refactor: move more commands to internal/cmd (#207)

* refactor: move more commands to internal/cmd

Part of https://github.com/ooni/probe/issues/1335.

We would like all commands to be at the same level of engine
rather than inside engine (now that we can do it).

* fix: update .gitignore

* refactor: also move jafar outside engine

* We should be good now?

internal/cmd/jafar/badproxy/badproxy.go

@@ -0,0 +1,113 @@
+// Package badproxy implements misbehaving proxies. We have a single
+// CensoringProxy that exports two misbehaving endpoints. Each endpoint
+// implements a different proxy-censorsing technique. The first one
+// reads some bytes from the connection then closes the connection. The
+// other instead replies with a self signed x509 certificate.
+package badproxy
+
+import (
+	"crypto/rsa"
+	"crypto/tls"
+	"crypto/x509"
+	"io"
+	"io/ioutil"
+	"net"
+	"strings"
+	"time"
+
+	"github.com/google/martian/v3/mitm"
+)
+
+// CensoringProxy is a proxy that does not behave correctly.
+type CensoringProxy struct {
+	mitmNewAuthority func(
+		name string, organization string,
+		validity time.Duration,
+	) (*x509.Certificate, *rsa.PrivateKey, error)
+
+	mitmNewConfig func(
+		ca *x509.Certificate, privateKey interface{},
+	) (*mitm.Config, error)
+
+	tlsListen func(
+		network string, laddr string, config *tls.Config,
+	) (net.Listener, error)
+}
+
+// NewCensoringProxy creates a new instance of a misbehaving proxy.
+func NewCensoringProxy() *CensoringProxy {
+	return &CensoringProxy{
+		mitmNewAuthority: mitm.NewAuthority,
+		mitmNewConfig:    mitm.NewConfig,
+		tlsListen:        tls.Listen,
+	}
+}
+
+func (p *CensoringProxy) serve(conn net.Conn) {
+	deadline := time.Now().Add(250 * time.Millisecond)
+	conn.SetDeadline(deadline)
+	// To simulate the case where the proxy isn't willing to forward our
+	// traffic, we close the connection (1) right after the handshake for
+	// TLS connections and (2) reasonably after we've received the HTTP
+	// request for cleartext connections. This may break in several cases
+	// but is good enough approximation of these bad proxies for now.
+	if tlsconn, ok := conn.(*tls.Conn); ok {
+		tlsconn.Handshake()
+	} else {
+		const maxread = 1 << 17
+		reader := io.LimitReader(conn, maxread)
+		ioutil.ReadAll(reader)
+	}
+	conn.Close()
+}
+
+func (p *CensoringProxy) run(listener net.Listener) {
+	for {
+		conn, err := listener.Accept()
+		if err != nil && strings.Contains(
+			err.Error(), "use of closed network connection") {
+			return
+		}
+		if err == nil {
+			// It's difficult to make accept fail, so restructure
+			// the code such that we enter into the happy path
+			go p.serve(conn)
+		}
+	}
+}
+
+// Start starts the misbehaving proxy for TCP. This endpoint will read some
+// bytes from the request and then close the connection. This behaviour is
+// implemented by a bunch of censoring proxy around the world. Usually such
+// proxies only close the connection with offending SNIs/Host headers.
+func (p *CensoringProxy) Start(address string) (net.Listener, error) {
+	listener, err := net.Listen("tcp", address)
+	if err != nil {
+		return nil, err
+	}
+	go p.run(listener)
+	return listener, nil
+}
+
+// StartTLS starts the misbehaving proxy for TLS. This endpoint will return
+// to the client a self signed certificate. Thus, it models the case where a
+// MITM forces users to accept a rogue certificate. After sending such a
+// certificate, this proxy will close the TCP connection.
+func (p *CensoringProxy) StartTLS(address string) (net.Listener, *x509.Certificate, error) {
+	cert, privkey, err := p.mitmNewAuthority(
+		"jafar", "OONI", 24*time.Hour,
+	)
+	if err != nil {
+		return nil, nil, err
+	}
+	config, err := p.mitmNewConfig(cert, privkey)
+	if err != nil {
+		return nil, nil, err
+	}
+	listener, err := p.tlsListen("tcp", address, config.TLS())
+	if err != nil {
+		return nil, nil, err
+	}
+	go p.run(listener)
+	return listener, cert, nil
+}

internal/cmd/jafar/badproxy/badproxy_test.go

@@ -0,0 +1,157 @@
+package badproxy
+
+import (
+	"crypto/rsa"
+	"crypto/tls"
+	"crypto/x509"
+	"errors"
+	"net"
+	"testing"
+	"time"
+
+	"github.com/google/martian/v3/mitm"
+)
+
+func TestCleartext(t *testing.T) {
+	listener := newproxy(t)
+	checkdial(t, listener.Addr().String(), nil, net.Dial)
+	killproxy(t, listener)
+}
+
+func TestTLS(t *testing.T) {
+	listener := newproxytls(t)
+	checkdial(t, listener.Addr().String(), nil,
+		func(network, address string) (net.Conn, error) {
+			conn, err := tls.Dial(network, address, &tls.Config{
+				InsecureSkipVerify: true,
+				ServerName:         "antani.local",
+			})
+			if err != nil {
+				return nil, err
+			}
+			if err = conn.Handshake(); err != nil {
+				conn.Close()
+				return nil, err
+			}
+			return conn, nil
+		})
+	killproxy(t, listener)
+}
+
+func TestListenError(t *testing.T) {
+	proxy := NewCensoringProxy()
+	listener, err := proxy.Start("8.8.8.8:80")
+	if err == nil {
+		t.Fatal("expected an error here")
+	}
+	if listener != nil {
+		t.Fatal("expected nil listener here")
+	}
+}
+
+func TestStarTLS(t *testing.T) {
+	expected := errors.New("mocked error")
+
+	t.Run("when we cannot create a new authority", func(t *testing.T) {
+		proxy := NewCensoringProxy()
+		proxy.mitmNewAuthority = func(
+			name string, organization string,
+			validity time.Duration,
+		) (*x509.Certificate, *rsa.PrivateKey, error) {
+			return nil, nil, expected
+		}
+		cert, privkey, err := proxy.StartTLS("127.0.0.1:0")
+		if !errors.Is(err, expected) {
+			t.Fatal("not the error we expected")
+		}
+		if cert != nil {
+			t.Fatal("expected nil cert")
+		}
+		if privkey != nil {
+			t.Fatal("expected nil privkey")
+		}
+	})
+
+	t.Run("when we cannot create a new config", func(t *testing.T) {
+		proxy := NewCensoringProxy()
+		proxy.mitmNewConfig = func(
+			ca *x509.Certificate, privateKey interface{},
+		) (*mitm.Config, error) {
+			return nil, expected
+		}
+		cert, privkey, err := proxy.StartTLS("127.0.0.1:0")
+		if !errors.Is(err, expected) {
+			t.Fatal("not the error we expected")
+		}
+		if cert != nil {
+			t.Fatal("expected nil cert")
+		}
+		if privkey != nil {
+			t.Fatal("expected nil privkey")
+		}
+	})
+
+	t.Run("when we cannot listen", func(t *testing.T) {
+		proxy := NewCensoringProxy()
+		proxy.tlsListen = func(
+			network string, laddr string, config *tls.Config,
+		) (net.Listener, error) {
+			return nil, expected
+		}
+		cert, privkey, err := proxy.StartTLS("127.0.0.1:0")
+		if !errors.Is(err, expected) {
+			t.Fatal("not the error we expected")
+		}
+		if cert != nil {
+			t.Fatal("expected nil cert")
+		}
+		if privkey != nil {
+			t.Fatal("expected nil privkey")
+		}
+	})
+}
+
+func newproxy(t *testing.T) net.Listener {
+	proxy := NewCensoringProxy()
+	listener, err := proxy.Start("127.0.0.1:0")
+	if err != nil {
+		t.Fatal(err)
+	}
+	return listener
+}
+
+func newproxytls(t *testing.T) net.Listener {
+	proxy := NewCensoringProxy()
+	listener, _, err := proxy.StartTLS("127.0.0.1:0")
+	if err != nil {
+		t.Fatal(err)
+	}
+	return listener
+}
+
+func killproxy(t *testing.T, listener net.Listener) {
+	err := listener.Close()
+	if err != nil {
+		t.Fatal(err)
+	}
+}
+
+func checkdial(
+	t *testing.T, proxyAddr string, expectErr error,
+	dial func(network, address string) (net.Conn, error),
+) {
+	conn, err := dial("tcp", proxyAddr)
+	if err != expectErr {
+		t.Fatal("not the result we expected")
+	}
+	if conn == nil && expectErr == nil {
+		t.Fatal("expected actionable conn")
+	}
+	if conn != nil && expectErr != nil {
+		t.Fatal("expected nil conn")
+	}
+	if conn != nil {
+		conn.Write([]byte("123454321"))
+		conn.Close()
+	}
+}