| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288 |
- use crate::common::*;
- use crate::peer::*;
- use hbb_common::{
- allow_err,
- bytes::{Bytes, BytesMut},
- bytes_codec::BytesCodec,
- config,
- futures::future::join_all,
- futures_util::{
- sink::SinkExt,
- stream::{SplitSink, StreamExt},
- },
- log,
- protobuf::{Message as _, MessageField},
- rendezvous_proto::{
- register_pk_response::Result::{TOO_FREQUENT, UUID_MISMATCH},
- *,
- },
- tcp::{listen_any, FramedStream},
- timeout,
- tokio::{
- self,
- io::{AsyncReadExt, AsyncWriteExt},
- net::{TcpListener, TcpStream},
- sync::{mpsc, Mutex},
- time::{interval, Duration},
- },
- tokio_util::codec::Framed,
- try_into_v4,
- udp::FramedSocket,
- AddrMangle, ResultType,
- };
- use ipnetwork::Ipv4Network;
- use sodiumoxide::crypto::sign;
- use std::{
- collections::HashMap,
- net::{IpAddr, Ipv4Addr, Ipv6Addr, SocketAddr},
- sync::Arc,
- time::Instant,
- };
- #[derive(Clone, Debug)]
- enum Data {
- Msg(Box<RendezvousMessage>, SocketAddr),
- RelayServers0(String),
- RelayServers(RelayServers),
- }
- const REG_TIMEOUT: i32 = 30_000;
- type TcpStreamSink = SplitSink<Framed<TcpStream, BytesCodec>, Bytes>;
- type WsSink = SplitSink<tokio_tungstenite::WebSocketStream<TcpStream>, tungstenite::Message>;
- enum Sink {
- TcpStream(TcpStreamSink),
- Ws(WsSink),
- }
- type Sender = mpsc::UnboundedSender<Data>;
- type Receiver = mpsc::UnboundedReceiver<Data>;
- static mut ROTATION_RELAY_SERVER: usize = 0;
- type RelayServers = Vec<String>;
- static CHECK_RELAY_TIMEOUT: u64 = 3_000;
- static mut ALWAYS_USE_RELAY: bool = false;
- #[derive(Clone)]
- struct Inner {
- serial: i32,
- version: String,
- software_url: String,
- mask: Option<Ipv4Network>,
- local_ip: String,
- sk: Option<sign::SecretKey>,
- }
- #[derive(Clone)]
- pub struct RendezvousServer {
- tcp_punch: Arc<Mutex<HashMap<SocketAddr, Sink>>>,
- pm: PeerMap,
- tx: Sender,
- relay_servers: Arc<RelayServers>,
- relay_servers0: Arc<RelayServers>,
- rendezvous_servers: Arc<Vec<String>>,
- inner: Arc<Inner>,
- }
- enum LoopFailure {
- UdpSocket,
- Listener3,
- Listener2,
- Listener,
- }
- impl RendezvousServer {
- #[tokio::main(flavor = "multi_thread")]
- pub async fn start(port: i32, serial: i32, key: &str, rmem: usize) -> ResultType<()> {
- let (key, sk) = Self::get_server_sk(key);
- let nat_port = port - 1;
- let ws_port = port + 2;
- let pm = PeerMap::new().await?;
- log::info!("serial={}", serial);
- let rendezvous_servers = get_servers(&get_arg("rendezvous-servers"), "rendezvous-servers");
- log::info!("Listening on tcp/udp :{}", port);
- log::info!("Listening on tcp :{}, extra port for NAT test", nat_port);
- log::info!("Listening on websocket :{}", ws_port);
- let mut socket = create_udp_listener(port, rmem).await?;
- let (tx, mut rx) = mpsc::unbounded_channel::<Data>();
- let software_url = get_arg("software-url");
- let version = hbb_common::get_version_from_url(&software_url);
- if !version.is_empty() {
- log::info!("software_url: {}, version: {}", software_url, version);
- }
- let mask = get_arg("mask").parse().ok();
- let local_ip = if mask.is_none() {
- "".to_owned()
- } else {
- get_arg_or(
- "local-ip",
- local_ip_address::local_ip()
- .map(|x| x.to_string())
- .unwrap_or_default(),
- )
- };
- let mut rs = Self {
- tcp_punch: Arc::new(Mutex::new(HashMap::new())),
- pm,
- tx: tx.clone(),
- relay_servers: Default::default(),
- relay_servers0: Default::default(),
- rendezvous_servers: Arc::new(rendezvous_servers),
- inner: Arc::new(Inner {
- serial,
- version,
- software_url,
- sk,
- mask,
- local_ip,
- }),
- };
- log::info!("mask: {:?}", rs.inner.mask);
- log::info!("local-ip: {:?}", rs.inner.local_ip);
- std::env::set_var("PORT_FOR_API", port.to_string());
- rs.parse_relay_servers(&get_arg("relay-servers"));
- let mut listener = create_tcp_listener(port).await?;
- let mut listener2 = create_tcp_listener(nat_port).await?;
- let mut listener3 = create_tcp_listener(ws_port).await?;
- let test_addr = std::env::var("TEST_HBBS").unwrap_or_default();
- if std::env::var("ALWAYS_USE_RELAY")
- .unwrap_or_default()
- .to_uppercase()
- == "Y"
- {
- unsafe {
- ALWAYS_USE_RELAY = true;
- }
- }
- log::info!(
- "ALWAYS_USE_RELAY={}",
- if unsafe { ALWAYS_USE_RELAY } {
- "Y"
- } else {
- "N"
- }
- );
- if test_addr.to_lowercase() != "no" {
- let test_addr = if test_addr.is_empty() {
- listener.local_addr()?
- } else {
- test_addr.parse()?
- };
- tokio::spawn(async move {
- allow_err!(test_hbbs(test_addr).await);
- });
- };
- let main_task = async move {
- loop {
- log::info!("Start");
- match rs
- .io_loop(
- &mut rx,
- &mut listener,
- &mut listener2,
- &mut listener3,
- &mut socket,
- &key,
- )
- .await
- {
- LoopFailure::UdpSocket => {
- drop(socket);
- socket = create_udp_listener(port, rmem).await?;
- }
- LoopFailure::Listener => {
- drop(listener);
- listener = create_tcp_listener(port).await?;
- }
- LoopFailure::Listener2 => {
- drop(listener2);
- listener2 = create_tcp_listener(nat_port).await?;
- }
- LoopFailure::Listener3 => {
- drop(listener3);
- listener3 = create_tcp_listener(ws_port).await?;
- }
- }
- }
- };
- let listen_signal = listen_signal();
- tokio::select!(
- res = main_task => res,
- res = listen_signal => res,
- )
- }
- async fn io_loop(
- &mut self,
- rx: &mut Receiver,
- listener: &mut TcpListener,
- listener2: &mut TcpListener,
- listener3: &mut TcpListener,
- socket: &mut FramedSocket,
- key: &str,
- ) -> LoopFailure {
- let mut timer_check_relay = interval(Duration::from_millis(CHECK_RELAY_TIMEOUT));
- loop {
- tokio::select! {
- _ = timer_check_relay.tick() => {
- if self.relay_servers0.len() > 1 {
- let rs = self.relay_servers0.clone();
- let tx = self.tx.clone();
- tokio::spawn(async move {
- check_relay_servers(rs, tx).await;
- });
- }
- }
- Some(data) = rx.recv() => {
- match data {
- Data::Msg(msg, addr) => { allow_err!(socket.send(msg.as_ref(), addr).await); }
- Data::RelayServers0(rs) => { self.parse_relay_servers(&rs); }
- Data::RelayServers(rs) => { self.relay_servers = Arc::new(rs); }
- }
- }
- res = socket.next() => {
- match res {
- Some(Ok((bytes, addr))) => {
- if let Err(err) = self.handle_udp(&bytes, addr.into(), socket, key).await {
- log::error!("udp failure: {}", err);
- return LoopFailure::UdpSocket;
- }
- }
- Some(Err(err)) => {
- log::error!("udp failure: {}", err);
- return LoopFailure::UdpSocket;
- }
- None => {
- // unreachable!() ?
- }
- }
- }
- res = listener2.accept() => {
- match res {
- Ok((stream, addr)) => {
- stream.set_nodelay(true).ok();
- self.handle_listener2(stream, addr).await;
- }
- Err(err) => {
- log::error!("listener2.accept failed: {}", err);
- return LoopFailure::Listener2;
- }
- }
- }
- res = listener3.accept() => {
- match res {
- Ok((stream, addr)) => {
- stream.set_nodelay(true).ok();
- self.handle_listener(stream, addr, key, true).await;
- }
- Err(err) => {
- log::error!("listener3.accept failed: {}", err);
- return LoopFailure::Listener3;
- }
- }
- }
- res = listener.accept() => {
- match res {
- Ok((stream, addr)) => {
- stream.set_nodelay(true).ok();
- self.handle_listener(stream, addr, key, false).await;
- }
- Err(err) => {
- log::error!("listener.accept failed: {}", err);
- return LoopFailure::Listener;
- }
- }
- }
- }
- }
- }
- #[inline]
- async fn handle_udp(
- &mut self,
- bytes: &BytesMut,
- addr: SocketAddr,
- socket: &mut FramedSocket,
- key: &str,
- ) -> ResultType<()> {
- if let Ok(msg_in) = RendezvousMessage::parse_from_bytes(bytes) {
- match msg_in.union {
- Some(rendezvous_message::Union::RegisterPeer(rp)) => {
- // B registered
- if !rp.id.is_empty() {
- log::trace!("New peer registered: {:?} {:?}", &rp.id, &addr);
- self.update_addr(rp.id, addr, socket).await?;
- if self.inner.serial > rp.serial {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_configure_update(ConfigUpdate {
- serial: self.inner.serial,
- rendezvous_servers: (*self.rendezvous_servers).clone(),
- ..Default::default()
- });
- socket.send(&msg_out, addr).await?;
- }
- }
- }
- Some(rendezvous_message::Union::RegisterPk(rk)) => {
- if rk.uuid.is_empty() || rk.pk.is_empty() {
- return Ok(());
- }
- let id = rk.id;
- let ip = addr.ip().to_string();
- if id.len() < 6 {
- return send_rk_res(socket, addr, UUID_MISMATCH).await;
- } else if !self.check_ip_blocker(&ip, &id).await {
- return send_rk_res(socket, addr, TOO_FREQUENT).await;
- }
- let peer = self.pm.get_or(&id).await;
- let (changed, ip_changed) = {
- let peer = peer.read().await;
- if peer.uuid.is_empty() {
- (true, false)
- } else {
- if peer.uuid == rk.uuid {
- if peer.info.ip != ip && peer.pk != rk.pk {
- log::warn!(
- "Peer {} ip/pk mismatch: {}/{:?} vs {}/{:?}",
- id,
- ip,
- rk.pk,
- peer.info.ip,
- peer.pk,
- );
- drop(peer);
- return send_rk_res(socket, addr, UUID_MISMATCH).await;
- }
- } else {
- log::warn!(
- "Peer {} uuid mismatch: {:?} vs {:?}",
- id,
- rk.uuid,
- peer.uuid
- );
- drop(peer);
- return send_rk_res(socket, addr, UUID_MISMATCH).await;
- }
- let ip_changed = peer.info.ip != ip;
- (
- peer.uuid != rk.uuid || peer.pk != rk.pk || ip_changed,
- ip_changed,
- )
- }
- };
- let mut req_pk = peer.read().await.reg_pk;
- if req_pk.1.elapsed().as_secs() > 6 {
- req_pk.0 = 0;
- } else if req_pk.0 > 2 {
- return send_rk_res(socket, addr, TOO_FREQUENT).await;
- }
- req_pk.0 += 1;
- req_pk.1 = Instant::now();
- peer.write().await.reg_pk = req_pk;
- if ip_changed {
- let mut lock = IP_CHANGES.lock().await;
- if let Some((tm, ips)) = lock.get_mut(&id) {
- if tm.elapsed().as_secs() > IP_CHANGE_DUR {
- *tm = Instant::now();
- ips.clear();
- ips.insert(ip.clone(), 1);
- } else if let Some(v) = ips.get_mut(&ip) {
- *v += 1;
- } else {
- ips.insert(ip.clone(), 1);
- }
- } else {
- lock.insert(
- id.clone(),
- (Instant::now(), HashMap::from([(ip.clone(), 1)])),
- );
- }
- }
- if changed {
- self.pm.update_pk(id, peer, addr, rk.uuid, rk.pk, ip).await;
- }
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_register_pk_response(RegisterPkResponse {
- result: register_pk_response::Result::OK.into(),
- ..Default::default()
- });
- socket.send(&msg_out, addr).await?
- }
- Some(rendezvous_message::Union::PunchHoleRequest(ph)) => {
- if self.pm.is_in_memory(&ph.id).await {
- self.handle_udp_punch_hole_request(addr, ph, key).await?;
- } else {
- // not in memory, fetch from db with spawn in case blocking me
- let mut me = self.clone();
- let key = key.to_owned();
- tokio::spawn(async move {
- allow_err!(me.handle_udp_punch_hole_request(addr, ph, &key).await);
- });
- }
- }
- Some(rendezvous_message::Union::PunchHoleSent(phs)) => {
- self.handle_hole_sent(phs, addr, Some(socket)).await?;
- }
- Some(rendezvous_message::Union::LocalAddr(la)) => {
- self.handle_local_addr(la, addr, Some(socket)).await?;
- }
- Some(rendezvous_message::Union::ConfigureUpdate(mut cu)) => {
- if addr.ip().is_loopback() && cu.serial > self.inner.serial {
- let mut inner: Inner = (*self.inner).clone();
- inner.serial = cu.serial;
- self.inner = Arc::new(inner);
- self.rendezvous_servers = Arc::new(
- cu.rendezvous_servers
- .drain(..)
- .filter(|x| {
- !x.is_empty()
- && test_if_valid_server(x, "rendezvous-server").is_ok()
- })
- .collect(),
- );
- log::info!(
- "configure updated: serial={} rendezvous-servers={:?}",
- self.inner.serial,
- self.rendezvous_servers
- );
- }
- }
- Some(rendezvous_message::Union::SoftwareUpdate(su)) => {
- if !self.inner.version.is_empty() && su.url != self.inner.version {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_software_update(SoftwareUpdate {
- url: self.inner.software_url.clone(),
- ..Default::default()
- });
- socket.send(&msg_out, addr).await?;
- }
- }
- _ => {}
- }
- }
- Ok(())
- }
- #[inline]
- async fn handle_tcp(
- &mut self,
- bytes: &[u8],
- sink: &mut Option<Sink>,
- addr: SocketAddr,
- key: &str,
- ws: bool,
- ) -> bool {
- if let Ok(msg_in) = RendezvousMessage::parse_from_bytes(bytes) {
- match msg_in.union {
- Some(rendezvous_message::Union::PunchHoleRequest(ph)) => {
- // there maybe several attempt, so sink can be none
- if let Some(sink) = sink.take() {
- self.tcp_punch.lock().await.insert(try_into_v4(addr), sink);
- }
- allow_err!(self.handle_tcp_punch_hole_request(addr, ph, key, ws).await);
- return true;
- }
- Some(rendezvous_message::Union::RequestRelay(mut rf)) => {
- // there maybe several attempt, so sink can be none
- if let Some(sink) = sink.take() {
- self.tcp_punch.lock().await.insert(try_into_v4(addr), sink);
- }
- if let Some(peer) = self.pm.get_in_memory(&rf.id).await {
- let mut msg_out = RendezvousMessage::new();
- rf.socket_addr = AddrMangle::encode(addr).into();
- msg_out.set_request_relay(rf);
- let peer_addr = peer.read().await.socket_addr;
- self.tx.send(Data::Msg(msg_out.into(), peer_addr)).ok();
- }
- return true;
- }
- Some(rendezvous_message::Union::RelayResponse(mut rr)) => {
- let addr_b = AddrMangle::decode(&rr.socket_addr);
- rr.socket_addr = Default::default();
- let id = rr.id();
- if !id.is_empty() {
- let pk = self.get_pk(&rr.version, id.to_owned()).await;
- rr.set_pk(pk);
- }
- let mut msg_out = RendezvousMessage::new();
- if !rr.relay_server.is_empty() {
- if self.is_lan(addr_b) {
- // https://github.com/rustdesk/rustdesk-server/issues/24
- rr.relay_server = self.inner.local_ip.clone();
- } else if rr.relay_server == self.inner.local_ip {
- rr.relay_server = self.get_relay_server(addr.ip(), addr_b.ip());
- }
- }
- msg_out.set_relay_response(rr);
- allow_err!(self.send_to_tcp_sync(msg_out, addr_b).await);
- }
- Some(rendezvous_message::Union::PunchHoleSent(phs)) => {
- allow_err!(self.handle_hole_sent(phs, addr, None).await);
- }
- Some(rendezvous_message::Union::LocalAddr(la)) => {
- allow_err!(self.handle_local_addr(la, addr, None).await);
- }
- Some(rendezvous_message::Union::TestNatRequest(tar)) => {
- let mut msg_out = RendezvousMessage::new();
- let mut res = TestNatResponse {
- port: addr.port() as _,
- ..Default::default()
- };
- if self.inner.serial > tar.serial {
- let mut cu = ConfigUpdate::new();
- cu.serial = self.inner.serial;
- cu.rendezvous_servers = (*self.rendezvous_servers).clone();
- res.cu = MessageField::from_option(Some(cu));
- }
- msg_out.set_test_nat_response(res);
- Self::send_to_sink(sink, msg_out).await;
- }
- Some(rendezvous_message::Union::RegisterPk(_)) => {
- let res = register_pk_response::Result::NOT_SUPPORT;
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_register_pk_response(RegisterPkResponse {
- result: res.into(),
- ..Default::default()
- });
- Self::send_to_sink(sink, msg_out).await;
- }
- _ => {}
- }
- }
- false
- }
- #[inline]
- async fn update_addr(
- &mut self,
- id: String,
- socket_addr: SocketAddr,
- socket: &mut FramedSocket,
- ) -> ResultType<()> {
- let (request_pk, ip_change) = if let Some(old) = self.pm.get_in_memory(&id).await {
- let mut old = old.write().await;
- let ip = socket_addr.ip();
- let ip_change = if old.socket_addr.port() != 0 {
- ip != old.socket_addr.ip()
- } else {
- ip.to_string() != old.info.ip
- } && !ip.is_loopback();
- let request_pk = old.pk.is_empty() || ip_change;
- if !request_pk {
- old.socket_addr = socket_addr;
- old.last_reg_time = Instant::now();
- }
- let ip_change = if ip_change && old.reg_pk.0 <= 2 {
- Some(if old.socket_addr.port() == 0 {
- old.info.ip.clone()
- } else {
- old.socket_addr.to_string()
- })
- } else {
- None
- };
- (request_pk, ip_change)
- } else {
- (true, None)
- };
- if let Some(old) = ip_change {
- log::info!("IP change of {} from {} to {}", id, old, socket_addr);
- }
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_register_peer_response(RegisterPeerResponse {
- request_pk,
- ..Default::default()
- });
- socket.send(&msg_out, socket_addr).await
- }
- #[inline]
- async fn handle_hole_sent<'a>(
- &mut self,
- phs: PunchHoleSent,
- addr: SocketAddr,
- socket: Option<&'a mut FramedSocket>,
- ) -> ResultType<()> {
- // punch hole sent from B, tell A that B is ready to be connected
- let addr_a = AddrMangle::decode(&phs.socket_addr);
- log::debug!(
- "{} punch hole response to {:?} from {:?}",
- if socket.is_none() { "TCP" } else { "UDP" },
- &addr_a,
- &addr
- );
- let mut msg_out = RendezvousMessage::new();
- let mut p = PunchHoleResponse {
- socket_addr: AddrMangle::encode(addr).into(),
- pk: self.get_pk(&phs.version, phs.id).await,
- relay_server: phs.relay_server.clone(),
- ..Default::default()
- };
- if let Ok(t) = phs.nat_type.enum_value() {
- p.set_nat_type(t);
- }
- msg_out.set_punch_hole_response(p);
- if let Some(socket) = socket {
- socket.send(&msg_out, addr_a).await?;
- } else {
- self.send_to_tcp(msg_out, addr_a).await;
- }
- Ok(())
- }
- #[inline]
- async fn handle_local_addr<'a>(
- &mut self,
- la: LocalAddr,
- addr: SocketAddr,
- socket: Option<&'a mut FramedSocket>,
- ) -> ResultType<()> {
- // relay local addrs of B to A
- let addr_a = AddrMangle::decode(&la.socket_addr);
- log::debug!(
- "{} local addrs response to {:?} from {:?}",
- if socket.is_none() { "TCP" } else { "UDP" },
- &addr_a,
- &addr
- );
- let mut msg_out = RendezvousMessage::new();
- let mut p = PunchHoleResponse {
- socket_addr: la.local_addr.clone(),
- pk: self.get_pk(&la.version, la.id).await,
- relay_server: la.relay_server,
- ..Default::default()
- };
- p.set_is_local(true);
- msg_out.set_punch_hole_response(p);
- if let Some(socket) = socket {
- socket.send(&msg_out, addr_a).await?;
- } else {
- self.send_to_tcp(msg_out, addr_a).await;
- }
- Ok(())
- }
- #[inline]
- async fn handle_punch_hole_request(
- &mut self,
- addr: SocketAddr,
- ph: PunchHoleRequest,
- key: &str,
- ws: bool,
- ) -> ResultType<(RendezvousMessage, Option<SocketAddr>)> {
- let mut ph = ph;
- if !key.is_empty() && ph.licence_key != key {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_punch_hole_response(PunchHoleResponse {
- failure: punch_hole_response::Failure::LICENSE_MISMATCH.into(),
- ..Default::default()
- });
- return Ok((msg_out, None));
- }
- let id = ph.id;
- // punch hole request from A, relay to B,
- // check if in same intranet first,
- // fetch local addrs if in same intranet.
- // because punch hole won't work if in the same intranet,
- // all routers will drop such self-connections.
- if let Some(peer) = self.pm.get(&id).await {
- let (elapsed, peer_addr) = {
- let r = peer.read().await;
- (r.last_reg_time.elapsed().as_millis() as i32, r.socket_addr)
- };
- if elapsed >= REG_TIMEOUT {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_punch_hole_response(PunchHoleResponse {
- failure: punch_hole_response::Failure::OFFLINE.into(),
- ..Default::default()
- });
- return Ok((msg_out, None));
- }
- let mut msg_out = RendezvousMessage::new();
- let peer_is_lan = self.is_lan(peer_addr);
- let is_lan = self.is_lan(addr);
- let mut relay_server = self.get_relay_server(addr.ip(), peer_addr.ip());
- if unsafe { ALWAYS_USE_RELAY } || (peer_is_lan ^ is_lan) {
- if peer_is_lan {
- // https://github.com/rustdesk/rustdesk-server/issues/24
- relay_server = self.inner.local_ip.clone()
- }
- ph.nat_type = NatType::SYMMETRIC.into(); // will force relay
- }
- let same_intranet = !ws
- && match peer_addr {
- SocketAddr::V4(a) => match addr {
- SocketAddr::V4(b) => a.ip() == b.ip(),
- _ => false,
- },
- SocketAddr::V6(a) => match addr {
- SocketAddr::V6(b) => a.ip() == b.ip(),
- _ => false,
- },
- };
- let socket_addr = AddrMangle::encode(addr).into();
- if same_intranet {
- log::debug!(
- "Fetch local addr {:?} {:?} request from {:?}",
- id,
- peer_addr,
- addr
- );
- msg_out.set_fetch_local_addr(FetchLocalAddr {
- socket_addr,
- relay_server,
- ..Default::default()
- });
- } else {
- log::debug!(
- "Punch hole {:?} {:?} request from {:?}",
- id,
- peer_addr,
- addr
- );
- msg_out.set_punch_hole(PunchHole {
- socket_addr,
- nat_type: ph.nat_type,
- relay_server,
- ..Default::default()
- });
- }
- Ok((msg_out, Some(peer_addr)))
- } else {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_punch_hole_response(PunchHoleResponse {
- failure: punch_hole_response::Failure::ID_NOT_EXIST.into(),
- ..Default::default()
- });
- Ok((msg_out, None))
- }
- }
- #[inline]
- async fn handle_online_request(
- &mut self,
- stream: &mut FramedStream,
- peers: Vec<String>,
- ) -> ResultType<()> {
- let mut states = BytesMut::zeroed((peers.len() + 7) / 8);
- for (i, peer_id) in peers.iter().enumerate() {
- if let Some(peer) = self.pm.get_in_memory(peer_id).await {
- let elapsed = peer.read().await.last_reg_time.elapsed().as_millis() as i32;
- // bytes index from left to right
- let states_idx = i / 8;
- let bit_idx = 7 - i % 8;
- if elapsed < REG_TIMEOUT {
- states[states_idx] |= 0x01 << bit_idx;
- }
- }
- }
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_online_response(OnlineResponse {
- states: states.into(),
- ..Default::default()
- });
- stream.send(&msg_out).await?;
- Ok(())
- }
- #[inline]
- async fn send_to_tcp(&mut self, msg: RendezvousMessage, addr: SocketAddr) {
- let mut tcp = self.tcp_punch.lock().await.remove(&try_into_v4(addr));
- tokio::spawn(async move {
- Self::send_to_sink(&mut tcp, msg).await;
- });
- }
- #[inline]
- async fn send_to_sink(sink: &mut Option<Sink>, msg: RendezvousMessage) {
- if let Some(sink) = sink.as_mut() {
- if let Ok(bytes) = msg.write_to_bytes() {
- match sink {
- Sink::TcpStream(s) => {
- allow_err!(s.send(Bytes::from(bytes)).await);
- }
- Sink::Ws(ws) => {
- allow_err!(ws.send(tungstenite::Message::Binary(bytes)).await);
- }
- }
- }
- }
- }
- #[inline]
- async fn send_to_tcp_sync(
- &mut self,
- msg: RendezvousMessage,
- addr: SocketAddr,
- ) -> ResultType<()> {
- let mut sink = self.tcp_punch.lock().await.remove(&try_into_v4(addr));
- Self::send_to_sink(&mut sink, msg).await;
- Ok(())
- }
- #[inline]
- async fn handle_tcp_punch_hole_request(
- &mut self,
- addr: SocketAddr,
- ph: PunchHoleRequest,
- key: &str,
- ws: bool,
- ) -> ResultType<()> {
- let (msg, to_addr) = self.handle_punch_hole_request(addr, ph, key, ws).await?;
- if let Some(addr) = to_addr {
- self.tx.send(Data::Msg(msg.into(), addr))?;
- } else {
- self.send_to_tcp_sync(msg, addr).await?;
- }
- Ok(())
- }
- #[inline]
- async fn handle_udp_punch_hole_request(
- &mut self,
- addr: SocketAddr,
- ph: PunchHoleRequest,
- key: &str,
- ) -> ResultType<()> {
- let (msg, to_addr) = self.handle_punch_hole_request(addr, ph, key, false).await?;
- self.tx.send(Data::Msg(
- msg.into(),
- match to_addr {
- Some(addr) => addr,
- None => addr,
- },
- ))?;
- Ok(())
- }
- async fn check_ip_blocker(&self, ip: &str, id: &str) -> bool {
- let mut lock = IP_BLOCKER.lock().await;
- let now = Instant::now();
- if let Some(old) = lock.get_mut(ip) {
- let counter = &mut old.0;
- if counter.1.elapsed().as_secs() > IP_BLOCK_DUR {
- counter.0 = 0;
- } else if counter.0 > 30 {
- return false;
- }
- counter.0 += 1;
- counter.1 = now;
- let counter = &mut old.1;
- let is_new = counter.0.get(id).is_none();
- if counter.1.elapsed().as_secs() > DAY_SECONDS {
- counter.0.clear();
- } else if counter.0.len() > 300 {
- return !is_new;
- }
- if is_new {
- counter.0.insert(id.to_owned());
- }
- counter.1 = now;
- } else {
- lock.insert(ip.to_owned(), ((0, now), (Default::default(), now)));
- }
- true
- }
- fn parse_relay_servers(&mut self, relay_servers: &str) {
- let rs = get_servers(relay_servers, "relay-servers");
- self.relay_servers0 = Arc::new(rs);
- self.relay_servers = self.relay_servers0.clone();
- }
- fn get_relay_server(&self, _pa: IpAddr, _pb: IpAddr) -> String {
- if self.relay_servers.is_empty() {
- return "".to_owned();
- } else if self.relay_servers.len() == 1 {
- return self.relay_servers[0].clone();
- }
- let i = unsafe {
- ROTATION_RELAY_SERVER += 1;
- ROTATION_RELAY_SERVER % self.relay_servers.len()
- };
- self.relay_servers[i].clone()
- }
- async fn check_cmd(&self, cmd: &str) -> String {
- use std::fmt::Write as _;
- let mut res = "".to_owned();
- let mut fds = cmd.trim().split(' ');
- match fds.next() {
- Some("h") => {
- res = format!(
- "{}\n{}\n{}\n{}\n{}\n{}\n",
- "relay-servers(rs) <separated by ,>",
- "reload-geo(rg)",
- "ip-blocker(ib) [<ip>|<number>] [-]",
- "ip-changes(ic) [<id>|<number>] [-]",
- "always-use-relay(aur)",
- "test-geo(tg) <ip1> <ip2>"
- )
- }
- Some("relay-servers" | "rs") => {
- if let Some(rs) = fds.next() {
- self.tx.send(Data::RelayServers0(rs.to_owned())).ok();
- } else {
- for ip in self.relay_servers.iter() {
- let _ = writeln!(res, "{ip}");
- }
- }
- }
- Some("ip-blocker" | "ib") => {
- let mut lock = IP_BLOCKER.lock().await;
- lock.retain(|&_, (a, b)| {
- a.1.elapsed().as_secs() <= IP_BLOCK_DUR
- || b.1.elapsed().as_secs() <= DAY_SECONDS
- });
- res = format!("{}\n", lock.len());
- let ip = fds.next();
- let mut start = ip.map(|x| x.parse::<i32>().unwrap_or(-1)).unwrap_or(-1);
- if start < 0 {
- if let Some(ip) = ip {
- if let Some((a, b)) = lock.get(ip) {
- let _ = writeln!(
- res,
- "{}/{}s {}/{}s",
- a.0,
- a.1.elapsed().as_secs(),
- b.0.len(),
- b.1.elapsed().as_secs()
- );
- }
- if fds.next() == Some("-") {
- lock.remove(ip);
- }
- } else {
- start = 0;
- }
- }
- if start >= 0 {
- let mut it = lock.iter();
- for i in 0..(start + 10) {
- let x = it.next();
- if x.is_none() {
- break;
- }
- if i < start {
- continue;
- }
- if let Some((ip, (a, b))) = x {
- let _ = writeln!(
- res,
- "{}: {}/{}s {}/{}s",
- ip,
- a.0,
- a.1.elapsed().as_secs(),
- b.0.len(),
- b.1.elapsed().as_secs()
- );
- }
- }
- }
- }
- Some("ip-changes" | "ic") => {
- let mut lock = IP_CHANGES.lock().await;
- lock.retain(|&_, v| v.0.elapsed().as_secs() < IP_CHANGE_DUR_X2 && v.1.len() > 1);
- res = format!("{}\n", lock.len());
- let id = fds.next();
- let mut start = id.map(|x| x.parse::<i32>().unwrap_or(-1)).unwrap_or(-1);
- if !(0..=10_000_000).contains(&start) {
- if let Some(id) = id {
- if let Some((tm, ips)) = lock.get(id) {
- let _ = writeln!(res, "{}s {:?}", tm.elapsed().as_secs(), ips);
- }
- if fds.next() == Some("-") {
- lock.remove(id);
- }
- } else {
- start = 0;
- }
- }
- if start >= 0 {
- let mut it = lock.iter();
- for i in 0..(start + 10) {
- let x = it.next();
- if x.is_none() {
- break;
- }
- if i < start {
- continue;
- }
- if let Some((id, (tm, ips))) = x {
- let _ = writeln!(res, "{}: {}s {:?}", id, tm.elapsed().as_secs(), ips,);
- }
- }
- }
- }
- Some("always-use-relay" | "aur") => {
- if let Some(rs) = fds.next() {
- if rs.to_uppercase() == "Y" {
- unsafe { ALWAYS_USE_RELAY = true };
- } else {
- unsafe { ALWAYS_USE_RELAY = false };
- }
- self.tx.send(Data::RelayServers0(rs.to_owned())).ok();
- } else {
- let _ = writeln!(res, "ALWAYS_USE_RELAY: {:?}", unsafe { ALWAYS_USE_RELAY });
- }
- }
- Some("test-geo" | "tg") => {
- if let Some(rs) = fds.next() {
- if let Ok(a) = rs.parse::<IpAddr>() {
- if let Some(rs) = fds.next() {
- if let Ok(b) = rs.parse::<IpAddr>() {
- res = format!("{:?}", self.get_relay_server(a, b));
- }
- } else {
- res = format!("{:?}", self.get_relay_server(a, a));
- }
- }
- }
- }
- _ => {}
- }
- res
- }
- async fn handle_listener2(&self, stream: TcpStream, addr: SocketAddr) {
- let mut rs = self.clone();
- if addr.ip().is_loopback() {
- tokio::spawn(async move {
- let mut stream = stream;
- let mut buffer = [0; 1024];
- if let Ok(Ok(n)) = timeout(1000, stream.read(&mut buffer[..])).await {
- if let Ok(data) = std::str::from_utf8(&buffer[..n]) {
- let res = rs.check_cmd(data).await;
- stream.write(res.as_bytes()).await.ok();
- }
- }
- });
- return;
- }
- let stream = FramedStream::from(stream, addr);
- tokio::spawn(async move {
- let mut stream = stream;
- if let Some(Ok(bytes)) = stream.next_timeout(30_000).await {
- if let Ok(msg_in) = RendezvousMessage::parse_from_bytes(&bytes) {
- match msg_in.union {
- Some(rendezvous_message::Union::TestNatRequest(_)) => {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_test_nat_response(TestNatResponse {
- port: addr.port() as _,
- ..Default::default()
- });
- stream.send(&msg_out).await.ok();
- }
- Some(rendezvous_message::Union::OnlineRequest(or)) => {
- allow_err!(rs.handle_online_request(&mut stream, or.peers).await);
- }
- _ => {}
- }
- }
- }
- });
- }
- async fn handle_listener(&self, stream: TcpStream, addr: SocketAddr, key: &str, ws: bool) {
- log::debug!("Tcp connection from {:?}, ws: {}", addr, ws);
- let mut rs = self.clone();
- let key = key.to_owned();
- tokio::spawn(async move {
- allow_err!(rs.handle_listener_inner(stream, addr, &key, ws).await);
- });
- }
- #[inline]
- async fn handle_listener_inner(
- &mut self,
- stream: TcpStream,
- addr: SocketAddr,
- key: &str,
- ws: bool,
- ) -> ResultType<()> {
- let mut sink;
- if ws {
- let ws_stream = tokio_tungstenite::accept_async(stream).await?;
- let (a, mut b) = ws_stream.split();
- sink = Some(Sink::Ws(a));
- while let Ok(Some(Ok(msg))) = timeout(30_000, b.next()).await {
- if let tungstenite::Message::Binary(bytes) = msg {
- if !self.handle_tcp(&bytes, &mut sink, addr, key, ws).await {
- break;
- }
- }
- }
- } else {
- let (a, mut b) = Framed::new(stream, BytesCodec::new()).split();
- sink = Some(Sink::TcpStream(a));
- while let Ok(Some(Ok(bytes))) = timeout(30_000, b.next()).await {
- if !self.handle_tcp(&bytes, &mut sink, addr, key, ws).await {
- break;
- }
- }
- }
- if sink.is_none() {
- self.tcp_punch.lock().await.remove(&try_into_v4(addr));
- }
- log::debug!("Tcp connection from {:?} closed", addr);
- Ok(())
- }
- #[inline]
- async fn get_pk(&mut self, version: &str, id: String) -> Bytes {
- if version.is_empty() || self.inner.sk.is_none() {
- Bytes::new()
- } else {
- match self.pm.get(&id).await {
- Some(peer) => {
- let pk = peer.read().await.pk.clone();
- sign::sign(
- &hbb_common::message_proto::IdPk {
- id,
- pk,
- ..Default::default()
- }
- .write_to_bytes()
- .unwrap_or_default(),
- self.inner.sk.as_ref().unwrap(),
- )
- .into()
- }
- _ => Bytes::new(),
- }
- }
- }
- #[inline]
- fn get_server_sk(key: &str) -> (String, Option<sign::SecretKey>) {
- let mut out_sk = None;
- let mut key = key.to_owned();
- if let Ok(sk) = base64::decode(&key) {
- if sk.len() == sign::SECRETKEYBYTES {
- log::info!("The key is a crypto private key");
- key = base64::encode(&sk[(sign::SECRETKEYBYTES / 2)..]);
- let mut tmp = [0u8; sign::SECRETKEYBYTES];
- tmp[..].copy_from_slice(&sk);
- out_sk = Some(sign::SecretKey(tmp));
- }
- }
- if key.is_empty() || key == "-" || key == "_" {
- let (pk, sk) = crate::common::gen_sk(0);
- out_sk = sk;
- if !key.is_empty() {
- key = pk;
- } else {
- std::env::set_var("KEY_FOR_API", pk);
- }
- }
- if !key.is_empty() {
- log::info!("Key: {}", key);
- std::env::set_var("KEY_FOR_API", key.clone());
- }
- (key, out_sk)
- }
- #[inline]
- fn is_lan(&self, addr: SocketAddr) -> bool {
- if let Some(network) = &self.inner.mask {
- if let SocketAddr::V4(addr) = addr {
- return network.contains(*addr.ip());
- }
- }
- false
- }
- }
- async fn check_relay_servers(rs0: Arc<RelayServers>, tx: Sender) {
- let mut futs = Vec::new();
- let rs = Arc::new(Mutex::new(Vec::new()));
- for x in rs0.iter() {
- let mut host = x.to_owned();
- if !host.contains(':') {
- host = format!("{}:{}", host, config::RELAY_PORT);
- }
- let rs = rs.clone();
- let x = x.clone();
- futs.push(tokio::spawn(async move {
- if FramedStream::new(&host, None, CHECK_RELAY_TIMEOUT)
- .await
- .is_ok()
- {
- rs.lock().await.push(x);
- }
- }));
- }
- join_all(futs).await;
- log::debug!("check_relay_servers");
- let rs = std::mem::take(&mut *rs.lock().await);
- if !rs.is_empty() {
- tx.send(Data::RelayServers(rs)).ok();
- }
- }
- // temp solution to solve udp socket failure
- async fn test_hbbs(addr: SocketAddr) -> ResultType<()> {
- let mut socket = FramedSocket::new(config::Config::get_any_listen_addr(addr.is_ipv4())).await?;
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_register_peer(RegisterPeer {
- id: "(:test_hbbs:)".to_owned(),
- ..Default::default()
- });
- let mut last_time_recv = Instant::now();
- let mut timer = interval(Duration::from_secs(1));
- loop {
- tokio::select! {
- _ = timer.tick() => {
- if last_time_recv.elapsed().as_secs() > 12 {
- log::error!("Timeout of test_hbbs");
- std::process::exit(1);
- }
- socket.send(&msg_out, addr).await?;
- }
- Some(Ok((bytes, _))) = socket.next() => {
- if let Ok(msg_in) = RendezvousMessage::parse_from_bytes(&bytes) {
- log::trace!("Recv {:?} of test_hbbs", msg_in);
- last_time_recv = Instant::now();
- }
- }
- }
- }
- }
- #[inline]
- async fn send_rk_res(
- socket: &mut FramedSocket,
- addr: SocketAddr,
- res: register_pk_response::Result,
- ) -> ResultType<()> {
- let mut msg_out = RendezvousMessage::new();
- msg_out.set_register_pk_response(RegisterPkResponse {
- result: res.into(),
- ..Default::default()
- });
- socket.send(&msg_out, addr).await
- }
- async fn create_udp_listener(port: i32, rmem: usize) -> ResultType<FramedSocket> {
- let addr = SocketAddr::new(IpAddr::V6(Ipv6Addr::UNSPECIFIED), port as _);
- if let Ok(s) = FramedSocket::new_reuse(&addr, false, rmem).await {
- log::debug!("listen on udp {:?}", s.local_addr());
- return Ok(s);
- }
- let addr = SocketAddr::new(IpAddr::V4(Ipv4Addr::UNSPECIFIED), port as _);
- let s = FramedSocket::new_reuse(&addr, false, rmem).await?;
- log::debug!("listen on udp {:?}", s.local_addr());
- Ok(s)
- }
- #[inline]
- async fn create_tcp_listener(port: i32) -> ResultType<TcpListener> {
- let s = listen_any(port as _).await?;
- log::debug!("listen on tcp {:?}", s.local_addr());
- Ok(s)
- }
|
