size_t& bytes_processed) {

  SelfContainedParser parser;

  bytes_processed = parser.parser().execute(response_payload.data(), response_payload.length());

  headers_complete = parser.headersComplete();

  return parser.parser().getStatus() != Http::Http1::ParserStatus::Error &&

         parser.headersComplete() && parser.parser().statusCode() == Http::Code::OK;

}

    : PassthroughSocket(std::move(transport_socket)), options_(options) {

  if (options_ && options_->http11ProxyInfo()) {

    handleProxyInfoConnect(options_->http11ProxyInfo().value());

    return;

  }

  if (proxy_info.has_value()) {

    Network::TransportSocketOptions::Http11ProxyInfo actual_info = proxy_info.value();

    if (actual_info.hostname.empty() && host) {

      actual_info.hostname = host->hostname().empty() ? host->address()->asStringView()

                                                      : absl::StrCat(host->hostname(), ":",

    }

    handleProxyInfoConnect(actual_info);

    return;

  }

  for (auto& metadata : {host->metadata(), host->localityMetadata()}) {

    if (metadata == nullptr) {

      continue;

    }

    const bool has_proxy_addr = metadata->typed_filter_metadata().contains(

        Config::MetadataFilters::get().ENVOY_HTTP11_PROXY_TRANSPORT_SOCKET_ADDR);

    if (has_proxy_addr) {

      handleHostMetadataConnect(host);

    }

  }

}

std::string UpstreamHttp11ConnectSocket::formatConnectRequest(absl::string_view target) {

  return absl::StrCat("CONNECT ", target, " HTTP/1.1\r\n", "Host: ", target, "\r\n\r\n");

}

    const Network::TransportSocketOptions::Http11ProxyInfo& proxy_info) {

  if (transport_socket_->ssl()) {

    std::string target = absl::StrCat(

        proxy_info.hostname, Http::HeaderUtility::hostHasPort(proxy_info.hostname) ? "" : ":443");

    if (!Runtime::runtimeFeatureEnabled(

            "envoy.reloadable_features.http_11_proxy_connect_legacy_format")) {

      header_buffer_.add(formatConnectRequest(target));

    } else {

      header_buffer_.add(absl::StrCat("CONNECT ", target, " HTTP/1.1\r\n\r\n"));

    }

    need_to_strip_connect_response_ = true;

  }

}

    std::shared_ptr<const Upstream::HostDescription> host) {

  if (!Runtime::runtimeFeatureEnabled(

          "envoy.reloadable_features.http_11_proxy_connect_legacy_format")) {

    std::string target;

    if (!host->hostname().empty()) {

      const uint32_t port = host->address()->ip()->port();

      target = absl::StrCat(host->hostname(), ":", port);

    } else {

      target = host->address()->asStringView();

    }

    header_buffer_.add(formatConnectRequest(target));

  } else {

    header_buffer_.add(

        absl::StrCat("CONNECT ", host->address()->asStringView(), " HTTP/1.1\r\n\r\n"));

  }

  need_to_strip_connect_response_ = true;

}

    Network::TransportSocketCallbacks& callbacks) {

  transport_socket_->setTransportSocketCallbacks(callbacks);

  callbacks_ = &callbacks;

}

Network::IoResult UpstreamHttp11ConnectSocket::doWrite(Buffer::Instance& buffer, bool end_stream) {

  if (header_buffer_.length() > 0) {

    return writeHeader();

  }

  if (!need_to_strip_connect_response_) {

    return transport_socket_->doWrite(buffer, end_stream);

  }

  return Network::IoResult{Network::PostIoAction::KeepOpen, 0, false};

}

Network::IoResult UpstreamHttp11ConnectSocket::doRead(Buffer::Instance& buffer) {

  if (need_to_strip_connect_response_) {

    constexpr uint32_t MAX_RESPONSE_HEADER_SIZE = 2000;

    char peek_buf[MAX_RESPONSE_HEADER_SIZE];

    Api::IoCallUint64Result result =

        callbacks_->ioHandle().recv(peek_buf, MAX_RESPONSE_HEADER_SIZE, MSG_PEEK);

    if (!result.ok() && result.err_->getErrorCode() != Api::IoError::IoErrorCode::Again) {

      return {Network::PostIoAction::Close, 0, false};

    }

    absl::string_view peek_data(peek_buf, result.return_value_);

    size_t bytes_processed = 0;

    bool headers_complete = false;

    bool is_valid_connect_response =

        isValidConnectResponse(peek_data, headers_complete, bytes_processed);

    if (!headers_complete) {

      if (peek_data.size() == MAX_RESPONSE_HEADER_SIZE) {

        ENVOY_CONN_LOG(trace, "failed to receive CONNECT headers within {} bytes",

                       callbacks_->connection(), MAX_RESPONSE_HEADER_SIZE);

        return {Network::PostIoAction::Close, 0, false};

      }

      ENVOY_CONN_LOG(trace, "Incomplete CONNECT header: {} bytes received",

                     callbacks_->connection(), peek_data.size());

      return Network::IoResult{Network::PostIoAction::KeepOpen, 0, false};

    }

    if (!is_valid_connect_response) {

      ENVOY_CONN_LOG(trace, "Response does not appear to be a successful CONNECT upgrade",

                     callbacks_->connection());

      return {Network::PostIoAction::Close, 0, false};

    }

    result = callbacks_->ioHandle().read(buffer, bytes_processed);

    if (!result.ok() || result.return_value_ != bytes_processed) {

      ENVOY_CONN_LOG(trace, "failed to drain CONNECT header", callbacks_->connection());

      return {Network::PostIoAction::Close, 0, false};

    }

    buffer.drain(bytes_processed);

    ENVOY_CONN_LOG(trace, "Successfully stripped {} bytes of CONNECT header",

                   callbacks_->connection(), bytes_processed);

    need_to_strip_connect_response_ = false;

    callbacks_->flushWriteBuffer();

  }

  return transport_socket_->doRead(buffer);

}

Network::IoResult UpstreamHttp11ConnectSocket::writeHeader() {

  Network::PostIoAction action = Network::PostIoAction::KeepOpen;

  uint64_t bytes_written = 0;

  do {

    if (header_buffer_.length() == 0) {

      break;

    }

    Api::IoCallUint64Result result = callbacks_->ioHandle().write(header_buffer_);

    if (!result.ok()) {

      ENVOY_CONN_LOG(trace, "Failed writing CONNECT header. write error: {}",

                     callbacks_->connection(), result.err_->getErrorDetails());

      if (result.err_->getErrorCode() != Api::IoError::IoErrorCode::Again) {

        action = Network::PostIoAction::Close;

      }

      break;

    }

    ENVOY_CONN_LOG(trace, "Writing CONNECT header. write returned: {}", callbacks_->connection(),

                   result.return_value_);

    bytes_written += result.return_value_;

  } while (true);

}

    : PassthroughFactory(std::move(transport_socket_factory)), proxy_info_(proxy_info) {}

    std::shared_ptr<const Upstream::HostDescription> host) const {

  auto inner_socket = transport_socket_factory_->createTransportSocket(options, host);

  if (inner_socket == nullptr) {

    return nullptr;

  }

  return std::make_unique<UpstreamHttp11ConnectSocket>(std::move(inner_socket), options, host,

                                                       proxy_info_);

}

    std::vector<uint8_t>& key, Network::TransportSocketOptionsConstSharedPtr options) const {

  PassthroughFactory::hashKey(key, options);

  if (options && options->http11ProxyInfo().has_value()) {

    pushScalarToByteVector(

        StringUtil::CaseInsensitiveHash()(options->http11ProxyInfo()->proxy_address->asString()),

        key);

    pushScalarToByteVector(StringUtil::CaseInsensitiveHash()(options->http11ProxyInfo()->hostname),

                           key);

  }

}