using System; using System.Collections.Generic; using System.Diagnostics; using System.Linq; using System.Net; using System.Net.Http; using System.Net.Security; using System.Security.Cryptography.X509Certificates; using System.Text; using System.Threading.Tasks; using CloudflareSolverRe; using com.LandonKey.SocksWebProxy; using com.LandonKey.SocksWebProxy.Proxy; using Jackett.Common.Helpers; using Jackett.Common.Models.Config; using Jackett.Common.Services.Interfaces; using NLog; namespace Jackett.Common.Utils.Clients { // Compared to HttpWebClient this implementation will reuse the HttpClient instance (one per indexer). // This should improve performance and avoid problems with too man open file handles. public class HttpWebClient2 : WebClient { CookieContainer cookies; ClearanceHandler clearanceHandlr; HttpClientHandler clientHandlr; HttpClient client; static protected Dictionary> trustedCertificates = new Dictionary>(); static protected string webProxyUrl; static protected IWebProxy webProxy; [DebuggerNonUserCode] // avoid "Exception User-Unhandled" Visual Studio messages static public bool ValidateCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors) { if (sender.GetType() != typeof(HttpWebRequest)) return sslPolicyErrors == SslPolicyErrors.None; var request = (HttpWebRequest)sender; var hash = certificate.GetCertHashString(); ICollection hosts; trustedCertificates.TryGetValue(hash, out hosts); if (hosts != null) { if (hosts.Contains(request.Host)) return true; } if (sslPolicyErrors != SslPolicyErrors.None) { // Throw exception with certificate details, this will cause a "Exception User-Unhandled" when running it in the Visual Studio debugger. // The certificate is only available inside this function, so we can't catch it at the calling method. throw new Exception("certificate validation failed: " + certificate.ToString()); } return sslPolicyErrors == SslPolicyErrors.None; } static public void InitProxy(ServerConfig serverConfig) { // dispose old SocksWebProxy if (webProxy != null && webProxy is SocksWebProxy) { ((SocksWebProxy)webProxy).Dispose(); webProxy = null; } webProxyUrl = serverConfig.GetProxyUrl(); if (!string.IsNullOrWhiteSpace(webProxyUrl)) { if (serverConfig.ProxyType != ProxyType.Http) { var addresses = Dns.GetHostAddressesAsync(serverConfig.ProxyUrl).Result; var socksConfig = new ProxyConfig { SocksAddress = addresses.FirstOrDefault(), Username = serverConfig.ProxyUsername, Password = serverConfig.ProxyPassword, Version = serverConfig.ProxyType == ProxyType.Socks4 ? ProxyConfig.SocksVersion.Four : ProxyConfig.SocksVersion.Five }; if (serverConfig.ProxyPort.HasValue) { socksConfig.SocksPort = serverConfig.ProxyPort.Value; } webProxy = new SocksWebProxy(socksConfig, false); } else { NetworkCredential creds = null; if (!serverConfig.ProxyIsAnonymous) { var username = serverConfig.ProxyUsername; var password = serverConfig.ProxyPassword; creds = new NetworkCredential(username, password); } webProxy = new WebProxy(webProxyUrl) { BypassProxyOnLocal = false, Credentials = creds }; } } } public HttpWebClient2(IProcessService p, Logger l, IConfigurationService c, ServerConfig sc) : base(p: p, l: l, c: c, sc: sc) { if (webProxyUrl == null) InitProxy(sc); cookies = new CookieContainer(); CreateClient(); } public void CreateClient() { clearanceHandlr = new ClearanceHandler(BrowserUtil.ChromeUserAgent); clearanceHandlr.MaxTries = 30; clientHandlr = new HttpClientHandler { CookieContainer = cookies, AllowAutoRedirect = false, // Do not use this - Bugs ahoy! Lost cookies and more. UseCookies = true, Proxy = webProxy, UseProxy = (webProxy != null), AutomaticDecompression = DecompressionMethods.GZip | DecompressionMethods.Deflate }; clearanceHandlr.InnerHandler = clientHandlr; client = new HttpClient(clearanceHandlr); } // Called everytime the ServerConfig changes public override void OnNext(ServerConfig value) { var newProxyUrl = serverConfig.GetProxyUrl(); if (webProxyUrl != newProxyUrl) // if proxy URL changed InitProxy(serverConfig); // recreate client if needed (can't just change the proxy attribute) if (!ReferenceEquals(clientHandlr.Proxy, webProxy)) { CreateClient(); } } override public void Init() { if (serverConfig.RuntimeSettings.IgnoreSslErrors == true) { logger.Info(string.Format("HttpWebClient2: Disabling certificate validation")); ServicePointManager.ServerCertificateValidationCallback += (sender, certificate, chain, sslPolicyErrors) => { return true; }; } ServicePointManager.SecurityProtocol = (SecurityProtocolType)192 | (SecurityProtocolType)768 | (SecurityProtocolType)3072; // custom handler for our own internal certificates ServicePointManager.ServerCertificateValidationCallback += ValidateCertificate; } override protected async Task Run(WebRequest webRequest) { HttpResponseMessage response = null; var request = new HttpRequestMessage(); request.Headers.ExpectContinue = false; request.RequestUri = new Uri(webRequest.Url); if (webRequest.EmulateBrowser == true) request.Headers.UserAgent.ParseAdd(BrowserUtil.ChromeUserAgent); else request.Headers.UserAgent.ParseAdd("Jackett/" + configService.GetVersion()); // clear cookies from cookiecontainer var oldCookies = cookies.GetCookies(request.RequestUri); foreach (Cookie oldCookie in oldCookies) { oldCookie.Expired = true; } if (!string.IsNullOrEmpty(webRequest.Cookies)) { // add cookies to cookiecontainer var cookieUrl = new Uri(request.RequestUri.Scheme + "://" + request.RequestUri.Host); // don't include the path, Scheme is needed for mono compatibility foreach (var ccookiestr in webRequest.Cookies.Split(';')) { var cookiestrparts = ccookiestr.Split('='); var name = cookiestrparts[0].Trim(); if (string.IsNullOrWhiteSpace(name)) continue; var value = ""; if (cookiestrparts.Length >= 2) value = cookiestrparts[1].Trim(); var cookie = new Cookie(name, value); cookies.Add(cookieUrl, cookie); } } if (webRequest.Headers != null) { foreach (var header in webRequest.Headers) { if (header.Key != "Content-Type") { request.Headers.TryAddWithoutValidation(header.Key, header.Value); } } } if (!string.IsNullOrEmpty(webRequest.Referer)) request.Headers.Referrer = new Uri(webRequest.Referer); if (!string.IsNullOrEmpty(webRequest.RawBody)) { var type = webRequest.Headers.Where(h => h.Key == "Content-Type").Cast?>().FirstOrDefault(); if (type.HasValue) { var str = new StringContent(webRequest.RawBody); str.Headers.Remove("Content-Type"); str.Headers.Add("Content-Type", type.Value.Value); request.Content = str; } else request.Content = new StringContent(webRequest.RawBody); request.Method = HttpMethod.Post; } else if (webRequest.Type == RequestType.POST) { if (webRequest.PostData != null) request.Content = FormUrlEncodedContentWithEncoding(webRequest.PostData, webRequest.Encoding); request.Method = HttpMethod.Post; } else { request.Method = HttpMethod.Get; } response = await client.SendAsync(request); var result = new WebClientByteResult(); result.Content = await response.Content.ReadAsByteArrayAsync(); foreach (var header in response.Headers) { IEnumerable value = header.Value; result.Headers[header.Key.ToLowerInvariant()] = value.ToArray(); } // some cloudflare clients are using a refresh header // Pull it out manually if (response.StatusCode == System.Net.HttpStatusCode.ServiceUnavailable && response.Headers.Contains("Refresh")) { var refreshHeaders = response.Headers.GetValues("Refresh"); var redirval = ""; var redirtime = 0; if (refreshHeaders != null) { foreach (var value in refreshHeaders) { var start = value.IndexOf("="); var end = value.IndexOf(";"); var len = value.Length; if (start > -1) { redirval = value.Substring(start + 1); result.RedirectingTo = redirval; // normally we don't want a serviceunavailable (503) to be a redirect, but that's the nature // of this cloudflare approach..don't want to alter BaseWebResult.IsRedirect because normally // it shoudln't include service unavailable..only if we have this redirect header. response.StatusCode = System.Net.HttpStatusCode.Redirect; redirtime = Int32.Parse(value.Substring(0, end)); System.Threading.Thread.Sleep(redirtime * 1000); } } } } if (response.Headers.Location != null) { result.RedirectingTo = response.Headers.Location.ToString(); } // Mono won't add the baseurl to relative redirects. // e.g. a "Location: /index.php" header will result in the Uri "file:///index.php" // See issue #1200 if (result.RedirectingTo != null && result.RedirectingTo.StartsWith("file://")) { // URL decoding apparently is needed to, without it e.g. Demonoid download is broken // TODO: is it always needed (not just for relative redirects)? var newRedirectingTo = WebUtilityHelpers.UrlDecode(result.RedirectingTo, webRequest.Encoding); if (newRedirectingTo.StartsWith("file:////")) // Location without protocol but with host (only add scheme) newRedirectingTo = newRedirectingTo.Replace("file://", request.RequestUri.Scheme + ":"); else newRedirectingTo = newRedirectingTo.Replace("file://", request.RequestUri.Scheme + "://" + request.RequestUri.Host); logger.Debug("[MONO relative redirect bug] Rewriting relative redirect URL from " + result.RedirectingTo + " to " + newRedirectingTo); result.RedirectingTo = newRedirectingTo; } result.Status = response.StatusCode; // Compatiblity issue between the cookie format and httpclient // Pull it out manually ignoring the expiry date then set it manually // http://stackoverflow.com/questions/14681144/httpclient-not-storing-cookies-in-cookiecontainer IEnumerable cookieHeaders; var responseCookies = new List>(); if (response.Headers.TryGetValues("set-cookie", out cookieHeaders)) { foreach (var value in cookieHeaders) { logger.Debug(value); var nameSplit = value.IndexOf('='); if (nameSplit > -1) { responseCookies.Add(new Tuple(value.Substring(0, nameSplit), value.Substring(0, value.IndexOf(';') == -1 ? value.Length : (value.IndexOf(';'))) + ";")); } } var cookieBuilder = new StringBuilder(); foreach (var cookieGroup in responseCookies.GroupBy(c => c.Item1)) { cookieBuilder.AppendFormat("{0} ", cookieGroup.Last().Item2); } result.Cookies = cookieBuilder.ToString().Trim(); } ServerUtil.ResureRedirectIsFullyQualified(webRequest, result); return result; } override public void AddTrustedCertificate(string host, string hash) { hash = hash.ToUpper(); ICollection hosts; trustedCertificates.TryGetValue(hash.ToUpper(), out hosts); if (hosts == null) { hosts = new HashSet(); trustedCertificates[hash] = hosts; } hosts.Add(host); } } }