itsi-server 0.1.1 → 0.1.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of itsi-server might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/exe/itsi +88 -28
- data/ext/itsi_error/Cargo.toml +2 -0
- data/ext/itsi_error/src/from.rs +71 -0
- data/ext/itsi_error/src/lib.rs +12 -37
- data/ext/itsi_instrument_entry/Cargo.toml +15 -0
- data/ext/itsi_instrument_entry/src/lib.rs +31 -0
- data/ext/itsi_rb_helpers/Cargo.toml +2 -0
- data/ext/itsi_rb_helpers/src/heap_value.rs +121 -0
- data/ext/itsi_rb_helpers/src/lib.rs +90 -10
- data/ext/itsi_scheduler/Cargo.toml +24 -0
- data/ext/itsi_scheduler/extconf.rb +6 -0
- data/ext/itsi_scheduler/src/itsi_scheduler/io_helpers.rs +56 -0
- data/ext/itsi_scheduler/src/itsi_scheduler/io_waiter.rs +44 -0
- data/ext/itsi_scheduler/src/itsi_scheduler/timer.rs +44 -0
- data/ext/itsi_scheduler/src/itsi_scheduler.rs +308 -0
- data/ext/itsi_scheduler/src/lib.rs +38 -0
- data/ext/itsi_server/Cargo.toml +20 -3
- data/ext/itsi_server/extconf.rb +1 -1
- data/ext/itsi_server/src/body_proxy/big_bytes.rs +104 -0
- data/ext/itsi_server/src/body_proxy/itsi_body_proxy.rs +122 -0
- data/ext/itsi_server/src/body_proxy/mod.rs +2 -0
- data/ext/itsi_server/src/lib.rs +61 -7
- data/ext/itsi_server/src/request/itsi_request.rs +238 -104
- data/ext/itsi_server/src/response/itsi_response.rs +347 -0
- data/ext/itsi_server/src/response/mod.rs +1 -0
- data/ext/itsi_server/src/server/bind.rs +54 -23
- data/ext/itsi_server/src/server/bind_protocol.rs +37 -0
- data/ext/itsi_server/src/server/io_stream.rs +104 -0
- data/ext/itsi_server/src/server/itsi_ca/itsi_ca.crt +11 -30
- data/ext/itsi_server/src/server/itsi_ca/itsi_ca.key +3 -50
- data/ext/itsi_server/src/server/itsi_server.rs +196 -134
- data/ext/itsi_server/src/server/lifecycle_event.rs +9 -0
- data/ext/itsi_server/src/server/listener.rs +241 -132
- data/ext/itsi_server/src/server/mod.rs +7 -1
- data/ext/itsi_server/src/server/process_worker.rs +196 -0
- data/ext/itsi_server/src/server/serve_strategy/cluster_mode.rs +254 -0
- data/ext/itsi_server/src/server/serve_strategy/mod.rs +27 -0
- data/ext/itsi_server/src/server/serve_strategy/single_mode.rs +247 -0
- data/ext/itsi_server/src/server/signal.rs +70 -0
- data/ext/itsi_server/src/server/thread_worker.rs +368 -0
- data/ext/itsi_server/src/server/tls/locked_dir_cache.rs +132 -0
- data/ext/itsi_server/src/server/tls.rs +137 -52
- data/ext/itsi_tracing/Cargo.toml +4 -0
- data/ext/itsi_tracing/src/lib.rs +36 -6
- data/lib/itsi/request.rb +30 -14
- data/lib/itsi/server/rack/handler/itsi.rb +25 -0
- data/lib/itsi/server/scheduler_mode.rb +6 -0
- data/lib/itsi/server/version.rb +1 -1
- data/lib/itsi/server.rb +82 -2
- data/lib/itsi/signals.rb +23 -0
- data/lib/itsi/stream_io.rb +38 -0
- metadata +39 -25
- data/ext/itsi_server/src/server/transfer_protocol.rs +0 -23
- data/ext/itsi_server/src/stream_writer/mod.rs +0 -21
|
@@ -1,61 +1,139 @@
|
|
|
1
1
|
use super::bind::{Bind, BindAddress};
|
|
2
|
-
use super::
|
|
3
|
-
use
|
|
4
|
-
use
|
|
2
|
+
use super::bind_protocol::BindProtocol;
|
|
3
|
+
use super::io_stream::IoStream;
|
|
4
|
+
use super::tls::ItsiTlsAcceptor;
|
|
5
|
+
use itsi_error::{ItsiError, Result};
|
|
5
6
|
use itsi_tracing::info;
|
|
6
7
|
use socket2::{Domain, Protocol, Socket, Type};
|
|
7
|
-
use std::net::{IpAddr, SocketAddr, TcpListener
|
|
8
|
-
use std::pin::Pin;
|
|
8
|
+
use std::net::{IpAddr, SocketAddr, TcpListener};
|
|
9
9
|
use std::sync::Arc;
|
|
10
|
-
use std::{os::unix::net::UnixListener
|
|
11
|
-
use tokio::net::
|
|
10
|
+
use std::{os::unix::net::UnixListener, path::PathBuf};
|
|
11
|
+
use tokio::net::TcpListener as TokioTcpListener;
|
|
12
|
+
use tokio::net::UnixListener as TokioUnixListener;
|
|
13
|
+
use tokio::net::{unix, TcpStream, UnixStream};
|
|
12
14
|
use tokio_rustls::TlsAcceptor;
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
tokio::io::AsyncRead + tokio::io::AsyncWrite + Send + Unpin
|
|
16
|
-
{
|
|
17
|
-
}
|
|
18
|
-
impl<T: tokio::io::AsyncRead + tokio::io::AsyncWrite + Send + Unpin> IoStream for T {}
|
|
15
|
+
use tokio_stream::StreamExt;
|
|
16
|
+
use tracing::error;
|
|
19
17
|
|
|
20
18
|
pub(crate) enum Listener {
|
|
21
19
|
Tcp(TcpListener),
|
|
22
|
-
TcpTls((TcpListener,
|
|
20
|
+
TcpTls((TcpListener, ItsiTlsAcceptor)),
|
|
23
21
|
Unix(UnixListener),
|
|
24
|
-
UnixTls((UnixListener,
|
|
22
|
+
UnixTls((UnixListener, ItsiTlsAcceptor)),
|
|
25
23
|
}
|
|
26
24
|
|
|
27
|
-
enum
|
|
28
|
-
|
|
29
|
-
|
|
25
|
+
pub(crate) enum TokioListener {
|
|
26
|
+
Tcp {
|
|
27
|
+
listener: TokioTcpListener,
|
|
28
|
+
host: String,
|
|
29
|
+
port: u16,
|
|
30
|
+
},
|
|
31
|
+
TcpTls {
|
|
32
|
+
listener: TokioTcpListener,
|
|
33
|
+
acceptor: ItsiTlsAcceptor,
|
|
34
|
+
host: String,
|
|
35
|
+
port: u16,
|
|
36
|
+
},
|
|
37
|
+
Unix {
|
|
38
|
+
listener: TokioUnixListener,
|
|
39
|
+
},
|
|
40
|
+
UnixTls {
|
|
41
|
+
listener: TokioUnixListener,
|
|
42
|
+
acceptor: ItsiTlsAcceptor,
|
|
43
|
+
},
|
|
30
44
|
}
|
|
31
45
|
|
|
32
|
-
|
|
33
|
-
pub
|
|
34
|
-
Tcp(Arc<SocketAddr>),
|
|
35
|
-
Unix(Arc<unix::SocketAddr>),
|
|
36
|
-
}
|
|
37
|
-
impl std::fmt::Display for SockAddr {
|
|
38
|
-
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
|
|
46
|
+
impl TokioListener {
|
|
47
|
+
pub fn unbind(self) {
|
|
39
48
|
match self {
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
49
|
+
TokioListener::Tcp { listener, .. } => drop(listener.into_std().unwrap()),
|
|
50
|
+
TokioListener::TcpTls { listener, .. } => drop(listener.into_std().unwrap()),
|
|
51
|
+
TokioListener::Unix { listener } => drop(listener.into_std().unwrap()),
|
|
52
|
+
TokioListener::UnixTls { listener, .. } => drop(listener.into_std().unwrap()),
|
|
53
|
+
};
|
|
54
|
+
}
|
|
55
|
+
pub(crate) async fn accept(&self) -> Result<IoStream> {
|
|
56
|
+
match self {
|
|
57
|
+
TokioListener::Tcp { listener, .. } => TokioListener::accept_tcp(listener).await,
|
|
58
|
+
TokioListener::TcpTls {
|
|
59
|
+
listener, acceptor, ..
|
|
60
|
+
} => TokioListener::accept_tls(listener, acceptor).await,
|
|
61
|
+
TokioListener::Unix { listener, .. } => TokioListener::accept_unix(listener).await,
|
|
62
|
+
TokioListener::UnixTls {
|
|
63
|
+
listener, acceptor, ..
|
|
64
|
+
} => TokioListener::accept_unix_tls(listener, acceptor).await,
|
|
45
65
|
}
|
|
46
66
|
}
|
|
47
|
-
}
|
|
48
67
|
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
68
|
+
async fn accept_tcp(listener: &TokioTcpListener) -> Result<IoStream> {
|
|
69
|
+
let tcp_stream = listener.accept().await?;
|
|
70
|
+
Self::to_tokio_io(Stream::TcpStream(tcp_stream), None).await
|
|
71
|
+
}
|
|
72
|
+
|
|
73
|
+
pub async fn spawn_state_task(&self) {
|
|
74
|
+
if let TokioListener::TcpTls {
|
|
75
|
+
acceptor: ItsiTlsAcceptor::Automatic(_acme_acceptor, state, _server_config),
|
|
76
|
+
..
|
|
77
|
+
} = self
|
|
78
|
+
{
|
|
79
|
+
let mut state = state.lock().await;
|
|
80
|
+
loop {
|
|
81
|
+
match StreamExt::next(&mut *state).await {
|
|
82
|
+
Some(event) => info!("Received acme event: {:?}", event),
|
|
83
|
+
None => error!("Received no acme event"),
|
|
84
|
+
}
|
|
55
85
|
}
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
86
|
+
}
|
|
87
|
+
}
|
|
88
|
+
|
|
89
|
+
async fn accept_tls(
|
|
90
|
+
listener: &TokioTcpListener,
|
|
91
|
+
acceptor: &ItsiTlsAcceptor,
|
|
92
|
+
) -> Result<IoStream> {
|
|
93
|
+
let tcp_stream = listener.accept().await?;
|
|
94
|
+
match acceptor {
|
|
95
|
+
ItsiTlsAcceptor::Manual(tls_acceptor) => {
|
|
96
|
+
Self::to_tokio_io(Stream::TcpStream(tcp_stream), Some(tls_acceptor)).await
|
|
97
|
+
}
|
|
98
|
+
ItsiTlsAcceptor::Automatic(acme_acceptor, _, rustls_config) => {
|
|
99
|
+
let accept_future = acme_acceptor.accept(tcp_stream.0);
|
|
100
|
+
match accept_future.await {
|
|
101
|
+
Ok(None) => Err(ItsiError::Pass()),
|
|
102
|
+
Ok(Some(start_handshake)) => {
|
|
103
|
+
let tls_stream = start_handshake.into_stream(rustls_config.clone()).await?;
|
|
104
|
+
Ok(IoStream::TcpTls {
|
|
105
|
+
stream: tls_stream,
|
|
106
|
+
addr: SockAddr::Tcp(Arc::new(tcp_stream.1)),
|
|
107
|
+
})
|
|
108
|
+
}
|
|
109
|
+
Err(error) => {
|
|
110
|
+
error!(error = format!("{:?}", error));
|
|
111
|
+
Err(ItsiError::Pass())
|
|
112
|
+
}
|
|
113
|
+
}
|
|
114
|
+
}
|
|
115
|
+
}
|
|
116
|
+
}
|
|
117
|
+
|
|
118
|
+
async fn accept_unix(listener: &TokioUnixListener) -> Result<IoStream> {
|
|
119
|
+
let unix_stream = listener.accept().await?;
|
|
120
|
+
Self::to_tokio_io(Stream::UnixStream(unix_stream), None).await
|
|
121
|
+
}
|
|
122
|
+
|
|
123
|
+
async fn accept_unix_tls(
|
|
124
|
+
listener: &TokioUnixListener,
|
|
125
|
+
acceptor: &ItsiTlsAcceptor,
|
|
126
|
+
) -> Result<IoStream> {
|
|
127
|
+
let unix_stream = listener.accept().await?;
|
|
128
|
+
match acceptor {
|
|
129
|
+
ItsiTlsAcceptor::Manual(tls_acceptor) => {
|
|
130
|
+
Self::to_tokio_io(Stream::UnixStream(unix_stream), Some(tls_acceptor)).await
|
|
131
|
+
}
|
|
132
|
+
ItsiTlsAcceptor::Automatic(_, _, _) => {
|
|
133
|
+
error!("Automatic TLS not supported on Unix sockets");
|
|
134
|
+
Err(ItsiError::UnsupportedProtocol(
|
|
135
|
+
"Automatic TLS on Unix Sockets".to_owned(),
|
|
136
|
+
))
|
|
59
137
|
}
|
|
60
138
|
}
|
|
61
139
|
}
|
|
@@ -63,156 +141,187 @@ impl Listener {
|
|
|
63
141
|
async fn to_tokio_io(
|
|
64
142
|
input_stream: Stream,
|
|
65
143
|
tls_acceptor: Option<&TlsAcceptor>,
|
|
66
|
-
) -> Result<
|
|
144
|
+
) -> Result<IoStream> {
|
|
67
145
|
match tls_acceptor {
|
|
68
146
|
Some(acceptor) => match input_stream {
|
|
69
147
|
Stream::TcpStream((tcp_stream, socket_address)) => {
|
|
70
148
|
match acceptor.accept(tcp_stream).await {
|
|
71
|
-
Ok(tls_stream) => Ok(
|
|
72
|
-
|
|
73
|
-
SockAddr::Tcp(Arc::new(socket_address)),
|
|
74
|
-
)
|
|
149
|
+
Ok(tls_stream) => Ok(IoStream::TcpTls {
|
|
150
|
+
stream: tls_stream,
|
|
151
|
+
addr: SockAddr::Tcp(Arc::new(socket_address)),
|
|
152
|
+
}),
|
|
75
153
|
Err(err) => Err(err.into()),
|
|
76
154
|
}
|
|
77
155
|
}
|
|
78
156
|
Stream::UnixStream((unix_stream, socket_address)) => {
|
|
79
157
|
match acceptor.accept(unix_stream).await {
|
|
80
|
-
Ok(tls_stream) => Ok(
|
|
81
|
-
|
|
82
|
-
SockAddr::Unix(Arc::new(socket_address)),
|
|
83
|
-
)
|
|
158
|
+
Ok(tls_stream) => Ok(IoStream::UnixTls {
|
|
159
|
+
stream: tls_stream,
|
|
160
|
+
addr: SockAddr::Unix(Arc::new(socket_address)),
|
|
161
|
+
}),
|
|
84
162
|
Err(err) => Err(err.into()),
|
|
85
163
|
}
|
|
86
164
|
}
|
|
87
165
|
},
|
|
88
166
|
None => match input_stream {
|
|
89
|
-
Stream::TcpStream((tcp_stream, socket_address)) => Ok(
|
|
90
|
-
|
|
91
|
-
SockAddr::Tcp(Arc::new(socket_address)),
|
|
92
|
-
)
|
|
93
|
-
Stream::UnixStream((unix_stream, socket_address)) => Ok(
|
|
94
|
-
|
|
95
|
-
SockAddr::Unix(Arc::new(socket_address)),
|
|
96
|
-
)
|
|
167
|
+
Stream::TcpStream((tcp_stream, socket_address)) => Ok(IoStream::Tcp {
|
|
168
|
+
stream: tcp_stream,
|
|
169
|
+
addr: SockAddr::Tcp(Arc::new(socket_address)),
|
|
170
|
+
}),
|
|
171
|
+
Stream::UnixStream((unix_stream, socket_address)) => Ok(IoStream::Unix {
|
|
172
|
+
stream: unix_stream,
|
|
173
|
+
addr: SockAddr::Unix(Arc::new(socket_address)),
|
|
174
|
+
}),
|
|
97
175
|
},
|
|
98
176
|
}
|
|
99
177
|
}
|
|
100
178
|
|
|
101
|
-
|
|
102
|
-
|
|
103
|
-
|
|
104
|
-
|
|
105
|
-
|
|
179
|
+
pub(crate) fn scheme(&self) -> String {
|
|
180
|
+
match self {
|
|
181
|
+
TokioListener::Tcp { .. } => "http".to_string(),
|
|
182
|
+
TokioListener::TcpTls { .. } => "https".to_string(),
|
|
183
|
+
TokioListener::Unix { .. } => "http".to_string(),
|
|
184
|
+
TokioListener::UnixTls { .. } => "https".to_string(),
|
|
185
|
+
}
|
|
106
186
|
}
|
|
107
187
|
|
|
108
|
-
|
|
109
|
-
|
|
110
|
-
|
|
111
|
-
|
|
112
|
-
|
|
113
|
-
|
|
188
|
+
pub(crate) fn port(&self) -> u16 {
|
|
189
|
+
match self {
|
|
190
|
+
TokioListener::Tcp { port, .. } => *port,
|
|
191
|
+
TokioListener::TcpTls { port, .. } => *port,
|
|
192
|
+
TokioListener::Unix { .. } => 0,
|
|
193
|
+
TokioListener::UnixTls { .. } => 0,
|
|
194
|
+
}
|
|
114
195
|
}
|
|
115
196
|
|
|
116
|
-
|
|
117
|
-
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
197
|
+
pub(crate) fn host(&self) -> String {
|
|
198
|
+
match self {
|
|
199
|
+
TokioListener::Tcp { host, .. } => host.to_string(),
|
|
200
|
+
TokioListener::TcpTls { host, .. } => host.to_string(),
|
|
201
|
+
TokioListener::Unix { .. } => "unix".to_string(),
|
|
202
|
+
TokioListener::UnixTls { .. } => "unix".to_string(),
|
|
203
|
+
}
|
|
121
204
|
}
|
|
205
|
+
}
|
|
122
206
|
|
|
123
|
-
|
|
124
|
-
|
|
125
|
-
|
|
126
|
-
|
|
127
|
-
let unix_stream = listener.accept().await?;
|
|
128
|
-
Self::to_tokio_io(Stream::UnixStream(unix_stream), Some(acceptor)).await
|
|
129
|
-
}
|
|
207
|
+
enum Stream {
|
|
208
|
+
TcpStream((TcpStream, SocketAddr)),
|
|
209
|
+
UnixStream((UnixStream, unix::SocketAddr)),
|
|
210
|
+
}
|
|
130
211
|
|
|
131
|
-
|
|
212
|
+
#[derive(Clone, Debug)]
|
|
213
|
+
pub enum SockAddr {
|
|
214
|
+
Tcp(Arc<SocketAddr>),
|
|
215
|
+
Unix(Arc<unix::SocketAddr>),
|
|
216
|
+
}
|
|
217
|
+
impl std::fmt::Display for SockAddr {
|
|
218
|
+
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
|
|
132
219
|
match self {
|
|
133
|
-
|
|
134
|
-
|
|
135
|
-
|
|
136
|
-
|
|
220
|
+
SockAddr::Tcp(socket_addr) => write!(f, "{}", socket_addr.ip().to_canonical()),
|
|
221
|
+
SockAddr::Unix(socket_addr) => match socket_addr.as_pathname() {
|
|
222
|
+
Some(path) => write!(f, "{:?}", path),
|
|
223
|
+
None => write!(f, ""),
|
|
224
|
+
},
|
|
137
225
|
}
|
|
138
226
|
}
|
|
227
|
+
}
|
|
139
228
|
|
|
140
|
-
|
|
229
|
+
impl Listener {
|
|
230
|
+
pub fn unbind(self) {
|
|
141
231
|
match self {
|
|
142
|
-
Listener::Tcp(listener) => listener
|
|
143
|
-
Listener::TcpTls((listener, _)) => listener
|
|
144
|
-
Listener::Unix(
|
|
145
|
-
Listener::UnixTls(_) =>
|
|
146
|
-
}
|
|
232
|
+
Listener::Tcp(listener) => drop(listener),
|
|
233
|
+
Listener::TcpTls((listener, _)) => drop(listener),
|
|
234
|
+
Listener::Unix(listener) => drop(listener),
|
|
235
|
+
Listener::UnixTls((listener, _)) => drop(listener),
|
|
236
|
+
};
|
|
147
237
|
}
|
|
148
|
-
|
|
149
|
-
pub(crate) fn host(&self) -> String {
|
|
238
|
+
pub fn to_tokio_listener(&self) -> TokioListener {
|
|
150
239
|
match self {
|
|
151
|
-
Listener::Tcp(listener) =>
|
|
152
|
-
|
|
153
|
-
|
|
154
|
-
|
|
240
|
+
Listener::Tcp(listener) => TokioListener::Tcp {
|
|
241
|
+
listener: TokioTcpListener::from_std(TcpListener::try_clone(listener).unwrap())
|
|
242
|
+
.unwrap(),
|
|
243
|
+
host: listener
|
|
244
|
+
.local_addr()
|
|
245
|
+
.unwrap()
|
|
246
|
+
.ip()
|
|
247
|
+
.to_canonical()
|
|
248
|
+
.to_string(),
|
|
249
|
+
port: listener.local_addr().unwrap().port(),
|
|
250
|
+
},
|
|
251
|
+
Listener::TcpTls((listener, acceptor)) => TokioListener::TcpTls {
|
|
252
|
+
listener: TokioTcpListener::from_std(TcpListener::try_clone(listener).unwrap())
|
|
253
|
+
.unwrap(),
|
|
254
|
+
acceptor: acceptor.clone(),
|
|
255
|
+
host: listener
|
|
256
|
+
.local_addr()
|
|
257
|
+
.unwrap()
|
|
258
|
+
.ip()
|
|
259
|
+
.to_canonical()
|
|
260
|
+
.to_string(),
|
|
261
|
+
port: listener.local_addr().unwrap().port(),
|
|
262
|
+
},
|
|
263
|
+
Listener::Unix(listener) => TokioListener::Unix {
|
|
264
|
+
listener: TokioUnixListener::from_std(UnixListener::try_clone(listener).unwrap())
|
|
265
|
+
.unwrap(),
|
|
266
|
+
},
|
|
267
|
+
Listener::UnixTls((listener, acceptor)) => TokioListener::UnixTls {
|
|
268
|
+
listener: TokioUnixListener::from_std(UnixListener::try_clone(listener).unwrap())
|
|
269
|
+
.unwrap(),
|
|
270
|
+
acceptor: acceptor.clone(),
|
|
271
|
+
},
|
|
155
272
|
}
|
|
156
273
|
}
|
|
157
274
|
}
|
|
158
275
|
|
|
159
|
-
impl
|
|
160
|
-
|
|
161
|
-
|
|
276
|
+
impl TryFrom<Bind> for Listener {
|
|
277
|
+
type Error = itsi_error::ItsiError;
|
|
278
|
+
|
|
279
|
+
fn try_from(bind: Bind) -> std::result::Result<Self, Self::Error> {
|
|
280
|
+
let bound = match bind.address {
|
|
162
281
|
BindAddress::Ip(addr) => match bind.protocol {
|
|
163
|
-
|
|
164
|
-
|
|
165
|
-
|
|
166
|
-
|
|
167
|
-
let tcp_listener =
|
|
168
|
-
TcpListener::from_std(connect_tcp_socket(addr, bind.port.unwrap()))
|
|
169
|
-
.unwrap();
|
|
170
|
-
let tls_acceptor = TlsAcceptor::from(Arc::new(bind.tls_config.unwrap()));
|
|
171
|
-
Listener::TcpTls((tcp_listener, tls_acceptor))
|
|
282
|
+
BindProtocol::Http => Listener::Tcp(connect_tcp_socket(addr, bind.port.unwrap())?),
|
|
283
|
+
BindProtocol::Https => {
|
|
284
|
+
let tcp_listener = connect_tcp_socket(addr, bind.port.unwrap())?;
|
|
285
|
+
Listener::TcpTls((tcp_listener, bind.tls_config.unwrap()))
|
|
172
286
|
}
|
|
173
287
|
_ => unreachable!(),
|
|
174
288
|
},
|
|
175
289
|
BindAddress::UnixSocket(path) => match bind.tls_config {
|
|
176
|
-
Some(tls_config) =>
|
|
177
|
-
|
|
178
|
-
Listener::UnixTls((
|
|
179
|
-
UnixListener::from_std(connect_unix_socket(&path)).unwrap(),
|
|
180
|
-
tls_acceptor,
|
|
181
|
-
))
|
|
182
|
-
}
|
|
183
|
-
None => Listener::Unix(UnixListener::from_std(connect_unix_socket(&path)).unwrap()),
|
|
290
|
+
Some(tls_config) => Listener::UnixTls((connect_unix_socket(&path)?, tls_config)),
|
|
291
|
+
None => Listener::Unix(connect_unix_socket(&path)?),
|
|
184
292
|
},
|
|
185
|
-
}
|
|
293
|
+
};
|
|
294
|
+
Ok(bound)
|
|
186
295
|
}
|
|
187
296
|
}
|
|
188
297
|
|
|
189
|
-
fn connect_tcp_socket(addr: IpAddr, port: u16) ->
|
|
298
|
+
fn connect_tcp_socket(addr: IpAddr, port: u16) -> Result<TcpListener> {
|
|
190
299
|
let domain = match addr {
|
|
191
300
|
IpAddr::V4(_) => Domain::IPV4,
|
|
192
301
|
IpAddr::V6(_) => Domain::IPV6,
|
|
193
302
|
};
|
|
194
|
-
let socket = Socket::new(domain, Type::STREAM, Some(Protocol::TCP))
|
|
303
|
+
let socket = Socket::new(domain, Type::STREAM, Some(Protocol::TCP))?;
|
|
195
304
|
let socket_address: SocketAddr = SocketAddr::new(addr, port);
|
|
196
|
-
socket.set_reuse_address(true).ok();
|
|
197
305
|
socket.set_reuse_port(true).ok();
|
|
306
|
+
socket.set_reuse_address(true).ok();
|
|
198
307
|
socket.set_nonblocking(true).ok();
|
|
199
308
|
socket.set_nodelay(true).ok();
|
|
200
|
-
socket.set_recv_buffer_size(
|
|
201
|
-
|
|
202
|
-
socket.
|
|
203
|
-
socket.
|
|
204
|
-
socket.into()
|
|
309
|
+
socket.set_recv_buffer_size(262_144).ok();
|
|
310
|
+
socket.bind(&socket_address.into())?;
|
|
311
|
+
socket.listen(1024)?;
|
|
312
|
+
Ok(socket.into())
|
|
205
313
|
}
|
|
206
314
|
|
|
207
|
-
fn connect_unix_socket(path: &PathBuf) ->
|
|
315
|
+
fn connect_unix_socket(path: &PathBuf) -> Result<UnixListener> {
|
|
208
316
|
let _ = std::fs::remove_file(path);
|
|
209
|
-
let socket = Socket::new(Domain::UNIX, Type::STREAM, None)
|
|
317
|
+
let socket = Socket::new(Domain::UNIX, Type::STREAM, None)?;
|
|
210
318
|
socket.set_nonblocking(true).ok();
|
|
211
|
-
|
|
319
|
+
|
|
320
|
+
let socket_address = socket2::SockAddr::unix(path)?;
|
|
212
321
|
|
|
213
322
|
info!("Binding to {:?}", path);
|
|
214
|
-
socket.bind(&socket_address)
|
|
215
|
-
socket.listen(1024)
|
|
323
|
+
socket.bind(&socket_address)?;
|
|
324
|
+
socket.listen(1024)?;
|
|
216
325
|
|
|
217
|
-
socket.into()
|
|
326
|
+
Ok(socket.into())
|
|
218
327
|
}
|
|
@@ -1,5 +1,11 @@
|
|
|
1
1
|
pub mod bind;
|
|
2
|
+
pub mod bind_protocol;
|
|
3
|
+
pub mod io_stream;
|
|
2
4
|
pub mod itsi_server;
|
|
5
|
+
pub mod lifecycle_event;
|
|
3
6
|
pub mod listener;
|
|
7
|
+
pub mod process_worker;
|
|
8
|
+
pub mod serve_strategy;
|
|
9
|
+
pub mod signal;
|
|
10
|
+
pub mod thread_worker;
|
|
4
11
|
pub mod tls;
|
|
5
|
-
pub mod transfer_protocol;
|
|
@@ -0,0 +1,196 @@
|
|
|
1
|
+
use super::serve_strategy::{cluster_mode::ClusterMode, single_mode::SingleMode};
|
|
2
|
+
use itsi_error::{ItsiError, Result};
|
|
3
|
+
use itsi_rb_helpers::{call_with_gvl, call_without_gvl, create_ruby_thread, fork};
|
|
4
|
+
use itsi_tracing::error;
|
|
5
|
+
use nix::{
|
|
6
|
+
errno::Errno,
|
|
7
|
+
sys::{
|
|
8
|
+
signal::{
|
|
9
|
+
kill,
|
|
10
|
+
Signal::{SIGKILL, SIGTERM},
|
|
11
|
+
},
|
|
12
|
+
wait::{waitpid, WaitPidFlag, WaitStatus},
|
|
13
|
+
},
|
|
14
|
+
unistd::{setpgid, Pid},
|
|
15
|
+
};
|
|
16
|
+
use parking_lot::Mutex;
|
|
17
|
+
use std::{
|
|
18
|
+
process::{self, exit},
|
|
19
|
+
sync::Arc,
|
|
20
|
+
time::{Duration, Instant},
|
|
21
|
+
};
|
|
22
|
+
use sysinfo::System;
|
|
23
|
+
|
|
24
|
+
use tokio::{sync::watch, time::sleep};
|
|
25
|
+
use tracing::{info, instrument, warn};
|
|
26
|
+
|
|
27
|
+
#[derive(Clone, Debug)]
|
|
28
|
+
pub struct ProcessWorker {
|
|
29
|
+
pub worker_id: usize,
|
|
30
|
+
pub child_pid: Arc<Mutex<Option<Pid>>>,
|
|
31
|
+
pub started_at: Instant,
|
|
32
|
+
}
|
|
33
|
+
|
|
34
|
+
impl Default for ProcessWorker {
|
|
35
|
+
fn default() -> Self {
|
|
36
|
+
Self {
|
|
37
|
+
worker_id: 0,
|
|
38
|
+
child_pid: Arc::new(Mutex::new(None)),
|
|
39
|
+
started_at: Instant::now(),
|
|
40
|
+
}
|
|
41
|
+
}
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
impl ProcessWorker {
|
|
45
|
+
#[instrument(skip(self, cluster_template), fields(self.worker_id = %self.worker_id))]
|
|
46
|
+
pub(crate) fn boot(&self, cluster_template: Arc<ClusterMode>) -> Result<()> {
|
|
47
|
+
let child_pid = *self.child_pid.lock();
|
|
48
|
+
if let Some(pid) = child_pid {
|
|
49
|
+
if self.is_alive() {
|
|
50
|
+
if let Err(e) = kill(pid, SIGTERM) {
|
|
51
|
+
info!("Failed to send SIGTERM to process {}: {}", pid, e);
|
|
52
|
+
}
|
|
53
|
+
}
|
|
54
|
+
*self.child_pid.lock() = None;
|
|
55
|
+
}
|
|
56
|
+
|
|
57
|
+
match call_with_gvl(|_ruby| fork(cluster_template.server.after_fork.lock().clone())) {
|
|
58
|
+
Some(pid) => {
|
|
59
|
+
*self.child_pid.lock() = Some(Pid::from_raw(pid));
|
|
60
|
+
}
|
|
61
|
+
None => {
|
|
62
|
+
if let Err(e) = setpgid(
|
|
63
|
+
Pid::from_raw(process::id() as i32),
|
|
64
|
+
Pid::from_raw(process::id() as i32),
|
|
65
|
+
) {
|
|
66
|
+
error!("Failed to set process group ID: {}", e);
|
|
67
|
+
}
|
|
68
|
+
match SingleMode::new(
|
|
69
|
+
cluster_template.server.clone(),
|
|
70
|
+
cluster_template.listeners.clone(),
|
|
71
|
+
cluster_template.lifecycle_channel.clone(),
|
|
72
|
+
) {
|
|
73
|
+
Ok(single_mode) => {
|
|
74
|
+
Arc::new(single_mode).run().ok();
|
|
75
|
+
}
|
|
76
|
+
Err(e) => {
|
|
77
|
+
error!("Failed to boot into worker mode: {}", e);
|
|
78
|
+
}
|
|
79
|
+
}
|
|
80
|
+
exit(0)
|
|
81
|
+
}
|
|
82
|
+
}
|
|
83
|
+
Ok(())
|
|
84
|
+
}
|
|
85
|
+
|
|
86
|
+
pub(crate) fn memory_usage(&self) -> Option<u64> {
|
|
87
|
+
if let Some(pid) = *self.child_pid.lock() {
|
|
88
|
+
let s = System::new_all();
|
|
89
|
+
if let Some(process) = s.process(sysinfo::Pid::from(pid.as_raw() as usize)) {
|
|
90
|
+
return Some(process.memory());
|
|
91
|
+
}
|
|
92
|
+
}
|
|
93
|
+
None
|
|
94
|
+
}
|
|
95
|
+
|
|
96
|
+
pub(crate) async fn reboot(&self, cluster_template: Arc<ClusterMode>) -> Result<bool> {
|
|
97
|
+
self.graceful_shutdown(cluster_template.clone()).await;
|
|
98
|
+
let self_clone = self.clone();
|
|
99
|
+
let (booted_sender, mut booted_receiver) = watch::channel(false);
|
|
100
|
+
create_ruby_thread(move || {
|
|
101
|
+
call_without_gvl(move || {
|
|
102
|
+
if self_clone.boot(cluster_template).is_ok() {
|
|
103
|
+
booted_sender.send(true).ok()
|
|
104
|
+
} else {
|
|
105
|
+
booted_sender.send(false).ok()
|
|
106
|
+
};
|
|
107
|
+
})
|
|
108
|
+
});
|
|
109
|
+
|
|
110
|
+
booted_receiver
|
|
111
|
+
.changed()
|
|
112
|
+
.await
|
|
113
|
+
.map_err(|_| ItsiError::InternalServerError("Failed to boot worker".to_owned()))?;
|
|
114
|
+
|
|
115
|
+
let guard = booted_receiver.borrow();
|
|
116
|
+
let result = guard.to_owned();
|
|
117
|
+
// Not very robust, we should check to see if the worker is actually listening before considering this successful.
|
|
118
|
+
sleep(Duration::from_secs(1)).await;
|
|
119
|
+
Ok(result)
|
|
120
|
+
}
|
|
121
|
+
|
|
122
|
+
pub(crate) async fn graceful_shutdown(&self, cluster_template: Arc<ClusterMode>) {
|
|
123
|
+
let self_clone = self.clone();
|
|
124
|
+
self_clone.request_shutdown();
|
|
125
|
+
let force_kill_time =
|
|
126
|
+
Instant::now() + Duration::from_secs_f64(cluster_template.server.shutdown_timeout);
|
|
127
|
+
while self_clone.is_alive() && force_kill_time > Instant::now() {
|
|
128
|
+
tokio::time::sleep(Duration::from_millis(100)).await;
|
|
129
|
+
}
|
|
130
|
+
if self_clone.is_alive() {
|
|
131
|
+
self_clone.force_kill();
|
|
132
|
+
}
|
|
133
|
+
}
|
|
134
|
+
|
|
135
|
+
pub(crate) fn boot_if_dead(&self, cluster_template: Arc<ClusterMode>) -> bool {
|
|
136
|
+
if !self.is_alive() {
|
|
137
|
+
if self.just_started() {
|
|
138
|
+
error!(
|
|
139
|
+
"Worker in crash loop {:?}. Refusing to restart",
|
|
140
|
+
self.child_pid.lock()
|
|
141
|
+
);
|
|
142
|
+
return false;
|
|
143
|
+
} else {
|
|
144
|
+
let self_clone = self.clone();
|
|
145
|
+
create_ruby_thread(move || {
|
|
146
|
+
call_without_gvl(move || {
|
|
147
|
+
self_clone.boot(cluster_template).ok();
|
|
148
|
+
})
|
|
149
|
+
});
|
|
150
|
+
}
|
|
151
|
+
}
|
|
152
|
+
true
|
|
153
|
+
}
|
|
154
|
+
|
|
155
|
+
pub(crate) fn request_shutdown(&self) {
|
|
156
|
+
let child_pid = *self.child_pid.lock();
|
|
157
|
+
if let Some(pid) = child_pid {
|
|
158
|
+
if let Err(e) = kill(pid, SIGTERM) {
|
|
159
|
+
error!("Failed to send SIGTERM to process {}: {}", pid, e);
|
|
160
|
+
}
|
|
161
|
+
}
|
|
162
|
+
}
|
|
163
|
+
|
|
164
|
+
pub(crate) fn force_kill(&self) {
|
|
165
|
+
let child_pid = *self.child_pid.lock();
|
|
166
|
+
if let Some(pid) = child_pid {
|
|
167
|
+
if let Err(e) = kill(pid, SIGKILL) {
|
|
168
|
+
error!("Failed to force kill process {}: {}", pid, e);
|
|
169
|
+
}
|
|
170
|
+
}
|
|
171
|
+
}
|
|
172
|
+
|
|
173
|
+
pub(crate) fn just_started(&self) -> bool {
|
|
174
|
+
let now = Instant::now();
|
|
175
|
+
now.duration_since(self.started_at).as_millis() < 2000
|
|
176
|
+
}
|
|
177
|
+
|
|
178
|
+
pub(crate) fn is_alive(&self) -> bool {
|
|
179
|
+
let child_pid = *self.child_pid.lock();
|
|
180
|
+
if let Some(pid) = child_pid {
|
|
181
|
+
match waitpid(pid, Some(WaitPidFlag::WNOHANG)) {
|
|
182
|
+
Ok(WaitStatus::Exited(_, _)) | Ok(WaitStatus::Signaled(_, _, _)) => {
|
|
183
|
+
return false;
|
|
184
|
+
}
|
|
185
|
+
Ok(WaitStatus::StillAlive) | Ok(_) => {}
|
|
186
|
+
Err(_) => return false,
|
|
187
|
+
}
|
|
188
|
+
match kill(pid, None) {
|
|
189
|
+
Ok(_) => true,
|
|
190
|
+
Err(errno) => !matches!(errno, Errno::ESRCH),
|
|
191
|
+
}
|
|
192
|
+
} else {
|
|
193
|
+
false
|
|
194
|
+
}
|
|
195
|
+
}
|
|
196
|
+
}
|