/* * Anope IRC Services * * Copyright (C) 2012-2017 Anope Team * * This file is part of Anope. Anope is free software; you can * redistribute it and/or modify it under the terms of the GNU * General Public License as published by the Free Software * Foundation, version 2. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, see see . */ #include "module.h" #include "modules/httpd.h" #include "modules/ssl.h" static Anope::string BuildDate() { char timebuf[64]; struct tm *tm = localtime(&Anope::CurTime); strftime(timebuf, sizeof(timebuf), "%a, %d %b %Y %H:%M:%S %Z", tm); return timebuf; } static Anope::string GetStatusFromCode(HTTPError err) { switch (err) { case HTTP_ERROR_OK: return "200 OK"; case HTTP_CREATED: return "201 Created"; case HTTP_FOUND: return "302 Found"; case HTTP_BAD_REQUEST: return "400 Bad Request"; case HTTP_PAGE_NOT_FOUND: return "404 Not Found"; case HTTP_INTERNAL_SERVER_ERROR: return "500 Internal Server Error"; case HTTP_NOT_SUPPORTED: return "505 HTTP Version Not Supported"; } return "501 Not Implemented"; } class MyHTTPClient : public HTTPClient { HTTPProvider *provider; HTTPMessage message; bool header_done, served; Anope::string page_name; Reference page; Anope::string ip; unsigned content_length; void Serve() { if (this->served) return; this->served = true; if (!this->page) { this->SendError(HTTP_PAGE_NOT_FOUND, "Page not found"); return; } if (this->ip == this->provider->ext_ip) { for (unsigned i = 0; i < this->provider->ext_headers.size(); ++i) { const Anope::string &token = this->provider->ext_headers[i]; if (this->message.headers.count(token)) { this->ip = this->message.headers[token]; Anope::Logger.Category("httpd").Debug("IP for connection {0} changed to {1}", this->GetFD(), this->ip); break; } } } Anope::Logger.Category("httpd").Debug("Serving page {0} to {1}", this->page_name, this->ip); HTTPReply reply; reply.content_type = this->page->GetContentType(); if (this->page->OnRequest(this->provider, this->page_name, this, this->message, reply)) this->SendReply(&reply); } public: time_t created; MyHTTPClient(HTTPProvider *l, int f, const sockaddrs &a) : Socket(f, l->IsIPv6()), HTTPClient(l, f, a), provider(l), header_done(false), served(false), ip(a.addr()), content_length(0), created(Anope::CurTime) { Anope::Logger.Category("httpd").Debug("Accepted connection {0} from {1}", f, a.addr()); } ~MyHTTPClient() { Anope::Logger.Category("httpd").Debug("Closing connection {0} from {1}", this->GetFD(), this->ip); } /* Close connection once all data is written */ bool ProcessWrite() override { return !BinarySocket::ProcessWrite() || this->write_buffer.empty() ? false : true; } const Anope::string GetIP() override { return this->ip; } bool Read(const char *buffer, size_t l) override { message.content.append(buffer, l); for (size_t nl; !this->header_done && (nl = message.content.find('\n')) != Anope::string::npos;) { Anope::string token = message.content.substr(0, nl).trim(); message.content = message.content.substr(nl + 1); if (token.empty()) this->header_done = true; else this->Read(token); } if (!this->header_done) return true; if (this->message.content.length() >= this->content_length) { sepstream sep(this->message.content, '&'); Anope::string token; while (sep.GetToken(token)) { size_t sz = token.find('='); if (sz == Anope::string::npos || !sz || sz + 1 >= token.length()) continue; this->message.post_data[token.substr(0, sz)] = HTTPUtils::URLDecode(token.substr(sz + 1)); Anope::Logger.Debug2("HTTP POST from {0}: {1}: {2}", this->clientaddr.addr(), token.substr(0, sz), this->message.post_data[token.substr(0, sz)]); } this->Serve(); } return true; } bool Read(const Anope::string &buf) { Anope::Logger.Debug2("HTTP from {0}: {1}", this->clientaddr.addr(), buf); if (message.method == httpd::Method::NONE) { std::vector params; spacesepstream(buf).GetTokens(params); if (params.empty() || (params[0] != "GET" && params[0] != "POST" && params[0] != "PUT" && params[0] != "DELETE" && params[0] != "OPTIONS" && params[0] != "HEAD")) { this->SendError(HTTP_BAD_REQUEST, "Unknown operation"); return true; } if (params.size() != 3) { this->SendError(HTTP_BAD_REQUEST, "Invalid parameters"); return true; } if (params[0] == "GET") message.method = httpd::Method::GET; else if (params[0] == "POST") message.method = httpd::Method::POST; else if (params[0] == "PUT") message.method = httpd::Method::PUT; else if (params[0] == "DELETE") message.method = httpd::Method::DELETE; else if (params[0] == "OPTIONS") message.method = httpd::Method::OPTIONS; else if (params[0] == "HEAD") message.method = httpd::Method::HEAD; Anope::string targ = params[1]; size_t q = targ.find('?'); if (q != Anope::string::npos) { sepstream sep(targ.substr(q + 1), '&'); targ = targ.substr(0, q); Anope::string token; while (sep.GetToken(token)) { size_t sz = token.find('='); if (sz == Anope::string::npos || !sz || sz + 1 >= token.length()) continue; this->message.get_data[token.substr(0, sz)] = HTTPUtils::URLDecode(token.substr(sz + 1)); } } this->page = this->provider->FindPage(targ); this->page_name = targ; } else if (buf.find("Cookie: ") == 0) { spacesepstream sep(buf.substr(8)); Anope::string token; while (sep.GetToken(token)) { size_t sz = token.find('='); if (sz == Anope::string::npos || !sz || sz + 1 >= token.length()) continue; size_t end = token.length() - (sz + 1); if (!sep.StreamEnd()) --end; // Remove trailing ; this->message.cookies[token.substr(0, sz)] = token.substr(sz + 1, end); } } else if (buf.find("Content-Length: ") == 0) { try { this->content_length = convertTo(buf.substr(16)); } catch (const ConvertException &ex) { } } else if (buf.find(':') != Anope::string::npos) { size_t sz = buf.find(':'); if (sz + 2 < buf.length()) this->message.headers[buf.substr(0, sz)] = buf.substr(sz + 2); } return true; } void SendError(HTTPError err, const Anope::string &msg) override { HTTPReply h; h.error = err; h.Write(msg); this->SendReply(&h); } void SendReply(HTTPReply *msg) override { this->WriteClient("HTTP/1.1 " + GetStatusFromCode(msg->error)); this->WriteClient("Date: " + BuildDate()); this->WriteClient("Server: Anope-" + Anope::VersionShort()); if (msg->content_type.empty()) this->WriteClient("Content-Type: text/html"); else this->WriteClient("Content-Type: " + msg->content_type); this->WriteClient("Content-Length: " + stringify(msg->length)); for (unsigned i = 0; i < msg->cookies.size(); ++i) { Anope::string buf = "Set-Cookie:"; for (HTTPReply::cookie::iterator it = msg->cookies[i].begin(), it_end = msg->cookies[i].end(); it != it_end; ++it) buf += " " + it->first + "=" + it->second + ";"; buf.erase(buf.length() - 1); this->WriteClient(buf); } typedef std::map map; for (map::iterator it = msg->headers.begin(), it_end = msg->headers.end(); it != it_end; ++it) this->WriteClient(it->first + ": " + it->second); this->WriteClient("Connection: Close"); this->WriteClient(""); for (unsigned i = 0; i < msg->out.size(); ++i) { HTTPReply::Data* d = msg->out[i]; this->Write(d->buf, d->len); delete d; } msg->out.clear(); } }; class MyHTTPProvider : public HTTPProvider, public Timer { int timeout; std::map pages; std::list > clients; public: MyHTTPProvider(Module *c, const Anope::string &n, const Anope::string &i, const unsigned short p, const int t, bool s) : Socket(-1, i.find(':') != Anope::string::npos), HTTPProvider(c, n, i, p, s), Timer(c, 10, Anope::CurTime, true), timeout(t) { } void Tick(time_t) override { while (!this->clients.empty()) { Reference& c = this->clients.front(); if (c && c->created + this->timeout >= Anope::CurTime) break; delete c; this->clients.pop_front(); } } ClientSocket* OnAccept(int fd, const sockaddrs &addr) override { MyHTTPClient *c = new MyHTTPClient(this, fd, addr); this->clients.push_back(c); return c; } bool RegisterPage(HTTPPage *page) override { return this->pages.insert(std::make_pair(page->GetURL(), page)).second; } void UnregisterPage(HTTPPage *page) override { this->pages.erase(page->GetURL()); } HTTPPage* FindPage(const Anope::string &pname) override { Anope::string resource = pname; while (this->pages.count(resource) == 0) { size_t s = resource.find_last_of('/'); if (s == Anope::string::npos) return nullptr; resource = resource.substr(0, s); } return this->pages[resource]; } }; class HTTPD : public Module , public EventHook { ServiceReference sslref; std::map providers; public: HTTPD(const Anope::string &modname, const Anope::string &creator) : Module(modname, creator, EXTRA | VENDOR) , EventHook(this) { } ~HTTPD() { for (std::map::const_iterator it = SocketEngine::Sockets.begin(), it_end = SocketEngine::Sockets.end(); it != it_end;) { Socket *s = it->second; ++it; if (dynamic_cast(s) || dynamic_cast(s)) delete s; } this->providers.clear(); } void OnReload(Configuration::Conf *config) override { Configuration::Block *conf = config->GetModule(this); std::set existing; for (int i = 0; i < conf->CountBlock("httpd"); ++i) { Configuration::Block *block = conf->GetBlock("httpd", i); const Anope::string &hname = block->Get("name", "httpd/main"); existing.insert(hname); Anope::string ip = block->Get("ip"); int port = block->Get("port", "8080"); int timeout = block->Get("timeout", "30"); bool ssl = block->Get("ssl", "no"); Anope::string ext_ip = block->Get("extforward_ip"); Anope::string ext_header = block->Get("extforward_header"); if (ip.empty()) { logger.Log("You must configure a bind IP for HTTP server {0}", hname); continue; } else if (port <= 0 || port > 65535) { logger.Log("You must configure a (valid) listen port for HTTP server {0}", hname); continue; } MyHTTPProvider *p; if (this->providers.count(hname) == 0) { try { p = new MyHTTPProvider(this, hname, ip, port, timeout, ssl); if (ssl && sslref) sslref->Init(p); } catch (const SocketException &ex) { logger.Log("Unable to create HTTP server {0}: {1}", hname, ex.GetReason()); continue; } this->providers[hname] = p; logger.Log("Created HTTP server {0}", hname); } else { p = this->providers[hname]; if (p->GetIP() != ip || p->GetPort() != port) { delete p; this->providers.erase(hname); logger.Log("Changing HTTP server {0} to {1}:{2}", hname, ip, port); try { p = new MyHTTPProvider(this, hname, ip, port, timeout, ssl); if (ssl && sslref) sslref->Init(p); } catch (const SocketException &ex) { logger.Log("Unable to create HTTP server {0}: {1}", hname, ex.GetReason()); continue; } this->providers[hname] = p; } } p->ext_ip = ext_ip; spacesepstream(ext_header).GetTokens(p->ext_headers); } for (std::map::iterator it = this->providers.begin(), it_end = this->providers.end(); it != it_end;) { HTTPProvider *p = it->second; ++it; if (existing.count(p->GetName()) == 0) { logger.Log("Removing HTTP server {0}", p->GetName()); this->providers.erase(p->GetName()); delete p; } } } void OnModuleLoad(User *u, Module *m) override { for (std::map::iterator it = this->providers.begin(), it_end = this->providers.end(); it != it_end; ++it) { MyHTTPProvider *p = it->second; if (p->IsSSL() && sslref) try { sslref->Init(p); } catch (const CoreException &) { } // Throws on reinitialization } } }; MODULE_INIT(HTTPD)