Context Navigation

source: lib/http_client.c @ 777461b

Last change on this file since 777461b was ca8037e, checked in by Wilmer van der Gaast <wilmer@…>, at 2013-06-09T21:17:45Z
Add better handling of HTTP/1.1 and/or keepalive connections. This should let me close #641, and more importantly, prepares the Twitter module for an upcoming API change. https://dev.twitter.com/blog/deprecating-http-1.0-streaming-api
Property mode set to `100644`
File size: 17.2 KB

Line
1	/********************************************************************\
2	* BitlBee -- An IRC to other IM-networks gateway *
3	* *
4	* Copyright 2002-2013 Wilmer van der Gaast and others *
5	\********************************************************************/
6
7	/* HTTP(S) module */
8
9	/*
10	This program is free software; you can redistribute it and/or modify
11	it under the terms of the GNU General Public License as published by
12	the Free Software Foundation; either version 2 of the License, or
13	(at your option) any later version.
14
15	This program is distributed in the hope that it will be useful,
16	but WITHOUT ANY WARRANTY; without even the implied warranty of
17	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18	GNU General Public License for more details.
19
20	You should have received a copy of the GNU General Public License with
21	the Debian GNU/Linux distribution in /usr/share/common-licenses/GPL;
22	if not, write to the Free Software Foundation, Inc., 59 Temple Place,
23	Suite 330, Boston, MA 02111-1307 USA
24	*/
25
26	#include <string.h>
27	#include <stdio.h>
28
29	#include "http_client.h"
30	#include "url.h"
31	#include "sock.h"
32
33
34	static gboolean http_connected( gpointer data, int source, b_input_condition cond );
35	static gboolean http_ssl_connected( gpointer data, int returncode, void *source, b_input_condition cond );
36	static gboolean http_incoming_data( gpointer data, int source, b_input_condition cond );
37	static void http_free( struct http_request *req );
38
39
40	struct http_request http_dorequest( char host, int port, int ssl, char *request, http_input_function func, gpointer data )
41	{
42	struct http_request *req;
43	int error = 0;
44
45	req = g_new0( struct http_request, 1 );
46
47	if( ssl )
48	{
49	req->ssl = ssl_connect( host, port, TRUE, http_ssl_connected, req );
50	if( req->ssl == NULL )
51	error = 1;
52	}
53	else
54	{
55	req->fd = proxy_connect( host, port, http_connected, req );
56	if( req->fd < 0 )
57	error = 1;
58	}
59
60	if( error )
61	{
62	http_free( req );
63	return NULL;
64	}
65
66	req->func = func;
67	req->data = data;
68	req->request = g_strdup( request );
69	req->request_length = strlen( request );
70	req->redir_ttl = 3;
71	req->content_length = -1;
72
73	if( getenv( "BITLBEE_DEBUG" ) )
74	printf( "About to send HTTP request:\n%s\n", req->request );
75
76	return req;
77	}
78
79	struct http_request http_dorequest_url( char url_string, http_input_function func, gpointer data )
80	{
81	url_t *url = g_new0( url_t, 1 );
82	char *request;
83	void *ret;
84
85	if( !url_set( url, url_string ) )
86	{
87	g_free( url );
88	return NULL;
89	}
90
91	if( url->proto != PROTO_HTTP && url->proto != PROTO_HTTPS )
92	{
93	g_free( url );
94	return NULL;
95	}
96
97	request = g_strdup_printf( "GET %s HTTP/1.0\r\n"
98	"Host: %s\r\n"
99	"User-Agent: BitlBee " BITLBEE_VERSION " " ARCH "/" CPU "\r\n"
100	"\r\n", url->file, url->host );
101
102	ret = http_dorequest( url->host, url->port,
103	url->proto == PROTO_HTTPS, request, func, data );
104
105	g_free( url );
106	g_free( request );
107	return ret;
108	}
109
110	/* This one is actually pretty simple... Might get more calls if we can't write
111	the whole request at once. */
112	static gboolean http_connected( gpointer data, int source, b_input_condition cond )
113	{
114	struct http_request *req = data;
115	int st;
116
117	if( source < 0 )
118	goto error;
119
120	if( req->inpa > 0 )
121	b_event_remove( req->inpa );
122
123	sock_make_nonblocking( req->fd );
124
125	if( req->ssl )
126	{
127	st = ssl_write( req->ssl, req->request + req->bytes_written,
128	req->request_length - req->bytes_written );
129	if( st < 0 )
130	{
131	if( ssl_errno != SSL_AGAIN )
132	{
133	ssl_disconnect( req->ssl );
134	goto error;
135	}
136	}
137	}
138	else
139	{
140	st = write( source, req->request + req->bytes_written,
141	req->request_length - req->bytes_written );
142	if( st < 0 )
143	{
144	if( !sockerr_again() )
145	{
146	closesocket( req->fd );
147	goto error;
148	}
149	}
150	}
151
152	if( st > 0 )
153	req->bytes_written += st;
154
155	if( req->bytes_written < req->request_length )
156	req->inpa = b_input_add( source,
157	req->ssl ? ssl_getdirection( req->ssl ) : B_EV_IO_WRITE,
158	http_connected, req );
159	else
160	req->inpa = b_input_add( source, B_EV_IO_READ, http_incoming_data, req );
161
162	return FALSE;
163
164	error:
165	if( req->status_string == NULL )
166	req->status_string = g_strdup( "Error while writing HTTP request" );
167
168	req->func( req );
169	http_free( req );
170	return FALSE;
171	}
172
173	static gboolean http_ssl_connected( gpointer data, int returncode, void *source, b_input_condition cond )
174	{
175	struct http_request *req = data;
176
177	if( source == NULL )
178	{
179	if( returncode != 0 )
180	{
181	char *err = ssl_verify_strerror( returncode );
182	req->status_string = g_strdup_printf(
183	"Certificate verification problem 0x%x: %s",
184	returncode, err ? err : "Unknown" );
185	g_free( err );
186	}
187	return http_connected( data, -1, cond );
188	}
189
190	req->fd = ssl_getfd( source );
191
192	return http_connected( data, req->fd, cond );
193	}
194
195	typedef enum {
196	CR_OK,
197	CR_EOF,
198	CR_ERROR,
199	CR_ABORT,
200	} http_ret_t;
201
202	static gboolean http_handle_headers( struct http_request *req );
203	static http_ret_t http_process_chunked_data( struct http_request req, const char buffer, int len );
204	static http_ret_t http_process_data( struct http_request req, const char buffer, int len );
205
206	static gboolean http_incoming_data( gpointer data, int source, b_input_condition cond )
207	{
208	struct http_request *req = data;
209	char buffer[4096];
210	int st;
211
212	if( req->inpa > 0 )
213	b_event_remove( req->inpa );
214
215	if( req->ssl )
216	{
217	st = ssl_read( req->ssl, buffer, sizeof( buffer ) );
218	if( st < 0 )
219	{
220	if( ssl_errno != SSL_AGAIN )
221	{
222	/* goto cleanup; */
223
224	/* YAY! We have to deal with crappy Microsoft
225	servers that LOVE to send invalid TLS
226	packets that abort connections! \o/ */
227
228	goto eof;
229	}
230	}
231	else if( st == 0 )
232	{
233	goto eof;
234	}
235	}
236	else
237	{
238	st = read( req->fd, buffer, sizeof( buffer ) );
239	if( st < 0 )
240	{
241	if( !sockerr_again() )
242	{
243	req->status_string = g_strdup( strerror( errno ) );
244	goto cleanup;
245	}
246	}
247	else if( st == 0 )
248	{
249	goto eof;
250	}
251	}
252
253	if( st > 0 )
254	{
255	http_ret_t c;
256
257	if( req->flags & HTTPC_CHUNKED )
258	c = http_process_chunked_data( req, buffer, st );
259	else
260	c = http_process_data( req, buffer, st );
261
262	if( c == CR_EOF )
263	goto eof;
264	else if( c == CR_ERROR \|\| c == CR_ABORT )
265	return FALSE;
266	}
267
268	if( req->content_length != -1 &&
269	req->body_size >= req->content_length )
270	goto eof;
271
272	if( ssl_pending( req->ssl ) )
273	return http_incoming_data( data, source, cond );
274
275	/* There will be more! */
276	req->inpa = b_input_add( req->fd,
277	req->ssl ? ssl_getdirection( req->ssl ) : B_EV_IO_READ,
278	http_incoming_data, req );
279
280	return FALSE;
281
282	eof:
283	req->flags \|= HTTPC_EOF;
284
285	/* Maybe if the webserver is overloaded, or when there's bad SSL
286	support... */
287	if( req->bytes_read == 0 )
288	{
289	req->status_string = g_strdup( "Empty HTTP reply" );
290	goto cleanup;
291	}
292
293	cleanup:
294	if( req->ssl )
295	ssl_disconnect( req->ssl );
296	else
297	closesocket( req->fd );
298
299	if( req->body_size < req->content_length )
300	{
301	req->status_code = -1;
302	g_free( req->status_string );
303	req->status_string = g_strdup( "Response truncated" );
304	}
305
306	if( getenv( "BITLBEE_DEBUG" ) && req )
307	printf( "Finishing HTTP request with status: %s\n",
308	req->status_string ? req->status_string : "NULL" );
309
310	req->func( req );
311	http_free( req );
312	return FALSE;
313	}
314
315	static http_ret_t http_process_chunked_data( struct http_request req, const char buffer, int len )
316	{
317	char chunk, eos, *s;
318
319	if( len < 0 )
320	return TRUE;
321
322	if( len > 0 )
323	{
324	req->cbuf = g_realloc( req->cbuf, req->cblen + len + 1 );
325	memcpy( req->cbuf + req->cblen, buffer, len );
326	req->cblen += len;
327	req->cbuf[req->cblen] = '\0';
328	}
329
330	/* Turns out writing a proper chunked-encoding state machine is not
331	that simple. :-( */
332	chunk = req->cbuf;
333	eos = req->cbuf + req->cblen;
334	while( TRUE )
335	{
336	int clen = 0;
337
338	/* Might be a \r\n from the last chunk. */
339	s = chunk;
340	while( isspace( *s ) )
341	s ++;
342	/* Chunk length. Might be incomplete. */
343	if( s < eos && sscanf( s, "%x", &clen ) != 1 )
344	return CR_ERROR;
345	while( isxdigit( *s ) )
346	s ++;
347
348	/* If we read anything here, it must be \r\n. */
349	if( strncmp( s, "\r\n", MIN( 2, eos - s ) ) != 0 )
350	return CR_ERROR;
351	s += 2;
352
353	if( s >= eos )
354	break;
355
356	/* 0-length chunk means end of response. */
357	if( clen == 0 )
358	return CR_EOF;
359
360	if( s + clen > eos )
361	break;
362	if( http_process_data( req, s, clen ) != CR_OK )
363	return CR_ABORT;
364
365	chunk = s + clen;
366	}
367
368	if( chunk != req->cbuf )
369	{
370	req->cblen = eos - chunk;
371	s = g_memdup( chunk, req->cblen + 1 );
372	g_free( req->cbuf );
373	req->cbuf = s;
374	}
375
376	return CR_OK;
377	}
378
379	static http_ret_t http_process_data( struct http_request req, const char buffer, int len )
380	{
381	if( len <= 0 )
382	return CR_OK;
383
384	if( !req->reply_body )
385	{
386	req->reply_headers = g_realloc( req->reply_headers, req->bytes_read + len + 1 );
387	memcpy( req->reply_headers + req->bytes_read, buffer, len );
388	req->bytes_read += len;
389	req->reply_headers[req->bytes_read] = '\0';
390
391	if( strstr( req->reply_headers, "\r\n\r\n" ) \|\|
392	strstr( req->reply_headers, "\n\n" ) )
393	{
394	/* We've now received all headers. Look for something
395	interesting. */
396	if( !http_handle_headers( req ) )
397	return CR_ABORT;
398
399	/* Start parsing the body as chunked if required. */
400	if( req->flags & HTTPC_CHUNKED )
401	return http_process_chunked_data( req, NULL, 0 );
402	}
403	}
404	else
405	{
406	int pos = req->reply_body - req->sbuf;
407	req->sbuf = g_realloc( req->sbuf, req->sblen + len + 1 );
408	memcpy( req->sbuf + req->sblen, buffer, len );
409	req->bytes_read += len;
410	req->sblen += len;
411	req->sbuf[req->sblen] = '\0';
412	req->reply_body = req->sbuf + pos;
413	req->body_size = req->sblen - pos;
414	}
415
416	if( ( req->flags & HTTPC_STREAMING ) && req->reply_body )
417	req->func( req );
418
419	return CR_OK;
420	}
421
422	/* Splits headers and body. Checks result code, in case of 300s it'll handle
423	redirects. If this returns FALSE, don't call any callbacks! */
424	static gboolean http_handle_headers( struct http_request *req )
425	{
426	char end1, end2, *s;
427	int evil_server = 0;
428
429	/* Zero termination is very convenient. */
430	req->reply_headers[req->bytes_read] = '\0';
431
432	/* Find the separation between headers and body, and keep stupid
433	webservers in mind. */
434	end1 = strstr( req->reply_headers, "\r\n\r\n" );
435	end2 = strstr( req->reply_headers, "\n\n" );
436
437	if( end2 && end2 < end1 )
438	{
439	end1 = end2 + 1;
440	evil_server = 1;
441	}
442	else if( end1 )
443	{
444	end1 += 2;
445	}
446	else
447	{
448	req->status_string = g_strdup( "Malformed HTTP reply" );
449	return TRUE;
450	}
451
452	*end1 = '\0';
453
454	if( getenv( "BITLBEE_DEBUG" ) )
455	printf( "HTTP response headers:\n%s\n", req->reply_headers );
456
457	if( evil_server )
458	req->reply_body = end1 + 1;
459	else
460	req->reply_body = end1 + 2;
461
462	/* Separately allocated space for headers and body. */
463	req->sblen = req->body_size = req->reply_headers + req->bytes_read - req->reply_body;
464	req->sbuf = req->reply_body = g_memdup( req->reply_body, req->body_size + 1 );
465	req->reply_headers = g_realloc( req->reply_headers, end1 - req->reply_headers + 1 );
466
467	if( ( end1 = strchr( req->reply_headers, ' ' ) ) != NULL )
468	{
469	if( sscanf( end1 + 1, "%hd", &req->status_code ) != 1 )
470	{
471	req->status_string = g_strdup( "Can't parse status code" );
472	req->status_code = -1;
473	}
474	else
475	{
476	char *eol;
477
478	if( evil_server )
479	eol = strchr( end1, '\n' );
480	else
481	eol = strchr( end1, '\r' );
482
483	req->status_string = g_strndup( end1 + 1, eol - end1 - 1 );
484
485	/* Just to be sure... */
486	if( ( eol = strchr( req->status_string, '\r' ) ) )
487	*eol = 0;
488	if( ( eol = strchr( req->status_string, '\n' ) ) )
489	*eol = 0;
490	}
491	}
492	else
493	{
494	req->status_string = g_strdup( "Can't locate status code" );
495	req->status_code = -1;
496	}
497
498	if( ( ( req->status_code >= 301 && req->status_code <= 303 ) \|\|
499	req->status_code == 307 ) && req->redir_ttl-- > 0 )
500	{
501	char loc, new_request, *new_host;
502	int error = 0, new_port, new_proto;
503
504	/* We might fill it again, so let's not leak any memory. */
505	g_free( req->status_string );
506	req->status_string = NULL;
507
508	loc = strstr( req->reply_headers, "\nLocation: " );
509	if( loc == NULL ) /* We can't handle this redirect... */
510	{
511	req->status_string = g_strdup( "Can't locate Location: header" );
512	return TRUE;
513	}
514
515	loc += 11;
516	while( *loc == ' ' )
517	loc ++;
518
519	/* TODO/FIXME: Possibly have to handle relative redirections,
520	and rewrite Host: headers. Not necessary for now, it's
521	enough for passport authentication like this. */
522
523	if( *loc == '/' )
524	{
525	/* Just a different pathname... */
526
527	/* Since we don't cache the servername, and since we
528	don't need this yet anyway, I won't implement it. */
529
530	req->status_string = g_strdup( "Can't handle relative redirects" );
531
532	return TRUE;
533	}
534	else
535	{
536	/* A whole URL */
537	url_t *url;
538	char *s;
539	const char *new_method;
540
541	s = strstr( loc, "\r\n" );
542	if( s == NULL )
543	return TRUE;
544
545	url = g_new0( url_t, 1 );
546	*s = 0;
547
548	if( !url_set( url, loc ) )
549	{
550	req->status_string = g_strdup( "Malformed redirect URL" );
551	g_free( url );
552	return TRUE;
553	}
554
555	/* Find all headers and, if necessary, the POST request contents.
556	Skip the old Host: header though. This crappy code here means
557	anything using this http_client MUST put the Host: header at
558	the top. */
559	if( !( ( s = strstr( req->request, "\r\nHost: " ) ) &&
560	( s = strstr( s + strlen( "\r\nHost: " ), "\r\n" ) ) ) )
561	{
562	req->status_string = g_strdup( "Error while rebuilding request string" );
563	g_free( url );
564	return TRUE;
565	}
566
567	/* More or less HTTP/1.0 compliant, from my reading of RFC 2616.
568	Always perform a GET request unless we received a 301. 303 was
569	meant for this but it's HTTP/1.1-only and we're specifically
570	speaking HTTP/1.0. ...
571
572	Well except someone at identi.ca's didn't bother reading any
573	RFCs and just return HTTP/1.1-specific status codes to HTTP/1.0
574	requests. Fuckers. So here we are, handle 301..303,307. */
575	if( strncmp( req->request, "GET", 3 ) == 0 )
576	/* GETs never become POSTs. */
577	new_method = "GET";
578	else if( req->status_code == 302 \|\| req->status_code == 303 )
579	/* 302 de-facto becomes GET, 303 as specified by RFC 2616#10.3.3 */
580	new_method = "GET";
581	else
582	/* 301 de-facto should stay POST, 307 specifally RFC 2616#10.3.8 */
583	new_method = "POST";
584
585	/* Okay, this isn't fun! We have to rebuild the request... :-( */
586	new_request = g_strdup_printf( "%s %s HTTP/1.1\r\nHost: %s%s",
587	new_method, url->file, url->host, s );
588
589	new_host = g_strdup( url->host );
590	new_port = url->port;
591	new_proto = url->proto;
592
593	/* If we went from POST to GET, truncate the request content. */
594	if( new_request[0] != req->request[0] && new_request[0] == 'G' &&
595	( s = strstr( new_request, "\r\n\r\n" ) ) )
596	s[4] = '\0';
597
598	g_free( url );
599	}
600
601	if( req->ssl )
602	ssl_disconnect( req->ssl );
603	else
604	closesocket( req->fd );
605
606	req->fd = -1;
607	req->ssl = NULL;
608
609	if( getenv( "BITLBEE_DEBUG" ) )
610	printf( "New headers for redirected HTTP request:\n%s\n", new_request );
611
612	if( new_proto == PROTO_HTTPS )
613	{
614	req->ssl = ssl_connect( new_host, new_port, TRUE, http_ssl_connected, req );
615	if( req->ssl == NULL )
616	error = 1;
617	}
618	else
619	{
620	req->fd = proxy_connect( new_host, new_port, http_connected, req );
621	if( req->fd < 0 )
622	error = 1;
623	}
624	g_free( new_host );
625
626	if( error )
627	{
628	req->status_string = g_strdup( "Connection problem during redirect" );
629	g_free( new_request );
630	return TRUE;
631	}
632
633	g_free( req->request );
634	g_free( req->reply_headers );
635	req->request = new_request;
636	req->request_length = strlen( new_request );
637	req->bytes_read = req->bytes_written = req->inpa = 0;
638	req->reply_headers = req->reply_body = NULL;
639
640	return FALSE;
641	}
642
643	if( ( s = get_rfc822_header( req->reply_headers, "Content-Length", 0 ) ) &&
644	sscanf( s, "%d", &req->content_length ) != 1 )
645	req->content_length = -1;
646	g_free( s );
647
648	if( ( s = get_rfc822_header( req->reply_headers, "Transfer-Encoding", 0 ) ) )
649	{
650	if( strcasestr( s, "chunked" ) )
651	{
652	req->flags \|= HTTPC_CHUNKED;
653	req->cbuf = req->sbuf;
654	req->cblen = req->sblen;
655
656	req->reply_body = req->sbuf = g_strdup( "" );
657	req->body_size = req->sblen = 0;
658	}
659	g_free( s );
660	}
661
662	return TRUE;
663	}
664
665	void http_flush_bytes( struct http_request *req, size_t len )
666	{
667	if( len <= 0 \|\| len > req->body_size \|\| !( req->flags & HTTPC_STREAMING ) )
668	return;
669
670	req->reply_body += len;
671	req->body_size -= len;
672
673	if( req->reply_body - req->sbuf >= 512 )
674	{
675	char *new = g_memdup( req->reply_body, req->body_size + 1 );
676	g_free( req->sbuf );
677	req->reply_body = req->sbuf = new;
678	req->sblen = req->body_size;
679	}
680	}
681
682	void http_close( struct http_request *req )
683	{
684	if( !req )
685	return;
686
687	if( req->inpa > 0 )
688	b_event_remove( req->inpa );
689
690	if( req->ssl )
691	ssl_disconnect( req->ssl );
692	else
693	closesocket( req->fd );
694
695	http_free( req );
696	}
697
698	static void http_free( struct http_request *req )
699	{
700	g_free( req->request );
701	g_free( req->reply_headers );
702	g_free( req->status_string );
703	g_free( req->sbuf );
704	g_free( req->cbuf );
705	g_free( req );
706	}

Note: See TracBrowser for help on using the repository browser.

Download in other formats: