TRKJ/EdgeNode
2
0
Fork 0
mirror of https://github.com/TeaOSLab/EdgeNode.git synced 2025-11-05 01:20:26 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
d2cf2c7079d532f6b7b035860bd414b5f308d18b
EdgeNode/internal/nodes/api_stream.go

529 lines
14 KiB
Go
Raw Normal View History

实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
package nodes
import (
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
"bytes"
实现节点自动升级成最新版本
2021-06-10 19:19:15 +08:00
"context"
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
"encoding/json"
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
"fmt"
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
"github.com/TeaOSLab/EdgeCommon/pkg/messageconfigs"
"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs"
"github.com/TeaOSLab/EdgeNode/internal/caches"
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
"github.com/TeaOSLab/EdgeNode/internal/configs"
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
teaconst "github.com/TeaOSLab/EdgeNode/internal/const"
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
"github.com/TeaOSLab/EdgeNode/internal/errors"
支持优雅退出
2020-10-28 11:19:06 +08:00
"github.com/TeaOSLab/EdgeNode/internal/events"
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
"github.com/TeaOSLab/EdgeNode/internal/firewalls"
优化系统goroutine使用,减少goroutine数量,增加goman查看goroutine数量指令
2021-12-08 15:17:45 +08:00
"github.com/TeaOSLab/EdgeNode/internal/goman"
在节点重新实现缓存策略和WAF策略
2020-12-17 17:36:10 +08:00
"github.com/TeaOSLab/EdgeNode/internal/remotelogs"
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
"github.com/TeaOSLab/EdgeNode/internal/rpc"
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
"github.com/TeaOSLab/EdgeNode/internal/utils"
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
"github.com/iwind/TeaGo/Tea"
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
"github.com/iwind/TeaGo/maps"
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
"net/url"
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
"os/exec"
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
"regexp"
"runtime"
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
"strconv"
"time"
)
type APIStream struct {
stream pb.NodeService_NodeStreamClient
优化代码
2021-12-16 20:36:42 +08:00
isQuiting bool
cancelFunc context.CancelFunc
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
}
func NewAPIStream() *APIStream {
return &APIStream{}
}
func (this *APIStream) Start() {
优化代码
2022-01-12 20:31:04 +08:00
events.OnKey(events.EventQuit, this, func() {
优化代码
2021-12-16 20:36:42 +08:00
this.isQuiting = true
if this.cancelFunc != nil {
this.cancelFunc()
}
支持优雅退出
2020-10-28 11:19:06 +08:00
})
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
for {
优化代码
2021-12-16 20:36:42 +08:00
if this.isQuiting {
支持优雅退出
2020-10-28 11:19:06 +08:00
return
}
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
err := this.loop()
if err != nil {
修改部分错误提示级别
2021-11-04 11:14:27 +08:00
remotelogs.Warn("API_STREAM", err.Error())
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
time.Sleep(10 * time.Second)
continue
}
time.Sleep(1 * time.Second)
}
}
func (this *APIStream) loop() error {
rpcClient, err := rpc.SharedRPC()
if err != nil {
return errors.Wrap(err)
}
优化代码
2021-12-16 20:36:42 +08:00
实现节点自动升级成最新版本
2021-06-10 19:19:15 +08:00
ctx, cancelFunc := context.WithCancel(rpcClient.Context())
优化代码
2021-12-16 20:36:42 +08:00
this.cancelFunc = cancelFunc
实现节点自动升级成最新版本
2021-06-10 19:19:15 +08:00
优化代码
2021-12-16 20:36:42 +08:00
defer func() {
cancelFunc()
}()
nodeStream, err := rpcClient.NodeRPC().NodeStream(ctx)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
优化代码
2021-12-17 11:54:06 +08:00
if this.isQuiting {
return nil
}
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
return errors.Wrap(err)
}
this.stream = nodeStream
可以直接在节点启动时自动注册节点
2020-10-17 11:14:40 +08:00
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
for {
优化代码
2021-12-16 20:36:42 +08:00
if this.isQuiting {
修改部分错误提示级别
2021-11-04 11:14:27 +08:00
remotelogs.Println("API_STREAM", "quit")
支持优雅退出
2020-10-28 11:19:06 +08:00
break
}
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
message, err := nodeStream.Recv()
if err != nil {
优化代码
2021-12-16 20:36:42 +08:00
if this.isQuiting {
实现节点自动升级成最新版本
2021-06-10 19:19:15 +08:00
remotelogs.Println("API_STREAM", "quit")
支持优雅退出
2020-10-28 11:19:06 +08:00
return nil
}
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
return errors.Wrap(err)
}
// 处理消息
switch message.Code {
case messageconfigs.MessageCodeConnectedAPINode: // 连接API节点成功
err = this.handleConnectedAPINode(message)
case messageconfigs.MessageCodeWriteCache: // 写入缓存
err = this.handleWriteCache(message)
case messageconfigs.MessageCodeReadCache: // 读取缓存
err = this.handleReadCache(message)
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
case messageconfigs.MessageCodeStatCache: // 统计缓存
err = this.handleStatCache(message)
case messageconfigs.MessageCodeCleanCache: // 清理缓存
err = this.handleCleanCache(message)
增加节点同步状态提示和任务列表
2021-01-17 16:47:37 +08:00
case messageconfigs.MessageCodeNewNodeTask: // 有新的任务
err = this.handleNewNodeTask(message)
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
case messageconfigs.MessageCodeCheckSystemdService: // 检查Systemd服务
err = this.handleCheckSystemdService(message)
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
case messageconfigs.MessageCodeCheckLocalFirewall: // 检查本地防火墙
err = this.handleCheckLocalFirewall(message)
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
case messageconfigs.MessageCodeChangeAPINode: // 修改API节点地址
err = this.handleChangeAPINode(message)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
default:
err = this.handleUnknownMessage(message)
}
if err != nil {
在节点重新实现缓存策略和WAF策略
2020-12-17 17:36:10 +08:00
remotelogs.Error("API_STREAM", "handle message failed: "+err.Error())
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
}
}
支持优雅退出
2020-10-28 11:19:06 +08:00
return nil
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
}
// 连接API节点成功
func (this *APIStream) handleConnectedAPINode(message *pb.NodeStreamMessage) error {
// 更改连接的APINode信息
if len(message.DataJSON) == 0 {
return nil
}
msg := &messageconfigs.ConnectedAPINodeMessage{}
err := json.Unmarshal(message.DataJSON, msg)
if err != nil {
return errors.Wrap(err)
}
优化代码
2021-12-15 20:46:10 +08:00
_, err = rpc.SharedRPC()
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
return errors.Wrap(err)
}
在节点重新实现缓存策略和WAF策略
2020-12-17 17:36:10 +08:00
remotelogs.Println("API_STREAM", "connected to api node '"+strconv.FormatInt(msg.APINodeId, 10)+"'")
节点启动时如果加载的是本地配置则在网络恢复后重新加载配置
2021-10-01 11:13:36 +08:00
// 重新读取配置
if nodeConfigUpdatedAt == 0 {
select {
case nodeConfigChangedNotify <- true:
default:
}
}
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
return nil
}
// 写入缓存
func (this *APIStream) handleWriteCache(message *pb.NodeStreamMessage) error {
msg := &messageconfigs.WriteCacheMessage{}
err := json.Unmarshal(message.DataJSON, msg)
if err != nil {
this.replyFail(message.RequestId, "decode message data failed: "+err.Error())
return err
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
storage, shouldStop, err := this.cacheStorage(message, msg.CachePolicyJSON)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
return err
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
if shouldStop {
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
defer func() {
storage.Stop()
}()
}
实现缓存策略的部分功能
2020-10-05 16:55:14 +08:00
expiredAt := time.Now().Unix() + msg.LifeSeconds
分块传输内容可以写入到内存中/分块传输内容可以判断最大尺寸
2022-03-06 17:18:06 +08:00
writer, err := storage.OpenWriter(msg.Key, expiredAt, 200, int64(len(msg.Value)), -1, false)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
this.replyFail(message.RequestId, "prepare writing failed: "+err.Error())
return err
}
优化缓存管理
2021-01-13 12:02:50 +08:00
// 写入一个空的Header
_, err = writer.WriteHeader([]byte(":"))
if err != nil {
this.replyFail(message.RequestId, "write failed: "+err.Error())
return err
}
// 写入数据
实现缓存策略的部分功能
2020-10-05 16:55:14 +08:00
_, err = writer.Write(msg.Value)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
this.replyFail(message.RequestId, "write failed: "+err.Error())
return err
}
优化缓存管理
2021-01-13 12:02:50 +08:00
实现缓存策略的部分功能
2020-10-05 16:55:14 +08:00
err = writer.Close()
优化缓存管理
2021-01-13 12:02:50 +08:00
if err != nil {
this.replyFail(message.RequestId, "write failed: "+err.Error())
return err
实现缓存策略的部分功能
2020-10-05 16:55:14 +08:00
}
优化缓存管理
2021-01-13 12:02:50 +08:00
storage.AddToList(&caches.Item{
文件缓存策略支持二级缓存(内存 | 文件)
2021-03-02 19:43:05 +08:00
Type: writer.ItemType(),
优化缓存管理
2021-01-13 12:02:50 +08:00
Key: msg.Key,
ExpiredAt: expiredAt,
HeaderSize: writer.HeaderSize(),
BodySize: writer.BodySize(),
})
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
this.replyOk(message.RequestId, "write ok")
return nil
}
// 读取缓存
func (this *APIStream) handleReadCache(message *pb.NodeStreamMessage) error {
msg := &messageconfigs.ReadCacheMessage{}
err := json.Unmarshal(message.DataJSON, msg)
if err != nil {
this.replyFail(message.RequestId, "decode message data failed: "+err.Error())
return err
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
storage, shouldStop, err := this.cacheStorage(message, msg.CachePolicyJSON)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
return err
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
if shouldStop {
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
defer func() {
storage.Stop()
}()
}
实现基础的206 partial content缓存
2022-03-03 19:36:28 +08:00
reader, err := storage.OpenReader(msg.Key, false, false)
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
if err != nil {
if err == caches.ErrNotFound {
this.replyFail(message.RequestId, "key not found")
return nil
}
this.replyFail(message.RequestId, "read key failed: "+err.Error())
优化缓存管理
2021-01-13 12:02:50 +08:00
return nil
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
}
优化缓存管理
2021-01-13 12:02:50 +08:00
defer func() {
_ = reader.Close()
}()
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
优化缓存管理
2021-01-13 12:02:50 +08:00
this.replyOk(message.RequestId, "value "+strconv.FormatInt(reader.BodySize(), 10)+" bytes")
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
return nil
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
// 统计缓存
func (this *APIStream) handleStatCache(message *pb.NodeStreamMessage) error {
msg := &messageconfigs.ReadCacheMessage{}
err := json.Unmarshal(message.DataJSON, msg)
if err != nil {
this.replyFail(message.RequestId, "decode message data failed: "+err.Error())
return err
}
storage, shouldStop, err := this.cacheStorage(message, msg.CachePolicyJSON)
if err != nil {
return err
}
if shouldStop {
defer func() {
storage.Stop()
}()
}
stat, err := storage.Stat()
if err != nil {
this.replyFail(message.RequestId, "stat failed: "+err.Error())
return err
}
sizeFormat := ""
if stat.Size < 1024 {
sizeFormat = strconv.FormatInt(stat.Size, 10) + " Bytes"
} else if stat.Size < 1024*1024 {
sizeFormat = fmt.Sprintf("%.2f KB", float64(stat.Size)/1024)
} else if stat.Size < 1024*1024*1024 {
sizeFormat = fmt.Sprintf("%.2f MB", float64(stat.Size)/1024/1024)
} else {
sizeFormat = fmt.Sprintf("%.2f GB", float64(stat.Size)/1024/1024/1024)
}
this.replyOk(message.RequestId, "size:"+sizeFormat+", count:"+strconv.Itoa(stat.Count))
return nil
}
// 清理缓存
func (this *APIStream) handleCleanCache(message *pb.NodeStreamMessage) error {
msg := &messageconfigs.ReadCacheMessage{}
err := json.Unmarshal(message.DataJSON, msg)
if err != nil {
this.replyFail(message.RequestId, "decode message data failed: "+err.Error())
return err
}
storage, shouldStop, err := this.cacheStorage(message, msg.CachePolicyJSON)
if err != nil {
return err
}
if shouldStop {
defer func() {
storage.Stop()
}()
}
err = storage.CleanAll()
if err != nil {
this.replyFail(message.RequestId, "clean cache failed: "+err.Error())
return err
}
this.replyOk(message.RequestId, "ok")
return nil
}
配置更新时立即向集群节点发消息
2020-10-09 12:03:53 +08:00
// 处理配置变化
增加节点同步状态提示和任务列表
2021-01-17 16:47:37 +08:00
func (this *APIStream) handleNewNodeTask(message *pb.NodeStreamMessage) error {
配置更新时立即向集群节点发消息
2020-10-09 12:03:53 +08:00
select {
增加节点同步状态提示和任务列表
2021-01-17 16:47:37 +08:00
case nodeTaskNotify <- true:
waf/ip名单有变更立即发送通知
2020-11-10 09:22:17 +08:00
default:
}
this.replyOk(message.RequestId, "ok")
return nil
}
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
// 检查Systemd服务
func (this *APIStream) handleCheckSystemdService(message *pb.NodeStreamMessage) error {
systemctl, err := exec.LookPath("systemctl")
if err != nil {
this.replyFail(message.RequestId, "'systemctl' not found")
return nil
}
if len(systemctl) == 0 {
this.replyFail(message.RequestId, "'systemctl' not found")
return nil
}
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
var cmd = utils.NewCommandExecutor()
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
shortName := teaconst.SystemdServiceName
cmd.Add(systemctl, "is-enabled", shortName)
output, err := cmd.Run()
if err != nil {
优化缓存管理
2021-01-13 12:02:50 +08:00
this.replyFail(message.RequestId, "'systemctl' command error: "+err.Error())
集群可以设置systemd系统服务
2021-01-11 18:16:15 +08:00
return nil
}
if output == "enabled" {
this.replyOk(message.RequestId, "ok")
} else {
this.replyFail(message.RequestId, "not installed")
}
return nil
}
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
// 检查本地防火墙
func (this *APIStream) handleCheckLocalFirewall(message *pb.NodeStreamMessage) error {
var dataMessage = &messageconfigs.CheckLocalFirewallMessage{}
err := json.Unmarshal(message.DataJSON, dataMessage)
if err != nil {
this.replyFail(message.RequestId, "decode message data failed: "+err.Error())
return nil
}
// nft
if dataMessage.Name == "nftables" {
if runtime.GOOS != "linux" {
this.replyFail(message.RequestId, "not Linux system")
return nil
}
nft, err := exec.LookPath("nft")
if err != nil {
this.replyFail(message.RequestId, "'nft' not found: "+err.Error())
return nil
}
var cmd = exec.Command(nft, "--version")
var output = &bytes.Buffer{}
cmd.Stdout = output
err = cmd.Run()
if err != nil {
this.replyFail(message.RequestId, "get version failed: "+err.Error())
return nil
}
var outputString = output.String()
var versionMatches = regexp.MustCompile(`nftables v([\d.]+)`).FindStringSubmatch(outputString)
if len(versionMatches) <= 1 {
this.replyFail(message.RequestId, "can not get nft version")
return nil
}
var version = versionMatches[1]
var result = maps.Map{
"version": version,
}
var protectionConfig = sharedNodeConfig.DDOSProtection
err = firewalls.SharedDDoSProtectionManager.Apply(protectionConfig)
if err != nil {
this.replyFail(message.RequestId, dataMessage.Name+"was installed, but apply DDoS protection config failed: "+err.Error())
} else {
this.replyOk(message.RequestId, string(result.AsJSON()))
}
} else {
this.replyFail(message.RequestId, "invalid firewall name '"+dataMessage.Name+"'")
}
return nil
}
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
// 修改API地址
func (this *APIStream) handleChangeAPINode(message *pb.NodeStreamMessage) error {
config, err := configs.LoadAPIConfig()
if err != nil {
this.replyFail(message.RequestId, "read config error: "+err.Error())
return nil
}
var messageData = &messageconfigs.ChangeAPINodeMessage{}
err = json.Unmarshal(message.DataJSON, messageData)
if err != nil {
this.replyFail(message.RequestId, "unmarshal message failed: "+err.Error())
return nil
}
_, err = url.Parse(messageData.Addr)
if err != nil {
this.replyFail(message.RequestId, "invalid new api node address: '"+messageData.Addr+"'")
return nil
}
config.RPC.Endpoints = []string{messageData.Addr}
// 保存到文件
err = config.WriteFile(Tea.ConfigFile("api.yaml"))
if err != nil {
this.replyFail(message.RequestId, "save config file failed: "+err.Error())
return nil
}
this.replyOk(message.RequestId, "")
优化系统goroutine使用,减少goroutine数量,增加goman查看goroutine数量指令
2021-12-08 15:17:45 +08:00
goman.New(func() {
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
// 延后生效防止变更前的API无法读取到状态
time.Sleep(1 * time.Second)
rpcClient, err := rpc.SharedRPC()
if err != nil {
remotelogs.Error("API_STREAM", "change rpc endpoint to '"+
messageData.Addr+"' failed: "+err.Error())
return
}
rpcClient.Close()
err = rpcClient.UpdateConfig(config)
if err != nil {
remotelogs.Error("API_STREAM", "change rpc endpoint to '"+
messageData.Addr+"' failed: "+err.Error())
return
}
remotelogs.Println("API_STREAM", "change rpc endpoint to '"+
messageData.Addr+"' successfully")
优化系统goroutine使用,减少goroutine数量,增加goman查看goroutine数量指令
2021-12-08 15:17:45 +08:00
})
实现修改API节点地址的指令
2021-11-20 18:57:46 +08:00
return nil
}
实现缓存策略的部分功能
2020-10-04 14:30:42 +08:00
// 处理未知消息
func (this *APIStream) handleUnknownMessage(message *pb.NodeStreamMessage) error {
this.replyFail(message.RequestId, "unknown message code '"+message.Code+"'")
return nil
}
// 回复失败
func (this *APIStream) replyFail(requestId int64, message string) {
_ = this.stream.Send(&pb.NodeStreamMessage{RequestId: requestId, IsOk: false, Message: message})
}
// 回复成功
func (this *APIStream) replyOk(requestId int64, message string) {
_ = this.stream.Send(&pb.NodeStreamMessage{RequestId: requestId, IsOk: true, Message: message})
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
实现基础的DDoS防护
2022-05-18 21:03:51 +08:00
// 回复成功并包含数据
func (this *APIStream) replyOkData(requestId int64, message string, dataJSON []byte) {
_ = this.stream.Send(&pb.NodeStreamMessage{RequestId: requestId, IsOk: true, Message: message, DataJSON: dataJSON})
}
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
// 获取缓存存取对象
func (this *APIStream) cacheStorage(message *pb.NodeStreamMessage, cachePolicyJSON []byte) (storage caches.StorageInterface, shouldStop bool, err error) {
cachePolicy := &serverconfigs.HTTPCachePolicy{}
err = json.Unmarshal(cachePolicyJSON, cachePolicy)
if err != nil {
this.replyFail(message.RequestId, "decode cache policy config failed: "+err.Error())
return nil, false, err
}
storage = caches.SharedManager.FindStorageWithPolicy(cachePolicy.Id)
if storage == nil {
storage = caches.SharedManager.NewStorageWithPolicy(cachePolicy)
if storage == nil {
this.replyFail(message.RequestId, "invalid storage type '"+cachePolicy.Type+"'")
实现内存缓存
2020-10-05 19:15:35 +08:00
return nil, false, errors.New("invalid storage type '" + cachePolicy.Type + "'")
实现缓存策略若干功能
2020-10-04 16:10:01 +08:00
}
err = storage.Init()
if err != nil {
this.replyFail(message.RequestId, "storage init failed: "+err.Error())
return nil, false, err
}
shouldStop = true
}
return
}
Reference in New Issue Copy Permalink