fix: tls roll back

yockii · yockii · commit 8526656c88d4 · 2024-06-24T15:19:14.000+08:00
diff --git a/internal/proxy/handler.go b/internal/proxy/handler.go
@@ -87,3 +87,80 @@ func (m *manager) generateHandler(routeProxy *RouteProxy, route *model.Route, po
 	}
 	return handler
 }
+
+//func (m *manager) handleConnection(conn net.Conn, port uint16, app *fiber.App) {
+//	defer conn.Close()
+//
+//	// 手动进行TLS握手
+//	tlsConn := tls.Server(conn, m.certManager.generateDynamicTLSConfig(port))
+//
+//	err := tlsConn.Handshake()
+//	if err != nil {
+//		logger.Error("tls handshake failed: ", err)
+//		return
+//	}
+//
+//	app.Use(func(c *fiber.Ctx) error {
+//		if tlsConn.ConnectionState().HandshakeComplete {
+//			return c.SendString("https!!!")
+//		} else {
+//			return c.SendString("http@@@@@")
+//		}
+//	})
+//
+//	// 将连接转换为 GoFiber 的 RequestCtx
+//
+//	fiberConn := fiber.AcquireConn(tlsConn, true)
+//	fiberConn.Serve(app.Handler())
+//
+//	// 释放资源
+//	fiberConn.Release()
+//}
+
+func (m *manager) initFiberAppHandler(app *fiber.App, port uint16) {
+	// 对app所有请求进行处理
+	app.Use(func(c *fiber.Ctx) error {
+		if allRouter, ok := m.portToRouter[port]; ok {
+			var router *server.Router
+			domainName := strings.Split(c.Hostname(), ":")[0]
+			router, ok = allRouter[domainName]
+			if !ok {
+				router = allRouter[""]
+			}
+			if router != nil {
+				route := router.FindRoute(c.Path())
+				if route != nil {
+					handler := route.Handler
+					c.Locals("fields", route.DesensitizeFields)
+					return handler(c)
+				}
+			}
+		}
+		return fiber.ErrNotFound
+	})
+}
+
+func (m *manager) handleProxyServer(port uint16) {
+	app := fiber.New(fiber.Config{
+		DisableStartupMessage: true,
+	})
+
+	m.portToServer[port] = app
+	go func() {
+		m.initFiberAppHandler(app, port)
+
+		err := app.Listen(fmt.Sprintf(":%d", port))
+		if err != nil {
+			logger.Error("服务异常停止: ", err)
+			delete(m.portToServer, port)
+			return
+		}
+
+		//err := app.Listener(ln)
+		//if err != nil {
+		//	logger.Error("启动服务失败: ", err)
+		//	delete(m.portToServer, port)
+		//	return
+		//}
+	}()
+}
diff --git a/internal/proxy/manager.go b/internal/proxy/manager.go
@@ -1,16 +1,12 @@
 package proxy
 
 import (
-	"crypto/tls"
-	"fmt"
 	"github.com/gofiber/fiber/v2"
 	logger "github.com/sirupsen/logrus"
-	"net"
 	"security-gateway/internal/domain"
 	"security-gateway/internal/model"
 	"security-gateway/internal/service"
 	"security-gateway/pkg/server"
-	"strings"
 )
 
 // 反向代理管理器
@@ -164,24 +160,36 @@ func (m *manager) AddRoute(serv *model.Service, route *model.Route, upstream *mo
 		m.portToRouter[port] = make(map[string]*server.Router)
 	}
 	if _, ok := m.portToServer[port]; !ok {
-		app := fiber.New(fiber.Config{
-			DisableStartupMessage: true,
-		})
-		m.portToServer[port] = app
-		go func() {
-			m.initFiberAppHandler(app, port)
-
-			ln, _ := net.Listen("tcp", fmt.Sprintf(":%d", port))
-
-			ln = tls.NewListener(ln, m.certManager.generateDynamicTLSConfig(port))
-
-			err := app.Listener(ln)
-			if err != nil {
-				logger.Error("启动服务失败: ", err)
-				delete(m.portToServer, port)
-				return
-			}
-		}()
+		m.handleProxyServer(port)
+
+		//app := fiber.New(fiber.Config{
+		//	DisableStartupMessage: true,
+		//})
+		//m.portToServer[port] = app
+		//go func() {
+		//	//m.initFiberAppHandler(app, port)
+		//
+		//	ln, _ := net.Listen("tcp", fmt.Sprintf(":%d", port))
+		//	defer ln.Close()
+		//
+		//	//ln = tls.NewListener(ln, m.certManager.generateDynamicTLSConfig(port))
+		//
+		//	for {
+		//		conn, err := ln.Accept()
+		//		if err != nil {
+		//			logger.Error("接收连接失败: ", err)
+		//			continue
+		//		}
+		//		go m.handleConnection(conn, port, app)
+		//	}
+		//
+		//	//err := app.Listener(ln)
+		//	//if err != nil {
+		//	//	logger.Error("启动服务失败: ", err)
+		//	//	delete(m.portToServer, port)
+		//	//	return
+		//	//}
+		//}()
 	}
 
 	// 获取已有的路由
@@ -312,29 +320,6 @@ func (m *manager) RemoveRoute(port uint16, domain, path, targetUrl string) {
 	}
 }
 
-func (m *manager) initFiberAppHandler(app *fiber.App, port uint16) {
-	// 对app所有请求进行处理
-	app.Use(func(c *fiber.Ctx) error {
-		if allRouter, ok := m.portToRouter[port]; ok {
-			var router *server.Router
-			domainName := strings.Split(c.Hostname(), ":")[0]
-			router, ok = allRouter[domainName]
-			if !ok {
-				router = allRouter[""]
-			}
-			if router != nil {
-				route := router.FindRoute(c.Path())
-				if route != nil {
-					handler := route.Handler
-					c.Locals("fields", route.DesensitizeFields)
-					return handler(c)
-				}
-			}
-		}
-		return fiber.ErrNotFound
-	})
-}
-
 func (m *manager) UpdateService(oldService *model.Service, newService *model.Service) {
 	if newService.ID == 0 || oldService.ID == 0 {
 		return
diff --git a/internal/service/UpstreamService.go b/internal/service/UpstreamService.go
@@ -78,7 +78,7 @@ func (u *upstreamService) Delete(id uint64) (success bool, err error) {
 
 	err = database.DB.Transaction(func(tx *gorm.DB) error {
 		// 删除路由目标关联
-		if err = tx.Delete(&model.RouteTarget{UpstreamID: &id}).Error; err != nil {
+		if err = tx.Where(&model.RouteTarget{UpstreamID: &id}).Delete(&model.RouteTarget{}).Error; err != nil {
 			logger.Errorln(err)
 			return err
 		}

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ func (u *upstreamService) Delete(id uint64) (success bool, err error) {`
`78`	`78`
`79`	`79`	`err = database.DB.Transaction(func(tx *gorm.DB) error {`
`80`	`80`	`// 删除路由目标关联`
`81`		`- if err = tx.Delete(&model.RouteTarget{UpstreamID: &id}).Error; err != nil {`
	`81`	`+ if err = tx.Where(&model.RouteTarget{UpstreamID: &id}).Delete(&model.RouteTarget{}).Error; err != nil {`
`82`	`82`	`logger.Errorln(err)`
`83`	`83`	`return err`
`84`	`84`	`}`