[thirdparty/squid.git] / src / ssl / ErrorDetailManager.cc

/*
 * Copyright (C) 1996-2020 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */

#include "squid.h"
#include "ErrorDetail.h"
#include "ErrorDetailManager.h"
#include "errorpage.h"
#include "http/ContentLengthInterpreter.h"
#include "mime_header.h"

void Ssl::errorDetailInitialize()
{
    Ssl::ErrorDetailsManager::GetInstance();
}

void Ssl::errorDetailClean()
{
    Ssl::ErrorDetailsManager::Shutdown();
}

namespace Ssl
{

/// manages error detail templates
class ErrorDetailFile : public TemplateFile
{
public:
    explicit ErrorDetailFile(ErrorDetailsList::Pointer const details): TemplateFile("error-details.txt", ERR_NONE) {
        theDetails = details;
    }

private:
    ErrorDetailsList::Pointer  theDetails;
    virtual bool parse() override;
};
}// namespace Ssl

/******************/
bool
Ssl::ErrorDetailsList::getRecord(Security::ErrorCode value, ErrorDetailEntry &entry)
{
    const ErrorDetails::const_iterator it = theList.find(value);
    if (it != theList.end()) {
        entry.error_no =  it->second.error_no;
        entry.name =  it->second.name;
        entry.detail =  it->second.detail;
        entry.descr =  it->second.descr;
        return true;
    }
    return false;
}

const char *
Ssl::ErrorDetailsList::getErrorDescr(Security::ErrorCode value)
{
    const ErrorDetails::const_iterator it = theList.find(value);
    if (it != theList.end()) {
        return it->second.descr.termedBuf();
    }

    return NULL;
}

const char *
Ssl::ErrorDetailsList::getErrorDetail(Security::ErrorCode value)
{
    const ErrorDetails::const_iterator it = theList.find(value);
    if (it != theList.end()) {
        return it->second.detail.termedBuf();
    }

    return NULL;
}

Ssl::ErrorDetailsManager *Ssl::ErrorDetailsManager::TheDetailsManager = NULL;

Ssl::ErrorDetailsManager &Ssl::ErrorDetailsManager::GetInstance()
{
    if (!TheDetailsManager)
        TheDetailsManager = new Ssl::ErrorDetailsManager;

    assert(TheDetailsManager);
    return *TheDetailsManager;
}

void Ssl::ErrorDetailsManager::Shutdown()
{
    delete TheDetailsManager;
    TheDetailsManager = NULL;
}

Ssl::ErrorDetailsManager::ErrorDetailsManager()
{
    theDefaultErrorDetails = new ErrorDetailsList();
    ErrorDetailFile detailTmpl(theDefaultErrorDetails);
    detailTmpl.loadDefault();
}

Ssl::ErrorDetailsList::Pointer Ssl::ErrorDetailsManager::getCachedDetails(const char *lang)
{
    Cache::iterator it;
    it = cache.find(lang);
    if (it != cache.end()) {
        debugs(83, 8, HERE << "Found template details in cache for language: " << lang);
        return it->second;
    }

    return NULL;
}

void Ssl::ErrorDetailsManager::cacheDetails(ErrorDetailsList::Pointer &errorDetails)
{
    const char *lang = errorDetails->errLanguage.termedBuf();
    assert(lang);
    if (cache.find(lang) == cache.end())
        cache[lang] = errorDetails;
}

bool
Ssl::ErrorDetailsManager::getErrorDetail(Security::ErrorCode value, const HttpRequest::Pointer &request, ErrorDetailEntry &entry)
{
#if USE_ERR_LOCALES
    String hdr;
    if (request != NULL && request->header.getList(Http::HdrType::ACCEPT_LANGUAGE, &hdr)) {
        ErrorDetailsList::Pointer errDetails = NULL;
        //Try to retrieve from cache
        size_t pos = 0;
        char lang[256];
        // Get the first ellement of the Accept-Language header
        strHdrAcptLangGetItem(hdr, lang, 256, pos);
        errDetails = getCachedDetails(lang); // search in cache

        if (!errDetails) { // Else try to load from disk
            debugs(83, 8, HERE << "Creating new ErrDetailList to read from disk");
            errDetails = new ErrorDetailsList();
            ErrorDetailFile detailTmpl(errDetails);
            if (detailTmpl.loadFor(request.getRaw())) {
                if (detailTmpl.language()) {
                    debugs(83, 8, HERE << "Found details on disk for language " << detailTmpl.language());
                    errDetails->errLanguage = detailTmpl.language();
                    cacheDetails(errDetails);
                }
            }
        }

        if (errDetails != NULL && errDetails->getRecord(value, entry))
            return true;
    }
#endif

    // else try the default
    if (theDefaultErrorDetails->getRecord(value, entry)) {
        debugs(83, 8, HERE << "Found default details record for error: " << GetErrorName(value));
        return true;
    }

    return false;
}

const char *
Ssl::ErrorDetailsManager::getDefaultErrorDescr(Security::ErrorCode value)
{
    return theDefaultErrorDetails->getErrorDescr(value);
}

const char *
Ssl::ErrorDetailsManager::getDefaultErrorDetail(Security::ErrorCode value)
{
    return theDefaultErrorDetails->getErrorDetail(value);
}

// Use HttpHeaders parser to parse error-details.txt files
class DetailEntryParser: public HttpHeader
{
public:
    DetailEntryParser():HttpHeader(hoErrorDetail) {}
};

//The end of an error detrail entry is a double "\n". The headersEnd
// functions can detect it
inline size_t detailEntryEnd(const char *s, size_t len) {return headersEnd(s, len);}

bool
Ssl::ErrorDetailFile::parse()
{
    if (!theDetails)
        return false;

    auto buf = template_;
    buf.append("\n\n"); // ensure detailEntryEnd() finds the last entry

    while (const auto size = detailEntryEnd(buf.rawContent(), buf.length())) {
        auto *s = buf.c_str();
        const auto e = s + size;

        //ignore spaces, new lines and comment lines (starting with #) at the beggining
        for (; (*s == '\n' || *s == ' '  || *s == '\t' || *s == '#')  && s < e; ++s) {
            if (*s == '#')
                while (s<e &&  *s != '\n')
                    ++s; // skip untill the end of line
        }

        if ( s != e) {
            DetailEntryParser parser;
            Http::ContentLengthInterpreter interpreter;
            // no applyStatusCodeRules() -- error templates lack HTTP status code
            if (!parser.parse(s, e - s, interpreter)) {
                debugs(83, DBG_IMPORTANT, HERE <<
                       "WARNING! parse error on:" << s);
                return false;
            }

            const String errorName = parser.getByName("name");
            if (!errorName.size()) {
                debugs(83, DBG_IMPORTANT, HERE <<
                       "WARNING! invalid or no error detail name on:" << s);
                return false;
            }

            Security::ErrorCode ssl_error = Ssl::GetErrorCode(errorName.termedBuf());
            if (ssl_error != SSL_ERROR_NONE) {

                if (theDetails->getErrorDetail(ssl_error)) {
                    debugs(83, DBG_IMPORTANT, HERE <<
                           "WARNING! duplicate entry: " << errorName);
                    return false;
                }

                ErrorDetailEntry &entry = theDetails->theList[ssl_error];
                entry.error_no = ssl_error;
                entry.name = errorName;
                String tmp = parser.getByName("detail");
                const int detailsParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.detail);
                tmp = parser.getByName("descr");
                const int descrParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.descr);
                // TODO: Validate "descr" and "detail" field values.

                if (!detailsParseOk || !descrParseOk) {
                    debugs(83, DBG_IMPORTANT, HERE <<
                           "WARNING! missing important field for detail error: " <<  errorName);
                    return false;
                }

            } else if (!Ssl::ErrorIsOptional(errorName.termedBuf())) {
                debugs(83, DBG_IMPORTANT, HERE <<
                       "WARNING! invalid error detail name: " << errorName);
                return false;
            }

        }// else {only spaces and black lines; just ignore}

        buf.consume(size);
    }
    debugs(83, 9, Raw("unparsed data", buf.rawContent(), buf.length()));
    return true;
}
Commit	Line	Data
bbc27441	1	/*
77b1029d	2	* Copyright (C) 1996-2020 The Squid Software Foundation and contributors
bbc27441 AJ	3	*
	4	* Squid software is distributed under GPLv2+ license and includes
	5	* contributions from numerous individuals and organizations.
	6	* Please see the COPYING and CONTRIBUTORS files for details.
	7	*/
	8
582c2af2	9	#include "squid.h"
02259ff8	10	#include "ErrorDetail.h"
02259ff8	11	#include "ErrorDetailManager.h"
602d9612	12	#include "errorpage.h"
4f1c93a7	13	#include "http/ContentLengthInterpreter.h"
b6149797	14	#include "mime_header.h"
02259ff8 CT	15
	16	void Ssl::errorDetailInitialize()
	17	{
	18	Ssl::ErrorDetailsManager::GetInstance();
	19	}
	20
	21	void Ssl::errorDetailClean()
	22	{
	23	Ssl::ErrorDetailsManager::Shutdown();
	24	}
	25
	26	namespace Ssl
	27	{
	28
	29	/// manages error detail templates
dc49061a A	30	class ErrorDetailFile : public TemplateFile
dc49061a A	31	{
02259ff8	32	public:
8ff2520a	33	explicit ErrorDetailFile(ErrorDetailsList::Pointer const details): TemplateFile("error-details.txt", ERR_NONE) {
dc49061a	34	theDetails = details;
02259ff8 CT	35	}
	36
	37	private:
02259ff8	38	ErrorDetailsList::Pointer theDetails;
7e6eabbc	39	virtual bool parse() override;
02259ff8 CT	40	};
	41	}// namespace Ssl
	42
	43	/******************/
	44	bool
13cd7dee	45	Ssl::ErrorDetailsList::getRecord(Security::ErrorCode value, ErrorDetailEntry &entry)
02259ff8 CT	46	{
	47	const ErrorDetails::const_iterator it = theList.find(value);
	48	if (it != theList.end()) {
	49	entry.error_no = it->second.error_no;
	50	entry.name = it->second.name;
	51	entry.detail = it->second.detail;
	52	entry.descr = it->second.descr;
	53	return true;
	54	}
	55	return false;
	56	}
	57
	58	const char *
13cd7dee	59	Ssl::ErrorDetailsList::getErrorDescr(Security::ErrorCode value)
02259ff8 CT	60	{
	61	const ErrorDetails::const_iterator it = theList.find(value);
	62	if (it != theList.end()) {
	63	return it->second.descr.termedBuf();
	64	}
	65
	66	return NULL;
	67	}
	68
	69	const char *
13cd7dee	70	Ssl::ErrorDetailsList::getErrorDetail(Security::ErrorCode value)
02259ff8 CT	71	{
	72	const ErrorDetails::const_iterator it = theList.find(value);
	73	if (it != theList.end()) {
	74	return it->second.detail.termedBuf();
	75	}
	76
	77	return NULL;
	78	}
	79
	80	Ssl::ErrorDetailsManager *Ssl::ErrorDetailsManager::TheDetailsManager = NULL;
	81
	82	Ssl::ErrorDetailsManager &Ssl::ErrorDetailsManager::GetInstance()
	83	{
	84	if (!TheDetailsManager)
	85	TheDetailsManager = new Ssl::ErrorDetailsManager;
	86
	87	assert(TheDetailsManager);
	88	return *TheDetailsManager;
	89	}
	90
	91	void Ssl::ErrorDetailsManager::Shutdown()
	92	{
	93	delete TheDetailsManager;
	94	TheDetailsManager = NULL;
	95	}
	96
02259ff8 CT	97	Ssl::ErrorDetailsManager::ErrorDetailsManager()
	98	{
	99	theDefaultErrorDetails = new ErrorDetailsList();
	100	ErrorDetailFile detailTmpl(theDefaultErrorDetails);
	101	detailTmpl.loadDefault();
	102	}
	103
	104	Ssl::ErrorDetailsList::Pointer Ssl::ErrorDetailsManager::getCachedDetails(const char *lang)
	105	{
	106	Cache::iterator it;
	107	it = cache.find(lang);
	108	if (it != cache.end()) {
dc49061a A	109	debugs(83, 8, HERE << "Found template details in cache for language: " << lang);
dc49061a A	110	return it->second;
02259ff8 CT	111	}
	112
	113	return NULL;
	114	}
	115
	116	void Ssl::ErrorDetailsManager::cacheDetails(ErrorDetailsList::Pointer &errorDetails)
	117	{
	118	const char *lang = errorDetails->errLanguage.termedBuf();
	119	assert(lang);
	120	if (cache.find(lang) == cache.end())
	121	cache[lang] = errorDetails;
	122	}
	123
	124	bool
13cd7dee	125	Ssl::ErrorDetailsManager::getErrorDetail(Security::ErrorCode value, const HttpRequest::Pointer &request, ErrorDetailEntry &entry)
02259ff8 CT	126	{
	127	#if USE_ERR_LOCALES
	128	String hdr;
789217a2	129	if (request != NULL && request->header.getList(Http::HdrType::ACCEPT_LANGUAGE, &hdr)) {
02259ff8 CT	130	ErrorDetailsList::Pointer errDetails = NULL;
	131	//Try to retrieve from cache
	132	size_t pos = 0;
	133	char lang[256];
	134	// Get the first ellement of the Accept-Language header
	135	strHdrAcptLangGetItem(hdr, lang, 256, pos);
	136	errDetails = getCachedDetails(lang); // search in cache
	137
	138	if (!errDetails) { // Else try to load from disk
	139	debugs(83, 8, HERE << "Creating new ErrDetailList to read from disk");
	140	errDetails = new ErrorDetailsList();
	141	ErrorDetailFile detailTmpl(errDetails);
b248c2a3	142	if (detailTmpl.loadFor(request.getRaw())) {
02259ff8 CT	143	if (detailTmpl.language()) {
	144	debugs(83, 8, HERE << "Found details on disk for language " << detailTmpl.language());
	145	errDetails->errLanguage = detailTmpl.language();
	146	cacheDetails(errDetails);
	147	}
	148	}
	149	}
	150
	151	if (errDetails != NULL && errDetails->getRecord(value, entry))
	152	return true;
	153	}
	154	#endif
	155
	156	// else try the default
	157	if (theDefaultErrorDetails->getRecord(value, entry)) {
	158	debugs(83, 8, HERE << "Found default details record for error: " << GetErrorName(value));
	159	return true;
	160	}
	161
	162	return false;
	163	}
	164
	165	const char *
13cd7dee	166	Ssl::ErrorDetailsManager::getDefaultErrorDescr(Security::ErrorCode value)
02259ff8 CT	167	{
	168	return theDefaultErrorDetails->getErrorDescr(value);
	169	}
	170
	171	const char *
13cd7dee	172	Ssl::ErrorDetailsManager::getDefaultErrorDetail(Security::ErrorCode value)
02259ff8 CT	173	{
	174	return theDefaultErrorDetails->getErrorDetail(value);
	175	}
	176
	177	// Use HttpHeaders parser to parse error-details.txt files
dc49061a A	178	class DetailEntryParser: public HttpHeader
dc49061a A	179	{
02259ff8 CT	180	public:
	181	DetailEntryParser():HttpHeader(hoErrorDetail) {}
	182	};
	183
	184	//The end of an error detrail entry is a double "\n". The headersEnd
	185	// functions can detect it
	186	inline size_t detailEntryEnd(const char *s, size_t len) {return headersEnd(s, len);}
	187
	188	bool
7e6eabbc	189	Ssl::ErrorDetailFile::parse()
02259ff8 CT	190	{
	191	if (!theDetails)
	192	return false;
	193
7e6eabbc CT	194	auto buf = template_;
7e6eabbc CT	195	buf.append("\n\n"); // ensure detailEntryEnd() finds the last entry
02259ff8	196
7e6eabbc CT	197	while (const auto size = detailEntryEnd(buf.rawContent(), buf.length())) {
	198	auto *s = buf.c_str();
	199	const auto e = s + size;
02259ff8 CT	200
02259ff8 CT	201	//ignore spaces, new lines and comment lines (starting with #) at the beggining
7e6eabbc	202	for (; (s == '\n' \|\| s == ' ' \|\| s == '\t' \|\| s == '#') && s < e; ++s) {
dc49061a	203	if (*s == '#')
d7ae3534 FC	204	while (s<e && *s != '\n')
d7ae3534 FC	205	++s; // skip untill the end of line
02259ff8 CT	206	}
	207
	208	if ( s != e) {
	209	DetailEntryParser parser;
4f1c93a7 EB	210	Http::ContentLengthInterpreter interpreter;
	211	// no applyStatusCodeRules() -- error templates lack HTTP status code
	212	if (!parser.parse(s, e - s, interpreter)) {
02259ff8 CT	213	debugs(83, DBG_IMPORTANT, HERE <<
	214	"WARNING! parse error on:" << s);
	215	return false;
	216	}
	217
81c203c9 AR	218	const String errorName = parser.getByName("name");
81c203c9 AR	219	if (!errorName.size()) {
02259ff8 CT	220	debugs(83, DBG_IMPORTANT, HERE <<
	221	"WARNING! invalid or no error detail name on:" << s);
	222	return false;
	223	}
	224
13cd7dee	225	Security::ErrorCode ssl_error = Ssl::GetErrorCode(errorName.termedBuf());
645deacc	226	if (ssl_error != SSL_ERROR_NONE) {
02259ff8	227
645deacc CT	228	if (theDetails->getErrorDetail(ssl_error)) {
	229	debugs(83, DBG_IMPORTANT, HERE <<
	230	"WARNING! duplicate entry: " << errorName);
	231	return false;
	232	}
02259ff8	233
645deacc CT	234	ErrorDetailEntry &entry = theDetails->theList[ssl_error];
	235	entry.error_no = ssl_error;
	236	entry.name = errorName;
	237	String tmp = parser.getByName("detail");
5a537e54	238	const int detailsParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.detail);
645deacc	239	tmp = parser.getByName("descr");
5a537e54	240	const int descrParseOk = httpHeaderParseQuotedString(tmp.termedBuf(), tmp.size(), &entry.descr);
7e6eabbc	241	// TODO: Validate "descr" and "detail" field values.
645deacc	242
b38b26cb	243	if (!detailsParseOk \|\| !descrParseOk) {
645deacc CT	244	debugs(83, DBG_IMPORTANT, HERE <<
	245	"WARNING! missing important field for detail error: " << errorName);
	246	return false;
	247	}
02259ff8	248
645deacc	249	} else if (!Ssl::ErrorIsOptional(errorName.termedBuf())) {
02259ff8	250	debugs(83, DBG_IMPORTANT, HERE <<
645deacc	251	"WARNING! invalid error detail name: " << errorName);
02259ff8 CT	252	return false;
02259ff8 CT	253	}
645deacc	254
02259ff8 CT	255	}// else {only spaces and black lines; just ignore}
	256
	257	buf.consume(size);
	258	}
7e6eabbc	259	debugs(83, 9, Raw("unparsed data", buf.rawContent(), buf.length()));
02259ff8 CT	260	return true;
02259ff8 CT	261	}
f53969cc	262