FreeRDP/libfreerdp/core/gateway/http.c

845 lines
16 KiB
C
Raw Normal View History

2012-04-14 22:19:31 +04:00
/**
2012-10-09 07:02:04 +04:00
* FreeRDP: A Remote Desktop Protocol Implementation
2012-04-14 22:19:31 +04:00
* Hypertext Transfer Protocol (HTTP)
*
* Copyright 2012 Marc-Andre Moreau <marcandre.moreau@gmail.com>
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#ifdef HAVE_CONFIG_H
#include "config.h"
#endif
#include <winpr/crt.h>
#include <winpr/print.h>
2012-12-14 05:23:37 +04:00
#include <winpr/stream.h>
#include <winpr/string.h>
#include <freerdp/log.h>
#ifdef HAVE_VALGRIND_MEMCHECK_H
#include <valgrind/memcheck.h>
#endif
2012-04-14 22:19:31 +04:00
#include "http.h"
#define TAG FREERDP_TAG("core.gateway.http")
2015-02-03 01:16:32 +03:00
static char* string_strnstr(const char* str1, const char* str2, size_t slen)
{
char c, sc;
size_t len;
if ((c = *str2++) != '\0')
{
len = strlen(str2);
do
{
do
{
if (slen-- < 1 || (sc = *str1++) == '\0')
return NULL;
}
while(sc != c);
if (len > slen)
return NULL;
}
while(strncmp(str1, str2, len) != 0);
str1--;
}
return ((char*) str1);
}
static BOOL strings_equals_nocase(void* obj1, void* obj2)
{
if (!obj1 || !obj2)
return FALSE;
return _stricmp(obj1, obj2) == 0;
}
static void string_free(void* obj1)
{
if (!obj1)
return;
free(obj1);
}
2014-08-18 21:34:47 +04:00
HttpContext* http_context_new()
2012-04-14 22:19:31 +04:00
{
return (HttpContext*) calloc(1, sizeof(HttpContext));
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_method(HttpContext* context, const char* Method)
2012-04-14 22:19:31 +04:00
{
free(context->Method);
context->Method = _strdup(Method);
if (!context->Method)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_uri(HttpContext* context, const char* URI)
2012-04-14 22:19:31 +04:00
{
free(context->URI);
context->URI = _strdup(URI);
if (!context->URI)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_user_agent(HttpContext* context, const char* UserAgent)
2012-04-14 22:19:31 +04:00
{
free(context->UserAgent);
context->UserAgent = _strdup(UserAgent);
if (!context->UserAgent)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_host(HttpContext* context, const char* Host)
2012-04-14 22:19:31 +04:00
{
free(context->Host);
context->Host = _strdup(Host);
if (!context->Host)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_accept(HttpContext* context, const char* Accept)
2012-04-14 22:19:31 +04:00
{
free(context->Accept);
context->Accept = _strdup(Accept);
if (!context->Accept)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_cache_control(HttpContext* context, const char* CacheControl)
2012-04-14 22:19:31 +04:00
{
free(context->CacheControl);
context->CacheControl = _strdup(CacheControl);
if (!context->CacheControl)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_connection(HttpContext* context, const char* Connection)
2012-04-14 22:19:31 +04:00
{
free(context->Connection);
context->Connection = _strdup(Connection);
if (!context->Connection)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_context_set_pragma(HttpContext* context, const char* Pragma)
2012-04-14 22:19:31 +04:00
{
free(context->Pragma);
context->Pragma = _strdup(Pragma);
if (!context->Pragma)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
2015-03-17 21:54:16 +03:00
BOOL http_context_set_rdg_connection_id(HttpContext* context, const char* RdgConnectionId)
{
free(context->RdgConnectionId);
context->RdgConnectionId = _strdup(RdgConnectionId);
if (!context->RdgConnectionId)
return FALSE;
return TRUE;
}
void http_context_free(HttpContext* context)
2012-04-14 22:19:31 +04:00
{
if (context)
2012-04-14 22:19:31 +04:00
{
free(context->UserAgent);
free(context->Host);
free(context->URI);
free(context->Accept);
free(context->Method);
free(context->CacheControl);
free(context->Connection);
free(context->Pragma);
2015-03-17 21:54:16 +03:00
free(context->RdgConnectionId);
free(context);
2012-04-14 22:19:31 +04:00
}
}
BOOL http_request_set_method(HttpRequest* request, const char* Method)
2012-04-14 22:19:31 +04:00
{
free(request->Method);
request->Method = _strdup(Method);
if (!request->Method)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_request_set_uri(HttpRequest* request, const char* URI)
2012-04-14 22:19:31 +04:00
{
free(request->URI);
request->URI = _strdup(URI);
if (!request->URI)
return FALSE;
return TRUE;
2012-04-14 22:19:31 +04:00
}
BOOL http_request_set_auth_scheme(HttpRequest* request, const char* AuthScheme)
{
free(request->AuthScheme);
request->AuthScheme = _strdup(AuthScheme);
if (!request->AuthScheme)
return FALSE;
return TRUE;
}
BOOL http_request_set_auth_param(HttpRequest* request, const char* AuthParam)
{
free(request->AuthParam);
request->AuthParam = _strdup(AuthParam);
if (!request->AuthParam)
return FALSE;
return TRUE;
}
2015-03-17 21:54:16 +03:00
BOOL http_request_set_transfer_encoding(HttpRequest* request, const char* TransferEncoding)
{
free(request->TransferEncoding);
request->TransferEncoding = _strdup(TransferEncoding);
if (!request->TransferEncoding)
return FALSE;
return TRUE;
}
2014-08-18 21:34:47 +04:00
char* http_encode_body_line(char* param, char* value)
{
2014-08-18 21:34:47 +04:00
char* line;
int length;
length = strlen(param) + strlen(value) + 2;
2014-08-18 21:34:47 +04:00
line = (char*) malloc(length + 1);
if (!line)
return NULL;
sprintf_s(line, length + 1, "%s: %s", param, value);
return line;
}
2014-08-18 21:34:47 +04:00
char* http_encode_content_length_line(int ContentLength)
{
2014-08-18 21:34:47 +04:00
char* line;
int length;
char str[32];
_itoa_s(ContentLength, str, sizeof(str), 10);
length = strlen("Content-Length") + strlen(str) + 2;
line = (char*) malloc(length + 1);
if (!line)
return NULL;
sprintf_s(line, length + 1, "Content-Length: %s", str);
return line;
}
2014-08-18 21:34:47 +04:00
char* http_encode_header_line(char* Method, char* URI)
{
2014-08-18 21:34:47 +04:00
char* line;
int length;
length = strlen("HTTP/1.1") + strlen(Method) + strlen(URI) + 2;
2014-08-18 21:34:47 +04:00
line = (char*)malloc(length + 1);
if (!line)
return NULL;
sprintf_s(line, length + 1, "%s %s HTTP/1.1", Method, URI);
return line;
}
2014-08-18 21:34:47 +04:00
char* http_encode_authorization_line(char* AuthScheme, char* AuthParam)
{
2014-08-18 21:34:47 +04:00
char* line;
int length;
length = strlen("Authorization") + strlen(AuthScheme) + strlen(AuthParam) + 3;
2014-08-18 21:34:47 +04:00
line = (char*) malloc(length + 1);
if (!line)
return NULL;
sprintf_s(line, length + 1, "Authorization: %s %s", AuthScheme, AuthParam);
return line;
}
wStream* http_request_write(HttpContext* context, HttpRequest* request)
2012-04-14 22:19:31 +04:00
{
wStream* s;
int i, count;
2014-08-18 21:34:47 +04:00
char** lines;
2012-04-14 22:19:31 +04:00
int length = 0;
count = 0;
lines = (char**) calloc(32, sizeof(char*));
if (!lines)
return NULL;
lines[count++] = http_encode_header_line(request->Method, request->URI);
lines[count++] = http_encode_body_line("Cache-Control", context->CacheControl);
lines[count++] = http_encode_body_line("Connection", context->Connection);
lines[count++] = http_encode_body_line("Pragma", context->Pragma);
lines[count++] = http_encode_body_line("Accept", context->Accept);
lines[count++] = http_encode_body_line("User-Agent", context->UserAgent);
lines[count++] = http_encode_content_length_line(request->ContentLength);
lines[count++] = http_encode_body_line("Host", context->Host);
/* check that everything went well */
for (i = 0; i < count; i++)
{
if (!lines[i])
goto out_free;
}
2015-03-17 21:54:16 +03:00
if (context->RdgConnectionId)
{
lines[count] = http_encode_body_line("RDG-Connection-Id", context->RdgConnectionId);
if (!lines[count])
goto out_free;
count++;
}
if (request->TransferEncoding)
{
lines[count] = http_encode_body_line("Transfer-Encoding", request->TransferEncoding);
if (!lines[count])
goto out_free;
count++;
}
if (request->Authorization)
{
lines[count] = http_encode_body_line("Authorization", request->Authorization);
if (!lines[count])
goto out_free;
count++;
}
else if (request->AuthScheme && request->AuthParam)
{
lines[count] = http_encode_authorization_line(request->AuthScheme, request->AuthParam);
if (!lines[count])
goto out_free;
count++;
}
2012-04-14 22:19:31 +04:00
for (i = 0; i < count; i++)
2012-04-14 22:19:31 +04:00
{
length += (strlen(lines[i]) + 2); /* add +2 for each '\r\n' character */
2012-04-14 22:19:31 +04:00
}
length += 2; /* empty line "\r\n" at end of header */
length += 1; /* null terminator */
2012-12-14 05:23:37 +04:00
s = Stream_New(NULL, length);
if (!s)
goto out_free;
2012-04-14 22:19:31 +04:00
for (i = 0; i < count; i++)
2012-04-14 22:19:31 +04:00
{
Stream_Write(s, lines[i], strlen(lines[i]));
2012-12-14 05:23:37 +04:00
Stream_Write(s, "\r\n", 2);
free(lines[i]);
2012-04-14 22:19:31 +04:00
}
Stream_Write(s, "\r\n", 2);
free(lines);
2012-12-14 05:23:37 +04:00
Stream_Write(s, "\0", 1); /* append null terminator */
Stream_Rewind(s, 1); /* don't include null terminator in length */
Stream_Length(s) = Stream_GetPosition(s);
2012-04-14 22:19:31 +04:00
return s;
out_free:
for (i = 0; i < 9; i++)
2012-04-14 22:19:31 +04:00
{
if (lines[i])
free(lines[i]);
2012-04-14 22:19:31 +04:00
}
free(lines);
return NULL;
}
2012-04-14 22:19:31 +04:00
2014-08-18 21:34:47 +04:00
HttpRequest* http_request_new()
{
2014-08-18 21:34:47 +04:00
return (HttpRequest*) calloc(1, sizeof(HttpRequest));
2012-04-14 22:19:31 +04:00
}
void http_request_free(HttpRequest* request)
2012-04-14 22:19:31 +04:00
{
if (!request)
return;
if (request->AuthParam)
free(request->AuthParam);
if (request->AuthScheme)
free(request->AuthScheme);
if (request->Authorization)
free(request->Authorization);
free(request->Content);
free(request->Method);
free(request->URI);
free(request->TransferEncoding);
free(request);
2012-04-14 22:19:31 +04:00
}
BOOL http_response_parse_header_status_line(HttpResponse* response, char* status_line)
{
2014-11-17 02:00:09 +03:00
char* separator = NULL;
2014-08-18 21:34:47 +04:00
char* status_code;
char* reason_phrase;
2014-11-17 02:00:09 +03:00
if (status_line)
separator = strchr(status_line, ' ');
if (!separator)
return FALSE;
status_code = separator + 1;
separator = strchr(status_code, ' ');
if (!separator)
return FALSE;
reason_phrase = separator + 1;
*separator = '\0';
response->StatusCode = atoi(status_code);
response->ReasonPhrase = _strdup(reason_phrase);
if (!response->ReasonPhrase)
return FALSE;
*separator = ' ';
return TRUE;
}
BOOL http_response_parse_header_field(HttpResponse* response, char* name, char* value)
{
BOOL status = TRUE;
if (_stricmp(name, "Content-Length") == 0)
{
response->ContentLength = atoi(value);
}
2015-02-03 01:16:32 +03:00
else if (_stricmp(name, "Content-Type") == 0)
{
response->ContentType = _strdup(value);
if (!response->ContentType)
return FALSE;
}
else if (_stricmp(name, "WWW-Authenticate") == 0)
{
char* separator = NULL;
char* authScheme = NULL;
char* authValue = NULL;
separator = strchr(value, ' ');
if (separator)
{
/* WWW-Authenticate: Basic realm=""
* WWW-Authenticate: NTLM base64token
* WWW-Authenticate: Digest realm="testrealm@host.com", qop="auth, auth-int",
* nonce="dcd98b7102dd2f0e8b11d0f600bfb0c093",
* opaque="5ccc069c403ebaf9f0171e9517f40e41"
*/
*separator = '\0';
authScheme = _strdup(value);
authValue = _strdup(separator + 1);
if (!authScheme || !authValue)
return FALSE;
*separator = ' ';
}
else
{
authScheme = _strdup(value);
if (!authScheme)
return FALSE;
authValue = NULL;
}
status = ListDictionary_Add(response->Authenticates, authScheme, authValue);
}
return status;
}
BOOL http_response_parse_header(HttpResponse* response)
{
2015-02-03 01:16:32 +03:00
char c;
int count;
2014-08-18 21:34:47 +04:00
char* line;
char* name;
char* value;
char* colon_pos;
char* end_of_header;
char end_of_header_char;
if (!response)
2013-08-29 17:30:22 +04:00
return FALSE;
if (!response->lines)
2013-08-29 17:30:22 +04:00
return FALSE;
if (!http_response_parse_header_status_line(response, response->lines[0]))
return FALSE;
for (count = 1; count < response->count; count++)
{
line = response->lines[count];
/**
* name end_of_header
* | |
* v v
* <header name> : <header value>
* ^ ^
* | |
* colon_pos value
*/
2014-11-17 02:00:09 +03:00
if (line)
colon_pos = strchr(line, ':');
else
colon_pos = NULL;
if ((colon_pos == NULL) || (colon_pos == line))
return FALSE;
/* retrieve the position just after header name */
for (end_of_header = colon_pos; end_of_header != line; end_of_header--)
{
c = end_of_header[-1];
if (c != ' ' && c != '\t' && c != ':')
break;
}
if (end_of_header == line)
return FALSE;
end_of_header_char = *end_of_header;
*end_of_header = '\0';
name = line;
/* eat space and tabs before header value */
for (value = colon_pos + 1; *value; value++)
{
if ((*value != ' ') && (*value != '\t'))
break;
}
if (!http_response_parse_header_field(response, name, value))
return FALSE;
*end_of_header = end_of_header_char;
}
return TRUE;
}
void http_response_print(HttpResponse* response)
{
int i;
for (i = 0; i < response->count; i++)
{
WLog_ERR(TAG, "%s", response->lines[i]);
}
}
2014-08-18 21:34:47 +04:00
HttpResponse* http_response_recv(rdpTls* tls)
{
2015-02-03 01:16:32 +03:00
wStream* s;
int size;
int count;
int status;
2015-02-03 01:16:32 +03:00
int position;
char* line;
char* buffer;
char* header;
char* payload;
int bodyLength;
int payloadOffset;
HttpResponse* response;
2015-02-03 01:16:32 +03:00
size = 1024;
payload = NULL;
payloadOffset = 0;
2015-02-03 01:16:32 +03:00
s = Stream_New(NULL, size);
2015-02-03 01:16:32 +03:00
if (!s)
goto out_free;
buffer = (char*) Stream_Buffer(s);
response = http_response_new();
if (!response)
goto out_free;
response->ContentLength = 0;
while (TRUE)
{
2015-02-03 01:16:32 +03:00
while (!payloadOffset)
2012-11-17 12:45:15 +04:00
{
2015-02-03 01:16:32 +03:00
status = BIO_read(tls->bio, Stream_Pointer(s), Stream_Capacity(s) - Stream_GetPosition(s));
if (status <= 0)
{
if (!BIO_should_retry(tls->bio))
goto out_error;
USleep(100);
2012-11-17 12:45:15 +04:00
continue;
}
#ifdef HAVE_VALGRIND_MEMCHECK_H
2015-02-11 17:23:14 +03:00
VALGRIND_MAKE_MEM_DEFINED(Stream_Pointer(s), status);
#endif
2015-02-03 01:16:32 +03:00
Stream_Seek(s, status);
2015-02-03 01:16:32 +03:00
if (Stream_GetRemainingLength(s) < 1024)
{
Stream_EnsureRemainingCapacity(s, 1024);
buffer = (char*) Stream_Buffer(s);
payload = &buffer[payloadOffset];
}
2015-02-03 01:16:32 +03:00
position = Stream_GetPosition(s);
2015-02-03 01:16:32 +03:00
if (position >= 4)
{
line = string_strnstr(buffer, "\r\n\r\n", position);
if (line)
{
payloadOffset = (line - buffer) + 4;
payload = &buffer[payloadOffset];
}
}
}
2015-02-03 01:16:32 +03:00
if (payloadOffset)
{
count = 0;
2015-02-03 01:16:32 +03:00
line = buffer;
position = Stream_GetPosition(s);
2015-02-03 01:16:32 +03:00
while ((line = string_strnstr(line, "\r\n", payloadOffset - (line - buffer) - 2)))
{
2015-02-03 01:16:32 +03:00
line += 2;
count++;
}
response->count = count;
if (count)
{
response->lines = (char**) calloc(response->count, sizeof(char*));
if (!response->lines)
goto out_error;
}
2015-02-03 01:16:32 +03:00
header = (char*) malloc(payloadOffset);
if (!header)
goto out_error;
CopyMemory(header, buffer, payloadOffset);
header[payloadOffset - 1] = '\0';
header[payloadOffset - 2] = '\0';
count = 0;
2015-02-03 01:16:32 +03:00
line = strtok(header, "\r\n");
while (line && response->lines)
{
response->lines[count] = _strdup(line);
if (!response->lines[count])
goto out_error;
line = strtok(NULL, "\r\n");
count++;
}
2015-02-03 01:16:32 +03:00
free(header);
if (!http_response_parse_header(response))
goto out_error;
2015-02-03 01:16:32 +03:00
response->BodyLength = Stream_GetPosition(s) - payloadOffset;
if (response->BodyLength > 0)
{
response->BodyContent = (BYTE*) malloc(response->BodyLength);
if (!response->BodyContent)
goto out_error;
2015-02-03 01:16:32 +03:00
CopyMemory(response->BodyContent, payload, response->BodyLength);
}
bodyLength = 0; /* expected body length */
if (response->ContentType)
{
if (_stricmp(response->ContentType, "application/rpc") != 0)
bodyLength = response->ContentLength;
else if (_stricmp(response->ContentType, "text/plain") == 0)
2015-02-03 01:16:32 +03:00
bodyLength = response->ContentLength;
else if (_stricmp(response->ContentType, "text/html") == 0)
bodyLength = response->ContentLength;
2015-02-03 01:16:32 +03:00
}
if (bodyLength != response->BodyLength)
{
WLog_WARN(TAG, "http_response_recv: %s unexpected body length: actual: %d, expected: %d",
response->ContentType, bodyLength, response->BodyLength);
}
break;
}
2015-02-03 01:16:32 +03:00
if (Stream_GetRemainingLength(s) < 1024)
{
2015-02-03 01:16:32 +03:00
Stream_EnsureRemainingCapacity(s, 1024);
buffer = (char*) Stream_Buffer(s);
payload = &buffer[payloadOffset];
}
}
2015-02-03 01:16:32 +03:00
Stream_Free(s, TRUE);
return response;
out_error:
http_response_free(response);
out_free:
2015-02-03 01:16:32 +03:00
Stream_Free(s, TRUE);
return NULL;
}
2014-08-18 21:34:47 +04:00
HttpResponse* http_response_new()
{
HttpResponse* response = (HttpResponse*) calloc(1, sizeof(HttpResponse));
if (!response)
return NULL;
response->Authenticates = ListDictionary_New(FALSE);
ListDictionary_KeyObject(response->Authenticates)->fnObjectEquals = strings_equals_nocase;
ListDictionary_KeyObject(response->Authenticates)->fnObjectFree = string_free;
ListDictionary_ValueObject(response->Authenticates)->fnObjectEquals = strings_equals_nocase;
ListDictionary_ValueObject(response->Authenticates)->fnObjectFree = string_free;
return response;
}
void http_response_free(HttpResponse* response)
{
int i;
if (!response)
return;
for (i = 0; i < response->count; i++)
2014-11-17 03:26:31 +03:00
{
if (response->lines && response->lines[i])
free(response->lines[i]);
2014-11-17 03:26:31 +03:00
}
free(response->lines);
free(response->ReasonPhrase);
2015-02-03 01:16:32 +03:00
free(response->ContentType);
ListDictionary_Free(response->Authenticates);
if (response->BodyContent)
{
free(response->BodyContent);
response->BodyContent = NULL;
}
free(response);
}