goldilocks.js/lib/tunnel.js

'use strict';

module.exports.create = function (opts, servers) {
  // servers = { plainserver, server }
  var Oauth3 = require('oauth3-cli');
  var Tunnel = require('daplie-tunnel').create({
    Oauth3: Oauth3
  , PromiseA: opts.PromiseA
  , CLI: {
      init: function (rs, ws/*, state, options*/) {
        // noop
        return ws;
      }
    }
  }).Tunnel;
  var stunnel = require('stunnel');
  var killcount = 0;

  /*
  var Dup = {
    write: function (chunk, encoding, cb) {
      this.__my_socket.push(chunk, encoding);
      cb();
    }
  , read: function (size) {
      var x = this.__my_socket.read(size);
      if (x) { this.push(x); }
    }
  , setTimeout: function () {
      console.log('TODO implement setTimeout on Duplex');
    }
  };

  var httpServer = require('http').createServer(function (req, res) {
    console.log('req.socket.encrypted', req.socket.encrypted);
    res.end('Hello, tunneled World!');
  });

  var tlsServer = require('tls').createServer(opts.httpsOptions, function (tlsSocket) {
    console.log('tls connection');
    // things get a little messed up here
    httpServer.emit('connection', tlsSocket);

    // try again
    //servers.server.emit('connection', tlsSocket);
  });
  */

  process.on('SIGINT', function () {
    killcount += 1;
    console.log('[quit] closing http and https servers');
    if (killcount >= 3) {
      process.exit(1);
    }
    if (servers.server) {
      servers.server.close();
    }
    if (servers.insecureServer) {
      servers.insecureServer.close();
    }
  });

  return Tunnel.token({
    refreshToken: opts.refreshToken
  , email: opts.email
  , domains: opts.sites.map(function (site) {
      return site.name;
    })
  , device: { hostname: opts.devicename || opts.device }
  }).then(function (result) {
    // { jwt, tunnelUrl }
    var locals = [];
    opts.sites.map(function (site) {
      locals.push({
        protocol: 'https'
      , hostname: site.name
      , port: opts.port
      });
      locals.push({
        protocol: 'http'
      , hostname: site.name
      , port: opts.insecurePort || opts.port
      });
    });
    return stunnel.connect({
      token: result.jwt
    , stunneld: result.tunnelUrl
      // XXX TODO BUG // this is just for testing
    , insecure: /*opts.insecure*/ true
    , locals: locals
      // a simple passthru is proving to not be so simple
    , net: require('net') /*
      {
        createConnection: function (info, cb) {
          // data is the hello packet / first chunk
          // info = { data, servername, port, host, remoteAddress: { family, address, port } }

          var myDuplex = new (require('stream').Duplex)();
          var myDuplex2 = new (require('stream').Duplex)();
          // duplex = { write, push, end, events: [ 'readable', 'data', 'error', 'end' ] };

          myDuplex2.__my_socket = myDuplex;
          myDuplex.__my_socket = myDuplex2;

          myDuplex2._write = Dup.write;
          myDuplex2._read = Dup.read;

          myDuplex._write = Dup.write;
          myDuplex._read = Dup.read;

          myDuplex.remoteFamily = info.remoteFamily;
          myDuplex.remoteAddress = info.remoteAddress;
          myDuplex.remotePort = info.remotePort;

          // socket.local{Family,Address,Port}
          myDuplex.localFamily = 'IPv4';
          myDuplex.localAddress = '127.0.01';
          myDuplex.localPort = info.port;

          myDuplex.setTimeout = Dup.setTimeout;

          // this doesn't seem to work so well
          //servers.server.emit('connection', myDuplex);

          // try a little more manual wrapping / unwrapping
          var firstByte = info.data[0];
          if (firstByte < 32 || firstByte >= 127) {
            tlsServer.emit('connection', myDuplex);
          }
          else {
            httpServer.emit('connection', myDuplex);
          }

          if (cb) {
            process.nextTick(cb);
          }

          return myDuplex2;
        }
      }
      //*/
    });
  });
};
add some tunnel support 2016-10-11 13:41:29 -06:00			`'use strict';`

partial tunnel integration 2016-10-11 17:20:10 -06:00			`module.exports.create = function (opts, servers) {`
add some tunnel support 2016-10-11 13:41:29 -06:00			`// servers = { plainserver, server }`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`var Oauth3 = require('oauth3-cli');`
			`var Tunnel = require('daplie-tunnel').create({`
			`Oauth3: Oauth3`
			`, PromiseA: opts.PromiseA`
			`, CLI: {`
at minimum return raw ws 2017-01-07 17:54:56 -07:00			`init: function (rs, ws/, state, options/) {`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`// noop`
at minimum return raw ws 2017-01-07 17:54:56 -07:00			`return ws;`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`}`
			`}`
			`}).Tunnel;`
add some tunnel support 2016-10-11 13:41:29 -06:00			`var stunnel = require('stunnel');`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`var killcount = 0;`
add some tunnel support 2016-10-11 13:41:29 -06:00
partial tunnel integration 2016-10-11 17:20:10 -06:00			`/*`
			`var Dup = {`
			`write: function (chunk, encoding, cb) {`
			`this.__my_socket.push(chunk, encoding);`
			`cb();`
			`}`
			`, read: function (size) {`
			`var x = this.__my_socket.read(size);`
			`if (x) { this.push(x); }`
			`}`
			`, setTimeout: function () {`
			`console.log('TODO implement setTimeout on Duplex');`
			`}`
			`};`
add some tunnel support 2016-10-11 13:41:29 -06:00
partial tunnel integration 2016-10-11 17:20:10 -06:00			`var httpServer = require('http').createServer(function (req, res) {`
			`console.log('req.socket.encrypted', req.socket.encrypted);`
			`res.end('Hello, tunneled World!');`
			`});`

			`var tlsServer = require('tls').createServer(opts.httpsOptions, function (tlsSocket) {`
			`console.log('tls connection');`
			`// things get a little messed up here`
			`httpServer.emit('connection', tlsSocket);`

			`// try again`
			`//servers.server.emit('connection', tlsSocket);`
			`});`
			`*/`

			`process.on('SIGINT', function () {`
			`killcount += 1;`
			`console.log('[quit] closing http and https servers');`
			`if (killcount >= 3) {`
			`process.exit(1);`
			`}`
			`if (servers.server) {`
			`servers.server.close();`
			`}`
			`if (servers.insecureServer) {`
			`servers.insecureServer.close();`
			`}`
			`});`

			`return Tunnel.token({`
add some tunnel support 2016-10-11 13:41:29 -06:00			`refreshToken: opts.refreshToken`
			`, email: opts.email`
fix bug tunnel bug with --sites 2017-02-01 20:00:00 -07:00			`, domains: opts.sites.map(function (site) {`
			`return site.name;`
			`})`
load oauth3 device by devicename 2016-10-19 14:09:10 -06:00			`, device: { hostname: opts.devicename \|\| opts.device }`
add some tunnel support 2016-10-11 13:41:29 -06:00			`}).then(function (result) {`
			`// { jwt, tunnelUrl }`
fix bug tunnel bug with --sites 2017-02-01 20:00:00 -07:00			`var locals = [];`
			`opts.sites.map(function (site) {`
			`locals.push({`
			`protocol: 'https'`
			`, hostname: site.name`
			`, port: opts.port`
			`});`
			`locals.push({`
			`protocol: 'http'`
			`, hostname: site.name`
			`, port: opts.insecurePort \|\| opts.port`
			`});`
			`});`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`return stunnel.connect({`
add some tunnel support 2016-10-11 13:41:29 -06:00			`token: result.jwt`
			`, stunneld: result.tunnelUrl`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`// XXX TODO BUG // this is just for testing`
			`, insecure: /opts.insecure/ true`
fix bug tunnel bug with --sites 2017-02-01 20:00:00 -07:00			`, locals: locals`
partial tunnel integration 2016-10-11 17:20:10 -06:00			`// a simple passthru is proving to not be so simple`
			`, net: require('net') /*`
			`{`
			`createConnection: function (info, cb) {`
			`// data is the hello packet / first chunk`
			`// info = { data, servername, port, host, remoteAddress: { family, address, port } }`

			`var myDuplex = new (require('stream').Duplex)();`
			`var myDuplex2 = new (require('stream').Duplex)();`
			`// duplex = { write, push, end, events: [ 'readable', 'data', 'error', 'end' ] };`

			`myDuplex2.__my_socket = myDuplex;`
			`myDuplex.__my_socket = myDuplex2;`

			`myDuplex2._write = Dup.write;`
			`myDuplex2._read = Dup.read;`

			`myDuplex._write = Dup.write;`
			`myDuplex._read = Dup.read;`

			`myDuplex.remoteFamily = info.remoteFamily;`
			`myDuplex.remoteAddress = info.remoteAddress;`
			`myDuplex.remotePort = info.remotePort;`

			`// socket.local{Family,Address,Port}`
			`myDuplex.localFamily = 'IPv4';`
			`myDuplex.localAddress = '127.0.01';`
			`myDuplex.localPort = info.port;`

			`myDuplex.setTimeout = Dup.setTimeout;`

			`// this doesn't seem to work so well`
			`//servers.server.emit('connection', myDuplex);`

			`// try a little more manual wrapping / unwrapping`
			`var firstByte = info.data[0];`
			`if (firstByte < 32 \|\| firstByte >= 127) {`
			`tlsServer.emit('connection', myDuplex);`
			`}`
			`else {`
			`httpServer.emit('connection', myDuplex);`
			`}`

			`if (cb) {`
			`process.nextTick(cb);`
			`}`

			`return myDuplex2;`
			`}`
			`}`
			`//*/`
add some tunnel support 2016-10-11 13:41:29 -06:00			`});`
			`});`
			`};`