]> git.saurik.com Git - wxWidgets.git/blame - src/common/http.cpp
fixing overrelease and out-of-bounds write, fixes #13725
[wxWidgets.git] / src / common / http.cpp
CommitLineData
f4ada568 1/////////////////////////////////////////////////////////////////////////////
670f9935 2// Name: src/common/http.cpp
f4ada568
GL
3// Purpose: HTTP protocol
4// Author: Guilhem Lavaux
dbccd1c2 5// Modified by: Simo Virokannas (authentication, Dec 2005)
f4ada568
GL
6// Created: August 1997
7// RCS-ID: $Id$
8// Copyright: (c) 1997, 1998 Guilhem Lavaux
65571936 9// Licence: wxWindows licence
f4ada568
GL
10/////////////////////////////////////////////////////////////////////////////
11
fcc6dddd
JS
12// For compilers that support precompilation, includes "wx.h".
13#include "wx/wxprec.h"
14
15#ifdef __BORLANDC__
670f9935 16 #pragma hdrstop
fcc6dddd
JS
17#endif
18
a5d46b73 19#if wxUSE_PROTOCOL_HTTP
ce4169a4 20
f4ada568
GL
21#include <stdio.h>
22#include <stdlib.h>
a8d628fc
DS
23
24#ifndef WX_PRECOMP
670f9935
WS
25 #include "wx/string.h"
26 #include "wx/app.h"
a8d628fc
DS
27#endif
28
f4ada568
GL
29#include "wx/tokenzr.h"
30#include "wx/socket.h"
31#include "wx/protocol/protocol.h"
fae05df5 32#include "wx/url.h"
f4ada568
GL
33#include "wx/protocol/http.h"
34#include "wx/sckstrm.h"
204abcd4 35#include "wx/thread.h"
f4ada568 36
730b772b
FM
37
38// ----------------------------------------------------------------------------
39// wxHTTP
40// ----------------------------------------------------------------------------
41
f4ada568 42IMPLEMENT_DYNAMIC_CLASS(wxHTTP, wxProtocol)
5d3e7b52 43IMPLEMENT_PROTOCOL(wxHTTP, wxT("http"), wxT("80"), true)
f4ada568 44
f4ada568 45wxHTTP::wxHTTP()
df5168c4 46 : wxProtocol()
f4ada568 47{
48f7ffbe
WS
48 m_addr = NULL;
49 m_read = false;
50 m_proxy_mode = false;
48f7ffbe 51 m_http_response = 0;
f4ada568 52
48f7ffbe 53 SetNotify(wxSOCKET_LOST_FLAG);
f4ada568
GL
54}
55
56wxHTTP::~wxHTTP()
2fb203e6
VZ
57{
58 ClearHeaders();
59
60 delete m_addr;
61}
62
63void wxHTTP::ClearHeaders()
f4ada568 64{
730b772b 65 m_headers.clear();
f4ada568
GL
66}
67
906cb3f1
JS
68void wxHTTP::ClearCookies()
69{
70 m_cookies.clear();
71}
72
730b772b 73wxString wxHTTP::GetContentType() const
f4ada568 74{
48f7ffbe 75 return GetHeader(wxT("Content-Type"));
f4ada568
GL
76}
77
f61815af
GL
78void wxHTTP::SetProxyMode(bool on)
79{
48f7ffbe 80 m_proxy_mode = on;
f61815af
GL
81}
82
bdcade0a 83wxHTTP::wxHeaderIterator wxHTTP::FindHeader(const wxString& header)
71414756 84{
bdcade0a
MB
85 wxHeaderIterator it = m_headers.begin();
86 for ( wxHeaderIterator en = m_headers.end(); it != en; ++it )
87 {
86501081 88 if ( header.CmpNoCase(it->first) == 0 )
bdcade0a
MB
89 break;
90 }
71414756 91
bdcade0a
MB
92 return it;
93}
94
95wxHTTP::wxHeaderConstIterator wxHTTP::FindHeader(const wxString& header) const
96{
97 wxHeaderConstIterator it = m_headers.begin();
98 for ( wxHeaderConstIterator en = m_headers.end(); it != en; ++it )
71414756 99 {
86501081 100 if ( header.CmpNoCase(it->first) == 0 )
71414756
VZ
101 break;
102 }
103
104 return it;
105}
106
906cb3f1
JS
107wxHTTP::wxCookieIterator wxHTTP::FindCookie(const wxString& cookie)
108{
109 wxCookieIterator it = m_cookies.begin();
110 for ( wxCookieIterator en = m_cookies.end(); it != en; ++it )
111 {
112 if ( cookie.CmpNoCase(it->first) == 0 )
113 break;
114 }
115
116 return it;
117}
118
119wxHTTP::wxCookieConstIterator wxHTTP::FindCookie(const wxString& cookie) const
120{
121 wxCookieConstIterator it = m_cookies.begin();
122 for ( wxCookieConstIterator en = m_cookies.end(); it != en; ++it )
123 {
124 if ( cookie.CmpNoCase(it->first) == 0 )
125 break;
126 }
127
128 return it;
129}
130
f4ada568
GL
131void wxHTTP::SetHeader(const wxString& header, const wxString& h_data)
132{
48f7ffbe
WS
133 if (m_read) {
134 ClearHeaders();
135 m_read = false;
136 }
f4ada568 137
48f7ffbe
WS
138 wxHeaderIterator it = FindHeader(header);
139 if (it != m_headers.end())
140 it->second = h_data;
141 else
142 m_headers[header] = h_data;
f4ada568
GL
143}
144
71414756 145wxString wxHTTP::GetHeader(const wxString& header) const
f4ada568 146{
bdcade0a 147 wxHeaderConstIterator it = FindHeader(header);
f4ada568 148
01482482 149 return it == m_headers.end() ? wxGetEmptyString() : it->second;
f4ada568
GL
150}
151
906cb3f1
JS
152wxString wxHTTP::GetCookie(const wxString& cookie) const
153{
154 wxCookieConstIterator it = FindCookie(cookie);
155
156 return it == m_cookies.end() ? wxGetEmptyString() : it->second;
157}
158
dbccd1c2
JS
159wxString wxHTTP::GenerateAuthString(const wxString& user, const wxString& pass) const
160{
e97cbf83
VZ
161 // TODO: Use wxBase64Encode() now that we have it instead of reproducing it
162
dbccd1c2
JS
163 static const char *base64 = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
164
165 wxString buf;
166 wxString toencode;
167
168 buf.Printf(wxT("Basic "));
169
170 toencode.Printf(wxT("%s:%s"),user.c_str(),pass.c_str());
171
670f9935 172 size_t len = toencode.length();
dbccd1c2
JS
173 const wxChar *from = toencode.c_str();
174 while (len >= 3) { // encode full blocks first
175 buf << wxString::Format(wxT("%c%c"), base64[(from[0] >> 2) & 0x3f], base64[((from[0] << 4) & 0x30) | ((from[1] >> 4) & 0xf)]);
176 buf << wxString::Format(wxT("%c%c"), base64[((from[1] << 2) & 0x3c) | ((from[2] >> 6) & 0x3)], base64[from[2] & 0x3f]);
177 from += 3;
178 len -= 3;
179 }
180 if (len > 0) { // pad the remaining characters
181 buf << wxString::Format(wxT("%c"), base64[(from[0] >> 2) & 0x3f]);
182 if (len == 1) {
183 buf << wxString::Format(wxT("%c="), base64[(from[0] << 4) & 0x30]);
184 } else {
886f61ca 185 buf << wxString::Format(wxT("%c%c"), base64[((from[0] << 4) & 0x30) | ((from[1] >> 4) & 0xf)], base64[(from[1] << 2) & 0x3c]);
dbccd1c2 186 }
2523e9b7 187 buf << wxT("=");
dbccd1c2
JS
188 }
189
190 return buf;
191}
192
f9133b32
VZ
193void wxHTTP::SetPostBuffer(const wxString& post_buf)
194{
ab9d6a4c
VZ
195 // Use To8BitData() for backwards compatibility in this deprecated method.
196 // The new code should use the other overload or SetPostText() and specify
197 // the encoding to use for the text explicitly.
198 wxScopedCharBuffer scb = post_buf.To8BitData();
199 if ( scb.length() )
200 {
201 m_postBuffer.Clear();
202 m_postBuffer.AppendData(scb.data(), scb.length());
203 }
204}
205
206bool
207wxHTTP::SetPostBuffer(const wxString& contentType,
208 const wxMemoryBuffer& data)
209{
210 m_postBuffer = data;
211 m_contentType = contentType;
212
213 return !m_postBuffer.IsEmpty();
214}
215
216bool
217wxHTTP::SetPostText(const wxString& contentType,
218 const wxString& data,
219 const wxMBConv& conv)
220{
c84ef5b9 221#if wxUSE_UNICODE
ab9d6a4c 222 wxScopedCharBuffer scb = data.mb_str(conv);
c84ef5b9
VZ
223 const size_t len = scb.length();
224 const char* const buf = scb.data();
225#else // !wxUSE_UNICODE
226 const size_t len = data.length();
227 const char* const buf = data.mb_str(conv);
228#endif // wxUSE_UNICODE/!wxUSE_UNICODE
229
230 if ( !len )
ab9d6a4c
VZ
231 return false;
232
233 m_postBuffer.Clear();
c84ef5b9 234 m_postBuffer.AppendData(buf, len);
ab9d6a4c
VZ
235 m_contentType = contentType;
236
237 return true;
f9133b32
VZ
238}
239
f4ada568
GL
240void wxHTTP::SendHeaders()
241{
48f7ffbe
WS
242 typedef wxStringToStringHashMap::iterator iterator;
243 wxString buf;
f4ada568 244
48f7ffbe
WS
245 for (iterator it = m_headers.begin(), en = m_headers.end(); it != en; ++it )
246 {
247 buf.Printf(wxT("%s: %s\r\n"), it->first.c_str(), it->second.c_str());
53c6e7cc 248
48f7ffbe
WS
249 const wxWX2MBbuf cbuf = buf.mb_str();
250 Write(cbuf, strlen(cbuf));
251 }
f4ada568
GL
252}
253
254bool wxHTTP::ParseHeaders()
255{
48f7ffbe
WS
256 wxString line;
257 wxStringTokenizer tokenzr;
f4ada568 258
48f7ffbe 259 ClearHeaders();
906cb3f1 260 ClearCookies();
48f7ffbe 261 m_read = true;
f4ada568 262
a09f8377 263 for ( ;; )
48f7ffbe 264 {
730b772b
FM
265 m_lastError = ReadLine(this, line);
266 if (m_lastError != wxPROTO_NOERR)
48f7ffbe
WS
267 return false;
268
6636ef8d 269 if ( line.empty() )
48f7ffbe
WS
270 break;
271
272 wxString left_str = line.BeforeFirst(':');
906cb3f1
JS
273 if(!left_str.CmpNoCase("Set-Cookie"))
274 {
275 wxString cookieName = line.AfterFirst(':').Strip(wxString::both).BeforeFirst('=');
276 wxString cookieValue = line.AfterFirst(':').Strip(wxString::both).AfterFirst('=').BeforeFirst(';');
277 m_cookies[cookieName] = cookieValue;
278
279 // For compatibility
280 m_headers[left_str] = line.AfterFirst(':').Strip(wxString::both);
281 }
282 else
283 {
284 m_headers[left_str] = line.AfterFirst(':').Strip(wxString::both);
285 }
48f7ffbe
WS
286 }
287 return true;
f4ada568
GL
288}
289
f9133b32 290bool wxHTTP::Connect(const wxString& host, unsigned short port)
f4ada568 291{
48f7ffbe 292 wxIPV4address *addr;
f4ada568 293
48f7ffbe 294 if (m_addr) {
5276b0a5 295 wxDELETE(m_addr);
48f7ffbe
WS
296 Close();
297 }
f4ada568 298
48f7ffbe 299 m_addr = addr = new wxIPV4address();
f4ada568 300
48f7ffbe 301 if (!addr->Hostname(host)) {
5276b0a5 302 wxDELETE(m_addr);
730b772b 303 m_lastError = wxPROTO_NETERR;
48f7ffbe
WS
304 return false;
305 }
f4ada568 306
48f7ffbe
WS
307 if ( port )
308 addr->Service(port);
309 else if (!addr->Service(wxT("http")))
310 addr->Service(80);
ce22d615 311
1c7a6772
VZ
312 wxString hostHdr = host;
313 if ( port && port != 80 )
314 hostHdr << wxT(":") << port;
315 SetHeader(wxT("Host"), hostHdr);
f4ada568 316
730b772b 317 m_lastError = wxPROTO_NOERR;
48f7ffbe 318 return true;
f4ada568
GL
319}
320
ddc7f0c9 321bool wxHTTP::Connect(const wxSockAddress& addr, bool WXUNUSED(wait))
f4ada568 322{
48f7ffbe
WS
323 if (m_addr) {
324 delete m_addr;
325 Close();
326 }
f4ada568 327
48f7ffbe 328 m_addr = addr.Clone();
acd15a3f 329
48f7ffbe 330 wxIPV4address *ipv4addr = wxDynamicCast(&addr, wxIPV4address);
1c7a6772
VZ
331 if ( ipv4addr )
332 {
333 wxString hostHdr = ipv4addr->OrigHostname();
334 unsigned short port = ipv4addr->Service();
335 if ( port && port != 80 )
336 hostHdr << wxT(":") << port;
337 SetHeader(wxT("Host"), hostHdr);
338 }
5b96a71a 339
730b772b 340 m_lastError = wxPROTO_NOERR;
48f7ffbe 341 return true;
f4ada568
GL
342}
343
344bool wxHTTP::BuildRequest(const wxString& path, wxHTTP_Req req)
345{
48f7ffbe 346 const wxChar *request;
f9133b32 347
48f7ffbe
WS
348 switch (req)
349 {
350 case wxHTTP_GET:
351 request = wxT("GET");
352 break;
353
354 case wxHTTP_POST:
355 request = wxT("POST");
ab9d6a4c
VZ
356 // Content length must be correct, so always set, possibly
357 // overriding the value set explicitly by a previous call to
358 // SetHeader("Content-Length").
359 if ( !m_postBuffer.IsEmpty() )
360 {
361 wxString len;
362 len << m_postBuffer.GetDataLen();
363
364 SetHeader(wxS("Content-Length"), len);
365 }
366
367 // However if the user had explicitly set the content type, don't
368 // override it with the content type passed to SetPostText().
369 if ( !m_contentType.empty() && GetContentType().empty() )
370 SetHeader(wxS("Content-Type"), m_contentType);
48f7ffbe
WS
371 break;
372
373 default:
374 return false;
375 }
376
377 m_http_response = 0;
378
379 // If there is no User-Agent defined, define it.
6636ef8d 380 if ( GetHeader(wxT("User-Agent")).empty() )
48f7ffbe
WS
381 SetHeader(wxT("User-Agent"), wxT("wxWidgets 2.x"));
382
dbccd1c2 383 // Send authentication information
670f9935 384 if (!m_username.empty() || !m_password.empty()) {
dbccd1c2
JS
385 SetHeader(wxT("Authorization"), GenerateAuthString(m_username, m_password));
386 }
387
48f7ffbe
WS
388 SaveState();
389
390 // we may use non blocking sockets only if we can dispatch events from them
d15e514e
VZ
391 int flags = wxIsMainThread() && wxApp::IsMainLoopRunning() ? wxSOCKET_NONE
392 : wxSOCKET_BLOCK;
393 // and we must use wxSOCKET_WAITALL to ensure that all data is sent
394 flags |= wxSOCKET_WAITALL;
395 SetFlags(flags);
48f7ffbe
WS
396 Notify(false);
397
398 wxString buf;
399 buf.Printf(wxT("%s %s HTTP/1.0\r\n"), request, path.c_str());
86501081
VS
400 const wxWX2MBbuf pathbuf = buf.mb_str();
401 Write(pathbuf, strlen(pathbuf));
48f7ffbe
WS
402 SendHeaders();
403 Write("\r\n", 2);
404
405 if ( req == wxHTTP_POST ) {
ab9d6a4c
VZ
406 if ( !m_postBuffer.IsEmpty() )
407 Write(m_postBuffer.GetData(), m_postBuffer.GetDataLen());
408
409 m_postBuffer.Clear();
48f7ffbe
WS
410 }
411
412 wxString tmp_str;
730b772b
FM
413 m_lastError = ReadLine(this, tmp_str);
414 if (m_lastError != wxPROTO_NOERR) {
48f7ffbe
WS
415 RestoreState();
416 return false;
417 }
418
419 if (!tmp_str.Contains(wxT("HTTP/"))) {
420 // TODO: support HTTP v0.9 which can have no header.
421 // FIXME: tmp_str is not put back in the in-queue of the socket.
730b772b 422 m_lastError = wxPROTO_NOERR;
48f7ffbe
WS
423 SetHeader(wxT("Content-Length"), wxT("-1"));
424 SetHeader(wxT("Content-Type"), wxT("none/none"));
425 RestoreState();
426 return true;
427 }
f4ada568 428
48f7ffbe
WS
429 wxStringTokenizer token(tmp_str,wxT(' '));
430 wxString tmp_str2;
431 bool ret_value;
432
433 token.NextToken();
434 tmp_str2 = token.NextToken();
435
436 m_http_response = wxAtoi(tmp_str2);
437
c9f78968 438 switch ( tmp_str2[0u].GetValue() )
48f7ffbe
WS
439 {
440 case wxT('1'):
441 /* INFORMATION / SUCCESS */
442 break;
443
444 case wxT('2'):
445 /* SUCCESS */
446 break;
447
448 case wxT('3'):
449 /* REDIRECTION */
450 break;
451
452 default:
730b772b 453 m_lastError = wxPROTO_NOFILE;
48f7ffbe
WS
454 RestoreState();
455 return false;
456 }
457
730b772b 458 m_lastError = wxPROTO_NOERR;
48f7ffbe
WS
459 ret_value = ParseHeaders();
460 RestoreState();
461 return ret_value;
f4ada568
GL
462}
463
730b772b
FM
464bool wxHTTP::Abort(void)
465{
466 return wxSocketClient::Close();
467}
468
469// ----------------------------------------------------------------------------
470// wxHTTPStream and wxHTTP::GetInputStream
471// ----------------------------------------------------------------------------
472
fc4b32c2
GRG
473class wxHTTPStream : public wxSocketInputStream
474{
f4ada568 475public:
48f7ffbe
WS
476 wxHTTP *m_http;
477 size_t m_httpsize;
478 unsigned long m_read_bytes;
9a1b2c28 479
48f7ffbe
WS
480 wxHTTPStream(wxHTTP *http) : wxSocketInputStream(*http), m_http(http) {}
481 size_t GetSize() const { return m_httpsize; }
482 virtual ~wxHTTPStream(void) { m_http->Abort(); }
a324a7bc
GL
483
484protected:
48f7ffbe 485 size_t OnSysRead(void *buffer, size_t bufsize);
22f3361e 486
c0c133e1 487 wxDECLARE_NO_COPY_CLASS(wxHTTPStream);
f4ada568
GL
488};
489
a324a7bc
GL
490size_t wxHTTPStream::OnSysRead(void *buffer, size_t bufsize)
491{
ccc3a25d 492 if (m_read_bytes >= m_httpsize)
32013d27
VZ
493 {
494 m_lasterror = wxSTREAM_EOF;
495 return 0;
496 }
a324a7bc 497
32013d27
VZ
498 size_t ret = wxSocketInputStream::OnSysRead(buffer, bufsize);
499 m_read_bytes += ret;
a324a7bc 500
8b6b8e21
SC
501 if (m_httpsize==(size_t)-1 && m_lasterror == wxSTREAM_READ_ERROR )
502 {
503 // if m_httpsize is (size_t) -1 this means read until connection closed
504 // which is equivalent to getting a READ_ERROR, for clients however this
505 // must be translated into EOF, as it is the expected way of signalling
506 // end end of the content
730b772b 507 m_lasterror = wxSTREAM_EOF;
8b6b8e21
SC
508 }
509
32013d27 510 return ret;
a324a7bc
GL
511}
512
f4ada568
GL
513wxInputStream *wxHTTP::GetInputStream(const wxString& path)
514{
48f7ffbe 515 wxHTTPStream *inp_stream;
8f5bda17 516
48f7ffbe 517 wxString new_path;
f4ada568 518
730b772b 519 m_lastError = wxPROTO_CONNERR; // all following returns share this type of error
48f7ffbe
WS
520 if (!m_addr)
521 return NULL;
f4ada568 522
48f7ffbe 523 // We set m_connected back to false so wxSocketBase will know what to do.
ad8b8498 524#ifdef __WXMAC__
48f7ffbe
WS
525 wxSocketClient::Connect(*m_addr , false );
526 wxSocketClient::WaitOnConnect(10);
ad8b8498
SC
527
528 if (!wxSocketClient::IsConnected())
529 return NULL;
530#else
48f7ffbe
WS
531 if (!wxProtocol::Connect(*m_addr))
532 return NULL;
ad8b8498 533#endif
f4ada568 534
ab9d6a4c 535 if (!BuildRequest(path, m_postBuffer.IsEmpty() ? wxHTTP_GET : wxHTTP_POST))
48f7ffbe 536 return NULL;
f4ada568 537
48f7ffbe 538 inp_stream = new wxHTTPStream(this);
8f5bda17 539
48f7ffbe 540 if (!GetHeader(wxT("Content-Length")).empty())
86501081 541 inp_stream->m_httpsize = wxAtoi(GetHeader(wxT("Content-Length")));
48f7ffbe
WS
542 else
543 inp_stream->m_httpsize = (size_t)-1;
a324a7bc 544
48f7ffbe 545 inp_stream->m_read_bytes = 0;
a324a7bc 546
48f7ffbe
WS
547 Notify(false);
548 SetFlags(wxSOCKET_BLOCK | wxSOCKET_WAITALL);
9a1b2c28 549
730b772b
FM
550 // no error; reset m_lastError
551 m_lastError = wxPROTO_NOERR;
48f7ffbe 552 return inp_stream;
f4ada568 553}
35a4dab7 554
a5d46b73 555#endif // wxUSE_PROTOCOL_HTTP