Honor VirtualHost when creating SSLEngines, close AsyncHttpClient#927

Author: slandelle

api/src/main/java/org/asynchttpclient/channel/pool/ConnectionPoolPartitioning.java

@@ -36,14 +36,14 @@ public String toString() {
         }
     }
 
-    Object getPartitionKey(Uri uri, ProxyServer proxyServer);
+    Object getPartitionKey(Uri uri, String virtualHost, ProxyServer proxyServer);
 
     public enum PerHostConnectionPoolPartitioning implements ConnectionPoolPartitioning {
 
         INSTANCE;
 
-        public Object getPartitionKey(Uri uri, ProxyServer proxyServer) {
-            String targetHostBaseUrl = AsyncHttpProviderUtils.getBaseUrl(uri);
+        public Object getPartitionKey(Uri uri, String virtualHost, ProxyServer proxyServer) {
+            String targetHostBaseUrl = virtualHost != null ? virtualHost : AsyncHttpProviderUtils.getBaseUrl(uri);
             return proxyServer != null ? new ProxyPartitionKey(proxyServer.getUrl(), targetHostBaseUrl) : targetHostBaseUrl;
         }
     }

api/src/main/java/org/asynchttpclient/util/AsyncHttpProviderUtils.java

@@ -47,19 +47,19 @@ public final static String getBaseUrl(Uri uri) {
     }
 
     public final static String getAuthority(Uri uri) {
-        int port = uri.getPort() != -1 ? uri.getPort() : getDefaultPort(uri);
+        int port = uri.getPort() != -1 ? uri.getPort() : getExplicitPort(uri);
         return uri.getHost() + ":" + port;
     }
 
-    public final static boolean isSameHostAndProtocol(Uri uri1, Uri uri2) {
-        return uri1.getScheme().equals(uri2.getScheme()) && uri1.getHost().equals(uri2.getHost()) && getDefaultPort(uri1) == getDefaultPort(uri2);
+    public final static boolean isSameBase(Uri uri1, Uri uri2) {
+        return uri1.getScheme().equals(uri2.getScheme()) && uri1.getHost().equals(uri2.getHost()) && getExplicitPort(uri1) == getExplicitPort(uri2);
     }
 
     public static final int getSchemeDefaultPort(String scheme) {
         return scheme.equals("http") || scheme.equals("ws") ? 80 : 443;
     }
 
-    public static final int getDefaultPort(Uri uri) {
+    public static final int getExplicitPort(Uri uri) {
         int port = uri.getPort();
         if (port == -1)
             port = getSchemeDefaultPort(uri.getScheme());

providers/netty3/src/main/java/org/asynchttpclient/netty/NettyAsyncHttpProviderConfig.java

@@ -107,8 +107,6 @@ public Set<Map.Entry<String, Object>> propertiesSet() {
 
     private AdditionalPipelineInitializer httpAdditionalPipelineInitializer;
     private AdditionalPipelineInitializer wsAdditionalPipelineInitializer;
-    private AdditionalPipelineInitializer httpsAdditionalPipelineInitializer;
-    private AdditionalPipelineInitializer wssAdditionalPipelineInitializer;
 
     /**
      * Allow configuring the Netty's socket channel factory.
@@ -155,22 +153,6 @@ public void setWsAdditionalPipelineInitializer(AdditionalPipelineInitializer wsA
         this.wsAdditionalPipelineInitializer = wsAdditionalPipelineInitializer;
     }
 
-    public AdditionalPipelineInitializer getHttpsAdditionalPipelineInitializer() {
-        return httpsAdditionalPipelineInitializer;
-    }
-
-    public void setHttpsAdditionalPipelineInitializer(AdditionalPipelineInitializer httpsAdditionalPipelineInitializer) {
-        this.httpsAdditionalPipelineInitializer = httpsAdditionalPipelineInitializer;
-    }
-
-    public AdditionalPipelineInitializer getWssAdditionalPipelineInitializer() {
-        return wssAdditionalPipelineInitializer;
-    }
-
-    public void setWssAdditionalPipelineInitializer(AdditionalPipelineInitializer wssAdditionalPipelineInitializer) {
-        this.wssAdditionalPipelineInitializer = wssAdditionalPipelineInitializer;
-    }
-
     public NioClientSocketChannelFactory getSocketChannelFactory() {
         return socketChannelFactory;
     }

providers/netty3/src/main/java/org/asynchttpclient/netty/NettyResponseFuture.java

@@ -419,7 +419,7 @@ public long getStart() {
     }
 
     public Object getPartitionKey() {
-        return connectionPoolPartitioning.getPartitionKey(getUri(), proxyServer);
+        return connectionPoolPartitioning.getPartitionKey(request.getUri(), request.getVirtualHost(), proxyServer);
     }
 
     @Override

providers/netty3/src/main/java/org/asynchttpclient/netty/channel/ChannelManager.java

@@ -13,6 +13,8 @@
  */
 package org.asynchttpclient.netty.channel;
 
+import static org.asynchttpclient.util.AsyncHttpProviderUtils.getExplicitPort;
+import static org.asynchttpclient.util.AsyncHttpProviderUtils.getSchemeDefaultPort;
 import static org.asynchttpclient.util.HttpUtils.WS;
 import static org.asynchttpclient.util.HttpUtils.isSecure;
 import static org.asynchttpclient.util.HttpUtils.isWebSocket;
@@ -102,10 +104,8 @@ public class ChannelManager {
 
     private final ClientSocketChannelFactory socketChannelFactory;
     private final boolean allowReleaseSocketChannelFactory;
-    private final ClientBootstrap plainBootstrap;
-    private final ClientBootstrap secureBootstrap;
-    private final ClientBootstrap webSocketBootstrap;
-    private final ClientBootstrap secureWebSocketBootstrap;
+    private final ClientBootstrap httpBootstrap;
+    private final ClientBootstrap wsBootstrap;
     private final ConcurrentHashMapV8.Fun<Object, Semaphore> semaphoreComputer;
 
     private Processor wsProcessor;
@@ -189,10 +189,8 @@ public Semaphore apply(Object partitionKey) {
             allowReleaseSocketChannelFactory = true;
         }
 
-        plainBootstrap = new ClientBootstrap(socketChannelFactory);
-        secureBootstrap = new ClientBootstrap(socketChannelFactory);
-        webSocketBootstrap = new ClientBootstrap(socketChannelFactory);
-        secureWebSocketBootstrap = new ClientBootstrap(socketChannelFactory);
+        httpBootstrap = new ClientBootstrap(socketChannelFactory);
+        wsBootstrap = new ClientBootstrap(socketChannelFactory);
 
         DefaultChannelFuture.setUseDeadLockChecker(nettyConfig.isUseDeadLockChecker());
 
@@ -202,10 +200,8 @@ public Semaphore apply(Object partitionKey) {
         for (Entry<String, Object> entry : nettyConfig.propertiesSet()) {
             String key = entry.getKey();
             Object value = entry.getValue();
-            plainBootstrap.setOption(key, value);
-            webSocketBootstrap.setOption(key, value);
-            secureBootstrap.setOption(key, value);
-            secureWebSocketBootstrap.setOption(key, value);
+            httpBootstrap.setOption(key, value);
+            wsBootstrap.setOption(key, value);
         }
     }
 
@@ -217,7 +213,7 @@ public void configureBootstraps(NettyRequestSender requestSender, AtomicBoolean
         Protocol wsProtocol = new WebSocketProtocol(this, config, nettyConfig, requestSender);
         wsProcessor = new Processor(config, this, requestSender, wsProtocol);
 
-        plainBootstrap.setPipelineFactory(new ChannelPipelineFactory() {
+        httpBootstrap.setPipelineFactory(new ChannelPipelineFactory() {
 
             public ChannelPipeline getPipeline() throws Exception {
                 ChannelPipeline pipeline = pipeline();
@@ -233,7 +229,7 @@ public ChannelPipeline getPipeline() throws Exception {
             }
         });
 
-        webSocketBootstrap.setPipelineFactory(new ChannelPipelineFactory() {
+        wsBootstrap.setPipelineFactory(new ChannelPipelineFactory() {
 
             public ChannelPipeline getPipeline() throws Exception {
                 ChannelPipeline pipeline = pipeline();
@@ -246,38 +242,6 @@ public ChannelPipeline getPipeline() throws Exception {
                 return pipeline;
             }
         });
-
-        secureBootstrap.setPipelineFactory(new ChannelPipelineFactory() {
-
-            public ChannelPipeline getPipeline() throws Exception {
-                ChannelPipeline pipeline = pipeline();
-                pipeline.addLast(SSL_HANDLER, new SslInitializer(ChannelManager.this));
-                pipeline.addLast(HTTP_HANDLER, newHttpClientCodec());
-                pipeline.addLast(INFLATER_HANDLER, newHttpContentDecompressor());
-                pipeline.addLast(CHUNKED_WRITER_HANDLER, new ChunkedWriteHandler());
-                pipeline.addLast(HTTP_PROCESSOR, httpProcessor);
-
-                if (nettyConfig.getHttpsAdditionalPipelineInitializer() != null)
-                    nettyConfig.getHttpsAdditionalPipelineInitializer().initPipeline(pipeline);
-
-                return pipeline;
-            }
-        });
-
-        secureWebSocketBootstrap.setPipelineFactory(new ChannelPipelineFactory() {
-
-            public ChannelPipeline getPipeline() throws Exception {
-                ChannelPipeline pipeline = pipeline();
-                pipeline.addLast(SSL_HANDLER, new SslInitializer(ChannelManager.this));
-                pipeline.addLast(HTTP_HANDLER, newHttpClientCodec());
-                pipeline.addLast(WS_PROCESSOR, wsProcessor);
-
-                if (nettyConfig.getWssAdditionalPipelineInitializer() != null)
-                    nettyConfig.getWssAdditionalPipelineInitializer().initPipeline(pipeline);
-
-                return pipeline;
-            }
-        });
     }
 
     private HttpContentDecompressor newHttpContentDecompressor() {
@@ -308,8 +272,8 @@ public final void tryToOfferChannelToPool(Channel channel, AsyncHandler<?> handl
         }
     }
 
-    public Channel poll(Uri uri, ProxyServer proxy, ConnectionPoolPartitioning connectionPoolPartitioning) {
-        Object partitionKey = connectionPoolPartitioning.getPartitionKey(uri, proxy);
+    public Channel poll(Uri uri, String virtualHost, ProxyServer proxy, ConnectionPoolPartitioning connectionPoolPartitioning) {
+        Object partitionKey = connectionPoolPartitioning.getPartitionKey(uri, virtualHost, proxy);
         return channelPool.poll(partitionKey);
     }
 
@@ -358,10 +322,8 @@ public void close() {
         config.executorService().shutdown();
         if (allowReleaseSocketChannelFactory) {
             socketChannelFactory.releaseExternalResources();
-            plainBootstrap.releaseExternalResources();
-            secureBootstrap.releaseExternalResources();
-            webSocketBootstrap.releaseExternalResources();
-            secureWebSocketBootstrap.releaseExternalResources();
+            httpBootstrap.releaseExternalResources();
+            wsBootstrap.releaseExternalResources();
         }
     }
 
@@ -436,21 +398,45 @@ public void upgradeProtocol(ChannelPipeline pipeline, String scheme, String host
         }
     }
 
-    public void verifyChannelPipeline(ChannelPipeline pipeline, String scheme) throws IOException, GeneralSecurityException {
+    public SslHandler addSslHandler(ChannelPipeline pipeline, Uri uri, String virtualHost) throws GeneralSecurityException, IOException {
+        String peerHost;
+        int peerPort;
+        
+        if (virtualHost != null) {
+            int i = virtualHost.indexOf(':');
+            if (i == -1) {
+                peerHost = virtualHost;
+                peerPort = getSchemeDefaultPort(uri.getScheme());
+            } else {
+                peerHost = virtualHost.substring(0, i);
+                peerPort = Integer.valueOf(virtualHost.substring(i + 1));
+            }
+            
+        } else {
+            peerHost = uri.getHost();
+            peerPort = getExplicitPort(uri);
+        }
+
+        SslHandler sslHandler = createSslHandler(peerHost, peerPort);
+        pipeline.addFirst(SSL_HANDLER, sslHandler);
+        return sslHandler;
+    }
+
+    public void verifyChannelPipeline(ChannelPipeline pipeline, Uri uri, String virtualHost) throws IOException, GeneralSecurityException {
 
         boolean sslHandlerConfigured = isSslHandlerConfigured(pipeline);
 
-        if (isSecure(scheme)) {
-            if (!sslHandlerConfigured)
-                pipeline.addFirst(SSL_HANDLER, new SslInitializer(this));
+        if (isSecure(uri.getScheme())) {
+            if (!sslHandlerConfigured) {
+                addSslHandler(pipeline, uri, virtualHost);
+            }
 
         } else if (sslHandlerConfigured)
             pipeline.remove(SSL_HANDLER);
     }
 
-    public ClientBootstrap getBootstrap(String scheme, boolean useProxy, boolean useSSl) {
-        return scheme.startsWith(WS) && !useProxy ? (useSSl ? secureWebSocketBootstrap : webSocketBootstrap) : //
-                (useSSl ? secureBootstrap : plainBootstrap);
+    public ClientBootstrap getBootstrap(String scheme, boolean useProxy) {
+        return scheme.startsWith(WS) && !useProxy ? wsBootstrap : httpBootstrap;
     }
 
     public void upgradePipelineForWebSockets(ChannelPipeline pipeline) {

providers/netty3/src/main/java/org/asynchttpclient/netty/channel/NettyConnectListener.java

@@ -14,14 +14,17 @@
 package org.asynchttpclient.netty.channel;
 
 import static org.asynchttpclient.util.AsyncHttpProviderUtils.getBaseUrl;
+import static org.asynchttpclient.util.HttpUtils.isSecure;
 
 import java.net.ConnectException;
 
 import org.asynchttpclient.AsyncHandler;
+import org.asynchttpclient.Request;
 import org.asynchttpclient.handler.AsyncHandlerExtensions;
 import org.asynchttpclient.netty.NettyResponseFuture;
 import org.asynchttpclient.netty.future.StackTraceInspector;
 import org.asynchttpclient.netty.request.NettyRequestSender;
+import org.asynchttpclient.uri.Uri;
 import org.jboss.netty.channel.Channel;
 import org.jboss.netty.channel.ChannelFuture;
 import org.jboss.netty.channel.ChannelFutureListener;
@@ -84,10 +87,14 @@ private void writeRequest(Channel channel) {
         requestSender.writeRequest(future, channel);
     }
 
-    private void onFutureSuccess(final Channel channel) throws ConnectException {
-        SslHandler sslHandler = channel.getPipeline().get(SslHandler.class);
+    private void onFutureSuccess(final Channel channel) throws Exception {
 
-        if (sslHandler != null) {
+        Request request = future.getRequest();
+        Uri uri = request.getUri();
+
+        // in case of proxy tunneling, we'll add the SslHandler later, after the CONNECT request
+        if (future.getProxyServer() == null && isSecure(uri)) {
+            SslHandler sslHandler = channelManager.addSslHandler(channel.getPipeline(), uri, request.getVirtualHost());
             sslHandler.handshake().addListener(new ChannelFutureListener() {
 
                 @Override

providers/netty3/src/main/java/org/asynchttpclient/netty/channel/SslInitializer.java

@@ -14,7 +14,7 @@
 package org.asynchttpclient.netty.handler;
 
 import static org.asynchttpclient.ntlm.NtlmUtils.getNTLM;
-import static org.asynchttpclient.util.AsyncHttpProviderUtils.getDefaultPort;
+import static org.asynchttpclient.util.AsyncHttpProviderUtils.getExplicitPort;
 import static org.asynchttpclient.util.MiscUtils.isNonEmpty;
 import static org.jboss.netty.handler.codec.http.HttpResponseStatus.CONTINUE;
 import static org.jboss.netty.handler.codec.http.HttpResponseStatus.OK;
@@ -352,7 +352,7 @@ private boolean exitAfterHandlingConnect(//
                 Uri requestUri = request.getUri();
                 String scheme = requestUri.getScheme();
                 String host = requestUri.getHost();
-                int port = getDefaultPort(requestUri);
+                int port = getExplicitPort(requestUri);
 
                 logger.debug("Connecting to proxy {} for scheme {}", proxyServer, scheme);
                 channelManager.upgradeProtocol(channel.getPipeline(), scheme, host, port);