/src/h2o/lib/http2/frame.c
Line | Count | Source |
1 | | /* |
2 | | * Copyright (c) 2014 DeNA Co., Ltd. |
3 | | * |
4 | | * Permission is hereby granted, free of charge, to any person obtaining a copy |
5 | | * of this software and associated documentation files (the "Software"), to |
6 | | * deal in the Software without restriction, including without limitation the |
7 | | * rights to use, copy, modify, merge, publish, distribute, sublicense, and/or |
8 | | * sell copies of the Software, and to permit persons to whom the Software is |
9 | | * furnished to do so, subject to the following conditions: |
10 | | * |
11 | | * The above copyright notice and this permission notice shall be included in |
12 | | * all copies or substantial portions of the Software. |
13 | | * |
14 | | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR |
15 | | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, |
16 | | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE |
17 | | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER |
18 | | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING |
19 | | * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS |
20 | | * IN THE SOFTWARE. |
21 | | */ |
22 | | #include "h2o/http2_common.h" |
23 | | |
24 | | const h2o_http2_priority_t h2o_http2_default_priority = { |
25 | | 0, /* exclusive */ |
26 | | 0, /* dependency */ |
27 | | 16 /* weight */ |
28 | | }; |
29 | | |
30 | | const h2o_http2_settings_t H2O_HTTP2_SETTINGS_DEFAULT = { |
31 | | /* header_table_size */ 4096, |
32 | | /* enable_push */ 1, |
33 | | /* max_concurrent_streams */ UINT32_MAX, |
34 | | /* initial_window_size */ 65535, |
35 | | /* max_frame_size */ 16384}; |
36 | | |
37 | | int h2o_http2_update_peer_settings(h2o_http2_settings_t *settings, const uint8_t *src, size_t len, const char **err_desc) |
38 | 8.30k | { |
39 | 24.3k | for (; len >= 6; len -= 6, src += 6) { |
40 | 16.2k | uint16_t identifier = h2o_http2_decode16u(src); |
41 | 16.2k | uint32_t value = h2o_http2_decode32u(src + 2); |
42 | 16.2k | switch (identifier) { |
43 | 0 | #define SET(label, member, min, max, err_code) \ |
44 | 8.96k | case H2O_HTTP2_SETTINGS_##label: \ |
45 | 8.96k | if (!(min <= value && value <= max)) { \ |
46 | 158 | *err_desc = "invalid SETTINGS frame"; \ |
47 | 158 | return err_code; \ |
48 | 158 | } \ |
49 | 8.96k | settings->member = value; \ |
50 | 8.80k | break |
51 | 559 | SET(HEADER_TABLE_SIZE, header_table_size, 0, UINT32_MAX, 0); |
52 | 236 | SET(ENABLE_PUSH, enable_push, 0, 1, H2O_HTTP2_ERROR_PROTOCOL); |
53 | 1.94k | SET(MAX_CONCURRENT_STREAMS, max_concurrent_streams, 0, UINT32_MAX, 0); |
54 | 6.01k | SET(INITIAL_WINDOW_SIZE, initial_window_size, 0, 0x7fffffff, H2O_HTTP2_ERROR_FLOW_CONTROL); |
55 | 203 | SET(MAX_FRAME_SIZE, max_frame_size, 16384, 16777215, H2O_HTTP2_ERROR_PROTOCOL); |
56 | 0 | #undef SET |
57 | 7.27k | default: |
58 | | /* ignore unknown (5.5) */ |
59 | 7.27k | break; |
60 | 16.2k | } |
61 | 16.2k | } |
62 | | |
63 | 8.15k | if (len != 0) |
64 | 63 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
65 | 8.08k | return 0; |
66 | 8.15k | } |
67 | | |
68 | | uint8_t *h2o_http2_encode_frame_header(uint8_t *dst, size_t length, uint8_t type, uint8_t flags, int32_t stream_id) |
69 | 66.4k | { |
70 | 66.4k | if (length > 0xffffff) |
71 | 0 | h2o_fatal("invalid length"); |
72 | | |
73 | 66.4k | dst = h2o_http2_encode24u(dst, (uint32_t)length); |
74 | 66.4k | *dst++ = type; |
75 | 66.4k | *dst++ = flags; |
76 | 66.4k | dst = h2o_http2_encode32u(dst, stream_id); |
77 | | |
78 | 66.4k | return dst; |
79 | 66.4k | } |
80 | | |
81 | | static uint8_t *allocate_frame(h2o_buffer_t **buf, size_t length, uint8_t type, uint8_t flags, int32_t stream_id) |
82 | 46.7k | { |
83 | 46.7k | h2o_iovec_t alloced = h2o_buffer_reserve(buf, H2O_HTTP2_FRAME_HEADER_SIZE + length); |
84 | 46.7k | (*buf)->size += H2O_HTTP2_FRAME_HEADER_SIZE + length; |
85 | 46.7k | return h2o_http2_encode_frame_header((uint8_t *)alloced.base, length, type, flags, stream_id); |
86 | 46.7k | } |
87 | | |
88 | | void h2o_http2__encode_rst_stream_frame(h2o_buffer_t **buf, uint32_t stream_id, int errnum) |
89 | 24.2k | { |
90 | 24.2k | uint8_t *dst = allocate_frame(buf, 4, H2O_HTTP2_FRAME_TYPE_RST_STREAM, 0, stream_id); |
91 | 24.2k | dst = h2o_http2_encode32u(dst, errnum); |
92 | 24.2k | } |
93 | | |
94 | | void h2o_http2_encode_ping_frame(h2o_buffer_t **buf, int is_ack, const uint8_t *data) |
95 | 216 | { |
96 | 216 | uint8_t *dst = allocate_frame(buf, 8, H2O_HTTP2_FRAME_TYPE_PING, is_ack ? H2O_HTTP2_FRAME_FLAG_ACK : 0, 0); |
97 | 216 | memcpy(dst, data, 8); |
98 | 216 | dst += 8; |
99 | 216 | } |
100 | | |
101 | | void h2o_http2_encode_goaway_frame(h2o_buffer_t **buf, uint32_t last_stream_id, int errnum, h2o_iovec_t additional_data) |
102 | 4.76k | { |
103 | 4.76k | uint8_t *dst = allocate_frame(buf, 8 + additional_data.len, H2O_HTTP2_FRAME_TYPE_GOAWAY, 0, 0); |
104 | 4.76k | dst = h2o_http2_encode32u(dst, last_stream_id); |
105 | 4.76k | dst = h2o_http2_encode32u(dst, (uint32_t)-errnum); |
106 | 4.76k | h2o_memcpy(dst, additional_data.base, additional_data.len); |
107 | 4.76k | } |
108 | | |
109 | | void h2o_http2_encode_settings_frame(h2o_buffer_t **buf, h2o_http2_settings_kvpair_t *settings, size_t num_settings) |
110 | 8.51k | { |
111 | 8.51k | uint8_t *dst = allocate_frame(buf, 6 * num_settings, H2O_HTTP2_FRAME_TYPE_SETTINGS, 0, 0); |
112 | 25.5k | for (size_t i = 0; i < num_settings; ++i) { |
113 | 17.0k | dst = h2o_http2_encode16u(dst, settings[i].key); |
114 | 17.0k | dst = h2o_http2_encode32u(dst, settings[i].value); |
115 | 17.0k | } |
116 | 8.51k | } |
117 | | |
118 | | void h2o_http2_encode_window_update_frame(h2o_buffer_t **buf, uint32_t stream_id, int32_t window_size_increment) |
119 | 9.00k | { |
120 | 9.00k | uint8_t *dst = allocate_frame(buf, 4, H2O_HTTP2_FRAME_TYPE_WINDOW_UPDATE, 0, stream_id); |
121 | 9.00k | dst = h2o_http2_encode32u(dst, window_size_increment); |
122 | 9.00k | } |
123 | | |
124 | | void h2o_http2_encode_origin_frame(h2o_buffer_t **buf, h2o_iovec_t payload) |
125 | 0 | { |
126 | 0 | uint8_t *dst = allocate_frame(buf, payload.len, H2O_HTTP2_FRAME_TYPE_ORIGIN, 0, 0); |
127 | 0 | memcpy(dst, payload.base, payload.len); |
128 | 0 | } |
129 | | |
130 | | ssize_t h2o_http2_decode_frame(h2o_http2_frame_t *frame, const uint8_t *src, size_t len, size_t max_frame_size, |
131 | | const char **err_desc) |
132 | 100k | { |
133 | 100k | if (len < H2O_HTTP2_FRAME_HEADER_SIZE) |
134 | 1.83k | return H2O_HTTP2_ERROR_INCOMPLETE; |
135 | | |
136 | 99.0k | frame->length = h2o_http2_decode24u(src); |
137 | 99.0k | frame->type = src[3]; |
138 | 99.0k | frame->flags = src[4]; |
139 | 99.0k | frame->stream_id = h2o_http2_decode32u(src + 5) & 0x7fffffff; |
140 | | |
141 | 99.0k | if (frame->length > max_frame_size) |
142 | 551 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
143 | | |
144 | 98.4k | if (len < H2O_HTTP2_FRAME_HEADER_SIZE + frame->length) |
145 | 2.17k | return H2O_HTTP2_ERROR_INCOMPLETE; |
146 | | |
147 | 96.3k | frame->payload = src + H2O_HTTP2_FRAME_HEADER_SIZE; |
148 | | |
149 | 96.3k | return H2O_HTTP2_FRAME_HEADER_SIZE + frame->length; |
150 | 98.4k | } |
151 | | |
152 | | int h2o_http2_decode_data_payload(h2o_http2_data_payload_t *payload, const h2o_http2_frame_t *frame, const char **err_desc) |
153 | 16.0k | { |
154 | 16.0k | if (frame->stream_id == 0) { |
155 | 31 | *err_desc = "invalid stream id in DATA frame"; |
156 | 31 | return H2O_HTTP2_ERROR_PROTOCOL; |
157 | 31 | } |
158 | | |
159 | 16.0k | if ((frame->flags & H2O_HTTP2_FRAME_FLAG_PADDED) != 0) { |
160 | 1.24k | uint8_t padding_length; |
161 | 1.24k | if (frame->length < 1) { |
162 | 13 | *err_desc = "invalid DATA frame"; |
163 | 13 | return H2O_HTTP2_ERROR_PROTOCOL; |
164 | 13 | } |
165 | 1.23k | padding_length = frame->payload[0]; |
166 | 1.23k | if (frame->length < 1 + padding_length) { |
167 | 11 | *err_desc = "invalid DATA frame"; |
168 | 11 | return H2O_HTTP2_ERROR_PROTOCOL; |
169 | 11 | } |
170 | 1.22k | payload->data = frame->payload + 1; |
171 | 1.22k | payload->length = frame->length - (1 + padding_length); |
172 | 14.7k | } else { |
173 | 14.7k | payload->data = frame->payload; |
174 | 14.7k | payload->length = frame->length; |
175 | 14.7k | } |
176 | 16.0k | return 0; |
177 | 16.0k | } |
178 | | |
179 | | static const uint8_t *decode_priority(h2o_http2_priority_t *priority, const uint8_t *src) |
180 | 50.8k | { |
181 | 50.8k | uint32_t u4 = h2o_http2_decode32u(src); |
182 | 50.8k | src += 4; |
183 | 50.8k | priority->exclusive = u4 >> 31; |
184 | 50.8k | priority->dependency = u4 & 0x7fffffff; |
185 | 50.8k | priority->weight = (uint16_t)*src++ + 1; |
186 | 50.8k | return src; |
187 | 50.8k | } |
188 | | |
189 | | int h2o_http2_decode_headers_payload(h2o_http2_headers_payload_t *payload, const h2o_http2_frame_t *frame, const char **err_desc) |
190 | 13.4k | { |
191 | 13.4k | const uint8_t *src = frame->payload, *src_end = frame->payload + frame->length; |
192 | | |
193 | 13.4k | if (frame->stream_id == 0) { |
194 | 3 | *err_desc = "invalid stream id in HEADERS frame"; |
195 | 3 | return H2O_HTTP2_ERROR_PROTOCOL; |
196 | 3 | } |
197 | | |
198 | 13.4k | if ((frame->flags & H2O_HTTP2_FRAME_FLAG_PADDED) != 0) { |
199 | 1.01k | uint32_t padlen; |
200 | 1.01k | if (src == src_end) { |
201 | 6 | *err_desc = "invalid HEADERS frame"; |
202 | 6 | return H2O_HTTP2_ERROR_PROTOCOL; |
203 | 6 | } |
204 | 1.00k | padlen = *src++; |
205 | 1.00k | if (src_end - src < padlen) { |
206 | 12 | *err_desc = "invalid HEADERS frame"; |
207 | 12 | return H2O_HTTP2_ERROR_PROTOCOL; |
208 | 12 | } |
209 | 997 | src_end -= padlen; |
210 | 997 | } |
211 | | |
212 | 13.4k | if ((frame->flags & H2O_HTTP2_FRAME_FLAG_PRIORITY) != 0) { |
213 | 10.9k | if (src_end - src < 5) |
214 | 11 | return -1; |
215 | 10.8k | src = decode_priority(&payload->priority, src); |
216 | 10.8k | } else { |
217 | 2.51k | payload->priority = h2o_http2_default_priority; |
218 | 2.51k | } |
219 | | |
220 | 13.4k | payload->headers = src; |
221 | 13.4k | payload->headers_len = src_end - src; |
222 | | |
223 | 13.4k | return 0; |
224 | 13.4k | } |
225 | | |
226 | | int h2o_http2_decode_priority_payload(h2o_http2_priority_t *payload, const h2o_http2_frame_t *frame, const char **err_desc) |
227 | 39.9k | { |
228 | 39.9k | if (frame->stream_id == 0) { |
229 | 11 | *err_desc = "invalid stream id in PRIORITY frame"; |
230 | 11 | return H2O_HTTP2_ERROR_PROTOCOL; |
231 | 11 | } |
232 | 39.9k | if (frame->length != 5) { |
233 | 48 | *err_desc = "invalid PRIORITY frame"; |
234 | 48 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
235 | 48 | } |
236 | | |
237 | 39.9k | decode_priority(payload, frame->payload); |
238 | 39.9k | return 0; |
239 | 39.9k | } |
240 | | |
241 | | int h2o_http2_decode_rst_stream_payload(h2o_http2_rst_stream_payload_t *payload, const h2o_http2_frame_t *frame, |
242 | | const char **err_desc) |
243 | 1.18k | { |
244 | 1.18k | if (frame->stream_id == 0) { |
245 | 4 | *err_desc = "invalid stream id in RST_STREAM frame"; |
246 | 4 | return H2O_HTTP2_ERROR_PROTOCOL; |
247 | 4 | } |
248 | 1.18k | if (frame->length != sizeof(payload->error_code)) { |
249 | 31 | *err_desc = "invalid RST_STREAM frame"; |
250 | 31 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
251 | 31 | } |
252 | | |
253 | 1.14k | payload->error_code = h2o_http2_decode32u(frame->payload); |
254 | 1.14k | return 0; |
255 | 1.18k | } |
256 | | |
257 | | int h2o_http2_decode_ping_payload(h2o_http2_ping_payload_t *payload, const h2o_http2_frame_t *frame, const char **err_desc) |
258 | 689 | { |
259 | 689 | if (frame->stream_id != 0) { |
260 | 33 | *err_desc = "invalid PING frame"; |
261 | 33 | return H2O_HTTP2_ERROR_PROTOCOL; |
262 | 33 | } |
263 | 656 | if (frame->length != sizeof(payload->data)) { |
264 | 4 | *err_desc = "invalid PING frame"; |
265 | 4 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
266 | 4 | } |
267 | | |
268 | 652 | memcpy(payload->data, frame->payload, sizeof(payload->data)); |
269 | 652 | return 0; |
270 | 656 | } |
271 | | |
272 | | int h2o_http2_decode_goaway_payload(h2o_http2_goaway_payload_t *payload, const h2o_http2_frame_t *frame, const char **err_desc) |
273 | 322 | { |
274 | 322 | if (frame->stream_id != 0) { |
275 | 37 | *err_desc = "invalid stream id in GOAWAY frame"; |
276 | 37 | return H2O_HTTP2_ERROR_PROTOCOL; |
277 | 37 | } |
278 | 285 | if (frame->length < 8) { |
279 | 5 | *err_desc = "invalid GOAWAY frame"; |
280 | 5 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
281 | 5 | } |
282 | | |
283 | 280 | payload->last_stream_id = h2o_http2_decode32u(frame->payload) & 0x7fffffff; |
284 | 280 | payload->error_code = h2o_http2_decode32u(frame->payload + 4); |
285 | 280 | if ((payload->debug_data.len = frame->length - 8) != 0) |
286 | 175 | payload->debug_data.base = (char *)frame->payload + 8; |
287 | 105 | else |
288 | 105 | payload->debug_data.base = NULL; |
289 | | |
290 | 280 | return 0; |
291 | 285 | } |
292 | | |
293 | | int h2o_http2_decode_window_update_payload(h2o_http2_window_update_payload_t *payload, const h2o_http2_frame_t *frame, |
294 | | const char **err_desc, int *err_is_stream_level) |
295 | 12.2k | { |
296 | 12.2k | if (frame->length != 4) { |
297 | 18 | *err_is_stream_level = 0; |
298 | 18 | *err_desc = "invalid WINDOW_UPDATE frame"; |
299 | 18 | return H2O_HTTP2_ERROR_FRAME_SIZE; |
300 | 18 | } |
301 | | |
302 | 12.2k | payload->window_size_increment = h2o_http2_decode32u(frame->payload) & 0x7fffffff; |
303 | 12.2k | if (payload->window_size_increment == 0) { |
304 | 8.42k | *err_is_stream_level = frame->stream_id != 0; |
305 | 8.42k | *err_desc = "invalid WINDOW_UPDATE frame"; |
306 | 8.42k | return H2O_HTTP2_ERROR_PROTOCOL; |
307 | 8.42k | } |
308 | | |
309 | 3.80k | return 0; |
310 | 12.2k | } |