mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14364 Commits
28 Branches
Tree: f7aee39a9d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f7aee39a9d'
${ noResults }
rspamd/src/lua/lua_http.c

lua_http.c 24KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. #include "lua_common.h"

  17. #include "lua_thread_pool.h"

  18. #include "http_private.h"

  19. #include "unix-std.h"

  20. #include "zlib.h"

  21. 

  22. /***

  23.  * @module rspamd_http

  24.  * Rspamd HTTP module represents HTTP asynchronous client available from LUA code.

  25.  * This module hides all complexity: DNS resolving, sessions management, zero-copy

  26.  * text transfers and so on under the hood.

  27.  * @example

  28. local rspamd_http = require "rspamd_http"

  29. 

  30. local function symbol_callback(task)

  31. 	local function http_callback(err_message, code, body, headers)

  32. 		task:insert_result('SYMBOL', 1) -- task is available via closure

  33. 	end

  34. 

  35.  	rspamd_http.request({

  36.  		task=task,

  37.  		url='http://example.com/data',

  38.  		body=task:get_content(),

  39.  		callback=http_callback,

  40.  		headers={Header='Value', OtherHeader='Value'},

  41.  		mime_type='text/plain',

  42.  		})

  43.  end

  44.  */

  45. 

  46. #define MAX_HEADERS_SIZE 8192

  47. 

  48. static const gchar *M = "rspamd lua http";

  49. 

  50. LUA_FUNCTION_DEF (http, request);

  51. 

  52. static const struct luaL_reg httplib_m[] = {

  53. 	LUA_INTERFACE_DEF (http, request),

  54. 	{"__tostring", rspamd_lua_class_tostring},

  55. 	{NULL, NULL}

  56. };

  57. 

  58. #define RSPAMD_LUA_HTTP_FLAG_TEXT (1 << 0)

  59. #define RSPAMD_LUA_HTTP_FLAG_NOVERIFY (1 << 1)

  60. #define RSPAMD_LUA_HTTP_FLAG_RESOLVED (1 << 2)

  61. #define RSPAMD_LUA_HTTP_FLAG_KEEP_ALIVE (1 << 3)

  62. 

  63. struct lua_http_cbdata {

  64. 	struct rspamd_http_connection *conn;

  65. 	struct rspamd_async_session *session;

  66. 	struct rspamd_symcache_item *item;

  67. 	struct rspamd_http_message *msg;

  68. 	struct event_base *ev_base;

  69. 	struct rspamd_config *cfg;

  70. 	struct rspamd_task *task;

  71. 	struct timeval tv;

  72. 	struct rspamd_cryptobox_keypair *local_kp;

  73. 	struct rspamd_cryptobox_pubkey *peer_pk;

  74. 	rspamd_inet_addr_t *addr;

  75. 	gchar *mime_type;

  76. 	gchar *host;

  77. 	gchar *auth;

  78. 	const gchar *url;

  79. 	gsize max_size;

  80. 	gint flags;

  81. 	gint fd;

  82. 	gint cbref;

  83. 	struct thread_entry *thread;

  84. };

  85. 

  86. static const int default_http_timeout = 5000;

  87. 

  88. static struct rspamd_dns_resolver *

  89. lua_http_global_resolver (struct event_base *ev_base)

  90. {

  91. 	static struct rspamd_dns_resolver *global_resolver;

  92. 

  93. 	if (global_resolver == NULL) {

  94. 		global_resolver = dns_resolver_init (NULL, ev_base, NULL);

  95. 	}

  96. 

  97. 	return global_resolver;

  98. }

  99. 

  100. static void

  101. lua_http_fin (gpointer arg)

  102. {

  103. 	struct lua_http_cbdata *cbd = (struct lua_http_cbdata *)arg;

  104. 

  105. 	if (cbd->cbref != -1) {

  106. 		luaL_unref (cbd->cfg->lua_state, LUA_REGISTRYINDEX, cbd->cbref);

  107. 	}

  108. 

  109. 	if (cbd->conn) {

  110. 		/* Here we already have a connection, so we need to unref it */

  111. 		rspamd_http_connection_unref (cbd->conn);

  112. 	}

  113. 	else if (cbd->msg != NULL) {

  114. 		/* We need to free message */

  115. 		rspamd_http_message_unref (cbd->msg);

  116. 	}

  117. 

  118. 	if (cbd->fd != -1) {

  119. 		close (cbd->fd);

  120. 	}

  121. 

  122. 	if (cbd->addr) {

  123. 		rspamd_inet_address_free (cbd->addr);

  124. 	}

  125. 

  126. 	if (cbd->mime_type) {

  127. 		g_free (cbd->mime_type);

  128. 	}

  129. 

  130. 	if (cbd->host) {

  131. 		g_free (cbd->host);

  132. 	}

  133. 

  134. 	if (cbd->auth) {

  135. 		g_free (cbd->auth);

  136. 	}

  137. 

  138. 	if (cbd->local_kp) {

  139. 		rspamd_keypair_unref (cbd->local_kp);

  140. 	}

  141. 

  142. 	if (cbd->peer_pk) {

  143. 		rspamd_pubkey_unref (cbd->peer_pk);

  144. 	}

  145. 

  146. 	g_free (cbd);

  147. }

  148. 

  149. static void

  150. lua_http_maybe_free (struct lua_http_cbdata *cbd)

  151. {

  152. 	if (cbd->session) {

  153. 

  154. 		if (cbd->flags & RSPAMD_LUA_HTTP_FLAG_RESOLVED) {

  155. 			/* Event is added merely for resolved events */

  156. 			if (cbd->item) {

  157. 				rspamd_symcache_item_async_dec_check (cbd->task, cbd->item, M);

  158. 			}

  159. 

  160. 			rspamd_session_remove_event (cbd->session, lua_http_fin, cbd);

  161. 		}

  162. 	}

  163. 	else {

  164. 		lua_http_fin (cbd);

  165. 	}

  166. }

  167. 

  168. static void

  169. lua_http_push_error (struct lua_http_cbdata *cbd, const char *err)

  170. {

  171. 	struct lua_callback_state lcbd;

  172. 	lua_State *L;

  173. 

  174. 	lua_thread_pool_prepare_callback (cbd->cfg->lua_thread_pool, &lcbd);

  175. 

  176. 	L = lcbd.L;

  177. 

  178. 	lua_rawgeti (L, LUA_REGISTRYINDEX, cbd->cbref);

  179. 	lua_pushstring (L, err);

  180. 

  181. 

  182. 	if (cbd->item) {

  183. 		rspamd_symcache_set_cur_item (cbd->task, cbd->item);

  184. 	}

  185. 

  186. 	if (lua_pcall (L, 1, 0, 0) != 0) {

  187. 		msg_info ("callback call failed: %s", lua_tostring (L, -1));

  188. 		lua_pop (L, 1);

  189. 	}

  190. 

  191. 	lua_thread_pool_restore_callback (&lcbd);

  192. }

  193. 

  194. static void lua_http_resume_handler (struct rspamd_http_connection *conn,

  195. 						 struct rspamd_http_message *msg, const char *err);

  196. 

  197. static void

  198. lua_http_error_handler (struct rspamd_http_connection *conn, GError *err)

  199. {

  200. 	struct lua_http_cbdata *cbd = (struct lua_http_cbdata *)conn->ud;

  201. 	if (cbd->cbref == -1) {

  202. 		lua_http_resume_handler (conn, NULL, err->message);

  203. 	}

  204. 	else {

  205. 		lua_http_push_error (cbd, err->message);

  206. 	}

  207. 	lua_http_maybe_free (cbd);

  208. }

  209. 

  210. static int

  211. lua_http_finish_handler (struct rspamd_http_connection *conn,

  212. 		struct rspamd_http_message *msg)

  213. {

  214. 	struct lua_http_cbdata *cbd = (struct lua_http_cbdata *)conn->ud;

  215. 	struct rspamd_http_header *h, *htmp;

  216. 	const gchar *body;

  217. 	gsize body_len;

  218. 

  219. 	struct lua_callback_state lcbd;

  220. 	lua_State *L;

  221. 

  222. 	if (cbd->cbref == -1) {

  223. 		lua_http_resume_handler (conn, msg, NULL);

  224. 		lua_http_maybe_free (cbd);

  225. 		return 0;

  226. 	}

  227. 	lua_thread_pool_prepare_callback (cbd->cfg->lua_thread_pool, &lcbd);

  228. 

  229. 	L = lcbd.L;

  230. 

  231. 	lua_rawgeti (L, LUA_REGISTRYINDEX, cbd->cbref);

  232. 	/* Error */

  233. 	lua_pushnil (L);

  234. 	/* Reply code */

  235. 	lua_pushinteger (L, msg->code);

  236. 	/* Body */

  237. 	body = rspamd_http_message_get_body (msg, &body_len);

  238. 

  239. 	if (cbd->flags & RSPAMD_LUA_HTTP_FLAG_TEXT) {

  240. 		struct rspamd_lua_text *t;

  241. 

  242. 		t = lua_newuserdata (L, sizeof (*t));

  243. 		rspamd_lua_setclass (L, "rspamd{text}", -1);

  244. 		t->start = body;

  245. 		t->len = body_len;

  246. 		t->flags = 0;

  247. 	}

  248. 	else {

  249. 		if (body_len > 0) {

  250. 			lua_pushlstring (L, body, body_len);

  251. 		}

  252. 		else {

  253. 			lua_pushnil (L);

  254. 		}

  255. 	}

  256. 	/* Headers */

  257. 	lua_newtable (L);

  258. 

  259. 	HASH_ITER (hh, msg->headers, h, htmp) {

  260. 		/*

  261. 		 * Lowercase header name, as Lua cannot search in caseless matter

  262. 		 */

  263. 		rspamd_str_lc (h->combined->str, h->name.len);

  264. 		lua_pushlstring (L, h->name.begin, h->name.len);

  265. 		lua_pushlstring (L, h->value.begin, h->value.len);

  266. 		lua_settable (L, -3);

  267. 	}

  268. 

  269. 	if (cbd->item) {

  270. 		/* Replace watcher to deal with nested calls */

  271. 		rspamd_symcache_set_cur_item (cbd->task, cbd->item);

  272. 	}

  273. 

  274. 	if (lua_pcall (L, 4, 0, 0) != 0) {

  275. 		msg_info ("callback call failed: %s", lua_tostring (L, -1));

  276. 		lua_pop (L, 1);

  277. 	}

  278. 

  279. 	lua_http_maybe_free (cbd);

  280. 

  281. 	lua_thread_pool_restore_callback (&lcbd);

  282. 

  283. 	return 0;

  284. }

  285. 

  286. /*

  287.  * resumes yielded thread

  288.  */

  289. static void

  290. lua_http_resume_handler (struct rspamd_http_connection *conn,

  291. 						 struct rspamd_http_message *msg, const char *err)

  292. {

  293. 	struct lua_http_cbdata *cbd = (struct lua_http_cbdata *)conn->ud;

  294. 	lua_State *L = cbd->thread->lua_state;

  295. 	const gchar *body;

  296. 	gsize body_len;

  297. 	struct rspamd_http_header *h, *htmp;

  298. 

  299. 	if (err) {

  300. 		lua_pushstring (L, err);

  301. 		lua_pushnil (L);

  302. 	}

  303. 	else {

  304. 		/*

  305. 		 * 1 - nil (error)

  306. 		 * 2 - table:

  307. 		 *   code (int)

  308. 		 *   content (string)

  309. 		 *   headers (table: header -> value)

  310. 		 */

  311. 		lua_pushnil (L); // error code

  312. 

  313. 		lua_createtable (L, 0, 3);

  314. 

  315. 		/* code */

  316. 		lua_pushliteral (L, "code");

  317. 		lua_pushinteger (L, msg->code);

  318. 		lua_settable (L, -3);

  319. 

  320. 		/* content */

  321. 		lua_pushliteral (L, "content");

  322. 

  323. 		body = rspamd_http_message_get_body (msg, &body_len);

  324. 		if (cbd->flags & RSPAMD_LUA_HTTP_FLAG_TEXT) {

  325. 			struct rspamd_lua_text *t;

  326. 

  327. 			t = lua_newuserdata (L, sizeof (*t));

  328. 			rspamd_lua_setclass (L, "rspamd{text}", -1);

  329. 			t->start = body;

  330. 			t->len = body_len;

  331. 			t->flags = 0;

  332. 		}

  333. 		else {

  334. 			if (body_len > 0) {

  335. 				lua_pushlstring (L, body, body_len);

  336. 			}

  337. 			else {

  338. 				lua_pushnil (L);

  339. 			}

  340. 		}

  341. 		lua_settable (L, -3);

  342. 

  343. 		/* headers */

  344. 		lua_pushliteral (L, "headers");

  345. 		lua_newtable (L);

  346. 

  347. 		HASH_ITER (hh, msg->headers, h, htmp) {

  348. 			/*

  349. 			 * Lowercase header name, as Lua cannot search in caseless matter

  350. 			 */

  351. 			rspamd_str_lc (h->combined->str, h->name.len);

  352. 			lua_pushlstring (L, h->name.begin, h->name.len);

  353. 			lua_pushlstring (L, h->value.begin, h->value.len);

  354. 			lua_settable (L, -3);

  355. 		}

  356. 

  357. 		lua_settable (L, -3);

  358. 	}

  359. 

  360. 	if (cbd->item) {

  361. 		/* Replace watcher to deal with nested calls */

  362. 		rspamd_symcache_set_cur_item (cbd->task, cbd->item);

  363. 	}

  364. 

  365. 	lua_thread_resume (cbd->thread, 2);

  366. }

  367. 

  368. static gboolean

  369. lua_http_make_connection (struct lua_http_cbdata *cbd)

  370. {

  371. 	int fd;

  372. 

  373. 	rspamd_inet_address_set_port (cbd->addr, cbd->msg->port);

  374. 

  375. 	if (cbd->flags & RSPAMD_LUA_HTTP_FLAG_KEEP_ALIVE) {

  376. 		cbd->fd = -1; /* FD is owned by keepalive connection */

  377. 

  378. 		cbd->conn = rspamd_http_connection_new_keepalive (

  379. 				NULL, /* Default context */

  380. 				NULL,

  381. 				lua_http_error_handler,

  382. 				lua_http_finish_handler,

  383. 				cbd->addr,

  384. 				cbd->host);

  385. 	}

  386. 	else {

  387. 		fd = rspamd_inet_address_connect (cbd->addr, SOCK_STREAM, TRUE);

  388. 

  389. 		if (fd == -1) {

  390. 			msg_info ("cannot connect to %V", cbd->msg->host);

  391. 			return FALSE;

  392. 		}

  393. 

  394. 		cbd->fd = fd;

  395. 		cbd->conn = rspamd_http_connection_new (

  396. 				NULL, /* Default context */

  397. 				fd,

  398. 				NULL,

  399. 				lua_http_error_handler,

  400. 				lua_http_finish_handler,

  401. 				RSPAMD_HTTP_CLIENT_SIMPLE,

  402. 				RSPAMD_HTTP_CLIENT);

  403. 	}

  404. 

  405. 	if (cbd->conn) {

  406. 		if (cbd->local_kp) {

  407. 			rspamd_http_connection_set_key (cbd->conn, cbd->local_kp);

  408. 		}

  409. 

  410. 		if (cbd->peer_pk) {

  411. 			rspamd_http_message_set_peer_key (cbd->msg, cbd->peer_pk);

  412. 		}

  413. 

  414. 		if (cbd->flags & RSPAMD_LUA_HTTP_FLAG_NOVERIFY) {

  415. 			cbd->msg->flags |= RSPAMD_HTTP_FLAG_SSL_NOVERIFY;

  416. 		}

  417. 

  418. 		if (cbd->max_size) {

  419. 			rspamd_http_connection_set_max_size (cbd->conn, cbd->max_size);

  420. 		}

  421. 

  422. 		if (cbd->auth) {

  423. 			rspamd_http_message_add_header (cbd->msg, "Authorization",

  424. 					cbd->auth);

  425. 		}

  426. 

  427. 		if (cbd->session) {

  428. 			rspamd_session_add_event (cbd->session,

  429. 					(event_finalizer_t) lua_http_fin, cbd,

  430. 					M);

  431. 			cbd->flags |= RSPAMD_LUA_HTTP_FLAG_RESOLVED;

  432. 		}

  433. 

  434. 		if (cbd->item) {

  435. 			rspamd_symcache_item_async_inc (cbd->task, cbd->item, M);

  436. 		}

  437. 

  438. 		struct rspamd_http_message *msg = cbd->msg;

  439. 

  440. 		/* Message is now owned by a connection object */

  441. 		cbd->msg = NULL;

  442. 

  443. 		rspamd_http_connection_write_message (cbd->conn, msg,

  444. 				cbd->host, cbd->mime_type, cbd,

  445. 				&cbd->tv);

  446. 

  447. 		return TRUE;

  448. 	}

  449. 

  450. 	return FALSE;

  451. }

  452. 

  453. static void

  454. lua_http_dns_handler (struct rdns_reply *reply, gpointer ud)

  455. {

  456. 	struct lua_http_cbdata *cbd = (struct lua_http_cbdata *)ud;

  457. 

  458. 	if (reply->code != RDNS_RC_NOERROR) {

  459. 		lua_http_push_error (cbd, "unable to resolve host");

  460. 		lua_http_maybe_free (cbd);

  461. 	}

  462. 	else {

  463. 		if (reply->entries->type == RDNS_REQUEST_A) {

  464. 			cbd->addr = rspamd_inet_address_new (AF_INET,

  465. 					&reply->entries->content.a.addr);

  466. 		}

  467. 		else if (reply->entries->type == RDNS_REQUEST_AAAA) {

  468. 			cbd->addr = rspamd_inet_address_new (AF_INET6,

  469. 					&reply->entries->content.aaa.addr);

  470. 		}

  471. 

  472. 		if (!lua_http_make_connection (cbd)) {

  473. 			lua_http_push_error (cbd, "unable to make connection to the host");

  474. 			lua_http_maybe_free (cbd);

  475. 

  476. 			return;

  477. 		}

  478. 	}

  479. 

  480. 	if (cbd->item) {

  481. 		rspamd_symcache_item_async_dec_check (cbd->task, cbd->item, M);

  482. 	}

  483. }

  484. 

  485. static void

  486. lua_http_push_headers (lua_State *L, struct rspamd_http_message *msg)

  487. {

  488. 	const char *name, *value;

  489. 	gint i, sz;

  490. 

  491. 	lua_pushnil (L);

  492. 	while (lua_next (L, -2) != 0) {

  493. 

  494. 		lua_pushvalue (L, -2);

  495. 		name = lua_tostring (L, -1);

  496. 		sz = rspamd_lua_table_size (L, -2);

  497. 		if (sz != 0 && name != NULL) {

  498. 			for (i = 1; i <= sz ; i++) {

  499. 				lua_rawgeti (L, -2, i);

  500. 				value = lua_tostring (L, -1);

  501. 				if (value != NULL) {

  502. 					rspamd_http_message_add_header (msg, name, value);

  503. 				}

  504. 				lua_pop (L, 1);

  505. 			}

  506. 		} else {

  507. 			value = lua_tostring (L, -2);

  508. 			if (name != NULL && value != NULL) {

  509. 				rspamd_http_message_add_header (msg, name, value);

  510. 			}

  511. 		}

  512. 		lua_pop (L, 2);

  513. 	}

  514. }

  515. 

  516. /***

  517.  * @function rspamd_http.request({params...})

  518.  * This function creates HTTP request and accepts several parameters as a table using key=value syntax.

  519.  * Required params are:

  520.  *

  521.  * - `url`

  522.  * - `task`

  523.  *

  524.  * In taskless mode, instead of `task` required are:

  525.  *

  526.  * - `ev_base`

  527.  * - `config`

  528.  *

  529.  * @param {string} url specifies URL for a request in the standard URI form (e.g. 'http://example.com/path')

  530.  * @param {function} callback specifies callback function in format  `function (err_message, code, body, headers)` that is called on HTTP request completion. if this parameter is missing, the function performs "pseudo-synchronous" call (see [Synchronous and Asynchronous API overview](/doc/lua/sync_async.html#API-example-http-module)

  531.  * @param {task} task if called from symbol handler it is generally a good idea to use the common task objects: event base, DNS resolver and events session

  532.  * @param {table} headers optional headers in form `[name='value', name='value']`

  533.  * @param {string} mime_type MIME type of the HTTP content (for example, `text/html`)

  534.  * @param {string/text} body full body content, can be opaque `rspamd{text}` to avoid data copying

  535.  * @param {number} timeout floating point request timeout value in seconds (default is 5.0 seconds)

  536.  * @param {resolver} resolver to perform DNS-requests. Usually got from either `task` or `config`

  537.  * @param {boolean} gzip if true, body of the requests will be compressed

  538.  * @param {boolean} no_ssl_verify disable SSL peer checks

  539.  * @param {boolean} keepalive enable keep-alive pool

  540.  * @param {string} user for HTTP authentication

  541.  * @param {string} password for HTTP authentication, only if "user" present

  542.  * @return {boolean} `true`, in **async** mode, if a request has been successfully scheduled. If this value is `false` then some error occurred, the callback thus will not be called.

  543.  * @return In **sync** mode `string|nil, nil|table` In sync mode  error message if any and response as table: `int` _code_, `string` _content_ and `table` _headers_ (header -> value)

  544.  */

  545. static gint

  546. lua_http_request (lua_State *L)

  547. {

  548. 	LUA_TRACE_POINT;

  549. 	struct event_base *ev_base;

  550. 	struct rspamd_http_message *msg;

  551. 	struct lua_http_cbdata *cbd;

  552. 	struct rspamd_dns_resolver *resolver;

  553. 	struct rspamd_async_session *session = NULL;

  554. 	struct rspamd_lua_text *t;

  555. 	struct rspamd_task *task = NULL;

  556. 	struct rspamd_config *cfg = NULL;

  557. 	struct rspamd_cryptobox_pubkey *peer_key = NULL;

  558. 	struct rspamd_cryptobox_keypair *local_kp = NULL;

  559. 	const gchar *url, *lua_body;

  560. 	rspamd_fstring_t *body = NULL;

  561. 	gint cbref = -1;

  562. 	gsize bodylen;

  563. 	gdouble timeout = default_http_timeout;

  564. 	gint flags = 0;

  565. 	gchar *mime_type = NULL;

  566. 	gchar *auth = NULL;

  567. 	gsize max_size = 0;

  568. 	gboolean gzip = FALSE;

  569. 

  570. 	if (lua_gettop (L) >= 2) {

  571. 		/* url, callback and event_base format */

  572. 		url = luaL_checkstring (L, 1);

  573. 

  574. 		if (url == NULL || lua_type (L, 2) != LUA_TFUNCTION) {

  575. 			msg_err ("http request has bad params");

  576. 			lua_pushboolean (L, FALSE);

  577. 			return 1;

  578. 		}

  579. 

  580. 		lua_pushvalue (L, 2);

  581. 		cbref = luaL_ref (L, LUA_REGISTRYINDEX);

  582. 

  583. 		if (lua_gettop (L) >= 3 && rspamd_lua_check_udata_maybe (L, 3, "rspamd{ev_base}")) {

  584. 			ev_base = *(struct event_base **)lua_touserdata (L, 3);

  585. 		}

  586. 		else {

  587. 			ev_base = NULL;

  588. 		}

  589. 

  590. 		if (lua_gettop (L) >= 4 && rspamd_lua_check_udata_maybe (L, 4, "rspamd{resolver}")) {

  591. 			resolver = *(struct rspamd_dns_resolver **)lua_touserdata (L, 4);

  592. 		}

  593. 		else {

  594. 			resolver = lua_http_global_resolver (ev_base);

  595. 		}

  596. 

  597. 		if (lua_gettop (L) >= 5 && rspamd_lua_check_udata_maybe (L, 5, "rspamd{session}")) {

  598. 			session = *(struct rspamd_async_session **)lua_touserdata (L, 5);

  599. 		}

  600. 		else {

  601. 			session = NULL;

  602. 		}

  603. 

  604. 		msg = rspamd_http_message_from_url (url);

  605. 

  606. 		if (msg == NULL) {

  607. 			lua_pushboolean (L, FALSE);

  608. 			return 1;

  609. 		}

  610. 	}

  611. 	else if (lua_type (L, 1) == LUA_TTABLE) {

  612. 		lua_pushstring (L, "url");

  613. 		lua_gettable (L, 1);

  614. 		url = luaL_checkstring (L, -1);

  615. 		lua_pop (L, 1);

  616. 

  617. 		lua_pushstring (L, "callback");

  618. 		lua_gettable (L, 1);

  619. 		if (url == NULL || lua_type (L, -1) != LUA_TFUNCTION) {

  620. 			lua_pop (L, 1);

  621. 		} else {

  622. 			cbref = luaL_ref (L, LUA_REGISTRYINDEX);

  623. 		}

  624. 

  625. 		lua_pushstring (L, "task");

  626. 		lua_gettable (L, 1);

  627. 

  628. 		if (lua_type (L, -1) == LUA_TUSERDATA) {

  629. 			task = lua_check_task (L, -1);

  630. 			ev_base = task->ev_base;

  631. 			resolver = task->resolver;

  632. 			session = task->s;

  633. 			cfg = task->cfg;

  634. 		}

  635. 		lua_pop (L, 1);

  636. 

  637. 		if (task == NULL) {

  638. 			lua_pushstring (L, "ev_base");

  639. 			lua_gettable (L, 1);

  640. 			if (rspamd_lua_check_udata_maybe (L, -1, "rspamd{ev_base}")) {

  641. 				ev_base = *(struct event_base **)lua_touserdata (L, -1);

  642. 			}

  643. 			else {

  644. 				ev_base = NULL;

  645. 			}

  646. 			lua_pop (L, 1);

  647. 

  648. 

  649. 			lua_pushstring (L, "session");

  650. 			lua_gettable (L, 1);

  651. 			if (rspamd_lua_check_udata_maybe (L, -1, "rspamd{session}")) {

  652. 				session = *(struct rspamd_async_session **)lua_touserdata (L, -1);

  653. 			}

  654. 			else {

  655. 				session = NULL;

  656. 			}

  657. 			lua_pop (L, 1);

  658. 

  659. 			lua_pushstring (L, "config");

  660. 			lua_gettable (L, 1);

  661. 			if (rspamd_lua_check_udata_maybe (L, -1, "rspamd{config}")) {

  662. 				cfg = *(struct rspamd_config **)lua_touserdata (L, -1);

  663. 			}

  664. 			else {

  665. 				cfg = NULL;

  666. 			}

  667. 

  668. 			lua_pop (L, 1);

  669. 

  670. 			lua_pushstring (L, "resolver");

  671. 			lua_gettable (L, 1);

  672. 

  673. 			if (rspamd_lua_check_udata_maybe (L, -1, "rspamd{resolver}")) {

  674. 				resolver = *(struct rspamd_dns_resolver **)lua_touserdata (L, -1);

  675. 			}

  676. 			else {

  677. 				if (cfg && cfg->dns_resolver) {

  678. 					resolver = cfg->dns_resolver;

  679. 				}

  680. 				else {

  681. 					resolver = lua_http_global_resolver (ev_base);

  682. 				}

  683. 			}

  684. 			lua_pop (L, 1);

  685. 		}

  686. 

  687. 		msg = rspamd_http_message_from_url (url);

  688. 		if (msg == NULL) {

  689. 			msg_err ("cannot create HTTP message from url %s", url);

  690. 			lua_pushboolean (L, FALSE);

  691. 			return 1;

  692. 		}

  693. 

  694. 		lua_pushstring (L, "headers");

  695. 		lua_gettable (L, 1);

  696. 		if (lua_type (L, -1) == LUA_TTABLE) {

  697. 			lua_http_push_headers (L, msg);

  698. 		}

  699. 		lua_pop (L, 1);

  700. 

  701. 		lua_pushstring (L, "timeout");

  702. 		lua_gettable (L, 1);

  703. 		if (lua_type (L, -1) == LUA_TNUMBER) {

  704. 			timeout = lua_tonumber (L, -1) * 1000.;

  705. 		}

  706. 		lua_pop (L, 1);

  707. 

  708. 		lua_pushstring (L, "mime_type");

  709. 		lua_gettable (L, 1);

  710. 		if (lua_type (L, -1) == LUA_TSTRING) {

  711. 			mime_type = g_strdup (lua_tostring (L, -1));

  712. 		}

  713. 		lua_pop (L, 1);

  714. 

  715. 		lua_pushstring (L, "body");

  716. 		lua_gettable (L, 1);

  717. 		if (lua_type (L, -1) == LUA_TSTRING) {

  718. 			lua_body = lua_tolstring (L, -1, &bodylen);

  719. 			body = rspamd_fstring_new_init (lua_body, bodylen);

  720. 		}

  721. 		else if (lua_type (L, -1) == LUA_TUSERDATA) {

  722. 			t = lua_check_text (L, -1);

  723. 			/* TODO: think about zero-copy possibilities */

  724. 			if (t) {

  725. 				body = rspamd_fstring_new_init (t->start, t->len);

  726. 			}

  727. 			else {

  728. 				rspamd_http_message_unref (msg);

  729. 				g_free (mime_type);

  730. 

  731. 				return luaL_error (L, "invalid body argument type: %s",

  732. 						lua_typename (L, lua_type (L, -1)));

  733. 			}

  734. 		}

  735. 		else if (lua_type (L, -1) == LUA_TTABLE) {

  736. 			body = rspamd_fstring_new ();

  737. 

  738. 			for (lua_pushnil (L); lua_next (L, -2); lua_pop (L, 1)) {

  739. 				if (lua_type (L, -1) == LUA_TSTRING) {

  740. 					lua_body = lua_tolstring (L, -1, &bodylen);

  741. 					body = rspamd_fstring_append (body, lua_body, bodylen);

  742. 				}

  743. 				else if (lua_type (L, -1) == LUA_TUSERDATA) {

  744. 					t = lua_check_text (L, -1);

  745. 

  746. 					if (t) {

  747. 						body = rspamd_fstring_append (body, t->start, t->len);

  748. 					}

  749. 					else {

  750. 						rspamd_http_message_unref (msg);

  751. 						if (body) {

  752. 							rspamd_fstring_free (body);

  753. 						}

  754. 

  755. 						if (mime_type) {

  756. 							g_free (mime_type);

  757. 						}

  758. 

  759. 						return luaL_error (L, "invalid body argument: %s",

  760. 								lua_typename (L, lua_type (L, -1)));

  761. 					}

  762. 				}

  763. 				else {

  764. 					rspamd_http_message_unref (msg);

  765. 					if (body) {

  766. 						rspamd_fstring_free (body);

  767. 					}

  768. 

  769. 					return luaL_error (L, "invalid body argument type: %s",

  770. 							lua_typename (L, lua_type (L, -1)));

  771. 				}

  772. 			}

  773. 		}

  774. 		else if (lua_type (L, -1) != LUA_TNONE && lua_type (L, -1) != LUA_TNIL) {

  775. 			rspamd_http_message_unref (msg);

  776. 			return luaL_error (L, "invalid body argument type: %s",

  777. 					lua_typename (L, lua_type (L, -1)));

  778. 		}

  779. 		lua_pop (L, 1);

  780. 

  781. 		lua_pushstring (L, "peer_key");

  782. 		lua_gettable (L, 1);

  783. 

  784. 		if (lua_type (L, -1) == LUA_TSTRING) {

  785. 			const gchar *in;

  786. 			gsize inlen;

  787. 

  788. 			in = lua_tolstring (L, -1, &inlen);

  789. 			peer_key = rspamd_pubkey_from_base32 (in, inlen,

  790. 					RSPAMD_KEYPAIR_KEX, RSPAMD_CRYPTOBOX_MODE_25519);

  791. 		}

  792. 

  793. 		lua_pop (L, 1);

  794. 

  795. 		lua_pushstring (L, "keypair");

  796. 		lua_gettable (L, 1);

  797. 

  798. 		if (lua_type (L, -1) == LUA_TTABLE) {

  799. 			ucl_object_t *kp_ucl = ucl_object_lua_import (L, -1);

  800. 

  801. 			local_kp = rspamd_keypair_from_ucl (kp_ucl);

  802. 			ucl_object_unref (kp_ucl);

  803. 		}

  804. 

  805. 		lua_pop (L, 1);

  806. 

  807. 		lua_pushstring (L, "opaque_body");

  808. 		lua_gettable (L, 1);

  809. 

  810. 		if (!!lua_toboolean (L, -1)) {

  811. 			flags |= RSPAMD_LUA_HTTP_FLAG_TEXT;

  812. 		}

  813. 

  814. 		lua_pop (L, 1);

  815. 

  816. 		lua_pushstring (L, "gzip");

  817. 		lua_gettable (L, 1);

  818. 

  819. 		if (!!lua_toboolean (L, -1)) {

  820. 			gzip = TRUE;

  821. 		}

  822. 

  823. 		lua_pop (L, 1);

  824. 

  825. 		lua_pushstring (L, "no_ssl_verify");

  826. 		lua_gettable (L, 1);

  827. 

  828. 		if (!!lua_toboolean (L, -1)) {

  829. 			flags |= RSPAMD_LUA_HTTP_FLAG_NOVERIFY;

  830. 		}

  831. 

  832. 		lua_pop (L, 1);

  833. 

  834. 		lua_pushstring (L, "keepalive");

  835. 		lua_gettable (L, 1);

  836. 

  837. 		if (!!lua_toboolean (L, -1)) {

  838. 			flags |= RSPAMD_LUA_HTTP_FLAG_KEEP_ALIVE;

  839. 		}

  840. 

  841. 		lua_pop (L, 1);

  842. 

  843. 		lua_pushstring (L, "max_size");

  844. 		lua_gettable (L, 1);

  845. 

  846. 		if (lua_type (L, -1) == LUA_TNUMBER) {

  847. 			max_size = lua_tonumber (L, -1);

  848. 		}

  849. 

  850. 		lua_pop (L, 1);

  851. 

  852. 		lua_pushstring (L, "method");

  853. 		lua_gettable (L, 1);

  854. 

  855. 		if (lua_type (L, -1) == LUA_TSTRING) {

  856. 			rspamd_http_message_set_method (msg, lua_tostring (L, -1));

  857. 		}

  858. 

  859. 		lua_pop (L, 1);

  860. 

  861. 		lua_pushstring (L, "user");

  862. 		lua_gettable (L, 1);

  863. 

  864. 		if (lua_type (L, -1) == LUA_TSTRING) {

  865. 			const gchar *user = lua_tostring (L, -1);

  866. 

  867. 			lua_pushstring (L, "password");

  868. 			lua_gettable (L, 1);

  869. 

  870. 			if (lua_type (L, -1) == LUA_TSTRING) {

  871. 				const gchar *password = lua_tostring (L, -1);

  872. 				gchar *tmpbuf;

  873. 				gsize tlen;

  874. 

  875. 				tlen = strlen (user) + strlen (password) + 1;

  876. 				tmpbuf = g_malloc (tlen + 1);

  877. 				rspamd_snprintf (tmpbuf, tlen + 1, "%s:%s", user, password);

  878. 				tlen *= 2;

  879. 				tlen += sizeof ("Basic ") - 1;

  880. 				auth = g_malloc (tlen + 1);

  881. 				rspamd_snprintf (auth, tlen + 1, "Basic %Bs", tmpbuf);

  882. 				g_free (tmpbuf);

  883. 			}

  884. 			else {

  885. 				msg_warn ("HTTP user must have password, disabling auth");

  886. 			}

  887. 

  888. 			lua_pop (L, 1); /* password */

  889. 		}

  890. 

  891. 		lua_pop (L, 1); /* username */

  892. 	}

  893. 	else {

  894. 		msg_err ("http request has bad params");

  895. 		lua_pushboolean (L, FALSE);

  896. 

  897. 		return 1;

  898. 	}

  899. 

  900. 	if (session && rspamd_session_blocked (session)) {

  901. 		lua_pushboolean (L, FALSE);

  902. 

  903. 		g_free (auth);

  904. 		rspamd_http_message_unref (msg);

  905. 		if (body) {

  906. 			rspamd_fstring_free (body);

  907. 		}

  908. 

  909. 		return 1;

  910. 	}

  911. 	if (task == NULL && cfg == NULL) {

  912. 		g_free (auth);

  913. 		rspamd_http_message_unref (msg);

  914. 		if (body) {

  915. 			rspamd_fstring_free (body);

  916. 		}

  917. 

  918. 		return luaL_error (L,

  919. 				"Bad params to rspamd_http:request(): either task or config should be set");

  920. 	}

  921. 

  922. 	if (ev_base == NULL) {

  923. 		return luaL_error (L,

  924. 				"Bad params to rspamd_http:request(): ev_base isn't passed");

  925. 	}

  926. 

  927. 	cbd = g_malloc0 (sizeof (*cbd));

  928. 	cbd->cbref = cbref;

  929. 	cbd->msg = msg;

  930. 	cbd->ev_base = ev_base;

  931. 	cbd->mime_type = mime_type;

  932. 	msec_to_tv (timeout, &cbd->tv);

  933. 	cbd->fd = -1;

  934. 	cbd->cfg = cfg;

  935. 	cbd->peer_pk = peer_key;

  936. 	cbd->local_kp = local_kp;

  937. 	cbd->flags = flags;

  938. 	cbd->max_size = max_size;

  939. 	cbd->url = url;

  940. 	cbd->auth = auth;

  941. 	cbd->task = task;

  942. 

  943. 	if (task) {

  944. 		cbd->item = rspamd_symcache_get_cur_item (task);

  945. 	}

  946. 

  947. 	if (msg->host) {

  948. 		cbd->host = rspamd_fstring_cstr (msg->host);

  949. 	}

  950. 

  951. 	if (body) {

  952. 		if (gzip) {

  953. 			if (rspamd_fstring_gzip (&body)) {

  954. 				rspamd_http_message_add_header (msg, "Content-Encoding", "gzip");

  955. 			}

  956. 		}

  957. 

  958. 		rspamd_http_message_set_body_from_fstring_steal (msg, body);

  959. 	}

  960. 

  961. 	if (session) {

  962. 		cbd->session = session;

  963. 	}

  964. 

  965. 	if (rspamd_parse_inet_address (&cbd->addr, msg->host->str, msg->host->len)) {

  966. 		/* Host is numeric IP, no need to resolve */

  967. 		if (!lua_http_make_connection (cbd)) {

  968. 			lua_http_maybe_free (cbd);

  969. 			lua_pushboolean (L, FALSE);

  970. 

  971. 			return 1;

  972. 		}

  973. 	}

  974. 	else {

  975. 		if (!cbd->host) {

  976. 			lua_http_maybe_free (cbd);

  977. 

  978. 			return luaL_error (L, "no host has been specified");

  979. 		}

  980. 		if (task == NULL) {

  981. 

  982. 			if (!make_dns_request (resolver, session, NULL, lua_http_dns_handler, cbd,

  983. 					RDNS_REQUEST_A,

  984. 					cbd->host)) {

  985. 				lua_http_maybe_free (cbd);

  986. 				lua_pushboolean (L, FALSE);

  987. 

  988. 				return 1;

  989. 			}

  990. 		}

  991. 		else {

  992. 			if (!make_dns_request_task_forced (task, lua_http_dns_handler, cbd,

  993. 					RDNS_REQUEST_A, cbd->host)) {

  994. 				lua_http_maybe_free (cbd);

  995. 				lua_pushboolean (L, FALSE);

  996. 

  997. 				return 1;

  998. 			}

  999. 			else if (cbd->item) {

  1000. 				rspamd_symcache_item_async_inc (cbd->task, cbd->item, M);

  1001. 			}

  1002. 		}

  1003. 	}

  1004. 

  1005. 	if (cbd->cbref == -1) {

  1006. 		cbd->thread = lua_thread_pool_get_running_entry (cfg->lua_thread_pool);

  1007. 

  1008. 		return lua_thread_yield (cbd->thread, 0);

  1009. 	}

  1010. 	else {

  1011. 		lua_pushboolean (L, TRUE);

  1012. 	}

  1013. 

  1014. 	return 1;

  1015. }

  1016. 

  1017. static gint

  1018. lua_load_http (lua_State * L)

  1019. {

  1020. 	lua_newtable (L);

  1021. 	luaL_register (L, NULL, httplib_m);

  1022. 

  1023. 	return 1;

  1024. }

  1025. 

  1026. void

  1027. luaopen_http (lua_State * L)

  1028. {

  1029. 	rspamd_lua_add_preload (L, "rspamd_http", lua_load_http);

  1030. }