/* * nghttp2 - HTTP/2 C Library * * Copyright (c) 2012 Tatsuhiro Tsujikawa * * Permission is hereby granted, free of charge, to any person obtaining * a copy of this software and associated documentation files (the * "Software"), to deal in the Software without restriction, including * without limitation the rights to use, copy, modify, merge, publish, * distribute, sublicense, and/or sell copies of the Software, and to * permit persons to whom the Software is furnished to do so, subject to * the following conditions: * * The above copyright notice and this permission notice shall be * included in all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE * LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION * OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION * WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. */ #include "http2.h" #include "util.h" namespace nghttp2 { namespace http2 { std::string get_status_string(unsigned int status_code) { switch (status_code) { case 100: return "100 Continue"; case 101: return "101 Switching Protocols"; case 200: return "200 OK"; case 201: return "201 Created"; case 202: return "202 Accepted"; case 203: return "203 Non-Authoritative Information"; case 204: return "204 No Content"; case 205: return "205 Reset Content"; case 206: return "206 Partial Content"; case 300: return "300 Multiple Choices"; case 301: return "301 Moved Permanently"; case 302: return "302 Found"; case 303: return "303 See Other"; case 304: return "304 Not Modified"; case 305: return "305 Use Proxy"; // case 306: return "306 (Unused)"; case 307: return "307 Temporary Redirect"; case 308: return "308 Permanent Redirect"; case 400: return "400 Bad Request"; case 401: return "401 Unauthorized"; case 402: return "402 Payment Required"; case 403: return "403 Forbidden"; case 404: return "404 Not Found"; case 405: return "405 Method Not Allowed"; case 406: return "406 Not Acceptable"; case 407: return "407 Proxy Authentication Required"; case 408: return "408 Request Timeout"; case 409: return "409 Conflict"; case 410: return "410 Gone"; case 411: return "411 Length Required"; case 412: return "412 Precondition Failed"; case 413: return "413 Payload Too Large"; case 414: return "414 URI Too Long"; case 415: return "415 Unsupported Media Type"; case 416: return "416 Requested Range Not Satisfiable"; case 417: return "417 Expectation Failed"; case 421: return "421 Misdirected Request"; case 426: return "426 Upgrade Required"; case 428: return "428 Precondition Required"; case 429: return "429 Too Many Requests"; case 431: return "431 Request Header Fields Too Large"; case 500: return "500 Internal Server Error"; case 501: return "501 Not Implemented"; case 502: return "502 Bad Gateway"; case 503: return "503 Service Unavailable"; case 504: return "504 Gateway Timeout"; case 505: return "505 HTTP Version Not Supported"; case 511: return "511 Network Authentication Required"; default: return util::utos(status_code); } } void capitalize(std::string &s, size_t offset) { s[offset] = util::upcase(s[offset]); for (size_t i = offset + 1, eoi = s.size(); i < eoi; ++i) { if (s[i - 1] == '-') { s[i] = util::upcase(s[i]); } else { s[i] = util::lowcase(s[i]); } } } bool lws(const char *value) { for (; *value; ++value) { switch (*value) { case '\t': case ' ': continue; default: return false; } } return true; } void sanitize_header_value(std::string &s, size_t offset) { // Since both nghttp2 and spdylay do not allow \n and \r in header // values, we don't have to do this anymore. // for(size_t i = offset, eoi = s.size(); i < eoi; ++i) { // if(s[i] == '\r' || s[i] == '\n') { // s[i] = ' '; // } // } } void copy_url_component(std::string &dest, const http_parser_url *u, int field, const char *url) { if (u->field_set & (1 << field)) { dest.assign(url + u->field_data[field].off, u->field_data[field].len); } } bool check_http2_allowed_header(const char *name) { return check_http2_allowed_header(reinterpret_cast(name), strlen(name)); } bool check_http2_allowed_header(const uint8_t *name, size_t namelen) { return !util::strieq("connection", name, namelen) && !util::strieq("host", name, namelen) && !util::strieq("keep-alive", name, namelen) && !util::strieq("proxy-connection", name, namelen) && !util::strieq("te", name, namelen) && !util::strieq("transfer-encoding", name, namelen) && !util::strieq("upgrade", name, namelen); } namespace { const char *DISALLOWED_HD[] = { "connection", "keep-alive", "proxy-connection", "te", "transfer-encoding", "upgrade", }; } // namespace namespace { auto DISALLOWED_HDLEN = util::array_size(DISALLOWED_HD); } // namespace namespace { const char *REQUEST_PSEUDO_HD[] = { ":authority", ":method", ":path", ":scheme", }; } // namespace namespace { auto REQUEST_PSEUDO_HDLEN = util::array_size(REQUEST_PSEUDO_HD); } // namespace namespace { const char *RESPONSE_PSEUDO_HD[] = { ":status", }; } // namespace namespace { auto RESPONSE_PSEUDO_HDLEN = util::array_size(RESPONSE_PSEUDO_HD); } // namespace namespace { const char *IGN_HD[] = { "connection", "http2-settings", "keep-alive", "proxy-connection", "server", "te", "transfer-encoding", "upgrade", "via", "x-forwarded-for", "x-forwarded-proto", }; } // namespace namespace { auto IGN_HDLEN = util::array_size(IGN_HD); } // namespace namespace { const char *HTTP1_IGN_HD[] = { "connection", "cookie", "http2-settings", "keep-alive", "proxy-connection", "server", "upgrade", "via", "x-forwarded-for", "x-forwarded-proto", }; } // namespace namespace { auto HTTP1_IGN_HDLEN = util::array_size(HTTP1_IGN_HD); } // namespace bool name_less(const Headers::value_type &lhs, const Headers::value_type &rhs) { if (lhs.name.c_str()[0] == ':') { if (rhs.name.c_str()[0] != ':') { return true; } } else if (rhs.name.c_str()[0] == ':') { return false; } return lhs.name < rhs.name; } bool check_http2_headers(const Headers &nva) { for (size_t i = 0; i < DISALLOWED_HDLEN; ++i) { if (std::binary_search(std::begin(nva), std::end(nva), Header(DISALLOWED_HD[i], ""), name_less)) { return false; } } return true; } bool check_http2_request_headers(const Headers &nva) { return check_http2_headers(nva); } bool check_http2_response_headers(const Headers &nva) { return check_http2_headers(nva); } namespace { template bool check_pseudo_header(const uint8_t *name, size_t namelen, InputIterator allowed_first, InputIterator allowed_last) { for (auto i = allowed_first; i != allowed_last; ++i) { if (util::streq(*i, name, namelen)) { return true; } } return false; } } // namespace bool check_http2_request_pseudo_header(const uint8_t *name, size_t namelen) { return check_pseudo_header(name, namelen, REQUEST_PSEUDO_HD, REQUEST_PSEUDO_HD + REQUEST_PSEUDO_HDLEN); } bool check_http2_response_pseudo_header(const uint8_t *name, size_t namelen) { return check_pseudo_header(name, namelen, RESPONSE_PSEUDO_HD, RESPONSE_PSEUDO_HD + RESPONSE_PSEUDO_HDLEN); } void normalize_headers(Headers &nva) { for (auto &kv : nva) { util::inp_strlower(kv.name); } std::stable_sort(std::begin(nva), std::end(nva), name_less); } Headers::value_type to_header(const uint8_t *name, size_t namelen, const uint8_t *value, size_t valuelen, bool no_index) { return Header(std::string(reinterpret_cast(name), namelen), std::string(reinterpret_cast(value), valuelen), no_index); } void add_header(Headers &nva, const uint8_t *name, size_t namelen, const uint8_t *value, size_t valuelen, bool no_index) { if (valuelen > 0) { size_t i, j; for (i = 0; i < valuelen && (value[i] == ' ' || value[i] == '\t'); ++i) ; for (j = valuelen - 1; j > i && (value[j] == ' ' || value[j] == '\t'); --j) ; value += i; valuelen -= i + (valuelen - j - 1); } nva.push_back(to_header(name, namelen, value, valuelen, no_index)); } const Headers::value_type *get_unique_header(const Headers &nva, const char *name) { auto nv = Headers::value_type(name, ""); auto i = std::lower_bound(std::begin(nva), std::end(nva), nv, name_less); if (i != std::end(nva) && (*i).name == nv.name) { auto j = i + 1; if (j == std::end(nva) || (*j).name != nv.name) { return &(*i); } } return nullptr; } const Headers::value_type *get_header(const Headers &nva, const char *name) { auto nv = Headers::value_type(name, ""); auto i = std::lower_bound(std::begin(nva), std::end(nva), nv, name_less); if (i != std::end(nva) && (*i).name == nv.name) { return &(*i); } return nullptr; } std::string value_to_str(const Headers::value_type *nv) { if (nv) { return nv->value; } return ""; } bool non_empty_value(const Headers::value_type *nv) { return nv && !nv->value.empty(); } nghttp2_nv make_nv(const std::string &name, const std::string &value, bool no_index) { uint8_t flags; flags = no_index ? NGHTTP2_NV_FLAG_NO_INDEX : NGHTTP2_NV_FLAG_NONE; return {(uint8_t *)name.c_str(), (uint8_t *)value.c_str(), name.size(), value.size(), flags}; } void copy_norm_headers_to_nva(std::vector &nva, const Headers &headers) { size_t i, j; for (i = 0, j = 0; i < headers.size() && j < IGN_HDLEN;) { auto &kv = headers[i]; int rv = strcmp(kv.name.c_str(), IGN_HD[j]); if (rv < 0) { if (!kv.name.empty() && kv.name.c_str()[0] != ':') { nva.push_back(make_nv(kv.name, kv.value, kv.no_index)); } ++i; } else if (rv > 0) { ++j; } else { ++i; } } for (; i < headers.size(); ++i) { auto &kv = headers[i]; if (!kv.name.empty() && kv.name.c_str()[0] != ':') { nva.push_back(make_nv(kv.name, kv.value, kv.no_index)); } } } void build_http1_headers_from_norm_headers(std::string &hdrs, const Headers &headers) { size_t i, j; for (i = 0, j = 0; i < headers.size() && j < HTTP1_IGN_HDLEN;) { auto &kv = headers[i]; auto rv = strcmp(kv.name.c_str(), HTTP1_IGN_HD[j]); if (rv < 0) { if (!kv.name.empty() && kv.name.c_str()[0] != ':') { hdrs += kv.name; capitalize(hdrs, hdrs.size() - kv.name.size()); hdrs += ": "; hdrs += kv.value; sanitize_header_value(hdrs, hdrs.size() - kv.value.size()); hdrs += "\r\n"; } ++i; } else if (rv > 0) { ++j; } else { ++i; } } for (; i < headers.size(); ++i) { auto &kv = headers[i]; if (!kv.name.empty() && kv.name.c_str()[0] != ':') { hdrs += kv.name; capitalize(hdrs, hdrs.size() - kv.name.size()); hdrs += ": "; hdrs += kv.value; sanitize_header_value(hdrs, hdrs.size() - kv.value.size()); hdrs += "\r\n"; } } } int32_t determine_window_update_transmission(nghttp2_session *session, int32_t stream_id) { int32_t recv_length, window_size; if (stream_id == 0) { recv_length = nghttp2_session_get_effective_recv_data_length(session); window_size = nghttp2_session_get_effective_local_window_size(session); } else { recv_length = nghttp2_session_get_stream_effective_recv_data_length( session, stream_id); window_size = nghttp2_session_get_stream_effective_local_window_size( session, stream_id); } if (recv_length != -1 && window_size != -1) { if (recv_length >= window_size / 2) { return recv_length; } } return -1; } void dump_nv(FILE *out, const char **nv) { for (size_t i = 0; nv[i]; i += 2) { fwrite(nv[i], strlen(nv[i]), 1, out); fwrite(": ", 2, 1, out); fwrite(nv[i + 1], strlen(nv[i + 1]), 1, out); fwrite("\n", 1, 1, out); } fwrite("\n", 1, 1, out); fflush(out); } void dump_nv(FILE *out, const nghttp2_nv *nva, size_t nvlen) { auto end = nva + nvlen; for (; nva != end; ++nva) { fwrite(nva->name, nva->namelen, 1, out); fwrite(": ", 2, 1, out); fwrite(nva->value, nva->valuelen, 1, out); fwrite("\n", 1, 1, out); } fwrite("\n", 1, 1, out); fflush(out); } void dump_nv(FILE *out, const Headers &nva) { for (auto &nv : nva) { fwrite(nv.name.c_str(), nv.name.size(), 1, out); fwrite(": ", 2, 1, out); fwrite(nv.value.c_str(), nv.value.size(), 1, out); fwrite("\n", 1, 1, out); } fwrite("\n", 1, 1, out); fflush(out); } std::string rewrite_location_uri(const std::string &uri, const http_parser_url &u, const std::string &request_host, const std::string &upstream_scheme, uint16_t upstream_port) { // We just rewrite host and optionally port. We don't rewrite https // link. Not sure it happens in practice. if (u.field_set & (1 << UF_SCHEMA)) { auto field = &u.field_data[UF_SCHEMA]; if (!util::streq("http", &uri[field->off], field->len)) { return ""; } } if ((u.field_set & (1 << UF_HOST)) == 0) { return ""; } auto field = &u.field_data[UF_HOST]; if (!util::startsWith(std::begin(request_host), std::end(request_host), &uri[field->off], &uri[field->off] + field->len) || (request_host.size() != field->len && request_host[field->len] != ':')) { return ""; } std::string res = upstream_scheme; res += "://"; res.append(&uri[field->off], field->len); if (upstream_scheme == "http") { if (upstream_port != 80) { res += ":"; res += util::utos(upstream_port); } } else if (upstream_scheme == "https") { if (upstream_port != 443) { res += ":"; res += util::utos(upstream_port); } } if (u.field_set & (1 << UF_PATH)) { field = &u.field_data[UF_PATH]; res.append(&uri[field->off], field->len); } if (u.field_set & (1 << UF_QUERY)) { field = &u.field_data[UF_QUERY]; res += "?"; res.append(&uri[field->off], field->len); } if (u.field_set & (1 << UF_FRAGMENT)) { field = &u.field_data[UF_FRAGMENT]; res += "#"; res.append(&uri[field->off], field->len); } return res; } int check_nv(const uint8_t *name, size_t namelen, const uint8_t *value, size_t valuelen) { if (!nghttp2_check_header_name(name, namelen)) { return 0; } if (!nghttp2_check_header_value(value, valuelen)) { return 0; } return 1; } int parse_http_status_code(const std::string &src) { if (src.size() != 3) { return -1; } int status = 0; for (auto c : src) { if (!isdigit(c)) { return -1; } status *= 10; status += c - '0'; } if (status < 100) { return -1; } return status; } void init_hdidx(int *hdidx) { memset(hdidx, -1, sizeof(hdidx[0]) * HD_MAXIDX); } // This function was generated by genheaderfunc.py. Inspired by h2o // header lookup. https://github.com/h2o/h2o void index_header(int *hdidx, const uint8_t *s, size_t len, size_t idx) { switch (len) { case 2: switch (util::lowcase(s[len - 1])) { case 'e': if (util::strieq("t", s, 1)) { hdidx[HD_TE] = idx; return; } break; } break; case 4: switch (util::lowcase(s[len - 1])) { case 't': if (util::strieq("hos", s, 3)) { hdidx[HD_HOST] = idx; return; } break; } break; case 5: switch (util::lowcase(s[len - 1])) { case 'h': if (util::strieq(":pat", s, 4)) { hdidx[HD_PATH] = idx; return; } break; } break; case 6: switch (util::lowcase(s[len - 1])) { case 't': if (util::strieq("expec", s, 5)) { hdidx[HD_EXPECT] = idx; return; } break; } break; case 7: switch (util::lowcase(s[len - 1])) { case 'd': if (util::strieq(":metho", s, 6)) { hdidx[HD_METHOD] = idx; return; } break; case 'e': if (util::strieq(":schem", s, 6)) { hdidx[HD_SCHEME] = idx; return; } if (util::strieq("upgrad", s, 6)) { hdidx[HD_UPGRADE] = idx; return; } break; } break; case 10: switch (util::lowcase(s[len - 1])) { case 'e': if (util::strieq("keep-aliv", s, 9)) { hdidx[HD_KEEP_ALIVE] = idx; return; } break; case 'n': if (util::strieq("connectio", s, 9)) { hdidx[HD_CONNECTION] = idx; return; } break; case 'y': if (util::strieq(":authorit", s, 9)) { hdidx[HD_AUTHORITY] = idx; return; } break; } break; case 16: switch (util::lowcase(s[len - 1])) { case 'n': if (util::strieq("proxy-connectio", s, 15)) { hdidx[HD_PROXY_CONNECTION] = idx; return; } break; } break; case 17: switch (util::lowcase(s[len - 1])) { case 'e': if (util::strieq("if-modified-sinc", s, 16)) { hdidx[HD_IF_MODIFIED_SINCE] = idx; return; } break; case 'g': if (util::strieq("transfer-encodin", s, 16)) { hdidx[HD_TRANSFER_ENCODING] = idx; return; } break; } break; } } bool check_http2_request_pseudo_header(int *hdidx, const uint8_t *s, size_t len) { switch (len) { case 5: switch (util::lowcase(s[len - 1])) { case 'h': if (util::strieq(":pat", s, 4)) { if (hdidx[HD_PATH] != -1) { return false; } return true; } break; } break; case 7: switch (util::lowcase(s[len - 1])) { case 'd': if (util::strieq(":metho", s, 6)) { if (hdidx[HD_METHOD] != -1) { return false; } return true; } break; case 'e': if (util::strieq(":schem", s, 6)) { if (hdidx[HD_SCHEME] != -1) { return false; } return true; } break; } break; case 10: switch (util::lowcase(s[len - 1])) { case 'y': if (util::strieq(":authorit", s, 9)) { if (hdidx[HD_AUTHORITY] != -1) { return false; } return true; } break; } break; } return false; } bool check_http2_headers(int *hdidx) { if (hdidx[HD_CONNECTION] != -1 || hdidx[HD_KEEP_ALIVE] != -1 || hdidx[HD_PROXY_CONNECTION] != -1 || hdidx[HD_TE] != -1 || hdidx[HD_TRANSFER_ENCODING] != -1 || hdidx[HD_UPGRADE] != -1) { return false; } return true; } bool check_http2_request_headers(int *hdidx) { if (!check_http2_headers(hdidx)) { return false; } if (hdidx[HD_METHOD] == -1 || hdidx[HD_PATH] == -1 || hdidx[HD_SCHEME] == -1 || (hdidx[HD_AUTHORITY] == -1 && hdidx[HD_HOST] == -1)) { return false; } return true; } const Headers::value_type *get_header(int *hdidx, int hdkey, const Headers &nva) { auto i = hdidx[hdkey]; if (i == -1) { return nullptr; } return &nva[i]; } } // namespace http2 } // namespace nghttp2