[thirdparty/squid.git] / src / ssl / ErrorDetailManager.cc

/*
 * Copyright (C) 1996-2023 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */

#include "squid.h"
#include "base/Raw.h"
#include "ErrorDetail.h"
#include "ErrorDetailManager.h"
#include "errorpage.h"
#include "http/ContentLengthInterpreter.h"
#include "mime_header.h"

void Ssl::errorDetailInitialize()
{
    Ssl::ErrorDetailsManager::GetInstance();
}

void Ssl::errorDetailClean()
{
    Ssl::ErrorDetailsManager::Shutdown();
}

namespace Ssl
{

/// manages error detail templates
class ErrorDetailFile : public TemplateFile
{
public:
    explicit ErrorDetailFile(ErrorDetailsList::Pointer const details): TemplateFile("error-details.txt", ERR_NONE) {
        theDetails = details;
    }

private:
    ErrorDetailsList::Pointer  theDetails;
    bool parse() override;
};
}// namespace Ssl

/******************/
bool
Ssl::ErrorDetailsList::getRecord(Security::ErrorCode value, ErrorDetailEntry &entry)
{
    const ErrorDetails::const_iterator it = theList.find(value);
    if (it != theList.end()) {
        entry.error_no =  it->second.error_no;
        entry.name =  it->second.name;
        entry.detail =  it->second.detail;
        entry.descr =  it->second.descr;
        return true;
    }
    return false;
}

const char *
Ssl::ErrorDetailsList::getErrorDescr(Security::ErrorCode value)
{
    const ErrorDetails::const_iterator it = theList.find(value);
    if (it != theList.end()) {
        return it->second.descr.termedBuf();
    }

    return nullptr;
}

const char *
Ssl::ErrorDetailsList::getErrorDetail(Security::ErrorCode value)
{
    const ErrorDetails::const_iterator it = theList.find(value);
    if (it != theList.end()) {
        return it->second.detail.termedBuf();
    }

    return nullptr;
}

Ssl::ErrorDetailsManager *Ssl::ErrorDetailsManager::TheDetailsManager = nullptr;

Ssl::ErrorDetailsManager &Ssl::ErrorDetailsManager::GetInstance()
{
    if (!TheDetailsManager)
        TheDetailsManager = new Ssl::ErrorDetailsManager;

    assert(TheDetailsManager);
    return *TheDetailsManager;
}

void Ssl::ErrorDetailsManager::Shutdown()
{
    delete TheDetailsManager;
    TheDetailsManager = nullptr;
}

Ssl::ErrorDetailsManager::ErrorDetailsManager()
{
    theDefaultErrorDetails = new ErrorDetailsList();
    ErrorDetailFile detailTmpl(theDefaultErrorDetails);
    detailTmpl.loadDefault();
}

Ssl::ErrorDetailsList::Pointer Ssl::ErrorDetailsManager::getCachedDetails(const char *lang)
{
    Cache::iterator it;
    it = cache.find(lang);
    if (it != cache.end()) {
        debugs(83, 8, "Found template details in cache for language: " << lang);
        return it->second;
    }

    return nullptr;
}

void Ssl::ErrorDetailsManager::cacheDetails(ErrorDetailsList::Pointer &errorDetails)
{
    const char *lang = errorDetails->errLanguage.termedBuf();
    assert(lang);
    if (cache.find(lang) == cache.end())
        cache[lang] = errorDetails;
}

bool
Ssl::ErrorDetailsManager::getErrorDetail(Security::ErrorCode value, const HttpRequest::Pointer &request, ErrorDetailEntry &entry)
{
#if USE_ERR_LOCALES
    String hdr;
    if (request != nullptr && request->header.getList(Http::HdrType::ACCEPT_LANGUAGE, &hdr)) {
        ErrorDetailsList::Pointer errDetails = nullptr;
        //Try to retrieve from cache
        size_t pos = 0;
        char lang[256];
        // Get the first ellement of the Accept-Language header
        strHdrAcptLangGetItem(hdr, lang, 256, pos);
        errDetails = getCachedDetails(lang); // search in cache

        if (!errDetails) { // Else try to load from disk
            debugs(83, 8, "Creating new ErrDetailList to read from disk");
            errDetails = new ErrorDetailsList();
            ErrorDetailFile detailTmpl(errDetails);
            if (detailTmpl.loadFor(request.getRaw())) {
                if (detailTmpl.language()) {
                    debugs(83, 8, "Found details on disk for language " << detailTmpl.language());
                    errDetails->errLanguage = detailTmpl.language();
                    cacheDetails(errDetails);
                }
            }
        }

        if (errDetails != nullptr && errDetails->getRecord(value, entry))
            return true;
    }
#else
    (void)request;
#endif

    // else try the default
    if (theDefaultErrorDetails->getRecord(value, entry)) {
        debugs(83, 8, "Found default details record for error: " << GetErrorName(value));
        return true;
    }

    return false;
}

const char *
Ssl::ErrorDetailsManager::getDefaultErrorDescr(Security::ErrorCode value)
{
    return theDefaultErrorDetails->getErrorDescr(value);
}

const char *
Ssl::ErrorDetailsManager::getDefaultErrorDetail(Security::ErrorCode value)
{
    return theDefaultErrorDetails->getErrorDetail(value);
}

// Use HttpHeaders parser to parse error-details.txt files
class DetailEntryParser: public HttpHeader
{
public:
    DetailEntryParser():HttpHeader(hoErrorDetail) {}
};

//The end of an error detrail entry is a double "\n". The headersEnd
// functions can detect it
inline size_t detailEntryEnd(const char *s, size_t len) {return headersEnd(s, len);}

bool
Ssl::ErrorDetailFile::parse()
{
    if (!theDetails)
        return false;

    auto buf = template_;
    buf.append("\n\n"); // ensure detailEntryEnd() finds the last entry

    while (const auto size = detailEntryEnd(buf.rawContent(), buf.length())) {
        auto *s = buf.c_str();
        const auto e = s + size;

        //ignore spaces, new lines and comment lines (starting with #) at the beginning
        for (; (*s == '\n' || *s == ' '  || *s == '\t' || *s == '#')  && s < e; ++s) {
            if (*s == '#')
                while (s<e &&  *s != '\n')
                    ++s; // skip until the end of line
        }

        if ( s != e) {
            DetailEntryParser parser;
            Http::ContentLengthInterpreter interpreter;
            // no applyStatusCodeRules() -- error templates lack HTTP status code
            if (!parser.parse(s, e - s, interpreter)) {
                debugs(83, DBG_IMPORTANT, "WARNING: parse error on:" << s);
                return false;
            }

            const String errorName = parser.getByName("name");
            if (!errorName.size()) {
                debugs(83, DBG_IMPORTANT, "WARNING: invalid or no error detail name on:" << s);
                return false;
            }

            Security::ErrorCode ssl_error = Ssl::GetErrorCode(errorName.termedBuf());
            if (ssl_error != SSL_ERROR_NONE) {

                if (theDetails->getErrorDetail(ssl_error)) {
                    debugs(83, DBG_IMPORTANT, "WARNING: duplicate entry: " << errorName);
                    return false;
                }

                ErrorDetailEntry &entry = theDetails->theList[ssl_error];
                entry.error_no = ssl_error;
                entry.name = errorName;
                String tmp = parser.getByName("detail");
                const int detailsParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.detail);
                tmp = parser.getByName("descr");
                const int descrParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.descr);
                // TODO: Validate "descr" and "detail" field values.

                if (!detailsParseOk || !descrParseOk) {
                    debugs(83, DBG_IMPORTANT, "WARNING: missing important field for detail error: " <<  errorName);
                    return false;
                }

            } else if (!Ssl::ErrorIsOptional(errorName.termedBuf())) {
                debugs(83, DBG_IMPORTANT, "WARNING: invalid error detail name: " << errorName);
                return false;
            }

        }// else {only spaces and black lines; just ignore}

        buf.consume(size);
    }
    debugs(83, 9, Raw("unparsed data", buf.rawContent(), buf.length()));
    return true;
}
Commit	Line	Data
bbc27441	1	/*
b8ae064d	2	* Copyright (C) 1996-2023 The Squid Software Foundation and contributors
bbc27441 AJ	3	*
	4	* Squid software is distributed under GPLv2+ license and includes
	5	* contributions from numerous individuals and organizations.
	6	* Please see the COPYING and CONTRIBUTORS files for details.
	7	*/
	8
582c2af2	9	#include "squid.h"
675b8408	10	#include "base/Raw.h"
02259ff8	11	#include "ErrorDetail.h"
02259ff8	12	#include "ErrorDetailManager.h"
602d9612	13	#include "errorpage.h"
4f1c93a7	14	#include "http/ContentLengthInterpreter.h"
b6149797	15	#include "mime_header.h"
02259ff8 CT	16
	17	void Ssl::errorDetailInitialize()
	18	{
	19	Ssl::ErrorDetailsManager::GetInstance();
	20	}
	21
	22	void Ssl::errorDetailClean()
	23	{
	24	Ssl::ErrorDetailsManager::Shutdown();
	25	}
	26
	27	namespace Ssl
	28	{
	29
	30	/// manages error detail templates
dc49061a A	31	class ErrorDetailFile : public TemplateFile
dc49061a A	32	{
02259ff8	33	public:
8ff2520a	34	explicit ErrorDetailFile(ErrorDetailsList::Pointer const details): TemplateFile("error-details.txt", ERR_NONE) {
dc49061a	35	theDetails = details;
02259ff8 CT	36	}
	37
	38	private:
02259ff8	39	ErrorDetailsList::Pointer theDetails;
337b9aa4	40	bool parse() override;
02259ff8 CT	41	};
	42	}// namespace Ssl
	43
	44	/******************/
	45	bool
13cd7dee	46	Ssl::ErrorDetailsList::getRecord(Security::ErrorCode value, ErrorDetailEntry &entry)
02259ff8 CT	47	{
	48	const ErrorDetails::const_iterator it = theList.find(value);
	49	if (it != theList.end()) {
	50	entry.error_no = it->second.error_no;
	51	entry.name = it->second.name;
	52	entry.detail = it->second.detail;
	53	entry.descr = it->second.descr;
	54	return true;
	55	}
	56	return false;
	57	}
	58
	59	const char *
13cd7dee	60	Ssl::ErrorDetailsList::getErrorDescr(Security::ErrorCode value)
02259ff8 CT	61	{
	62	const ErrorDetails::const_iterator it = theList.find(value);
	63	if (it != theList.end()) {
	64	return it->second.descr.termedBuf();
	65	}
	66
aee3523a	67	return nullptr;
02259ff8 CT	68	}
	69
	70	const char *
13cd7dee	71	Ssl::ErrorDetailsList::getErrorDetail(Security::ErrorCode value)
02259ff8 CT	72	{
	73	const ErrorDetails::const_iterator it = theList.find(value);
	74	if (it != theList.end()) {
	75	return it->second.detail.termedBuf();
	76	}
	77
aee3523a	78	return nullptr;
02259ff8 CT	79	}
02259ff8 CT	80
aee3523a	81	Ssl::ErrorDetailsManager *Ssl::ErrorDetailsManager::TheDetailsManager = nullptr;
02259ff8 CT	82
	83	Ssl::ErrorDetailsManager &Ssl::ErrorDetailsManager::GetInstance()
	84	{
	85	if (!TheDetailsManager)
	86	TheDetailsManager = new Ssl::ErrorDetailsManager;
	87
	88	assert(TheDetailsManager);
	89	return *TheDetailsManager;
	90	}
	91
	92	void Ssl::ErrorDetailsManager::Shutdown()
	93	{
	94	delete TheDetailsManager;
aee3523a	95	TheDetailsManager = nullptr;
02259ff8 CT	96	}
02259ff8 CT	97
02259ff8 CT	98	Ssl::ErrorDetailsManager::ErrorDetailsManager()
	99	{
	100	theDefaultErrorDetails = new ErrorDetailsList();
	101	ErrorDetailFile detailTmpl(theDefaultErrorDetails);
	102	detailTmpl.loadDefault();
	103	}
	104
	105	Ssl::ErrorDetailsList::Pointer Ssl::ErrorDetailsManager::getCachedDetails(const char *lang)
	106	{
	107	Cache::iterator it;
	108	it = cache.find(lang);
	109	if (it != cache.end()) {
bf95c10a	110	debugs(83, 8, "Found template details in cache for language: " << lang);
dc49061a	111	return it->second;
02259ff8 CT	112	}
02259ff8 CT	113
aee3523a	114	return nullptr;
02259ff8 CT	115	}
	116
	117	void Ssl::ErrorDetailsManager::cacheDetails(ErrorDetailsList::Pointer &errorDetails)
	118	{
	119	const char *lang = errorDetails->errLanguage.termedBuf();
	120	assert(lang);
	121	if (cache.find(lang) == cache.end())
	122	cache[lang] = errorDetails;
	123	}
	124
	125	bool
13cd7dee	126	Ssl::ErrorDetailsManager::getErrorDetail(Security::ErrorCode value, const HttpRequest::Pointer &request, ErrorDetailEntry &entry)
02259ff8 CT	127	{
	128	#if USE_ERR_LOCALES
	129	String hdr;
aee3523a AR	130	if (request != nullptr && request->header.getList(Http::HdrType::ACCEPT_LANGUAGE, &hdr)) {
aee3523a AR	131	ErrorDetailsList::Pointer errDetails = nullptr;
02259ff8 CT	132	//Try to retrieve from cache
	133	size_t pos = 0;
	134	char lang[256];
	135	// Get the first ellement of the Accept-Language header
	136	strHdrAcptLangGetItem(hdr, lang, 256, pos);
	137	errDetails = getCachedDetails(lang); // search in cache
	138
	139	if (!errDetails) { // Else try to load from disk
bf95c10a	140	debugs(83, 8, "Creating new ErrDetailList to read from disk");
02259ff8 CT	141	errDetails = new ErrorDetailsList();
02259ff8 CT	142	ErrorDetailFile detailTmpl(errDetails);
b248c2a3	143	if (detailTmpl.loadFor(request.getRaw())) {
02259ff8	144	if (detailTmpl.language()) {
bf95c10a	145	debugs(83, 8, "Found details on disk for language " << detailTmpl.language());
02259ff8 CT	146	errDetails->errLanguage = detailTmpl.language();
	147	cacheDetails(errDetails);
	148	}
	149	}
	150	}
	151
aee3523a	152	if (errDetails != nullptr && errDetails->getRecord(value, entry))
02259ff8 CT	153	return true;
02259ff8 CT	154	}
8b082ed9 FC	155	#else
8b082ed9 FC	156	(void)request;
02259ff8 CT	157	#endif
	158
	159	// else try the default
	160	if (theDefaultErrorDetails->getRecord(value, entry)) {
bf95c10a	161	debugs(83, 8, "Found default details record for error: " << GetErrorName(value));
02259ff8 CT	162	return true;
	163	}
	164
	165	return false;
	166	}
	167
	168	const char *
13cd7dee	169	Ssl::ErrorDetailsManager::getDefaultErrorDescr(Security::ErrorCode value)
02259ff8 CT	170	{
	171	return theDefaultErrorDetails->getErrorDescr(value);
	172	}
	173
	174	const char *
13cd7dee	175	Ssl::ErrorDetailsManager::getDefaultErrorDetail(Security::ErrorCode value)
02259ff8 CT	176	{
	177	return theDefaultErrorDetails->getErrorDetail(value);
	178	}
	179
	180	// Use HttpHeaders parser to parse error-details.txt files
dc49061a A	181	class DetailEntryParser: public HttpHeader
dc49061a A	182	{
02259ff8 CT	183	public:
	184	DetailEntryParser():HttpHeader(hoErrorDetail) {}
	185	};
	186
	187	//The end of an error detrail entry is a double "\n". The headersEnd
	188	// functions can detect it
	189	inline size_t detailEntryEnd(const char *s, size_t len) {return headersEnd(s, len);}
	190
	191	bool
7e6eabbc	192	Ssl::ErrorDetailFile::parse()
02259ff8 CT	193	{
	194	if (!theDetails)
	195	return false;
	196
7e6eabbc CT	197	auto buf = template_;
7e6eabbc CT	198	buf.append("\n\n"); // ensure detailEntryEnd() finds the last entry
02259ff8	199
7e6eabbc CT	200	while (const auto size = detailEntryEnd(buf.rawContent(), buf.length())) {
	201	auto *s = buf.c_str();
	202	const auto e = s + size;
02259ff8	203
2f8abb64	204	//ignore spaces, new lines and comment lines (starting with #) at the beginning
7e6eabbc	205	for (; (s == '\n' \|\| s == ' ' \|\| s == '\t' \|\| s == '#') && s < e; ++s) {
dc49061a	206	if (*s == '#')
d7ae3534	207	while (s<e && *s != '\n')
2f8abb64	208	++s; // skip until the end of line
02259ff8 CT	209	}
	210
	211	if ( s != e) {
	212	DetailEntryParser parser;
4f1c93a7 EB	213	Http::ContentLengthInterpreter interpreter;
	214	// no applyStatusCodeRules() -- error templates lack HTTP status code
	215	if (!parser.parse(s, e - s, interpreter)) {
d816f28d	216	debugs(83, DBG_IMPORTANT, "WARNING: parse error on:" << s);
02259ff8 CT	217	return false;
	218	}
	219
81c203c9 AR	220	const String errorName = parser.getByName("name");
81c203c9 AR	221	if (!errorName.size()) {
d816f28d	222	debugs(83, DBG_IMPORTANT, "WARNING: invalid or no error detail name on:" << s);
02259ff8 CT	223	return false;
	224	}
	225
13cd7dee	226	Security::ErrorCode ssl_error = Ssl::GetErrorCode(errorName.termedBuf());
645deacc	227	if (ssl_error != SSL_ERROR_NONE) {
02259ff8	228
645deacc	229	if (theDetails->getErrorDetail(ssl_error)) {
d816f28d	230	debugs(83, DBG_IMPORTANT, "WARNING: duplicate entry: " << errorName);
645deacc CT	231	return false;
645deacc CT	232	}
02259ff8	233
645deacc CT	234	ErrorDetailEntry &entry = theDetails->theList[ssl_error];
	235	entry.error_no = ssl_error;
	236	entry.name = errorName;
	237	String tmp = parser.getByName("detail");
5a537e54	238	const int detailsParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.detail);
645deacc	239	tmp = parser.getByName("descr");
5a537e54	240	const int descrParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.descr);
7e6eabbc	241	// TODO: Validate "descr" and "detail" field values.
645deacc	242
b38b26cb	243	if (!detailsParseOk \|\| !descrParseOk) {
d816f28d	244	debugs(83, DBG_IMPORTANT, "WARNING: missing important field for detail error: " << errorName);
645deacc CT	245	return false;
645deacc CT	246	}
02259ff8	247
645deacc	248	} else if (!Ssl::ErrorIsOptional(errorName.termedBuf())) {
d816f28d	249	debugs(83, DBG_IMPORTANT, "WARNING: invalid error detail name: " << errorName);
02259ff8 CT	250	return false;
02259ff8 CT	251	}
645deacc	252
02259ff8 CT	253	}// else {only spaces and black lines; just ignore}
	254
	255	buf.consume(size);
	256	}
7e6eabbc	257	debugs(83, 9, Raw("unparsed data", buf.rawContent(), buf.length()));
02259ff8 CT	258	return true;
02259ff8 CT	259	}
f53969cc	260