-
Notifications
You must be signed in to change notification settings - Fork 36
/
Copy pathproxyfinder.go
140 lines (130 loc) · 3.86 KB
/
proxyfinder.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
// Copyright 2019, 2021, 2022 The Alpaca Authors
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package main
import (
"context"
"errors"
"log"
"net"
"net/http"
"net/url"
"strings"
"sync"
)
const contextKeyProxy = contextKey("proxy")
func getProxyFromContext(req *http.Request) (*url.URL, error) {
if value := req.Context().Value(contextKeyProxy); value != nil {
proxy := value.(*url.URL)
return proxy, nil
}
return nil, nil
}
type ProxyFinder struct {
runner *PACRunner
fetcher *pacFetcher
wrapper *PACWrapper
blocked *blocklist
sync.Mutex
}
func NewProxyFinder(pacurl string, wrapper *PACWrapper) *ProxyFinder {
pf := &ProxyFinder{wrapper: wrapper, blocked: newBlocklist()}
pf.runner = new(PACRunner)
pf.fetcher = newPACFetcher(pacurl)
pf.checkForUpdates()
return pf
}
func (pf *ProxyFinder) WrapHandler(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
pf.checkForUpdates()
proxy, err := pf.findProxyForRequest(req)
if err != nil {
log.Printf("[%d] %v", req.Context().Value(contextKeyID), err)
w.WriteHeader(http.StatusInternalServerError)
return
}
if proxy != nil {
ctx := context.WithValue(req.Context(), contextKeyProxy, proxy)
req = req.WithContext(ctx)
}
next.ServeHTTP(w, req)
})
}
func (pf *ProxyFinder) checkForUpdates() {
pf.Lock()
defer pf.Unlock()
pacjs := pf.fetcher.download()
if pacjs == nil {
if !pf.fetcher.isConnected() {
pf.blocked = newBlocklist()
pf.wrapper.Wrap(nil)
}
return
}
pf.blocked = newBlocklist()
if err := pf.runner.Update(pacjs); err != nil {
log.Printf("Error running PAC JS: %q", err)
} else {
pf.wrapper.Wrap(pacjs)
}
}
func (pf *ProxyFinder) findProxyForRequest(req *http.Request) (*url.URL, error) {
id := req.Context().Value(contextKeyID)
if pf.fetcher == nil {
log.Printf(`[%d] %s %s via "DIRECT"`, id, req.Method, req.URL)
return nil, nil
}
if !pf.fetcher.isConnected() {
log.Printf(`[%d] %s %s via "DIRECT" (not connected to PAC server)`,
id, req.Method, req.URL)
return nil, nil
}
str, err := pf.runner.FindProxyForURL(*req.URL)
if err != nil {
return nil, err
}
var fallback *url.URL
for _, elem := range strings.Split(str, ";") {
fields := strings.Fields(strings.TrimSpace(elem))
if len(fields) == 1 && fields[0] == "DIRECT" {
log.Printf("[%d] %s %s via %q", id, req.Method, req.URL, elem)
return nil, nil
} else if len(fields) == 2 && fields[0] == "PROXY" {
// The specified proxy should contain both a host and a port, but if for
// some reason it doesn't, assume port 80. This needs to be made explicit,
// as it eventually gets passed to net.Dial, which also requires a port.
proxy := &url.URL{Host: fields[1]}
if proxy.Port() == "" {
proxy.Host = net.JoinHostPort(proxy.Host, "80")
}
if pf.blocked.contains(proxy.Host) {
if fallback == nil {
fallback = proxy
}
continue
}
log.Printf("[%d] %s %s via %q", id, req.Method, req.URL, elem)
return proxy, nil
}
log.Printf("[%d] Couldn't parse proxy: %q", id, elem)
}
if fallback != nil {
// All the proxies are currently blocked. In this case, we'll temporarily ignore the
// blocklist and fall back to the first proxy that we saw (and skipped).
return fallback, nil
}
return nil, errors.New("no proxies available")
}
func (pf *ProxyFinder) blockProxy(proxy string) {
pf.blocked.add(proxy)
}