Line data Source code
1 : #include "fd_h2_conn.h"
2 : #include "fd_h2_callback.h"
3 : #include "fd_h2_proto.h"
4 : #include "fd_h2_rbuf.h"
5 : #include "fd_h2_stream.h"
6 : #include <float.h>
7 :
8 : #if FD_USING_GCC && __GNUC__ >= 15
9 : #pragma GCC diagnostic ignored "-Wunterminated-string-initialization"
10 : #endif
11 :
12 : char const fd_h2_client_preface[24] = "PRI * HTTP/2.0\r\n\r\nSM\r\n\r\n";
13 :
14 : static fd_h2_settings_t const fd_h2_settings_initial = {
15 : .max_concurrent_streams = UINT_MAX,
16 : .initial_window_size = 65535U,
17 : .max_frame_size = 16384U,
18 : .max_header_list_size = UINT_MAX
19 : };
20 :
21 : static void
22 72 : fd_h2_conn_init_window( fd_h2_conn_t * conn ) {
23 72 : conn->rx_wnd_max = 65535U;
24 72 : conn->rx_wnd = conn->rx_wnd_max;
25 72 : conn->rx_wnd_wmark = (uint)( 0.7f * (float)conn->rx_wnd_max );
26 72 : conn->tx_wnd = 65535U;
27 72 : }
28 :
29 : fd_h2_conn_t *
30 72 : fd_h2_conn_init_client( fd_h2_conn_t * conn ) {
31 72 : *conn = (fd_h2_conn_t) {
32 72 : .self_settings = fd_h2_settings_initial,
33 72 : .peer_settings = fd_h2_settings_initial,
34 72 : .flags = FD_H2_CONN_FLAGS_CLIENT_INITIAL,
35 72 : .tx_stream_next = 1U,
36 72 : .rx_stream_next = 2U
37 72 : };
38 72 : fd_h2_conn_init_window( conn );
39 72 : return conn;
40 72 : }
41 :
42 : fd_h2_conn_t *
43 0 : fd_h2_conn_init_server( fd_h2_conn_t * conn ) {
44 0 : *conn = (fd_h2_conn_t) {
45 0 : .self_settings = fd_h2_settings_initial,
46 0 : .peer_settings = fd_h2_settings_initial,
47 0 : .flags = FD_H2_CONN_FLAGS_SERVER_INITIAL,
48 0 : .tx_stream_next = 2U,
49 0 : .rx_stream_next = 1U
50 0 : };
51 0 : fd_h2_conn_init_window( conn );
52 0 : return conn;
53 0 : }
54 :
55 : static void
56 : fd_h2_setting_encode( uchar * buf,
57 : ushort setting_id,
58 18 : uint setting_value ) {
59 18 : FD_STORE( ushort, buf, fd_ushort_bswap( setting_id ) );
60 18 : FD_STORE( uint, buf+2, fd_uint_bswap ( setting_value ) );
61 18 : }
62 :
63 : #define FD_H2_OUR_SETTINGS_ENCODED_SZ 45
64 :
65 : static void
66 : fd_h2_gen_settings( fd_h2_settings_t const * settings,
67 3 : uchar buf[ FD_H2_OUR_SETTINGS_ENCODED_SZ ] ) {
68 3 : fd_h2_frame_hdr_t hdr = {
69 3 : .typlen = fd_h2_frame_typlen( FD_H2_FRAME_TYPE_SETTINGS, 36UL ),
70 3 : };
71 3 : fd_memcpy( buf, &hdr, 9UL );
72 :
73 3 : fd_h2_setting_encode( buf+9, FD_H2_SETTINGS_HEADER_TABLE_SIZE, 0U );
74 3 : fd_h2_setting_encode( buf+15, FD_H2_SETTINGS_ENABLE_PUSH, 0U );
75 3 : fd_h2_setting_encode( buf+21, FD_H2_SETTINGS_MAX_CONCURRENT_STREAMS, settings->max_concurrent_streams );
76 3 : fd_h2_setting_encode( buf+27, FD_H2_SETTINGS_INITIAL_WINDOW_SIZE, settings->initial_window_size );
77 3 : fd_h2_setting_encode( buf+33, FD_H2_SETTINGS_MAX_FRAME_SIZE, settings->max_frame_size );
78 3 : fd_h2_setting_encode( buf+39, FD_H2_SETTINGS_MAX_HEADER_LIST_SIZE, settings->max_header_list_size );
79 3 : }
80 :
81 : /* fd_h2_rx_data handles a partial DATA frame. */
82 :
83 : static void
84 : fd_h2_rx_data( fd_h2_conn_t * conn,
85 : fd_h2_rbuf_t * rbuf_rx,
86 : fd_h2_rbuf_t * rbuf_tx,
87 0 : fd_h2_callbacks_t const * cb ) {
88 : /* A receive might generate two WINDOW_UPDATE frames */
89 0 : if( FD_UNLIKELY( fd_h2_rbuf_free_sz( rbuf_tx ) < 2*sizeof(fd_h2_window_update_t) ) ) return;
90 :
91 0 : ulong frame_rem = conn->rx_frame_rem;
92 0 : ulong rbuf_avail = fd_h2_rbuf_used_sz( rbuf_rx );
93 0 : uint stream_id = conn->rx_stream_id;
94 0 : uint chunk_sz = (uint)fd_ulong_min( frame_rem, rbuf_avail );
95 0 : uint fin_flag = conn->rx_frame_flags & FD_H2_FLAG_END_STREAM;
96 0 : if( rbuf_avail<frame_rem ) fin_flag = 0;
97 :
98 0 : fd_h2_stream_t * stream = cb->stream_query( conn, stream_id );
99 0 : if( FD_UNLIKELY( !stream ||
100 0 : ( stream->state!=FD_H2_STREAM_STATE_OPEN &&
101 0 : stream->state!=FD_H2_STREAM_STATE_CLOSING_TX ) ) ) {
102 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_STREAM_CLOSED );
103 0 : goto skip_frame;
104 0 : }
105 :
106 0 : if( FD_UNLIKELY( chunk_sz > conn->rx_wnd ) ) {
107 0 : fd_h2_conn_error( conn, FD_H2_ERR_FLOW_CONTROL );
108 0 : return;
109 0 : }
110 0 : conn->rx_wnd -= chunk_sz;
111 :
112 0 : if( FD_UNLIKELY( chunk_sz > stream->rx_wnd ) ) {
113 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_FLOW_CONTROL );
114 0 : goto skip_frame;
115 0 : }
116 0 : stream->rx_wnd -= chunk_sz;
117 :
118 0 : fd_h2_stream_rx_data( stream, conn, fin_flag ? FD_H2_FLAG_END_STREAM : 0U );
119 0 : if( FD_UNLIKELY( stream->state==FD_H2_STREAM_STATE_ILLEGAL ) ) {
120 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
121 0 : return;
122 0 : }
123 :
124 0 : ulong sz0, sz1;
125 0 : uchar const * peek = fd_h2_rbuf_peek_used( rbuf_rx, &sz0, &sz1 );
126 0 : if( sz0>=chunk_sz ) {
127 0 : sz0 = chunk_sz;
128 0 : sz1 = 0;
129 0 : } else if( sz0+sz1>chunk_sz ) {
130 0 : sz1 = chunk_sz-sz0;
131 0 : }
132 0 : if( FD_LIKELY( !sz1 ) ) {
133 0 : cb->data( conn, stream, peek, sz0, fin_flag );
134 0 : } else {
135 0 : cb->data( conn, stream, peek, sz0, 0 );
136 0 : cb->data( conn, stream, rbuf_rx->buf0, sz1, fin_flag );
137 0 : }
138 :
139 0 : skip_frame:
140 0 : conn->rx_frame_rem -= chunk_sz;
141 0 : fd_h2_rbuf_skip( rbuf_rx, chunk_sz );
142 0 : if( FD_UNLIKELY( conn->rx_wnd < conn->rx_wnd_wmark ) ) {
143 0 : conn->flags |= FD_H2_CONN_FLAGS_WINDOW_UPDATE;
144 0 : }
145 0 : }
146 :
147 : static int
148 : fd_h2_rx_headers( fd_h2_conn_t * conn,
149 : fd_h2_rbuf_t * rbuf_tx,
150 : uchar * payload,
151 : ulong payload_sz,
152 : fd_h2_callbacks_t const * cb,
153 : uint frame_flags,
154 0 : uint stream_id ) {
155 :
156 0 : if( FD_UNLIKELY( !stream_id ) ) {
157 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
158 0 : return 0;
159 0 : }
160 :
161 0 : fd_h2_stream_t * stream = cb->stream_query( conn, stream_id );
162 0 : if( !stream ) {
163 0 : if( FD_UNLIKELY( ( stream_id < conn->rx_stream_next ) |
164 0 : ( (stream_id&1) != (conn->rx_stream_next&1) ) ) ) {
165 : /* FIXME should send RST_STREAM instead if the user deallocated
166 : stream state but we receive a HEADERS frame for a stream that
167 : we started ourselves. */
168 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
169 0 : return 0;
170 0 : }
171 0 : if( FD_UNLIKELY( conn->stream_active_cnt[0] >= conn->self_settings.max_concurrent_streams ) ) {
172 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_REFUSED_STREAM );
173 0 : return 1;
174 0 : }
175 0 : stream = cb->stream_create( conn, stream_id );
176 0 : if( FD_UNLIKELY( !stream ) ) {
177 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_REFUSED_STREAM );
178 0 : return 1;
179 0 : }
180 0 : fd_h2_stream_open( stream, conn, stream_id );
181 0 : stream->tx_wnd = conn->peer_settings.initial_window_size;
182 0 : conn->rx_stream_next = stream_id+2;
183 0 : }
184 :
185 0 : conn->rx_stream_id = stream_id;
186 :
187 0 : if( FD_UNLIKELY( frame_flags & FD_H2_FLAG_PRIORITY ) ) {
188 0 : if( FD_UNLIKELY( payload_sz<5UL ) ) {
189 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
190 0 : return 0;
191 0 : }
192 0 : payload += 5UL;
193 0 : payload_sz -= 5UL;
194 0 : }
195 :
196 0 : if( FD_UNLIKELY( !( frame_flags & FD_H2_FLAG_END_HEADERS ) ) ) {
197 0 : conn->flags |= FD_H2_CONN_FLAGS_CONTINUATION;
198 0 : }
199 :
200 0 : fd_h2_stream_rx_headers( stream, conn, frame_flags );
201 0 : if( FD_UNLIKELY( stream->state==FD_H2_STREAM_STATE_ILLEGAL ) ) {
202 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
203 0 : return 0;
204 0 : }
205 :
206 0 : cb->headers( conn, stream, payload, payload_sz, frame_flags );
207 :
208 0 : return 1;
209 0 : }
210 :
211 : static int
212 : fd_h2_rx_priority( fd_h2_conn_t * conn,
213 : ulong payload_sz,
214 0 : uint stream_id ) {
215 0 : if( FD_UNLIKELY( payload_sz!=5UL ) ) {
216 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
217 0 : return 0;
218 0 : }
219 0 : if( FD_UNLIKELY( !stream_id ) ) {
220 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
221 0 : return 0;
222 0 : }
223 0 : return 1;
224 0 : }
225 :
226 : static int
227 : fd_h2_rx_continuation( fd_h2_conn_t * conn,
228 : fd_h2_rbuf_t * rbuf_tx,
229 : uchar * payload,
230 : ulong payload_sz,
231 : fd_h2_callbacks_t const * cb,
232 : uint frame_flags,
233 0 : uint stream_id ) {
234 :
235 0 : if( FD_UNLIKELY( ( conn->rx_stream_id!=stream_id ) |
236 0 : ( !( conn->flags & FD_H2_CONN_FLAGS_CONTINUATION ) ) |
237 0 : ( !stream_id ) ) ) {
238 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
239 0 : return 0;
240 0 : }
241 :
242 0 : if( FD_UNLIKELY( frame_flags & FD_H2_FLAG_END_HEADERS ) ) {
243 0 : conn->flags &= (uchar)~FD_H2_CONN_FLAGS_CONTINUATION;
244 0 : }
245 :
246 0 : fd_h2_stream_t * stream = cb->stream_query( conn, stream_id );
247 0 : if( FD_UNLIKELY( !stream ) ) {
248 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_INTERNAL );
249 0 : return 1;
250 0 : }
251 :
252 0 : fd_h2_stream_rx_headers( stream, conn, frame_flags );
253 0 : if( FD_UNLIKELY( stream->state==FD_H2_STREAM_STATE_ILLEGAL ) ) {
254 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
255 0 : return 0;
256 0 : }
257 :
258 0 : cb->headers( conn, stream, payload, payload_sz, frame_flags );
259 :
260 0 : return 1;
261 0 : }
262 :
263 : static int
264 : fd_h2_rx_rst_stream( fd_h2_conn_t * conn,
265 : uchar const * payload,
266 : ulong payload_sz,
267 : fd_h2_callbacks_t const * cb,
268 0 : uint stream_id ) {
269 0 : if( FD_UNLIKELY( payload_sz!=4UL ) ) {
270 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
271 0 : return 0;
272 0 : }
273 0 : if( FD_UNLIKELY( !stream_id ) ) {
274 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
275 0 : return 0;
276 0 : }
277 0 : if( FD_UNLIKELY( stream_id >= fd_ulong_max( conn->rx_stream_next, conn->tx_stream_next ) ) ) {
278 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
279 0 : return 0;
280 0 : }
281 0 : fd_h2_stream_t * stream = cb->stream_query( conn, stream_id );
282 0 : if( FD_LIKELY( stream ) ) {
283 0 : uint error_code = fd_uint_bswap( FD_LOAD( uint, payload ) );
284 0 : fd_h2_stream_reset( stream, conn );
285 0 : cb->rst_stream( conn, stream, error_code, 1 );
286 : /* stream points to freed memory at this point */
287 0 : }
288 0 : return 1;
289 0 : }
290 :
291 : static int
292 : fd_h2_rx_settings( fd_h2_conn_t * conn,
293 : fd_h2_rbuf_t * rbuf_tx,
294 : uchar const * payload,
295 : ulong payload_sz,
296 : fd_h2_callbacks_t const * cb,
297 : uint frame_flags,
298 12 : uint stream_id ) {
299 :
300 12 : if( FD_UNLIKELY( stream_id ) ) {
301 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
302 0 : return 0;
303 0 : }
304 :
305 12 : if( FD_UNLIKELY( conn->flags & FD_H2_CONN_FLAGS_SERVER_INITIAL ) ) {
306 : /* As a server, the first frame we should send is SETTINGS, not
307 : SETTINGS ACK as generated here */
308 0 : return 0;
309 0 : }
310 :
311 12 : if( frame_flags & FD_H2_FLAG_ACK ) {
312 6 : if( FD_UNLIKELY( payload_sz ) ) {
313 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
314 0 : return 0;
315 0 : }
316 6 : if( FD_UNLIKELY( !conn->setting_tx ) ) {
317 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
318 0 : return 0;
319 0 : }
320 6 : if( conn->flags & FD_H2_CONN_FLAGS_WAIT_SETTINGS_ACK_0 ) {
321 6 : conn->flags &= (uchar)~FD_H2_CONN_FLAGS_WAIT_SETTINGS_ACK_0;
322 6 : if( !( conn->flags & FD_H2_CONN_FLAGS_HANDSHAKING ) ) {
323 3 : cb->conn_established( conn );
324 3 : }
325 6 : }
326 6 : conn->setting_tx--;
327 6 : return 1;
328 6 : }
329 :
330 6 : if( FD_UNLIKELY( payload_sz % 6 ) ) {
331 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
332 0 : return 0;
333 0 : }
334 :
335 42 : for( ulong off=0UL; off<payload_sz; off+=sizeof(fd_h2_setting_t) ) {
336 36 : fd_h2_setting_t setting = FD_LOAD( fd_h2_setting_t, payload+off );
337 36 : ushort id = fd_ushort_bswap( setting.id );
338 36 : uint value = fd_uint_bswap( setting.value );
339 :
340 36 : switch( id ) {
341 6 : case FD_H2_SETTINGS_ENABLE_PUSH:
342 6 : if( FD_UNLIKELY( value>1 ) ) {
343 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
344 0 : return 0;
345 0 : }
346 6 : break;
347 6 : case FD_H2_SETTINGS_INITIAL_WINDOW_SIZE:
348 6 : if( FD_UNLIKELY( value>0x7fffffff ) ) {
349 0 : fd_h2_conn_error( conn, FD_H2_ERR_FLOW_CONTROL );
350 0 : return 0;
351 0 : }
352 6 : conn->peer_settings.initial_window_size = value;
353 : /* FIXME update window accordingly */
354 6 : break;
355 6 : case FD_H2_SETTINGS_MAX_FRAME_SIZE:
356 6 : if( FD_UNLIKELY( value<0x4000 || value>0xffffff ) ) {
357 0 : fd_h2_conn_error( conn, FD_H2_ERR_FLOW_CONTROL );
358 0 : return 0;
359 0 : }
360 6 : conn->peer_settings.max_frame_size = value;
361 : /* FIXME validate min */
362 6 : break;
363 6 : case FD_H2_SETTINGS_MAX_HEADER_LIST_SIZE:
364 6 : conn->peer_settings.max_header_list_size = value;
365 6 : break;
366 6 : case FD_H2_SETTINGS_MAX_CONCURRENT_STREAMS:
367 6 : conn->peer_settings.max_concurrent_streams = value;
368 6 : break;
369 36 : }
370 36 : }
371 :
372 6 : fd_h2_frame_hdr_t hdr = {
373 6 : .typlen = fd_h2_frame_typlen( FD_H2_FRAME_TYPE_SETTINGS, 0UL ),
374 6 : .flags = FD_H2_FLAG_ACK
375 6 : };
376 6 : if( FD_UNLIKELY( fd_h2_rbuf_free_sz( rbuf_tx )<sizeof(fd_h2_frame_hdr_t) ) ) {
377 0 : fd_h2_conn_error( conn, FD_H2_ERR_INTERNAL );
378 0 : return 0;
379 0 : }
380 6 : fd_h2_rbuf_push( rbuf_tx, &hdr, sizeof(fd_h2_frame_hdr_t) );
381 :
382 6 : if( conn->flags & FD_H2_CONN_FLAGS_WAIT_SETTINGS_0 ) {
383 6 : conn->flags &= (uchar)~FD_H2_CONN_FLAGS_WAIT_SETTINGS_0;
384 6 : if( !( conn->flags & FD_H2_CONN_FLAGS_HANDSHAKING ) ) {
385 3 : cb->conn_established( conn );
386 3 : }
387 6 : }
388 :
389 6 : return 1;
390 6 : }
391 :
392 : static int
393 0 : fd_h2_rx_push_promise( fd_h2_conn_t * conn ) {
394 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
395 0 : return 0;
396 0 : }
397 :
398 : static int
399 : fd_h2_rx_ping( fd_h2_conn_t * conn,
400 : fd_h2_rbuf_t * rbuf_tx,
401 : uchar const * payload,
402 : ulong payload_sz,
403 : fd_h2_callbacks_t const * cb,
404 : uint frame_flags,
405 9 : uint stream_id ) {
406 9 : if( FD_UNLIKELY( payload_sz!=8UL ) ) {
407 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
408 0 : return 0;
409 0 : }
410 9 : if( FD_UNLIKELY( stream_id ) ) {
411 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
412 0 : return 0;
413 0 : }
414 :
415 9 : if( FD_UNLIKELY( frame_flags & FD_H2_FLAG_ACK ) ) {
416 :
417 : /* Received an acknowledgement for a PING frame. */
418 9 : if( FD_UNLIKELY( conn->ping_tx==0 ) ) {
419 : /* Unsolicited PING ACK ... Blindly ignore, since RFC 9113
420 : technically doesn't forbid those. */
421 3 : return 1;
422 3 : }
423 6 : cb->ping_ack( conn );
424 6 : conn->ping_tx = (uchar)( conn->ping_tx-1 );
425 :
426 6 : } else {
427 :
428 : /* Received a new PING frame. Generate a PONG. */
429 : /* FIMXE rate limit */
430 0 : fd_h2_ping_t pong = {
431 0 : .hdr = {
432 0 : .typlen = fd_h2_frame_typlen( FD_H2_FRAME_TYPE_PING, 8UL ),
433 0 : .flags = FD_H2_FLAG_ACK,
434 0 : },
435 0 : .payload = FD_LOAD( ulong, payload )
436 0 : };
437 0 : if( FD_UNLIKELY( fd_h2_rbuf_free_sz( rbuf_tx )<sizeof(fd_h2_ping_t) ) ) {
438 0 : fd_h2_conn_error( conn, FD_H2_ERR_INTERNAL );
439 0 : return 0;
440 0 : }
441 0 : fd_h2_rbuf_push( rbuf_tx, &pong, sizeof(fd_h2_ping_t) );
442 :
443 0 : }
444 :
445 6 : return 1;
446 9 : }
447 :
448 : int
449 : fd_h2_tx_ping( fd_h2_conn_t * conn,
450 12 : fd_h2_rbuf_t * rbuf_tx ) {
451 12 : ulong ping_tx = conn->ping_tx;
452 12 : if( FD_UNLIKELY( ( fd_h2_rbuf_free_sz( rbuf_tx )<sizeof(fd_h2_ping_t) ) |
453 12 : ( ping_tx>=UCHAR_MAX ) ) ) {
454 6 : return 0; /* blocked */
455 6 : }
456 :
457 6 : fd_h2_ping_t ping = {
458 6 : .hdr = {
459 6 : .typlen = fd_h2_frame_typlen( FD_H2_FRAME_TYPE_PING, 8UL ),
460 6 : .flags = 0U,
461 6 : .r_stream_id = 0UL
462 6 : },
463 6 : .payload = 0UL
464 6 : };
465 6 : fd_h2_rbuf_push( rbuf_tx, &ping, sizeof(fd_h2_ping_t) );
466 6 : conn->ping_tx = (uchar)( ping_tx+1 );
467 6 : return 1;
468 12 : }
469 :
470 : static int
471 : fd_h2_rx_goaway( fd_h2_conn_t * conn,
472 : fd_h2_callbacks_t const * cb,
473 : uchar const * payload,
474 : ulong payload_sz,
475 0 : uint stream_id ) {
476 :
477 0 : if( FD_UNLIKELY( stream_id ) ) {
478 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
479 0 : return 0;
480 0 : }
481 0 : if( FD_UNLIKELY( payload_sz<8UL ) ) {
482 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
483 0 : return 0;
484 0 : }
485 :
486 0 : uint error_code = fd_uint_bswap( FD_LOAD( uint, payload+4UL ) );
487 0 : conn->flags = FD_H2_CONN_FLAGS_DEAD;
488 0 : cb->conn_final( conn, error_code, 1 /* peer */ );
489 :
490 0 : return 1;
491 0 : }
492 :
493 : static int
494 : fd_h2_rx_window_update( fd_h2_conn_t * conn,
495 : fd_h2_rbuf_t * rbuf_tx,
496 : fd_h2_callbacks_t const * cb,
497 : uchar const * payload,
498 : ulong payload_sz,
499 0 : uint stream_id ) {
500 0 : if( FD_UNLIKELY( payload_sz!=4UL ) ) {
501 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
502 0 : return 0;
503 0 : }
504 0 : uint increment = fd_uint_bswap( FD_LOAD( uint, payload ) ) & 0x7fffffff;
505 :
506 0 : if( !stream_id ) {
507 :
508 : /* Connection-level window update */
509 0 : uint tx_wnd = conn->tx_wnd;
510 0 : if( FD_UNLIKELY( !increment ) ) {
511 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
512 0 : return 0;
513 0 : }
514 0 : uint tx_wnd_new;
515 0 : if( FD_UNLIKELY( __builtin_uadd_overflow( tx_wnd, increment, &tx_wnd_new ) ) ) {
516 0 : fd_h2_conn_error( conn, FD_H2_ERR_FLOW_CONTROL );
517 0 : return 0;
518 0 : }
519 0 : conn->tx_wnd = tx_wnd_new;
520 0 : cb->window_update( conn, (uint)increment );
521 :
522 0 : } else {
523 :
524 0 : if( FD_UNLIKELY( stream_id >= fd_ulong_max( conn->rx_stream_next, conn->tx_stream_next ) ) ) {
525 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
526 0 : return 0;
527 0 : }
528 :
529 0 : if( FD_UNLIKELY( !increment ) ) {
530 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_PROTOCOL );
531 0 : return 1;
532 0 : }
533 :
534 0 : fd_h2_stream_t * stream = cb->stream_query( conn, stream_id );
535 0 : if( FD_UNLIKELY( !stream ) ) {
536 0 : fd_h2_tx_rst_stream( rbuf_tx, stream_id, FD_H2_ERR_STREAM_CLOSED );
537 0 : return 1;
538 0 : }
539 :
540 : /* Stream-level window update */
541 0 : uint tx_wnd_new;
542 0 : if( FD_UNLIKELY( __builtin_uadd_overflow( stream->tx_wnd, increment, &tx_wnd_new ) ) ) {
543 0 : fd_h2_stream_error( stream, rbuf_tx, FD_H2_ERR_FLOW_CONTROL );
544 0 : cb->rst_stream( conn, stream, FD_H2_ERR_FLOW_CONTROL, 0 );
545 : /* stream points to freed memory at this point */
546 0 : return 1;
547 0 : }
548 0 : stream->tx_wnd = tx_wnd_new;
549 0 : cb->stream_window_update( conn, stream, (uint)increment );
550 :
551 0 : }
552 :
553 0 : return 1;
554 0 : }
555 :
556 : /* fd_h2_rx_frame handles a complete frame. Returns 1 on success, and
557 : 0 on connection error. */
558 :
559 : static int
560 : fd_h2_rx_frame( fd_h2_conn_t * conn,
561 : fd_h2_rbuf_t * rbuf_tx,
562 : uchar * payload,
563 : ulong payload_sz,
564 : fd_h2_callbacks_t const * cb,
565 : uint frame_type,
566 : uint frame_flags,
567 21 : uint stream_id ) {
568 21 : switch( frame_type ) {
569 0 : case FD_H2_FRAME_TYPE_HEADERS:
570 0 : return fd_h2_rx_headers( conn, rbuf_tx, payload, payload_sz, cb, frame_flags, stream_id );
571 0 : case FD_H2_FRAME_TYPE_PRIORITY:
572 0 : return fd_h2_rx_priority( conn, payload_sz, stream_id );
573 0 : case FD_H2_FRAME_TYPE_RST_STREAM:
574 0 : return fd_h2_rx_rst_stream( conn, payload, payload_sz, cb, stream_id );
575 12 : case FD_H2_FRAME_TYPE_SETTINGS:
576 12 : return fd_h2_rx_settings( conn, rbuf_tx, payload, payload_sz, cb, frame_flags, stream_id );
577 0 : case FD_H2_FRAME_TYPE_PUSH_PROMISE:
578 0 : return fd_h2_rx_push_promise( conn );
579 0 : case FD_H2_FRAME_TYPE_CONTINUATION:
580 0 : return fd_h2_rx_continuation( conn, rbuf_tx, payload, payload_sz, cb, frame_flags, stream_id );
581 9 : case FD_H2_FRAME_TYPE_PING:
582 9 : return fd_h2_rx_ping( conn, rbuf_tx, payload, payload_sz, cb, frame_flags, stream_id );
583 0 : case FD_H2_FRAME_TYPE_GOAWAY:
584 0 : return fd_h2_rx_goaway( conn, cb, payload, payload_sz, stream_id );
585 0 : case FD_H2_FRAME_TYPE_WINDOW_UPDATE:
586 0 : return fd_h2_rx_window_update( conn, rbuf_tx, cb, payload, payload_sz, stream_id );
587 0 : default:
588 0 : return 1;
589 21 : }
590 21 : }
591 :
592 : /* fd_h2_rx1 handles one frame. */
593 :
594 : static void
595 : fd_h2_rx1( fd_h2_conn_t * conn,
596 : fd_h2_rbuf_t * rbuf_rx,
597 : fd_h2_rbuf_t * rbuf_tx,
598 : uchar * scratch,
599 : ulong scratch_sz,
600 21 : fd_h2_callbacks_t const * cb ) {
601 : /* All frames except DATA are fully buffered, thus assume that current
602 : frame is a DATA frame if rx_frame_rem != 0. */
603 21 : if( conn->rx_frame_rem ) {
604 0 : fd_h2_rx_data( conn, rbuf_rx, rbuf_tx, cb );
605 0 : return;
606 0 : }
607 21 : if( FD_UNLIKELY( conn->rx_pad_rem ) ) {
608 0 : ulong pad_rem = conn->rx_pad_rem;
609 0 : ulong rbuf_avail = fd_h2_rbuf_used_sz( rbuf_rx );
610 0 : uint chunk_sz = (uint)fd_ulong_min( pad_rem, rbuf_avail );
611 0 : fd_h2_rbuf_skip( rbuf_rx, chunk_sz );
612 0 : conn->rx_pad_rem = (uchar)( conn->rx_pad_rem - chunk_sz );
613 0 : return;
614 0 : }
615 :
616 : /* A new frame starts. Peek the header. */
617 21 : if( FD_UNLIKELY( fd_h2_rbuf_used_sz( rbuf_rx )<sizeof(fd_h2_frame_hdr_t) ) ) {
618 0 : conn->rx_suppress = rbuf_rx->lo_off + sizeof(fd_h2_frame_hdr_t);
619 0 : return;
620 0 : }
621 21 : fd_h2_rbuf_t rx_peek = *rbuf_rx;
622 21 : fd_h2_frame_hdr_t hdr;
623 21 : fd_h2_rbuf_pop_copy( &rx_peek, &hdr, sizeof(fd_h2_frame_hdr_t) );
624 21 : uint const frame_type = fd_h2_frame_type ( hdr.typlen );
625 21 : uint const frame_sz = fd_h2_frame_length( hdr.typlen );
626 :
627 21 : if( FD_UNLIKELY( frame_sz > conn->self_settings.max_frame_size ) ) {
628 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
629 0 : return;
630 0 : }
631 21 : if( FD_UNLIKELY( (!!( conn->flags & FD_H2_CONN_FLAGS_CONTINUATION ) ) &
632 21 : ( frame_type!=FD_H2_FRAME_TYPE_CONTINUATION ) ) ) {
633 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
634 0 : return;
635 0 : }
636 :
637 : /* Peek padding */
638 21 : uint pad_sz = 0U;
639 21 : uint rem_sz = frame_sz;
640 21 : if( ( frame_type==FD_H2_FRAME_TYPE_DATA ||
641 21 : frame_type==FD_H2_FRAME_TYPE_HEADERS ||
642 21 : frame_type==FD_H2_FRAME_TYPE_PUSH_PROMISE ) &&
643 21 : !!( hdr.flags & FD_H2_FLAG_PADDED ) ) {
644 0 : if( FD_UNLIKELY( fd_h2_rbuf_used_sz( &rx_peek )<1UL ) ) return;
645 0 : pad_sz = rx_peek.lo[0];
646 0 : rem_sz--;
647 0 : if( FD_UNLIKELY( pad_sz>=rem_sz ) ) {
648 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
649 0 : return;
650 0 : }
651 0 : fd_h2_rbuf_skip( &rx_peek, 1UL );
652 0 : }
653 :
654 : /* Special case: Process data incrementally */
655 21 : if( frame_type==FD_H2_FRAME_TYPE_DATA ) {
656 0 : conn->rx_frame_rem = rem_sz;
657 0 : conn->rx_frame_flags = hdr.flags;
658 0 : conn->rx_stream_id = fd_h2_frame_stream_id( hdr.r_stream_id );
659 0 : conn->rx_pad_rem = (uchar)pad_sz;
660 0 : *rbuf_rx = rx_peek;
661 0 : if( FD_UNLIKELY( !conn->rx_stream_id ) ) {
662 0 : fd_h2_conn_error( conn, FD_H2_ERR_PROTOCOL );
663 0 : return;
664 0 : }
665 0 : fd_h2_rx_data( conn, rbuf_rx, rbuf_tx, cb );
666 0 : return;
667 0 : }
668 :
669 : /* Consume all or nothing */
670 21 : ulong const tot_sz = sizeof(fd_h2_frame_hdr_t) + frame_sz;
671 21 : if( FD_UNLIKELY( tot_sz>fd_h2_rbuf_used_sz( rbuf_rx ) ) ) {
672 0 : conn->rx_suppress = rbuf_rx->lo_off + tot_sz;
673 0 : return;
674 0 : }
675 :
676 21 : uint payload_sz = rem_sz-pad_sz;
677 21 : if( FD_UNLIKELY( scratch_sz < payload_sz ) ) {
678 0 : if( FD_UNLIKELY( scratch_sz < conn->self_settings.max_frame_size ) ) {
679 0 : FD_LOG_WARNING(( "scratch buffer too small: scratch_sz=%lu max_frame_size=%u)",
680 0 : scratch_sz, conn->self_settings.max_frame_size ));
681 0 : fd_h2_conn_error( conn, FD_H2_ERR_INTERNAL );
682 0 : return;
683 0 : }
684 0 : fd_h2_conn_error( conn, FD_H2_ERR_FRAME_SIZE );
685 0 : return;
686 0 : }
687 :
688 21 : *rbuf_rx = rx_peek;
689 21 : uchar * frame = fd_h2_rbuf_pop( rbuf_rx, scratch, payload_sz );
690 21 : int ok =
691 21 : fd_h2_rx_frame( conn, rbuf_tx, frame, payload_sz, cb,
692 21 : frame_type,
693 21 : hdr.flags,
694 21 : fd_h2_frame_stream_id( hdr.r_stream_id ) );
695 21 : (void)ok; /* FIXME */
696 21 : fd_h2_rbuf_skip( rbuf_rx, pad_sz );
697 21 : }
698 :
699 : void
700 : fd_h2_rx( fd_h2_conn_t * conn,
701 : fd_h2_rbuf_t * rbuf_rx,
702 : fd_h2_rbuf_t * rbuf_tx,
703 : uchar * scratch,
704 : ulong scratch_sz,
705 45 : fd_h2_callbacks_t const * cb ) {
706 : /* Pre-receive TX work */
707 :
708 : /* Stop handling frames on conn error. */
709 45 : if( FD_UNLIKELY( conn->flags & FD_H2_CONN_FLAGS_DEAD ) ) return;
710 :
711 : /* All other logic below can only proceed if new data arrived. */
712 45 : if( FD_UNLIKELY( !fd_h2_rbuf_used_sz( rbuf_rx ) ) ) return;
713 :
714 : /* Slowloris defense: Guess how much bytes are required to progress
715 : ahead of time based on the frame's type and size. */
716 21 : if( FD_UNLIKELY( rbuf_rx->hi_off < conn->rx_suppress ) ) return;
717 :
718 : /* Handle frames */
719 21 : for(;;) {
720 21 : ulong lo0 = rbuf_rx->lo_off;
721 21 : fd_h2_rx1( conn, rbuf_rx, rbuf_tx, scratch, scratch_sz, cb );
722 21 : ulong lo1 = rbuf_rx->lo_off;
723 :
724 : /* Terminate when no more bytes are available to read */
725 21 : if( !fd_h2_rbuf_used_sz( rbuf_rx ) ) break;
726 :
727 : /* Terminate when the frame handler didn't make progress (e.g. due
728 : to rbuf_tx full, or due to incomplete read from rbuf_tx)*/
729 0 : if( FD_UNLIKELY( lo0==lo1 ) ) break;
730 :
731 : /* Terminate if the conn died */
732 0 : if( FD_UNLIKELY( conn->flags & (FD_H2_CONN_FLAGS_SEND_GOAWAY|FD_H2_CONN_FLAGS_DEAD) ) ) break;
733 0 : }
734 21 : }
735 :
736 : void
737 : fd_h2_tx_control( fd_h2_conn_t * conn,
738 : fd_h2_rbuf_t * rbuf_tx,
739 15 : fd_h2_callbacks_t const * cb ) {
740 :
741 15 : if( FD_UNLIKELY( fd_h2_rbuf_free_sz( rbuf_tx )<128 ) ) return;
742 :
743 15 : switch( fd_uint_find_lsb( (uint)conn->flags | 0x10000u ) ) {
744 :
745 3 : case FD_H2_CONN_FLAGS_LG_CLIENT_INITIAL:
746 3 : fd_h2_rbuf_push( rbuf_tx, fd_h2_client_preface, sizeof(fd_h2_client_preface) );
747 3 : __attribute__((fallthrough));
748 :
749 3 : case FD_H2_CONN_FLAGS_LG_SERVER_INITIAL: {
750 3 : uchar buf[ FD_H2_OUR_SETTINGS_ENCODED_SZ ];
751 3 : fd_h2_gen_settings( &conn->self_settings, buf );
752 3 : fd_h2_rbuf_push( rbuf_tx, buf, sizeof(buf) );
753 3 : conn->setting_tx++;
754 3 : conn->flags = FD_H2_CONN_FLAGS_WAIT_SETTINGS_0 | FD_H2_CONN_FLAGS_WAIT_SETTINGS_ACK_0;
755 3 : break;
756 3 : }
757 :
758 0 : goaway:
759 0 : case FD_H2_CONN_FLAGS_LG_SEND_GOAWAY: {
760 0 : fd_h2_goaway_t goaway = {
761 0 : .hdr = {
762 0 : .typlen = fd_h2_frame_typlen( FD_H2_FRAME_TYPE_GOAWAY, 8UL )
763 0 : },
764 0 : .last_stream_id = 0, /* FIXME */
765 0 : .error_code = fd_uint_bswap( (uint)conn->conn_error )
766 0 : };
767 0 : conn->flags = FD_H2_CONN_FLAGS_DEAD;
768 0 : fd_h2_rbuf_push( rbuf_tx, &goaway, sizeof(fd_h2_goaway_t) );
769 0 : cb->conn_final( conn, conn->conn_error, 0 /* local */ );
770 0 : break;
771 0 : }
772 :
773 0 : case FD_H2_CONN_FLAGS_LG_WINDOW_UPDATE: {
774 0 : uint increment = conn->rx_wnd_max - conn->rx_wnd;
775 0 : if( FD_UNLIKELY( increment>0x7fffffff ) ) {
776 0 : fd_h2_conn_error( conn, FD_H2_ERR_INTERNAL );
777 0 : goto goaway;
778 0 : }
779 0 : if( FD_UNLIKELY( increment==0 ) ) break;
780 0 : fd_h2_window_update_t window_update = {
781 0 : .hdr = {
782 0 : .typlen = fd_h2_frame_typlen( FD_H2_FRAME_TYPE_WINDOW_UPDATE, 4UL )
783 0 : },
784 0 : .increment = fd_uint_bswap( increment )
785 0 : };
786 0 : fd_h2_rbuf_push( rbuf_tx, &window_update, sizeof(fd_h2_window_update_t) );
787 0 : conn->rx_wnd = conn->rx_wnd_max;
788 0 : conn->flags = (ushort)( (conn->flags) & (~FD_H2_CONN_FLAGS_WINDOW_UPDATE) );
789 0 : break;
790 0 : }
791 :
792 12 : default:
793 12 : break;
794 :
795 15 : }
796 :
797 15 : }
|
