aboutsummaryrefslogtreecommitdiff
path: root/internal/monitor
Commit message (Collapse)AuthorAgeFilesLines
* monitor: Retry get-sth and proof fetchingRasmus Dahlberg12 days1-3/+80
| | | | | Should ensure we don't get into a position where we always fail to get 3x queries that succeed in a row when trying to persist chunks.
* fix: Ensure rate-limits are on for get-entriesRasmus Dahlberg2025-01-062-1/+58
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Backoff on 4XX and 5XX. See related issue: https://github.com/google/certificate-transparency-go/issues/898 Test manually hints: ``` $ cat srv.py from http.server import HTTPServer, BaseHTTPRequestHandler class RequestHandler(BaseHTTPRequestHandler): def do_GET(self): self.send_response(429) self.send_header("Content-Type", "text/plain") self.end_headers() self.wfile.write(b"429 something something...") def do_POST(self): self.do_GET() def do_PUT(self): self.do_GET() def do_DELETE(self): self.do_GET() if __name__ == "__main__": server_address = ('localhost', 9090) httpd = HTTPServer(server_address, RequestHandler) print("Server running on http://localhost:9090") httpd.serve_forever() ``` And a transport for http.Client that redirects to localhost: ``` type statusRR struct { inner http.RoundTripper } func (s *statusRR) RoundTrip(req *http.Request) (*http.Response, error) { if strings.Contains(req.URL.Path, "ct/v1/get-entries") { req.URL.Scheme = "http" req.URL.Host = "localhost:9090" } rsp, err := s.inner.RoundTrip(req) return rsp, err } ```
* fix: Ensure backoff for get-sth and proof fetchingRasmus Dahlberg2025-01-051-1/+6
| | | | Our get-entries fetcher already backs-off exponentially.
* fix: Ensure fresh STHs are propagatedRasmus Dahlberg2025-01-051-0/+20
|
* fix: Don't accept timestamps that shrinkRasmus Dahlberg2025-01-051-0/+3
|
* fix: Ensure chunks are sent eventually and on exitRasmus Dahlberg2025-01-052-18/+42
|
* chore: Remove dash in project nameRasmus Dahlberg2024-06-022-4/+4
| | | | To be consistent with naming of the tools in cmd/.
* Only bootstrap a compact range once per logRasmus Dahlberg2024-05-262-57/+22
| | | | | | | | | | | | | | | As opposed to doing a new bootstrap with get-proof-by-hash every time the next root is constructed. Bootstrapping the compact range from a get-proof-by-hash query works for the most part, but fails if the log included a duplicate entry and gives us the index for that instead. Log operators with duplicate entries include Cloudflare and Digicert. If bootstrap fails (unlucky), we try to bootstrap again once the log's signed tree head moved forward (hoping the last entry has no duplicate). The more reliable way to bootstrap a compact range would be to use the get-entry-and-proof endpoint. This does not work in practise because some logs are not implementing this endpoint. Digicert has such logs.
* Reduce default chunk sizeRasmus Dahlberg2024-05-161-1/+1
|
* Fix nits spotted by go vetRasmus Dahlberg2024-05-161-6/+6
|
* Set larger chunk size defaultRasmus Dahlberg2024-01-081-1/+1
|
* Add drafty prototypeRasmus Dahlberg2024-01-074-0/+475
generated by cgit v1.2.3 (git 2.39.1) at 2025-10-17 06:23:36 +0000