Ye_Ol_Pi_Shack
/
CppCMS
2
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 1 Wiki Activity
ChipMaster's trial hacks on C++CMS starting with v1.2.1. Not sure I'll follow on with the v2 since it looks to be breaking and mostly frivolous.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
397 Commits
2 Branches
13 MiB
 
 
 
 
 
 
Tree: 2562c73a32
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2562c73a32'
${ noResults }
CppCMS/cgi_api.cpp

460 lines
9.4 KiB
Raw Blame History 

  1. #define CPPCMS_SOURCE

  2. #include "asio_config.h"

  3. 

  4. #include "url_dispatcher.h"

  5. #include "http_request.h"

  6. #include "http_response.h"

  7. #include "http_protocol.h"

  8. #include "service.h"

  9. #include "service_impl.h"

  10. #include "json.h"

  11. #include "cgi_api.h"

  12. #include "util.h"

  13. 

  14. #include <stdlib.h>

  15. #include "config.h"

  16. #ifdef CPPCMS_USE_EXTERNAL_BOOST

  17. #   include <boost/bind.hpp>

  18. #else // Internal Boost

  19. #   include <cppcms_boost/bind.hpp>

  20.     namespace boost = cppcms_boost;

  21. #endif

  22. 

  23. 

  24. namespace cppcms { namespace impl { namespace cgi {

  25. /*

  26. class multipart_separator {

  27. public:

  28. 	multipart_separator(std::vector<char> &body,unsigned &body_ptr,std::string boundary) :

  29. 		body_(body),

  30. 		body_ptr_(body_ptr)

  31. 	{

  32. 		boundary_ = "--" + boundary;

  33. 		pos_ = 0;

  34. 		last_ = false;

  35. 	}

  36. 	

  37. 	int getc()

  38. 	{

  39. 		if(body_ptr_ < body_.size()) {

  40. 			return body_[body_ptr_++];

  41. 		}

  42. 		else {

  43. 			body_.clear();

  44. 			body_ptr_=0;

  45. 			return -1;

  46. 		}

  47. 	}

  48. 

  49. 	enum { incomplete, last_chunk, chunk };

  50. 	int next()

  51. 	{

  52. 		for(;;){

  53. 			int c=getc();

  54. 			if(c < 0)

  55. 				return incomplete;

  56. 			if(pos_ < bodundary_.size()) {

  57. 				if(c == boundary_[pos_]) {

  58. 					pos_++;

  59. 				}

  60. 				else {

  61. 					if(pos_ != 0)

  62. 						output_.append(boundary_.substr(0,pos_));

  63. 					output_.append(char(c));

  64. 					pos_ = 0;

  65. 				}

  66. 			}

  67. 			else if(pos_ == boundary_.size()) {

  68. 				c == '-';

  69. 				last_ = true;

  70. 				pos_ = 0x10001;

  71. 			}

  72. 			else {

  73. 				unsigned diff = pos_ & 0xFFFF;

  74. 				if(last_){

  75. 					if(last_ending[diff]==c) {

  76. 						pos_ ++;

  77. 						diff ++ ;

  78. 					}

  79. 					else {

  80. 						output_.append(last_ending,diff);

  81. 						output_.append(char(c));

  82. 						pos_ = 0;

  83. 						last_ = false;

  84. 					}

  85. 					if(diff == 4)

  86. 						return last_chunk;

  87. 				}

  88. 				else {

  89. 					if(ending[diff] == c) {

  90. 						pos_ ++;

  91. 						diff ++;

  92. 					}

  93. 					else {

  94. 						output_.append(ending,diff);

  95. 						output_.append(char(c));

  96. 						pos_ = 0;

  97. 					}

  98. 					if(diff == 2) {

  99. 						pos_ = 0;

  100. 						return chunk;

  101. 					}

  102. 				}

  103. 			}

  104. 		}

  105. 	}

  106. 

  107. private:

  108. 	static char const last_ending[]="--\r\n"

  109. 	static char const ending[]="\r\n"

  110. 	

  111. };

  112. 

  113. 

  114. class multipart_parser : public util::noncopyable {

  115. public:

  116. 	multipart_parser(std::vector<char> &body, unsigned &ptr) :

  117. 		separator_(body,ptr),

  118. 		parser_(body,ptr)

  119. 	{

  120. 	}

  121. 

  122. 	struct none{};

  123. 	struct eof{};

  124. 	typedef std::pair<std::string,std::string> pair_type;

  125. 	typedef boost::shared_ptr<http::file> file_type;

  126. 	typedef enum { none, eof, error } result_type;

  127. 	typedef boost::variant<result_type,pair_type,file_type,eof> variant_type;

  128. 

  129. 	void append(bool final = false)

  130. 	{

  131. 		if(result_.which() == 1) {

  132. 			std::string &last=boost::get<pair_type>(result_).second;

  133. 			last.append(separator_.output());

  134. 		}

  135. 		else if(result_.which() == 2) {

  136. 			file_type &file == boost::get<file_type>(result_);

  137. 			file.write(separator_.output());

  138. 			if(final)

  139. 				file.close();

  140. 		}

  141. 	}

  142. 

  143. 	variant_type next()

  144. 	{

  145. 		switch(state:) {

  146. 		case done:

  147. 			return eof;

  148. 		case reading_data:

  149. 			switch(separator_.next()) {

  150. 			case multipart_separator::incomplete:

  151. 				append();

  152. 				return none;

  153. 			case multipart_separator::chunk;

  154. 				{

  155. 					append(final);

  156. 					variant_type tmp = result_;

  157. 					result_=none;

  158. 					state_ = reading_headers;

  159. 					return tmp;

  160. 				}

  161. 			case multipart_separator::last_chunk;

  162. 				{

  163. 					append(final);

  164. 					variant_type tmp = result_;

  165. 					result_=none;

  166. 					state_ = done;

  167. 					return tmp;

  168. 				}

  169. 			default:

  170. 				throw cppcms_error(

  171. 					(boost::format("Internal error at " __FILE__ "line %d") % __LINE__).str());

  172. 			}

  173. 			break;

  174. 		case reading_headers:

  175. 			switch(parser_.step())

  176. 			case parset::mode_data:

  177. 				return none;

  178. 			case parser::error_observerd:

  179. 				return error;

  180. 			case parser::end_of_headers:

  181. 				if(result_.which() == 0)

  182. 					return error;

  183. 				state_ = reading_data;

  184. 				return none;

  185. 			case parser::got_header:

  186. 				{

  187. 					std::string const header = parser.header_;

  188. 					parser.header_.clean();

  189. 					std::string::const_iterator m,p=header.begin();

  190. 					std::string::const_iterator e=header.end();

  191. 					p=http::protocol::skip_ws(p,e);

  192. 					m=p;

  193. 					p=http::protocol::tocken(p,e);

  194. 					std::string type(m,p); 

  195. 					if(http::protocol::compare("Content-Disposition",type)==0) 

  196. 					{

  197. 						while(p!=e) {

  198. 							if(http::protocol::separator(*p)) {

  199. 								++p;

  200. 								continue;

  201. 							}

  202. 							m=p;

  203. 							if((p=http::protocol::tocken(p,e))!=m) {

  204. 								if(http::protocol::compare(std::string(m,p),"name"))

  205. 							}

  206. 						}

  207. 									

  208. 					}

  209. 					

  210. 				}

  211. 		}

  212. 	}

  213. 

  214. 

  215. private:

  216. 	multipart_separator separator_;

  217. 	cppcms::http::impl::parser parser_;

  218. };

  219. */

  220. 

  221. 

  222. connection::connection(cppcms::service &srv) :

  223. 	service_(&srv),

  224. 	request_in_progress_(true)

  225. {

  226. }

  227. 

  228. connection::~connection()

  229. {

  230. }

  231. 

  232. 

  233. cppcms::service &connection::service()

  234. {

  235. 	return *service_;

  236. }

  237. intrusive_ptr<connection> connection::self()

  238. {

  239. 	return this;

  240. }

  241. 

  242. void connection::async_prepare_request(	http::request &request,

  243. 					boost::function<void(bool)> const &h)

  244. {

  245. 	async_read_headers(boost::bind(&connection::load_content,self(),_1,&request,h));

  246. }

  247. 

  248. void connection::aync_wait_for_close_by_peer(boost::function<void()> const &on_eof)

  249. {

  250. 	async_read_eof(boost::bind(&connection::handle_eof,self(),on_eof));

  251. }

  252. 

  253. void connection::handle_eof(callback const &on_eof)

  254. {

  255. 	if(request_in_progress_) {

  256. 		on_eof();

  257. 	}

  258. }

  259. 

  260. void connection::set_error(ehandler const &h,std::string s)

  261. {

  262. 	error_=s;

  263. 	h(true);

  264. }

  265. 

  266. void connection::load_content(boost::system::error_code const &e,http::request *request,ehandler const &h)

  267. {

  268. 	if(e)  {

  269. 		set_error(h,e.message());

  270. 		return;

  271. 	}

  272. 

  273. 	std::string content_type = getenv("CONTENT_TYPE");

  274. 	std::string s_content_length=getenv("CONTENT_LENGTH");

  275. 

  276. 	long long content_length = s_content_length.empty() ? 0 : atoll(s_content_length.c_str());

  277. 

  278. 	if(content_length < 0)  {

  279. 		set_error(h,"Incorrect content length");

  280. 		return;

  281. 	}

  282. 

  283. 	if(http::protocol::is_prefix_of("multipart/form-data",content_type)) {

  284. 		// 64 MB

  285. 		long long allowed=service().settings().get("security.multipart_form_data_limit",64*1024)*1024;

  286. 		if(content_length > allowed) { 

  287. 			set_error(h,"security violation: multipart/form-data content length too big");

  288. 			return;

  289. 		}

  290. 		// FIXME

  291. 		return;

  292. 	}

  293. 

  294. 	long long allowed=service().settings().get("security.content_length_limit",1024)*1024;

  295. 	if(content_length > allowed) {

  296. 		set_error(h,"security violation POST content length too big");

  297. 		// TODO log

  298. 		return;

  299. 	}

  300. 

  301. 	content_.clear();

  302. 

  303. 	if(content_length > 0) {

  304. 		content_.resize(content_length,0);

  305. 		async_read(	&content_.front(),

  306. 				content_.size(),

  307. 				boost::bind(&connection::on_post_data_loaded,self(),_1,request,h));

  308. 	}

  309. 	else  {

  310. 		on_post_data_loaded(boost::system::error_code(),request,h);

  311. 	}

  312. }

  313. 

  314. void connection::on_post_data_loaded(boost::system::error_code const &e,http::request *request,ehandler const &h)

  315. {

  316. 	if(e) { set_error(h,e.message()); return; }

  317. 

  318. 	request->set_post_data(content_);

  319. 

  320. 	if(!request->prepare()) {

  321. 		set_error(h,"Bad Request");

  322. 		return;

  323. 	}

  324. 	h(false);

  325. }

  326. 

  327. bool connection::is_reuseable()

  328. {

  329. 	return error_.empty() && keep_alive();

  330. }

  331. 

  332. std::string connection::last_error()

  333. {

  334. 	return error_;

  335. }

  336. 

  337. void connection::async_write_response(	http::response &response,

  338. 					bool complete_response,

  339. 					ehandler const &h)

  340. {

  341. 	async_chunk_=response.get_async_chunk();

  342. 	if(!async_chunk_.empty()) {

  343. 		async_write(	async_chunk_.data(),

  344. 				async_chunk_.size(),

  345. 				boost::bind(	&connection::on_async_write_written,

  346. 						self(),

  347. 						_1,

  348. 						complete_response,

  349. 						h));

  350. 		return;

  351. 	}

  352. 	if(complete_response) {

  353. 		on_async_write_written(boost::system::error_code(),complete_response,h);

  354. 		return;

  355. 	}

  356. 	service().impl().get_io_service().post(boost::bind(h,false));

  357. }

  358. 

  359. void connection::on_async_write_written(boost::system::error_code const &e,bool complete_response,ehandler const &h)

  360. {

  361. 	if(complete_response) {

  362. 		async_write_eof(boost::bind(&connection::on_eof_written,self(),_1,h));

  363. 		request_in_progress_=false;

  364. 		return;

  365. 	}

  366. 	service().impl().get_io_service().post(boost::bind(h,false));

  367. }

  368. void connection::async_complete_response(ehandler const &h)

  369. {

  370. 	async_write_eof(boost::bind(&connection::on_eof_written,self(),_1,h));

  371. 	request_in_progress_=false;

  372. }

  373. 

  374. void connection::on_eof_written(boost::system::error_code const &e,ehandler const &h)

  375. {

  376. 	if(e) { set_error(h,e.message()); return; }

  377. 	h(false);

  378. }

  379. 

  380. 

  381. struct connection::reader {

  382. 	reader(connection *C,io_handler const &H,size_t S,char *P) : h(H), s(S), p(P),conn(C)

  383. 	{

  384. 		done=0;

  385. 	}

  386. 	io_handler h;

  387. 	size_t s;

  388. 	size_t done;

  389. 	char *p;

  390. 	connection *conn;

  391. 	void operator() (boost::system::error_code const &e=boost::system::error_code(),size_t read = 0)

  392. 	{

  393. 		if(e) {

  394. 			h(e,done+read);

  395. 		}

  396. 		s-=read;

  397. 		p+=read;

  398. 		done+=read;

  399. 		if(s==0)

  400. 			h(boost::system::error_code(),done);

  401. 		else

  402. 			conn->async_read_some(p,s,*this);

  403. 	}

  404. };

  405. struct connection::writer {

  406. 	writer(connection *C,io_handler const &H,size_t S,char const *P) : h(H), s(S), p(P),conn(C)

  407. 	{

  408. 		done=0;

  409. 	}

  410. 	io_handler h;

  411. 	size_t s;

  412. 	size_t done;

  413. 	char const *p;

  414. 	connection *conn;

  415. 	void operator() (boost::system::error_code const &e=boost::system::error_code(),size_t wr = 0)

  416. 	{

  417. 		if(e) {

  418. 			h(e,done+wr);

  419. 		}

  420. 		s-=wr;

  421. 		p+=wr;

  422. 		done+=wr;

  423. 		if(s==0)

  424. 			h(boost::system::error_code(),done);

  425. 		else

  426. 			conn->async_write_some(p,s,*this);

  427. 	}

  428. };

  429. 

  430. void connection::async_read(void *p,size_t s,io_handler const &h)

  431. {

  432. 	reader r(this,h,s,(char*)p);

  433. 	r();

  434. }

  435. 

  436. void connection::async_write(void const *p,size_t s,io_handler const &h)

  437. {

  438. 	writer w(this,h,s,(char const *)p);

  439. 	w();

  440. }

  441. 

  442. size_t connection::write(void const *data,size_t n)

  443. {

  444. 	char const *p=reinterpret_cast<char const *>(data);

  445. 	size_t wr=0;

  446. 	while(n > 0) {

  447. 		size_t d=write_some(p,n);

  448. 		if(d == 0)

  449. 			return wr;

  450. 		p+=d;

  451. 		wr+=d;

  452. 		n-=d;

  453. 	}

  454. 	return wr;

  455. }

  456. 

  457. } // cgi

  458. } // impl

  459. } // cppcms