Fallback to amiusing.htk/certificate if android.htk/config is missing

pimterry · pimterry · commit f6cc97ca5cef · 2020-05-14T12:33:34.000+02:00
This can easily happen if you set up Android interception in HTTP
Toolkit, restart the desktop app, and then reconnect from the
Android app. Doing so re-queries the android config, which is no
longer set up (as the desktop isn't expecting a client). Easily
fixable by falling back to the basic cert info (potentially losing
extra config data, if we do include some here later).
diff --git a/app/src/main/java/tech/httptoolkit/android/ProxySetup.kt b/app/src/main/java/tech/httptoolkit/android/ProxySetup.kt
@@ -25,6 +25,8 @@ import java.util.concurrent.TimeUnit
 
 private val TAG = formatTag("tech.httptoolkit.android.ProxySetup")
 
+class ResponseException(message: String) : ConnectException(message)
+
 // Takes an android.httptoolkit.tech/connect URI, extracts & parses the connection config
 // within, into a format ready for testing and then usage.
 fun parseConnectUri(uri: Uri): ProxyInfo {
@@ -80,18 +82,16 @@ private suspend fun testProxyAddress(
 
         Log.i(TAG, "Testing proxy $address:$port")
 
-        val request = Request.Builder()
-            .url("http://android.httptoolkit.tech/config")
-            .build()
-
         try {
-            val configString = httpClient.newCall(request).execute().use { response ->
-                if (response.code != 200) {
-                    throw ConnectException("Proxy responded with non-200: ${response.code}")
-                }
-                response.body!!.string()
+            val config = try {
+                val configString = request(httpClient, "http://android.httptoolkit.tech/config")
+                Klaxon().parse<ReceivedProxyConfig>(configString)!!
+            } catch (e: ResponseException) {
+                // If we connected but the response was bad, maybe we're reconnecting to an app
+                // that isn't explicitly expecting an Android client. Retry requesting just the cert.
+                val certString = request(httpClient, "http://amiusing.httptoolkit.tech/certificate")
+                ReceivedProxyConfig(certString)
             }
-            val config = Klaxon().parse<ReceivedProxyConfig>(configString)!!
 
             val foundCert = certFactory.generateCertificate(
                 ByteArrayInputStream(config.certificate.toByteArray(Charsets.UTF_8))
@@ -118,6 +118,17 @@ private suspend fun testProxyAddress(
     }
 }
 
+suspend fun request(httpClient: OkHttpClient, url: String): String {
+    return withContext(Dispatchers.IO) {
+        httpClient.newCall(Request.Builder().url(url).build()).execute().use { response ->
+            if (response.code != 200) {
+                throw ResponseException("Proxy responded with non-200: ${response.code}")
+            }
+            response.body!!.string()
+        }
+    }
+}
+
 fun getCertificateFingerprint(cert: X509Certificate): String {
     val md = MessageDigest.getInstance("SHA-256")
     md.update(cert.publicKey.encoded)
