/* Copyright 2011, 2012 predic8 GmbH, www.predic8.com
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License. */
package com.predic8.membrane.core.transport.http;
import static com.predic8.membrane.core.util.TextUtil.isNullOrEmpty;
import java.io.*;
import java.net.InetAddress;
import java.net.InetSocketAddress;
import java.net.Socket;
import java.net.UnknownHostException;
import javax.annotation.Nullable;
import javax.net.ssl.SSLSocket;
import com.predic8.membrane.core.Constants;
import com.predic8.membrane.core.transport.http.client.ProxyConfiguration;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import com.predic8.membrane.core.exchange.Exchange;
import com.predic8.membrane.core.http.AbstractBody;
import com.predic8.membrane.core.http.MessageObserver;
import com.predic8.membrane.core.http.Request;
import com.predic8.membrane.core.http.Response;
import com.predic8.membrane.core.transport.ssl.SSLProvider;
/**
* A {@link Connection} is an outbound TCP/IP connection, possibly managed
* by a {@link ConnectionManager}.
*
* It is symbiotic to an {@link Exchange} during the exchange's HTTP client
* call, which starts in {@link HttpClient#call(Exchange)} and ends when the
* HTTP response body has fully been read (or never, if
* {@link Request#isBindTargetConnectionToIncoming()} is true).
*
* The connection will be registered by the {@link HttpClient} as a
* {@link MessageObserver} on the {@link Response} to get notified when the HTTP
* response body has fully been read and it should deassociate itself from the
* exchange.
*/
public class Connection implements MessageObserver {
private static Logger log = LoggerFactory.getLogger(Connection.class.getName());
public final ConnectionManager mgr;
public final String host;
public Socket socket;
public InputStream in;
public OutputStream out;
private SSLProvider sslProvider;
private String sniServerName;
private ProxyConfiguration proxyConfiguration;
private long lastUse;
private long timeout;
private int maxExchanges = Integer.MAX_VALUE;
private int completedExchanges;
private Exchange exchange;
private boolean keepAttachedToExchange;
public static Connection open(String host, int port, String localHost, SSLProvider sslProvider, int connectTimeout) throws UnknownHostException, IOException {
return open(host, port, localHost, sslProvider, null, connectTimeout);
}
public static Connection open(String host, int port, String localHost, SSLProvider sslProvider, ConnectionManager mgr,
int connectTimeout, @Nullable String sniServername, @Nullable ProxyConfiguration proxy,
@Nullable SSLProvider proxySSLProvider) throws UnknownHostException, IOException {
Connection con = new Connection(mgr, host, sslProvider, sniServername, proxy);
String origHost = host;
int origPort = port;
SSLProvider origSSLProvider = sslProvider;
String origSniServername = sniServername;
if (proxy != null) {
sslProvider = proxySSLProvider;
host = proxy.getHost();
port = proxy.getPort();
sniServername = null;
}
if (sslProvider != null) {
if (isNullOrEmpty(localHost))
con.socket = sslProvider.createSocket(host, port, connectTimeout, sniServername);
else
con.socket = sslProvider.createSocket(host, port, InetAddress.getByName(localHost), 0, connectTimeout, sniServername);
} else {
if (isNullOrEmpty(localHost)) {
con.socket = new Socket();
} else {
con.socket = new Socket();
con.socket.bind(new InetSocketAddress(InetAddress.getByName(localHost), 0));
}
con.socket.connect(new InetSocketAddress(host, port), connectTimeout);
}
if (proxy != null && origSSLProvider != null) {
con.doTunnelHandshake(proxy, con.socket, origHost, origPort);
con.socket = origSSLProvider.createSocket(con.socket, origHost, origPort, connectTimeout, origSniServername);
}
log.debug("Opened connection on localPort: " + con.socket.getLocalPort());
//Creating output stream before input stream is suggested.
con.out = new BufferedOutputStream(con.socket.getOutputStream(), 2048);
con.in = new BufferedInputStream(con.socket.getInputStream(), 2048);
return con;
}
public static Connection open(String host, int port, String localHost, SSLProvider sslProvider, ConnectionManager mgr, int connectTimeout) throws UnknownHostException, IOException {
return open(host,port,localHost,sslProvider,mgr,connectTimeout,null,null,null);
}
private Connection(ConnectionManager mgr, String host, @Nullable SSLProvider sslProvider, @Nullable String sniServerName, @Nullable ProxyConfiguration proxy) {
this.mgr = mgr;
this.host = host;
this.sslProvider = sslProvider;
this.sniServerName = sniServerName;
this.proxyConfiguration = proxy;
}
public boolean isSame(String host, int port) {
return socket != null && host.equals(this.host) && port == socket.getPort();
}
public void close() throws IOException {
if (socket == null)
return;
log.debug("Closing HTTP connection LocalPort: " + socket.getLocalPort());
if (in != null)
in.close();
if (out != null) {
out.flush();
out.close();
}
// Test for isClosed() is needed!
if (!(socket instanceof SSLSocket) && !socket.isClosed())
socket.shutdownInput();
socket.close();
socket = null;
if (mgr != null)
mgr.releaseConnection(this); // this.isClosed() == true, but mgr keeps track of number of connections
}
@Override
protected void finalize() throws Throwable {
close();
}
public boolean isClosed() {
return socket == null || socket.isClosed();
}
/**
* See {@link ConnectionManager} for documentation.
*/
public void release() throws IOException {
if (mgr != null)
mgr.releaseConnection(this);
else
close();
}
@Override
public void bodyRequested(AbstractBody body) {
// do nothing
}
@Override
public void bodyComplete(AbstractBody body) {
lastUse = System.currentTimeMillis();
completedExchanges++;
try {
if (exchange != null) {
if (exchange.canKeepConnectionAlive()) {
if (keepAttachedToExchange)
return;
else
release();
} else {
close();
}
exchange.setTargetConnection(null);
exchange = null;
}
} catch (IOException e) {
throw new RuntimeException(e);
}
}
public final void setTimeout(long timeout) {
this.timeout = timeout;
}
public final long getTimeout() {
return timeout;
}
public final int getMaxExchanges() {
return maxExchanges;
}
public final void setMaxExchanges(int maxExchanges) {
this.maxExchanges = maxExchanges;
}
public final int getCompletedExchanges() {
return completedExchanges;
}
public final long getLastUse() {
return lastUse;
}
public String getHost() {
return host;
}
void setKeepAttachedToExchange(boolean keepAttachedToExchange) {
this.keepAttachedToExchange = keepAttachedToExchange;
}
void setExchange(Exchange exchange) {
this.exchange = exchange;
}
@Override
public String toString() {
return socket.getRemoteSocketAddress().toString();
}
public String getSniServerName() {
return sniServerName;
}
public ProxyConfiguration getProxyConfiguration() {
return proxyConfiguration;
}
// From https://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/samples/sockets/client/SSLSocketClientWithTunneling.java
/*
*
* Copyright (c) 1994, 2004, Oracle and/or its affiliates. All rights reserved.
*
* Redistribution and use in source and binary forms, with or
* without modification, are permitted provided that the following
* conditions are met:
*
* -Redistribution of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
*
* Redistribution in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in
* the documentation and/or other materials provided with the
* distribution.
*
* Neither the name of Oracle nor the names of
* contributors may be used to endorse or promote products derived
* from this software without specific prior written permission.
*
* This software is provided "AS IS," without a warranty of any
* kind. ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND
* WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE HEREBY
* EXCLUDED. SUN MICROSYSTEMS, INC. ("SUN") AND ITS LICENSORS SHALL
* NOT BE LIABLE FOR ANY DAMAGES SUFFERED BY LICENSEE AS A RESULT
* OF USING, MODIFYING OR DISTRIBUTING THIS SOFTWARE OR ITS
* DERIVATIVES. IN NO EVENT WILL SUN OR ITS LICENSORS BE LIABLE FOR
* ANY LOST REVENUE, PROFIT OR DATA, OR FOR DIRECT, INDIRECT,
* SPECIAL, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES, HOWEVER
* CAUSED AND REGARDLESS OF THE THEORY OF LIABILITY, ARISING OUT OF
* THE USE OF OR INABILITY TO USE THIS SOFTWARE, EVEN IF SUN HAS
* BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
*
* You acknowledge that this software is not designed, licensed or
* intended for use in the design, construction, operation or
* maintenance of any nuclear facility.
*/
/*
* Tell our tunnel where we want to CONNECT, and look for the
* right reply. Throw IOException if anything goes wrong.
*/
private void doTunnelHandshake(ProxyConfiguration proxy, Socket tunnel, String host, int port)
throws IOException {
if (log.isDebugEnabled())
log.debug("send 'CONNECT " + host + ":" + port + "' to " + proxy.getHost() + ((proxy.isAuthentication()) ? " authenticated" : "") );
OutputStream out = tunnel.getOutputStream();
String msg = "CONNECT " + host + ":" + port + " HTTP/1.0\r\n"
+ "User-Agent: " + Constants.USERAGENT + "\r\n"
+ (proxy.isAuthentication() ? ("Proxy-Authorization: " + proxy.getCredentials() + "\r\n") : "")
+ "\r\n";
byte b[];
try {
/*
* We really do want ASCII7 -- the http protocol doesn't change
* with locale.
*/
b = msg.getBytes("ASCII7");
} catch (UnsupportedEncodingException ignored) {
/*
* If ASCII7 isn't there, something serious is wrong, but
* Paranoia Is Good (tm)
*/
b = msg.getBytes();
}
out.write(b);
out.flush();
/*
* We need to store the reply so we can create a detailed
* error message to the user.
*/
byte reply[] = new byte[1024];
int replyLen = 0;
int newlinesSeen = 0;
boolean headerDone = false; /* Done on first newline */
InputStream in = tunnel.getInputStream();
while (newlinesSeen < 2) {
int i = in.read();
if (i < 0) {
throw new IOException("Unexpected EOF from proxy");
}
if (i == '\n') {
headerDone = true;
++newlinesSeen;
} else if (i != '\r') {
newlinesSeen = 0;
if (!headerDone && replyLen < reply.length) {
reply[replyLen++] = (byte) i;
}
}
}
/*
* Converting the byte array to a string is slightly wasteful
* in the case where the connection was successful, but it's
* insignificant compared to the network overhead.
*/
String replyStr;
try {
replyStr = new String(reply, 0, replyLen, "ASCII7");
} catch (UnsupportedEncodingException ignored) {
replyStr = new String(reply, 0, replyLen);
}
/* We asked for HTTP/1.0, so we should get that back */
if (!replyStr.startsWith("HTTP/1.1 200")) {
throw new IOException("Unable to tunnel through "
+ proxy.getHost() + ":" + proxy.getPort()
+ ". Proxy returns \"" + replyStr + "\"");
}
/* tunneling Handshake was successful! */
}
public SSLProvider getSslProvider() {
return sslProvider;
}
}