2020-09-26 19:54:26 +08:00
|
|
|
|
package nodes
|
|
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
|
"crypto/tls"
|
|
|
|
|
|
"errors"
|
|
|
|
|
|
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs"
|
2020-12-17 17:36:10 +08:00
|
|
|
|
"github.com/TeaOSLab/EdgeNode/internal/remotelogs"
|
2020-09-26 19:54:26 +08:00
|
|
|
|
"net"
|
2020-12-03 10:17:28 +08:00
|
|
|
|
"strconv"
|
2020-09-26 19:54:26 +08:00
|
|
|
|
)
|
|
|
|
|
|
|
2021-06-07 15:45:47 +08:00
|
|
|
|
// OriginConnect 连接源站
|
2022-06-27 12:01:33 +08:00
|
|
|
|
func OriginConnect(origin *serverconfigs.OriginConfig, remoteAddr string, tlsHost string) (net.Conn, error) {
|
2020-09-26 19:54:26 +08:00
|
|
|
|
if origin.Addr == nil {
|
|
|
|
|
|
return nil, errors.New("origin server address should not be empty")
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2020-12-03 10:17:28 +08:00
|
|
|
|
// 支持TOA的连接
|
2021-08-01 21:56:02 +08:00
|
|
|
|
// 这个条件很重要,如果没有传递remoteAddr,表示不使用TOA
|
|
|
|
|
|
if len(remoteAddr) > 0 {
|
|
|
|
|
|
toaConfig := sharedTOAManager.Config()
|
|
|
|
|
|
if toaConfig != nil && toaConfig.IsOn {
|
|
|
|
|
|
retries := 3
|
|
|
|
|
|
for i := 1; i <= retries; i++ {
|
|
|
|
|
|
port := int(toaConfig.RandLocalPort())
|
|
|
|
|
|
err := sharedTOAManager.SendMsg("add:" + strconv.Itoa(port) + ":" + remoteAddr)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
remotelogs.Error("TOA", "add failed: "+err.Error())
|
|
|
|
|
|
} else {
|
|
|
|
|
|
dialer := net.Dialer{
|
|
|
|
|
|
Timeout: origin.ConnTimeoutDuration(),
|
|
|
|
|
|
LocalAddr: &net.TCPAddr{
|
|
|
|
|
|
Port: port,
|
|
|
|
|
|
},
|
|
|
|
|
|
}
|
|
|
|
|
|
var conn net.Conn
|
|
|
|
|
|
switch origin.Addr.Protocol {
|
|
|
|
|
|
case "", serverconfigs.ProtocolTCP, serverconfigs.ProtocolHTTP:
|
|
|
|
|
|
// TODO 支持TCP4/TCP6
|
|
|
|
|
|
// TODO 支持指定特定网卡
|
|
|
|
|
|
// TODO Addr支持端口范围,如果有多个端口时,随机一个端口使用
|
|
|
|
|
|
conn, err = dialer.Dial("tcp", origin.Addr.Host+":"+origin.Addr.PortRange)
|
|
|
|
|
|
case serverconfigs.ProtocolTLS, serverconfigs.ProtocolHTTPS:
|
|
|
|
|
|
// TODO 支持TCP4/TCP6
|
|
|
|
|
|
// TODO 支持指定特定网卡
|
|
|
|
|
|
// TODO Addr支持端口范围,如果有多个端口时,随机一个端口使用
|
2022-01-16 19:58:07 +08:00
|
|
|
|
|
|
|
|
|
|
var tlsConfig = &tls.Config{
|
2021-08-01 21:56:02 +08:00
|
|
|
|
InsecureSkipVerify: true,
|
2022-01-16 19:58:07 +08:00
|
|
|
|
}
|
|
|
|
|
|
if origin.Cert != nil {
|
|
|
|
|
|
var obj = origin.Cert.CertObject()
|
|
|
|
|
|
if obj != nil {
|
|
|
|
|
|
tlsConfig.InsecureSkipVerify = false
|
|
|
|
|
|
tlsConfig.Certificates = []tls.Certificate{*obj}
|
|
|
|
|
|
if len(origin.Cert.ServerName) > 0 {
|
|
|
|
|
|
tlsConfig.ServerName = origin.Cert.ServerName
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2022-06-27 12:01:33 +08:00
|
|
|
|
if len(tlsHost) > 0 {
|
|
|
|
|
|
tlsConfig.ServerName = tlsHost
|
|
|
|
|
|
}
|
2022-01-16 19:58:07 +08:00
|
|
|
|
|
|
|
|
|
|
conn, err = tls.DialWithDialer(&dialer, "tcp", origin.Addr.Host+":"+origin.Addr.PortRange, tlsConfig)
|
2021-08-01 21:56:02 +08:00
|
|
|
|
}
|
2020-12-03 10:17:28 +08:00
|
|
|
|
|
2021-08-01 21:56:02 +08:00
|
|
|
|
// TODO 需要在合适的时机删除TOA记录
|
|
|
|
|
|
if err == nil || i == retries {
|
|
|
|
|
|
return conn, err
|
|
|
|
|
|
}
|
2020-12-03 10:17:28 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2020-09-26 19:54:26 +08:00
|
|
|
|
switch origin.Addr.Protocol {
|
|
|
|
|
|
case "", serverconfigs.ProtocolTCP, serverconfigs.ProtocolHTTP:
|
|
|
|
|
|
// TODO 支持TCP4/TCP6
|
|
|
|
|
|
// TODO 支持指定特定网卡
|
|
|
|
|
|
// TODO Addr支持端口范围,如果有多个端口时,随机一个端口使用
|
|
|
|
|
|
return net.DialTimeout("tcp", origin.Addr.Host+":"+origin.Addr.PortRange, origin.ConnTimeoutDuration())
|
|
|
|
|
|
case serverconfigs.ProtocolTLS, serverconfigs.ProtocolHTTPS:
|
|
|
|
|
|
// TODO 支持TCP4/TCP6
|
|
|
|
|
|
// TODO 支持指定特定网卡
|
|
|
|
|
|
// TODO Addr支持端口范围,如果有多个端口时,随机一个端口使用
|
2022-01-16 19:58:07 +08:00
|
|
|
|
|
|
|
|
|
|
var tlsConfig = &tls.Config{
|
2020-11-30 15:29:02 +08:00
|
|
|
|
InsecureSkipVerify: true,
|
2022-01-16 19:58:07 +08:00
|
|
|
|
}
|
|
|
|
|
|
if origin.Cert != nil {
|
|
|
|
|
|
var obj = origin.Cert.CertObject()
|
|
|
|
|
|
if obj != nil {
|
|
|
|
|
|
tlsConfig.InsecureSkipVerify = false
|
|
|
|
|
|
tlsConfig.Certificates = []tls.Certificate{*obj}
|
|
|
|
|
|
if len(origin.Cert.ServerName) > 0 {
|
|
|
|
|
|
tlsConfig.ServerName = origin.Cert.ServerName
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2022-06-27 12:01:33 +08:00
|
|
|
|
if len(tlsHost) > 0 {
|
|
|
|
|
|
tlsConfig.ServerName = tlsHost
|
|
|
|
|
|
}
|
2022-01-16 19:58:07 +08:00
|
|
|
|
|
|
|
|
|
|
return tls.Dial("tcp", origin.Addr.Host+":"+origin.Addr.PortRange, tlsConfig)
|
2021-06-07 15:45:47 +08:00
|
|
|
|
case serverconfigs.ProtocolUDP:
|
|
|
|
|
|
addr, err := net.ResolveUDPAddr("udp", origin.Addr.Host+":"+origin.Addr.PortRange)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return nil, err
|
|
|
|
|
|
}
|
|
|
|
|
|
return net.DialUDP("udp", nil, addr)
|
2020-09-26 19:54:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// TODO 支持从Unix、Pipe、HTTP、HTTPS中读取数据
|
|
|
|
|
|
|
2021-06-07 15:45:47 +08:00
|
|
|
|
return nil, errors.New("invalid origin scheme '" + origin.Addr.Protocol.String() + "'")
|
2020-09-26 19:54:26 +08:00
|
|
|
|
}
|
