Files

 master

/

sponge.rb

Copy path

Blame

Blame

Latest commit

 

History

History

264 lines (221 loc) · 6.12 KB

 master

/

sponge.rb

Top

File metadata and controls

• Code
• Blame

264 lines (221 loc) · 6.12 KB

Raw

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

require "uri"

require "net/https"

require "resolv"

require "ipaddr"

class BadIPsError < StandardError; end

class DNSError < StandardError; end

class NoIPsError < StandardError; end

module Net

class HTTP

attr_accessor :address, :custom_conn_address, :skip_close

def start # :yield: http

if block_given? && !skip_close

begin

do_start

return yield(self)

ensure

do_finish

end

end

do_start

self

end

private

def conn_address

if self.custom_conn_address.to_s != ""

self.custom_conn_address

else

address

end

end

end

end

class Sponge

MAX_TIME = 60

MAX_DNS_TIME = 5

attr_accessor :debug, :last_res, :timeout, :ssl_verify

# rfc3330

BAD_NETS = [

"0.0.0.0/8",

"10.0.0.0/8",

"127.0.0.0/8",

"169.254.0.0/16",

"172.16.0.0/12",

"192.0.2.0/24",

"192.88.99.0/24",

"192.168.0.0/16",

"198.18.0.0/15",

"224.0.0.0/4",

"240.0.0.0/4",

].freeze

# old api

def self.fetch(url, headers = {}, limit = 10)

s = Sponge.new

s.ssl_verify = false # backward compatibility

s.fetch(url, "get", nil, nil, headers, limit)

end

def initialize

@cookies = {}

@timeout = MAX_TIME

@ssl_verify = OpenSSL::SSL::VERIFY_PEER

end

def set_cookie(host, name, val)

dputs "setting cookie #{name} on domain #{host} to #{val}"

if !@cookies[host]

@cookies[host] = {}

end

if val.to_s == ""

@cookies[host][name] ? @cookies[host][name].delete : nil

else

@cookies[host][name] = val

end

end

def cookies(host)

cooks = @cookies[host] || {}

# check for domain cookies

@cookies.keys.each do |dom|

if dom.length < host.length && dom == host[host.length - dom.length .. host.length - 1]

dputs "adding domain keys from #{dom}"

cooks = cooks.merge @cookies[dom]

end

end

if cooks

return cooks.map {|k, v| "#{k}=#{v};" }.join(" ")

else

return ""

end

end

def fetch(url, method = :get, fields = nil, raw_post_data = nil, headers = {}, limit = 10)

raise ArgumentError.new("http redirection too deep") if limit <= 0

uri = URI.parse(url)

# we'll manually resolve the ip so we can verify it's not local

ip = nil

tip = nil

ips = []

retried = false

begin

Timeout.timeout(MAX_DNS_TIME) do

ips = Resolv.getaddresses(uri.host)

if !ips.any?

raise NoIPsError

end

# reject ipv6 addresses

ips.reject! {|address| address.match(/:/) }

# pick a random one

tip = ips[rand(ips.length)]

ip = IPAddr.new(tip)

end

rescue Timeout::Error => e

if retried

raise DNSError.new("couldn't resolve #{uri.host} (DNS timeout)")

else

retried = true

retry

end

rescue => e

raise DNSError.new("couldn't resolve #{uri.host} (#{e.inspect})")

end

if !ip

raise DNSError.new("couldn't resolve #{uri.host}")

end

if BAD_NETS.select {|n| IPAddr.new(n).include?(ip) }.any?

# This blocks all requests to localhost, so you might need to comment

# it out if you're building an end-to-end integration locally.

raise BadIPsError.new("refusing to talk to IP #{ip}")

end

host = Net::HTTP.new(ip.to_s, uri.port)

host.read_timeout = self.timeout

if self.debug

host.set_debug_output $stdout

end

if uri.scheme == "https"

host.use_ssl = true

host.address = uri.host

host.custom_conn_address = ip.to_s

host.verify_mode = self.ssl_verify ? OpenSSL::SSL::VERIFY_PEER : OpenSSL::SSL::VERIFY_NONE

end

send_headers = headers.dup

path = (uri.path == "" ? "/" : uri.path)

if uri.query

path += "?" + uri.query

elsif method == :get && raw_post_data

path += "?" + URI.encode_www_form(raw_post_data)

send_headers["Content-type"] = "application/x-www-form-urlencoded"

end

if method == :post

if raw_post_data

post_data = raw_post_data

send_headers["Content-type"] = "application/x-www-form-urlencoded"

else

post_data = fields.map {|k, v| "#{k}=#{v}" }.join("&")

end

send_headers["Content-Length"] = post_data.length.to_s

end

path.gsub!(/^\/\//, "/")

dputs "fetching #{url} (#{ip}) " +

(uri.user ? "with http auth " + uri.user + "/" + ("*" * uri.password.length) + " " : "") +

"by #{method} with cookies #{cookies(uri.host)}"

send_headers = {

"Host" => uri.host,

"Cookie" => cookies(uri.host),

"Referer" => url.to_s,

"User-Agent" => "Mozilla/5.0 (compatible)",

}.merge(send_headers || {})

if uri.user

send_headers["Authorization"] = "Basic " +

["#{uri.user}:#{uri.password}"].pack('m').delete("\r\n")

end

res = nil

begin

Timeout.timeout(self.timeout) do

if method == :post

res = host.post(path, post_data, send_headers)

else

res = host.get(path, send_headers)

end

end

rescue Timeout::Error

dputs "timed out during #{method}"

return nil

end

if res.get_fields("Set-Cookie")

res.get_fields("Set-Cookie").each do |cook|

if (p = Regexp.new(/^([^=]+)=([^;]*)/).match(cook))

set_cookie(uri.host, p[1], p[2])

else

dputs "unable to match cookie line #{cook}"

end

end

end

case res

when Net::HTTPSuccess

return res

when Net::HTTPRedirection

# follow

newuri = URI.parse(res["location"])

if newuri.host

dputs "following redirection to " + res["location"]

else

# relative path

newuri.host = uri.host

newuri.scheme = uri.scheme

newuri.port = uri.port

newuri.path = "/#{newuri.path}"

dputs "following relative redirection to " + newuri.to_s

end

fetch(newuri.to_s, "get", nil, nil, headers, limit - 1)

end

end

def get(url)

fetch(url, "get")

end

def post(url, fields)

fetch(url, "post", fields)

end

private

def dputs(string)

if self.debug

puts string

end

end

end