|
version 1.8, 2008/02/14 18:31:38
|
version 1.113, 2020/12/17 13:38:45
|
|
Line 1
|
Line 1
|
| /** @file |
/** @file |
| Parser: http support functions. |
Parser: http support functions. |
| |
|
| Copyright(c) 2001-2005 ArtLebedev Group (http://www.artlebedev.com) |
Copyright (c) 2001-2020 Art. Lebedev Studio (http://www.artlebedev.com) |
| Author: Alexandr Petrosian <paf@design.ru> (http://paf.design.ru) |
Author: Alexandr Petrosian <paf@design.ru> (http://paf.design.ru) |
| */ |
*/ |
| |
|
| static const char * const IDENT_HTTP_C="$Date$"; |
|
| |
|
| #include "pa_http.h" |
#include "pa_http.h" |
| #include "pa_common.h" |
#include "pa_common.h" |
| |
#include "pa_base64.h" |
| #include "pa_charsets.h" |
#include "pa_charsets.h" |
| #include "pa_request_charsets.h" |
#include "pa_request_charsets.h" |
| |
#include "pa_request.h" |
| |
#include "pa_vfile.h" |
| |
#include "pa_random.h" |
| |
|
| |
volatile const char * IDENT_PA_HTTP_C="$Id$" IDENT_PA_HTTP_H; |
| |
|
| |
#ifdef _MSC_VER |
| |
#include <windows.h> |
| |
#define socklen_t int |
| |
#else |
| |
#define closesocket close |
| |
#endif |
| |
|
| // defines |
// defines |
| |
|
| #define HTTP_METHOD_NAME "method" |
#define HTTP_METHOD_NAME "method" |
| #define HTTP_FORM_NAME "form" |
#define HTTP_FORM_NAME "form" |
| #define HTTP_BODY_NAME "body" |
#define HTTP_BODY_NAME "body" |
| #define HTTP_TIMEOUT_NAME "timeout" |
#define HTTP_TIMEOUT_NAME "timeout" |
| #define HTTP_HEADERS_NAME "headers" |
#define HTTP_HEADERS_NAME "headers" |
| #define HTTP_ANY_STATUS_NAME "any-status" |
#define HTTP_FORM_ENCTYPE_NAME "enctype" |
| // #define HTTP_CHARSET_NAME "charset" |
#define HTTP_ANY_STATUS_NAME "any-status" |
| #define HTTP_TABLES_NAME "tables" |
#define HTTP_OMIT_POST_CHARSET_NAME "omit-post-charset" // ^file::load[...;http://...;$.method[post]] by default adds charset to content-type |
| |
|
| #define HTTP_USER "user" |
#define HTTP_USER "user" |
| #define HTTP_PASSWORD "password" |
#define HTTP_PASSWORD "password" |
| |
|
| |
#define HTTP_USER_AGENT "user-agent" |
| #define DEFAULT_USER_AGENT "parser3" |
#define DEFAULT_USER_AGENT "parser3" |
| |
|
| # ifndef INADDR_NONE |
#ifndef INADDR_NONE |
| # define INADDR_NONE ((ulong) -1) |
#define INADDR_NONE ((ulong) -1) |
| # endif |
#endif |
| |
|
| #undef CRLF |
#undef CRLF |
| #define CRLF "\r\n" |
#define CRLF "\r\n" |
| |
|
| |
// helpers |
| |
|
| |
bool HTTP_Headers::add_header(const char *line){ |
| |
const char *value=strchr(line, ':'); |
| |
|
| |
if(value && value != line){ // we need only headers, not the response code |
| |
Header header(str_upper(line, value-line), String::Body(value+1).trim(String::TRIM_BOTH, " \t\n\r")); |
| |
|
| |
if(header.name == String::Body(HTTP_CONTENT_TYPE_UPPER) && content_type.is_empty()) |
| |
content_type=header.value; |
| |
|
| |
if(header.name == String::Body("CONTENT-LENGTH") && content_length==0) |
| |
ALTER_EXCEPTION_COMMENT(content_length=pa_atoul(header.value.cstr()), " for content-length"); |
| |
|
| |
headers+=header; |
| |
|
| |
return true; |
| |
} |
| |
return false; |
| |
} |
| |
|
| |
class Cookies_table_template_columns: public ArrayString { |
| |
public: |
| |
Cookies_table_template_columns() { |
| |
*this+=new String("name"); |
| |
*this+=new String("value"); |
| |
*this+=new String("expires"); |
| |
*this+=new String("max-age"); |
| |
*this+=new String("domain"); |
| |
*this+=new String("path"); |
| |
*this+=new String("httponly"); |
| |
*this+=new String("secure"); |
| |
} |
| |
}; |
| |
|
| |
|
| static bool set_addr(struct sockaddr_in *addr, const char* host, const short port){ |
static bool set_addr(struct sockaddr_in *addr, const char* host, const short port){ |
| memset(addr, 0, sizeof(*addr)); |
memset(addr, 0, sizeof(*addr)); |
| addr->sin_family=AF_INET; |
addr->sin_family=AF_INET; |
| addr->sin_port=htons(port); |
addr->sin_port=htons(port); |
| if(host) { |
if(host) { |
| ulong packed_ip=inet_addr(host); |
struct hostent *hostIP=gethostbyname(host); |
| if(packed_ip!=INADDR_NONE) |
if(hostIP && hostIP->h_addrtype == AF_INET){ |
| memcpy(&addr->sin_addr, &packed_ip, sizeof(packed_ip)); |
memcpy(&addr->sin_addr, hostIP->h_addr, hostIP->h_length); |
| else { |
return true; |
| struct hostent *hostIP=gethostbyname(host); |
} |
| if(hostIP) |
} |
| memcpy(&addr->sin_addr, hostIP->h_addr, hostIP->h_length); |
return false; |
| else |
|
| return false; |
|
| } |
|
| } else |
|
| addr->sin_addr.s_addr=INADDR_ANY; |
|
| return true; |
|
| } |
|
| |
|
| size_t guess_content_length(char* buf) { |
|
| char* ptr; |
|
| if((ptr=strstr(buf, "Content-Length:"))) // Apache |
|
| goto found; |
|
| if((ptr=strstr(buf, "content-length:"))) // Parser 3 |
|
| goto found; |
|
| if((ptr=strstr(buf, "Content-length:"))) // maybe 1 |
|
| goto found; |
|
| if((ptr=strstr(buf, "CONTENT-LENGTH:"))) // maybe 2 |
|
| goto found; |
|
| return 0; |
|
| found: |
|
| char *error_pos; |
|
| size_t result=(size_t)strtol(ptr+15/*strlen("CONTENT-LENGTH:")*/, &error_pos, 0); |
|
| |
|
| const size_t reasonable_initial_max=0x400*0x400*10 /*10M*/; |
|
| if(result>reasonable_initial_max) // sanity check |
|
| return reasonable_initial_max; |
|
| return 0;//result; |
|
| } |
} |
| |
|
| static int http_read_response(char*& response, size_t& response_size, int sock, bool fail_on_status_ne_200) { |
class HTTP_response : public PA_Allocated { |
| int result=0; |
public: |
| // fetching some to local buffer, guessing on possible content-length |
char *buf; |
| response_size=0x400*20; // initial size if content-length could not be determined |
size_t length; |
| const size_t preview_size=0x400*20; |
size_t buf_size; |
| char preview_buf[preview_size+1/*terminator*/]; // 20K buffer to preview headers |
size_t body_offset; |
| ssize_t received_size=recv(sock, preview_buf, preview_size, 0); |
|
| if(received_size==0) |
HTTP_Headers headers; |
| goto done; |
|
| if(received_size<0) { |
HTTP_response() : buf(NULL), length(0), buf_size(0), body_offset(0){} |
| if(int no=pa_socks_errno()) |
|
| throw Exception("http.timeout", |
void resize(size_t size){ |
| 0, |
buf_size=size; |
| "error receiving response header: %s (%d)", pa_socks_strerr(no), no); |
buf=(char *)pa_realloc(buf, size + 1); |
| goto done; |
|
| } |
|
| // terminator [helps futher string searches] |
|
| preview_buf[received_size]=0; |
|
| // checking status |
|
| if(char* EOLat=strstr(preview_buf, "\n")) { |
|
| const String status_line(pa_strdup(preview_buf, EOLat-preview_buf)); |
|
| ArrayString astatus; |
|
| size_t pos_after=0; |
|
| status_line.split(astatus, pos_after, " "); |
|
| const String& status_code=*astatus.get(astatus.count()>1?1:0); |
|
| result=status_code.as_int(); |
|
| |
|
| if(fail_on_status_ne_200 && result!=200) |
|
| throw Exception("http.status", |
|
| &status_code, |
|
| "invalid HTTP response status"); |
|
| } |
} |
| // detecting response_size |
|
| { |
bool read(int sock, size_t size){ |
| if(size_t content_length=guess_content_length(preview_buf)) |
if(length + size > buf_size) |
| response_size=preview_size+content_length; // a little more than needed, will adjust response_size by actual received size later |
resize(buf_size * 2 + size); |
| |
ssize_t received_size=recv(sock, buf + length, size, 0); |
| |
if(received_size == 0) |
| |
return false; |
| |
if(received_size < 0) { |
| |
if(int no = pa_socks_errno()) |
| |
throw Exception("http.timeout", 0, "error receiving response: %s (%d)", pa_socks_strerr(no), no); |
| |
return false; |
| |
} |
| |
length+=received_size; |
| |
buf[length]='\0'; |
| |
return true; |
| } |
} |
| |
|
| // [gcc is happier this way, see goto above] |
size_t first_line(){ |
| { |
char *header=strchr(buf, '\n'); |
| // allocating initial buf |
if(!header) |
| response=(char*)pa_malloc_atomic(response_size+1/*terminator*/); // just setting memory block type |
return false; |
| char* ptr=response; |
|
| size_t todo_size=response_size; |
return header-buf; |
| // coping part of already received body |
} |
| memcpy(ptr, preview_buf, received_size); |
|
| ptr+=received_size; |
const char *status_code(char *status_line, int &result){ |
| todo_size-=received_size; |
char* status_start = strchr(status_line, ' '); |
| |
|
| // we use terminator byte for two purposes here: |
if(!(status_start++)) |
| // 1. we return there zero always, not knowing: maybe they would want to create String form $file.body? |
return status_line; |
| // invariant: all Strings should have zero-terminated buffers |
|
| // 2. we use that out-of-size byte to detect if our content-length guess was wrong |
char* status_end=strchr(status_start, ' '); |
| // when recv gets more than we expected |
|
| // a) we know that the content-length guess was wrong |
if(!status_end) |
| // b) we have space to put the first byte of extra data |
return status_line; |
| // c) we use less code to detect normal situation: on last while-cycle recv expected to just return 0 |
|
| while(true) { |
if(status_end==status_start) |
| received_size=recv(sock, ptr, todo_size+1/*there is always a place for terminator*/, 0); |
return status_line; |
| if(received_size==0) { |
|
| response_size-=todo_size; // in case we received less than expected, cut down the reported size |
const char *result_str=pa_strdup(status_start, status_end-status_start); |
| |
ALTER_EXCEPTION_COMMENT(result=pa_atoui(result_str), " for HTTP status"); |
| |
return result_str; |
| |
} |
| |
|
| |
bool body_start(){ |
| |
char *p=buf; |
| |
while((p=strchr(p, '\n'))) { |
| |
if(p[1]=='\r' && p[2]=='\n'){ // \r\n\r\n |
| |
*p='\0'; |
| |
body_offset=p-buf+3; |
| |
return true; |
| |
} |
| |
if(p[1]=='\n') { // \n\n |
| |
*p='\0'; |
| |
body_offset=p-buf+2; |
| |
return true; |
| |
} |
| |
p++; |
| |
} |
| |
return false; |
| |
} |
| |
|
| |
void parse_headers(){ |
| |
const String header_block(buf, String::L_TAINTED); |
| |
|
| |
ArrayString aheaders; |
| |
header_block.split(aheaders, 0, "\n"); |
| |
|
| |
Array_iterator<const String*> i(aheaders); |
| |
i.next(); // skipping status |
| |
for(;i.has_next();){ |
| |
const char *line=i.next()->cstr(); |
| |
if(!headers.add_header(line)) |
| |
throw Exception("http.response", 0, "bad response from host - bad header \"%s\"", line); |
| |
} |
| |
} |
| |
|
| |
int read_response(int sock, bool fail_on_status_ne_200); |
| |
}; |
| |
|
| |
enum HTTP_response_state { |
| |
HTTP_STATUS_CODE, |
| |
HTTP_HEADERS, |
| |
HTTP_BODY |
| |
}; |
| |
|
| |
int HTTP_response::read_response(int sock, bool fail_on_status_ne_200) { |
| |
HTTP_response_state state=HTTP_STATUS_CODE; |
| |
int result=0; |
| |
|
| |
size_t chunk_size=0x400*16; |
| |
resize(2*chunk_size); |
| |
|
| |
while(read(sock, chunk_size)){ |
| |
switch(state){ |
| |
case HTTP_STATUS_CODE: { |
| |
size_t status_size=first_line(); |
| |
if(!status_size) |
| |
break; |
| |
|
| |
const char *status=status_code(pa_strdup(buf, status_size), result); |
| |
|
| |
if(!result || fail_on_status_ne_200 && result!=200) |
| |
throw Exception("http.status", status ? new String(status) : &String::Empty, "invalid HTTP response status"); |
| |
|
| |
state=HTTP_HEADERS; |
| |
} |
| |
|
| |
case HTTP_HEADERS: { |
| |
if(!body_start()) |
| |
break; |
| |
|
| |
parse_headers(); |
| |
|
| |
size_t content_length=check_file_size(headers.content_length, 0); |
| |
if(content_length>0 && (content_length + body_offset) > length){ |
| |
resize(content_length + body_offset + 0x400*64); |
| |
} |
| |
|
| |
state=HTTP_BODY; |
| break; |
break; |
| } |
} |
| if(received_size<0) { |
|
| if(int no=pa_socks_errno()) |
case HTTP_BODY: { |
| throw Exception("http.timeout", |
chunk_size=0x400*64; |
| 0, |
|
| "error receiving response body: %s (%d)", pa_socks_strerr(no), no); |
|
| break; |
break; |
| } |
} |
| // they've touched the terminator? |
|
| if((size_t)received_size>todo_size) |
|
| { |
|
| // that means that our guessed response_size was not big enough |
|
| const size_t grow_chunk_size=0x400*0x400; // 1M |
|
| response_size+=grow_chunk_size; |
|
| size_t ptr_offset=ptr-response; |
|
| response=(char*)pa_realloc(response, response_size+1/*terminator*/); |
|
| ptr=response+ptr_offset; |
|
| todo_size+=grow_chunk_size; |
|
| } |
|
| // can't do this before realloc: we need <todo_size check |
|
| ptr+=received_size; |
|
| todo_size-=received_size; |
|
| } |
} |
| } |
} |
| done: |
|
| if(result) |
if(state==HTTP_STATUS_CODE) |
| { |
throw Exception("http.response", 0, "bad response from host - no status found (size=%u)", length); |
| response[response_size]=0; |
|
| return result; |
if(state==HTTP_HEADERS){ |
| |
parse_headers(); |
| |
body_offset=length; |
| } |
} |
| else |
|
| throw Exception("http.response", |
return result; |
| 0, |
|
| "bad response from host - no status found (size=%u)", response_size); |
|
| } |
} |
| |
|
| /* ********************** request *************************** */ |
/* ********************** request *************************** */ |
|
Line 182 done:
|
Line 262 done:
|
| #ifdef PA_USE_ALARM |
#ifdef PA_USE_ALARM |
| static sigjmp_buf timeout_env; |
static sigjmp_buf timeout_env; |
| static void timeout_handler(int /*sig*/){ |
static void timeout_handler(int /*sig*/){ |
| siglongjmp(timeout_env, 1); |
siglongjmp(timeout_env, 1); |
| } |
} |
| |
#define ALARM(value) alarm(value) |
| |
#else |
| |
#define ALARM(value) |
| #endif |
#endif |
| |
|
| static int http_request(char*& response, size_t& response_size, |
static int http_request(HTTP_response& response, const char* host, short port, const char* request, size_t request_size, int timeout_secs, bool fail_on_status_ne_200) { |
| const char* host, short port, |
|
| const char* request, |
|
| int timeout_secs, |
|
| bool fail_on_status_ne_200) { |
|
| if(!host) |
if(!host) |
| throw Exception("http.host", |
throw Exception("http.host", 0, "zero hostname"); //never |
| 0, |
|
| "zero hostname"); //never |
|
| |
|
| volatile // to prevent makeing it register variable, because it will be clobbered by longjmp [thanks gcc warning] |
volatile int sock=-1; // to prevent makeing it register variable, because it will be clobbered by longjmp [thanks gcc warning] |
| int sock=-1; |
|
| #ifdef PA_USE_ALARM |
|
| signal(SIGALRM, timeout_handler); |
|
| #endif |
|
| #ifdef PA_USE_ALARM |
#ifdef PA_USE_ALARM |
| |
signal(SIGALRM, timeout_handler); |
| if(sigsetjmp(timeout_env, 1)) { |
if(sigsetjmp(timeout_env, 1)) { |
| // stupid gcc [2.95.4] generated bad code |
// duplicating closesocket to make code more simple for old compilers |
| // which failed to handle sigsetjmp+throw: crashed inside of pre-throw code. |
if(sock>=0) |
| // rewritten simplier [athough duplicating closesocket code] |
closesocket(sock); |
| if(sock>=0) |
throw Exception("http.timeout", 0, "timeout occurred while retrieving document"); |
| closesocket(sock); |
|
| throw Exception("http.timeout", |
|
| 0, |
|
| "timeout occured while retrieving document"); |
|
| return 0; // never |
return 0; // never |
| } else { |
} else |
| alarm(timeout_secs); |
|
| #endif |
#endif |
| |
{ |
| |
ALARM(timeout_secs); |
| try { |
try { |
| int result; |
int result; |
| struct sockaddr_in dest; |
struct sockaddr_in dest; |
| |
|
| if(!set_addr(&dest, host, port)) |
if(!set_addr(&dest, host, port)) |
| throw Exception("http.host", |
throw Exception("http.host", 0, "can not resolve hostname \"%s\"", host); |
| 0, |
|
| "can not resolve hostname \"%s\"", host); |
|
| |
|
| if((sock=socket(AF_INET, SOCK_STREAM, IPPROTO_TCP/*0*/))<0) { |
if((sock=socket(AF_INET, SOCK_STREAM, IPPROTO_TCP/*0*/))<0) { |
| int no=pa_socks_errno(); |
int no=pa_socks_errno(); |
| throw Exception("http.connect", |
throw Exception("http.connect", 0, "can not make socket: %s (%d)", pa_socks_strerr(no), no); |
| 0, |
|
| "can not make socket: %s (%d)", pa_socks_strerr(no), no); |
|
| } |
} |
| |
|
| // To enable SO_DONTLINGER (that is, disable SO_LINGER) |
// To enable SO_DONTLINGER (that is, disable SO_LINGER) |
|
Line 247 static int http_request(char*& response,
|
Line 315 static int http_request(char*& response,
|
| |
|
| if(connect(sock, (struct sockaddr *)&dest, sizeof(dest))) { |
if(connect(sock, (struct sockaddr *)&dest, sizeof(dest))) { |
| int no=pa_socks_errno(); |
int no=pa_socks_errno(); |
| throw Exception("http.connect", |
throw Exception("http.connect", 0, "can not connect to host \"%s\": %s (%d)", host, pa_socks_strerr(no), no); |
| 0, |
|
| "can not connect to host \"%s\": %s (%d)", host, pa_socks_strerr(no), no); |
|
| } |
} |
| size_t request_size=strlen(request); |
|
| if(send(sock, request, request_size, 0)!=(ssize_t)request_size) { |
if(send(sock, request, request_size, 0)!=(ssize_t)request_size) { |
| int no=pa_socks_errno(); |
int no=pa_socks_errno(); |
| throw Exception("http.timeout", |
throw Exception("http.timeout", 0, "error sending request: %s (%d)", pa_socks_strerr(no), no); |
| 0, |
|
| "error sending request: %s (%d)", pa_socks_strerr(no), no); |
|
| } |
} |
| |
|
| result=http_read_response(response, response_size, sock, fail_on_status_ne_200); |
result=response.read_response(sock, fail_on_status_ne_200); |
| closesocket(sock); |
closesocket(sock); |
| #ifdef PA_USE_ALARM |
ALARM(0); |
| alarm(0); |
|
| #endif |
|
| return result; |
return result; |
| } catch(...) { |
} catch(...) { |
| #ifdef PA_USE_ALARM |
ALARM(0); |
| alarm(0); |
if(sock>=0) |
| #endif |
closesocket(sock); |
| if(sock>=0) |
|
| closesocket(sock); |
|
| rethrow; |
rethrow; |
| } |
} |
| #ifdef PA_USE_ALARM |
|
| } |
} |
| #endif |
|
| } |
} |
| |
|
| #ifndef DOXYGEN |
#ifndef DOXYGEN |
| struct Http_pass_header_info { |
struct Http_pass_header_info { |
| Request_charsets* charsets; |
Request_charsets* charsets; |
| String* request; |
String* request; |
| bool user_agent_specified; |
bool* user_agent_specified; |
| |
bool* content_type_specified; |
| |
bool* content_type_url_encoded; |
| }; |
}; |
| #endif |
#endif |
| static void http_pass_header(HashStringValue::key_type key, |
|
| HashStringValue::value_type value, |
char *pa_http_safe_header_name(const char *name) { |
| Http_pass_header_info *info) { |
char *result=pa_strdup(name); |
| *info->request <<key<<": " |
char *n=result; |
| << attributed_meaning_to_string(*value, String::L_HTTP_HEADER, false) |
if(!pa_isalpha((unsigned char)*n)) |
| << CRLF; |
*n++ = '_'; |
| |
for(; *n; ++n) { |
| if(String(key, String::L_TAINTED).change_case(info->charsets->source(), String::CC_UPPER)=="USER-AGENT") |
if (!pa_isalnum((unsigned char)*n) && *n != '-' && *n != '_') |
| info->user_agent_specified=true; |
*n = '_'; |
| |
} |
| |
return result; |
| } |
} |
| |
|
| |
static void http_pass_header(HashStringValue::key_type aname, HashStringValue::value_type avalue, Http_pass_header_info *info) { |
| |
|
| static Charset* detect_charset(Charset& source_charset, const String& content_type_value) { |
const char* name_cstr=aname.cstr(); |
| const String::Body CONTENT_TYPE_VALUE= |
|
| content_type_value.change_case(source_charset, String::CC_UPPER); |
if(strcasecmp(name_cstr, HTTP_CONTENT_LENGTH)==0) |
| // content-type: xxx/xxx; source_charset=WE-NEED-THIS |
return; |
| // content-type: xxx/xxx; source_charset="WE-NEED-THIS" |
|
| // content-type: xxx/xxx; source_charset="WE-NEED-THIS"; |
String name=String(pa_http_safe_header_name(capitalize(name_cstr)), String::L_AS_IS); |
| size_t before_charseteq_pos=CONTENT_TYPE_VALUE.pos("CHARSET="); |
String value=attributed_meaning_to_string(*avalue, String::L_HTTP_HEADER, true); |
| if(before_charseteq_pos!=STRING_NOT_FOUND) { |
|
| size_t charset_begin=before_charseteq_pos+8/*CHARSET=*/; |
|
| size_t open_quote_pos=CONTENT_TYPE_VALUE.pos('"', charset_begin); |
|
| bool quoted=open_quote_pos==charset_begin; |
|
| if(quoted) |
|
| charset_begin++; // skip opening '"' |
|
| size_t charset_end=CONTENT_TYPE_VALUE.length(); |
|
| if(quoted) { |
|
| size_t close_quote_pos=CONTENT_TYPE_VALUE.pos('"', charset_begin); |
|
| if(close_quote_pos!=STRING_NOT_FOUND) |
|
| charset_end=close_quote_pos; |
|
| } else { |
|
| size_t delim_pos=CONTENT_TYPE_VALUE.pos(';', charset_begin); |
|
| if(delim_pos!=STRING_NOT_FOUND) |
|
| charset_end=delim_pos; |
|
| } |
|
| const String::Body CHARSET_NAME_BODY= |
|
| CONTENT_TYPE_VALUE.mid(charset_begin, charset_end - charset_begin); |
|
| |
|
| return &charsets.get(CHARSET_NAME_BODY); |
*info->request << name << ": " << value << CRLF; |
| |
|
| |
if(strcasecmp(name_cstr, HTTP_USER_AGENT)==0) |
| |
*info->user_agent_specified=true; |
| |
if(strcasecmp(name_cstr, HTTP_CONTENT_TYPE)==0){ |
| |
*info->content_type_specified=true; |
| |
*info->content_type_url_encoded=pa_strncasecmp(value.cstr(), HTTP_CONTENT_TYPE_FORM_URLENCODED)==0; |
| } |
} |
| |
} |
| |
|
| |
static void http_pass_cookie(HashStringValue::key_type name, |
| |
HashStringValue::value_type value, |
| |
Http_pass_header_info *info) { |
| |
|
| |
*info->request << String(name, String::L_HTTP_COOKIE) << "=" |
| |
<< attributed_meaning_to_string(*value, String::L_HTTP_COOKIE, true) |
| |
<< "; "; |
| |
|
| return 0; |
|
| } |
} |
| |
|
| static const String* basic_authorization_field(const char* user, const char* pass) { |
static const String* basic_authorization_field(const char* user, const char* pass) { |
|
Line 340 static const String* basic_authorization
|
Line 399 static const String* basic_authorization
|
| if(pass) |
if(pass) |
| combined<<pass; |
combined<<pass; |
| |
|
| String* result=new String("Basic "); *result<<pa_base64_encode(combined.cstr(), combined.length()); |
String* result=new String("Basic "); |
| |
*result<<pa_base64_encode(combined.cstr(), combined.length(), Base64Options(false /*no wrap*/)); |
| return result; |
return result; |
| } |
} |
| |
|
| static void form_string_value2string( |
static void form_string_value2string(HashStringValue::key_type key, const String& value, String& result) { |
| HashStringValue::key_type key, |
result << String(key, String::L_URI) << "=" << String(value, String::L_URI) << "&"; |
| const String& value, |
|
| String& result) |
|
| { |
|
| result << String(key, String::L_URI) << "="; |
|
| result.append(value, String::L_URI, true); |
|
| result<< "&"; |
|
| } |
} |
| |
|
| #ifndef DOXYGEN |
#ifndef DOXYGEN |
| struct Form_table_value2string_info { |
struct Form_table_value2string_info { |
| HashStringValue::key_type key; |
HashStringValue::key_type key; |
|
Line 365 struct Form_table_value2string_info {
|
Line 420 struct Form_table_value2string_info {
|
| static void form_table_value2string(Table::element_type row, Form_table_value2string_info* info) { |
static void form_table_value2string(Table::element_type row, Form_table_value2string_info* info) { |
| form_string_value2string(info->key, *row->get(0), info->result); |
form_string_value2string(info->key, *row->get(0), info->result); |
| } |
} |
| static void form_value2string( |
|
| HashStringValue::key_type key, |
static void form_value2string(HashStringValue::key_type key, HashStringValue::value_type value, String* result) { |
| HashStringValue::value_type value, |
|
| String* result) |
|
| { |
|
| if(const String* svalue=value->get_string()) |
if(const String* svalue=value->get_string()) |
| form_string_value2string(key, *svalue, *result); |
form_string_value2string(key, *svalue, *result); |
| else if(Table* tvalue=value->get_table()) { |
else if(Table* tvalue=value->get_table()) { |
| Form_table_value2string_info info(key, *result); |
Form_table_value2string_info info(key, *result); |
| tvalue->for_each(form_table_value2string, &info); |
tvalue->for_each(form_table_value2string, &info); |
| } else |
} else |
| throw Exception(0, |
throw Exception(PARSER_RUNTIME, new String(key, String::L_TAINTED), |
| new String(key, String::L_TAINTED), |
"is %s, " HTTP_FORM_NAME " option value can be string or table only (file is allowed for $." HTTP_METHOD_NAME "[POST] + $." HTTP_FORM_ENCTYPE_NAME "[" HTTP_CONTENT_TYPE_MULTIPART_FORMDATA "])", value->type()); |
| "is %s, "HTTP_FORM_NAME" option value must either string or table", value->type()); |
|
| } |
} |
| |
|
| const char* pa_form2string(HashStringValue& form, Request_charsets& charsets) { |
const char* pa_form2string(HashStringValue& form, Request_charsets& charsets) { |
| String string; |
String string; |
| form.for_each<String*>(form_value2string, &string); |
form.for_each<String*>(form_value2string, &string); |
| return string.cstr(String::L_UNSPECIFIED, 0, &charsets); |
return string.untaint_and_transcode_cstr(String::L_URI, &charsets); |
| } |
} |
| static void find_headers_end(char* p, |
|
| char*& headers_end_at, |
struct FormPart { |
| char*& raw_body) |
Request* r; |
| { |
const char* boundary; |
| raw_body=p; |
String* string; |
| // \n\n |
Form_table_value2string_info* info; |
| // \r\n\r\n |
|
| while((p=strchr(p, '\n'))) { |
struct BinaryBlock{ |
| headers_end_at=++p; // \n>.< |
const char* ptr; |
| if(*p=='\r') // \r\n>\r?<\n |
size_t length; |
| p++; |
|
| if(*p=='\n') { // \r\n\r>\n?< |
BinaryBlock(String* astring, Request* r): ptr(astring->untaint_and_transcode_cstr(String::L_AS_IS, &r->charsets)), length(strlen(ptr)){} |
| raw_body=p+1; |
BinaryBlock(const char* aptr, size_t alength): ptr(aptr), length(alength){} |
| return; |
}; |
| |
|
| |
Array<BinaryBlock> blocks; |
| |
|
| |
FormPart(Request* ar, const char* aboundary): r(ar), boundary(aboundary), string(new String()){} |
| |
|
| |
const char *post(size_t &length){ |
| |
if(blocks.count()){ |
| |
blocks+=BinaryBlock(string, r); |
| |
|
| |
length=0; |
| |
for(size_t i=0; i<blocks.count(); i++) |
| |
length+=blocks[i].length; |
| |
|
| |
char *result=(char *)pa_malloc_atomic(length); |
| |
char *ptr=result; |
| |
|
| |
for(size_t i=0; i<blocks.count(); i++){ |
| |
memcpy(ptr, blocks[i].ptr, blocks[i].length); |
| |
ptr+=blocks[i].length; |
| |
} |
| |
|
| |
return result; |
| |
} else { |
| |
BinaryBlock result(string, r); |
| |
length=result.length; |
| |
return result.ptr; |
| } |
} |
| } |
} |
| headers_end_at=0; |
}; |
| |
|
| |
static void form_part_boundary_header(FormPart& part, String::Body name, const char* file_name=0) { |
| |
*part.string << "--" << part.boundary << CRLF CONTENT_DISPOSITION_CAPITALIZED ": form-data; name=\"" << name << "\""; |
| |
if(file_name){ |
| |
if(strcmp(file_name, NONAME_DAT)!=0) |
| |
*part.string << "; filename=\"" << file_name << "\""; |
| |
*part.string << CRLF HTTP_CONTENT_TYPE_CAPITALIZED ": " << part.r->mime_type_of(file_name); |
| |
} |
| |
*part.string << CRLF CRLF; |
| |
} |
| |
|
| |
static void form_string_value2part(HashStringValue::key_type key, const String& value, FormPart& part) { |
| |
form_part_boundary_header(part, key); |
| |
*part.string << value << CRLF; |
| |
} |
| |
|
| |
static void form_file_value2part(HashStringValue::key_type key, VFile& vfile, FormPart& part) { |
| |
form_part_boundary_header(part, key, vfile.fields().get(name_name)->as_string().cstr()); |
| |
part.blocks+=FormPart::BinaryBlock(part.string, part.r); |
| |
part.blocks+=FormPart::BinaryBlock(vfile.value_ptr(), vfile.value_size()); |
| |
part.string=new String(); |
| |
*part.string << CRLF; |
| |
} |
| |
|
| |
static void form_table_value2part(Table::element_type row, FormPart* part) { |
| |
form_string_value2part(part->info->key, *row->get(0), *part); |
| |
} |
| |
|
| |
static void form_value2part(HashStringValue::key_type key, HashStringValue::value_type value, FormPart& part) { |
| |
if(const String* svalue=value->get_string()) |
| |
form_string_value2part(key, *svalue, part); |
| |
else if(Table* tvalue=value->get_table()) { |
| |
Form_table_value2string_info info(key, *part.string); |
| |
part.info = &info; |
| |
tvalue->for_each(form_table_value2part, &part); |
| |
} else if(VFile* vfile=static_cast<VFile *>(value->as("file"))){ |
| |
form_file_value2part(key, *vfile, part); |
| |
} else |
| |
throw Exception(PARSER_RUNTIME, new String(key, String::L_TAINTED), "is %s, " HTTP_FORM_NAME " option value can be string, table or file only", value->type()); |
| |
} |
| |
|
| |
const char* pa_form2string_multipart(HashStringValue& form, Request& r, const char* boundary, size_t& post_size){ |
| |
FormPart formpart(&r, boundary); |
| |
form.for_each<FormPart&>(form_value2part, formpart); |
| |
*formpart.string << "--" << boundary << "--"; |
| |
// @todo: return binary blocks here to save memory in pa_internal_file_read_http |
| |
return formpart.post(post_size); |
| |
} |
| |
|
| |
// Set-Cookie: name=value; Domain=docs.foo.com; Path=/accounts; Expires=Wed, 13-Jan-2021 22:23:01 GMT; Secure; HttpOnly |
| |
static ArrayString* parse_cookie(Request& r, const String& cookie) { |
| |
char *current=pa_strdup(cookie.cstr()); |
| |
|
| |
const String* name=0; |
| |
const String* value=&String::Empty; |
| |
const String* expires=&String::Empty; |
| |
const String* max_age=&String::Empty; |
| |
const String* path=&String::Empty; |
| |
const String* domain=&String::Empty; |
| |
const String* httponly=&String::Empty; |
| |
const String* secure=&String::Empty; |
| |
|
| |
bool first_pair=true; |
| |
|
| |
do { |
| |
if(char *meaning=search_stop(current, ';')) |
| |
if(char *attribute=search_stop(meaning, '=')) { |
| |
const String* sname=new String(unescape_chars(attribute, strlen(attribute), &r.charsets.source(), true/*don't convert '"' to space*/), String::L_TAINTED); |
| |
const String* smeaning=0; |
| |
if(meaning) |
| |
smeaning=new String(unescape_chars(meaning, strlen(meaning), &r.charsets.source(), true/*don't convert '"' to space*/), String::L_TAINTED); |
| |
|
| |
if(first_pair) { |
| |
// name + value |
| |
name=sname; |
| |
value=smeaning; |
| |
first_pair=false; |
| |
} else { |
| |
const String& slower=sname->change_case(r.charsets.source(), String::CC_LOWER); |
| |
|
| |
if(slower == "expires") |
| |
expires=smeaning; |
| |
else if(slower == "max-age") |
| |
max_age=smeaning; |
| |
else if(slower == "domain") |
| |
domain=smeaning; |
| |
else if(slower == "path") |
| |
path=smeaning; |
| |
else if(slower == "httponly") |
| |
httponly=new String("1", String::L_CLEAN); |
| |
else if(slower == "secure") |
| |
secure=new String("1", String::L_CLEAN); |
| |
else { |
| |
// todo@ ? |
| |
} |
| |
} |
| |
} |
| |
} while(current); |
| |
|
| |
if(!name) |
| |
return 0; |
| |
|
| |
ArrayString* result=new ArrayString(8); |
| |
*result+=name; |
| |
*result+=value; |
| |
*result+=expires; |
| |
*result+=max_age; |
| |
*result+=domain; |
| |
*result+=path; |
| |
*result+=httponly; |
| |
*result+=secure; |
| |
|
| |
return result; |
| |
} |
| |
|
| |
Table* parse_cookies(Request& r, Table *cookies){ |
| |
Table& result=*new Table(new Cookies_table_template_columns); |
| |
|
| |
for(Array_iterator<Table::element_type> i(*cookies); i.has_next(); ) |
| |
if(ArrayString* row=parse_cookie(r, *i.next()->get(0))) |
| |
result+=row; |
| |
|
| |
return &result; |
| |
} |
| |
|
| |
void tables_update(HashStringValue& tables, const String::Body name, const String& value){ |
| |
Table *table; |
| |
if(Value *valready=tables.get(name)) { |
| |
// second+ appearence |
| |
table=valready->get_table(); |
| |
} else { |
| |
// first appearence |
| |
Table::columns_type columns=new ArrayString(1); |
| |
*columns+=new String("value"); |
| |
table=new Table(columns); |
| |
tables.put(name, new VTable(table)); |
| |
} |
| |
// this string becomes next row |
| |
ArrayString& row=*new ArrayString(1); |
| |
row+=&value; |
| |
*table+=&row; |
| } |
} |
| |
|
| /// @todo build .cookies field. use ^file.tables.SET-COOKIES.menu{ for now |
/// @todo build .cookies field. use ^file.tables.SET-COOKIES.menu{ for now |
| File_read_http_result pa_internal_file_read_http(Request_charsets& charsets, |
File_read_http_result pa_internal_file_read_http(Request& r, const String& file_spec, bool as_text, HashStringValue *options, bool transcode_text_result) { |
| const String& file_spec, |
|
| bool as_text, |
|
| HashStringValue *options) { |
|
| File_read_http_result result; |
File_read_http_result result; |
| char host[MAX_STRING]; |
char host[MAX_STRING]; |
| |
const char *idna_host; |
| const char* uri; |
const char* uri; |
| short port; |
short port=80; |
| const char* method="GET"; bool method_is_get; |
const char* method="GET"; |
| |
bool method_is_get=true; |
| HashStringValue* form=0; |
HashStringValue* form=0; |
| const char* body_cstr=0; |
|
| int timeout_secs=2; |
int timeout_secs=2; |
| bool fail_on_status_ne_200=true; |
bool fail_on_status_ne_200=true; |
| |
bool omit_post_charset=false; |
| Value* vheaders=0; |
Value* vheaders=0; |
| Charset *asked_remote_charset=0; |
Value* vcookies=0; |
| |
Value* vbody=0; |
| |
Charset* asked_remote_charset=0; |
| |
Charset* real_remote_charset=0; |
| const char* user_cstr=0; |
const char* user_cstr=0; |
| const char* password_cstr=0; |
const char* password_cstr=0; |
| |
const char* encode=0; |
| |
bool multipart=false; |
| |
|
| if(options) { |
if(options) { |
| int valid_options=pa_get_valid_file_options_count(*options); |
int valid_options=pa_get_valid_file_options_count(*options); |
| |
|
| if(Value* vmethod=options->get(HTTP_METHOD_NAME)) { |
if(Value* vmethod=options->get(HTTP_METHOD_NAME)) { |
| valid_options++; |
valid_options++; |
| method=vmethod->as_string().cstr(); |
method=vmethod->as_string().change_case(r.charsets.source(), String::CC_UPPER).cstr(); |
| |
method_is_get=strcmp(method, "GET")==0; |
| |
} |
| |
if(Value* vencode=options->get(HTTP_FORM_ENCTYPE_NAME)) { |
| |
valid_options++; |
| |
encode=vencode->as_string().cstr(); |
| } |
} |
| if(Value* vform=options->get(HTTP_FORM_NAME)) { |
if(Value* vform=options->get(HTTP_FORM_NAME)) { |
| valid_options++; |
valid_options++; |
| form=vform->get_hash(); |
form=vform->get_hash(); |
| } |
} |
| if(Value* vbody=options->get(HTTP_BODY_NAME)) { |
if(vbody=options->get(HTTP_BODY_NAME)) { |
| valid_options++; |
valid_options++; |
| body_cstr=vbody->as_string().cstr(String::L_UNSPECIFIED); |
|
| } |
} |
| if(Value* vtimeout=options->get(HTTP_TIMEOUT_NAME)) { |
if(Value* vtimeout=options->get(HTTP_TIMEOUT_NAME)) { |
| valid_options++; |
valid_options++; |
| timeout_secs=vtimeout->as_int(); |
timeout_secs=vtimeout->as_int(); |
| } |
} |
| if((vheaders=options->get(HTTP_HEADERS_NAME))) { |
if(vheaders=options->get(HTTP_HEADERS_NAME)) { |
| |
valid_options++; |
| |
} |
| |
if(vcookies=options->get(HTTP_COOKIES_NAME)) { |
| valid_options++; |
valid_options++; |
| } |
} |
| if(Value* vany_status=options->get(HTTP_ANY_STATUS_NAME)) { |
if(Value* vany_status=options->get(HTTP_ANY_STATUS_NAME)) { |
| valid_options++; |
valid_options++; |
| fail_on_status_ne_200=!vany_status->as_bool(); |
fail_on_status_ne_200=!vany_status->as_bool(); |
| } |
} |
| |
if(Value* vomit_post_charset=options->get(HTTP_OMIT_POST_CHARSET_NAME)){ |
| |
valid_options++; |
| |
omit_post_charset=vomit_post_charset->as_bool(); |
| |
} |
| if(Value* vcharset_name=options->get(PA_CHARSET_NAME)) { |
if(Value* vcharset_name=options->get(PA_CHARSET_NAME)) { |
| // valid_options++; |
asked_remote_charset=&pa_charsets.get(vcharset_name->as_string()); |
| asked_remote_charset=&::charsets.get(vcharset_name->as_string(). |
} |
| change_case(charsets.source(), String::CC_UPPER)); |
if(Value* vresponse_charset_name=options->get(PA_RESPONSE_CHARSET_NAME)) { |
| |
valid_options++; |
| |
real_remote_charset=&pa_charsets.get(vresponse_charset_name->as_string()); |
| } |
} |
| if(Value* vuser=options->get(HTTP_USER)) { |
if(Value* vuser=options->get(HTTP_USER)) { |
| valid_options++; |
valid_options++; |
|
Line 464 File_read_http_result pa_internal_file_r
|
Line 700 File_read_http_result pa_internal_file_r
|
| } |
} |
| |
|
| if(valid_options!=options->count()) |
if(valid_options!=options->count()) |
| throw Exception(PARSER_RUNTIME, |
throw Exception(PARSER_RUNTIME, 0, CALLED_WITH_INVALID_OPTION); |
| 0, |
|
| "invalid option passed"); |
|
| } |
} |
| if(!asked_remote_charset) // defaulting to $request:charset |
if(!asked_remote_charset) // defaulting to $request:charset |
| asked_remote_charset=&charsets.source(); |
asked_remote_charset=&(r.charsets).source(); |
| |
|
| |
if(encode){ |
| |
if(method_is_get) |
| |
throw Exception(PARSER_RUNTIME, 0, "you can not use $." HTTP_FORM_ENCTYPE_NAME " option with method GET"); |
| |
|
| method_is_get=strcmp(method, "GET")==0; |
multipart=strcasecmp(encode, HTTP_CONTENT_TYPE_MULTIPART_FORMDATA)==0; |
| if(method_is_get && body_cstr) |
|
| throw Exception(PARSER_RUNTIME, |
if(!multipart && strcasecmp(encode, HTTP_CONTENT_TYPE_FORM_URLENCODED)!=0) |
| 0, |
throw Exception(PARSER_RUNTIME, 0, "$." HTTP_FORM_ENCTYPE_NAME " option value can be " HTTP_CONTENT_TYPE_FORM_URLENCODED " or " HTTP_CONTENT_TYPE_MULTIPART_FORMDATA " only"); |
| "you can not use $."HTTP_BODY_NAME" option with method GET"); |
} |
| |
|
| |
if(vbody){ |
| |
if(method_is_get) |
| |
throw Exception(PARSER_RUNTIME, 0, "you can not use $." HTTP_BODY_NAME " option with method GET"); |
| |
|
| |
if(form) |
| |
throw Exception(PARSER_RUNTIME, 0, "you can not use options $." HTTP_BODY_NAME " and $." HTTP_FORM_NAME " together"); |
| |
} |
| |
|
| //preparing request |
//preparing request |
| String& connect_string=*new String; |
String& connect_string=*new String(file_spec); |
| // not in ^sql{... L_SQL ...} spirit, but closer to ^file::load one |
|
| connect_string.append(file_spec, String::L_URI); // tainted pieces -> URI pieces |
|
| |
|
| String request_head_and_body; |
const char* request; |
| |
size_t request_size; |
| { |
{ |
| // influence URLencoding of tainted pieces to String::L_URI lang |
// influence URLencoding of tainted pieces to String::L_URI lang |
| Temp_client_charset temp(charsets, *asked_remote_charset); |
Temp_client_charset temp(r.charsets, *asked_remote_charset); |
| |
|
| const char* connect_string_cstr=connect_string.cstr(String::L_UNSPECIFIED, 0, &charsets); |
const char* connect_string_cstr=connect_string.untaint_and_transcode_cstr(String::L_URI, &(r.charsets)); |
| |
|
| const char* current=connect_string_cstr; |
const char* current=connect_string_cstr; |
| if(strncmp(current, "http://", 7)!=0) |
if(strncmp(current, "http://", 7)!=0) |
| throw Exception(0, |
throw Exception(PARSER_RUNTIME, &connect_string, "does not start with http://"); //never |
| &connect_string, |
|
| "does not start with http://"); //never |
|
| current+=7; |
current+=7; |
| |
|
| strncpy(host, current, sizeof(host)-1); host[sizeof(host)-1]=0; |
strncpy(host, current, sizeof(host)-1); host[sizeof(host)-1]=0; |
| char* host_uri=lsplit(host, '/'); |
char* host_uri=lsplit(host, '/'); |
| uri=host_uri?current+(host_uri-1-host):"/"; |
uri=host_uri?current+(host_uri-1-host):"/"; |
| char* port_cstr=lsplit(host, ':'); |
char* port_cstr=lsplit(host, ':'); |
| char* error_pos=0; |
|
| port=port_cstr?(short)strtol(port_cstr, &error_pos, 0):80; |
if (port_cstr){ |
| |
char* error_pos=0; |
| |
port=(short)strtol(port_cstr, &error_pos, 10); |
| |
if(port==0 || *error_pos) |
| |
throw Exception(PARSER_RUNTIME, &connect_string, "invalid port number '%s'", port_cstr); |
| |
} |
| |
|
| bool uri_has_query_string=strchr(uri, '?')!=0; |
idna_host=pa_idna_encode(host, r.charsets.source()); |
| |
|
| //making request head |
// making request head |
| String head; |
String head; |
| head << method; |
head << method << " " << uri; |
| head << " " << uri; |
if(method_is_get && form) |
| if(form) |
head << (strchr(uri, '?')!=0?"&":"?") << pa_form2string(*form, r.charsets); |
| if(method_is_get) |
|
| head << (uri_has_query_string?"&":"?") << pa_form2string(*form, charsets); |
head <<" HTTP/1.0" CRLF "Host: "<< idna_host; |
| head <<" HTTP/1.0" CRLF |
if (port != 80) |
| "host: "<< host << CRLF; |
head << ":" << port_cstr; |
| if(form && !method_is_get) { |
head << CRLF; |
| head << "content-type: application/x-www-form-urlencoded" CRLF; |
|
| body_cstr = pa_form2string(*form, charsets); |
|
| } |
|
| |
|
| // http://www.ietf.org/rfc/rfc2617.txt |
char* boundary= multipart ? get_uuid_boundary() : 0; |
| if(const String* authorization_field_value=basic_authorization_field(user_cstr, password_cstr)) |
|
| head<<"authorization: "<<*authorization_field_value<<CRLF; |
|
| |
|
| |
String user_headers; |
| bool user_agent_specified=false; |
bool user_agent_specified=false; |
| |
bool content_type_specified=false; |
| |
bool content_type_url_encoded=false; |
| if(vheaders && !vheaders->is_string()) { // allow empty |
if(vheaders && !vheaders->is_string()) { // allow empty |
| if(HashStringValue *headers=vheaders->get_hash()) { |
if(HashStringValue *headers=vheaders->get_hash()) { |
| Http_pass_header_info info={&charsets, &head, false}; |
Http_pass_header_info info={ |
| |
&(r.charsets), |
| |
&user_headers, |
| |
&user_agent_specified, |
| |
&content_type_specified, |
| |
&content_type_url_encoded}; |
| headers->for_each<Http_pass_header_info*>(http_pass_header, &info); |
headers->for_each<Http_pass_header_info*>(http_pass_header, &info); |
| user_agent_specified=info.user_agent_specified; |
|
| } else |
} else |
| throw Exception(PARSER_RUNTIME, |
throw Exception(PARSER_RUNTIME, 0, "headers param must be hash"); |
| &connect_string, |
|
| "headers param must be hash"); |
|
| }; |
}; |
| if(!user_agent_specified) // defaulting |
|
| head << "user-agent: " DEFAULT_USER_AGENT CRLF; |
|
| |
|
| if(body_cstr) { |
const char* request_body=0; |
| head << "content-length: " << format(strlen(body_cstr), "%u") << CRLF; |
size_t post_size=0; |
| |
if(form && !method_is_get) { |
| |
head << "Content-Type: " << (multipart ? HTTP_CONTENT_TYPE_MULTIPART_FORMDATA : HTTP_CONTENT_TYPE_FORM_URLENCODED); |
| |
|
| |
if(!omit_post_charset) |
| |
head << "; charset=" << asked_remote_charset->NAME_CSTR(); |
| |
|
| |
if(multipart) { |
| |
head << "; boundary=" << boundary; |
| |
request_body=pa_form2string_multipart(*form, r/*charsets & mime_type needed*/, boundary, post_size/*correct post_size returned here*/); |
| |
} else { |
| |
request_body=pa_form2string(*form, r.charsets); |
| |
post_size=strlen(request_body); |
| |
} |
| |
head << CRLF; |
| |
} else if(vbody) { |
| |
// $.body was specified |
| |
if(content_type_url_encoded){ |
| |
// transcode + url-encode |
| |
request_body=vbody->as_string().untaint_and_transcode_cstr(String::L_URI, &(r.charsets)); |
| |
} else { |
| |
// content-type != application/x-www-form-urlencoded -> transcode only, don't url-encode! |
| |
const String &sbody=vbody->as_string(); |
| |
request_body=Charset::transcode(String::C(sbody.cstr(), sbody.length()), r.charsets.source(), *asked_remote_charset).str; |
| |
} |
| |
post_size=strlen(request_body); |
| } |
} |
| |
|
| const char* head_cstr=head.cstr(String::L_UNSPECIFIED, 0, &charsets); |
// http://www.ietf.org/rfc/rfc2617.txt |
| |
if(const String* authorization_field_value=basic_authorization_field(user_cstr, password_cstr)) |
| |
head << "Authorization: " << *authorization_field_value << CRLF; |
| |
|
| // head + end of header |
head << user_headers; |
| request_head_and_body << head_cstr << CRLF; |
|
| |
|
| // body |
if(!user_agent_specified) // defaulting |
| if(body_cstr) |
head << "User-Agent: " DEFAULT_USER_AGENT CRLF; |
| request_head_and_body << body_cstr; |
|
| |
if(form && !method_is_get && content_type_specified) // POST + form + content-type was specified |
| |
throw Exception(PARSER_RUNTIME, 0, "$.content-type can't be specified with method POST"); |
| |
|
| |
if(vcookies && !vcookies->is_string()){ // allow empty |
| |
if(HashStringValue* cookies=vcookies->get_hash()) { |
| |
head << "Cookie: "; |
| |
Http_pass_header_info info={&(r.charsets), &head, 0, 0, 0}; |
| |
cookies->for_each<Http_pass_header_info*>(http_pass_cookie, &info); |
| |
head << CRLF; |
| |
} else |
| |
throw Exception(PARSER_RUNTIME, 0, "cookies param must be hash"); |
| |
} |
| |
|
| |
if(request_body) |
| |
head << "Content-Length: " << format(post_size, "%u") << CRLF; |
| |
|
| |
head << CRLF; |
| |
|
| |
const char *request_head=head.untaint_and_transcode_cstr(String::L_URI, &(r.charsets)); |
| |
|
| |
if(request_body){ |
| |
size_t head_size = strlen(request_head); |
| |
request_size=post_size + head_size; |
| |
char *ptr=(char *)pa_malloc_atomic(request_size); |
| |
memcpy(ptr, request_head, head_size); |
| |
memcpy(ptr+head_size, request_body, post_size); |
| |
request=ptr; |
| |
} else { |
| |
request_size=strlen(request_head); |
| |
request=request_head; |
| |
} |
| } |
} |
| |
|
| //sending request |
|
| char* response; |
HTTP_response response; |
| size_t response_size; |
|
| int status_code=http_request(response, response_size, |
// sending request |
| host, port, request_head_and_body.cstr(), |
int status_code; |
| timeout_secs, fail_on_status_ne_200); |
ALTER_EXCEPTION_SOURCE(status_code=http_request(response, idna_host, port, request, request_size, timeout_secs, fail_on_status_ne_200), &connect_string); |
| |
|
| //processing results |
// processing results |
| char* raw_body; size_t raw_body_size; |
char* raw_body=response.buf + response.body_offset; |
| char* headers_end_at; |
size_t raw_body_size=response.length - response.body_offset; |
| find_headers_end(response, |
|
| headers_end_at, |
|
| raw_body); |
|
| raw_body_size=response_size-(raw_body-response); |
|
| |
|
| result.headers=new HashStringValue; |
result.headers=new HashStringValue; |
| VHash* vtables=new VHash; |
VHash* vtables=new VHash; |
| result.headers->put(HTTP_TABLES_NAME, vtables); |
result.headers->put("tables", vtables); |
| Charset* real_remote_charset=0; // undetected, yet |
|
| |
|
| if(headers_end_at) { |
if (!real_remote_charset && !response.headers.content_type.is_empty()) |
| *headers_end_at=0; |
real_remote_charset=detect_charset(response.headers.content_type.cstr()); |
| const String header_block(String::C(response, headers_end_at-response), true); |
|
| |
|
| ArrayString aheaders; |
|
| HashStringValue& tables=vtables->hash(); |
|
| |
|
| size_t pos_after=0; |
if(as_text) |
| header_block.split(aheaders, pos_after, "\n"); |
real_remote_charset=pa_charsets.checkBOM(raw_body, raw_body_size, real_remote_charset); |
| |
|
| //processing headers |
|
| size_t aheaders_count=aheaders.count(); |
|
| for(size_t i=1; i<aheaders_count; i++) { |
|
| const String& line=*aheaders.get(i); |
|
| size_t pos=line.pos(':'); |
|
| if(pos==STRING_NOT_FOUND || pos<1) |
|
| throw Exception("http.response", |
|
| &connect_string, |
|
| "bad response from host - bad header \"%s\"", line.cstr()); |
|
| const String::Body HEADER_NAME= |
|
| line.mid(0, pos).change_case(charsets.source(), String::CC_UPPER); |
|
| const String& header_value=line.mid(pos+1, line.length()).trim(String::TRIM_BOTH, " \t\r"); |
|
| if(as_text && HEADER_NAME=="CONTENT-TYPE") |
|
| real_remote_charset=detect_charset(charsets.source(), header_value); |
|
| |
|
| // tables |
|
| { |
|
| Value *valready=(Value *)tables.get(HEADER_NAME); |
|
| bool existed=valready!=0; |
|
| Table *table; |
|
| if(existed) { |
|
| // second+ appearence |
|
| table=valready->get_table(); |
|
| } else { |
|
| // first appearence |
|
| Table::columns_type columns =new ArrayString(1); |
|
| *columns+=new String("value"); |
|
| table=new Table(columns); |
|
| } |
|
| // this string becomes next row |
|
| ArrayString& row=*new ArrayString(1); |
|
| row+=&header_value; |
|
| *table+=&row; |
|
| // not existed before? add it |
|
| if(!existed) |
|
| tables.put(HEADER_NAME, new VTable(table)); |
|
| } |
|
| |
|
| result.headers->put(HEADER_NAME, new VString(header_value)); |
if (!real_remote_charset) |
| } |
real_remote_charset=asked_remote_charset; // never null |
| |
|
| |
for(Array_iterator<HTTP_Headers::Header> i(response.headers.headers); i.has_next(); ){ |
| |
HTTP_Headers::Header header=i.next(); |
| |
|
| |
header.transcode(*real_remote_charset, r.charsets.source()); |
| |
|
| |
String &header_value=*new String(header.value, String::L_TAINTED); |
| |
|
| |
tables_update(vtables->hash(), header.name, header_value); |
| |
result.headers->put(header.name, new VString(header_value)); |
| } |
} |
| |
|
| |
// filling $.cookies |
| |
if(vcookies=vtables->hash().get("SET-COOKIE")) |
| |
result.headers->put(HTTP_COOKIES_NAME, new VTable(parse_cookies(r, vcookies->get_table()))); |
| |
|
| // output response |
// output response |
| String::C real_body=String::C(raw_body, raw_body_size); |
String::C real_body=String::C(raw_body, raw_body_size); |
| if(as_text && raw_body_size) { // must be checked because transcode returns CONST string in case length==0, which contradicts hacking few lines below |
|
| // defaulting to used-asked charset [it's never empty!] |
if(as_text && transcode_text_result && raw_body_size) { // raw_body_size must be checked because transcode returns CONST string in case length==0, which contradicts hacking few lines below |
| if(!real_remote_charset) |
real_body=Charset::transcode(real_body, *real_remote_charset, r.charsets.source()); |
| real_remote_charset=asked_remote_charset; |
|
| real_body=Charset::transcode(real_body, *real_remote_charset, charsets.source()); |
|
| } |
} |
| |
|
| result.str=const_cast<char *>(real_body.str); // hacking a little |
result.str=const_cast<char *>(real_body.str); // hacking a little |
| result.length=real_body.length; |
result.length=real_body.length; |
| |
|
| |
if(as_text && result.length) |
| |
fix_line_breaks(result.str, result.length); |
| |
|
| result.headers->put(file_status_name, new VInt(status_code)); |
result.headers->put(file_status_name, new VInt(status_code)); |
| |
|
| return result; |
return result; |
| } |
} |
| |
|
| |
/* ********************** httpd *************************** */ |
| |
|
| |
#ifdef HTTPD_DEBUG |
| |
void pa_log(const char* fmt, ...); |
| |
#define LOG(action) action |
| |
#else |
| |
#define LOG(action) |
| |
#endif |
| |
|
| |
enum EscapeState { |
| |
Initial, |
| |
Default, |
| |
EscapeFirst, |
| |
EscapeSecond |
| |
}; |
| |
|
| |
static bool check_uri(const char *uri){ |
| |
EscapeState state=Initial; |
| |
uint escapedValue; |
| |
|
| |
const char *pattern="/../"; |
| |
const char *pos=pattern; |
| |
|
| |
while(*uri){ |
| |
uchar c=(uchar)*(uri++); |
| |
switch(state) { |
| |
case Initial: |
| |
if(c!='/') |
| |
return false; |
| |
state=Default; |
| |
break; |
| |
case Default: |
| |
if(c=='%'){ |
| |
state=EscapeFirst; |
| |
continue; |
| |
} |
| |
if(c=='?') |
| |
return true; |
| |
break; |
| |
case EscapeFirst: |
| |
if(isxdigit(c)){ |
| |
state=EscapeSecond; |
| |
escapedValue=hex_value[c] << 4; |
| |
continue; |
| |
} |
| |
return false; |
| |
case EscapeSecond: |
| |
if(isxdigit(c)){ |
| |
state=Default; |
| |
c=(uchar)(escapedValue + hex_value[c]); |
| |
|
| |
// implementing Apache AllowEncodedSlashes Off just in case |
| |
if(c=='/' || c=='\\') |
| |
return false; |
| |
|
| |
break; |
| |
} |
| |
return false; |
| |
} |
| |
|
| |
if(c==*pos || c=='\\' && *pos=='/'){ |
| |
if(!*(++pos)) |
| |
return false; |
| |
} else { |
| |
pos=pattern; |
| |
} |
| |
} |
| |
return true; |
| |
} |
| |
|
| |
class HTTPD_request : public HTTP_response { |
| |
public: |
| |
const char *method; |
| |
const char *uri; |
| |
|
| |
HTTPD_request() : HTTP_response(), method(NULL), uri(NULL){}; |
| |
|
| |
ssize_t pa_recv(int sockfd, char *buf, size_t len); |
| |
|
| |
bool read(int sock, size_t size){ |
| |
if(length + size > buf_size) |
| |
resize(buf_size * 2 + size); |
| |
ssize_t received_size=pa_recv(sock, buf + length, size); |
| |
if(received_size == 0) |
| |
return false; |
| |
if(received_size < 0) { |
| |
if(int no = pa_socks_errno()) |
| |
throw Exception("httpd.read", 0, "error receiving request: %s (%d)", pa_socks_strerr(no), no); |
| |
return false; |
| |
} |
| |
length+=received_size; |
| |
buf[length]='\0'; |
| |
return true; |
| |
} |
| |
|
| |
const char *extract_method(char *method_line){ |
| |
char* uri_start = strchr(method_line, ' '); |
| |
|
| |
if(!uri_start || uri_start == method_line) |
| |
return NULL; |
| |
|
| |
char* uri_end=strchr(uri_start+1, ' '); |
| |
|
| |
if(!uri_end || uri_end == uri_start+1) |
| |
return NULL; |
| |
|
| |
uri=pa_strdup(uri_start+1, uri_end-uri_start-1); |
| |
if(!check_uri(uri)) |
| |
throw Exception("httpd.request", 0, "invalid uri '%s'", uri); |
| |
|
| |
return str_upper(method_line, uri_start-method_line); |
| |
} |
| |
|
| |
|
| |
bool read_header(int); |
| |
size_t read_post(int, char *, size_t); |
| |
}; |
| |
|
| |
enum HTTPD_request_state { |
| |
HTTPD_METHOD, |
| |
HTTPD_HEADERS |
| |
}; |
| |
|
| |
ssize_t HTTPD_request::pa_recv(int sockfd, char *buffer, size_t len){ |
| |
LOG(pa_log("httpd [%d] recv %d appending to %d ...", sockfd, len, length)); |
| |
if(HTTPD_Server::mode == HTTPD_Server::MULTITHREADED){ |
| |
ssize_t result=recv(sockfd, buffer, len, 0); |
| |
LOG(pa_log("httpd [%d] recv got %d bytes", sockfd, result)); |
| |
return result; |
| |
} |
| |
|
| |
#ifdef PA_USE_ALARM |
| |
signal(SIGALRM, timeout_handler); |
| |
if(sigsetjmp(timeout_env, 1)) { |
| |
LOG(pa_log("httpd [%d] recv got %d sec timeout", sockfd, pa_httpd_timeout)); |
| |
if(length) // timeout on "void" connection is normal |
| |
throw Exception("httpd.timeout", 0, "timeout occurred while receiving request"); |
| |
return 0; |
| |
} else |
| |
#endif |
| |
{ |
| |
ALARM(pa_httpd_timeout); |
| |
ssize_t result=recv(sockfd, buffer, len, 0); |
| |
ALARM(0); |
| |
LOG(pa_log("httpd [%d] recv got %d bytes", sockfd, result)); |
| |
LOG(pa_log("httpd [%d] %s", sockfd, buffer)); |
| |
return result; |
| |
} |
| |
} |
| |
|
| |
bool HTTPD_request::read_header(int sock) { |
| |
enum HTTPD_request_state state = HTTPD_METHOD; |
| |
|
| |
size_t chunk_size = 0x400*4; |
| |
resize(chunk_size); |
| |
|
| |
while(read(sock, chunk_size)){ |
| |
switch(state){ |
| |
case HTTPD_METHOD: { |
| |
size_t method_size = first_line(); |
| |
if(!method_size) |
| |
break; |
| |
|
| |
char *method_line = pa_strdup(buf, method_size); |
| |
method = extract_method(method_line); |
| |
|
| |
if(!method || |
| |
strcmp(method, "GET") && |
| |
strcmp(method, "HEAD") && |
| |
strcmp(method, "POST") && |
| |
strcmp(method, "PUT") && |
| |
strcmp(method, "DELETE") && |
| |
strcmp(method, "PATCH") |
| |
) |
| |
throw Exception("httpd.method", new String(method ? method : method_line), "invalid request method"); |
| |
state = HTTPD_HEADERS; |
| |
} |
| |
|
| |
case HTTPD_HEADERS: { |
| |
if(!body_start()) |
| |
break; |
| |
|
| |
parse_headers(); |
| |
return true; |
| |
} |
| |
} |
| |
} |
| |
|
| |
if(!length){ // browsers open connections in advance and they will be empty unless user requests more pages |
| |
LOG(pa_log("httpd [%d] void request", sock)); |
| |
return false; |
| |
} |
| |
|
| |
if(state == HTTPD_METHOD) |
| |
throw Exception("httpd.request", 0, "bad request from host - no method found (size=%u)", length); |
| |
|
| |
if(state == HTTPD_HEADERS){ |
| |
parse_headers(); |
| |
body_offset=length; |
| |
} |
| |
|
| |
return true; |
| |
} |
| |
|
| |
size_t HTTPD_request::read_post(int sock, char *body, size_t max_bytes) { |
| |
size_t total_read = min(length - body_offset, max_bytes); |
| |
memcpy(body, buf + body_offset, total_read); |
| |
|
| |
while (total_read < max_bytes){ |
| |
ssize_t received_size = pa_recv(sock, body + total_read, max_bytes - total_read); |
| |
if(received_size == 0) |
| |
return total_read; |
| |
if(received_size < 0) { |
| |
if(int no = pa_socks_errno()) |
| |
throw Exception("httpd.read", new String(uri), "error receiving request body: %s (%d)", pa_socks_strerr(no), no); |
| |
return total_read; |
| |
} |
| |
total_read += received_size; |
| |
} |
| |
return total_read; |
| |
} |
| |
|
| |
/* ********************************************************** */ |
| |
|
| |
Array<HTTP_Headers::Header> &HTTPD_Connection::headers() { |
| |
return request->headers.headers; |
| |
} |
| |
|
| |
const char *HTTPD_Connection::method() { |
| |
return request->method; |
| |
} |
| |
|
| |
const char *HTTPD_Connection::uri() { |
| |
return request->uri; |
| |
} |
| |
|
| |
const char *HTTPD_Connection::content_type() { |
| |
return request->headers.content_type.cstr(); |
| |
} |
| |
|
| |
uint64_t HTTPD_Connection::content_length(){ |
| |
return request->headers.content_length; |
| |
} |
| |
|
| |
bool HTTPD_Connection::read_header(){ |
| |
request = new HTTPD_request(); |
| |
bool result = request->read_header(sock); |
| |
LOG(if(result){ |
| |
pa_log("httpd [%d] got %s \"%s\"", sock, method(), uri()); |
| |
}) |
| |
return result; |
| |
} |
| |
|
| |
size_t HTTPD_Connection::read_post(char *body, size_t max_bytes) { |
| |
return request->read_post(sock, body, max_bytes); |
| |
} |
| |
|
| |
size_t HTTPD_Connection::send_body(const void *buf, size_t size) { |
| |
LOG(pa_log("httpd [%d] response %d bytes", sock, size)); |
| |
LOG(pa_log("httpd [%d] %s", sock, buf)); |
| |
if(send(sock, (const char*)buf, size, 0) != (ssize_t)size) { |
| |
int no=pa_socks_errno(); |
| |
throw Exception("httpd.write", 0, "error sending response: %s (%d)", pa_socks_strerr(no), no); |
| |
} |
| |
return size; |
| |
} |
| |
|
| |
HTTPD_Connection::~HTTPD_Connection(){ |
| |
if(sock != -1){ |
| |
LOG(pa_log("httpd [%d] closed", sock)); |
| |
closesocket(sock); |
| |
} |
| |
} |
| |
|
| |
static int sock_ready(int fd,int operation,int timeout_value){ |
| |
struct timeval timeout = {0, timeout_value * 1000}; |
| |
fd_set fds; |
| |
FD_ZERO(&fds); |
| |
FD_SET(fd, &fds); |
| |
switch (operation){ |
| |
case 0: return select(fd + 1, &fds, NULL, NULL, &timeout)>0; /* read */ |
| |
case 1: return select(fd + 1, NULL, &fds, NULL, &timeout)>0; /* write */ |
| |
default: return select(fd + 1, &fds, &fds, NULL, &timeout)>0; /* both */ |
| |
} |
| |
} |
| |
|
| |
bool HTTPD_Connection::accept(int server_sock, int timeout_value) { |
| |
int ready = sock_ready(server_sock, 0, timeout_value); |
| |
if (ready < 0) { |
| |
int no=pa_socks_errno(); |
| |
if(no == EINTR) |
| |
return false; |
| |
throw Exception("httpd.accept", 0, "error waiting for connection: %s (%d)", pa_socks_strerr(no), no); |
| |
} |
| |
if (ready == 0) |
| |
return false; /* Timeout */ |
| |
|
| |
struct sockaddr_in addr; |
| |
socklen_t sock_addr_len = sizeof(struct sockaddr_in); |
| |
memset(&addr, 0, sock_addr_len); |
| |
|
| |
sock = ::accept(server_sock, (struct sockaddr *)&addr, &sock_addr_len); |
| |
if(server_sock == -1){ |
| |
int no=pa_socks_errno(); |
| |
throw Exception("httpd.accept", 0, "error accepting connection: %s (%d)", pa_socks_strerr(no), no); |
| |
} |
| |
|
| |
remote_addr = pa_strdup(inet_ntoa(addr.sin_addr)); |
| |
LOG(pa_log("httpd [%d] accepted from %s", sock, remote_addr)); |
| |
return true; |
| |
} |
| |
|
| |
HTTPD_Server::HTTPD_MODE HTTPD_Server::mode = HTTPD_Server::SEQUENTIAL; |
| |
|
| |
void HTTPD_Server::set_mode(const String &value){ |
| |
if(value == "sequental") mode = SEQUENTIAL; |
| |
#ifdef HAVE_TLS |
| |
else if (value == "threaded") mode = MULTITHREADED; |
| |
#endif |
| |
#ifdef _MSC_VER |
| |
else throw Exception("httpd.mode", &value, "$main:HTTPD.mode must be 'sequental' or 'threaded'"); |
| |
#else |
| |
else if (value == "parallel") mode = PARALLEL; |
| |
else throw Exception("httpd.mode", &value, "$main:HTTPD.mode must be 'sequental', 'parallel' or 'threaded'"); |
| |
#endif |
| |
} |
| |
|
| |
int HTTPD_Server::bind(const char *host_port){ |
| |
struct sockaddr_in me; |
| |
|
| |
const char *port = strchr(host_port, ':'); |
| |
const char *host = NULL; |
| |
if(port && port > host_port){ |
| |
host = pa_strdup(host_port, port - host_port); |
| |
port += 1; |
| |
} else { |
| |
port = host_port; |
| |
} |
| |
|
| |
if(!set_addr(&me, host, (short)pa_atoui(port))){ |
| |
if (host) |
| |
throw Exception("httpd.bind", 0, "can not resolve hostname \"%s\"", host); |
| |
me.sin_addr.s_addr=INADDR_ANY; |
| |
} |
| |
|
| |
int sock = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP/*0*/); |
| |
|
| |
if(sock < 0){ |
| |
int no=pa_socks_errno(); |
| |
throw Exception("httpd.bind", 0, "can not make socket: %s (%d)", pa_socks_strerr(no), no); |
| |
} |
| |
|
| |
static int sock_on = 1; |
| |
|
| |
if (setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, (char *)&sock_on, sizeof(sock_on)) || |
| |
setsockopt(sock, SOL_SOCKET, SO_KEEPALIVE, (char *)&sock_on, sizeof(sock_on)) || |
| |
::bind(sock, (struct sockaddr*)&me, sizeof(me)) || |
| |
listen(sock, 16)) { |
| |
closesocket(sock); |
| |
int no = pa_socks_errno(); |
| |
throw Exception("httpd.bind", 0, "can not bind socket: %s (%d)", pa_socks_strerr(no), no); |
| |
} |
| |
return sock; |
| |
} |
![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to pa_http.C CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [parser3project] / parser3 / src / main