a relay retry is successful. This way we can look at the log and figure out if a relay is eventually successful. [3] Add a log when the frontend connection from the client is terminated. [4] Alway close the relay channel when a relay has failed, which, depend on if the channel is frontend or backend, will reconnect and trigger a retry. [5] Lastly changed failure test to use assertThrows instead of fail. ------------- Created by MOE: https://github.com/google/moe MOE_MIGRATED_REVID=208649916
2025-05-17 17:59:41 +02:00 · 2018-08-14 08:22:31 -07:00 · 2018-08-14 08:22:31 -07:00 · 0e64015cdf
commit 0e64015cdf
parent b552c1d115
10 changed files with 154 additions and 95 deletions
--- a/javatests/google/registry/proxy/CertificateModuleTest.java
+++ b/javatests/google/registry/proxy/CertificateModuleTest.java
@ -17,8 +17,8 @@ package google.registry.proxy;
 import static com.google.common.truth.Truth.assertThat;
 import static google.registry.proxy.handler.SslInitializerTestUtils.getKeyPair;
 import static google.registry.proxy.handler.SslInitializerTestUtils.signKeyPair;
+import static google.registry.testing.JUnitBackports.assertThrows;
 import static java.nio.charset.StandardCharsets.UTF_8;
-import static org.junit.Assert.fail;

 import dagger.Component;
 import dagger.Module;
@ -94,48 +94,36 @@ public class CertificateModuleTest {
  public void testFailure_noPrivateKey() throws Exception {
    byte[] pemBytes = getPemBytes(cert, ssc.cert());
    component = createComponent(pemBytes);
-    try {
-      component.privateKey();
-      fail("Expect IllegalStateException.");
-    } catch (IllegalStateException e) {
-      assertThat(e).hasMessageThat().contains("0 keys are found");
-    }
+    IllegalStateException thrown =
+        assertThrows(IllegalStateException.class, () -> component.privateKey());
+    assertThat(thrown).hasMessageThat().contains("0 keys are found");
  }

  @Test
  public void testFailure_twoPrivateKeys() throws Exception {
    byte[] pemBytes = getPemBytes(cert, ssc.cert(), key, ssc.key());
    component = createComponent(pemBytes);
-    try {
-      component.privateKey();
-      fail("Expect IllegalStateException.");
-    } catch (IllegalStateException e) {
-      assertThat(e).hasMessageThat().contains("2 keys are found");
-    }
+    IllegalStateException thrown =
+        assertThrows(IllegalStateException.class, () -> component.privateKey());
+    assertThat(thrown).hasMessageThat().contains("2 keys are found");
  }

  @Test
  public void testFailure_certificatesOutOfOrder() throws Exception {
    byte[] pemBytes = getPemBytes(ssc.cert(), cert, key);
    component = createComponent(pemBytes);
-    try {
-      component.certificates();
-      fail("Expect IllegalStateException.");
-    } catch (IllegalStateException e) {
-      assertThat(e).hasMessageThat().contains("is not signed by");
-    }
+    IllegalStateException thrown =
+        assertThrows(IllegalStateException.class, () -> component.certificates());
+    assertThat(thrown).hasMessageThat().contains("is not signed by");
  }

  @Test
  public void testFailure_noCertificates() throws Exception {
    byte[] pemBytes = getPemBytes(key);
    component = createComponent(pemBytes);
-    try {
-      component.certificates();
-      fail("Expect IllegalStateException.");
-    } catch (IllegalStateException e) {
-      assertThat(e).hasMessageThat().contains("No certificates");
-    }
+    IllegalStateException thrown =
+        assertThrows(IllegalStateException.class, () -> component.certificates());
+    assertThat(thrown).hasMessageThat().contains("No certificates");
  }

  @Module