d2/d1e/http__curl_8cpp_source.html

/*

 * This file is part of OpenTTD.

 * OpenTTD is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, version 2.

 * OpenTTD is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

 * See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with OpenTTD. If not, see <https://www.gnu.org/licenses/old-licenses/gpl-2.0>.

 */


#include "../../stdafx.h"

#include "../../debug.h"

#include "../../fileio_func.h"

#include "../../rev.h"

#include "../../thread.h"

#include "../network_internal.h"


#include "http.h"

#include "http_shared.h"


#include <atomic>

#include <condition_variable>

#include <curl/curl.h>

#include <mutex>

#include <queue>


#include "../../safeguards.h"


#if defined(UNIX)

static constexpr std::initializer_list<std::string_view> _certificate_files = {

  "/etc/ssl/certs/ca-certificates.crt"sv,                // Debian/Ubuntu/Gentoo etc.

  "/etc/pki/tls/certs/ca-bundle.crt"sv,                  // Fedora/RHEL 6

  "/etc/ssl/ca-bundle.pem"sv,                            // OpenSUSE

  "/etc/pki/tls/cacert.pem"sv,                           // OpenELEC

  "/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem"sv, // CentOS/RHEL 7

  "/etc/ssl/cert.pem"sv,                                 // Alpine Linux

};

static constexpr std::initializer_list<std::string_view> _certificate_directories = {

  "/etc/ssl/certs"sv,                                    // SLES10/SLES11, https://golang.org/issue/12139

  "/etc/pki/tls/certs"sv,                                // Fedora/RHEL

  "/system/etc/security/cacerts"sv,                      // Android

};

#endif /* UNIX */


static std::vector<HTTPThreadSafeCallback *> _http_callbacks;

static std::vector<HTTPThreadSafeCallback *> _new_http_callbacks;

static std::mutex _http_callback_mutex;

static std::mutex _new_http_callback_mutex;


class NetworkHTTPRequest {

public:


  NetworkHTTPRequest(std::string_view uri, HTTPCallback *callback, std::string &&data) :

    uri(uri),

    callback(callback),

    data(std::move(data))

  {

    std::lock_guard<std::mutex> lock(_new_http_callback_mutex);

    _new_http_callbacks.push_back(&this->callback);

  }


  ~NetworkHTTPRequest()

  {

    std::lock_guard<std::mutex> lock(_http_callback_mutex);

    _http_callbacks.erase(std::remove(_http_callbacks.begin(), _http_callbacks.end(), &this->callback), _http_callbacks.end());

  }


  const std::string uri;

  HTTPThreadSafeCallback callback;

  const std::string data;

};


static std::thread _http_thread;

static std::atomic<bool> _http_thread_exit = false;

static std::queue<std::unique_ptr<NetworkHTTPRequest>> _http_requests;

static std::mutex _http_mutex;

static std::condition_variable _http_cv;

#if defined(UNIX)

static std::string _http_ca_file = "";

static std::string _http_ca_path = "";

#endif /* UNIX */


/* static */ void NetworkHTTPSocketHandler::Connect(std::string_view uri, HTTPCallback *callback, std::string &&data)

{

#if defined(UNIX)

  if (_http_ca_file.empty() && _http_ca_path.empty()) {

    callback->OnFailure();

    return;

  }

#endif /* UNIX */


  std::lock_guard<std::mutex> lock(_http_mutex);

  _http_requests.push(std::make_unique<NetworkHTTPRequest>(uri, callback, std::move(data)));

  _http_cv.notify_one();

}


/* static */ void NetworkHTTPSocketHandler::HTTPReceive()

{

  std::lock_guard<std::mutex> lock(_http_callback_mutex);


  {

    std::lock_guard<std::mutex> lock_new(_new_http_callback_mutex);

    if (!_new_http_callbacks.empty()) {

      /* We delay adding new callbacks, as HandleQueue() below might add a new callback. */

      _http_callbacks.insert(_http_callbacks.end(), _new_http_callbacks.begin(), _new_http_callbacks.end());

      _new_http_callbacks.clear();

    }

  }


  for (auto &callback : _http_callbacks) {

    callback->HandleQueue();

  }

}


void CurlSetOption(CURL *curl, auto option, auto value)

{

  CURLcode res = curl_easy_setopt(curl, option, value);

  if (res != CURLE_OK) {

    Debug(net, 0, "Could not execute curl_easy_setopt for {} [{}]", option, res);

  }

}


void HttpThread()

{

  CURL *curl = curl_easy_init();

  assert(curl != nullptr);


  for (;;) {

    std::unique_lock<std::mutex> lock(_http_mutex);


    /* Wait for a new request. */

    while (_http_requests.empty() && !_http_thread_exit) {

      _http_cv.wait(lock);

    }

    if (_http_thread_exit) break;


    std::unique_ptr<NetworkHTTPRequest> request = std::move(_http_requests.front());

    _http_requests.pop();


    /* Release the lock, as we will take a while to process the request. */

    lock.unlock();


    /* Reset to default settings. */

    curl_easy_reset(curl);

    curl_slist *headers = nullptr;


    if (_debug_net_level >= 5) {

      CurlSetOption(curl, CURLOPT_VERBOSE, 1L);

    }


    /* Setup some default options. */

    std::string user_agent = fmt::format("OpenTTD/{}", GetNetworkRevisionString());

    CurlSetOption(curl, CURLOPT_USERAGENT, user_agent.c_str());

    CurlSetOption(curl, CURLOPT_FOLLOWLOCATION, 1L);

    CurlSetOption(curl, CURLOPT_MAXREDIRS, 5L);


    /* Ensure we validate the certificate and hostname of the server. */

#if defined(UNIX)

    CurlSetOption(curl, CURLOPT_CAINFO, _http_ca_file.empty() ? nullptr : _http_ca_file.c_str());

    CurlSetOption(curl, CURLOPT_CAPATH, _http_ca_path.empty() ? nullptr : _http_ca_path.c_str());

#endif /* UNIX */

    CurlSetOption(curl, CURLOPT_SSL_VERIFYHOST, 2);

    CurlSetOption(curl, CURLOPT_SSL_VERIFYPEER, true);


    /* Give the connection about 10 seconds to complete. */

    CurlSetOption(curl, CURLOPT_CONNECTTIMEOUT, 10L);


    /* Set a buffer of 100KiB, as the default of 16KiB seems a bit small. */

    CurlSetOption(curl, CURLOPT_BUFFERSIZE, 100L * 1024L);


    /* Fail our call if we don't receive a 2XX return value. */

    CurlSetOption(curl, CURLOPT_FAILONERROR, 1L);


    /* Prepare POST body and URI. */

    if (!request->data.empty()) {

      /* When the payload starts with a '{', it is a JSON payload. */

      if (request->data.starts_with("{")) {

        headers = curl_slist_append(headers, "Content-Type: application/json");

      } else {

        headers = curl_slist_append(headers, "Content-Type: application/x-www-form-urlencoded");

      }


      CurlSetOption(curl, CURLOPT_POST, 1L);

      CurlSetOption(curl, CURLOPT_POSTFIELDS, request->data.c_str());

      CurlSetOption(curl, CURLOPT_HTTPHEADER, headers);

    }

    CurlSetOption(curl, CURLOPT_URL, request->uri.c_str());


    /* Setup our (C-style) callback function which we pipe back into the callback. */

    CurlSetOption(curl, CURLOPT_WRITEFUNCTION, +[](char *ptr, size_t size, size_t nmemb, void *userdata) -> size_t {

      Debug(net, 6, "HTTP callback: {} bytes", size * nmemb);

      HTTPThreadSafeCallback *callback = static_cast<HTTPThreadSafeCallback *>(userdata);


      /* Copy the buffer out of CURL. OnReceiveData() will free it when done. */

      std::unique_ptr<char[]> buffer = std::make_unique<char[]>(size * nmemb);

      std::copy_n(ptr, size * nmemb, buffer.get());

      callback->OnReceiveData(std::move(buffer), size * nmemb);


      return size * nmemb;

    });

    CurlSetOption(curl, CURLOPT_WRITEDATA, &request->callback);


    /* Create a callback from which we can cancel. Sadly, there is no other

     * thread-safe way to do this. If the connection went idle, it can take

     * up to a second before this callback is called. There is little we can

     * do about this. */

    CurlSetOption(curl, CURLOPT_NOPROGRESS, 0L);

    CurlSetOption(curl, CURLOPT_XFERINFOFUNCTION, +[](void *userdata, curl_off_t /*dltotal*/, curl_off_t /*dlnow*/, curl_off_t /*ultotal*/, curl_off_t /*ulnow*/) -> int {

      const HTTPThreadSafeCallback *callback = static_cast<HTTPThreadSafeCallback *>(userdata);

      return (callback->cancelled || _http_thread_exit) ? 1 : 0;

    });

    CurlSetOption(curl, CURLOPT_XFERINFODATA, &request->callback);


    /* Perform the request. */

    CURLcode res = curl_easy_perform(curl);


    curl_slist_free_all(headers);


    if (res == CURLE_OK) {

      Debug(net, 1, "HTTP request succeeded");

      request->callback.OnReceiveData(nullptr, 0);

    } else {

      long status_code = 0;

      curl_easy_getinfo(curl, CURLINFO_RESPONSE_CODE, &status_code);


      /* No need to be verbose about rate limiting. */

      Debug(net, (request->callback.cancelled || _http_thread_exit || status_code == HTTP_429_TOO_MANY_REQUESTS) ? 1 : 0, "HTTP request failed: status_code: {}, error: {}", status_code, curl_easy_strerror(res));

      request->callback.OnFailure();

    }


    /* Wait till the callback tells us all data is dequeued, or _http_thread_exit has been set. */

    request->callback.WaitTillEmptyOrCondition([]() -> bool {

      return _http_thread_exit;

    });

  }


  curl_easy_cleanup(curl);

}


void NetworkHTTPInitialize()

{

  curl_global_init(CURL_GLOBAL_DEFAULT);


#if defined(UNIX)

  /* Depending on the Linux distro, certificates can either be in

   * a bundle or a folder, in a wide range of different locations.

   * Try to find what location is used by this OS. */

  for (auto &ca_file : _certificate_files) {

    if (FileExists(ca_file)) {

      _http_ca_file = ca_file;

      break;

    }

  }

  if (_http_ca_file.empty()) {

    for (auto &ca_path : _certificate_directories) {

      if (FileExists(ca_path)) {

        _http_ca_path = ca_path;

        break;

      }

    }

  }

  Debug(net, 3, "Using certificate file: {}", _http_ca_file.empty() ? "none" : _http_ca_file);

  Debug(net, 3, "Using certificate path: {}", _http_ca_path.empty() ? "none" : _http_ca_path);


  /* Tell the user why HTTPS will not be working. */

  if (_http_ca_file.empty() && _http_ca_path.empty()) {

    Debug(net, 0, "No certificate files or directories found, HTTPS will not work!");

  }

#endif /* UNIX */


  _http_thread_exit = false;

  StartNewThread(&_http_thread, "ottd:http", &HttpThread);

}


void NetworkHTTPUninitialize()

{

  _http_thread_exit = true;


  /* Ensure the callbacks are handled. This is mostly needed as we send

   * a survey just before close, and that might be pending here. */

  NetworkHTTPSocketHandler::HTTPReceive();


  {

    std::lock_guard<std::mutex> lock(_http_mutex);

    _http_cv.notify_one();

  }


  if (_http_thread.joinable()) {

    _http_thread.join();

  }


  curl_global_cleanup();

}


HTTPThreadSafeCallback
Converts a HTTPCallback to a Thread-Safe variant.
Definition http_shared.h:20

HTTPThreadSafeCallback::OnReceiveData
void OnReceiveData(std::unique_ptr< char[]> data, size_t length)
Similar to HTTPCallback::OnReceiveData, but thread-safe.
Definition http_shared.h:46

NetworkHTTPRequest
Single HTTP request.
Definition http_curl.cpp:52

NetworkHTTPRequest::data
const std::string data
Data to send, if any.
Definition http_curl.cpp:78

NetworkHTTPRequest::~NetworkHTTPRequest
~NetworkHTTPRequest()
Destructor of the HTTP request.
Definition http_curl.cpp:70

NetworkHTTPRequest::NetworkHTTPRequest
NetworkHTTPRequest(std::string_view uri, HTTPCallback *callback, std::string &&data)
Create a new HTTP request.
Definition http_curl.cpp:61

NetworkHTTPRequest::callback
HTTPThreadSafeCallback callback
Callback to send data back on.
Definition http_curl.cpp:77

NetworkHTTPRequest::uri
const std::string uri
URI to connect to.
Definition http_curl.cpp:76

NetworkHTTPSocketHandler::Connect
static void Connect(std::string_view uri, HTTPCallback *callback, std::string &&data="")
Connect to the given URI.
Definition http_curl.cpp:91

NetworkHTTPSocketHandler::HTTPReceive
static void HTTPReceive()
Do the receiving for all HTTP connections.
Definition http_curl.cpp:105

Debug
#define Debug(category, level, format_string,...)
Output a line of debugging information.
Definition debug.h:37

FileExists
bool FileExists(std::string_view filename)
Test whether the given filename exists.
Definition fileio.cpp:132

http.h
Basic functions to send and receive HTTP packets.

NetworkHTTPInitialize
void NetworkHTTPInitialize()
Initialize the HTTP socket handler.
Definition http_curl.cpp:248

NetworkHTTPUninitialize
void NetworkHTTPUninitialize()
Uninitialize the HTTP socket handler.
Definition http_curl.cpp:283

http_shared.h
Shared functions for implementations of HTTP requests.

GetNetworkRevisionString
std::string_view GetNetworkRevisionString()
Get the network version string used by this build.
Definition network_game_info.cpp:44

HTTPCallback
Callback for when the HTTP handler has something to tell us.
Definition http.h:18

HTTPCallback::OnFailure
virtual void OnFailure()=0
An error has occurred and the connection has been closed.

StartNewThread
bool StartNewThread(std::thread *thr, std::string_view name, TFn &&_Fx, TArgs &&... _Ax)
Start a new thread.
Definition thread.h:47

lock
std::mutex lock
synchronization for playback status fields
Definition win32_m.cpp:35