v2fly/transport/internet/headers/http/http.go

package http

//go:generate go run $GOPATH/src/v2ray.com/core/common/errors/errorgen/main.go -pkg http -path Transport,Internet,Headers,HTTP

import (
	"bytes"
	"context"
	"io"
	"net"
	"net/http"
	"strings"
	"time"

	"v2ray.com/core/common"
	"v2ray.com/core/common/buf"
	"v2ray.com/core/common/serial"
)

const (
	// CRLF is the line ending in HTTP header
	CRLF = "\r\n"

	// ENDING is the double line ending between HTTP header and body.
	ENDING = CRLF + CRLF

	// max length of HTTP header. Safety precaution for DDoS attack.
	maxHeaderLength = 8192
)

var (
	ErrHeaderToLong = newError("Header too long.")
	writeCRLF       = serial.WriteString(CRLF)
)

type Reader interface {
	Read(io.Reader) (*buf.Buffer, error)
}

type Writer interface {
	Write(io.Writer) error
}

type NoOpReader struct{}

func (NoOpReader) Read(io.Reader) (*buf.Buffer, error) {
	return nil, nil
}

type NoOpWriter struct{}

func (NoOpWriter) Write(io.Writer) error {
	return nil
}

type HeaderReader struct {
}

func (*HeaderReader) Read(reader io.Reader) (*buf.Buffer, error) {
	buffer := buf.New()
	totalBytes := int32(0)
	endingDetected := false
	for totalBytes < maxHeaderLength {
		err := buffer.AppendSupplier(buf.ReadFrom(reader))
		if err != nil {
			buffer.Release()
			return nil, err
		}
		if n := bytes.Index(buffer.Bytes(), []byte(ENDING)); n != -1 {
			buffer.Advance(int32(n + len(ENDING)))
			endingDetected = true
			break
		}
		if buffer.Len() >= int32(len(ENDING)) {
			totalBytes += buffer.Len() - int32(len(ENDING))
			leftover := buffer.BytesFrom(-int32(len(ENDING)))
			buffer.Reset(func(b []byte) (int, error) {
				return copy(b, leftover), nil
			})
		}
	}
	if buffer.IsEmpty() {
		buffer.Release()
		return nil, nil
	}
	if !endingDetected {
		buffer.Release()
		return nil, ErrHeaderToLong
	}
	return buffer, nil
}

type HeaderWriter struct {
	header *buf.Buffer
}

func NewHeaderWriter(header *buf.Buffer) *HeaderWriter {
	return &HeaderWriter{
		header: header,
	}
}

func (w *HeaderWriter) Write(writer io.Writer) error {
	if w.header == nil {
		return nil
	}
	_, err := writer.Write(w.header.Bytes())
	w.header.Release()
	w.header = nil
	return err
}

type HttpConn struct {
	net.Conn

	readBuffer    *buf.Buffer
	oneTimeReader Reader
	oneTimeWriter Writer
	errorWriter   Writer
}

func NewHttpConn(conn net.Conn, reader Reader, writer Writer, errorWriter Writer) *HttpConn {
	return &HttpConn{
		Conn:          conn,
		oneTimeReader: reader,
		oneTimeWriter: writer,
		errorWriter:   errorWriter,
	}
}

func (c *HttpConn) Read(b []byte) (int, error) {
	if c.oneTimeReader != nil {
		buffer, err := c.oneTimeReader.Read(c.Conn)
		if err != nil {
			return 0, err
		}
		c.readBuffer = buffer
		c.oneTimeReader = nil
	}

	if !c.readBuffer.IsEmpty() {
		nBytes, _ := c.readBuffer.Read(b)
		if c.readBuffer.IsEmpty() {
			c.readBuffer.Release()
			c.readBuffer = nil
		}
		return nBytes, nil
	}

	return c.Conn.Read(b)
}

// Write implements io.Writer.
func (c *HttpConn) Write(b []byte) (int, error) {
	if c.oneTimeWriter != nil {
		err := c.oneTimeWriter.Write(c.Conn)
		c.oneTimeWriter = nil
		if err != nil {
			return 0, err
		}
	}

	return c.Conn.Write(b)
}

// Close implements net.Conn.Close().
func (c *HttpConn) Close() error {
	if c.oneTimeWriter != nil && c.errorWriter != nil {
		// Connection is being closed but header wasn't sent. This means the client request
		// is probably not valid. Sending back a server error header in this case.
		c.errorWriter.Write(c.Conn)
	}

	return c.Conn.Close()
}

func formResponseHeader(config *ResponseConfig) *HeaderWriter {
	header := buf.New()
	header.AppendSupplier(serial.WriteString(strings.Join([]string{config.GetFullVersion(), config.GetStatusValue().Code, config.GetStatusValue().Reason}, " ")))
	header.AppendSupplier(writeCRLF)

	headers := config.PickHeaders()
	for _, h := range headers {
		header.AppendSupplier(serial.WriteString(h))
		header.AppendSupplier(writeCRLF)
	}
	if !config.HasHeader("Date") {
		header.AppendSupplier(serial.WriteString("Date: "))
		header.AppendSupplier(serial.WriteString(time.Now().Format(http.TimeFormat)))
		header.AppendSupplier(writeCRLF)
	}
	header.AppendSupplier(writeCRLF)
	return &HeaderWriter{
		header: header,
	}
}

type HttpAuthenticator struct {
	config *Config
}

func (a HttpAuthenticator) GetClientWriter() *HeaderWriter {
	header := buf.New()
	config := a.config.Request
	header.AppendSupplier(serial.WriteString(strings.Join([]string{config.GetMethodValue(), config.PickUri(), config.GetFullVersion()}, " ")))
	header.AppendSupplier(writeCRLF)

	headers := config.PickHeaders()
	for _, h := range headers {
		header.AppendSupplier(serial.WriteString(h))
		header.AppendSupplier(writeCRLF)
	}
	header.AppendSupplier(writeCRLF)
	return &HeaderWriter{
		header: header,
	}
}

func (a HttpAuthenticator) GetServerWriter() *HeaderWriter {
	return formResponseHeader(a.config.Response)
}

func (a HttpAuthenticator) Client(conn net.Conn) net.Conn {
	if a.config.Request == nil && a.config.Response == nil {
		return conn
	}
	var reader Reader = NoOpReader{}
	if a.config.Request != nil {
		reader = new(HeaderReader)
	}

	var writer Writer = NoOpWriter{}
	if a.config.Response != nil {
		writer = a.GetClientWriter()
	}
	return NewHttpConn(conn, reader, writer, NoOpWriter{})
}

func (a HttpAuthenticator) Server(conn net.Conn) net.Conn {
	if a.config.Request == nil && a.config.Response == nil {
		return conn
	}
	return NewHttpConn(conn, new(HeaderReader), a.GetServerWriter(), formResponseHeader(&ResponseConfig{
		Version: &Version{
			Value: "1.1",
		},
		Status: &Status{
			Code:   "500",
			Reason: "Internal Server Error",
		},
		Header: []*Header{
			{
				Name:  "Connection",
				Value: []string{"close"},
			},
			{
				Name:  "Cache-Control",
				Value: []string{"private"},
			},
			{
				Name:  "Content-Length",
				Value: []string{"0"},
			},
		},
	}))
}

func NewHttpAuthenticator(ctx context.Context, config *Config) (HttpAuthenticator, error) {
	return HttpAuthenticator{
		config: config,
	}, nil
}

func init() {
	common.Must(common.RegisterConfig((*Config)(nil), func(ctx context.Context, config interface{}) (interface{}, error) {
		return NewHttpAuthenticator(ctx, config.(*Config))
	}))
}
http authenticator 2016-10-31 17:26:46 -04:00			`package http`

move error generator to common 2017-12-02 19:04:57 -05:00			`//go:generate go run $GOPATH/src/v2ray.com/core/common/errors/errorgen/main.go -pkg http -path Transport,Internet,Headers,HTTP`
refactor error messages 2017-04-08 19:43:25 -04:00
http authenticator 2016-10-31 17:26:46 -04:00			`import (`
			`"bytes"`
global config creator 2017-01-12 16:47:10 -05:00			`"context"`
allow single side auth 2016-11-03 18:14:27 -04:00			`"io"`
refine http header 2016-11-02 17:26:21 -04:00			`"net"`
update http header 2016-11-06 07:38:32 -05:00			`"net/http"`
rewrite alloc.buffer 2016-12-06 05:03:42 -05:00			`"strings"`
update http header 2016-11-06 07:38:32 -05:00			`"time"`
refactor buffer 2016-12-09 06:08:25 -05:00
global config creator 2017-01-12 16:47:10 -05:00			`"v2ray.com/core/common"`
rename alloc to buf 2016-12-09 05:35:27 -05:00			`"v2ray.com/core/common/buf"`
rewrite alloc.buffer 2016-12-06 05:03:42 -05:00			`"v2ray.com/core/common/serial"`
http authenticator 2016-10-31 17:26:46 -04:00			`)`

			`const (`
refactor 2017-04-27 05:37:25 -04:00			`// CRLF is the line ending in HTTP header`
			`CRLF = "\r\n"`

			`// ENDING is the double line ending between HTTP header and body.`
http authenticator 2016-10-31 17:26:46 -04:00			`ENDING = CRLF + CRLF`
limit max http header length 2016-12-16 11:01:47 -05:00
return error when header too long 2016-12-19 06:16:57 -05:00			`// max length of HTTP header. Safety precaution for DDoS attack.`
limit max http header length 2016-12-16 11:01:47 -05:00			`maxHeaderLength = 8192`
http authenticator 2016-10-31 17:26:46 -04:00			`)`

rewrite alloc.buffer 2016-12-06 05:03:42 -05:00			`var (`
refactor error messages 2017-04-08 19:43:25 -04:00			`ErrHeaderToLong = newError("Header too long.")`
return error when header too long 2016-12-19 06:16:57 -05:00			`writeCRLF = serial.WriteString(CRLF)`
rewrite alloc.buffer 2016-12-06 05:03:42 -05:00			`)`

ssr compatibility 2016-11-04 20:50:51 -04:00			`type Reader interface {`
rename alloc to buf 2016-12-09 05:35:27 -05:00			`Read(io.Reader) (*buf.Buffer, error)`
ssr compatibility 2016-11-04 20:50:51 -04:00			`}`

			`type Writer interface {`
			`Write(io.Writer) error`
			`}`

			`type NoOpReader struct{}`

refactor 2017-04-27 05:37:25 -04:00			`func (NoOpReader) Read(io.Reader) (*buf.Buffer, error) {`
ssr compatibility 2016-11-04 20:50:51 -04:00			`return nil, nil`
			`}`

			`type NoOpWriter struct{}`

refactor 2017-04-27 05:37:25 -04:00			`func (NoOpWriter) Write(io.Writer) error {`
ssr compatibility 2016-11-04 20:50:51 -04:00			`return nil`
			`}`

allow single side auth 2016-11-03 18:14:27 -04:00			`type HeaderReader struct {`
			`}`

rename alloc to buf 2016-12-09 05:35:27 -05:00			`func (HeaderReader) Read(reader io.Reader) (buf.Buffer, error) {`
remove 8k buffer pool 2017-04-15 15:19:21 -04:00			`buffer := buf.New()`
migrate int to int32 2018-04-02 14:00:50 -04:00			`totalBytes := int32(0)`
return error when header too long 2016-12-19 06:16:57 -05:00			`endingDetected := false`
limit max http header length 2016-12-16 11:01:47 -05:00			`for totalBytes < maxHeaderLength {`
refactor buffer 2016-12-09 06:08:25 -05:00			`err := buffer.AppendSupplier(buf.ReadFrom(reader))`
allow single side auth 2016-11-03 18:14:27 -04:00			`if err != nil {`
release buffer on error 2017-04-27 05:29:44 -04:00			`buffer.Release()`
allow single side auth 2016-11-03 18:14:27 -04:00			`return nil, err`
			`}`
rewrite alloc.buffer 2016-12-06 05:03:42 -05:00			`if n := bytes.Index(buffer.Bytes(), []byte(ENDING)); n != -1 {`
rename Slice and Slice from to Resize and Advance 2018-04-19 17:48:38 -04:00			`buffer.Advance(int32(n + len(ENDING)))`
return error when header too long 2016-12-19 06:16:57 -05:00			`endingDetected = true`
allow single side auth 2016-11-03 18:14:27 -04:00			`break`
			`}`
migrate int to int32 2018-04-02 14:00:50 -04:00			`if buffer.Len() >= int32(len(ENDING)) {`
			`totalBytes += buffer.Len() - int32(len(ENDING))`
			`leftover := buffer.BytesFrom(-int32(len(ENDING)))`
fix api usage 2016-12-11 15:43:16 -05:00			`buffer.Reset(func(b []byte) (int, error) {`
			`return copy(b, leftover), nil`
			`})`
allow single side auth 2016-11-03 18:14:27 -04:00			`}`
			`}`
ssr compatibility 2016-11-04 20:50:51 -04:00			`if buffer.IsEmpty() {`
			`buffer.Release()`
			`return nil, nil`
			`}`
return error when header too long 2016-12-19 06:16:57 -05:00			`if !endingDetected {`
			`buffer.Release()`
			`return nil, ErrHeaderToLong`
			`}`
allow single side auth 2016-11-03 18:14:27 -04:00			`return buffer, nil`
			`}`

			`type HeaderWriter struct {`
rename alloc to buf 2016-12-09 05:35:27 -05:00			`header *buf.Buffer`
allow single side auth 2016-11-03 18:14:27 -04:00			`}`

rename alloc to buf 2016-12-09 05:35:27 -05:00			`func NewHeaderWriter(header buf.Buffer) HeaderWriter {`
test case for http auth 2016-11-04 16:59:19 -04:00			`return &HeaderWriter{`
			`header: header,`
			`}`
			`}`

refactor 2017-04-13 16:17:58 -04:00			`func (w *HeaderWriter) Write(writer io.Writer) error {`
			`if w.header == nil {`
allow single side auth 2016-11-03 18:14:27 -04:00			`return nil`
			`}`
refactor 2017-04-13 16:17:58 -04:00			`_, err := writer.Write(w.header.Bytes())`
			`w.header.Release()`
			`w.header = nil`
allow single side auth 2016-11-03 18:14:27 -04:00			`return err`
			`}`

refine http header 2016-11-02 17:26:21 -04:00			`type HttpConn struct {`
			`net.Conn`

rename alloc to buf 2016-12-09 05:35:27 -05:00			`readBuffer *buf.Buffer`
ssr compatibility 2016-11-04 20:50:51 -04:00			`oneTimeReader Reader`
			`oneTimeWriter Writer`
refine http header 2017-01-03 17:09:51 -05:00			`errorWriter Writer`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

refine http header 2017-01-03 17:09:51 -05:00			`func NewHttpConn(conn net.Conn, reader Reader, writer Writer, errorWriter Writer) *HttpConn {`
refine http header 2016-11-02 17:26:21 -04:00			`return &HttpConn{`
allow single side auth 2016-11-03 18:14:27 -04:00			`Conn: conn,`
			`oneTimeReader: reader,`
			`oneTimeWriter: writer,`
refine http header 2017-01-03 17:09:51 -05:00			`errorWriter: errorWriter,`
refine http header 2016-11-02 17:26:21 -04:00			`}`
			`}`
http authenticator 2016-10-31 17:26:46 -04:00
refactor 2017-04-13 16:17:58 -04:00			`func (c *HttpConn) Read(b []byte) (int, error) {`
			`if c.oneTimeReader != nil {`
			`buffer, err := c.oneTimeReader.Read(c.Conn)`
allow single side auth 2016-11-03 18:14:27 -04:00			`if err != nil {`
			`return 0, err`
refine http header 2016-11-02 17:26:21 -04:00			`}`
refactor 2017-04-13 16:17:58 -04:00			`c.readBuffer = buffer`
			`c.oneTimeReader = nil`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

bug fixes 2017-04-19 15:27:21 -04:00			`if !c.readBuffer.IsEmpty() {`
			`nBytes, _ := c.readBuffer.Read(b)`
			`if c.readBuffer.IsEmpty() {`
refactor 2017-04-13 16:17:58 -04:00			`c.readBuffer.Release()`
			`c.readBuffer = nil`
refine http header 2016-11-02 17:26:21 -04:00			`}`
bug fixes 2017-04-19 15:27:21 -04:00			`return nBytes, nil`
refine http header 2016-11-02 17:26:21 -04:00			`}`
http authenticator 2016-10-31 17:26:46 -04:00
refactor 2017-04-13 16:17:58 -04:00			`return c.Conn.Read(b)`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

comments 2017-04-21 09:36:05 -04:00			`// Write implements io.Writer.`
refactor 2017-04-13 16:17:58 -04:00			`func (c *HttpConn) Write(b []byte) (int, error) {`
			`if c.oneTimeWriter != nil {`
			`err := c.oneTimeWriter.Write(c.Conn)`
			`c.oneTimeWriter = nil`
http authenticator 2016-10-31 17:26:46 -04:00			`if err != nil {`
refine http header 2016-11-02 17:26:21 -04:00			`return 0, err`
http authenticator 2016-10-31 17:26:46 -04:00			`}`
			`}`

refactor 2017-04-13 16:17:58 -04:00			`return c.Conn.Write(b)`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

send back http response on error 2016-12-14 06:25:22 -05:00			`// Close implements net.Conn.Close().`
refactor 2017-04-13 16:17:58 -04:00			`func (c *HttpConn) Close() error {`
			`if c.oneTimeWriter != nil && c.errorWriter != nil {`
send back http response on error 2016-12-14 06:25:22 -05:00			`// Connection is being closed but header wasn't sent. This means the client request`
			`// is probably not valid. Sending back a server error header in this case.`
refactor 2017-04-13 16:17:58 -04:00			`c.errorWriter.Write(c.Conn)`
send back http response on error 2016-12-14 06:25:22 -05:00			`}`

refactor 2017-04-13 16:17:58 -04:00			`return c.Conn.Close()`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

send back http response on error 2016-12-14 06:25:22 -05:00			`func formResponseHeader(config ResponseConfig) HeaderWriter {`
remove 8k buffer pool 2017-04-15 15:19:21 -04:00			`header := buf.New()`
accommodate protobuf compiler change 2016-12-23 06:42:25 -05:00			`header.AppendSupplier(serial.WriteString(strings.Join([]string{config.GetFullVersion(), config.GetStatusValue().Code, config.GetStatusValue().Reason}, " ")))`
refactor buffer 2016-12-09 06:08:25 -05:00			`header.AppendSupplier(writeCRLF)`
http authenticator 2016-10-31 17:26:46 -04:00
refine http header 2016-11-02 17:26:21 -04:00			`headers := config.PickHeaders()`
			`for _, h := range headers {`
refactor buffer 2016-12-09 06:08:25 -05:00			`header.AppendSupplier(serial.WriteString(h))`
			`header.AppendSupplier(writeCRLF)`
http authenticator 2016-10-31 17:26:46 -04:00			`}`
send back http response on error 2016-12-14 06:25:22 -05:00			`if !config.HasHeader("Date") {`
			`header.AppendSupplier(serial.WriteString("Date: "))`
			`header.AppendSupplier(serial.WriteString(time.Now().Format(http.TimeFormat)))`
			`header.AppendSupplier(writeCRLF)`
			`}`
refactor buffer 2016-12-09 06:08:25 -05:00			`header.AppendSupplier(writeCRLF)`
allow single side auth 2016-11-03 18:14:27 -04:00			`return &HeaderWriter{`
			`header: header,`
			`}`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

send back http response on error 2016-12-14 06:25:22 -05:00			`type HttpAuthenticator struct {`
			`config *Config`
			`}`

refactor 2017-04-13 16:17:58 -04:00			`func (a HttpAuthenticator) GetClientWriter() *HeaderWriter {`
remove 8k buffer pool 2017-04-15 15:19:21 -04:00			`header := buf.New()`
refactor 2017-04-13 16:17:58 -04:00			`config := a.config.Request`
accommodate protobuf compiler change 2016-12-23 06:42:25 -05:00			`header.AppendSupplier(serial.WriteString(strings.Join([]string{config.GetMethodValue(), config.PickUri(), config.GetFullVersion()}, " ")))`
refactor buffer 2016-12-09 06:08:25 -05:00			`header.AppendSupplier(writeCRLF)`
http authenticator 2016-10-31 17:26:46 -04:00
refine http header 2016-11-02 17:26:21 -04:00			`headers := config.PickHeaders()`
http authenticator 2016-10-31 17:26:46 -04:00			`for _, h := range headers {`
refactor buffer 2016-12-09 06:08:25 -05:00			`header.AppendSupplier(serial.WriteString(h))`
			`header.AppendSupplier(writeCRLF)`
update http header 2016-11-06 07:38:32 -05:00			`}`
refactor buffer 2016-12-09 06:08:25 -05:00			`header.AppendSupplier(writeCRLF)`
allow single side auth 2016-11-03 18:14:27 -04:00			`return &HeaderWriter{`
			`header: header,`
			`}`
refine http header 2016-11-02 17:26:21 -04:00			`}`
http authenticator 2016-10-31 17:26:46 -04:00
refactor 2017-04-13 16:17:58 -04:00			`func (a HttpAuthenticator) GetServerWriter() *HeaderWriter {`
			`return formResponseHeader(a.config.Response)`
send back http response on error 2016-12-14 06:25:22 -05:00			`}`

refactor 2017-04-13 16:17:58 -04:00			`func (a HttpAuthenticator) Client(conn net.Conn) net.Conn {`
			`if a.config.Request == nil && a.config.Response == nil {`
allow single side auth 2016-11-03 18:14:27 -04:00			`return conn`
			`}`
refactor 2017-04-27 05:37:25 -04:00			`var reader Reader = NoOpReader{}`
refactor 2017-04-13 16:17:58 -04:00			`if a.config.Request != nil {`
ssr compatibility 2016-11-04 20:50:51 -04:00			`reader = new(HeaderReader)`
			`}`

refactor 2017-04-27 05:37:25 -04:00			`var writer Writer = NoOpWriter{}`
refactor 2017-04-13 16:17:58 -04:00			`if a.config.Response != nil {`
			`writer = a.GetClientWriter()`
ssr compatibility 2016-11-04 20:50:51 -04:00			`}`
refactor 2017-04-27 05:37:25 -04:00			`return NewHttpConn(conn, reader, writer, NoOpWriter{})`
http authenticator 2016-10-31 17:26:46 -04:00			`}`

refactor 2017-04-13 16:17:58 -04:00			`func (a HttpAuthenticator) Server(conn net.Conn) net.Conn {`
			`if a.config.Request == nil && a.config.Response == nil {`
allow single side auth 2016-11-03 18:14:27 -04:00			`return conn`
			`}`
refactor 2017-04-13 16:17:58 -04:00			`return NewHttpConn(conn, new(HeaderReader), a.GetServerWriter(), formResponseHeader(&ResponseConfig{`
refine http header 2017-01-03 17:09:51 -05:00			`Version: &Version{`
			`Value: "1.1",`
			`},`
			`Status: &Status{`
			`Code: "500",`
			`Reason: "Internal Server Error",`
			`},`
			`Header: []*Header{`
			`{`
			`Name: "Connection",`
			`Value: []string{"close"},`
			`},`
			`{`
			`Name: "Cache-Control",`
			`Value: []string{"private"},`
			`},`
			`{`
			`Name: "Content-Length",`
			`Value: []string{"0"},`
			`},`
			`},`
			`}))`
http authenticator 2016-10-31 17:26:46 -04:00			`}`
response factory 2016-10-31 19:42:55 -04:00
remove unnecessary code 2017-01-13 07:47:44 -05:00			`func NewHttpAuthenticator(ctx context.Context, config *Config) (HttpAuthenticator, error) {`
global config creator 2017-01-12 16:47:10 -05:00			`return HttpAuthenticator{`
remove unnecessary code 2017-01-13 07:47:44 -05:00			`config: config,`
global config creator 2017-01-12 16:47:10 -05:00			`}, nil`
			`}`

response factory 2016-10-31 19:42:55 -04:00			`func init() {`
remove unnecessary code 2017-01-13 07:47:44 -05:00			`common.Must(common.RegisterConfig((*Config)(nil), func(ctx context.Context, config interface{}) (interface{}, error) {`
			`return NewHttpAuthenticator(ctx, config.(*Config))`
			`}))`
response factory 2016-10-31 19:42:55 -04:00			`}`