Merge pull request #124 from SenseUnit/optimism

Snawoot · web-flow · commit 3ff3432a37ce · 2025-05-03T20:41:23.000+03:00
Optimistic dialer
diff --git a/README.md b/README.md
@@ -340,6 +340,8 @@ Supported proxy schemes are:
   * `curves` - colon-separated list of enabled TLS key exchange curves.
   * `min-tls-version` - minimum TLS version.
   * `max-tls-version` - maximum TLS version.
+* `http+optimistic` - (EXPERIMENTAL) HTTP proxy dialer which reads the connection success response asynchronously.
+* `https+optimistic` - (EXPERIMENTAL) HTTP proxy over TLS dialer which reads the connection success response asynchronously. Options are same as for `https` dialer.
 * `h2` - HTTP/2 proxy over TLS connection. Examples: `h2://user:password@example.org`, `h2://example.org?cert=cert.pem&key=key.pem`. This method also supports additional parameters passed in query string:
   * `cafile` - file with CA certificates in PEM format used to verify TLS peer.
   * `sni` - override value of ServerName Indication extension.
diff --git a/dialer/dialer.go b/dialer/dialer.go
@@ -12,6 +12,8 @@ import (
 func init() {
 	xproxy.RegisterDialerType("http", HTTPProxyDialerFromURL)
 	xproxy.RegisterDialerType("https", HTTPProxyDialerFromURL)
+	xproxy.RegisterDialerType("http+optimistic", OptimisticHTTPProxyDialerFromURL)
+	xproxy.RegisterDialerType("https+optimistic", OptimisticHTTPProxyDialerFromURL)
 	xproxy.RegisterDialerType("h2", H2ProxyDialerFromURL)
 	xproxy.RegisterDialerType("h2c", H2ProxyDialerFromURL)
 	xproxy.RegisterDialerType("set-src-hints", NewHintsSettingDialerFromURL)
diff --git a/dialer/optimistic.go b/dialer/optimistic.go
@@ -0,0 +1,140 @@
+package dialer
+
+import (
+	"bytes"
+	"context"
+	"crypto/tls"
+	"errors"
+	"fmt"
+	"net"
+	"net/http"
+	"net/url"
+	"strings"
+
+	xproxy "golang.org/x/net/proxy"
+
+	"github.com/SenseUnit/dumbproxy/tlsutil"
+)
+
+type OptimisticHTTPProxyDialer struct {
+	address   string
+	tlsConfig *tls.Config
+	userinfo  *url.Userinfo
+	next      Dialer
+}
+
+func NewOptimisticHTTPProxyDialer(address string, tlsConfig *tls.Config, userinfo *url.Userinfo, next LegacyDialer) *OptimisticHTTPProxyDialer {
+	return &OptimisticHTTPProxyDialer{
+		address:   address,
+		tlsConfig: tlsConfig,
+		next:      MaybeWrapWithContextDialer(next),
+		userinfo:  userinfo,
+	}
+}
+
+func OptimisticHTTPProxyDialerFromURL(u *url.URL, next xproxy.Dialer) (xproxy.Dialer, error) {
+	host := u.Hostname()
+	port := u.Port()
+
+	var tlsConfig *tls.Config
+	var err error
+	switch strings.ToLower(u.Scheme) {
+	case "http+optimistic":
+		if port == "" {
+			port = "80"
+		}
+	case "https+optimistic":
+		if port == "" {
+			port = "443"
+		}
+		tlsConfig, err = tlsutil.TLSConfigFromURL(u)
+		if err != nil {
+			return nil, fmt.Errorf("TLS configuration failed: %w", err)
+		}
+	default:
+		return nil, errors.New("unsupported proxy type")
+	}
+
+	address := net.JoinHostPort(host, port)
+
+	return NewOptimisticHTTPProxyDialer(address, tlsConfig, u.User, next), nil
+}
+
+func (d *OptimisticHTTPProxyDialer) Dial(network, address string) (net.Conn, error) {
+	return d.DialContext(context.Background(), network, address)
+}
+
+func (d *OptimisticHTTPProxyDialer) DialContext(ctx context.Context, network, address string) (net.Conn, error) {
+	switch network {
+	case "tcp", "tcp4", "tcp6":
+	default:
+		return nil, errors.New("only \"tcp\" network is supported")
+	}
+	conn, err := d.next.DialContext(ctx, "tcp", d.address)
+	if err != nil {
+		return nil, fmt.Errorf("proxy dialer is unable to make connection: %w", err)
+	}
+	if d.tlsConfig != nil {
+		conn = tls.Client(conn, d.tlsConfig)
+	}
+
+	return &futureH1ProxiedConn{
+		Conn:     conn,
+		address:  address,
+		userinfo: d.userinfo,
+	}, nil
+}
+
+type futureH1ProxiedConn struct {
+	net.Conn
+	address  string
+	userinfo *url.Userinfo
+	rDone    bool
+	wDone    bool
+	rErr     error
+	wErr     error
+}
+
+func (c *futureH1ProxiedConn) Write(b []byte) (n int, err error) {
+	if c.wErr != nil {
+		return 0, c.wErr
+	}
+	if !c.wDone {
+		buf := new(bytes.Buffer)
+		fmt.Fprintf(buf, "CONNECT %s HTTP/1.1\r\nHost: %s\r\n", c.address, c.address)
+		if c.userinfo != nil {
+			fmt.Fprintf(buf, "Proxy-Authorization: %s\r\n", basicAuthHeader(c.userinfo))
+		}
+		fmt.Fprintf(buf, "User-Agent: dumbproxy\r\n\r\n")
+		prologueBytes := buf.Len()
+		buf.Write(b)
+		n, err := c.Conn.Write(buf.Bytes())
+		if err != nil {
+			c.wErr = err
+		}
+		c.wDone = true
+		c.address = ""
+		c.userinfo = nil
+		return max(0, n-prologueBytes), err
+	}
+	return c.Conn.Write(b)
+}
+
+func (c *futureH1ProxiedConn) Read(b []byte) (n int, err error) {
+	if c.rErr != nil {
+		return 0, c.rErr
+	}
+	if !c.rDone {
+		resp, err := readResponse(c.Conn)
+		if err != nil {
+			c.rErr = fmt.Errorf("reading proxy response failed: %w", err)
+			return 0, c.rErr
+		}
+		if resp.StatusCode != http.StatusOK {
+			c.rErr = fmt.Errorf("bad status code from proxy: %d", resp.StatusCode)
+			return 0, c.rErr
+		}
+		c.rDone = true
+	}
+	return c.Conn.Read(b)
+}
diff --git a/handler/proxy.go b/handler/proxy.go
@@ -74,13 +74,20 @@ type pendingWriteConn struct {
 	net.Conn
 	data []byte
 	done bool
+	wErr error
 }
 
 func (p *pendingWriteConn) Write(b []byte) (n int, err error) {
+	if p.wErr != nil {
+		return 0, p.wErr
+	}
 	if !p.done {
 		buf := append(append(make([]byte, 0, len(p.data)+len(b)), p.data...), b...)
 		n, err := p.Conn.Write(buf)
-		n = max(0, n - len(p.data))
+		if err != nil {
+			p.wErr = err
+		}
+		n = max(0, n-len(p.data))
 		p.done = true
 		p.data = nil
 		return n, err
