convert undici handling to alternative code path

Author: vhess

lib/http-proxy/common.ts

@@ -21,6 +21,7 @@ export interface Outgoing extends Outgoing0 {
   headers: { [header: string]: string | string[] | undefined } & {
     overwritten?: boolean;
   };
+  url: string;
 }
 
 // If we allow this header and a user sends it with a request,
@@ -31,7 +32,14 @@ export interface Outgoing extends Outgoing0 {
 // See https://github.com/http-party/node-http-proxy/issues/1647
 const HEADER_BLACKLIST = "trailer";
 
-const HTTP2_HEADER_BLACKLIST = [":method", ":path", ":scheme", ":authority"];
+const HTTP2_HEADER_BLACKLIST = [
+  ":method",
+  ":path",
+  ":scheme",
+  ":authority",
+  "connection",
+  "keep-alive",
+];
 
 // setupOutgoing -- Copies the right headers from `options` and `req` to
 // `outgoing` which is then used to fire the proxied request by calling
@@ -154,6 +162,13 @@ export function setupOutgoing(
       "://" +
       outgoing.host +
       (outgoing.port ? ":" + outgoing.port : "");
+
+  if (req.httpVersionMajor > 1) {
+    for (const header of HTTP2_HEADER_BLACKLIST) {
+      delete outgoing.headers[header];
+    }
+  }
+
   return outgoing;
 }
 

lib/http-proxy/index.ts

@@ -7,6 +7,7 @@ import { EventEmitter } from "node:events";
 import type { Stream } from "node:stream";
 import debug from "debug";
 import { toURL } from "./common";
+import type { Client, Dispatcher } from "undici";
 
 const log = debug("http-proxy-3");
 
@@ -92,6 +93,8 @@ export interface ServerOptions {
    * This is passed to https.request.
    */
   ca?: string;
+  clientOptions?: Client.Options;
+  requestOptions?: Dispatcher.RequestOptions;
 }
 
 export interface NormalizedServerOptions extends ServerOptions {

lib/http-proxy/passes/web-incoming.ts

@@ -17,16 +17,9 @@ import {
   type ServerResponse as Response,
 } from "node:http";
 import { type Socket } from "node:net";
-import type {
-  ErrorCallback,
-  NormalizedServerOptions,
-  NormalizeProxyTarget,
-  ProxyServer,
-  ProxyTarget,
-  ProxyTargetUrl,
-  ServerOptions,
-} from "..";
-import { Dispatcher, request, stream as uStream, Client } from "undici";
+import type { ErrorCallback, NormalizedServerOptions, NormalizeProxyTarget, ProxyServer, ProxyTarget, ProxyTargetUrl, ServerOptions } from "..";
+import Stream, { Writable } from "node:stream";
+import { Client, Dispatcher } from "undici";
 
 export type ProxyResponse = Request & {
   headers: { [key: string]: string | string[] };
@@ -82,132 +75,48 @@ export function XHeaders(req: Request, _res: Response, options: ServerOptions) {
 // Does the actual proxying. If `forward` is enabled fires up
 // a ForwardStream (there is NO RESPONSE), same happens for ProxyStream. The request
 // just dies otherwise.
-export async function stream(
-  req: Request,
-  res: Response,
-  options: NormalizedServerOptions,
-  _: Buffer | undefined,
-  server: ProxyServer,
-  cb: ErrorCallback | undefined,
-) {
+export function stream(req: Request, res: Response, options: NormalizedServerOptions, _: Buffer | undefined, server: ProxyServer, cb: ErrorCallback | undefined) {
   // And we begin!
   server.emit("start", req, res, options.target || options.forward!);
 
+  if (options.clientOptions || options.requestOptions || true) {
+    return stream2(req, res, options, _, server, cb);
+  }
+
   const agents = options.followRedirects ? followRedirects : nativeAgents;
-  const http = agents.http as typeof import("http");
-  const https = agents.https as typeof import("https");
+  const http = agents.http as typeof import('http');
+  const https = agents.https as typeof import('https');
 
   if (options.forward) {
+    // forward enabled, so just pipe the request
+    const proto = options.forward.protocol === "https:" ? https : http;
     const outgoingOptions = common.setupOutgoing(
       options.ssl || {},
       options,
       req,
       "forward",
     );
+    const forwardReq = proto.request(outgoingOptions);
 
-    const targetUrl = `${outgoingOptions.url}`;
-
-    const undiciOptions: any = {
-      method: outgoingOptions.method as Dispatcher.HttpMethod,
-      headers: outgoingOptions.headers,
-      path: outgoingOptions.path,
-    };
-
-    // Handle request body
-    if (options.buffer) {
-      undiciOptions.body = options.buffer;
-    } else if (req.method !== "GET" && req.method !== "HEAD") {
-      undiciOptions.body = req;
-    }
-
-    try {
-      const client = new Client(targetUrl);
-      await client.request(undiciOptions);
-    } catch (err) {
-      if (cb) {
-        cb(err as Error, req, res, options.forward);
-      } else {
-        server.emit("error", err as Error, req, res, options.forward);
-      }
-    }
+    // error handler (e.g. ECONNRESET, ECONNREFUSED)
+    // Handle errors on incoming request as well as it makes sense to
+    const forwardError = createErrorHandler(forwardReq, options.forward);
+    req.on("error", forwardError);
+    forwardReq.on("error", forwardError);
 
+    (options.buffer || req).pipe(forwardReq);
     if (!options.target) {
+      // no target, so we do not send anything back to the client.
+      // If target is set, we do a separate proxy below, which might be to a
+      // completely different server.
       return res.end();
     }
   }
 
   // Request initalization
+  const proto = options.target!.protocol === "https:" ? https : http;
   const outgoingOptions = common.setupOutgoing(options.ssl || {}, options, req);
-  const client = new Client(outgoingOptions.url, {
-    allowH2: req.httpVersionMajor === 2,
-  });
-  // const proxyReq = proto.request(outgoingOptions);
-
-  const dispatchOptions: Dispatcher.DispatchOptions = {
-    method: outgoingOptions.method as Dispatcher.HttpMethod,
-    path: outgoingOptions.path || "/",
-    headers: outgoingOptions.headers,
-
-    body:
-      options.buffer ||
-      (req.method !== "GET" && req.method !== "HEAD" ? req : undefined),
-  };
-
-  let responseStarted = false;
-
-  client.dispatch(dispatchOptions, {
-    onRequestStart(controller, context) {
-      // Can modify the request just before headers are sent
-      console.log("onRequestStart");
-    },
-    onResponseStart(controller, statusCode, headers, statusMessage) {
-      // Set response status and headers - crucial for SSE
-      res.statusCode = statusCode;
-
-      // Set headers from the record object
-      for (const [name, value] of Object.entries(headers)) {
-        res.setHeader(name, value);
-      }
-
-      // For SSE, ensure headers are sent immediately
-      const contentType = headers["content-type"] || headers["Content-Type"];
-      if (contentType && contentType.toString().includes("text/event-stream")) {
-        res.flushHeaders();
-      }
-
-      responseStarted = true;
-    },
-    onResponseError(controller, err) {
-      if (
-        req.socket.destroyed &&
-        (err as NodeJS.ErrnoException).code === "ECONNRESET"
-      ) {
-        server.emit("econnreset", err, req, res, outgoingOptions.url);
-        controller.abort(err);
-        return;
-      }
-
-      if (cb) {
-        cb(err, req, res, outgoingOptions.url);
-      } else {
-        server.emit("error", err, req, res, outgoingOptions.url);
-      }
-    },
-    onResponseData(controller, chunk) {
-      if (responseStarted) {
-        res.write(chunk);
-      }
-    },
-    onResponseEnd(controller, trailers) {
-      if (trailers) {
-        res.addTrailers(trailers);
-      }
-      res.end();
-      client.close();
-    },
-  });
-
-  return;
+  const proxyReq = proto.request(outgoingOptions);
 
   // Enable developers to modify the proxyReq before headers are sent
   proxyReq.on("socket", (socket: Socket) => {
@@ -237,15 +146,9 @@ export async function stream(
   req.on("error", proxyError);
   proxyReq.on("error", proxyError);
 
-  function createErrorHandler(
-    proxyReq: http.ClientRequest,
-    url: NormalizeProxyTarget<ProxyTargetUrl>,
-  ) {
+  function createErrorHandler(proxyReq: http.ClientRequest, url: NormalizeProxyTarget<ProxyTargetUrl>) {
     return (err: Error) => {
-      if (
-        req.socket.destroyed &&
-        (err as NodeJS.ErrnoException).code === "ECONNRESET"
-      ) {
+      if (req.socket.destroyed && (err as NodeJS.ErrnoException).code === "ECONNRESET") {
         server.emit("econnreset", err, req, res, url);
         proxyReq.destroy();
         return;
@@ -267,14 +170,7 @@ export async function stream(
     if (!res.headersSent && !options.selfHandleResponse) {
       for (const pass of web_o) {
         // note: none of these return anything
-        pass(
-          req,
-          res as EditableResponse,
-          proxyRes,
-          options as NormalizedServerOptions & {
-            target: NormalizeProxyTarget<ProxyTarget>;
-          },
-        );
+        pass(req, res as EditableResponse, proxyRes, options as NormalizedServerOptions & { target: NormalizeProxyTarget<ProxyTarget> });
       }
     }
 
@@ -293,4 +189,120 @@ export async function stream(
   });
 }
 
+
+async function stream2(
+  req: Request,
+  res: Response,
+  options: NormalizedServerOptions,
+  _: Buffer | undefined,
+  server: ProxyServer,
+  cb?: ErrorCallback,
+) {
+  // Implementation of stream2 function
+  if (options.forward) {
+    const outgoingOptions = common.setupOutgoing(
+      options.ssl || {},
+      options,
+      req,
+      "forward",
+    );
+
+    const clientOptions = {
+      allowH2: outgoingOptions.url.startsWith('https://'),
+      connect: {
+        rejectUnauthorized: options.secure !== false,
+      },
+      ...options.clientOptions,
+    };
+
+    const client = new Client(outgoingOptions.url, options.clientOptions);
+
+
+    const requestOptions: Dispatcher.RequestOptions = {
+      method: outgoingOptions.method as Dispatcher.HttpMethod,
+      headers: outgoingOptions.headers,
+      path: outgoingOptions.path || "/",
+    };
+
+    // Handle request body
+    if (options.buffer) {
+      requestOptions.body = options.buffer as Stream.Readable;
+    } else if (req.method !== "GET" && req.method !== "HEAD") {
+      requestOptions.body = req;
+    }
+
+    try {
+      await client.request(requestOptions)
+    } catch (err) {
+      if (cb) {
+        cb(err as Error, req, res, options.forward);
+      } else {
+        server.emit("error", err as Error, req, res, options.forward);
+      }
+    }
+
+    if (!options.target) {
+      return res.end();
+    }
+  }
+
+  const outgoingOptions = common.setupOutgoing(options.ssl || {}, options, req);
+
+  const clientOptions = {
+    ...options.clientOptions,
+    allowH2: outgoingOptions.url.startsWith('https://'),
+    connect: {
+      rejectUnauthorized: options.secure !== false,
+    }
+  };
+
+  const client = new Client(outgoingOptions.url, clientOptions);
+
+
+  const requestOptions: Dispatcher.RequestOptions = {
+    method: outgoingOptions.method as Dispatcher.HttpMethod,
+    headers: outgoingOptions.headers,
+    path: outgoingOptions.path || "/",
+  };
+
+  // Handle request body
+  if (options.buffer) {
+    requestOptions.body = options.buffer as Stream.Readable;
+  } else if (req.method !== "GET" && req.method !== "HEAD") {
+    requestOptions.body = req;
+  }
+
+  client.stream(
+    requestOptions,
+    ({ statusCode, headers }) => {
+      if (!res.headersSent) {
+        if (req.httpVersionMajor === 2) {
+          delete headers.connection;
+          delete headers["keep-alive"];
+          delete headers["transfer-encoding"];
+        }
+        res.writeHead(statusCode, headers);
+      }
+      return new Writable({
+        write(chunk, _encoding, callback) {
+          res.write(chunk);
+          callback();
+        },
+      });
+    },
+    (err, { trailers }) => {
+      if (err) {
+        if (cb) {
+          cb(err as Error, req, res, options.forward);
+        } else {
+          server.emit("error", err as Error, req, res, options.forward);
+        }
+      }
+      if (trailers) {
+        res.end();
+      }
+    },
+  );
+}
+
 export const WEB_PASSES = { deleteLength, timeout, XHeaders, stream };