Xray-core/transport/internet/splithttp/dialer.go

package splithttp

import (
	"context"
	gotls "crypto/tls"
	"io"
	gonet "net"
	"net/http"
	"net/http/httptrace"
	"net/url"
	"strconv"
	"sync"
	"time"

	"github.com/xtls/xray-core/common"
	"github.com/xtls/xray-core/common/buf"
	"github.com/xtls/xray-core/common/net"
	"github.com/xtls/xray-core/common/session"
	"github.com/xtls/xray-core/common/signal/semaphore"
	"github.com/xtls/xray-core/common/uuid"
	"github.com/xtls/xray-core/transport/internet"
	"github.com/xtls/xray-core/transport/internet/stat"
	"github.com/xtls/xray-core/transport/internet/tls"
	"github.com/xtls/xray-core/transport/pipe"
	"golang.org/x/net/http2"
)

type dialerConf struct {
	net.Destination
	*internet.MemoryStreamConfig
}

type reusedClient struct {
	download *http.Client
	upload   *http.Client
	isH2     bool
	// pool of net.Conn, created using dialUploadConn
	uploadRawPool  *sync.Pool
	dialUploadConn func(ctxInner context.Context) (net.Conn, error)
}

var (
	globalDialerMap    map[dialerConf]reusedClient
	globalDialerAccess sync.Mutex
)

func destroyHTTPClient(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) {
	globalDialerAccess.Lock()
	defer globalDialerAccess.Unlock()

	if globalDialerMap == nil {
		globalDialerMap = make(map[dialerConf]reusedClient)
	}

	delete(globalDialerMap, dialerConf{dest, streamSettings})

}

func getHTTPClient(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) reusedClient {
	globalDialerAccess.Lock()
	defer globalDialerAccess.Unlock()

	if globalDialerMap == nil {
		globalDialerMap = make(map[dialerConf]reusedClient)
	}

	if client, found := globalDialerMap[dialerConf{dest, streamSettings}]; found {
		return client
	}

	tlsConfig := tls.ConfigFromStreamSettings(streamSettings)

	var gotlsConfig *gotls.Config

	if tlsConfig != nil {
		gotlsConfig = tlsConfig.GetTLSConfig(tls.WithDestination(dest))
	}

	dialContext := func(ctxInner context.Context) (net.Conn, error) {
		conn, err := internet.DialSystem(ctx, dest, streamSettings.SocketSettings)
		if err != nil {
			return nil, err
		}

		if gotlsConfig != nil {
			if fingerprint := tls.GetFingerprint(tlsConfig.Fingerprint); fingerprint != nil {
				conn = tls.UClient(conn, gotlsConfig, fingerprint)
				if err := conn.(*tls.UConn).HandshakeContext(ctx); err != nil {
					return nil, err
				}
			} else {
				conn = tls.Client(conn, gotlsConfig)
			}
		}

		return conn, nil
	}

	var uploadTransport http.RoundTripper
	var downloadTransport http.RoundTripper

	if tlsConfig != nil {
		downloadTransport = &http2.Transport{
			DialTLSContext: func(ctxInner context.Context, network string, addr string, cfg *gotls.Config) (net.Conn, error) {
				return dialContext(ctxInner)
			},
			IdleConnTimeout: 90 * time.Second,
		}
		uploadTransport = downloadTransport
	} else {
		httpDialContext := func(ctxInner context.Context, network string, addr string) (net.Conn, error) {
			return dialContext(ctxInner)
		}

		downloadTransport = &http.Transport{
			DialTLSContext:  httpDialContext,
			DialContext:     httpDialContext,
			IdleConnTimeout: 90 * time.Second,
			// chunked transfer download with keepalives is buggy with
			// http.Client and our custom dial context.
			DisableKeepAlives: true,
		}

		// we use uploadRawPool for that
		uploadTransport = nil
	}

	client := reusedClient{
		download: &http.Client{
			Transport: downloadTransport,
		},
		upload: &http.Client{
			Transport: uploadTransport,
		},
		isH2:           tlsConfig != nil,
		uploadRawPool:  &sync.Pool{},
		dialUploadConn: dialContext,
	}

	globalDialerMap[dialerConf{dest, streamSettings}] = client
	return client
}

func init() {
	common.Must(internet.RegisterTransportDialer(protocolName, Dial))
}

func Dial(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) (stat.Connection, error) {
	newError("dialing splithttp to ", dest).WriteToLog(session.ExportIDToError(ctx))

	var requestURL url.URL

	transportConfiguration := streamSettings.ProtocolSettings.(*Config)
	tlsConfig := tls.ConfigFromStreamSettings(streamSettings)

	maxConcurrentUploads := transportConfiguration.GetNormalizedMaxConcurrentUploads()
	maxUploadSize := transportConfiguration.GetNormalizedMaxUploadSize()

	if tlsConfig != nil {
		requestURL.Scheme = "https"
	} else {
		requestURL.Scheme = "http"
	}
	requestURL.Host = transportConfiguration.Host
	if requestURL.Host == "" {
		requestURL.Host = dest.NetAddr()
	}
	requestURL.Path = transportConfiguration.GetNormalizedPath()

	httpClient := getHTTPClient(ctx, dest, streamSettings)

	var remoteAddr gonet.Addr
	var localAddr gonet.Addr

	trace := &httptrace.ClientTrace{
		GotConn: func(connInfo httptrace.GotConnInfo) {
			remoteAddr = connInfo.Conn.RemoteAddr()
			localAddr = connInfo.Conn.LocalAddr()
		},
	}

	sessionIdUuid := uuid.New()
	sessionId := sessionIdUuid.String()

	req, err := http.NewRequestWithContext(
		httptrace.WithClientTrace(ctx, trace),
		"GET",
		requestURL.String()+"?session="+sessionId,
		nil,
	)
	if err != nil {
		return nil, err
	}

	req.Header = transportConfiguration.GetRequestHeader()

	downResponse, err := httpClient.download.Do(req)
	if err != nil {
		// workaround for various connection pool related issues, mostly around
		// HTTP/1.1. if the http client ever fails to send a request, we simply
		// delete it entirely.
		// in HTTP/1.1, it was observed that pool connections would immediately
		// fail with "context canceled" if the previous http response body was
		// not explicitly BOTH drained and closed. at the same time, sometimes
		// the draining itself takes forever and causes more problems.
		// see also https://github.com/golang/go/issues/60240
		destroyHTTPClient(ctx, dest, streamSettings)
		return nil, newError("failed to send download http request, destroying client").Base(err)
	}

	if downResponse.StatusCode != 200 {
		downResponse.Body.Close()
		return nil, newError("invalid status code on download:", downResponse.Status)
	}

	uploadUrl := requestURL.String() + "?session=" + sessionId + "&seq="

	uploadPipeReader, uploadPipeWriter := pipe.New(pipe.WithSizeLimit(maxUploadSize))

	go func() {
		requestsLimiter := semaphore.New(int(maxConcurrentUploads))
		var requestCounter int64

		// by offloading the uploads into a buffered pipe, multiple conn.Write
		// calls get automatically batched together into larger POST requests.
		// without batching, bandwidth is extremely limited.
		for {
			chunk, err := uploadPipeReader.ReadMultiBuffer()
			if err != nil {
				break
			}

			<-requestsLimiter.Wait()

			url := uploadUrl + strconv.FormatInt(requestCounter, 10)
			requestCounter += 1

			go func() {
				defer requestsLimiter.Signal()
				req, err := http.NewRequest("POST", url, &buf.MultiBufferContainer{MultiBuffer: chunk})
				if err != nil {
					newError("failed to send upload").Base(err).WriteToLog()
					uploadPipeReader.Interrupt()
					return
				}

				req.Header = transportConfiguration.GetRequestHeader()

				if httpClient.isH2 {
					resp, err := httpClient.upload.Do(req)
					if err != nil {
						newError("failed to send upload").Base(err).WriteToLog()
						uploadPipeReader.Interrupt()
						return
					}
					defer resp.Body.Close()

					if resp.StatusCode != 200 {
						newError("failed to send upload, bad status code:", resp.Status).WriteToLog()
						uploadPipeReader.Interrupt()
						return
					}
				} else {
					var err error
					var uploadConn any
					for i := 0; i < 5; i++ {
						uploadConn = httpClient.uploadRawPool.Get()
						if uploadConn == nil {
							uploadConn, err = httpClient.dialUploadConn(ctx)
							if err != nil {
								newError("failed to connect upload").Base(err).WriteToLog()
								uploadPipeReader.Interrupt()
								return
							}
						}

						err = req.Write(uploadConn.(net.Conn))
						if err == nil {
							break
						}
					}

					if err != nil {
						newError("failed to send upload").Base(err).WriteToLog()
						uploadPipeReader.Interrupt()
						return
					}

					httpClient.uploadRawPool.Put(uploadConn)
				}
			}()

		}
	}()

	// skip "ok" response
	trashHeader := []byte{0, 0}
	_, err = io.ReadFull(downResponse.Body, trashHeader)
	if err != nil {
		downResponse.Body.Close()
		return nil, newError("failed to read initial response")
	}

	// necessary in order to send larger chunks in upload
	bufferedUploadPipeWriter := buf.NewBufferedWriter(uploadPipeWriter)
	bufferedUploadPipeWriter.SetBuffered(false)

	conn := splitConn{
		writer:     bufferedUploadPipeWriter,
		reader:     downResponse.Body,
		remoteAddr: remoteAddr,
		localAddr:  localAddr,
	}

	return stat.Connection(&conn), nil
}
Add SplitHTTP Transport (#3412) 2024-06-18 05:36:36 +00:00			`package splithttp`

			`import (`
			`"context"`
			`gotls "crypto/tls"`
			`"io"`
			`gonet "net"`
			`"net/http"`
			`"net/http/httptrace"`
			`"net/url"`
			`"strconv"`
			`"sync"`
			`"time"`

			`"github.com/xtls/xray-core/common"`
			`"github.com/xtls/xray-core/common/buf"`
			`"github.com/xtls/xray-core/common/net"`
			`"github.com/xtls/xray-core/common/session"`
			`"github.com/xtls/xray-core/common/signal/semaphore"`
			`"github.com/xtls/xray-core/common/uuid"`
			`"github.com/xtls/xray-core/transport/internet"`
			`"github.com/xtls/xray-core/transport/internet/stat"`
			`"github.com/xtls/xray-core/transport/internet/tls"`
			`"github.com/xtls/xray-core/transport/pipe"`
			`"golang.org/x/net/http2"`
			`)`

			`type dialerConf struct {`
			`net.Destination`
			`*internet.MemoryStreamConfig`
			`}`

			`type reusedClient struct {`
			`download *http.Client`
			`upload *http.Client`
			`isH2 bool`
			`// pool of net.Conn, created using dialUploadConn`
			`uploadRawPool *sync.Pool`
			`dialUploadConn func(ctxInner context.Context) (net.Conn, error)`
			`}`

			`var (`
			`globalDialerMap map[dialerConf]reusedClient`
			`globalDialerAccess sync.Mutex`
			`)`

			`func destroyHTTPClient(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) {`
			`globalDialerAccess.Lock()`
			`defer globalDialerAccess.Unlock()`

			`if globalDialerMap == nil {`
			`globalDialerMap = make(map[dialerConf]reusedClient)`
			`}`

			`delete(globalDialerMap, dialerConf{dest, streamSettings})`

			`}`

			`func getHTTPClient(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) reusedClient {`
			`globalDialerAccess.Lock()`
			`defer globalDialerAccess.Unlock()`

			`if globalDialerMap == nil {`
			`globalDialerMap = make(map[dialerConf]reusedClient)`
			`}`

			`if client, found := globalDialerMap[dialerConf{dest, streamSettings}]; found {`
			`return client`
			`}`

			`tlsConfig := tls.ConfigFromStreamSettings(streamSettings)`

			`var gotlsConfig *gotls.Config`

			`if tlsConfig != nil {`
			`gotlsConfig = tlsConfig.GetTLSConfig(tls.WithDestination(dest))`
			`}`

			`dialContext := func(ctxInner context.Context) (net.Conn, error) {`
			`conn, err := internet.DialSystem(ctx, dest, streamSettings.SocketSettings)`
			`if err != nil {`
			`return nil, err`
			`}`

			`if gotlsConfig != nil {`
			`if fingerprint := tls.GetFingerprint(tlsConfig.Fingerprint); fingerprint != nil {`
			`conn = tls.UClient(conn, gotlsConfig, fingerprint)`
			`if err := conn.(*tls.UConn).HandshakeContext(ctx); err != nil {`
			`return nil, err`
			`}`
			`} else {`
			`conn = tls.Client(conn, gotlsConfig)`
			`}`
			`}`

			`return conn, nil`
			`}`

			`var uploadTransport http.RoundTripper`
			`var downloadTransport http.RoundTripper`

			`if tlsConfig != nil {`
			`downloadTransport = &http2.Transport{`
			`DialTLSContext: func(ctxInner context.Context, network string, addr string, cfg *gotls.Config) (net.Conn, error) {`
			`return dialContext(ctxInner)`
			`},`
			`IdleConnTimeout: 90 * time.Second,`
			`}`
			`uploadTransport = downloadTransport`
			`} else {`
			`httpDialContext := func(ctxInner context.Context, network string, addr string) (net.Conn, error) {`
			`return dialContext(ctxInner)`
			`}`

			`downloadTransport = &http.Transport{`
			`DialTLSContext: httpDialContext,`
			`DialContext: httpDialContext,`
			`IdleConnTimeout: 90 * time.Second,`
			`// chunked transfer download with keepalives is buggy with`
			`// http.Client and our custom dial context.`
			`DisableKeepAlives: true,`
			`}`

			`// we use uploadRawPool for that`
			`uploadTransport = nil`
			`}`

			`client := reusedClient{`
			`download: &http.Client{`
			`Transport: downloadTransport,`
			`},`
			`upload: &http.Client{`
			`Transport: uploadTransport,`
			`},`
			`isH2: tlsConfig != nil,`
			`uploadRawPool: &sync.Pool{},`
			`dialUploadConn: dialContext,`
			`}`

			`globalDialerMap[dialerConf{dest, streamSettings}] = client`
			`return client`
			`}`

			`func init() {`
			`common.Must(internet.RegisterTransportDialer(protocolName, Dial))`
			`}`

			`func Dial(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) (stat.Connection, error) {`
			`newError("dialing splithttp to ", dest).WriteToLog(session.ExportIDToError(ctx))`

			`var requestURL url.URL`

			`transportConfiguration := streamSettings.ProtocolSettings.(*Config)`
			`tlsConfig := tls.ConfigFromStreamSettings(streamSettings)`

			`maxConcurrentUploads := transportConfiguration.GetNormalizedMaxConcurrentUploads()`
			`maxUploadSize := transportConfiguration.GetNormalizedMaxUploadSize()`

			`if tlsConfig != nil {`
			`requestURL.Scheme = "https"`
			`} else {`
			`requestURL.Scheme = "http"`
			`}`
			`requestURL.Host = transportConfiguration.Host`
			`if requestURL.Host == "" {`
			`requestURL.Host = dest.NetAddr()`
			`}`
			`requestURL.Path = transportConfiguration.GetNormalizedPath()`

			`httpClient := getHTTPClient(ctx, dest, streamSettings)`

			`var remoteAddr gonet.Addr`
			`var localAddr gonet.Addr`

			`trace := &httptrace.ClientTrace{`
			`GotConn: func(connInfo httptrace.GotConnInfo) {`
			`remoteAddr = connInfo.Conn.RemoteAddr()`
			`localAddr = connInfo.Conn.LocalAddr()`
			`},`
			`}`

			`sessionIdUuid := uuid.New()`
			`sessionId := sessionIdUuid.String()`

			`req, err := http.NewRequestWithContext(`
			`httptrace.WithClientTrace(ctx, trace),`
			`"GET",`
			`requestURL.String()+"?session="+sessionId,`
			`nil,`
			`)`
			`if err != nil {`
			`return nil, err`
			`}`

			`req.Header = transportConfiguration.GetRequestHeader()`

			`downResponse, err := httpClient.download.Do(req)`
			`if err != nil {`
			`// workaround for various connection pool related issues, mostly around`
			`// HTTP/1.1. if the http client ever fails to send a request, we simply`
			`// delete it entirely.`
			`// in HTTP/1.1, it was observed that pool connections would immediately`
			`// fail with "context canceled" if the previous http response body was`
			`// not explicitly BOTH drained and closed. at the same time, sometimes`
			`// the draining itself takes forever and causes more problems.`
			`// see also https://github.com/golang/go/issues/60240`
			`destroyHTTPClient(ctx, dest, streamSettings)`
			`return nil, newError("failed to send download http request, destroying client").Base(err)`
			`}`

			`if downResponse.StatusCode != 200 {`
			`downResponse.Body.Close()`
			`return nil, newError("invalid status code on download:", downResponse.Status)`
			`}`

			`uploadUrl := requestURL.String() + "?session=" + sessionId + "&seq="`

			`uploadPipeReader, uploadPipeWriter := pipe.New(pipe.WithSizeLimit(maxUploadSize))`

			`go func() {`
			`requestsLimiter := semaphore.New(int(maxConcurrentUploads))`
			`var requestCounter int64`

			`// by offloading the uploads into a buffered pipe, multiple conn.Write`
			`// calls get automatically batched together into larger POST requests.`
			`// without batching, bandwidth is extremely limited.`
			`for {`
			`chunk, err := uploadPipeReader.ReadMultiBuffer()`
			`if err != nil {`
			`break`
			`}`

			`<-requestsLimiter.Wait()`

			`url := uploadUrl + strconv.FormatInt(requestCounter, 10)`
			`requestCounter += 1`

			`go func() {`
			`defer requestsLimiter.Signal()`
			`req, err := http.NewRequest("POST", url, &buf.MultiBufferContainer{MultiBuffer: chunk})`
			`if err != nil {`
			`newError("failed to send upload").Base(err).WriteToLog()`
			`uploadPipeReader.Interrupt()`
			`return`
			`}`

			`req.Header = transportConfiguration.GetRequestHeader()`

			`if httpClient.isH2 {`
			`resp, err := httpClient.upload.Do(req)`
			`if err != nil {`
			`newError("failed to send upload").Base(err).WriteToLog()`
			`uploadPipeReader.Interrupt()`
			`return`
			`}`
			`defer resp.Body.Close()`

			`if resp.StatusCode != 200 {`
			`newError("failed to send upload, bad status code:", resp.Status).WriteToLog()`
			`uploadPipeReader.Interrupt()`
			`return`
			`}`
			`} else {`
			`var err error`
			`var uploadConn any`
fix compatibility issues with go 1.21 2024-06-18 11:05:59 +00:00			`for i := 0; i < 5; i++ {`
Add SplitHTTP Transport (#3412) 2024-06-18 05:36:36 +00:00			`uploadConn = httpClient.uploadRawPool.Get()`
			`if uploadConn == nil {`
			`uploadConn, err = httpClient.dialUploadConn(ctx)`
			`if err != nil {`
			`newError("failed to connect upload").Base(err).WriteToLog()`
			`uploadPipeReader.Interrupt()`
			`return`
			`}`
			`}`

			`err = req.Write(uploadConn.(net.Conn))`
			`if err == nil {`
			`break`
			`}`
			`}`

			`if err != nil {`
			`newError("failed to send upload").Base(err).WriteToLog()`
			`uploadPipeReader.Interrupt()`
			`return`
			`}`

			`httpClient.uploadRawPool.Put(uploadConn)`
			`}`
			`}()`

			`}`
			`}()`

			`// skip "ok" response`
			`trashHeader := []byte{0, 0}`
			`_, err = io.ReadFull(downResponse.Body, trashHeader)`
			`if err != nil {`
			`downResponse.Body.Close()`
			`return nil, newError("failed to read initial response")`
			`}`

			`// necessary in order to send larger chunks in upload`
			`bufferedUploadPipeWriter := buf.NewBufferedWriter(uploadPipeWriter)`
			`bufferedUploadPipeWriter.SetBuffered(false)`

			`conn := splitConn{`
			`writer: bufferedUploadPipeWriter,`
			`reader: downResponse.Body,`
			`remoteAddr: remoteAddr,`
			`localAddr: localAddr,`
			`}`

			`return stat.Connection(&conn), nil`
			`}`