mirror/curl
2
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2025-04-24 16:40:32 +08:00
Code Issues Packages Projects Releases Wiki Activity

parse_proxy: use the URL parser API

Browse Source 
As we treat a given proxy as a URL we should use the unified URL parser
to extract the parts out of it.

Closes #3878
This commit is contained in:
Daniel Stenberg 2019-05-12 23:46:41 +02:00
parent e832d1ef74
commit ee68bbe29c
No known key found for this signature in database
GPG Key ID: 5CC908FDB71E12C2
2 changed files with 84 additions and 149 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

231
lib/url.c
View File

@ -2317,46 +2317,55 @@ static CURLcode parse_proxy(struct Curl_easy *data,
struct connectdata *conn, char *proxy, struct connectdata *conn, char *proxy,
curl_proxytype proxytype) curl_proxytype proxytype)
{ {
char *prox_portno;
char *endofprot;
/* We use 'proxyptr' to point to the proxy name from now on... */
char *proxyptr;
char *portptr; char *portptr;
char *atsign;
long port = -1; long port = -1;
char *proxyuser = NULL; char *proxyuser = NULL;
char *proxypasswd = NULL; char *proxypasswd = NULL;
char *host;
bool sockstype; bool sockstype;
CURLUcode uc;
struct proxy_info *proxyinfo;
CURLU *uhp = curl_url();
CURLcode result = CURLE_OK;
char *scheme = NULL;
/* We do the proxy host string parsing here. We want the host name and the /* When parsing the proxy, allowing non-supported schemes since we have
* port name. Accept a protocol:// prefix these made up ones for proxies. Guess scheme for URLs without it. */
*/ uc = curl_url_set(uhp, CURLUPART_URL, proxy,
CURLU_NON_SUPPORT_SCHEME|CURLU_GUESS_SCHEME);
if(!uc) {
/* parsed okay as a URL */
uc = curl_url_get(uhp, CURLUPART_SCHEME, &scheme, 0);
if(uc) {
result = CURLE_OUT_OF_MEMORY;
goto error;
}
/* Parse the protocol part if present */ if(strcasecompare("https", scheme))
endofprot = strstr(proxy, "://");
if(endofprot) {
proxyptr = endofprot + 3;
if(checkprefix("https", proxy))
proxytype = CURLPROXY_HTTPS; proxytype = CURLPROXY_HTTPS;
else if(checkprefix("socks5h", proxy)) else if(strcasecompare("socks5h", scheme))
proxytype = CURLPROXY_SOCKS5_HOSTNAME; proxytype = CURLPROXY_SOCKS5_HOSTNAME;
else if(checkprefix("socks5", proxy)) else if(strcasecompare("socks5", scheme))
proxytype = CURLPROXY_SOCKS5; proxytype = CURLPROXY_SOCKS5;
else if(checkprefix("socks4a", proxy)) else if(strcasecompare("socks4a", scheme))
proxytype = CURLPROXY_SOCKS4A; proxytype = CURLPROXY_SOCKS4A;
else if(checkprefix("socks4", proxy) || checkprefix("socks", proxy)) else if(strcasecompare("socks4", scheme) ||
strcasecompare("socks", scheme))
proxytype = CURLPROXY_SOCKS4; proxytype = CURLPROXY_SOCKS4;
else if(checkprefix("http:", proxy)) else if(strcasecompare("http", scheme))
; /* leave it as HTTP or HTTP/1.0 */ ; /* leave it as HTTP or HTTP/1.0 */
else { else {
/* Any other xxx:// reject! */ /* Any other xxx:// reject! */
failf(data, "Unsupported proxy scheme for \'%s\'", proxy); failf(data, "Unsupported proxy scheme for \'%s\'", proxy);
return CURLE_COULDNT_CONNECT; result = CURLE_COULDNT_CONNECT;
goto error;
} }
} }
else else {
proxyptr = proxy; /* No xxx:// head: It's a HTTP proxy */ failf(data, "Unsupported proxy syntax in \'%s\'", proxy);
result = CURLE_COULDNT_RESOLVE_PROXY;
goto error;
}
#ifdef USE_SSL #ifdef USE_SSL
if(!(Curl_ssl->supports & SSLSUPP_HTTPS_PROXY)) if(!(Curl_ssl->supports & SSLSUPP_HTTPS_PROXY))
@ -2364,93 +2373,44 @@ static CURLcode parse_proxy(struct Curl_easy *data,
if(proxytype == CURLPROXY_HTTPS) { if(proxytype == CURLPROXY_HTTPS) {
failf(data, "Unsupported proxy \'%s\', libcurl is built without the " failf(data, "Unsupported proxy \'%s\', libcurl is built without the "
"HTTPS-proxy support.", proxy); "HTTPS-proxy support.", proxy);
return CURLE_NOT_BUILT_IN; result = CURLE_NOT_BUILT_IN;
goto error;
} }
sockstype = proxytype == CURLPROXY_SOCKS5_HOSTNAME || sockstype =
proxytype == CURLPROXY_SOCKS5 || proxytype == CURLPROXY_SOCKS5_HOSTNAME ||
proxytype == CURLPROXY_SOCKS4A || proxytype == CURLPROXY_SOCKS5 ||
proxytype == CURLPROXY_SOCKS4; proxytype == CURLPROXY_SOCKS4A ||
proxytype == CURLPROXY_SOCKS4;
proxyinfo = sockstype ? &conn->socks_proxy : &conn->http_proxy;
proxyinfo->proxytype = proxytype;
/* Is there a username and password given in this proxy url? */ /* Is there a username and password given in this proxy url? */
atsign = strchr(proxyptr, '@'); curl_url_get(uhp, CURLUPART_USER, &proxyuser, CURLU_URLDECODE);
if(atsign) { curl_url_get(uhp, CURLUPART_PASSWORD, &proxypasswd, CURLU_URLDECODE);
CURLcode result = if(proxyuser || proxypasswd) {
Curl_parse_login_details(proxyptr, atsign - proxyptr, Curl_safefree(proxyinfo->user);
&proxyuser, &proxypasswd, NULL); proxyinfo->user = proxyuser;
if(result) Curl_safefree(proxyinfo->passwd);
return result; if(!proxypasswd) {
proxyptr = atsign + 1; proxypasswd = strdup("");
if(!proxypasswd) {
result = CURLE_OUT_OF_MEMORY;
goto error;
}
}
proxyinfo->passwd = proxypasswd;
conn->bits.proxy_user_passwd = TRUE; /* enable it */
} }
/* start scanning for port number at this point */ curl_url_get(uhp, CURLUPART_PORT, &portptr, 0);
portptr = proxyptr;
/* detect and extract RFC6874-style IPv6-addresses */ if(portptr) {
if(*proxyptr == '[') { port = strtol(portptr, NULL, 10);
char *ptr = ++proxyptr; /* advance beyond the initial bracket */ free(portptr);
while(*ptr && (ISXDIGIT(*ptr) || (*ptr == ':') || (*ptr == '.')))
ptr++;
if(*ptr == '%') {
/* There might be a zone identifier */
if(strncmp("%25", ptr, 3))
infof(data, "Please URL encode %% as %%25, see RFC 6874.\n");
ptr++;
/* Allow unreserved characters as defined in RFC 3986 */
while(*ptr && (ISALPHA(*ptr) || ISXDIGIT(*ptr) || (*ptr == '-') ||
(*ptr == '.') || (*ptr == '_') || (*ptr == '~')))
ptr++;
}
if(*ptr == ']')
/* yeps, it ended nicely with a bracket as well */
*ptr++ = 0;
else
infof(data, "Invalid IPv6 address format\n");
portptr = ptr;
/* Note that if this didn't end with a bracket, we still advanced the
* proxyptr first, but I can't see anything wrong with that as no host
* name nor a numeric can legally start with a bracket.
*/
}
/* Get port number off proxy.server.com:1080 */
prox_portno = strchr(portptr, ':');
if(prox_portno) {
char *endp = NULL;
*prox_portno = 0x0; /* cut off number from host name */
prox_portno ++;
/* now set the local port number */
port = strtol(prox_portno, &endp, 10);
if((endp && *endp && (*endp != '/') && (*endp != ' ')) ||
(port < 0) || (port > 65535)) {
/* meant to detect for example invalid IPv6 numerical addresses without
brackets: "2a00:fac0:a000::7:13". Accept a trailing slash only
because we then allow "URL style" with the number followed by a
slash, used in curl test cases already. Space is also an acceptable
terminating symbol. */
infof(data, "No valid port number in proxy string (%s)\n",
prox_portno);
}
else
conn->port = port;
} }
else { else {
if(proxyptr[0]=='/') {
/* If the first character in the proxy string is a slash, fail
immediately. The following code will otherwise clear the string which
will lead to code running as if no proxy was set! */
Curl_safefree(proxyuser);
Curl_safefree(proxypasswd);
return CURLE_COULDNT_RESOLVE_PROXY;
}
/* without a port number after the host name, some people seem to use
a slash so we strip everything from the first slash */
atsign = strchr(proxyptr, '/');
if(atsign)
*atsign = '\0'; /* cut off path part from host name */
if(data->set.proxyport) if(data->set.proxyport)
/* None given in the proxy string, then get the default one if it is /* None given in the proxy string, then get the default one if it is
given */ given */
@ -2462,57 +2422,32 @@ static CURLcode parse_proxy(struct Curl_easy *data,
port = CURL_DEFAULT_PROXY_PORT; port = CURL_DEFAULT_PROXY_PORT;
} }
} }
if(port >= 0) {
if(*proxyptr) { proxyinfo->port = port;
struct proxy_info *proxyinfo = if(conn->port < 0 || sockstype || !conn->socks_proxy.host.rawalloc)
sockstype ? &conn->socks_proxy : &conn->http_proxy; conn->port = port;
proxyinfo->proxytype = proxytype;
if(proxyuser) {
/* found user and password, rip them out. note that we are unescaping
them, as there is otherwise no way to have a username or password
with reserved characters like ':' in them. */
Curl_safefree(proxyinfo->user);
proxyinfo->user = curl_easy_unescape(data, proxyuser, 0, NULL);
Curl_safefree(proxyuser);
if(!proxyinfo->user) {
Curl_safefree(proxypasswd);
return CURLE_OUT_OF_MEMORY;
}
Curl_safefree(proxyinfo->passwd);
if(proxypasswd && strlen(proxypasswd) < MAX_CURL_PASSWORD_LENGTH)
proxyinfo->passwd = curl_easy_unescape(data, proxypasswd, 0, NULL);
else
proxyinfo->passwd = strdup("");
Curl_safefree(proxypasswd);
if(!proxyinfo->passwd)
return CURLE_OUT_OF_MEMORY;
conn->bits.proxy_user_passwd = TRUE; /* enable it */
}
if(port >= 0) {
proxyinfo->port = port;
if(conn->port < 0 || sockstype || !conn->socks_proxy.host.rawalloc)
conn->port = port;
}
/* now, clone the cleaned proxy host name */
Curl_safefree(proxyinfo->host.rawalloc);
proxyinfo->host.rawalloc = strdup(proxyptr);
proxyinfo->host.name = proxyinfo->host.rawalloc;
if(!proxyinfo->host.rawalloc)
return CURLE_OUT_OF_MEMORY;
} }
Curl_safefree(proxyuser); /* now, clone the proxy host name */
Curl_safefree(proxypasswd); uc = curl_url_get(uhp, CURLUPART_HOST, &host, CURLU_URLDECODE);
if(uc) {
result = CURLE_OUT_OF_MEMORY;
goto error;
}
Curl_safefree(proxyinfo->host.rawalloc);
proxyinfo->host.rawalloc = host;
if(host[0] == '[') {
/* this is a numerical IPv6, strip off the brackets */
size_t len = strlen(host);
host[len-1] = 0; /* clear the trailing bracket */
host++;
}
proxyinfo->host.name = host;
return CURLE_OK; error:
free(scheme);
curl_url_cleanup(uhp);
return result;
} }
/* /*

2
tests/data/test709
View File

@ -34,7 +34,7 @@ http
socks5 socks5
</server> </server>
<setenv> <setenv>
http_proxy=socks5://%HOSTIP:%SOCKSPORT http_proxy=socks5://%HOSTIP:%SOCKSPORT
</setenv> </setenv>
<name> <name>
HTTP GET via SOCKS5 set in http_proxy environment variable HTTP GET via SOCKS5 set in http_proxy environment variable