synapse 0.13.1 → 0.13.5

data/README.md

@@ -149,9 +149,19 @@ Put these into the `discovery` section of the service hash, with these options:
 ##### Base #####
 
 The base watcher is useful in situations where you only want to use the servers in the `default_servers` list.
-It has only one option:
+It has the following options:
 
 * `method`: base
+* `label_filter`: optional filter to be applied to discovered service nodes
+
+###### Filtering service nodes ######
+Synapse can be configured to only return service nodes that match a `label_filter` predicate. If provided, the `label_filter` hash should contain the following:
+
+* `label`: The label for which the filter is applied
+* `value`: The comparison value
+* `condition` (one of ['`equals`']): The type of filter condition to be applied. Only `equals` is supported at present
+
+Given a `label_filter`: `{ "label": "cluster", "value": "dev", "condition": "equals" }`, this will return only service nodes that contain the label value `{ "cluster": "dev" }`.
 
 ##### Zookeeper #####
 
@@ -175,6 +185,7 @@ Synapse attempts to decode the data in each of these nodes using JSON and you ca
 * `endpoint_name` (default: nil): If using the `serverset` method, this controls which of the `additionalEndpoints` is chosen instead of the `serviceEndpoint` data. If not supplied the `serverset` method will use the host/port from the `serviceEndpoint` data.
 
 If the `method` is `nerve`, then we expect to find nerve registrations with a `host` and a `port`.
+Any additional metadata for the service node provided in the hash `labels` will be parsed. This information is used by `label_filter` configuration.
 
 If the `method` is `serverset` then we expect to find Finagle ServerSet
 (also used by [Aurora](https://github.com/apache/aurora/blob/master/docs/user-guide.md#service-discovery)) registrations with a `serviceEndpoint` and optionally one or more `additionalEndpoints`.
@@ -261,6 +272,7 @@ This section is its own hash, which should contain the following keys:
 * `listen`: these lines will be parsed and placed in the correct `frontend`/`backend` section as applicable; you can put lines which are the same for the frontend and backend here.
 * `backend_order`: optional: how backends should be ordered in the `backend` stanza. (default is shuffling). Setting to `asc` means sorting backends in ascending alphabetical order before generating stanza. `desc` means descending alphabetical order. `no_shuffle` means no shuffling or sorting.
 * `shared_frontend`: optional: haproxy configuration directives for a shared http frontend (see below)
+* `cookie_value_method`: optional: default value is `name`, it defines the way your backends receive a cookie value in http mode. If equal to `hash`, synapse hashes backend names on cookie value assignation of your discovered backends, useful when you want to use haproxy cookie feature but you do not want that your end users receive a Set-Cookie with your server name and ip readable in clear.
 
 <a name="haproxy"/>
 ### Configuring HAProxy ###

data/lib/synapse/haproxy.rb

@@ -1,15 +1,17 @@
 require 'fileutils'
 require 'json'
 require 'socket'
+require 'digest/sha1'
 
 module Synapse
   class Haproxy
     include Logging
-    attr_reader :opts, :name
+    attr_reader :opts
 
-    # these come from the documentation for haproxy 1.5
+    # these come from the documentation for haproxy (1.5 and 1.6)
     # http://haproxy.1wt.eu/download/1.5/doc/configuration.txt
-    @@section_fields = {
+    # http://haproxy.1wt.eu/download/1.6/doc/configuration.txt
+    SECTION_FIELDS = {
       "backend" => [
         "acl",
         "appsession",
@@ -23,6 +25,11 @@ module Synapse
         "description",
         "disabled",
         "dispatch",
+        "email-alert from",
+        "email-alert level",
+        "email-alert mailers",
+        "email-alert myhostname",
+        "email-alert to",
         "enabled",
         "errorfile",
         "errorloc",
@@ -37,10 +44,59 @@ module Synapse
         "http-check send-state",
         "http-request",
         "http-response",
+        "http-send-name-header",
+        "http-reuse",
+        "http-send-name-header",
         "id",
         "ignore-persist",
+        "load-server-state-from-file",
         "log",
+        "log-tag",
+        "max-keep-alive-queue",
         "mode",
+        "no log",
+        "no option abortonclose",
+        "no option accept-invalid-http-response",
+        "no option allbackups",
+        "no option allredisp",
+        "no option checkcache",
+        "no option forceclose",
+        "no option forwardfor",
+        "no option http-buffer-request",
+        "no option http-keep-alive",
+        "no option http-no-delay",
+        "no option http-pretend-keepalive",
+        "no option http-server-close",
+        "no option http-tunnel",
+        "no option httpchk",
+        "no option httpclose",
+        "no option httplog",
+        "no option http_proxy",
+        "no option independent-streams",
+        "no option lb-agent-chk",
+        "no option ldap-check",
+        "no option external-check",
+        "no option log-health-checks",
+        "no option mysql-check",
+        "no option pgsql-check",
+        "no option nolinger",
+        "no option originalto",
+        "no option persist",
+        "no option pgsql-check",
+        "no option prefer-last-server",
+        "no option redispatch",
+        "no option redis-check",
+        "no option smtpchk",
+        "no option splice-auto",
+        "no option splice-request",
+        "no option splice-response",
+        "no option srvtcpka",
+        "no option ssl-hello-chk",
+        "no option tcp-check",
+        "no option tcp-smart-connect",
+        "no option tcpka",
+        "no option tcplog",
+        "no option transparent",
         "option abortonclose",
         "option accept-invalid-http-response",
         "option allbackups",
@@ -48,9 +104,12 @@ module Synapse
         "option checkcache",
         "option forceclose",
         "option forwardfor",
+        "option http-buffer-request",
+        "option http-keep-alive",
         "option http-no-delay",
         "option http-pretend-keepalive",
         "option http-server-close",
+        "option http-tunnel",
         "option httpchk",
         "option httpclose",
         "option httplog",
@@ -58,12 +117,15 @@ module Synapse
         "option independent-streams",
         "option lb-agent-chk",
         "option ldap-check",
+        "option external-check",
         "option log-health-checks",
         "option mysql-check",
         "option pgsql-check",
         "option nolinger",
         "option originalto",
         "option persist",
+        "option pgsql-check",
+        "option prefer-last-server",
         "option redispatch",
         "option redis-check",
         "option smtpchk",
@@ -77,6 +139,8 @@ module Synapse
         "option tcpka",
         "option tcplog",
         "option transparent",
+        "external-check command",
+        "external-check path",
         "persist rdp-cookie",
         "redirect",
         "redisp",
@@ -105,6 +169,7 @@ module Synapse
         "rspirep",
         "rsprep",
         "server",
+        "server-state-file-name",
         "source",
         "srvtimeout",
         "stats admin",
@@ -139,6 +204,7 @@ module Synapse
         "timeout http-request",
         "timeout queue",
         "timeout server",
+        "timeout server-fin",
         "timeout srvtimeout",
         "timeout tarpit",
         "timeout tunnel",
@@ -156,6 +222,11 @@ module Synapse
         "default-server",
         "default_backend",
         "disabled",
+        "email-alert from",
+        "email-alert level",
+        "email-alert mailers",
+        "email-alert myhostname",
+        "email-alert to",
         "enabled",
         "errorfile",
         "errorloc",
@@ -166,11 +237,71 @@ module Synapse
         "hash-type",
         "http-check disable-on-404",
         "http-check send-state",
+        "http-reuse",
+        "load-server-state-from-file",
         "log",
+        "log-format",
+        "log-format-sd",
+        "log-tag",
+        "max-keep-alive-queue",
         "maxconn",
         "mode",
         "monitor-net",
         "monitor-uri",
+        "no log",
+        "no option abortonclose",
+        "no option accept-invalid-http-request",
+        "no option accept-invalid-http-response",
+        "no option allbackups",
+        "no option allredisp",
+        "no option checkcache",
+        "no option clitcpka",
+        "no option contstats",
+        "no option dontlog-normal",
+        "no option dontlognull",
+        "no option forceclose",
+        "no option forwardfor",
+        "no option http-buffer-request",
+        "no option http-ignore-probes",
+        "no option http-keep-alive",
+        "no option http-no-delay",
+        "no option http-pretend-keepalive",
+        "no option http-server-close",
+        "no option http-tunnel",
+        "no option http-use-proxy-header",
+        "no option httpchk",
+        "no option httpclose",
+        "no option httplog",
+        "no option http_proxy",
+        "no option independent-streams",
+        "no option lb-agent-chk",
+        "no option ldap-check",
+        "no option external-check",
+        "no option log-health-checks",
+        "no option log-separate-errors",
+        "no option logasap",
+        "no option mysql-check",
+        "no option pgsql-check",
+        "no option nolinger",
+        "no option originalto",
+        "no option persist",
+        "no option pgsql-check",
+        "no option prefer-last-server",
+        "no option redispatch",
+        "no option redis-check",
+        "no option smtpchk",
+        "no option socket-stats",
+        "no option splice-auto",
+        "no option splice-request",
+        "no option splice-response",
+        "no option srvtcpka",
+        "no option ssl-hello-chk",
+        "no option tcp-check",
+        "no option tcp-smart-accept",
+        "no option tcp-smart-connect",
+        "no option tcpka",
+        "no option tcplog",
+        "no option transparent",
         "option abortonclose",
         "option accept-invalid-http-request",
         "option accept-invalid-http-response",
@@ -183,9 +314,13 @@ module Synapse
         "option dontlognull",
         "option forceclose",
         "option forwardfor",
+        "option http-buffer-request",
+        "option http-ignore-probes",
+        "option http-keep-alive",
         "option http-no-delay",
         "option http-pretend-keepalive",
         "option http-server-close",
+        "option http-tunnel",
         "option http-use-proxy-header",
         "option httpchk",
         "option httpclose",
@@ -194,6 +329,7 @@ module Synapse
         "option independent-streams",
         "option lb-agent-chk",
         "option ldap-check",
+        "option external-check",
         "option log-health-checks",
         "option log-separate-errors",
         "option logasap",
@@ -202,6 +338,8 @@ module Synapse
         "option nolinger",
         "option originalto",
         "option persist",
+        "option pgsql-check",
+        "option prefer-last-server",
         "option redispatch",
         "option redis-check",
         "option smtpchk",
@@ -217,11 +355,14 @@ module Synapse
         "option tcpka",
         "option tcplog",
         "option transparent",
+        "external-check command",
+        "external-check path",
         "persist rdp-cookie",
         "rate-limit sessions",
         "redisp",
         "redispatch",
         "retries",
+        "server-state-file-name",
         "source",
         "srvtimeout",
         "stats auth",
@@ -236,6 +377,7 @@ module Synapse
         "stats uri",
         "timeout check",
         "timeout client",
+        "timeout client-fin",
         "timeout clitimeout",
         "timeout connect",
         "timeout contimeout",
@@ -243,6 +385,7 @@ module Synapse
         "timeout http-request",
         "timeout queue",
         "timeout server",
+        "timeout server-fin",
         "timeout srvtimeout",
         "timeout tarpit",
         "timeout tunnel",
@@ -261,9 +404,15 @@ module Synapse
         "capture response header",
         "clitimeout",
         "compression",
+        "declare capture",
         "default_backend",
         "description",
         "disabled",
+        "email-alert from",
+        "email-alert level",
+        "email-alert mailers",
+        "email-alert myhostname",
+        "email-alert to",
         "enabled",
         "errorfile",
         "errorloc",
@@ -276,11 +425,45 @@ module Synapse
         "id",
         "ignore-persist",
         "log",
+        "log-format",
+        "log-format-sd",
+        "log-tag",
         "maxconn",
         "mode",
         "monitor fail",
         "monitor-net",
         "monitor-uri",
+        "no log",
+        "no option accept-invalid-http-request",
+        "no option clitcpka",
+        "no option contstats",
+        "no option dontlog-normal",
+        "no option dontlognull",
+        "no option forceclose",
+        "no option forwardfor",
+        "no option http-buffer-request",
+        "no option http-ignore-probes",
+        "no option http-keep-alive",
+        "no option http-no-delay",
+        "no option http-pretend-keepalive",
+        "no option http-server-close",
+        "no option http-tunnel",
+        "no option http-use-proxy-header",
+        "no option httpclose",
+        "no option httplog",
+        "no option http_proxy",
+        "no option independent-streams",
+        "no option log-separate-errors",
+        "no option logasap",
+        "no option nolinger",
+        "no option originalto",
+        "no option socket-stats",
+        "no option splice-auto",
+        "no option splice-request",
+        "no option splice-response",
+        "no option tcp-smart-accept",
+        "no option tcpka",
+        "no option tcplog",
         "option accept-invalid-http-request",
         "option clitcpka",
         "option contstats",
@@ -288,9 +471,13 @@ module Synapse
         "option dontlognull",
         "option forceclose",
         "option forwardfor",
+        "option http-buffer-request",
+        "option http-ignore-probes",
+        "option http-keep-alive",
         "option http-no-delay",
         "option http-pretend-keepalive",
         "option http-server-close",
+        "option http-tunnel",
         "option http-use-proxy-header",
         "option httpclose",
         "option httplog",
@@ -331,10 +518,23 @@ module Synapse
         "rspideny",
         "rspirep",
         "rsprep",
+        "stats admin",
+        "stats auth",
+        "stats enable",
+        "stats hide-version",
+        "stats http-request",
+        "stats realm",
+        "stats refresh",
+        "stats scope",
+        "stats show-desc",
+        "stats show-legends",
+        "stats show-node",
+        "stats uri",
         "tcp-request connection",
         "tcp-request content",
         "tcp-request inspect-delay",
         "timeout client",
+        "timeout client-fin",
         "timeout clitimeout",
         "timeout http-keep-alive",
         "timeout http-request",
@@ -358,11 +558,17 @@ module Synapse
         "compression",
         "contimeout",
         "cookie",
+        "declare capture",
         "default-server",
         "default_backend",
         "description",
         "disabled",
         "dispatch",
+        "email-alert from",
+        "email-alert level",
+        "email-alert mailers",
+        "email-alert myhostname",
+        "email-alert to",
         "enabled",
         "errorfile",
         "errorloc",
@@ -377,14 +583,76 @@ module Synapse
         "http-check send-state",
         "http-request",
         "http-response",
+        "http-send-name-header",
+        "http-reuse",
+        "http-send-name-header",
         "id",
         "ignore-persist",
+        "load-server-state-from-file",
         "log",
+        "log-format",
+        "log-format-sd",
+        "log-tag",
+        "max-keep-alive-queue",
         "maxconn",
         "mode",
         "monitor fail",
         "monitor-net",
         "monitor-uri",
+        "no log",
+        "no option abortonclose",
+        "no option accept-invalid-http-request",
+        "no option accept-invalid-http-response",
+        "no option allbackups",
+        "no option allredisp",
+        "no option checkcache",
+        "no option clitcpka",
+        "no option contstats",
+        "no option dontlog-normal",
+        "no option dontlognull",
+        "no option forceclose",
+        "no option forwardfor",
+        "no option http-buffer-request",
+        "no option http-ignore-probes",
+        "no option http-keep-alive",
+        "no option http-no-delay",
+        "no option http-pretend-keepalive",
+        "no option http-server-close",
+        "no option http-tunnel",
+        "no option http-use-proxy-header",
+        "no option httpchk",
+        "no option httpclose",
+        "no option httplog",
+        "no option http_proxy",
+        "no option independent-streams",
+        "no option lb-agent-chk",
+        "no option ldap-check",
+        "no option external-check",
+        "no option log-health-checks",
+        "no option log-separate-errors",
+        "no option logasap",
+        "no option mysql-check",
+        "no option pgsql-check",
+        "no option nolinger",
+        "no option originalto",
+        "no option persist",
+        "no option pgsql-check",
+        "no option prefer-last-server",
+        "no option redispatch",
+        "no option redis-check",
+        "no option smtpchk",
+        "no option socket-stats",
+        "no option splice-auto",
+        "no option splice-request",
+        "no option splice-response",
+        "no option srvtcpka",
+        "no option ssl-hello-chk",
+        "no option tcp-check",
+        "no option tcp-smart-accept",
+        "no option tcp-smart-connect",
+        "no option tcpka",
+        "no option tcplog",
+        "no option transparent",
         "option abortonclose",
         "option accept-invalid-http-request",
         "option accept-invalid-http-response",
@@ -397,9 +665,13 @@ module Synapse
         "option dontlognull",
         "option forceclose",
         "option forwardfor",
+        "option http-buffer-request",
+        "option http-ignore-probes",
+        "option http-keep-alive",
         "option http-no-delay",
         "option http-pretend-keepalive",
         "option http-server-close",
+        "option http-tunnel",
         "option http-use-proxy-header",
         "option httpchk",
         "option httpclose",
@@ -408,6 +680,7 @@ module Synapse
         "option independent-streams",
         "option lb-agent-chk",
         "option ldap-check",
+        "option external-check",
         "option log-health-checks",
         "option log-separate-errors",
         "option logasap",
@@ -416,6 +689,8 @@ module Synapse
         "option nolinger",
         "option originalto",
         "option persist",
+        "option pgsql-check",
+        "option prefer-last-server",
         "option redispatch",
         "option redis-check",
         "option smtpchk",
@@ -431,6 +706,8 @@ module Synapse
         "option tcpka",
         "option tcplog",
         "option transparent",
+        "external-check command",
+        "external-check path",
         "persist rdp-cookie",
         "rate-limit sessions",
         "redirect",
@@ -460,6 +737,7 @@ module Synapse
         "rspirep",
         "rsprep",
         "server",
+        "server-state-file-name",
         "source",
         "srvtimeout",
         "stats admin",
@@ -490,6 +768,7 @@ module Synapse
         "tcp-response inspect-delay",
         "timeout check",
         "timeout client",
+        "timeout client-fin",
         "timeout clitimeout",
         "timeout connect",
         "timeout contimeout",
@@ -497,6 +776,7 @@ module Synapse
         "timeout http-request",
         "timeout queue",
         "timeout server",
+        "timeout server-fin",
         "timeout srvtimeout",
         "timeout tarpit",
         "timeout tunnel",
@@ -506,7 +786,10 @@ module Synapse
         "use_backend",
         "use-server"
       ]
-    }
+    }.freeze
+
+    DEFAULT_STATE_FILE_TTL = (60 * 60 * 24).freeze # 24 hours
+    STATE_FILE_UPDATE_INTERVAL = 60.freeze # iterations; not a unit of time
 
     def initialize(opts)
       super()
@@ -527,7 +810,6 @@ module Synapse
       end
 
       @opts = opts
-      @name = 'haproxy'
 
       @opts['do_writes'] = true unless @opts.key?('do_writes')
       @opts['do_socket'] = true unless @opts.key?('do_socket')
@@ -546,20 +828,15 @@ module Synapse
       @watcher_configs = {}
 
       @state_file_path = @opts['state_file_path']
-      @state_file_ttl = @opts.fetch('state_file_ttl', 60 * 60 * 24).to_i
-      @seen = {}
-
-      unless @state_file_path.nil?
-        begin
-          @seen = JSON.load(File.read(@state_file_path))
-        rescue StandardError => e
-          # It's ok if the state file doesn't exist
-        end
-      end
+      @state_file_ttl = @opts.fetch('state_file_ttl', DEFAULT_STATE_FILE_TTL).to_i
+    end
+
+    def name
+      'haproxy'
     end
 
     def tick(watchers)
-      if @time % 60 == 0 && !@state_file_path.nil?
+      if (@time % STATE_FILE_UPDATE_INTERVAL) == 0
         update_state_file(watchers)
       end
 
@@ -654,7 +931,7 @@ module Synapse
         config[section].concat(
           watcher.haproxy['listen'].select {|setting|
             parsed_setting = setting.strip.gsub(/\s+/, ' ').downcase
-            @@section_fields[section].any? {|field| parsed_setting.start_with?(field)}
+            SECTION_FIELDS[section].any? {|field| parsed_setting.start_with?(field)}
           })
 
         # pick only those fields that are valid and warn about the invalid ones
@@ -667,7 +944,7 @@ module Synapse
     def validate_haproxy_stanza(stanza, stanza_type, service_name)
       return stanza.select {|setting|
         parsed_setting = setting.strip.gsub(/\s+/, ' ').downcase
-        if @@section_fields[stanza_type].any? {|field| parsed_setting.start_with?(field)}
+        if SECTION_FIELDS[stanza_type].any? {|field| parsed_setting.start_with?(field)}
           true
         else
           log.warn "synapse: service #{service_name} contains invalid #{stanza_type} setting: '#{setting}', discarding"
@@ -696,7 +973,7 @@ module Synapse
 
       # The ordering here is important.  First we add all the backends in the
       # disabled state...
-      @seen.fetch(watcher.name, []).each do |backend_name, backend|
+      seen.fetch(watcher.name, []).each do |backend_name, backend|
         backends[backend_name] = backend.merge('enabled' => false)
       end
 
@@ -731,13 +1008,21 @@ module Synapse
       else
         backends.keys.shuffle
       end
+
       stanza = [
         "\nbackend #{watcher.haproxy.fetch('backend_name', watcher.name)}",
         config.map {|c| "\t#{c}"},
         keys.map {|backend_name|
           backend = backends[backend_name]
           b = "\tserver #{backend_name} #{backend['host']}:#{backend['port']}"
-          b = "#{b} cookie #{backend_name}" unless config.include?('mode tcp')
+          unless config.include?('mode tcp')
+            b = case watcher.haproxy['cookie_value_method']
+            when 'hash'
+              b = "#{b} cookie #{Digest::SHA1.hexdigest(backend_name)}"
+            else
+              b = "#{b} cookie #{backend_name}"
+            end
+          end
           b = "#{b} #{watcher.haproxy['server_options']}" if watcher.haproxy['server_options']
           b = "#{b} #{backend['haproxy_server_options']}" if backend['haproxy_server_options']
           b = "#{b} disabled" unless backend['enabled']
@@ -745,16 +1030,24 @@ module Synapse
       ]
     end
 
+    def haproxy_exec(command)
+      s = UNIXSocket.new(@opts['socket_file_path'])
+      s.write(command)
+      s.read
+    ensure
+      s.close if s
+    end
+
     # tries to set active backends via haproxy's stats socket
     # because we can't add backends via the socket, we might still need to restart haproxy
     def update_backends(watchers)
       # first, get a list of existing servers for various backends
       begin
-        s = UNIXSocket.new(@opts['socket_file_path'])
-        s.write("show stat\n")
-        info = s.read()
+        stat_command = "show stat\n"
+        info = haproxy_exec(stat_command)
       rescue StandardError => e
-        log.warn "synapse: unhandled error reading stats socket: #{e.inspect}"
+        log.warn "synapse: restart required because socket command #{stat_command} failed "\
+                 "with error #{e.inspect}"
         @restart_required = true
         return
       end
@@ -805,15 +1098,15 @@ module Synapse
 
           # actually write the command to the socket
           begin
-            s = UNIXSocket.new(@opts['socket_file_path'])
-            s.write(command)
-            output = s.read()
+            output = haproxy_exec(command)
           rescue StandardError => e
-            log.warn "synapse: unknown error writing to socket"
+            log.warn "synapse: restart required because socket command #{command} failed with "\
+                     "error #{e.inspect}"
             @restart_required = true
           else
             unless output == "\n"
-              log.warn "synapse: socket command #{command} failed: #{output}"
+              log.warn "synapse: restart required because socket command #{command} failed with "\
+                      "output #{output}"
               @restart_required = true
             end
           end
@@ -865,19 +1158,34 @@ module Synapse
     def construct_name(backend)
       name = "#{backend['host']}:#{backend['port']}"
       if backend['name'] && !backend['name'].empty?
-        name = "#{name}_#{backend['name']}"
+        name = "#{backend['name']}_#{name}"
       end
 
       return name
     end
 
+    ######################################
+    # methods for managing the state file
+    ######################################
+    def seen
+      # if we don't support the state file, return nothing
+      return {} if @state_file_path.nil?
+
+      # if we've never needed the backends, now is the time to load them
+      @seen = read_state_file if @seen.nil?
+
+      @seen
+    end
+
     def update_state_file(watchers)
-      log.info "synapse: writing state file"
+      # if we don't support the state file, do nothing
+      return if @state_file_path.nil?
 
+      log.info "synapse: writing state file"
       timestamp = Time.now.to_i
 
       # Remove stale backends
-      @seen.each do |watcher_name, backends|
+      seen.each do |watcher_name, backends|
         backends.each do |backend_name, backend|
           ts = backend.fetch('timestamp', 0)
           delta = (timestamp - ts).abs
@@ -889,23 +1197,35 @@ module Synapse
       end
 
       # Remove any services which no longer have any backends
-      @seen = @seen.reject{|watcher_name, backends| backends.keys.length == 0}
+      seen.reject!{|watcher_name, backends| backends.keys.length == 0}
 
       # Add backends from watchers
       watchers.each do |watcher|
-        unless @seen.key?(watcher.name)
-          @seen[watcher.name] = {}
-        end
+        seen[watcher.name] ||= {}
 
         watcher.backends.each do |backend|
           backend_name = construct_name(backend)
-          @seen[watcher.name][backend_name] = backend.merge('timestamp' => timestamp)
+          seen[watcher.name][backend_name] = backend.merge('timestamp' => timestamp)
         end
       end
 
-      # Atomically write new state file
+      # write the data!
+      write_data_to_state_file(seen)
+    end
+
+    def read_state_file
+      # Some versions of JSON return nil on an empty file ...
+      JSON.load(File.read(@state_file_path)) || {}
+    rescue StandardError => e
+      # It's ok if the state file doesn't exist or contains invalid data
+      # The state file will be rebuilt automatically
+      {}
+    end
+
+    # we do this atomically so the state file is always consistent
+    def write_data_to_state_file(data)
       tmp_state_file_path = @state_file_path + ".tmp"
-      File.write(tmp_state_file_path, JSON.pretty_generate(@seen))
+      File.write(tmp_state_file_path, JSON.pretty_generate(data))
       FileUtils.mv(tmp_state_file_path, @state_file_path)
     end
   end