2021-04-29 16:48:47 +08:00
|
|
|
|
// Copyright 2021 Liuxiangchao iwind.liu@gmail.com. All rights reserved.
|
|
|
|
|
|
|
|
|
|
|
|
package nodes
|
|
|
|
|
|
|
|
|
|
|
|
import (
|
2023-08-11 14:38:00 +08:00
|
|
|
|
"fmt"
|
2021-04-29 16:48:47 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/nodeconfigs"
|
2022-01-10 19:54:10 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs/firewallconfigs"
|
2022-09-02 15:20:58 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/conns"
|
2021-11-13 21:30:24 +08:00
|
|
|
|
teaconst "github.com/TeaOSLab/EdgeNode/internal/const"
|
2022-01-10 19:54:10 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/iplibrary"
|
2022-07-05 20:37:00 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/stats"
|
2022-01-10 19:54:10 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/utils"
|
2023-04-21 15:08:44 +08:00
|
|
|
|
connutils "github.com/TeaOSLab/EdgeNode/internal/utils/conns"
|
2023-07-13 15:37:08 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/utils/counters"
|
2023-04-08 12:47:04 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/utils/fasttime"
|
2022-01-10 19:54:10 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/waf"
|
2022-08-26 16:47:42 +08:00
|
|
|
|
"github.com/iwind/TeaGo/Tea"
|
2022-01-10 19:54:10 +08:00
|
|
|
|
"github.com/iwind/TeaGo/types"
|
2021-04-29 16:48:47 +08:00
|
|
|
|
"net"
|
2022-01-10 19:54:10 +08:00
|
|
|
|
"os"
|
2022-07-05 20:37:00 +08:00
|
|
|
|
"strings"
|
2021-04-29 16:48:47 +08:00
|
|
|
|
"sync/atomic"
|
|
|
|
|
|
"time"
|
|
|
|
|
|
)
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
// ClientConn 客户端连接
|
|
|
|
|
|
type ClientConn struct {
|
2022-08-26 16:47:42 +08:00
|
|
|
|
BaseClientConn
|
|
|
|
|
|
|
2022-12-21 15:59:07 +08:00
|
|
|
|
createdAt int64
|
|
|
|
|
|
|
|
|
|
|
|
isTLS bool
|
2023-01-04 20:43:10 +08:00
|
|
|
|
isHTTP bool
|
2022-12-21 15:59:07 +08:00
|
|
|
|
hasRead bool
|
2022-01-13 11:45:51 +08:00
|
|
|
|
|
2022-09-14 18:52:26 +08:00
|
|
|
|
isLO bool // 是否为环路
|
2023-04-21 15:08:44 +08:00
|
|
|
|
isNoStat bool // 是否不统计带宽
|
2022-09-14 18:52:26 +08:00
|
|
|
|
isInAllowList bool
|
2022-07-05 20:37:00 +08:00
|
|
|
|
|
2022-01-13 11:36:05 +08:00
|
|
|
|
hasResetSYNFlood bool
|
2022-12-21 15:59:07 +08:00
|
|
|
|
|
|
|
|
|
|
lastReadAt int64
|
|
|
|
|
|
lastWriteAt int64
|
|
|
|
|
|
lastErr error
|
2023-01-04 20:43:10 +08:00
|
|
|
|
|
|
|
|
|
|
readDeadlineTime int64
|
2023-01-10 09:47:56 +08:00
|
|
|
|
isShortReading bool // reading header or tls handshake
|
|
|
|
|
|
|
|
|
|
|
|
isDebugging bool
|
|
|
|
|
|
autoReadTimeout bool
|
|
|
|
|
|
autoWriteTimeout bool
|
2021-04-29 16:48:47 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2023-01-04 20:43:10 +08:00
|
|
|
|
func NewClientConn(rawConn net.Conn, isHTTP bool, isTLS bool, isInAllowList bool) net.Conn {
|
2022-07-05 20:37:00 +08:00
|
|
|
|
// 是否为环路
|
2022-08-27 10:49:16 +08:00
|
|
|
|
var remoteAddr = rawConn.RemoteAddr().String()
|
2022-07-05 20:37:00 +08:00
|
|
|
|
|
2022-08-27 10:49:16 +08:00
|
|
|
|
var conn = &ClientConn{
|
|
|
|
|
|
BaseClientConn: BaseClientConn{rawConn: rawConn},
|
2022-07-05 20:37:00 +08:00
|
|
|
|
isTLS: isTLS,
|
2023-01-04 20:43:10 +08:00
|
|
|
|
isHTTP: isHTTP,
|
2023-04-21 15:08:44 +08:00
|
|
|
|
isLO: strings.HasPrefix(remoteAddr, "127.0.0.1:") || strings.HasPrefix(remoteAddr, "[::1]:"),
|
2023-06-05 16:38:29 +08:00
|
|
|
|
isNoStat: connutils.IsNoStatConn(remoteAddr),
|
2022-09-14 18:52:26 +08:00
|
|
|
|
isInAllowList: isInAllowList,
|
2023-04-21 15:08:44 +08:00
|
|
|
|
createdAt: fasttime.Now().Unix(),
|
2022-07-05 20:37:00 +08:00
|
|
|
|
}
|
2022-08-27 10:49:16 +08:00
|
|
|
|
|
2023-06-18 10:01:22 +08:00
|
|
|
|
if existsLnNodeIP(conn.RawIP()) {
|
|
|
|
|
|
conn.SetIsPersistent(true)
|
|
|
|
|
|
}
|
2023-06-05 16:38:29 +08:00
|
|
|
|
|
|
|
|
|
|
// 超时等设置
|
2023-01-10 09:47:56 +08:00
|
|
|
|
var globalServerConfig = sharedNodeConfig.GlobalServerConfig
|
|
|
|
|
|
if globalServerConfig != nil {
|
|
|
|
|
|
var performanceConfig = globalServerConfig.Performance
|
|
|
|
|
|
conn.isDebugging = performanceConfig.Debug
|
|
|
|
|
|
conn.autoReadTimeout = performanceConfig.AutoReadTimeout
|
|
|
|
|
|
conn.autoWriteTimeout = performanceConfig.AutoWriteTimeout
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-01-04 20:43:10 +08:00
|
|
|
|
if isHTTP {
|
2022-08-27 10:49:16 +08:00
|
|
|
|
// TODO 可以在配置中设置此值
|
|
|
|
|
|
_ = conn.SetLinger(nodeconfigs.DefaultTCPLinger)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-09-02 15:20:58 +08:00
|
|
|
|
// 加入到Map
|
|
|
|
|
|
conns.SharedMap.Add(conn)
|
|
|
|
|
|
|
2022-08-27 10:49:16 +08:00
|
|
|
|
return conn
|
2021-04-29 16:48:47 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) Read(b []byte) (n int, err error) {
|
2023-01-10 09:47:56 +08:00
|
|
|
|
if this.isDebugging {
|
2023-04-21 15:08:44 +08:00
|
|
|
|
this.lastReadAt = fasttime.Now().Unix()
|
2023-01-01 19:27:38 +08:00
|
|
|
|
|
|
|
|
|
|
defer func() {
|
|
|
|
|
|
if err != nil {
|
2023-08-11 14:38:00 +08:00
|
|
|
|
this.lastErr = fmt.Errorf("read error: %w", err)
|
2023-01-11 15:24:48 +08:00
|
|
|
|
} else {
|
|
|
|
|
|
this.lastErr = nil
|
2023-01-01 19:27:38 +08:00
|
|
|
|
}
|
|
|
|
|
|
}()
|
|
|
|
|
|
}
|
2022-12-21 15:59:07 +08:00
|
|
|
|
|
2022-07-05 20:37:00 +08:00
|
|
|
|
// 环路直接读取
|
|
|
|
|
|
if this.isLO {
|
|
|
|
|
|
n, err = this.rawConn.Read(b)
|
|
|
|
|
|
if n > 0 {
|
|
|
|
|
|
atomic.AddUint64(&teaconst.InTrafficBytes, uint64(n))
|
|
|
|
|
|
}
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2023-01-04 20:43:10 +08:00
|
|
|
|
// 设置读超时时间
|
2023-06-18 10:01:22 +08:00
|
|
|
|
if this.isHTTP && !this.isPersistent && !this.isShortReading && this.autoReadTimeout {
|
2023-01-04 20:43:10 +08:00
|
|
|
|
this.setHTTPReadTimeout()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-07-05 20:37:00 +08:00
|
|
|
|
// 开始读取
|
2021-04-29 16:48:47 +08:00
|
|
|
|
n, err = this.rawConn.Read(b)
|
|
|
|
|
|
if n > 0 {
|
2021-11-13 21:30:24 +08:00
|
|
|
|
atomic.AddUint64(&teaconst.InTrafficBytes, uint64(n))
|
2022-12-21 15:59:07 +08:00
|
|
|
|
this.hasRead = true
|
2021-04-29 16:48:47 +08:00
|
|
|
|
}
|
2022-01-10 19:54:10 +08:00
|
|
|
|
|
2023-01-07 10:03:32 +08:00
|
|
|
|
// 检测是否为超时错误
|
|
|
|
|
|
var isTimeout = err != nil && os.IsTimeout(err)
|
|
|
|
|
|
var isHandshakeError = isTimeout && !this.hasRead
|
2022-07-15 11:15:55 +08:00
|
|
|
|
|
2023-07-25 09:36:45 +08:00
|
|
|
|
if err != nil {
|
|
|
|
|
|
_ = this.SetLinger(nodeconfigs.DefaultTCPLinger)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-09-14 18:52:26 +08:00
|
|
|
|
// 忽略白名单和局域网
|
2023-06-18 10:01:22 +08:00
|
|
|
|
if !this.isPersistent && this.isHTTP && !this.isInAllowList && !utils.IsLocalIP(this.RawIP()) {
|
2022-09-14 18:52:26 +08:00
|
|
|
|
// SYN Flood检测
|
|
|
|
|
|
if this.serverId == 0 || !this.hasResetSYNFlood {
|
|
|
|
|
|
var synFloodConfig = sharedNodeConfig.SYNFloodConfig()
|
|
|
|
|
|
if synFloodConfig != nil && synFloodConfig.IsOn {
|
|
|
|
|
|
if isHandshakeError {
|
|
|
|
|
|
this.increaseSYNFlood(synFloodConfig)
|
|
|
|
|
|
} else if err == nil && !this.hasResetSYNFlood {
|
|
|
|
|
|
this.hasResetSYNFlood = true
|
|
|
|
|
|
this.resetSYNFlood()
|
|
|
|
|
|
}
|
2022-07-15 11:15:55 +08:00
|
|
|
|
}
|
2022-01-10 19:54:10 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) Write(b []byte) (n int, err error) {
|
2023-01-12 19:02:38 +08:00
|
|
|
|
if len(b) == 0 {
|
|
|
|
|
|
return 0, nil
|
|
|
|
|
|
}
|
2023-01-12 19:09:57 +08:00
|
|
|
|
|
2023-01-10 09:47:56 +08:00
|
|
|
|
if this.isDebugging {
|
2023-04-21 15:08:44 +08:00
|
|
|
|
this.lastWriteAt = fasttime.Now().Unix()
|
2023-01-01 19:27:38 +08:00
|
|
|
|
|
|
|
|
|
|
defer func() {
|
|
|
|
|
|
if err != nil {
|
2023-08-11 14:38:00 +08:00
|
|
|
|
this.lastErr = fmt.Errorf("write error: %w", err)
|
2023-01-11 15:24:48 +08:00
|
|
|
|
} else {
|
|
|
|
|
|
this.lastErr = nil
|
2023-01-01 19:27:38 +08:00
|
|
|
|
}
|
|
|
|
|
|
}()
|
|
|
|
|
|
}
|
2022-12-21 15:59:07 +08:00
|
|
|
|
|
2023-01-04 20:43:10 +08:00
|
|
|
|
// 设置写超时时间
|
2023-06-18 10:01:22 +08:00
|
|
|
|
if !this.isPersistent && this.autoWriteTimeout {
|
2023-01-04 20:43:10 +08:00
|
|
|
|
var timeoutSeconds = len(b) / 1024
|
2023-01-01 19:27:38 +08:00
|
|
|
|
if timeoutSeconds < 3 {
|
|
|
|
|
|
timeoutSeconds = 3
|
|
|
|
|
|
}
|
|
|
|
|
|
_ = this.rawConn.SetWriteDeadline(time.Now().Add(time.Duration(timeoutSeconds) * time.Second)) // TODO 时间可以设置
|
2022-12-12 10:04:36 +08:00
|
|
|
|
}
|
2022-12-10 18:22:00 +08:00
|
|
|
|
|
2023-01-04 20:43:10 +08:00
|
|
|
|
// 延长读超时时间
|
2023-06-18 10:01:22 +08:00
|
|
|
|
if this.isHTTP && !this.isPersistent && this.autoReadTimeout {
|
2023-01-04 20:43:10 +08:00
|
|
|
|
this.setHTTPReadTimeout()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// 开始写入
|
2023-01-12 19:09:57 +08:00
|
|
|
|
var before = time.Now()
|
2021-04-29 16:48:47 +08:00
|
|
|
|
n, err = this.rawConn.Write(b)
|
|
|
|
|
|
if n > 0 {
|
2023-07-30 14:49:16 +08:00
|
|
|
|
atomic.AddInt64(&this.totalSentBytes, int64(n))
|
|
|
|
|
|
|
2022-07-05 20:37:00 +08:00
|
|
|
|
// 统计当前服务带宽
|
|
|
|
|
|
if this.serverId > 0 {
|
2023-03-22 18:00:35 +08:00
|
|
|
|
// TODO 需要加入在serverId绑定之前的带宽
|
2023-04-21 15:08:44 +08:00
|
|
|
|
if !this.isNoStat || Tea.IsTesting() { // 环路不统计带宽,避免缓存预热等行为产生带宽
|
2022-08-26 16:47:42 +08:00
|
|
|
|
atomic.AddUint64(&teaconst.OutTrafficBytes, uint64(n))
|
2023-01-12 19:09:57 +08:00
|
|
|
|
|
|
|
|
|
|
var cost = time.Since(before).Seconds()
|
|
|
|
|
|
if cost > 1 {
|
2023-09-06 16:34:11 +08:00
|
|
|
|
stats.SharedBandwidthStatManager.AddBandwidth(this.userId, this.userPlanId, this.serverId, int64(float64(n)/cost), int64(n))
|
2023-01-12 19:09:57 +08:00
|
|
|
|
} else {
|
2023-09-06 16:34:11 +08:00
|
|
|
|
stats.SharedBandwidthStatManager.AddBandwidth(this.userId, this.userPlanId, this.serverId, int64(n), int64(n))
|
2023-01-12 19:09:57 +08:00
|
|
|
|
}
|
2022-07-05 20:37:00 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2021-04-29 16:48:47 +08:00
|
|
|
|
}
|
2022-07-05 20:37:00 +08:00
|
|
|
|
|
2022-12-10 19:51:05 +08:00
|
|
|
|
// 如果是写入超时,则立即关闭连接
|
|
|
|
|
|
if err != nil && os.IsTimeout(err) {
|
2022-12-12 10:04:36 +08:00
|
|
|
|
// TODO 考虑对多次慢连接的IP做出惩罚
|
2022-12-10 19:51:05 +08:00
|
|
|
|
conn, ok := this.rawConn.(LingerConn)
|
|
|
|
|
|
if ok {
|
|
|
|
|
|
_ = conn.SetLinger(0)
|
|
|
|
|
|
}
|
2022-12-21 16:11:55 +08:00
|
|
|
|
|
2023-01-02 10:44:10 +08:00
|
|
|
|
_ = this.Close()
|
2022-12-10 19:51:05 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) Close() error {
|
2021-09-29 09:19:45 +08:00
|
|
|
|
this.isClosed = true
|
2021-12-12 11:48:01 +08:00
|
|
|
|
|
2021-12-22 16:43:16 +08:00
|
|
|
|
err := this.rawConn.Close()
|
|
|
|
|
|
|
2021-12-12 11:48:01 +08:00
|
|
|
|
// 单个服务并发数限制
|
2022-07-25 19:48:03 +08:00
|
|
|
|
// 不能加条件限制,因为服务配置随时有变化
|
|
|
|
|
|
sharedClientConnLimiter.Remove(this.rawConn.RemoteAddr().String())
|
2021-12-12 11:48:01 +08:00
|
|
|
|
|
2022-09-02 15:20:58 +08:00
|
|
|
|
// 从conn map中移除
|
|
|
|
|
|
conns.SharedMap.Remove(this)
|
|
|
|
|
|
|
2021-12-22 16:43:16 +08:00
|
|
|
|
return err
|
2021-04-29 16:48:47 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) LocalAddr() net.Addr {
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return this.rawConn.LocalAddr()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) RemoteAddr() net.Addr {
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return this.rawConn.RemoteAddr()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) SetDeadline(t time.Time) error {
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return this.rawConn.SetDeadline(t)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) SetReadDeadline(t time.Time) error {
|
2023-01-07 20:04:05 +08:00
|
|
|
|
// 如果开启了HTTP自动读超时选项,则自动控制超时时间
|
2023-06-18 10:01:22 +08:00
|
|
|
|
if this.isHTTP && !this.isPersistent && this.autoReadTimeout {
|
2023-01-05 00:40:49 +08:00
|
|
|
|
this.isShortReading = false
|
|
|
|
|
|
|
2023-01-04 20:43:10 +08:00
|
|
|
|
var unixTime = t.Unix()
|
|
|
|
|
|
if unixTime < 10 {
|
|
|
|
|
|
return nil
|
|
|
|
|
|
}
|
|
|
|
|
|
if unixTime == this.readDeadlineTime {
|
|
|
|
|
|
return nil
|
|
|
|
|
|
}
|
|
|
|
|
|
this.readDeadlineTime = unixTime
|
2023-01-05 11:13:35 +08:00
|
|
|
|
var seconds = -time.Since(t)
|
|
|
|
|
|
if seconds <= 0 || seconds > HTTPIdleTimeout {
|
|
|
|
|
|
return nil
|
|
|
|
|
|
}
|
|
|
|
|
|
if seconds < HTTPIdleTimeout-1*time.Second {
|
2023-01-05 00:40:49 +08:00
|
|
|
|
this.isShortReading = true
|
|
|
|
|
|
}
|
2023-01-04 20:43:10 +08:00
|
|
|
|
}
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return this.rawConn.SetReadDeadline(t)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-20 22:32:02 +08:00
|
|
|
|
func (this *ClientConn) SetWriteDeadline(t time.Time) error {
|
2021-04-29 16:48:47 +08:00
|
|
|
|
return this.rawConn.SetWriteDeadline(t)
|
|
|
|
|
|
}
|
2022-01-10 19:54:10 +08:00
|
|
|
|
|
2022-12-21 15:59:07 +08:00
|
|
|
|
func (this *ClientConn) CreatedAt() int64 {
|
|
|
|
|
|
return this.createdAt
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func (this *ClientConn) LastReadAt() int64 {
|
|
|
|
|
|
return this.lastReadAt
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func (this *ClientConn) LastWriteAt() int64 {
|
|
|
|
|
|
return this.lastWriteAt
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func (this *ClientConn) LastErr() error {
|
|
|
|
|
|
return this.lastErr
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-01-10 19:54:10 +08:00
|
|
|
|
func (this *ClientConn) resetSYNFlood() {
|
2023-10-05 09:45:46 +08:00
|
|
|
|
counters.SharedCounter.ResetKey("SYN_FLOOD:" + this.RawIP())
|
2022-01-10 19:54:10 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
2022-01-13 11:36:05 +08:00
|
|
|
|
func (this *ClientConn) increaseSYNFlood(synFloodConfig *firewallconfigs.SYNFloodConfig) {
|
2022-01-10 19:54:10 +08:00
|
|
|
|
var ip = this.RawIP()
|
|
|
|
|
|
if len(ip) > 0 && !iplibrary.IsInWhiteList(ip) && (!synFloodConfig.IgnoreLocal || !utils.IsLocalIP(ip)) {
|
2023-10-05 09:45:46 +08:00
|
|
|
|
var result = counters.SharedCounter.IncreaseKey("SYN_FLOOD:"+ip, 60)
|
2022-01-10 19:54:10 +08:00
|
|
|
|
var minAttempts = synFloodConfig.MinAttempts
|
2022-01-11 16:02:41 +08:00
|
|
|
|
if minAttempts < 5 {
|
|
|
|
|
|
minAttempts = 5
|
2022-01-10 19:54:10 +08:00
|
|
|
|
}
|
2022-01-13 11:36:05 +08:00
|
|
|
|
if !this.isTLS {
|
|
|
|
|
|
// 非TLS,设置为两倍,防止误封
|
|
|
|
|
|
minAttempts = 2 * minAttempts
|
|
|
|
|
|
}
|
2023-07-13 15:37:08 +08:00
|
|
|
|
if result >= types.Uint64(minAttempts) {
|
2022-01-10 19:54:10 +08:00
|
|
|
|
var timeout = synFloodConfig.TimeoutSeconds
|
|
|
|
|
|
if timeout <= 0 {
|
|
|
|
|
|
timeout = 600
|
|
|
|
|
|
}
|
2022-08-27 10:49:16 +08:00
|
|
|
|
|
|
|
|
|
|
// 关闭当前连接
|
|
|
|
|
|
_ = this.SetLinger(0)
|
|
|
|
|
|
_ = this.Close()
|
|
|
|
|
|
|
2023-04-21 15:08:44 +08:00
|
|
|
|
waf.SharedIPBlackList.RecordIP(waf.IPTypeAll, firewallconfigs.FirewallScopeGlobal, 0, ip, fasttime.Now().Unix()+int64(timeout), 0, true, 0, 0, "疑似SYN Flood攻击,当前1分钟"+types.String(result)+"次空连接")
|
2022-01-10 19:54:10 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2023-01-04 20:43:10 +08:00
|
|
|
|
|
|
|
|
|
|
// 设置读超时时间
|
|
|
|
|
|
func (this *ClientConn) setHTTPReadTimeout() {
|
|
|
|
|
|
_ = this.SetReadDeadline(time.Now().Add(HTTPIdleTimeout))
|
|
|
|
|
|
}
|
