IP interface and Protocol + fix iptables

2022-07-12 15:47:31 +02:00
parent c4ab4c628e
commit 3034c66423
13 changed files with 243 additions and 145 deletions
--- a/backend/utils.py
+++ b/backend/utils.py
@@ -1,69 +1,27 @@
+from hashlib import md5
 import traceback
 from typing import Dict
 from proxy import Filter, Proxy
 import os, sqlite3, socket, asyncio, re
-import secrets
+import secrets, json
 from base64 import b64decode

 LOCALHOST_IP = socket.gethostbyname(os.getenv("LOCALHOST_IP","127.0.0.1"))

-regex_ipv6 = r"^s*((([0-9A-Fa-f]{1,4}:){7}([0-9A-Fa-f]{1,4}|:))|(([0-9A-Fa-f]{1,4}:){6}(:[0-9A-Fa-f]{1,4}|((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3})|:))|(([0-9A-Fa-f]{1,4}:){5}(((:[0-9A-Fa-f]{1,4}){1,2})|:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3})|:))|(([0-9A-Fa-f]{1,4}:){4}(((:[0-9A-Fa-f]{1,4}){1,3})|((:[0-9A-Fa-f]{1,4})?:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){3}(((:[0-9A-Fa-f]{1,4}){1,4})|((:[0-9A-Fa-f]{1,4}){0,2}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){2}(((:[0-9A-Fa-f]{1,4}){1,5})|((:[0-9A-Fa-f]{1,4}){0,3}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){1}(((:[0-9A-Fa-f]{1,4}){1,6})|((:[0-9A-Fa-f]{1,4}){0,4}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(:(((:[0-9A-Fa-f]{1,4}){1,7})|((:[0-9A-Fa-f]{1,4}){0,5}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:)))(%.+)?s*(\\/([0-9]|[1-9][0-9]|1[0-1][0-9]|12[0-8]))?$";
-regex_ipv4 = r"^([0-9]{1,3}\\.){3}[0-9]{1,3}(\\/([0-9]|[1-2][0-9]|3[0-2]))?$"
-
-def checkIpv6(ip:str):
-    return bool(re.match(regex_ipv6, ip))
-
-def checkIpv4(ip:str):
-    return bool(re.match(regex_ipv4, ip))
-
 class SQLite():
    def __init__(self, db_name) -> None:
        self.conn = None
        self.cur = None
        self.db_name = db_name
-
-    def connect(self) -> None:
-        try:
-            self.conn = sqlite3.connect(self.db_name, check_same_thread = False)
-        except Exception:
-            with open(self.db_name, 'x'):
-                pass
-            self.conn = sqlite3.connect(self.db_name, check_same_thread = False)
-        def dict_factory(cursor, row):
-            d = {}
-            for idx, col in enumerate(cursor.description):
-                d[col[0]] = row[idx]
-            return d
-        self.conn.row_factory = dict_factory
-
-    def disconnect(self) -> None:
-        self.conn.close()
-
-    def create_schema(self, tables = {}) -> None:
-        cur = self.conn.cursor()
-        for t in tables:
-            cur.execute('''CREATE TABLE IF NOT EXISTS main.{}({});'''.format(t, ''.join([(c + ' ' + tables[t][c] + ', ') for c in tables[t]])[:-2]))
-        cur.close()
-    
-    def query(self, query, *values):
-        cur = self.conn.cursor()
-        try:
-            cur.execute(query, values)
-            return cur.fetchall()
-        finally:
-            cur.close()
-            try: self.conn.commit()
-            except Exception: pass
-    
-    def init(self):
-        self.connect()
-        self.create_schema({
+        self.schema = {
            'services': {
                'service_id': 'VARCHAR(100) PRIMARY KEY',
                'status': 'VARCHAR(100) NOT NULL',
                'port': 'INT NOT NULL CHECK(port > 0 and port < 65536)',
                'name': 'VARCHAR(100) NOT NULL UNIQUE',
                'ipv6': 'BOOLEAN NOT NULL CHECK (ipv6 IN (0, 1)) DEFAULT 0',
+                'proto': 'VARCHAR(3) NOT NULL CHECK (proto IN ("tcp", "udp"))',
+                'ip_int': 'VARCHAR(100) NOT NULL',
            },
            'regexes': {
                'regex': 'TEXT NOT NULL',
@@ -80,9 +38,62 @@ class SQLite():
                'key': 'VARCHAR(100) PRIMARY KEY',
                'value': 'VARCHAR(100) NOT NULL',
            },
-        })
-        self.query("CREATE UNIQUE INDEX IF NOT EXISTS unique_services ON services (ipv6,port);")
-        self.query("CREATE UNIQUE INDEX IF NOT EXISTS unique_regex_service ON regexes (regex,service_id,is_blacklist,mode,is_case_sensitive);")
+            'QUERY':[
+                "CREATE UNIQUE INDEX IF NOT EXISTS unique_services ON services (ipv6, port, ip_int, proto);",
+                "CREATE UNIQUE INDEX IF NOT EXISTS unique_regex_service ON regexes (regex,service_id,is_blacklist,mode,is_case_sensitive);"   
+            ]
+        }
+        self.DB_VER = md5(json.dumps(self.schema).encode()).hexdigest()
+
+    def connect(self) -> None:
+        try:
+            self.conn = sqlite3.connect(self.db_name, check_same_thread = False)
+        except Exception:
+            with open(self.db_name, 'x'):
+                pass
+            self.conn = sqlite3.connect(self.db_name, check_same_thread = False)
+        def dict_factory(cursor, row):
+            d = {}
+            for idx, col in enumerate(cursor.description):
+                d[col[0]] = row[idx]
+            return d
+        self.conn.row_factory = dict_factory
+
+    def disconnect(self) -> None:
+        if self.conn: self.conn.close()
+
+    def create_schema(self, tables = {}) -> None:
+        cur = self.conn.cursor()
+        for t in tables:
+            if t == "QUERY": continue
+            cur.execute('CREATE TABLE IF NOT EXISTS main.{}({});'.format(t, ''.join([(c + ' ' + tables[t][c] + ', ') for c in tables[t]])[:-2]))
+        if "QUERY" in tables: [cur.execute(qry) for qry in tables["QUERY"]]
+        cur.close()
+    
+    def query(self, query, *values):
+        cur = self.conn.cursor()
+        try:
+            cur.execute(query, values)
+            return cur.fetchall()
+        finally:
+            cur.close()
+            try: self.conn.commit()
+            except Exception: pass
+    
+    def delete(self):
+        self.disconnect()
+        os.remove(self.db_name)
+    
+    def init(self):
+        self.connect()
+        try:
+            current_ver = self.query("SELECT value FROM keys_values WHERE key = 'DB_VERSION'")[0]['value']
+            if current_ver != self.DB_VER: raise Exception("DB_VERSION is not correct")
+        except Exception:
+            self.delete()
+            self.connect()
+            self.create_schema(self.schema)
+            self.query("INSERT INTO keys_values (key, value) VALUES ('DB_VERSION', ?)", self.DB_VER)

 class KeyValueStorage:
    def __init__(self, db):
@@ -108,11 +119,10 @@ class STATUS:
 class ServiceNotFoundException(Exception): pass

 class ServiceManager:
-    def __init__(self, id, port, ipv6, db):
-        self.id = id
-        self.port = port
+    def __init__(self, srv, db):
+        self.srv = srv
        self.db = db
-        self.proxy = Proxy(port, ipv6)
+        self.proxy = Proxy(srv)
        self.status = STATUS.STOP
        self.filters = {}
        self._update_filters_from_db()
@@ -122,10 +132,10 @@ class ServiceManager:
    def _update_filters_from_db(self):
        res = self.db.query("""
            SELECT 
-                regex, mode, regex_id `id`, is_blacklist,
+                regex, mode, regex_id id, is_blacklist,
                blocked_packets n_packets, is_case_sensitive
            FROM regexes WHERE service_id = ? AND active=1;
-        """, self.id)
+        """, self.srv["service_id"])

        #Filter check
        old_filters = set(self.filters.keys())
@@ -151,7 +161,7 @@ class ServiceManager:
        self.proxy.set_filters(self.filters.values())
    
    def __update_status_db(self, status):
-        self.db.query("UPDATE services SET status = ? WHERE service_id = ?;", status, self.id)
+        self.db.query("UPDATE services SET status = ? WHERE service_id = ?;", status, self.srv["service_id"])

    async def next(self,to):
        async with self.lock:
@@ -216,13 +226,14 @@ class ProxyManager:

    async def reload(self):
        async with self.lock: 
-            for srv in self.db.query('SELECT service_id, port, status, ipv6 FROM services;'):
-                srv_id, srv_port, req_status, srv_ipv6 = srv["service_id"], srv["port"], srv["status"], srv["ipv6"]
-                if srv_port in self.proxy_table:
+            for srv in self.db.query('SELECT * FROM services;'):
+                
+                srv_id = srv["service_id"]
+                if srv_id in self.proxy_table:
                    continue

-                self.proxy_table[srv_id] = ServiceManager(srv_id, srv_port, srv_ipv6, self.db)
-                await self.proxy_table[srv_id].next(req_status)
+                self.proxy_table[srv_id] = ServiceManager(srv, self.db)
+                await self.proxy_table[srv_id].next(srv["status"])

    async def _stats_updater(self, callback):
        try: