fix: wip

Author: conblem

src/api/mod.rs

@@ -1,78 +1,82 @@
-use anyhow::{Result, Error};
+use anyhow::{Error, Result};
 use futures_util::future::OptionFuture;
-use futures_util::stream::{BoxStream, Stream};
-use futures_util::{FutureExt, StreamExt, TryStreamExt};
+use futures_util::stream::{Stream, TryStream};
+use futures_util::{FutureExt, TryStreamExt};
 use metrics::{metrics, metrics_wrapper};
 use sqlx::PgPool;
 use tokio::io::{Error as IoError, Result as IoResult};
 use tokio::net::TcpListener;
 use tokio::net::ToSocketAddrs;
 use tokio_stream::wrappers::TcpListenerStream;
-use tracing::{debug_span, info};
+use tracing::info;
+use tokio::io::{AsyncWrite, AsyncRead};
 
-use crate::api::proxy::{PeerAddr, ProxyStream};
-use futures_util::io::{AsyncRead, AsyncWrite};
+use crate::api::proxy::{ProxyProtocol, ToProxyStream};
 
 mod metrics;
 mod proxy;
 mod routes;
 mod tls;
 
-type Connection = Box<dyn PeerAddr<IoError> + Send + Unpin + 'static>;
-type Listener = BoxStream<'static, IoResult<Connection>>;
-
-pub struct Api<H, S> {
+pub struct Api<H, P, S> {
     http: Option<H>,
     https: Option<S>,
-    prom: Option<H>,
+    prom: Option<P>,
     pool: PgPool,
 }
 
-impl <H, S> Api<H, S> {
-    fn prepare_listener(listener: TcpListener, proxy: bool) -> Listener {
-        let listener = match listener {
-            Some(listener) => TcpListenerStream::new(listener),
-            None => return None,
-        };
-
-        let mapper = match proxy {
-            true => |stream| Box::new(ProxyStream::from(stream)) as Connection,
-            false => |stream| Box::new(stream) as Connection
-        };
-
-        let listener = listener
-            .map_ok(mapper)
-            .boxed();
-
-        Some(listener)
-    }
+pub async fn new<A: ToSocketAddrs>(
+    (http, http_proxy): (Option<A>, bool),
+    (https, https_proxy): (Option<A>, bool),
+    (prom, prom_proxy): (Option<A>, bool),
+    pool: PgPool,
+) -> Result<
+    Api<
+        impl Stream<Item = IoResult<impl AsyncRead + AsyncWrite + Send + Unpin>> + Send,
+        impl Stream<Item = IoResult<impl AsyncRead + AsyncWrite + Send + Unpin>> + Send,
+        impl Stream<Item = Result<impl AsyncRead + AsyncWrite + Send + Unpin, Error>>
+        + Send,
+    >,
+> {
+    let http = OptionFuture::from(http.map(TcpListener::bind)).map(Option::transpose);
+    let https = OptionFuture::from(https.map(TcpListener::bind)).map(Option::transpose);
+    let prom = OptionFuture::from(prom.map(TcpListener::bind)).map(Option::transpose);
+
+    let (http, https, prom) = tokio::try_join!(http, https, prom)?;
+
+    let http = http.map(|http| {
+        let http =
+            TcpListenerStream::new(http).map_ok(|stream| stream.source(ProxyProtocol::Enabled));
+        proxy::wrap(http).try_buffer_unordered(100)
+    });
+    let https = https.map(|https| {
+        let https =
+            TcpListenerStream::new(https).map_ok(|stream| stream.source(ProxyProtocol::Enabled));
+        tls::stream(https, pool.clone())
+    });
+    let prom = prom.map(|prom| {
+        let prom =
+            TcpListenerStream::new(prom).map_ok(|stream| stream.source(ProxyProtocol::Enabled));
+        proxy::wrap(prom).try_buffer_unordered(100)
+    });
+
+    Ok(Api {
+        http,
+        https,
+        prom,
+        pool,
+    })
+}
 
-    pub async fn new<A: ToSocketAddrs>(
-        (http, http_proxy): (Option<A>, bool),
-        (https, https_proxy): (Option<A>, bool),
-        (prom, prom_proxy): (Option<A>, bool),
-        pool: PgPool,
-    ) -> Result<Api<
-        impl Stream<Item = IoResult<impl AsyncRead + AsyncWrite + Send + Unpin + 'static>> + Send,
-        impl Stream<Item = Result<impl AsyncRead + AsyncWrite + Send + Unpin + 'static, Error>> + Send
-    >> {
-        let http = OptionFuture::from(http.map(TcpListener::bind)).map(Option::transpose);
-        let https = OptionFuture::from(https.map(TcpListener::bind)).map(Option::transpose);
-        let prom = OptionFuture::from(prom.map(TcpListener::bind)).map(Option::transpose);
-
-        let (http, https, prom) = tokio::try_join!(http, https, prom)?;
-
-        let http = Api::prepare_listener(http, http_proxy);
-        let https = Api::prepare_listener(https, https_proxy);
-        let prom = Api::prepare_listener(prom, prom_proxy);
-
-        Ok(Api {
-            http: proxy::wrap(http).try_buffer_unordered(100),
-            https: tls::stream(https, pool.clone()),
-            prom: proxy::wrap(prom).try_buffer_unordered(100),
-            pool,
-        })
-    }
+impl<H, P, S> Api<H, P, S>
+    where
+        H: TryStream<Error = IoError> + Send + Unpin + 'static,
+        H::Ok: AsyncRead + AsyncWrite + Send + Unpin + 'static,
+    P: TryStream<Error = IoError> + Send + Unpin + 'static,
+    P::Ok: AsyncRead + AsyncWrite + Send + Unpin + 'static,
+    S: TryStream<Error = Error> + Send + Unpin + 'static,
+    S::Ok: AsyncRead + AsyncWrite + Send + Unpin + 'static,
+{
 
     #[tracing::instrument(name = "Api::spawn", skip(self))]
     pub async fn spawn(self) -> Result<()> {
@@ -82,30 +86,17 @@ impl <H, S> Api<H, S> {
 
         let http = self
             .http
-            .map(|http|
-                proxy::wrap(http).try_buffer_unordered(100)
-            )
             .map(|http| warp::serve(routes.clone()).serve_incoming(http))
             .map(tokio::spawn);
 
         let pool = self.pool.clone();
         let https = self
             .https
-            .map(|https| {
-                //let addr = https.as_ref().local_addr();
-                tls::stream(https, pool)
-                //.instrument(debug_span!("HTTPS", local.addr = ?addr))
-            })
             .map(|https| warp::serve(routes).serve_incoming(https))
             .map(tokio::spawn);
 
         let prom = self
             .prom
-            .map(|prom| {
-                //let addr = prom.as_ref().local_addr();
-                prom
-                //.instrument(debug_span!("PROM", local.addr = ?addr))
-            })
             .map(|prom| warp::serve(metrics()).serve_incoming(prom))
             .map(tokio::spawn);
 

src/api/proxy.rs

@@ -1,4 +1,3 @@
-use futures_util::future::{ready, BoxFuture, FutureExt};
 use futures_util::stream::{Stream, TryStream};
 use futures_util::TryStreamExt;
 use ppp::error::ParseError;
@@ -7,21 +6,42 @@ use std::future::Future;
 use std::io::{Cursor, IoSlice, Write};
 use std::mem::MaybeUninit;
 use std::net::{SocketAddr, SocketAddrV4, SocketAddrV6};
-use std::ops::DerefMut;
 use std::pin::Pin;
 use std::task::{Context, Poll};
 use tokio::io::{AsyncRead, AsyncWrite, Error as IoError, ErrorKind, ReadBuf, Result as IoResult};
 use tokio::net::TcpStream;
 use tracing::field::{display, Empty};
 use tracing::{debug_span, error, info, Instrument, Span};
 
-pub(super) fn wrap<S, O, E, P>(
+// wrap tcplistener instead of tcpstream
+pub(super) enum ProxyProtocol {
+    Enabled,
+    Disabled,
+}
+
+pub(super) trait ToProxyStream: Sized {
+    fn source(self, proxy: ProxyProtocol) -> ProxyStream;
+}
+
+impl ToProxyStream for TcpStream {
+    fn source(self, proxy: ProxyProtocol) -> ProxyStream {
+        let data = match proxy {
+            ProxyProtocol::Enabled => Some(Default::default()),
+            ProxyProtocol::Disabled => None,
+        };
+        ProxyStream {
+            stream: self,
+            data,
+            start_of_data: 0,
+        }
+    }
+}
+
+pub(super) fn wrap<S, E>(
     stream: S,
 ) -> impl Stream<Item = Result<impl Future<Output = Result<impl AsyncRead + AsyncWrite, E>>, E>>
 where
-    P: std::error::Error,
-    S: TryStream<Ok = O, Error = E>,
-    O: PeerAddr<P>,
+    S: TryStream<Ok = ProxyStream, Error = E>,
 {
     stream.map_ok(|mut conn| {
         let span = debug_span!("ADDR", remote.addr = Empty);
@@ -43,16 +63,6 @@ where
     })
 }
 
-pub(super) trait PeerAddr<E: std::error::Error>: AsyncRead + AsyncWrite {
-    fn proxy_peer<'a>(&'a mut self) -> BoxFuture<'a, Result<SocketAddr, E>>;
-}
-
-impl PeerAddr<tokio::io::Error> for TcpStream {
-    fn proxy_peer(&mut self) -> BoxFuture<IoResult<SocketAddr>> {
-        ready(self.peer_addr()).boxed()
-    }
-}
-
 struct PeerAddrFuture<'a> {
     stream: &'a mut ProxyStream,
 }
@@ -126,16 +136,17 @@ impl<'a> Future for PeerAddrFuture<'a> {
 
     fn poll(self: Pin<&mut Self>, cx: &mut Context<'_>) -> Poll<Self::Output> {
         let this = self.get_mut();
+        let stream = &mut this.stream;
 
-        let data = match &mut this.stream.data {
+        let data = match &mut stream.data {
             Some(ref mut data) => data,
-            None => unreachable!("Future cannot be polled anymore"),
+            None => return Poll::Ready(stream.stream.local_addr()),
         };
 
         let mut buf = [MaybeUninit::<u8>::uninit(); 256];
         let mut buf = ReadBuf::uninit(&mut buf);
 
-        let stream = Pin::new(&mut this.stream.stream);
+        let stream = Pin::new(&mut stream.stream);
         let buf = match stream.poll_read(cx, &mut buf) {
             Poll::Ready(Ok(_)) => buf.filled(),
             Poll::Ready(Err(e)) => return Poll::Ready(Err(e)),
@@ -156,19 +167,9 @@ pub(super) struct ProxyStream {
     start_of_data: usize,
 }
 
-impl From<TcpStream> for ProxyStream {
-    fn from(stream: TcpStream) -> Self {
-        ProxyStream {
-            stream,
-            data: Some(Default::default()),
-            start_of_data: 0,
-        }
-    }
-}
-
-impl PeerAddr<tokio::io::Error> for ProxyStream {
-    fn proxy_peer(&mut self) -> BoxFuture<IoResult<SocketAddr>> {
-        PeerAddrFuture::new(self).boxed()
+impl ProxyStream {
+    fn proxy_peer(&mut self) -> PeerAddrFuture<'_> {
+        PeerAddrFuture::new(self)
     }
 }
 
@@ -216,9 +217,3 @@ impl AsyncWrite for ProxyStream {
         self.stream.is_write_vectored()
     }
 }
-
-impl<E: std::error::Error> PeerAddr<E> for Box<(dyn PeerAddr<E> + Send + Unpin + 'static)> {
-    fn proxy_peer<'a>(&'a mut self) -> BoxFuture<'a, Result<SocketAddr, E>> {
-        self.deref_mut().proxy_peer()
-    }
-}

src/api/tls.rs

@@ -10,7 +10,8 @@ use tokio::io::{AsyncRead, AsyncWrite};
 use tokio_rustls::TlsAcceptor;
 use tracing::{error, info};
 
-use super::proxy::{wrap, PeerAddr};
+use super::proxy::wrap;
+use crate::api::proxy::ProxyStream;
 use crate::cert::{Cert, CertFacade};
 use crate::util::to_u64;
 
@@ -78,14 +79,12 @@ impl Acceptor {
     }
 }
 
-pub(super) fn stream<S, O, E, P>(
+pub(super) fn stream<S, E>(
     listener: S,
     pool: PgPool,
 ) -> impl Stream<Item = Result<impl AsyncRead + AsyncWrite + Send + Unpin + 'static, Error>> + Send
 where
-    P: std::error::Error + Send + Sync + 'static,
-    S: Stream<Item = Result<O, E>> + Send + 'static,
-    O: PeerAddr<P> + Send + Unpin + 'static,
+    S: Stream<Item = Result<ProxyStream, E>> + Send + 'static,
     E: Into<Error> + Send + 'static,
 {
     let acceptor = Acceptor::new(pool);

src/main.rs

@@ -8,13 +8,13 @@ use std::str::FromStr;
 use tokio::runtime::Runtime;
 use tokio::signal::ctrl_c;
 use tracing::{debug, error, info, Instrument};
-
-use crate::acme::DatabasePersist;
-use crate::api::Api;
-use crate::cert::CertManager;
-use crate::dns::{DatabaseAuthority, DNS};
 use std::sync::Arc;
 
+use acme::DatabasePersist;
+use cert::CertManager;
+use dns::{DatabaseAuthority, DNS};
+use api::Api;
+
 mod acme;
 mod api;
 mod cert;
@@ -54,7 +54,7 @@ fn run() -> Result<()> {
             let dns = DNS::new(&config.general.dns, authority);
 
             let api = &config.api;
-            let api = Api::new(
+            let api = api::new(
                 (api.http.as_deref(), api.http_proxy),
                 (api.https.as_deref(), api.https_proxy),
                 (api.prom.as_deref(), api.prom_proxy),