revert configurable global socket timeouts (#31603) (#41837)

Author: Peter Schretlen

docs/setup/settings.asciidoc

@@ -209,9 +209,6 @@ Specify the position of the subdomain the URL with the token `{s}`.
 
 `server.host:`:: *Default: "localhost"* This setting specifies the host of the back end server.
 
-`server.keepaliveTimeout:`:: *Default: "120000"* The number of milliseconds to wait for additional data before restarting
-the `server.socketTimeout` counter.
-
 `server.maxPayloadBytes:`:: *Default: 1048576* The maximum payload size in bytes for incoming server requests.
 
 `server.name:`:: *Default: "your-hostname"* A human-readable display name that identifies this Kibana instance.
@@ -220,9 +217,6 @@ the `server.socketTimeout` counter.
 
 `server.ssl.enabled:`:: *Default: "false"* Enables SSL for outgoing requests from the Kibana server to the browser. When set to `true`, `server.ssl.certificate` and `server.ssl.key` are required
 
-`server.socketTimeout:`:: *Default: "120000"* The number of milliseconds to wait before closing an
-inactive socket.
-
 `server.ssl.cert:`:: Path to the PEM-format SSL certificate. This file enables
 SSL for outgoing requests from the Kibana server to the browser.
 deprecated[5.3.0,Replaced by `server.ssl.certificate`]

src/core/server/http/__snapshots__/http_config.test.ts.snap

@@ -14,13 +14,11 @@ Object {
   "autoListen": true,
   "cors": false,
   "host": "localhost",
-  "keepaliveTimeout": 120000,
   "maxPayload": ByteSizeValue {
     "valueInBytes": 1048576,
   },
   "port": 5601,
   "rewriteBasePath": false,
-  "socketTimeout": 120000,
   "ssl": Object {
     "cipherSuites": Array [
       "ECDHE-RSA-AES128-GCM-SHA256",

src/core/server/http/base_path_proxy_server.ts

@@ -24,7 +24,7 @@ import { sample } from 'lodash';
 import { DevConfig } from '../dev';
 import { Logger } from '../logging';
 import { HttpConfig } from './http_config';
-import { createServer, getListenerOptions, getServerOptions } from './http_tools';
+import { createServer, getServerOptions } from './http_tools';
 
 const alphabet = 'abcdefghijklmnopqrztuvwxyz'.split('');
 
@@ -62,8 +62,7 @@ export class BasePathProxyServer {
     this.log.debug('starting basepath proxy server');
 
     const serverOptions = getServerOptions(this.httpConfig);
-    const listenerOptions = getListenerOptions(this.httpConfig);
-    this.server = createServer(serverOptions, listenerOptions);
+    this.server = createServer(serverOptions);
 
     // Register hapi plugin that adds proxying functionality. It can be configured
     // through the route configuration object (see { handler: { proxy: ... } }).

src/core/server/http/http_config.test.ts

@@ -127,16 +127,6 @@ describe('with TLS', () => {
     expect(config.ssl.certificateAuthorities).toBe('/authority/');
   });
 
-  test('can specify socket timeouts', () => {
-    const obj = {
-      keepaliveTimeout: 1e5,
-      socketTimeout: 5e5,
-    };
-    const { keepaliveTimeout, socketTimeout } = HttpConfig.schema.validate(obj);
-    expect(keepaliveTimeout).toBe(1e5);
-    expect(socketTimeout).toBe(5e5);
-  });
-
   test('can specify several `certificateAuthorities`', () => {
     const httpSchema = HttpConfig.schema;
     const obj = {

src/core/server/http/http_config.ts

@@ -61,12 +61,6 @@ const createHttpSchema = schema.object(
     }),
     rewriteBasePath: schema.boolean({ defaultValue: false }),
     ssl: SslConfig.schema,
-    keepaliveTimeout: schema.number({
-      defaultValue: 120000,
-    }),
-    socketTimeout: schema.number({
-      defaultValue: 120000,
-    }),
   },
   {
     validate: config => {
@@ -99,8 +93,6 @@ export class HttpConfig {
 
   public autoListen: boolean;
   public host: string;
-  public keepaliveTimeout: number;
-  public socketTimeout: number;
   public port: number;
   public cors: boolean | { origin: string[] };
   public maxPayload: ByteSizeValue;
@@ -121,8 +113,6 @@ export class HttpConfig {
     this.basePath = config.basePath;
     this.rewriteBasePath = config.rewriteBasePath;
     this.publicDir = env.staticFilesDir;
-    this.keepaliveTimeout = config.keepaliveTimeout;
-    this.socketTimeout = config.socketTimeout;
     this.ssl = new SslConfig(config.ssl);
   }
 }

src/core/server/http/http_server.ts

@@ -22,7 +22,7 @@ import { Server, ServerOptions } from 'hapi';
 import { modifyUrl } from '../../utils';
 import { Logger } from '../logging';
 import { HttpConfig } from './http_config';
-import { createServer, getListenerOptions, getServerOptions } from './http_tools';
+import { createServer, getServerOptions } from './http_tools';
 import { Router } from './router';
 
 export interface HttpServerInfo {
@@ -52,8 +52,7 @@ export class HttpServer {
     this.log.debug('starting http server');
 
     const serverOptions = getServerOptions(config);
-    const listenerOptions = getListenerOptions(config);
-    this.server = createServer(serverOptions, listenerOptions);
+    this.server = createServer(serverOptions);
 
     this.setupBasePathRewrite(this.server, config);
 

src/core/server/http/http_tools.test.ts

@@ -19,15 +19,7 @@
 
 import { Request, ResponseToolkit } from 'hapi';
 import Joi from 'joi';
-import supertest from 'supertest';
-
-import { logger } from '../logging/__mocks__';
-
-import { ByteSizeValue } from '@kbn/config-schema';
-import { HttpConfig } from './http_config';
-import { HttpServer } from './http_server';
 import { defaultValidationErrorHandler, HapiValidationError } from './http_tools';
-import { Router } from './router';
 
 const emptyOutput = {
   statusCode: 400,
@@ -65,37 +57,3 @@ describe('defaultValidationErrorHandler', () => {
     }
   });
 });
-
-describe('timeouts', () => {
-  const server = new HttpServer(logger.get());
-
-  test('returns 408 on timeout error', async () => {
-    const router = new Router('');
-    router.get({ path: '/a', validate: false }, async (req, res) => {
-      await new Promise(resolve => setTimeout(resolve, 2000));
-      return res.ok({});
-    });
-    router.get({ path: '/b', validate: false }, async (req, res) => res.ok({}));
-    server.registerRouter(router);
-
-    const config = {
-      socketTimeout: 1000,
-      host: '127.0.0.1',
-      maxPayload: new ByteSizeValue(1024),
-      ssl: {},
-    } as HttpConfig;
-
-    const { server: innerServer } = await server.start(config);
-    await supertest(innerServer.listener)
-      .get('/a')
-      .expect(408);
-    await supertest(innerServer.listener)
-      .get('/b')
-      .expect(200);
-  });
-
-  afterAll(async () => {
-    await server.stop();
-    logger.mockClear();
-  });
-});

src/core/server/http/http_tools.ts

@@ -78,30 +78,11 @@ export function getServerOptions(config: HttpConfig, { configureTLS = true } = {
   return options;
 }
 
-export function getListenerOptions(config: HttpConfig) {
-  return {
-    keepaliveTimeout: config.keepaliveTimeout,
-    socketTimeout: config.socketTimeout,
-  };
-}
-
-interface ListenerOptions {
-  keepaliveTimeout: number;
-  socketTimeout: number;
-}
-
-export function createServer(serverOptions: ServerOptions, listenerOptions: ListenerOptions) {
-  const server = new Server(serverOptions);
+export function createServer(options: ServerOptions) {
+  const server = new Server(options);
 
-  server.listener.keepAliveTimeout = listenerOptions.keepaliveTimeout;
-  server.listener.setTimeout(listenerOptions.socketTimeout);
-  server.listener.on('timeout', socket => {
-    if (socket.writable) {
-      socket.end(Buffer.from('HTTP/1.1 408 Request Timeout\r\n\r\n', 'ascii'));
-    } else {
-      socket.destroy();
-    }
-  });
+  // Revert to previous 120 seconds keep-alive timeout in Node < 8.
+  server.listener.keepAliveTimeout = 120e3;
   server.listener.on('clientError', (err, socket) => {
     if (socket.writable) {
       socket.end(Buffer.from('HTTP/1.1 400 Bad Request\r\n\r\n', 'ascii'));

src/core/server/http/https_redirect_server.ts

@@ -22,7 +22,7 @@ import { format as formatUrl } from 'url';
 
 import { Logger } from '../logging';
 import { HttpConfig } from './http_config';
-import { createServer, getListenerOptions, getServerOptions } from './http_tools';
+import { createServer, getServerOptions } from './http_tools';
 
 export class HttpsRedirectServer {
   private server?: Server;
@@ -42,13 +42,10 @@ export class HttpsRedirectServer {
     // Redirect server is configured in the same way as any other HTTP server
     // within the platform with the only exception that it should always be a
     // plain HTTP server, so we just ignore `tls` part of options.
-    this.server = createServer(
-      {
-        ...getServerOptions(config, { configureTLS: false }),
-        port: config.ssl.redirectHttpFromPort,
-      },
-      getListenerOptions(config)
-    );
+    this.server = createServer({
+      ...getServerOptions(config, { configureTLS: false }),
+      port: config.ssl.redirectHttpFromPort,
+    });
 
     this.server.ext('onRequest', (request: Request, responseToolkit: ResponseToolkit) => {
       return responseToolkit

src/core/server/legacy_compat/config/__snapshots__/legacy_object_to_config_adapter.test.ts.snap

@@ -6,11 +6,9 @@ Object {
   "basePath": "/abc",
   "cors": false,
   "host": "host",
-  "keepaliveTimeout": 5000,
   "maxPayload": 1000,
   "port": 1234,
   "rewriteBasePath": false,
-  "socketTimeout": 2000,
   "ssl": Object {
     "enabled": true,
     "keyPassphrase": "some-phrase",
@@ -25,11 +23,9 @@ Object {
   "basePath": "/abc",
   "cors": false,
   "host": "host",
-  "keepaliveTimeout": 5000,
   "maxPayload": 1000,
   "port": 1234,
   "rewriteBasePath": false,
-  "socketTimeout": 2000,
   "ssl": Object {
     "certificate": "cert",
     "enabled": true,
@@ -44,11 +40,9 @@ Object {
   "basePath": "/abc",
   "cors": false,
   "host": "host",
-  "keepaliveTimeout": 5000,
   "maxPayload": 1000,
   "port": 1234,
   "rewriteBasePath": false,
-  "socketTimeout": 2000,
   "ssl": Object {
     "certificate": "deprecated-cert",
     "enabled": true,
@@ -63,11 +57,9 @@ Object {
   "basePath": "/abc",
   "cors": false,
   "host": "host",
-  "keepaliveTimeout": 5000,
   "maxPayload": 1000,
   "port": 1234,
   "rewriteBasePath": false,
-  "socketTimeout": 2000,
   "ssl": Object {
     "certificate": "cert",
     "enabled": false,