登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 0 Fork 0

mamh-mixed/nakabonne-ali

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
main.go 10.79 KB
一键复制 编辑 原始数据 按行查看 历史
nakabonne 提交于 2021-06-01 21:59 . Limit redraw interval to greater than 100ms
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376
package main



import (

	"crypto/tls"

	"crypto/x509"

	"errors"

	"fmt"

	"io"

	"io/ioutil"

	"log"

	"net"

	"net/http"

	"net/url"

	"os"

	"os/user"

	"path/filepath"

	"runtime"

	"strconv"

	"strings"

	"time"



	"github.com/nakabonne/ali/storage"



	flag "github.com/spf13/pflag"



	"github.com/nakabonne/ali/attacker"

	"github.com/nakabonne/ali/gui"

)



var (

	flagSet = flag.NewFlagSet("ali", flag.ContinueOnError)



	// Automatically populated by goreleaser during build

	version = "unversioned"

	commit  = "?"

	date    = "?"

)



type cli struct {

	// options for attacker

	rate               int

	duration           time.Duration

	timeout            time.Duration

	method             string

	headers            []string

	body               string

	bodyFile           string

	maxBody            int64

	workers            uint64

	maxWorkers         uint64

	connections        int

	noHTTP2            bool

	localAddress       string

	noKeepAlive        bool

	buckets            string

	resolvers          string

	insecureSkipVerify bool

	tlsCertFile        string

	tlsKeyFile         string

	caCert             string



	//options for gui

	queryRange     time.Duration

	redrawInterval time.Duration



	debug   bool

	version bool

	stdout  io.Writer

	stderr  io.Writer

}



func main() {

	c, err := parseFlags(os.Stdout, os.Stderr)

	if err != nil {

		os.Exit(0)

	}

	os.Exit(c.run(flagSet.Args()))

}



func parseFlags(stdout, stderr io.Writer) (*cli, error) {

	c := &cli{

		stdout: stdout,

		stderr: stderr,

	}

	flagSet.IntVarP(&c.rate, "rate", "r", attacker.DefaultRate, "The request rate per second to issue against the targets. Give 0 then it will send requests as fast as possible.")

	flagSet.DurationVarP(&c.duration, "duration", "d", attacker.DefaultDuration, "The amount of time to issue requests to the targets. Give 0s for an infinite attack.")

	flagSet.DurationVarP(&c.timeout, "timeout", "t", attacker.DefaultTimeout, "The timeout for each request. 0s means to disable timeouts.")

	flagSet.StringVarP(&c.method, "method", "m", attacker.DefaultMethod, "An HTTP request method for each request.")

	flagSet.StringArrayVarP(&c.headers, "header", "H", []string{}, "A request header to be sent. Can be used multiple times to send multiple headers.")

	flagSet.StringVarP(&c.body, "body", "b", "", "A request body to be sent.")

	flagSet.StringVarP(&c.bodyFile, "body-file", "B", "", "The path to file whose content will be set as the http request body.")

	flagSet.Int64VarP(&c.maxBody, "max-body", "M", attacker.DefaultMaxBody, "Max bytes to capture from response bodies. Give -1 for no limit.")

	flagSet.BoolVarP(&c.version, "version", "v", false, "Print the current version.")

	flagSet.BoolVar(&c.debug, "debug", false, "Run in debug mode.")

	flagSet.BoolVarP(&c.noKeepAlive, "no-keepalive", "K", false, "Don't use HTTP persistent connection.")

	flagSet.Uint64VarP(&c.workers, "workers", "w", attacker.DefaultWorkers, "Amount of initial workers to spawn.")

	flagSet.Uint64VarP(&c.maxWorkers, "max-workers", "W", attacker.DefaultMaxWorkers, "Amount of maximum workers to spawn.")

	flagSet.IntVarP(&c.connections, "connections", "c", attacker.DefaultConnections, "Amount of maximum open idle connections per target host")

	flagSet.BoolVar(&c.noHTTP2, "no-http2", false, "Don't issue HTTP/2 requests to servers which support it.")

	flagSet.StringVar(&c.localAddress, "local-addr", "0.0.0.0", "Local IP address.")

	flagSet.BoolVar(&c.insecureSkipVerify, "insecure", false, "Skip TLS verification")

	flagSet.StringVar(&c.caCert, "cacert", "", "PEM ca certificate file")

	flagSet.StringVar(&c.tlsCertFile, "cert", "", "PEM encoded tls certificate file to use")

	flagSet.StringVar(&c.tlsKeyFile, "key", "", "PEM encoded tls private key file to use")

	// TODO: Re-enable when making it capable of drawing histogram bar chart.

	//flagSet.StringVar(&c.buckets, "buckets", "", "Histogram buckets; comma-separated list.")

	flagSet.StringVar(&c.resolvers, "resolvers", "", "Custom DNS resolver addresses; comma-separated list.")

	flagSet.DurationVar(&c.queryRange, "query-range", gui.DefaultQueryRange, "The results within the given time range will be drawn on the charts")

	flagSet.DurationVar(&c.redrawInterval, "redraw-interval", gui.DefaultRedrawInterval, "Specify how often it redraws the screen")

	flagSet.Usage = c.usage

	if err := flagSet.Parse(os.Args[1:]); err != nil {

		if !errors.Is(err, flag.ErrHelp) {

			fmt.Fprintln(c.stderr, err)

		}

		return nil, err

	}

	return c, nil

}



func (c *cli) run(args []string) int {

	if c.version {

		fmt.Fprintf(c.stderr, "version=%s, commit=%s, buildDate=%s, os=%s, arch=%s\n", version, commit, date, runtime.GOOS, runtime.GOARCH)

		return 0

	}

	if len(args) == 0 {

		fmt.Fprintln(c.stderr, "no target given")

		c.usage()

		return 1

	}

	target := args[0]

	if _, err := url.ParseRequestURI(target); err != nil {

		fmt.Fprintf(c.stderr, "bad target URL: %v\n", err)

		c.usage()

		return 1

	}

	opts, err := c.makeAttackerOptions()

	if err != nil {

		fmt.Fprintln(c.stderr, err.Error())

		c.usage()

		return 1

	}



	// Data points out of query range get flushed to prevent using heap more than need.

	s, err := storage.NewStorage(c.queryRange * 2)

	if err != nil {

		fmt.Fprintf(c.stderr, "failed to initialize time-series storage: %v\n", err)

		c.usage()

		return 1

	}

	a, err := attacker.NewAttacker(s, target, opts)

	if err != nil {

		fmt.Fprintf(c.stderr, "failed to initialize attacker: %v\n", err)

		c.usage()

		return 1

	}

	setDebug(nil, c.debug)



	if err := gui.Run(target, s, a,

		gui.Options{

			QueryRange:     c.queryRange,

			RedrawInternal: c.redrawInterval,

		},

	); err != nil {

		fmt.Fprintf(c.stderr, "failed to start application: %s\n", err.Error())

		c.usage()

		return 1

	}

	return 0

}



func (c *cli) usage() {

	format := `Usage:

  ali [flags] <target URL>



Flags:

%s

Examples:

  ali --duration=10m --rate=100 http://host.xz



Author:

  Ryo Nakao <ryo@nakao.dev>

`

	fmt.Fprintf(c.stderr, format, flagSet.FlagUsages())

}



// makeAttackerOptions gives back an options for attacker, with the CLI input.

func (c *cli) makeAttackerOptions() (*attacker.Options, error) {

	if !validateMethod(c.method) {

		return nil, fmt.Errorf("given method %q isn't an HTTP request method", c.method)

	}

	if c.duration < 0 {

		return nil, fmt.Errorf("duration must be greater than or equal to 0s")

	}



	header := make(http.Header)

	for _, hdr := range c.headers {

		parts := strings.SplitN(hdr, ":", 2)

		if len(parts) != 2 {

			return nil, fmt.Errorf("given header %q has a wrong format", hdr)

		}

		key, val := strings.TrimSpace(parts[0]), strings.TrimSpace(parts[1])

		if key == "" || val == "" {

			return nil, fmt.Errorf("given header %q has a wrong format", hdr)

		}

		// NOTE: Add key/value directly to the http.Header (map[string][]string).

		// http.Header.Add() canonicalizes keys but the vegeta API is used to test systems that require case-sensitive headers.

		header[key] = append(header[key], val)

	}



	if c.body != "" && c.bodyFile != "" {

		return nil, fmt.Errorf(`only one of "--body" and "--body-file" can be specified`)

	}



	body := []byte(c.body)

	if c.bodyFile != "" {

		b, err := ioutil.ReadFile(c.bodyFile)

		if err != nil {

			return nil, fmt.Errorf("unable to open %q: %w", c.bodyFile, err)

		}

		body = b

	}



	localAddr := net.IPAddr{IP: net.ParseIP(c.localAddress)}



	parsedBuckets, err := parseBucketOptions(c.buckets)



	if err != nil {

		return nil, fmt.Errorf("wrong buckets format %w", err)

	}



	parsedResolvers, err := parseResolvers(c.resolvers)

	if err != nil {

		return nil, err

	}



	var certs []tls.Certificate

	if c.tlsCertFile != "" && c.tlsKeyFile != "" {

		cert, err := tls.LoadX509KeyPair(c.tlsCertFile, c.tlsKeyFile)

		if err != nil {

			return nil, fmt.Errorf("error loading PEM key pair %w", err)

		}



		certs = append(certs, cert)

	}



	var caCertPool *x509.CertPool

	if c.caCert != "" {

		caCertPool = x509.NewCertPool()

		caCert, err := ioutil.ReadFile(c.caCert)

		if err != nil {

			log.Fatal(err)

		}

		caCertPool.AppendCertsFromPEM(caCert)

	}



	return &attacker.Options{

		Rate:               c.rate,

		Duration:           c.duration,

		Timeout:            c.timeout,

		Method:             c.method,

		Body:               body,

		MaxBody:            c.maxBody,

		Header:             header,

		KeepAlive:          !c.noKeepAlive,

		Workers:            c.workers,

		MaxWorkers:         c.maxWorkers,

		Connections:        c.connections,

		HTTP2:              !c.noHTTP2,

		LocalAddr:          localAddr,

		Buckets:            parsedBuckets,

		Resolvers:          parsedResolvers,

		InsecureSkipVerify: c.insecureSkipVerify,

		TLSCertificates:    certs,

		CACertificatePool:  caCertPool,

	}, nil

}



func validateMethod(method string) bool {

	switch method {

	case http.MethodGet, http.MethodHead, http.MethodPost, http.MethodPut, http.MethodPatch, http.MethodDelete, http.MethodConnect, http.MethodOptions, http.MethodTrace:

		return true

	}

	return false

}



func parseBucketOptions(rawBuckets string) ([]time.Duration, error) {

	if rawBuckets == "" {

		return []time.Duration{}, nil

	}



	stringBuckets := strings.Split(rawBuckets, ",")

	result := make([]time.Duration, len(stringBuckets))



	for _, bucket := range stringBuckets {

		trimmedBucket := strings.TrimSpace(bucket)

		d, err := time.ParseDuration(trimmedBucket)

		if err != nil {

			return nil, err

		}

		result = append(result, d)

	}



	return result, nil

}



func parseResolvers(addrs string) ([]string, error) {

	if addrs == "" {

		return nil, nil

	}



	stringAddrs := strings.Split(addrs, ",")

	result := make([]string, 0, len(stringAddrs))



	for _, addr := range stringAddrs {

		trimmedAddr := strings.TrimSpace(addr)



		// if given address has no port, append "53"

		if !strings.Contains(trimmedAddr, ":") {

			trimmedAddr += ":53"

		}



		host, port, err := net.SplitHostPort(trimmedAddr)

		if err != nil {

			return nil, err

		}



		// validate port

		_, err = strconv.ParseUint(port, 10, 16)

		if err != nil {

			return nil, fmt.Errorf("port of given address %q has a wrong format", addr)

		}



		// validate IP

		if ip := net.ParseIP(host); ip == nil {

			return nil, fmt.Errorf("given address %q has a wrong format", addr)

		}



		result = append(result, trimmedAddr)

	}



	return result, nil

}



// Makes a new file under the ~/.config/ali only when debug use.

func setDebug(w io.Writer, debug bool) {

	if !debug {

		log.SetOutput(io.Discard)

		return

	}

	if w == nil {

		dir, err := configDir()

		if err != nil {

			panic(err)

		}

		if err := os.MkdirAll(dir, os.ModePerm); err != nil {

			panic(err)

		}

		w, err = os.OpenFile(filepath.Join(dir, "debug.log"), os.O_CREATE|os.O_WRONLY|os.O_APPEND, os.ModePerm)

		if err != nil {

			panic(err)

		}

	}

	log.SetOutput(w)

}



func configDir() (string, error) {

	usr, err := user.Current()

	if err == nil {

		return filepath.Join(usr.HomeDir, ".config", "ali"), nil

	}

	homeDir := os.Getenv("HOME")

	if homeDir == "" {

		return "", fmt.Errorf("unable to get current user home directory: os/user lookup failed; $HOME is empty")

	}

	return filepath.Join(homeDir, ".config", "ali"), nil

}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/mamh-mixed/nakabonne-ali.git
git@gitee.com:mamh-mixed/nakabonne-ali.git
mamh-mixed
nakabonne-ali
nakabonne-ali
master
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部
23e8dbc6 1850385 7e0993f3 1850385