Accueil Explorer Aide
S'inscrire Connexion
Apq
/
sing-box
miroir de https://github.com/SagerNet/sing-box.git
1
0
Fork 0
Fichiers Tickets 0 Wiki
Aborescence: ab4ea6ed68
Branches Tags
sing-box
/
dns
/
transport
/
quic
/
quic.go

quic.go 4.3 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174 
  1. package quic
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"errors"
    6. 

  6. 	"sync"
    7. 

  7. 

  8. 	"github.com/sagernet/quic-go"
    9. 

  9. 	"github.com/sagernet/sing-box/adapter"
    10. 

  10. 	"github.com/sagernet/sing-box/common/tls"
    11. 

  11. 	C "github.com/sagernet/sing-box/constant"
    12. 

  12. 	"github.com/sagernet/sing-box/dns"
    13. 

  13. 	"github.com/sagernet/sing-box/dns/transport"
    14. 

  14. 	"github.com/sagernet/sing-box/log"
    15. 

  15. 	"github.com/sagernet/sing-box/option"
    16. 

  16. 	sQUIC "github.com/sagernet/sing-quic"
    17. 

  17. 	"github.com/sagernet/sing/common"
    18. 

  18. 	"github.com/sagernet/sing/common/bufio"
    19. 

  19. 	"github.com/sagernet/sing/common/logger"
    20. 

  20. 	M "github.com/sagernet/sing/common/metadata"
    21. 

  21. 	N "github.com/sagernet/sing/common/network"
    22. 

  22. 

  23. 	mDNS "github.com/miekg/dns"
    24. 

  24. )
    25. 

  25. 

  26. var _ adapter.DNSTransport = (*Transport)(nil)
    27. 

  27. 

  28. func RegisterTransport(registry *dns.TransportRegistry) {
    29. 

  29. 	dns.RegisterTransport[option.RemoteTLSDNSServerOptions](registry, C.DNSTypeQUIC, NewQUIC)
    30. 

  30. }
    31. 

  31. 

  32. type Transport struct {
    33. 

  33. 	dns.TransportAdapter
    34. 

  34. 	ctx        context.Context
    35. 

  35. 	logger     logger.ContextLogger
    36. 

  36. 	dialer     N.Dialer
    37. 

  37. 	serverAddr M.Socksaddr
    38. 

  38. 	tlsConfig  tls.Config
    39. 

  39. 	access     sync.Mutex
    40. 

  40. 	connection quic.EarlyConnection
    41. 

  41. }
    42. 

  42. 

  43. func NewQUIC(ctx context.Context, logger log.ContextLogger, tag string, options option.RemoteTLSDNSServerOptions) (adapter.DNSTransport, error) {
    44. 

  44. 	transportDialer, err := dns.NewRemoteDialer(ctx, options.RemoteDNSServerOptions)
    45. 

  45. 	if err != nil {
    46. 

  46. 		return nil, err
    47. 

  47. 	}
    48. 

  48. 	tlsOptions := common.PtrValueOrDefault(options.TLS)
    49. 

  49. 	tlsOptions.Enabled = true
    50. 

  50. 	tlsConfig, err := tls.NewClient(ctx, options.Server, tlsOptions)
    51. 

  51. 	if err != nil {
    52. 

  52. 		return nil, err
    53. 

  53. 	}
    54. 

  54. 	if len(tlsConfig.NextProtos()) == 0 {
    55. 

  55. 		tlsConfig.SetNextProtos([]string{"doq"})
    56. 

  56. 	}
    57. 

  57. 	serverAddr := options.ServerOptions.Build()
    58. 

  58. 	if serverAddr.Port == 0 {
    59. 

  59. 		serverAddr.Port = 853
    60. 

  60. 	}
    61. 

  61. 	return &Transport{
    62. 

  62. 		TransportAdapter: dns.NewTransportAdapterWithRemoteOptions(C.DNSTypeQUIC, tag, options.RemoteDNSServerOptions),
    63. 

  63. 		ctx:              ctx,
    64. 

  64. 		logger:           logger,
    65. 

  65. 		dialer:           transportDialer,
    66. 

  66. 		serverAddr:       serverAddr,
    67. 

  67. 		tlsConfig:        tlsConfig,
    68. 

  68. 	}, nil
    69. 

  69. }
    70. 

  70. 

  71. func (t *Transport) Reset() {
    72. 

  72. 	t.access.Lock()
    73. 

  73. 	defer t.access.Unlock()
    74. 

  74. 	connection := t.connection
    75. 

  75. 	if connection != nil {
    76. 

  76. 		connection.CloseWithError(0, "")
    77. 

  77. 	}
    78. 

  78. }
    79. 

  79. 

  80. func (t *Transport) Exchange(ctx context.Context, message *mDNS.Msg) (*mDNS.Msg, error) {
    81. 

  81. 	var (
    82. 

  82. 		conn     quic.Connection
    83. 

  83. 		err      error
    84. 

  84. 		response *mDNS.Msg
    85. 

  85. 	)
    86. 

  86. 	for i := 0; i < 2; i++ {
    87. 

  87. 		conn, err = t.openConnection()
    88. 

  88. 		if err != nil {
    89. 

  89. 			return nil, err
    90. 

  90. 		}
    91. 

  91. 		response, err = t.exchange(ctx, message, conn)
    92. 

  92. 		if err == nil {
    93. 

  93. 			return response, nil
    94. 

  94. 		} else if !isQUICRetryError(err) {
    95. 

  95. 			return nil, err
    96. 

  96. 		} else {
    97. 

  97. 			conn.CloseWithError(quic.ApplicationErrorCode(0), "")
    98. 

  98. 			continue
    99. 

  99. 		}
    100. 

  100. 	}
    101. 

  101. 	return nil, err
    102. 

  102. }
    103. 

  103. 

  104. func (t *Transport) openConnection() (quic.EarlyConnection, error) {
    105. 

  105. 	connection := t.connection
    106. 

  106. 	if connection != nil && !common.Done(connection.Context()) {
    107. 

  107. 		return connection, nil
    108. 

  108. 	}
    109. 

  109. 	t.access.Lock()
    110. 

  110. 	defer t.access.Unlock()
    111. 

  111. 	connection = t.connection
    112. 

  112. 	if connection != nil && !common.Done(connection.Context()) {
    113. 

  113. 		return connection, nil
    114. 

  114. 	}
    115. 

  115. 	conn, err := t.dialer.DialContext(t.ctx, N.NetworkUDP, t.serverAddr)
    116. 

  116. 	if err != nil {
    117. 

  117. 		return nil, err
    118. 

  118. 	}
    119. 

  119. 	earlyConnection, err := sQUIC.DialEarly(
    120. 

  120. 		t.ctx,
    121. 

  121. 		bufio.NewUnbindPacketConn(conn),
    122. 

  122. 		t.serverAddr.UDPAddr(),
    123. 

  123. 		t.tlsConfig,
    124. 

  124. 		nil,
    125. 

  125. 	)
    126. 

  126. 	if err != nil {
    127. 

  127. 		return nil, err
    128. 

  128. 	}
    129. 

  129. 	t.connection = earlyConnection
    130. 

  130. 	return earlyConnection, nil
    131. 

  131. }
    132. 

  132. 

  133. func (t *Transport) exchange(ctx context.Context, message *mDNS.Msg, conn quic.Connection) (*mDNS.Msg, error) {
    134. 

  134. 	stream, err := conn.OpenStreamSync(ctx)
    135. 

  135. 	if err != nil {
    136. 

  136. 		return nil, err
    137. 

  137. 	}
    138. 

  138. 	defer stream.Close()
    139. 

  139. 	defer stream.CancelRead(0)
    140. 

  140. 	err = transport.WriteMessage(stream, 0, message)
    141. 

  141. 	if err != nil {
    142. 

  142. 		return nil, err
    143. 

  143. 	}
    144. 

  144. 	return transport.ReadMessage(stream)
    145. 

  145. }
    146. 

  146. 

  147. // https://github.com/AdguardTeam/dnsproxy/blob/fd1868577652c639cce3da00e12ca548f421baf1/upstream/upstream_quic.go#L394
    148. 

  148. func isQUICRetryError(err error) (ok bool) {
    149. 

  149. 	var qAppErr *quic.ApplicationError
    150. 

  150. 	if errors.As(err, &qAppErr) && qAppErr.ErrorCode == 0 {
    151. 

  151. 		return true
    152. 

  152. 	}
    153. 

  153. 

  154. 	var qIdleErr *quic.IdleTimeoutError
    155. 

  155. 	if errors.As(err, &qIdleErr) {
    156. 

  156. 		return true
    157. 

  157. 	}
    158. 

  158. 

  159. 	var resetErr *quic.StatelessResetError
    160. 

  160. 	if errors.As(err, &resetErr) {
    161. 

  161. 		return true
    162. 

  162. 	}
    163. 

  163. 

  164. 	var qTransportError *quic.TransportError
    165. 

  165. 	if errors.As(err, &qTransportError) && qTransportError.ErrorCode == quic.NoError {
    166. 

  166. 		return true
    167. 

  167. 	}
    168. 

  168. 

  169. 	if errors.Is(err, quic.Err0RTTRejected) {
    170. 

  170. 		return true
    171. 

  171. 	}
    172. 

  172. 

  173. 	return false
    174. 

  174. }
    175.