support setting recv/send timeout for tcp and udp connections

Author: neevek

Cargo.lock

@@ -1,6 +1,6 @@
 [package]
 name = "omnip"
-version = "0.6.3"
+version = "0.6.4"
 edition = "2021"
 
 [lib]
@@ -28,7 +28,7 @@ lazy_static = "1.4"
 async-trait = "0.1"
 byte-pool = { git = "https://github.com/neevek/byte-pool" }
 # rstun = { path = "../rstun" }
-rstun = { git = "https://github.com/neevek/rstun", tag = "release/0.6.4" }
+rstun = { git = "https://github.com/neevek/rstun", tag = "release/0.6.5" }
 hyper = { version = "0.14", features = ["full"]}
 http = "0.2"
 http-body = "0.4"

Cargo.toml

@@ -122,9 +122,13 @@ Options:
   -e, --cipher <CIPHER>
           Applicable only for +quic protocols
           Cipher for encryption [default: chacha20-poly1305] [possible values: chacha20-poly1305, aes-256-gcm, aes-128-gcm]
-  -i, --max-idle-timeout-ms <MAX_IDLE_TIMEOUT_MS>
+  -i, --quic-timeout-ms <QUIC_TIMEOUT_MS>
           Applicable only for quic protocol as upstream
           Max idle timeout for the QUIC connections [default: 120000]
+      --tcp-timeout-ms <TCP_TIMEOUT_MS>
+          Read timeout in milliseconds for TCP connections [default: 30000]
+      --udp-timeout-ms <UDP_TIMEOUT_MS>
+          Read timeout in milliseconds for UDP connections [default: 5000]
   -R, --retry-interval-ms <RETRY_INTERVAL_MS>
           Applicable only for quic protocol as upstream
           Max idle timeout for the QUIC connections [default: 5000]

README.md

@@ -31,14 +31,18 @@ fn main() -> Result<()> {
         args.threads,
         args.watch_proxy_rules_change,
         args.tcp_nodelay,
+        args.tcp_timeout_ms,
+        args.udp_timeout_ms,
     )?;
 
     let common_quic_config = CommonQuicConfig {
         cert: args.cert,
         key: args.key,
         password: args.password,
         cipher: args.cipher,
-        max_idle_timeout_ms: args.max_idle_timeout_ms,
+        quic_timeout_ms: args.quic_timeout_ms,
+        tcp_timeout_ms: args.tcp_timeout_ms,
+        udp_timeout_ms: args.udp_timeout_ms,
         retry_interval_ms: args.retry_interval_ms,
         workers: args.threads,
     };
@@ -156,7 +160,15 @@ struct OmnipArgs {
     /// Applicable only for quic protocol as upstream
     /// Max idle timeout for the QUIC connections
     #[arg(short = 'i', long, verbatim_doc_comment, default_value = "120000")]
-    max_idle_timeout_ms: u64,
+    quic_timeout_ms: u64,
+
+    /// Read timeout in milliseconds for TCP connections
+    #[arg(long, verbatim_doc_comment, default_value = "30000")]
+    tcp_timeout_ms: u64,
+
+    /// Read timeout in milliseconds for UDP connections
+    #[arg(long, verbatim_doc_comment, default_value = "5000")]
+    udp_timeout_ms: u64,
 
     /// Applicable only for quic protocol as upstream
     /// Max idle timeout for the QUIC connections

src/bin/omnip.rs

@@ -319,6 +319,8 @@ pub struct Config {
     pub name_servers: String,
     pub watch_proxy_rules_change: bool,
     pub tcp_nodelay: bool,
+    pub tcp_timeout_ms: u64,
+    pub udp_timeout_ms: u64,
 }
 
 #[derive(Debug)]
@@ -353,7 +355,9 @@ pub struct CommonQuicConfig {
     pub key: String,
     pub cipher: String,
     pub password: String,
-    pub max_idle_timeout_ms: u64,
+    pub quic_timeout_ms: u64,
+    pub tcp_timeout_ms: u64,
+    pub udp_timeout_ms: u64,
     pub retry_interval_ms: u64,
     pub workers: usize,
 }
@@ -494,6 +498,8 @@ pub fn create_config(
     workers: usize,
     watch_proxy_rules_change: bool,
     tcp_nodelay: bool,
+    tcp_timeout_ms: u64,
+    udp_timeout_ms: u64,
 ) -> Result<Config> {
     let server_addr = match parse_server_addr(&server_addr)? {
         Some(server_addr) => server_addr,
@@ -558,6 +564,8 @@ pub fn create_config(
         name_servers,
         watch_proxy_rules_change,
         tcp_nodelay,
+        tcp_timeout_ms,
+        udp_timeout_ms
     })
 }
 
@@ -611,7 +619,7 @@ pub mod android {
         jkey: JString,
         jcipher: JString,
         jpassword: JString,
-        jmaxIdleTimeoutMs: jint,
+        jquicTimeoutMs: jint,
         jretryIntervalMs: jint,
         jworkers: jint,
         jtcpNoDelay: jboolean,
@@ -652,7 +660,7 @@ pub mod android {
             key,
             password,
             cipher,
-            max_idle_timeout_ms: jmaxIdleTimeoutMs as u64,
+            quic_timeout_ms: jquicTimeoutMs as u64,
             retry_interval_ms: jretryIntervalMs as u64,
             workers: jworkers as usize,
         };

src/lib.rs

@@ -57,7 +57,9 @@ impl QuicClient {
         config.password = quic_client_config.common_cfg.password.clone();
         config.cert_path = quic_client_config.common_cfg.cert.clone();
         config.cipher = quic_client_config.common_cfg.cipher.clone();
-        config.max_idle_timeout_ms = quic_client_config.common_cfg.max_idle_timeout_ms;
+        config.quic_timeout_ms = quic_client_config.common_cfg.quic_timeout_ms;
+        config.tcp_timeout_ms = quic_client_config.common_cfg.tcp_timeout_ms;
+        config.udp_timeout_ms = quic_client_config.common_cfg.udp_timeout_ms;
         config.wait_before_retry_ms = quic_client_config.common_cfg.retry_interval_ms;
         config.workers = quic_client_config.common_cfg.workers;
         config.local_tcp_server_addr = quic_client_config.local_tcp_server_addr;

src/quic/quic_client.rs

@@ -20,7 +20,9 @@ impl QuicServer {
             password: quic_server_config.common_cfg.password.to_string(),
             cert_path: quic_server_config.common_cfg.cert.to_string(),
             key_path: quic_server_config.common_cfg.key.to_string(),
-            max_idle_timeout_ms: quic_server_config.common_cfg.max_idle_timeout_ms,
+            quic_timeout_ms: quic_server_config.common_cfg.quic_timeout_ms,
+            tcp_timeout_ms: quic_server_config.common_cfg.tcp_timeout_ms,
+            udp_timeout_ms: quic_server_config.common_cfg.udp_timeout_ms,
             default_tcp_upstream: quic_server_config.tcp_upstream,
             default_udp_upstream: quic_server_config.udp_upstream,
             dashboard_server: "".to_string(),

src/quic/quic_server.rs

@@ -332,7 +332,9 @@ impl Server {
         use_sync: bool,
     ) -> Result<UdpServer> {
         let upstream_addr = inner_state!(self, udp_upstream).unwrap();
-        let udp_server = UdpServer::bind_and_start(addr, upstream_addr, use_sync).await?;
+        let udp_server =
+            UdpServer::bind_and_start(addr, upstream_addr, use_sync, self.config.udp_timeout_ms)
+                .await?;
 
         let udp_server_addr = udp_server.local_addr().unwrap();
         inner_state!(self, udp_upstream) = Some(udp_server_addr);
@@ -491,15 +493,9 @@ impl Server {
             proxy_rule_manager: inner_state!(self, proxy_rule_manager).clone(),
             stats_sender,
             tcp_nodelay: cfg.tcp_nodelay,
+            tcp_timeout_ms: cfg.tcp_timeout_ms,
         });
 
-        // if let Some(p) = cfg.server_addr.proto {
-        //     if p.is_udp_supported() {
-        //         let addr = cfg.upstream_udp.unwrap_or(cfg.upstream_addr);
-        //         let udp_server = UdpServer::bind_and_start(cfg.addr, upstream_addr, false).await;
-        //     }
-        // }
-
         loop {
             match proxy_listener.accept().await {
                 Ok((inbound_stream, _addr)) => {
@@ -532,6 +528,7 @@ impl Server {
                                     inbound_stream,
                                     outbound_stream,
                                     &psp.stats_sender,
+                                    psp.tcp_timeout_ms,
                                 )
                                 .await
                                 .ok();
@@ -789,6 +786,7 @@ impl Server {
                         inbound_stream,
                         outbound_stream,
                         &params.stats_sender,
+                        params.tcp_timeout_ms,
                     )
                     .await?;
                 }
@@ -863,6 +861,7 @@ impl Server {
         mut inbound_stream: TcpStream,
         mut outbound_stream: TcpStream,
         stats_sender: &Sender<ServerStats>,
+        tcp_timeout_ms: u64,
     ) -> Result<ProxyTraffic, ProxyError> {
         stats_sender.send(ServerStats::NewConnection).await.ok();
 
@@ -897,13 +896,15 @@ impl Server {
                         &mut outbound_writer,
                         &mut inbound_buffer,
                         &mut tx_bytes,
-                        &mut inbound_stream_eos) => result,
+                        &mut inbound_stream_eos,
+                        tcp_timeout_ms) => result,
                     result = Self::transfer_data_with_timeout(
                         &mut outbound_reader,
                         &mut inbound_writer,
                         &mut outbound_buffer,
                         &mut rx_bytes,
-                        &mut outbound_stream_eos) => result,
+                        &mut outbound_stream_eos,
+                        tcp_timeout_ms) => result,
                 }
             } else if !outbound_stream_eos {
                 Self::transfer_data_with_timeout(
@@ -912,6 +913,7 @@ impl Server {
                     &mut outbound_buffer,
                     &mut rx_bytes,
                     &mut outbound_stream_eos,
+                    tcp_timeout_ms,
                 )
                 .await
             } else {
@@ -921,6 +923,7 @@ impl Server {
                     &mut inbound_buffer,
                     &mut tx_bytes,
                     &mut inbound_stream_eos,
+                    tcp_timeout_ms,
                 )
                 .await
             };
@@ -956,12 +959,13 @@ impl Server {
         buffer: &mut [u8],
         out_bytes: &mut u64,
         eos_flag: &mut bool,
+        tcp_timeout_ms: u64,
     ) -> Result<usize, ProxyError>
     where
         R: AsyncRead + Unpin,
         W: AsyncWrite + Unpin,
     {
-        match tokio::time::timeout(Duration::from_secs(15), reader.read(buffer))
+        match tokio::time::timeout(Duration::from_millis(tcp_timeout_ms), reader.read(buffer))
             .await
             .map_err(|_: Elapsed| ProxyError::Timeout)?
         {
@@ -1206,7 +1210,7 @@ impl Api for Server {
             cert: cfg.cert.clone(),
             cipher: cfg.cipher.clone(),
             password: cfg.password.clone(),
-            idle_timeout: cfg.max_idle_timeout_ms,
+            idle_timeout: cfg.quic_timeout_ms,
             retry_interval: cfg.retry_interval_ms,
         }
     }
@@ -1252,7 +1256,7 @@ impl Api for Server {
         base_common_quic_config.cert = config.cert;
         base_common_quic_config.cipher = config.cipher;
         base_common_quic_config.password = config.password;
-        base_common_quic_config.max_idle_timeout_ms = config.idle_timeout;
+        base_common_quic_config.quic_timeout_ms = config.idle_timeout;
         base_common_quic_config.retry_interval_ms = config.retry_interval;
         let upstream_addr = NetAddr::from_str(config.upstream_addr.as_str())?;
         let quic_client_join_handle = self
@@ -1273,4 +1277,5 @@ struct ProxySupportParams {
     proxy_rule_manager: Option<ProxyRuleManager>,
     stats_sender: Sender<ServerStats>,
     tcp_nodelay: bool,
+    tcp_timeout_ms: u64,
 }

src/server.rs

@@ -24,6 +24,7 @@ impl UdpServer {
         server_addr: SocketAddr,
         upstream_addr: SocketAddr,
         use_sync: bool,
+        udp_timeout_ms: u64,
     ) -> Result<Self> {
         let serv_sock = Arc::new(UdpSocket::bind(server_addr).await?);
 
@@ -41,7 +42,9 @@ impl UdpServer {
                     Ok((size, addr)) => {
                         tokio::spawn(async move {
                             let state = state.lock().unwrap().clone();
-                            let sock = Self::open_udp_socket(&state, addr, upstream_addr).await?;
+                            let sock =
+                                Self::open_udp_socket(&state, addr, upstream_addr, udp_timeout_ms)
+                                    .await?;
                             sock.send(&buf[..size]).await.ok();
                             Ok::<(), anyhow::Error>(())
                         });
@@ -66,6 +69,7 @@ impl UdpServer {
         state: &State,
         inbound_addr: SocketAddr,
         outbound_addr: SocketAddr,
+        udp_timeout_ms: u64,
     ) -> Result<Arc<UdpSocket>> {
         if let Some(s) = state.sock_map.get(&inbound_addr) {
             return Ok((*s).clone());
@@ -87,7 +91,11 @@ impl UdpServer {
             );
             loop {
                 let mut buf = BUFFER_POOL.alloc_and_fill(UDP_PACKET_SIZE);
-                match tokio::time::timeout(Duration::from_secs(5), udp_socket.recv(&mut buf)).await
+                match tokio::time::timeout(
+                    Duration::from_millis(udp_timeout_ms),
+                    udp_socket.recv(&mut buf),
+                )
+                .await
                 {
                     Ok(Ok(size)) => {
                         unsafe {