gunicorn_config.py

import os
import socket
import sys
import traceback

import eventlet
import gunicorn

workers = 4
worker_class = "eventlet"
worker_connections = 256
bind = "0.0.0.0:{}".format(os.getenv("PORT"))
statsd_host = "{}:8125".format(os.getenv("STATSD_HOST"))
gunicorn.SERVER_SOFTWARE = "None"


def on_starting(server):
    server.log.info("Starting Notifications API")


def worker_abort(worker):
    worker.log.info("worker received ABORT {}".format(worker.pid))
    for _threadId, stack in sys._current_frames().items():
        worker.log.error("".join(traceback.format_stack(stack)))


def on_exit(server):
    server.log.info("Stopping Notifications API")


def worker_int(worker):
    worker.log.info("worker: received SIGINT {}".format(worker.pid))


def fix_ssl_monkeypatching():
    """
    eventlet works by monkey-patching core IO libraries (such as ssl) to be non-blocking. However, there's currently
    a bug: In the normal socket library it may throw a timeout error as a `socket.timeout` exception. However
    eventlet.green.ssl's patch raises an ssl.SSLError('timed out',) instead. redispy handles socket.timeout but not
    ssl.SSLError, so we solve this by monkey patching the monkey patching code to raise the correct exception type
    :scream:

    https://github.com/eventlet/eventlet/issues/692
    """
    # this has probably already been called somewhere in gunicorn internals, however, to be sure, we invoke it again.
    # eventlet.monkey_patch can be called multiple times without issue
    eventlet.monkey_patch()
    eventlet.green.ssl.timeout_exc = socket.timeout


fix_ssl_monkeypatching()
Move config from command line args to gunicorn_config.py 2018-02-06 15:12:12 +00:00			`import os`
black, isort, flake8 Signed-off-by: Cliff Hill <Clifford.hill@gsa.gov> 2023-12-08 21:43:52 -05:00			`import socket`
Fix PEP8 2017-09-22 15:34:43 +01:00			`import sys`
			`import traceback`

black, isort, flake8 Signed-off-by: Cliff Hill <Clifford.hill@gsa.gov> 2023-12-08 21:43:52 -05:00			`import eventlet`
			`import gunicorn`
Add GDSMetrics package As per instructions https://github.com/alphagov/gds_metrics_python The celery workers don't have an HTTP endpoint so no point in trying to get prometheus to scrape them. 2020-04-20 15:59:47 +01:00
Increase pool size to 15 permanent connections At the same time, decrease the number of workers from 5 to 4. Effect on max db connections will be the same - although with a higher "resting" number of connections. Before: 12 (instances) * 5 (workers) * 20 (10 permanent + 10 overflow) = 1200 After: 12 (instances) * 4 (workers) * 25 (15 permanent + 10 overflow) = 1200 2018-03-29 14:57:19 +01:00			`workers = 4`
Move config from command line args to gunicorn_config.py 2018-02-06 15:12:12 +00:00			`worker_class = "eventlet"`
			`worker_connections = 256`
			`bind = "0.0.0.0:{}".format(os.getenv("PORT"))`
AUTO: Get gunicorn stats - Gunicorn can give us some interestings stats about what it is doing that might prove useful when trying to work out the gunicorn/eventlet/sqlalchemy kind of bottlenecking issues - We already ship these env vars to the app so this is a pretty easy change to make - Uses statsd which is UDP so it shouldn't have any performance impact on gunicorn 2019-06-07 15:33:26 +01:00			`statsd_host = "{}:8125".format(os.getenv("STATSD_HOST"))`
reformat 2023-08-29 14:54:30 -07:00			`gunicorn.SERVER_SOFTWARE = "None"`
Move config from command line args to gunicorn_config.py 2018-02-06 15:12:12 +00:00
Fix PEP8 2017-09-22 15:34:43 +01:00
Adding extra logging to celery tasks ans gunicorn, specifically log on SIGTERM and SIGINIT so that we can track better when an app restarts and why it restarts e.g. when it restarts after another signal. 2017-10-12 11:38:01 +01:00			`def on_starting(server):`
			`server.log.info("Starting Notifications API")`


Implement worker_abort server hook Also update the manifest command to pass the config file in as a parameter and modify the logs agent to start shipping the error log to cloudwatch 2017-09-22 15:03:45 +01:00			`def worker_abort(worker):`
Adding extra logging to celery tasks ans gunicorn, specifically log on SIGTERM and SIGINIT so that we can track better when an app restarts and why it restarts e.g. when it restarts after another signal. 2017-10-12 11:38:01 +01:00			`worker.log.info("worker received ABORT {}".format(worker.pid))`
Do extra code style checks with flake8-bugbear Flake8 Bugbear checks for some extra things that aren’t code style errors, but are likely to introduce bugs or unexpected behaviour. A good example is having mutable default function arguments, which get shared between every call to the function and therefore mutating a value in one place can unexpectedly cause it to change in another. This commit enables all the extra warnings provided by Flake8 Bugbear, except for: - the line length one (because we already lint for that separately) - B903 Data class should either be immutable or use `__slots__` because this seems to false-positive on some of our custom exceptions - B902 Invalid first argument 'cls' used for instance method because some SQLAlchemy decorators (eg `declared_attr`) make things that aren’t formally class methods take a class not an instance as their first argument It disables: - _B306: BaseException.message is removed in Python 3_ because I think our exceptions have a custom structure that means the `.message` attribute is still present Matches the work done in other repos: - https://github.com/alphagov/notifications-admin/pull/3172/files 2020-12-22 15:46:31 +00:00			`for _threadId, stack in sys._current_frames().items():`
reformat 2023-08-29 14:54:30 -07:00			`worker.log.error("".join(traceback.format_stack(stack)))`
Adding extra logging to celery tasks ans gunicorn, specifically log on SIGTERM and SIGINIT so that we can track better when an app restarts and why it restarts e.g. when it restarts after another signal. 2017-10-12 11:38:01 +01:00

			`def on_exit(server):`
			`server.log.info("Stopping Notifications API")`


			`def worker_int(worker):`
			`worker.log.info("worker: received SIGINT {}".format(worker.pid))`
fix rediss ssl eventlet sslerror bug eventlet works by monkey-patching core IO libraries (such as ssl) to be non-blocking. However, there's currently a bug: In the normal socket library it may throw a timeout error as a `socket.timeout` exception. However eventlet.green.ssl's patch raises an ssl.SSLError('timed out',) instead. redispy handles socket.timeout but not ssl.SSLError, so we solve this by monkey patching the monkey patching code to raise the correct exception type :scream: Note: This code should _only_ be called when we're using eventlets, or we'll run into issues with regular code failing with max recursion errors. With that in mind we put this code in gunicorn_config, as that isn't imported when we run celery or run flask locally. 2022-02-23 13:06:12 +00:00

			`def fix_ssl_monkeypatching():`
			`"""`
			`eventlet works by monkey-patching core IO libraries (such as ssl) to be non-blocking. However, there's currently`
			a bug: In the normal socket library it may throw a timeout error as a `socket.timeout` exception. However
			`eventlet.green.ssl's patch raises an ssl.SSLError('timed out',) instead. redispy handles socket.timeout but not`
			`ssl.SSLError, so we solve this by monkey patching the monkey patching code to raise the correct exception type`
			`:scream:`

			`https://github.com/eventlet/eventlet/issues/692`
			`"""`
			`# this has probably already been called somewhere in gunicorn internals, however, to be sure, we invoke it again.`
			`# eventlet.monkey_patch can be called multiple times without issue`
			`eventlet.monkey_patch()`
			`eventlet.green.ssl.timeout_exc = socket.timeout`


			`fix_ssl_monkeypatching()`