opal-up 0.0.4 → 0.0.5
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/ext/up_ext/App.h +665 -544
- data/ext/up_ext/AsyncSocket.h +307 -284
- data/ext/up_ext/AsyncSocketData.h +35 -51
- data/ext/up_ext/BloomFilter.h +37 -42
- data/ext/up_ext/ChunkedEncoding.h +174 -175
- data/ext/up_ext/ClientApp.h +20 -23
- data/ext/up_ext/HttpContext.h +476 -381
- data/ext/up_ext/HttpContextData.h +20 -20
- data/ext/up_ext/HttpErrors.h +14 -10
- data/ext/up_ext/HttpParser.h +631 -563
- data/ext/up_ext/HttpResponse.h +526 -460
- data/ext/up_ext/HttpResponseData.h +59 -55
- data/ext/up_ext/HttpRouter.h +328 -310
- data/ext/up_ext/Loop.h +174 -168
- data/ext/up_ext/LoopData.h +60 -67
- data/ext/up_ext/MoveOnlyFunction.h +71 -80
- data/ext/up_ext/PerMessageDeflate.h +218 -198
- data/ext/up_ext/ProxyParser.h +100 -99
- data/ext/up_ext/QueryParser.h +91 -84
- data/ext/up_ext/TopicTree.h +273 -268
- data/ext/up_ext/Utilities.h +25 -25
- data/ext/up_ext/WebSocket.h +376 -310
- data/ext/up_ext/WebSocketContext.h +487 -372
- data/ext/up_ext/WebSocketContextData.h +74 -62
- data/ext/up_ext/WebSocketData.h +53 -46
- data/ext/up_ext/WebSocketExtensions.h +194 -178
- data/ext/up_ext/WebSocketHandshake.h +115 -110
- data/ext/up_ext/WebSocketProtocol.h +441 -398
- data/ext/up_ext/up_ext.c +43 -5
- data/lib/up/ruby/cluster.rb +29 -6
- data/lib/up/version.rb +1 -1
- metadata +2 -2
data/ext/up_ext/HttpParser.h
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
1
|
/*
|
|
2
|
-
* Authored by Alex Hultman, 2018-
|
|
2
|
+
* Authored by Alex Hultman, 2018-2024.
|
|
3
3
|
* Intellectual property of third-party.
|
|
4
4
|
|
|
5
5
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
@@ -20,21 +20,22 @@
|
|
|
20
20
|
|
|
21
21
|
// todo: HttpParser is in need of a few clean-ups and refactorings
|
|
22
22
|
|
|
23
|
-
/* The HTTP parser is an independent module subject to unit testing / fuzz
|
|
23
|
+
/* The HTTP parser is an independent module subject to unit testing / fuzz
|
|
24
|
+
* testing */
|
|
24
25
|
|
|
25
|
-
#include
|
|
26
|
-
#include
|
|
26
|
+
#include "ChunkedEncoding.h"
|
|
27
|
+
#include "MoveOnlyFunction.h"
|
|
27
28
|
#include <algorithm>
|
|
28
29
|
#include <climits>
|
|
29
|
-
#include <
|
|
30
|
+
#include <cstring>
|
|
30
31
|
#include <map>
|
|
31
|
-
#include
|
|
32
|
-
#include
|
|
32
|
+
#include <string>
|
|
33
|
+
#include <string_view>
|
|
33
34
|
|
|
34
35
|
#include "BloomFilter.h"
|
|
36
|
+
#include "HttpErrors.h"
|
|
35
37
|
#include "ProxyParser.h"
|
|
36
38
|
#include "QueryParser.h"
|
|
37
|
-
#include "HttpErrors.h"
|
|
38
39
|
|
|
39
40
|
namespace uWS {
|
|
40
41
|
|
|
@@ -43,638 +44,705 @@ static const unsigned int MINIMUM_HTTP_POST_PADDING = 32;
|
|
|
43
44
|
static void *FULLPTR = (void *)~(uintptr_t)0;
|
|
44
45
|
|
|
45
46
|
/* STL needs one of these */
|
|
46
|
-
template <typename T>
|
|
47
|
-
std::optional<T *>
|
|
48
|
-
return ptr ? std::optional<T *>(ptr) : std::nullopt;
|
|
47
|
+
template <typename T> std::optional<T *> optional_ptr(T *ptr) {
|
|
48
|
+
return ptr ? std::optional<T *>(ptr) : std::nullopt;
|
|
49
49
|
}
|
|
50
50
|
|
|
51
|
-
static const size_t MAX_FALLBACK_SIZE = (size_t)
|
|
51
|
+
static const size_t MAX_FALLBACK_SIZE = (size_t)atoi(
|
|
52
|
+
optional_ptr(getenv("UWS_HTTP_MAX_HEADERS_SIZE")).value_or((char *)"4096"));
|
|
52
53
|
#ifndef UWS_HTTP_MAX_HEADERS_COUNT
|
|
53
54
|
#define UWS_HTTP_MAX_HEADERS_COUNT 100
|
|
54
55
|
#endif
|
|
55
56
|
|
|
56
57
|
struct HttpRequest {
|
|
57
58
|
|
|
58
|
-
|
|
59
|
+
friend struct HttpParser;
|
|
59
60
|
|
|
60
61
|
private:
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
62
|
+
struct Header {
|
|
63
|
+
std::string_view key, value;
|
|
64
|
+
} headers[UWS_HTTP_MAX_HEADERS_COUNT];
|
|
65
|
+
bool ancientHttp;
|
|
66
|
+
unsigned int querySeparator;
|
|
67
|
+
bool didYield;
|
|
68
|
+
BloomFilter bf;
|
|
69
|
+
std::pair<int, std::string_view *> currentParameters;
|
|
70
|
+
std::map<std::string, unsigned short, std::less<>> *currentParameterOffsets =
|
|
71
|
+
nullptr;
|
|
70
72
|
|
|
71
73
|
public:
|
|
72
|
-
|
|
73
|
-
return ancientHttp;
|
|
74
|
-
}
|
|
75
|
-
|
|
76
|
-
bool getYield() {
|
|
77
|
-
return didYield;
|
|
78
|
-
}
|
|
79
|
-
|
|
80
|
-
/* Iteration over headers (key, value) */
|
|
81
|
-
struct HeaderIterator {
|
|
82
|
-
Header *ptr;
|
|
83
|
-
|
|
84
|
-
bool operator!=(const HeaderIterator &other) const {
|
|
85
|
-
/* Comparison with end is a special case */
|
|
86
|
-
if (ptr != other.ptr) {
|
|
87
|
-
return other.ptr || ptr->key.length();
|
|
88
|
-
}
|
|
89
|
-
return false;
|
|
90
|
-
}
|
|
91
|
-
|
|
92
|
-
HeaderIterator &operator++() {
|
|
93
|
-
ptr++;
|
|
94
|
-
return *this;
|
|
95
|
-
}
|
|
74
|
+
bool isAncient() { return ancientHttp; }
|
|
96
75
|
|
|
97
|
-
|
|
98
|
-
return {ptr->key, ptr->value};
|
|
99
|
-
}
|
|
100
|
-
};
|
|
101
|
-
|
|
102
|
-
HeaderIterator begin() {
|
|
103
|
-
return {headers + 1};
|
|
104
|
-
}
|
|
76
|
+
bool getYield() { return didYield; }
|
|
105
77
|
|
|
106
|
-
|
|
107
|
-
|
|
108
|
-
|
|
78
|
+
/* Iteration over headers (key, value) */
|
|
79
|
+
struct HeaderIterator {
|
|
80
|
+
Header *ptr;
|
|
109
81
|
|
|
110
|
-
|
|
111
|
-
|
|
112
|
-
|
|
113
|
-
|
|
114
|
-
|
|
115
|
-
|
|
116
|
-
if (bf.mightHave(lowerCasedHeader)) {
|
|
117
|
-
for (Header *h = headers; (++h)->key.length(); ) {
|
|
118
|
-
if (h->key.length() == lowerCasedHeader.length() && !strncmp(h->key.data(), lowerCasedHeader.data(), lowerCasedHeader.length())) {
|
|
119
|
-
return h->value;
|
|
120
|
-
}
|
|
121
|
-
}
|
|
122
|
-
}
|
|
123
|
-
return std::string_view(nullptr, 0);
|
|
82
|
+
bool operator!=(const HeaderIterator &other) const {
|
|
83
|
+
/* Comparison with end is a special case */
|
|
84
|
+
if (ptr != other.ptr) {
|
|
85
|
+
return other.ptr || ptr->key.length();
|
|
86
|
+
}
|
|
87
|
+
return false;
|
|
124
88
|
}
|
|
125
89
|
|
|
126
|
-
|
|
127
|
-
|
|
90
|
+
HeaderIterator &operator++() {
|
|
91
|
+
ptr++;
|
|
92
|
+
return *this;
|
|
128
93
|
}
|
|
129
94
|
|
|
130
|
-
std::string_view
|
|
131
|
-
|
|
95
|
+
std::pair<std::string_view, std::string_view> operator*() const {
|
|
96
|
+
return {ptr->key, ptr->value};
|
|
132
97
|
}
|
|
98
|
+
};
|
|
133
99
|
|
|
134
|
-
|
|
135
|
-
std::string_view getCaseSensitiveMethod() {
|
|
136
|
-
return std::string_view(headers->key.data(), headers->key.length());
|
|
137
|
-
}
|
|
100
|
+
HeaderIterator begin() { return {headers + 1}; }
|
|
138
101
|
|
|
139
|
-
|
|
140
|
-
/* Compatibility hack: lower case method (todo: remove when major version bumps) */
|
|
141
|
-
for (unsigned int i = 0; i < headers->key.length(); i++) {
|
|
142
|
-
((char *) headers->key.data())[i] |= 32;
|
|
143
|
-
}
|
|
102
|
+
HeaderIterator end() { return {nullptr}; }
|
|
144
103
|
|
|
145
|
-
|
|
146
|
-
|
|
104
|
+
/* If you do not want to handle this route */
|
|
105
|
+
void setYield(bool yield) { didYield = yield; }
|
|
147
106
|
|
|
148
|
-
|
|
149
|
-
|
|
150
|
-
|
|
151
|
-
|
|
152
|
-
|
|
153
|
-
|
|
154
|
-
|
|
107
|
+
std::string_view getHeader(std::string_view lowerCasedHeader) {
|
|
108
|
+
if (bf.mightHave(lowerCasedHeader)) {
|
|
109
|
+
for (Header *h = headers; (++h)->key.length();) {
|
|
110
|
+
if (h->key.length() == lowerCasedHeader.length() &&
|
|
111
|
+
!strncmp(h->key.data(), lowerCasedHeader.data(),
|
|
112
|
+
lowerCasedHeader.length())) {
|
|
113
|
+
return h->value;
|
|
155
114
|
}
|
|
115
|
+
}
|
|
156
116
|
}
|
|
157
|
-
|
|
158
|
-
|
|
159
|
-
|
|
160
|
-
|
|
161
|
-
|
|
162
|
-
|
|
163
|
-
|
|
117
|
+
return std::string_view(nullptr, 0);
|
|
118
|
+
}
|
|
119
|
+
|
|
120
|
+
std::string_view getUrl() {
|
|
121
|
+
return std::string_view(headers->value.data(), querySeparator);
|
|
122
|
+
}
|
|
123
|
+
|
|
124
|
+
std::string_view getFullUrl() {
|
|
125
|
+
return std::string_view(headers->value.data(), headers->value.length());
|
|
126
|
+
}
|
|
127
|
+
|
|
128
|
+
/* Hack: this should be getMethod */
|
|
129
|
+
std::string_view getCaseSensitiveMethod() {
|
|
130
|
+
return std::string_view(headers->key.data(), headers->key.length());
|
|
131
|
+
}
|
|
132
|
+
|
|
133
|
+
std::string_view getMethod() {
|
|
134
|
+
/* Compatibility hack: lower case method (todo: remove when major version
|
|
135
|
+
* bumps) */
|
|
136
|
+
for (unsigned int i = 0; i < headers->key.length(); i++) {
|
|
137
|
+
((char *)headers->key.data())[i] |= 32;
|
|
164
138
|
}
|
|
165
139
|
|
|
166
|
-
|
|
167
|
-
|
|
140
|
+
return std::string_view(headers->key.data(), headers->key.length());
|
|
141
|
+
}
|
|
142
|
+
|
|
143
|
+
/* Returns the raw querystring as a whole, still encoded */
|
|
144
|
+
std::string_view getQuery() {
|
|
145
|
+
if (querySeparator < headers->value.length()) {
|
|
146
|
+
/* Strip the initial ? */
|
|
147
|
+
return std::string_view(headers->value.data() + querySeparator + 1,
|
|
148
|
+
headers->value.length() - querySeparator - 1);
|
|
149
|
+
} else {
|
|
150
|
+
return std::string_view(nullptr, 0);
|
|
168
151
|
}
|
|
169
|
-
|
|
170
|
-
|
|
171
|
-
|
|
152
|
+
}
|
|
153
|
+
|
|
154
|
+
/* Finds and decodes the URI component. */
|
|
155
|
+
std::string_view getQuery(std::string_view key) {
|
|
156
|
+
/* Raw querystring including initial '?' sign */
|
|
157
|
+
std::string_view queryString =
|
|
158
|
+
std::string_view(headers->value.data() + querySeparator,
|
|
159
|
+
headers->value.length() - querySeparator);
|
|
160
|
+
|
|
161
|
+
return getDecodedQueryValue(key, queryString);
|
|
162
|
+
}
|
|
163
|
+
|
|
164
|
+
void setParameters(std::pair<int, std::string_view *> parameters) {
|
|
165
|
+
currentParameters = parameters;
|
|
166
|
+
}
|
|
167
|
+
|
|
168
|
+
void setParameterOffsets(
|
|
169
|
+
std::map<std::string, unsigned short, std::less<>> *offsets) {
|
|
170
|
+
currentParameterOffsets = offsets;
|
|
171
|
+
}
|
|
172
|
+
|
|
173
|
+
std::string_view getParameter(std::string_view name) {
|
|
174
|
+
if (!currentParameterOffsets) {
|
|
175
|
+
return {nullptr, 0};
|
|
172
176
|
}
|
|
173
|
-
|
|
174
|
-
|
|
175
|
-
|
|
176
|
-
return {nullptr, 0};
|
|
177
|
-
}
|
|
178
|
-
auto it = currentParameterOffsets->find(name);
|
|
179
|
-
if (it == currentParameterOffsets->end()) {
|
|
180
|
-
return {nullptr, 0};
|
|
181
|
-
}
|
|
182
|
-
return getParameter(it->second);
|
|
177
|
+
auto it = currentParameterOffsets->find(name);
|
|
178
|
+
if (it == currentParameterOffsets->end()) {
|
|
179
|
+
return {nullptr, 0};
|
|
183
180
|
}
|
|
184
|
-
|
|
185
|
-
|
|
186
|
-
|
|
187
|
-
|
|
188
|
-
|
|
189
|
-
|
|
190
|
-
|
|
181
|
+
return getParameter(it->second);
|
|
182
|
+
}
|
|
183
|
+
|
|
184
|
+
std::string_view getParameter(unsigned short index) {
|
|
185
|
+
if (currentParameters.first < (int)index) {
|
|
186
|
+
return {};
|
|
187
|
+
} else {
|
|
188
|
+
return currentParameters.second[index];
|
|
191
189
|
}
|
|
192
|
-
|
|
190
|
+
}
|
|
193
191
|
};
|
|
194
192
|
|
|
195
193
|
struct HttpParser {
|
|
196
194
|
|
|
197
195
|
private:
|
|
198
|
-
|
|
199
|
-
|
|
200
|
-
|
|
201
|
-
|
|
202
|
-
|
|
203
|
-
|
|
204
|
-
|
|
205
|
-
|
|
206
|
-
|
|
207
|
-
|
|
196
|
+
std::string fallback;
|
|
197
|
+
/* This guy really has only 30 bits since we reserve two highest bits to
|
|
198
|
+
* chunked encoding parsing state */
|
|
199
|
+
uint64_t remainingStreamingBytes = 0;
|
|
200
|
+
|
|
201
|
+
/* Returns UINT64_MAX on error. Maximum 999999999 is allowed. */
|
|
202
|
+
static uint64_t toUnsignedInteger(std::string_view str) {
|
|
203
|
+
/* We assume at least 64-bit integer giving us safely 999999999999999999 (18
|
|
204
|
+
* number of 9s) */
|
|
205
|
+
if (str.length() > 18) {
|
|
206
|
+
return UINT64_MAX;
|
|
207
|
+
}
|
|
208
208
|
|
|
209
|
-
|
|
210
|
-
|
|
211
|
-
|
|
212
|
-
|
|
213
|
-
|
|
214
|
-
|
|
215
|
-
|
|
216
|
-
|
|
217
|
-
return unsignedIntegerValue;
|
|
209
|
+
uint64_t unsignedIntegerValue = 0;
|
|
210
|
+
for (char c : str) {
|
|
211
|
+
/* As long as the letter is 0-9 we cannot overflow. */
|
|
212
|
+
if (c < '0' || c > '9') {
|
|
213
|
+
return UINT64_MAX;
|
|
214
|
+
}
|
|
215
|
+
unsignedIntegerValue =
|
|
216
|
+
unsignedIntegerValue * 10ull + ((unsigned int)c - (unsigned int)'0');
|
|
218
217
|
}
|
|
219
|
-
|
|
220
|
-
|
|
221
|
-
|
|
222
|
-
|
|
223
|
-
|
|
224
|
-
|
|
225
|
-
|
|
226
|
-
|
|
227
|
-
|
|
228
|
-
|
|
218
|
+
return unsignedIntegerValue;
|
|
219
|
+
}
|
|
220
|
+
|
|
221
|
+
/* RFC 9110 5.6.2. Tokens */
|
|
222
|
+
static inline bool isFieldNameByte(unsigned char c) {
|
|
223
|
+
return (c > 32) & (c < 127) & (c != '(') & (c != ')') & (c != ',') &
|
|
224
|
+
(c != '/') & (c != ':') & (c != ';') & (c != '<') & (c != '=') &
|
|
225
|
+
(c != '>') & (c != '?') & (c != '@') & (c != '[') & (c != '\\') &
|
|
226
|
+
(c != ']') & (c != '{') & (c != '}');
|
|
227
|
+
}
|
|
228
|
+
|
|
229
|
+
static inline uint64_t hasLess(uint64_t x, uint64_t n) {
|
|
230
|
+
return (((x) - ~0ULL / 255 * (n)) & ~(x) & ~0ULL / 255 * 128);
|
|
231
|
+
}
|
|
232
|
+
|
|
233
|
+
static inline uint64_t hasMore(uint64_t x, uint64_t n) {
|
|
234
|
+
return ((((x) + ~0ULL / 255 * (127 - (n))) | (x)) & ~0ULL / 255 * 128);
|
|
235
|
+
}
|
|
236
|
+
|
|
237
|
+
static inline uint64_t hasBetween(uint64_t x, uint64_t m, uint64_t n) {
|
|
238
|
+
return (((~0ULL / 255 * (127 + (n)) - ((x) & ~0ULL / 255 * 127)) & ~(x) &
|
|
239
|
+
(((x) & ~0ULL / 255 * 127) + ~0ULL / 255 * (127 - (m)))) &
|
|
240
|
+
~0ULL / 255 * 128);
|
|
241
|
+
}
|
|
242
|
+
|
|
243
|
+
static inline bool notFieldNameWord(uint64_t x) {
|
|
244
|
+
return hasLess(x, '-') | hasBetween(x, '-', '0') | hasBetween(x, '9', 'A') |
|
|
245
|
+
hasBetween(x, 'Z', 'a') | hasMore(x, 'z');
|
|
246
|
+
}
|
|
247
|
+
|
|
248
|
+
static inline void *consumeFieldName(char *p) {
|
|
249
|
+
// for (; true; p += 8) {
|
|
250
|
+
// uint64_t word;
|
|
251
|
+
// memcpy(&word, p, sizeof(uint64_t));
|
|
252
|
+
// if (notFieldNameWord(word)) {
|
|
253
|
+
while (isFieldNameByte(*(unsigned char *)p)) {
|
|
254
|
+
*(p++) |= 0x20;
|
|
229
255
|
}
|
|
230
|
-
|
|
231
|
-
|
|
232
|
-
|
|
256
|
+
return (void *)p;
|
|
257
|
+
//}
|
|
258
|
+
// word |= 0x2020202020202020ull;
|
|
259
|
+
// memcpy(p, &word, sizeof(uint64_t));
|
|
260
|
+
//}
|
|
261
|
+
}
|
|
262
|
+
|
|
263
|
+
/* Puts method as key, target as value and returns non-null (or nullptr on
|
|
264
|
+
* error). */
|
|
265
|
+
static inline char *consumeRequestLine(char *data,
|
|
266
|
+
HttpRequest::Header &header) {
|
|
267
|
+
/* Scan until single SP, assume next is / (origin request) */
|
|
268
|
+
char *start = data;
|
|
269
|
+
/* This catches the post padded CR and fails */
|
|
270
|
+
while (data[0] > 32)
|
|
271
|
+
data++;
|
|
272
|
+
if (data[0] == 32 && data[1] == '/') {
|
|
273
|
+
header.key = {start, (size_t)(data - start)};
|
|
274
|
+
data++;
|
|
275
|
+
/* Scan for less than 33 (catches post padded CR and fails) */
|
|
276
|
+
start = data;
|
|
277
|
+
for (; true; data += 8) {
|
|
278
|
+
uint64_t word;
|
|
279
|
+
memcpy(&word, data, sizeof(uint64_t));
|
|
280
|
+
if (hasLess(word, 33)) {
|
|
281
|
+
while (*(unsigned char *)data > 32)
|
|
282
|
+
data++;
|
|
283
|
+
/* Now we stand on space */
|
|
284
|
+
header.value = {start, (size_t)(data - start)};
|
|
285
|
+
/* Check that the following is http 1.1 */
|
|
286
|
+
if (memcmp(" HTTP/1.1\r\n", data, 11) == 0) {
|
|
287
|
+
return data + 11;
|
|
288
|
+
}
|
|
289
|
+
return nullptr;
|
|
290
|
+
}
|
|
291
|
+
}
|
|
233
292
|
}
|
|
234
|
-
|
|
235
|
-
|
|
236
|
-
|
|
293
|
+
return nullptr;
|
|
294
|
+
}
|
|
295
|
+
|
|
296
|
+
/* RFC 9110: 5.5 Field Values (TLDR; anything above 31 is allowed; htab (9) is
|
|
297
|
+
* also allowed) Field values are usually constrained to the range of US-ASCII
|
|
298
|
+
* characters [...] Field values containing CR, LF, or NUL characters are
|
|
299
|
+
* invalid and dangerous [...] Field values containing other CTL characters
|
|
300
|
+
* are also invalid. */
|
|
301
|
+
static inline void *tryConsumeFieldValue(char *p) {
|
|
302
|
+
for (; true; p += 8) {
|
|
303
|
+
uint64_t word;
|
|
304
|
+
memcpy(&word, p, sizeof(uint64_t));
|
|
305
|
+
if (hasLess(word, 32)) {
|
|
306
|
+
while (*(unsigned char *)p > 31)
|
|
307
|
+
p++;
|
|
308
|
+
return (void *)p;
|
|
309
|
+
}
|
|
237
310
|
}
|
|
238
|
-
|
|
239
|
-
|
|
240
|
-
|
|
311
|
+
}
|
|
312
|
+
|
|
313
|
+
/* End is only used for the proxy parser. The HTTP parser recognizes "\ra" as
|
|
314
|
+
* invalid "\r\n" scan and breaks. */
|
|
315
|
+
static unsigned int getHeaders(char *postPaddedBuffer, char *end,
|
|
316
|
+
struct HttpRequest::Header *headers,
|
|
317
|
+
void *reserved, unsigned int &err) {
|
|
318
|
+
char *preliminaryKey, *preliminaryValue, *start = postPaddedBuffer;
|
|
319
|
+
|
|
320
|
+
#ifdef UWS_WITH_PROXY
|
|
321
|
+
/* ProxyParser is passed as reserved parameter */
|
|
322
|
+
ProxyParser *pp = (ProxyParser *)reserved;
|
|
323
|
+
|
|
324
|
+
/* Parse PROXY protocol */
|
|
325
|
+
auto [done, offset] =
|
|
326
|
+
pp->parse({postPaddedBuffer, (size_t)(end - postPaddedBuffer)});
|
|
327
|
+
if (!done) {
|
|
328
|
+
/* We do not reset the ProxyParser (on filure) since it is tied to this
|
|
329
|
+
* connection, which is really only supposed to ever get one PROXY frame
|
|
330
|
+
* anyways. We do however allow multiple PROXY frames to be sent
|
|
331
|
+
* (overwrites former). */
|
|
332
|
+
return 0;
|
|
333
|
+
} else {
|
|
334
|
+
/* We have consumed this data so skip it */
|
|
335
|
+
postPaddedBuffer += offset;
|
|
241
336
|
}
|
|
337
|
+
#else
|
|
338
|
+
/* This one is unused */
|
|
339
|
+
(void)reserved;
|
|
340
|
+
(void)end;
|
|
341
|
+
#endif
|
|
242
342
|
|
|
243
|
-
|
|
244
|
-
|
|
245
|
-
|
|
246
|
-
|
|
247
|
-
|
|
248
|
-
|
|
343
|
+
/* It is critical for fallback buffering logic that we only return with
|
|
344
|
+
* success if we managed to parse a complete HTTP request (minus data).
|
|
345
|
+
* Returning success for PROXY means we can end up succeeding, yet leaving
|
|
346
|
+
* bytes in the fallback buffer which is then removed, and our counters to
|
|
347
|
+
* flip due to overflow and we end up with a crash */
|
|
348
|
+
|
|
349
|
+
/* The request line is different from the field names / field values */
|
|
350
|
+
if (!(postPaddedBuffer =
|
|
351
|
+
consumeRequestLine(postPaddedBuffer, headers[0]))) {
|
|
352
|
+
/* Error - invalid request line */
|
|
353
|
+
/* Assuming it is 505 HTTP Version Not Supported */
|
|
354
|
+
err = HTTP_ERROR_505_HTTP_VERSION_NOT_SUPPORTED;
|
|
355
|
+
return 0;
|
|
249
356
|
}
|
|
250
|
-
|
|
251
|
-
|
|
252
|
-
|
|
253
|
-
|
|
254
|
-
|
|
255
|
-
|
|
256
|
-
|
|
257
|
-
|
|
258
|
-
|
|
259
|
-
|
|
260
|
-
|
|
261
|
-
|
|
262
|
-
|
|
357
|
+
headers++;
|
|
358
|
+
|
|
359
|
+
for (unsigned int i = 1; i < UWS_HTTP_MAX_HEADERS_COUNT - 1; i++) {
|
|
360
|
+
/* Lower case and consume the field name */
|
|
361
|
+
preliminaryKey = postPaddedBuffer;
|
|
362
|
+
postPaddedBuffer = (char *)consumeFieldName(postPaddedBuffer);
|
|
363
|
+
headers->key = std::string_view(
|
|
364
|
+
preliminaryKey, (size_t)(postPaddedBuffer - preliminaryKey));
|
|
365
|
+
|
|
366
|
+
/* We should not accept whitespace between key and colon, so colon must
|
|
367
|
+
* foloow immediately */
|
|
368
|
+
if (postPaddedBuffer[0] != ':') {
|
|
369
|
+
/* Error: invalid chars in field name */
|
|
370
|
+
return 0;
|
|
371
|
+
}
|
|
372
|
+
postPaddedBuffer++;
|
|
373
|
+
|
|
374
|
+
preliminaryValue = postPaddedBuffer;
|
|
375
|
+
/* The goal of this call is to find next "\r\n", or any invalid field
|
|
376
|
+
* value chars, fast */
|
|
377
|
+
while (true) {
|
|
378
|
+
postPaddedBuffer = (char *)tryConsumeFieldValue(postPaddedBuffer);
|
|
379
|
+
/* If this is not CR then we caught some stinky invalid char on the way
|
|
380
|
+
*/
|
|
381
|
+
if (postPaddedBuffer[0] != '\r') {
|
|
382
|
+
/* If TAB then keep searching */
|
|
383
|
+
if (postPaddedBuffer[0] == '\t') {
|
|
384
|
+
postPaddedBuffer++;
|
|
385
|
+
continue;
|
|
386
|
+
}
|
|
387
|
+
/* Error - invalid chars in field value */
|
|
388
|
+
return 0;
|
|
263
389
|
}
|
|
264
|
-
|
|
265
|
-
|
|
266
|
-
|
|
267
|
-
|
|
268
|
-
|
|
269
|
-
|
|
270
|
-
/*
|
|
271
|
-
|
|
272
|
-
|
|
273
|
-
|
|
274
|
-
|
|
275
|
-
|
|
276
|
-
|
|
277
|
-
|
|
278
|
-
uint64_t word;
|
|
279
|
-
memcpy(&word, data, sizeof(uint64_t));
|
|
280
|
-
if (hasLess(word, 33)) {
|
|
281
|
-
while (*(unsigned char *)data > 32) data++;
|
|
282
|
-
/* Now we stand on space */
|
|
283
|
-
header.value = {start, (size_t) (data - start)};
|
|
284
|
-
/* Check that the following is http 1.1 */
|
|
285
|
-
if (memcmp(" HTTP/1.1\r\n", data, 11) == 0) {
|
|
286
|
-
return data + 11;
|
|
287
|
-
}
|
|
288
|
-
return nullptr;
|
|
289
|
-
}
|
|
290
|
-
}
|
|
390
|
+
break;
|
|
391
|
+
}
|
|
392
|
+
/* We fence end[0] with \r, followed by end[1] being something that is
|
|
393
|
+
* "not \n", to signify "not found". This way we can have this one single
|
|
394
|
+
* check to see if we found \r\n WITHIN our allowed search space. */
|
|
395
|
+
if (postPaddedBuffer[1] == '\n') {
|
|
396
|
+
/* Store this header, it is valid */
|
|
397
|
+
headers->value = std::string_view(
|
|
398
|
+
preliminaryValue, (size_t)(postPaddedBuffer - preliminaryValue));
|
|
399
|
+
postPaddedBuffer += 2;
|
|
400
|
+
|
|
401
|
+
/* Trim trailing whitespace (SP, HTAB) */
|
|
402
|
+
while (headers->value.length() && headers->value.back() < 33) {
|
|
403
|
+
headers->value.remove_suffix(1);
|
|
291
404
|
}
|
|
292
|
-
return nullptr;
|
|
293
|
-
}
|
|
294
405
|
|
|
295
|
-
|
|
296
|
-
|
|
297
|
-
|
|
298
|
-
* Field values containing other CTL characters are also invalid. */
|
|
299
|
-
static inline void *tryConsumeFieldValue(char *p) {
|
|
300
|
-
for (; true; p += 8) {
|
|
301
|
-
uint64_t word;
|
|
302
|
-
memcpy(&word, p, sizeof(uint64_t));
|
|
303
|
-
if (hasLess(word, 32)) {
|
|
304
|
-
while (*(unsigned char *)p > 31) p++;
|
|
305
|
-
return (void *)p;
|
|
306
|
-
}
|
|
406
|
+
/* Trim initial whitespace (SP, HTAB) */
|
|
407
|
+
while (headers->value.length() && headers->value.front() < 33) {
|
|
408
|
+
headers->value.remove_prefix(1);
|
|
307
409
|
}
|
|
308
|
-
}
|
|
309
410
|
|
|
310
|
-
/* End is only used for the proxy parser. The HTTP parser recognizes "\ra" as invalid "\r\n" scan and breaks. */
|
|
311
|
-
static unsigned int getHeaders(char *postPaddedBuffer, char *end, struct HttpRequest::Header *headers, void *reserved, unsigned int &err) {
|
|
312
|
-
char *preliminaryKey, *preliminaryValue, *start = postPaddedBuffer;
|
|
313
|
-
|
|
314
|
-
#ifdef UWS_WITH_PROXY
|
|
315
|
-
/* ProxyParser is passed as reserved parameter */
|
|
316
|
-
ProxyParser *pp = (ProxyParser *) reserved;
|
|
317
|
-
|
|
318
|
-
/* Parse PROXY protocol */
|
|
319
|
-
auto [done, offset] = pp->parse({postPaddedBuffer, (size_t) (end - postPaddedBuffer)});
|
|
320
|
-
if (!done) {
|
|
321
|
-
/* We do not reset the ProxyParser (on filure) since it is tied to this
|
|
322
|
-
* connection, which is really only supposed to ever get one PROXY frame
|
|
323
|
-
* anyways. We do however allow multiple PROXY frames to be sent (overwrites former). */
|
|
324
|
-
return 0;
|
|
325
|
-
} else {
|
|
326
|
-
/* We have consumed this data so skip it */
|
|
327
|
-
postPaddedBuffer += offset;
|
|
328
|
-
}
|
|
329
|
-
#else
|
|
330
|
-
/* This one is unused */
|
|
331
|
-
(void) reserved;
|
|
332
|
-
(void) end;
|
|
333
|
-
#endif
|
|
334
|
-
|
|
335
|
-
/* It is critical for fallback buffering logic that we only return with success
|
|
336
|
-
* if we managed to parse a complete HTTP request (minus data). Returning success
|
|
337
|
-
* for PROXY means we can end up succeeding, yet leaving bytes in the fallback buffer
|
|
338
|
-
* which is then removed, and our counters to flip due to overflow and we end up with a crash */
|
|
339
|
-
|
|
340
|
-
/* The request line is different from the field names / field values */
|
|
341
|
-
if (!(postPaddedBuffer = consumeRequestLine(postPaddedBuffer, headers[0]))) {
|
|
342
|
-
/* Error - invalid request line */
|
|
343
|
-
/* Assuming it is 505 HTTP Version Not Supported */
|
|
344
|
-
err = HTTP_ERROR_505_HTTP_VERSION_NOT_SUPPORTED;
|
|
345
|
-
return 0;
|
|
346
|
-
}
|
|
347
411
|
headers++;
|
|
348
412
|
|
|
349
|
-
|
|
350
|
-
|
|
351
|
-
|
|
352
|
-
|
|
353
|
-
|
|
354
|
-
|
|
355
|
-
|
|
356
|
-
|
|
357
|
-
|
|
358
|
-
|
|
359
|
-
|
|
360
|
-
|
|
361
|
-
|
|
362
|
-
preliminaryValue = postPaddedBuffer;
|
|
363
|
-
/* The goal of this call is to find next "\r\n", or any invalid field value chars, fast */
|
|
364
|
-
while (true) {
|
|
365
|
-
postPaddedBuffer = (char *) tryConsumeFieldValue(postPaddedBuffer);
|
|
366
|
-
/* If this is not CR then we caught some stinky invalid char on the way */
|
|
367
|
-
if (postPaddedBuffer[0] != '\r') {
|
|
368
|
-
/* If TAB then keep searching */
|
|
369
|
-
if (postPaddedBuffer[0] == '\t') {
|
|
370
|
-
postPaddedBuffer++;
|
|
371
|
-
continue;
|
|
372
|
-
}
|
|
373
|
-
/* Error - invalid chars in field value */
|
|
374
|
-
return 0;
|
|
375
|
-
}
|
|
376
|
-
break;
|
|
377
|
-
}
|
|
378
|
-
/* We fence end[0] with \r, followed by end[1] being something that is "not \n", to signify "not found".
|
|
379
|
-
* This way we can have this one single check to see if we found \r\n WITHIN our allowed search space. */
|
|
380
|
-
if (postPaddedBuffer[1] == '\n') {
|
|
381
|
-
/* Store this header, it is valid */
|
|
382
|
-
headers->value = std::string_view(preliminaryValue, (size_t) (postPaddedBuffer - preliminaryValue));
|
|
383
|
-
postPaddedBuffer += 2;
|
|
384
|
-
|
|
385
|
-
/* Trim trailing whitespace (SP, HTAB) */
|
|
386
|
-
while (headers->value.length() && headers->value.back() < 33) {
|
|
387
|
-
headers->value.remove_suffix(1);
|
|
388
|
-
}
|
|
389
|
-
|
|
390
|
-
/* Trim initial whitespace (SP, HTAB) */
|
|
391
|
-
while (headers->value.length() && headers->value.front() < 33) {
|
|
392
|
-
headers->value.remove_prefix(1);
|
|
393
|
-
}
|
|
394
|
-
|
|
395
|
-
headers++;
|
|
396
|
-
|
|
397
|
-
/* We definitely have at least one header (or request line), so check if we are done */
|
|
398
|
-
if (*postPaddedBuffer == '\r') {
|
|
399
|
-
if (postPaddedBuffer[1] == '\n') {
|
|
400
|
-
/* This cann take the very last header space */
|
|
401
|
-
headers->key = std::string_view(nullptr, 0);
|
|
402
|
-
return (unsigned int) ((postPaddedBuffer + 2) - start);
|
|
403
|
-
} else {
|
|
404
|
-
/* \r\n\r plus non-\n letter is malformed request, or simply out of search space */
|
|
405
|
-
return 0;
|
|
406
|
-
}
|
|
407
|
-
}
|
|
408
|
-
} else {
|
|
409
|
-
/* We are either out of search space or this is a malformed request */
|
|
410
|
-
return 0;
|
|
411
|
-
}
|
|
413
|
+
/* We definitely have at least one header (or request line), so check if
|
|
414
|
+
* we are done */
|
|
415
|
+
if (*postPaddedBuffer == '\r') {
|
|
416
|
+
if (postPaddedBuffer[1] == '\n') {
|
|
417
|
+
/* This cann take the very last header space */
|
|
418
|
+
headers->key = std::string_view(nullptr, 0);
|
|
419
|
+
return (unsigned int)((postPaddedBuffer + 2) - start);
|
|
420
|
+
} else {
|
|
421
|
+
/* \r\n\r plus non-\n letter is malformed request, or simply out of
|
|
422
|
+
* search space */
|
|
423
|
+
return 0;
|
|
424
|
+
}
|
|
412
425
|
}
|
|
413
|
-
|
|
426
|
+
} else {
|
|
427
|
+
/* We are either out of search space or this is a malformed request */
|
|
414
428
|
return 0;
|
|
429
|
+
}
|
|
415
430
|
}
|
|
431
|
+
/* We ran out of header space, too large request */
|
|
432
|
+
return 0;
|
|
433
|
+
}
|
|
434
|
+
|
|
435
|
+
/* This is the only caller of getHeaders and is thus the deepest part of the
|
|
436
|
+
* parser. From here we return either [consumed, user] for "keep going", or
|
|
437
|
+
* [consumed, nullptr] for "break; I am closed or upgraded to websocket" or
|
|
438
|
+
* [whatever, fullptr] for "break and close me, I am a parser error!" */
|
|
439
|
+
template <int CONSUME_MINIMALLY>
|
|
440
|
+
std::pair<unsigned int, void *> fenceAndConsumePostPadded(
|
|
441
|
+
char *data, unsigned int length, void *user, void *reserved,
|
|
442
|
+
HttpRequest *req,
|
|
443
|
+
MoveOnlyFunction<void *(void *, HttpRequest *)> &requestHandler,
|
|
444
|
+
MoveOnlyFunction<void *(void *, std::string_view, bool)> &dataHandler) {
|
|
445
|
+
|
|
446
|
+
/* How much data we CONSUMED (to throw away) */
|
|
447
|
+
unsigned int consumedTotal = 0;
|
|
448
|
+
unsigned int err = 0;
|
|
449
|
+
|
|
450
|
+
/* Fence two bytes past end of our buffer (buffer has post padded margins).
|
|
451
|
+
* This is to always catch scan for \r but not for \r\n. */
|
|
452
|
+
data[length] = '\r';
|
|
453
|
+
data[length + 1] =
|
|
454
|
+
'a'; /* Anything that is not \n, to trigger "invalid request" */
|
|
455
|
+
|
|
456
|
+
for (unsigned int consumed;
|
|
457
|
+
length && (consumed = getHeaders(data, data + length, req->headers,
|
|
458
|
+
reserved, err));) {
|
|
459
|
+
data += consumed;
|
|
460
|
+
length -= consumed;
|
|
461
|
+
consumedTotal += consumed;
|
|
462
|
+
|
|
463
|
+
/* Store HTTP version (ancient 1.0 or 1.1) */
|
|
464
|
+
req->ancientHttp = false;
|
|
465
|
+
|
|
466
|
+
/* Add all headers to bloom filter */
|
|
467
|
+
req->bf.reset();
|
|
468
|
+
for (HttpRequest::Header *h = req->headers; (++h)->key.length();) {
|
|
469
|
+
req->bf.add(h->key);
|
|
470
|
+
}
|
|
471
|
+
|
|
472
|
+
/* Break if no host header (but we can have empty string which is
|
|
473
|
+
* different from nullptr) */
|
|
474
|
+
if (!req->getHeader("host").data()) {
|
|
475
|
+
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
476
|
+
}
|
|
477
|
+
|
|
478
|
+
/* RFC 9112 6.3
|
|
479
|
+
* If a message is received with both a Transfer-Encoding and a
|
|
480
|
+
* Content-Length header field, the Transfer-Encoding overrides the
|
|
481
|
+
* Content-Length. Such a message might indicate an attempt to perform
|
|
482
|
+
* request smuggling (Section 11.2) or response splitting (Section 11.1)
|
|
483
|
+
* and ought to be handled as an error. */
|
|
484
|
+
std::string_view transferEncodingString =
|
|
485
|
+
req->getHeader("transfer-encoding");
|
|
486
|
+
std::string_view contentLengthString = req->getHeader("content-length");
|
|
487
|
+
if (transferEncodingString.length() && contentLengthString.length()) {
|
|
488
|
+
/* Returning fullptr is the same as calling the errorHandler */
|
|
489
|
+
/* We could be smart and set an error in the context along with this, to
|
|
490
|
+
* indicate what http error response we might want to return */
|
|
491
|
+
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
492
|
+
}
|
|
493
|
+
|
|
494
|
+
/* Parse query */
|
|
495
|
+
const char *querySeparatorPtr = (const char *)memchr(
|
|
496
|
+
req->headers->value.data(), '?', req->headers->value.length());
|
|
497
|
+
req->querySeparator =
|
|
498
|
+
(unsigned int)((querySeparatorPtr
|
|
499
|
+
? querySeparatorPtr
|
|
500
|
+
: req->headers->value.data() +
|
|
501
|
+
req->headers->value.length()) -
|
|
502
|
+
req->headers->value.data());
|
|
503
|
+
|
|
504
|
+
/* If returned socket is not what we put in we need
|
|
505
|
+
* to break here as we either have upgraded to
|
|
506
|
+
* WebSockets or otherwise closed the socket. */
|
|
507
|
+
void *returnedUser = requestHandler(user, req);
|
|
508
|
+
if (returnedUser != user) {
|
|
509
|
+
/* We are upgraded to WebSocket or otherwise broken */
|
|
510
|
+
return {consumedTotal, returnedUser};
|
|
511
|
+
}
|
|
512
|
+
|
|
513
|
+
/* The rules at play here according to RFC 9112 for requests are
|
|
514
|
+
* essentially: If both content-length and transfer-encoding then invalid
|
|
515
|
+
* message; must break. If has transfer-encoding then must be chunked
|
|
516
|
+
* regardless of value. If content-length then fixed length even if 0. If
|
|
517
|
+
* none of the above then fixed length is 0. */
|
|
518
|
+
|
|
519
|
+
/* RFC 9112 6.3
|
|
520
|
+
* If a message is received with both a Transfer-Encoding and a
|
|
521
|
+
* Content-Length header field, the Transfer-Encoding overrides the
|
|
522
|
+
* Content-Length. */
|
|
523
|
+
if (transferEncodingString.length()) {
|
|
524
|
+
|
|
525
|
+
/* If a proxy sent us the transfer-encoding header that 100% means it
|
|
526
|
+
* must be chunked or else the proxy is not RFC 9112 compliant.
|
|
527
|
+
* Therefore it is always better to assume this is the case, since that
|
|
528
|
+
* entirely eliminates all forms of transfer-encoding obfuscation
|
|
529
|
+
* tricks. We just rely on the header. */
|
|
530
|
+
|
|
531
|
+
/* RFC 9112 6.3
|
|
532
|
+
* If a Transfer-Encoding header field is present in a request and the
|
|
533
|
+
* chunked transfer coding is not the final encoding, the message body
|
|
534
|
+
* length cannot be determined reliably; the server MUST respond with
|
|
535
|
+
* the 400 (Bad Request) status code and then close the connection. */
|
|
536
|
+
|
|
537
|
+
/* In this case we fail later by having the wrong interpretation
|
|
538
|
+
* (assuming chunked). This could be made stricter but makes no
|
|
539
|
+
* difference either way, unless forwarding the identical message as a
|
|
540
|
+
* proxy. */
|
|
541
|
+
|
|
542
|
+
remainingStreamingBytes = STATE_IS_CHUNKED;
|
|
543
|
+
/* If consume minimally, we do not want to consume anything but we want
|
|
544
|
+
* to mark this as being chunked */
|
|
545
|
+
if (!CONSUME_MINIMALLY) {
|
|
546
|
+
/* Go ahead and parse it (todo: better heuristics for emitting FIN to
|
|
547
|
+
* the app level) */
|
|
548
|
+
std::string_view dataToConsume(data, length);
|
|
549
|
+
for (auto chunk :
|
|
550
|
+
uWS::ChunkIterator(&dataToConsume, &remainingStreamingBytes)) {
|
|
551
|
+
dataHandler(user, chunk, chunk.length() == 0);
|
|
552
|
+
}
|
|
553
|
+
if (isParsingInvalidChunkedEncoding(remainingStreamingBytes)) {
|
|
554
|
+
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
555
|
+
}
|
|
556
|
+
unsigned int consumed =
|
|
557
|
+
(length - (unsigned int)dataToConsume.length());
|
|
558
|
+
data = (char *)dataToConsume.data();
|
|
559
|
+
length = (unsigned int)dataToConsume.length();
|
|
560
|
+
consumedTotal += consumed;
|
|
561
|
+
}
|
|
562
|
+
} else if (contentLengthString.length()) {
|
|
563
|
+
remainingStreamingBytes = toUnsignedInteger(contentLengthString);
|
|
564
|
+
if (remainingStreamingBytes == UINT64_MAX) {
|
|
565
|
+
/* Parser error */
|
|
566
|
+
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
567
|
+
}
|
|
416
568
|
|
|
417
|
-
|
|
418
|
-
|
|
419
|
-
|
|
420
|
-
|
|
421
|
-
|
|
422
|
-
|
|
423
|
-
|
|
424
|
-
/* How much data we CONSUMED (to throw away) */
|
|
425
|
-
unsigned int consumedTotal = 0;
|
|
426
|
-
unsigned int err = 0;
|
|
427
|
-
|
|
428
|
-
/* Fence two bytes past end of our buffer (buffer has post padded margins).
|
|
429
|
-
* This is to always catch scan for \r but not for \r\n. */
|
|
430
|
-
data[length] = '\r';
|
|
431
|
-
data[length + 1] = 'a'; /* Anything that is not \n, to trigger "invalid request" */
|
|
432
|
-
|
|
433
|
-
for (unsigned int consumed; length && (consumed = getHeaders(data, data + length, req->headers, reserved, err)); ) {
|
|
434
|
-
data += consumed;
|
|
435
|
-
length -= consumed;
|
|
436
|
-
consumedTotal += consumed;
|
|
437
|
-
|
|
438
|
-
/* Store HTTP version (ancient 1.0 or 1.1) */
|
|
439
|
-
req->ancientHttp = false;
|
|
440
|
-
|
|
441
|
-
/* Add all headers to bloom filter */
|
|
442
|
-
req->bf.reset();
|
|
443
|
-
for (HttpRequest::Header *h = req->headers; (++h)->key.length(); ) {
|
|
444
|
-
req->bf.add(h->key);
|
|
445
|
-
}
|
|
446
|
-
|
|
447
|
-
/* Break if no host header (but we can have empty string which is different from nullptr) */
|
|
448
|
-
if (!req->getHeader("host").data()) {
|
|
449
|
-
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
450
|
-
}
|
|
451
|
-
|
|
452
|
-
/* RFC 9112 6.3
|
|
453
|
-
* If a message is received with both a Transfer-Encoding and a Content-Length header field,
|
|
454
|
-
* the Transfer-Encoding overrides the Content-Length. Such a message might indicate an attempt
|
|
455
|
-
* to perform request smuggling (Section 11.2) or response splitting (Section 11.1) and
|
|
456
|
-
* ought to be handled as an error. */
|
|
457
|
-
std::string_view transferEncodingString = req->getHeader("transfer-encoding");
|
|
458
|
-
std::string_view contentLengthString = req->getHeader("content-length");
|
|
459
|
-
if (transferEncodingString.length() && contentLengthString.length()) {
|
|
460
|
-
/* Returning fullptr is the same as calling the errorHandler */
|
|
461
|
-
/* We could be smart and set an error in the context along with this, to indicate what
|
|
462
|
-
* http error response we might want to return */
|
|
463
|
-
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
464
|
-
}
|
|
465
|
-
|
|
466
|
-
/* Parse query */
|
|
467
|
-
const char *querySeparatorPtr = (const char *) memchr(req->headers->value.data(), '?', req->headers->value.length());
|
|
468
|
-
req->querySeparator = (unsigned int) ((querySeparatorPtr ? querySeparatorPtr : req->headers->value.data() + req->headers->value.length()) - req->headers->value.data());
|
|
469
|
-
|
|
470
|
-
/* If returned socket is not what we put in we need
|
|
471
|
-
* to break here as we either have upgraded to
|
|
472
|
-
* WebSockets or otherwise closed the socket. */
|
|
473
|
-
void *returnedUser = requestHandler(user, req);
|
|
474
|
-
if (returnedUser != user) {
|
|
475
|
-
/* We are upgraded to WebSocket or otherwise broken */
|
|
476
|
-
return {consumedTotal, returnedUser};
|
|
477
|
-
}
|
|
478
|
-
|
|
479
|
-
/* The rules at play here according to RFC 9112 for requests are essentially:
|
|
480
|
-
* If both content-length and transfer-encoding then invalid message; must break.
|
|
481
|
-
* If has transfer-encoding then must be chunked regardless of value.
|
|
482
|
-
* If content-length then fixed length even if 0.
|
|
483
|
-
* If none of the above then fixed length is 0. */
|
|
484
|
-
|
|
485
|
-
/* RFC 9112 6.3
|
|
486
|
-
* If a message is received with both a Transfer-Encoding and a Content-Length header field,
|
|
487
|
-
* the Transfer-Encoding overrides the Content-Length. */
|
|
488
|
-
if (transferEncodingString.length()) {
|
|
489
|
-
|
|
490
|
-
/* If a proxy sent us the transfer-encoding header that 100% means it must be chunked or else the proxy is
|
|
491
|
-
* not RFC 9112 compliant. Therefore it is always better to assume this is the case, since that entirely eliminates
|
|
492
|
-
* all forms of transfer-encoding obfuscation tricks. We just rely on the header. */
|
|
493
|
-
|
|
494
|
-
/* RFC 9112 6.3
|
|
495
|
-
* If a Transfer-Encoding header field is present in a request and the chunked transfer coding is not the
|
|
496
|
-
* final encoding, the message body length cannot be determined reliably; the server MUST respond with the
|
|
497
|
-
* 400 (Bad Request) status code and then close the connection. */
|
|
498
|
-
|
|
499
|
-
/* In this case we fail later by having the wrong interpretation (assuming chunked).
|
|
500
|
-
* This could be made stricter but makes no difference either way, unless forwarding the identical message as a proxy. */
|
|
501
|
-
|
|
502
|
-
remainingStreamingBytes = STATE_IS_CHUNKED;
|
|
503
|
-
/* If consume minimally, we do not want to consume anything but we want to mark this as being chunked */
|
|
504
|
-
if (!CONSUME_MINIMALLY) {
|
|
505
|
-
/* Go ahead and parse it (todo: better heuristics for emitting FIN to the app level) */
|
|
506
|
-
std::string_view dataToConsume(data, length);
|
|
507
|
-
for (auto chunk : uWS::ChunkIterator(&dataToConsume, &remainingStreamingBytes)) {
|
|
508
|
-
dataHandler(user, chunk, chunk.length() == 0);
|
|
509
|
-
}
|
|
510
|
-
if (isParsingInvalidChunkedEncoding(remainingStreamingBytes)) {
|
|
511
|
-
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
512
|
-
}
|
|
513
|
-
unsigned int consumed = (length - (unsigned int) dataToConsume.length());
|
|
514
|
-
data = (char *) dataToConsume.data();
|
|
515
|
-
length = (unsigned int) dataToConsume.length();
|
|
516
|
-
consumedTotal += consumed;
|
|
517
|
-
}
|
|
518
|
-
} else if (contentLengthString.length()) {
|
|
519
|
-
remainingStreamingBytes = toUnsignedInteger(contentLengthString);
|
|
520
|
-
if (remainingStreamingBytes == UINT_MAX) {
|
|
521
|
-
/* Parser error */
|
|
522
|
-
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
523
|
-
}
|
|
524
|
-
|
|
525
|
-
if (!CONSUME_MINIMALLY) {
|
|
526
|
-
unsigned int emittable = (unsigned int) std::min<uint64_t>(remainingStreamingBytes, length);
|
|
527
|
-
dataHandler(user, std::string_view(data, emittable), emittable == remainingStreamingBytes);
|
|
528
|
-
remainingStreamingBytes -= emittable;
|
|
529
|
-
|
|
530
|
-
data += emittable;
|
|
531
|
-
length -= emittable;
|
|
532
|
-
consumedTotal += emittable;
|
|
533
|
-
}
|
|
534
|
-
} else {
|
|
535
|
-
/* If we came here without a body; emit an empty data chunk to signal no data */
|
|
536
|
-
dataHandler(user, {}, true);
|
|
537
|
-
}
|
|
569
|
+
if (!CONSUME_MINIMALLY) {
|
|
570
|
+
unsigned int emittable =
|
|
571
|
+
(unsigned int)std::min<uint64_t>(remainingStreamingBytes, length);
|
|
572
|
+
dataHandler(user, std::string_view(data, emittable),
|
|
573
|
+
emittable == remainingStreamingBytes);
|
|
574
|
+
remainingStreamingBytes -= emittable;
|
|
538
575
|
|
|
539
|
-
|
|
540
|
-
|
|
541
|
-
|
|
542
|
-
}
|
|
576
|
+
data += emittable;
|
|
577
|
+
length -= emittable;
|
|
578
|
+
consumedTotal += emittable;
|
|
543
579
|
}
|
|
544
|
-
|
|
545
|
-
|
|
546
|
-
|
|
547
|
-
}
|
|
548
|
-
|
|
580
|
+
} else {
|
|
581
|
+
/* If we came here without a body; emit an empty data chunk to signal no
|
|
582
|
+
* data */
|
|
583
|
+
dataHandler(user, {}, true);
|
|
584
|
+
}
|
|
585
|
+
|
|
586
|
+
/* Consume minimally should break as easrly as possible */
|
|
587
|
+
if (CONSUME_MINIMALLY) {
|
|
588
|
+
break;
|
|
589
|
+
}
|
|
590
|
+
}
|
|
591
|
+
/* Whenever we return FULLPTR, the interpretation of "consumed" should be
|
|
592
|
+
* the HttpError enum. */
|
|
593
|
+
if (err) {
|
|
594
|
+
return {err, FULLPTR};
|
|
549
595
|
}
|
|
596
|
+
return {consumedTotal, user};
|
|
597
|
+
}
|
|
550
598
|
|
|
551
599
|
public:
|
|
552
|
-
|
|
553
|
-
|
|
554
|
-
|
|
555
|
-
|
|
556
|
-
|
|
557
|
-
|
|
558
|
-
|
|
559
|
-
|
|
560
|
-
|
|
561
|
-
|
|
562
|
-
|
|
563
|
-
|
|
564
|
-
|
|
565
|
-
|
|
566
|
-
|
|
567
|
-
|
|
568
|
-
|
|
569
|
-
|
|
570
|
-
|
|
571
|
-
|
|
572
|
-
|
|
573
|
-
|
|
574
|
-
|
|
575
|
-
|
|
576
|
-
|
|
577
|
-
|
|
578
|
-
|
|
579
|
-
|
|
580
|
-
|
|
581
|
-
|
|
582
|
-
|
|
583
|
-
|
|
584
|
-
|
|
585
|
-
|
|
586
|
-
|
|
587
|
-
return {0, returnedUser};
|
|
588
|
-
}
|
|
589
|
-
}
|
|
590
|
-
}
|
|
600
|
+
std::pair<unsigned int, void *> consumePostPadded(
|
|
601
|
+
char *data, unsigned int length, void *user, void *reserved,
|
|
602
|
+
MoveOnlyFunction<void *(void *, HttpRequest *)> &&requestHandler,
|
|
603
|
+
MoveOnlyFunction<void *(void *, std::string_view, bool)> &&dataHandler) {
|
|
604
|
+
|
|
605
|
+
/* This resets BloomFilter by construction, but later we also reset it
|
|
606
|
+
* again. Optimize this to skip resetting twice (req could be made global)
|
|
607
|
+
*/
|
|
608
|
+
HttpRequest req;
|
|
609
|
+
|
|
610
|
+
if (remainingStreamingBytes) {
|
|
611
|
+
|
|
612
|
+
/* It's either chunked or with a content-length */
|
|
613
|
+
if (isParsingChunkedEncoding(remainingStreamingBytes)) {
|
|
614
|
+
std::string_view dataToConsume(data, length);
|
|
615
|
+
for (auto chunk :
|
|
616
|
+
uWS::ChunkIterator(&dataToConsume, &remainingStreamingBytes)) {
|
|
617
|
+
dataHandler(user, chunk, chunk.length() == 0);
|
|
618
|
+
}
|
|
619
|
+
if (isParsingInvalidChunkedEncoding(remainingStreamingBytes)) {
|
|
620
|
+
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
621
|
+
}
|
|
622
|
+
data = (char *)dataToConsume.data();
|
|
623
|
+
length = (unsigned int)dataToConsume.length();
|
|
624
|
+
} else {
|
|
625
|
+
// this is exactly the same as below!
|
|
626
|
+
// todo: refactor this
|
|
627
|
+
if (remainingStreamingBytes >= length) {
|
|
628
|
+
void *returnedUser = dataHandler(user, std::string_view(data, length),
|
|
629
|
+
remainingStreamingBytes == length);
|
|
630
|
+
remainingStreamingBytes -= length;
|
|
631
|
+
return {0, returnedUser};
|
|
632
|
+
} else {
|
|
633
|
+
void *returnedUser = dataHandler(
|
|
634
|
+
user, std::string_view(data, remainingStreamingBytes), true);
|
|
591
635
|
|
|
592
|
-
|
|
593
|
-
|
|
636
|
+
data += (unsigned int)remainingStreamingBytes;
|
|
637
|
+
length -= (unsigned int)remainingStreamingBytes;
|
|
594
638
|
|
|
595
|
-
|
|
639
|
+
remainingStreamingBytes = 0;
|
|
596
640
|
|
|
597
|
-
|
|
598
|
-
|
|
599
|
-
|
|
641
|
+
if (returnedUser != user) {
|
|
642
|
+
return {0, returnedUser};
|
|
643
|
+
}
|
|
644
|
+
}
|
|
645
|
+
}
|
|
646
|
+
|
|
647
|
+
} else if (fallback.length()) {
|
|
648
|
+
unsigned int had = (unsigned int)fallback.length();
|
|
649
|
+
|
|
650
|
+
size_t maxCopyDistance = std::min<size_t>(
|
|
651
|
+
MAX_FALLBACK_SIZE - fallback.length(), (size_t)length);
|
|
652
|
+
|
|
653
|
+
/* We don't want fallback to be short string optimized, since we want to
|
|
654
|
+
* move it */
|
|
655
|
+
fallback.reserve(fallback.length() + maxCopyDistance +
|
|
656
|
+
std::max<unsigned int>(MINIMUM_HTTP_POST_PADDING,
|
|
657
|
+
sizeof(std::string)));
|
|
658
|
+
fallback.append(data, maxCopyDistance);
|
|
659
|
+
|
|
660
|
+
// break here on break
|
|
661
|
+
std::pair<unsigned int, void *> consumed =
|
|
662
|
+
fenceAndConsumePostPadded<true>(
|
|
663
|
+
fallback.data(), (unsigned int)fallback.length(), user, reserved,
|
|
664
|
+
&req, requestHandler, dataHandler);
|
|
665
|
+
if (consumed.second != user) {
|
|
666
|
+
return consumed;
|
|
667
|
+
}
|
|
668
|
+
|
|
669
|
+
if (consumed.first) {
|
|
670
|
+
|
|
671
|
+
/* This logic assumes that we consumed everything in fallback buffer.
|
|
672
|
+
* This is critically important, as we will get an integer overflow in
|
|
673
|
+
* case of "had" being larger than what we consumed, and that we would
|
|
674
|
+
* drop data */
|
|
675
|
+
fallback.clear();
|
|
676
|
+
data += consumed.first - had;
|
|
677
|
+
length -= consumed.first - had;
|
|
600
678
|
|
|
601
|
-
|
|
602
|
-
|
|
603
|
-
|
|
604
|
-
|
|
679
|
+
if (remainingStreamingBytes) {
|
|
680
|
+
/* It's either chunked or with a content-length */
|
|
681
|
+
if (isParsingChunkedEncoding(remainingStreamingBytes)) {
|
|
682
|
+
std::string_view dataToConsume(data, length);
|
|
683
|
+
for (auto chunk :
|
|
684
|
+
uWS::ChunkIterator(&dataToConsume, &remainingStreamingBytes)) {
|
|
685
|
+
dataHandler(user, chunk, chunk.length() == 0);
|
|
686
|
+
}
|
|
687
|
+
if (isParsingInvalidChunkedEncoding(remainingStreamingBytes)) {
|
|
688
|
+
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
605
689
|
}
|
|
690
|
+
data = (char *)dataToConsume.data();
|
|
691
|
+
length = (unsigned int)dataToConsume.length();
|
|
692
|
+
} else {
|
|
693
|
+
// this is exactly the same as above!
|
|
694
|
+
if (remainingStreamingBytes >= (unsigned int)length) {
|
|
695
|
+
void *returnedUser =
|
|
696
|
+
dataHandler(user, std::string_view(data, length),
|
|
697
|
+
remainingStreamingBytes == (unsigned int)length);
|
|
698
|
+
remainingStreamingBytes -= length;
|
|
699
|
+
return {0, returnedUser};
|
|
700
|
+
} else {
|
|
701
|
+
void *returnedUser = dataHandler(
|
|
702
|
+
user, std::string_view(data, remainingStreamingBytes), true);
|
|
606
703
|
|
|
607
|
-
|
|
608
|
-
|
|
609
|
-
/* This logic assumes that we consumed everything in fallback buffer.
|
|
610
|
-
* This is critically important, as we will get an integer overflow in case
|
|
611
|
-
* of "had" being larger than what we consumed, and that we would drop data */
|
|
612
|
-
fallback.clear();
|
|
613
|
-
data += consumed.first - had;
|
|
614
|
-
length -= consumed.first - had;
|
|
615
|
-
|
|
616
|
-
if (remainingStreamingBytes) {
|
|
617
|
-
/* It's either chunked or with a content-length */
|
|
618
|
-
if (isParsingChunkedEncoding(remainingStreamingBytes)) {
|
|
619
|
-
std::string_view dataToConsume(data, length);
|
|
620
|
-
for (auto chunk : uWS::ChunkIterator(&dataToConsume, &remainingStreamingBytes)) {
|
|
621
|
-
dataHandler(user, chunk, chunk.length() == 0);
|
|
622
|
-
}
|
|
623
|
-
if (isParsingInvalidChunkedEncoding(remainingStreamingBytes)) {
|
|
624
|
-
return {HTTP_ERROR_400_BAD_REQUEST, FULLPTR};
|
|
625
|
-
}
|
|
626
|
-
data = (char *) dataToConsume.data();
|
|
627
|
-
length = (unsigned int) dataToConsume.length();
|
|
628
|
-
} else {
|
|
629
|
-
// this is exactly the same as above!
|
|
630
|
-
if (remainingStreamingBytes >= (unsigned int) length) {
|
|
631
|
-
void *returnedUser = dataHandler(user, std::string_view(data, length), remainingStreamingBytes == (unsigned int) length);
|
|
632
|
-
remainingStreamingBytes -= length;
|
|
633
|
-
return {0, returnedUser};
|
|
634
|
-
} else {
|
|
635
|
-
void *returnedUser = dataHandler(user, std::string_view(data, remainingStreamingBytes), true);
|
|
636
|
-
|
|
637
|
-
data += (unsigned int) remainingStreamingBytes;
|
|
638
|
-
length -= (unsigned int) remainingStreamingBytes;
|
|
639
|
-
|
|
640
|
-
remainingStreamingBytes = 0;
|
|
641
|
-
|
|
642
|
-
if (returnedUser != user) {
|
|
643
|
-
return {0, returnedUser};
|
|
644
|
-
}
|
|
645
|
-
}
|
|
646
|
-
}
|
|
647
|
-
}
|
|
704
|
+
data += (unsigned int)remainingStreamingBytes;
|
|
705
|
+
length -= (unsigned int)remainingStreamingBytes;
|
|
648
706
|
|
|
649
|
-
|
|
650
|
-
|
|
651
|
-
|
|
652
|
-
}
|
|
653
|
-
|
|
707
|
+
remainingStreamingBytes = 0;
|
|
708
|
+
|
|
709
|
+
if (returnedUser != user) {
|
|
710
|
+
return {0, returnedUser};
|
|
711
|
+
}
|
|
654
712
|
}
|
|
713
|
+
}
|
|
655
714
|
}
|
|
656
715
|
|
|
657
|
-
|
|
658
|
-
if (
|
|
659
|
-
|
|
716
|
+
} else {
|
|
717
|
+
if (fallback.length() == MAX_FALLBACK_SIZE) {
|
|
718
|
+
return {HTTP_ERROR_431_REQUEST_HEADER_FIELDS_TOO_LARGE, FULLPTR};
|
|
660
719
|
}
|
|
720
|
+
return {0, user};
|
|
721
|
+
}
|
|
722
|
+
}
|
|
661
723
|
|
|
662
|
-
|
|
663
|
-
length
|
|
724
|
+
std::pair<unsigned int, void *> consumed = fenceAndConsumePostPadded<false>(
|
|
725
|
+
data, length, user, reserved, &req, requestHandler, dataHandler);
|
|
726
|
+
if (consumed.second != user) {
|
|
727
|
+
return consumed;
|
|
728
|
+
}
|
|
664
729
|
|
|
665
|
-
|
|
666
|
-
|
|
667
|
-
fallback.append(data, length);
|
|
668
|
-
} else {
|
|
669
|
-
return {HTTP_ERROR_431_REQUEST_HEADER_FIELDS_TOO_LARGE, FULLPTR};
|
|
670
|
-
}
|
|
671
|
-
}
|
|
730
|
+
data += consumed.first;
|
|
731
|
+
length -= consumed.first;
|
|
672
732
|
|
|
673
|
-
|
|
674
|
-
|
|
733
|
+
if (length) {
|
|
734
|
+
if (length < MAX_FALLBACK_SIZE) {
|
|
735
|
+
fallback.append(data, length);
|
|
736
|
+
} else {
|
|
737
|
+
return {HTTP_ERROR_431_REQUEST_HEADER_FIELDS_TOO_LARGE, FULLPTR};
|
|
738
|
+
}
|
|
675
739
|
}
|
|
740
|
+
|
|
741
|
+
// added for now
|
|
742
|
+
return {0, user};
|
|
743
|
+
}
|
|
676
744
|
};
|
|
677
745
|
|
|
678
|
-
}
|
|
746
|
+
} // namespace uWS
|
|
679
747
|
|
|
680
748
|
#endif // UWS_HTTPPARSER_H
|