/* $FreeBSD: rev 267127 $ */

/* $NetBSD: http.c,v 1.37 2014/06/11 13:12:12 joerg Exp $ */

/*-

* Copyright (c) 2000-2014 Dag-Erling Smorgrav

* Copyright (c) 2003 Thomas Klausner <wiz@NetBSD.org>

* Copyright (c) 2008, 2009 Joerg Sonnenberger <joerg@NetBSD.org>

* All rights reserved.

*

* Redistribution and use in source and binary forms, with or without

* modification, are permitted provided that the following conditions

* are met:

* 1. Redistributions of source code must retain the above copyright

* notice, this list of conditions and the following disclaimer

* in this position and unchanged.

* 2. Redistributions in binary form must reproduce the above copyright

* notice, this list of conditions and the following disclaimer in the

* documentation and/or other materials provided with the distribution.

* 3. The name of the author may not be used to endorse or promote products

* derived from this software without specific prior written permission.

*

* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR

* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.

* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,

* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,

* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY

* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF

* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

*/

/*

* The following copyright applies to the base64 code:

*

*-

* Copyright 1997 Massachusetts Institute of Technology

*

* Permission to use, copy, modify, and distribute this software and

* its documentation for any purpose and without fee is hereby

* granted, provided that both the above copyright notice and this

* permission notice appear in all copies, that both the above

* copyright notice and this permission notice appear in all

* supporting documentation, and that the name of M.I.T. not be used

* in advertising or publicity pertaining to distribution of the

* software without specific, written prior permission. M.I.T. makes

* no representations about the suitability of this software for any

* purpose. It is provided "as is" without express or implied

* warranty.

*

* THIS SOFTWARE IS PROVIDED BY M.I.T. ``AS IS''. M.I.T. DISCLAIMS

* ALL EXPRESS OR IMPLIED WARRANTIES WITH REGARD TO THIS SOFTWARE,

* INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF

* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT

* SHALL M.I.T. BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT

* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF

* USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND

* ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,

* OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT

* OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

* SUCH DAMAGE.

*/

#include <sys/types.h>

#include <sys/socket.h>

#include <ctype.h>

#include <errno.h>

#include <locale.h>

#include <stdarg.h>

#include <stdio.h>

#include <stdlib.h>

#include <string.h>

#include <time.h>

#include <unistd.h>

#include <netinet/in.h>

#include <netinet/tcp.h>

#include <netdb.h>

#include <arpa/inet.h>

#include "fetch.h"

#include "common.h"

#include "httperr.h"

/* Maximum number of redirects to follow */

#define MAX_REDIRECT 5

/* Symbolic names for reply codes we care about */

#define HTTP_OK 200

#define HTTP_PARTIAL 206

#define HTTP_MOVED_PERM 301

#define HTTP_MOVED_TEMP 302

#define HTTP_SEE_OTHER 303

#define HTTP_NOT_MODIFIED 304

#define HTTP_USE_PROXY 305

#define HTTP_TEMP_REDIRECT 307

#define HTTP_PERM_REDIRECT 308

#define HTTP_NEED_AUTH 401

#define HTTP_NEED_PROXY_AUTH 407

#define HTTP_BAD_RANGE 416

#define HTTP_PROTOCOL_ERROR 999

#define HTTP_REDIRECT(xyz) ((xyz) == HTTP_MOVED_PERM \

|| (xyz) == HTTP_MOVED_TEMP \

|| (xyz) == HTTP_TEMP_REDIRECT \

|| (xyz) == HTTP_USE_PROXY \

|| (xyz) == HTTP_SEE_OTHER)

#define HTTP_ERROR(xyz) ((xyz) > 400 && (xyz) < 599)

static int http_cmd(conn_t *, const char *, ...) LIBFETCH_PRINTFLIKE(2, 3);

/*****************************************************************************

* I/O functions for decoding chunked streams

*/

struct httpio

};

/*

* Get next chunk header

*/

static int

http_new_chunk(struct httpio *io)

{

char *p;

if (fetch_getln(io->conn) == -1)

return (-1);

if (io->conn->buflen < 2 || !isxdigit((unsigned char)*io->conn->buf))

return (-1);

for (p = io->conn->buf; *p && !isspace((unsigned char)*p); ++p) {

if (*p == ';')

break;

if (!isxdigit((unsigned char)*p))

return (-1);

if (isdigit((unsigned char)*p)) {

io->chunksize = io->chunksize * 16 +

*p - '0';

} else {

io->chunksize = io->chunksize * 16 +

10 + tolower((unsigned char)*p) - 'a';

}

}

return (io->chunksize);

}

/*

* Grow the input buffer to at least len bytes

*/

static int

http_growbuf(struct httpio *io, size_t len)

{

char *tmp;

if (io->bufsize >= len)

return (0);

if ((tmp = realloc(io->buf, len)) == NULL)

return (-1);

io->buf = tmp;

io->bufsize = len;

return (0);

}

/*

* Fill the input buffer, do chunk decoding on the fly

*/

static int

http_fillbuf(struct httpio *io, size_t len)

{

if (io->error)

return (-1);

if (io->eof)

return (0);

if (io->contentlength >= 0 && (off_t)len > io->contentlength)

len = io->contentlength;

if (io->chunked == 0) {

if (http_growbuf(io, len) == -1)

return (-1);

if ((io->buflen = fetch_read(io->conn, io->buf, len)) == -1) {

io->error = 1;

return (-1);

}

if (io->contentlength)

io->contentlength -= io->buflen;

io->bufpos = 0;

return (io->buflen);

}

if (io->chunksize == 0) {

switch (http_new_chunk(io)) {

case -1:

io->error = 1;

return (-1);

case 0:

io->eof = 1;

if (fetch_getln(io->conn) == -1)

return (-1);

return (0);

}

}

if (len > io->chunksize)

len = io->chunksize;

if (http_growbuf(io, len) == -1)

return (-1);

if ((io->buflen = fetch_read(io->conn, io->buf, len)) == -1) {

io->error = 1;

return (-1);

}

io->chunksize -= io->buflen;

if (io->contentlength >= 0)

io->contentlength -= io->buflen;

if (io->chunksize == 0) {

char endl[2];

ssize_t len2;

len2 = fetch_read(io->conn, endl, 2);

if (len2 == 1 && fetch_read(io->conn, endl + 1, 1) != 1)

return (-1);

if (len2 == -1 || endl[0] != '\r' || endl[1] != '\n')

return (-1);

}

io->bufpos = 0;

return (io->buflen);

}

/*

* Read function

*/

static ssize_t

http_readfn(void *v, void *buf, size_t len)

{

struct httpio *io = (struct httpio *)v;

size_t l, pos;

if (io->error)

return (-1);

if (io->eof)

return (0);

for (pos = 0; len > 0; pos += l, len -= l) {

/* empty buffer */

if (!io->buf || io->bufpos == io->buflen)

if (http_fillbuf(io, len) < 1)

break;

if (!io->buf)

return -1;

l = io->buflen - io->bufpos;

if (len < l)

l = len;

memcpy((char *)buf + pos, io->buf + io->bufpos, l);

io->bufpos += l;

}

if (!pos && io->error)

return (-1);

return (pos);

}

/*

* Write function

*/

static ssize_t

http_writefn(void *v, const void *buf, size_t len)

{

struct httpio *io = (struct httpio *)v;

return (fetch_write(io->conn, buf, len));

}

/*

* Close function

*/

static void

http_closefn(void *v)

{

struct httpio *io = (struct httpio *)v;

if (io->keep_alive) {

int val;

val = 0;

setsockopt(io->conn->sd, IPPROTO_TCP, TCP_NODELAY, &val,

sizeof(val));

fetch_cache_put(io->conn, fetch_close);

#ifdef TCP_NOPUSH

val = 1;

setsockopt(io->conn->sd, IPPROTO_TCP, TCP_NOPUSH, &val,

sizeof(val));

#endif

} else {

fetch_close(io->conn);

}

free(io->buf);

free(io);

}

/*

* Wrap a file descriptor up

*/

static fetchIO *

http_funopen(conn_t *conn, int chunked, int keep_alive, off_t clength)

{

struct httpio *io;

fetchIO *f;

if ((io = calloc(1, sizeof(*io))) == NULL) {

fetch_syserr();

return (NULL);

}

io->conn = conn;

io->chunked = chunked;

io->contentlength = clength;

io->keep_alive = keep_alive;

f = fetchIO_unopen(io, http_readfn, http_writefn, http_closefn);

if (f == NULL) {

fetch_syserr();

free(io);

return (NULL);

}

return (f);

}

/*****************************************************************************

* Helper functions for talking to the server and parsing its replies

*/

/* Header types */

typedef enum {

hdr_syserror = -2,

hdr_error = -1,

hdr_end = 0,

hdr_unknown = 1,

hdr_connection,

hdr_content_length,

hdr_content_range,

hdr_last_modified,

hdr_location,

hdr_transfer_encoding,

hdr_www_authenticate

} hdr_t;

/* Names of interesting headers */

static struct {

hdr_t num;

const char *name;

} hdr_names[] = {

{ hdr_connection, "Connection" },

{ hdr_content_length, "Content-Length" },

{ hdr_content_range, "Content-Range" },

{ hdr_last_modified, "Last-Modified" },

{ hdr_location, "Location" },

{ hdr_transfer_encoding, "Transfer-Encoding" },

{ hdr_www_authenticate, "WWW-Authenticate" },

{ hdr_unknown, NULL },

};

/*

* Send a formatted line; optionally echo to terminal

*/

LIBFETCH_PRINTFLIKE(2, 3)

static int

http_cmd(conn_t *conn, const char *fmt, ...)

{

va_list ap;

size_t len;

char *msg;

int r;

va_start(ap, fmt);

len = vasprintf(&msg, fmt, ap);

va_end(ap);

if (msg == NULL) {

errno = ENOMEM;

fetch_syserr();

return (-1);

}

r = fetch_write(conn, msg, len);

free(msg);

if (r == -1) {

fetch_syserr();

return (-1);

}

return (0);

}

/*

* Get and parse status line

*/

static int

http_get_reply(conn_t *conn, int *keep_alive)

{

char *p;

if (fetch_getln(conn) == -1)

return (-1);

/*

* A valid status line looks like "HTTP/m.n xyz reason" where m

* and n are the major and minor protocol version numbers and xyz

* is the reply code.

* Unfortunately, there are servers out there (NCSA 1.5.1, to name

* just one) that do not send a version number, so we can't rely

* on finding one, but if we do, insist on it being 1.0 or 1.1.

* We don't care about the reason phrase.

*/

if (strncmp(conn->buf, "HTTP", 4) != 0)

return (HTTP_PROTOCOL_ERROR);

p = conn->buf + 4;

if (*p == '/') {

if (p[1] != '1' || p[2] != '.' || (p[3] != '0' && p[3] != '1'))

return (HTTP_PROTOCOL_ERROR);

/* HTTP/1.1 defaults to the use of "persistent connections" */

if (keep_alive && p[3] == '1') {

*keep_alive = 1;

}

p += 4;

}

if (*p != ' ' ||

!isdigit((unsigned char)p[1]) ||

!isdigit((unsigned char)p[2]) ||

!isdigit((unsigned char)p[3]))

return (HTTP_PROTOCOL_ERROR);

conn->err = (p[1] - '0') * 100 + (p[2] - '0') * 10 + (p[3] - '0');

return (conn->err);

}

/*

* Check a header; if the type matches the given string, return a pointer

* to the beginning of the value.

*/

static const char *

http_match(const char *str, const char *hdr)

{

while (*str && *hdr &&

tolower((unsigned char)*str++) == tolower((unsigned char)*hdr++))

/* nothing */;

if (*str || *hdr != ':')

return (NULL);

while (*hdr && isspace((unsigned char)*++hdr))

/* nothing */;

return (hdr);

}

/*

* Get the next header and return the appropriate symbolic code.

*/

static hdr_t

http_next_header(conn_t *conn, const char **p)

{

int i;

if (fetch_getln(conn) == -1)

return (hdr_syserror);

while (conn->buflen && isspace((unsigned char)conn->buf[conn->buflen - 1]))

conn->buflen--;

conn->buf[conn->buflen] = '\0';

if (conn->buflen == 0)

return (hdr_end);

/*

* We could check for malformed headers but we don't really care.

* A valid header starts with a token immediately followed by a

* colon; a token is any sequence of non-control, non-whitespace

* characters except "()<>@,;:\\\"{}".

*/

for (i = 0; hdr_names[i].num != hdr_unknown; i++)

if ((*p = http_match(hdr_names[i].name, conn->buf)) != NULL)

return (hdr_names[i].num);

return (hdr_unknown);

}

/*

* Parse a last-modified header

*/

static int

http_parse_mtime(const char *p, time_t *mtime)

{

char locale[64], *r;

struct tm tm;

strncpy(locale, setlocale(LC_TIME, NULL), sizeof(locale)-1);

locale[sizeof(locale)-1] = '\0';

setlocale(LC_TIME, "C");

r = strptime(p, "%a, %d %b %Y %H:%M:%S GMT", &tm);

/*

* Some proxies use UTC in response, but it should still be

* parsed. RFC2616 states GMT and UTC are exactly equal for HTTP.

*/

if (r == NULL)

r = strptime(p, "%a, %d %b %Y %H:%M:%S UTC", &tm);

/* XXX should add support for date-2 and date-3 */

setlocale(LC_TIME, locale);

if (r == NULL)

return (-1);

*mtime = timegm(&tm);

return (0);

}

/*

* Parse a content-length header

*/

static int

http_parse_length(const char *p, off_t *length)

{

off_t len;

for (len = 0; *p && isdigit((unsigned char)*p); ++p)

len = len * 10 + (*p - '0');

if (*p)

return (-1);

*length = len;

return (0);

}

/*

* Parse a content-range header

*/

static int

http_parse_range(const char *p, off_t *offset, off_t *length, off_t *size)

{

off_t first, last, len;

if (strncasecmp(p, "bytes ", 6) != 0)

return (-1);

p += 6;

if (*p == '*') {

first = last = -1;

++p;

} else {

for (first = 0; *p && isdigit((unsigned char)*p); ++p)

first = first * 10 + *p - '0';

if (*p != '-')

return (-1);

for (last = 0, ++p; *p && isdigit((unsigned char)*p); ++p)

last = last * 10 + *p - '0';

}

if (first > last || *p != '/')

return (-1);

for (len = 0, ++p; *p && isdigit((unsigned char)*p); ++p)

len = len * 10 + *p - '0';

if (*p || len < last - first + 1)

return (-1);

if (first == -1)

*length = 0;

else

*length = last - first + 1;

*offset = first;

*size = len;

return (0);

}

/*****************************************************************************

* Helper functions for authorization

*/

/*

* Base64 encoding

*/

static char *

http_base64(const char *src)

{

static const char base64[] =

"ABCDEFGHIJKLMNOPQRSTUVWXYZ"

"abcdefghijklmnopqrstuvwxyz"

"0123456789+/";

char *str, *dst;

size_t l;

int t;

l = strlen(src);

if ((str = malloc(((l + 2) / 3) * 4 + 1)) == NULL)

return (NULL);

dst = str;

while (l >= 3) {

t = (src[0] << 16) | (src[1] << 8) | src[2];

dst[0] = base64[(t >> 18) & 0x3f];

dst[1] = base64[(t >> 12) & 0x3f];

dst[2] = base64[(t >> 6) & 0x3f];

dst[3] = base64[(t >> 0) & 0x3f];

src += 3; l -= 3;

dst += 4;

}

switch (l) {

case 2:

t = (src[0] << 16) | (src[1] << 8);

dst[0] = base64[(t >> 18) & 0x3f];

dst[1] = base64[(t >> 12) & 0x3f];

dst[2] = base64[(t >> 6) & 0x3f];

dst[3] = '=';

dst += 4;

break;

case 1:

t = src[0] << 16;

dst[0] = base64[(t >> 18) & 0x3f];

dst[1] = base64[(t >> 12) & 0x3f];

dst[2] = dst[3] = '=';

dst += 4;

break;

case 0:

break;

}

*dst = 0;

return (str);

}

/*

* Encode username and password

*/

static int

http_basic_auth(conn_t *conn, const char *hdr, const char *usr, const char *pwd)

{

char *upw, *auth;

int r;

if (asprintf(&upw, "%s:%s", usr, pwd) == -1)

return (-1);

auth = http_base64(upw);

free(upw);

if (auth == NULL)

return (-1);

r = http_cmd(conn, "%s: Basic %s\r\n", hdr, auth);

free(auth);

return (r);

}

/*

* Send an authorization header

*/

static int

http_authorize(conn_t *conn, const char *hdr, const char *p)

{

/* basic authorization */

if (strncasecmp(p, "basic:", 6) == 0) {

char *user, *pwd, *str;

int r;

/* skip realm */

for (p += 6; *p && *p != ':'; ++p)

/* nothing */ ;

if (!*p || strchr(++p, ':') == NULL)

return (-1);

if ((str = strdup(p)) == NULL)

return (-1); /* XXX */

user = str;

pwd = strchr(str, ':');

*pwd++ = '\0';

r = http_basic_auth(conn, hdr, user, pwd);

free(str);

return (r);

}

return (-1);

}

/*****************************************************************************

* Helper functions for connecting to a server or proxy

*/

/*

* Send headers consumed by the proxy server.

*/

static void

send_proxy_headers(conn_t *conn, struct url *purl)

{

char *p;

/* proxy authorization */

if (purl) {

if (*purl->user || *purl->pwd)

http_basic_auth(conn, "Proxy-Authorization",

purl->user, purl->pwd);

else if ((p = getenv("HTTP_PROXY_AUTH")) != NULL && *p != '\0')

http_authorize(conn, "Proxy-Authorization", p);

}

}

/*

* Connect to the correct HTTP server or proxy.

*/

static conn_t *

http_connect(struct url *URL, struct url *purl, const char *flags, int *cached)

{

struct url *curl;

conn_t *conn;

const char *p;

hdr_t h;

int af, verbose;

#ifdef TCP_NOPUSH

int val;

#endif

#ifdef INET6

af = AF_UNSPEC;

#else

af = AF_INET;

#endif

verbose = CHECK_FLAG('v');

if (CHECK_FLAG('4'))

af = AF_INET;

#ifdef INET6

else if (CHECK_FLAG('6'))

af = AF_INET6;

#endif

curl = (purl != NULL) ? purl : URL;

if ((conn = fetch_cache_get(curl, af)) != NULL) {

*cached = 1;

return (conn);

}

if ((conn = fetch_connect(curl, af, verbose)) == NULL)

/* fetch_connect() has already set an error code */

return (NULL);

if (strcasecmp(URL->scheme, SCHEME_HTTPS) == 0 && purl) {

http_cmd(conn, "CONNECT %s:%d HTTP/1.1\r\n",

URL->host, URL->port);

send_proxy_headers(conn, purl);

http_cmd(conn, "\r\n");

if (http_get_reply(conn, NULL) != HTTP_OK) {

http_seterr(conn->err);

fetch_close(conn);

return (NULL);

}

/* Read and discard the rest of the proxy response */

do {

switch ((h = http_next_header(conn, &p))) {

case hdr_syserror:

fetch_syserr();

fetch_close(conn);

return (NULL);

case hdr_error:

http_seterr(HTTP_PROTOCOL_ERROR);

fetch_close(conn);

return (NULL);

default:

/* ignore */ ;

}

} while (h > hdr_end);

}

if (strcasecmp(URL->scheme, SCHEME_HTTPS) == 0 &&

fetch_ssl(conn, URL, verbose) == -1) {

fetch_close(conn);

/* grrr */

#ifdef EAUTH

errno = EAUTH;

#else

errno = EPERM;

#endif

fetch_syserr();

return (NULL);

}

#ifdef TCP_NOPUSH

val = 1;

setsockopt(conn->sd, IPPROTO_TCP, TCP_NOPUSH, &val, sizeof(val));

#endif

return (conn);

}

static struct url *

http_get_proxy(struct url * url, const char *flags)

{

struct url *purl;

char *p;

if (flags != NULL && strchr(flags, 'd') != NULL)

return (NULL);

if (fetch_no_proxy_match(url->host))

return (NULL);

if (((p = getenv("HTTP_PROXY")) || (p = getenv("http_proxy"))) &&

*p && (purl = fetchParseURL(p))) {

if (!*purl->scheme)

strcpy(purl->scheme, SCHEME_HTTP);

if (!purl->port)

purl->port = fetch_default_proxy_port(purl->scheme);

if (strcasecmp(purl->scheme, SCHEME_HTTP) == 0)

return (purl);

fetchFreeURL(purl);

}

return (NULL);

}

static void

set_if_modified_since(conn_t *conn, time_t last_modified)

{

static const char weekdays[] = "SunMonTueWedThuFriSat";

static const char months[] = "JanFebMarAprMayJunJulAugSepOctNovDec";

struct tm tm;

char buf[80];

gmtime_r(&last_modified, &tm);

snprintf(buf, sizeof(buf), "%.3s, %02d %.3s %4ld %02d:%02d:%02d GMT",

weekdays + tm.tm_wday * 3, tm.tm_mday, months + tm.tm_mon * 3,

(long)(tm.tm_year + 1900), tm.tm_hour, tm.tm_min, tm.tm_sec);

http_cmd(conn, "If-Modified-Since: %s\r\n", buf);

}

/*****************************************************************************

* Core

*/

/*

* Send a request and process the reply

*

* XXX This function is way too long, the do..while loop should be split

* XXX off into a separate function.

*/

fetchIO *

http_request(struct url *URL, const char *op, struct url_stat *us,

struct url *purl, const char *flags)

{

conn_t *conn = NULL;

struct url *url, *new;

int chunked, direct, if_modified_since, need_auth, noredirect;

int keep_alive, verbose, cached;

int e, i, n, val;

off_t offset, clength, length, size;

time_t mtime;

const char *p;

fetchIO *f;

hdr_t h;

char hbuf[URL_HOSTLEN + 7], *host;

direct = CHECK_FLAG('d');

noredirect = CHECK_FLAG('A');

verbose = CHECK_FLAG('v');

if_modified_since = CHECK_FLAG('i');

keep_alive = 0;

if (direct && purl) {

fetchFreeURL(purl);

purl = NULL;

}

/* try the provided URL first */

url = URL;

/* if the A flag is set, we only get one try */

n = noredirect ? 1 : MAX_REDIRECT;

i = 0;

e = HTTP_PROTOCOL_ERROR;

need_auth = 0;

do {

new = NULL;

chunked = 0;

offset = 0;

clength = -1;

length = -1;

size = -1;

mtime = 0;

cached = 0;

/* check port */

if (!url->port)

url->port = fetch_default_port(url->scheme);

/* were we redirected to an FTP URL? */

if (purl == NULL && strcmp(url->scheme, SCHEME_FTP) == 0) {

if (strcmp(op, "GET") == 0)

return (ftp_request(url, "RETR", NULL, us, purl, flags));

else if (strcmp(op, "HEAD") == 0)

return (ftp_request(url, "STAT", NULL, us, purl, flags));

}

/* connect to server or proxy */

if (conn != NULL)

fetch_close(conn);

if ((conn = http_connect(url, purl, flags, &cached)) == NULL)

goto ouch;

host = url->host;

#ifdef INET6

if (strchr(url->host, ':')) {

snprintf(hbuf, sizeof(hbuf), "[%s]", url->host);

host = hbuf;

}

#endif

if (url->port != fetch_default_port(url->scheme)) {

if (host != hbuf) {

strcpy(hbuf, host);

host = hbuf;

}

snprintf(hbuf + strlen(hbuf),

sizeof(hbuf) - strlen(hbuf), ":%d", url->port);

}

/* send request */

if (verbose)

fetch_info("requesting %s://%s%s",

url->scheme, host, url->doc);

if (purl && strcasecmp(url->scheme, SCHEME_HTTPS) != 0) {

http_cmd(conn, "%s %s://%s%s HTTP/1.1\r\n",

op, url->scheme, host, url->doc);

} else {

http_cmd(conn, "%s %s HTTP/1.1\r\n",

op, url->doc);

}

if (if_modified_since && url->last_modified > 0)

set_if_modified_since(conn, url->last_modified);

/* virtual host */

http_cmd(conn, "Host: %s\r\n", host);

if (strcasecmp(url->scheme, SCHEME_HTTPS) != 0)

send_proxy_headers(conn, purl);

/* server authorization */

if (need_auth || *url->user || *url->pwd) {

if (*url->user || *url->pwd)

http_basic_auth(conn, "Authorization", url->user, url->pwd);

else if ((p = getenv("HTTP_AUTH")) != NULL && *p != '\0')

http_authorize(conn, "Authorization", p);

else if (fetchAuthMethod && fetchAuthMethod(url) == 0) {

http_basic_auth(conn, "Authorization", url->user, url->pwd);

} else {

http_seterr(HTTP_NEED_AUTH);

goto ouch;

}

}

/* other headers */

if ((p = getenv("HTTP_REFERER")) != NULL && *p != '\0') {

if (strcasecmp(p, "auto") == 0)

http_cmd(conn, "Referer: %s://%s%s\r\n",

url->scheme, host, url->doc);

else

http_cmd(conn, "Referer: %s\r\n", p);

}

if ((p = getenv("HTTP_USER_AGENT")) != NULL) {

/* no User-Agent if defined but empty */

if (*p != '\0')

http_cmd(conn, "User-Agent: %s\r\n", p);

} else {

/* default User-Agent */

http_cmd(conn, "User-Agent: %s\r\n", _LIBFETCH_VER);

}

/*

* Some servers returns 406 (Not Acceptable) if the Accept field is not

* provided by the user agent, such example is http://alioth.debian.org.

*/

http_cmd(conn, "Accept: */*\r\n");

if (url->offset > 0)

http_cmd(conn, "Range: bytes=%lld-\r\n", (long long)url->offset);

http_cmd(conn, "\r\n");

/*

* Force the queued request to be dispatched. Normally, one

* would do this with shutdown(2) but squid proxies can be

* configured to disallow such half-closed connections. To

* be compatible with such configurations, fiddle with socket

* options to force the pending data to be written.

*/