2012-11-18 13:23:13 +01:00
|
|
|
/*
|
2014-03-30 12:09:21 +02:00
|
|
|
* nghttp2 - HTTP/2 C Library
|
2012-11-18 13:23:13 +01:00
|
|
|
*
|
|
|
|
|
* Copyright (c) 2012 Tatsuhiro Tsujikawa
|
|
|
|
|
*
|
|
|
|
|
* Permission is hereby granted, free of charge, to any person obtaining
|
|
|
|
|
* a copy of this software and associated documentation files (the
|
|
|
|
|
* "Software"), to deal in the Software without restriction, including
|
|
|
|
|
* without limitation the rights to use, copy, modify, merge, publish,
|
|
|
|
|
* distribute, sublicense, and/or sell copies of the Software, and to
|
|
|
|
|
* permit persons to whom the Software is furnished to do so, subject to
|
|
|
|
|
* the following conditions:
|
|
|
|
|
*
|
|
|
|
|
* The above copyright notice and this permission notice shall be
|
|
|
|
|
* included in all copies or substantial portions of the Software.
|
|
|
|
|
*
|
|
|
|
|
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
|
|
|
|
|
* EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
|
|
|
|
* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
|
|
|
|
|
* NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
|
|
|
|
|
* LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
|
|
|
|
|
* OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
|
|
|
|
|
* WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
|
|
|
|
|
*/
|
2013-11-04 09:53:57 +01:00
|
|
|
#include "shrpx_http2_downstream_connection.h"
|
2012-11-18 13:23:13 +01:00
|
|
|
|
2015-05-13 15:30:35 +02:00
|
|
|
#ifdef HAVE_UNISTD_H
|
2018-06-09 09:21:30 +02:00
|
|
|
# include <unistd.h>
|
2015-05-13 15:30:35 +02:00
|
|
|
#endif // HAVE_UNISTD_H
|
2012-11-18 13:23:13 +01:00
|
|
|
|
2013-01-05 15:21:09 +01:00
|
|
|
#include "http-parser/http_parser.h"
|
2012-11-20 17:29:39 +01:00
|
|
|
|
2012-11-18 13:23:13 +01:00
|
|
|
#include "shrpx_client_handler.h"
|
|
|
|
|
#include "shrpx_upstream.h"
|
|
|
|
|
#include "shrpx_downstream.h"
|
|
|
|
|
#include "shrpx_config.h"
|
|
|
|
|
#include "shrpx_error.h"
|
|
|
|
|
#include "shrpx_http.h"
|
2013-11-04 09:53:57 +01:00
|
|
|
#include "shrpx_http2_session.h"
|
2016-02-27 15:24:14 +01:00
|
|
|
#include "shrpx_worker.h"
|
2017-02-16 14:46:22 +01:00
|
|
|
#include "shrpx_log.h"
|
2013-08-27 19:47:22 +02:00
|
|
|
#include "http2.h"
|
2012-11-18 13:23:13 +01:00
|
|
|
#include "util.h"
|
2017-11-26 02:56:39 +01:00
|
|
|
#include "ssl_compat.h"
|
2012-11-18 13:23:13 +01:00
|
|
|
|
2013-07-12 17:19:03 +02:00
|
|
|
using namespace nghttp2;
|
2012-11-18 13:23:13 +01:00
|
|
|
|
|
|
|
|
namespace shrpx {
|
|
|
|
|
|
2016-02-27 15:24:14 +01:00
|
|
|
Http2DownstreamConnection::Http2DownstreamConnection(Http2Session *http2session)
|
|
|
|
|
: dlnext(nullptr),
|
2016-01-27 13:14:07 +01:00
|
|
|
dlprev(nullptr),
|
|
|
|
|
http2session_(http2session),
|
|
|
|
|
sd_(nullptr) {}
|
2014-11-27 15:39:04 +01:00
|
|
|
|
|
|
|
|
Http2DownstreamConnection::~Http2DownstreamConnection() {
|
|
|
|
|
if (LOG_ENABLED(INFO)) {
|
2013-02-08 13:46:58 +01:00
|
|
|
DCLOG(INFO, this) << "Deleting";
|
|
|
|
|
}
|
2014-11-27 15:39:04 +01:00
|
|
|
if (downstream_) {
|
2014-08-09 11:47:45 +02:00
|
|
|
downstream_->disable_downstream_rtimer();
|
|
|
|
|
downstream_->disable_downstream_wtimer();
|
|
|
|
|
|
2014-11-22 15:13:29 +01:00
|
|
|
uint32_t error_code;
|
2018-10-17 03:03:32 +02:00
|
|
|
if (downstream_->get_request_state() == DownstreamState::STREAM_CLOSED &&
|
2014-11-27 15:39:04 +01:00
|
|
|
downstream_->get_upgraded()) {
|
2014-11-22 15:13:29 +01:00
|
|
|
// For upgraded connection, send NO_ERROR. Should we consider
|
2018-10-17 03:03:32 +02:00
|
|
|
// request states other than DownstreamState::STREAM_CLOSED ?
|
2014-11-22 15:13:29 +01:00
|
|
|
error_code = NGHTTP2_NO_ERROR;
|
|
|
|
|
} else {
|
|
|
|
|
error_code = NGHTTP2_INTERNAL_ERROR;
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-17 04:03:49 +02:00
|
|
|
if (http2session_->get_state() == Http2SessionState::CONNECTED &&
|
2015-11-22 07:23:18 +01:00
|
|
|
downstream_->get_downstream_stream_id() != -1) {
|
2014-12-27 18:59:06 +01:00
|
|
|
submit_rst_stream(downstream_, error_code);
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2016-01-14 15:49:21 +01:00
|
|
|
auto &resp = downstream_->response();
|
|
|
|
|
|
2014-07-25 14:26:03 +02:00
|
|
|
http2session_->consume(downstream_->get_downstream_stream_id(),
|
2016-01-14 15:49:21 +01:00
|
|
|
resp.unconsumed_body_length);
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2016-01-14 15:49:21 +01:00
|
|
|
resp.unconsumed_body_length = 0;
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
http2session_->signal_write();
|
2014-07-25 14:26:03 +02:00
|
|
|
}
|
2013-02-07 16:22:22 +01:00
|
|
|
}
|
2013-11-04 09:53:57 +01:00
|
|
|
http2session_->remove_downstream_connection(this);
|
2015-07-15 16:31:32 +02:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (LOG_ENABLED(INFO)) {
|
2013-02-08 13:46:58 +01:00
|
|
|
DCLOG(INFO, this) << "Deleted";
|
|
|
|
|
}
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::attach_downstream(Downstream *downstream) {
|
|
|
|
|
if (LOG_ENABLED(INFO)) {
|
2012-12-09 11:15:14 +01:00
|
|
|
DCLOG(INFO, this) << "Attaching to DOWNSTREAM:" << downstream;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2013-11-04 09:53:57 +01:00
|
|
|
http2session_->add_downstream_connection(this);
|
2016-04-12 16:30:52 +02:00
|
|
|
http2session_->signal_write();
|
2014-08-18 17:16:51 +02:00
|
|
|
|
2012-11-18 13:23:13 +01:00
|
|
|
downstream_ = downstream;
|
2015-01-05 16:30:57 +01:00
|
|
|
downstream_->reset_downstream_rtimer();
|
2014-08-09 11:47:45 +02:00
|
|
|
|
2016-02-28 15:21:57 +01:00
|
|
|
auto &req = downstream_->request();
|
|
|
|
|
|
|
|
|
|
// HTTP/2 disables HTTP Upgrade.
|
2018-10-17 02:50:29 +02:00
|
|
|
if (req.method != HTTP_CONNECT && req.connect_proto == ConnectProto::NONE) {
|
2016-03-28 15:05:38 +02:00
|
|
|
req.upgrade_request = false;
|
|
|
|
|
}
|
2016-02-28 15:21:57 +01:00
|
|
|
|
2012-11-18 13:23:13 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
void Http2DownstreamConnection::detach_downstream(Downstream *downstream) {
|
|
|
|
|
if (LOG_ENABLED(INFO)) {
|
2012-12-09 11:15:14 +01:00
|
|
|
DCLOG(INFO, this) << "Detaching from DOWNSTREAM:" << downstream;
|
2012-11-20 17:29:39 +01:00
|
|
|
}
|
2016-01-14 15:49:21 +01:00
|
|
|
|
|
|
|
|
auto &resp = downstream_->response();
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (downstream_->get_downstream_stream_id() != -1) {
|
2016-09-14 17:25:41 +02:00
|
|
|
if (submit_rst_stream(downstream) == 0) {
|
|
|
|
|
http2session_->signal_write();
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-25 14:26:03 +02:00
|
|
|
http2session_->consume(downstream_->get_downstream_stream_id(),
|
2016-01-14 15:49:21 +01:00
|
|
|
resp.unconsumed_body_length);
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2016-01-14 15:49:21 +01:00
|
|
|
resp.unconsumed_body_length = 0;
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
http2session_->signal_write();
|
2014-07-25 14:26:03 +02:00
|
|
|
}
|
|
|
|
|
|
2014-08-09 11:47:45 +02:00
|
|
|
downstream->disable_downstream_rtimer();
|
|
|
|
|
downstream->disable_downstream_wtimer();
|
2013-11-26 13:29:53 +01:00
|
|
|
downstream_ = nullptr;
|
2012-11-20 17:29:39 +01:00
|
|
|
}
|
|
|
|
|
|
2014-08-09 11:47:45 +02:00
|
|
|
int Http2DownstreamConnection::submit_rst_stream(Downstream *downstream,
|
2014-11-27 15:39:04 +01:00
|
|
|
uint32_t error_code) {
|
2013-02-07 16:22:22 +01:00
|
|
|
int rv = -1;
|
2018-10-17 04:03:49 +02:00
|
|
|
if (http2session_->get_state() == Http2SessionState::CONNECTED &&
|
2014-11-27 15:39:04 +01:00
|
|
|
downstream->get_downstream_stream_id() != -1) {
|
|
|
|
|
switch (downstream->get_response_state()) {
|
2018-10-17 03:03:32 +02:00
|
|
|
case DownstreamState::MSG_RESET:
|
|
|
|
|
case DownstreamState::MSG_BAD_HEADER:
|
|
|
|
|
case DownstreamState::MSG_COMPLETE:
|
2013-02-07 16:22:22 +01:00
|
|
|
break;
|
|
|
|
|
default:
|
2014-11-27 15:39:04 +01:00
|
|
|
if (LOG_ENABLED(INFO)) {
|
|
|
|
|
DCLOG(INFO, this) << "Submit RST_STREAM for DOWNSTREAM:" << downstream
|
|
|
|
|
<< ", stream_id="
|
2015-11-22 07:23:18 +01:00
|
|
|
<< downstream->get_downstream_stream_id()
|
|
|
|
|
<< ", error_code=" << error_code;
|
2013-02-07 16:22:22 +01:00
|
|
|
}
|
2014-11-27 15:39:04 +01:00
|
|
|
rv = http2session_->submit_rst_stream(
|
|
|
|
|
downstream->get_downstream_stream_id(), error_code);
|
2013-02-07 16:22:22 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return rv;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-18 13:23:13 +01:00
|
|
|
namespace {
|
2014-11-27 15:39:04 +01:00
|
|
|
ssize_t http2_data_read_callback(nghttp2_session *session, int32_t stream_id,
|
2013-11-04 09:53:57 +01:00
|
|
|
uint8_t *buf, size_t length,
|
2014-04-05 10:59:24 +02:00
|
|
|
uint32_t *data_flags,
|
2014-11-27 15:39:04 +01:00
|
|
|
nghttp2_data_source *source, void *user_data) {
|
2015-03-08 08:29:26 +01:00
|
|
|
int rv;
|
2014-11-27 15:39:04 +01:00
|
|
|
auto sd = static_cast<StreamData *>(
|
|
|
|
|
nghttp2_session_get_stream_user_data(session, stream_id));
|
|
|
|
|
if (!sd || !sd->dconn) {
|
2013-07-12 17:19:03 +02:00
|
|
|
return NGHTTP2_ERR_DEFERRED;
|
2012-11-20 17:29:39 +01:00
|
|
|
}
|
2016-03-27 09:57:43 +02:00
|
|
|
auto dconn = sd->dconn;
|
2013-11-04 09:53:57 +01:00
|
|
|
auto downstream = dconn->get_downstream();
|
2014-11-27 15:39:04 +01:00
|
|
|
if (!downstream) {
|
2012-11-18 13:23:13 +01:00
|
|
|
// In this case, RST_STREAM should have been issued. But depending
|
|
|
|
|
// on the priority, DATA frame may come first.
|
2013-07-12 17:19:03 +02:00
|
|
|
return NGHTTP2_ERR_DEFERRED;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2016-01-13 14:45:52 +01:00
|
|
|
const auto &req = downstream->request();
|
2014-12-27 18:59:06 +01:00
|
|
|
auto input = downstream->get_request_buf();
|
2014-08-09 11:47:45 +02:00
|
|
|
|
2016-05-14 10:17:27 +02:00
|
|
|
auto nread = std::min(input->rleft(), length);
|
|
|
|
|
auto input_empty = input->rleft() == nread;
|
|
|
|
|
|
|
|
|
|
*data_flags |= NGHTTP2_DATA_FLAG_NO_COPY;
|
2014-08-21 14:22:16 +02:00
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
if (input_empty &&
|
2018-10-17 03:03:32 +02:00
|
|
|
downstream->get_request_state() == DownstreamState::MSG_COMPLETE &&
|
2014-11-27 15:39:04 +01:00
|
|
|
// If connection is upgraded, don't set EOF flag, since HTTP/1
|
|
|
|
|
// will set MSG_COMPLETE to request state after upgrade response
|
|
|
|
|
// header is seen.
|
2016-01-13 14:45:52 +01:00
|
|
|
(!req.upgrade_request ||
|
2018-10-17 03:03:32 +02:00
|
|
|
(downstream->get_response_state() == DownstreamState::HEADER_COMPLETE &&
|
2014-11-27 15:39:04 +01:00
|
|
|
!downstream->get_upgraded()))) {
|
2014-08-21 14:22:16 +02:00
|
|
|
|
2014-11-22 13:11:18 +01:00
|
|
|
*data_flags |= NGHTTP2_DATA_FLAG_EOF;
|
2015-03-08 08:29:26 +01:00
|
|
|
|
2016-01-13 14:45:52 +01:00
|
|
|
const auto &trailers = req.fs.trailers();
|
2015-03-08 08:48:25 +01:00
|
|
|
if (!trailers.empty()) {
|
2015-03-08 08:29:26 +01:00
|
|
|
std::vector<nghttp2_nv> nva;
|
2015-03-08 08:48:25 +01:00
|
|
|
nva.reserve(trailers.size());
|
2017-06-02 15:38:39 +02:00
|
|
|
http2::copy_headers_to_nva_nocopy(nva, trailers, http2::HDOP_STRIP_ALL);
|
2015-03-08 09:32:01 +01:00
|
|
|
if (!nva.empty()) {
|
|
|
|
|
rv = nghttp2_submit_trailer(session, stream_id, nva.data(), nva.size());
|
|
|
|
|
if (rv != 0) {
|
|
|
|
|
if (nghttp2_is_fatal(rv)) {
|
|
|
|
|
return NGHTTP2_ERR_CALLBACK_FAILURE;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
*data_flags |= NGHTTP2_DATA_FLAG_NO_END_STREAM;
|
2015-03-08 08:29:26 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2014-08-09 11:47:45 +02:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (nread == 0 && (*data_flags & NGHTTP2_DATA_FLAG_EOF) == 0) {
|
2014-11-22 13:11:18 +01:00
|
|
|
downstream->disable_downstream_wtimer();
|
|
|
|
|
|
|
|
|
|
return NGHTTP2_ERR_DEFERRED;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-18 13:23:13 +01:00
|
|
|
return nread;
|
|
|
|
|
}
|
|
|
|
|
} // namespace
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::push_request_headers() {
|
2012-11-18 13:23:13 +01:00
|
|
|
int rv;
|
2015-02-17 15:15:53 +01:00
|
|
|
if (!downstream_) {
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
2018-03-11 04:02:18 +01:00
|
|
|
if (!http2session_->can_push_request(downstream_)) {
|
nghttpx: Check HTTP/2 downstream connection after certain idle time
Previously when requests are issued to HTTP/2 downstream connection,
but it turns out that connection is down, handlers of those requests
are deleted. In some situations, we only know connection is down when
we write something to network, so we'd like to handle this kind of
situation in more robust manner. In this change, certain seconds
passed after last network activity, we first issue PING frame to
downstream connection before issuing new HTTP request. If writing
PING frame is failed, it means connection was lost. In this case,
instead of deleting handler, pending requests are migrated to new
HTTP2/ downstream connection, so that it can continue without
affecting upstream connection.
2014-12-08 17:30:15 +01:00
|
|
|
// The HTTP2 session to the backend has not been established or
|
|
|
|
|
// connection is now being checked. This function will be called
|
|
|
|
|
// again just after it is established.
|
2015-02-17 15:15:53 +01:00
|
|
|
downstream_->set_request_pending(true);
|
nghttpx: Check HTTP/2 downstream connection after certain idle time
Previously when requests are issued to HTTP/2 downstream connection,
but it turns out that connection is down, handlers of those requests
are deleted. In some situations, we only know connection is down when
we write something to network, so we'd like to handle this kind of
situation in more robust manner. In this change, certain seconds
passed after last network activity, we first issue PING frame to
downstream connection before issuing new HTTP request. If writing
PING frame is failed, it means connection was lost. In this case,
instead of deleting handler, pending requests are migrated to new
HTTP2/ downstream connection, so that it can continue without
affecting upstream connection.
2014-12-08 17:30:15 +01:00
|
|
|
http2session_->start_checking_connection();
|
2012-11-18 13:23:13 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
2015-02-17 15:15:53 +01:00
|
|
|
|
|
|
|
|
downstream_->set_request_pending(false);
|
2015-02-03 17:15:56 +01:00
|
|
|
|
2016-01-13 14:45:52 +01:00
|
|
|
const auto &req = downstream_->request();
|
|
|
|
|
|
2018-10-17 02:50:29 +02:00
|
|
|
if (req.connect_proto != ConnectProto::NONE &&
|
|
|
|
|
!http2session_->get_allow_connect_proto()) {
|
2018-03-11 04:02:18 +01:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-12 10:36:05 +01:00
|
|
|
auto &balloc = downstream_->get_block_allocator();
|
|
|
|
|
|
2016-10-08 04:34:23 +02:00
|
|
|
auto config = get_config();
|
|
|
|
|
auto &httpconf = config->http;
|
|
|
|
|
auto &http2conf = config->http2;
|
2016-01-18 09:00:20 +01:00
|
|
|
|
2016-10-08 04:34:23 +02:00
|
|
|
auto no_host_rewrite = httpconf.no_host_rewrite || config->http2_proxy ||
|
2018-03-11 04:02:18 +01:00
|
|
|
req.regular_connect_method();
|
2015-03-09 16:44:35 +01:00
|
|
|
|
2015-03-10 13:54:29 +01:00
|
|
|
// http2session_ has already in CONNECTED state, so we can get
|
|
|
|
|
// addr_idx here.
|
2016-02-07 10:22:57 +01:00
|
|
|
const auto &downstream_hostport = http2session_->get_addr()->hostport;
|
2015-03-10 13:54:29 +01:00
|
|
|
|
2015-09-03 16:36:49 +02:00
|
|
|
// For HTTP/1.0 request, there is no authority in request. In that
|
|
|
|
|
// case, we use backend server's host nonetheless.
|
2016-01-17 03:33:45 +01:00
|
|
|
auto authority = StringRef(downstream_hostport);
|
2016-01-16 16:52:41 +01:00
|
|
|
|
2016-01-13 14:45:52 +01:00
|
|
|
if (no_host_rewrite && !req.authority.empty()) {
|
2016-03-10 14:42:07 +01:00
|
|
|
authority = req.authority;
|
2015-02-03 17:15:56 +01:00
|
|
|
}
|
|
|
|
|
|
2016-03-10 14:42:07 +01:00
|
|
|
downstream_->set_request_downstream_host(authority);
|
2015-02-08 11:41:45 +01:00
|
|
|
|
2015-11-05 14:48:54 +01:00
|
|
|
size_t num_cookies = 0;
|
2016-01-18 09:00:20 +01:00
|
|
|
if (!http2conf.no_cookie_crumbling) {
|
2015-11-05 14:48:54 +01:00
|
|
|
num_cookies = downstream_->count_crumble_request_cookie();
|
2013-11-17 16:03:55 +01:00
|
|
|
}
|
2014-11-18 16:56:44 +01:00
|
|
|
|
2018-03-11 04:02:18 +01:00
|
|
|
// 11 means:
|
2013-10-25 14:50:56 +02:00
|
|
|
// 1. :method
|
|
|
|
|
// 2. :scheme
|
|
|
|
|
// 3. :path
|
2016-01-16 13:12:51 +01:00
|
|
|
// 4. :authority (or host)
|
2018-03-11 04:02:18 +01:00
|
|
|
// 5. :protocol (optional)
|
|
|
|
|
// 6. via (optional)
|
|
|
|
|
// 7. x-forwarded-for (optional)
|
|
|
|
|
// 8. x-forwarded-proto (optional)
|
|
|
|
|
// 9. te (optional)
|
|
|
|
|
// 10. forwarded (optional)
|
|
|
|
|
// 11. early-data (optional)
|
2013-11-28 13:36:04 +01:00
|
|
|
auto nva = std::vector<nghttp2_nv>();
|
2018-03-11 04:02:18 +01:00
|
|
|
nva.reserve(req.fs.headers().size() + 11 + num_cookies +
|
2016-01-18 09:00:20 +01:00
|
|
|
httpconf.add_request_headers.size());
|
2015-01-04 15:22:39 +01:00
|
|
|
|
2018-10-17 02:50:29 +02:00
|
|
|
if (req.connect_proto == ConnectProto::WEBSOCKET) {
|
2018-03-11 04:02:18 +01:00
|
|
|
nva.push_back(http2::make_nv_ll(":method", "CONNECT"));
|
|
|
|
|
nva.push_back(http2::make_nv_ll(":protocol", "websocket"));
|
|
|
|
|
} else {
|
|
|
|
|
nva.push_back(http2::make_nv_ls_nocopy(
|
|
|
|
|
":method", http2::to_method_string(req.method)));
|
|
|
|
|
}
|
2015-06-16 14:29:47 +02:00
|
|
|
|
2018-03-11 04:02:18 +01:00
|
|
|
if (!req.regular_connect_method()) {
|
2016-01-13 14:45:52 +01:00
|
|
|
assert(!req.scheme.empty());
|
2015-09-03 17:14:09 +02:00
|
|
|
|
2018-01-08 10:08:01 +01:00
|
|
|
auto addr = http2session_->get_addr();
|
|
|
|
|
assert(addr);
|
|
|
|
|
// We will handle more protocol scheme upgrade in the future.
|
|
|
|
|
if (addr->tls && addr->upgrade_scheme && req.scheme == "http") {
|
|
|
|
|
nva.push_back(http2::make_nv_ll(":scheme", "https"));
|
|
|
|
|
} else {
|
|
|
|
|
nva.push_back(http2::make_nv_ls_nocopy(":scheme", req.scheme));
|
|
|
|
|
}
|
2015-09-03 17:14:09 +02:00
|
|
|
|
2016-01-13 14:45:52 +01:00
|
|
|
if (req.method == HTTP_OPTIONS && req.path.empty()) {
|
2015-09-03 17:14:09 +02:00
|
|
|
nva.push_back(http2::make_nv_ll(":path", "*"));
|
|
|
|
|
} else {
|
2016-01-13 14:45:52 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy(":path", req.path));
|
2015-09-03 17:14:09 +02:00
|
|
|
}
|
2016-01-16 13:12:51 +01:00
|
|
|
|
2018-10-17 02:50:29 +02:00
|
|
|
if (!req.no_authority || req.connect_proto != ConnectProto::NONE) {
|
2016-01-16 16:52:41 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy(":authority", authority));
|
2016-01-16 13:12:51 +01:00
|
|
|
} else {
|
2016-01-16 16:52:41 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("host", authority));
|
2016-01-16 13:12:51 +01:00
|
|
|
}
|
|
|
|
|
} else {
|
2016-01-16 16:52:41 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy(":authority", authority));
|
2015-03-13 14:40:41 +01:00
|
|
|
}
|
2013-02-07 13:53:20 +01:00
|
|
|
|
2017-04-25 16:41:56 +02:00
|
|
|
auto &fwdconf = httpconf.forwarded;
|
|
|
|
|
auto &xffconf = httpconf.xff;
|
|
|
|
|
auto &xfpconf = httpconf.xfp;
|
2018-09-09 15:37:22 +02:00
|
|
|
auto &earlydataconf = httpconf.early_data;
|
2017-04-25 16:41:56 +02:00
|
|
|
|
|
|
|
|
uint32_t build_flags =
|
|
|
|
|
(fwdconf.strip_incoming ? http2::HDOP_STRIP_FORWARDED : 0) |
|
|
|
|
|
(xffconf.strip_incoming ? http2::HDOP_STRIP_X_FORWARDED_FOR : 0) |
|
2018-09-09 15:37:22 +02:00
|
|
|
(xfpconf.strip_incoming ? http2::HDOP_STRIP_X_FORWARDED_PROTO : 0) |
|
2018-03-11 04:02:18 +01:00
|
|
|
(earlydataconf.strip_incoming ? http2::HDOP_STRIP_EARLY_DATA : 0) |
|
|
|
|
|
http2::HDOP_STRIP_SEC_WEBSOCKET_KEY;
|
2017-04-25 16:41:56 +02:00
|
|
|
|
|
|
|
|
http2::copy_headers_to_nva_nocopy(nva, req.fs.headers(), build_flags);
|
2013-08-27 17:09:46 +02:00
|
|
|
|
2016-01-18 09:00:20 +01:00
|
|
|
if (!http2conf.no_cookie_crumbling) {
|
2015-11-05 14:48:54 +01:00
|
|
|
downstream_->crumble_request_cookie(nva);
|
2015-01-04 15:22:39 +01:00
|
|
|
}
|
|
|
|
|
|
2016-01-15 15:37:28 +01:00
|
|
|
auto upstream = downstream_->get_upstream();
|
|
|
|
|
auto handler = upstream->get_client_handler();
|
|
|
|
|
|
2017-11-26 02:56:39 +01:00
|
|
|
#if OPENSSL_1_1_1_API
|
|
|
|
|
auto conn = handler->get_connection();
|
|
|
|
|
|
2018-09-15 05:16:23 +02:00
|
|
|
if (conn->tls.ssl && !SSL_is_init_finished(conn->tls.ssl)) {
|
2017-11-26 02:56:39 +01:00
|
|
|
nva.push_back(http2::make_nv_ll("early-data", "1"));
|
|
|
|
|
}
|
|
|
|
|
#endif // OPENSSL_1_1_1_API
|
|
|
|
|
|
2016-01-18 09:00:20 +01:00
|
|
|
auto fwd =
|
|
|
|
|
fwdconf.strip_incoming ? nullptr : req.fs.header(http2::HD_FORWARDED);
|
2016-01-15 15:37:28 +01:00
|
|
|
|
2016-01-18 09:00:20 +01:00
|
|
|
if (fwdconf.params) {
|
|
|
|
|
auto params = fwdconf.params;
|
2016-01-15 15:37:28 +01:00
|
|
|
|
2018-03-11 04:02:18 +01:00
|
|
|
if (config->http2_proxy || req.regular_connect_method()) {
|
2016-01-15 15:37:28 +01:00
|
|
|
params &= ~FORWARDED_PROTO;
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-12 11:07:48 +01:00
|
|
|
auto value = http::create_forwarded(
|
|
|
|
|
balloc, params, handler->get_forwarded_by(),
|
|
|
|
|
handler->get_forwarded_for(), req.authority, req.scheme);
|
|
|
|
|
|
2016-01-15 15:37:28 +01:00
|
|
|
if (fwd || !value.empty()) {
|
|
|
|
|
if (fwd) {
|
2016-03-12 11:07:48 +01:00
|
|
|
if (value.empty()) {
|
|
|
|
|
value = fwd->value;
|
|
|
|
|
} else {
|
|
|
|
|
value = concat_string_ref(balloc, fwd->value,
|
|
|
|
|
StringRef::from_lit(", "), value);
|
2016-01-15 15:37:28 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-12 11:07:48 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("forwarded", value));
|
2016-01-15 15:37:28 +01:00
|
|
|
}
|
|
|
|
|
} else if (fwd) {
|
|
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("forwarded", fwd->value));
|
|
|
|
|
}
|
|
|
|
|
|
2016-01-18 09:00:20 +01:00
|
|
|
auto xff = xffconf.strip_incoming ? nullptr
|
|
|
|
|
: req.fs.header(http2::HD_X_FORWARDED_FOR);
|
|
|
|
|
|
|
|
|
|
if (xffconf.add) {
|
2016-03-12 10:46:58 +01:00
|
|
|
StringRef xff_value;
|
2016-10-03 15:05:47 +02:00
|
|
|
const auto &addr = upstream->get_client_handler()->get_ipaddr();
|
2016-01-16 08:48:41 +01:00
|
|
|
if (xff) {
|
2016-03-12 10:46:58 +01:00
|
|
|
xff_value = concat_string_ref(balloc, xff->value,
|
|
|
|
|
StringRef::from_lit(", "), addr);
|
|
|
|
|
} else {
|
|
|
|
|
xff_value = addr;
|
2012-11-18 15:04:14 +01:00
|
|
|
}
|
2016-03-12 10:46:58 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("x-forwarded-for", xff_value));
|
2016-01-16 08:48:41 +01:00
|
|
|
} else if (xff) {
|
2016-03-12 10:46:58 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("x-forwarded-for", xff->value));
|
2012-11-18 15:04:14 +01:00
|
|
|
}
|
2013-08-27 17:09:46 +02:00
|
|
|
|
2018-03-11 04:02:18 +01:00
|
|
|
if (!config->http2_proxy && !req.regular_connect_method()) {
|
2017-04-05 15:50:18 +02:00
|
|
|
auto xfp = xfpconf.strip_incoming
|
|
|
|
|
? nullptr
|
|
|
|
|
: req.fs.header(http2::HD_X_FORWARDED_PROTO);
|
|
|
|
|
|
|
|
|
|
if (xfpconf.add) {
|
|
|
|
|
StringRef xfp_value;
|
|
|
|
|
// We use same protocol with :scheme header field
|
|
|
|
|
if (xfp) {
|
|
|
|
|
xfp_value = concat_string_ref(balloc, xfp->value,
|
|
|
|
|
StringRef::from_lit(", "), req.scheme);
|
|
|
|
|
} else {
|
|
|
|
|
xfp_value = req.scheme;
|
|
|
|
|
}
|
|
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("x-forwarded-proto", xfp_value));
|
|
|
|
|
} else if (xfp) {
|
|
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("x-forwarded-proto", xfp->value));
|
|
|
|
|
}
|
2014-03-21 10:57:57 +01:00
|
|
|
}
|
|
|
|
|
|
2016-01-13 14:45:52 +01:00
|
|
|
auto via = req.fs.header(http2::HD_VIA);
|
2016-01-18 09:00:20 +01:00
|
|
|
if (httpconf.no_via) {
|
2015-01-04 15:22:39 +01:00
|
|
|
if (via) {
|
2015-11-05 14:48:54 +01:00
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("via", (*via).value));
|
2013-08-27 17:09:46 +02:00
|
|
|
}
|
|
|
|
|
} else {
|
2016-03-12 10:36:05 +01:00
|
|
|
size_t vialen = 16;
|
|
|
|
|
if (via) {
|
|
|
|
|
vialen += via->value.size() + 2;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
auto iov = make_byte_ref(balloc, vialen + 1);
|
|
|
|
|
auto p = iov.base;
|
|
|
|
|
|
2015-01-04 15:22:39 +01:00
|
|
|
if (via) {
|
2016-03-12 10:36:05 +01:00
|
|
|
p = std::copy(std::begin(via->value), std::end(via->value), p);
|
|
|
|
|
p = util::copy_lit(p, ", ");
|
2013-01-09 14:01:25 +01:00
|
|
|
}
|
2016-03-12 10:36:05 +01:00
|
|
|
p = http::create_via_header_value(p, req.http_major, req.http_minor);
|
|
|
|
|
*p = '\0';
|
|
|
|
|
|
|
|
|
|
nva.push_back(http2::make_nv_ls_nocopy("via", StringRef{iov.base, p}));
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2013-08-27 17:09:46 +02:00
|
|
|
|
2016-01-13 14:45:52 +01:00
|
|
|
auto te = req.fs.header(http2::HD_TE);
|
2015-03-24 17:20:41 +01:00
|
|
|
// HTTP/1 upstream request can contain keyword other than
|
|
|
|
|
// "trailers". We just forward "trailers".
|
|
|
|
|
// TODO more strict handling required here.
|
2016-11-07 14:47:48 +01:00
|
|
|
if (te && http2::contains_trailers(te->value)) {
|
2015-03-24 17:20:41 +01:00
|
|
|
nva.push_back(http2::make_nv_ll("te", "trailers"));
|
2015-03-08 08:29:26 +01:00
|
|
|
}
|
|
|
|
|
|
2016-01-18 09:00:20 +01:00
|
|
|
for (auto &p : httpconf.add_request_headers) {
|
2016-02-13 14:19:05 +01:00
|
|
|
nva.push_back(http2::make_nv_nocopy(p.name, p.value));
|
2015-06-05 16:04:20 +02:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (LOG_ENABLED(INFO)) {
|
2012-11-18 13:23:13 +01:00
|
|
|
std::stringstream ss;
|
2014-11-27 15:39:04 +01:00
|
|
|
for (auto &nv : nva) {
|
2016-03-28 15:22:26 +02:00
|
|
|
ss << TTY_HTTP_HD << StringRef{nv.name, nv.namelen} << TTY_RST << ": "
|
|
|
|
|
<< StringRef{nv.value, nv.valuelen} << "\n";
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2012-12-09 11:15:14 +01:00
|
|
|
DCLOG(INFO, this) << "HTTP request headers\n" << ss.str();
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2016-05-28 12:50:36 +02:00
|
|
|
auto transfer_encoding = req.fs.header(http2::HD_TRANSFER_ENCODING);
|
|
|
|
|
|
2017-02-20 14:08:39 +01:00
|
|
|
nghttp2_data_provider *data_prdptr = nullptr;
|
|
|
|
|
nghttp2_data_provider data_prd;
|
|
|
|
|
|
2016-05-28 09:44:04 +02:00
|
|
|
// Add body as long as transfer-encoding is given even if
|
|
|
|
|
// req.fs.content_length == 0 to forward trailer fields.
|
2018-10-17 02:50:29 +02:00
|
|
|
if (req.method == HTTP_CONNECT || req.connect_proto != ConnectProto::NONE ||
|
|
|
|
|
transfer_encoding || req.fs.content_length > 0 || req.http2_expect_body) {
|
2012-11-18 13:23:13 +01:00
|
|
|
// Request-body is expected.
|
2017-02-20 14:08:39 +01:00
|
|
|
data_prd = {{}, http2_data_read_callback};
|
|
|
|
|
data_prdptr = &data_prd;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2017-02-20 14:08:39 +01:00
|
|
|
|
|
|
|
|
rv = http2session_->submit_request(this, nva.data(), nva.size(), data_prdptr);
|
2014-11-27 15:39:04 +01:00
|
|
|
if (rv != 0) {
|
2013-07-12 17:19:03 +02:00
|
|
|
DCLOG(FATAL, this) << "nghttp2_submit_request() failed";
|
2012-11-18 13:23:13 +01:00
|
|
|
return -1;
|
|
|
|
|
}
|
2014-06-15 09:14:00 +02:00
|
|
|
|
2017-02-20 14:08:39 +01:00
|
|
|
if (data_prdptr) {
|
|
|
|
|
downstream_->reset_downstream_wtimer();
|
|
|
|
|
}
|
2014-06-15 09:14:00 +02:00
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
http2session_->signal_write();
|
2012-11-20 17:29:39 +01:00
|
|
|
return 0;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2013-11-04 09:53:57 +01:00
|
|
|
int Http2DownstreamConnection::push_upload_data_chunk(const uint8_t *data,
|
2014-11-27 15:39:04 +01:00
|
|
|
size_t datalen) {
|
2014-12-27 18:59:06 +01:00
|
|
|
int rv;
|
|
|
|
|
auto output = downstream_->get_request_buf();
|
|
|
|
|
output->append(data, datalen);
|
2014-11-27 15:39:04 +01:00
|
|
|
if (downstream_->get_downstream_stream_id() != -1) {
|
2013-11-04 09:53:57 +01:00
|
|
|
rv = http2session_->resume_data(this);
|
2014-11-27 15:39:04 +01:00
|
|
|
if (rv != 0) {
|
2012-11-18 18:11:46 +01:00
|
|
|
return -1;
|
|
|
|
|
}
|
2014-08-09 11:47:45 +02:00
|
|
|
|
|
|
|
|
downstream_->ensure_downstream_wtimer();
|
|
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
http2session_->signal_write();
|
2012-11-18 18:11:46 +01:00
|
|
|
}
|
|
|
|
|
return 0;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::end_upload_data() {
|
2012-11-18 13:23:13 +01:00
|
|
|
int rv;
|
2014-11-27 15:39:04 +01:00
|
|
|
if (downstream_->get_downstream_stream_id() != -1) {
|
2013-11-04 09:53:57 +01:00
|
|
|
rv = http2session_->resume_data(this);
|
2014-11-27 15:39:04 +01:00
|
|
|
if (rv != 0) {
|
2012-11-20 17:29:39 +01:00
|
|
|
return -1;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2014-08-09 11:47:45 +02:00
|
|
|
|
|
|
|
|
downstream_->ensure_downstream_wtimer();
|
|
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
http2session_->signal_write();
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
2012-11-20 17:29:39 +01:00
|
|
|
return 0;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::resume_read(IOCtrlReason reason,
|
|
|
|
|
size_t consumed) {
|
2014-07-25 14:26:03 +02:00
|
|
|
int rv;
|
|
|
|
|
|
2018-10-17 04:03:49 +02:00
|
|
|
if (http2session_->get_state() != Http2SessionState::CONNECTED) {
|
2014-07-25 14:26:03 +02:00
|
|
|
return 0;
|
2012-11-21 15:47:48 +01:00
|
|
|
}
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (!downstream_ || downstream_->get_downstream_stream_id() == -1) {
|
2014-01-18 16:38:11 +01:00
|
|
|
return 0;
|
|
|
|
|
}
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (consumed > 0) {
|
2014-08-21 14:22:16 +02:00
|
|
|
rv = http2session_->consume(downstream_->get_downstream_stream_id(),
|
|
|
|
|
consumed);
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
if (rv != 0) {
|
2014-08-21 14:22:16 +02:00
|
|
|
return -1;
|
|
|
|
|
}
|
2014-07-25 14:26:03 +02:00
|
|
|
|
2016-01-14 15:49:21 +01:00
|
|
|
auto &resp = downstream_->response();
|
|
|
|
|
|
|
|
|
|
resp.unconsumed_body_length -= consumed;
|
2014-08-21 14:22:16 +02:00
|
|
|
|
2014-12-27 18:59:06 +01:00
|
|
|
http2session_->signal_write();
|
2014-08-21 14:22:16 +02:00
|
|
|
}
|
2014-07-25 14:26:03 +02:00
|
|
|
|
|
|
|
|
return 0;
|
2012-11-21 15:47:48 +01:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::on_read() { return 0; }
|
2013-02-08 13:46:58 +01:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::on_write() { return 0; }
|
2013-02-08 13:46:58 +01:00
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
void Http2DownstreamConnection::attach_stream_data(StreamData *sd) {
|
2013-03-07 13:32:10 +01:00
|
|
|
// It is possible sd->dconn is not NULL. sd is detached when
|
|
|
|
|
// on_stream_close_callback. Before that, after MSG_COMPLETE is set
|
|
|
|
|
// to Downstream::set_response_state(), upstream's readcb is called
|
|
|
|
|
// and execution path eventually could reach here. Since the
|
|
|
|
|
// response was already handled, we just detach sd.
|
|
|
|
|
detach_stream_data();
|
2012-11-20 17:29:39 +01:00
|
|
|
sd_ = sd;
|
|
|
|
|
sd_->dconn = this;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
StreamData *Http2DownstreamConnection::detach_stream_data() {
|
|
|
|
|
if (sd_) {
|
2013-11-26 13:29:53 +01:00
|
|
|
auto sd = sd_;
|
|
|
|
|
sd_ = nullptr;
|
|
|
|
|
sd->dconn = nullptr;
|
2012-11-20 17:29:39 +01:00
|
|
|
return sd;
|
|
|
|
|
}
|
2014-12-27 18:59:06 +01:00
|
|
|
return nullptr;
|
2012-11-18 13:23:13 +01:00
|
|
|
}
|
|
|
|
|
|
2014-11-27 15:39:04 +01:00
|
|
|
int Http2DownstreamConnection::on_timeout() {
|
|
|
|
|
if (!downstream_) {
|
2014-08-09 11:47:45 +02:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return submit_rst_stream(downstream_, NGHTTP2_NO_ERROR);
|
|
|
|
|
}
|
|
|
|
|
|
2016-08-04 17:04:47 +02:00
|
|
|
const std::shared_ptr<DownstreamAddrGroup> &
|
2016-02-27 15:24:14 +01:00
|
|
|
Http2DownstreamConnection::get_downstream_addr_group() const {
|
|
|
|
|
return http2session_->get_downstream_addr_group();
|
2015-07-12 15:16:20 +02:00
|
|
|
}
|
|
|
|
|
|
2016-06-09 16:17:41 +02:00
|
|
|
DownstreamAddr *Http2DownstreamConnection::get_addr() const { return nullptr; }
|
|
|
|
|
|
2012-11-18 13:23:13 +01:00
|
|
|
} // namespace shrpx
|
