class Front(object):
name = "tls_relay_front"
def __init__(self):
self.success_num = 0
self.fail_num = 0
self.continue_fail_num = 0
self.last_fail_time = 0
self.running = True
self.logger = logger
config_path = os.path.join(module_data_path, "tls_relay.json")
self.config = Config(config_path)
self.ca_cert_fn = os.path.join(module_data_path, "tls_relay_CA.crt")
self.openssl_context = SSLContext(logger)
if os.path.isfile(self.ca_cert_fn):
self.openssl_context.set_ca(self.ca_cert_fn)
host_fn = os.path.join(module_data_path, "tls_host.json")
self.host_manager = host_manager.HostManager(host_fn)
self.connect_creator = ConnectCreator(logger, self.config,
self.openssl_context,
self.host_manager)
self.check_ip = CheckIp(xlog.null, self.config, self.connect_creator)
ip_source = IpSimpleSource(self.config.ip_source_ips)
default_ip_list_fn = ""
ip_list_fn = os.path.join(module_data_path, "tls_relay_ip_list.txt")
self.ip_manager = IpManager(logger,
self.config,
ip_source,
check_local_network,
self.check_ip.check_ip,
default_ip_list_fn,
ip_list_fn,
scan_ip_log=None)
for ip in self.config.ip_source_ips:
self.ip_manager.add_ip(ip, 100)
self.connect_manager = ConnectManager(logger, self.config,
self.connect_creator,
self.ip_manager,
check_local_network)
self.http_dispatcher = HttpsDispatcher(logger, self.config,
self.ip_manager,
self.connect_manager)
self.rtts = collections.deque([(0, time.time())])
self.rtts_lock = threading.Lock()
self.traffics = collections.deque()
self.traffics_lock = threading.Lock()
self.recent_sent = 0
self.recent_received = 0
self.total_sent = 0
self.total_received = 0
self.account = ""
self.password = ""
threading.Thread(target=self.debug_data_clearup_thread).start()
def set_x_tunnel_account(self, account, password):
self.account = account
self.password = password
def log_debug_data(self, rtt, sent, received):
now = time.time()
self.rtts.append((rtt, now))
with self.traffics_lock:
self.traffics.append((sent, received, now))
self.recent_sent += sent
self.recent_received += received
self.total_sent += sent
self.total_received += received
def get_rtt(self):
now = time.time()
while len(self.rtts) > 1:
with self.rtts_lock:
rtt, log_time = rtt_log = max(self.rtts)
if now - log_time > 5:
self.rtts.remove(rtt_log)
continue
return rtt
return self.rtts[0][0]
def debug_data_clearup_thread(self):
while self.running:
now = time.time()
with self.rtts_lock:
if len(self.rtts) > 1 and now - self.rtts[0][-1] > 5:
self.rtts.popleft()
with self.traffics_lock:
if self.traffics and now - self.traffics[0][-1] > 60:
sent, received, _ = self.traffics.popleft()
self.recent_sent -= sent
self.recent_received -= received
time.sleep(1)
def worker_num(self):
return len(self.http_dispatcher.workers)
def set_ips(self, ips):
if not ips:
return
host_info = {}
ca_certs = []
ipss = []
for ip in ips:
dat = ips[ip]
ca_cert = dat["ca_crt"]
sni = dat["sni"]
host_info[ip] = {"sni": sni, "ca_crt": ca_cert}
if ca_cert not in ca_certs:
ca_certs.append(ca_cert)
ipss.append(ip)
self.ip_manager.update_ips(ipss)
self.ip_manager.save(True)
self.host_manager.set_host(host_info)
ca_content = "\n\n".join(ca_certs)
with open(self.ca_cert_fn, "w") as fd:
fd.write(ca_content)
self.openssl_context.set_ca(self.ca_cert_fn)
self.logger.info("set_ips:%s", ",".join(ipss))
def get_score(self, host=None):
now = time.time()
if now - self.last_fail_time < self.config.front_continue_fail_block and \
self.continue_fail_num > self.config.front_continue_fail_num:
return None
worker = self.http_dispatcher.get_worker(nowait=True)
if not worker:
return None
return worker.get_score()
def request(self,
method,
host,
path="/",
headers={},
data="",
timeout=120):
headers = dict(headers)
headers["XX-Account"] = self.account
response = self.http_dispatcher.request(method,
host,
path,
dict(headers),
data,
timeout=timeout)
if not response:
logger.warn("req %s get response timeout", path)
return "", 602, {}
status = response.status
if status not in [200, 405]:
# logger.warn("front request %s %s%s fail, status:%d", method, host, path, status)
self.fail_num += 1
self.continue_fail_num += 1
self.last_fail_time = time.time()
else:
self.success_num += 1
self.continue_fail_num = 0
content = response.task.read_all()
if status == 200:
logger.debug("%s %s%s status:%d trace:%s", method, host, path,
status, response.task.get_trace())
else:
logger.warn("%s %s%s status:%d trace:%s", method, host, path,
status, response.task.get_trace())
return content, status, response
def stop(self):
logger.info("terminate")
self.connect_manager.set_ssl_created_cb(None)
self.http_dispatcher.stop()
self.connect_manager.stop()
self.ip_manager.stop()
self.running = False
def set_proxy(self, args):
logger.info("set_proxy:%s", args)
self.config.PROXY_ENABLE = args["enable"]
self.config.PROXY_TYPE = args["type"]
self.config.PROXY_HOST = args["host"]
self.config.PROXY_PORT = args["port"]
self.config.PROXY_USER = args["user"]
self.config.PROXY_PASSWD = args["passwd"]
self.config.save()
self.connect_creator.update_config()
class Front(object):
name = "tls_relay_front"
def __init__(self):
self.running = True
self.logger = logger
config_path = os.path.join(module_data_path, "tls_relay.json")
self.config = Config(config_path)
self.ca_cert_fn = os.path.join(module_data_path, "tls_relay_CA.crt")
self.openssl_context = SSLContext(logger)
if os.path.isfile(self.ca_cert_fn):
self.openssl_context.set_ca(self.ca_cert_fn)
host_fn = os.path.join(module_data_path, "tls_host.json")
self.host_manager = host_manager.HostManager(host_fn)
self.connect_creator = ConnectCreator(logger, self.config,
self.openssl_context,
self.host_manager)
self.check_ip = CheckIp(xlog.null, self.config, self.connect_creator)
ip_source = IpSimpleSource(self.config.ip_source_ips)
default_ip_list_fn = ""
ip_list_fn = os.path.join(module_data_path, "tls_relay_ip_list.txt")
self.ip_manager = IpManager(logger,
self.config,
ip_source,
check_local_network,
self.check_ip.check_ip,
default_ip_list_fn,
ip_list_fn,
scan_ip_log=None)
for ip in self.config.ip_source_ips:
self.ip_manager.add_ip(ip, 100)
self.connect_manager = ConnectManager(logger, self.config,
self.connect_creator,
self.ip_manager,
check_local_network)
self.http_dispatcher = HttpsDispatcher(logger, self.config,
self.ip_manager,
self.connect_manager)
self.account = ""
self.password = ""
def get_dispatcher(self, host=None):
return self.http_dispatcher
def set_x_tunnel_account(self, account, password):
self.account = account
self.password = password
def set_ips(self, ips):
if not ips:
return
host_info = {}
ca_certs = []
ipss = []
for ip in ips:
dat = ips[ip]
ca_cert = dat["ca_crt"]
sni = dat["sni"]
host_info[ip] = {"sni": sni, "ca_crt": ca_cert}
if ca_cert not in ca_certs:
ca_certs.append(ca_cert)
ipss.append(ip)
self.ip_manager.update_ips(ipss)
self.ip_manager.save(True)
self.host_manager.set_host(host_info)
ca_content = "\n\n".join(ca_certs)
with open(self.ca_cert_fn, "w") as fd:
fd.write(ca_content)
self.openssl_context.set_ca(self.ca_cert_fn)
self.logger.info("set_ips:%s", ",".join(ipss))
def request(self,
method,
host,
path="/",
headers={},
data="",
timeout=120):
headers = dict(headers)
headers["XX-Account"] = self.account
response = self.http_dispatcher.request(method,
host,
path,
dict(headers),
data,
timeout=timeout)
if not response:
logger.warn("req %s get response timeout", path)
return "", 602, {}
status = response.status
content = response.task.read_all()
if status == 200:
logger.debug("%s %s%s status:%d trace:%s", method, host, path,
status, response.task.get_trace())
else:
logger.warn("%s %s%s status:%d trace:%s", method, host, path,
status, response.task.get_trace())
return content, status, response
def stop(self):
logger.info("terminate")
self.connect_manager.set_ssl_created_cb(None)
self.http_dispatcher.stop()
self.connect_manager.stop()
self.ip_manager.stop()
self.running = False
def set_proxy(self, args):
logger.info("set_proxy:%s", args)
self.config.PROXY_ENABLE = args["enable"]
self.config.PROXY_TYPE = args["type"]
self.config.PROXY_HOST = args["host"]
self.config.PROXY_PORT = args["port"]
self.config.PROXY_USER = args["user"]
self.config.PROXY_PASSWD = args["passwd"]
self.config.save()
self.connect_creator.update_config()
class Front(object):
name = "tls_relay_front"
def __init__(self):
self.success_num = 0
self.fail_num = 0
self.continue_fail_num = 0
self.last_fail_time = 0
self.running = True
self.logger = logger
config_path = os.path.join(module_data_path, "tls_relay.json")
self.config = Config(config_path)
self.ca_cert_fn = os.path.join(module_data_path, "tls_relay_CA.crt")
self.openssl_context = SSLContext(logger)
if os.path.isfile(self.ca_cert_fn):
self.openssl_context.set_ca(self.ca_cert_fn)
host_fn = os.path.join(module_data_path, "tls_host.json")
self.host_manager = host_manager.HostManager(host_fn)
self.connect_creator = ConnectCreator(logger, self.config, self.openssl_context, self.host_manager)
self.check_ip = CheckIp(xlog.null, self.config, self.connect_creator)
ip_source = IpSimpleSource(self.config.ip_source_ips)
default_ip_list_fn = ""
ip_list_fn = os.path.join(module_data_path, "tls_relay_ip_list.txt")
self.ip_manager = IpManager(logger, self.config, ip_source, check_local_network, self.check_ip.check_ip,
default_ip_list_fn, ip_list_fn, scan_ip_log=None)
for ip in self.config.ip_source_ips:
self.ip_manager.add_ip(ip, 100)
self.connect_manager = ConnectManager(logger, self.config, self.connect_creator, self.ip_manager, check_local_network)
self.http_dispatcher = HttpsDispatcher(logger, self.config, self.ip_manager, self.connect_manager)
self.rtts = collections.deque([(0, time.time())])
self.rtts_lock = threading.Lock()
self.traffics = collections.deque()
self.traffics_lock = threading.Lock()
self.recent_sent = 0
self.recent_received = 0
self.total_sent = 0
self.total_received = 0
self.account = ""
self.password = ""
threading.Thread(target=self.debug_data_clearup_thread).start()
def set_x_tunnel_account(self, account, password):
self.account = account
self.password = password
def log_debug_data(self, rtt, sent, received):
now = time.time()
self.rtts.append((rtt, now))
with self.traffics_lock:
self.traffics.append((sent, received, now))
self.recent_sent += sent
self.recent_received += received
self.total_sent += sent
self.total_received += received
def get_rtt(self):
now = time.time()
while len(self.rtts) > 1:
with self.rtts_lock:
rtt, log_time = rtt_log = max(self.rtts)
if now - log_time > 5:
self.rtts.remove(rtt_log)
continue
return rtt
return self.rtts[0][0]
def debug_data_clearup_thread(self):
while self.running:
now = time.time()
with self.rtts_lock:
if len(self.rtts) > 1 and now - self.rtts[0][-1] > 5:
self.rtts.popleft()
with self.traffics_lock:
if self.traffics and now - self.traffics[0][-1] > 60:
sent, received, _ = self.traffics.popleft()
self.recent_sent -= sent
self.recent_received -= received
time.sleep(1)
def worker_num(self):
return len(self.http_dispatcher.workers)
def set_ips(self, ips):
if not ips:
return
host_info = {}
ca_certs = []
ipss = []
for ip in ips:
dat = ips[ip]
ca_cert = dat["ca_crt"]
sni = dat["sni"]
host_info[ip] = {"sni":sni, "ca_crt":ca_cert}
if ca_cert not in ca_certs:
ca_certs.append(ca_cert)
ipss.append(ip)
self.ip_manager.update_ips(ipss)
self.ip_manager.save(True)
self.host_manager.set_host(host_info)
ca_content = "\n\n".join(ca_certs)
with open(self.ca_cert_fn, "w") as fd:
fd.write(ca_content)
self.openssl_context.set_ca(self.ca_cert_fn)
self.logger.info("set_ips:%s", ",".join(ipss))
def get_score(self, host=None):
now = time.time()
if now - self.last_fail_time < self.config.front_continue_fail_block and \
self.continue_fail_num > self.config.front_continue_fail_num:
return None
worker = self.http_dispatcher.get_worker(nowait=True)
if not worker:
return None
return worker.get_score()
def request(self, method, host, path="/", headers={}, data="", timeout=120):
headers = dict(headers)
headers["XX-Account"] = self.account
response = self.http_dispatcher.request(method, host, path, dict(headers), data, timeout=timeout)
if not response:
logger.warn("req %s get response timeout", path)
return "", 602, {}
status = response.status
if status not in [200, 405]:
# logger.warn("front request %s %s%s fail, status:%d", method, host, path, status)
self.fail_num += 1
self.continue_fail_num += 1
self.last_fail_time = time.time()
else:
self.success_num += 1
self.continue_fail_num = 0
content = response.task.read_all()
if status == 200:
logger.debug("%s %s%s status:%d trace:%s", method, host, path, status,
response.task.get_trace())
else:
logger.warn("%s %s%s status:%d trace:%s", method, host, path, status,
response.task.get_trace())
return content, status, response
def stop(self):
logger.info("terminate")
self.connect_manager.set_ssl_created_cb(None)
self.http_dispatcher.stop()
self.connect_manager.stop()
self.ip_manager.stop()
self.running = False
def set_proxy(self, args):
logger.info("set_proxy:%s", args)
self.config.PROXY_ENABLE = args["enable"]
self.config.PROXY_TYPE = args["type"]
self.config.PROXY_HOST = args["host"]
self.config.PROXY_PORT = args["port"]
self.config.PROXY_USER = args["user"]
self.config.PROXY_PASSWD = args["passwd"]
self.config.save()
self.connect_creator.update_config()