mirror of
https://github.com/minio/minio.git
synced 2025-01-08 05:23:24 -05:00
dd2542e96c
Original work here, #18474, refixed and updated.
363 lines
9.3 KiB
Go
363 lines
9.3 KiB
Go
// Copyright (c) 2015-2021 MinIO, Inc.
|
|
//
|
|
// This file is part of MinIO Object Storage stack
|
|
//
|
|
// This program is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU Affero General Public License as published by
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
// (at your option) any later version.
|
|
//
|
|
// This program is distributed in the hope that it will be useful
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU Affero General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU Affero General Public License
|
|
// along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
package cmd
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"net"
|
|
"net/url"
|
|
"runtime"
|
|
"sort"
|
|
"strings"
|
|
|
|
"github.com/minio/minio-go/v7/pkg/set"
|
|
"github.com/minio/minio/internal/config"
|
|
"github.com/minio/minio/internal/logger"
|
|
xnet "github.com/minio/pkg/v2/net"
|
|
)
|
|
|
|
// IPv4 addresses of local host.
|
|
var localIP4 = mustGetLocalIP4()
|
|
|
|
// mustSplitHostPort is a wrapper to net.SplitHostPort() where error is assumed to be a fatal.
|
|
func mustSplitHostPort(hostPort string) (host, port string) {
|
|
xh, err := xnet.ParseHost(hostPort)
|
|
if err != nil {
|
|
logger.FatalIf(err, "Unable to split host port %s", hostPort)
|
|
}
|
|
return xh.Name, xh.Port.String()
|
|
}
|
|
|
|
// mustGetLocalIPs returns IPs of local interface
|
|
func mustGetLocalIPs() (ipList []net.IP) {
|
|
ifs, err := net.Interfaces()
|
|
logger.FatalIf(err, "Unable to get IP addresses of this host")
|
|
|
|
for _, interf := range ifs {
|
|
addrs, err := interf.Addrs()
|
|
if err != nil {
|
|
continue
|
|
}
|
|
if runtime.GOOS == "windows" && interf.Flags&net.FlagUp == 0 {
|
|
continue
|
|
}
|
|
|
|
for _, addr := range addrs {
|
|
var ip net.IP
|
|
switch v := addr.(type) {
|
|
case *net.IPNet:
|
|
ip = v.IP
|
|
case *net.IPAddr:
|
|
ip = v.IP
|
|
}
|
|
|
|
ipList = append(ipList, ip)
|
|
}
|
|
}
|
|
|
|
return ipList
|
|
}
|
|
|
|
// mustGetLocalIP4 returns IPv4 addresses of localhost. It panics on error.
|
|
func mustGetLocalIP4() (ipList set.StringSet) {
|
|
ipList = set.NewStringSet()
|
|
for _, ip := range mustGetLocalIPs() {
|
|
if ip.To4() != nil {
|
|
ipList.Add(ip.String())
|
|
}
|
|
}
|
|
return
|
|
}
|
|
|
|
// mustGetLocalIP6 returns IPv6 addresses of localhost. It panics on error.
|
|
func mustGetLocalIP6() (ipList set.StringSet) {
|
|
ipList = set.NewStringSet()
|
|
for _, ip := range mustGetLocalIPs() {
|
|
if ip.To4() == nil {
|
|
ipList.Add(ip.String())
|
|
}
|
|
}
|
|
return
|
|
}
|
|
|
|
// getHostIP returns IP address of given host.
|
|
func getHostIP(host string) (ipList set.StringSet, err error) {
|
|
addrs, err := globalDNSCache.LookupHost(GlobalContext, host)
|
|
if err != nil {
|
|
return ipList, err
|
|
}
|
|
|
|
ipList = set.NewStringSet()
|
|
for _, addr := range addrs {
|
|
ipList.Add(addr)
|
|
}
|
|
|
|
return ipList, err
|
|
}
|
|
|
|
// sortIPs - sort ips based on higher octets.
|
|
// The logic to sort by last octet is implemented to
|
|
// prefer CIDRs with higher octets, this in-turn skips the
|
|
// localhost/loopback address to be not preferred as the
|
|
// first ip on the list. Subsequently this list helps us print
|
|
// a user friendly message with appropriate values.
|
|
func sortIPs(ipList []string) []string {
|
|
if len(ipList) == 1 {
|
|
return ipList
|
|
}
|
|
|
|
var ipV4s []net.IP
|
|
var nonIPs []string
|
|
for _, ip := range ipList {
|
|
nip := net.ParseIP(ip)
|
|
if nip != nil {
|
|
ipV4s = append(ipV4s, nip)
|
|
} else {
|
|
nonIPs = append(nonIPs, ip)
|
|
}
|
|
}
|
|
|
|
sort.Slice(ipV4s, func(i, j int) bool {
|
|
// This case is needed when all ips in the list
|
|
// have same last octets, Following just ensures that
|
|
// 127.0.0.1 is moved to the end of the list.
|
|
if ipV4s[i].IsLoopback() {
|
|
return false
|
|
}
|
|
if ipV4s[j].IsLoopback() {
|
|
return true
|
|
}
|
|
return []byte(ipV4s[i].To4())[3] > []byte(ipV4s[j].To4())[3]
|
|
})
|
|
|
|
var ips []string
|
|
for _, ip := range ipV4s {
|
|
ips = append(ips, ip.String())
|
|
}
|
|
|
|
return append(nonIPs, ips...)
|
|
}
|
|
|
|
func getConsoleEndpoints() (consoleEndpoints []string) {
|
|
if globalBrowserRedirectURL != nil {
|
|
return []string{globalBrowserRedirectURL.String()}
|
|
}
|
|
var ipList []string
|
|
if globalMinioConsoleHost == "" {
|
|
ipList = sortIPs(mustGetLocalIP4().ToSlice())
|
|
ipList = append(ipList, mustGetLocalIP6().ToSlice()...)
|
|
} else {
|
|
ipList = []string{globalMinioConsoleHost}
|
|
}
|
|
|
|
for _, ip := range ipList {
|
|
endpoint := fmt.Sprintf("%s://%s", getURLScheme(globalIsTLS), net.JoinHostPort(ip, globalMinioConsolePort))
|
|
consoleEndpoints = append(consoleEndpoints, endpoint)
|
|
}
|
|
|
|
return consoleEndpoints
|
|
}
|
|
|
|
func getAPIEndpoints() (apiEndpoints []string) {
|
|
if globalMinioEndpoint != "" {
|
|
return []string{globalMinioEndpoint}
|
|
}
|
|
var ipList []string
|
|
if globalMinioHost == "" {
|
|
ipList = sortIPs(mustGetLocalIP4().ToSlice())
|
|
ipList = append(ipList, mustGetLocalIP6().ToSlice()...)
|
|
} else {
|
|
ipList = []string{globalMinioHost}
|
|
}
|
|
|
|
for _, ip := range ipList {
|
|
endpoint := fmt.Sprintf("%s://%s", getURLScheme(globalIsTLS), net.JoinHostPort(ip, globalMinioPort))
|
|
apiEndpoints = append(apiEndpoints, endpoint)
|
|
}
|
|
|
|
return apiEndpoints
|
|
}
|
|
|
|
// isHostIP - helper for validating if the provided arg is an ip address.
|
|
func isHostIP(ipAddress string) bool {
|
|
host, _, err := net.SplitHostPort(ipAddress)
|
|
if err != nil {
|
|
host = ipAddress
|
|
}
|
|
// Strip off IPv6 zone information.
|
|
if i := strings.Index(host, "%"); i > -1 {
|
|
host = host[:i]
|
|
}
|
|
return net.ParseIP(host) != nil
|
|
}
|
|
|
|
// extractHostPort - extracts host/port from many address formats
|
|
// such as, ":9000", "localhost:9000", "http://localhost:9000/"
|
|
func extractHostPort(hostAddr string) (string, string, error) {
|
|
var addr, scheme string
|
|
|
|
if hostAddr == "" {
|
|
return "", "", errors.New("unable to process empty address")
|
|
}
|
|
|
|
// Simplify the work of url.Parse() and always send a url with
|
|
if !strings.HasPrefix(hostAddr, "http://") && !strings.HasPrefix(hostAddr, "https://") {
|
|
hostAddr = "//" + hostAddr
|
|
}
|
|
|
|
// Parse address to extract host and scheme field
|
|
u, err := url.Parse(hostAddr)
|
|
if err != nil {
|
|
return "", "", err
|
|
}
|
|
|
|
addr = u.Host
|
|
scheme = u.Scheme
|
|
|
|
// Use the given parameter again if url.Parse()
|
|
// didn't return any useful result.
|
|
if addr == "" {
|
|
addr = hostAddr
|
|
scheme = "http"
|
|
}
|
|
|
|
// At this point, addr can be one of the following form:
|
|
// ":9000"
|
|
// "localhost:9000"
|
|
// "localhost" <- in this case, we check for scheme
|
|
|
|
host, port, err := net.SplitHostPort(addr)
|
|
if err != nil {
|
|
if !strings.Contains(err.Error(), "missing port in address") {
|
|
return "", "", err
|
|
}
|
|
|
|
host = addr
|
|
|
|
switch scheme {
|
|
case "https":
|
|
port = "443"
|
|
case "http":
|
|
port = "80"
|
|
default:
|
|
return "", "", errors.New("unable to guess port from scheme")
|
|
}
|
|
}
|
|
|
|
return host, port, nil
|
|
}
|
|
|
|
// isLocalHost - checks if the given parameter
|
|
// correspond to one of the local IP of the
|
|
// current machine
|
|
func isLocalHost(host string, port string, localPort string) (bool, error) {
|
|
hostIPs, err := getHostIP(host)
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
|
|
nonInterIPV4s := mustGetLocalIP4().Intersection(hostIPs)
|
|
if nonInterIPV4s.IsEmpty() {
|
|
hostIPs = hostIPs.ApplyFunc(func(ip string) string {
|
|
if net.ParseIP(ip).IsLoopback() {
|
|
// Any loopback IP which is not 127.0.0.1
|
|
// convert it to check for intersections.
|
|
return "127.0.0.1"
|
|
}
|
|
return ip
|
|
})
|
|
nonInterIPV4s = mustGetLocalIP4().Intersection(hostIPs)
|
|
}
|
|
nonInterIPV6s := mustGetLocalIP6().Intersection(hostIPs)
|
|
|
|
// If intersection of two IP sets is not empty, then the host is localhost.
|
|
isLocalv4 := !nonInterIPV4s.IsEmpty()
|
|
isLocalv6 := !nonInterIPV6s.IsEmpty()
|
|
if port != "" {
|
|
return (isLocalv4 || isLocalv6) && (port == localPort), nil
|
|
}
|
|
return isLocalv4 || isLocalv6, nil
|
|
}
|
|
|
|
// sameLocalAddrs - returns true if two addresses, even with different
|
|
// formats, point to the same machine, e.g:
|
|
//
|
|
// ':9000' and 'http://localhost:9000/' will return true
|
|
func sameLocalAddrs(addr1, addr2 string) (bool, error) {
|
|
// Extract host & port from given parameters
|
|
host1, port1, err := extractHostPort(addr1)
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
host2, port2, err := extractHostPort(addr2)
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
|
|
var addr1Local, addr2Local bool
|
|
|
|
if host1 == "" {
|
|
// If empty host means it is localhost
|
|
addr1Local = true
|
|
} else if addr1Local, err = isLocalHost(host1, port1, port1); err != nil {
|
|
// Host not empty, check if it is local
|
|
return false, err
|
|
}
|
|
|
|
if host2 == "" {
|
|
// If empty host means it is localhost
|
|
addr2Local = true
|
|
} else if addr2Local, err = isLocalHost(host2, port2, port2); err != nil {
|
|
// Host not empty, check if it is local
|
|
return false, err
|
|
}
|
|
|
|
// If both of addresses point to the same machine, check if
|
|
// have the same port
|
|
if addr1Local && addr2Local {
|
|
if port1 == port2 {
|
|
return true, nil
|
|
}
|
|
}
|
|
return false, nil
|
|
}
|
|
|
|
// CheckLocalServerAddr - checks if serverAddr is valid and local host.
|
|
func CheckLocalServerAddr(serverAddr string) error {
|
|
host, err := xnet.ParseHost(serverAddr)
|
|
if err != nil {
|
|
return config.ErrInvalidAddressFlag(err)
|
|
}
|
|
|
|
// 0.0.0.0 is a wildcard address and refers to local network
|
|
// addresses. I.e, 0.0.0.0:9000 like ":9000" refers to port
|
|
// 9000 on localhost.
|
|
if host.Name != "" && host.Name != net.IPv4zero.String() && host.Name != net.IPv6zero.String() {
|
|
localHost, err := isLocalHost(host.Name, host.Port.String(), host.Port.String())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if !localHost {
|
|
return config.ErrInvalidAddressFlag(nil).Msg("host in server address should be this server")
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|