WebSocketBasicHandshakeStream performs the WebSocket standard RFC6455…

… WebSocket handshake over plain-text and SSL connections. Design doc at: https://docs.google.com/a/chromium.org/document/d/1r7dQDA9AQBD_kOk-z-yMi0WgLQZ-5m7psMO5pYLFUL8/edit Tests are in a separate CL: https://codereview.chromium.org/64133006/ BUG=303568 TEST=net_unittests --gtest_filter=WebSocket* Review URL: https://codereview.chromium.org/25417005 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@237553 0039d316-1c4b-4281-b951-d872f2087c98
marcosholgado · Nov 27, 2013 · d51365e · d51365e
1 parent cb6acb6
commit d51365e
Show file tree

Hide file tree

Showing 6 changed files with 428 additions and 2 deletions.
diff --git a/net/http/http_basic_state.cc b/net/http/http_basic_state.cc
@@ -39,6 +39,10 @@ scoped_ptr<ClientSocketHandle> HttpBasicState::ReleaseConnection() {
   return connection_.Pass();
 }
 
+scoped_refptr<GrowableIOBuffer> HttpBasicState::read_buf() const {
+  return read_buf_;
+}
+
 void HttpBasicState::DeleteParser() { parser_.reset(); }
 
 std::string HttpBasicState::GenerateRequestLine() const {

diff --git a/net/http/http_basic_state.h b/net/http/http_basic_state.h
@@ -47,6 +47,8 @@ class NET_EXPORT_PRIVATE HttpBasicState {
 
   scoped_ptr<ClientSocketHandle> ReleaseConnection();
 
+  scoped_refptr<GrowableIOBuffer> read_buf() const;
+
   // Generates a string of the form "METHOD PATH HTTP/1.1\r\n", based on the
   // values of request_info_ and using_proxy_.
   std::string GenerateRequestLine() const;

diff --git a/net/net.gyp b/net/net.gyp
@@ -1137,6 +1137,8 @@
         'url_request/url_request_throttler_manager.h',
         'url_request/view_cache_helper.cc',
         'url_request/view_cache_helper.h',
+        'websockets/websocket_basic_handshake_stream.cc',
+        'websockets/websocket_basic_handshake_stream.h',
         'websockets/websocket_basic_stream.cc',
         'websockets/websocket_basic_stream.h',
         'websockets/websocket_channel.cc',

diff --git a/net/websockets/README b/net/websockets/README
@@ -10,8 +10,6 @@ low-level socket-like interface to the renderer process. It is described in the
 design doc at
 https://docs.google.com/a/google.com/document/d/1_R6YjCIrm4kikJ3YeapcOU2Keqr3lVUPd-OeaIJ93qQ/preview
 
-websocket_handshake_handler.cc
-websocket_handshake_handler.h
 websocket_handshake_handler_test.cc
 websocket_handshake_handler_spdy_test.cc
 websocket_job.cc
@@ -29,6 +27,8 @@ performs framing and implements protocol semantics in the browser process, and
 presents a high-level interface to the renderer process similar to a
 multiplexing proxy. This is not yet used in any stable Chromium version.
 
+websocket_basic_handshake_stream.cc
+websocket_basic_handshake_stream.h
 websocket_basic_stream.cc
 websocket_basic_stream.h
 websocket_basic_stream_test.cc
@@ -74,6 +74,8 @@ These files are shared between the old and new implementations.
 
 websocket_handshake_constants.cc
 websocket_handshake_constants.h
+websocket_handshake_handler.cc
+websocket_handshake_handler.h
 
 A pre-submit check helps us keep this README file up-to-date:
 

diff --git a/net/websockets/websocket_basic_handshake_stream.cc b/net/websockets/websocket_basic_handshake_stream.cc
@@ -0,0 +1,304 @@
+// Copyright 2013 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "net/websockets/websocket_basic_handshake_stream.h"
+
+#include <algorithm>
+#include <iterator>
+
+#include "base/base64.h"
+#include "base/basictypes.h"
+#include "base/bind.h"
+#include "base/containers/hash_tables.h"
+#include "base/stl_util.h"
+#include "base/strings/string_util.h"
+#include "crypto/random.h"
+#include "net/http/http_request_headers.h"
+#include "net/http/http_request_info.h"
+#include "net/http/http_response_body_drainer.h"
+#include "net/http/http_response_headers.h"
+#include "net/http/http_status_code.h"
+#include "net/http/http_stream_parser.h"
+#include "net/socket/client_socket_handle.h"
+#include "net/websockets/websocket_basic_stream.h"
+#include "net/websockets/websocket_handshake_constants.h"
+#include "net/websockets/websocket_handshake_handler.h"
+#include "net/websockets/websocket_stream.h"
+
+namespace net {
+namespace {
+
+std::string GenerateHandshakeChallenge() {
+  std::string raw_challenge(websockets::kRawChallengeLength, '\0');
+  crypto::RandBytes(string_as_array(&raw_challenge), raw_challenge.length());
+  std::string encoded_challenge;
+  bool encode_success = base::Base64Encode(raw_challenge, &encoded_challenge);
+  DCHECK(encode_success);
+  return encoded_challenge;
+}
+
+void AddVectorHeaderIfNonEmpty(const char* name,
+                               const std::vector<std::string>& value,
+                               HttpRequestHeaders* headers) {
+  if (value.empty())
+    return;
+  headers->SetHeader(name, JoinString(value, ", "));
+}
+
+// If |case_sensitive| is false, then |value| must be in lower-case.
+bool ValidateSingleTokenHeader(
+    const scoped_refptr<HttpResponseHeaders>& headers,
+    const base::StringPiece& name,
+    const std::string& value,
+    bool case_sensitive) {
+  void* state = NULL;
+  std::string token;
+  int tokens = 0;
+  bool has_value = false;
+  while (headers->EnumerateHeader(&state, name, &token)) {
+    if (++tokens > 1)
+      return false;
+    has_value = case_sensitive ? value == token
+                               : LowerCaseEqualsASCII(token, value.c_str());
+  }
+  return has_value;
+}
+
+bool ValidateSubProtocol(
+    const scoped_refptr<HttpResponseHeaders>& headers,
+    const std::vector<std::string>& requested_sub_protocols,
+    std::string* sub_protocol) {
+  void* state = NULL;
+  std::string token;
+  base::hash_set<std::string> requested_set(requested_sub_protocols.begin(),
+                                            requested_sub_protocols.end());
+  int accepted = 0;
+  while (headers->EnumerateHeader(
+      &state, websockets::kSecWebSocketProtocol, &token)) {
+    if (requested_set.count(token) == 0)
+      return false;
+
+    *sub_protocol = token;
+    // The server is only allowed to accept one protocol.
+    if (++accepted > 1)
+      return false;
+  }
+  // If the browser requested > 0 protocols, the server is required to accept
+  // one.
+  return requested_set.empty() || accepted == 1;
+}
+
+bool ValidateExtensions(const scoped_refptr<HttpResponseHeaders>& headers,
+                        const std::vector<std::string>& requested_extensions,
+                        std::string* extensions) {
+  void* state = NULL;
+  std::string token;
+  while (headers->EnumerateHeader(
+      &state, websockets::kSecWebSocketExtensions, &token)) {
+    // TODO(ricea): Accept permessage-deflate with valid parameters.
+    return false;
+  }
+  return true;
+}
+
+}  // namespace
+
+WebSocketBasicHandshakeStream::WebSocketBasicHandshakeStream(
+    scoped_ptr<ClientSocketHandle> connection,
+    bool using_proxy,
+    std::vector<std::string> requested_sub_protocols,
+    std::vector<std::string> requested_extensions)
+    : state_(connection.release(), using_proxy),
+      http_response_info_(NULL),
+      requested_sub_protocols_(requested_sub_protocols),
+      requested_extensions_(requested_extensions) {}
+
+WebSocketBasicHandshakeStream::~WebSocketBasicHandshakeStream() {}
+
+int WebSocketBasicHandshakeStream::InitializeStream(
+    const HttpRequestInfo* request_info,
+    RequestPriority priority,
+    const BoundNetLog& net_log,
+    const CompletionCallback& callback) {
+  state_.Initialize(request_info, priority, net_log, callback);
+  return OK;
+}
+
+int WebSocketBasicHandshakeStream::SendRequest(
+    const HttpRequestHeaders& headers,
+    HttpResponseInfo* response,
+    const CompletionCallback& callback) {
+  DCHECK(!headers.HasHeader(websockets::kSecWebSocketKey));
+  DCHECK(!headers.HasHeader(websockets::kSecWebSocketProtocol));
+  DCHECK(!headers.HasHeader(websockets::kSecWebSocketExtensions));
+  DCHECK(headers.HasHeader(HttpRequestHeaders::kOrigin));
+  DCHECK(headers.HasHeader(websockets::kUpgrade));
+  DCHECK(headers.HasHeader(HttpRequestHeaders::kConnection));
+  DCHECK(headers.HasHeader(websockets::kSecWebSocketVersion));
+  DCHECK(parser());
+
+  http_response_info_ = response;
+
+  // Create a copy of the headers object, so that we can add the
+  // Sec-WebSockey-Key header.
+  HttpRequestHeaders enriched_headers;
+  enriched_headers.CopyFrom(headers);
+  std::string handshake_challenge = GenerateHandshakeChallenge();
+  enriched_headers.SetHeader(websockets::kSecWebSocketKey, handshake_challenge);
+
+  AddVectorHeaderIfNonEmpty(websockets::kSecWebSocketProtocol,
+                            requested_sub_protocols_,
+                            &enriched_headers);
+  AddVectorHeaderIfNonEmpty(websockets::kSecWebSocketExtensions,
+                            requested_extensions_,
+                            &enriched_headers);
+
+  ComputeSecWebSocketAccept(handshake_challenge,
+                            &handshake_challenge_response_);
+
+  return parser()->SendRequest(
+      state_.GenerateRequestLine(), enriched_headers, response, callback);
+}
+
+int WebSocketBasicHandshakeStream::ReadResponseHeaders(
+    const CompletionCallback& callback) {
+  // HttpStreamParser uses a weak pointer when reading from the
+  // socket, so it won't be called back after being destroyed. The
+  // HttpStreamParser is owned by HttpBasicState which is owned by this object,
+  // so this use of base::Unretained() is safe.
+  int rv = parser()->ReadResponseHeaders(
+      base::Bind(&WebSocketBasicHandshakeStream::ReadResponseHeadersCallback,
+                 base::Unretained(this),
+                 callback));
+  return rv == OK ? ValidateResponse() : rv;
+}
+
+const HttpResponseInfo* WebSocketBasicHandshakeStream::GetResponseInfo() const {
+  return parser()->GetResponseInfo();
+}
+
+int WebSocketBasicHandshakeStream::ReadResponseBody(
+    IOBuffer* buf,
+    int buf_len,
+    const CompletionCallback& callback) {
+  return parser()->ReadResponseBody(buf, buf_len, callback);
+}
+
+void WebSocketBasicHandshakeStream::Close(bool not_reusable) {
+  // This class ignores the value of |not_reusable| and never lets the socket be
+  // re-used.
+  if (parser())
+    parser()->Close(true);
+}
+
+bool WebSocketBasicHandshakeStream::IsResponseBodyComplete() const {
+  return parser()->IsResponseBodyComplete();
+}
+
+bool WebSocketBasicHandshakeStream::CanFindEndOfResponse() const {
+  return parser() && parser()->CanFindEndOfResponse();
+}
+
+bool WebSocketBasicHandshakeStream::IsConnectionReused() const {
+  return parser()->IsConnectionReused();
+}
+
+void WebSocketBasicHandshakeStream::SetConnectionReused() {
+  parser()->SetConnectionReused();
+}
+
+bool WebSocketBasicHandshakeStream::IsConnectionReusable() const {
+  return false;
+}
+
+bool WebSocketBasicHandshakeStream::GetLoadTimingInfo(
+    LoadTimingInfo* load_timing_info) const {
+  return state_.connection()->GetLoadTimingInfo(IsConnectionReused(),
+                                                load_timing_info);
+}
+
+void WebSocketBasicHandshakeStream::GetSSLInfo(SSLInfo* ssl_info) {
+  parser()->GetSSLInfo(ssl_info);
+}
+
+void WebSocketBasicHandshakeStream::GetSSLCertRequestInfo(
+    SSLCertRequestInfo* cert_request_info) {
+  parser()->GetSSLCertRequestInfo(cert_request_info);
+}
+
+bool WebSocketBasicHandshakeStream::IsSpdyHttpStream() const { return false; }
+
+void WebSocketBasicHandshakeStream::Drain(HttpNetworkSession* session) {
+  HttpResponseBodyDrainer* drainer = new HttpResponseBodyDrainer(this);
+  drainer->Start(session);
+  // |drainer| will delete itself.
+}
+
+void WebSocketBasicHandshakeStream::SetPriority(RequestPriority priority) {
+  // TODO(ricea): See TODO comment in HttpBasicStream::SetPriority(). If it is
+  // gone, then copy whatever has happened there over here.
+}
+
+scoped_ptr<WebSocketStream> WebSocketBasicHandshakeStream::Upgrade() {
+  // TODO(ricea): Add deflate support.
+
+  // The HttpStreamParser object has a pointer to our ClientSocketHandle. Make
+  // sure it does not touch it again before it is destroyed.
+  state_.DeleteParser();
+  return scoped_ptr<WebSocketStream>(
+      new WebSocketBasicStream(state_.ReleaseConnection(),
+                               state_.read_buf(),
+                               sub_protocol_,
+                               extensions_));
+}
+
+void WebSocketBasicHandshakeStream::ReadResponseHeadersCallback(
+    const CompletionCallback& callback,
+    int result) {
+  if (result == OK)
+    result = ValidateResponse();
+  callback.Run(result);
+}
+
+int WebSocketBasicHandshakeStream::ValidateResponse() {
+  DCHECK(http_response_info_);
+  const scoped_refptr<HttpResponseHeaders>& headers =
+      http_response_info_->headers;
+
+  switch (headers->response_code()) {
+    case HTTP_SWITCHING_PROTOCOLS:
+      return ValidateUpgradeResponse(headers);
+
+    // We need to pass these through for authentication to work.
+    case HTTP_UNAUTHORIZED:
+    case HTTP_PROXY_AUTHENTICATION_REQUIRED:
+      return OK;
+
+    // Other status codes are potentially risky (see the warnings in the
+    // WHATWG WebSocket API spec) and so are dropped by default.
+    default:
+      return ERR_INVALID_RESPONSE;
+  }
+}
+
+int WebSocketBasicHandshakeStream::ValidateUpgradeResponse(
+    const scoped_refptr<HttpResponseHeaders>& headers) {
+  if (ValidateSingleTokenHeader(headers,
+                                websockets::kUpgrade,
+                                websockets::kWebSocketLowercase,
+                                false) &&
+      ValidateSingleTokenHeader(headers,
+                                websockets::kSecWebSocketAccept,
+                                handshake_challenge_response_,
+                                true) &&
+      headers->HasHeaderValue(HttpRequestHeaders::kConnection,
+                              websockets::kUpgrade) &&
+      ValidateSubProtocol(headers, requested_sub_protocols_, &sub_protocol_) &&
+      ValidateExtensions(headers, requested_extensions_, &extensions_)) {
+    return OK;
+  }
+  return ERR_INVALID_RESPONSE;
+}
+
+}  // namespace net