2021-06-08 20:45:26 +08:00
|
|
|
|
package base
|
|
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
|
"fmt"
|
|
|
|
|
|
"os"
|
|
|
|
|
|
"path/filepath"
|
|
|
|
|
|
"reflect"
|
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
const (
|
2021-08-26 23:09:52 +08:00
|
|
|
|
LinkModeTUN = "tun"
|
|
|
|
|
|
LinkModeTAP = "tap"
|
|
|
|
|
|
LinkModeMacvtap = "macvtap"
|
|
|
|
|
|
LinkModeIpvtap = "ipvtap"
|
2021-06-08 20:45:26 +08:00
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
var (
|
|
|
|
|
|
Cfg = &ServerConfig{}
|
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
// # ReKey time (in seconds)
|
|
|
|
|
|
// rekey-time = 172800
|
|
|
|
|
|
// # ReKey method
|
|
|
|
|
|
// # Valid options: ssl, new-tunnel
|
|
|
|
|
|
// # ssl: Will perform an efficient rehandshake on the channel allowing
|
|
|
|
|
|
// # a seamless connection during rekey.
|
|
|
|
|
|
// # new-tunnel: Will instruct the client to discard and re-establish the channel.
|
|
|
|
|
|
// # Use this option only if the connecting clients have issues with the ssl
|
|
|
|
|
|
// # option.
|
|
|
|
|
|
// rekey-method = ssl
|
|
|
|
|
|
|
|
|
|
|
|
type ServerConfig struct {
|
|
|
|
|
|
// LinkAddr string `json:"link_addr"`
|
2021-08-02 20:41:35 +08:00
|
|
|
|
Conf string `json:"conf"`
|
2021-12-31 20:21:26 +08:00
|
|
|
|
Profile string `json:"profile"`
|
2021-06-08 20:45:26 +08:00
|
|
|
|
ServerAddr string `json:"server_addr"`
|
|
|
|
|
|
ServerDTLSAddr string `json:"server_dtls_addr"`
|
|
|
|
|
|
ServerDTLS bool `json:"server_dtls"`
|
|
|
|
|
|
AdminAddr string `json:"admin_addr"`
|
|
|
|
|
|
ProxyProtocol bool `json:"proxy_protocol"`
|
2021-08-02 20:41:35 +08:00
|
|
|
|
DbType string `json:"db_type"`
|
|
|
|
|
|
DbSource string `json:"db_source"`
|
2021-06-08 20:45:26 +08:00
|
|
|
|
CertFile string `json:"cert_file"`
|
|
|
|
|
|
CertKey string `json:"cert_key"`
|
|
|
|
|
|
FilesPath string `json:"files_path"`
|
|
|
|
|
|
LogPath string `json:"log_path"`
|
|
|
|
|
|
LogLevel string `json:"log_level"`
|
|
|
|
|
|
Pprof bool `json:"pprof"`
|
|
|
|
|
|
Issuer string `json:"issuer"`
|
|
|
|
|
|
AdminUser string `json:"admin_user"`
|
|
|
|
|
|
AdminPass string `json:"admin_pass"`
|
|
|
|
|
|
JwtSecret string `json:"jwt_secret"`
|
|
|
|
|
|
|
2021-08-26 23:09:52 +08:00
|
|
|
|
LinkMode string `json:"link_mode"` // tun tap macvtap ipvtap
|
|
|
|
|
|
Ipv4Master string `json:"ipv4_master"` // eth0
|
|
|
|
|
|
Ipv4CIDR string `json:"ipv4_cidr"` // 192.168.10.0/24
|
|
|
|
|
|
Ipv4Gateway string `json:"ipv4_gateway"` // 192.168.10.1
|
|
|
|
|
|
Ipv4Start string `json:"ipv4_start"` // 192.168.10.100
|
|
|
|
|
|
Ipv4End string `json:"ipv4_end"` // 192.168.10.200
|
2021-06-08 20:45:26 +08:00
|
|
|
|
IpLease int `json:"ip_lease"`
|
|
|
|
|
|
|
|
|
|
|
|
MaxClient int `json:"max_client"`
|
|
|
|
|
|
MaxUserClient int `json:"max_user_client"`
|
|
|
|
|
|
DefaultGroup string `json:"default_group"`
|
|
|
|
|
|
CstpKeepalive int `json:"cstp_keepalive"` // in seconds
|
|
|
|
|
|
CstpDpd int `json:"cstp_dpd"` // Dead peer detection in seconds
|
|
|
|
|
|
MobileKeepalive int `json:"mobile_keepalive"`
|
|
|
|
|
|
MobileDpd int `json:"mobile_dpd"`
|
2022-07-04 15:03:22 +08:00
|
|
|
|
Mtu int `json:"mtu"`
|
2022-11-10 15:53:48 +08:00
|
|
|
|
DefaultDomain string `json:"default_domain"`
|
2021-06-08 20:45:26 +08:00
|
|
|
|
|
|
|
|
|
|
SessionTimeout int `json:"session_timeout"` // in seconds
|
2021-08-02 20:41:35 +08:00
|
|
|
|
// AuthTimeout int `json:"auth_timeout"` // in seconds
|
2021-08-26 23:09:52 +08:00
|
|
|
|
AuditInterval int `json:"audit_interval"` // in seconds
|
2022-11-10 15:53:48 +08:00
|
|
|
|
|
2023-04-26 22:17:10 +08:00
|
|
|
|
ShowSQL bool `json:"show_sql"` // bool
|
|
|
|
|
|
IptablesNat bool `json:"iptables_nat"`
|
|
|
|
|
|
Compression bool `json:"compression"` // bool
|
|
|
|
|
|
NoCompressLimit int `json:"no_compress_limit"` // int
|
|
|
|
|
|
|
|
|
|
|
|
DisplayError bool `json:"display_error"`
|
2021-06-08 20:45:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func initServerCfg() {
|
|
|
|
|
|
|
2021-07-05 18:23:27 +08:00
|
|
|
|
// TODO 取消绝对地址转换
|
|
|
|
|
|
// sf, _ := filepath.Abs(cfgFile)
|
|
|
|
|
|
// base := filepath.Dir(sf)
|
2021-06-08 20:45:26 +08:00
|
|
|
|
|
|
|
|
|
|
// 转换成绝对路径
|
2021-07-05 18:23:27 +08:00
|
|
|
|
// Cfg.DbFile = getAbsPath(base, Cfg.DbFile)
|
|
|
|
|
|
// Cfg.CertFile = getAbsPath(base, Cfg.CertFile)
|
|
|
|
|
|
// Cfg.CertKey = getAbsPath(base, Cfg.CertKey)
|
|
|
|
|
|
// Cfg.UiPath = getAbsPath(base, Cfg.UiPath)
|
|
|
|
|
|
// Cfg.FilesPath = getAbsPath(base, Cfg.FilesPath)
|
|
|
|
|
|
// Cfg.LogPath = getAbsPath(base, Cfg.LogPath)
|
|
|
|
|
|
|
2021-08-02 20:41:35 +08:00
|
|
|
|
if Cfg.AdminPass == defaultPwd {
|
|
|
|
|
|
fmt.Fprintln(os.Stderr, "=== 使用默认的admin_pass有安全风险,请设置新的admin_pass ===")
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-07-05 18:23:27 +08:00
|
|
|
|
if Cfg.JwtSecret == defaultJwt {
|
|
|
|
|
|
fmt.Fprintln(os.Stderr, "=== 使用默认的jwt_secret有安全风险,请设置新的jwt_secret ===")
|
2021-06-08 20:45:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
fmt.Printf("ServerCfg: %+v \n", Cfg)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func getAbsPath(base, cfile string) string {
|
|
|
|
|
|
if cfile == "" {
|
|
|
|
|
|
return ""
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
abs := filepath.IsAbs(cfile)
|
|
|
|
|
|
if abs {
|
|
|
|
|
|
return cfile
|
|
|
|
|
|
}
|
|
|
|
|
|
return filepath.Join(base, cfile)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func initCfg() {
|
|
|
|
|
|
ref := reflect.ValueOf(Cfg)
|
|
|
|
|
|
s := ref.Elem()
|
|
|
|
|
|
|
|
|
|
|
|
typ := s.Type()
|
|
|
|
|
|
numFields := s.NumField()
|
|
|
|
|
|
for i := 0; i < numFields; i++ {
|
|
|
|
|
|
field := typ.Field(i)
|
|
|
|
|
|
value := s.Field(i)
|
|
|
|
|
|
tag := field.Tag.Get("json")
|
|
|
|
|
|
|
|
|
|
|
|
for _, v := range configs {
|
|
|
|
|
|
if v.Name == tag {
|
|
|
|
|
|
if v.Typ == cfgStr {
|
2021-08-02 20:41:35 +08:00
|
|
|
|
value.SetString(linkViper.GetString(v.Name))
|
2021-06-08 20:45:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
if v.Typ == cfgInt {
|
2021-08-02 20:41:35 +08:00
|
|
|
|
value.SetInt(int64(linkViper.GetInt(v.Name)))
|
2021-06-08 20:45:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
if v.Typ == cfgBool {
|
2021-08-02 20:41:35 +08:00
|
|
|
|
value.SetBool(linkViper.GetBool(v.Name))
|
2021-06-08 20:45:26 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
initServerCfg()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
type SCfg struct {
|
|
|
|
|
|
Name string `json:"name"`
|
|
|
|
|
|
Env string `json:"env"`
|
|
|
|
|
|
Info string `json:"info"`
|
|
|
|
|
|
Data interface{} `json:"data"`
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func ServerCfg2Slice() []SCfg {
|
|
|
|
|
|
ref := reflect.ValueOf(Cfg)
|
|
|
|
|
|
s := ref.Elem()
|
|
|
|
|
|
|
|
|
|
|
|
var datas []SCfg
|
|
|
|
|
|
|
|
|
|
|
|
typ := s.Type()
|
|
|
|
|
|
numFields := s.NumField()
|
|
|
|
|
|
for i := 0; i < numFields; i++ {
|
|
|
|
|
|
field := typ.Field(i)
|
|
|
|
|
|
value := s.Field(i)
|
|
|
|
|
|
tag := field.Tag.Get("json")
|
|
|
|
|
|
usage, env := getUsageEnv(tag)
|
|
|
|
|
|
|
|
|
|
|
|
datas = append(datas, SCfg{Name: tag, Env: env, Info: usage, Data: value.Interface()})
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
return datas
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func getUsageEnv(name string) (usage, env string) {
|
|
|
|
|
|
for _, v := range configs {
|
|
|
|
|
|
if v.Name == name {
|
|
|
|
|
|
usage = v.Usage
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if e, ok := envs[name]; ok {
|
|
|
|
|
|
env = e
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
