Compare commits
5 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
|
9ce32284fb | ||
|
|
fdd4fab348 | ||
|
|
fa72ab315e | ||
|
|
b5011c6b6b | ||
|
|
da5c041c97 |
@@ -1,6 +1,6 @@
|
||||
[package]
|
||||
name = "leaf-bin"
|
||||
version = "0.9.1"
|
||||
version = "0.9.2"
|
||||
authors = ["eycorsican <eric.y.corsican@gmail.com>"]
|
||||
edition = "2021"
|
||||
|
||||
|
||||
@@ -989,6 +989,7 @@ pub fn to_internal(conf: &mut Config) -> Result<internal::Config> {
|
||||
if let Some(ext_sni) = &ext_proxy.sni {
|
||||
quic_settings.server_name = ext_sni.clone();
|
||||
}
|
||||
quic_settings.alpn = vec!["http/1.1".to_string()];
|
||||
if let Some(ext_tls_cert) = &ext_proxy.tls_cert {
|
||||
let cert = Path::new(ext_tls_cert);
|
||||
if cert.is_absolute() {
|
||||
|
||||
@@ -96,6 +96,8 @@ impl OutboundDatagramHandler for Handler {
|
||||
|
||||
let schedule = self.schedule.lock().await.clone();
|
||||
|
||||
// Use the last resort outbound if all outbounds have failed in
|
||||
// the last health check.
|
||||
if schedule.is_empty() && self.last_resort.is_some() {
|
||||
let a = &self.last_resort.as_ref().unwrap();
|
||||
debug!(
|
||||
@@ -163,6 +165,23 @@ impl OutboundDatagramHandler for Handler {
|
||||
}
|
||||
}
|
||||
|
||||
// Use the last resort outbound if all scheduled outbounds have
|
||||
// failed.
|
||||
if let Some(a) = self.last_resort.as_ref() {
|
||||
debug!(
|
||||
"failover handles udp [{}] to last resort [{}]",
|
||||
sess.destination,
|
||||
a.tag()
|
||||
);
|
||||
return a
|
||||
.datagram()?
|
||||
.handle(
|
||||
sess,
|
||||
connect_datagram_outbound(sess, self.dns_client.clone(), a).await?,
|
||||
)
|
||||
.await;
|
||||
}
|
||||
|
||||
Err(io::Error::new(
|
||||
io::ErrorKind::Other,
|
||||
"all outbound attempts failed",
|
||||
|
||||
@@ -135,6 +135,8 @@ impl OutboundStreamHandler for Handler {
|
||||
|
||||
let schedule = self.schedule.lock().await.clone();
|
||||
|
||||
// Use the last resort outbound if all outbounds have failed in
|
||||
// the last health check.
|
||||
if schedule.is_empty() && self.last_resort.is_some() {
|
||||
let a = &self.last_resort.as_ref().unwrap();
|
||||
debug!(
|
||||
@@ -212,6 +214,21 @@ impl OutboundStreamHandler for Handler {
|
||||
}
|
||||
}
|
||||
|
||||
if let Some(a) = self.last_resort.as_ref() {
|
||||
debug!(
|
||||
"failover handles tcp [{}] to last resort [{}]",
|
||||
sess.destination,
|
||||
a.tag()
|
||||
);
|
||||
return a
|
||||
.stream()?
|
||||
.handle(
|
||||
sess,
|
||||
connect_stream_outbound(sess, self.dns_client.clone(), a).await?,
|
||||
)
|
||||
.await;
|
||||
}
|
||||
|
||||
Err(io::Error::new(
|
||||
io::ErrorKind::Other,
|
||||
"all outbound attempts failed",
|
||||
|
||||
@@ -149,7 +149,7 @@ impl Manager {
|
||||
self.dns_client
|
||||
.read()
|
||||
.await
|
||||
.lookup(&self.address)
|
||||
.direct_lookup(&self.address)
|
||||
.map_err(|e| {
|
||||
io::Error::new(
|
||||
io::ErrorKind::Other,
|
||||
|
||||
@@ -31,7 +31,7 @@ mod dangerous {
|
||||
use std::time::SystemTime;
|
||||
use tokio_rustls::rustls::{
|
||||
client::{ServerCertVerified, ServerCertVerifier},
|
||||
Certificate, ServerName,
|
||||
Certificate, Error, ServerName,
|
||||
};
|
||||
|
||||
pub(super) struct NotVerified;
|
||||
@@ -45,7 +45,7 @@ mod dangerous {
|
||||
_scts: &mut dyn Iterator<Item = &[u8]>,
|
||||
_ocsp_response: &[u8],
|
||||
_now: SystemTime,
|
||||
) -> core::result::Result<ServerCertVerified, rustls::Error> {
|
||||
) -> core::result::Result<ServerCertVerified, Error> {
|
||||
log::debug!("TLS cert for {:?} not verified", server_name);
|
||||
Ok(ServerCertVerified::assertion())
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user