Acasă Explorează Ajutor
Autentificare
universai
/
masyunis
1
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Ramură: master
Ramuri Etichete
masyunis
/
lib
/
thoth
/
asnchecker.go

asnchecker.go 1.5 KB
Permalink Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. package thoth
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"errors"
    6. 

  6. 	"fmt"
    7. 

  7. 	"log/slog"
    8. 

  8. 	"net/http"
    9. 

  9. 	"strings"
    10. 

  10. 	"time"
    11. 

  11. 

  12. 	"github.com/TecharoHQ/anubis/internal"
    13. 

  13. 	"github.com/TecharoHQ/anubis/lib/policy/checker"
    14. 

  14. 	iptoasnv1 "github.com/TecharoHQ/thoth-proto/gen/techaro/thoth/iptoasn/v1"
    15. 

  15. )
    16. 

  16. 

  17. func (c *Client) ASNCheckerFor(asns []uint32) checker.Impl {
    18. 

  18. 	asnMap := map[uint32]struct{}{}
    19. 

  19. 	var sb strings.Builder
    20. 

  20. 	fmt.Fprintln(&sb, "ASNChecker")
    21. 

  21. 	for _, asn := range asns {
    22. 

  22. 		asnMap[asn] = struct{}{}
    23. 

  23. 		fmt.Fprintln(&sb, "AS", asn)
    24. 

  24. 	}
    25. 

  25. 

  26. 	return &ASNChecker{
    27. 

  27. 		iptoasn: c.IPToASN,
    28. 

  28. 		asns:    asnMap,
    29. 

  29. 		hash:    internal.FastHash(sb.String()),
    30. 

  30. 	}
    31. 

  31. }
    32. 

  32. 

  33. type ASNChecker struct {
    34. 

  34. 	iptoasn iptoasnv1.IpToASNServiceClient
    35. 

  35. 	asns    map[uint32]struct{}
    36. 

  36. 	hash    string
    37. 

  37. }
    38. 

  38. 

  39. func (asnc *ASNChecker) Check(r *http.Request) (bool, error) {
    40. 

  40. 	ctx, cancel := context.WithTimeout(r.Context(), 500*time.Millisecond)
    41. 

  41. 	defer cancel()
    42. 

  42. 

  43. 	ipInfo, err := asnc.iptoasn.Lookup(ctx, &iptoasnv1.LookupRequest{
    44. 

  44. 		IpAddress: r.Header.Get("X-Real-Ip"),
    45. 

  45. 	})
    46. 

  46. 	if err != nil {
    47. 

  47. 		switch {
    48. 

  48. 		case errors.Is(err, context.DeadlineExceeded):
    49. 

  49. 			slog.Debug("error contacting thoth", "err", err, "actionable", false)
    50. 

  50. 			return false, nil
    51. 

  51. 		default:
    52. 

  52. 			slog.Error("error contacting thoth, please contact support", "err", err, "actionable", true)
    53. 

  53. 			return false, nil
    54. 

  54. 		}
    55. 

  55. 	}
    56. 

  56. 

  57. 	// If IP is not publicly announced, return false
    58. 

  58. 	if !ipInfo.GetAnnounced() {
    59. 

  59. 		return false, nil
    60. 

  60. 	}
    61. 

  61. 

  62. 	_, ok := asnc.asns[uint32(ipInfo.GetAsNumber())]
    63. 

  63. 

  64. 	return ok, nil
    65. 

  65. }
    66. 

  66. 

  67. func (asnc *ASNChecker) Hash() string {
    68. 

  68. 	return asnc.hash
    69. 

  69. }
    70.