mirror of
https://github.com/refraction-networking/uquic.git
synced 2025-04-03 20:27:35 +03:00
9971fedd42
* use Transport.VerifySourceAddress to control the Retry Mechanism This can be used to rate-limit handshakes originating from unverified source addresses. Rate-limiting for handshakes can be implemented using the GetConfigForClient callback on the Config. * pass the remote address to Transport.VerifySourceAddress
165 lines
3 KiB
Go
165 lines
3 KiB
Go
package http09
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"io"
|
|
"log"
|
|
"net"
|
|
"net/http"
|
|
"net/url"
|
|
"runtime"
|
|
"strings"
|
|
"sync"
|
|
|
|
"github.com/quic-go/quic-go"
|
|
)
|
|
|
|
const h09alpn = "hq-interop"
|
|
|
|
type responseWriter struct {
|
|
io.Writer
|
|
headers http.Header
|
|
}
|
|
|
|
var _ http.ResponseWriter = &responseWriter{}
|
|
|
|
func (w *responseWriter) Header() http.Header {
|
|
if w.headers == nil {
|
|
w.headers = make(http.Header)
|
|
}
|
|
return w.headers
|
|
}
|
|
|
|
func (w *responseWriter) WriteHeader(int) {}
|
|
|
|
// Server is a HTTP/0.9 server listening for QUIC connections.
|
|
type Server struct {
|
|
*http.Server
|
|
|
|
ForceRetry bool
|
|
QuicConfig *quic.Config
|
|
|
|
mutex sync.Mutex
|
|
listener *quic.EarlyListener
|
|
}
|
|
|
|
// Close closes the server.
|
|
func (s *Server) Close() error {
|
|
s.mutex.Lock()
|
|
defer s.mutex.Unlock()
|
|
|
|
return s.listener.Close()
|
|
}
|
|
|
|
// ListenAndServe listens and serves HTTP/0.9 over QUIC.
|
|
func (s *Server) ListenAndServe() error {
|
|
if s.Server == nil {
|
|
return errors.New("use of http3.Server without http.Server")
|
|
}
|
|
|
|
udpAddr, err := net.ResolveUDPAddr("udp", s.Addr)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
conn, err := net.ListenUDP("udp", udpAddr)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
tlsConf := s.TLSConfig.Clone()
|
|
tlsConf.NextProtos = []string{h09alpn}
|
|
tr := quic.Transport{Conn: conn}
|
|
if s.ForceRetry {
|
|
tr.VerifySourceAddress = func(net.Addr) bool { return true }
|
|
}
|
|
ln, err := tr.ListenEarly(tlsConf, s.QuicConfig)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
s.mutex.Lock()
|
|
s.listener = ln
|
|
s.mutex.Unlock()
|
|
|
|
for {
|
|
conn, err := ln.Accept(context.Background())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
go s.handleConn(conn)
|
|
}
|
|
}
|
|
|
|
func (s *Server) handleConn(conn quic.Connection) {
|
|
for {
|
|
str, err := conn.AcceptStream(context.Background())
|
|
if err != nil {
|
|
log.Printf("Error accepting stream: %s\n", err.Error())
|
|
return
|
|
}
|
|
go func() {
|
|
if err := s.handleStream(str); err != nil {
|
|
log.Printf("Handling stream failed: %s\n", err.Error())
|
|
}
|
|
}()
|
|
}
|
|
}
|
|
|
|
func (s *Server) handleStream(str quic.Stream) error {
|
|
reqBytes, err := io.ReadAll(str)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
request := string(reqBytes)
|
|
request = strings.TrimRight(request, "\r\n")
|
|
request = strings.TrimRight(request, " ")
|
|
|
|
log.Printf("Received request: %s\n", request)
|
|
|
|
if request[:5] != "GET /" {
|
|
str.CancelWrite(42)
|
|
return nil
|
|
}
|
|
|
|
u, err := url.Parse(request[4:])
|
|
if err != nil {
|
|
return err
|
|
}
|
|
u.Scheme = "https"
|
|
|
|
req := &http.Request{
|
|
Method: http.MethodGet,
|
|
Proto: "HTTP/0.9",
|
|
ProtoMajor: 0,
|
|
ProtoMinor: 9,
|
|
Body: str,
|
|
URL: u,
|
|
}
|
|
|
|
handler := s.Handler
|
|
if handler == nil {
|
|
handler = http.DefaultServeMux
|
|
}
|
|
|
|
var panicked bool
|
|
func() {
|
|
defer func() {
|
|
if p := recover(); p != nil {
|
|
// Copied from net/http/server.go
|
|
const size = 64 << 10
|
|
buf := make([]byte, size)
|
|
buf = buf[:runtime.Stack(buf, false)]
|
|
log.Printf("http: panic serving: %v\n%s", p, buf)
|
|
panicked = true
|
|
}
|
|
}()
|
|
handler.ServeHTTP(&responseWriter{Writer: str}, req)
|
|
}()
|
|
|
|
if panicked {
|
|
if _, err := str.Write([]byte("500")); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
return str.Close()
|
|
}
|