mirror of
https://github.com/Mrs4s/go-cqhttp.git
synced 2025-05-04 19:17:37 +08:00
bd785d3894
* try to fix: code -10005 and packet timed out (first login) * 此问题猜测可能是成功登录前无法向服务器发送sso packet并获取结果。 在有callback之前似乎没有出现这个问题,怀疑是这里的问题。 等待 100s 后(以等待完成过滑块)再提交初始化包以尝试解决 * sign submit 内容改为仅在debug模式下打印 * impl #2455 * 在“群消息发送失败: 账号可能被风控”的时候提供group_id * optimize: sign callback wait until online * 等待至 bot 在线再发包,而不是简单地等待 100s
428 lines
13 KiB
Go
428 lines
13 KiB
Go
package gocq
|
||
|
||
import (
|
||
"bytes"
|
||
"encoding/hex"
|
||
"fmt"
|
||
"io"
|
||
"net/http"
|
||
"strconv"
|
||
"strings"
|
||
"sync"
|
||
"sync/atomic"
|
||
"time"
|
||
|
||
"github.com/pkg/errors"
|
||
log "github.com/sirupsen/logrus"
|
||
"github.com/tidwall/gjson"
|
||
|
||
"github.com/Mrs4s/MiraiGo/utils"
|
||
|
||
"github.com/Mrs4s/go-cqhttp/global"
|
||
"github.com/Mrs4s/go-cqhttp/internal/base"
|
||
"github.com/Mrs4s/go-cqhttp/internal/download"
|
||
"github.com/Mrs4s/go-cqhttp/modules/config"
|
||
)
|
||
|
||
type currentSignServer atomic.Pointer[config.SignServer]
|
||
|
||
func (c *currentSignServer) get() *config.SignServer {
|
||
if len(base.SignServers) == 1 {
|
||
// 只配置了一个签名服务时不检查以及切换, 在get阶段返回,防止返回nil导致其他bug(可能)
|
||
return &base.SignServers[0]
|
||
}
|
||
return (*atomic.Pointer[config.SignServer])(c).Load()
|
||
}
|
||
|
||
func (c *currentSignServer) set(server *config.SignServer) {
|
||
(*atomic.Pointer[config.SignServer])(c).Store(server)
|
||
}
|
||
|
||
// 当前签名服务器
|
||
var ss currentSignServer
|
||
|
||
// 失败计数
|
||
type errconut atomic.Uintptr
|
||
|
||
func (ec *errconut) hasOver(count uintptr) bool {
|
||
return (*atomic.Uintptr)(ec).Load() > count
|
||
}
|
||
|
||
func (ec *errconut) inc() {
|
||
(*atomic.Uintptr)(ec).Add(1)
|
||
}
|
||
|
||
var errn errconut
|
||
|
||
// getAvaliableSignServer 获取可用的签名服务器,没有则返回空和相应错误
|
||
func getAvaliableSignServer() (*config.SignServer, error) {
|
||
cs := ss.get()
|
||
if cs != nil {
|
||
return cs, nil
|
||
}
|
||
if len(base.SignServers) == 0 {
|
||
return nil, errors.New("no sign server configured")
|
||
}
|
||
maxCount := base.Account.MaxCheckCount
|
||
if maxCount == 0 {
|
||
if errn.hasOver(3) {
|
||
log.Warn("已连续 3 次获取不到可用签名服务器,将固定使用主签名服务器")
|
||
ss.set(&base.SignServers[0])
|
||
return ss.get(), nil
|
||
}
|
||
} else if errn.hasOver(uintptr(maxCount)) {
|
||
log.Fatalf("获取可用签名服务器失败次数超过 %v 次, 正在离线", maxCount)
|
||
}
|
||
if cs != nil && len(cs.URL) > 0 {
|
||
log.Warnf("当前签名服务器 %v 不可用,正在查找可用服务器", cs.URL)
|
||
}
|
||
cs = asyncCheckServer(base.SignServers)
|
||
if cs == nil {
|
||
return nil, errors.New("no usable sign server")
|
||
}
|
||
return cs, nil
|
||
}
|
||
|
||
func isServerAvaliable(signServer string) bool {
|
||
resp, err := download.Request{
|
||
Method: http.MethodGet,
|
||
URL: signServer,
|
||
}.WithTimeout(3 * time.Second).Bytes()
|
||
if err == nil && gjson.GetBytes(resp, "code").Int() == 0 {
|
||
return true
|
||
}
|
||
log.Warnf("签名服务器 %v 可能不可用,请求出现错误:%v", signServer, err)
|
||
return false
|
||
}
|
||
|
||
// asyncCheckServer 按同步顺序检查所有签名服务器直到找到可用的
|
||
func asyncCheckServer(servers []config.SignServer) *config.SignServer {
|
||
doRegister := sync.Once{}
|
||
wg := sync.WaitGroup{}
|
||
wg.Add(len(servers))
|
||
for i, s := range servers {
|
||
go func(i int, server config.SignServer) {
|
||
defer wg.Done()
|
||
log.Infof("检查签名服务器:%v (%v/%v)", server.URL, i+1, len(servers))
|
||
if len(server.URL) < 4 {
|
||
return
|
||
}
|
||
if isServerAvaliable(server.URL) {
|
||
doRegister.Do(func() {
|
||
ss.set(&server)
|
||
log.Infof("使用签名服务器 url=%v, key=%v, auth=%v", server.URL, server.Key, server.Authorization)
|
||
if base.Account.AutoRegister {
|
||
// 若配置了自动注册实例则在切换后注册实例,否则不需要注册,签名时由qsign自动注册
|
||
signRegister(base.Account.Uin, device.AndroidId, device.Guid, device.QImei36, server.Key)
|
||
}
|
||
})
|
||
}
|
||
}(i, s)
|
||
}
|
||
wg.Wait()
|
||
return ss.get()
|
||
}
|
||
|
||
/*
|
||
请求签名服务器
|
||
|
||
url: api + params 组合的字符串,无须包含签名服务器地址
|
||
return: signServer, response, error
|
||
*/
|
||
func requestSignServer(method string, url string, headers map[string]string, body io.Reader) (string, []byte, error) {
|
||
signServer, e := getAvaliableSignServer()
|
||
if e != nil && len(signServer.URL) == 0 { // 没有可用的
|
||
log.Warnf("获取可用签名服务器出错:%v, 将使用主签名服务器进行签名", e)
|
||
errn.inc()
|
||
signServer = &base.SignServers[0] // 没有获取到时使用第一个
|
||
}
|
||
if !strings.HasPrefix(url, signServer.URL) {
|
||
url = strings.TrimSuffix(signServer.URL, "/") + "/" + strings.TrimPrefix(url, "/")
|
||
}
|
||
if headers == nil {
|
||
headers = map[string]string{}
|
||
}
|
||
auth := signServer.Authorization
|
||
if auth != "-" && auth != "" {
|
||
headers["Authorization"] = auth
|
||
}
|
||
req := download.Request{
|
||
Method: method,
|
||
Header: headers,
|
||
URL: url,
|
||
Body: body,
|
||
}.WithTimeout(time.Duration(base.SignServerTimeout) * time.Second)
|
||
resp, err := req.Bytes()
|
||
if err != nil {
|
||
ss.set(nil) // 标记为不可用
|
||
}
|
||
return signServer.URL, resp, err
|
||
}
|
||
|
||
func energy(uin uint64, id string, _ string, salt []byte) ([]byte, error) {
|
||
url := "custom_energy" + fmt.Sprintf("?data=%v&salt=%v&uin=%v&android_id=%v&guid=%v",
|
||
id, hex.EncodeToString(salt), uin, utils.B2S(device.AndroidId), hex.EncodeToString(device.Guid))
|
||
if base.IsBelow110 {
|
||
url = "custom_energy" + fmt.Sprintf("?data=%v&salt=%v", id, hex.EncodeToString(salt))
|
||
}
|
||
signServer, response, err := requestSignServer(http.MethodGet, url, nil, nil)
|
||
if err != nil {
|
||
log.Warnf("获取T544 sign时出现错误: %v. server: %v", err, signServer)
|
||
return nil, err
|
||
}
|
||
data, err := hex.DecodeString(gjson.GetBytes(response, "data").String())
|
||
if err != nil {
|
||
log.Warnf("获取T544 sign时出现错误: %v (data: %v)", err, gjson.GetBytes(response, "data").String())
|
||
return nil, err
|
||
}
|
||
if len(data) == 0 {
|
||
log.Warnf("获取T544 sign时出现错误: %v.", "data is empty")
|
||
return nil, errors.New("data is empty")
|
||
}
|
||
return data, nil
|
||
}
|
||
|
||
// signSubmit
|
||
// 提交回调 buffer
|
||
func signSubmit(uin string, cmd string, callbackID int64, buffer []byte, t string) {
|
||
buffStr := hex.EncodeToString(buffer)
|
||
if base.Debug {
|
||
tail := 64
|
||
endl := "..."
|
||
if len(buffStr) < tail {
|
||
tail = len(buffStr)
|
||
endl = "."
|
||
}
|
||
log.Debugf("submit (%v): uin=%v, cmd=%v, callbackID=%v, buffer=%v%s", t, uin, cmd, callbackID, buffStr[:tail], endl)
|
||
}
|
||
|
||
signServer, _, err := requestSignServer(
|
||
http.MethodGet,
|
||
"submit"+fmt.Sprintf("?uin=%v&cmd=%v&callback_id=%v&buffer=%v",
|
||
uin, cmd, callbackID, buffStr),
|
||
nil, nil,
|
||
)
|
||
if err != nil {
|
||
log.Warnf("提交 callback 时出现错误: %v. server: %v", err, signServer)
|
||
}
|
||
}
|
||
|
||
// signCallback
|
||
// 刷新 token 和签名的回调
|
||
func signCallback(uin string, results []gjson.Result, t string) {
|
||
for { // 等待至在线
|
||
if cli.Online.Load() {
|
||
break
|
||
}
|
||
time.Sleep(1 * time.Second)
|
||
}
|
||
for _, result := range results {
|
||
cmd := result.Get("cmd").String()
|
||
callbackID := result.Get("callbackId").Int()
|
||
body, _ := hex.DecodeString(result.Get("body").String())
|
||
ret, err := cli.SendSsoPacket(cmd, body)
|
||
if err != nil || len(ret) == 0 {
|
||
log.Warnf("Callback error: %v, or response data is empty", err)
|
||
continue // 发送 SsoPacket 出错或返回数据为空时跳过
|
||
}
|
||
signSubmit(uin, cmd, callbackID, ret, t)
|
||
}
|
||
}
|
||
|
||
func signRequset(seq uint64, uin string, cmd string, qua string, buff []byte) (sign []byte, extra []byte, token []byte, err error) {
|
||
headers := map[string]string{"Content-Type": "application/x-www-form-urlencoded"}
|
||
_, response, err := requestSignServer(
|
||
http.MethodPost,
|
||
"sign",
|
||
headers,
|
||
bytes.NewReader([]byte(fmt.Sprintf("uin=%v&qua=%s&cmd=%s&seq=%v&buffer=%v&android_id=%v&guid=%v",
|
||
uin, qua, cmd, seq, hex.EncodeToString(buff), utils.B2S(device.AndroidId), hex.EncodeToString(device.Guid)))),
|
||
)
|
||
if err != nil {
|
||
return nil, nil, nil, err
|
||
}
|
||
sign, _ = hex.DecodeString(gjson.GetBytes(response, "data.sign").String())
|
||
extra, _ = hex.DecodeString(gjson.GetBytes(response, "data.extra").String())
|
||
token, _ = hex.DecodeString(gjson.GetBytes(response, "data.token").String())
|
||
if !base.IsBelow110 {
|
||
go signCallback(uin, gjson.GetBytes(response, "data.requestCallback").Array(), "sign")
|
||
}
|
||
return sign, extra, token, nil
|
||
}
|
||
|
||
var registerLock sync.Mutex
|
||
|
||
func signRegister(uin int64, androidID, guid []byte, qimei36, key string) {
|
||
if base.IsBelow110 {
|
||
log.Warn("签名服务器版本低于1.1.0, 跳过实例注册")
|
||
return
|
||
}
|
||
signServer, resp, err := requestSignServer(
|
||
http.MethodGet,
|
||
"register"+fmt.Sprintf("?uin=%v&android_id=%v&guid=%v&qimei36=%v&key=%s",
|
||
uin, utils.B2S(androidID), hex.EncodeToString(guid), qimei36, key),
|
||
nil, nil,
|
||
)
|
||
if err != nil {
|
||
log.Warnf("注册QQ实例时出现错误: %v. server: %v", err, signServer)
|
||
return
|
||
}
|
||
msg := gjson.GetBytes(resp, "msg")
|
||
if gjson.GetBytes(resp, "code").Int() != 0 {
|
||
log.Warnf("注册QQ实例时出现错误: %v. server: %v", msg, signServer)
|
||
return
|
||
}
|
||
log.Infof("注册QQ实例 %v 成功: %v", uin, msg)
|
||
}
|
||
|
||
func signRefreshToken(uin string) error {
|
||
log.Info("正在刷新 token")
|
||
_, resp, err := requestSignServer(
|
||
http.MethodGet,
|
||
"request_token?uin="+uin,
|
||
nil, nil,
|
||
)
|
||
if err != nil {
|
||
return err
|
||
}
|
||
msg := gjson.GetBytes(resp, "msg")
|
||
code := gjson.GetBytes(resp, "code")
|
||
if code.Int() != 0 {
|
||
return errors.New("code=" + code.String() + ", msg: " + msg.String())
|
||
}
|
||
go signCallback(uin, gjson.GetBytes(resp, "data").Array(), "request token")
|
||
return nil
|
||
}
|
||
|
||
var missTokenCount = uint64(0)
|
||
var lastToken = ""
|
||
|
||
func sign(seq uint64, uin string, cmd string, qua string, buff []byte) (sign []byte, extra []byte, token []byte, err error) {
|
||
i := 0
|
||
for {
|
||
sign, extra, token, err = signRequset(seq, uin, cmd, qua, buff)
|
||
cs := ss.get()
|
||
if cs == nil {
|
||
// 最好在请求后判断,否则若被设置为nil后不会再请求签名,
|
||
// 导致在下一次有请求签名服务操作之前,ss无法更新
|
||
err = errors.New("nil signserver")
|
||
log.Warn("nil sign-server") // 返回的err并不会log出来,加条日志
|
||
return
|
||
}
|
||
if err != nil {
|
||
log.Warnf("获取sso sign时出现错误: %v. server: %v", err, cs.URL)
|
||
}
|
||
if i > 0 {
|
||
break
|
||
}
|
||
i++
|
||
if (!base.IsBelow110) && base.Account.AutoRegister && err == nil && len(sign) == 0 {
|
||
if registerLock.TryLock() { // 避免并发时多处同时销毁并重新注册
|
||
log.Debugf("请求签名:cmd=%v, qua=%v, buff=%v", seq, cmd, hex.EncodeToString(buff))
|
||
log.Debugf("返回结果:sign=%v, extra=%v, token=%v",
|
||
hex.EncodeToString(sign), hex.EncodeToString(extra), hex.EncodeToString(token))
|
||
log.Warn("获取签名为空,实例可能丢失,正在尝试重新注册")
|
||
defer registerLock.Unlock()
|
||
err := signServerDestroy(uin)
|
||
if err != nil {
|
||
log.Warnln(err) // 实例真的丢失时则必出错,或许应该不 return , 以重新获取本次签名
|
||
// return nil, nil, nil, err
|
||
}
|
||
signRegister(base.Account.Uin, device.AndroidId, device.Guid, device.QImei36, cs.Key)
|
||
}
|
||
continue
|
||
}
|
||
if (!base.IsBelow110) && base.Account.AutoRefreshToken && len(token) == 0 {
|
||
log.Warnf("token 已过期, 总丢失 token 次数为 %v", atomic.AddUint64(&missTokenCount, 1))
|
||
if registerLock.TryLock() {
|
||
defer registerLock.Unlock()
|
||
if err := signRefreshToken(uin); err != nil {
|
||
log.Warnf("刷新 token 出现错误: %v. server: %v", err, cs.URL)
|
||
} else {
|
||
log.Info("刷新 token 成功")
|
||
}
|
||
}
|
||
continue
|
||
}
|
||
break
|
||
}
|
||
if tokenString := hex.EncodeToString(token); lastToken != tokenString {
|
||
log.Infof("token 已更新:%v -> %v", lastToken, tokenString)
|
||
lastToken = tokenString
|
||
}
|
||
rule := base.Account.RuleChangeSignServer
|
||
if (len(sign) == 0 && rule >= 1) || (len(token) == 0 && rule >= 2) {
|
||
ss.set(nil)
|
||
}
|
||
return sign, extra, token, err
|
||
}
|
||
|
||
func signServerDestroy(uin string) error {
|
||
signServer, signVersion, err := signVersion()
|
||
if err != nil {
|
||
return errors.Wrapf(err, "获取签名服务版本出现错误, server: %v", signServer)
|
||
}
|
||
if global.VersionNameCompare("v"+signVersion, "v1.1.6") {
|
||
return errors.Errorf("当前签名服务器版本 %v 低于 1.1.6,无法使用 destroy 接口", signVersion)
|
||
}
|
||
cs := ss.get()
|
||
if cs == nil {
|
||
return errors.New("nil signserver")
|
||
}
|
||
signServer, resp, err := requestSignServer(
|
||
http.MethodGet,
|
||
"destroy"+fmt.Sprintf("?uin=%v&key=%v", uin, cs.Key),
|
||
nil, nil,
|
||
)
|
||
if err != nil || gjson.GetBytes(resp, "code").Int() != 0 {
|
||
return errors.Wrapf(err, "destroy 实例出现错误, server: %v", signServer)
|
||
}
|
||
return nil
|
||
}
|
||
|
||
func signVersion() (signServer string, version string, err error) {
|
||
signServer, resp, err := requestSignServer(http.MethodGet, "", nil, nil)
|
||
if err != nil {
|
||
return signServer, "", err
|
||
}
|
||
if gjson.GetBytes(resp, "code").Int() == 0 {
|
||
return signServer, gjson.GetBytes(resp, "data.version").String(), nil
|
||
}
|
||
return signServer, "", errors.New("empty version")
|
||
}
|
||
|
||
// 定时刷新 token, interval 为间隔时间(分钟)
|
||
func signStartRefreshToken(interval int64) {
|
||
if interval <= 0 {
|
||
log.Warn("定时刷新 token 已关闭")
|
||
return
|
||
}
|
||
log.Infof("每 %v 分钟将刷新一次签名 token", interval)
|
||
if interval < 10 {
|
||
log.Warnf("间隔时间 %v 分钟较短,推荐 30~40 分钟", interval)
|
||
}
|
||
if interval > 60 {
|
||
log.Warn("间隔时间不能超过 60 分钟,已自动设置为 60 分钟")
|
||
interval = 60
|
||
}
|
||
t := time.NewTicker(time.Duration(interval) * time.Minute)
|
||
qqstr := strconv.FormatInt(base.Account.Uin, 10)
|
||
defer t.Stop()
|
||
for range t.C {
|
||
cs, master := ss.get(), &base.SignServers[0]
|
||
if (cs == nil || cs.URL != master.URL) && isServerAvaliable(master.URL) {
|
||
ss.set(master)
|
||
log.Infof("主签名服务器可用,已切换至主签名服务器 %v", master.URL)
|
||
}
|
||
cs = ss.get()
|
||
if cs == nil {
|
||
log.Warn("无法获得可用签名服务器,停止 token 定时刷新")
|
||
return
|
||
}
|
||
err := signRefreshToken(qqstr)
|
||
if err != nil {
|
||
log.Warnf("刷新 token 出现错误: %v. server: %v", err, cs.URL)
|
||
}
|
||
}
|
||
}
|