Return 400/413 on bad requests. Several corner-case fixes

Author: Mons

META.json

@@ -4,7 +4,7 @@
       "Mons Anderson <[email protected]>"
    ],
    "dynamic_config" : 0,
-   "generated_by" : "ExtUtils::MakeMaker version 7.04, CPAN::Meta::Converter version 2.150001",
+   "generated_by" : "ExtUtils::MakeMaker version 7.3, CPAN::Meta::Converter version 2.150010",
    "license" : [
       "perl_5"
    ],
@@ -40,5 +40,6 @@
       }
    },
    "release_status" : "stable",
-   "version" : "1.9999"
+   "version" : "1.99993",
+   "x_serialization_backend" : "JSON::PP version 2.27400"
 }

META.yml

@@ -7,7 +7,7 @@ build_requires:
 configure_requires:
   ExtUtils::MakeMaker: '0'
 dynamic_config: 0
-generated_by: 'ExtUtils::MakeMaker version 7.04, CPAN::Meta::Converter version 2.150001'
+generated_by: 'ExtUtils::MakeMaker version 7.3, CPAN::Meta::Converter version 2.150010'
 license: perl
 meta-spec:
   url: http://module-build.sourceforge.net/META-spec-v1.4.html
@@ -22,4 +22,5 @@ requires:
   Digest::SHA1: '2'
   HTTP::Easy: '0.03'
   JSON::XS: '3'
-version: '1.99992'
+version: '1.99993'
+x_serialization_backend: 'CPAN::Meta::YAML version 0.018'

bin/simple-server

@@ -2,7 +2,7 @@
 
 use strict;
 use FindBin;
-use lib "$FindBin::Bin/../blib/lib";
+use lib "$FindBin::Bin/../lib", "$FindBin::Bin/../blib/lib";
 use Sys::Hostname;
 use Getopt::Long;
 use Cwd 'cwd','abs_path';

lib/AnyEvent/HTTP/Server.pm

@@ -6,8 +6,9 @@ AnyEvent::HTTP::Server - AnyEvent HTTP/1.1 Server
 
 =cut
 
+our $VERSION;
 BEGIN{
-our $VERSION = '1.99992';
+$VERSION = '1.99993';
 }
 
 #use common::sense;
@@ -30,6 +31,7 @@ use Errno qw(EAGAIN EINTR);
 use AnyEvent::Util qw(WSAEWOULDBLOCK guard AF_INET6 fh_nonblocking);
 use Socket qw(AF_INET AF_UNIX SOCK_STREAM SOCK_DGRAM SOL_SOCKET SO_REUSEADDR IPPROTO_TCP TCP_NODELAY);
 
+use Carp ();
 use Encode ();
 use Compress::Zlib ();
 use MIME::Base64 ();
@@ -54,21 +56,35 @@ my $ico_pk = pack "H*",
 	"1d8c7e040000";
 our $ico = Compress::Zlib::memGunzip $ico_pk;
 
+our $ERROR_TEMPLATE = <<"EOD";
+<html>
+<head><title>%1\$s %2\$s</title></head>
+<body bgcolor="white">
+<center><h1>%1\$s %2\$s</h1></center>
+<hr><center>${\__PACKAGE__}/$VERSION</center>
+</body>
+</html>
+EOD
+
 sub start { croak "It's a new version of ".__PACKAGE__.". For old version use `legacy' branch, or better make some minor patches to support new version" };
 sub stop  { croak "It's a new version of ".__PACKAGE__.". For old version use `legacy' branch, or better make some minor patches to support new version" };
 
 sub new {
 	my $pkg = shift;
 	my $self = bless {
 		backlog   => 1024,
-		read_size => 4096,
-		max_header_size => MAX_READ_SIZE, #4096*8,
+		read_size => MAX_READ_SIZE,
+		max_header_size => MAX_READ_SIZE,
 		request   => 'AnyEvent::HTTP::Server::Req',
 		sockets => {},
 		@_,
 		active_requests => 0,
 		active_connections => 0,
 	}, $pkg;
+	
+	if ($self->{max_header_size} > $self->{read_size}) {
+		Carp::croak "max_header_size can't be greater than read_size";
+	}
 
 	eval qq{ use $self->{request}; 1}
 		or die "Request $self->{request} not loaded: $@";
@@ -224,7 +240,7 @@ sub noaccept {
 sub drop {
 	my ($self,$id,$err) = @_;
 	$err =~ s/\015//sg;
-	#warn "Dropping connection $id: $err (by request from @{[ (caller)[1,2] ]})";# if DEBUG or $self->{debug};
+	warn "Dropping connection $id: $err (by request from @{[ (caller)[1,2] ]})" if DEBUG; # or $self->{debug};
 	my $r = delete $self->{$id} or return;
 	$self->{active_connections}--;
 	%{ $r } = () if $r;
@@ -308,17 +324,27 @@ sub incoming {
 			}
 		};
 
+		my $reply_error = sub {
+			# my ($code,$message) = @_;
+			$_[1] //= $AnyEvent::HTTP::Server::Req::http{$_[0]};
+			# warn "ERROR @_";
+			my $body = sprintf $ERROR_TEMPLATE, $_[0], $_[1];
+			my $reply = "HTTP/1.0 $_[0] $_[1]${LF}Connection:close${LF}Content-Type:text/html${LF}Content-Length:"
+				.length($body)."${LF}${LF}".$body."\n";
+			$write->(\$reply,\undef);
+		};
+		
 		my ($state,$seq) = (0,0);
 		my ($method,$uri,$version,$lastkey,$contstate,$bpos,$len,$pos, $req);
 
 		my $ixx = 0;
 		$r{rw} = AE::io $fh, 0, sub {
 			#warn "rw.io.$id (".(fileno $fh).") seq:$seq (ok:".($self ? 1:0).':'.(( $self && exists $self->{$id}) ? 1 : 0).")" if DEBUG;
 			$self and exists $self->{$id} or return;
-			while ( $self and ( $len = sysread( $fh, $buf, MAX_READ_SIZE-length $buf, length $buf ) ) ) {
+			while ( $self and ( $len = sysread( $fh, $buf, $self->{read_size}-length $buf, length $buf ) ) ) {
 				if ($state == 0) {
 						if (( my $i = index($buf,"\012", $ixx) ) > -1) {
-							if (substr($buf, $ixx, $ixx + $i) =~ /(\S+) \040 (\S+) \040 HTTP\/(\d+\.\d+)/xso) {
+							if (substr($buf, $ixx, $i - $ixx) =~ /^(\S++) \040 (\S++) \040 HTTP\/(\d++\.\d++)\015?$/xso) {
 								$method  = $1;
 								$uri     = $2;
 								$version = $3;
@@ -328,12 +354,27 @@ sub incoming {
 								warn "Received request N.$seq over ".fileno($fh).": $method $uri" if DEBUG;
 								$self->{active_requests}++;
 								#push @{ $r{req} }, [{}];
-							} else {
-								#warn "Broken request ($i): <".substr($buf, 0, $i).">";
-								return $self->drop($id, "Broken request ($i): <".substr($buf, $ixx, $i).">");
+							}
+							elsif (substr($buf, $ixx, $i - $ixx) =~ /^\015?$/) {
+								# warn "Skip empty line";
+								$ixx = $i + 1;
+								redo;
+							}
+							else {
+								warn "Broken request ($i): <".substr($buf, $ixx, $i).">";
+								return $reply_error->(400);
+								# return $self->drop($id, "Broken request ($i): <".substr($buf, $ixx, $i).">");
 							}
 							$pos = $i+1;
 						} else {
+							if ($ixx > 0) {
+								$buf = substr($buf,$ixx);
+								$pos = $ixx = 0;
+							}
+							elsif ( length($buf) >= $self->{max_header_size} ) {
+								return $reply_error->(413);
+							}
+							warn "Need more data" if DEBUG;
 							return; # need more
 						}
 				}
@@ -344,6 +385,7 @@ sub incoming {
 					warn "Parsing headers from pos $pos:".substr($buf,$pos) if DEBUG;
 							while () {
 								#warn "parse line >'".substr( $buf,pos($buf),index( $buf, "\012", pos($buf) )-pos($buf) )."'";
+								$bpos = pos($buf);
 								if( $buf =~ /\G ([^:\000-\037\040]++)[\011\040]*+:[\011\040]*+ ([^\012\015;]*+(;)?[^\012\015]*+) \015?\012/sxogc ){
 									$lastkey = lc $1;
 									$h{ $lastkey } = exists $h{ $lastkey } ? $h{ $lastkey }.','.$2: $2;
@@ -361,14 +403,27 @@ sub incoming {
 								elsif ($buf =~ /\G[\011\040]+/sxogc) { # continuation
 									#warn "Continuation";
 									if (length $lastkey) {
-										$buf =~ /\G ([^\015\012;]*+(;)?[^\015\012]*+) \015?\012/sxogc or return pos($buf) = $bpos; # need more data;
+										unless ($buf =~ /\G ([^\015\012;]*+(;)?[^\015\012]*+) \015?\012/sxogc) {
+											if ($ixx > 0) {
+												$pos = $bpos - $ixx;
+												$buf = substr($buf,$ixx);
+												$ixx = 0;
+											}
+											elsif ( length($buf) >= $self->{max_header_size} ) {
+												$self->{active_requests}--;
+												return $reply_error->(413);
+											}
+											warn "Need more data" if DEBUG;
+											return; # need more
+										};
+										# $buf =~ /\G ([^\015\012;]*+(;)?[^\015\012]*+) \015?\012/sxogc or return pos($buf) = $bpos; # need more data;
 										$h{ $lastkey } .= ' '.$1;
 										if ( ( defined $2 or $contstate ) ) {
 											#warn "With ;";
 											if ( ( my $ext = index( $h{ $lastkey }, ';', rindex( $h{ $lastkey }, ',' ) + 1) ) > -1 ) {
 												# Composite field. Need to reparse last field value (from ; after last ,)
-											# full key rescan, because of possible case: <key:value; field="value\n\tvalue continuation"\n>
-											# regexp needed to set \G
+												# full key rescan, because of possible case: <key:value; field="value\n\tvalue continuation"\n>
+												# regexp needed to set \G
 												pos($h{ $lastkey }) = $ext;
 												#warn "Rescan from $ext";
 												#warn("<$1><$2><$3>"),
@@ -384,18 +439,24 @@ sub incoming {
 									last;
 								}
 								elsif($buf =~ /\G [^\012]* \Z/sxogc) {
-									if (length($buf) - $ixx > $self->{max_header_size}) {
-										return $self->drop($id, "Too big headers from $rhost for request <".substr($buf, $ixx, 32)."...>");
+									if ($ixx > 0) {
+										$pos = $bpos - $ixx;
+										$buf = substr($buf,$ixx);
+										$ixx = 0;
+									}
+									elsif ( length($buf) >= $self->{max_header_size} ) {
+										$self->{active_requests}--;
+										return $reply_error->(413);
 									}
-									#warn "Need more";
-									return pos($buf) = $bpos; # need more data
+									warn "Need more data" if DEBUG;
+									return; # need more
 								}
 								else {
 									my ($line) = $buf =~ /\G([^\015\012]++)(?:\015?\012|\Z)/sxogc;
 									warn "Drop: bad header line: '$line'";
 									$self->{active_requests}--;
-									$self->drop($id, "Bad header line: '$line'"); # TBD
-									return;
+									# $self->drop($id, "Bad header line: '$line'"); # TBD
+									return $reply_error->(400);
 								}
 							}
 

t/01-basic.t

@@ -8,7 +8,7 @@ use AnyEvent::Handle;
 use AnyEvent::HTTP::Server;
 use AnyEvent::HTTP::Server::Kit ':dumper';
 use EV;
-use Test::More tests => 168;
+use Test::More tests => 194;
 use Data::Dumper;
 $Data::Dumper::Useqq = 1;
 
@@ -21,17 +21,31 @@ use constant {
 
 our $PARTIAL;
 
+my $bad = '\x'x1024;
+my $bad_unescaped = 'x'x1024;
+
 # The tests
 
-for $PARTIAL (0,1) {
+for $PARTIAL (0, 1) {
+
+test_server_close { return 200,'ok' } 'skip empty lines',
+	[["\n\nGET /test1 HTTP/1.1\nHost:localhost\nConnection:close\n\n"], 200, { connection => 'close' }, 'ok' ],
+if ALL;
+
+test_server { return 200,'ok' } { max_header_size => 1024, read_size => 1024 }, 'reset too large',
+	[["GET /test1 HTTP/1.1\nHost:" .("x"x2048). "\nConnection:keep-alive\n\n"], 413, { connection => 'close' }, qr/Request Entity Too Large/ ],
+if ALL;
 
+test_server { return 200,'ok' } 'reset bad request',
+	[["GET /test1 HTTP/1\nHost:localhost\nConnection:keep-alive\n\n"], 400, { connection => 'close' }, qr/Bad Request/ ],
+if ALL;
 
 test_server {
 	my $s = shift;
 	my $r = shift;
 	return (
 		$r->method eq 'GET' ? 200 : 400,
-		"$r->[0]:$r->[1]:$r->[2]{host}",
+		"$r->[0]:$r->[1]:$r->[2]{host}".$r->headers->{'x-t+q'},
 		headers => {
 			'content-type' => 'text/plain',
 			'x-test' => $s->{__seq},
@@ -41,10 +55,9 @@ test_server {
 	[["GET /test1 HTTP/1.1\nHost:localhost\nConnection:keep-alive\n\n"],                          200, { 'x-test' => 1 }, "GET:/test1:localhost" ],
 	[["GET /test2 HTTP/1.1\nHost:localhost\nConnection:keep-alive\n\n"],                          200, { 'x-test' => 2 }, "GET:/test2:localhost" ],
 	[["METHOD /test3 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nContent-Length:4\n\ntest"], 400, { 'x-test' => 3 }, "METHOD:/test3:localhost" ],
-	$PARTIAL ? () : ([["GET /test4 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nX-t: x; q=\"".("\\x"x33000)."\"\n\n"], 200, { 'x-test' => 4 }, "GET:/test4:localhost" ]),
+	[["GET /test4 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nX-t: x; q=\"$bad\"\n\n"],      200, { 'x-test' => 4 }, "GET:/test4:localhost$bad_unescaped" ],
 if ALL;
 
-my $bad = '\x'x33000;
 test_server {
 	my $s = shift;
 	my $r = shift;
@@ -60,11 +73,11 @@ test_server {
 	[[qq{GET /test1 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*\n\t;q="\\"1\\"!=2"\n\n}],     200, { 'x-test' => 1 }, q{GET:/test1:localhost:*/* ;q="\"1\"!=2":"1"!=2} ], # "
 	[[qq{GET /test2 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*; q="1\\!=2"\n\n}],            200, { 'x-test' => 2 }, q{GET:/test2:localhost:*/*; q="1\\!=2":1!=2} ], # "
 	[[qq{GET /test3 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*; q="1\n\t2"\n\n}],            200, { 'x-test' => 3 }, q{GET:/test3:localhost:*/*; q="1 2":1 2} ], # "
-	[[qq{GET /test4 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*;\n\t q="1 2"\n\n}],            200, { 'x-test' => 4 }, q{GET:/test4:localhost:*/*; q="1 2":1 2} ], # "
+	[[qq{GET /test4 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*;\n\t q="1 2"\n\n}],           200, { 'x-test' => 4 }, q{GET:/test4:localhost:*/*; q="1 2":1 2} ], # "
 	[["GET /test5 HTTP/1.1\nHost:localhost\nConnection:keep-alive\n\n"],                                      200, { 'x-test' => 5 }, "GET:/test5:localhost::" ],
 	[["METHOD /test6 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nContent-Length:4\n\ntest"],             400, { 'x-test' => 6 }, "METHOD:/test6:localhost::" ],
 	[[qq{GET /test1 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*\n\t;q=123\n\n}],              200, { 'x-test' => 7 }, q{GET:/test1:localhost:*/* ;q=123:123} ], # "
-	$PARTIAL ? () : ([[qq{GET /test7 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*;\n\t q="$bad"\n\n}], 200, { 'x-test' => 8 }, qq{GET:/test7:localhost:*/*; q="$bad":"$bad"} ]), # "
+	[[qq{GET /test7 HTTP/1.1\nHost:localhost\nConnection:keep-alive\nAccept:*/*;\n\t q="$bad"\n\n}],          200, { 'x-test' => 8 }, qq{GET:/test7:localhost:*/*; q="$bad":$bad_unescaped} ], # "
 if ALL;
 
 test_server {