| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371 |
- /**
- * 错误规则检测引擎
- *
- * 特性:
- * - 按规则类型分组缓存(regex/contains/exact)
- * - 性能优先的检测顺序(包含 → 精确 → 正则)
- * - 单例模式,全局复用
- * - 支持热重载
- * - ReDoS 风险检测(safe-regex)
- * - EventEmitter 驱动的自动缓存刷新
- */
- import { getActiveErrorRules, type ErrorOverrideResponse } from "@/repository/error-rules";
- import { logger } from "@/lib/logger";
- import { eventEmitter } from "@/lib/event-emitter";
- import { isValidErrorOverrideResponse } from "@/lib/error-override-validator";
- import safeRegex from "safe-regex";
- /**
- * 错误检测结果
- */
- export interface ErrorDetectionResult {
- matched: boolean;
- category?: string; // 触发的错误分类
- pattern?: string; // 匹配的规则模式
- matchType?: string; // 匹配类型(regex/contains/exact)
- /** 覆写响应体:如果配置了则用此响应替换原始错误响应 */
- overrideResponse?: ErrorOverrideResponse;
- /** 覆写状态码:如果配置了则用此状态码替换原始状态码 */
- overrideStatusCode?: number;
- }
- /**
- * 缓存的正则规则
- */
- interface RegexPattern {
- pattern: RegExp;
- category: string;
- description?: string;
- overrideResponse?: ErrorOverrideResponse;
- overrideStatusCode?: number;
- }
- /**
- * 缓存的包含规则
- */
- interface ContainsPattern {
- text: string;
- category: string;
- description?: string;
- overrideResponse?: ErrorOverrideResponse;
- overrideStatusCode?: number;
- }
- /**
- * 缓存的精确规则
- */
- interface ExactPattern {
- text: string;
- category: string;
- description?: string;
- overrideResponse?: ErrorOverrideResponse;
- overrideStatusCode?: number;
- }
- /**
- * 错误规则检测缓存类
- */
- class ErrorRuleDetector {
- private regexPatterns: RegexPattern[] = [];
- private containsPatterns: ContainsPattern[] = [];
- private exactPatterns: Map<string, ExactPattern> = new Map();
- private lastReloadTime: number = 0;
- private isLoading: boolean = false;
- private isInitialized: boolean = false; // 跟踪初始化状态
- private initializationPromise: Promise<void> | null = null; // 防止并发初始化竞态
- constructor() {
- // 监听数据库变更事件,自动刷新缓存
- eventEmitter.on("errorRulesUpdated", () => {
- this.reload().catch((error) => {
- logger.error("[ErrorRuleDetector] Failed to reload cache on event:", error);
- });
- });
- }
- /**
- * 确保规则已加载(懒加载,首次使用时或显式 reload 时调用)
- * 避免在数据库未准备好时过早加载
- * 使用 Promise 合并模式防止并发请求时的竞态条件
- */
- private async ensureInitialized(): Promise<void> {
- if (this.isInitialized) {
- return;
- }
- if (!this.initializationPromise) {
- this.initializationPromise = this.reload().finally(() => {
- this.initializationPromise = null;
- });
- }
- await this.initializationPromise;
- }
- /**
- * 从数据库重新加载错误规则
- */
- async reload(): Promise<void> {
- if (this.isLoading) {
- logger.warn("[ErrorRuleDetector] Reload already in progress, skipping");
- return;
- }
- this.isLoading = true;
- try {
- logger.info("[ErrorRuleDetector] Reloading error rules from database...");
- let rules;
- try {
- rules = await getActiveErrorRules();
- } catch (dbError) {
- // 优雅处理表不存在的情况(迁移还未执行时)
- // 这允许应用在迁移前正常启动,迁移后会自动重载
- const errorMessage = (dbError as Error).message || "";
- if (errorMessage.includes("relation") && errorMessage.includes("does not exist")) {
- logger.warn(
- "[ErrorRuleDetector] error_rules table does not exist yet (migration pending), using empty rules"
- );
- this.lastReloadTime = Date.now();
- this.isLoading = false; // 关键:early return 时必须清除 isLoading,否则后续 reload 会被永久阻塞
- return;
- }
- // 其他数据库错误继续抛出
- throw dbError;
- }
- // 使用局部变量收集新数据,避免 reload 期间 detect() 返回空结果
- const newRegexPatterns: RegexPattern[] = [];
- const newContainsPatterns: ContainsPattern[] = [];
- const newExactPatterns = new Map<string, ExactPattern>();
- // 按类型分组加载规则
- let validRegexCount = 0;
- let skippedRedosCount = 0;
- let skippedInvalidResponseCount = 0;
- for (const rule of rules) {
- // 在加载阶段验证 overrideResponse 格式,过滤畸形数据
- let validatedOverrideResponse: ErrorOverrideResponse | undefined = undefined;
- if (rule.overrideResponse) {
- if (isValidErrorOverrideResponse(rule.overrideResponse)) {
- validatedOverrideResponse = rule.overrideResponse;
- } else {
- logger.warn(
- `[ErrorRuleDetector] Invalid override_response for rule ${rule.id} (pattern: ${rule.pattern}), skipping response override`
- );
- skippedInvalidResponseCount++;
- }
- }
- switch (rule.matchType) {
- case "contains": {
- const lowerText = rule.pattern.toLowerCase();
- newContainsPatterns.push({
- text: lowerText,
- category: rule.category,
- description: rule.description ?? undefined,
- overrideResponse: validatedOverrideResponse,
- overrideStatusCode: rule.overrideStatusCode ?? undefined,
- });
- break;
- }
- case "exact": {
- const lowerText = rule.pattern.toLowerCase();
- newExactPatterns.set(lowerText, {
- text: lowerText,
- category: rule.category,
- description: rule.description ?? undefined,
- overrideResponse: validatedOverrideResponse,
- overrideStatusCode: rule.overrideStatusCode ?? undefined,
- });
- break;
- }
- case "regex": {
- // 使用 safe-regex 检测 ReDoS 风险
- try {
- if (!safeRegex(rule.pattern)) {
- logger.warn(
- `[ErrorRuleDetector] ReDoS risk detected in pattern: ${rule.pattern}, skipping`
- );
- skippedRedosCount++;
- break;
- }
- const pattern = new RegExp(rule.pattern, "i");
- newRegexPatterns.push({
- pattern,
- category: rule.category,
- description: rule.description ?? undefined,
- overrideResponse: validatedOverrideResponse,
- overrideStatusCode: rule.overrideStatusCode ?? undefined,
- });
- validRegexCount++;
- } catch (error) {
- logger.error(`[ErrorRuleDetector] Invalid regex pattern: ${rule.pattern}`, error);
- }
- break;
- }
- default:
- logger.warn(`[ErrorRuleDetector] Unknown match type: ${rule.matchType}`);
- }
- }
- // 原子替换:确保 detect() 始终看到一致的数据集
- this.regexPatterns = newRegexPatterns;
- this.containsPatterns = newContainsPatterns;
- this.exactPatterns = newExactPatterns;
- this.lastReloadTime = Date.now();
- this.isInitialized = true; // 标记为已初始化
- const skippedInfo = [
- skippedRedosCount > 0 ? `${skippedRedosCount} ReDoS` : "",
- skippedInvalidResponseCount > 0 ? `${skippedInvalidResponseCount} invalid response` : "",
- ]
- .filter(Boolean)
- .join(", ");
- logger.info(
- `[ErrorRuleDetector] Loaded ${rules.length} error rules: ` +
- `contains=${newContainsPatterns.length}, exact=${newExactPatterns.size}, ` +
- `regex=${validRegexCount}${skippedInfo ? ` (skipped: ${skippedInfo})` : ""}`
- );
- } catch (error) {
- logger.error("[ErrorRuleDetector] Failed to reload error rules:", error);
- // 失败时不清空现有缓存,保持降级可用
- } finally {
- this.isLoading = false;
- }
- }
- /**
- * 异步检测错误消息(推荐使用)
- * 确保规则已加载后再进行检测
- *
- * @param errorMessage - 错误消息
- * @returns 检测结果
- */
- async detectAsync(errorMessage: string): Promise<ErrorDetectionResult> {
- await this.ensureInitialized();
- return this.detect(errorMessage);
- }
- /**
- * 检测错误消息是否匹配任何规则(同步版本)
- *
- * 注意:如果规则未初始化,会记录警告并返回 false
- * 推荐使用 detectAsync() 以确保规则已加载
- *
- * 检测顺序(性能优先):
- * 1. 包含匹配(最快,O(n*m))
- * 2. 精确匹配(使用 Set,O(1))
- * 3. 正则匹配(最慢,但最灵活)
- *
- * @param errorMessage - 错误消息
- * @returns 检测结果
- */
- detect(errorMessage: string): ErrorDetectionResult {
- if (!errorMessage || errorMessage.length === 0) {
- return { matched: false };
- }
- // 如果未初始化,记录警告
- if (!this.isInitialized && !this.isLoading) {
- logger.warn(
- "[ErrorRuleDetector] detect() called before initialization, results may be incomplete. Consider using detectAsync() instead."
- );
- }
- const lowerMessage = errorMessage.toLowerCase();
- const trimmedMessage = lowerMessage.trim();
- // 1. 包含匹配(最快)
- for (const pattern of this.containsPatterns) {
- if (lowerMessage.includes(pattern.text)) {
- return {
- matched: true,
- category: pattern.category,
- pattern: pattern.text,
- matchType: "contains",
- overrideResponse: pattern.overrideResponse,
- overrideStatusCode: pattern.overrideStatusCode,
- };
- }
- }
- // 2. 精确匹配(O(1) 查询)
- const exactMatch = this.exactPatterns.get(trimmedMessage);
- if (exactMatch) {
- return {
- matched: true,
- category: exactMatch.category,
- pattern: exactMatch.text,
- matchType: "exact",
- overrideResponse: exactMatch.overrideResponse,
- overrideStatusCode: exactMatch.overrideStatusCode,
- };
- }
- // 3. 正则匹配(最慢,但最灵活)
- for (const { pattern, category, overrideResponse, overrideStatusCode } of this.regexPatterns) {
- if (pattern.test(errorMessage)) {
- return {
- matched: true,
- category,
- pattern: pattern.source,
- matchType: "regex",
- overrideResponse,
- overrideStatusCode,
- };
- }
- }
- return { matched: false };
- }
- /**
- * 获取缓存统计信息
- */
- getStats() {
- return {
- regexCount: this.regexPatterns.length,
- containsCount: this.containsPatterns.length,
- exactCount: this.exactPatterns.size,
- totalCount:
- this.regexPatterns.length + this.containsPatterns.length + this.exactPatterns.size,
- lastReloadTime: this.lastReloadTime,
- isLoading: this.isLoading,
- };
- }
- /**
- * 检查是否完成至少一次初始化
- *
- * 用于避免未加载完成时缓存空结果,导致后续请求无法命中规则
- */
- hasInitialized(): boolean {
- return this.isInitialized;
- }
- /**
- * 检查缓存是否为空
- */
- isEmpty(): boolean {
- return (
- this.regexPatterns.length === 0 &&
- this.containsPatterns.length === 0 &&
- this.exactPatterns.size === 0
- );
- }
- }
- /**
- * 全局单例导出
- */
- export const errorRuleDetector = new ErrorRuleDetector();
|
