def https_handler(self):
line = self.read_line()
line = line.decode('iso-8859-1')
words = line.split()
if len(words) == 3:
command, path, version = words
elif len(words) == 2:
command, path = words
version = "HTTP/1.1"
else:
xlog.warn("https req line fail:%s", line)
return
if command != "ONNECT":
xlog.warn("https req line fail:%s", line)
return
host, _, port = path.rpartition(':')
host = host.encode()
port = int(port)
sock = self.connection
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("create conn fail")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
xlog.info("https %r connect to %s:%d conn_id:%d", self.client_address,
host, port, conn_id)
sock.send(b'HTTP/1.1 200 OK\r\n\r\n')
g.session.conn_list[conn_id].start(block=True)
def https_handler(self):
line = self.read_line()
line = line.decode('iso-8859-1')
words = line.split()
if len(words) == 3:
command, path, version = words
elif len(words) == 2:
command, path = words
version = "HTTP/1.1"
else:
xlog.warn("https req line fail:%s", line)
return
if command != "ONNECT":
xlog.warn("https req line fail:%s", line)
return
host, _, port = path.rpartition(':')
host = host.encode()
port = int(port)
sock = self.connection
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("create conn fail")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
xlog.info("https %r connect to %s:%d conn_id:%d", self.client_address, host, port, conn_id)
sock.send(b'HTTP/1.1 200 OK\r\n\r\n')
g.session.conn_list[conn_id].start(block=True)
def socks5_handler(self):
sock = self.connection
auth_mode_num = ord(self.read_bytes(1))
data = self.read_bytes(auth_mode_num)
sock.send(b"\x05\x00") # socks version 5, no auth needed.
try:
data = self.read_bytes(4)
except Exception as e:
xlog.debug("socks5 auth num:%d, list:%s", auth_mode_num, utils.str2hex(data))
xlog.warn("socks5 protocol error:%r", e)
return
socks_version = ord(data[0])
if socks_version != 5:
xlog.warn("request version:%d error", socks_version)
return
command = ord(data[1])
if command != 1: # 1. Tcp connect
xlog.warn("request not supported command mode:%d", command)
sock.send(b"\x05\x07\x00\x01") # Command not supported
return
addrtype_pack = data[3]
addrtype = ord(addrtype_pack)
if addrtype == 1: # IPv4
addr_pack = self.read_bytes(4)
addr = socket.inet_ntoa(addr_pack)
elif addrtype == 3: # Domain name
domain_len_pack = self.read_bytes(1)[0]
domain_len = ord(domain_len_pack)
domain = self.read_bytes(domain_len)
addr_pack = domain_len_pack + domain
addr = domain
elif addrtype == 4: # IPv6
addr_pack = self.read_bytes(16)
addr = socket.inet_ntop(socket.AF_INET6, addr_pack)
else:
xlog.warn("request address type unknown:%d", addrtype)
sock.send(b"\x05\x07\x00\x01") # Command not supported
return
port = struct.unpack('>H', self.rfile.read(2))[0]
conn_id = proxy_session.create_conn(sock, addr, port)
if not conn_id:
xlog.warn("create conn fail")
reply = b"\x05\x01\x00" + addrtype_pack + addr_pack + struct.pack(">H", port)
sock.send(reply)
return
xlog.info("socks5 %r connect to %s:%d conn_id:%d", self.client_address, addr, port, conn_id)
reply = b"\x05\x00\x00" + addrtype_pack + addr_pack + struct.pack(">H", port)
sock.send(reply)
if len(self.read_buffer) - self.buffer_start:
g.session.conn_list[conn_id].transfer_received_data(self.read_buffer[self.buffer_start:])
g.session.conn_list[conn_id].start(block=True)
def socks5_handler(self):
sock = self.connection
auth_mode_num = ord(self.read_bytes(1))
data = self.read_bytes(auth_mode_num)
sock.send(b"\x05\x00") # socks version 5, no auth needed.
try:
data = self.read_bytes(4)
except Exception as e:
xlog.debug("socks5 auth num:%d, list:%s", auth_mode_num, utils.str2hex(data))
xlog.exception("socks5 protocol error:%r", e)
return
socks_version = ord(data[0])
if socks_version != 5:
xlog.warn("request version:%d error", socks_version)
return
command = ord(data[1])
if command != 1: # 1. Tcp connect
xlog.warn("request not supported command mode:%d", command)
sock.send(b"\x05\x07\x00\x01") # Command not supported
return
addrtype_pack = data[3]
addrtype = ord(addrtype_pack)
if addrtype == 1: # IPv4
addr_pack = self.read_bytes(4)
addr = socket.inet_ntoa(addr_pack)
elif addrtype == 3: # Domain name
domain_len_pack = self.read_bytes(1)[0]
domain_len = ord(domain_len_pack)
domain = self.read_bytes(domain_len)
addr_pack = domain_len_pack + domain
addr = domain
elif addrtype == 4: # IPv6
addr_pack = self.read_bytes(16)
addr = socket.inet_ntop(socket.AF_INET6, addr_pack)
else:
xlog.warn("request address type unknown:%d", addrtype)
sock.send(b"\x05\x07\x00\x01") # Command not supported
return
port = struct.unpack('>H', self.rfile.read(2))[0]
conn_id = proxy_session.create_conn(sock, addr, port)
if not conn_id:
xlog.warn("create conn fail")
reply = b"\x05\x01\x00" + addrtype_pack + addr_pack + struct.pack(">H", port)
sock.send(reply)
return
xlog.info("socks5 %r connect to %s:%d conn_id:%d", self.client_address, addr, port, conn_id)
reply = b"\x05\x00\x00" + addrtype_pack + addr_pack + struct.pack(">H", port)
sock.send(reply)
if len(self.read_buffer) - self.buffer_start:
g.session.conn_list[conn_id].transfer_received_data(self.read_buffer[self.buffer_start:])
g.session.conn_list[conn_id].start(block=True)
def redirect_process(sock, host, port, client_address):
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("redirect create conn fail")
sock.close()
return
xlog.info("redirect connect from:%s to %s:%d conn_id:%d", client_address, host, port, conn_id)
g.session.conn_list[conn_id].start(block=True)
def redirect_process(sock, host, port, client_address):
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("redirect create conn fail")
sock.close()
return
xlog.info("redirect connect from:%s to %s:%d conn_id:%d", client_address, host, port, conn_id)
g.session.conn_list[conn_id].start(block=True)
def https_handler(self):
line = self.read_crlf_line()
line = line.decode('iso-8859-1')
words = line.split()
if len(words) == 3:
command, path, version = words
elif len(words) == 2:
command, path = words
version = "HTTP/1.1"
else:
xlog.warn("https req line fail:%s", line)
return
if command != "ONNECT":
xlog.warn("https req line fail:%s", line)
return
host, _, port = path.rpartition(':')
host = host.encode()
port = int(port)
sock = self.connection
self.save_header()
auth = self.get_header("Proxy-Authorization")
if auth is None:
xlog.warn("Proxy-Authorization is None")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
user_passwd_encode = base64.b64encode("cs:cs123")
auth_result = auth.find(user_passwd_encode)
if auth_result == -1:
xlog.warn("Proxy-Authorization is Error")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
sock = self.connection
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("create conn fail")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
xlog.info("https %r connect to %s:%d conn_id:%d", self.client_address, host, port, conn_id)
try:
sock.send(b'HTTP/1.1 200 OK\r\n\r\n')
except:
xlog.warn("https %r connect to %s:%d conn_id:%d closed.", self.client_address, host, port, conn_id)
if (len(self.read_buffer) - self.buffer_start) > 0:
g.session.conn_list[conn_id].transfer_received_data(self.read_buffer[self.buffer_start:])
g.session.conn_list[conn_id].start(block=True)
def http_handler(self, first_char):
req_line = self.read_crlf_line()
words = req_line.split()
if len(words) == 3:
method, url, http_version = words
elif len(words) == 2:
method, url = words
http_version = "HTTP/1.1"
else:
xlog.warn("http req line fail:%s", req_line)
return
method = first_char + method
# if method not in ["GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS", "TRACE", "PATCH"]:
# xlog.warn("https req method not known:%s", method)
if url.startswith("http://") or url.startswith("HTTP://"):
o = urlparse.urlparse(url)
host, port = netloc_to_host_port(o.netloc)
p = url[7:].find("/")
if p >= 0:
path = url[7 + p:]
else:
path = "/"
else:
header_block = self.read_headers()
lines = header_block.split("\r\n")
path = url
host = None
for line in lines:
key, _, value = line.rpartition(":")
if key.lower == "host":
host, port = netloc_to_host_port(value)
break
if host is None:
xlog.warn("http proxy host can't parsed. %s %s", req_line,
header_block)
self.connection.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
sock = self.connection
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("create conn fail")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
xlog.info("http %r connect to %s:%d conn_id:%d", self.client_address,
host, port, conn_id)
new_req_line = "%s %s %s" % (method, path, http_version)
left_buf = new_req_line + self.read_buffer[(len(req_line) + 1):]
g.session.conn_list[conn_id].transfer_received_data(left_buf)
g.session.conn_list[conn_id].start(block=True)
def http_handler(self, first_char):
req_line = self.read_line()
words = req_line.split()
if len(words) == 3:
method, url, http_version = words
elif len(words) == 2:
method, url = words
http_version = "HTTP/1.1"
else:
xlog.warn("https req line fail:%s", req_line)
return
method = first_char + method
# if method not in ["GET", "HEAD", "POST", "PUT", "DELETE", "OPTIONS", "TRACE", "PATCH"]:
# xlog.warn("https req method not known:%s", method)
if url.startswith("http://"):
o = urlparse.urlparse(url)
host, port = netloc_to_host_port(o.netloc)
p = url[7:].find("/")
if p >= 0:
path = url[7+p:]
else:
path = "/"
else:
header_block = self.read_headers()
lines = header_block.split("\r\n")
path = url
host = None
for line in lines:
key, _, value = line.rpartition(":")
if key.lower == "host":
host, port = netloc_to_host_port(value)
break
if host is None:
xlog.warn("http proxy host can't parsed. %s %s", req_line, header_block)
self.connection.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
sock = self.connection
conn_id = proxy_session.create_conn(sock, host, port)
if not conn_id:
xlog.warn("create conn fail")
sock.send(b'HTTP/1.1 500 Fail\r\n\r\n')
return
xlog.info("http %r connect to %s:%d conn_id:%d", self.client_address, host, port, conn_id)
new_req_line = "%s %s %s" % (method, path, http_version)
left_buf = new_req_line + self.read_buffer[(len(req_line) + 1):]
g.session.conn_list[conn_id].transfer_received_data(left_buf)
g.session.conn_list[conn_id].start(block=True)
def socks4_handler(self):
# Socks4 or Socks4a
sock = self.connection
cmd = ord(self.read_bytes(1))
if cmd != 1:
xlog.warn("Socks4 cmd:%d not supported", cmd)
return
data = self.read_bytes(6)
port = struct.unpack(">H", data[0:2])[0]
addr_pack = data[2:6]
if addr_pack[0:3] == '\x00\x00\x00' and addr_pack[3] != '\x00':
domain_mode = True
else:
ip = socket.inet_ntoa(addr_pack)
domain_mode = False
user_id = self.read_line()
if len(user_id):
xlog.debug("Socks4 user_id:%s", user_id)
if domain_mode:
addr = self.read_line()
else:
addr = ip
conn_id = proxy_session.create_conn(sock, addr, port)
if not conn_id:
xlog.warn("Socks4 connect fail, no conn_id")
reply = b"\x00\x5b\x00" + addr_pack + struct.pack(">H", port)
sock.send(reply)
return
xlog.info("Socks4:%r to %s:%d, conn_id:%d", self.client_address, addr,
port, conn_id)
reply = b"\x00\x5a" + addr_pack + struct.pack(">H", port)
sock.send(reply)
if len(self.read_buffer) - self.buffer_start:
g.session.conn_list[conn_id].transfer_received_data(
self.read_buffer[self.buffer_start:])
g.session.conn_list[conn_id].start(block=True)
def socks4_handler(self):
# Socks4 or Socks4a
sock = self.connection
cmd = ord(self.read_bytes(1))
if cmd != 1:
xlog.warn("Socks4 cmd:%d not supported", cmd)
return
data = self.read_bytes(6)
port = struct.unpack(">H", data[0:2])[0]
addr_pack = data[2:6]
if addr_pack[0:3] == '\x00\x00\x00' and addr_pack[3] != '\x00':
domain_mode = True
else:
ip = socket.inet_ntoa(addr_pack)
domain_mode = False
user_id = self.read_line()
if len(user_id):
xlog.debug("Socks4 user_id:%s", user_id)
if domain_mode:
addr = self.read_line()
else:
addr = ip
conn_id = proxy_session.create_conn(sock, addr, port)
if not conn_id:
xlog.warn("Socks4 connect fail, no conn_id")
reply = b"\x00\x5b\x00" + addr_pack + struct.pack(">H", port)
sock.send(reply)
return
xlog.info("Socks4:%r to %s:%d, conn_id:%d", self.client_address, addr, port, conn_id)
reply = b"\x00\x5a" + addr_pack + struct.pack(">H", port)
sock.send(reply)
if len(self.read_buffer) - self.buffer_start:
g.session.conn_list[conn_id].transfer_received_data(self.read_buffer[self.buffer_start:])
g.session.conn_list[conn_id].start(block=True)
