2010-06-04 05:12:19 -04:00
|
|
|
#!/usr/bin/env perl
|
2008-11-12 16:54:49 -05:00
|
|
|
|
2008-04-27 00:28:35 -04:00
|
|
|
use strict;
|
2008-11-12 16:54:49 -05:00
|
|
|
use warnings;
|
2008-04-27 00:28:35 -04:00
|
|
|
|
2009-09-05 16:54:05 -04:00
|
|
|
use WgetFeature qw(https);
|
2014-09-24 10:40:03 -04:00
|
|
|
use WgetTests; # For $WGETPATH.
|
2008-06-22 20:52:57 -04:00
|
|
|
|
2009-06-12 03:06:10 -04:00
|
|
|
my $cert_path;
|
|
|
|
my $key_path;
|
2014-09-24 10:40:03 -04:00
|
|
|
my $srcdir;
|
2009-06-12 03:06:10 -04:00
|
|
|
|
|
|
|
if (@ARGV) {
|
2014-09-24 10:40:03 -04:00
|
|
|
$srcdir = shift @ARGV;
|
|
|
|
} elsif (defined $ENV{srcdir}) {
|
|
|
|
$srcdir = $ENV{srcdir};
|
2009-06-12 03:06:10 -04:00
|
|
|
}
|
2014-10-01 10:42:04 -04:00
|
|
|
|
2014-09-24 10:40:03 -04:00
|
|
|
if (defined $srcdir) {
|
|
|
|
$key_path = "$srcdir/certs/server-key.pem";
|
|
|
|
$cert_path = "$srcdir/certs/server-cert.pem";
|
|
|
|
} else {
|
|
|
|
$key_path = "certs/server-key.pem";
|
|
|
|
$cert_path = "certs/server-cert.pem";
|
|
|
|
}
|
|
|
|
|
2009-06-12 03:06:10 -04:00
|
|
|
|
2008-04-27 00:28:35 -04:00
|
|
|
use HTTP::Daemon;
|
|
|
|
use HTTP::Request;
|
2008-06-22 15:58:03 -04:00
|
|
|
use IO::Socket::SSL;
|
|
|
|
|
|
|
|
my $SOCKET = HTTP::Daemon->new (LocalAddr => 'localhost',
|
|
|
|
ReuseAddr => 1) or die "Cannot create server!!!";
|
2008-04-27 00:28:35 -04:00
|
|
|
|
|
|
|
sub get_request {
|
|
|
|
my $conn = shift;
|
|
|
|
my $content = '';
|
|
|
|
my $line;
|
|
|
|
|
|
|
|
while (defined ($line = <$conn>)) {
|
|
|
|
$content .= $line;
|
|
|
|
last if $line eq "\r\n";
|
|
|
|
}
|
|
|
|
|
|
|
|
my $rqst = HTTP::Request->parse($content)
|
|
|
|
or die "Couldn't parse request:\n$content\n";
|
|
|
|
|
|
|
|
return $rqst;
|
|
|
|
}
|
|
|
|
|
|
|
|
sub do_server {
|
|
|
|
my $alrm = alarm 10;
|
|
|
|
|
2008-06-22 15:58:03 -04:00
|
|
|
my $s = $SOCKET;
|
2008-04-27 00:28:35 -04:00
|
|
|
my $conn;
|
|
|
|
my $rqst;
|
|
|
|
my $rspn;
|
|
|
|
for my $expect_inner_auth (0, 1) {
|
|
|
|
$conn = $s->accept;
|
|
|
|
$rqst = $conn->get_request;
|
|
|
|
|
|
|
|
# TODO: expect no auth the first time, request it, expect it the second
|
|
|
|
# time.
|
|
|
|
|
|
|
|
die "Method not CONNECT\n" if ($rqst->method ne 'CONNECT');
|
|
|
|
$rspn = HTTP::Response->new(200, 'OK');
|
|
|
|
$conn->send_response($rspn);
|
|
|
|
|
2009-06-12 03:06:10 -04:00
|
|
|
my %options = (
|
|
|
|
SSL_server => 1,
|
|
|
|
SSL_passwd_cb => sub { return "Hello"; });
|
|
|
|
|
|
|
|
$options{SSL_cert_file} = $cert_path if ($cert_path);
|
|
|
|
$options{SSL_key_file} = $key_path if ($key_path);
|
|
|
|
|
|
|
|
my @options = %options;
|
|
|
|
|
|
|
|
$conn = IO::Socket::SSL->new_from_fd($conn->fileno, @options)
|
2008-04-27 00:28:35 -04:00
|
|
|
or die "Couldn't initiate SSL";
|
|
|
|
|
|
|
|
$rqst = &get_request($conn)
|
|
|
|
or die "Didn't get proxied request\n";
|
|
|
|
|
|
|
|
unless ($expect_inner_auth) {
|
|
|
|
die "Early proxied auth\n" if $rqst->header('Authorization');
|
|
|
|
|
|
|
|
# TODO: handle non-persistent connection here.
|
|
|
|
$rspn = HTTP::Response->new(401, 'Unauthorized', [
|
|
|
|
'WWW-Authenticate' => 'Basic realm="gondor"',
|
|
|
|
Connection => 'close'
|
|
|
|
]);
|
|
|
|
$rspn->protocol('HTTP/1.0');
|
|
|
|
print $rspn->as_string;
|
|
|
|
print $conn $rspn->as_string;
|
|
|
|
} else {
|
|
|
|
die "No proxied auth\n" unless $rqst->header('Authorization');
|
|
|
|
|
|
|
|
$rspn = HTTP::Response->new(200, 'OK', [
|
|
|
|
'Content-Type' => 'text/plain',
|
|
|
|
'Connection' => 'close',
|
|
|
|
], "foobarbaz\n");
|
2008-06-22 15:58:03 -04:00
|
|
|
$rspn->protocol('HTTP/1.0');
|
|
|
|
print "=====\n";
|
|
|
|
print $rspn->as_string;
|
|
|
|
print "\n=====\n";
|
2008-04-27 00:28:35 -04:00
|
|
|
print $conn $rspn->as_string;
|
|
|
|
}
|
|
|
|
$conn->close;
|
|
|
|
}
|
|
|
|
undef $conn;
|
|
|
|
undef $s;
|
|
|
|
alarm $alrm;
|
|
|
|
}
|
|
|
|
|
|
|
|
sub fork_server {
|
|
|
|
my $pid = fork;
|
|
|
|
die "Couldn't fork" if ($pid < 0);
|
|
|
|
return $pid if $pid;
|
|
|
|
|
|
|
|
&do_server;
|
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
|
|
|
system ('rm -f needs-auth.txt');
|
2008-06-12 04:31:54 -04:00
|
|
|
my $pid = &fork_server;
|
2008-04-27 00:28:35 -04:00
|
|
|
|
|
|
|
sleep 1;
|
|
|
|
my $cmdline = $WgetTest::WGETPATH . " --user=fiddle-dee-dee"
|
2008-06-12 05:18:35 -04:00
|
|
|
. " --password=Dodgson -e https_proxy=localhost:{{port}}"
|
2008-04-27 00:28:35 -04:00
|
|
|
. " --no-check-certificate"
|
|
|
|
. " https://no.such.domain/needs-auth.txt";
|
2008-06-22 15:58:03 -04:00
|
|
|
$cmdline =~ s/{{port}}/$SOCKET->sockport()/e;
|
2008-04-27 00:28:35 -04:00
|
|
|
|
|
|
|
my $code = system($cmdline);
|
2008-06-22 15:58:03 -04:00
|
|
|
system ('rm -f needs-auth.txt');
|
2008-04-27 00:28:35 -04:00
|
|
|
|
|
|
|
warn "Got code: $code\n" if $code;
|
2008-06-12 04:31:54 -04:00
|
|
|
kill ('TERM', $pid);
|
2008-06-22 15:58:03 -04:00
|
|
|
exit ($code >> 8);
|