vikarti.anatra/safing-portmaster
1
0
Fork 0
mirror of https://github.com/safing/portmaster synced 2025-09-02 10:39:22 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Merge pull request #51 from safing/feature/new-geoipdb

Browse source 
Update to new geoip database
This commit is contained in:
Daniel 2020-05-18 15:52:06 +02:00 committed by GitHub
commit cdcf8b75dd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 53 additions and 30 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

48
intel/geoip/database.go
View file

@ -14,12 +14,12 @@ import (
) )
var ( var (
dbCityFile *updater.File geoDBv4File *updater.File
dbASNFile *updater.File geoDBv6File *updater.File
dbFileLock sync.Mutex dbFileLock sync.Mutex
dbCity *maxminddb.Reader geoDBv4Reader *maxminddb.Reader
dbASN *maxminddb.Reader geoDBv6Reader *maxminddb.Reader
dbLock sync.Mutex dbLock sync.Mutex
dbInUse = abool.NewBool(false) // only activate if used for first time dbInUse = abool.NewBool(false) // only activate if used for first time
@ -51,7 +51,11 @@ func doReload() error {
// reload if needed // reload if needed
if dbDoReload.SetToIf(true, false) { if dbDoReload.SetToIf(true, false) {
closeDBs() closeDBs()
return openDBs() if err := openDBs(); err != nil {
// try again the next time
dbDoReload.SetTo(true)
return err
}
} }
return nil return nil
@ -59,23 +63,33 @@ func doReload() error {
func openDBs() error { func openDBs() error {
var err error var err error
dbCityFile, err = updates.GetFile("intel/geoip/geoip-city.mmdb")
geoDBv4File, err = updates.GetFile("intel/geoip/geoipv4.mmdb.gz")
if err != nil { if err != nil {
return fmt.Errorf("could not get GeoIP City database file: %s", err) return fmt.Errorf("could not get GeoIP v4 database file: %s", err)
} }
dbCity, err = maxminddb.Open(dbCityFile.Path()) unpackedV4, err := geoDBv4File.Unpack(".gz", updater.UnpackGZIP)
if err != nil {
return err
}
geoDBv4Reader, err = maxminddb.Open(unpackedV4)
if err != nil { if err != nil {
return err return err
} }
dbASNFile, err = updates.GetFile("intel/geoip/geoip-asn.mmdb") geoDBv6File, err = updates.GetFile("intel/geoip/geoipv6.mmdb.gz")
if err != nil { if err != nil {
return fmt.Errorf("could not get GeoIP ASN database file: %s", err) return fmt.Errorf("could not get GeoIP v6 database file: %s", err)
} }
dbASN, err = maxminddb.Open(dbASNFile.Path()) unpackedV6, err := geoDBv6File.Unpack(".gz", updater.UnpackGZIP)
if err != nil { if err != nil {
return err return err
} }
geoDBv6Reader, err = maxminddb.Open(unpackedV6)
if err != nil {
return err
}
return nil return nil
} }
@ -85,19 +99,19 @@ func handleError(err error) {
} }
func closeDBs() { func closeDBs() {
if dbCity != nil { if geoDBv4Reader != nil {
err := dbCity.Close() err := geoDBv4Reader.Close()
if err != nil { if err != nil {
log.Warningf("network/geoip: failed to close database: %s", err) log.Warningf("network/geoip: failed to close database: %s", err)
} }
} }
dbCity = nil geoDBv4Reader = nil
if dbASN != nil { if geoDBv6Reader != nil {
err := dbASN.Close() err := geoDBv6Reader.Close()
if err != nil { if err != nil {
log.Warningf("network/geoip: failed to close database: %s", err) log.Warningf("network/geoip: failed to close database: %s", err)
} }
} }
dbASN = nil geoDBv6Reader = nil
} }

25
intel/geoip/lookup.go
View file

@ -2,8 +2,18 @@ package geoip
import ( import (
"net" "net"
"github.com/oschwald/maxminddb-golang"
"github.com/safing/portbase/log"
) )
func getReader(ip net.IP) *maxminddb.Reader {
if v4 := ip.To4(); v4 != nil {
return geoDBv4Reader
}
return geoDBv6Reader
}
// GetLocation returns Location data of an IP address // GetLocation returns Location data of an IP address
func GetLocation(ip net.IP) (record *Location, err error) { func GetLocation(ip net.IP) (record *Location, err error) {
dbLock.Lock() dbLock.Lock()
@ -14,13 +24,12 @@ func GetLocation(ip net.IP) (record *Location, err error) {
return nil, err return nil, err
} }
db := getReader(ip)
record = &Location{} record = &Location{}
// fetch // fetch
err = dbCity.Lookup(ip, record) err = db.Lookup(ip, record)
if err == nil {
err = dbASN.Lookup(ip, record)
}
// retry // retry
if err != nil { if err != nil {
@ -30,17 +39,17 @@ func GetLocation(ip net.IP) (record *Location, err error) {
if err != nil { if err != nil {
return nil, err return nil, err
} }
db = getReader(ip)
// refetch // refetch
err = dbCity.Lookup(ip, record) err = db.Lookup(ip, record)
if err == nil {
err = dbASN.Lookup(ip, record)
}
} }
if err != nil { if err != nil {
return nil, err return nil, err
} }
log.Tracef("geoip: record: %+v", record)
return record, nil return record, nil
} }

4
intel/geoip/module.go
View file

@ -27,10 +27,10 @@ func prep() error {
func upgradeDatabases(_ context.Context, _ interface{}) error { func upgradeDatabases(_ context.Context, _ interface{}) error {
dbFileLock.Lock() dbFileLock.Lock()
reload := false reload := false
if dbCityFile != nil && dbCityFile.UpgradeAvailable() { if geoDBv4File != nil && geoDBv4File.UpgradeAvailable() {
reload = true reload = true
} }
if dbASNFile != nil && dbASNFile.UpgradeAvailable() { if geoDBv6File != nil && geoDBv6File.UpgradeAvailable() {
reload = true reload = true
} }
dbFileLock.Unlock() dbFileLock.Unlock()

2
profile/endpoints/endpoints_test.go
View file

@ -322,7 +322,7 @@ func TestEndpointMatching(t *testing.T) {
} }
testEndpointMatch(t, ep, (&intel.Entity{ testEndpointMatch(t, ep, (&intel.Entity{
IP: net.ParseIP("1.1.1.1"), IP: net.ParseIP("1.1.1.2"),
}).Init(), Permitted) }).Init(), Permitted)
testEndpointMatch(t, ep, (&intel.Entity{ testEndpointMatch(t, ep, (&intel.Entity{
IP: net.ParseIP("8.8.8.8"), IP: net.ParseIP("8.8.8.8"),