mirror of
https://github.com/MercuryWorkshop/epoxy-tls.git
synced 2025-05-13 06:20:02 -04:00
360 lines
13 KiB
Rust
360 lines
13 KiB
Rust
#![feature(let_chains)]
|
|
#[macro_use]
|
|
mod utils;
|
|
mod tokioio;
|
|
mod wrappers;
|
|
|
|
use tokioio::TokioIo;
|
|
use utils::{ReplaceErr, UriExt};
|
|
use wrappers::{IncomingBody, WsStreamWrapper};
|
|
|
|
use std::sync::Arc;
|
|
|
|
use async_compression::tokio::bufread as async_comp;
|
|
use bytes::Bytes;
|
|
use futures_util::StreamExt;
|
|
use http::{uri, HeaderName, HeaderValue, Request, Response};
|
|
use hyper::{body::Incoming, client::conn::http1::Builder, Uri};
|
|
use js_sys::{Array, Object, Reflect, Uint8Array};
|
|
use penguin_mux_wasm::{Multiplexor, MuxStream, Role};
|
|
use tokio_rustls::{client::TlsStream, rustls, rustls::RootCertStore, TlsConnector};
|
|
use tokio_util::{
|
|
either::Either,
|
|
io::{ReaderStream, StreamReader},
|
|
};
|
|
use wasm_bindgen::prelude::*;
|
|
use web_sys::TextEncoder;
|
|
|
|
type HttpBody = http_body_util::Full<Bytes>;
|
|
|
|
#[derive(Debug)]
|
|
enum WsTcpResponse {
|
|
Success(Response<Incoming>),
|
|
Redirect((Response<Incoming>, http::Request<HttpBody>, Uri)),
|
|
}
|
|
|
|
enum WsTcpCompression {
|
|
Brotli,
|
|
Gzip,
|
|
}
|
|
|
|
type WsTcpTlsStream = TlsStream<MuxStream<WsStreamWrapper>>;
|
|
type WsTcpUnencryptedStream = MuxStream<WsStreamWrapper>;
|
|
type WsTcpStream = Either<WsTcpTlsStream, WsTcpUnencryptedStream>;
|
|
|
|
async fn send_req(req: http::Request<HttpBody>, should_redirect: bool, io: WsTcpStream) -> Result<WsTcpResponse, JsError> {
|
|
let (mut req_sender, conn) = Builder::new()
|
|
.title_case_headers(true)
|
|
.preserve_header_case(true)
|
|
.handshake(TokioIo::new(io))
|
|
.await
|
|
.replace_err("Failed to connect to host")?;
|
|
|
|
wasm_bindgen_futures::spawn_local(async move {
|
|
if let Err(e) = conn.await {
|
|
error!("wstcp: error in muxed hyper connection! {:?}", e);
|
|
}
|
|
});
|
|
|
|
let new_req = if should_redirect { Some(req.clone()) } else { None };
|
|
|
|
let res = req_sender
|
|
.send_request(req)
|
|
.await
|
|
.replace_err("Failed to send request");
|
|
match res {
|
|
Ok(res) => {
|
|
if utils::is_redirect(res.status().as_u16())
|
|
&& let Some(mut new_req) = new_req
|
|
&& let Some(location) = res.headers().get("Location")
|
|
&& let Ok(redirect_url) = new_req.uri().get_redirect(location)
|
|
&& let Some(redirect_url_authority) = redirect_url
|
|
.clone()
|
|
.authority()
|
|
.replace_err("Redirect URL must have an authority")
|
|
.ok()
|
|
{
|
|
let should_strip = new_req.uri().is_same_host(&redirect_url);
|
|
if should_strip {
|
|
new_req.headers_mut().remove("authorization");
|
|
new_req.headers_mut().remove("cookie");
|
|
new_req.headers_mut().remove("www-authenticate");
|
|
}
|
|
let new_url = redirect_url.clone();
|
|
*new_req.uri_mut() = redirect_url;
|
|
new_req.headers_mut().remove("Host");
|
|
new_req.headers_mut().insert(
|
|
"Host",
|
|
HeaderValue::from_str(redirect_url_authority.as_str())?,
|
|
);
|
|
Ok(WsTcpResponse::Redirect((res, new_req, new_url)))
|
|
} else {
|
|
Ok(WsTcpResponse::Success(res))
|
|
}
|
|
}
|
|
Err(err) => Err(err),
|
|
}
|
|
}
|
|
|
|
#[wasm_bindgen(start)]
|
|
async fn start() {
|
|
utils::set_panic_hook();
|
|
}
|
|
|
|
#[wasm_bindgen]
|
|
pub struct WsTcp {
|
|
rustls_config: Arc<rustls::ClientConfig>,
|
|
mux: Multiplexor<WsStreamWrapper>,
|
|
useragent: String,
|
|
redirect_limit: usize,
|
|
}
|
|
|
|
#[wasm_bindgen]
|
|
impl WsTcp {
|
|
#[wasm_bindgen(constructor)]
|
|
pub async fn new(
|
|
ws_url: String,
|
|
useragent: String,
|
|
redirect_limit: usize,
|
|
) -> Result<WsTcp, JsError> {
|
|
let ws_uri = ws_url
|
|
.parse::<uri::Uri>()
|
|
.replace_err("Failed to parse websocket url")?;
|
|
|
|
let ws_uri_scheme = ws_uri
|
|
.scheme_str()
|
|
.replace_err("Websocket URL must have a scheme")?;
|
|
if ws_uri_scheme != "ws" && ws_uri_scheme != "wss" {
|
|
return Err(JsError::new("Scheme must be either `ws` or `wss`"));
|
|
}
|
|
|
|
debug!("connecting to ws {:?}", ws_url);
|
|
let ws = WsStreamWrapper::connect(ws_url, None)
|
|
.await
|
|
.replace_err("Failed to connect to websocket")?;
|
|
debug!("connected!");
|
|
let mux = Multiplexor::new(ws, Role::Client, None, None);
|
|
|
|
let mut certstore = RootCertStore::empty();
|
|
certstore.extend(webpki_roots::TLS_SERVER_ROOTS.iter().cloned());
|
|
|
|
let rustls_config = Arc::new(
|
|
rustls::ClientConfig::builder()
|
|
.with_root_certificates(certstore)
|
|
.with_no_client_auth(),
|
|
);
|
|
|
|
Ok(WsTcp {
|
|
mux,
|
|
rustls_config,
|
|
useragent,
|
|
redirect_limit,
|
|
})
|
|
}
|
|
|
|
async fn get_http_io(&self, url: &Uri) -> Result<WsTcpStream, JsError> {
|
|
let url_host = url.host().replace_err("URL must have a host")?;
|
|
let url_port = utils::get_url_port(url)?;
|
|
let channel = self
|
|
.mux
|
|
.client_new_stream_channel(url_host.as_bytes(), url_port)
|
|
.await
|
|
.replace_err("Failed to create multiplexor channel")?;
|
|
|
|
if *url.scheme().replace_err("URL must have a scheme")? == uri::Scheme::HTTPS {
|
|
let cloned_uri = url_host.to_string().clone();
|
|
let connector = TlsConnector::from(self.rustls_config.clone());
|
|
let io = connector
|
|
.connect(
|
|
cloned_uri
|
|
.try_into()
|
|
.replace_err("Failed to parse URL (rustls)")?,
|
|
channel,
|
|
)
|
|
.await
|
|
.replace_err("Failed to perform TLS handshake")?;
|
|
Ok(WsTcpStream::Left(io))
|
|
} else {
|
|
Ok(WsTcpStream::Right(channel))
|
|
}
|
|
}
|
|
|
|
async fn send_req(
|
|
&self,
|
|
req: http::Request<HttpBody>,
|
|
should_redirect: bool
|
|
) -> Result<(hyper::Response<Incoming>, Uri, bool), JsError> {
|
|
let mut redirected = false;
|
|
let uri = req.uri().clone();
|
|
let mut current_resp: WsTcpResponse = send_req(req, should_redirect, self.get_http_io(&uri).await?).await?;
|
|
for _ in 0..self.redirect_limit - 1 {
|
|
match current_resp {
|
|
WsTcpResponse::Success(_) => break,
|
|
WsTcpResponse::Redirect((_, req, new_url)) => {
|
|
redirected = true;
|
|
current_resp = send_req(req, should_redirect, self.get_http_io(&new_url).await?).await?
|
|
}
|
|
}
|
|
}
|
|
|
|
match current_resp {
|
|
WsTcpResponse::Success(resp) => Ok((resp, uri, redirected)),
|
|
WsTcpResponse::Redirect((resp, _, new_url)) => Ok((resp, new_url, redirected)),
|
|
}
|
|
}
|
|
|
|
pub async fn fetch(&self, url: String, options: Object) -> Result<web_sys::Response, JsError> {
|
|
let uri = url.parse::<uri::Uri>().replace_err("Failed to parse URL")?;
|
|
let uri_scheme = uri.scheme().replace_err("URL must have a scheme")?;
|
|
if *uri_scheme != uri::Scheme::HTTP && *uri_scheme != uri::Scheme::HTTPS {
|
|
return Err(jerr!("Scheme must be either `http` or `https`"));
|
|
}
|
|
let uri_host = uri.host().replace_err("URL must have a host")?;
|
|
|
|
let req_method_string: String = match Reflect::get(&options, &jval!("method")) {
|
|
Ok(val) => val.as_string().unwrap_or("GET".to_string()),
|
|
Err(_) => "GET".to_string(),
|
|
};
|
|
let req_method: http::Method =
|
|
http::Method::try_from(<String as AsRef<str>>::as_ref(&req_method_string))
|
|
.replace_err("Invalid http method")?;
|
|
|
|
let req_should_redirect = match Reflect::get(&options, &jval!("redirect")) {
|
|
Ok(val) => !matches!(val.as_string().unwrap_or_default().as_str(), "error" | "manual"),
|
|
Err(_) => true,
|
|
};
|
|
|
|
let body_jsvalue: Option<JsValue> = Reflect::get(&options, &jval!("body")).ok();
|
|
let body = if let Some(val) = body_jsvalue {
|
|
if val.is_string() {
|
|
let str = val
|
|
.as_string()
|
|
.replace_err("Failed to get string from body")?;
|
|
let encoder =
|
|
TextEncoder::new().replace_err("Failed to create TextEncoder for body")?;
|
|
let encoded = encoder.encode_with_input(str.as_ref());
|
|
Some(encoded)
|
|
} else {
|
|
Some(Uint8Array::new(&val).to_vec())
|
|
}
|
|
} else {
|
|
None
|
|
};
|
|
|
|
let body_bytes: Bytes = match body {
|
|
Some(vec) => Bytes::from(vec),
|
|
None => Bytes::new(),
|
|
};
|
|
|
|
let headers: Option<Vec<Vec<String>>> = Reflect::get(&options, &jval!("headers"))
|
|
.map(|val| {
|
|
if val.is_truthy() {
|
|
Some(utils::entries_of_object(&Object::from(val)))
|
|
} else {
|
|
None
|
|
}
|
|
})
|
|
.unwrap_or(None);
|
|
|
|
let mut builder = Request::builder().uri(uri.clone()).method(req_method);
|
|
|
|
let headers_map = builder.headers_mut().replace_err("Failed to get headers")?;
|
|
headers_map.insert("Accept-Encoding", HeaderValue::from_str("gzip, br")?);
|
|
headers_map.insert("Connection", HeaderValue::from_str("close")?);
|
|
headers_map.insert("User-Agent", HeaderValue::from_str(&self.useragent)?);
|
|
headers_map.insert("Host", HeaderValue::from_str(uri_host)?);
|
|
if body_bytes.is_empty() {
|
|
headers_map.insert("Content-Length", HeaderValue::from_str("0")?);
|
|
}
|
|
|
|
if let Some(headers) = headers {
|
|
for hdr in headers {
|
|
headers_map.insert(
|
|
HeaderName::from_bytes(hdr[0].as_bytes())
|
|
.replace_err("Failed to get hdr name")?,
|
|
HeaderValue::from_str(hdr[1].clone().as_ref())
|
|
.replace_err("Failed to get hdr value")?,
|
|
);
|
|
}
|
|
}
|
|
|
|
let request = builder
|
|
.body(HttpBody::new(body_bytes))
|
|
.replace_err("Failed to make request")?;
|
|
|
|
let (resp, last_url, req_redirected) = self.send_req(request, req_should_redirect).await?;
|
|
|
|
let resp_headers_jsarray = resp
|
|
.headers()
|
|
.iter()
|
|
.filter_map(|val| {
|
|
Some(Array::of2(
|
|
&jval!(val.0.as_str()),
|
|
&jval!(val.1.to_str().ok()?),
|
|
))
|
|
})
|
|
.collect::<Array>();
|
|
|
|
let resp_headers = Object::from_entries(&resp_headers_jsarray)
|
|
.replace_err("Failed to create response headers object")?;
|
|
|
|
let mut respinit = web_sys::ResponseInit::new();
|
|
respinit
|
|
.headers(&resp_headers)
|
|
.status(resp.status().as_u16())
|
|
.status_text(resp.status().canonical_reason().unwrap_or_default());
|
|
|
|
let compression = match resp
|
|
.headers()
|
|
.get("Content-Encoding")
|
|
.and_then(|val| val.to_str().ok())
|
|
.unwrap_or_default()
|
|
{
|
|
"gzip" => Some(WsTcpCompression::Gzip),
|
|
"br" => Some(WsTcpCompression::Brotli),
|
|
_ => None,
|
|
};
|
|
|
|
let incoming_body = IncomingBody::new(resp.into_body());
|
|
let decompressed_body = match compression {
|
|
Some(alg) => match alg {
|
|
WsTcpCompression::Gzip => Either::Left(Either::Left(ReaderStream::new(
|
|
async_comp::GzipDecoder::new(StreamReader::new(incoming_body)),
|
|
))),
|
|
WsTcpCompression::Brotli => Either::Left(Either::Right(ReaderStream::new(
|
|
async_comp::BrotliDecoder::new(StreamReader::new(incoming_body)),
|
|
))),
|
|
},
|
|
None => Either::Right(incoming_body),
|
|
};
|
|
let stream = wasm_streams::ReadableStream::from_stream(decompressed_body.map(|x| {
|
|
Ok(Uint8Array::from(
|
|
x.replace_err_jv("Failed to get frame from response")?
|
|
.as_ref(),
|
|
)
|
|
.into())
|
|
}));
|
|
|
|
let resp = web_sys::Response::new_with_opt_readable_stream_and_init(
|
|
Some(&stream.into_raw()),
|
|
&respinit,
|
|
)
|
|
.replace_err("Failed to make response")?;
|
|
|
|
Object::define_property(
|
|
&resp,
|
|
&jval!("url"),
|
|
&utils::define_property_obj(jval!(last_url.to_string()), false)
|
|
.replace_err("Failed to make define_property object for url")?,
|
|
);
|
|
|
|
Object::define_property(
|
|
&resp,
|
|
&jval!("redirected"),
|
|
&utils::define_property_obj(jval!(req_redirected), false)
|
|
.replace_err("Failed to make define_property object for redirected")?,
|
|
);
|
|
|
|
Ok(resp)
|
|
}
|
|
}
|