nasl_http.c File Reference

#include "nasl_http.h"
#include "../misc/plugutils.h"
#include "../misc/user_agent.h"
#include "exec.h"
#include "nasl_debug.h"
#include "nasl_func.h"
#include "nasl_global_ctxt.h"
#include "nasl_lex_ctxt.h"
#include "nasl_socket.h"
#include "nasl_tree.h"
#include "nasl_var.h"
#include <ctype.h>
#include <glib.h>
#include <gvm/base/prefs.h>
#include <gvm/util/kb.h>
#include <string.h>

Include dependency graph for nasl_http.c:

Go to the source code of this file.

Macros
#define	G_LOG_DOMAIN   "lib nasl"
	GLib log domain.

Functions
tree_cell *	http_open_socket (lex_ctxt *lexic)
tree_cell *	http_close_socket (lex_ctxt *lexic)
static char *	build_encode_URL (char *method, char *path, char *name, char *httpver)
static tree_cell *	_http_req (lex_ctxt *lexic, char *keyword)
tree_cell *	http_get (lex_ctxt *lexic)
tree_cell *	http_head (lex_ctxt *lexic)
tree_cell *	http_post (lex_ctxt *lexic)
tree_cell *	http_delete (lex_ctxt *lexic)
tree_cell *	http_put (lex_ctxt *lexic)
tree_cell *	cgibin (lex_ctxt *lexic)

Macro Definition Documentation

G_LOG_DOMAIN

#define G_LOG_DOMAIN   "lib nasl"

GLib log domain.

Definition at line 30 of file nasl_http.c.

Function Documentation

_http_req()

static tree_cell * _http_req ( lex_ctxt *  lexic, char *  keyword  )

static

Definition at line 63 of file nasl_http.c.

{
  tree_cell *retc;
  char *request, *auth, tmp[32];
  char *item = get_str_var_by_name (lexic, "item");
  char *data = get_str_var_by_name (lexic, "data");
  int port = get_int_var_by_name (lexic, "port", -1);
  struct script_infos *script_infos = lexic->script_infos;
  int ver;
  kb_t kb;
 
  if (item == NULL || port < 0)
    {
      nasl_perror (lexic,
                   "Error : http_* functions have the following syntax :\n");
      nasl_perror (lexic, "http_*(port:<port>, item:<item> [, data:<data>]\n");
      return NULL;
    }
 
  if (port <= 0 || port > 65535)
    {
      nasl_perror (lexic, "http_req: invalid value %d for port parameter\n",
                   port);
      return NULL;
    }
 
  kb = plug_get_kb (script_infos);
 
  g_snprintf (tmp, sizeof (tmp), "http/%d", port);
  ver = kb_item_get_int (kb, tmp);
 
  if ((ver <= 0) || (ver == 11))
    {
      char *hostname, *ua, *hostheader, *url;
 
      hostname = plug_get_host_fqdn (script_infos);
      if (hostname == NULL)
        return NULL;
 
      ua = g_strdup (user_agent_get (lexic->script_infos->ipc_context));
      /* Servers should not have a problem with port 80 or 443 appended.
       * RFC2616 allows to omit the port in which case the default port for
       * that service is assumed.
       * However, some servers like IIS/OWA wrongly respond with a "404"
       * instead of a "200" in case the port is appended. Because of this,
       * ports 80 and 443 are not appended.
       */
      if (port == 80 || port == 443)
        hostheader = g_strdup (hostname);
      else
        hostheader = g_strdup_printf ("%s:%d", hostname, port);
 
      url = build_encode_URL (keyword, NULL, item, "HTTP/1.1");
      request = g_strdup_printf ("%s\r\n\
Connection: Close\r\n\
Host: %s\r\n\
Pragma: no-cache\r\n\
Cache-Control: no-cache\r\n\
User-Agent: %s\r\n\
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, image/png, */*\r\n\
Accept-Language: en\r\n\
Accept-Charset: iso-8859-1,*,utf-8\r\n",
                                 url, hostheader, ua);
      g_free (hostname);
      g_free (hostheader);
      g_free (ua);
      g_free (url);
    }
  else
    request = build_encode_URL (keyword, NULL, item, "HTTP/1.0\r\n");
 
  g_snprintf (tmp, sizeof (tmp), "/tmp/http/auth/%d", port);
  auth = kb_item_get_str (kb, tmp);
  if (!auth)
    auth = kb_item_get_str (kb, "http/auth");
 
  if (auth)
    {
      char *authntmp = g_strconcat (request, auth, "\r\n", NULL);
      g_free (request);
      g_free (auth);
      request = authntmp;
    }
  if (data)
    {
      char content_length[128], *data_tmp;
 
      g_snprintf (content_length, sizeof (content_length),
                  "Content-Length: %zu\r\n\r\n", strlen (data));
      data_tmp = g_strconcat (request, content_length, data, NULL);
      g_free (request);
      request = data_tmp;
    }
  else
    {
      char *no_data_tmp = g_strconcat (request, "\r\n", NULL);
      g_free (request);
      request = no_data_tmp;
    }
 
  retc = alloc_typed_cell (CONST_DATA);
  retc->size = strlen (request);
  retc->x.str_val = request;
  return retc;
}

References alloc_typed_cell(), build_encode_URL(), CONST_DATA, get_int_var_by_name(), get_str_var_by_name(), hostname, script_infos::ipc_context, nasl_perror(), plug_get_host_fqdn(), plug_get_kb(), struct_lex_ctxt::script_infos, TC::size, TC::str_val, user_agent_get(), and TC::x.

Referenced by http_delete(), http_get(), http_head(), http_post(), and http_put().

Here is the call graph for this function:

Here is the caller graph for this function:

build_encode_URL()

static char * build_encode_URL ( char *  method, char *  path, char *  name, char *  httpver  )

static

Definition at line 47 of file nasl_http.c.

{
  char *ret, *ret2;
 
  if (path == NULL)
    ret = g_strdup (name);
  else
    ret = g_strdup_printf ("%s/%s", path, name);
 
  g_debug ("Request => %s", ret);
  ret2 = g_strdup_printf ("%s %s %s", method, ret, httpver);
  g_free (ret);
  return ret2;
}

References name.

Referenced by _http_req().

Here is the caller graph for this function:

cgibin()

tree_cell * cgibin

(

lex_ctxt *

lexic

)

Definition at line 224 of file nasl_http.c.

{
  const char *path = prefs_get ("cgi_path");
  tree_cell *retc;
 
  (void) lexic;
  if (path == NULL)
    path = "/cgi-bin:/scripts";
  retc = alloc_typed_cell (CONST_DATA);
  retc->x.str_val = g_strdup (path);
  retc->size = strlen (path);
 
  return retc;
}

References alloc_typed_cell(), CONST_DATA, TC::size, TC::str_val, and TC::x.

Here is the call graph for this function:

http_close_socket()

tree_cell * http_close_socket

(

lex_ctxt *

lexic

)

Definition at line 41 of file nasl_http.c.

{
  return nasl_close_socket (lexic);
}

References nasl_close_socket().

Here is the call graph for this function:

http_delete()

tree_cell * http_delete

(

lex_ctxt *

lexic

)

Definition at line 207 of file nasl_http.c.

{
  return _http_req (lexic, "DELETE");
}

References _http_req().

Here is the call graph for this function:

http_get()

tree_cell * http_get

(

lex_ctxt *

lexic

)

Definition at line 176 of file nasl_http.c.

{
  return _http_req (lexic, "GET");
}

References _http_req().

Referenced by plugin_do_run().

Here is the call graph for this function:

Here is the caller graph for this function:

http_head()

tree_cell * http_head

(

lex_ctxt *

lexic

)

Definition at line 188 of file nasl_http.c.

{
  return _http_req (lexic, "HEAD");
}

References _http_req().

Here is the call graph for this function:

http_open_socket()

tree_cell * http_open_socket

(

lex_ctxt *

lexic

)

Definition at line 35 of file nasl_http.c.

{
  return nasl_open_sock_tcp_bufsz (lexic, 65536);
}

References nasl_open_sock_tcp_bufsz().

Here is the call graph for this function:

http_post()

tree_cell * http_post

(

lex_ctxt *

lexic

)

Definition at line 198 of file nasl_http.c.

{
  return _http_req (lexic, "POST");
}

References _http_req().

Here is the call graph for this function:

http_put()

tree_cell * http_put

(

lex_ctxt *

lexic

)

Definition at line 216 of file nasl_http.c.

{
  return _http_req (lexic, "PUT");
}

References _http_req().

Here is the call graph for this function: