Fixes issues caused by Microsoft being more strict than the world really is

Now uses our own brand of managed websockets that works properly.

Author: TechnikEmpire

CitadelCore/CitadelCore.csproj

@@ -12,13 +12,14 @@
     <PackageIconUrl />
     <RepositoryUrl>https://github.com/TechnikEmpire/CitadelCore</RepositoryUrl>
     <PackageTags>proxy filtering content-filtering transparent-proxy</PackageTags>
-    <PackageReleaseNotes>Re-externalizes managed websockets.</PackageReleaseNotes>
+    <PackageReleaseNotes>Now uses own websocket fork.
+Bypasses restrictions on GET requests to enable technically-illegal headers that everyone uses anyway, including Microsoft.</PackageReleaseNotes>
     <Title>CitadelCore</Title>
     <Summary>Transparent filtering HTTP/S and Websocket/WebsocketSecure proxy.</Summary>
     <Description>Transparent filtering HTTP/S and Websocket/WebsocketSecure proxy.</Description>
-    <Version>3.7.2</Version>
-    <AssemblyVersion>3.7.2.0</AssemblyVersion>
-    <FileVersion>3.7.2.0</FileVersion>    
+    <Version>3.7.4</Version>
+    <AssemblyVersion>3.7.4.0</AssemblyVersion>
+    <FileVersion>3.7.4.0</FileVersion>    
   </PropertyGroup>
 
   <ItemGroup Label="dotnet pack instructions">
@@ -60,14 +61,14 @@
   </ItemGroup>
 
   <ItemGroup>
+    <PackageReference Include="CitadelCore.Websockets.Client.Managed" Version="1.1.1" />
     <PackageReference Include="Microsoft.AspNetCore.Diagnostics" Version="2.1.1" />
     <PackageReference Include="Microsoft.AspNetCore.ResponseCompression" Version="2.1.1" />
     <PackageReference Include="Microsoft.AspNetCore.Server.Kestrel" Version="2.1.3" />
     <PackageReference Include="Microsoft.AspNetCore.WebSockets.Server" Version="0.1.0" />
     <PackageReference Include="Portable.BouncyCastle" Version="1.8.4" />
     <PackageReference Include="StreamExtended" Version="[1.0.81]" />
     <PackageReference Include="System.Memory" Version="4.5.1" />
-    <PackageReference Include="System.Net.WebSockets.Client.Managed" Version="1.0.22" />
   </ItemGroup>
 
   <!-- If you want to bundle the websocket lib internally!

CitadelCore/Extensions/HttpRequestMessageExtensions.cs

@@ -12,6 +12,7 @@
 using System;
 using System.Collections.Generic;
 using System.Collections.Specialized;
+using System.Linq;
 using System.Net.Http;
 using System.Threading;
 
@@ -59,7 +60,7 @@ public static NameValueCollection PopulateHeaders(this HttpRequestMessage messag
                     if (message.Content != null)
                     {
                         if (message.Content.Headers.TryAddWithoutValidation(key, headers.GetValues(key)))
-                        {   
+                        {
                             clonedCollection.Remove(key);
                         }
                     }

CitadelCore/Extensions/HttpResponseMessageExtensions.cs

@@ -12,6 +12,7 @@
 using System;
 using System.Collections.Generic;
 using System.Collections.Specialized;
+using System.Linq;
 using System.Net.Http;
 using System.Threading;
 

CitadelCore/Net/Handlers/FilterHttpResponseHandler.cs

@@ -13,6 +13,7 @@
 using CitadelCore.Net.Proxy;
 using Microsoft.AspNetCore.Http;
 using System;
+using System.Collections.Generic;
 using System.IO;
 using System.Net;
 using System.Net.Http;
@@ -57,6 +58,23 @@ internal class FilterHttpResponseHandler : AbstractFilterResponseHandler
         /// </summary>
         private static readonly System.Collections.Generic.HashSet<string> s_emptyExemptedHeaders = new System.Collections.Generic.HashSet<string>();
 
+        static FilterHttpResponseHandler()
+        {
+            // Use reflection to enable us to send a content-type with GET messages and such,
+            // because Microsoft is ultra-strict with .NET, but breaks all the rules
+            // with everything else.
+            var invalidHeadersField = typeof(System.Net.Http.Headers.HttpRequestHeaders).GetField(
+                "invalidHeaders", 
+                System.Reflection.BindingFlags.NonPublic | System.Reflection.BindingFlags.Static) ?? 
+                typeof(System.Net.Http.Headers.HttpRequestHeaders).GetField("s_invalidHeaders", System.Reflection.BindingFlags.NonPublic | System.Reflection.BindingFlags.Static);
+
+            if (invalidHeadersField != null)
+            {
+                var invalidHeadersCollection = (HashSet<string>)invalidHeadersField.GetValue(null);
+                invalidHeadersCollection.Remove("Content-Type");
+            }
+        }
+
         /// <summary>
         /// Constructs a FilterHttpResponseHandler instance.
         /// </summary>

CitadelCore/Net/Handlers/FilterWebsocketHandler.cs

@@ -10,10 +10,10 @@
 using CitadelCore.Logging;
 using CitadelCore.Net.Http;
 using CitadelCore.Net.Proxy;
+using CitadelCore.Websockets.Managed;
 using Microsoft.AspNetCore.Http;
 using System;
 using System.Net.Http;
-using System.Net.WebSockets.Managed;
 using System.Text;
 using System.Text.RegularExpressions;
 using System.Threading;
@@ -63,7 +63,7 @@ public override async Task Handle(HttpContext context)
             {
                 // First we need the URL for this connection, since it's been requested to be
                 // upgraded to a websocket.
-                var fullUrl = Microsoft.AspNetCore.Http.Extensions.UriHelper.GetDisplayUrl(context.Request);
+                var fullUrl = Microsoft.AspNetCore.Http.Extensions.UriHelper.GetEncodedUrl(context.Request);
 
                 // Need to replate the scheme with appropriate websocket scheme.
                 if (fullUrl.StartsWith("http://", StringComparison.OrdinalIgnoreCase))
@@ -130,6 +130,24 @@ public override async Task Handle(HttpContext context)
                 // Connect the server websocket to the upstream, remote webserver.
                 await wsServer.ConnectAsync(wsUri, context.RequestAborted);
 
+                foreach (string key in wsServer.ResponseHeaders)
+                {
+                    if (!ForbiddenWsHeaders.IsForbidden(key))
+                    {
+                        try
+                        {   
+                            var value = wsServer.ResponseHeaders[key];
+                            context.Response.Headers[key] = wsServer.ResponseHeaders[key];                            
+                        }
+                        catch (Exception hdrException)
+                        {
+                            LoggerProxy.Default.Error(hdrException);
+                        }
+                    }
+                }
+
+                Console.WriteLine();
+                
                 // Create, via acceptor, the client websocket. This is the local machine's websocket.
                 wsClient = await context.WebSockets.AcceptWebSocketAsync(wsServer.SubProtocol ?? null);
 

CitadelCore/Net/Http/ForbiddenWsHeaders.cs

@@ -37,6 +37,8 @@ internal static class ForbiddenWsHeaders
             // Don't set the version for our client socket. Microsoft sets this all by themselves.
             "Sec-WebSocket-Version",
 
+            "Sec-WebSocket-Accept",
+
             // We manually add cookies so we don't want them this way.
             "Cookie",
 

CitadelCore/Net/Proxy/ProxyServer.cs

@@ -447,12 +447,7 @@ public void Configure(IApplicationBuilder app)
                 app.UseResponseCompression();
 
                 // We proxy websockets, so enable this.
-                var wsOpts = new WebSocketOptions
-                {
-                    ReceiveBufferSize = (int)(ushort.MaxValue * 5)
-                };
-
-                app.UseWebSockets(wsOpts);
+                app.UseWebSockets();
 
                 // Exception handler. Not yet sure what to do here.
                 app.UseExceptionHandler(
@@ -521,12 +516,7 @@ public void Configure(IApplicationBuilder app)
                 app.UseResponseCompression();
 
                 // We proxy websockets, so enable this.
-                var wsOpts = new WebSocketOptions
-                {
-                    ReceiveBufferSize = (int)(ushort.MaxValue * 5)
-                };
-
-                app.UseWebSockets(wsOpts);
+                app.UseWebSockets();
 
                 // Exception handler. Not yet sure what to do here.
                 app.UseExceptionHandler(