vane 0.9.1

A flow-based reverse proxy with multi-layer routing and programmable pipelines.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159

/* src/layers/l4/health.rs */

use super::{legacy::tcp::TcpDestination, model::ResolvedTarget, resolver, tcp::TcpConfig};
use crate::{common::config::env_loader, ingress::state::CONFIG_STATE};
use dashmap::DashMap;
use fancy_log::{LogLevel, log};
use once_cell::sync::Lazy;
use std::{collections::HashSet, time::Duration};
use tokio::{net::TcpStream, task::JoinHandle, time::Instant};

#[derive(Debug, Clone)]
pub struct TargetHealth {
	pub available: bool,
	pub latency: Duration,
}

impl TargetHealth {
	fn unhealthy() -> Self {
		Self {
			available: false,
			latency: Duration::MAX,
		}
	}
}

pub static TARGET_HEALTH_REGISTRY: Lazy<DashMap<ResolvedTarget, TargetHealth>> =
	Lazy::new(DashMap::new);
static UNHEALTHY_UDP_TARGETS: Lazy<DashMap<ResolvedTarget, Instant>> = Lazy::new(DashMap::new);

async fn check_tcp_target_health(target: ResolvedTarget, timeout_ms: u64) {
	let start = Instant::now();
	let timeout = Duration::from_millis(timeout_ms);
	let check_result = tokio::time::timeout(
		timeout,
		TcpStream::connect((target.ip.as_str(), target.port)),
	)
	.await;

	let health_status = match check_result {
		Ok(Ok(_)) => {
			let latency = start.elapsed();
			if let Some(existing) = TARGET_HEALTH_REGISTRY.get_mut(&target)
				&& !existing.available
			{
				log(
					LogLevel::Info,
					&format!(
						"✓ TCP target {}:{} has recovered and is back online (latency: {:?}).",
						target.ip, target.port, latency
					),
				);
			}
			TargetHealth {
				available: true,
				latency,
			}
		}
		_ => TargetHealth::unhealthy(),
	};
	TARGET_HEALTH_REGISTRY.insert(target, health_status);
}

async fn run_health_check_cycle() -> Vec<JoinHandle<()>> {
	let mut unique_targets = HashSet::new();
	let config_guard = CONFIG_STATE.load();

	let connect_timeout_ms = env_loader::get_env("HEALTH_TCP_CONNECT_TIMEOUT_MS", "2000".to_owned())
		.parse::<u64>()
		.unwrap_or(2000);

	for port_status in config_guard.iter() {
		if let Some(tcp_config) = &port_status.tcp_config
			&& let TcpConfig::Legacy(legacy_config) = &**tcp_config
		{
			for rule in &legacy_config.rules {
				if let TcpDestination::Forward { forward } = &rule.destination {
					for rt in resolver::resolve_targets(&forward.targets).await {
						unique_targets.insert(rt);
					}
					for rt in resolver::resolve_targets(&forward.fallbacks).await {
						unique_targets.insert(rt);
					}
				}
			}
		}
	}
	unique_targets
		.into_iter()
		.map(|target| tokio::spawn(check_tcp_target_health(target, connect_timeout_ms)))
		.collect()
}

pub fn mark_tcp_target_unhealthy(target: &ResolvedTarget) {
	if TARGET_HEALTH_REGISTRY
		.get(target)
		.is_none_or(|h| h.available)
	{
		log(
			LogLevel::Warn,
			&format!(
				"⚠ Proactively marked TCP target {}:{} as unavailable due to connection failure.",
				target.ip, target.port
			),
		);
		TARGET_HEALTH_REGISTRY.insert(target.clone(), TargetHealth::unhealthy());
	}
}

pub fn mark_udp_target_unhealthy(target: &ResolvedTarget) {
	UNHEALTHY_UDP_TARGETS.insert(target.clone(), Instant::now());
}

pub fn is_udp_target_healthy(target: &ResolvedTarget) -> bool {
	!UNHEALTHY_UDP_TARGETS.contains_key(target)
}

pub async fn initial_health_check() {
	log(
		LogLevel::Debug,
		"⚙ Performing initial health check for TCP targets...",
	);
	let handles = run_health_check_cycle().await;
	for handle in handles {
		let _ = handle.await;
	}
	log(LogLevel::Debug, "✓ Initial TCP health check complete.");
}

pub fn start_periodic_health_checkers() {
	log(LogLevel::Debug, "⚙ Starting periodic health checkers...");
	tokio::spawn(async move {
		let interval_secs = env_loader::get_env("HEALTH_TCP_INTERVAL_SECS", "5".to_owned())
			.parse::<u64>()
			.unwrap_or(5);
		let mut interval = tokio::time::interval(Duration::from_secs(interval_secs));
		loop {
			interval.tick().await;
			let handles = run_health_check_cycle().await;
			for handle in handles {
				let _ = handle.await;
			}
		}
	});
	tokio::spawn(async move {
		let interval_secs = env_loader::get_env("HEALTH_UDP_CLEANUP_INTERVAL_SECS", "5".to_owned())
			.parse::<u64>()
			.unwrap_or(5);
		let unhealthy_ttl_secs = env_loader::get_env("HEALTH_UDP_UNHEALTHY_TTL_SECS", "10".to_owned())
			.parse::<u64>()
			.unwrap_or(10);

		let mut interval = tokio::time::interval(Duration::from_secs(interval_secs));
		let unhealthy_ttl = Duration::from_secs(unhealthy_ttl_secs);
		loop {
			interval.tick().await;
			UNHEALTHY_UDP_TARGETS.retain(|_, v| v.elapsed() < unhealthy_ttl);
		}
	});
}