If client sent an HTTP request to an HTTPS server port, returns 302 redirection, like nginx's "error_page 497".
go get github.com/bddjr/hlfhr
// Use hlfhr.New
srv := hlfhr.New(&http.Server{
// Write something...
})
// Then just use it like [http.Server]
err := srv.ListenAndServeTLS("localhost.crt", "localhost.key")flowchart TD
Read("Hijacking net.Conn.Read")
IsLooksLikeHTTP("First byte looks like HTTP ?")
CancelHijacking(["โ
Cancel hijacking..."])
ReadRequest("๐ Read request")
IsHandlerExist("`
HttpOnHttpsPort
ErrorHandler
exist ?`")
302Redirect{{"๐ก 302 Redirect"}}
Handler{{"๐ก Handler"}}
Close(["โ Close."])
Read --> IsLooksLikeHTTP
IsLooksLikeHTTP -- "๐false" --> CancelHijacking
IsLooksLikeHTTP -- "๐true" --> ReadRequest --> IsHandlerExist
IsHandlerExist -- "โfalse" --> 302Redirect --> Close
IsHandlerExist -- "โ
true" --> Handler --> Close
If you need
http.Hijackerorhttp.ResponseController.EnableFullDuplex, please use hahosp.
// 307 Temporary Redirect
srv.HttpOnHttpsPortErrorHandler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
hlfhr.RedirectToHttps(w, r, 307)
})// Check Host Header
srv.HttpOnHttpsPortErrorHandler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
hostname, port := hlfhr.SplitHostnamePort(r.Host)
switch hostname {
case "localhost":
//
case "www.localhost", "127.0.0.1":
r.Host = hlfhr.HostnameAppendPort("localhost", port)
default:
w.WriteHeader(421)
return
}
hlfhr.RedirectToHttps(w, r, 302)
})// Script Redirect
srv.HttpOnHttpsPortErrorHandler = http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
w.Header().Set("Content-Type", "text/html")
w.WriteHeader(300)
io.WriteString(w, "<script>location.protocol='https:'</script>")
})srv := hlfhr.New(&http.Server{
// Write something...
})srv := hlfhr.NewServer(&http.Server{
// Write something...
})// Just use it like [http.ListenAndServeTLS]
var h http.Handler
err := hlfhr.ListenAndServeTLS(":443", "localhost.crt", "localhost.key", h)// Just use it like [http.ServeTLS]
var l net.Listener
var h http.Handler
err := hlfhr.ServeTLS(l, h, "localhost.crt", "localhost.key")var w http.ResponseWriter
hlfhr.Redirect(w, 302, "https://example.com/")var w http.ResponseWriter
var r *http.Request
hlfhr.RedirectToHttps(w, r, 302)hostname, port := hlfhr.SplitHostnamePort("[::1]:5678")
// hostname: [::1]
// port: 5678hostname := hlfhr.Hostname("[::1]:5678")
// hostname: [::1]port := hlfhr.Port("[::1]:5678")
// port: 5678Host := hlfhr.HostnameAppendPort("[::1]", "5678")
// Host: [::1]:5678Host := hlfhr.ReplaceHostname("[::1]:5678", "localhost")
// Host: localhost:5678Host := hlfhr.ReplacePort("[::1]:5678", "7890")
// Host: [::1]:7890v6 := hlfhr.Ipv6CutPrefixSuffix("[::1]")
// v6: ::1var srv *http.Server
isShuttingDown := hlfhr.IsHttpServerShuttingDown(srv)var srv *hlfhr.Server
isShuttingDown := srv.IsShuttingDown()var c net.Conn
var h http.Handler
var r *http.Request
w := NewResponse(c, true)
h.ServeHTTP(w, r)
err := w.FlushError()
c.Close()b := []byte("GET / HTTP/1.1\r\nHost: localhost\r\n\r\n")
looksLikeHttp := hlfhr.ConnFirstByteLooksLikeHttp(b[0])var c net.Conn
var b []byte
n, err := c.Read(b)
br := hlfhr.NewBufioReaderWithBytes(b, n, c)var r io.Reader
lr := &io.LimitedReader{R: r, N: 4096}
// Read header
br := bufio.NewReader(lr)
// Read body
hlfhr.BufioSetReader(br, r)git clone https://github.com/bddjr/hlfhr
cd hlfhr
chmod +x run.sh
./run.sh
golang/go#49310
https://github.com/golang/go
https://tls12.xargs.org/#client-hello
https://tls13.xargs.org/#client-hello
https://developer.mozilla.org/docs/Web/HTTP
https://nginx.org/en/docs/http/ngx_http_ssl_module.html#errors