projects / project / uclient.git / blob
? search:


f0451cc805b7c65eb70553616198838935ee3570
[project/uclient.git] / uclient-http.c
1 /*
2 * uclient - ustream based protocol client library
3 *
4 * Copyright (C) 2014 Felix Fietkau <nbd@openwrt.org>
5 *
6 * Permission to use, copy, modify, and/or distribute this software for any
7 * purpose with or without fee is hereby granted, provided that the above
8 * copyright notice and this permission notice appear in all copies.
9 *
10 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
11 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
12 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
13 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
14 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 */
18 #include <sys/socket.h>
19 #include <stdio.h>
20 #include <ctype.h>
21 #include <unistd.h>
22 #include <stdint.h>
23 #include <fcntl.h>
24
25 #include <libubox/ustream.h>
26 #include <libubox/ustream-ssl.h>
27 #include <libubox/usock.h>
28 #include <libubox/blobmsg.h>
29
30 #include "uclient.h"
31 #include "uclient-utils.h"
32 #include "uclient-backend.h"
33
34 enum auth_type {
35 AUTH_TYPE_UNKNOWN,
36 AUTH_TYPE_NONE,
37 AUTH_TYPE_BASIC,
38 AUTH_TYPE_DIGEST,
39 };
40
41 enum request_type {
42 REQ_GET,
43 REQ_HEAD,
44 REQ_POST,
45 REQ_PUT,
46 REQ_DELETE,
47 __REQ_MAX
48 };
49
50 enum http_state {
51 HTTP_STATE_INIT,
52 HTTP_STATE_HEADERS_SENT,
53 HTTP_STATE_REQUEST_DONE,
54 HTTP_STATE_RECV_HEADERS,
55 HTTP_STATE_RECV_DATA,
56 HTTP_STATE_ERROR,
57 };
58
59 static const char * const request_types[__REQ_MAX] = {
60 [REQ_GET] = "GET",
61 [REQ_HEAD] = "HEAD",
62 [REQ_POST] = "POST",
63 [REQ_PUT] = "PUT",
64 [REQ_DELETE] = "DELETE",
65 };
66
67 struct uclient_http {
68 struct uclient uc;
69
70 const struct ustream_ssl_ops *ssl_ops;
71 struct ustream_ssl_ctx *ssl_ctx;
72 struct ustream *us;
73
74 struct ustream_fd ufd;
75 struct ustream_ssl ussl;
76
77 struct uloop_timeout disconnect_t;
78 unsigned int seq;
79
80 bool ssl_require_validation;
81 bool ssl;
82 bool eof;
83 bool connection_close;
84 bool disconnect;
85 enum request_type req_type;
86 enum http_state state;
87
88 enum auth_type auth_type;
89 char *auth_str;
90
91 long read_chunked;
92 long content_length;
93
94 int usock_flags;
95
96 uint32_t nc;
97
98 struct blob_buf headers;
99 struct blob_buf meta;
100 };
101
102 enum {
103 PREFIX_HTTP,
104 PREFIX_HTTPS,
105 __PREFIX_MAX,
106 };
107
108 static const char * const uclient_http_prefix[] = {
109 [PREFIX_HTTP] = "http://",
110 [PREFIX_HTTPS] = "https://",
111 [__PREFIX_MAX] = NULL
112 };
113
114 static int uclient_http_connect(struct uclient *cl);
115
116 static int uclient_do_connect(struct uclient_http *uh, const char *port)
117 {
118 socklen_t sl;
119 int fd;
120
121 if (uh->uc.url->port)
122 port = uh->uc.url->port;
123
124 memset(&uh->uc.remote_addr, 0, sizeof(uh->uc.remote_addr));
125
126 fd = usock_inet_timeout(USOCK_TCP | USOCK_NONBLOCK | uh->usock_flags,
127 uh->uc.url->host, port, &uh->uc.remote_addr,
128 uh->uc.timeout_msecs);
129 if (fd < 0)
130 return -1;
131
132 fcntl(fd, F_SETFL, fcntl(fd, F_GETFL) | O_NONBLOCK);
133 ustream_fd_init(&uh->ufd, fd);
134
135 sl = sizeof(uh->uc.local_addr);
136 memset(&uh->uc.local_addr, 0, sl);
137 getsockname(fd, &uh->uc.local_addr.sa, &sl);
138
139 return 0;
140 }
141
142 static void uclient_http_disconnect(struct uclient_http *uh)
143 {
144 uloop_timeout_cancel(&uh->disconnect_t);
145 if (!uh->us)
146 return;
147
148 if (uh->ssl)
149 ustream_free(&uh->ussl.stream);
150 ustream_free(&uh->ufd.stream);
151 close(uh->ufd.fd.fd);
152 uh->us = NULL;
153 }
154
155 static void uclient_http_free_url_state(struct uclient *cl)
156 {
157 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
158
159 uh->auth_type = AUTH_TYPE_UNKNOWN;
160 free(uh->auth_str);
161 uh->auth_str = NULL;
162 uclient_http_disconnect(uh);
163 }
164
165 static void uclient_http_error(struct uclient_http *uh, int code)
166 {
167 uh->state = HTTP_STATE_ERROR;
168 uh->us->eof = true;
169 ustream_state_change(uh->us);
170 uclient_backend_set_error(&uh->uc, code);
171 }
172
173 static void uclient_http_request_disconnect(struct uclient *cl)
174 {
175 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
176
177 if (!uh->us)
178 return;
179
180 uh->eof = true;
181 uh->disconnect = true;
182 uloop_timeout_set(&uh->disconnect_t, 1);
183 }
184
185 static void uclient_notify_eof(struct uclient_http *uh)
186 {
187 struct ustream *us = uh->us;
188
189 if (uh->disconnect)
190 return;
191
192 if (!uh->eof) {
193 if (!us->eof && !us->write_error)
194 return;
195
196 if (ustream_pending_data(us, false))
197 return;
198 }
199
200 if (uh->content_length < 0 && uh->read_chunked >= 0)
201 uh->uc.data_eof = true;
202
203 uclient_backend_set_eof(&uh->uc);
204
205 if (uh->connection_close)
206 uclient_http_request_disconnect(&uh->uc);
207 }
208
209 static void uclient_http_reset_state(struct uclient_http *uh)
210 {
211 uh->seq++;
212 uclient_backend_reset_state(&uh->uc);
213 uh->read_chunked = -1;
214 uh->content_length = -1;
215 uh->eof = false;
216 uh->disconnect = false;
217 uh->connection_close = false;
218 uh->state = HTTP_STATE_INIT;
219
220 if (uh->auth_type == AUTH_TYPE_UNKNOWN && !uh->uc.url->auth)
221 uh->auth_type = AUTH_TYPE_NONE;
222 }
223
224 static void uclient_http_init_request(struct uclient_http *uh)
225 {
226 uh->seq++;
227 uclient_http_reset_state(uh);
228 blob_buf_init(&uh->meta, 0);
229 }
230
231 static enum auth_type
232 uclient_http_update_auth_type(struct uclient_http *uh)
233 {
234 if (!uh->auth_str)
235 return AUTH_TYPE_NONE;
236
237 if (!strncasecmp(uh->auth_str, "basic", 5))
238 return AUTH_TYPE_BASIC;
239
240 if (!strncasecmp(uh->auth_str, "digest", 6))
241 return AUTH_TYPE_DIGEST;
242
243 return AUTH_TYPE_NONE;
244 }
245
246 static void uclient_http_process_headers(struct uclient_http *uh)
247 {
248 enum {
249 HTTP_HDR_TRANSFER_ENCODING,
250 HTTP_HDR_CONNECTION,
251 HTTP_HDR_CONTENT_LENGTH,
252 HTTP_HDR_AUTH,
253 __HTTP_HDR_MAX,
254 };
255 static const struct blobmsg_policy hdr_policy[__HTTP_HDR_MAX] = {
256 #define hdr(_name) { .name = _name, .type = BLOBMSG_TYPE_STRING }
257 [HTTP_HDR_TRANSFER_ENCODING] = hdr("transfer-encoding"),
258 [HTTP_HDR_CONNECTION] = hdr("connection"),
259 [HTTP_HDR_CONTENT_LENGTH] = hdr("content-length"),
260 [HTTP_HDR_AUTH] = hdr("www-authenticate"),
261 #undef hdr
262 };
263 struct blob_attr *tb[__HTTP_HDR_MAX];
264 struct blob_attr *cur;
265
266 blobmsg_parse(hdr_policy, __HTTP_HDR_MAX, tb, blob_data(uh->meta.head), blob_len(uh->meta.head));
267
268 cur = tb[HTTP_HDR_TRANSFER_ENCODING];
269 if (cur && strstr(blobmsg_data(cur), "chunked"))
270 uh->read_chunked = 0;
271
272 cur = tb[HTTP_HDR_CONNECTION];
273 if (cur && strstr(blobmsg_data(cur), "close"))
274 uh->connection_close = true;
275
276 cur = tb[HTTP_HDR_CONTENT_LENGTH];
277 if (cur)
278 uh->content_length = strtoul(blobmsg_data(cur), NULL, 10);
279
280 cur = tb[HTTP_HDR_AUTH];
281 if (cur) {
282 free(uh->auth_str);
283 uh->auth_str = strdup(blobmsg_data(cur));
284 }
285
286 uh->auth_type = uclient_http_update_auth_type(uh);
287 }
288
289 static bool uclient_request_supports_body(enum request_type req_type)
290 {
291 switch (req_type) {
292 case REQ_POST:
293 case REQ_PUT:
294 case REQ_DELETE:
295 return true;
296 default:
297 return false;
298 }
299 }
300
301 static void
302 uclient_http_add_auth_basic(struct uclient_http *uh)
303 {
304 struct uclient_url *url = uh->uc.url;
305 int auth_len = strlen(url->auth);
306 char *auth_buf;
307
308 if (auth_len > 512)
309 return;
310
311 auth_buf = alloca(base64_len(auth_len) + 1);
312 base64_encode(url->auth, auth_len, auth_buf);
313 ustream_printf(uh->us, "Authorization: Basic %s\r\n", auth_buf);
314 }
315
316 static char *digest_unquote_sep(char **str)
317 {
318 char *cur = *str + 1;
319 char *start = cur;
320 char *out;
321
322 if (**str != '"')
323 return NULL;
324
325 out = cur;
326 while (1) {
327 if (!*cur)
328 return NULL;
329
330 if (*cur == '"') {
331 cur++;
332 break;
333 }
334
335 if (*cur == '\\')
336 cur++;
337
338 *(out++) = *(cur++);
339 }
340
341 if (*cur == ',')
342 cur++;
343
344 *out = 0;
345 *str = cur;
346
347 return start;
348 }
349
350 static char *digest_sep(char **str)
351 {
352 char *cur, *next;
353
354 cur = *str;
355 next = strchr(*str, ',');
356 if (next) {
357 *str = next + 1;
358 *next = 0;
359 } else {
360 *str += strlen(*str);
361 }
362
363 return cur;
364 }
365
366 static bool strmatch(char **str, const char *prefix)
367 {
368 int len = strlen(prefix);
369
370 if (strncmp(*str, prefix, len) != 0 || (*str)[len] != '=')
371 return false;
372
373 *str += len + 1;
374 return true;
375 }
376
377 static void
378 get_cnonce(char *dest)
379 {
380 uint32_t val = 0;
381 FILE *f;
382
383 f = fopen("/dev/urandom", "r");
384 if (f) {
385 fread(&val, sizeof(val), 1, f);
386 fclose(f);
387 }
388
389 bin_to_hex(dest, &val, sizeof(val));
390 }
391
392 static void add_field(char **buf, int *ofs, int *len, const char *name, const char *val)
393 {
394 int available = *len - *ofs;
395 int required;
396 const char *next;
397 char *cur;
398
399 if (*len && !*buf)
400 return;
401
402 required = strlen(name) + 4 + strlen(val) * 2;
403 if (required > available)
404 *len += required - available + 64;
405
406 *buf = realloc(*buf, *len);
407 if (!*buf)
408 return;
409
410 cur = *buf + *ofs;
411 cur += sprintf(cur, ", %s=\"", name);
412
413 while ((next = strchr(val, '"'))) {
414 if (next > val) {
415 memcpy(cur, val, next - val);
416 cur += next - val;
417 }
418
419 cur += sprintf(cur, "\\\"");
420 val = next + 1;
421 }
422
423 cur += sprintf(cur, "%s\"", val);
424 *ofs = cur - *buf;
425 }
426
427 static void
428 uclient_http_add_auth_digest(struct uclient_http *uh)
429 {
430 struct uclient_url *url = uh->uc.url;
431 const char *realm = NULL, *opaque = NULL;
432 const char *user, *password;
433 char *buf, *next;
434 int len, ofs;
435
436 char cnonce_str[9];
437 char nc_str[9];
438 char ahash[33];
439 char hash[33];
440
441 struct http_digest_data data = {
442 .nc = nc_str,
443 .cnonce = cnonce_str,
444 .auth_hash = ahash,
445 };
446
447 len = strlen(uh->auth_str) + 1;
448 if (len > 512)
449 return;
450
451 buf = alloca(len);
452 strcpy(buf, uh->auth_str);
453
454 /* skip auth type */
455 strsep(&buf, " ");
456
457 next = buf;
458 while (*next) {
459 const char **dest = NULL;
460 const char *tmp;
461
462 while (*next && isspace(*next))
463 next++;
464
465 if (strmatch(&next, "realm"))
466 dest = &realm;
467 else if (strmatch(&next, "qop"))
468 dest = &data.qop;
469 else if (strmatch(&next, "nonce"))
470 dest = &data.nonce;
471 else if (strmatch(&next, "opaque"))
472 dest = &opaque;
473 else if (strmatch(&next, "stale") ||
474 strmatch(&next, "algorithm") ||
475 strmatch(&next, "auth-param")) {
476 digest_sep(&next);
477 continue;
478 } else if (strmatch(&next, "domain") ||
479 strmatch(&next, "qop-options"))
480 dest = &tmp;
481 else {
482 digest_sep(&next);
483 continue;
484 }
485
486 *dest = digest_unquote_sep(&next);
487 }
488
489 if (!realm || !data.qop || !data.nonce)
490 return;
491
492 sprintf(nc_str, "%08x", uh->nc++);
493 get_cnonce(cnonce_str);
494
495 data.qop = "auth";
496 data.uri = url->location;
497 data.method = request_types[uh->req_type];
498
499 password = strchr(url->auth, ':');
500 if (password) {
501 char *user_buf;
502
503 len = password - url->auth;
504 if (len > 256)
505 return;
506
507 user_buf = alloca(len + 1);
508 strncpy(user_buf, url->auth, len);
509 user_buf[len] = 0;
510 user = user_buf;
511 password++;
512 } else {
513 user = url->auth;
514 password = "";
515 }
516
517 http_digest_calculate_auth_hash(ahash, user, realm, password);
518 http_digest_calculate_response(hash, &data);
519
520 buf = NULL;
521 len = 0;
522 ofs = 0;
523
524 add_field(&buf, &ofs, &len, "username", user);
525 add_field(&buf, &ofs, &len, "realm", realm);
526 add_field(&buf, &ofs, &len, "nonce", data.nonce);
527 add_field(&buf, &ofs, &len, "uri", data.uri);
528 add_field(&buf, &ofs, &len, "cnonce", data.cnonce);
529 add_field(&buf, &ofs, &len, "response", hash);
530 if (opaque)
531 add_field(&buf, &ofs, &len, "opaque", opaque);
532
533 ustream_printf(uh->us, "Authorization: Digest nc=%s, qop=%s%s\r\n", data.nc, data.qop, buf);
534 free(buf);
535 }
536
537 static void
538 uclient_http_add_auth_header(struct uclient_http *uh)
539 {
540 if (!uh->uc.url->auth)
541 return;
542
543 switch (uh->auth_type) {
544 case AUTH_TYPE_UNKNOWN:
545 case AUTH_TYPE_NONE:
546 break;
547 case AUTH_TYPE_BASIC:
548 uclient_http_add_auth_basic(uh);
549 break;
550 case AUTH_TYPE_DIGEST:
551 uclient_http_add_auth_digest(uh);
552 break;
553 }
554 }
555
556 static void
557 uclient_http_send_headers(struct uclient_http *uh)
558 {
559 struct uclient_url *url = uh->uc.url;
560 struct blob_attr *cur;
561 enum request_type req_type = uh->req_type;
562 int rem;
563
564 if (uh->state >= HTTP_STATE_HEADERS_SENT)
565 return;
566
567 if (uh->uc.proxy_url)
568 url = uh->uc.proxy_url;
569
570 ustream_printf(uh->us,
571 "%s %s HTTP/1.1\r\n"
572 "Host: %s\r\n",
573 request_types[req_type],
574 url->location, url->host);
575
576 blobmsg_for_each_attr(cur, uh->headers.head, rem)
577 ustream_printf(uh->us, "%s: %s\r\n", blobmsg_name(cur), (char *) blobmsg_data(cur));
578
579 if (uclient_request_supports_body(uh->req_type))
580 ustream_printf(uh->us, "Transfer-Encoding: chunked\r\n");
581
582 uclient_http_add_auth_header(uh);
583
584 ustream_printf(uh->us, "\r\n");
585
586 uh->state = HTTP_STATE_HEADERS_SENT;
587 }
588
589 static void uclient_http_headers_complete(struct uclient_http *uh)
590 {
591 enum auth_type auth_type = uh->auth_type;
592 int seq = uh->uc.seq;
593
594 uh->state = HTTP_STATE_RECV_DATA;
595 uh->uc.meta = uh->meta.head;
596 uclient_http_process_headers(uh);
597
598 if (auth_type == AUTH_TYPE_UNKNOWN && uh->uc.status_code == 401 &&
599 (uh->req_type == REQ_HEAD || uh->req_type == REQ_GET)) {
600 uclient_http_connect(&uh->uc);
601 uclient_http_send_headers(uh);
602 uh->state = HTTP_STATE_REQUEST_DONE;
603 return;
604 }
605
606 if (uh->uc.cb->header_done)
607 uh->uc.cb->header_done(&uh->uc);
608
609 if (uh->eof || seq != uh->uc.seq)
610 return;
611
612 if (uh->req_type == REQ_HEAD || uh->uc.status_code == 204) {
613 uh->eof = true;
614 uclient_notify_eof(uh);
615 }
616 }
617
618 static void uclient_parse_http_line(struct uclient_http *uh, char *data)
619 {
620 char *name;
621 char *sep;
622
623 if (uh->state == HTTP_STATE_REQUEST_DONE) {
624 char *code;
625
626 if (!strlen(data))
627 return;
628
629 /* HTTP/1.1 */
630 strsep(&data, " ");
631
632 code = strsep(&data, " ");
633 if (!code)
634 goto error;
635
636 uh->uc.status_code = strtoul(code, &sep, 10);
637 if (sep && *sep)
638 goto error;
639
640 uh->state = HTTP_STATE_RECV_HEADERS;
641 return;
642 }
643
644 if (!*data) {
645 uclient_http_headers_complete(uh);
646 return;
647 }
648
649 sep = strchr(data, ':');
650 if (!sep)
651 return;
652
653 *(sep++) = 0;
654
655 for (name = data; *name; name++)
656 *name = tolower(*name);
657
658 name = data;
659 while (isspace(*sep))
660 sep++;
661
662 blobmsg_add_string(&uh->meta, name, sep);
663 return;
664
665 error:
666 uh->uc.status_code = 400;
667 uh->eof = true;
668 uclient_notify_eof(uh);
669 }
670
671 static void __uclient_notify_read(struct uclient_http *uh)
672 {
673 struct uclient *uc = &uh->uc;
674 unsigned int seq = uh->seq;
675 char *data;
676 int len;
677
678 if (uh->state < HTTP_STATE_REQUEST_DONE || uh->state == HTTP_STATE_ERROR)
679 return;
680
681 data = ustream_get_read_buf(uh->us, &len);
682 if (!data || !len)
683 return;
684
685 if (uh->state < HTTP_STATE_RECV_DATA) {
686 char *sep, *next;
687 int cur_len;
688
689 do {
690 sep = strchr(data, '\n');
691 if (!sep)
692 break;
693
694 next = sep + 1;
695 if (sep > data && sep[-1] == '\r')
696 sep--;
697
698 /* Check for multi-line HTTP headers */
699 if (sep > data) {
700 if (!*next)
701 return;
702
703 if (isspace(*next) && *next != '\r' && *next != '\n') {
704 sep[0] = ' ';
705 if (sep + 1 < next)
706 sep[1] = ' ';
707 continue;
708 }
709 }
710
711 *sep = 0;
712 cur_len = next - data;
713 uclient_parse_http_line(uh, data);
714 if (seq != uh->seq)
715 return;
716
717 ustream_consume(uh->us, cur_len);
718 len -= cur_len;
719
720 if (uh->eof)
721 return;
722
723 data = ustream_get_read_buf(uh->us, &len);
724 } while (data && uh->state < HTTP_STATE_RECV_DATA);
725
726 if (!len)
727 return;
728 }
729
730 if (uh->eof)
731 return;
732
733 if (uh->state == HTTP_STATE_RECV_DATA) {
734 /* Now it's uclient user turn to read some data */
735 uloop_timeout_cancel(&uc->connection_timeout);
736
737 if (uc->cb->data_read)
738 uc->cb->data_read(uc);
739 }
740 }
741
742 static void __uclient_notify_write(struct uclient_http *uh)
743 {
744 struct uclient *uc = &uh->uc;
745
746 if (uc->cb->data_sent)
747 uc->cb->data_sent(uc);
748 }
749
750 static void uclient_notify_read(struct ustream *us, int bytes)
751 {
752 struct uclient_http *uh = container_of(us, struct uclient_http, ufd.stream);
753
754 __uclient_notify_read(uh);
755 }
756
757 static void uclient_notify_write(struct ustream *us, int bytes)
758 {
759 struct uclient_http *uh = container_of(us, struct uclient_http, ufd.stream);
760
761 __uclient_notify_write(uh);
762 }
763
764 static void uclient_notify_state(struct ustream *us)
765 {
766 struct uclient_http *uh = container_of(us, struct uclient_http, ufd.stream);
767
768 if (uh->ufd.stream.write_error) {
769 uclient_http_error(uh, UCLIENT_ERROR_CONNECT);
770 return;
771 }
772 uclient_notify_eof(uh);
773 }
774
775 static int uclient_setup_http(struct uclient_http *uh)
776 {
777 struct ustream *us = &uh->ufd.stream;
778 int ret;
779
780 uh->us = us;
781 uh->ssl = false;
782
783 us->string_data = true;
784 us->notify_state = uclient_notify_state;
785 us->notify_read = uclient_notify_read;
786 us->notify_write = uclient_notify_write;
787
788 ret = uclient_do_connect(uh, "80");
789 if (ret)
790 return UCLIENT_ERROR_CONNECT;
791
792 return 0;
793 }
794
795 static void uclient_ssl_notify_read(struct ustream *us, int bytes)
796 {
797 struct uclient_http *uh = container_of(us, struct uclient_http, ussl.stream);
798
799 __uclient_notify_read(uh);
800 }
801
802 static void uclient_ssl_notify_write(struct ustream *us, int bytes)
803 {
804 struct uclient_http *uh = container_of(us, struct uclient_http, ussl.stream);
805
806 __uclient_notify_write(uh);
807 }
808
809 static void uclient_ssl_notify_state(struct ustream *us)
810 {
811 struct uclient_http *uh = container_of(us, struct uclient_http, ussl.stream);
812
813 uclient_notify_eof(uh);
814 }
815
816 static void uclient_ssl_notify_error(struct ustream_ssl *ssl, int error, const char *str)
817 {
818 struct uclient_http *uh = container_of(ssl, struct uclient_http, ussl);
819
820 uclient_http_error(uh, UCLIENT_ERROR_CONNECT);
821 }
822
823 static void uclient_ssl_notify_verify_error(struct ustream_ssl *ssl, int error, const char *str)
824 {
825 struct uclient_http *uh = container_of(ssl, struct uclient_http, ussl);
826
827 if (!uh->ssl_require_validation)
828 return;
829
830 uclient_http_error(uh, UCLIENT_ERROR_SSL_INVALID_CERT);
831 }
832
833 static void uclient_ssl_notify_connected(struct ustream_ssl *ssl)
834 {
835 struct uclient_http *uh = container_of(ssl, struct uclient_http, ussl);
836
837 if (!uh->ssl_require_validation)
838 return;
839
840 if (!uh->ussl.valid_cn)
841 uclient_http_error(uh, UCLIENT_ERROR_SSL_CN_MISMATCH);
842 }
843
844 static int uclient_setup_https(struct uclient_http *uh)
845 {
846 struct ustream *us = &uh->ussl.stream;
847 int ret;
848
849 uh->ssl = true;
850 uh->us = us;
851
852 if (!uh->ssl_ctx)
853 return UCLIENT_ERROR_MISSING_SSL_CONTEXT;
854
855 ret = uclient_do_connect(uh, "443");
856 if (ret)
857 return UCLIENT_ERROR_CONNECT;
858
859 us->string_data = true;
860 us->notify_state = uclient_ssl_notify_state;
861 us->notify_read = uclient_ssl_notify_read;
862 us->notify_write = uclient_ssl_notify_write;
863 uh->ussl.notify_error = uclient_ssl_notify_error;
864 uh->ussl.notify_verify_error = uclient_ssl_notify_verify_error;
865 uh->ussl.notify_connected = uclient_ssl_notify_connected;
866 uh->ussl.server_name = uh->uc.url->host;
867 uh->ssl_ops->init(&uh->ussl, &uh->ufd.stream, uh->ssl_ctx, false);
868 uh->ssl_ops->set_peer_cn(&uh->ussl, uh->uc.url->host);
869
870 return 0;
871 }
872
873 static int uclient_http_connect(struct uclient *cl)
874 {
875 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
876 int ret;
877
878 if (!cl->eof || uh->disconnect || uh->connection_close)
879 uclient_http_disconnect(uh);
880
881 uclient_http_init_request(uh);
882
883 if (uh->us)
884 return 0;
885
886 uh->ssl = cl->url->prefix == PREFIX_HTTPS;
887
888 if (uh->ssl)
889 ret = uclient_setup_https(uh);
890 else
891 ret = uclient_setup_http(uh);
892
893 return ret;
894 }
895
896 static void uclient_http_disconnect_cb(struct uloop_timeout *timeout)
897 {
898 struct uclient_http *uh = container_of(timeout, struct uclient_http, disconnect_t);
899
900 uclient_http_disconnect(uh);
901 }
902
903 static struct uclient *uclient_http_alloc(void)
904 {
905 struct uclient_http *uh;
906
907 uh = calloc_a(sizeof(*uh));
908 uh->disconnect_t.cb = uclient_http_disconnect_cb;
909 blob_buf_init(&uh->headers, 0);
910
911 return &uh->uc;
912 }
913
914 static void uclient_http_free_ssl_ctx(struct uclient_http *uh)
915 {
916 uh->ssl_ops = NULL;
917 uh->ssl_ctx = NULL;
918 }
919
920 static void uclient_http_free(struct uclient *cl)
921 {
922 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
923
924 uclient_http_free_url_state(cl);
925 uclient_http_free_ssl_ctx(uh);
926 blob_buf_free(&uh->headers);
927 blob_buf_free(&uh->meta);
928 free(uh);
929 }
930
931 int
932 uclient_http_set_request_type(struct uclient *cl, const char *type)
933 {
934 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
935 int i;
936
937 if (cl->backend != &uclient_backend_http)
938 return -1;
939
940 if (uh->state > HTTP_STATE_INIT)
941 return -1;
942
943 for (i = 0; i < ARRAY_SIZE(request_types); i++) {
944 if (strcmp(request_types[i], type) != 0)
945 continue;
946
947 uh->req_type = i;
948 return 0;
949 }
950
951 return -1;
952 }
953
954 int
955 uclient_http_reset_headers(struct uclient *cl)
956 {
957 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
958
959 blob_buf_init(&uh->headers, 0);
960
961 return 0;
962 }
963
964 int
965 uclient_http_set_header(struct uclient *cl, const char *name, const char *value)
966 {
967 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
968
969 if (cl->backend != &uclient_backend_http)
970 return -1;
971
972 if (uh->state > HTTP_STATE_INIT)
973 return -1;
974
975 blobmsg_add_string(&uh->headers, name, value);
976 return 0;
977 }
978
979 static int
980 uclient_http_send_data(struct uclient *cl, const char *buf, unsigned int len)
981 {
982 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
983
984 if (uh->state >= HTTP_STATE_REQUEST_DONE)
985 return -1;
986
987 uclient_http_send_headers(uh);
988
989 if (len > 0) {
990 ustream_printf(uh->us, "%X\r\n", len);
991 ustream_write(uh->us, buf, len, false);
992 ustream_printf(uh->us, "\r\n");
993 }
994
995 return len;
996 }
997
998 static int
999 uclient_http_request_done(struct uclient *cl)
1000 {
1001 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
1002
1003 if (uh->state >= HTTP_STATE_REQUEST_DONE)
1004 return -1;
1005
1006 uclient_http_send_headers(uh);
1007 if (uclient_request_supports_body(uh->req_type))
1008 ustream_printf(uh->us, "0\r\n\r\n");
1009 uh->state = HTTP_STATE_REQUEST_DONE;
1010
1011 return 0;
1012 }
1013
1014 static int
1015 uclient_http_read(struct uclient *cl, char *buf, unsigned int len)
1016 {
1017 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
1018 int read_len = 0;
1019 char *data, *data_end;
1020
1021 if (uh->state < HTTP_STATE_RECV_DATA || !uh->us)
1022 return 0;
1023
1024 data = ustream_get_read_buf(uh->us, &read_len);
1025 if (!data || !read_len)
1026 return 0;
1027
1028 data_end = data + read_len;
1029 read_len = 0;
1030
1031 if (uh->read_chunked == 0) {
1032 char *sep;
1033
1034 if (data[0] == '\r' && data[1] == '\n') {
1035 data += 2;
1036 read_len += 2;
1037 }
1038
1039 sep = strstr(data, "\r\n");
1040 if (!sep)
1041 return 0;
1042
1043 *sep = 0;
1044 uh->read_chunked = strtoul(data, NULL, 16);
1045
1046 read_len += sep + 2 - data;
1047 data = sep + 2;
1048
1049 if (!uh->read_chunked) {
1050 uh->eof = true;
1051 uh->uc.data_eof = true;
1052 }
1053 }
1054
1055 if (len > data_end - data)
1056 len = data_end - data;
1057
1058 if (uh->read_chunked >= 0) {
1059 if (len > uh->read_chunked)
1060 len = uh->read_chunked;
1061
1062 uh->read_chunked -= len;
1063 } else if (uh->content_length >= 0) {
1064 if (len > uh->content_length)
1065 len = uh->content_length;
1066
1067 uh->content_length -= len;
1068 if (!uh->content_length) {
1069 uh->eof = true;
1070 uh->uc.data_eof = true;
1071 }
1072 }
1073
1074 if (len > 0) {
1075 read_len += len;
1076 memcpy(buf, data, len);
1077 }
1078
1079 if (read_len > 0)
1080 ustream_consume(uh->us, read_len);
1081
1082 uclient_notify_eof(uh);
1083
1084 /* Now that we consumed something and if this isn't EOF, start timer again */
1085 if (!uh->uc.eof && !cl->connection_timeout.pending)
1086 uloop_timeout_set(&cl->connection_timeout, cl->timeout_msecs);
1087
1088 return len;
1089 }
1090
1091 int uclient_http_redirect(struct uclient *cl)
1092 {
1093 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
1094 struct blobmsg_policy location = {
1095 .name = "location",
1096 .type = BLOBMSG_TYPE_STRING,
1097 };
1098 struct uclient_url *url = cl->url;
1099 struct blob_attr *tb;
1100
1101 if (cl->backend != &uclient_backend_http)
1102 return false;
1103
1104 switch (cl->status_code) {
1105 case 301:
1106 case 302:
1107 case 307:
1108 break;
1109 default:
1110 return false;
1111 }
1112
1113 blobmsg_parse(&location, 1, &tb, blob_data(uh->meta.head), blob_len(uh->meta.head));
1114 if (!tb)
1115 return false;
1116
1117 url = uclient_get_url(blobmsg_data(tb), url->auth);
1118 if (!url)
1119 return false;
1120
1121 free(cl->url);
1122 cl->url = url;
1123 if (uclient_http_connect(cl))
1124 return -1;
1125
1126 uclient_http_request_done(cl);
1127
1128 return true;
1129 }
1130
1131 int uclient_http_set_ssl_ctx(struct uclient *cl, const struct ustream_ssl_ops *ops,
1132 struct ustream_ssl_ctx *ctx, bool require_validation)
1133 {
1134 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
1135
1136 if (cl->backend != &uclient_backend_http)
1137 return -1;
1138
1139 uclient_http_free_url_state(cl);
1140
1141 uclient_http_free_ssl_ctx(uh);
1142 uh->ssl_ops = ops;
1143 uh->ssl_ctx = ctx;
1144 uh->ssl_require_validation = !!ctx && require_validation;
1145
1146 return 0;
1147 }
1148
1149 int uclient_http_set_address_family(struct uclient *cl, int af)
1150 {
1151 struct uclient_http *uh = container_of(cl, struct uclient_http, uc);
1152
1153 if (cl->backend != &uclient_backend_http)
1154 return -1;
1155
1156 switch (af) {
1157 case AF_INET:
1158 uh->usock_flags = USOCK_IPV4ONLY;
1159 break;
1160 case AF_INET6:
1161 uh->usock_flags = USOCK_IPV6ONLY;
1162 break;
1163 default:
1164 uh->usock_flags = 0;
1165 break;
1166 }
1167
1168 return 0;
1169 }
1170
1171 const struct uclient_backend uclient_backend_http = {
1172 .prefix = uclient_http_prefix,
1173
1174 .alloc = uclient_http_alloc,
1175 .free = uclient_http_free,
1176 .connect = uclient_http_connect,
1177 .disconnect = uclient_http_request_disconnect,
1178 .update_url = uclient_http_free_url_state,
1179 .update_proxy_url = uclient_http_free_url_state,
1180
1181 .read = uclient_http_read,
1182 .write = uclient_http_send_data,
1183 .request = uclient_http_request_done,
1184 };
libubox HTTP client library