ei
/
mtg
зеркало из https://github.com/9seconds/mtg
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Релизы 48 Вики Активность
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
1113 коммитов
4 Ветки
Дерево: 81e5a5ac82
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '81e5a5ac82'
${ noResults }
mtg/internal/cli/sni_check.go

sni_check.go 2.2KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. package cli

  2. 

  3. import (

  4. 	"context"

  5. 	"net"

  6. 

  7. 	"github.com/9seconds/mtg/v2/internal/config"

  8. 	"github.com/9seconds/mtg/v2/mtglib"

  9. )

  10. 

  11. // sniCheckResult captures the outcome of comparing the secret hostname's DNS

  12. // records with this server's public IP addresses.

  13. //

  14. // IPv4Match/IPv6Match are true when either a matching record was found, or

  15. // when the corresponding public IP could not be detected — in which case

  16. // there is nothing to compare against.

  17. type sniCheckResult struct {

  18. 	Host       string

  19. 	Resolved   []net.IP

  20. 	OurIPv4    net.IP

  21. 	OurIPv6    net.IP

  22. 	IPv4Match  bool

  23. 	IPv6Match  bool

  24. 	ResolveErr error

  25. }

  26. 

  27. // Known reports whether at least one public IP family was detected.

  28. func (r sniCheckResult) Known() bool {

  29. 	return r.OurIPv4 != nil || r.OurIPv6 != nil

  30. }

  31. 

  32. // OK reports whether every detected public IP family matches a resolved

  33. // record. A partial match (one family matches, another does not) is not OK.

  34. func (r sniCheckResult) OK() bool {

  35. 	return r.ResolveErr == nil && r.IPv4Match && r.IPv6Match

  36. }

  37. 

  38. // runSNICheck resolves conf.Secret.Host and compares the result with the

  39. // server's public IPv4 and IPv6. Public IPs come from config first and fall

  40. // back to on-the-fly detection via ntw.

  41. func runSNICheck(ctx context.Context,

  42. 	resolver *net.Resolver,

  43. 	conf *config.Config,

  44. 	ntw mtglib.Network,

  45. ) sniCheckResult {

  46. 	res := sniCheckResult{Host: conf.Secret.Host}

  47. 

  48. 	if res.Host == "" {

  49. 		res.IPv4Match = true

  50. 		res.IPv6Match = true

  51. 

  52. 		return res

  53. 	}

  54. 

  55. 	addrs, err := resolver.LookupIPAddr(ctx, res.Host)

  56. 	if err != nil {

  57. 		res.ResolveErr = err

  58. 

  59. 		return res

  60. 	}

  61. 

  62. 	res.Resolved = make([]net.IP, 0, len(addrs))

  63. 	for _, a := range addrs {

  64. 		res.Resolved = append(res.Resolved, a.IP)

  65. 	}

  66. 

  67. 	res.OurIPv4 = conf.PublicIPv4.Get(nil)

  68. 	if res.OurIPv4 == nil {

  69. 		res.OurIPv4 = getIP(ntw, "tcp4")

  70. 	}

  71. 

  72. 	res.OurIPv6 = conf.PublicIPv6.Get(nil)

  73. 	if res.OurIPv6 == nil {

  74. 		res.OurIPv6 = getIP(ntw, "tcp6")

  75. 	}

  76. 

  77. 	res.IPv4Match = res.OurIPv4 == nil

  78. 	res.IPv6Match = res.OurIPv6 == nil

  79. 

  80. 	for _, ip := range res.Resolved {

  81. 		if res.OurIPv4 != nil && ip.String() == res.OurIPv4.String() {

  82. 			res.IPv4Match = true

  83. 		}

  84. 

  85. 		if res.OurIPv6 != nil && ip.String() == res.OurIPv6.String() {

  86. 			res.IPv6Match = true

  87. 		}

  88. 	}

  89. 

  90. 	return res

  91. }