ei
/
mtg
spogulis no https://github.com/9seconds/mtg
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Laidieni 48 Vikivietne Aktivitāte
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
579 Revīzijas
4 Atzari
Koks: bef14bd009
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'bef14bd009'
${ noResults }
mtg/cli/proxy.go

proxy.go 5.2KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211 
  1. package cli

  2. 

  3. import (

  4. 	"fmt"

  5. 	"net"

  6. 	"os"

  7. 

  8. 	"github.com/9seconds/mtg/v2/antireplay"

  9. 	"github.com/9seconds/mtg/v2/events"

  10. 	"github.com/9seconds/mtg/v2/ipblocklist"

  11. 	"github.com/9seconds/mtg/v2/logger"

  12. 	"github.com/9seconds/mtg/v2/mtglib"

  13. 	"github.com/9seconds/mtg/v2/stats"

  14. 	"github.com/9seconds/mtg/v2/timeattack"

  15. 	"github.com/9seconds/mtg/v2/utils"

  16. 	"github.com/rs/zerolog"

  17. )

  18. 

  19. type Proxy struct {

  20. 	base

  21. 

  22. 	prometheusListener net.Listener

  23. 	prometheus         *stats.PrometheusFactory

  24. 	statsdFactory      *stats.StatsdFactory

  25. }

  26. 

  27. func (c *Proxy) Run(cli *CLI, version string) error {

  28. 	if err := c.ReadConfig(version); err != nil {

  29. 		return fmt.Errorf("cannot init config: %w", err)

  30. 	}

  31. 

  32. 	return c.Execute()

  33. }

  34. 

  35. func (c *Proxy) Execute() error { // nolint: funlen

  36. 	zerolog.TimeFieldFormat = zerolog.TimeFormatUnixMs

  37. 	zerolog.TimestampFieldName = "timestamp"

  38. 	zerolog.LevelFieldName = "level"

  39. 

  40. 	if c.Config.Debug {

  41. 		zerolog.SetGlobalLevel(zerolog.DebugLevel)

  42. 	} else {

  43. 		zerolog.SetGlobalLevel(zerolog.WarnLevel)

  44. 	}

  45. 

  46. 	ctx := utils.RootContext()

  47. 	opts := mtglib.ProxyOpts{

  48. 		Logger:             logger.NewZeroLogger(zerolog.New(os.Stdout).With().Timestamp().Logger()),

  49. 		Network:            c.Network,

  50. 		AntiReplayCache:    antireplay.NewNoop(),

  51. 		IPBlocklist:        ipblocklist.NewNoop(),

  52. 		TimeAttackDetector: timeattack.NewNoop(),

  53. 		EventStream:        events.NewNoopStream(),

  54. 

  55. 		Secret:             c.Config.Secret,

  56. 		BufferSize:         c.Config.TCPBuffer.Value(mtglib.DefaultBufferSize),

  57. 		DomainFrontingPort: c.Config.DomainFrontingPort.Value(mtglib.DefaultDomainFrontingPort),

  58. 		IdleTimeout:        c.Config.Network.Timeout.Idle.Value(mtglib.DefaultIdleTimeout),

  59. 		PreferIP:           c.Config.PreferIP.Value(mtglib.DefaultPreferIP),

  60. 	}

  61. 

  62. 	defer func() {

  63. 		opts.AntiReplayCache.Shutdown()

  64. 		opts.IPBlocklist.Shutdown()

  65. 		opts.EventStream.Shutdown()

  66. 	}()

  67. 

  68. 	if opts.Concurrency == 0 {

  69. 		opts.Concurrency = mtglib.DefaultConcurrency

  70. 	}

  71. 

  72. 	opts.Logger.BindStr("configuration", c.Config.String()).Debug("configuration")

  73. 

  74. 	c.setupAntiReplayCache(&opts)

  75. 	c.setupTimeAttackDetector(&opts)

  76. 

  77. 	if err := c.setupIPBlocklist(&opts); err != nil {

  78. 		return fmt.Errorf("cannot setup ipblocklist: %w", err)

  79. 	}

  80. 

  81. 	if err := c.setupEventStream(&opts); err != nil {

  82. 		return fmt.Errorf("cannot setup event stream: %w", err)

  83. 	}

  84. 

  85. 	proxy, err := mtglib.NewProxy(opts)

  86. 	if err != nil {

  87. 		return fmt.Errorf("cannot create a proxy: %w", err)

  88. 	}

  89. 

  90. 	listener, err := net.Listen("tcp", c.Config.BindTo.String())

  91. 	if err != nil {

  92. 		return fmt.Errorf("cannot start proxy: %w", err)

  93. 	}

  94. 

  95. 	go proxy.Serve(listener) // nolint: errcheck

  96. 

  97. 	<-ctx.Done()

  98. 

  99. 	listener.Close()

  100. 

  101. 	if c.prometheusListener != nil {

  102. 		c.prometheusListener.Close()

  103. 	}

  104. 

  105. 	if c.prometheus != nil {

  106. 		c.prometheus.Close()

  107. 	}

  108. 

  109. 	if c.statsdFactory != nil {

  110. 		c.statsdFactory.Close()

  111. 	}

  112. 

  113. 	return nil

  114. }

  115. 

  116. func (c *Proxy) setupAntiReplayCache(opts *mtglib.ProxyOpts) {

  117. 	if !c.Config.Defense.AntiReplay.Enabled {

  118. 		return

  119. 	}

  120. 

  121. 	opts.AntiReplayCache = antireplay.NewStableBloomFilter(

  122. 		c.Config.Defense.AntiReplay.MaxSize.Value(antireplay.DefaultMaxSize),

  123. 		c.Config.Defense.AntiReplay.ErrorRate.Value(antireplay.DefaultErrorRate),

  124. 	)

  125. }

  126. 

  127. func (c *Proxy) setupTimeAttackDetector(opts *mtglib.ProxyOpts) {

  128. 	if !c.Config.Defense.Time.Enabled {

  129. 		return

  130. 	}

  131. 

  132. 	opts.TimeAttackDetector = timeattack.NewDetector(

  133. 		c.Config.Defense.Time.AllowSkewness.Value(timeattack.DefaultDuration),

  134. 	)

  135. }

  136. 

  137. func (c *Proxy) setupIPBlocklist(opts *mtglib.ProxyOpts) error {

  138. 	if !c.Config.Defense.Blocklist.Enabled {

  139. 		return nil

  140. 	}

  141. 

  142. 	remoteURLs := []string{}

  143. 	localFiles := []string{}

  144. 

  145. 	for _, v := range c.Config.Defense.Blocklist.URLs {

  146. 		if v.IsRemote() {

  147. 			remoteURLs = append(remoteURLs, v.String())

  148. 		} else {

  149. 			localFiles = append(localFiles, v.String())

  150. 		}

  151. 	}

  152. 

  153. 	firehol, err := ipblocklist.NewFirehol(opts.Logger.Named("ipblockist"),

  154. 		c.Network,

  155. 		c.Config.Defense.Blocklist.DownloadConcurrency,

  156. 		remoteURLs,

  157. 		localFiles)

  158. 	if err != nil {

  159. 		return err // nolint: wrapcheck

  160. 	}

  161. 

  162. 	go firehol.Run(c.Config.Defense.Blocklist.UpdateEach.Value(ipblocklist.DefaultUpdateEach))

  163. 

  164. 	opts.IPBlocklist = firehol

  165. 

  166. 	return nil

  167. }

  168. 

  169. func (c *Proxy) setupEventStream(opts *mtglib.ProxyOpts) error {

  170. 	factories := make([]events.ObserverFactory, 0, 2)

  171. 

  172. 	if c.Config.Stats.StatsD.Enabled {

  173. 		statsdFactory, err := stats.NewStatsd(

  174. 			c.Config.Stats.StatsD.Address.String(),

  175. 			opts.Logger.Named("statsd"),

  176. 			c.Config.Stats.StatsD.MetricPrefix.Value(stats.DefaultStatsdMetricPrefix),

  177. 			c.Config.Stats.StatsD.TagFormat.Value(stats.DefaultStatsdTagFormat))

  178. 		if err != nil {

  179. 			return fmt.Errorf("cannot build statsd observer: %w", err)

  180. 		}

  181. 

  182. 		c.statsdFactory = &statsdFactory

  183. 

  184. 		factories = append(factories, statsdFactory.Make)

  185. 	}

  186. 

  187. 	if c.Config.Stats.Prometheus.Enabled {

  188. 		prometheus := stats.NewPrometheus(

  189. 			c.Config.Stats.Prometheus.MetricPrefix.Value(stats.DefaultMetricPrefix),

  190. 			c.Config.Stats.Prometheus.HTTPPath.Value("/"),

  191. 		)

  192. 

  193. 		listener, err := net.Listen("tcp", c.Config.Stats.Prometheus.BindTo.String())

  194. 		if err != nil {

  195. 			return fmt.Errorf("cannot start a listener for prometheus: %w", err)

  196. 		}

  197. 

  198. 		go prometheus.Serve(listener) // nolint: errcheck

  199. 

  200. 		c.prometheusListener = listener

  201. 		c.prometheus = prometheus

  202. 

  203. 		factories = append(factories, prometheus.Make)

  204. 	}

  205. 

  206. 	if len(factories) > 0 {

  207. 		opts.EventStream = events.NewEventStream(factories)

  208. 	}

  209. 

  210. 	return nil

  211. }