2018-04-02 13:16:13 +02:00
|
|
|
import { request } from 'https';
|
2019-02-01 11:59:12 +01:00
|
|
|
import { sign } from 'http-signature';
|
2019-01-30 03:51:29 +01:00
|
|
|
import * as crypto from 'crypto';
|
2019-01-31 09:53:49 +01:00
|
|
|
import { lookup, IRunOptions } from 'lookup-dns-cache';
|
2019-01-31 09:52:27 +01:00
|
|
|
import * as promiseAny from 'promise-any';
|
2018-04-05 11:43:06 +02:00
|
|
|
|
2018-04-09 19:12:17 +02:00
|
|
|
import config from '../../config';
|
2019-04-07 14:50:36 +02:00
|
|
|
import { ILocalUser } from '../../models/entities/user';
|
2019-02-05 06:14:23 +01:00
|
|
|
import { publishApLogStream } from '../../services/stream';
|
2019-02-02 20:18:27 +01:00
|
|
|
import { apLogger } from './logger';
|
2019-06-15 10:09:59 +02:00
|
|
|
import { UserKeypairs, Instances } from '../../models';
|
2019-04-24 01:11:19 +02:00
|
|
|
import { fetchMeta } from '../../misc/fetch-meta';
|
2019-04-09 17:59:41 +02:00
|
|
|
import { toPuny } from '../../misc/convert-host';
|
2019-04-12 18:43:22 +02:00
|
|
|
import { ensure } from '../../prelude/ensure';
|
2018-04-02 13:16:13 +02:00
|
|
|
|
2019-02-02 20:18:27 +01:00
|
|
|
export const logger = apLogger.createSubLogger('deliver');
|
2018-04-05 11:43:06 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
export default async (user: ILocalUser, url: string, object: any) => {
|
2018-10-04 18:58:41 +02:00
|
|
|
const timeout = 10 * 1000;
|
|
|
|
|
2019-01-09 07:17:54 +01:00
|
|
|
const { protocol, host, hostname, port, pathname, search } = new URL(url);
|
2018-04-02 13:16:13 +02:00
|
|
|
|
2019-02-07 20:26:43 +01:00
|
|
|
// ブロックしてたら中断
|
2019-04-07 14:50:36 +02:00
|
|
|
const meta = await fetchMeta();
|
2019-06-15 10:09:59 +02:00
|
|
|
if (meta.blockedHosts.includes(toPuny(host))) {
|
|
|
|
logger.info(`skip (blocked) ${url}`);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// closedなら中断
|
|
|
|
const closedHosts = await Instances.find({
|
|
|
|
where: {
|
|
|
|
isMarkedAsClosed: true
|
|
|
|
},
|
|
|
|
cache: 60 * 1000
|
|
|
|
});
|
|
|
|
if (closedHosts.map(x => x.host).includes(toPuny(host))) {
|
|
|
|
logger.info(`skip (closed) ${url}`);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
logger.info(`--> ${url}`);
|
2019-02-07 20:26:43 +01:00
|
|
|
|
2018-08-30 13:52:35 +02:00
|
|
|
const data = JSON.stringify(object);
|
|
|
|
|
|
|
|
const sha256 = crypto.createHash('sha256');
|
|
|
|
sha256.update(data);
|
|
|
|
const hash = sha256.digest('base64');
|
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
const addr = await resolveAddr(hostname);
|
2019-01-09 07:17:54 +01:00
|
|
|
if (!addr) return;
|
|
|
|
|
2019-04-07 14:50:36 +02:00
|
|
|
const keypair = await UserKeypairs.findOne({
|
|
|
|
userId: user.id
|
2019-04-12 18:43:22 +02:00
|
|
|
}).then(ensure);
|
2019-04-07 14:50:36 +02:00
|
|
|
|
2019-04-14 10:18:17 +02:00
|
|
|
await new Promise((resolve, reject) => {
|
2019-03-08 11:45:01 +01:00
|
|
|
const req = request({
|
|
|
|
protocol,
|
|
|
|
hostname: addr,
|
|
|
|
setHost: false,
|
|
|
|
port,
|
|
|
|
method: 'POST',
|
|
|
|
path: pathname + search,
|
|
|
|
timeout,
|
|
|
|
headers: {
|
|
|
|
'Host': host,
|
|
|
|
'User-Agent': config.userAgent,
|
|
|
|
'Content-Type': 'application/activity+json',
|
|
|
|
'Digest': `SHA-256=${hash}`
|
|
|
|
}
|
|
|
|
}, res => {
|
2019-04-12 18:43:22 +02:00
|
|
|
if (res.statusCode! >= 400) {
|
2019-03-08 11:45:01 +01:00
|
|
|
logger.warn(`${url} --> ${res.statusCode}`);
|
|
|
|
reject(res);
|
|
|
|
} else {
|
|
|
|
logger.succ(`${url} --> ${res.statusCode}`);
|
|
|
|
resolve();
|
|
|
|
}
|
|
|
|
});
|
2018-04-02 13:16:13 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
sign(req, {
|
|
|
|
authorizationHeaderName: 'Signature',
|
2019-04-07 20:35:02 +02:00
|
|
|
key: keypair.privateKey,
|
2019-04-07 14:50:36 +02:00
|
|
|
keyId: `${config.url}/users/${user.id}/publickey`,
|
2019-03-08 11:45:01 +01:00
|
|
|
headers: ['date', 'host', 'digest']
|
|
|
|
});
|
|
|
|
|
|
|
|
// Signature: Signature ... => Signature: ...
|
2019-04-12 18:43:22 +02:00
|
|
|
let sig = req.getHeader('Signature')!.toString();
|
2019-03-08 11:45:01 +01:00
|
|
|
sig = sig.replace(/^Signature /, '');
|
|
|
|
req.setHeader('Signature', sig);
|
2018-04-02 13:16:13 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
req.on('timeout', () => req.abort());
|
2018-04-21 17:41:07 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
req.on('error', e => {
|
|
|
|
if (req.aborted) reject('timeout');
|
|
|
|
reject(e);
|
|
|
|
});
|
2018-10-04 18:58:41 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
req.end(data);
|
2018-10-04 18:58:41 +02:00
|
|
|
});
|
|
|
|
|
2018-11-03 03:38:00 +01:00
|
|
|
//#region Log
|
|
|
|
publishApLogStream({
|
|
|
|
direction: 'out',
|
|
|
|
activity: object.type,
|
|
|
|
host: null,
|
|
|
|
actor: user.username
|
|
|
|
});
|
|
|
|
//#endregion
|
2019-03-08 11:45:01 +01:00
|
|
|
};
|
2019-01-09 07:17:54 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Resolve host (with cached, asynchrony)
|
|
|
|
*/
|
|
|
|
async function resolveAddr(domain: string) {
|
2019-05-07 10:49:25 +02:00
|
|
|
const af = config.outgoingAddressFamily || 'ipv4';
|
|
|
|
const useV4 = af == 'ipv4' || af == 'dual';
|
|
|
|
const useV6 = af == 'ipv6' || af == 'dual';
|
|
|
|
|
|
|
|
const promises = [];
|
|
|
|
|
|
|
|
if (!useV4 && !useV6) throw 'No usable address family available';
|
|
|
|
if (useV4) promises.push(resolveAddrInner(domain, { family: 4 }));
|
|
|
|
if (useV6) promises.push(resolveAddrInner(domain, { family: 6 }));
|
|
|
|
|
2019-01-09 07:17:54 +01:00
|
|
|
// v4/v6で先に取得できた方を採用する
|
2019-05-07 10:49:25 +02:00
|
|
|
return await promiseAny(promises);
|
2019-01-09 07:17:54 +01:00
|
|
|
}
|
|
|
|
|
2019-01-31 09:53:49 +01:00
|
|
|
function resolveAddrInner(domain: string, options: IRunOptions = {}): Promise<string> {
|
2019-01-09 07:17:54 +01:00
|
|
|
return new Promise((res, rej) => {
|
2019-04-12 18:43:22 +02:00
|
|
|
lookup(domain, options, (error, address) => {
|
2019-01-09 07:17:54 +01:00
|
|
|
if (error) return rej(error);
|
2019-01-31 09:53:49 +01:00
|
|
|
return res(Array.isArray(address) ? address[0] : address);
|
2019-01-09 07:17:54 +01:00
|
|
|
});
|
|
|
|
});
|
|
|
|
}
|