misskey/src/remote/activitypub/request.ts

import { request } from 'https';
import { sign } from 'http-signature';
import { URL } from 'url';
import * as crypto from 'crypto';
import { lookup, IRunOptions } from 'lookup-dns-cache';
import * as promiseAny from 'promise-any';
import { toUnicode } from 'punycode';

import config from '../../config';
import { ILocalUser } from '../../models/user';
import { publishApLogStream } from '../../services/stream';
import { apLogger } from './logger';
import Instance from '../../models/instance';

export const logger = apLogger.createSubLogger('deliver');

export default async (user: ILocalUser, url: string, object: any) => {
	logger.info(`--> ${url}`);

	const timeout = 10 * 1000;

	const { protocol, host, hostname, port, pathname, search } = new URL(url);

	// ブロックしてたら中断
	// TODO: いちいちデータベースにアクセスするのはコスト高そうなのでどっかにキャッシュしておく
	const instance = await Instance.findOne({ host: toUnicode(host) });
	if (instance && instance.isBlocked) return;

	const data = JSON.stringify(object);

	const sha256 = crypto.createHash('sha256');
	sha256.update(data);
	const hash = sha256.digest('base64');

	const addr = await resolveAddr(hostname);
	if (!addr) return;

	const _ = new Promise((resolve, reject) => {
		const req = request({
			protocol,
			hostname: addr,
			setHost: false,
			port,
			method: 'POST',
			path: pathname + search,
			timeout,
			headers: {
				'Host': host,
				'User-Agent': config.userAgent,
				'Content-Type': 'application/activity+json',
				'Digest': `SHA-256=${hash}`
			}
		}, res => {
			if (res.statusCode >= 400) {
				logger.warn(`${url} --> ${res.statusCode}`);
				reject(res);
			} else {
				logger.succ(`${url} --> ${res.statusCode}`);
				resolve();
			}
		});

		sign(req, {
			authorizationHeaderName: 'Signature',
			key: user.keypair,
			keyId: `${config.url}/users/${user._id}/publickey`,
			headers: ['date', 'host', 'digest']
		});

		// Signature: Signature ... => Signature: ...
		let sig = req.getHeader('Signature').toString();
		sig = sig.replace(/^Signature /, '');
		req.setHeader('Signature', sig);

		req.on('timeout', () => req.abort());

		req.on('error', e => {
			if (req.aborted) reject('timeout');
			reject(e);
		});

		req.end(data);
	});

	await _;

	//#region Log
	publishApLogStream({
		direction: 'out',
		activity: object.type,
		host: null,
		actor: user.username
	});
	//#endregion
};

/**
 * Resolve host (with cached, asynchrony)
 */
async function resolveAddr(domain: string) {
	// v4/v6で先に取得できた方を採用する
	return await promiseAny([
		resolveAddrInner(domain, { family: 4 }),
		resolveAddrInner(domain, { family: 6 })
	]);
}

function resolveAddrInner(domain: string, options: IRunOptions = {}): Promise<string> {
	return new Promise((res, rej) => {
		lookup(domain, options, (error: any, address: string | string[]) => {
			if (error) return rej(error);
			return res(Array.isArray(address) ? address[0] : address);
		});
	});
}
Deliver posts to remote followers 2018-04-02 13:16:13 +02:00			`import { request } from 'https';`
Create type definition for 'http-signature' (#4049) * Create type definition for 'http-signature' * Follow lint 2019-02-01 11:59:12 +01:00			`import { sign } from 'http-signature';`
Deliver posts to remote followers 2018-04-02 13:16:13 +02:00			`import { URL } from 'url';`
Module 'crypto' as import syntax (#4011) 2019-01-30 03:51:29 +01:00			`import * as crypto from 'crypto';`
Create type definition for 'lookup-dns-cache' (#4051) 2019-01-31 09:53:49 +01:00			`import { lookup, IRunOptions } from 'lookup-dns-cache';`
Create type definition for 'promise-any' (#4055) 2019-01-31 09:52:27 +01:00			`import * as promiseAny from 'promise-any';`
Implement instance blocking (#4182) * Implement instance blocking * Add missing text * Delete unnecessary file * Covert Punycode to Unicode 2019-02-07 20:26:43 +01:00			`import { toUnicode } from 'punycode';`
wip 2018-04-05 11:43:06 +02:00
Refactor 2018-04-09 19:12:17 +02:00			`import config from '../../config';`
			`import { ILocalUser } from '../../models/user';`
Refactoring 2019-02-05 06:14:23 +01:00			`import { publishApLogStream } from '../../services/stream';`
[Server] Use logger for logging 2019-02-02 20:18:27 +01:00			`import { apLogger } from './logger';`
Implement instance blocking (#4182) * Implement instance blocking * Add missing text * Delete unnecessary file * Covert Punycode to Unicode 2019-02-07 20:26:43 +01:00			`import Instance from '../../models/instance';`
Deliver posts to remote followers 2018-04-02 13:16:13 +02:00
[Server] Use logger for logging 2019-02-02 20:18:27 +01:00			`export const logger = apLogger.createSubLogger('deliver');`
wip 2018-04-05 11:43:06 +02:00
Fix bug 2019-03-08 11:45:01 +01:00			`export default async (user: ILocalUser, url: string, object: any) => {`
[Server] Use logger for logging 2019-02-02 20:18:27 +01:00			logger.info(`--> ${url}`);
wip 2018-04-05 11:43:06 +02:00
ActivityPubのHTTPリクエストの強化 (#2820) * Fix error handling in AP deliver * Set timeout to resolver * Tune looks 2018-10-04 18:58:41 +02:00			`const timeout = 10 * 1000;`

Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00			`const { protocol, host, hostname, port, pathname, search } = new URL(url);`
Deliver posts to remote followers 2018-04-02 13:16:13 +02:00
Implement instance blocking (#4182) * Implement instance blocking * Add missing text * Delete unnecessary file * Covert Punycode to Unicode 2019-02-07 20:26:43 +01:00			`// ブロックしてたら中断`
			`// TODO: いちいちデータベースにアクセスするのはコスト高そうなのでどっかにキャッシュしておく`
			`const instance = await Instance.findOne({ host: toUnicode(host) });`
			`if (instance && instance.isBlocked) return;`

Add host/digest to HTTP signature 2018-08-30 13:52:35 +02:00			`const data = JSON.stringify(object);`

			`const sha256 = crypto.createHash('sha256');`
			`sha256.update(data);`
			`const hash = sha256.digest('base64');`

Fix bug 2019-03-08 11:45:01 +01:00			`const addr = await resolveAddr(hostname);`
Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00			`if (!addr) return;`

Fix bug 2019-03-08 11:45:01 +01:00			`const _ = new Promise((resolve, reject) => {`
			`const req = request({`
			`protocol,`
			`hostname: addr,`
			`setHost: false,`
			`port,`
			`method: 'POST',`
			`path: pathname + search,`
			`timeout,`
			`headers: {`
			`'Host': host,`
			`'User-Agent': config.userAgent,`
			`'Content-Type': 'application/activity+json',`
			'Digest': `SHA-256=${hash}`
			`}`
			`}, res => {`
			`if (res.statusCode >= 400) {`
			logger.warn(`${url} --> ${res.statusCode}`);
			`reject(res);`
			`} else {`
			logger.succ(`${url} --> ${res.statusCode}`);
			`resolve();`
			`}`
			`});`
Deliver posts to remote followers 2018-04-02 13:16:13 +02:00
Fix bug 2019-03-08 11:45:01 +01:00			`sign(req, {`
			`authorizationHeaderName: 'Signature',`
			`key: user.keypair,`
			keyId: `${config.url}/users/${user._id}/publickey`,
			`headers: ['date', 'host', 'digest']`
			`});`

			`// Signature: Signature ... => Signature: ...`
			`let sig = req.getHeader('Signature').toString();`
			`sig = sig.replace(/^Signature /, '');`
			`req.setHeader('Signature', sig);`
Deliver posts to remote followers 2018-04-02 13:16:13 +02:00
Fix bug 2019-03-08 11:45:01 +01:00			`req.on('timeout', () => req.abort());`
Fix Misskey同士でフォローできない 2018-04-21 17:41:07 +02:00
Fix bug 2019-03-08 11:45:01 +01:00			`req.on('error', e => {`
			`if (req.aborted) reject('timeout');`
			`reject(e);`
			`});`
ActivityPubのHTTPリクエストの強化 (#2820) * Fix error handling in AP deliver * Set timeout to resolver * Tune looks 2018-10-04 18:58:41 +02:00
Fix bug 2019-03-08 11:45:01 +01:00			`req.end(data);`
ActivityPubのHTTPリクエストの強化 (#2820) * Fix error handling in AP deliver * Set timeout to resolver * Tune looks 2018-10-04 18:58:41 +02:00			`});`

Fix bug 2019-03-08 11:45:01 +01:00			`await _;`
Improve admin dashboard 2018-11-03 03:38:00 +01:00
			`//#region Log`
			`publishApLogStream({`
			`direction: 'out',`
			`activity: object.type,`
			`host: null,`
			`actor: user.username`
			`});`
			`//#endregion`
Fix bug 2019-03-08 11:45:01 +01:00			`};`
Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00
			`/**`
			`* Resolve host (with cached, asynchrony)`
			`*/`
			`async function resolveAddr(domain: string) {`
			`// v4/v6で先に取得できた方を採用する`
			`return await promiseAny([`
Create type definition for 'lookup-dns-cache' (#4051) 2019-01-31 09:53:49 +01:00			`resolveAddrInner(domain, { family: 4 }),`
			`resolveAddrInner(domain, { family: 6 })`
Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00			`]);`
			`}`

Create type definition for 'lookup-dns-cache' (#4051) 2019-01-31 09:53:49 +01:00			`function resolveAddrInner(domain: string, options: IRunOptions = {}): Promise<string> {`
Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00			`return new Promise((res, rej) => {`
Create type definition for 'lookup-dns-cache' (#4051) 2019-01-31 09:53:49 +01:00			`lookup(domain, options, (error: any, address: string \| string[]) => {`
Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00			`if (error) return rej(error);`
Create type definition for 'lookup-dns-cache' (#4051) 2019-01-31 09:53:49 +01:00			`return res(Array.isArray(address) ? address[0] : address);`
Use cached and asynchronous DNS resolver for AP delivery (#3859) 2019-01-09 07:17:54 +01:00			`});`
			`});`
			`}`