Merge pull request #43 from Code-Hex/add/warning-msg

Code-Hex · web-flow · commit b9f3ea56f212 · 2022-01-05T02:00:05.000+09:00
Added warning msg
diff --git a/README.md b/README.md
@@ -23,6 +23,12 @@ This is an example to download [linux kernel](https://www.kernel.org/). It will
 
 This program comes with no warranty. You must use this program at your own risk.
 
+### Note
+
+- Using a large number of connections to a single URL can lead to DOS attacks.
+- The case is increasing that if you use multiple connections to 1 URL does not increase the download speed with the spread of CDNs.
+  - I recommend to use multiple mirrors simultaneously for faster downloads (And the number of connections is 1 for each).
+
 ## Installation
 
 ### Homebrew
@@ -51,12 +57,6 @@ You can do this
 
     cat list.txt | pget -p 2
 
-### Note
-
-The case is increasing that if you use multiple connections for a single URL does not increase the download speed with the spread of CDNs.
-
-I recommend to use multiple mirrors simultaneously for faster downloads (And the number of connections is 1 for each).
-
 ## Options
 
 ```
diff --git a/go.mod b/go.mod
@@ -4,6 +4,7 @@ go 1.15
 
 require (
 	github.com/Code-Hex/updater v0.0.0-20160712085121-c3f278672520
+	github.com/Songmu/prompter v0.5.0
 	github.com/antonholmquist/jason v1.0.1-0.20160829104012-962e09b85496 // indirect
 	github.com/asaskevich/govalidator v0.0.0-20161001163130-7b3beb6df3c4
 	github.com/cheggaaa/pb/v3 v3.0.8
diff --git a/go.sum b/go.sum
@@ -1,5 +1,7 @@
 github.com/Code-Hex/updater v0.0.0-20160712085121-c3f278672520 h1:AhI5ytq4dAam2scBpgeQY/9kz/covK9/NMyzO3e8350=
 github.com/Code-Hex/updater v0.0.0-20160712085121-c3f278672520/go.mod h1:RZRMRhdqo/22EdcyGiDJdIdCrptsRDEbqQ8/bswHV1E=
+github.com/Songmu/prompter v0.5.0 h1:uf60xlFItY5nW+rlLJ2XIUfaUReo4gUEeftuUeHpio8=
+github.com/Songmu/prompter v0.5.0/go.mod h1:S4Eg25l60kPlnfB2ttFVpvBKYw7RKJexzB3gzpAansY=
 github.com/VividCortex/ewma v1.1.1 h1:MnEK4VOv6n0RSY4vtRe3h11qjxL3+t0B8yOL8iMXdcM=
 github.com/VividCortex/ewma v1.1.1/go.mod h1:2Tkkvm3sRDVXaiyucHiACn4cqf7DpdyLvmxzcbUokwA=
 github.com/antonholmquist/jason v1.0.1-0.20160829104012-962e09b85496 h1:dESITdufxuiwgQh1YPiPupEXORHTYvY8tr40nvrWelo=
@@ -65,8 +67,12 @@ golang.org/x/sync v0.0.0-20161004233620-1ae7c7b29e06 h1:pRVhPB331E/b1+A7Y9d/3Zkg
 golang.org/x/sync v0.0.0-20161004233620-1ae7c7b29e06/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20200116001909-b77594299b42/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210319071255-635bc2c9138d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57 h1:F5Gozwx4I1xtr/sr/8CFbb57iKi3297KFs0QDbGN60A=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/term v0.0.0-20210317153231-de623e64d2a6 h1:EC6+IGYTjPpRfv9a2b/6Puw0W+hLtAhkV1tPsXhutqs=
+golang.org/x/term v0.0.0-20210317153231-de623e64d2a6/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543 h1:E7g+9GITq07hpfrRu66IVDexMakfv52eLZ2CXBWiKr4=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
diff --git a/pget.go b/pget.go
@@ -10,6 +10,7 @@ import (
 	"strings"
 	"time"
 
+	"github.com/Songmu/prompter"
 	"github.com/asaskevich/govalidator"
 	"github.com/pkg/errors"
 )
@@ -86,6 +87,15 @@ func (pget *Pget) Run(ctx context.Context, version string, args []string) error
 	}, opts...)
 }
 
+const (
+	warningNumConnection = 4
+	warningMessage       = "[WARNING] Using a large number of connections to 1 URL can lead to DOS attacks.\n" +
+		"In most cases, `4` or less is enough. In addition, the case is increasing that if you use multiple connections to 1 URL does not increase the download speed with the spread of CDNs.\n" +
+		"See: https://github.com/Code-Hex/pget#disclaimer\n" +
+		"\n" +
+		"Would you execute knowing these?\n"
+)
+
 // Ready method define the variables required to Download.
 func (pget *Pget) Ready(version string, args []string) error {
 	opts, err := pget.parseOptions(args, version)
@@ -105,6 +115,10 @@ func (pget *Pget) Ready(version string, args []string) error {
 		return errors.Wrap(err, "failed to parse of url")
 	}
 
+	if opts.NumConnection > warningNumConnection && !prompter.YN(warningMessage, false) {
+		return makeIgnoreErr()
+	}
+
 	pget.Procs = opts.NumConnection * len(pget.URLs)
 
 	if opts.Output != "" {

-Original file line number
+Diff line change
 require (
 	github.com/Code-Hex/updater v0.0.0-20160712085121-c3f278672520
 +	github.com/Songmu/prompter v0.5.0
 	github.com/antonholmquist/jason v1.0.1-0.20160829104012-962e09b85496 // indirect
 	github.com/asaskevich/govalidator v0.0.0-20161001163130-7b3beb6df3c4
 	github.com/cheggaaa/pb/v3 v3.0.8