mirror
/
vk-turn-proxy
mirror of https://github.com/cacggghp/vk-turn-proxy
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
26 Commits
2 Branches
16 Tags
2.6 MiB
 
 
 
 
Tree: b01249e8be
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b01249e8be'
${ noResults }
vk-turn-proxy/server/main.go

271 lines
5.7 KiB
Raw Blame History

package main
import (
"context"
"crypto/tls"
"flag"
"fmt"
"io"
"log"
"net"
"os"
"os/signal"
"sync"
"syscall"
"time"
"github.com/pion/dtls/v3"
"github.com/pion/dtls/v3/pkg/crypto/selfsign"
)
type streamEntry struct {
id byte
conn net.Conn
}
type UserSession struct {
ID string
Conns []streamEntry
BackendConn net.Conn
Lock sync.RWMutex
Ctx context.Context
Cancel context.CancelFunc
Manager *SessionManager
}
type SessionManager struct {
Sessions map[string]*UserSession
Lock sync.RWMutex
}
func (s *SessionManager) GetOrCreate(ctx context.Context, id string, connectAddr string) (*UserSession, error) {
s.Lock.Lock()
defer s.Lock.Unlock()
if session, ok := s.Sessions[id]; ok {
return session, nil
}
backendConn, err := net.Dial("udp", connectAddr)
if err != nil {
return nil, err
}
sessionCtx, cancel := context.WithCancel(ctx)
session := &UserSession{
ID: id,
Conns: make([]streamEntry, 0),
BackendConn: backendConn,
Manager: s,
Ctx: sessionCtx,
Cancel: cancel,
}
s.Sessions[id] = session
go session.backendReaderLoop()
return session, nil
}
func (s *UserSession) backendReaderLoop() {
defer s.Cleanup()
buf := make([]byte, 1600)
var lastUsed uint32 = 0
for {
select {
case <-s.Ctx.Done():
return
default:
}
s.BackendConn.SetReadDeadline(time.Now().Add(time.Minute * 5))
n, err := s.BackendConn.Read(buf)
if err != nil {
log.Printf("Session %s backend read error: %v", s.ID, err)
return
}
s.Lock.RLock()
nConns := uint32(len(s.Conns))
if nConns == 0 {
s.Lock.RUnlock()
continue
}
// Fast Round-robin selection using local variable
lastUsed = (lastUsed + 1) % nConns
conn := s.Conns[lastUsed].conn
s.Lock.RUnlock()
conn.SetWriteDeadline(time.Now().Add(time.Second * 10))
_, err = conn.Write(buf[:n])
if err != nil {
log.Printf("Session %s DTLS write error: %v", s.ID, err)
conn.Close()
}
}
}
func (s *UserSession) AddConn(id byte, conn net.Conn) {
s.Lock.Lock()
defer s.Lock.Unlock()
// Evict existing connection with same ID
for i, entry := range s.Conns {
if entry.id == id {
//log.Printf("Session %s: Evicting old stream %d", s.ID, id)
entry.conn.Close()
s.Conns[i].conn = conn
return
}
}
s.Conns = append(s.Conns, streamEntry{id: id, conn: conn})
}
func (s *UserSession) RemoveConn(id byte, conn net.Conn) {
s.Lock.Lock()
defer s.Lock.Unlock()
for i, entry := range s.Conns {
if entry.id == id && entry.conn == conn {
s.Conns = append(s.Conns[:i], s.Conns[i+1:]...)
break
}
}
}
func (s *UserSession) Cleanup() {
s.Cancel()
s.BackendConn.Close()
s.Manager.Lock.Lock()
delete(s.Manager.Sessions, s.ID)
s.Manager.Lock.Unlock()
s.Lock.Lock()
for _, entry := range s.Conns {
entry.conn.Close()
}
s.Conns = nil
s.Lock.Unlock()
}
func main() {
listen := flag.String("listen", "0.0.0.0:56000", "listen on ip:port")
connect := flag.String("connect", "", "connect to ip:port")
flag.Parse()
ctx, cancel := context.WithCancel(context.Background())
defer cancel()
signalChan := make(chan os.Signal, 1)
signal.Notify(signalChan, syscall.SIGTERM, syscall.SIGINT)
go func() {
<-signalChan
log.Printf("Terminating...\n")
cancel()
<-signalChan
log.Fatalf("Exit...\n")
}()
addr, err := net.ResolveUDPAddr("udp", *listen)
if err != nil {
panic(err)
}
if len(*connect) == 0 {
log.Panicf("server address is required")
}
certificate, genErr := selfsign.GenerateSelfSigned()
if genErr != nil {
panic(genErr)
}
config := &dtls.Config{
Certificates: []tls.Certificate{certificate},
ExtendedMasterSecret: dtls.RequireExtendedMasterSecret,
CipherSuites: []dtls.CipherSuiteID{dtls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256},
ConnectionIDGenerator: dtls.RandomCIDGenerator(8),
}
listener, err := dtls.Listen("udp", addr, config)
if err != nil {
panic(err)
}
context.AfterFunc(ctx, func() {
listener.Close()
})
manager := &SessionManager{
Sessions: make(map[string]*UserSession),
}
log.Printf("Listening on %s, forwarding to %s", *listen, *connect)
for {
conn, err := listener.Accept()
if err != nil {
select {
case <-ctx.Done():
return
default:
log.Println("Accept error:", err)
continue
}
}
go func(conn net.Conn) {
defer conn.Close()
dtlsConn, ok := conn.(*dtls.Conn)
if !ok {
return
}
handshakeCtx, hCancel := context.WithTimeout(ctx, 30*time.Second)
defer hCancel()
if err := dtlsConn.HandshakeContext(handshakeCtx); err != nil {
log.Println("Handshake failed:", err)
return
}
// Phase 1: Read Session ID + Stream ID (17 bytes)
idBuf := make([]byte, 17)
conn.SetReadDeadline(time.Now().Add(time.Second * 5))
_, err := io.ReadFull(conn, idBuf)
if err != nil {
log.Println("Failed to read session ID:", err)
return
}
sessionID := fmt.Sprintf("%x", idBuf[:16])
streamID := idBuf[16]
session, err := manager.GetOrCreate(ctx, sessionID, *connect)
if err != nil {
log.Println("Failed to get/create session:", err)
return
}
session.AddConn(streamID, conn)
defer session.RemoveConn(streamID, conn)
log.Printf("New stream %d for session %s from %s", streamID, sessionID, conn.RemoteAddr())
// Upstream Loop: DTLS -> Backend
buf := make([]byte, 1600)
for {
conn.SetReadDeadline(time.Now().Add(time.Minute * 5))
n, err := conn.Read(buf)
if err != nil {
log.Printf("Stream %s closed: %v", sessionID, err)
return
}
session.BackendConn.SetWriteDeadline(time.Now().Add(time.Second * 5))
_, err = session.BackendConn.Write(buf[:n])
if err != nil {
log.Printf("Session %s backend write error: %v", sessionID, err)
return
}
}
}(conn)
}
}