mirror of
				https://github.com/fatedier/frp
				synced 2025-10-20 10:03:07 +08:00 
			
		
		
		
	
		
			
				
	
	
		
			116 lines
		
	
	
		
			2.6 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			116 lines
		
	
	
		
			2.6 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2019 fatedier, fatedier@gmail.com
 | |
| //
 | |
| // Licensed under the Apache License, Version 2.0 (the "License");
 | |
| // you may not use this file except in compliance with the License.
 | |
| // You may obtain a copy of the License at
 | |
| //
 | |
| //     http://www.apache.org/licenses/LICENSE-2.0
 | |
| //
 | |
| // Unless required by applicable law or agreed to in writing, software
 | |
| // distributed under the License is distributed on an "AS IS" BASIS,
 | |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 | |
| // See the License for the specific language governing permissions and
 | |
| // limitations under the License.
 | |
| 
 | |
| package plugin
 | |
| 
 | |
| import (
 | |
| 	"crypto/tls"
 | |
| 	"fmt"
 | |
| 	"io"
 | |
| 	"net"
 | |
| 	"net/http"
 | |
| 	"net/http/httputil"
 | |
| 
 | |
| 	v1 "github.com/fatedier/frp/pkg/config/v1"
 | |
| 	"github.com/fatedier/frp/pkg/transport"
 | |
| 	utilnet "github.com/fatedier/frp/pkg/util/net"
 | |
| )
 | |
| 
 | |
| func init() {
 | |
| 	Register(v1.PluginHTTPS2HTTPS, NewHTTPS2HTTPSPlugin)
 | |
| }
 | |
| 
 | |
| type HTTPS2HTTPSPlugin struct {
 | |
| 	opts *v1.HTTPS2HTTPSPluginOptions
 | |
| 
 | |
| 	l *Listener
 | |
| 	s *http.Server
 | |
| }
 | |
| 
 | |
| func NewHTTPS2HTTPSPlugin(options v1.ClientPluginOptions) (Plugin, error) {
 | |
| 	opts := options.(*v1.HTTPS2HTTPSPluginOptions)
 | |
| 
 | |
| 	listener := NewProxyListener()
 | |
| 
 | |
| 	p := &HTTPS2HTTPSPlugin{
 | |
| 		opts: opts,
 | |
| 		l:    listener,
 | |
| 	}
 | |
| 
 | |
| 	tr := &http.Transport{
 | |
| 		TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
 | |
| 	}
 | |
| 
 | |
| 	rp := &httputil.ReverseProxy{
 | |
| 		Director: func(req *http.Request) {
 | |
| 			req.URL.Scheme = "https"
 | |
| 			req.URL.Host = p.opts.LocalAddr
 | |
| 			if p.opts.HostHeaderRewrite != "" {
 | |
| 				req.Host = p.opts.HostHeaderRewrite
 | |
| 			}
 | |
| 			for k, v := range p.opts.RequestHeaders.Set {
 | |
| 				req.Header.Set(k, v)
 | |
| 			}
 | |
| 		},
 | |
| 		Transport: tr,
 | |
| 	}
 | |
| 
 | |
| 	p.s = &http.Server{
 | |
| 		Handler: rp,
 | |
| 	}
 | |
| 
 | |
| 	var (
 | |
| 		tlsConfig *tls.Config
 | |
| 		err       error
 | |
| 	)
 | |
| 	if opts.CrtPath != "" || opts.KeyPath != "" {
 | |
| 		tlsConfig, err = p.genTLSConfig()
 | |
| 	} else {
 | |
| 		tlsConfig, err = transport.NewServerTLSConfig("", "", "")
 | |
| 		tlsConfig.InsecureSkipVerify = true
 | |
| 	}
 | |
| 	if err != nil {
 | |
| 		return nil, fmt.Errorf("gen TLS config error: %v", err)
 | |
| 	}
 | |
| 	ln := tls.NewListener(listener, tlsConfig)
 | |
| 
 | |
| 	go func() {
 | |
| 		_ = p.s.Serve(ln)
 | |
| 	}()
 | |
| 	return p, nil
 | |
| }
 | |
| 
 | |
| func (p *HTTPS2HTTPSPlugin) genTLSConfig() (*tls.Config, error) {
 | |
| 	cert, err := tls.LoadX509KeyPair(p.opts.CrtPath, p.opts.KeyPath)
 | |
| 	if err != nil {
 | |
| 		return nil, err
 | |
| 	}
 | |
| 
 | |
| 	config := &tls.Config{Certificates: []tls.Certificate{cert}}
 | |
| 	return config, nil
 | |
| }
 | |
| 
 | |
| func (p *HTTPS2HTTPSPlugin) Handle(conn io.ReadWriteCloser, realConn net.Conn, _ []byte) {
 | |
| 	wrapConn := utilnet.WrapReadWriteCloserToConn(conn, realConn)
 | |
| 	_ = p.l.PutConn(wrapConn)
 | |
| }
 | |
| 
 | |
| func (p *HTTPS2HTTPSPlugin) Name() string {
 | |
| 	return v1.PluginHTTPS2HTTPS
 | |
| }
 | |
| 
 | |
| func (p *HTTPS2HTTPSPlugin) Close() error {
 | |
| 	return p.s.Close()
 | |
| }
 | 
