stevazi/addon
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity
Files
1fd0da39f620428512c4e5de482d4a36df6686d8
addon/core/resolverdns.py
python2-kod 067c481749 clean
2024-02-17 07:28:50 +01:00

115 lines
4.5 KiB
Python
Raw Blame History

# -*- coding: utf-8 -*-
import datetime, sys, ssl
PY3 = False
if sys.version_info[0] >= 3: PY3 = True; unicode = str; unichr = chr; long = int
if PY3:
import urllib.parse as urlparse
import _ssl
DEFAULT_CIPHERS = _ssl._DEFAULT_CIPHERS
else:
import urlparse
DEFAULT_CIPHERS = ssl._DEFAULT_CIPHERS
from lib.requests_toolbelt.adapters import host_header_ssl
from lib import doh
from platformcode import logger
import requests
from core import scrapertools
from core import db
from urllib3.poolmanager import PoolManager
from urllib3.util.ssl_ import create_urllib3_context
from urllib3.util import connection
from requests.adapters import HTTPAdapter
if 'PROTOCOL_TLS' in ssl.__dict__:
protocol = ssl.PROTOCOL_TLS
elif 'PROTOCOL_SSLv23' in ssl.__dict__:
protocol = ssl.PROTOCOL_SSLv23
else:
protocol = ssl.PROTOCOL_SSLv3
current_date = datetime.datetime.now()
CIPHERS = "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384"
class CipherSuiteAdapter(HTTPAdapter):
def __init__(self, domain, ssl_options=ssl.OP_NO_TLSv1 | ssl.OP_NO_TLSv1_1, override_dns = True, ssl_ciphers = CIPHERS, **kwargs):
self.ssl_options = ssl_options
self.ssl_ciphers = ssl_ciphers
super(CipherSuiteAdapter, self).__init__(**kwargs)
if override_dns:
# hack[1/3] to patch urllib3 create connection
if not hasattr(connection, 'original_create_connection'):
connection.original_create_connection = connection.create_connection
# hack[2/3] function that use doh for host name resolution
def override_dns_connection(address, *args, **kwargs):
"""Wrap urllib3's create_connection to resolve the name elsewhere"""
# resolve hostname to an ip address; use your own
# resolver here, as otherwise the system resolver will be used.
host, port = address
hostname = self.getIp(host)
if not hostname:
hostname = host #fallback
logger.debug("Override dns failed, fallback to normal dns resolver")
return connection.original_create_connection((hostname, port), *args, **kwargs)
# hack[3/3] patch urllib3 create connection with custom function
connection.create_connection = override_dns_connection
def flushDns(domain, **kwargs):
del db['dnscache'][domain]
def getIp(self, domain):
cache = db['dnscache'].get(domain, {})
ip = None
if type(cache) != dict or (cache.get('datetime') and
current_date - cache.get('datetime') > datetime.timedelta(hours=1)):
cache = None
if not cache: # not cached
try:
ip = doh.query(domain)[0]
logger.info('Query DoH: ' + domain + ' = ' + str(ip))
# IPv6 address
if ':' in ip:
ip = '[' + ip + ']'
self.writeToCache(domain, ip)
except Exception:
logger.error('Failed to resolve hostname, fallback to normal dns')
import traceback
logger.error(traceback.format_exc())
else:
ip = cache.get('ip')
logger.info('Cache DNS: ' + domain + ' = ' + str(ip))
return ip
def writeToCache(self, domain, ip):
db['dnscache'][domain] = {'ip': ip, 'datetime': current_date}
def init_poolmanager(self, *pool_args, **pool_kwargs):
ctx = create_urllib3_context(ciphers=self.ssl_ciphers, cert_reqs=ssl.CERT_REQUIRED, options=self.ssl_options)
self.poolmanager = PoolManager(*pool_args, ssl_context=ctx, **pool_kwargs)
def send(self, request, flushedDns=False, **kwargs):
try:
return super(CipherSuiteAdapter, self).send(request, **kwargs)
except (requests.exceptions.HTTPError, requests.exceptions.ConnectionError, requests.exceptions.SSLError) as e:
logger.info(e)
try:
parse = urlparse.urlparse(request.url)
except:
raise requests.exceptions.InvalidURL
if parse.netloc:
domain = parse.netloc
logger.info('Request for ' + domain + ' failed')
if not flushedDns:
logger.info('Flushing dns cache for ' + domain)
CipherSuiteAdapter.flushDns(domain, **kwargs)
return self.send(request, flushedDns=True, **kwargs)
except Exception as e:
logger.error(e)
raise e
Reference in New Issue View Git Blame Copy Permalink