cloudflared-mirror/streamhandler/request.go

package streamhandler

import (
	"fmt"
	"net/http"
	"net/url"
	"strconv"
	"strings"

	"github.com/cloudflare/cloudflared/h2mux"
	"github.com/pkg/errors"
)

const (
	lbProbeUserAgentPrefix = "Mozilla/5.0 (compatible; Cloudflare-Traffic-Manager/1.0; +https://www.cloudflare.com/traffic-manager/;"
)

func FindCfRayHeader(h1 *http.Request) string {
	return h1.Header.Get("Cf-Ray")
}

func IsLBProbeRequest(req *http.Request) bool {
	return strings.HasPrefix(req.UserAgent(), lbProbeUserAgentPrefix)
}

func createRequest(stream *h2mux.MuxedStream, url *url.URL) (*http.Request, error) {
	req, err := http.NewRequest(http.MethodGet, url.String(), h2mux.MuxedStreamReader{MuxedStream: stream})
	if err != nil {
		return nil, errors.Wrap(err, "unexpected error from http.NewRequest")
	}
	err = H2RequestHeadersToH1Request(stream.Headers, req)
	if err != nil {
		return nil, errors.Wrap(err, "invalid request received")
	}
	return req, nil
}

func H2RequestHeadersToH1Request(h2 []h2mux.Header, h1 *http.Request) error {
	for _, header := range h2 {
		switch header.Name {
		case ":method":
			h1.Method = header.Value
		case ":scheme":
		case ":authority":
			// Otherwise the host header will be based on the origin URL
			h1.Host = header.Value
		case ":path":
			// We can't just set `URL.Path`, because there's no way to ask the library to *not* escape it,
			// causing https://github.com/cloudflare/cloudflared/issues/124.
			// The only way to bypass the URL escape seems to currently be `URL.Opaque`.
			// See https://github.com/golang/go/issues/5777
			h1.URL.Opaque = fmt.Sprintf("//%v%v", h1.URL.Host, header.Value)
		case "content-length":
			contentLength, err := strconv.ParseInt(header.Value, 10, 64)
			if err != nil {
				return fmt.Errorf("unparseable content length")
			}
			h1.ContentLength = contentLength
		default:
			h1.Header.Add(http.CanonicalHeaderKey(header.Name), header.Value)
		}
	}
	return nil
}
TUN-1893: Proxy requests to the origin based on tunnel hostname 2019-06-05 15:08:55 +00:00			`package streamhandler`

			`import (`
			`"fmt"`
			`"net/http"`
			`"net/url"`
			`"strconv"`
			`"strings"`

			`"github.com/cloudflare/cloudflared/h2mux"`
			`"github.com/pkg/errors"`
			`)`

			`const (`
			`lbProbeUserAgentPrefix = "Mozilla/5.0 (compatible; Cloudflare-Traffic-Manager/1.0; +https://www.cloudflare.com/traffic-manager/;"`
			`)`

			`func FindCfRayHeader(h1 *http.Request) string {`
			`return h1.Header.Get("Cf-Ray")`
			`}`

			`func IsLBProbeRequest(req *http.Request) bool {`
			`return strings.HasPrefix(req.UserAgent(), lbProbeUserAgentPrefix)`
			`}`

TUN-1977: Validate OriginConfig has valid URL, and use scheme to determine if a HTTPOriginService is expecting HTTP or Unix 2019-06-20 16:18:59 +00:00			`func createRequest(stream h2mux.MuxedStream, url url.URL) (*http.Request, error) {`
			`req, err := http.NewRequest(http.MethodGet, url.String(), h2mux.MuxedStreamReader{MuxedStream: stream})`
TUN-1893: Proxy requests to the origin based on tunnel hostname 2019-06-05 15:08:55 +00:00			`if err != nil {`
			`return nil, errors.Wrap(err, "unexpected error from http.NewRequest")`
			`}`
			`err = H2RequestHeadersToH1Request(stream.Headers, req)`
			`if err != nil {`
			`return nil, errors.Wrap(err, "invalid request received")`
			`}`
			`return req, nil`
			`}`

			`func H2RequestHeadersToH1Request(h2 []h2mux.Header, h1 *http.Request) error {`
			`for _, header := range h2 {`
			`switch header.Name {`
			`case ":method":`
			`h1.Method = header.Value`
			`case ":scheme":`
			`case ":authority":`
			`// Otherwise the host header will be based on the origin URL`
			`h1.Host = header.Value`
			`case ":path":`
TUN-2276: Path encoding broken 2019-09-05 21:56:28 +00:00			// We can't just set `URL.Path`, because there's no way to ask the library to not escape it,
			`// causing https://github.com/cloudflare/cloudflared/issues/124.`
			// The only way to bypass the URL escape seems to currently be `URL.Opaque`.
			`// See https://github.com/golang/go/issues/5777`
			`h1.URL.Opaque = fmt.Sprintf("//%v%v", h1.URL.Host, header.Value)`
TUN-1893: Proxy requests to the origin based on tunnel hostname 2019-06-05 15:08:55 +00:00			`case "content-length":`
			`contentLength, err := strconv.ParseInt(header.Value, 10, 64)`
			`if err != nil {`
			`return fmt.Errorf("unparseable content length")`
			`}`
			`h1.ContentLength = contentLength`
			`default:`
			`h1.Header.Add(http.CanonicalHeaderKey(header.Name), header.Value)`
			`}`
			`}`
			`return nil`
			`}`