ei
/
mtg
peilaus alkaen https://github.com/9seconds/mtg
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Julkaisut 48 Wiki Activity
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
822 Commitit
4 Branchit
Puu: 36dad5a2f6
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '36dad5a2f6'
${ noResults }
mtg/internal/cli/run_proxy.go

run_proxy.go 7.2KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278 
  1. package cli

  2. 

  3. import (

  4. 	"context"

  5. 	"fmt"

  6. 	"net"

  7. 	"net/url"

  8. 	"os"

  9. 

  10. 	"github.com/9seconds/mtg/v2/antireplay"

  11. 	"github.com/9seconds/mtg/v2/events"

  12. 	"github.com/9seconds/mtg/v2/internal/config"

  13. 	"github.com/9seconds/mtg/v2/internal/utils"

  14. 	"github.com/9seconds/mtg/v2/ipblocklist"

  15. 	"github.com/9seconds/mtg/v2/ipblocklist/files"

  16. 	"github.com/9seconds/mtg/v2/logger"

  17. 	"github.com/9seconds/mtg/v2/mtglib"

  18. 	"github.com/9seconds/mtg/v2/network"

  19. 	"github.com/9seconds/mtg/v2/stats"

  20. 	"github.com/rs/zerolog"

  21. 	"github.com/yl2chen/cidranger"

  22. )

  23. 

  24. func makeLogger(conf *config.Config) mtglib.Logger {

  25. 	zerolog.TimeFieldFormat = zerolog.TimeFormatUnixMs

  26. 	zerolog.TimestampFieldName = "timestamp"

  27. 	zerolog.LevelFieldName = "level"

  28. 

  29. 	if conf.Debug.Get(false) {

  30. 		zerolog.SetGlobalLevel(zerolog.DebugLevel)

  31. 	} else {

  32. 		zerolog.SetGlobalLevel(zerolog.WarnLevel)

  33. 	}

  34. 

  35. 	baseLogger := zerolog.New(os.Stdout).With().Timestamp().Logger()

  36. 

  37. 	return logger.NewZeroLogger(baseLogger)

  38. }

  39. 

  40. func makeNetwork(conf *config.Config, version string) (mtglib.Network, error) {

  41. 	tcpTimeout := conf.Network.Timeout.TCP.Get(network.DefaultTimeout)

  42. 	httpTimeout := conf.Network.Timeout.HTTP.Get(network.DefaultHTTPTimeout)

  43. 	dohIP := conf.Network.DOHIP.Get(net.ParseIP(network.DefaultDOHHostname)).String()

  44. 	userAgent := "mtg/" + version

  45. 

  46. 	baseDialer, err := network.NewDefaultDialer(tcpTimeout, 0)

  47. 	if err != nil {

  48. 		return nil, fmt.Errorf("cannot build a default dialer: %w", err)

  49. 	}

  50. 

  51. 	if len(conf.Network.Proxies) == 0 {

  52. 		return network.NewNetwork(baseDialer, userAgent, dohIP, httpTimeout) //nolint: wrapcheck

  53. 	}

  54. 

  55. 	proxyURLs := make([]*url.URL, 0, len(conf.Network.Proxies))

  56. 

  57. 	for _, v := range conf.Network.Proxies {

  58. 		if value := v.Get(nil); value != nil {

  59. 			proxyURLs = append(proxyURLs, value)

  60. 		}

  61. 	}

  62. 

  63. 	if len(proxyURLs) == 1 {

  64. 		socksDialer, err := network.NewSocks5Dialer(baseDialer, proxyURLs[0])

  65. 		if err != nil {

  66. 			return nil, fmt.Errorf("cannot build socks5 dialer: %w", err)

  67. 		}

  68. 

  69. 		return network.NewNetwork(socksDialer, userAgent, dohIP, httpTimeout) //nolint: wrapcheck

  70. 	}

  71. 

  72. 	socksDialer, err := network.NewLoadBalancedSocks5Dialer(baseDialer, proxyURLs)

  73. 	if err != nil {

  74. 		return nil, fmt.Errorf("cannot build socks5 dialer: %w", err)

  75. 	}

  76. 

  77. 	return network.NewNetwork(socksDialer, userAgent, dohIP, httpTimeout) //nolint: wrapcheck

  78. }

  79. 

  80. func makeAntiReplayCache(conf *config.Config) mtglib.AntiReplayCache {

  81. 	if !conf.Defense.AntiReplay.Enabled.Get(false) {

  82. 		return antireplay.NewNoop()

  83. 	}

  84. 

  85. 	return antireplay.NewStableBloomFilter(

  86. 		conf.Defense.AntiReplay.MaxSize.Get(antireplay.DefaultStableBloomFilterMaxSize),

  87. 		conf.Defense.AntiReplay.ErrorRate.Get(antireplay.DefaultStableBloomFilterErrorRate),

  88. 	)

  89. }

  90. 

  91. func makeIPBlocklist(conf config.ListConfig,

  92. 	logger mtglib.Logger,

  93. 	ntw mtglib.Network,

  94. 	updateCallback ipblocklist.FireholUpdateCallback,

  95. ) (mtglib.IPBlocklist, error) {

  96. 	if !conf.Enabled.Get(false) {

  97. 		return ipblocklist.NewNoop(), nil

  98. 	}

  99. 

  100. 	remoteURLs := []string{}

  101. 	localFiles := []string{}

  102. 

  103. 	for _, v := range conf.URLs {

  104. 		if v.IsRemote() {

  105. 			remoteURLs = append(remoteURLs, v.String())

  106. 		} else {

  107. 			localFiles = append(localFiles, v.String())

  108. 		}

  109. 	}

  110. 

  111. 	blocklist, err := ipblocklist.NewFirehol(logger.Named("ipblockist"),

  112. 		ntw,

  113. 		conf.DownloadConcurrency.Get(1),

  114. 		remoteURLs,

  115. 		localFiles,

  116. 		updateCallback)

  117. 	if err != nil {

  118. 		return nil, fmt.Errorf("incorrect parameters for firehol: %w", err)

  119. 	}

  120. 

  121. 	go blocklist.Run(conf.UpdateEach.Get(ipblocklist.DefaultFireholUpdateEach))

  122. 

  123. 	return blocklist, nil

  124. }

  125. 

  126. func makeIPAllowlist(conf config.ListConfig,

  127. 	logger mtglib.Logger,

  128. 	ntw mtglib.Network,

  129. 	updateCallback ipblocklist.FireholUpdateCallback,

  130. ) (mtglib.IPBlocklist, error) {

  131. 	var (

  132. 		allowlist mtglib.IPBlocklist

  133. 		err       error

  134. 	)

  135. 

  136. 	if !conf.Enabled.Get(false) {

  137. 		allowlist, err = ipblocklist.NewFireholFromFiles(

  138. 			logger.Named("ipblocklist"),

  139. 			1,

  140. 			[]files.File{

  141. 				files.NewMem([]*net.IPNet{

  142. 					cidranger.AllIPv4,

  143. 					cidranger.AllIPv6,

  144. 				}),

  145. 			},

  146. 			updateCallback,

  147. 		)

  148. 

  149. 		go allowlist.Run(conf.UpdateEach.Get(ipblocklist.DefaultFireholUpdateEach))

  150. 	} else {

  151. 		allowlist, err = makeIPBlocklist(

  152. 			conf,

  153. 			logger,

  154. 			ntw,

  155. 			updateCallback,

  156. 		)

  157. 	}

  158. 

  159. 	if err != nil {

  160. 		return nil, fmt.Errorf("cannot build allowlist: %w", err)

  161. 	}

  162. 

  163. 	return allowlist, nil

  164. }

  165. 

  166. func makeEventStream(conf *config.Config, logger mtglib.Logger) (mtglib.EventStream, error) {

  167. 	factories := make([]events.ObserverFactory, 0, 2) //nolint: gomnd

  168. 

  169. 	if conf.Stats.StatsD.Enabled.Get(false) {

  170. 		statsdFactory, err := stats.NewStatsd(

  171. 			conf.Stats.StatsD.Address.Get(""),

  172. 			logger.Named("statsd"),

  173. 			conf.Stats.StatsD.MetricPrefix.Get(stats.DefaultStatsdMetricPrefix),

  174. 			conf.Stats.StatsD.TagFormat.Get(stats.DefaultStatsdTagFormat))

  175. 		if err != nil {

  176. 			return nil, fmt.Errorf("cannot build statsd observer: %w", err)

  177. 		}

  178. 

  179. 		factories = append(factories, statsdFactory.Make)

  180. 	}

  181. 

  182. 	if conf.Stats.Prometheus.Enabled.Get(false) {

  183. 		prometheus := stats.NewPrometheus(

  184. 			conf.Stats.Prometheus.MetricPrefix.Get(stats.DefaultMetricPrefix),

  185. 			conf.Stats.Prometheus.HTTPPath.Get("/"),

  186. 		)

  187. 

  188. 		listener, err := net.Listen("tcp", conf.Stats.Prometheus.BindTo.Get(""))

  189. 		if err != nil {

  190. 			return nil, fmt.Errorf("cannot start a listener for prometheus: %w", err)

  191. 		}

  192. 

  193. 		go prometheus.Serve(listener) //nolint: errcheck

  194. 

  195. 		factories = append(factories, prometheus.Make)

  196. 	}

  197. 

  198. 	if len(factories) > 0 {

  199. 		return events.NewEventStream(factories), nil

  200. 	}

  201. 

  202. 	return events.NewNoopStream(), nil

  203. }

  204. 

  205. func runProxy(conf *config.Config, version string) error { //nolint: funlen

  206. 	logger := makeLogger(conf)

  207. 

  208. 	logger.BindJSON("configuration", conf.String()).Debug("configuration")

  209. 

  210. 	eventStream, err := makeEventStream(conf, logger)

  211. 	if err != nil {

  212. 		return fmt.Errorf("cannot build event stream: %w", err)

  213. 	}

  214. 

  215. 	ntw, err := makeNetwork(conf, version)

  216. 	if err != nil {

  217. 		return fmt.Errorf("cannot build network: %w", err)

  218. 	}

  219. 

  220. 	blocklist, err := makeIPBlocklist(

  221. 		conf.Defense.Blocklist,

  222. 		logger.Named("blocklist"),

  223. 		ntw,

  224. 		func(ctx context.Context, size int) {

  225. 			eventStream.Send(ctx, mtglib.NewEventIPListSize(size, true))

  226. 		})

  227. 	if err != nil {

  228. 		return fmt.Errorf("cannot build ip blocklist: %w", err)

  229. 	}

  230. 

  231. 	allowlist, err := makeIPAllowlist(

  232. 		conf.Defense.Allowlist,

  233. 		logger.Named("allowlist"),

  234. 		ntw,

  235. 		func(ctx context.Context, size int) {

  236. 			eventStream.Send(ctx, mtglib.NewEventIPListSize(size, false))

  237. 		},

  238. 	)

  239. 	if err != nil {

  240. 		return fmt.Errorf("cannot build ip allowlist: %w", err)

  241. 	}

  242. 

  243. 	opts := mtglib.ProxyOpts{

  244. 		Logger:          logger,

  245. 		Network:         ntw,

  246. 		AntiReplayCache: makeAntiReplayCache(conf),

  247. 		IPBlocklist:     blocklist,

  248. 		IPAllowlist:     allowlist,

  249. 		EventStream:     eventStream,

  250. 

  251. 		Secret:             conf.Secret,

  252. 		DomainFrontingPort: conf.DomainFrontingPort.Get(mtglib.DefaultDomainFrontingPort),

  253. 		PreferIP:           conf.PreferIP.Get(mtglib.DefaultPreferIP),

  254. 

  255. 		AllowFallbackOnUnknownDC: conf.AllowFallbackOnUnknownDC.Get(false),

  256. 		TolerateTimeSkewness:     conf.TolerateTimeSkewness.Value,

  257. 	}

  258. 

  259. 	proxy, err := mtglib.NewProxy(opts)

  260. 	if err != nil {

  261. 		return fmt.Errorf("cannot create a proxy: %w", err)

  262. 	}

  263. 

  264. 	listener, err := utils.NewListener(conf.BindTo.Get(""), 0)

  265. 	if err != nil {

  266. 		return fmt.Errorf("cannot start proxy: %w", err)

  267. 	}

  268. 

  269. 	ctx := utils.RootContext()

  270. 

  271. 	go proxy.Serve(listener) //nolint: errcheck

  272. 

  273. 	<-ctx.Done()

  274. 	listener.Close()

  275. 	proxy.Shutdown()

  276. 

  277. 	return nil

  278. }