frp/pkg/plugin/client/https2http.go

126 lines
3.0 KiB
Go
Raw Normal View History

2019-04-10 12:02:22 +08:00
// Copyright 2019 fatedier, fatedier@gmail.com
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
2023-11-21 11:19:35 +08:00
//go:build !frps
2019-04-10 12:02:22 +08:00
package plugin
import (
"crypto/tls"
"fmt"
"io"
stdlog "log"
2019-10-12 20:13:12 +08:00
"net"
2019-04-10 12:02:22 +08:00
"net/http"
"net/http/httputil"
"time"
"github.com/fatedier/golib/pool"
2019-04-10 12:02:22 +08:00
v1 "github.com/fatedier/frp/pkg/config/v1"
"github.com/fatedier/frp/pkg/transport"
"github.com/fatedier/frp/pkg/util/log"
2023-11-27 15:47:49 +08:00
netpkg "github.com/fatedier/frp/pkg/util/net"
2019-04-10 12:02:22 +08:00
)
func init() {
Register(v1.PluginHTTPS2HTTP, NewHTTPS2HTTPPlugin)
2019-04-10 12:02:22 +08:00
}
type HTTPS2HTTPPlugin struct {
opts *v1.HTTPS2HTTPPluginOptions
2019-04-10 12:02:22 +08:00
l *Listener
s *http.Server
}
func NewHTTPS2HTTPPlugin(options v1.ClientPluginOptions) (Plugin, error) {
opts := options.(*v1.HTTPS2HTTPPluginOptions)
2019-04-10 12:02:22 +08:00
listener := NewProxyListener()
p := &HTTPS2HTTPPlugin{
opts: opts,
l: listener,
2019-04-10 12:02:22 +08:00
}
rp := &httputil.ReverseProxy{
Rewrite: func(r *httputil.ProxyRequest) {
2024-03-28 16:47:27 +08:00
r.Out.Header["X-Forwarded-For"] = r.In.Header["X-Forwarded-For"]
r.SetXForwarded()
req := r.Out
2019-04-10 12:02:22 +08:00
req.URL.Scheme = "http"
req.URL.Host = p.opts.LocalAddr
if p.opts.HostHeaderRewrite != "" {
req.Host = p.opts.HostHeaderRewrite
2019-04-10 12:02:22 +08:00
}
for k, v := range p.opts.RequestHeaders.Set {
req.Header.Set(k, v)
}
2019-04-10 12:02:22 +08:00
},
BufferPool: pool.NewBuffer(32 * 1024),
ErrorLog: stdlog.New(log.NewWriteLogger(log.WarnLevel, 2), "", 0),
2019-04-10 12:02:22 +08:00
}
var (
tlsConfig *tls.Config
err error
)
if opts.CrtPath != "" || opts.KeyPath != "" {
tlsConfig, err = p.genTLSConfig()
} else {
tlsConfig, err = transport.NewServerTLSConfig("", "", "")
tlsConfig.InsecureSkipVerify = true
}
2019-04-10 12:02:22 +08:00
if err != nil {
return nil, fmt.Errorf("gen TLS config error: %v", err)
}
p.s = &http.Server{
Handler: rp,
ReadHeaderTimeout: 60 * time.Second,
TLSConfig: tlsConfig,
}
2019-04-10 12:02:22 +08:00
2022-08-29 01:02:53 +08:00
go func() {
_ = p.s.ServeTLS(listener, "", "")
2022-08-29 01:02:53 +08:00
}()
2019-04-10 12:02:22 +08:00
return p, nil
}
func (p *HTTPS2HTTPPlugin) genTLSConfig() (*tls.Config, error) {
cert, err := tls.LoadX509KeyPair(p.opts.CrtPath, p.opts.KeyPath)
2019-04-10 12:02:22 +08:00
if err != nil {
return nil, err
}
config := &tls.Config{Certificates: []tls.Certificate{cert}}
return config, nil
}
2024-03-28 16:47:27 +08:00
func (p *HTTPS2HTTPPlugin) Handle(conn io.ReadWriteCloser, realConn net.Conn, extra *ExtraInfo) {
2023-11-27 15:47:49 +08:00
wrapConn := netpkg.WrapReadWriteCloserToConn(conn, realConn)
2024-03-28 16:47:27 +08:00
if extra.SrcAddr != nil {
wrapConn.SetRemoteAddr(extra.SrcAddr)
}
2022-08-29 01:02:53 +08:00
_ = p.l.PutConn(wrapConn)
2019-04-10 12:02:22 +08:00
}
func (p *HTTPS2HTTPPlugin) Name() string {
return v1.PluginHTTPS2HTTP
2019-04-10 12:02:22 +08:00
}
func (p *HTTPS2HTTPPlugin) Close() error {
2023-07-21 10:30:46 +08:00
return p.s.Close()
2019-04-10 12:02:22 +08:00
}