feat(browserServer): forward local ports #6375
Conversation
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
3 times, most recently
from
691db25
to
23e9297
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
5 times, most recently
from
29a5bdb
to
a421fe4
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
3 times, most recently
from
fe68b9b
to
025829d
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
2 times, most recently
from
527c221
to
c9ec6c3
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
from
a4e2852
to
bd46c01
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
from
bd46c01
to
1f15b4d
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
from
1f15b4d
to
694336e
Compare
mxschmitt
force-pushed
the
feature/browser-server-forward-local-ports
branch
from
694336e
to
df0e178
Compare
| @@ -59,6 +60,8 @@ export class Playwright extends ChannelOwner<channels.PlaywrightChannel, channel | |||
|
|
|||
| this._selectorsOwner = SelectorsOwner.from(initializer.selectors); | |||
| this.selectors._addChannel(this._selectorsOwner); | |||
|
|
|||
| this._channel.on('incomingSocksSocket', ({socket}) => SocksSocket.from(socket)); | |||
There was a problem hiding this comment.
Let's save the ports on Playwright object, so that we can validate dstPort on the client side as well.
| import { SocksProxyServer, SocksConnectionInfo, SocksInterceptedHandler } from './socksServer'; | ||
| import { LaunchOptions } from './types'; | ||
|
|
||
| export class BrowserServerPortForwardingServer extends EventEmitter { |
There was a problem hiding this comment.
I'd inline this file into browserServerImpl.ts, and merge SocksSocket with SocksSocketDispatcher right away.
There was a problem hiding this comment.
I have the assumption that this get's also in the future used in playwrightclient, so I would keep it separate for now.
src/server/socksServer.ts
Outdated
| if (this._authenticated) | ||
| this._phase = ConnectionPhases.REQ_CMD; | ||
| else | ||
| this._phase++; |
There was a problem hiding this comment.
I don't quite like incrementing, can we explicitly assign the new phase?
There was a problem hiding this comment.
yeah we can do that. Seems then clearer.
src/server/socksServer.ts
Outdated
| case ConnectionPhases.METHODS: { | ||
| assert(this._authMethods); | ||
| chunk.copy(this._authMethods, 0, i, i + chunk.length); | ||
| assert(chunk.includes(SOCKS_AUTH_METHOD.NO_AUTH)); |
There was a problem hiding this comment.
chunk.includes -> this._authMethods.includes ?
There was a problem hiding this comment.
Sorry, I was not very clear. I think that chunk buffer may include a lot more than just methods, so the chance of 00 appearing in chunk is large, and that defeats the purpose of "assert that we have 'no auth required' in the methods".
| case ConnectionPhases.REQ_ATYP: | ||
| this._phase = ConnectionPhases.REQ_DSTADDR; | ||
| this._addressType = chunk[i]; | ||
| assert(this._addressType in SOCKS_ATYP); |
There was a problem hiding this comment.
I think we should turn all assert() code into socket closure?
src/server/socksServer.ts
Outdated
| this._methodsp += minLen; | ||
| i += minLen; | ||
| if (this._methodsp === this._authMethods.length) { | ||
| this._phase = ConnectionPhases.VERSION; |
There was a problem hiding this comment.
Why do we go back to version?
There was a problem hiding this comment.
refactored the handling, should be more readable now. changes:
- introduced a readByte method
- don't jump between the phases
| dstSocket.on('error', (err: NodeJS.ErrnoException) => writeSocksSocketError(this._socket, String(err))); | ||
| dstSocket.on('connect', () => { | ||
| this._socket.write(BUF_REP_INTR_SUCCESS); | ||
| this._socket.pipe(dstSocket).pipe(this._socket); |
There was a problem hiding this comment.
Interesting! So we are supposed to pipe even the "pass-through" sockets? I was under impression we can just reply with the "BND == DST" and let the client connect on its own, but maybe I misread that.
No description provided.