TechnikEmpire
diff --git a/‎CitadelCore/CitadelCore.csproj
Lines changed: 8 additions & 7 deletions b/‎CitadelCore/CitadelCore.csproj
Lines changed: 8 additions & 7 deletions
diff --git a/‎CitadelCore/Diversion/IDiverter.cs
Lines changed: 10 additions & 0 deletions b/‎CitadelCore/Diversion/IDiverter.cs
Lines changed: 10 additions & 0 deletions
diff --git a/‎CitadelCore/Extensions/HttpRequestExtensions.cs
Lines changed: 8 additions & 4 deletions b/‎CitadelCore/Extensions/HttpRequestExtensions.cs
Lines changed: 8 additions & 4 deletions
diff --git a/‎CitadelCore/Extensions/HttpRequestMessageExtensions.cs
Lines changed: 14 additions & 7 deletions b/‎CitadelCore/Extensions/HttpRequestMessageExtensions.cs
Lines changed: 14 additions & 7 deletions
diff --git a/‎CitadelCore/Extensions/HttpResponseExtensions.cs
Lines changed: 7 additions & 3 deletions b/‎CitadelCore/Extensions/HttpResponseExtensions.cs
Lines changed: 7 additions & 3 deletions
diff --git a/‎CitadelCore/Extensions/HttpResponseMessageExtensions.cs
Lines changed: 7 additions & 3 deletions b/‎CitadelCore/Extensions/HttpResponseMessageExtensions.cs
Lines changed: 7 additions & 3 deletions
diff --git a/‎CitadelCore/IO/ResponseReplay.cs
Lines changed: 13 additions & 5 deletions b/‎CitadelCore/IO/ResponseReplay.cs
Lines changed: 13 additions & 5 deletions
@@ -12,16 +12,17 @@
     <PackageIconUrl />
     <RepositoryUrl>https://github.com/TechnikEmpire/CitadelCore</RepositoryUrl>
     <PackageTags>proxy filtering content-filtering transparent-proxy</PackageTags>
-    <PackageReleaseNotes>Adds a replay API for external filtering.
-Inherits websocket implementation fixes by upgrading buggy third-party package.
-Adds stream "Closed" event for inspection streams.
-Fixes an issue where the InspectionStream object fed duplicate data back to the library user.</PackageReleaseNotes>
+    <PackageReleaseNotes>Adds the ability to exclude headers from being excluded. Normally forbidden headers are stripped, but now the user can control this.
+Adds the ability to configure the proxy server in regards to dropping external proxy packets (originating from another proxy on the local machine).
+Adds the ability to provide a custom message handler for all proxy server upstream connections. This enables you to define an upstream proxy, etc.
+Fixes an issue where the host header is not set correctly on modification.
+Purges singlestons from the source code. Handlers are now instance members of proxy server classes via hidden IStartup instances.</PackageReleaseNotes>
     <Title>CitadelCore</Title>
     <Summary>Transparent filtering HTTP/S and Websocket/WebsocketSecure proxy.</Summary>
     <Description>Transparent filtering HTTP/S and Websocket/WebsocketSecure proxy.</Description>
-    <Version>3.1.2</Version>
-    <AssemblyVersion>3.1.2.0</AssemblyVersion>
-    <FileVersion>3.1.2.0</FileVersion>    
+    <Version>3.4.1</Version>
+    <AssemblyVersion>3.4.1.0</AssemblyVersion>
+    <FileVersion>3.4.1.0</FileVersion>    
   </PropertyGroup>
 
   <ItemGroup Label="dotnet pack instructions">
 
@@ -22,6 +22,16 @@ bool IsRunning
             get;
         }
 
+        /// <summary>
+        /// Gets or sets whether or not external proxies should be dropped during the packet
+        /// diversion process.
+        /// </summary>
+        bool DropExternalProxies
+        {
+            get;
+            set;
+        }
+
         /// <summary>
         /// Gets or sets the callback that the Diverter is to use when checking to see if an
         /// application behind a packet flow should have it's internet content pushed through the
 
@@ -11,6 +11,7 @@
 using CitadelCore.Util;
 using Microsoft.AspNetCore.Http;
 using System;
+using System.Collections.Generic;
 using System.Collections.Specialized;
 using System.IO;
 using System.Threading;
@@ -33,17 +34,20 @@ internal static class HttpRequestExtensions
         /// <param name="headers">
         /// The headers.
         /// </param>
+        /// <param name="exemptedHeaders">
+        /// List of headers that are exempt from being removed if they are "forbidden" headers.
+        /// </param>
         /// <returns>
         /// A collection of all headers that failed to be added.
         /// </returns>
-        public static NameValueCollection PopulateHeaders(this HttpRequest message, NameValueCollection headers)
+        public static NameValueCollection PopulateHeaders(this HttpRequest message, NameValueCollection headers, HashSet<string> exemptedHeaders)
         {
             // This will hold whatever headers we cannot successfully add here.
             var clonedCollection = new NameValueCollection(headers);
 
             foreach (string key in headers)
-            {
-                if (ForbiddenHttpHeaders.IsForbidden(key))
+            {   
+                if (!exemptedHeaders.Contains(key) && ForbiddenHttpHeaders.IsForbidden(key))
                 {
                     continue;
                 }
@@ -81,7 +85,7 @@ public static async Task<bool> ApplyMessageInfo(this HttpRequest message, HttpMe
             {
                 if (messageInfo.MessageType == MessageType.Request)
                 {
-                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers);
+                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);
 
 #if VERBOSE_WARNINGS
                     foreach (string key in failedHeaders)
 
@@ -10,6 +10,7 @@
 using CitadelCore.Net.Http;
 using CitadelCore.Util;
 using System;
+using System.Collections.Generic;
 using System.Collections.Specialized;
 using System.Net.Http;
 using System.Threading;
@@ -28,37 +29,43 @@ internal static class HttpRequestMessageExtensions
         /// <param name="headers">
         /// The headers.
         /// </param>
+        /// <param name="exemptedHeaders">
+        /// List of headers that are exempt from being removed if they are "forbidden" headers.
+        /// </param>
         /// <returns>
         /// A collection of all headers that failed to be added.
         /// </returns>
-        public static NameValueCollection PopulateHeaders(this HttpRequestMessage message, NameValueCollection headers)
+        public static NameValueCollection PopulateHeaders(this HttpRequestMessage message, NameValueCollection headers, HashSet<string> exemptedHeaders)
         {
             // This will hold whatever headers we cannot successfully add here.
             var clonedCollection = new NameValueCollection(headers);
 
             foreach (string key in headers)
             {
-                if (ForbiddenHttpHeaders.IsForbidden(key))
+                if (!exemptedHeaders.Contains(key) && ForbiddenHttpHeaders.IsForbidden(key))
                 {
                     continue;
                 }
-
+                
                 if (message.Headers.TryAddWithoutValidation(key, headers.GetValues(key)))
-                {
+                {   
                     clonedCollection.Remove(key);
                 }
                 else
                 {
                     if (message.Content != null)
                     {
                         if (message.Content.Headers.TryAddWithoutValidation(key, headers.GetValues(key)))
-                        {
+                        {   
                             clonedCollection.Remove(key);
                         }
                     }
                 }
             }
 
+            // Apparently, host won't set unless we use the typed accessor!
+            message.Headers.Host = headers["Host"] ?? message.Headers.Host;
+
             return clonedCollection;
         }
 
@@ -84,7 +91,7 @@ public static bool ApplyMessageInfo(this HttpRequestMessage message, HttpMessage
             {
                 if (messageInfo.MessageType == MessageType.Request)
                 {
-                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers);
+                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);
 
                     message.Method = messageInfo.Method;
                     message.RequestUri = messageInfo.Url;
@@ -93,7 +100,7 @@ public static bool ApplyMessageInfo(this HttpRequestMessage message, HttpMessage
                     {
                         message.Content = new ByteArrayContent(messageInfo.Body.ToArray());
 
-                        failedHeaders = message.PopulateHeaders(messageInfo.Headers);
+                        failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);
 
 #if VERBOSE_WARNINGS
                         foreach (string key in failedHeaders)
 
@@ -11,6 +11,7 @@
 using CitadelCore.Util;
 using Microsoft.AspNetCore.Http;
 using System;
+using System.Collections.Generic;
 using System.Collections.Specialized;
 using System.IO;
 using System.Threading;
@@ -33,17 +34,20 @@ internal static class HttpResponseExtensions
         /// <param name="headers">
         /// The headers.
         /// </param>
+        /// <param name="exemptedHeaders">
+        /// List of headers that are exempt from being removed if they are "forbidden" headers.
+        /// </param>
         /// <returns>
         /// A collection of all headers that failed to be added.
         /// </returns>
-        public static NameValueCollection PopulateHeaders(this HttpResponse message, NameValueCollection headers)
+        public static NameValueCollection PopulateHeaders(this HttpResponse message, NameValueCollection headers, HashSet<string> exemptedHeaders)
         {
             // This will hold whatever headers we cannot successfully add here.
             var clonedCollection = new NameValueCollection(headers);
 
             foreach (string key in headers)
             {
-                if (ForbiddenHttpHeaders.IsForbidden(key))
+                if (!exemptedHeaders.Contains(key) && ForbiddenHttpHeaders.IsForbidden(key))
                 {
                     continue;
                 }
@@ -81,7 +85,7 @@ public static async Task<bool> ApplyMessageInfo(this HttpResponse message, HttpM
             {
                 if (messageInfo.MessageType == MessageType.Response)
                 {
-                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers);
+                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);
                     message.StatusCode = (int)messageInfo.StatusCode;
 
 #if VERBOSE_WARNINGS
 
@@ -10,6 +10,7 @@
 using CitadelCore.Net.Http;
 using CitadelCore.Util;
 using System;
+using System.Collections.Generic;
 using System.Collections.Specialized;
 using System.Net.Http;
 using System.Threading;
@@ -28,10 +29,13 @@ internal static class HttpResponseMessageExtensions
         /// <param name="headers">
         /// The headers.
         /// </param>
+        /// <param name="exemptedHeaders">
+        /// List of headers that are exempt from being removed if they are "forbidden" headers.
+        /// </param>
         /// <returns>
         /// A collection of all headers that failed to be added.
         /// </returns>
-        public static NameValueCollection PopulateHeaders(this HttpResponseMessage message, NameValueCollection headers)
+        public static NameValueCollection PopulateHeaders(this HttpResponseMessage message, NameValueCollection headers, HashSet<string> exemptedHeaders)
         {
             // This will hold whatever headers we cannot successfully add here.
             var clonedCollection = new NameValueCollection(headers);
@@ -84,15 +88,15 @@ public static bool ApplyMessageInfo(this HttpResponseMessage message, HttpMessag
             {
                 if (messageInfo.MessageType == MessageType.Request)
                 {
-                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers);
+                    var failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);
 
                     message.StatusCode = messageInfo.StatusCode;
 
                     if (messageInfo.BodyIsUserCreated && messageInfo.Body.Length > 0)
                     {
                         message.Content = new ByteArrayContent(messageInfo.Body.ToArray());
 
-                        failedHeaders = message.PopulateHeaders(messageInfo.Headers);
+                        failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);
 
 #if VERBOSE_WARNINGS
                         foreach (string key in failedHeaders)
 
@@ -6,12 +6,12 @@
 */
 
 using CitadelCore.Net.Handlers;
-using CitadelCore.Net.Handlers.Replay;
 using CitadelCore.Net.Http;
 using System;
 using System.Collections.Concurrent;
 using System.Collections.Generic;
 using System.Linq;
+using System.Net;
 using System.Threading;
 
 namespace CitadelCore.IO
@@ -149,13 +149,21 @@ internal string ReplayUrl
         {
             get
             {
-                return $"http://localhost:{ReplayResponseHandlerFactory.Default.V4HttpEndpoint.Port}/replay/{MessageInfo.MessageId.ToString()}";
+                return $"http://localhost:{_serverHttpEndpoint.Port}/replay/{MessageInfo.MessageId.ToString()}";
             }
         }
 
+        /// <summary>
+        /// The HTTP endpoint that the replay server can be reached at.
+        /// </summary>
+        private readonly IPEndPoint _serverHttpEndpoint;
+
         /// <summary>
         /// Constructs a new ResponseReplay instance with the given parameters.
         /// </summary>
+        /// <param name="serverHttpEndpoint">
+        /// The HTTP endpoint that the replay server is bound to.
+        /// </param>
         /// <param name="messageInfo">
         /// The message info.
         /// </param>
@@ -168,7 +176,7 @@ internal string ReplayUrl
         /// <exception cref="ArgumentException">
         /// If the cancellation token is null, this constructor will throw.
         /// </exception>
-        public ResponseReplay(HttpMessageInfo messageInfo, CancellationToken cancellationToken)
+        public ResponseReplay(IPEndPoint serverHttpEndpoint, HttpMessageInfo messageInfo, CancellationToken cancellationToken)
         {
             if (messageInfo == null || messageInfo.MessageType != MessageType.Response)
             {
@@ -180,6 +188,7 @@ public ResponseReplay(HttpMessageInfo messageInfo, CancellationToken cancellatio
                 throw new ArgumentException("The cancellation token object must not be null.", nameof(cancellationToken));
             }
 
+            _serverHttpEndpoint = serverHttpEndpoint ?? throw new ArgumentException("The server endpoint cannot be null.", nameof(cancellationToken));
             MessageInfo = messageInfo;
             _cancellationToken = cancellationToken;
         }
@@ -232,8 +241,7 @@ internal bool TryReadBody(out List<byte[]> bytes)
 
             do
             {
-                byte[] buffer = null;
-                success = _pendingBody.TryDequeue(out buffer);
+                success = _pendingBody.TryDequeue(out byte[] buffer);
                 if (success)
                 {
                     retVal.Add(buffer);
Original file line number	Diff line number	Diff line change
`@@ -10,6 +10,7 @@`
`10`	`10`	`using CitadelCore.Net.Http;`
`11`	`11`	`using CitadelCore.Util;`
`12`	`12`	`using System;`
	`13`	`+using System.Collections.Generic;`
`13`	`14`	`using System.Collections.Specialized;`
`14`	`15`	`using System.Net.Http;`
`15`	`16`	`using System.Threading;`
`@@ -28,37 +29,43 @@ internal static class HttpRequestMessageExtensions`
`28`	`29`	`/// <param name="headers">`
`29`	`30`	`/// The headers.`
`30`	`31`	`/// </param>`
	`32`	`+ /// <param name="exemptedHeaders">`
	`33`	`+ /// List of headers that are exempt from being removed if they are "forbidden" headers.`
	`34`	`+ /// </param>`
`31`	`35`	`/// <returns>`
`32`	`36`	`/// A collection of all headers that failed to be added.`
`33`	`37`	`/// </returns>`
`34`		`- public static NameValueCollection PopulateHeaders(this HttpRequestMessage message, NameValueCollection headers)`
	`38`	`+ public static NameValueCollection PopulateHeaders(this HttpRequestMessage message, NameValueCollection headers, HashSet<string> exemptedHeaders)`
`35`	`39`	`{`
`36`	`40`	`// This will hold whatever headers we cannot successfully add here.`
`37`	`41`	`var clonedCollection = new NameValueCollection(headers);`
`38`	`42`
`39`	`43`	`foreach (string key in headers)`
`40`	`44`	`{`
`41`		`- if (ForbiddenHttpHeaders.IsForbidden(key))`
	`45`	`+ if (!exemptedHeaders.Contains(key) && ForbiddenHttpHeaders.IsForbidden(key))`
`42`	`46`	`{`
`43`	`47`	`continue;`
`44`	`48`	`}`
`45`		`-`
	`49`	`+`
`46`	`50`	`if (message.Headers.TryAddWithoutValidation(key, headers.GetValues(key)))`
`47`		`- {`
	`51`	`+ {`
`48`	`52`	`clonedCollection.Remove(key);`
`49`	`53`	`}`
`50`	`54`	`else`
`51`	`55`	`{`
`52`	`56`	`if (message.Content != null)`
`53`	`57`	`{`
`54`	`58`	`if (message.Content.Headers.TryAddWithoutValidation(key, headers.GetValues(key)))`
`55`		`- {`
	`59`	`+ {`
`56`	`60`	`clonedCollection.Remove(key);`
`57`	`61`	`}`
`58`	`62`	`}`
`59`	`63`	`}`
`60`	`64`	`}`
`61`	`65`
	`66`	`+ // Apparently, host won't set unless we use the typed accessor!`
	`67`	`+ message.Headers.Host = headers["Host"] ?? message.Headers.Host;`
	`68`	`+`
`62`	`69`	`return clonedCollection;`
`63`	`70`	`}`
`64`	`71`
`@@ -84,7 +91,7 @@ public static bool ApplyMessageInfo(this HttpRequestMessage message, HttpMessage`
`84`	`91`	`{`
`85`	`92`	`if (messageInfo.MessageType == MessageType.Request)`
`86`	`93`	`{`
`87`		`- var failedHeaders = message.PopulateHeaders(messageInfo.Headers);`
	`94`	`+ var failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);`
`88`	`95`
`89`	`96`	`message.Method = messageInfo.Method;`
`90`	`97`	`message.RequestUri = messageInfo.Url;`
`@@ -93,7 +100,7 @@ public static bool ApplyMessageInfo(this HttpRequestMessage message, HttpMessage`
`93`	`100`	`{`
`94`	`101`	`message.Content = new ByteArrayContent(messageInfo.Body.ToArray());`
`95`	`102`
`96`		`- failedHeaders = message.PopulateHeaders(messageInfo.Headers);`
	`103`	`+ failedHeaders = message.PopulateHeaders(messageInfo.Headers, messageInfo.ExemptedHeaders);`
`97`	`104`
`98`	`105`	`#if VERBOSE_WARNINGS`
`99`	`106`	`foreach (string key in failedHeaders)`