jetty-proxy/src/test/java/org/eclipse/jetty/proxy/ConnectHandlerSSLTest.java - jetty - Git at Google

 //
 //  ========================================================================
 //  Copyright (c) 1995-2017 Mort Bay Consulting Pty. Ltd.
 //  ------------------------------------------------------------------------
 //  All rights reserved. This program and the accompanying materials
 //  are made available under the terms of the Eclipse Public License v1.0
 //  and Apache License v2.0 which accompanies this distribution.
 //
 //      The Eclipse Public License is available at
 //      http://www.eclipse.org/legal/epl-v10.html
 //
 //      The Apache License v2.0 is available at
 //      http://www.opensource.org/licenses/apache2.0.php
 //
 //  You may elect to redistribute this code under either of these licenses.
 //  ========================================================================
 //

 package org.eclipse.jetty.proxy;

 import java.io.BufferedReader;
 import java.io.ByteArrayOutputStream;
 import java.io.IOException;
 import java.io.InputStream;
 import java.io.InputStreamReader;
 import java.io.OutputStream;
 import java.net.Socket;
 import java.nio.charset.StandardCharsets;

 import javax.net.ssl.SSLContext;
 import javax.net.ssl.SSLSocket;
 import javax.net.ssl.SSLSocketFactory;
 import javax.servlet.ServletException;
 import javax.servlet.ServletOutputStream;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;

 import org.eclipse.jetty.server.Request;
 import org.eclipse.jetty.server.Server;
 import org.eclipse.jetty.server.ServerConnector;
 import org.eclipse.jetty.server.handler.AbstractHandler;
 import org.eclipse.jetty.toolchain.test.MavenTestingUtils;
 import org.eclipse.jetty.toolchain.test.http.SimpleHttpResponse;
 import org.eclipse.jetty.util.ssl.SslContextFactory;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.Test;

 public class ConnectHandlerSSLTest extends AbstractConnectHandlerTest
 {
     private SslContextFactory sslContextFactory;

     @Before
     public void prepare() throws Exception
     {
         sslContextFactory = new SslContextFactory();
         String keyStorePath = MavenTestingUtils.getTestResourceFile("keystore").getAbsolutePath();
         sslContextFactory.setKeyStorePath(keyStorePath);
         sslContextFactory.setKeyStorePassword("storepwd");
         sslContextFactory.setKeyManagerPassword("keypwd");
         server = new Server();
         serverConnector = new ServerConnector(server, sslContextFactory);
         server.addConnector(serverConnector);
         server.setHandler(new ServerHandler());
         server.start();
         prepareProxy();
     }

     @Test
     public void testGETRequest() throws Exception
     {
         String hostPort = "localhost:" + serverConnector.getLocalPort();
         String request = "" +
                 "CONNECT " + hostPort + " HTTP/1.1\r\n" +
                 "Host: " + hostPort + "\r\n" +
                 "\r\n";
         try (Socket socket = newSocket())
         {
             OutputStream output = socket.getOutputStream();
             BufferedReader input = new BufferedReader(new InputStreamReader(socket.getInputStream()));

             output.write(request.getBytes(StandardCharsets.UTF_8));
             output.flush();

             // Expect 200 OK from the CONNECT request
             SimpleHttpResponse response = readResponse(input);
             Assert.assertEquals("200", response.getCode());

             // Be sure the buffered input does not have anything buffered
             Assert.assertFalse(input.ready());

             // Upgrade the socket to SSL
             try (SSLSocket sslSocket = wrapSocket(socket))
             {
                 output = sslSocket.getOutputStream();
                 input = new BufferedReader(new InputStreamReader(sslSocket.getInputStream()));

                 request =
                         "GET /echo HTTP/1.1\r\n" +
                                 "Host: " + hostPort + "\r\n" +
                                 "\r\n";
                 output.write(request.getBytes(StandardCharsets.UTF_8));
                 output.flush();

                 response = readResponse(input);
                 Assert.assertEquals("200", response.getCode());
                 Assert.assertEquals("GET /echo", response.getBody());
             }
         }
     }

     @Test
     public void testPOSTRequests() throws Exception
     {
         String hostPort = "localhost:" + serverConnector.getLocalPort();
         String request = "" +
                 "CONNECT " + hostPort + " HTTP/1.1\r\n" +
                 "Host: " + hostPort + "\r\n" +
                 "\r\n";
         try (Socket socket = newSocket())
         {
             OutputStream output = socket.getOutputStream();
             BufferedReader input = new BufferedReader(new InputStreamReader(socket.getInputStream()));

             output.write(request.getBytes(StandardCharsets.UTF_8));
             output.flush();

             // Expect 200 OK from the CONNECT request
             SimpleHttpResponse response = readResponse(input);
             Assert.assertEquals("200", response.getCode());

             // Be sure the buffered input does not have anything buffered
             Assert.assertFalse(input.ready());

             // Upgrade the socket to SSL
             try (SSLSocket sslSocket = wrapSocket(socket))
             {
                 output = sslSocket.getOutputStream();
                 input = new BufferedReader(new InputStreamReader(sslSocket.getInputStream()));

                 for (int i = 0; i < 10; ++i)
                 {
                     request = "" +
                             "POST /echo?param=" + i + " HTTP/1.1\r\n" +
                             "Host: " + hostPort + "\r\n" +
                             "Content-Length: 5\r\n" +
                             "\r\n" +
                             "HELLO";
                     output.write(request.getBytes(StandardCharsets.UTF_8));
                     output.flush();

                     response = readResponse(input);
                     Assert.assertEquals("200", response.getCode());
                     Assert.assertEquals("POST /echo?param=" + i + "\r\nHELLO", response.getBody());
                 }
             }
         }
     }

     private SSLSocket wrapSocket(Socket socket) throws Exception
     {
         SSLContext sslContext = sslContextFactory.getSslContext();
         SSLSocketFactory socketFactory = sslContext.getSocketFactory();
         SSLSocket sslSocket = (SSLSocket)socketFactory.createSocket(socket, socket.getInetAddress().getHostAddress(), socket.getPort(), true);
         sslSocket.setUseClientMode(true);
         sslSocket.startHandshake();
         return sslSocket;
     }

     private static class ServerHandler extends AbstractHandler
     {
         public void handle(String target, Request request, HttpServletRequest httpRequest, HttpServletResponse httpResponse) throws IOException, ServletException
         {
             request.setHandled(true);

             String uri = httpRequest.getRequestURI();
             if ("/echo".equals(uri))
             {
                 StringBuilder builder = new StringBuilder();
                 builder.append(httpRequest.getMethod()).append(" ").append(uri);
                 if (httpRequest.getQueryString() != null)
                     builder.append("?").append(httpRequest.getQueryString());

                 ByteArrayOutputStream baos = new ByteArrayOutputStream();
                 InputStream input = httpRequest.getInputStream();
                 int read;
                 while ((read = input.read()) >= 0)
                     baos.write(read);
                 baos.close();

                 ServletOutputStream output = httpResponse.getOutputStream();
                 output.println(builder.toString());
                 output.write(baos.toByteArray());
             }
             else
             {
                 throw new ServletException();
             }
         }
     }
 }
	//
	// ========================================================================
	// Copyright (c) 1995-2017 Mort Bay Consulting Pty. Ltd.
	// ------------------------------------------------------------------------
	// All rights reserved. This program and the accompanying materials
	// are made available under the terms of the Eclipse Public License v1.0
	// and Apache License v2.0 which accompanies this distribution.
	//
	// The Eclipse Public License is available at
	// http://www.eclipse.org/legal/epl-v10.html
	//
	// The Apache License v2.0 is available at
	// http://www.opensource.org/licenses/apache2.0.php
	//
	// You may elect to redistribute this code under either of these licenses.
	// ========================================================================
	//

	package org.eclipse.jetty.proxy;

	import java.io.BufferedReader;
	import java.io.ByteArrayOutputStream;
	import java.io.IOException;
	import java.io.InputStream;
	import java.io.InputStreamReader;
	import java.io.OutputStream;
	import java.net.Socket;
	import java.nio.charset.StandardCharsets;

	import javax.net.ssl.SSLContext;
	import javax.net.ssl.SSLSocket;
	import javax.net.ssl.SSLSocketFactory;
	import javax.servlet.ServletException;
	import javax.servlet.ServletOutputStream;
	import javax.servlet.http.HttpServletRequest;
	import javax.servlet.http.HttpServletResponse;

	import org.eclipse.jetty.server.Request;
	import org.eclipse.jetty.server.Server;
	import org.eclipse.jetty.server.ServerConnector;
	import org.eclipse.jetty.server.handler.AbstractHandler;
	import org.eclipse.jetty.toolchain.test.MavenTestingUtils;
	import org.eclipse.jetty.toolchain.test.http.SimpleHttpResponse;
	import org.eclipse.jetty.util.ssl.SslContextFactory;
	import org.junit.Assert;
	import org.junit.Before;
	import org.junit.Test;

	public class ConnectHandlerSSLTest extends AbstractConnectHandlerTest
	{
	private SslContextFactory sslContextFactory;

	@Before
	public void prepare() throws Exception
	{
	sslContextFactory = new SslContextFactory();
	String keyStorePath = MavenTestingUtils.getTestResourceFile("keystore").getAbsolutePath();
	sslContextFactory.setKeyStorePath(keyStorePath);
	sslContextFactory.setKeyStorePassword("storepwd");
	sslContextFactory.setKeyManagerPassword("keypwd");
	server = new Server();
	serverConnector = new ServerConnector(server, sslContextFactory);
	server.addConnector(serverConnector);
	server.setHandler(new ServerHandler());
	server.start();
	prepareProxy();
	}

	@Test
	public void testGETRequest() throws Exception
	{
	String hostPort = "localhost:" + serverConnector.getLocalPort();
	String request = "" +
	"CONNECT " + hostPort + " HTTP/1.1\r\n" +
	"Host: " + hostPort + "\r\n" +
	"\r\n";
	try (Socket socket = newSocket())
	{
	OutputStream output = socket.getOutputStream();
	BufferedReader input = new BufferedReader(new InputStreamReader(socket.getInputStream()));

	output.write(request.getBytes(StandardCharsets.UTF_8));
	output.flush();

	// Expect 200 OK from the CONNECT request
	SimpleHttpResponse response = readResponse(input);
	Assert.assertEquals("200", response.getCode());

	// Be sure the buffered input does not have anything buffered
	Assert.assertFalse(input.ready());

	// Upgrade the socket to SSL
	try (SSLSocket sslSocket = wrapSocket(socket))
	{
	output = sslSocket.getOutputStream();
	input = new BufferedReader(new InputStreamReader(sslSocket.getInputStream()));

	request =
	"GET /echo HTTP/1.1\r\n" +
	"Host: " + hostPort + "\r\n" +
	"\r\n";
	output.write(request.getBytes(StandardCharsets.UTF_8));
	output.flush();

	response = readResponse(input);
	Assert.assertEquals("200", response.getCode());
	Assert.assertEquals("GET /echo", response.getBody());
	}
	}
	}

	@Test
	public void testPOSTRequests() throws Exception
	{
	String hostPort = "localhost:" + serverConnector.getLocalPort();
	String request = "" +
	"CONNECT " + hostPort + " HTTP/1.1\r\n" +
	"Host: " + hostPort + "\r\n" +
	"\r\n";
	try (Socket socket = newSocket())
	{
	OutputStream output = socket.getOutputStream();
	BufferedReader input = new BufferedReader(new InputStreamReader(socket.getInputStream()));

	output.write(request.getBytes(StandardCharsets.UTF_8));
	output.flush();

	// Expect 200 OK from the CONNECT request
	SimpleHttpResponse response = readResponse(input);
	Assert.assertEquals("200", response.getCode());

	// Be sure the buffered input does not have anything buffered
	Assert.assertFalse(input.ready());

	// Upgrade the socket to SSL
	try (SSLSocket sslSocket = wrapSocket(socket))
	{
	output = sslSocket.getOutputStream();
	input = new BufferedReader(new InputStreamReader(sslSocket.getInputStream()));

	for (int i = 0; i < 10; ++i)
	{
	request = "" +
	"POST /echo?param=" + i + " HTTP/1.1\r\n" +
	"Host: " + hostPort + "\r\n" +
	"Content-Length: 5\r\n" +
	"\r\n" +
	"HELLO";
	output.write(request.getBytes(StandardCharsets.UTF_8));
	output.flush();

	response = readResponse(input);
	Assert.assertEquals("200", response.getCode());
	Assert.assertEquals("POST /echo?param=" + i + "\r\nHELLO", response.getBody());
	}
	}
	}
	}

	private SSLSocket wrapSocket(Socket socket) throws Exception
	{
	SSLContext sslContext = sslContextFactory.getSslContext();
	SSLSocketFactory socketFactory = sslContext.getSocketFactory();
	SSLSocket sslSocket = (SSLSocket)socketFactory.createSocket(socket, socket.getInetAddress().getHostAddress(), socket.getPort(), true);
	sslSocket.setUseClientMode(true);
	sslSocket.startHandshake();
	return sslSocket;
	}

	private static class ServerHandler extends AbstractHandler
	{
	public void handle(String target, Request request, HttpServletRequest httpRequest, HttpServletResponse httpResponse) throws IOException, ServletException
	{
	request.setHandled(true);

	String uri = httpRequest.getRequestURI();
	if ("/echo".equals(uri))
	{
	StringBuilder builder = new StringBuilder();
	builder.append(httpRequest.getMethod()).append(" ").append(uri);
	if (httpRequest.getQueryString() != null)
	builder.append("?").append(httpRequest.getQueryString());

	ByteArrayOutputStream baos = new ByteArrayOutputStream();
	InputStream input = httpRequest.getInputStream();
	int read;
	while ((read = input.read()) >= 0)
	baos.write(read);
	baos.close();

	ServletOutputStream output = httpResponse.getOutputStream();
	output.println(builder.toString());
	output.write(baos.toByteArray());
	}
	else
	{
	throw new ServletException();
	}
	}
	}
	}