httpbasic_8c_source.html

/*

 * Copyright (C) 2015 Michael Brown <mbrown@fensystems.co.uk>.

 *

 * This program is free software; you can redistribute it and/or

 * modify it under the terms of the GNU General Public License as

 * published by the Free Software Foundation; either version 2 of the

 * License, or any later version.

 *

 * This program is distributed in the hope that it will be useful, but

 * WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

 * General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program; if not, write to the Free Software

 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA

 * 02110-1301, USA.

 *

 * You can also choose to distribute this program under the terms of

 * the Unmodified Binary Distribution Licence (as given in the file

 * COPYING.UBDL), provided that you have satisfied its requirements.

 */


FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );

FILE_SECBOOT ( PERMITTED );


/**

 * @file

 *

 * Hyper Text Transfer Protocol (HTTP) Basic authentication

 *

 */


#include <stdio.h>

#include <errno.h>

#include <ipxe/uri.h>

#include <ipxe/base64.h>

#include <ipxe/http.h>


/* Disambiguate the various error causes */

#define EACCES_USERNAME __einfo_error ( EINFO_EACCES_USERNAME )


#define EINFO_EACCES_USERNAME                                           \

        __einfo_uniqify ( EINFO_EACCES, 0x01,                           \

                          "No username available for Basic authentication" )


/**

 * Parse HTTP "WWW-Authenticate" header for Basic authentication

 *

 * @v http              HTTP transaction

 * @v line              Remaining header line

 * @ret rc              Return status code

 */


static int http_parse_basic_auth ( struct http_transaction *http,

                                   char *line __unused ) {


        /* Allow HTTP request to be retried if the request had not

         * already tried authentication.

         */

        if ( ! http->request.auth.auth )

                http->response.flags |= HTTP_RESPONSE_RETRY;


        return 0;

}


/**

 * Perform HTTP Basic authentication

 *

 * @v http              HTTP transaction

 * @ret rc              Return status code

 */


static int http_basic_authenticate ( struct http_transaction *http ) {

        struct http_request_auth_basic *req = &http->request.auth.basic;


        /* Record username and password */

        if ( ! http->uri->user ) {

                DBGC ( http, "HTTP %p has no username for Basic "

                       "authentication\n", http );

                return -EACCES_USERNAME;

        }

        req->username = http->uri->user;

        req->password = ( http->uri->password ? http->uri->password : "" );


        return 0;

}


/**

 * Construct HTTP "Authorization" header for Basic authentication

 *

 * @v http              HTTP transaction

 * @v buf               Buffer

 * @v len               Length of buffer

 * @ret len             Length of header value, or negative error

 */


static int http_format_basic_auth ( struct http_transaction *http,

                                    char *buf, size_t len ) {

        struct http_request_auth_basic *req = &http->request.auth.basic;

        size_t user_pw_len = ( strlen ( req->username ) + 1 /* ":" */ +

                               strlen ( req->password ) );

        char user_pw[ user_pw_len + 1 /* NUL */ ];


        /* Sanity checks */

        assert ( req->username != NULL );

        assert ( req->password != NULL );


        /* Construct "user:password" string */

        snprintf ( user_pw, sizeof ( user_pw ), "%s:%s",

                   req->username, req->password );


        /* Construct response */

        return base64_encode ( user_pw, user_pw_len, buf, len );

}


/** HTTP Basic authentication scheme */


struct http_authentication http_basic_auth __http_authentication = {

        .name = "Basic",

        .parse = http_parse_basic_auth,

        .authenticate = http_basic_authenticate,

        .format = http_format_basic_auth,

};


/* Drag in HTTP authentication support */

REQUIRING_SYMBOL ( http_basic_auth );

REQUIRE_OBJECT ( httpauth );

NULL
#define NULL
NULL pointer (VOID *)
Definition Base.h:322

assert
#define assert(condition)
Assert a condition at run-time.
Definition assert.h:50

base64_encode
size_t base64_encode(const void *raw, size_t raw_len, char *data, size_t len)
Base64-encode data.
Definition base64.c:52

base64.h
Base64 encoding.

len
ring len
Length.
Definition dwmac.h:226

errno.h
Error codes.

__unused
#define __unused
Declare a variable or data structure as unused.
Definition compiler.h:573

DBGC
#define DBGC(...)
Definition compiler.h:505

FILE_LICENCE
#define FILE_LICENCE(_licence)
Declare a particular licence as applying to a file.
Definition compiler.h:896

REQUIRE_OBJECT
#define REQUIRE_OBJECT(object)
Require an object.
Definition compiler.h:202

FILE_SECBOOT
#define FILE_SECBOOT(_status)
Declare a file's UEFI Secure Boot permission status.
Definition compiler.h:926

REQUIRING_SYMBOL
#define REQUIRING_SYMBOL(symbol)
Specify the file's requiring symbol.
Definition compiler.h:140

http.h
Hyper Text Transport Protocol.

HTTP_RESPONSE_RETRY
@ HTTP_RESPONSE_RETRY
Transaction may be retried on failure.
Definition http.h:361

__http_authentication
#define __http_authentication
Declare an HTTP authentication scheme.
Definition http.h:551

http_basic_authenticate
static int http_basic_authenticate(struct http_transaction *http)
Perform HTTP Basic authentication.
Definition httpbasic.c:71

EACCES_USERNAME
#define EACCES_USERNAME
Definition httpbasic.c:41

http_format_basic_auth
static int http_format_basic_auth(struct http_transaction *http, char *buf, size_t len)
Construct HTTP "Authorization" header for Basic authentication.
Definition httpbasic.c:94

http_parse_basic_auth
static int http_parse_basic_auth(struct http_transaction *http, char *line __unused)
Parse HTTP "WWW-Authenticate" header for Basic authentication.
Definition httpbasic.c:53

stdio.h

strlen
size_t strlen(const char *src)
Get length of string.
Definition string.c:244

http_authentication
An HTTP authentication scheme.
Definition http.h:519

http_request_auth_basic
HTTP request Basic authentication descriptor.
Definition http.h:154

http_request_auth_basic::username
const char * username
Username.
Definition http.h:156

http_request_auth_basic::password
const char * password
Password.
Definition http.h:158

http_request_auth::auth
struct http_authentication * auth
Authentication scheme (if any)
Definition http.h:190

http_request_auth::basic
struct http_request_auth_basic basic
Basic authentication descriptor.
Definition http.h:194

http_request::auth
struct http_request_auth auth
Authentication descriptor.
Definition http.h:223

http_response::flags
unsigned int flags
Flags.
Definition http.h:351

http_transaction
An HTTP transaction.
Definition http.h:416

http_transaction::response
struct http_response response
Response.
Definition http.h:439

http_transaction::uri
struct uri * uri
Request URI.
Definition http.h:435

http_transaction::request
struct http_request request
Request.
Definition http.h:437

uri::user
const char * user
User name.
Definition uri.h:73

uri::password
const char * password
Password.
Definition uri.h:75

uri.h
Uniform Resource Identifiers.

snprintf
int snprintf(char *buf, size_t size, const char *fmt,...)
Write a formatted string to a buffer.
Definition vsprintf.c:383