mirror of
https://github.com/TecharoHQ/anubis.git
synced 2026-04-11 02:58:49 +00:00
130 lines
2.6 KiB
Go
130 lines
2.6 KiB
Go
package entrypoint
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"log/slog"
|
|
"net"
|
|
"net/http"
|
|
"net/http/httputil"
|
|
"net/url"
|
|
"strings"
|
|
"sync"
|
|
|
|
"github.com/TecharoHQ/anubis/cmd/osiris/internal/config"
|
|
"github.com/lum8rjack/go-ja4h"
|
|
"github.com/prometheus/client_golang/prometheus"
|
|
"github.com/prometheus/client_golang/prometheus/promauto"
|
|
)
|
|
|
|
var (
|
|
ErrTargetInvalid = errors.New("[unexpected] target invalid")
|
|
ErrNoHandler = errors.New("[unexpected] no handler for domain")
|
|
|
|
requestsPerDomain = promauto.NewGaugeVec(prometheus.GaugeOpts{
|
|
Namespace: "techaro",
|
|
Subsystem: "osiris",
|
|
Name: "request_count",
|
|
}, []string{"domain"})
|
|
|
|
unresolvedRequests = promauto.NewGauge(prometheus.GaugeOpts{
|
|
Namespace: "techaro",
|
|
Subsystem: "osiris",
|
|
Name: "unresolved_requests",
|
|
})
|
|
)
|
|
|
|
type Router struct {
|
|
lock sync.RWMutex
|
|
routes map[string]http.Handler
|
|
}
|
|
|
|
func (rtr *Router) setConfig(c config.Toplevel) error {
|
|
var errs []error
|
|
newMap := map[string]http.Handler{}
|
|
|
|
for _, d := range c.Domains {
|
|
var domainErrs []error
|
|
|
|
u, err := url.Parse(d.Target)
|
|
if err != nil {
|
|
domainErrs = append(domainErrs, fmt.Errorf("%w %q: %v", ErrTargetInvalid, d.Target, err))
|
|
}
|
|
|
|
var h http.Handler
|
|
|
|
switch u.Scheme {
|
|
case "http", "https":
|
|
h = httputil.NewSingleHostReverseProxy(u)
|
|
case "h2c":
|
|
h = newH2CReverseProxy(u)
|
|
case "unix":
|
|
h = &httputil.ReverseProxy{
|
|
Transport: &http.Transport{
|
|
DialContext: func(_ context.Context, _, _ string) (net.Conn, error) {
|
|
return net.Dial("unix", strings.TrimPrefix(d.Target, "unix://"))
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
if h == nil {
|
|
domainErrs = append(domainErrs, ErrNoHandler)
|
|
}
|
|
|
|
newMap[d.Name] = h
|
|
|
|
if len(domainErrs) != 0 {
|
|
errs = append(errs, fmt.Errorf("invalid domain %s: %w", d.Name, errors.Join(domainErrs...)))
|
|
}
|
|
}
|
|
|
|
if len(errs) != 0 {
|
|
return fmt.Errorf("can't compile config to routing map: %w", errors.Join(errs...))
|
|
}
|
|
|
|
rtr.lock.Lock()
|
|
rtr.routes = newMap
|
|
rtr.lock.Unlock()
|
|
|
|
return nil
|
|
}
|
|
|
|
func NewRouter(c config.Toplevel) (*Router, error) {
|
|
result := &Router{
|
|
routes: map[string]http.Handler{},
|
|
}
|
|
|
|
if err := result.setConfig(c); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return result, nil
|
|
}
|
|
|
|
func (rtr *Router) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
requestsPerDomain.WithLabelValues(r.Host).Inc()
|
|
|
|
var h http.Handler
|
|
var ok bool
|
|
|
|
ja4hFP := ja4h.JA4H(r)
|
|
|
|
slog.Info("got request", "method", r.Method, "host", r.Host, "path", r.URL.Path)
|
|
|
|
rtr.lock.RLock()
|
|
h, ok = rtr.routes[r.Host]
|
|
rtr.lock.RUnlock()
|
|
|
|
if !ok {
|
|
unresolvedRequests.Inc()
|
|
http.NotFound(w, r) // TODO(Xe): brand this
|
|
return
|
|
}
|
|
|
|
r.Header.Set("X-Http-Ja4h-Fingerprint", ja4hFP)
|
|
|
|
h.ServeHTTP(w, r)
|
|
}
|