/* * nghttp2 - HTTP/2.0 C Library * * Copyright (c) 2012 Tatsuhiro Tsujikawa * * Permission is hereby granted, free of charge, to any person obtaining * a copy of this software and associated documentation files (the * "Software"), to deal in the Software without restriction, including * without limitation the rights to use, copy, modify, merge, publish, * distribute, sublicense, and/or sell copies of the Software, and to * permit persons to whom the Software is furnished to do so, subject to * the following conditions: * * The above copyright notice and this permission notice shall be * included in all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE * LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION * OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION * WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. */ #include "http2.h" #include "util.h" namespace nghttp2 { namespace http2 { const char* get_status_string(int status_code) { switch(status_code) { case 100: return "100 Continue"; case 101: return "101 Switching Protocols"; case 200: return "200 OK"; case 201: return "201 Created"; case 202: return "202 Accepted"; case 203: return "203 Non-Authoritative Information"; case 204: return "204 No Content"; case 205: return "205 Reset Content"; case 206: return "206 Partial Content"; case 300: return "300 Multiple Choices"; case 301: return "301 Moved Permanently"; case 302: return "302 Found"; case 303: return "303 See Other"; case 304: return "304 Not Modified"; case 305: return "305 Use Proxy"; // case 306: return "306 (Unused)"; case 307: return "307 Temporary Redirect"; case 400: return "400 Bad Request"; case 401: return "401 Unauthorized"; case 402: return "402 Payment Required"; case 403: return "403 Forbidden"; case 404: return "404 Not Found"; case 405: return "405 Method Not Allowed"; case 406: return "406 Not Acceptable"; case 407: return "407 Proxy Authentication Required"; case 408: return "408 Request Timeout"; case 409: return "409 Conflict"; case 410: return "410 Gone"; case 411: return "411 Length Required"; case 412: return "412 Precondition Failed"; case 413: return "413 Request Entity Too Large"; case 414: return "414 Request-URI Too Long"; case 415: return "415 Unsupported Media Type"; case 416: return "416 Requested Range Not Satisfiable"; case 417: return "417 Expectation Failed"; case 500: return "500 Internal Server Error"; case 501: return "501 Not Implemented"; case 502: return "502 Bad Gateway"; case 503: return "503 Service Unavailable"; case 504: return "504 Gateway Timeout"; case 505: return "505 HTTP Version Not Supported"; default: return ""; } } void capitalize(std::string& s, size_t offset) { s[offset] = util::upcase(s[offset]); for(size_t i = offset+1, eoi = s.size(); i < eoi; ++i) { if(s[i-1] == '-') { s[i] = util::upcase(s[i]); } else { s[i] = util::lowcase(s[i]); } } } bool check_header_value(const char *value) { return strpbrk(value, "\r\n") == nullptr; } bool check_header_value(const nghttp2_nv* nv) { size_t i; for(i = 0; i < nv->valuelen; ++i) { if(nv->value[i] == '\r' || nv->value[i] == '\n') { return false; } } return true; } void sanitize_header_value(std::string& s, size_t offset) { for(size_t i = offset, eoi = s.size(); i < eoi; ++i) { if(s[i] == '\r' || s[i] == '\n') { s[i] = ' '; } } } void copy_url_component(std::string& dest, http_parser_url *u, int field, const char* url) { if(u->field_set & (1 << field)) { dest.assign(url+u->field_data[field].off, u->field_data[field].len); } } bool check_http2_allowed_header(const char *name) { return check_http2_allowed_header(reinterpret_cast(name), strlen(name)); } bool check_http2_allowed_header(const uint8_t *name, size_t namelen) { return !util::strieq("connection", name, namelen) && !util::strieq("host", name, namelen) && !util::strieq("keep-alive", name, namelen) && !util::strieq("proxy-connection", name, namelen) && !util::strieq("te", name, namelen) && !util::strieq("transfer-encoding", name, namelen) && !util::strieq("upgrade", name, namelen); } namespace { const char *DISALLOWED_HD[] = { "connection", "host", "keep-alive", "proxy-connection", "te", "transfer-encoding", "upgrade", }; } // namespace namespace { size_t DISALLOWED_HDLEN = sizeof(DISALLOWED_HD)/sizeof(DISALLOWED_HD[0]); } // namespace namespace { const char *IGN_HD[] = { "connection", "expect", "host", "http2-settings", "keep-alive", "proxy-connection", "te", "transfer-encoding", "upgrade", "via", "x-forwarded-for", "x-forwarded-proto", }; } // namespace namespace { size_t IGN_HDLEN = sizeof(IGN_HD)/sizeof(IGN_HD[0]); } // namespace namespace { const char *HTTP1_IGN_HD[] = { "connection", "expect", "http2-settings", "keep-alive", "proxy-connection", "upgrade", "via", "x-forwarded-for", "x-forwarded-proto", }; } // namespace namespace { size_t HTTP1_IGN_HDLEN = sizeof(HTTP1_IGN_HD)/sizeof(HTTP1_IGN_HD[0]); } // namespace namespace { auto nv_name_less = [](const nghttp2_nv& lhs, const nghttp2_nv& rhs) { return nghttp2_nv_compare_name(&lhs, &rhs) < 0; }; } // namespace bool check_http2_headers(const nghttp2_nv *nva, size_t nvlen) { for(size_t i = 0; i < DISALLOWED_HDLEN; ++i) { nghttp2_nv nv = {(uint8_t*)DISALLOWED_HD[i], nullptr, (uint16_t)strlen(DISALLOWED_HD[i]), 0}; if(std::binary_search(&nva[0], &nva[nvlen], nv, nv_name_less)) { return false; } } return true; } const nghttp2_nv* get_unique_header(const nghttp2_nv *nva, size_t nvlen, const char *name) { size_t namelen = strlen(name); nghttp2_nv nv = {(uint8_t*)name, nullptr, (uint16_t)namelen, 0}; auto i = std::lower_bound(&nva[0], &nva[nvlen], nv, nv_name_less); if(i != &nva[nvlen] && util::streq(i->name, i->namelen, (const uint8_t*)name, namelen)) { auto j = i + 1; if(j == &nva[nvlen] || !util::streq(j->name, j->namelen, (const uint8_t*)name, namelen)) { return i; } } return nullptr; } const nghttp2_nv* get_header(const nghttp2_nv *nva, size_t nvlen, const char *name) { size_t namelen = strlen(name); nghttp2_nv nv = {(uint8_t*)name, nullptr, (uint16_t)namelen, 0}; auto i = std::lower_bound(&nva[0], &nva[nvlen], nv, nv_name_less); if(i != &nva[nvlen] && util::streq(i->name, i->namelen, (const uint8_t*)name, namelen)) { return i; } return nullptr; } std::string name_to_str(const nghttp2_nv *nv) { return std::string(reinterpret_cast(nv->name), nv->namelen); } std::string value_to_str(const nghttp2_nv *nv) { return std::string(reinterpret_cast(nv->value), nv->valuelen); } bool value_lws(const nghttp2_nv *nv) { for(size_t i = 0; i < nv->valuelen; ++i) { switch(nv->value[i]) { case '\t': case ' ': continue; default: return false; } } return true; } size_t copy_norm_headers_to_nv (const char **nv, const std::vector>& headers) { size_t i, j, nvlen = 0; for(i = 0, j = 0; i < headers.size() && j < IGN_HDLEN;) { int rv = strcmp(headers[i].first.c_str(), IGN_HD[j]); if(rv < 0) { nv[nvlen++] = headers[i].first.c_str(); nv[nvlen++] = headers[i].second.c_str(); ++i; } else if(rv > 0) { ++j; } else { ++i; } } for(; i < headers.size(); ++i) { nv[nvlen++] = headers[i].first.c_str(); nv[nvlen++] = headers[i].second.c_str(); } return nvlen; } void build_http1_headers_from_norm_headers (std::string& hdrs, const std::vector>& headers) { size_t i, j; for(i = 0, j = 0; i < headers.size() && j < HTTP1_IGN_HDLEN;) { int rv = strcmp(headers[i].first.c_str(), HTTP1_IGN_HD[j]); if(rv < 0) { hdrs += headers[i].first; capitalize(hdrs, hdrs.size()-headers[i].first.size()); hdrs += ": "; hdrs += headers[i].second; sanitize_header_value(hdrs, hdrs.size() - headers[i].second.size()); hdrs += "\r\n"; ++i; } else if(rv > 0) { ++j; } else { ++i; } } for(; i < headers.size(); ++i) { hdrs += headers[i].first; capitalize(hdrs, hdrs.size()-headers[i].first.size()); hdrs += ": "; hdrs += headers[i].second; sanitize_header_value(hdrs, hdrs.size() - headers[i].second.size()); hdrs += "\r\n"; } } } // namespace http2 } // namespace nghttp2