mirror of
https://github.com/yusing/godoxy.git
synced 2025-05-20 20:52:33 +02:00
105 lines
2.7 KiB
Go
105 lines
2.7 KiB
Go
package server
|
|
|
|
import (
|
|
"context"
|
|
"crypto/tls"
|
|
"crypto/x509"
|
|
"encoding/pem"
|
|
"fmt"
|
|
"log"
|
|
"net"
|
|
"net/http"
|
|
"time"
|
|
|
|
"github.com/yusing/go-proxy/agent/pkg/env"
|
|
"github.com/yusing/go-proxy/agent/pkg/handler"
|
|
"github.com/yusing/go-proxy/internal/logging"
|
|
"github.com/yusing/go-proxy/internal/net/http/server"
|
|
"github.com/yusing/go-proxy/internal/task"
|
|
)
|
|
|
|
type Options struct {
|
|
CACert, ServerCert *tls.Certificate
|
|
Port int
|
|
}
|
|
|
|
func StartAgentServer(parent task.Parent, opt Options) {
|
|
t := parent.Subtask("agent_server")
|
|
|
|
caCertPEM := pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: opt.CACert.Certificate[0]})
|
|
caCertPool := x509.NewCertPool()
|
|
caCertPool.AppendCertsFromPEM(caCertPEM)
|
|
|
|
// Configure TLS
|
|
tlsConfig := &tls.Config{
|
|
Certificates: []tls.Certificate{*opt.ServerCert},
|
|
ClientCAs: caCertPool,
|
|
ClientAuth: tls.RequireAndVerifyClientCert,
|
|
}
|
|
|
|
if env.AgentSkipClientCertCheck {
|
|
tlsConfig.ClientAuth = tls.NoClientCert
|
|
}
|
|
|
|
agentServer := &http.Server{
|
|
Handler: handler.NewAgentHandler(),
|
|
TLSConfig: tlsConfig,
|
|
ErrorLog: log.New(logging.GetLogger(), "", 0),
|
|
}
|
|
|
|
go func() {
|
|
l, err := net.Listen("tcp", fmt.Sprintf(":%d", opt.Port))
|
|
if err != nil {
|
|
logging.Fatal().Err(err).Int("port", opt.Port).Msg("failed to listen on port")
|
|
return
|
|
}
|
|
defer l.Close()
|
|
if err := agentServer.Serve(tls.NewListener(l, tlsConfig)); err != nil {
|
|
logging.Fatal().Err(err).Int("port", opt.Port).Msg("failed to serve")
|
|
}
|
|
}()
|
|
|
|
logging.Info().Int("port", opt.Port).Msg("agent server started")
|
|
|
|
go func() {
|
|
defer t.Finish(nil)
|
|
<-parent.Context().Done()
|
|
|
|
ctx, cancel := context.WithTimeout(context.Background(), 3*time.Second)
|
|
defer cancel()
|
|
|
|
err := agentServer.Shutdown(ctx)
|
|
if err != nil {
|
|
logging.Error().Err(err).Int("port", opt.Port).Msg("failed to shutdown agent server")
|
|
}
|
|
logging.Info().Int("port", opt.Port).Msg("agent server stopped")
|
|
}()
|
|
}
|
|
|
|
func StartRegistrationServer(parent task.Parent, opt Options) {
|
|
t := parent.Subtask("registration_server")
|
|
|
|
registrationServer := &http.Server{
|
|
Addr: fmt.Sprintf(":%d", opt.Port),
|
|
Handler: handler.NewRegistrationHandler(t, opt.CACert),
|
|
ErrorLog: log.New(logging.GetLogger(), "", 0),
|
|
}
|
|
|
|
go func() {
|
|
err := registrationServer.ListenAndServe()
|
|
server.HandleError(logging.GetLogger(), err)
|
|
}()
|
|
|
|
logging.Info().Int("port", opt.Port).Msg("registration server started")
|
|
|
|
defer t.Finish(nil)
|
|
<-t.Context().Done()
|
|
|
|
ctx, cancel := context.WithTimeout(context.Background(), 3*time.Second)
|
|
defer cancel()
|
|
|
|
err := registrationServer.Shutdown(ctx)
|
|
server.HandleError(logging.GetLogger(), err)
|
|
|
|
logging.Info().Int("port", opt.Port).Msg("registration server stopped")
|
|
}
|