http_server.c 16 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533
  1. /*
  2. * Copyright 1995-2022 The OpenSSL Project Authors. All Rights Reserved.
  3. *
  4. * Licensed under the Apache License 2.0 (the "License"). You may not use
  5. * this file except in compliance with the License. You can obtain a copy
  6. * in the file LICENSE in the source distribution or at
  7. * https://www.openssl.org/source/license.html
  8. */
  9. /* Very basic HTTP server */
  10. #if !defined(_POSIX_C_SOURCE) && defined(OPENSSL_SYS_VMS)
  11. /*
  12. * On VMS, you need to define this to get the declaration of fileno(). The
  13. * value 2 is to make sure no function defined in POSIX-2 is left undefined.
  14. */
  15. # define _POSIX_C_SOURCE 2
  16. #endif
  17. #include <string.h>
  18. #include <ctype.h>
  19. #include "http_server.h"
  20. #include "internal/sockets.h"
  21. #include <openssl/err.h>
  22. #include <openssl/rand.h>
  23. #include "s_apps.h"
  24. #if defined(__TANDEM)
  25. # if defined(OPENSSL_TANDEM_FLOSS)
  26. # include <floss.h(floss_fork)>
  27. # endif
  28. #endif
  29. static int verbosity = LOG_INFO;
  30. #define HTTP_PREFIX "HTTP/"
  31. #define HTTP_VERSION_PATT "1." /* allow 1.x */
  32. #define HTTP_PREFIX_VERSION HTTP_PREFIX""HTTP_VERSION_PATT
  33. #define HTTP_1_0 HTTP_PREFIX_VERSION"0" /* "HTTP/1.0" */
  34. #ifdef HTTP_DAEMON
  35. int multi = 0; /* run multiple responder processes */
  36. int acfd = (int) INVALID_SOCKET;
  37. static int print_syslog(const char *str, size_t len, void *levPtr)
  38. {
  39. int level = *(int *)levPtr;
  40. int ilen = len > MAXERRLEN ? MAXERRLEN : len;
  41. syslog(level, "%.*s", ilen, str);
  42. return ilen;
  43. }
  44. #endif
  45. void log_message(const char *prog, int level, const char *fmt, ...)
  46. {
  47. va_list ap;
  48. if (verbosity < level)
  49. return;
  50. va_start(ap, fmt);
  51. #ifdef HTTP_DAEMON
  52. if (multi) {
  53. char buf[1024];
  54. if (vsnprintf(buf, sizeof(buf), fmt, ap) > 0)
  55. syslog(level, "%s", buf);
  56. if (level <= LOG_ERR)
  57. ERR_print_errors_cb(print_syslog, &level);
  58. } else
  59. #endif
  60. {
  61. BIO_printf(bio_err, "%s: ", prog);
  62. BIO_vprintf(bio_err, fmt, ap);
  63. BIO_printf(bio_err, "\n");
  64. (void)BIO_flush(bio_err);
  65. }
  66. va_end(ap);
  67. }
  68. #ifdef HTTP_DAEMON
  69. void socket_timeout(int signum)
  70. {
  71. if (acfd != (int)INVALID_SOCKET)
  72. (void)shutdown(acfd, SHUT_RD);
  73. }
  74. static void killall(int ret, pid_t *kidpids)
  75. {
  76. int i;
  77. for (i = 0; i < multi; ++i)
  78. if (kidpids[i] != 0)
  79. (void)kill(kidpids[i], SIGTERM);
  80. OPENSSL_free(kidpids);
  81. ossl_sleep(1000);
  82. exit(ret);
  83. }
  84. static int termsig = 0;
  85. static void noteterm(int sig)
  86. {
  87. termsig = sig;
  88. }
  89. /*
  90. * Loop spawning up to `multi` child processes, only child processes return
  91. * from this function. The parent process loops until receiving a termination
  92. * signal, kills extant children and exits without returning.
  93. */
  94. void spawn_loop(const char *prog)
  95. {
  96. pid_t *kidpids = NULL;
  97. int status;
  98. int procs = 0;
  99. int i;
  100. openlog(prog, LOG_PID, LOG_DAEMON);
  101. if (setpgid(0, 0)) {
  102. syslog(LOG_ERR, "fatal: error detaching from parent process group: %s",
  103. strerror(errno));
  104. exit(1);
  105. }
  106. kidpids = app_malloc(multi * sizeof(*kidpids), "child PID array");
  107. for (i = 0; i < multi; ++i)
  108. kidpids[i] = 0;
  109. signal(SIGINT, noteterm);
  110. signal(SIGTERM, noteterm);
  111. while (termsig == 0) {
  112. pid_t fpid;
  113. /*
  114. * Wait for a child to replace when we're at the limit.
  115. * Slow down if a child exited abnormally or waitpid() < 0
  116. */
  117. while (termsig == 0 && procs >= multi) {
  118. if ((fpid = waitpid(-1, &status, 0)) > 0) {
  119. for (i = 0; i < procs; ++i) {
  120. if (kidpids[i] == fpid) {
  121. kidpids[i] = 0;
  122. --procs;
  123. break;
  124. }
  125. }
  126. if (i >= multi) {
  127. syslog(LOG_ERR, "fatal: internal error: "
  128. "no matching child slot for pid: %ld",
  129. (long) fpid);
  130. killall(1, kidpids);
  131. }
  132. if (status != 0) {
  133. if (WIFEXITED(status))
  134. syslog(LOG_WARNING, "child process: %ld, exit status: %d",
  135. (long)fpid, WEXITSTATUS(status));
  136. else if (WIFSIGNALED(status))
  137. syslog(LOG_WARNING, "child process: %ld, term signal %d%s",
  138. (long)fpid, WTERMSIG(status),
  139. # ifdef WCOREDUMP
  140. WCOREDUMP(status) ? " (core dumped)" :
  141. # endif
  142. "");
  143. ossl_sleep(1000);
  144. }
  145. break;
  146. } else if (errno != EINTR) {
  147. syslog(LOG_ERR, "fatal: waitpid(): %s", strerror(errno));
  148. killall(1, kidpids);
  149. }
  150. }
  151. if (termsig)
  152. break;
  153. switch (fpid = fork()) {
  154. case -1: /* error */
  155. /* System critically low on memory, pause and try again later */
  156. ossl_sleep(30000);
  157. break;
  158. case 0: /* child */
  159. OPENSSL_free(kidpids);
  160. signal(SIGINT, SIG_DFL);
  161. signal(SIGTERM, SIG_DFL);
  162. if (termsig)
  163. _exit(0);
  164. if (RAND_poll() <= 0) {
  165. syslog(LOG_ERR, "fatal: RAND_poll() failed");
  166. _exit(1);
  167. }
  168. return;
  169. default: /* parent */
  170. for (i = 0; i < multi; ++i) {
  171. if (kidpids[i] == 0) {
  172. kidpids[i] = fpid;
  173. procs++;
  174. break;
  175. }
  176. }
  177. if (i >= multi) {
  178. syslog(LOG_ERR, "fatal: internal error: no free child slots");
  179. killall(1, kidpids);
  180. }
  181. break;
  182. }
  183. }
  184. /* The loop above can only break on termsig */
  185. syslog(LOG_INFO, "terminating on signal: %d", termsig);
  186. killall(0, kidpids);
  187. }
  188. #endif
  189. #ifndef OPENSSL_NO_SOCK
  190. BIO *http_server_init_bio(const char *prog, const char *port)
  191. {
  192. BIO *acbio = NULL, *bufbio;
  193. int asock;
  194. bufbio = BIO_new(BIO_f_buffer());
  195. if (bufbio == NULL)
  196. goto err;
  197. acbio = BIO_new(BIO_s_accept());
  198. if (acbio == NULL
  199. || BIO_set_bind_mode(acbio, BIO_BIND_REUSEADDR) < 0
  200. || BIO_set_accept_port(acbio, port) < 0) {
  201. log_message(prog, LOG_ERR, "Error setting up accept BIO");
  202. goto err;
  203. }
  204. BIO_set_accept_bios(acbio, bufbio);
  205. bufbio = NULL;
  206. if (BIO_do_accept(acbio) <= 0) {
  207. log_message(prog, LOG_ERR, "Error starting accept");
  208. goto err;
  209. }
  210. /* Report back what address and port are used */
  211. BIO_get_fd(acbio, &asock);
  212. if (!report_server_accept(bio_out, asock, 1, 1)) {
  213. log_message(prog, LOG_ERR, "Error printing ACCEPT string");
  214. goto err;
  215. }
  216. return acbio;
  217. err:
  218. BIO_free_all(acbio);
  219. BIO_free(bufbio);
  220. return NULL;
  221. }
  222. /*
  223. * Decode %xx URL-decoding in-place. Ignores malformed sequences.
  224. */
  225. static int urldecode(char *p)
  226. {
  227. unsigned char *out = (unsigned char *)p;
  228. unsigned char *save = out;
  229. for (; *p; p++) {
  230. if (*p != '%') {
  231. *out++ = *p;
  232. } else if (isxdigit(_UC(p[1])) && isxdigit(_UC(p[2]))) {
  233. /* Don't check, can't fail because of ixdigit() call. */
  234. *out++ = (OPENSSL_hexchar2int(p[1]) << 4)
  235. | OPENSSL_hexchar2int(p[2]);
  236. p += 2;
  237. } else {
  238. return -1;
  239. }
  240. }
  241. *out = '\0';
  242. return (int)(out - save);
  243. }
  244. /* if *pcbio != NULL, continue given connected session, else accept new */
  245. /* if found_keep_alive != NULL, return this way connection persistence state */
  246. int http_server_get_asn1_req(const ASN1_ITEM *it, ASN1_VALUE **preq,
  247. char **ppath, BIO **pcbio, BIO *acbio,
  248. int *found_keep_alive,
  249. const char *prog, const char *port,
  250. int accept_get, int timeout)
  251. {
  252. BIO *cbio = *pcbio, *getbio = NULL, *b64 = NULL;
  253. int len;
  254. char reqbuf[2048], inbuf[2048];
  255. char *meth, *url, *end;
  256. ASN1_VALUE *req;
  257. int ret = 0;
  258. *preq = NULL;
  259. if (ppath != NULL)
  260. *ppath = NULL;
  261. if (cbio == NULL) {
  262. log_message(prog, LOG_DEBUG,
  263. "Awaiting new connection on port %s...", port);
  264. if (BIO_do_accept(acbio) <= 0)
  265. /* Connection loss before accept() is routine, ignore silently */
  266. return ret;
  267. *pcbio = cbio = BIO_pop(acbio);
  268. } else {
  269. log_message(prog, LOG_DEBUG, "Awaiting next request...");
  270. }
  271. if (cbio == NULL) {
  272. /* Cannot call http_server_send_status(cbio, ...) */
  273. ret = -1;
  274. goto out;
  275. }
  276. # ifdef HTTP_DAEMON
  277. if (timeout > 0) {
  278. (void)BIO_get_fd(cbio, &acfd);
  279. alarm(timeout);
  280. }
  281. # endif
  282. /* Read the request line. */
  283. len = BIO_gets(cbio, reqbuf, sizeof(reqbuf));
  284. if (len == 0)
  285. return ret;
  286. ret = 1;
  287. if (len < 0) {
  288. log_message(prog, LOG_WARNING, "Request line read error");
  289. (void)http_server_send_status(cbio, 400, "Bad Request");
  290. goto out;
  291. }
  292. if ((end = strchr(reqbuf, '\r')) != NULL
  293. || (end = strchr(reqbuf, '\n')) != NULL)
  294. *end = '\0';
  295. log_message(prog, LOG_INFO, "Received request, 1st line: %s", reqbuf);
  296. meth = reqbuf;
  297. url = meth + 3;
  298. if ((accept_get && strncmp(meth, "GET ", 4) == 0)
  299. || (url++, strncmp(meth, "POST ", 5) == 0)) {
  300. static const char http_version_str[] = " "HTTP_PREFIX_VERSION;
  301. static const size_t http_version_str_len = sizeof(http_version_str) - 1;
  302. /* Expecting (GET|POST) {sp} /URL {sp} HTTP/1.x */
  303. *(url++) = '\0';
  304. while (*url == ' ')
  305. url++;
  306. if (*url != '/') {
  307. log_message(prog, LOG_WARNING,
  308. "Invalid %s -- URL does not begin with '/': %s",
  309. meth, url);
  310. (void)http_server_send_status(cbio, 400, "Bad Request");
  311. goto out;
  312. }
  313. url++;
  314. /* Splice off the HTTP version identifier. */
  315. for (end = url; *end != '\0'; end++)
  316. if (*end == ' ')
  317. break;
  318. if (strncmp(end, http_version_str, http_version_str_len) != 0) {
  319. log_message(prog, LOG_WARNING,
  320. "Invalid %s -- bad HTTP/version string: %s",
  321. meth, end + 1);
  322. (void)http_server_send_status(cbio, 400, "Bad Request");
  323. goto out;
  324. }
  325. *end = '\0';
  326. /* above HTTP 1.0, connection persistence is the default */
  327. if (found_keep_alive != NULL)
  328. *found_keep_alive = end[http_version_str_len] > '0';
  329. /*-
  330. * Skip "GET / HTTP..." requests often used by load-balancers.
  331. * 'url' was incremented above to point to the first byte *after*
  332. * the leading slash, so in case 'GET / ' it is now an empty string.
  333. */
  334. if (strlen(meth) == 3 && url[0] == '\0') {
  335. (void)http_server_send_status(cbio, 200, "OK");
  336. goto out;
  337. }
  338. len = urldecode(url);
  339. if (len < 0) {
  340. log_message(prog, LOG_WARNING,
  341. "Invalid %s request -- bad URL encoding: %s",
  342. meth, url);
  343. (void)http_server_send_status(cbio, 400, "Bad Request");
  344. goto out;
  345. }
  346. if (strlen(meth) == 3) { /* GET */
  347. if ((getbio = BIO_new_mem_buf(url, len)) == NULL
  348. || (b64 = BIO_new(BIO_f_base64())) == NULL) {
  349. log_message(prog, LOG_ERR,
  350. "Could not allocate base64 bio with size = %d",
  351. len);
  352. goto fatal;
  353. }
  354. BIO_set_flags(b64, BIO_FLAGS_BASE64_NO_NL);
  355. getbio = BIO_push(b64, getbio);
  356. }
  357. } else {
  358. log_message(prog, LOG_WARNING,
  359. "HTTP request does not begin with %sPOST: %s",
  360. accept_get ? "GET or " : "", reqbuf);
  361. (void)http_server_send_status(cbio, 400, "Bad Request");
  362. goto out;
  363. }
  364. /* chop any further/duplicate leading or trailing '/' */
  365. while (*url == '/')
  366. url++;
  367. while (end >= url + 2 && end[-2] == '/' && end[-1] == '/')
  368. end--;
  369. *end = '\0';
  370. /* Read and skip past the headers. */
  371. for (;;) {
  372. char *key, *value, *line_end = NULL;
  373. len = BIO_gets(cbio, inbuf, sizeof(inbuf));
  374. if (len <= 0) {
  375. log_message(prog, LOG_WARNING, "Error reading HTTP header");
  376. (void)http_server_send_status(cbio, 400, "Bad Request");
  377. goto out;
  378. }
  379. if (inbuf[0] == '\r' || inbuf[0] == '\n')
  380. break;
  381. key = inbuf;
  382. value = strchr(key, ':');
  383. if (value == NULL) {
  384. log_message(prog, LOG_WARNING,
  385. "Error parsing HTTP header: missing ':'");
  386. (void)http_server_send_status(cbio, 400, "Bad Request");
  387. goto out;
  388. }
  389. *(value++) = '\0';
  390. while (*value == ' ')
  391. value++;
  392. line_end = strchr(value, '\r');
  393. if (line_end == NULL) {
  394. line_end = strchr(value, '\n');
  395. if (line_end == NULL) {
  396. log_message(prog, LOG_WARNING,
  397. "Error parsing HTTP header: missing end of line");
  398. (void)http_server_send_status(cbio, 400, "Bad Request");
  399. goto out;
  400. }
  401. }
  402. *line_end = '\0';
  403. /* https://tools.ietf.org/html/rfc7230#section-6.3 Persistence */
  404. if (found_keep_alive != NULL
  405. && OPENSSL_strcasecmp(key, "Connection") == 0) {
  406. if (OPENSSL_strcasecmp(value, "keep-alive") == 0)
  407. *found_keep_alive = 1;
  408. else if (OPENSSL_strcasecmp(value, "close") == 0)
  409. *found_keep_alive = 0;
  410. }
  411. }
  412. # ifdef HTTP_DAEMON
  413. /* Clear alarm before we close the client socket */
  414. alarm(0);
  415. timeout = 0;
  416. # endif
  417. /* Try to read and parse request */
  418. req = ASN1_item_d2i_bio(it, getbio != NULL ? getbio : cbio, NULL);
  419. if (req == NULL) {
  420. log_message(prog, LOG_WARNING,
  421. "Error parsing DER-encoded request content");
  422. (void)http_server_send_status(cbio, 400, "Bad Request");
  423. } else if (ppath != NULL && (*ppath = OPENSSL_strdup(url)) == NULL) {
  424. log_message(prog, LOG_ERR,
  425. "Out of memory allocating %zu bytes", strlen(url) + 1);
  426. ASN1_item_free(req, it);
  427. goto fatal;
  428. }
  429. *preq = req;
  430. out:
  431. BIO_free_all(getbio);
  432. # ifdef HTTP_DAEMON
  433. if (timeout > 0)
  434. alarm(0);
  435. acfd = (int)INVALID_SOCKET;
  436. # endif
  437. return ret;
  438. fatal:
  439. (void)http_server_send_status(cbio, 500, "Internal Server Error");
  440. if (ppath != NULL) {
  441. OPENSSL_free(*ppath);
  442. *ppath = NULL;
  443. }
  444. BIO_free_all(cbio);
  445. *pcbio = NULL;
  446. ret = -1;
  447. goto out;
  448. }
  449. /* assumes that cbio does not do an encoding that changes the output length */
  450. int http_server_send_asn1_resp(BIO *cbio, int keep_alive,
  451. const char *content_type,
  452. const ASN1_ITEM *it, const ASN1_VALUE *resp)
  453. {
  454. int ret = BIO_printf(cbio, HTTP_1_0" 200 OK\r\n%s"
  455. "Content-type: %s\r\n"
  456. "Content-Length: %d\r\n\r\n",
  457. keep_alive ? "Connection: keep-alive\r\n" : "",
  458. content_type,
  459. ASN1_item_i2d(resp, NULL, it)) > 0
  460. && ASN1_item_i2d_bio(it, cbio, resp) > 0;
  461. (void)BIO_flush(cbio);
  462. return ret;
  463. }
  464. int http_server_send_status(BIO *cbio, int status, const char *reason)
  465. {
  466. int ret = BIO_printf(cbio, HTTP_1_0" %d %s\r\n\r\n",
  467. /* This implicitly cancels keep-alive */
  468. status, reason) > 0;
  469. (void)BIO_flush(cbio);
  470. return ret;
  471. }
  472. #endif