Skip to content

Commit

Permalink
Add SOCKS proxy support (fixes boto#880)
Browse files Browse the repository at this point in the history
  • Loading branch information
@dbevacqua @hnousiainen
dbevacqua authored and hnousiainen committed Apr 20, 2021
1 parent 0fa4b46 commit 830f158
Show file tree
Hide file tree
Showing 2 changed files with 74 additions and 12 deletions.
22 changes: 22 additions & 0 deletions botocore/awsrequest.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -225,6 +225,28 @@ class AWSHTTPConnectionPool(HTTPConnectionPool):
class AWSHTTPSConnectionPool(HTTPSConnectionPool):
ConnectionCls = AWSHTTPSConnection

# To avoid dependency warnings from urllib3.contrib.socks, we only create SOCKS-related classes if socks module is available
try:
import socks
from urllib3.contrib.socks import SOCKSConnection, SOCKSHTTPSConnection, SOCKSHTTPConnectionPool, SOCKSHTTPSConnectionPool

class AWSSOCKSHTTPConnection(AWSConnection, SOCKSConnection):
""" An HTTPConnection that supports 100 Continue behavior. """


class AWSSOCKSHTTPSConnection(AWSConnection, SOCKSHTTPSConnection):
""" An HTTPSConnection that supports 100 Continue behavior. """


class AWSSOCKSHTTPConnectionPool(SOCKSHTTPConnectionPool):
ConnectionCls = AWSSOCKSHTTPConnection


class AWSSOCKSHTTPSConnectionPool(SOCKSHTTPSConnectionPool):
ConnectionCls = AWSSOCKSHTTPSConnection

except ImportError:
pass

def prepare_request_dict(request_dict, endpoint_url, context=None,
user_agent=None):
Expand Down
64 changes: 52 additions & 12 deletions botocore/httpsession.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,12 @@
from urllib3.contrib.pyopenssl import orig_util_SSLContext as SSLContext
except ImportError:
from urllib3.util.ssl_ import SSLContext
try:
# To avoid dependency warnings from urllib3.contrib.socks, we only import SOCKSProxyManager if socks module is available
import socks
from urllib3.contrib.socks import SOCKSProxyManager
except ImportError:
pass

import botocore.awsrequest
from botocore.vendored import six
Expand Down Expand Up @@ -104,9 +110,7 @@ def __init__(self, proxies=None, proxies_settings=None):
def proxy_url_for(self, url):
"""Retrieves the corresponding proxy url for a given url. """
parsed_url = urlparse(url)
proxy = self._proxies.get(parsed_url.scheme)
if proxy:
proxy = self._fix_proxy_url(proxy)
proxy = self.proxy_url_for_scheme(parsed_url.scheme)
return proxy

def proxy_headers_for(self, proxy_url):
Expand All @@ -118,18 +122,32 @@ def proxy_headers_for(self, proxy_url):
headers['Proxy-Authorization'] = basic_auth
return headers

def proxy_url_for_scheme(self, scheme):
proxy = self._proxies.get(scheme)
if proxy:
proxy = self._fix_proxy_url(proxy)
return proxy

@property
def settings(self):
return self._proxies_settings

def _fix_proxy_url(self, proxy_url):
if proxy_url.startswith('http:') or proxy_url.startswith('https:'):
return proxy_url
elif self.is_socks_proxy(proxy_url):
return proxy_url
elif proxy_url.startswith('//'):
return 'http:' + proxy_url
else:
return 'http://' + proxy_url

def is_socks_proxy(self, proxy_url):
if proxy_url:
parsed_proxy_url = urlparse(proxy_url)
return parsed_proxy_url.scheme in ['socks5', 'socks5h', 'socks4', 'socks4a']
return False;

def _construct_basic_auth(self, username, password):
auth_str = '{0}:{1}'.format(username, password)
encoded_str = b64encode(auth_str.encode('ascii')).strip().decode()
Expand All @@ -142,7 +160,6 @@ def _get_auth_from_url(self, url):
except (AttributeError, TypeError):
return None, None


class URLLib3Session(object):
"""A basic HTTP client that supports connection pooling and proxies.
Expand All @@ -166,10 +183,7 @@ def __init__(self,
self._verify = verify
self._proxy_config = ProxyConfiguration(proxies=proxies,
proxies_settings=proxies_config)
self._pool_classes_by_scheme = {
'http': botocore.awsrequest.AWSHTTPConnectionPool,
'https': botocore.awsrequest.AWSHTTPSConnectionPool,
}
self._pool_classes_by_scheme = self._get_pool_classes_by_scheme()
if timeout is None:
timeout = DEFAULT_TIMEOUT
if not isinstance(timeout, (int, float)):
Expand Down Expand Up @@ -218,13 +232,39 @@ def _get_pool_manager_kwargs(self, **extra_kwargs):
def _get_ssl_context(self):
return create_urllib3_context()

def _get_pool_classes_by_scheme(self):
http_proxy = self._proxy_config.proxy_url_for_scheme('http')
https_proxy = self._proxy_config.proxy_url_for_scheme('https')

if self._proxy_config.is_socks_proxy(http_proxy):
http_proxy_class = botocore.awsrequest.AWSSOCKSHTTPConnectionPool
else:
http_proxy_class = botocore.awsrequest.AWSHTTPConnectionPool

if self._proxy_config.is_socks_proxy(https_proxy):
https_proxy_class = botocore.awsrequest.AWSSOCKSHTTPSConnectionPool
else:
https_proxy_class = botocore.awsrequest.AWSHTTPSConnectionPool

pool_classes_by_scheme = {
'http': http_proxy_class,
'https': https_proxy_class,
}

return pool_classes_by_scheme

def _get_proxy_manager(self, proxy_url):
if proxy_url not in self._proxy_managers:
proxy_headers = self._proxy_config.proxy_headers_for(proxy_url)
proxy_manager_kwargs = self._get_pool_manager_kwargs(
proxy_headers=proxy_headers)
proxy_manager_kwargs.update(**self._proxies_kwargs)
proxy_manager = proxy_from_url(proxy_url, **proxy_manager_kwargs)
if self._proxy_config.is_socks_proxy(proxy_url):
proxy_manager_kwargs = self._get_pool_manager_kwargs(
headers=proxy_headers)
proxy_manager = SOCKSProxyManager(proxy_url, **proxy_manager_kwargs)
else:
proxy_manager_kwargs = self._get_pool_manager_kwargs(
proxy_headers=proxy_headers)
proxy_manager_kwargs.update(**self._proxies_kwargs)
proxy_manager = proxy_from_url(proxy_url, **proxy_manager_kwargs)
proxy_manager.pool_classes_by_scheme = self._pool_classes_by_scheme
self._proxy_managers[proxy_url] = proxy_manager

Expand Down

0 comments on commit 830f158

Please sign in to comment.