dnscrypt-proxy/dnscrypt-proxy/sources.go

package main

import (
	"encoding/csv"
	"fmt"
	"io/ioutil"
	"net/http"
	"os"
	"strings"
	"time"

	"github.com/dchest/safefile"

	"github.com/jedisct1/dlog"
	"github.com/jedisct1/go-minisign"
)

type SourceFormat int

const (
	SourceFormatV1 = iota
)

type Source struct {
	url    string
	format SourceFormat
	in     string
}

func fetchFromCache(cacheFile string) ([]byte, error) {
	dlog.Infof("Loading source information from cache file [%s]", cacheFile)
	return ioutil.ReadFile(cacheFile)
}

func fetchWithCache(url string, cacheFile string, refreshDelay time.Duration) (in string, cached bool, err error) {
	var bin []byte
	cached, usableCache, hotCache := false, false, false
	fi, err := os.Stat(cacheFile)
	if err == nil {
		usableCache = true
		elapsed := time.Since(fi.ModTime())
		if elapsed < refreshDelay && elapsed >= 0 {
			hotCache = true
		}
	}
	if hotCache {
		bin, err = fetchFromCache(cacheFile)
		if err == nil {
			cached = true
		}
	}
	if !cached {
		var resp *http.Response
		dlog.Infof("Loading source information from URL [%s]", url)
		resp, err = http.Get(url)
		if err != nil {
			if usableCache {
				bin, err = fetchFromCache(cacheFile)
			}
			if err != nil {
				return
			}
		} else {
			bin, err = ioutil.ReadAll(resp.Body)
			resp.Body.Close()
			if err != nil {
				if usableCache {
					bin, err = fetchFromCache(cacheFile)
				}
				if err != nil {
					return
				}
			}
		}
	}
	in = string(bin)
	return
}

func AtomicFileWrite(file string, data []byte) error {
	return safefile.WriteFile(file, data, 0644)
}

func NewSource(url string, minisignKeyStr string, cacheFile string, formatStr string, refreshDelay time.Duration) (Source, error) {
	source := Source{url: url}
	if formatStr != "v1" {
		return source, fmt.Errorf("Unsupported source format: [%s]", formatStr)
	}
	source.format = SourceFormatV1
	minisignKey, err := minisign.NewPublicKey(minisignKeyStr)
	if err != nil {
		return source, err
	}
	in, cached, err := fetchWithCache(url, cacheFile, refreshDelay)
	if err != nil {
		return source, err
	}
	sigCacheFile := cacheFile + ".minisig"
	sigURL := url + ".minisig"
	sigStr, sigCached, err := fetchWithCache(sigURL, sigCacheFile, refreshDelay)
	if err != nil {
		return source, err
	}
	signature, err := minisign.DecodeSignature(sigStr)
	if err != nil {
		return source, err
	}
	res, err := minisignKey.Verify([]byte(in), signature)
	if err != nil || !res {
		return source, err
	}
	if !cached {
		if err = AtomicFileWrite(cacheFile, []byte(in)); err != nil {
			return source, err
		}
	}
	if !sigCached {
		if err = AtomicFileWrite(sigCacheFile, []byte(sigStr)); err != nil {
			return source, err
		}
	}
	dlog.Noticef("Source [%s] loaded", url)
	source.in = in
	return source, nil
}

func (source *Source) Parse() ([]RegisteredServer, error) {
	var registeredServers []RegisteredServer

	csvReader := csv.NewReader(strings.NewReader(source.in))
	records, err := csvReader.ReadAll()
	if err != nil {
		return registeredServers, nil
	}
	for lineNo, record := range records {
		if len(record) == 0 {
			continue
		}
		if len(record) < 14 {
			return registeredServers, fmt.Errorf("Parse error at line %d", 1+lineNo)
		}
		if lineNo == 0 {
			continue
		}
		name := record[0]
		serverAddrStr := record[10]
		providerName := record[11]
		serverPkStr := record[12]
		props := ServerInformalProperties(0)
		if strings.EqualFold(record[7], "yes") {
			props |= ServerInformalPropertyDNSSEC
		}
		if strings.EqualFold(record[8], "yes") {
			props |= ServerInformalPropertyNoLog
		}
		stamp, err := NewServerStampFromLegacy(serverAddrStr, serverPkStr, providerName, props)
		if err != nil {
			return registeredServers, err
		}
		registeredServer := RegisteredServer{
			name: name, stamp: stamp,
		}
		registeredServers = append(registeredServers, registeredServer)
	}
	return registeredServers, nil
}
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`package main`

			`import (`
			`"encoding/csv"`
			`"fmt"`
			`"io/ioutil"`
			`"net/http"`
			`"os"`
			`"strings"`
			`"time"`

			`"github.com/dchest/safefile"`

			`"github.com/jedisct1/dlog"`
			`"github.com/jedisct1/go-minisign"`
			`)`

			`type SourceFormat int`

			`const (`
			`SourceFormatV1 = iota`
			`)`

			`type Source struct {`
			`url string`
			`format SourceFormat`
			`in string`
			`}`

			`func fetchFromCache(cacheFile string) ([]byte, error) {`
			`dlog.Infof("Loading source information from cache file [%s]", cacheFile)`
			`return ioutil.ReadFile(cacheFile)`
			`}`

			`func fetchWithCache(url string, cacheFile string, refreshDelay time.Duration) (in string, cached bool, err error) {`
			`var bin []byte`
Make the distinction between a usable cache and a hot cache A hot cache is still fresh. A usable cache exists, and can act as a backup solution is we can't fetch a list from a remote server. 2018-01-18 22:23:40 +01:00			`cached, usableCache, hotCache := false, false, false`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`fi, err := os.Stat(cacheFile)`
			`if err == nil {`
Make the distinction between a usable cache and a hot cache A hot cache is still fresh. A usable cache exists, and can act as a backup solution is we can't fetch a list from a remote server. 2018-01-18 22:23:40 +01:00			`usableCache = true`
Use time.Since() 2018-01-14 23:53:17 +01:00			`elapsed := time.Since(fi.ModTime())`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`if elapsed < refreshDelay && elapsed >= 0 {`
Make the distinction between a usable cache and a hot cache A hot cache is still fresh. A usable cache exists, and can act as a backup solution is we can't fetch a list from a remote server. 2018-01-18 22:23:40 +01:00			`hotCache = true`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`}`
			`}`
Make the distinction between a usable cache and a hot cache A hot cache is still fresh. A usable cache exists, and can act as a backup solution is we can't fetch a list from a remote server. 2018-01-18 22:23:40 +01:00			`if hotCache {`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`bin, err = fetchFromCache(cacheFile)`
Fix source cache 2018-01-14 00:20:22 +01:00			`if err == nil {`
			`cached = true`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`}`
Fix source cache 2018-01-14 00:20:22 +01:00			`}`
			`if !cached {`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`var resp *http.Response`
			`dlog.Infof("Loading source information from URL [%s]", url)`
			`resp, err = http.Get(url)`
			`if err != nil {`
			`if usableCache {`
			`bin, err = fetchFromCache(cacheFile)`
			`}`
			`if err != nil {`
			`return`
			`}`
Fix source cache 2018-01-16 00:37:04 +01:00			`} else {`
			`bin, err = ioutil.ReadAll(resp.Body)`
			`resp.Body.Close()`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`if err != nil {`
Fix source cache 2018-01-16 00:37:04 +01:00			`if usableCache {`
			`bin, err = fetchFromCache(cacheFile)`
			`}`
			`if err != nil {`
			`return`
			`}`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`}`
			`}`
			`}`
			`in = string(bin)`
			`return`
			`}`

			`func AtomicFileWrite(file string, data []byte) error {`
			`return safefile.WriteFile(file, data, 0644)`
			`}`

			`func NewSource(url string, minisignKeyStr string, cacheFile string, formatStr string, refreshDelay time.Duration) (Source, error) {`
			`source := Source{url: url}`
			`if formatStr != "v1" {`
			`return source, fmt.Errorf("Unsupported source format: [%s]", formatStr)`
			`}`
			`source.format = SourceFormatV1`
			`minisignKey, err := minisign.NewPublicKey(minisignKeyStr)`
			`if err != nil {`
			`return source, err`
			`}`
			`in, cached, err := fetchWithCache(url, cacheFile, refreshDelay)`
			`if err != nil {`
			`return source, err`
			`}`
			`sigCacheFile := cacheFile + ".minisig"`
			`sigURL := url + ".minisig"`
			`sigStr, sigCached, err := fetchWithCache(sigURL, sigCacheFile, refreshDelay)`
			`if err != nil {`
			`return source, err`
			`}`
			`signature, err := minisign.DecodeSignature(sigStr)`
			`if err != nil {`
			`return source, err`
			`}`
			`res, err := minisignKey.Verify([]byte(in), signature)`
Make megacheck happier 2018-01-18 14:28:05 +01:00			`if err != nil \|\| !res {`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`return source, err`
			`}`
Make megacheck happier 2018-01-18 14:28:05 +01:00			`if !cached {`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`if err = AtomicFileWrite(cacheFile, []byte(in)); err != nil {`
			`return source, err`
			`}`
			`}`
Make megacheck happier 2018-01-18 14:28:05 +01:00			`if !sigCached {`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`if err = AtomicFileWrite(sigCacheFile, []byte(sigStr)); err != nil {`
			`return source, err`
			`}`
			`}`
			`dlog.Noticef("Source [%s] loaded", url)`
			`source.in = in`
			`return source, nil`
			`}`

			`func (source *Source) Parse() ([]RegisteredServer, error) {`
			`var registeredServers []RegisteredServer`

			`csvReader := csv.NewReader(strings.NewReader(source.in))`
			`records, err := csvReader.ReadAll()`
			`if err != nil {`
			`return registeredServers, nil`
			`}`
Implement blocking, fully compatible with rules from version 1 2018-01-17 02:40:47 +01:00			`for lineNo, record := range records {`
Skip empty lines in the CSV file 2018-01-13 23:53:33 +01:00			`if len(record) == 0 {`
			`continue`
			`}`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`if len(record) < 14 {`
Forwarding plugin 2018-01-17 09:44:03 +01:00			`return registeredServers, fmt.Errorf("Parse error at line %d", 1+lineNo)`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`}`
Implement blocking, fully compatible with rules from version 1 2018-01-17 02:40:47 +01:00			`if lineNo == 0 {`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`continue`
			`}`
			`name := record[0]`
			`serverAddrStr := record[10]`
			`providerName := record[11]`
			`serverPkStr := record[12]`
Add require_nolog and require_dnssec filters 2018-01-18 13:01:16 +01:00			`props := ServerInformalProperties(0)`
			`if strings.EqualFold(record[7], "yes") {`
			`props \|= ServerInformalPropertyDNSSEC`
			`}`
			`if strings.EqualFold(record[8], "yes") {`
			`props \|= ServerInformalPropertyNoLog`
			`}`
			`stamp, err := NewServerStampFromLegacy(serverAddrStr, serverPkStr, providerName, props)`
Preliminary support for remote sources 2018-01-13 23:52:44 +01:00			`if err != nil {`
			`return registeredServers, err`
			`}`
			`registeredServer := RegisteredServer{`
			`name: name, stamp: stamp,`
			`}`
			`registeredServers = append(registeredServers, registeredServer)`
			`}`
			`return registeredServers, nil`
			`}`