fionera
/
transfer.sh
geforkt von kiska/transfer.sh
1
0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen entweder mit einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
318 Commits
9 Branches
34 MiB
 
 
 
Branch: kiska
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „kiska“
${ noResults }
transfer.sh/vendor/cloud.google.com/go/httpreplay/internal/proxy/record.go

230 Zeilen
6.7 KiB
Originalformat Permalink Blame Verlauf 

  1. // Copyright 2018 Google LLC

  2. //

  3. // Licensed under the Apache License, Version 2.0 (the "License");

  4. // you may not use this file except in compliance with the License.

  5. // You may obtain a copy of the License at

  6. //

  7. //      http://www.apache.org/licenses/LICENSE-2.0

  8. //

  9. // Unless required by applicable law or agreed to in writing, software

  10. // distributed under the License is distributed on an "AS IS" BASIS,

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. // See the License for the specific language governing permissions and

  13. // limitations under the License.

  14. 

  15. // Package proxy provides a record/replay HTTP proxy. It is designed to support

  16. // both an in-memory API (cloud.google.com/go/httpreplay) and a standalone server

  17. // (cloud.google.com/go/httpreplay/cmd/httpr).

  18. package proxy

  19. 

  20. // See github.com/google/martian/cmd/proxy/main.go for the origin of much of this.

  21. 

  22. import (

  23. 	"crypto/tls"

  24. 	"crypto/x509"

  25. 	"encoding/json"

  26. 	"fmt"

  27. 	"io/ioutil"

  28. 	"net"

  29. 	"net/http"

  30. 	"net/url"

  31. 	"strings"

  32. 	"time"

  33. 

  34. 	"github.com/google/martian"

  35. 	"github.com/google/martian/fifo"

  36. 	"github.com/google/martian/httpspec"

  37. 	"github.com/google/martian/martianlog"

  38. 	"github.com/google/martian/mitm"

  39. )

  40. 

  41. // A Proxy is an HTTP proxy that supports recording or replaying requests.

  42. type Proxy struct {

  43. 	// The certificate that the proxy uses to participate in TLS.

  44. 	CACert *x509.Certificate

  45. 

  46. 	// The URL of the proxy.

  47. 	URL *url.URL

  48. 

  49. 	// Initial state of the client.

  50. 	Initial []byte

  51. 

  52. 	mproxy        *martian.Proxy

  53. 	filename      string          // for log

  54. 	logger        *Logger         // for recording only

  55. 	ignoreHeaders map[string]bool // headers the user has asked to ignore

  56. }

  57. 

  58. // ForRecording returns a Proxy configured to record.

  59. func ForRecording(filename string, port int) (*Proxy, error) {

  60. 	p, err := newProxy(filename)

  61. 	if err != nil {

  62. 		return nil, err

  63. 	}

  64. 

  65. 	// Construct a group that performs the standard proxy stack of request/response

  66. 	// modifications.

  67. 	stack, _ := httpspec.NewStack("httpr") // second arg is an internal group that we don't need

  68. 	p.mproxy.SetRequestModifier(stack)

  69. 	p.mproxy.SetResponseModifier(stack)

  70. 

  71. 	// Make a group for logging requests and responses.

  72. 	logGroup := fifo.NewGroup()

  73. 	skipAuth := skipLoggingByHost("accounts.google.com")

  74. 	logGroup.AddRequestModifier(skipAuth)

  75. 	logGroup.AddResponseModifier(skipAuth)

  76. 	p.logger = newLogger()

  77. 	logGroup.AddRequestModifier(p.logger)

  78. 	logGroup.AddResponseModifier(p.logger)

  79. 

  80. 	stack.AddRequestModifier(logGroup)

  81. 	stack.AddResponseModifier(logGroup)

  82. 

  83. 	// Ordinary debug logging.

  84. 	logger := martianlog.NewLogger()

  85. 	logger.SetDecode(true)

  86. 	stack.AddRequestModifier(logger)

  87. 	stack.AddResponseModifier(logger)

  88. 

  89. 	if err := p.start(port); err != nil {

  90. 		return nil, err

  91. 	}

  92. 	return p, nil

  93. }

  94. 

  95. type hideTransport http.Transport

  96. 

  97. func (t *hideTransport) RoundTrip(req *http.Request) (*http.Response, error) {

  98. 	return (*http.Transport)(t).RoundTrip(req)

  99. }

  100. 

  101. func newProxy(filename string) (*Proxy, error) {

  102. 	mproxy := martian.NewProxy()

  103. 	// Set up a man-in-the-middle configuration with a CA certificate so the proxy can

  104. 	// participate in TLS.

  105. 	x509c, priv, err := mitm.NewAuthority("cloud.google.com/go/httpreplay", "HTTPReplay Authority", time.Hour)

  106. 	if err != nil {

  107. 		return nil, err

  108. 	}

  109. 	mc, err := mitm.NewConfig(x509c, priv)

  110. 	if err != nil {

  111. 		return nil, err

  112. 	}

  113. 	mc.SetValidity(time.Hour)

  114. 	mc.SetOrganization("cloud.google.com/go/httpreplay")

  115. 	mc.SkipTLSVerify(false)

  116. 	if err != nil {

  117. 		return nil, err

  118. 	}

  119. 	mproxy.SetMITM(mc)

  120. 	return &Proxy{

  121. 		mproxy:        mproxy,

  122. 		CACert:        x509c,

  123. 		filename:      filename,

  124. 		ignoreHeaders: map[string]bool{},

  125. 	}, nil

  126. }

  127. 

  128. func (p *Proxy) start(port int) error {

  129. 	l, err := net.Listen("tcp4", fmt.Sprintf(":%d", port))

  130. 	if err != nil {

  131. 		return err

  132. 	}

  133. 	p.URL = &url.URL{Scheme: "http", Host: l.Addr().String()}

  134. 	go p.mproxy.Serve(l)

  135. 	return nil

  136. }

  137. 

  138. // Transport returns an http.Transport for clients who want to talk to the proxy.

  139. func (p *Proxy) Transport() *http.Transport {

  140. 	caCertPool := x509.NewCertPool()

  141. 	caCertPool.AddCert(p.CACert)

  142. 	return &http.Transport{

  143. 		TLSClientConfig: &tls.Config{RootCAs: caCertPool},

  144. 		Proxy:           func(*http.Request) (*url.URL, error) { return p.URL, nil },

  145. 	}

  146. }

  147. 

  148. // RemoveRequestHeaders will remove request headers matching patterns from the log,

  149. // and skip matching them. Pattern is taken literally except for *, which matches any

  150. // sequence of characters.

  151. //

  152. // This only needs to be called during recording; the patterns will be saved to the

  153. // log for replay.

  154. func (p *Proxy) RemoveRequestHeaders(patterns []string) {

  155. 	for _, pat := range patterns {

  156. 		p.logger.log.Converter.registerRemoveRequestHeaders(pat)

  157. 	}

  158. }

  159. 

  160. // ClearHeaders will replace matching headers with CLEARED.

  161. //

  162. // This only needs to be called during recording; the patterns will be saved to the

  163. // log for replay.

  164. func (p *Proxy) ClearHeaders(patterns []string) {

  165. 	for _, pat := range patterns {

  166. 		p.logger.log.Converter.registerClearHeaders(pat)

  167. 	}

  168. }

  169. 

  170. // RemoveQueryParams will remove query parameters matching patterns from the request

  171. // URL before logging, and skip matching them. Pattern is taken literally except for

  172. // *, which matches any sequence of characters.

  173. //

  174. // This only needs to be called during recording; the patterns will be saved to the

  175. // log for replay.

  176. func (p *Proxy) RemoveQueryParams(patterns []string) {

  177. 	for _, pat := range patterns {

  178. 		p.logger.log.Converter.registerRemoveParams(pat)

  179. 	}

  180. }

  181. 

  182. // ClearQueryParams will replace matching query params in the request URL with CLEARED.

  183. //

  184. // This only needs to be called during recording; the patterns will be saved to the

  185. // log for replay.

  186. func (p *Proxy) ClearQueryParams(patterns []string) {

  187. 	for _, pat := range patterns {

  188. 		p.logger.log.Converter.registerClearParams(pat)

  189. 	}

  190. }

  191. 

  192. // IgnoreHeader will cause h to be ignored during matching on replay.

  193. // Deprecated: use RemoveRequestHeaders instead.

  194. func (p *Proxy) IgnoreHeader(h string) {

  195. 	p.ignoreHeaders[http.CanonicalHeaderKey(h)] = true

  196. }

  197. 

  198. // Close closes the proxy. If the proxy is recording, it also writes the log.

  199. func (p *Proxy) Close() error {

  200. 	p.mproxy.Close()

  201. 	if p.logger != nil {

  202. 		return p.writeLog()

  203. 	}

  204. 	return nil

  205. }

  206. 

  207. func (p *Proxy) writeLog() error {

  208. 	lg := p.logger.Extract()

  209. 	lg.Initial = p.Initial

  210. 	bytes, err := json.MarshalIndent(lg, "", "  ")

  211. 	if err != nil {

  212. 		return err

  213. 	}

  214. 	return ioutil.WriteFile(p.filename, bytes, 0600) // only accessible by owner

  215. }

  216. 

  217. // skipLoggingByHost disables logging for traffic to a particular host.

  218. type skipLoggingByHost string

  219. 

  220. func (s skipLoggingByHost) ModifyRequest(req *http.Request) error {

  221. 	if strings.HasPrefix(req.Host, string(s)) {

  222. 		martian.NewContext(req).SkipLogging()

  223. 	}

  224. 	return nil

  225. }

  226. 

  227. func (s skipLoggingByHost) ModifyResponse(res *http.Response) error {

  228. 	return s.ModifyRequest(res.Request)

  229. }