实现基本的反向代理

2025-12-24 22:16:35 +08:00 · 2020-09-27 15:26:06 +08:00
parent cb85a9bb01
commit fb587ac0de
13 changed files with 522 additions and 60 deletions
--- a/internal/nodes/http_client_pool.go
+++ b/internal/nodes/http_client_pool.go
@@ -0,0 +1,149 @@
+package nodes
+
+import (
+	"context"
+	"crypto/tls"
+	"errors"
+	"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs"
+	"net"
+	"net/http"
+	"runtime"
+	"strconv"
+	"sync"
+	"time"
+)
+
+// HTTP客户端池单例
+var SharedHTTPClientPool = NewHTTPClientPool()
+
+// 客户端池
+type HTTPClientPool struct {
+	clientExpiredDuration time.Duration
+	clientsMap            map[string]*HTTPClient // backend key => client
+	locker                sync.Mutex
+}
+
+// 获取新对象
+func NewHTTPClientPool() *HTTPClientPool {
+	pool := &HTTPClientPool{
+		clientExpiredDuration: 3600 * time.Second,
+		clientsMap:            map[string]*HTTPClient{},
+	}
+
+	go pool.cleanClients()
+
+	return pool
+}
+
+// 根据地址获取客户端
+func (this *HTTPClientPool) Client(req *HTTPRequest, origin *serverconfigs.OriginConfig) (rawClient *http.Client, realAddr string, err error) {
+	if origin.Addr == nil {
+		return nil, "", errors.New("origin addr should not be empty (originId:" + strconv.FormatInt(origin.Id, 10) + ")")
+	}
+
+	key := origin.UniqueKey()
+	originAddr := origin.Addr.PickAddress()
+	if origin.Addr.HostHasVariables() {
+		originAddr = req.Format(originAddr)
+	}
+	key += "@" + originAddr
+
+	this.locker.Lock()
+	defer this.locker.Unlock()
+
+	client, found := this.clientsMap[key]
+	if found {
+		client.UpdateAccessTime()
+		return client.RawClient(), originAddr, nil
+	}
+
+	maxConnections := origin.MaxConns
+	connectionTimeout := origin.ConnTimeoutDuration()
+	readTimeout := origin.ReadTimeoutDuration()
+	idleTimeout := origin.IdleTimeoutDuration()
+	idleConns := origin.MaxIdleConns
+
+	// 超时时间
+	if connectionTimeout <= 0 {
+		connectionTimeout = 15 * time.Second
+	}
+
+	if idleTimeout <= 0 {
+		idleTimeout = 2 * time.Minute
+	}
+
+	numberCPU := runtime.NumCPU()
+	if numberCPU < 8 {
+		numberCPU = 8
+	}
+	if maxConnections <= 0 {
+		maxConnections = numberCPU * 2
+	}
+
+	if idleConns <= 0 {
+		idleConns = numberCPU
+	}
+	//logs.Println("[ORIGIN]max connections:", maxConnections)
+
+	// TLS通讯
+	tlsConfig := &tls.Config{
+		InsecureSkipVerify: true,
+	}
+	if origin.Cert != nil {
+		obj := origin.Cert.CertObject()
+		if obj != nil {
+			tlsConfig.InsecureSkipVerify = false
+			tlsConfig.Certificates = []tls.Certificate{*obj}
+			if len(origin.Cert.ServerName) > 0 {
+				tlsConfig.ServerName = origin.Cert.ServerName
+			}
+		}
+	}
+
+	transport := &http.Transport{
+		DialContext: func(ctx context.Context, network, addr string) (net.Conn, error) {
+			// 握手配置
+			return (&net.Dialer{
+				Timeout:   connectionTimeout,
+				KeepAlive: 1 * time.Minute,
+			}).DialContext(ctx, network, originAddr)
+		},
+		MaxIdleConns:          0,
+		MaxIdleConnsPerHost:   idleConns,
+		MaxConnsPerHost:       maxConnections,
+		IdleConnTimeout:       idleTimeout,
+		ExpectContinueTimeout: 1 * time.Second,
+		TLSHandshakeTimeout:   0, // 不限
+		TLSClientConfig:       tlsConfig,
+		Proxy:                 nil,
+	}
+
+	rawClient = &http.Client{
+		Timeout:   readTimeout,
+		Transport: transport,
+		CheckRedirect: func(req *http.Request, via []*http.Request) error {
+			return http.ErrUseLastResponse
+		},
+	}
+
+	this.clientsMap[key] = NewHTTPClient(rawClient)
+
+	return rawClient, originAddr, nil
+}
+
+// 清理不使用的Client
+func (this *HTTPClientPool) cleanClients() {
+	ticker := time.NewTicker(this.clientExpiredDuration)
+	for range ticker.C {
+		currentAt := time.Now().Unix()
+
+		this.locker.Lock()
+		for k, client := range this.clientsMap {
+			if client.AccessTime() < currentAt+86400 { // 超过 N 秒没有调用就关闭
+				delete(this.clientsMap, k)
+				client.Close()
+			}
+		}
+		this.locker.Unlock()
+	}
+}