httpauth_8c_source.html

/*

 * Copyright (C) 2015 Michael Brown <mbrown@fensystems.co.uk>.

 *

 * This program is free software; you can redistribute it and/or

 * modify it under the terms of the GNU General Public License as

 * published by the Free Software Foundation; either version 2 of the

 * License, or any later version.

 *

 * This program is distributed in the hope that it will be useful, but

 * WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

 * General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program; if not, write to the Free Software

 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA

 * 02110-1301, USA.

 *

 * You can also choose to distribute this program under the terms of

 * the Unmodified Binary Distribution Licence (as given in the file

 * COPYING.UBDL), provided that you have satisfied its requirements.

 */


FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );

FILE_SECBOOT ( PERMITTED );


/**

 * @file

 *

 * Hyper Text Transfer Protocol (HTTP) authentication

 *

 */


#include <stdio.h>

#include <strings.h>

#include <errno.h>

#include <ipxe/http.h>


/**

 * Identify authentication scheme

 *

 * @v http              HTTP transaction

 * @v name              Scheme name

 * @ret auth            Authentication scheme, or NULL

 */


static struct http_authentication * http_authentication ( const char *name ) {

        struct http_authentication *auth;


        /* Identify authentication scheme */

        for_each_table_entry ( auth, HTTP_AUTHENTICATIONS ) {

                if ( strcasecmp ( name, auth->name ) == 0 )

                        return auth;

        }


        return NULL;

}


/**

 * Parse HTTP "WWW-Authenticate" header

 *

 * @v http              HTTP transaction

 * @v line              Remaining header line

 * @ret rc              Return status code

 */


static int http_parse_www_authenticate ( struct http_transaction *http,

                                         char *line ) {

        struct http_authentication *auth;

        char *name;

        int rc;


        /* Get scheme name */

        name = http_token ( &line, NULL );

        if ( ! name ) {

                DBGC ( http, "HTTP %p malformed WWW-Authenticate \"%s\"\n",

                       http, line );

                return -EPROTO;

        }


        /* Identify scheme */

        auth = http_authentication ( name );

        if ( ! auth ) {

                DBGC ( http, "HTTP %p unrecognised authentication scheme "

                       "\"%s\"\n", http, name );

                /* Ignore; the server may offer other schemes */

                return 0;

        }


        /* Use first supported scheme */

        if ( http->response.auth.auth )

                return 0;

        http->response.auth.auth = auth;


        /* Parse remaining header line */

        if ( ( rc = auth->parse ( http, line ) ) != 0 ) {

                DBGC ( http, "HTTP %p could not parse %s WWW-Authenticate "

                       "\"%s\": %s\n", http, name, line, strerror ( rc ) );

                return rc;

        }


        return 0;

}


/** HTTP "WWW-Authenticate" header */

struct http_response_header


http_response_www_authenticate __http_response_header = {

        .name = "WWW-Authenticate",

        .parse = http_parse_www_authenticate,

};


/**

 * Construct HTTP "Authorization" header

 *

 * @v http              HTTP transaction

 * @v buf               Buffer

 * @v len               Length of buffer

 * @ret len             Length of header value, or negative error

 */


static int http_format_authorization ( struct http_transaction *http,

                                       char *buf, size_t len ) {

        struct http_authentication *auth = http->request.auth.auth;

        size_t used;

        int auth_len;

        int rc;


        /* Do nothing unless we have an authentication scheme */

        if ( ! auth )

                return 0;


        /* Construct header */

        used = snprintf ( buf, len, "%s ", auth->name );

        auth_len = auth->format ( http, ( buf + used ),

                                  ( ( used < len ) ? ( len - used ) : 0 ) );

        if ( auth_len < 0 ) {

                rc = auth_len;

                return rc;

        }

        used += auth_len;


        return used;

}


/** HTTP "Authorization" header */


struct http_request_header http_request_authorization __http_request_header = {

        .name = "Authorization",

        .format = http_format_authorization,

};


NULL
#define NULL
NULL pointer (VOID *)
Definition Base.h:322

rc
struct arbelprm_rc_send_wqe rc
Definition arbel.h:3

name
const char * name
Definition ath9k_hw.c:1986

len
ring len
Length.
Definition dwmac.h:226

errno.h
Error codes.

DBGC
#define DBGC(...)
Definition compiler.h:505

FILE_LICENCE
#define FILE_LICENCE(_licence)
Declare a particular licence as applying to a file.
Definition compiler.h:896

EPROTO
#define EPROTO
Protocol error.
Definition errno.h:625

FILE_SECBOOT
#define FILE_SECBOOT(_status)
Declare a file's UEFI Secure Boot permission status.
Definition compiler.h:926

http.h
Hyper Text Transport Protocol.

__http_response_header
#define __http_response_header
Declare an HTTP response header.
Definition http.h:382

HTTP_AUTHENTICATIONS
#define HTTP_AUTHENTICATIONS
HTTP authentication scheme table.
Definition http.h:547

__http_request_header
#define __http_request_header
Declare an HTTP request header.
Definition http.h:246

http_authentication
static struct http_authentication * http_authentication(const char *name)
Identify authentication scheme.
Definition httpauth.c:46

http_parse_www_authenticate
static int http_parse_www_authenticate(struct http_transaction *http, char *line)
Parse HTTP "WWW-Authenticate" header.
Definition httpauth.c:65

http_format_authorization
static int http_format_authorization(struct http_transaction *http, char *buf, size_t len)
Construct HTTP "Authorization" header.
Definition httpauth.c:118

http_token
char * http_token(char **line, char **value)
Get HTTP response token.
Definition httpcore.c:196

strings.h
String functions.

stdio.h

strerror
char * strerror(int errno)
Retrieve string representation of error number.
Definition strerror.c:79

strcasecmp
int strcasecmp(const char *first, const char *second)
Compare case-insensitive strings.
Definition string.c:209

http_authentication
An HTTP authentication scheme.
Definition http.h:519

http_authentication::format
int(* format)(struct http_transaction *http, char *buf, size_t len)
Construct remaining "Authorization" header line.
Definition http.h:542

http_authentication::parse
int(* parse)(struct http_transaction *http, char *line)
Parse remaining "WWW-Authenticate" header line.
Definition http.h:528

http_authentication::name
const char * name
Name (e.g.
Definition http.h:521

http_request_auth::auth
struct http_authentication * auth
Authentication scheme (if any)
Definition http.h:190

http_request_header
An HTTP request header.
Definition http.h:227

http_request::auth
struct http_request_auth auth
Authentication descriptor.
Definition http.h:223

http_response_auth::auth
struct http_authentication * auth
Authentication scheme (if any)
Definition http.h:298

http_response_header
An HTTP response header.
Definition http.h:365

http_response::auth
struct http_response_auth auth
Authorization descriptor.
Definition http.h:347

http_transaction
An HTTP transaction.
Definition http.h:416

http_transaction::response
struct http_response response
Response.
Definition http.h:439

http_transaction::request
struct http_request request
Request.
Definition http.h:437

for_each_table_entry
#define for_each_table_entry(pointer, table)
Iterate through all entries within a linker table.
Definition tables.h:386

snprintf
int snprintf(char *buf, size_t size, const char *fmt,...)
Write a formatted string to a buffer.
Definition vsprintf.c:383