]>
Commit | Line | Data |
---|---|---|
99edd1c3 | 1 | /* |
b8ae064d | 2 | * Copyright (C) 1996-2023 The Squid Software Foundation and contributors |
99edd1c3 | 3 | * |
bbc27441 AJ |
4 | * Squid software is distributed under GPLv2+ license and includes |
5 | * contributions from numerous individuals and organizations. | |
6 | * Please see the COPYING and CONTRIBUTORS files for details. | |
99edd1c3 | 7 | */ |
8 | ||
bbc27441 AJ |
9 | /* DEBUG: section 73 HTTP Request */ |
10 | ||
582c2af2 | 11 | #include "squid.h" |
f4698e0b | 12 | #include "AccessLogEntry.h" |
1328cfb7 | 13 | #include "acl/AclSizeLimit.h" |
582c2af2 | 14 | #include "acl/FilledChecklist.h" |
f5e17947 | 15 | #include "CachePeer.h" |
582c2af2 | 16 | #include "client_side.h" |
cd4a5c60 | 17 | #include "client_side_request.h" |
4a3b98d7 | 18 | #include "dns/LookupDetails.h" |
cda7024f | 19 | #include "Downloader.h" |
83b053a0 | 20 | #include "error/Detail.h" |
67679543 | 21 | #include "globals.h" |
5c0c642e | 22 | #include "http.h" |
4f1c93a7 | 23 | #include "http/ContentLengthInterpreter.h" |
c99510dd | 24 | #include "http/one/RequestParser.h" |
d3dddfb5 | 25 | #include "http/Stream.h" |
7ebe76de | 26 | #include "HttpHdrCc.h" |
528b2c61 | 27 | #include "HttpHeaderRange.h" |
582c2af2 | 28 | #include "HttpRequest.h" |
38e16f92 | 29 | #include "log/Config.h" |
0eb49b6d | 30 | #include "MemBuf.h" |
ac38abee | 31 | #include "sbuf/StringConvert.h" |
4d5904f7 | 32 | #include "SquidConfig.h" |
25b6a907 | 33 | #include "Store.h" |
582c2af2 FC |
34 | |
35 | #if USE_AUTH | |
36 | #include "auth/UserRequest.h" | |
37 | #endif | |
3ff65596 AR |
38 | #if ICAP_CLIENT |
39 | #include "adaptation/icap/icap_log.h" | |
40 | #endif | |
528b2c61 | 41 | |
5ceaee75 CT |
42 | HttpRequest::HttpRequest(const MasterXaction::Pointer &mx) : |
43 | Http::Message(hoRequest), | |
44 | masterXaction(mx) | |
75faaa7a | 45 | { |
5ceaee75 | 46 | assert(mx); |
5cafad19 | 47 | init(); |
48 | } | |
49 | ||
5ceaee75 CT |
50 | HttpRequest::HttpRequest(const HttpRequestMethod& aMethod, AnyP::ProtocolType aProtocol, const char *aSchemeImg, const char *aUrlpath, const MasterXaction::Pointer &mx) : |
51 | Http::Message(hoRequest), | |
52 | masterXaction(mx) | |
5cafad19 | 53 | { |
5ceaee75 | 54 | assert(mx); |
5dfc3258 | 55 | static unsigned int id = 1; |
bf95c10a | 56 | debugs(93,7, "constructed, this=" << this << " id=" << ++id); |
5cafad19 | 57 | init(); |
d31d59d8 | 58 | initHTTP(aMethod, aProtocol, aSchemeImg, aUrlpath); |
5cafad19 | 59 | } |
60 | ||
61 | HttpRequest::~HttpRequest() | |
62 | { | |
5cafad19 | 63 | clean(); |
bf95c10a | 64 | debugs(93,7, "destructed, this=" << this); |
5cafad19 | 65 | } |
66 | ||
67 | void | |
d31d59d8 | 68 | HttpRequest::initHTTP(const HttpRequestMethod& aMethod, AnyP::ProtocolType aProtocol, const char *aSchemeImg, const char *aUrlpath) |
5cafad19 | 69 | { |
70 | method = aMethod; | |
d31d59d8 | 71 | url.setScheme(aProtocol, aSchemeImg); |
51b5dcf5 | 72 | url.path(aUrlpath); |
5cafad19 | 73 | } |
74 | ||
75 | void | |
76 | HttpRequest::init() | |
77 | { | |
c2a7cefd | 78 | method = Http::METHOD_NONE; |
4e3f4dc7 | 79 | url.clear(); |
2f1431ea | 80 | #if USE_AUTH |
aee3523a | 81 | auth_user_request = nullptr; |
2f1431ea | 82 | #endif |
b56b37cf | 83 | flags = RequestFlags(); |
aee3523a | 84 | range = nullptr; |
a3f28359 | 85 | ims = -1; |
86 | imslen = 0; | |
5cafad19 | 87 | lastmod = -1; |
4dd643d5 AJ |
88 | client_addr.setEmpty(); |
89 | my_addr.setEmpty(); | |
aee3523a | 90 | body_pipe = nullptr; |
a3f28359 | 91 | // hier |
3ff65596 | 92 | dnsWait = -1; |
83b053a0 | 93 | error.clear(); |
aee3523a AR |
94 | peer_login = nullptr; // not allocated/deallocated by this class |
95 | peer_domain = nullptr; // not allocated/deallocated by this class | |
96 | peer_host = nullptr; | |
90ab8f20 | 97 | vary_headers = SBuf(); |
35fb56c9 | 98 | myportname = null_string; |
5cafad19 | 99 | tag = null_string; |
2f1431ea | 100 | #if USE_AUTH |
5cafad19 | 101 | extacl_user = null_string; |
102 | extacl_passwd = null_string; | |
2f1431ea | 103 | #endif |
5cafad19 | 104 | extacl_log = null_string; |
8c93a598 | 105 | extacl_message = null_string; |
fb654382 | 106 | pstate = Http::Message::psReadyToParseStartLine; |
3d674977 | 107 | #if FOLLOW_X_FORWARDED_FOR |
4dd643d5 | 108 | indirect_client_addr.setEmpty(); |
3d674977 | 109 | #endif /* FOLLOW_X_FORWARDED_FOR */ |
3ff65596 | 110 | #if USE_ADAPTATION |
aee3523a | 111 | adaptHistory_ = nullptr; |
3ff65596 AR |
112 | #endif |
113 | #if ICAP_CLIENT | |
aee3523a | 114 | icapHistory_ = nullptr; |
3ff65596 | 115 | #endif |
11e3fa1c | 116 | rangeOffsetLimit = -2; //a value of -2 means not checked yet |
ec69bdb2 | 117 | forcedBodyContinuation = false; |
8596962e | 118 | } |
119 | ||
99edd1c3 | 120 | void |
5cafad19 | 121 | HttpRequest::clean() |
99edd1c3 | 122 | { |
9e008dda | 123 | // we used to assert that the pipe is NULL, but now the request only |
5f8252d2 | 124 | // points to a pipe that is owned and initiated by another object. |
aee3523a | 125 | body_pipe = nullptr; |
2f1431ea | 126 | #if USE_AUTH |
aee3523a | 127 | auth_user_request = nullptr; |
2f1431ea | 128 | #endif |
90ab8f20 | 129 | vary_headers.clear(); |
4e3f4dc7 | 130 | url.clear(); |
62e76326 | 131 | |
519e0948 | 132 | header.clean(); |
62e76326 | 133 | |
07947ad8 | 134 | if (cache_control) { |
3d7782c1 | 135 | delete cache_control; |
aee3523a | 136 | cache_control = nullptr; |
07947ad8 | 137 | } |
62e76326 | 138 | |
5cafad19 | 139 | if (range) { |
8596962e | 140 | delete range; |
aee3523a | 141 | range = nullptr; |
5cafad19 | 142 | } |
62e76326 | 143 | |
35fb56c9 AJ |
144 | myportname.clean(); |
145 | ||
75d47340 | 146 | theNotes = nullptr; |
d06e17ea | 147 | |
30abd221 | 148 | tag.clean(); |
2f1431ea | 149 | #if USE_AUTH |
30abd221 | 150 | extacl_user.clean(); |
30abd221 | 151 | extacl_passwd.clean(); |
2f1431ea | 152 | #endif |
30abd221 | 153 | extacl_log.clean(); |
3ff65596 | 154 | |
8c93a598 HN |
155 | extacl_message.clean(); |
156 | ||
46017fdd CT |
157 | etag.clean(); |
158 | ||
3ff65596 | 159 | #if USE_ADAPTATION |
aee3523a | 160 | adaptHistory_ = nullptr; |
3ff65596 AR |
161 | #endif |
162 | #if ICAP_CLIENT | |
aee3523a | 163 | icapHistory_ = nullptr; |
3ff65596 | 164 | #endif |
8596962e | 165 | } |
4a972fa2 | 166 | |
5cafad19 | 167 | void |
168 | HttpRequest::reset() | |
169 | { | |
170 | clean(); | |
171 | init(); | |
172 | } | |
173 | ||
fa0e6114 AR |
174 | HttpRequest * |
175 | HttpRequest::clone() const | |
176 | { | |
5ceaee75 | 177 | HttpRequest *copy = new HttpRequest(masterXaction); |
51b5dcf5 | 178 | copy->method = method; |
fa0e6114 AR |
179 | // TODO: move common cloning clone to Msg::copyTo() or copy ctor |
180 | copy->header.append(&header); | |
181 | copy->hdrCacheInit(); | |
182 | copy->hdr_sz = hdr_sz; | |
183 | copy->http_ver = http_ver; | |
184 | copy->pstate = pstate; // TODO: should we assert a specific state here? | |
185 | copy->body_pipe = body_pipe; | |
186 | ||
d31d59d8 | 187 | copy->url = url; |
fa0e6114 | 188 | |
66363092 | 189 | // range handled in hdrCacheInit() |
9e008dda AJ |
190 | copy->ims = ims; |
191 | copy->imslen = imslen; | |
fa0e6114 AR |
192 | copy->hier = hier; // Is it safe to copy? Should we? |
193 | ||
83b053a0 | 194 | copy->error = error; |
fa0e6114 AR |
195 | |
196 | // XXX: what to do with copy->peer_login? | |
197 | ||
9e008dda | 198 | copy->lastmod = lastmod; |
46017fdd | 199 | copy->etag = etag; |
90ab8f20 | 200 | copy->vary_headers = vary_headers; |
fa0e6114 AR |
201 | // XXX: what to do with copy->peer_domain? |
202 | ||
203 | copy->tag = tag; | |
fa0e6114 | 204 | copy->extacl_log = extacl_log; |
8c93a598 | 205 | copy->extacl_message = extacl_message; |
fa0e6114 | 206 | |
fbc1c5a6 AJ |
207 | const bool inheritWorked = copy->inheritProperties(this); |
208 | assert(inheritWorked); | |
3ff65596 | 209 | |
fa0e6114 AR |
210 | return copy; |
211 | } | |
212 | ||
d5964067 | 213 | bool |
63df1d28 | 214 | HttpRequest::inheritProperties(const Http::Message *aMsg) |
d5964067 AJ |
215 | { |
216 | const HttpRequest* aReq = dynamic_cast<const HttpRequest*>(aMsg); | |
217 | if (!aReq) | |
218 | return false; | |
219 | ||
220 | client_addr = aReq->client_addr; | |
221 | #if FOLLOW_X_FORWARDED_FOR | |
222 | indirect_client_addr = aReq->indirect_client_addr; | |
d5964067 AJ |
223 | #endif |
224 | my_addr = aReq->my_addr; | |
225 | ||
226 | dnsWait = aReq->dnsWait; | |
227 | ||
228 | #if USE_ADAPTATION | |
229 | adaptHistory_ = aReq->adaptHistory(); | |
230 | #endif | |
231 | #if ICAP_CLIENT | |
232 | icapHistory_ = aReq->icapHistory(); | |
233 | #endif | |
234 | ||
235 | // This may be too conservative for the 204 No Content case | |
236 | // may eventually need cloneNullAdaptationImmune() for that. | |
237 | flags = aReq->flags.cloneAdaptationImmune(); | |
238 | ||
83b053a0 | 239 | error = aReq->error; |
d5964067 AJ |
240 | #if USE_AUTH |
241 | auth_user_request = aReq->auth_user_request; | |
f4f6ab06 AJ |
242 | extacl_user = aReq->extacl_user; |
243 | extacl_passwd = aReq->extacl_passwd; | |
d5964067 | 244 | #endif |
983983ce | 245 | |
20fb3571 AJ |
246 | myportname = aReq->myportname; |
247 | ||
ec69bdb2 CT |
248 | forcedBodyContinuation = aReq->forcedBodyContinuation; |
249 | ||
983983ce | 250 | // main property is which connection the request was received on (if any) |
d5964067 | 251 | clientConnectionManager = aReq->clientConnectionManager; |
f4698e0b | 252 | |
cda7024f CT |
253 | downloader = aReq->downloader; |
254 | ||
75d47340 | 255 | theNotes = aReq->theNotes; |
88df846b CT |
256 | |
257 | sources = aReq->sources; | |
d5964067 AJ |
258 | return true; |
259 | } | |
260 | ||
96ee497f AJ |
261 | /** |
262 | * Checks the first line of an HTTP request is valid | |
263 | * currently just checks the request method is present. | |
264 | * | |
265 | * NP: Other errors are left for detection later in the parse. | |
266 | */ | |
c21ad0f5 | 267 | bool |
83b053a0 | 268 | HttpRequest::sanityCheckStartLine(const char *buf, const size_t hdr_len, Http::StatusCode *scode) |
8596962e | 269 | { |
96ee497f AJ |
270 | // content is long enough to possibly hold a reply |
271 | // 2 being magic size of a 1-byte request method plus space delimiter | |
84ae6223 | 272 | if (hdr_len < 2) { |
2f8abb64 | 273 | // this is only a real error if the headers apparently complete. |
96ee497f | 274 | if (hdr_len > 0) { |
bf95c10a | 275 | debugs(58, 3, "Too large request header (" << hdr_len << " bytes)"); |
83b053a0 | 276 | *scode = Http::scInvalidHeader; |
96ee497f AJ |
277 | } |
278 | return false; | |
279 | } | |
8596962e | 280 | |
f9688132 AJ |
281 | /* See if the request buffer starts with a non-whitespace HTTP request 'method'. */ |
282 | HttpRequestMethod m; | |
84ae6223 | 283 | m.HttpRequestMethodXXX(buf); |
f9688132 | 284 | if (m == Http::METHOD_NONE) { |
bf8fe701 | 285 | debugs(73, 3, "HttpRequest::sanityCheckStartLine: did not find HTTP request method"); |
83b053a0 | 286 | *scode = Http::scInvalidHeader; |
8596962e | 287 | return false; |
288 | } | |
289 | ||
290 | return true; | |
291 | } | |
292 | ||
c21ad0f5 | 293 | bool |
294 | HttpRequest::parseFirstLine(const char *start, const char *end) | |
8596962e | 295 | { |
f9688132 | 296 | method.HttpRequestMethodXXX(start); |
863d85ee | 297 | |
c2a7cefd | 298 | if (method == Http::METHOD_NONE) |
863d85ee | 299 | return false; |
300 | ||
f9688132 AJ |
301 | // XXX: performance regression, strcspn() over the method bytes a second time. |
302 | // cheaper than allocate+copy+deallocate cycle to SBuf convert a piece of start. | |
303 | const char *t = start + strcspn(start, w_space); | |
304 | ||
305 | start = t + strspn(t, w_space); // skip w_space after method | |
863d85ee | 306 | |
307 | const char *ver = findTrailingHTTPVersion(start, end); | |
308 | ||
309 | if (ver) { | |
310 | end = ver - 1; | |
311 | ||
312 | while (xisspace(*end)) // find prev non-space | |
5e263176 | 313 | --end; |
863d85ee | 314 | |
95dc7ff4 | 315 | ++end; // back to space |
863d85ee | 316 | |
317 | if (2 != sscanf(ver + 5, "%d.%d", &http_ver.major, &http_ver.minor)) { | |
d816f28d | 318 | debugs(73, DBG_IMPORTANT, "ERROR: parseRequestLine: Invalid HTTP identifier."); |
863d85ee | 319 | return false; |
320 | } | |
321 | } else { | |
322 | http_ver.major = 0; | |
323 | http_ver.minor = 9; | |
324 | } | |
325 | ||
326 | if (end < start) // missing URI | |
327 | return false; | |
328 | ||
6c880a16 | 329 | return url.parse(method, SBuf(start, size_t(end-start))); |
99edd1c3 | 330 | } |
331 | ||
a00a7c85 | 332 | /* swaps out request using httpRequestPack */ |
99edd1c3 | 333 | void |
5cafad19 | 334 | HttpRequest::swapOut(StoreEntry * e) |
99edd1c3 | 335 | { |
5cafad19 | 336 | assert(e); |
15179984 AJ |
337 | e->buffer(); |
338 | pack(e); | |
691ad095 | 339 | e->flush(); |
a00a7c85 | 340 | } |
341 | ||
342 | /* packs request-line and headers, appends <crlf> terminator */ | |
343 | void | |
1f28a150 | 344 | HttpRequest::pack(Packable * p) const |
a00a7c85 | 345 | { |
5cafad19 | 346 | assert(p); |
a00a7c85 | 347 | /* pack request-line */ |
51b5dcf5 AJ |
348 | p->appendf(SQUIDSBUFPH " " SQUIDSBUFPH " HTTP/%d.%d\r\n", |
349 | SQUIDSBUFPRINT(method.image()), SQUIDSBUFPRINT(url.path()), | |
4391cd15 | 350 | http_ver.major, http_ver.minor); |
a00a7c85 | 351 | /* headers */ |
a9925b40 | 352 | header.packInto(p); |
2246b732 | 353 | /* trailer */ |
785b508d | 354 | p->append("\r\n", 2); |
2246b732 | 355 | } |
356 | ||
5cafad19 | 357 | /* |
358 | * A wrapper for debugObj() | |
359 | */ | |
2246b732 | 360 | void |
17802cf1 | 361 | httpRequestPack(void *obj, Packable *p) |
2246b732 | 362 | { |
5cafad19 | 363 | HttpRequest *request = static_cast<HttpRequest*>(obj); |
364 | request->pack(p); | |
99edd1c3 | 365 | } |
eeb423fb | 366 | |
2246b732 | 367 | /* returns the length of request line + headers + crlf */ |
368 | int | |
51b5dcf5 | 369 | HttpRequest::prefixLen() const |
2246b732 | 370 | { |
7f06a3d8 | 371 | return method.image().length() + 1 + |
51b5dcf5 | 372 | url.path().length() + 1 + |
62e76326 | 373 | 4 + 1 + 3 + 2 + |
5cafad19 | 374 | header.len + 2; |
2246b732 | 375 | } |
99edd1c3 | 376 | |
190154cf | 377 | /* sync this routine when you update HttpRequest struct */ |
8596962e | 378 | void |
07947ad8 | 379 | HttpRequest::hdrCacheInit() |
528b2c61 | 380 | { |
63df1d28 | 381 | Http::Message::hdrCacheInit(); |
62e76326 | 382 | |
66363092 | 383 | assert(!range); |
a9925b40 | 384 | range = header.getRange(); |
528b2c61 | 385 | } |
386 | ||
3ff65596 | 387 | #if ICAP_CLIENT |
e1381638 | 388 | Adaptation::Icap::History::Pointer |
3ff65596 AR |
389 | HttpRequest::icapHistory() const |
390 | { | |
391 | if (!icapHistory_) { | |
38e16f92 | 392 | if (Log::TheConfig.hasIcapToken || IcapLogfileStatus == LOG_ENABLE) { |
3ff65596 | 393 | icapHistory_ = new Adaptation::Icap::History(); |
bf95c10a | 394 | debugs(93,4, "made " << icapHistory_ << " for " << this); |
3ff65596 AR |
395 | } |
396 | } | |
397 | ||
398 | return icapHistory_; | |
399 | } | |
400 | #endif | |
401 | ||
402 | #if USE_ADAPTATION | |
e1381638 | 403 | Adaptation::History::Pointer |
a22e6cd3 | 404 | HttpRequest::adaptHistory(bool createIfNone) const |
3ff65596 | 405 | { |
a22e6cd3 AR |
406 | if (!adaptHistory_ && createIfNone) { |
407 | adaptHistory_ = new Adaptation::History(); | |
bf95c10a | 408 | debugs(93,4, "made " << adaptHistory_ << " for " << this); |
3ff65596 AR |
409 | } |
410 | ||
411 | return adaptHistory_; | |
412 | } | |
a22e6cd3 | 413 | |
e1381638 | 414 | Adaptation::History::Pointer |
a22e6cd3 AR |
415 | HttpRequest::adaptLogHistory() const |
416 | { | |
38e16f92 | 417 | return HttpRequest::adaptHistory(Log::TheConfig.hasAdaptToken); |
a22e6cd3 AR |
418 | } |
419 | ||
aaf0559d AR |
420 | void |
421 | HttpRequest::adaptHistoryImport(const HttpRequest &them) | |
422 | { | |
423 | if (!adaptHistory_) { | |
424 | adaptHistory_ = them.adaptHistory_; // may be nil | |
425 | } else { | |
426 | // check that histories did not diverge | |
427 | Must(!them.adaptHistory_ || them.adaptHistory_ == adaptHistory_); | |
428 | } | |
429 | } | |
430 | ||
3ff65596 AR |
431 | #endif |
432 | ||
528b2c61 | 433 | bool |
190154cf | 434 | HttpRequest::multipartRangeRequest() const |
528b2c61 | 435 | { |
9ad511b6 | 436 | return (range && range->specs.size() > 1); |
528b2c61 | 437 | } |
8000a965 | 438 | |
58217e94 | 439 | bool |
9e008dda AJ |
440 | HttpRequest::bodyNibbled() const |
441 | { | |
aee3523a | 442 | return body_pipe != nullptr && body_pipe->consumedSize() > 0; |
58217e94 | 443 | } |
5f8252d2 | 444 | |
f5e17947 CT |
445 | void |
446 | HttpRequest::prepForPeering(const CachePeer &peer) | |
447 | { | |
448 | // XXX: Saving two pointers to memory controlled by an independent object. | |
449 | peer_login = peer.login; | |
450 | peer_domain = peer.domain; | |
451 | flags.auth_no_keytab = peer.options.auth_no_keytab; | |
a555a85b | 452 | debugs(11, 4, this << " to " << peer); |
f5e17947 CT |
453 | } |
454 | ||
455 | void | |
456 | HttpRequest::prepForDirect() | |
457 | { | |
458 | peer_login = nullptr; | |
459 | peer_domain = nullptr; | |
460 | flags.auth_no_keytab = false; | |
461 | debugs(11, 4, this); | |
462 | } | |
463 | ||
129fe2a1 CT |
464 | void |
465 | HttpRequest::clearError() | |
466 | { | |
83b053a0 CT |
467 | debugs(11, 7, "old: " << error); |
468 | error.clear(); | |
129fe2a1 CT |
469 | } |
470 | ||
51b5dcf5 AJ |
471 | void |
472 | HttpRequest::packFirstLineInto(Packable * p, bool full_uri) const | |
8596962e | 473 | { |
851feda6 | 474 | const SBuf tmp(full_uri ? effectiveRequestUri() : url.path()); |
8596962e | 475 | |
8596962e | 476 | // form HTTP request-line |
51b5dcf5 | 477 | p->appendf(SQUIDSBUFPH " " SQUIDSBUFPH " HTTP/%d.%d\r\n", |
4391cd15 | 478 | SQUIDSBUFPRINT(method.image()), |
51b5dcf5 | 479 | SQUIDSBUFPRINT(tmp), |
4391cd15 | 480 | http_ver.major, http_ver.minor); |
8596962e | 481 | } |
8ddea643 | 482 | |
483 | /* | |
684e9c80 | 484 | * Indicate whether or not we would expect an entity-body |
8ddea643 | 485 | * along with this request |
486 | */ | |
487 | bool | |
ced8def3 | 488 | HttpRequest::expectingBody(const HttpRequestMethod &, int64_t &theSize) const |
8ddea643 | 489 | { |
490 | bool expectBody = false; | |
491 | ||
492 | /* | |
684e9c80 HN |
493 | * Note: Checks for message validity is in clientIsContentLengthValid(). |
494 | * this just checks if a entity-body is expected based on HTTP message syntax | |
8ddea643 | 495 | */ |
684e9c80 | 496 | if (header.chunked()) { |
8ddea643 | 497 | expectBody = true; |
684e9c80 HN |
498 | theSize = -1; |
499 | } else if (content_length >= 0) { | |
8ddea643 | 500 | expectBody = true; |
684e9c80 HN |
501 | theSize = content_length; |
502 | } else { | |
8ddea643 | 503 | expectBody = false; |
684e9c80 | 504 | // theSize undefined |
8ddea643 | 505 | } |
506 | ||
507 | return expectBody; | |
508 | } | |
c21ad0f5 | 509 | |
510 | /* | |
511 | * Create a Request from a URL and METHOD. | |
512 | * | |
513 | * If the METHOD is CONNECT, then a host:port pair is looked for instead of a URL. | |
514 | * If the request cannot be created cleanly, NULL is returned | |
515 | */ | |
516 | HttpRequest * | |
6c880a16 | 517 | HttpRequest::FromUrl(const SBuf &url, const MasterXaction::Pointer &mx, const HttpRequestMethod& method) |
c21ad0f5 | 518 | { |
5ceaee75 | 519 | std::unique_ptr<HttpRequest> req(new HttpRequest(mx)); |
91489e45 AJ |
520 | if (req->url.parse(method, url)) { |
521 | req->method = method; | |
9157915c | 522 | return req.release(); |
91489e45 | 523 | } |
9157915c | 524 | return nullptr; |
c21ad0f5 | 525 | } |
526 | ||
6c880a16 AJ |
527 | HttpRequest * |
528 | HttpRequest::FromUrlXXX(const char * url, const MasterXaction::Pointer &mx, const HttpRequestMethod& method) | |
529 | { | |
530 | return FromUrl(SBuf(url), mx, method); | |
531 | } | |
532 | ||
c2a7cefd | 533 | /** |
610ee341 | 534 | * Are responses to this request possible cacheable ? |
535 | * If false then no matter what the response must not be cached. | |
536 | */ | |
537 | bool | |
c2a7cefd | 538 | HttpRequest::maybeCacheable() |
610ee341 | 539 | { |
2962f8b8 AJ |
540 | // Intercepted request with Host: header which cannot be trusted. |
541 | // Because it failed verification, or someone bypassed the security tests | |
2f8abb64 | 542 | // we cannot cache the response for sharing between clients. |
2962f8b8 | 543 | // TODO: update cache to store for particular clients only (going to same Host: and destination IP) |
0d901ef4 | 544 | if (!flags.hostVerified && (flags.intercepted || flags.interceptTproxy)) |
2962f8b8 AJ |
545 | return false; |
546 | ||
4e3f4dc7 | 547 | switch (url.getScheme()) { |
c2a7cefd | 548 | case AnyP::PROTO_HTTP: |
2c32c73e | 549 | case AnyP::PROTO_HTTPS: |
c2a7cefd AJ |
550 | if (!method.respMaybeCacheable()) |
551 | return false; | |
9e008dda | 552 | |
0ac163be AJ |
553 | // RFC 9111 section 5.2.1.5: |
554 | // "The no-store request directive indicates that a cache MUST NOT | |
555 | // store any part of either this request or any response to it." | |
38041f53 GD |
556 | // |
557 | // NP: refresh_pattern ignore-no-store only applies to response messages | |
558 | // this test is handling request message CC header. | |
810d879f | 559 | if (!flags.ignoreCc && cache_control && cache_control->hasNoStore()) |
38041f53 | 560 | return false; |
c2a7cefd | 561 | break; |
610ee341 | 562 | |
f53969cc | 563 | //case AnyP::PROTO_FTP: |
c2a7cefd AJ |
564 | default: |
565 | break; | |
566 | } | |
567 | ||
60745f24 | 568 | return true; |
610ee341 | 569 | } |
d67acb4e | 570 | |
79c8035e AR |
571 | bool |
572 | HttpRequest::conditional() const | |
573 | { | |
45e5102d | 574 | return flags.ims || |
789217a2 FC |
575 | header.has(Http::HdrType::IF_MATCH) || |
576 | header.has(Http::HdrType::IF_NONE_MATCH); | |
79c8035e AR |
577 | } |
578 | ||
d5964067 | 579 | void |
4a3b98d7 | 580 | HttpRequest::recordLookup(const Dns::LookupDetails &dns) |
3ff65596 AR |
581 | { |
582 | if (dns.wait >= 0) { // known delay | |
fd9c47d1 AR |
583 | if (dnsWait >= 0) { // have recorded DNS wait before |
584 | debugs(78, 7, this << " " << dnsWait << " += " << dns); | |
3ff65596 | 585 | dnsWait += dns.wait; |
fd9c47d1 AR |
586 | } else { |
587 | debugs(78, 7, this << " " << dns); | |
3ff65596 | 588 | dnsWait = dns.wait; |
fd9c47d1 | 589 | } |
3ff65596 AR |
590 | } |
591 | } | |
11e3fa1c AJ |
592 | |
593 | int64_t | |
594 | HttpRequest::getRangeOffsetLimit() | |
595 | { | |
596 | /* -2 is the starting value of rangeOffsetLimit. | |
597 | * If it is -2, that means we haven't checked it yet. | |
598 | * Otherwise, return the current value */ | |
5e5f247c | 599 | if (rangeOffsetLimit != -2) |
11e3fa1c AJ |
600 | return rangeOffsetLimit; |
601 | ||
602 | rangeOffsetLimit = 0; // default value for rangeOffsetLimit | |
603 | ||
aee3523a | 604 | ACLFilledChecklist ch(nullptr, this, nullptr); |
11e3fa1c AJ |
605 | ch.src_addr = client_addr; |
606 | ch.my_addr = my_addr; | |
607 | ||
1328cfb7 | 608 | for (AclSizeLimit *l = Config.rangeOffsetLimit; l; l = l -> next) { |
11e3fa1c | 609 | /* if there is no ACL list or if the ACLs listed match use this limit value */ |
06bf5384 | 610 | if (!l->aclList || ch.fastCheck(l->aclList).allowed()) { |
11e3fa1c | 611 | rangeOffsetLimit = l->size; // may be -1 |
3755c7a5 | 612 | debugs(58, 4, rangeOffsetLimit); |
11e3fa1c AJ |
613 | break; |
614 | } | |
615 | } | |
616 | ||
617 | return rangeOffsetLimit; | |
618 | } | |
655daa06 | 619 | |
f0baf149 AR |
620 | void |
621 | HttpRequest::ignoreRange(const char *reason) | |
622 | { | |
623 | if (range) { | |
624 | debugs(73, 3, static_cast<void*>(range) << " for " << reason); | |
625 | delete range; | |
aee3523a | 626 | range = nullptr; |
f0baf149 AR |
627 | } |
628 | // Some callers also reset isRanged but it may not be safe for all callers: | |
629 | // isRanged is used to determine whether a weak ETag comparison is allowed, | |
630 | // and that check should not ignore the Range header if it was present. | |
631 | // TODO: Some callers also delete HDR_RANGE, HDR_REQUEST_RANGE. Should we? | |
632 | } | |
633 | ||
655daa06 AR |
634 | bool |
635 | HttpRequest::canHandle1xx() const | |
636 | { | |
637 | // old clients do not support 1xx unless they sent Expect: 100-continue | |
789217a2 FC |
638 | // (we reject all other Http::HdrType::EXPECT values so just check for Http::HdrType::EXPECT) |
639 | if (http_ver <= Http::ProtocolVersion(1,0) && !header.has(Http::HdrType::EXPECT)) | |
655daa06 AR |
640 | return false; |
641 | ||
642 | // others must support 1xx control messages | |
643 | return true; | |
644 | } | |
582c2af2 | 645 | |
4bd88eb4 AJ |
646 | Http::StatusCode |
647 | HttpRequest::checkEntityFraming() const | |
648 | { | |
649 | // RFC 7230 section 3.3.1: | |
650 | // " | |
651 | // A server that receives a request message with a transfer coding it | |
652 | // does not understand SHOULD respond with 501 (Not Implemented). | |
653 | // " | |
654 | if (header.unsupportedTe()) | |
655 | return Http::scNotImplemented; | |
656 | ||
657 | // RFC 7230 section 3.3.3 #3 paragraph 3: | |
658 | // Transfer-Encoding overrides Content-Length | |
659 | if (header.chunked()) | |
660 | return Http::scNone; | |
661 | ||
662 | // RFC 7230 Section 3.3.3 #4: | |
663 | // conflicting Content-Length(s) mean a message framing error | |
664 | if (header.conflictingContentLength()) | |
665 | return Http::scBadRequest; | |
666 | ||
667 | // HTTP/1.0 requirements differ from HTTP/1.1 | |
668 | if (http_ver <= Http::ProtocolVersion(1,0)) { | |
669 | const auto m = method.id(); | |
670 | ||
671 | // RFC 1945 section 8.3: | |
672 | // " | |
673 | // A valid Content-Length is required on all HTTP/1.0 POST requests. | |
674 | // " | |
675 | // RFC 1945 Appendix D.1.1: | |
676 | // " | |
677 | // The fundamental difference between the POST and PUT requests is | |
678 | // reflected in the different meaning of the Request-URI. | |
679 | // " | |
680 | if (m == Http::METHOD_POST || m == Http::METHOD_PUT) | |
681 | return (content_length >= 0 ? Http::scNone : Http::scLengthRequired); | |
682 | ||
683 | // RFC 1945 section 7.2: | |
684 | // " | |
685 | // An entity body is included with a request message only when the | |
686 | // request method calls for one. | |
687 | // " | |
688 | // section 8.1-2: GET and HEAD do not define ('call for') an entity | |
689 | if (m == Http::METHOD_GET || m == Http::METHOD_HEAD) | |
690 | return (content_length < 0 ? Http::scNone : Http::scBadRequest); | |
691 | // appendix D1.1.2-4: DELETE, LINK, UNLINK do not define ('call for') an entity | |
692 | if (m == Http::METHOD_DELETE || m == Http::METHOD_LINK || m == Http::METHOD_UNLINK) | |
693 | return (content_length < 0 ? Http::scNone : Http::scBadRequest); | |
694 | ||
695 | // other methods are not defined in RFC 1945 | |
696 | // assume they support an (optional) entity | |
697 | return Http::scNone; | |
698 | } | |
699 | ||
700 | // RFC 7230 section 3.3 | |
701 | // " | |
702 | // The presence of a message body in a request is signaled by a | |
703 | // Content-Length or Transfer-Encoding header field. Request message | |
704 | // framing is independent of method semantics, even if the method does | |
705 | // not define any use for a message body. | |
706 | // " | |
707 | return Http::scNone; | |
708 | } | |
709 | ||
4f1c93a7 EB |
710 | bool |
711 | HttpRequest::parseHeader(Http1::Parser &hp) | |
712 | { | |
713 | Http::ContentLengthInterpreter clen; | |
714 | return Message::parseHeader(hp, clen); | |
715 | } | |
716 | ||
717 | bool | |
718 | HttpRequest::parseHeader(const char *buffer, const size_t size) | |
719 | { | |
720 | Http::ContentLengthInterpreter clen; | |
721 | return header.parse(buffer, size, clen); | |
722 | } | |
723 | ||
582c2af2 | 724 | ConnStateData * |
b0fb853f A |
725 | HttpRequest::pinnedConnection() |
726 | { | |
582c2af2 FC |
727 | if (clientConnectionManager.valid() && clientConnectionManager->pinning.pinned) |
728 | return clientConnectionManager.get(); | |
aee3523a | 729 | return nullptr; |
582c2af2 | 730 | } |
a8a0b1c2 | 731 | |
851feda6 | 732 | const SBuf |
a8a0b1c2 EC |
733 | HttpRequest::storeId() |
734 | { | |
735 | if (store_id.size() != 0) { | |
851feda6 | 736 | debugs(73, 3, "sent back store_id: " << store_id); |
d7ef451f | 737 | return StringToSBuf(store_id); |
a8a0b1c2 | 738 | } |
851feda6 AJ |
739 | debugs(73, 3, "sent back effectiveRequestUrl: " << effectiveRequestUri()); |
740 | return effectiveRequestUri(); | |
741 | } | |
a8a0b1c2 | 742 | |
851feda6 AJ |
743 | const SBuf & |
744 | HttpRequest::effectiveRequestUri() const | |
745 | { | |
6b2b6cfe | 746 | if (method.id() == Http::METHOD_CONNECT || url.getScheme() == AnyP::PROTO_AUTHORITY_FORM) |
851feda6 AJ |
747 | return url.authority(true); // host:port |
748 | return url.absolute(); | |
a8a0b1c2 | 749 | } |
f53969cc | 750 | |
75d47340 CT |
751 | NotePairs::Pointer |
752 | HttpRequest::notes() | |
753 | { | |
754 | if (!theNotes) | |
755 | theNotes = new NotePairs; | |
756 | return theNotes; | |
757 | } | |
758 | ||
759 | void | |
760 | UpdateRequestNotes(ConnStateData *csd, HttpRequest &request, NotePairs const &helperNotes) | |
761 | { | |
762 | // Tag client connection if the helper responded with clt_conn_tag=tag. | |
763 | const char *cltTag = "clt_conn_tag"; | |
764 | if (const char *connTag = helperNotes.findFirst(cltTag)) { | |
765 | if (csd) { | |
766 | csd->notes()->remove(cltTag); | |
767 | csd->notes()->add(cltTag, connTag); | |
768 | } | |
769 | } | |
770 | request.notes()->replaceOrAdd(&helperNotes); | |
771 | } | |
772 | ||
cd4a5c60 CT |
773 | void |
774 | HttpRequest::manager(const CbcPointer<ConnStateData> &aMgr, const AccessLogEntryPointer &al) | |
775 | { | |
776 | clientConnectionManager = aMgr; | |
777 | ||
778 | if (!clientConnectionManager.valid()) | |
779 | return; | |
780 | ||
781 | AnyP::PortCfgPointer port = clientConnectionManager->port; | |
782 | if (port) { | |
783 | myportname = port->name; | |
784 | flags.ignoreCc = port->ignore_cc; | |
785 | } | |
786 | ||
787 | if (auto clientConnection = clientConnectionManager->clientConnection) { | |
788 | client_addr = clientConnection->remote; // XXX: remove request->client_addr member. | |
789 | #if FOLLOW_X_FORWARDED_FOR | |
790 | // indirect client gets stored here because it is an HTTP header result (from X-Forwarded-For:) | |
791 | // not details about the TCP connection itself | |
792 | indirect_client_addr = clientConnection->remote; | |
793 | #endif /* FOLLOW_X_FORWARDED_FOR */ | |
794 | my_addr = clientConnection->local; | |
b6307671 | 795 | |
cd4a5c60 CT |
796 | flags.intercepted = ((clientConnection->flags & COMM_INTERCEPTION) != 0); |
797 | flags.interceptTproxy = ((clientConnection->flags & COMM_TRANSPARENT) != 0 ) ; | |
798 | const bool proxyProtocolPort = port ? port->flags.proxySurrogate : false; | |
799 | if (flags.interceptTproxy && !proxyProtocolPort) { | |
800 | if (Config.accessList.spoof_client_ip) { | |
801 | ACLFilledChecklist *checklist = new ACLFilledChecklist(Config.accessList.spoof_client_ip, this, clientConnection->rfc931); | |
802 | checklist->al = al; | |
cb365059 | 803 | checklist->syncAle(this, nullptr); |
06bf5384 | 804 | flags.spoofClientIp = checklist->fastCheck().allowed(); |
cd4a5c60 CT |
805 | delete checklist; |
806 | } else | |
807 | flags.spoofClientIp = true; | |
808 | } else | |
809 | flags.spoofClientIp = false; | |
810 | } | |
811 | } | |
b6307671 | 812 | |
bec110e4 EB |
813 | char * |
814 | HttpRequest::canonicalCleanUrl() const | |
815 | { | |
816 | return urlCanonicalCleanWithoutRequest(effectiveRequestUri(), method, url.getScheme()); | |
817 | } | |
818 | ||
ea35939b | 819 | /// a helper for handling PortCfg cases of FindListeningPortAddress() |
b6c0f0dc | 820 | template <typename Filter> |
ea35939b | 821 | static const Ip::Address * |
b6c0f0dc | 822 | FindGoodListeningPortAddressInPort(const AnyP::PortCfgPointer &port, const Filter isGood) |
ea35939b | 823 | { |
b6c0f0dc | 824 | return (port && isGood(port->s)) ? &port->s : nullptr; |
ea35939b A |
825 | } |
826 | ||
827 | /// a helper for handling Connection cases of FindListeningPortAddress() | |
b6c0f0dc | 828 | template <typename Filter> |
ea35939b | 829 | static const Ip::Address * |
b6c0f0dc | 830 | FindGoodListeningPortAddressInConn(const Comm::ConnectionPointer &conn, const Filter isGood) |
ea35939b | 831 | { |
b6c0f0dc | 832 | return (conn && isGood(conn->local)) ? &conn->local : nullptr; |
ea35939b A |
833 | } |
834 | ||
b6c0f0dc | 835 | template <typename Filter> |
ea35939b | 836 | const Ip::Address * |
b6c0f0dc | 837 | FindGoodListeningPortAddress(const HttpRequest *callerRequest, const AccessLogEntry *ale, const Filter filter) |
ea35939b A |
838 | { |
839 | // Check all sources of usable listening port information, giving | |
840 | // HttpRequest and masterXaction a preference over ALE. | |
841 | ||
842 | const HttpRequest *request = callerRequest; | |
843 | if (!request && ale) | |
844 | request = ale->request; | |
845 | if (!request) | |
846 | return nullptr; // not enough information | |
847 | ||
b6c0f0dc | 848 | auto ip = FindGoodListeningPortAddressInPort(request->masterXaction->squidPort, filter); |
ea35939b | 849 | if (!ip && ale) |
b6c0f0dc | 850 | ip = FindGoodListeningPortAddressInPort(ale->cache.port, filter); |
ea35939b A |
851 | |
852 | // XXX: also handle PROXY protocol here when we have a flag to identify such request | |
853 | if (ip || request->flags.interceptTproxy || request->flags.intercepted) | |
854 | return ip; | |
855 | ||
856 | /* handle non-intercepted cases that were not handled above */ | |
b6c0f0dc | 857 | ip = FindGoodListeningPortAddressInConn(request->masterXaction->tcpClient, filter); |
ea35939b | 858 | if (!ip && ale) |
b6c0f0dc | 859 | ip = FindGoodListeningPortAddressInConn(ale->tcpClient, filter); |
ea35939b A |
860 | return ip; // may still be nil |
861 | } | |
862 | ||
b6c0f0dc AR |
863 | const Ip::Address * |
864 | FindListeningPortAddress(const HttpRequest *callerRequest, const AccessLogEntry *ale) | |
865 | { | |
866 | return FindGoodListeningPortAddress(callerRequest, ale, [](const Ip::Address &address) { | |
867 | // FindListeningPortAddress() callers do not want INADDR_ANY addresses | |
868 | return !address.isAnyAddr(); | |
869 | }); | |
870 | } | |
871 | ||
380b09ae | 872 | AnyP::Port |
b6c0f0dc AR |
873 | FindListeningPortNumber(const HttpRequest *callerRequest, const AccessLogEntry *ale) |
874 | { | |
875 | const auto ip = FindGoodListeningPortAddress(callerRequest, ale, [](const Ip::Address &address) { | |
876 | return address.port() > 0; | |
877 | }); | |
380b09ae AR |
878 | |
879 | if (!ip) | |
880 | return std::nullopt; | |
881 | ||
882 | Assure(ip->port() > 0); | |
883 | return ip->port(); | |
b6c0f0dc | 884 | } |