feat: add support of new type of subnet (cloud engine) in domain canister matcher by shilingwang · Pull Request #181 · dfinity/ic-gateway

shilingwang · 2026-02-24T17:45:12Z

#Node-1865

Summary

This PR replaces the hardcoded engine-subnet CLI flag with a dynamic,
periodically-refreshed view of the NNS routing table, and extends
DomainCanisterMatcher to route requests based on live subnet type
information fetched directly from the NNS state tree.

Motivation

Previously, whether a canister ran on an "engine subnet" was determined
by a static CLI flag. This meant operators had to know and manually
maintain the list of engine subnets. It also relied on a hardcoded
SYSTEM_SUBNETS range table for system subnet detection. Both are
fragile as the network evolves.

Changes

New: `src/routing/ic/subnets_info.rs`

Introduces SubnetsInfoFetcher, a background task (implements Run)
that periodically queries the NNS state tree in three round trips:

/subnet — discovers all subnet IDs.
/canister_ranges — fetches the full routing table (CBOR-encoded
shards per subnet), decoded into a sorted Vec<(lo, hi, subnet_id)>
for O(log n) lookups.
/subnet/<id>/type (batched) — fetches the type for every
discovered subnet.

The result is stored in SubnetsInfo behind an Arc<ArcSwap<...>> for
lock-free, thread-safe access on the hot path. SubnetsInfo::subnet_type(canister_id)
performs a binary-search over the sorted range table.

SubnetType covers all four types currently defined in the IC interface
spec: Application, System, VerifiedApplication, and the newly
added CloudEngine (per dfinity/ic#8892).

Updated: `DomainCanisterMatcher`

Removes the hardcoded SYSTEM_SUBNETS table and is_system_subnet
function. System subnet detection now uses SubnetType::System from
the live snapshot.
check() takes subnets_info: &SubnetsInfo as an explicit parameter
(injected by the middleware layer) instead of holding an
Arc<ArcSwap<SubnetsInfo>> internally — keeping the matcher as pure
static config.
Routing logic is now a single match on subnet_type:
- System → system domains
- CloudEngine → engine domains
- anything else (including unknown/empty snapshot) → app domains

Updated: `CanisterMatcherState`

Owns the Arc<ArcSwap<SubnetsInfo>>, loads the current snapshot once
per request, and passes it into check().

Updated: CLI (`src/cli.rs`)

--domain-engine: list of domains to serve cloud-engine subnet
canisters from.
--subnets-info-poll-interval (default 5m): how often to refresh
the NNS snapshot (replaces the engine-specific
--domain-engine-poll-interval).

Updated: `core.rs`

SubnetsInfoFetcher is now always started as a background task (no
longer gated on --domain-engine being set), because system subnet
routing also depends on the live snapshot.

Testing

8 new unit tests in domain_canister.rs covering all routing paths:
system / engine / app canister on correct and incorrect domains, the
pre-isolation canister bypass, and empty-snapshot fallback behaviour.
Existing integration tests and benchmarks continue to use
SubnetsInfo::default() (empty snapshot → app-domain fallback), which
is correct for their setup.

…ster matcher

frankdavid · 2026-02-27T11:16:00Z

src/policy/domain_canister.rs

+        let domains = match subnets_info.subnet_type(canister_id) {
+            Some(SubnetType::System) => &self.domains_system,
+            Some(SubnetType::CloudEngine) => &self.domains_engine,
+            _ => &self.domains_app,


It's a good practice to explicitly match (instead of _), so if somebody adds a new SubnetType, they get a compile-time error and won't forget to update this code.
You can use Some(SubnetType::...) | None to match two things at the same time.

frankdavid · 2026-02-27T11:18:49Z