Difuse/luci
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

luci-lib-httpclient: revamp URL handling

Browse source 
- Introduce a parse_url() helper which properly deals with literal IPv4
   and IPv6 host parts and returns the decomposed uri string as table
 - Properly format IPv6 literals in autogenerated Host headers
 - Omit default port numbers in Host headers and calculated redirect URLs.

Supersedes PR #2337.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
This commit is contained in:
Jo-Philipp Wich 2018-12-11 08:57:36 +01:00
parent b94be57aff
commit a54baf7be0
1 changed files with 123 additions and 72 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

195
libs/luci-lib-httpclient/luasrc/httpclient.lua
View file

@ -9,9 +9,10 @@ local util = require "luci.util"
local table = require "table" local table = require "table"
local http = require "luci.http" local http = require "luci.http"
local date = require "luci.http.date" local date = require "luci.http.date"
local ip = require "luci.ip"
local type, pairs, ipairs, tonumber = type, pairs, ipairs, tonumber local type, pairs, ipairs, tonumber, tostring = type, pairs, ipairs, tonumber, tostring
local unpack = unpack local unpack, string = unpack, string
module "luci.httpclient" module "luci.httpclient"
@ -25,7 +26,7 @@ function chunksource(sock, buffer)
if not newblock then if not newblock then
return nil, code return nil, code
end end
buffer = buffer .. newblock buffer = buffer .. newblock
_, endp, count = buffer:find("^([0-9a-fA-F]+);?.-\r\n") _, endp, count = buffer:find("^([0-9a-fA-F]+);?.-\r\n")
end end
count = tonumber(count, 16) count = tonumber(count, 16)
@ -62,17 +63,17 @@ end
function request_to_buffer(uri, options) function request_to_buffer(uri, options)
local source, code, msg = request_to_source(uri, options) local source, code, msg = request_to_source(uri, options)
local output = {} local output = {}
if not source then if not source then
return nil, code, msg return nil, code, msg
end end
source, code = ltn12.pump.all(source, (ltn12.sink.table(output))) source, code = ltn12.pump.all(source, (ltn12.sink.table(output)))
if not source then if not source then
return nil, code return nil, code
end end
return table.concat(output) return table.concat(output)
end end
@ -83,7 +84,7 @@ function request_to_source(uri, options)
elseif status ~= 200 and status ~= 206 then elseif status ~= 200 and status ~= 206 then
return nil, status, buffer return nil, status, buffer
end end
if response.headers["Transfer-Encoding"] == "chunked" then if response.headers["Transfer-Encoding"] == "chunked" then
return chunksource(sock, buffer) return chunksource(sock, buffer)
else else
@ -91,67 +92,115 @@ function request_to_source(uri, options)
end end
end end
function parse_url(uri)
local url, rest, tmp = {}, nil, nil
url.scheme, rest = uri:match("^(%w+)://(.+)$")
if not (url.scheme and rest) then
return nil
end
url.auth, tmp = rest:match("^([^@]+)@(.+)$")
if url.auth and tmp then
rest = tmp
end
url.host, tmp = rest:match("^%[([0-9a-fA-F:]+)%](.*)$")
if url.host and tmp then
url.ip6addr = ip.IPv6(url.host)
url.host = string.format("[%s]", url.ip6addr:string())
rest = tmp
if not url.ip6addr then
return nil
end
else
url.host, tmp = rest:match("^(%d+%.%d+%.%d+%.%d+)(.*)$")
if url.host and tmp then
url.ipaddr = ip.IPv4(url.host)
url.host = url.ipaddr:string()
rest = tmp
if not url.ipaddr then
return nil
end
else
url.host, tmp = rest:match("^([0-9a-zA-Z%.%-]+)(.*)$")
if url.host and tmp then
rest = tmp
else
return nil
end
end
end
url.port, tmp = rest:match("^:(%d+)(.*)$")
if url.port and tmp then
url.port = tonumber(url.port)
rest = tmp
if url.port < 1 or url.port > 65535 then
return nil
end
end
if url.scheme == "http" then
url.port = url.port or 80
url.default_port = (url.port == 80)
elseif url.scheme == "https" then
url.port = url.port or 443
url.default_port = (url.port == 443)
end
if rest == "" then
url.path = "/"
else
url.path = rest
end
return url
end
-- --
-- GET HTTP-resource -- GET HTTP-resource
-- --
function request_raw(uri, options) function request_raw(uri, options)
options = options or {} options = options or {}
local pr, auth, host, port, path
if options.params then if options.params then
uri = uri .. '?' .. http.urlencode_params(options.params) uri = uri .. '?' .. http.urlencode_params(options.params)
end end
if uri:find("%[") then local url = parse_url(uri)
if uri:find("@") then
pr, auth, host, port, path = uri:match("(%w+)://(.+)@(%b[]):?([0-9]*)(.*)")
host = host:sub(2,-2)
else
pr, host, port, path = uri:match("(%w+)://(%b[]):?([0-9]*)(.*)")
host = host:sub(2,-2)
end
else
if uri:find("@") then
pr, auth, host, port, path =
uri:match("(%w+)://(.+)@([%w-.]+):?([0-9]*)(.*)")
else
pr, host, port, path = uri:match("(%w+)://([%w-.]+):?([0-9]*)(.*)")
end
end
if not host then if not url then
return nil, -1, "unable to parse URI" return nil, -1, "unable to parse URI"
end end
if pr ~= "http" and pr ~= "https" then if url.scheme ~= "http" and url.scheme ~= "https" then
return nil, -2, "protocol not supported" return nil, -2, "protocol not supported"
end end
port = #port > 0 and port or (pr == "https" and 443 or 80)
path = #path > 0 and path or "/"
options.depth = options.depth or 10 options.depth = options.depth or 10
local headers = options.headers or {} local headers = options.headers or {}
local protocol = options.protocol or "HTTP/1.1" local protocol = options.protocol or "HTTP/1.1"
headers["User-Agent"] = headers["User-Agent"] or "LuCI httpclient 0.1" headers["User-Agent"] = headers["User-Agent"] or "LuCI httpclient 0.1"
if headers.Connection == nil then if headers.Connection == nil then
headers.Connection = "close" headers.Connection = "close"
end end
if auth and not headers.Authorization then if url.auth and not headers.Authorization then
headers.Authorization = "Basic " .. nixio.bin.b64encode(auth) headers.Authorization = "Basic " .. nixio.bin.b64encode(url.auth)
end end
local sock, code, msg = nixio.connect(host, port) local addr = tostring(url.ip6addr or url.ipaddr or url.host)
local sock, code, msg = nixio.connect(addr, url.port)
if not sock then if not sock then
return nil, code, msg return nil, code, msg
end end
sock:setsockopt("socket", "sndtimeo", options.sndtimeo or 15) sock:setsockopt("socket", "sndtimeo", options.sndtimeo or 15)
sock:setsockopt("socket", "rcvtimeo", options.rcvtimeo or 15) sock:setsockopt("socket", "rcvtimeo", options.rcvtimeo or 15)
if pr == "https" then if url.scheme == "https" then
local tls = options.tls_context or nixio.tls() local tls = options.tls_context or nixio.tls()
sock = tls:create(sock) sock = tls:create(sock)
local stat, code, error = sock:connect() local stat, code, error = sock:connect()
@ -160,11 +209,12 @@ function request_raw(uri, options)
end end
end end
-- Pre assemble fixes -- Pre assemble fixes
if protocol == "HTTP/1.1" then if protocol == "HTTP/1.1" then
headers.Host = headers.Host or host headers.Host = headers.Host or
(url.default_port and url.host or string.format("%s:%d", url.host, url.port))
end end
if type(options.body) == "table" then if type(options.body) == "table" then
options.body = http.urlencode_params(options.body) options.body = http.urlencode_params(options.body)
end end
@ -175,7 +225,7 @@ function request_raw(uri, options)
"application/x-www-form-urlencoded" "application/x-www-form-urlencoded"
options.method = options.method or "POST" options.method = options.method or "POST"
end end
if type(options.body) == "function" then if type(options.body) == "function" then
options.method = options.method or "POST" options.method = options.method or "POST"
end end
@ -185,12 +235,12 @@ function request_raw(uri, options)
for _, c in ipairs(options.cookies) do for _, c in ipairs(options.cookies) do
local cdo = c.flags.domain local cdo = c.flags.domain
local cpa = c.flags.path local cpa = c.flags.path
if (cdo == host or cdo == "."..host or host:sub(-#cdo) == cdo) if (cdo == url.host or cdo == "."..url.host or url.host:sub(-#cdo) == cdo)
and (cpa == path or cpa == "/" or cpa .. "/" == path:sub(#cpa+1)) and (cpa == url.path or cpa == "/" or cpa .. "/" == url.path:sub(#cpa+1))
and (not c.flags.secure or pr == "https") and (not c.flags.secure or url.scheme == "https")
then then
cookiedata[#cookiedata+1] = c.key .. "=" .. c.value cookiedata[#cookiedata+1] = c.key .. "=" .. c.value
end end
end end
if headers["Cookie"] then if headers["Cookie"] then
headers["Cookie"] = headers["Cookie"] .. "; " .. table.concat(cookiedata, "; ") headers["Cookie"] = headers["Cookie"] .. "; " .. table.concat(cookiedata, "; ")
@ -200,8 +250,8 @@ function request_raw(uri, options)
end end
-- Assemble message -- Assemble message
local message = {(options.method or "GET") .. " " .. path .. " " .. protocol} local message = {(options.method or "GET") .. " " .. url.path .. " " .. protocol}
for k, v in pairs(headers) do for k, v in pairs(headers) do
if type(v) == "string" or type(v) == "number" then if type(v) == "string" or type(v) == "number" then
message[#message+1] = k .. ": " .. v message[#message+1] = k .. ": " .. v
@ -214,10 +264,10 @@ function request_raw(uri, options)
message[#message+1] = "" message[#message+1] = ""
message[#message+1] = "" message[#message+1] = ""
-- Send request -- Send request
sock:sendall(table.concat(message, "\r\n")) sock:sendall(table.concat(message, "\r\n"))
if type(options.body) == "string" then if type(options.body) == "string" then
sock:sendall(options.body) sock:sendall(options.body)
elseif type(options.body) == "function" then elseif type(options.body) == "function" then
@ -227,27 +277,27 @@ function request_raw(uri, options)
return unpack(res) return unpack(res)
end end
end end
-- Create source and fetch response -- Create source and fetch response
local linesrc = sock:linesource() local linesrc = sock:linesource()
local line, code, error = linesrc() local line, code, error = linesrc()
if not line then if not line then
sock:close() sock:close()
return nil, code, error return nil, code, error
end end
local protocol, status, msg = line:match("^([%w./]+) ([0-9]+) (.*)") local protocol, status, msg = line:match("^([%w./]+) ([0-9]+) (.*)")
if not protocol then if not protocol then
sock:close() sock:close()
return nil, -3, "invalid response magic: " .. line return nil, -3, "invalid response magic: " .. line
end end
local response = { local response = {
status = line, headers = {}, code = 0, cookies = {}, uri = uri status = line, headers = {}, code = 0, cookies = {}, uri = uri
} }
line = linesrc() line = linesrc()
while line and line ~= "" do while line and line ~= "" do
local key, val = line:match("^([%w-]+)%s?:%s?(.*)") local key, val = line:match("^([%w-]+)%s?:%s?(.*)")
@ -262,32 +312,32 @@ function request_raw(uri, options)
end end
line = linesrc() line = linesrc()
end end
if not line then if not line then
sock:close() sock:close()
return nil, -4, "protocol error" return nil, -4, "protocol error"
end end
-- Parse cookies -- Parse cookies
if response.headers["Set-Cookie"] then if response.headers["Set-Cookie"] then
local cookies = response.headers["Set-Cookie"] local cookies = response.headers["Set-Cookie"]
for _, c in ipairs(type(cookies) == "table" and cookies or {cookies}) do for _, c in ipairs(type(cookies) == "table" and cookies or {cookies}) do
local cobj = cookie_parse(c) local cobj = cookie_parse(c)
cobj.flags.path = cobj.flags.path or path:match("(/.*)/?[^/]*") cobj.flags.path = cobj.flags.path or url.path:match("(/.*)/?[^/]*")
if not cobj.flags.domain or cobj.flags.domain == "" then if not cobj.flags.domain or cobj.flags.domain == "" then
cobj.flags.domain = host cobj.flags.domain = url.host
response.cookies[#response.cookies+1] = cobj response.cookies[#response.cookies+1] = cobj
else else
local hprt, cprt = {}, {} local hprt, cprt = {}, {}
-- Split hostnames and save them in reverse order -- Split hostnames and save them in reverse order
for part in host:gmatch("[^.]*") do for part in url.host:gmatch("[^.]*") do
table.insert(hprt, 1, part) table.insert(hprt, 1, part)
end end
for part in cobj.flags.domain:gmatch("[^.]*") do for part in cobj.flags.domain:gmatch("[^.]*") do
table.insert(cprt, 1, part) table.insert(cprt, 1, part)
end end
local valid = true local valid = true
for i, part in ipairs(cprt) do for i, part in ipairs(cprt) do
-- If parts are different and no wildcard -- If parts are different and no wildcard
@ -309,8 +359,8 @@ function request_raw(uri, options)
end end
end end
end end
-- Follow -- Follow
response.code = tonumber(status) response.code = tonumber(status)
if response.code and options.depth > 0 then if response.code and options.depth > 0 then
if (response.code == 301 or response.code == 302 or response.code == 307) if (response.code == 301 or response.code == 302 or response.code == 307)
@ -319,20 +369,21 @@ function request_raw(uri, options)
if not nuri then if not nuri then
return nil, -5, "invalid reference" return nil, -5, "invalid reference"
end end
if not nuri:find("https?://") then if not nuri:match("^%w+://") then
nuri = pr .. "://" .. host .. ":" .. port .. nuri nuri = url.default_port and string.format("%s://%s%s", url.scheme, url.host, nuri)
or string.format("%s://%s:%d%s", url.scheme, url.host, url.port, nuri)
end end
options.depth = options.depth - 1 options.depth = options.depth - 1
if options.headers then if options.headers then
options.headers.Host = nil options.headers.Host = nil
end end
sock:close() sock:close()
return request_raw(nuri, options) return request_raw(nuri, options)
end end
end end
return response.code, response, linesrc(true)..sock:readall(), sock return response.code, response, linesrc(true)..sock:readall(), sock
end end