zino-cli 0.7.0

CLI tools for zino.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380

use crate::structs::ZinoToml;
use clap::Parser;
use git2::{FetchOptions, Remote, Repository, ResetType};
use humantime_serde::re::humantime::format_duration;
use rustls_acme::caches::DirCache;
use rustls_acme::AcmeConfig;
use std::{
    net::Ipv4Addr,
    process::{Child, Command},
};
use tokio::io::AsyncWriteExt;
use tokio_stream::StreamExt;
use tracing::{error, info, warn};
use zino_core::error::Error;

/// Deploy a zino project.
#[derive(Parser)]
#[clap(name = "deploy")]
pub struct Deploy {}

impl Deploy {
    /// Run the `deploy` command(initialize zino.toml run managers).
    pub async fn run(self) {
        tracing_subscriber::fmt::init();
        info!("deploying zino project");
        let repository_manager = RepositoryManager {
            zino_toml: ZinoToml::default(),
            active_project: None,
            last_checked_commit_oid: None,
        };
        let acme_manager = AcmeManager {
            zino_toml: ZinoToml::default(),
        };

        tokio::join!(
            async {
                if let Err(err) = acme_manager.do_acme_work_and_forward_connections().await {
                    error!("failed to do acme work and forward connections: {}", err);
                }
            },
            repository_manager.main_loop()
        );
    }
}

/// RepositoryManager is responsible for managing the local repository and running the project.
pub struct RepositoryManager {
    zino_toml: ZinoToml,
    active_project: Option<Child>,
    last_checked_commit_oid: Option<git2::Oid>,
}

impl RepositoryManager {
    /// The main loop of the RepositoryManager command.
    async fn main_loop(mut self) {
        if let Err(err) = self.run_project() {
            error!("failed to run project: {}", err);
        }
        loop {
            match self.try_update_and_run_project() {
                Ok(_) => match self.local_head_oid() {
                    Ok(oid) => info!("current commit_id: {}", oid),
                    Err(err) => error!("failed to get current commit_id: {}", err),
                },
                Err(err) => {
                    error!("deploy failed: {}", err);
                    match self.rollback_to_latest_checked_commit() {
                        Ok(_) => info!(
                            "rolled back to last commit: {}",
                            self.last_checked_commit_oid
                                .unwrap_or(git2::Oid::zero())
                                .to_string()
                        ),
                        Err(err) => error!("failed to rollback to last commit: {}", err),
                    }
                }
            }
            tokio::time::sleep(self.zino_toml.zli_config.refresh_interval).await;
        }
    }

    /// Initialize the zino.toml file.
    fn flush_zino_toml(&mut self) {
        self.zino_toml = ZinoToml::default();

        info!(
            "RepositoryManager will check for updates after {} ",
            format_duration(self.zino_toml.zli_config.refresh_interval)
        );
    }

    /// try to update and run the project.
    fn try_update_and_run_project(&mut self) -> Result<(), Error> {
        self.flush_zino_toml();

        let local_oid = match self.local_head_oid() {
            Ok(local_oid) => {
                info!("local commit_id: {}", local_oid);
                local_oid
            }
            Err(err) => {
                error!("failed to get local commit_id: {}", err);
                error!("RepositoryManager now cannot update the project, but will keep running the application witch is alive now until the problem is fixed.");
                error!("RepositoryManager will be able to update the project again after the problem is fixed.");
                return Ok(());
            }
        };

        let remote_oid = match self.remote_head_oid() {
            Ok(remote_oid) => {
                info!("remote commit_id: {}", remote_oid);
                remote_oid
            }
            Err(err) => {
                warn!("failed to get remote commit_id: {}", err);
                warn!("Give up update this time. The running application is not affected.");
                return Ok(());
            }
        };

        if self.last_checked_commit_oid.unwrap_or(local_oid) != remote_oid
            || self.active_project.is_none()
        {
            info!("updating local repository");

            self.pull_remote()?;

            self.check_and_test()?;

            self.kill_active_project();
            self.run_project()?;

            info!("project updated to commit: {}", remote_oid);
            info!("project deployed");
        } else {
            info!("local repository is up-to-date");
        }

        Ok(())
    }

    /// Kill the active project.
    fn kill_active_project(&mut self) {
        if let Some(mut active_project) = self.active_project.take() {
            match active_project.kill() {
                Ok(_) => self.active_project = None,
                Err(err) => error!("failed to kill active project: {}", err),
            }
        }
    }

    /// Open the local repository.
    fn open_local_repo(&self) -> Result<Repository, Error> {
        let repo = Repository::open(".")
            .map_err(|err| Error::new(format!("failed to open local repository: {}", err)))?;
        Ok(repo)
    }

    /// Pull the remote repository.
    fn pull_remote(&self) -> Result<(), Error> {
        let repo = Repository::open("./")?;

        let mut remote = repo.find_remote(&self.zino_toml.remote.name)?;

        let mut fo = FetchOptions::new();
        remote.fetch(&[&self.zino_toml.remote.branch], Some(&mut fo), None)?;

        let fetch_head = repo.find_reference("FETCH_HEAD")?;
        let fetch_commit = repo.reference_to_annotated_commit(&fetch_head)?;

        let obj = repo.find_object(fetch_commit.id(), None)?;

        repo.reset(&obj, ResetType::Hard, None)?;

        Ok(())
    }

    /// Rollback to the latest checked commit.
    fn rollback_to_latest_checked_commit(&self) -> Result<(), Error> {
        Command::new("git")
            .arg("reset")
            .arg("--hard")
            .arg(
                self.last_checked_commit_oid
                    .ok_or(Error::new("no last active commit"))?
                    .to_string(),
            )
            .output()
            .map_err(|_| Error::new("failed to execute git reset"))?;

        Ok(())
    }

    /// Get the local head OID.
    fn local_head_oid(&self) -> Result<git2::Oid, Error> {
        let repo = self.open_local_repo()?;

        let head_oid = repo
            .head()
            .map_err(|err| Error::new(format!("failed to get repository head: {}", err)))?
            .peel_to_commit()
            .map_err(|err| Error::new(format!("failed to peel to commit: {}", err)))?
            .id();

        Ok(head_oid)
    }

    /// Get the remote head OID.
    fn remote_head_oid(&self) -> Result<git2::Oid, Error> {
        let repo = self.open_local_repo()?;

        let mut remote = self.find_remote(&repo)?;
        remote
            .fetch(&[self.zino_toml.remote.branch.clone()], None, None)
            .map_err(|err| Error::new(format!("failed to fetch remote: {}", err)))?;

        let remote_branch = repo
            .find_branch(
                &format!(
                    "{}/{}",
                    self.zino_toml.remote.name, self.zino_toml.remote.branch
                ),
                git2::BranchType::Remote,
            )
            .map_err(|err| Error::new(format!("failed to find Remote branch: {}", err)))?;

        let remote_head_oid = remote_branch
            .get()
            .peel_to_commit()
            .map_err(|err| Error::new(format!("failed to peel to commit: {}", err)))?
            .id();

        Ok(remote_head_oid)
    }

    /// Find the remote.
    fn find_remote<'a>(&self, repo: &'a Repository) -> Result<Remote<'a>, Error> {
        let remote = repo
            .find_remote(&self.zino_toml.remote.name)
            .map_err(|err| Error::new(format!("failed to find remote: {}", err)))?;
        Ok(remote)
    }

    /// Run the project.
    fn run_project(&mut self) -> Result<(), Error> {
        if self.active_project.is_none() {
            self.active_project = Some(
                Command::new("cargo")
                    .arg("run")
                    .arg("--release")
                    .arg("-q")
                    .spawn()
                    .map_err(|_| Error::new("failed to run the project"))?,
            );
        }

        info!("deploying new version of the project");

        Ok(())
    }

    /// Check and test the project.
    fn check_and_test(&mut self) -> Result<(), Error> {
        let oid = self.local_head_oid()?;

        self.run_cargo_command("check")?;
        self.run_cargo_command("test")?;

        self.last_checked_commit_oid = Some(oid);

        info!("project check and test passed: newest commit_id: {}", oid);
        Ok(())
    }

    /// Run a cargo command in a subprocess.
    fn run_cargo_command(&self, command: &str) -> Result<(), Error> {
        let status = Command::new("cargo")
            .arg(command)
            .arg("-q")
            .status()
            .map_err(|_| Error::new("failed to execute cargo command"))?;

        if status.success() {
            info!("{} succeeded", command);
            Ok(())
        } else {
            Err(Error::new(format!(
                "{} failed, status code: {}",
                command,
                status.code().unwrap_or(-1)
            )))
        }
    }
}

/// AcmeManager is responsible for handling ACME related tasks.
struct AcmeManager {
    zino_toml: ZinoToml,
}

impl AcmeManager {
    /// Get ACME certificate and forward incoming TLS connections to the target server.
    async fn do_acme_work_and_forward_connections(&self) -> Result<(), Error> {
        info!(
            "Starting to bind TCP listener on port {}",
            self.zino_toml.acme.listening_at
        );
        let tcp_listener = tokio::net::TcpListener::bind((
            Ipv4Addr::UNSPECIFIED,
            self.zino_toml.acme.listening_at,
        ))
        .await
        .map_err(|err| Error::new(format!("failed to bind TCP listener: {}", err)))?;
        info!("TCP listener bound successfully");

        let tcp_incoming = tokio_stream::wrappers::TcpListenerStream::new(tcp_listener);

        let mut tls_incoming = AcmeConfig::new(self.zino_toml.acme.domain.clone())
            .contact(
                self.zino_toml
                    .acme
                    .email
                    .iter()
                    .map(|e| format!("mailto:{}", e)),
            )
            .cache_option(Some(DirCache::new(self.zino_toml.acme.cache.clone())))
            .directory_lets_encrypt(self.zino_toml.acme.product_mode)
            .tokio_incoming(tcp_incoming, Vec::new());
        info!("ACME configuration set up");

        while let Some(tls) = tls_incoming.next().await {
            let tls = match tls {
                Ok(tls) => tls,
                Err(err) => {
                    error!("Failed to accept TLS connection: {}", err);
                    continue;
                }
            };
            info!("Received a new TLS connection: {:?}", tls);

            let port = self.zino_toml.acme.forward_to;

            tokio::spawn(async move {
                if let Err(e) = Self::handle_tls_connection(tls, port).await {
                    error!("failed to handle tls connection: {}", e);
                } else {
                    info!("TLS connection handled successfully");
                }
            });
        }
        unreachable!()
    }

    /// Handle a TLS connection.
    async fn handle_tls_connection<T>(mut tls: T, forward_to: u16) -> Result<(), Error>
    where
        T: tokio::io::AsyncRead + tokio::io::AsyncWrite + Unpin + Send + 'static,
    {
        let mut target_stream = tokio::net::TcpStream::connect(("127.0.0.1", forward_to))
            .await
            .map_err(|err| {
                error!("Failed to connect to target server: {}", err);
                Error::new(format!("failed to connect to target server: {}", err))
            })?;

        tokio::io::copy_bidirectional(&mut tls, &mut target_stream)
            .await
            .map_err(|err| {
                error!("Failed to forward connection: {}", err);
                Error::new(format!("failed to forward connection: {}", err))
            })?;

        tls.shutdown().await.map_err(|err| {
            error!("Failed to close TLS connection: {}", err);
            Error::new(format!("failed to close TLS connection: {}", err))
        })?;

        Ok(())
    }
}