Simplify ProtocolSwitchStrategy by Leveraging ProtocolVersionParser

arturobernalg · arturobernalg · commit 17dafc8a44fe · 2025-03-27T10:54:33.000+01:00
Unify HTTP and TLS token parsing in the Upgrade header by replacing custom version parsing with ProtocolVersionParser.
This change removes redundant code and ensures that only supported protocols (HTTP/ and TLS tokens) are accepted,
while all other upgrade protocols are rejected as unsupported.
diff --git a/httpclient5/src/main/java/org/apache/hc/client5/http/impl/ProtocolSwitchStrategy.java b/httpclient5/src/main/java/org/apache/hc/client5/http/impl/ProtocolSwitchStrategy.java
@@ -34,8 +34,11 @@
 import org.apache.hc.core5.http.ParseException;
 import org.apache.hc.core5.http.ProtocolException;
 import org.apache.hc.core5.http.ProtocolVersion;
+import org.apache.hc.core5.http.ProtocolVersionParser;
 import org.apache.hc.core5.http.message.MessageSupport;
 import org.apache.hc.core5.http.ssl.TLS;
+import org.apache.hc.core5.util.CharArrayBuffer;
+import org.apache.hc.core5.util.Tokenizer;
 
 /**
  * Protocol switch handler.
@@ -45,31 +48,53 @@
 @Internal
 public final class ProtocolSwitchStrategy {
 
-    enum ProtocolSwitch { FAILURE, TLS }
+    private static final ProtocolVersionParser PARSER = ProtocolVersionParser.INSTANCE;
 
     public ProtocolVersion switchProtocol(final HttpMessage response) throws ProtocolException {
         final Iterator<String> it = MessageSupport.iterateTokens(response, HttpHeaders.UPGRADE);
-
         ProtocolVersion tlsUpgrade = null;
+        ProtocolVersion httpUpgrade = null;
+
         while (it.hasNext()) {
-            final String token = it.next();
-            if (token.startsWith("TLS")) {
-                // TODO: Improve handling of HTTP protocol token once HttpVersion has a #parse method
-                try {
-                    tlsUpgrade = token.length() == 3 ? TLS.V_1_2.getVersion() : TLS.parse(token.replace("TLS/", "TLSv"));
-                } catch (final ParseException ex) {
-                    throw new ProtocolException("Invalid protocol: " + token);
+            final String token = it.next().trim();
+            try {
+                if (token.startsWith("TLS") || token.startsWith("HTTP/")) {
+                    final ProtocolVersion version = parseToken(token);
+                    if (token.startsWith("TLS")) {
+                        tlsUpgrade = version;
+                    } else {
+                        httpUpgrade = version;
+                    }
+                } else {
+                    throw new ProtocolException("Unsupported protocol: " + token);
+                }
+            } catch (final ParseException ex) {
+                if (token.startsWith("TLS")) {
+                    throw new ProtocolException("Invalid TLS protocol: " + token, ex);
+                } else if (token.startsWith("HTTP/")) {
+                    throw new ProtocolException("Invalid HTTP protocol: " + token, ex);
+                } else {
+                    throw new ProtocolException("Unsupported protocol: " + token, ex);
                 }
-            } else if (token.equals("HTTP/1.1")) {
-                // TODO: Improve handling of HTTP protocol token once HttpVersion has a #parse method
-            } else {
-                throw new ProtocolException("Unsupported protocol: " + token);
             }
         }
-        if (tlsUpgrade == null) {
+
+        if (tlsUpgrade != null) {
+            return tlsUpgrade;
+        } else if (httpUpgrade != null) {
+            return httpUpgrade;
+        } else {
             throw new ProtocolException("Invalid protocol switch response");
         }
-        return tlsUpgrade;
     }
 
+    private ProtocolVersion parseToken(final String token) throws ParseException {
+        if (token.equals("TLS")) {
+            return TLS.V_1_2.getVersion();
+        }
+        final CharArrayBuffer buffer = new CharArrayBuffer(token.length());
+        buffer.append(token);
+        final Tokenizer.Cursor cursor = new Tokenizer.Cursor(0, buffer.length());
+        return PARSER.parse(buffer, cursor, null);
+    }
 }
diff --git a/httpclient5/src/test/java/org/apache/hc/client5/http/impl/TestProtocolSwitchStrategy.java b/httpclient5/src/test/java/org/apache/hc/client5/http/impl/TestProtocolSwitchStrategy.java
@@ -29,7 +29,9 @@
 import org.apache.hc.core5.http.HttpHeaders;
 import org.apache.hc.core5.http.HttpResponse;
 import org.apache.hc.core5.http.HttpStatus;
+import org.apache.hc.core5.http.HttpVersion;
 import org.apache.hc.core5.http.ProtocolException;
+import org.apache.hc.core5.http.ProtocolVersion;
 import org.apache.hc.core5.http.message.BasicHttpResponse;
 import org.apache.hc.core5.http.ssl.TLS;
 import org.junit.jupiter.api.Assertions;
@@ -95,4 +97,102 @@ void testSwitchInvalid() {
         Assertions.assertThrows(ProtocolException.class, () -> switchStrategy.switchProtocol(response3));
     }
 
+    @Test
+    void testSwitchToTlsValid_TLS_2_0() throws ProtocolException {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "HTTP/2.0");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(HttpVersion.HTTP_2_0, result);
+    }
+
+    @Test
+    void testSwitchToHttpValid_HTTP_1_1() throws Exception {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "HTTP/1.1");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(HttpVersion.HTTP_1_1, result);
+    }
+
+    @Test
+    void testUnsupportedHttpVersion() throws ProtocolException {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "HTTP/11.22");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(11, result.getMajor());
+        Assertions.assertEquals(22, result.getMinor());
+    }
+
+    @Test
+    void testSwitchToTlsValid_TLS_1_2() throws Exception {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/1.2");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(TLS.V_1_2.getVersion(), result);
+    }
+
+    // New Tests for parseTlsToken Casuistics
+    @Test
+    void testSwitchToTlsValid_TLS_1_0() throws Exception {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/1.0");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(TLS.V_1_0.getVersion(), result);
+    }
+
+    @Test
+    void testSwitchToTlsValid_TLS_1_1() throws Exception {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/1.1");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(TLS.V_1_1.getVersion(), result);
+    }
+
+    @Test
+    void testUnsupportedTlsVersion_TLS_1_4() throws ProtocolException {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/1.4");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(1, result.getMajor());
+        Assertions.assertEquals(4, result.getMinor());
+    }
+
+    @Test
+    void testTlsVersion_TLS_2_0() throws ProtocolException {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/2.0");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(2, result.getMajor());
+    }
+
+    @Test
+    void testInvalidTlsFormat_NoSlash() {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLSv1");
+        Assertions.assertThrows(ProtocolException.class, () -> switchStrategy.switchProtocol(response),
+                "Invalid TLS protocol format: TLSv1");
+    }
+
+    @Test
+    void testInvalidTlsFormat_NonNumeric() {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/abc");
+        Assertions.assertThrows(ProtocolException.class, () -> switchStrategy.switchProtocol(response),
+                "Invalid TLS version: abc");
+    }
+
+    @Test
+    void testSwitchToTlsValid_TLS_1() throws ProtocolException {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/1");
+        final ProtocolVersion result = switchStrategy.switchProtocol(response);
+        Assertions.assertEquals(TLS.V_1_0.getVersion(), result);
+    }
+
+    @Test
+    void testInvalidTlsFormat_MissingMajor() {
+        final HttpResponse response = new BasicHttpResponse(HttpStatus.SC_SWITCHING_PROTOCOLS);
+        response.addHeader(HttpHeaders.UPGRADE, "TLS/.1");
+        Assertions.assertThrows(ProtocolException.class, () -> switchStrategy.switchProtocol(response),
+                "Invalid TLS version: .1");
+    }
 }
