wip: started to integrate rpxy-certs to rpxy-lib

2024-05-28 20:03:46 +09:00 · 2024-05-28 20:03:46 +09:00 · 2f9f0a1122
commit 2f9f0a1122
parent 7632b1fdeb
8 changed files with 81 additions and 32 deletions
--- a/rpxy-lib/src/globals.rs
+++ b/rpxy-lib/src/globals.rs
@ -19,6 +19,8 @@ pub struct Globals {
  pub term_notify: Option<Arc<tokio::sync::Notify>>,
  /// Shared context - Certificate reloader service receiver
  pub cert_reloader_rx: Option<ReloaderReceiver<ServerCryptoBase>>,
+  /// Shared context - Certificate reloader service receiver // TODO: newer one
+  pub cert_reloader_rx_new: Option<ReloaderReceiver<rpxy_certs::ServerCryptoBase>>,
 }

 /// Configuration parameters for proxy transport and request handlers
--- a/rpxy-lib/src/lib.rs
+++ b/rpxy-lib/src/lib.rs
@ -10,14 +10,17 @@ mod log;
 mod message_handler;
 mod name_exp;
 mod proxy;
-
+/* ------------------------------------------------ */
 use crate::{
  crypto::build_cert_reloader, error::*, forwarder::Forwarder, globals::Globals, log::*,
  message_handler::HttpMessageHandlerBuilder, proxy::Proxy,
 };
 use futures::future::select_all;
+use hot_reload::ReloaderReceiver;
+use rpxy_certs::ServerCryptoBase;
 use std::sync::Arc;

+/* ------------------------------------------------ */
 pub use crate::{
  crypto::{CertsAndKeys, CryptoSource},
  globals::{AppConfig, AppConfigList, ProxyConfig, ReverseProxyConfig, TlsConfig, UpstreamUri},
@ -31,6 +34,7 @@ pub mod reexports {
 pub async fn entrypoint<T>(
  proxy_config: &ProxyConfig,
  app_config_list: &AppConfigList<T>,
+  cert_rx: Option<&ReloaderReceiver<ServerCryptoBase>>, // TODO:
  runtime_handle: &tokio::runtime::Handle,
  term_notify: Option<Arc<tokio::sync::Notify>>,
 ) -> RpxyResult<()>
@ -94,6 +98,7 @@ where
    runtime_handle: runtime_handle.clone(),
    term_notify: term_notify.clone(),
    cert_reloader_rx: cert_reloader_rx.clone(),
+    cert_reloader_rx_new: cert_rx.cloned(), // TODO: newer one
  });

  // 4. build message handler containing Arc-ed http_client and backends, and make it contained in Arc as well
--- a/rpxy-lib/src/proxy/proxy_main.rs
+++ b/rpxy-lib/src/proxy/proxy_main.rs
@ -164,6 +164,10 @@ where
    let Some(mut server_crypto_rx) = self.globals.cert_reloader_rx.clone() else {
      return Err(RpxyError::NoCertificateReloader);
    };
+    // TODO: newer one
+    let Some(mut server_crypto_rx_new) = self.globals.cert_reloader_rx_new.clone() else {
+      return Err(RpxyError::NoCertificateReloader);
+    };
    let tcp_socket = bind_tcp_socket(&self.listening_on)?;
    let tcp_listener = tcp_socket.listen(self.globals.proxy_config.tcp_listen_backlog)?;
    info!("Start TCP proxy serving with HTTPS request for configured host names");
@ -237,6 +241,22 @@ where
          };
          server_crypto_map = Some(server_crypto.inner_local_map.clone());
        }
+        // TODO: newer one
+        _ = server_crypto_rx_new.changed().fuse() => {
+          if server_crypto_rx_new.borrow().is_none() {
+            error!("Reloader is broken");
+            break;
+          }
+          let cert_keys_map = server_crypto_rx_new.borrow().clone().unwrap();
+          // let Some(server_crypto) = cert_keys_map.try_into().ok() else {
+          //   break;
+          // };
+          // let Some(server_crypto): Option<Arc<ServerCrypto>> = (&cert_keys_map).try_into().ok() else {
+          //   error!("Failed to update server crypto");
+          //   break;
+          // };
+          // server_crypto_map = Some(server_crypto.inner_local_map.clone());
+        }
      }
    }
    Ok(())