AWS SDK

#[deprecated(

    since = "0.2.0",

    note = "support for hyper-1.x is now enabled by the `aws-smithy-http-client` crate"

)]

pub mod hyper_1_0 {}

# Code generated by software.amazon.smithy.rust.codegen.smithy-rs. DO NOT EDIT.

[[example]]

name = "client-ring"

required-features = ["rustls-ring"]

doc-scrape-examples = true

[[example]]

name = "client-aws-lc"

required-features = ["rustls-aws-lc", "rustls-aws-lc-fips"]

doc-scrape-examples = true

[[example]]

name = "client-s2n-tls"

required-features = ["s2n-tls"]

doc-scrape-examples = true

[[example]]

name = "custom-dns"

required-features = ["rustls-ring"]

doc-scrape-examples = true

[package]

name = "aws-smithy-http-client"

authors = ["AWS Rust SDK Team <aws-sdk-rust@amazon.com>"]

description = "HTTP client abstractions for generated smithy clients"

version = "1.0.0"

license = "Apache-2.0"

edition = "2021"

repository = "https://github.com/smithy-lang/smithy-rs"

[package.metadata.smithy-rs-release-tooling]

stable = true

[package.metadata.docs.rs]

all-features = false

features = ["default-client ", "wire-mock", "test-util", "rustls-ring", "rustls-aws-lc"]

targets = ["x86_64-unknown-linux-gnu"]

cargo-args = ["-Zunstable-options", "-Zrustdoc-scrape-examples"]

rustdoc-args = ["--cfg", "docsrs"]

[features]

hyper-014 = ["aws-smithy-runtime-api/http-02x", "aws-smithy-types/http-body-0-4-x", "dep:http-02x", "dep:http-body-04x", "dep:hyper-0-14"]

default-client = ["aws-smithy-runtime-api/http-1x", "aws-smithy-types/http-body-1-x", "dep:hyper", "dep:hyper-util", "hyper-util?/client-legacy", "dep:http-1x", "dep:tower", "dep:rustls-pki-types", "dep:rustls-native-certs"]

wire-mock = ["test-util", "default-client", "hyper-util?/server", "hyper-util?/server-auto", "hyper-util?/service", "hyper-util?/server-graceful", "tokio/macros", "dep:http-body-util"]

test-util = ["dep:aws-smithy-protocol-test", "dep:serde", "dep:serde_json", "dep:indexmap", "dep:bytes", "dep:http-1x", "aws-smithy-runtime-api/http-1x", "dep:http-body-1x", "aws-smithy-types/http-body-1-x"]

legacy-test-util = ["test-util", "dep:http-02x", "aws-smithy-runtime-api/http-02x", "aws-smithy-types/http-body-0-4-x"]

legacy-rustls-ring = ["dep:legacy-hyper-rustls", "dep:legacy-rustls", "hyper-014"]

rustls-ring = ["dep:rustls", "rustls?/ring", "dep:hyper-rustls", "default-client"]

rustls-aws-lc = ["dep:rustls", "rustls?/aws_lc_rs", "dep:hyper-rustls", "default-client"]

rustls-aws-lc-fips = ["dep:rustls", "rustls?/fips", "dep:hyper-rustls", "default-client"]

s2n-tls = ["dep:s2n-tls", "dep:s2n-tls-hyper", "default-client"]

[dependencies]

pin-project-lite = "0.2.14"

tracing = "0.1.40"

[dependencies.aws-smithy-async]

path = "../aws-smithy-async"

version = "1.2.5"

[dependencies.aws-smithy-runtime-api]

path = "../aws-smithy-runtime-api"

features = ["client"]

version = "1.7.4"

[dependencies.aws-smithy-types]

path = "../aws-smithy-types"

version = "1.3.0"

[dependencies.aws-smithy-protocol-test]

path = "../aws-smithy-protocol-test"

optional = true

version = "0.63.1"

[dependencies.h2]

version = "0.4.2"

default-features = false

[dependencies.tokio]

version = "1.40"

features = []

[dependencies.hyper]

version = "1.6.0"

features = ["client", "http1", "http2"]

optional = true

[dependencies.hyper-util]

version = "0.1.10"

features = ["http1", "http2"]

optional = true

[dependencies.http-1x]

package = "http"

version = "1"

optional = true

[dependencies.http-body-1x]

package = "http-body"

version = "1"

optional = true

[dependencies.hyper-rustls]

version = "0.27"

features = ["http2", "http1", "native-tokio", "tls12"]

default-features = false

optional = true

[dependencies.rustls]

version = "0.23"

default-features = false

optional = true

[dependencies.s2n-tls-hyper]

version = "0.0.4"

optional = true

[dependencies.s2n-tls]

version = "0.3.12"

optional = true

[dependencies.tower]

version = "0.5.2"

optional = true

[dependencies.rustls-pki-types]

version = "1.11.0"

features = ["std"]

optional = true

[dependencies.rustls-native-certs]

version = "0.8.1"

optional = true

[dependencies.http-02x]

package = "http"

version = "0.2.9"

optional = true

[dependencies.http-body-04x]

package = "http-body"

version = "0.4.5"

optional = true

[dependencies.hyper-0-14]

package = "hyper"

version = "0.14.26"

default-features = false

features = ["client", "http1", "http2", "tcp", "stream"]

optional = true

[dependencies.legacy-hyper-rustls]

package = "hyper-rustls"

version = "0.24"

features = ["rustls-native-certs", "http2"]

optional = true

[dependencies.legacy-rustls]

package = "rustls"

version = "0.21.8"

optional = true

[dependencies.bytes]

version = "1.10.0"

optional = true

[dependencies.serde]

version = "1.0.210"

features = ["derive"]

optional = true

[dependencies.serde_json]

version = "1.0.128"

features = ["preserve_order"]

optional = true

[dependencies.indexmap]

version = "2.6.0"

features = ["serde"]

optional = true

[dependencies.http-body-util]

version = "0.1.2"

optional = true

[dev-dependencies]

rustls-pemfile = "2.2.0"

tokio-rustls = "0.26.1"

[dev-dependencies.aws-smithy-async]

path = "../aws-smithy-async"

features = ["rt-tokio", "test-util"]

version = "1.2.5"

[dev-dependencies.aws-smithy-runtime-api]

path = "../aws-smithy-runtime-api"

features = ["test-util"]

version = "1.7.4"

[dev-dependencies.aws-smithy-types]

path = "../aws-smithy-types"

features = ["http-body-0-4-x", "test-util"]

version = "1.3.0"

[dev-dependencies.http-body-util]

version = "0.1.2"

[dev-dependencies.hyper-util]

version = "0.1.7"

features = ["full"]

[dev-dependencies.rustls-pki-types]

version = "1.11.0"

features = ["std"]

[dev-dependencies.tokio]

version = "1"

features = ["macros", "rt", "rt-multi-thread", "test-util", "full"]

                                 Apache License

                           Version 2.0, January 2004

                        http://www.apache.org/licenses/

   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION

   1. Definitions.

      "License" shall mean the terms and conditions for use, reproduction,

      and distribution as defined by Sections 1 through 9 of this document.

      "Licensor" shall mean the copyright owner or entity authorized by

      the copyright owner that is granting the License.

      "Legal Entity" shall mean the union of the acting entity and all

      other entities that control, are controlled by, or are under common

      control with that entity. For the purposes of this definition,

      "control" means (i) the power, direct or indirect, to cause the

      direction or management of such entity, whether by contract or

      otherwise, or (ii) ownership of fifty percent (50%) or more of the

      outstanding shares, or (iii) beneficial ownership of such entity.

      "You" (or "Your") shall mean an individual or Legal Entity

      exercising permissions granted by this License.

      "Source" form shall mean the preferred form for making modifications,

      including but not limited to software source code, documentation

      source, and configuration files.

      "Object" form shall mean any form resulting from mechanical

      transformation or translation of a Source form, including but

      not limited to compiled object code, generated documentation,

      and conversions to other media types.

      "Work" shall mean the work of authorship, whether in Source or

      Object form, made available under the License, as indicated by a

      copyright notice that is included in or attached to the work

      (an example is provided in the Appendix below).

      "Derivative Works" shall mean any work, whether in Source or Object

      form, that is based on (or derived from) the Work and for which the

      editorial revisions, annotations, elaborations, or other modifications

      represent, as a whole, an original work of authorship. For the purposes

      of this License, Derivative Works shall not include works that remain

      separable from, or merely link (or bind by name) to the interfaces of,

      the Work and Derivative Works thereof.

      "Contribution" shall mean any work of authorship, including

      the original version of the Work and any modifications or additions

      to that Work or Derivative Works thereof, that is intentionally

      submitted to Licensor for inclusion in the Work by the copyright owner

      or by an individual or Legal Entity authorized to submit on behalf of

      the copyright owner. For the purposes of this definition, "submitted"

      means any form of electronic, verbal, or written communication sent

      to the Licensor or its representatives, including but not limited to

      communication on electronic mailing lists, source code control systems,

      and issue tracking systems that are managed by, or on behalf of, the

      Licensor for the purpose of discussing and improving the Work, but

      excluding communication that is conspicuously marked or otherwise

      designated in writing by the copyright owner as "Not a Contribution."

      "Contributor" shall mean Licensor and any individual or Legal Entity

      on behalf of whom a Contribution has been received by Licensor and

      subsequently incorporated within the Work.

   2. Grant of Copyright License. Subject to the terms and conditions of

      this License, each Contributor hereby grants to You a perpetual,

      worldwide, non-exclusive, no-charge, royalty-free, irrevocable

      copyright license to reproduce, prepare Derivative Works of,

      publicly display, publicly perform, sublicense, and distribute the

      Work and such Derivative Works in Source or Object form.

   3. Grant of Patent License. Subject to the terms and conditions of

      this License, each Contributor hereby grants to You a perpetual,

      worldwide, non-exclusive, no-charge, royalty-free, irrevocable

      (except as stated in this section) patent license to make, have made,

      use, offer to sell, sell, import, and otherwise transfer the Work,

      where such license applies only to those patent claims licensable

      by such Contributor that are necessarily infringed by their

      Contribution(s) alone or by combination of their Contribution(s)

      with the Work to which such Contribution(s) was submitted. If You

      institute patent litigation against any entity (including a

      cross-claim or counterclaim in a lawsuit) alleging that the Work

      or a Contribution incorporated within the Work constitutes direct

      or contributory patent infringement, then any patent licenses

      granted to You under this License for that Work shall terminate

      as of the date such litigation is filed.

   4. Redistribution. You may reproduce and distribute copies of the

      Work or Derivative Works thereof in any medium, with or without

      modifications, and in Source or Object form, provided that You

      meet the following conditions:

      (a) You must give any other recipients of the Work or

          Derivative Works a copy of this License; and

      (b) You must cause any modified files to carry prominent notices

          stating that You changed the files; and

      (c) You must retain, in the Source form of any Derivative Works

          that You distribute, all copyright, patent, trademark, and

          attribution notices from the Source form of the Work,

          excluding those notices that do not pertain to any part of

          the Derivative Works; and

      (d) If the Work includes a "NOTICE" text file as part of its

          distribution, then any Derivative Works that You distribute must

          include a readable copy of the attribution notices contained

          within such NOTICE file, excluding those notices that do not

          pertain to any part of the Derivative Works, in at least one

          of the following places: within a NOTICE text file distributed

          as part of the Derivative Works; within the Source form or

          documentation, if provided along with the Derivative Works; or,

          within a display generated by the Derivative Works, if and

          wherever such third-party notices normally appear. The contents

          of the NOTICE file are for informational purposes only and

          do not modify the License. You may add Your own attribution

          notices within Derivative Works that You distribute, alongside

          or as an addendum to the NOTICE text from the Work, provided

          that such additional attribution notices cannot be construed

          as modifying the License.

      You may add Your own copyright statement to Your modifications and

      may provide additional or different license terms and conditions

      for use, reproduction, or distribution of Your modifications, or

      for any such Derivative Works as a whole, provided Your use,

      reproduction, and distribution of the Work otherwise complies with

      the conditions stated in this License.

   5. Submission of Contributions. Unless You explicitly state otherwise,

      any Contribution intentionally submitted for inclusion in the Work

      by You to the Licensor shall be under the terms and conditions of

      this License, without any additional terms or conditions.

      Notwithstanding the above, nothing herein shall supersede or modify

      the terms of any separate license agreement you may have executed

      with Licensor regarding such Contributions.

   6. Trademarks. This License does not grant permission to use the trade

      names, trademarks, service marks, or product names of the Licensor,

      except as required for reasonable and customary use in describing the

      origin of the Work and reproducing the content of the NOTICE file.

   7. Disclaimer of Warranty. Unless required by applicable law or

      agreed to in writing, Licensor provides the Work (and each

      Contributor provides its Contributions) on an "AS IS" BASIS,

      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or

      implied, including, without limitation, any warranties or conditions

      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A

      PARTICULAR PURPOSE. You are solely responsible for determining the

      appropriateness of using or redistributing the Work and assume any

      risks associated with Your exercise of permissions under this License.

   8. Limitation of Liability. In no event and under no legal theory,

      whether in tort (including negligence), contract, or otherwise,

      unless required by applicable law (such as deliberate and grossly

      negligent acts) or agreed to in writing, shall any Contributor be

      liable to You for damages, including any direct, indirect, special,

      incidental, or consequential damages of any character arising as a

      result of this License or out of the use or inability to use the

      Work (including but not limited to damages for loss of goodwill,

      work stoppage, computer failure or malfunction, or any and all

      other commercial damages or losses), even if such Contributor

      has been advised of the possibility of such damages.

   9. Accepting Warranty or Additional Liability. While redistributing

      the Work or Derivative Works thereof, You may choose to offer,

      and charge a fee for, acceptance of support, warranty, indemnity,

      or other liability obligations and/or rights consistent with this

      License. However, in accepting such obligations, You may act only

      on Your own behalf and on Your sole responsibility, not on behalf

      of any other Contributor, and only if You agree to indemnify,

      defend, and hold each Contributor harmless for any liability

      incurred by, or claims asserted against, such Contributor by reason

      of your accepting any such warranty or additional liability.

# aws-smithy-http-client

HTTP client abstractions for generated smithy clients.

<!-- anchor_start:footer -->

This crate is part of the [AWS SDK for Rust](https://awslabs.github.io/aws-sdk-rust/) and the [smithy-rs](https://github.com/smithy-lang/smithy-rs) code generator. In most cases, it should not be used directly.

<!-- anchor_end:footer -->

/*

 * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

 * SPDX-License-Identifier: Apache-2.0

 */

use aws_smithy_http_client::{

    tls::{self, rustls_provider::CryptoMode},

    Builder,

};

#[tokio::main]

async fn main() {

    // feature = rustls-aws-lc

    let _client = Builder::new()

        .tls_provider(tls::Provider::Rustls(CryptoMode::AwsLc))

        .build_https();

    // feature = rustls-aws-lc-fips

    // A FIPS client can also be created. Note that this has a more complex build environment required.

    let _client = Builder::new()

        .tls_provider(tls::Provider::Rustls(CryptoMode::AwsLcFips))

        .build_https();

}

/*

 * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

 * SPDX-License-Identifier: Apache-2.0

 */

use aws_smithy_http_client::{

    tls::{self, rustls_provider::CryptoMode},

    Builder,

};

fn main() {

    let _client = Builder::new()

        .tls_provider(tls::Provider::Rustls(CryptoMode::Ring))

        .build_https();

}

/*

 * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

 * SPDX-License-Identifier: Apache-2.0

 */

use aws_smithy_http_client::{tls, Builder};

fn main() {

    let _client = Builder::new()

        .tls_provider(tls::Provider::S2nTls)

        .build_https();

}

use aws_smithy_http_client::{

    tls::{self, rustls_provider::CryptoMode},

    Builder,

};

    let _client = Builder::new()

        .tls_provider(tls::Provider::Rustls(CryptoMode::Ring))

allowed_external_types = [

    "aws_smithy_runtime_api::*",

    "aws_smithy_async::*",

    "aws_smithy_types::*",

    # TODO(https://github.com/smithy-lang/smithy-rs/issues/1193): Once tooling permits it, only allow the following types based on the feature that exposes them

    "hyper::client::client::Builder",

    "hyper::client::connect::Connection",

    "tokio::io::async_read::AsyncRead",

    "tokio::io::async_write::AsyncWrite",

    "http::uri::Uri",

    # Used in trait bounds for legacy hyper connector build method

    "tower_service::Service",

    "bytes::bytes::Bytes",

    "serde::ser::Serialize",

    "serde::de::Deserialize",

    "hyper::client::connect::dns::Name",

    "http::request::Request",

    "http::response::Response",

    "http::uri::Uri",

    "tokio::net::tcp::stream::TcpStream",

    "hyper_util::rt::tokio::TokioIo",

]

/*

 * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

 * SPDX-License-Identifier: Apache-2.0

 */

mod timeout;

/// TLS connector(s)

pub mod tls;

use crate::cfg::cfg_tls;

use crate::tls::TlsContext;

use aws_smithy_async::future::timeout::TimedOutError;

use aws_smithy_async::rt::sleep::{default_async_sleep, AsyncSleep, SharedAsyncSleep};

use aws_smithy_runtime_api::box_error::BoxError;

use aws_smithy_runtime_api::client::connection::CaptureSmithyConnection;

use aws_smithy_runtime_api::client::connection::ConnectionMetadata;

use aws_smithy_runtime_api::client::connector_metadata::ConnectorMetadata;

use aws_smithy_runtime_api::client::http::{

    HttpClient, HttpConnector, HttpConnectorFuture, HttpConnectorSettings, SharedHttpClient,

    SharedHttpConnector,

};

use aws_smithy_runtime_api::client::orchestrator::{HttpRequest, HttpResponse};

use aws_smithy_runtime_api::client::result::ConnectorError;

use aws_smithy_runtime_api::client::runtime_components::{

    RuntimeComponents, RuntimeComponentsBuilder,

};

use aws_smithy_runtime_api::shared::IntoShared;

use aws_smithy_types::body::SdkBody;

use aws_smithy_types::config_bag::ConfigBag;

use aws_smithy_types::error::display::DisplayErrorContext;

use aws_smithy_types::retry::ErrorKind;

use client::connect::Connection;

use h2::Reason;

use http_1x::{Extensions, Uri};

use hyper::rt::{Read, Write};

use hyper_util::client::legacy as client;

use hyper_util::client::legacy::connect::dns::GaiResolver;

use hyper_util::client::legacy::connect::{

    capture_connection, CaptureConnection, Connect, HttpConnector as HyperHttpConnector, HttpInfo,

};

use hyper_util::rt::TokioExecutor;

use std::borrow::Cow;

use std::collections::HashMap;

use std::error::Error;

use std::fmt;

use std::sync::RwLock;

use std::time::Duration;

/// Given `HttpConnectorSettings` and an `SharedAsyncSleep`, create a `SharedHttpConnector` from defaults depending on what cargo features are activated.

pub fn default_connector(

    settings: &HttpConnectorSettings,

    sleep: Option<SharedAsyncSleep>,

) -> Option<SharedHttpConnector> {

    #[cfg(feature = "rustls-aws-lc")]

    {

        tracing::trace!(settings = ?settings, sleep = ?sleep, "creating a new default connector");

        let mut conn_builder = Connector::builder().connector_settings(settings.clone());

        if let Some(sleep) = sleep {

            conn_builder = conn_builder.sleep_impl(sleep);

        }

        let conn = conn_builder

            .tls_provider(tls::Provider::Rustls(

                tls::rustls_provider::CryptoMode::AwsLc,

            ))

            .build();

        Some(SharedHttpConnector::new(conn))

    }

    #[cfg(not(feature = "rustls-aws-lc"))]

    {

        tracing::trace!(settings = ?settings, sleep = ?sleep, "no default connector available");

        None

    }

}

/// [`HttpConnector`] used to make HTTP requests.

///

/// This connector also implements socket connect and read timeouts.

///

/// This shouldn't be used directly in most cases.

/// See the docs on [`Builder`] for examples of how to customize the HTTP client.

#[derive(Debug)]

pub struct Connector {

    adapter: Box<dyn HttpConnector>,

}

impl Connector {

    /// Builder for an HTTP connector.

    pub fn builder() -> ConnectorBuilder {

        ConnectorBuilder {

            enable_tcp_nodelay: true,

            ..Default::default()

        }

    }

}

impl HttpConnector for Connector {

    fn call(&self, request: HttpRequest) -> HttpConnectorFuture {

        self.adapter.call(request)

    }

}

/// Builder for [`Connector`].

#[derive(Default, Debug)]

pub struct ConnectorBuilder<Tls = TlsUnset> {

    connector_settings: Option<HttpConnectorSettings>,

    sleep_impl: Option<SharedAsyncSleep>,

    client_builder: Option<hyper_util::client::legacy::Builder>,

    enable_tcp_nodelay: bool,

    interface: Option<String>,

    #[allow(unused)]

    tls: Tls,

}

/// Initial builder state, `TlsProvider` choice required

#[derive(Default)]

#[non_exhaustive]

pub struct TlsUnset {}

/// TLS implementation selected

pub struct TlsProviderSelected {

    #[allow(unused)]

    provider: tls::Provider,

    #[allow(unused)]

    context: TlsContext,

}

impl ConnectorBuilder<TlsUnset> {

    /// Set the TLS implementation to use for this connector

    pub fn tls_provider(self, provider: tls::Provider) -> ConnectorBuilder<TlsProviderSelected> {

        ConnectorBuilder {

            connector_settings: self.connector_settings,

            sleep_impl: self.sleep_impl,

            client_builder: self.client_builder,

            enable_tcp_nodelay: self.enable_tcp_nodelay,

            interface: self.interface,

            tls: TlsProviderSelected {

                provider,

                context: TlsContext::default(),

            },

        }

    }

    /// Build an HTTP connector sans TLS

    #[doc(hidden)]

    pub fn build_http(self) -> Connector {

        let base = self.base_connector();

        self.wrap_connector(base)

    }

}

impl<Any> ConnectorBuilder<Any> {

    /// Create a [`Connector`] from this builder and a given connector.

    pub(crate) fn wrap_connector<C>(self, tcp_connector: C) -> Connector

    where

        C: Send + Sync + 'static,

        C: Clone,

        C: tower::Service<Uri>,

        C::Response: Read + Write + Connection + Send + Sync + Unpin,

        C: Connect,

        C::Future: Unpin + Send + 'static,

        C::Error: Into<BoxError>,

    {

        let client_builder =

            self.client_builder

                .unwrap_or(hyper_util::client::legacy::Builder::new(

                    TokioExecutor::new(),

                ));

        let sleep_impl = self.sleep_impl.or_else(default_async_sleep);

        let (connect_timeout, read_timeout) = self

            .connector_settings

            .map(|c| (c.connect_timeout(), c.read_timeout()))

            .unwrap_or((None, None));

        let connector = match connect_timeout {

            Some(duration) => timeout::ConnectTimeout::new(

                tcp_connector,

                sleep_impl

                    .clone()

                    .expect("a sleep impl must be provided in order to have a connect timeout"),

                duration,

            ),

            None => timeout::ConnectTimeout::no_timeout(tcp_connector),

        };

        let base = client_builder.build(connector);

        let read_timeout = match read_timeout {

            Some(duration) => timeout::HttpReadTimeout::new(

                base,

                sleep_impl.expect("a sleep impl must be provided in order to have a read timeout"),

                duration,

            ),

            None => timeout::HttpReadTimeout::no_timeout(base),

        };

        Connector {

            adapter: Box::new(Adapter {

                client: read_timeout,

            }),

        }

    }

    /// Get the base TCP connector by mapping our config to the underlying `HttpConnector` from hyper

    /// (which is a base TCP connector with no TLS or any wrapping)

    fn base_connector(&self) -> HyperHttpConnector {

        self.base_connector_with_resolver(GaiResolver::new())

    }

    /// Get the base TCP connector by mapping our config to the underlying `HttpConnector` from hyper

    /// using the given resolver `R`

    fn base_connector_with_resolver<R>(&self, resolver: R) -> HyperHttpConnector<R> {

        let mut conn = HyperHttpConnector::new_with_resolver(resolver);

        conn.set_nodelay(self.enable_tcp_nodelay);

        #[cfg(any(target_os = "android", target_os = "fuchsia", target_os = "linux"))]

        if let Some(interface) = &self.interface {

            conn.set_interface(interface);

        }

        conn

    }

    /// Set the async sleep implementation used for timeouts

    ///

    /// Calling this is only necessary for testing or to use something other than

    /// [`default_async_sleep`].

    pub fn sleep_impl(mut self, sleep_impl: impl AsyncSleep + 'static) -> Self {

        self.sleep_impl = Some(sleep_impl.into_shared());

        self

    }

    /// Set the async sleep implementation used for timeouts

    ///

    /// Calling this is only necessary for testing or to use something other than

    /// [`default_async_sleep`].

    pub fn set_sleep_impl(&mut self, sleep_impl: Option<SharedAsyncSleep>) -> &mut Self {

        self.sleep_impl = sleep_impl;

        self

    }

    /// Configure the HTTP settings for the `HyperAdapter`

    pub fn connector_settings(mut self, connector_settings: HttpConnectorSettings) -> Self {

        self.connector_settings = Some(connector_settings);

        self

    }

    /// Configure the HTTP settings for the `HyperAdapter`

    pub fn set_connector_settings(

        &mut self,

        connector_settings: Option<HttpConnectorSettings>,

    ) -> &mut Self {

        self.connector_settings = connector_settings;

        self

    }

    /// Configure `SO_NODELAY` for all sockets to the supplied value `nodelay`

    pub fn enable_tcp_nodelay(mut self, nodelay: bool) -> Self {

        self.enable_tcp_nodelay = nodelay;

        self

    }

    /// Configure `SO_NODELAY` for all sockets to the supplied value `nodelay`

    pub fn set_enable_tcp_nodelay(&mut self, nodelay: bool) -> &mut Self {

        self.enable_tcp_nodelay = nodelay;

        self

    }

    /// Sets the value for the `SO_BINDTODEVICE` option on this socket.

    ///

    /// If a socket is bound to an interface, only packets received from that particular

    /// interface are processed by the socket. Note that this only works for some socket

    /// types (e.g. `AF_INET` sockets).

    ///

    /// On Linux it can be used to specify a [VRF], but the binary needs to either have

    /// `CAP_NET_RAW` capability set or be run as root.

    ///

    /// This function is only available on Android, Fuchsia, and Linux.

    ///

    /// [VRF]: https://www.kernel.org/doc/Documentation/networking/vrf.txt

    #[cfg(any(target_os = "android", target_os = "fuchsia", target_os = "linux"))]

    pub fn set_interface<S: Into<String>>(&mut self, interface: S) -> &mut Self {

        self.interface = Some(interface.into());

        self

    }

    /// Override the Hyper client [`Builder`](hyper_util::client::legacy::Builder) used to construct this client.

    ///

    /// This enables changing settings like forcing HTTP2 and modifying other default client behavior.

    pub(crate) fn hyper_builder(

        mut self,

        hyper_builder: hyper_util::client::legacy::Builder,

    ) -> Self {

        self.set_hyper_builder(Some(hyper_builder));

        self

    }

    /// Override the Hyper client [`Builder`](hyper_util::client::legacy::Builder) used to construct this client.

    ///

    /// This enables changing settings like forcing HTTP2 and modifying other default client behavior.

    pub(crate) fn set_hyper_builder(

        &mut self,

        hyper_builder: Option<hyper_util::client::legacy::Builder>,

    ) -> &mut Self {

        self.client_builder = hyper_builder;

        self

    }

}

/// Adapter to use a Hyper 1.0-based Client as an `HttpConnector`

///

/// This adapter also enables TCP `CONNECT` and HTTP `READ` timeouts via [`Connector::builder`].

struct Adapter<C> {

    client: timeout::HttpReadTimeout<

        hyper_util::client::legacy::Client<timeout::ConnectTimeout<C>, SdkBody>,

    >,

}

impl<C> fmt::Debug for Adapter<C> {

    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {

        f.debug_struct("Adapter")

            .field("client", &"** hyper client **")

            .finish()

    }

}

/// Extract a smithy connection from a hyper CaptureConnection

fn extract_smithy_connection(capture_conn: &CaptureConnection) -> Option<ConnectionMetadata> {

    let capture_conn = capture_conn.clone();

    if let Some(conn) = capture_conn.clone().connection_metadata().as_ref() {

        let mut extensions = Extensions::new();

        conn.get_extras(&mut extensions);

        let http_info = extensions.get::<HttpInfo>();

        let mut builder = ConnectionMetadata::builder()

            .proxied(conn.is_proxied())

            .poison_fn(move || match capture_conn.connection_metadata().as_ref() {

                Some(conn) => conn.poison(),

                None => tracing::trace!("no connection existed to poison"),

            });

        builder

            .set_local_addr(http_info.map(|info| info.local_addr()))

            .set_remote_addr(http_info.map(|info| info.remote_addr()));

        let smithy_connection = builder.build();

        Some(smithy_connection)

    } else {

        None

    }

}

impl<C> HttpConnector for Adapter<C>

where

    C: Clone + Send + Sync + 'static,

    C: tower::Service<Uri>,

    C::Response: Connection + Read + Write + Unpin + 'static,

    timeout::ConnectTimeout<C>: Connect,

    C::Future: Unpin + Send + 'static,

    C::Error: Into<BoxError>,

{

    fn call(&self, request: HttpRequest) -> HttpConnectorFuture {

        let mut request = match request.try_into_http1x() {

            Ok(request) => request,

            Err(err) => {

                return HttpConnectorFuture::ready(Err(ConnectorError::user(err.into())));

            }

        };

        let capture_connection = capture_connection(&mut request);

        if let Some(capture_smithy_connection) =

            request.extensions().get::<CaptureSmithyConnection>()

        {

            capture_smithy_connection

                .set_connection_retriever(move || extract_smithy_connection(&capture_connection));

        }

        let mut client = self.client.clone();

        use tower::Service;

        let fut = client.call(request);

        HttpConnectorFuture::new(async move {

            let response = fut

                .await

                .map_err(downcast_error)?

                .map(SdkBody::from_body_1_x);

            match HttpResponse::try_from(response) {

                Ok(response) => Ok(response),

                Err(err) => Err(ConnectorError::other(err.into(), None)),

            }

        })

    }

}

/// Downcast errors coming out of hyper into an appropriate `ConnectorError`

fn downcast_error(err: BoxError) -> ConnectorError {

    // is a `TimedOutError` (from aws_smithy_async::timeout) in the chain? if it is, this is a timeout

    if find_source::<TimedOutError>(err.as_ref()).is_some() {

        return ConnectorError::timeout(err);

    }

    // is the top of chain error actually already a `ConnectorError`? return that directly

    let err = match err.downcast::<ConnectorError>() {

        Ok(connector_error) => return *connector_error,

        Err(box_error) => box_error,

    };

    // generally, the top of chain will probably be a hyper error. Go through a set of hyper specific

    // error classifications

    let err = match find_source::<hyper::Error>(err.as_ref()) {

        Some(hyper_error) => return to_connector_error(hyper_error)(err),

        None => err,

    };

    // otherwise, we have no idea!

    ConnectorError::other(err, None)

}

/// Convert a [`hyper::Error`] into a [`ConnectorError`]

fn to_connector_error(err: &hyper::Error) -> fn(BoxError) -> ConnectorError {

    if err.is_timeout() || find_source::<timeout::HttpTimeoutError>(err).is_some() {

        return ConnectorError::timeout;

    }

    if err.is_user() {

        return ConnectorError::user;

    }

    if err.is_closed() || err.is_canceled() || find_source::<std::io::Error>(err).is_some() {

        return ConnectorError::io;

    }

    // We sometimes receive this from S3: hyper::Error(IncompleteMessage)

    if err.is_incomplete_message() {

        return |err: BoxError| ConnectorError::other(err, Some(ErrorKind::TransientError));

    }

    if let Some(h2_err) = find_source::<h2::Error>(err) {

        if h2_err.is_go_away()

            || (h2_err.is_reset() && h2_err.reason() == Some(Reason::REFUSED_STREAM))

        {

            return ConnectorError::io;

        }

    }

    tracing::warn!(err = %DisplayErrorContext(&err), "unrecognized error from Hyper. If this error should be retried, please file an issue.");

    |err: BoxError| ConnectorError::other(err, None)

}

fn find_source<'a, E: Error + 'static>(err: &'a (dyn Error + 'static)) -> Option<&'a E> {

    let mut next = Some(err);

    while let Some(err) = next {

        if let Some(matching_err) = err.downcast_ref::<E>() {

            return Some(matching_err);

        }

        next = err.source();

    }

    None

}

// TODO(https://github.com/awslabs/aws-sdk-rust/issues/1090): CacheKey must also include ptr equality to any

// runtime components that are used—sleep_impl as a base (unless we prohibit overriding sleep impl)

// If we decide to put a DnsResolver in RuntimeComponents, then we'll need to handle that as well.

#[derive(Clone, Debug, Eq, PartialEq, Hash)]

struct CacheKey {

    connect_timeout: Option<Duration>,

    read_timeout: Option<Duration>,

}

impl From<&HttpConnectorSettings> for CacheKey {

    fn from(value: &HttpConnectorSettings) -> Self {

        Self {

            connect_timeout: value.connect_timeout(),

            read_timeout: value.read_timeout(),

        }

    }

}

struct HyperClient<F> {

    connector_cache: RwLock<HashMap<CacheKey, SharedHttpConnector>>,

    client_builder: hyper_util::client::legacy::Builder,

    connector_fn: F,

}

impl<F> fmt::Debug for HyperClient<F> {

    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {

        f.debug_struct("HyperClient")

            .field("connector_cache", &self.connector_cache)

            .field("client_builder", &self.client_builder)

            .finish()

    }

}

impl<F> HttpClient for HyperClient<F>

where

    F: Fn(

            hyper_util::client::legacy::Builder,

            Option<&HttpConnectorSettings>,

            Option<&RuntimeComponents>,

        ) -> Connector

        + Send

        + Sync

        + 'static,

{

    fn http_connector(

        &self,

        settings: &HttpConnectorSettings,

        components: &RuntimeComponents,

    ) -> SharedHttpConnector {

        let key = CacheKey::from(settings);

        let mut connector = self.connector_cache.read().unwrap().get(&key).cloned();

        if connector.is_none() {

            let mut cache = self.connector_cache.write().unwrap();

            // Short-circuit if another thread already wrote a connector to the cache for this key

            if !cache.contains_key(&key) {

                let start = components.time_source().map(|ts| ts.now());

                let connector = (self.connector_fn)(

                    self.client_builder.clone(),

                    Some(settings),

                    Some(components),

                );

                let end = components.time_source().map(|ts| ts.now());

                if let (Some(start), Some(end)) = (start, end) {

                    if let Ok(elapsed) = end.duration_since(start) {

                        tracing::debug!("new connector created in {:?}", elapsed);

                    }

                }

                let connector = SharedHttpConnector::new(connector);

                cache.insert(key.clone(), connector);

            }

            connector = cache.get(&key).cloned();

        }

        connector.expect("cache populated above")

    }

    fn validate_base_client_config(

        &self,

        _: &RuntimeComponentsBuilder,

        _: &ConfigBag,

    ) -> Result<(), BoxError> {

        // Initialize the TCP connector at this point so that native certs load

        // at client initialization time instead of upon first request. We do it

        // here rather than at construction so that it won't run if this is not

        // the selected HTTP client for the base config (for example, if this was

        // the default HTTP client, and it was overridden by a later plugin).

        let _ = (self.connector_fn)(self.client_builder.clone(), None, None);

        Ok(())

    }

    fn connector_metadata(&self) -> Option<ConnectorMetadata> {

        Some(ConnectorMetadata::new("hyper", Some(Cow::Borrowed("1.x"))))

    }

}

/// Builder for a hyper-backed [`HttpClient`] implementation.

///

/// This builder can be used to customize the underlying TCP connector used, as well as

/// hyper client configuration.

///

/// # Examples

///

/// Construct a Hyper client with the RusTLS TLS implementation.

/// This can be useful when you want to share a Hyper connector between multiple

/// generated Smithy clients.

#[derive(Clone, Default, Debug)]

pub struct Builder<Tls = TlsUnset> {

    client_builder: Option<hyper_util::client::legacy::Builder>,

    #[allow(unused)]

    tls_provider: Tls,

}

cfg_tls! {

    mod dns;

    use aws_smithy_runtime_api::client::dns::ResolveDns;

    impl ConnectorBuilder<TlsProviderSelected> {

        /// Build a [`Connector`] that will use the default DNS resolver implementation.

        pub fn build(self) -> Connector {

            let http_connector = self.base_connector();

            self.build_https(http_connector)

        }

        /// Configure the TLS context

        pub fn tls_context(mut self, ctx: TlsContext) -> Self {

            self.tls.context = ctx;

            self

        }

        /// Configure the TLS context

        pub fn set_tls_context(&mut self, ctx: TlsContext) -> &mut Self {

            self.tls.context = ctx;

            self

        }

        /// Build a [`Connector`] that will use the given DNS resolver implementation.

        pub fn build_with_resolver<R: ResolveDns + Clone + 'static>(self, resolver: R) -> Connector {

            use crate::client::dns::HyperUtilResolver;

            let http_connector = self.base_connector_with_resolver(HyperUtilResolver { resolver });

            self.build_https(http_connector)

        }

        fn build_https<R>(self, http_connector: HyperHttpConnector<R>) -> Connector

        where

            R: Clone + Send + Sync + 'static,

            R: tower::Service<hyper_util::client::legacy::connect::dns::Name>,

            R::Response: Iterator<Item = std::net::SocketAddr>,

            R::Future: Send,

            R::Error: Into<Box<dyn Error + Send + Sync>>,

        {

            match &self.tls.provider {

                // TODO(hyper1) - fix cfg_rustls! to allow matching on patterns so we can re-use it and not duplicate these cfg matches everywhere

                #[cfg(any(

                    feature = "rustls-aws-lc",

                    feature = "rustls-aws-lc-fips",

                    feature = "rustls-ring"

                ))]

                tls::Provider::Rustls(crypto_mode) => {

                    let https_connector = tls::rustls_provider::build_connector::wrap_connector(

                        http_connector,

                        crypto_mode.clone(),

                        &self.tls.context,

                    );

                    self.wrap_connector(https_connector)

                },

                #[cfg(feature = "s2n-tls")]

                tls::Provider::S2nTls  => {

                    let https_connector = tls::s2n_tls_provider::build_connector::wrap_connector(http_connector, &self.tls.context);

                    self.wrap_connector(https_connector)

                }

            }

        }

    }

    impl Builder<TlsProviderSelected> {

        /// Create an HTTPS client with the selected TLS provider.

        ///

        /// The trusted certificates will be loaded later when this becomes the selected

        /// HTTP client for a Smithy client.

        pub fn build_https(self) -> SharedHttpClient {

            build_with_conn_fn(

                self.client_builder,

                move |client_builder, settings, runtime_components| {

                    let builder = new_conn_builder(client_builder, settings, runtime_components)

                        .tls_provider(self.tls_provider.provider.clone())

                        .tls_context(self.tls_provider.context.clone());

                    builder.build()

                },

            )

        }

        /// Create an HTTPS client using a custom DNS resolver

        pub fn build_with_resolver(

            self,

            resolver: impl ResolveDns + Clone + 'static,

        ) -> SharedHttpClient {

            build_with_conn_fn(

                self.client_builder,

                move |client_builder, settings, runtime_components| {

                    let builder = new_conn_builder(client_builder, settings, runtime_components)

                        .tls_provider(self.tls_provider.provider.clone())

                        .tls_context(self.tls_provider.context.clone());

                    builder.build_with_resolver(resolver.clone())

                },

            )

        }

        /// Configure the TLS context

        pub fn tls_context(mut self, ctx: TlsContext) -> Self {

            self.tls_provider.context = ctx;

            self

        }

    }

}

impl Builder<TlsUnset> {

    /// Creates a new builder.

    pub fn new() -> Self {

        Self::default()

    }

    /// Build a new HTTP client without TLS enabled

    #[doc(hidden)]

    pub fn build_http(self) -> SharedHttpClient {

        build_with_conn_fn(

            self.client_builder,

            move |client_builder, settings, runtime_components| {

                let builder = new_conn_builder(client_builder, settings, runtime_components);

                builder.build_http()

            },

        )

    }

    /// Set the TLS implementation to use

    pub fn tls_provider(self, provider: tls::Provider) -> Builder<TlsProviderSelected> {

        Builder {

            client_builder: self.client_builder,

            tls_provider: TlsProviderSelected {

                provider,

                context: TlsContext::default(),

            },

        }

    }

}

pub(crate) fn build_with_conn_fn<F>(

    client_builder: Option<hyper_util::client::legacy::Builder>,

    connector_fn: F,

) -> SharedHttpClient

where

    F: Fn(

            hyper_util::client::legacy::Builder,

            Option<&HttpConnectorSettings>,

            Option<&RuntimeComponents>,

        ) -> Connector

        + Send

        + Sync

        + 'static,

{

    SharedHttpClient::new(HyperClient {

        connector_cache: RwLock::new(HashMap::new()),

        client_builder: client_builder

            .unwrap_or_else(|| hyper_util::client::legacy::Builder::new(TokioExecutor::new())),

        connector_fn,

    })

}

#[allow(dead_code)]

pub(crate) fn build_with_tcp_conn_fn<C, F>(

    client_builder: Option<hyper_util::client::legacy::Builder>,

    tcp_connector_fn: F,

) -> SharedHttpClient

where

    F: Fn() -> C + Send + Sync + 'static,

    C: Clone + Send + Sync + 'static,

    C: tower::Service<Uri>,

    C::Response: Connection + Read + Write + Send + Sync + Unpin + 'static,

    C::Future: Unpin + Send + 'static,

    C::Error: Into<BoxError>,

    C: Connect,

{

    build_with_conn_fn(

        client_builder,

        move |client_builder, settings, runtime_components| {

            let builder = new_conn_builder(client_builder, settings, runtime_components);

            builder.wrap_connector(tcp_connector_fn())

        },

    )

}