package executor import ( "context" "net/http" "strings" "sync" "time" "github.com/router-for-me/CLIProxyAPI/v6/internal/config" cliproxyauth "github.com/router-for-me/CLIProxyAPI/v6/sdk/cliproxy/auth" "github.com/router-for-me/CLIProxyAPI/v6/sdk/proxyutil" log "github.com/sirupsen/logrus" ) // httpClientCache caches HTTP clients by proxy URL to enable connection reuse var ( httpClientCache = make(map[string]*http.Client) httpClientCacheMutex sync.RWMutex ) // newProxyAwareHTTPClient creates an HTTP client with proper proxy configuration priority: // 1. Use auth.ProxyURL if configured (highest priority) // 2. Use cfg.ProxyURL if auth proxy is not configured // 3. Use RoundTripper from context if neither are configured // // This function caches HTTP clients by proxy URL to enable TCP/TLS connection reuse. // // Parameters: // - ctx: The context containing optional RoundTripper // - cfg: The application configuration // - auth: The authentication information // - timeout: The client timeout (0 means no timeout) // // Returns: // - *http.Client: An HTTP client with configured proxy or transport func newProxyAwareHTTPClient(ctx context.Context, cfg *config.Config, auth *cliproxyauth.Auth, timeout time.Duration) *http.Client { // Priority 1: Use auth.ProxyURL if configured var proxyURL string if auth != nil { proxyURL = strings.TrimSpace(auth.ProxyURL) } // Priority 2: Use cfg.ProxyURL if auth proxy is not configured if proxyURL == "" && cfg != nil { proxyURL = strings.TrimSpace(cfg.ProxyURL) } // Build cache key from proxy URL (empty string for no proxy) cacheKey := proxyURL // Check cache first httpClientCacheMutex.RLock() if cachedClient, ok := httpClientCache[cacheKey]; ok { httpClientCacheMutex.RUnlock() // Return a wrapper with the requested timeout but shared transport if timeout > 0 { return &http.Client{ Transport: cachedClient.Transport, Timeout: timeout, } } return cachedClient } httpClientCacheMutex.RUnlock() // Create new client httpClient := &http.Client{} if timeout > 0 { httpClient.Timeout = timeout } // If we have a proxy URL configured, set up the transport if proxyURL != "" { transport := buildProxyTransport(proxyURL) if transport != nil { httpClient.Transport = transport // Cache the client httpClientCacheMutex.Lock() httpClientCache[cacheKey] = httpClient httpClientCacheMutex.Unlock() return httpClient } // If proxy setup failed, log and fall through to context RoundTripper log.Debugf("failed to setup proxy from URL: %s, falling back to context transport", proxyURL) } // Priority 3: Use RoundTripper from context (typically from RoundTripperFor) if rt, ok := ctx.Value("cliproxy.roundtripper").(http.RoundTripper); ok && rt != nil { httpClient.Transport = rt } // Cache the client for no-proxy case if proxyURL == "" { httpClientCacheMutex.Lock() httpClientCache[cacheKey] = httpClient httpClientCacheMutex.Unlock() } return httpClient } // buildProxyTransport creates an HTTP transport configured for the given proxy URL. // It supports SOCKS5, HTTP, and HTTPS proxy protocols. // // Parameters: // - proxyURL: The proxy URL string (e.g., "socks5://user:pass@host:port", "http://host:port") // // Returns: // - *http.Transport: A configured transport, or nil if the proxy URL is invalid func buildProxyTransport(proxyURL string) *http.Transport { transport, _, errBuild := proxyutil.BuildHTTPTransport(proxyURL) if errBuild != nil { log.Errorf("%v", errBuild) return nil } return transport }