Cloudflare ya sanar da buɗaɗɗen lambar tushe na tsarin Pingora, wanda aka ƙera don haɓaka amintaccen, sabis na cibiyar sadarwa mai ƙarfi da tsarin cibiyar sadarwa mai shirye-shirye a cikin harshen Rust. An gwada tsarin da kyau kuma an riga an yi amfani da shi a cikin manyan kayan aiki - an yi amfani da wakili da aka gina bisa tushensa a cikin hanyar sadarwar abun ciki na Cloudflare maimakon Nginx fiye da shekara guda kuma yana aiwatar da buƙatun fiye da miliyan 40 a sakan daya. An rubuta lambar a cikin Rust kuma an buga shi ƙarƙashin lasisin Apache 2.0.
Ana iya amfani da Pingora don sarrafa buƙatun zaren da yawa a cikin yanayin asynchronous, yana goyan bayan HTTP/1 da HTTP/2 (HTTP/3 a cikin tsare-tsare), gRPC da WebSocket proxying, ma'auni mai ɗaukar nauyi, canza sanyi ba tare da sake farawa ba, sabunta lambar ba tare da fasa haɗin gwiwa ba, ma'anar madaidaicin madaidaicin ma'aunin dabarar idan akwai gazawa ( gazawa), haɗin kai tare da tsarin sa ido daban-daban da tsarin shiga (Syslog, Prometheus, Sentry, OpenTelemetry). Pingora kuma yana goyan bayan ɓoyayyen TLS, amma ana aiwatar da shi azaman ƙari ga ɗakunan karatu na OpenSSL da BoringSSL C.
Ana ba da fakitin Rust ɗin da aka shirya don ƙirƙirar wakili na HTTP, aiki tare da ka'idojin cibiyar sadarwa, rarraba kanun HTTP, lissafin kuɗi da iyakance zirga-zirga, daidaita nauyi, aiki tare da ketama da aka rarraba mashigar zanta, riƙe cache a cikin RAM da sarrafa asynchronous na lokaci. Baya ga HTTP, ana samun goyan bayan ƙirƙirar ayyuka ta amfani da nasu ladabi ko UDP/TCP.
An gano cewa tabbatar da tsaro a matsayin muhimmin abu ga aikin. Domin rage yiwuwar kurakurai masu alaƙa da ƙwaƙwalwa, an zaɓi harshen Rust don haɓakawa. An kuma ba da kulawa mai mahimmanci ga inganci, aiki, da kuma iya faɗaɗawa. Misali, lokacin ƙirƙirar wakilaisabobin Masu daidaita nauyi da sabar da ke tushen Pingora suna ba da damar haɗa masu sarrafa kira da matattara waɗanda ke ba ku damar sarrafa matakai daban-daban na sarrafa buƙata, da kuma gyara, tura, toshewa, da buƙatun rajista da amsoshi.
Tare da Ƙungiyar Binciken Tsaron Intanet (ISRG), wacce ita ce ta kafa aikin Let's Encrypt kuma ke haɓaka haɓaka fasahohi don inganta tsaron intanet, za a ƙirƙiri wani wakili mai suna River bisa ga Pingora, wanda aka tsara don amfani a cikin muhimman abubuwa. hanyoyin sadarwa na sadarwaZa a rubuta lambar River da Rust kuma a ba ta lasisi a ƙarƙashin lasisin Apache 2.0. An shirya fara aikin a kwata na biyu na 2024. A halin yanzu aikin yana cikin matakin ƙira da gine-gine. Ana haɓaka aikin a ƙarƙashin jagorancin James Munns na Rust Embedded Working Group.
Babban manufar aikin Kogin shine aiwatar da wakili mai iya isar da buƙatun abokin ciniki zuwa sabar baya, tura haɗin TLS masu shigowa da kuma sarrafa, gyara da tace buƙatun daidai da ƙayyadaddun ƙayyadaddun ƙa'idodi. Daga cikin fasalulluka na Kogin, an ambaci samfurin sarrafa buƙatun da yawa, wanda ke ba da damar sake amfani da haɗin gwiwa mai inganci idan aka kwatanta da proxies kamar nginx. Don faɗaɗa aikin wakili da ƙirƙirar masu tacewa, zai yiwu a haɗa samfuran da aka haɗa a cikin tsarin Gidan Yanar gizo (don haɓakawa, zaku iya amfani da kowane yarukan shirye-shirye waɗanda aka haɗa a cikin WASM). Suna shirin yin tsarin daidaitawa a matsayin mai sauƙi kuma sananne kamar yadda zai yiwu.
source: budenet.ru
