http3-ytproxy/main.go

546 lines
15 KiB
Go
Raw Normal View History

2020-10-24 15:47:41 +00:00
package main
import (
2024-11-04 10:48:00 -03:00
"crypto/tls"
2024-10-29 01:29:55 -03:00
"encoding/json"
2024-12-13 17:24:52 -03:00
"errors"
2024-09-17 03:23:49 -03:00
"flag"
2020-10-25 18:11:17 +05:30
"io"
2020-10-24 15:47:41 +00:00
"log"
2020-10-25 18:11:17 +05:30
"net"
2020-10-24 15:47:41 +00:00
"net/http"
2020-10-25 14:01:23 +00:00
"os"
2021-11-07 18:23:39 +00:00
"regexp"
"runtime"
2024-11-06 15:54:40 -03:00
"strings"
2024-10-29 15:01:35 -03:00
"sync/atomic"
"syscall"
2021-03-12 12:29:53 +05:30
"time"
2020-10-24 15:47:41 +00:00
2024-10-29 21:27:09 -03:00
"github.com/conduitio/bwlimit"
"github.com/prometheus/client_golang/prometheus"
"github.com/prometheus/client_golang/prometheus/promhttp"
2024-11-04 10:48:00 -03:00
"github.com/quic-go/quic-go"
2023-11-07 11:05:53 -03:00
"github.com/quic-go/quic-go/http3"
2020-10-24 15:47:41 +00:00
)
2024-10-29 21:27:09 -03:00
var (
wl = flag.Int("w", 8000, "Write limit in Kbps")
rl = flag.Int("r", 8000, "Read limit in Kbps")
)
2020-10-25 18:11:17 +05:30
var h3client = &http.Client{
2024-10-29 15:01:35 -03:00
Transport: &http3.Transport{},
2024-09-17 03:23:49 -03:00
Timeout: 10 * time.Second,
2020-10-24 15:47:41 +00:00
}
2022-06-27 13:25:31 +01:00
var dialer = &net.Dialer{
Timeout: 30 * time.Second,
KeepAlive: 30 * time.Second,
}
2020-10-25 18:11:17 +05:30
// http/2 client
2021-03-12 12:29:53 +05:30
var h2client = &http.Client{
Transport: &http.Transport{
2022-06-27 13:25:31 +01:00
Dial: func(network, addr string) (net.Conn, error) {
2024-10-28 01:58:29 -03:00
var net string
if ipv6_only {
net = "tcp6"
} else {
net = "tcp4"
2022-06-27 13:25:31 +01:00
}
2024-10-28 01:58:29 -03:00
return dialer.Dial(net, addr)
2022-06-27 13:25:31 +01:00
},
2021-03-12 12:29:53 +05:30
TLSHandshakeTimeout: 10 * time.Second,
2021-06-20 16:07:39 +05:30
ResponseHeaderTimeout: 20 * time.Second,
2021-03-12 12:29:53 +05:30
ExpectContinueTimeout: 1 * time.Second,
2021-04-09 14:20:14 +05:30
IdleConnTimeout: 30 * time.Second,
ReadBufferSize: 16 * 1024,
ForceAttemptHTTP2: true,
MaxConnsPerHost: 0,
MaxIdleConnsPerHost: 10,
MaxIdleConns: 0,
2021-03-12 12:29:53 +05:30
},
}
2020-10-25 18:11:17 +05:30
var client *http.Client
2024-10-29 01:29:55 -03:00
2024-12-20 17:12:59 -03:00
var default_ua = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36"
2020-10-25 18:11:17 +05:30
2021-07-21 23:53:27 +05:30
var allowed_hosts = []string{
"youtube.com",
"googlevideo.com",
"ytimg.com",
"ggpht.com",
"googleusercontent.com",
2021-07-21 23:53:27 +05:30
}
2022-05-17 11:19:43 +01:00
var strip_headers = []string{
"Accept-Encoding",
"Authorization",
"Origin",
2022-05-18 13:50:31 +01:00
"Referer",
2022-05-17 11:19:43 +01:00
"Cookie",
"Set-Cookie",
"Etag",
2024-10-04 21:14:01 -03:00
"Alt-Svc",
"Server",
"Cache-Control",
2022-05-17 11:19:43 +01:00
}
var path_prefix = ""
2021-11-07 18:23:39 +00:00
var manifest_re = regexp.MustCompile(`(?m)URI="([^"]+)"`)
2024-10-28 01:58:29 -03:00
var ipv6_only = false
2020-10-24 15:47:41 +00:00
var version string
2024-11-04 10:48:00 -03:00
var h3s bool
2024-11-04 12:05:59 -03:00
var programInit = time.Now()
type ConnectionWatcher struct {
totalEstablished int64
established int64
active int64
idle int64
}
// https://stackoverflow.com/questions/51317122/how-to-get-number-of-idle-and-active-connections-in-go
// OnStateChange records open connections in response to connection
// state changes. Set net/http Server.ConnState to this method
// as value.
func (cw *ConnectionWatcher) OnStateChange(conn net.Conn, state http.ConnState) {
switch state {
case http.StateNew:
atomic.AddInt64(&stats_.EstablishedConnections, 1)
metrics.EstablishedConnections.Inc()
atomic.AddInt64(&stats_.TotalConnEstablished, 1)
metrics.TotalConnEstablished.Inc()
// case http.StateActive:
// atomic.AddInt64(&cw.active, 1)
case http.StateClosed, http.StateHijacked:
atomic.AddInt64(&stats_.EstablishedConnections, -1)
metrics.EstablishedConnections.Dec()
}
}
// // Count returns the number of connections at the time
// // the call.
// func (cw *ConnectionWatcher) Count() int {
// return int(atomic.LoadInt64(&cw.n))
// }
// // Add adds c to the number of active connections.
// func (cw *ConnectionWatcher) Add(c int64) {
// atomic.AddInt64(&cw.n, c)
// }
var cw ConnectionWatcher
2024-10-29 01:29:55 -03:00
type statusJson struct {
2024-11-04 12:05:59 -03:00
Version string `json:"version"`
Uptime time.Duration `json:"uptime"`
RequestCount int64 `json:"requestCount"`
RequestPerSecond int64 `json:"requestPerSecond"`
RequestPerMinute int64 `json:"requestPerMinute"`
TotalConnEstablished int64 `json:"totalEstablished"`
2024-11-04 12:05:59 -03:00
EstablishedConnections int64 `json:"establishedConnections"`
ActiveConnections int64 `json:"activeConnections"`
IdleConnections int64 `json:"idleConnections"`
RequestsForbidden struct {
2024-10-29 15:01:35 -03:00
Videoplayback int64 `json:"videoplayback"`
Vi int64 `json:"vi"`
Ggpht int64 `json:"ggpht"`
} `json:"requestsForbidden"`
2020-10-25 18:11:17 +05:30
}
2024-10-29 15:01:35 -03:00
var stats_ = statusJson{
Version: version + "-" + runtime.GOARCH,
2024-11-04 12:05:59 -03:00
Uptime: 0,
RequestCount: 0,
RequestPerSecond: 0,
RequestPerMinute: 0,
TotalConnEstablished: 0,
EstablishedConnections: 0,
ActiveConnections: 0,
IdleConnections: 0,
2024-10-29 15:01:35 -03:00
RequestsForbidden: struct {
Videoplayback int64 `json:"videoplayback"`
Vi int64 `json:"vi"`
Ggpht int64 `json:"ggpht"`
}{
Videoplayback: 0,
Vi: 0,
Ggpht: 0,
},
2020-10-25 18:11:17 +05:30
}
type Metrics struct {
Uptime prometheus.Gauge
RequestCount prometheus.Counter
RequestPerSecond prometheus.Gauge
RequestPerMinute prometheus.Gauge
TotalConnEstablished prometheus.Counter
EstablishedConnections prometheus.Gauge
ActiveConnections prometheus.Gauge
IdleConnections prometheus.Gauge
RequestForbidden struct {
Videoplayback prometheus.Counter
Vi prometheus.Counter
Ggpht prometheus.Counter
}
}
var metrics = Metrics{
Uptime: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_uptime",
}),
RequestCount: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_request_count",
}),
RequestPerSecond: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_request_per_second",
}),
RequestPerMinute: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_request_per_minute",
}),
TotalConnEstablished: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_total_conn_established",
}),
EstablishedConnections: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_established_conns",
}),
ActiveConnections: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_active_conns",
}),
IdleConnections: prometheus.NewGauge(prometheus.GaugeOpts{
Name: "http3_ytproxy_idle_conns",
}),
RequestForbidden: struct {
Videoplayback prometheus.Counter
Vi prometheus.Counter
Ggpht prometheus.Counter
}{
Videoplayback: prometheus.NewCounter(prometheus.CounterOpts{
Name: "http3_ytproxy_request_forbidden_videoplayback",
}),
Vi: prometheus.NewCounter(prometheus.CounterOpts{
Name: "http3_ytproxy_request_forbidden_vi",
}),
Ggpht: prometheus.NewCounter(prometheus.CounterOpts{
Name: "http3_ytproxy_request_forbidden_ggpht",
}),
},
}
2024-10-29 15:01:35 -03:00
func root(w http.ResponseWriter, req *http.Request) {
const msg = `
HTTP youtube proxy for https://inv.nadeko.net
https://git.nadeko.net/Fijxu/http3-ytproxy
2024-12-11 13:53:06 -03:00
Routes:
2024-10-29 15:01:35 -03:00
/stats
/health`
io.WriteString(w, msg)
}
2020-10-25 18:11:17 +05:30
// CustomHandler wraps the default promhttp.Handler with custom logic
func metricsHandler() http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
2024-11-06 15:54:40 -03:00
// To prevent accessing from the bare IP address
if req.Host == "" || net.ParseIP(strings.Split(req.Host, ":")[0]) != nil {
w.WriteHeader(444)
return
}
metrics.Uptime.Set(float64(time.Duration(time.Since(programInit).Seconds())))
promhttp.Handler().ServeHTTP(w, req)
})
}
2024-10-29 15:01:35 -03:00
func stats(w http.ResponseWriter, req *http.Request) {
2024-10-29 01:29:55 -03:00
w.Header().Set("Content-Type", "application/json")
2024-11-04 12:05:59 -03:00
stats_.Uptime = time.Duration(time.Since(programInit).Seconds())
// stats_.TotalEstablished = int64(cw.totalEstablished)
// stats_.EstablishedConnections = int64(cw.established)
// stats_.ActiveConnections = int64(cw.active)
// stats_.IdleConnections = int64(cw.idle)
2020-10-25 18:11:17 +05:30
2024-10-29 15:01:35 -03:00
if err := json.NewEncoder(w).Encode(stats_); err != nil {
2024-10-29 01:29:55 -03:00
http.Error(w, err.Error(), http.StatusInternalServerError)
2021-06-20 12:49:07 +05:30
}
2021-11-07 18:23:39 +00:00
}
2024-10-29 15:01:35 -03:00
func health(w http.ResponseWriter, req *http.Request) {
w.WriteHeader(200)
io.WriteString(w, "OK")
}
func requestPerSecond() {
var last int64
for {
time.Sleep(1 * time.Second)
current := stats_.RequestCount
stats_.RequestPerSecond = current - last
metrics.RequestPerSecond.Set(float64(stats_.RequestPerSecond))
2024-10-29 15:01:35 -03:00
last = current
}
}
func requestPerMinute() {
var last int64
for {
time.Sleep(60 * time.Second)
current := stats_.RequestCount
2024-10-29 19:38:10 -03:00
stats_.RequestPerMinute = current - last
metrics.RequestPerMinute.Set(float64(stats_.RequestPerMinute))
2024-10-29 15:01:35 -03:00
last = current
}
}
2024-11-06 15:54:40 -03:00
func beforeMisc(next http.HandlerFunc) http.HandlerFunc {
return func(w http.ResponseWriter, req *http.Request) {
defer panicHandler(w)
// To prevent accessing from the bare IP address
if req.Host == "" || net.ParseIP(strings.Split(req.Host, ":")[0]) != nil {
w.WriteHeader(444)
return
}
next(w, req)
}
}
func beforeProxy(next http.HandlerFunc) http.HandlerFunc {
2024-10-29 15:01:35 -03:00
return func(w http.ResponseWriter, req *http.Request) {
2024-10-31 16:29:30 -03:00
defer panicHandler(w)
2024-11-06 15:54:40 -03:00
// To prevent accessing from the bare IP address
if req.Host == "" || net.ParseIP(strings.Split(req.Host, ":")[0]) != nil {
w.WriteHeader(444)
return
}
// Only allow requests from origin inv.nadeko.net
// Why? Because I don't want anyone to use this proxy for their own purposes.
// Hardcoded because I'm lazy lol!
// origin := req.Header.Get("Origin")
// if origin == "https://inv.nadeko.net" || origin == "https://materialious.nadeko.net" {
w.Header().Set("Access-Control-Allow-Origin", "*")
w.Header().Set("Access-Control-Allow-Headers", "*")
w.Header().Set("Access-Control-Allow-Methods", "GET, HEAD, OPTIONS")
w.Header().Set("Access-Control-Max-Age", "1728000")
2024-12-11 13:53:06 -03:00
w.Header().Set("Strict-Transport-Security", "max-age=86400")
// } else {
// w.WriteHeader(401)
// io.WriteString(w, "Only requests coming from inv.nadeko.net are allowed.")
// return
// }
2024-11-04 10:48:00 -03:00
if h3s {
w.Header().Set("Alt-Svc", "h3=\":8443\"; ma=86400")
}
if req.Method == "OPTIONS" {
w.WriteHeader(http.StatusOK)
return
}
2024-10-29 15:01:35 -03:00
if req.Method != "GET" && req.Method != "HEAD" {
w.WriteHeader(405)
2024-10-29 15:01:35 -03:00
io.WriteString(w, "Only GET and HEAD requests are allowed.")
return
}
2024-11-04 10:48:00 -03:00
atomic.AddInt64(&stats_.RequestCount, 1)
metrics.RequestCount.Inc()
2024-10-29 15:01:35 -03:00
next(w, req)
}
}
2020-10-25 18:11:17 +05:30
func main() {
2024-12-20 17:12:59 -03:00
defaultHost := "0.0.0.0"
defaultPort := "8080"
defaultSock := "/tmp/http-ytproxy.sock"
defaultTLSCert := "/data/cert.pem"
defaultTLSKey := "/data/key.key"
https := os.Getenv("HTTPS") == "1"
h3c := os.Getenv("H3C") == "1"
h3s := os.Getenv("H3S") == "1"
ipv6 := os.Getenv("IPV6_ONLY") == "1"
tls_cert := os.Getenv("TLS_CERT")
if tls_cert == "" {
tls_cert = defaultTLSCert
}
tls_key := os.Getenv("TLS_KEY")
if tls_key == "" {
tls_key = defaultTLSKey
}
sock := os.Getenv("SOCK_PATH")
if sock == "" {
sock = defaultSock
}
port := os.Getenv("PORT")
if port == "" {
port = defaultPort
}
host := os.Getenv("HOST")
if host == "" {
host = defaultHost
}
flag.BoolVar(&https, "https", https, "Use built-in https server (recommended)")
flag.BoolVar(&h3c, "h3c", h3c, "Use HTTP/3 for client requests (high CPU usage)")
flag.BoolVar(&h3s, "h3s", h3s, "Use HTTP/3 for server requests, (requires HTTPS)")
flag.BoolVar(&ipv6_only, "ipv6_only", ipv6_only, "Only use ipv6 for requests")
flag.StringVar(&tls_cert, "tls-cert", tls_cert, "TLS Certificate path")
flag.StringVar(&tls_key, "tls-key", tls_key, "TLS Certificate Key path")
flag.StringVar(&sock, "s", sock, "Specify a socket name")
flag.StringVar(&port, "p", port, "Specify a port number")
flag.StringVar(&host, "l", host, "Specify a listen address")
2024-09-17 03:23:49 -03:00
flag.Parse()
2024-11-04 10:48:00 -03:00
if h3c {
client = h3client
} else {
client = h2client
}
2024-11-04 10:48:00 -03:00
if https {
2024-10-29 15:01:35 -03:00
if len(tls_cert) <= 0 {
2024-12-13 17:24:52 -03:00
log.Fatal("tls-cert argument is missing, you need a TLS certificate for HTTPS")
2024-10-29 15:01:35 -03:00
}
if len(tls_key) <= 0 {
2024-12-13 17:24:52 -03:00
log.Fatal("tls-key argument is missing, you need a TLS key for HTTPS")
2024-10-29 15:01:35 -03:00
}
}
2024-11-04 10:48:00 -03:00
ipv6_only = ipv6
2024-10-28 01:58:29 -03:00
2024-10-29 01:29:55 -03:00
mux := http.NewServeMux()
2024-11-06 15:54:40 -03:00
// MISC ROUTES
mux.HandleFunc("/", beforeMisc(root))
mux.HandleFunc("/health", beforeMisc(health))
mux.HandleFunc("/stats", beforeMisc(stats))
2024-10-29 15:01:35 -03:00
prometheus.MustRegister(metrics.Uptime)
prometheus.MustRegister(metrics.ActiveConnections)
prometheus.MustRegister(metrics.IdleConnections)
prometheus.MustRegister(metrics.EstablishedConnections)
prometheus.MustRegister(metrics.TotalConnEstablished)
prometheus.MustRegister(metrics.RequestCount)
prometheus.MustRegister(metrics.RequestPerSecond)
prometheus.MustRegister(metrics.RequestPerMinute)
prometheus.MustRegister(metrics.RequestForbidden.Videoplayback)
prometheus.MustRegister(metrics.RequestForbidden.Vi)
prometheus.MustRegister(metrics.RequestForbidden.Ggpht)
mux.Handle("/metrics", metricsHandler())
2024-11-06 15:54:40 -03:00
// PROXY ROUTES
mux.HandleFunc("/videoplayback", beforeProxy(videoplayback))
mux.HandleFunc("/vi/", beforeProxy(vi))
mux.HandleFunc("/vi_webp/", beforeProxy(vi))
mux.HandleFunc("/sb/", beforeProxy(vi))
mux.HandleFunc("/ggpht/", beforeProxy(ggpht))
mux.HandleFunc("/a/", beforeProxy(ggpht))
mux.HandleFunc("/ytc/", beforeProxy(ggpht))
2024-10-29 15:01:35 -03:00
go requestPerSecond()
go requestPerMinute()
2024-10-29 01:29:55 -03:00
2024-10-29 21:27:09 -03:00
ln, err := net.Listen("tcp", host+":"+port)
if err != nil {
log.Fatalf("Failed to listen: %v", err)
}
// 1Kbit = 125Bytes
var (
writeLimit = bwlimit.Byte(*wl) * bwlimit.Byte(125)
readLimit = bwlimit.Byte(*rl) * bwlimit.Byte(125)
)
ln = bwlimit.NewListener(ln, writeLimit, readLimit)
2024-11-04 10:48:00 -03:00
// srvDialer := bwlimit.NewDialer(&net.Dialer{}, writeLimit, readLimit)
2024-10-29 21:27:09 -03:00
2021-03-12 12:29:53 +05:30
srv := &http.Server{
2024-11-04 10:48:00 -03:00
Handler: mux,
2021-03-12 12:29:53 +05:30
ReadTimeout: 5 * time.Second,
WriteTimeout: 1 * time.Hour,
ConnState: cw.OnStateChange,
2024-11-04 10:48:00 -03:00
}
srvh3 := &http3.Server{
Handler: mux,
EnableDatagrams: false, // https://quic.video/blog/never-use-datagrams/ (Read it)
IdleTimeout: 120 * time.Second,
TLSConfig: http3.ConfigureTLSConfig(&tls.Config{}),
QUICConfig: &quic.Config{
// KeepAlivePeriod: 10 * time.Second,
MaxIncomingStreams: 256, // I'm not sure if this is correct.
MaxIncomingUniStreams: 256, // Same as above
},
Addr: host + ":" + port,
2021-03-12 12:29:53 +05:30
}
2024-10-02 19:04:19 -03:00
2024-10-29 21:27:09 -03:00
syscall.Unlink(sock)
socket_listener, err := net.Listen("unix", sock)
2024-10-04 20:56:01 -03:00
2020-10-25 18:11:17 +05:30
if err != nil {
2024-12-13 17:24:52 -03:00
log.Println("Failed to bind to UDS, please check the socket name", err.Error())
2020-10-25 18:11:17 +05:30
} else {
2024-10-29 21:27:09 -03:00
defer socket_listener.Close()
2024-10-02 19:04:19 -03:00
// To allow everyone to access the socket
2024-10-29 21:27:09 -03:00
err = os.Chmod(sock, 0777)
2024-10-02 19:04:19 -03:00
if err != nil {
2024-12-13 17:24:52 -03:00
log.Println("Failed to set socket permissions to 777:", err.Error())
2024-10-02 19:04:19 -03:00
return
} else {
2024-12-13 17:24:52 -03:00
log.Println("Setting socket permissions to 777")
2024-10-02 19:04:19 -03:00
}
2024-10-29 21:27:09 -03:00
go srv.Serve(socket_listener)
2024-12-13 17:24:52 -03:00
log.Println("Unix socket listening at:", string(sock))
2024-10-29 21:27:09 -03:00
2024-11-04 10:48:00 -03:00
if https {
2024-12-13 17:24:52 -03:00
if _, err := os.Open(tls_cert); errors.Is(err, os.ErrNotExist) {
log.Panicf("Certificate file does not exist at path '%s'", tls_cert)
}
if _, err := os.Open(tls_key); errors.Is(err, os.ErrNotExist) {
log.Panicf("Key file does not exist at path '%s'", tls_key)
}
log.Println("Serving HTTPS at port", string(port)+"/tcp")
2024-11-04 10:48:00 -03:00
go func() {
if err := srv.ServeTLS(ln, tls_cert, tls_key); err != nil {
2024-12-13 17:24:52 -03:00
log.Fatal("Failed to server HTTP/2", err.Error())
2024-11-04 10:48:00 -03:00
}
}()
if h3s {
2024-12-13 17:24:52 -03:00
log.Println("Serving HTTP/3 (HTTPS) via QUIC at port", string(port)+"/udp")
2024-11-04 10:48:00 -03:00
go func() {
if err := srvh3.ListenAndServeTLS(tls_cert, tls_key); err != nil {
2024-12-13 17:24:52 -03:00
log.Fatal("Failed to serve HTTP/3:", err.Error())
2024-11-04 10:48:00 -03:00
}
}()
2024-10-04 20:56:01 -03:00
}
2024-11-04 10:48:00 -03:00
select {}
2024-10-04 20:56:01 -03:00
} else {
2024-12-13 17:24:52 -03:00
log.Println("Serving HTTP at port", string(port))
2024-10-29 21:27:09 -03:00
if err := srv.Serve(ln); err != nil {
log.Fatal(err)
}
2024-10-04 20:56:01 -03:00
}
2020-10-25 18:11:17 +05:30
}
2020-10-24 15:47:41 +00:00
}