Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support authentication response are multiple frames #53

Merged
merged 15 commits into from
Mar 14, 2022
Merged

Support authentication response are multiple frames #53

merged 15 commits into from
Mar 14, 2022

Conversation

liukun-msft
Copy link
Contributor

@liukun-msft liukun-msft commented Feb 17, 2022
edited
Loading

Fix #5124

Issue

When using proxy configuration, it is possible that the HTTP response does not come in a single frame, but multiple frames.
This will cause the authorization with the proxy failure with execption.

Changes

  • Add a new interface ProxyResponse and implementation ProxyResponseImpl to save multiple frames into one response.
  • Add logic to read multiple frames in ProxyImpl and update validation logic by getting infomation from ProxyResponse header.
  • Remove class ProxyResponseResult since all information are already saved in ProxyResponse.
  • Update DigestProxyChallengeProcessorImpl authentication logic since now we get types from header rather than error message.
  • Reduce buffer size PROXY_HANDSHAKE_BUFFER_SIZE from 8 * 1024 to 4 * 1024.
  • Change related UT test.

Test scenarios

  • BASIC with response over 4K
  • Digest with response over 4K
  • BASIC with response less 4K
  • Digest with response less 4K

@liukun-msft liukun-msft marked this pull request as ready for review February 18, 2022 09:09
conniey
conniey reviewed Feb 22, 2022
View reviewed changes
Copy link
Member

@conniey conniey left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks! Looks great. :D Just a few comments.

src/main/java/com/microsoft/azure/proton/transport/proxy/HttpStatusLine.java Show resolved Hide resolved
src/main/java/com/microsoft/azure/proton/transport/proxy/impl/ProxyResponseImpl.java Outdated Show resolved Hide resolved
src/test/java/com/microsoft/azure/proton/transport/proxy/impl/ProxyResponseImplTest.java Outdated Show resolved Hide resolved
src/test/java/com/microsoft/azure/proton/transport/proxy/impl/ProxyResponseImplTest.java Show resolved Hide resolved
@liukun-msft
Copy link
Contributor Author

liukun-msft commented Feb 24, 2022
edited
Loading

Reduced buffer size PROXY_HANDSHAKE_BUFFER_SIZE from 8 * 1024 to 4 * 1024.

@liukun-msft liukun-msft requested a review from conniey February 24, 2022 09:26
@conniey conniey self-assigned this Mar 1, 2022
conniey
conniey approved these changes Mar 1, 2022
View reviewed changes
Copy link
Member

@conniey conniey left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks! It looks good to me. I pinged @JamesBirdsall to see if he could take a quick look since they also use this library.

src/test/java/com/microsoft/azure/proton/transport/proxy/impl/HTTPStatusLineTest.java Outdated Show resolved Hide resolved
src/test/java/com/microsoft/azure/proton/transport/proxy/impl/ProxyHandlerImplTest.java
@@ -34,79 +37,63 @@ public void testCreateProxyRequest() {
Assert.assertEquals(expectedProxyRequest, actualProxyRequest);
}

@ParameterizedTest
@ValueSource(ints = {200, 201, 202, 203, 204, 205, 206})
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there a reason we removed all of these 2xx status code test cases?

Copy link
Contributor Author

@liukun-msft liukun-msft Mar 2, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We changed the validation for proxy response. Now we only assume 200 Connection Established is the successful response.

 return status.getStatusCode() == 200
                && SUPPORTED_VERSIONS.contains(status.getProtocolVersion())
                && CONNECTION_ESTABLISHED.equalsIgnoreCase(status.getReason());

Previously, we use the pattern to do this validation. So the test verify all 2xx status code.

Pattern.compile("^http/1\\.(0|1) (?<statusCode>2[0-9]{2})", Pattern.CASE_INSENSITIVE);

Do you think we need add back and consider other 2xx status as successful response?

@JamesBirdsall
Copy link
Contributor

Looks reasonable to me!

@conniey conniey merged commit 73fb95f into Azure:master Mar 14, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@conniey conniey conniey approved these changes

@weidongxu-microsoft weidongxu-microsoft Awaiting requested review from weidongxu-microsoft

@ZejiaJiang ZejiaJiang Awaiting requested review from ZejiaJiang

@haolingdong-msft haolingdong-msft Awaiting requested review from haolingdong-msft

@anuchandy anuchandy Awaiting requested review from anuchandy

Assignees

@conniey conniey

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[Event Hubs] qpid-proton-j-extensions does not wait for proxy auth sometimes
3 participants
@liukun-msft @JamesBirdsall @conniey