ccfos
/
huatuo
Not watched
1
0
Fork 0
Code
Releases 0 Wiki evaluate Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain HPC
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branch: main
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'main'
${ noResults }
huatuo/internal/request/rawhttp.go

238 lines
5.7 kB
Raw Permalink Blame History 

  1. // Copyright 2025 The HuaTuo Authors

  2. //

  3. // Licensed under the Apache License, Version 2.0 (the "License");

  4. // you may not use this file except in compliance with the License.

  5. // You may obtain a copy of the License at

  6. //

  7. // http://www.apache.org/licenses/LICENSE-2.0

  8. //

  9. // Unless required by applicable law or agreed to in writing, software

  10. // distributed under the License is distributed on an "AS IS" BASIS,

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. // See the License for the specific language governing permissions and

  13. // limitations under the License.

  14. 

  15. package request

  16. 

  17. import (

  18. 	"bufio"

  19. 	"bytes"

  20. 	"encoding/json"

  21. 	"io"

  22. 	"net"

  23. 	"net/http"

  24. 	"runtime"

  25. 	"syscall"

  26. )

  27. 

  28. const (

  29. 	cmsgDataMax = 200 * 4

  30. 	dataMax     = 3072

  31. )

  32. 

  33. // RawHTTP is a structure that describes a Info of raw Http

  34. type RawHTTP struct {

  35. 	conn   *net.UnixConn

  36. 	method string

  37. }

  38. 

  39. func parsePerfFds(data []byte) ([]int, error) {

  40. 	// parse control msgs

  41. 	var msgs []syscall.SocketControlMessage

  42. 	msgs, err := syscall.ParseSocketControlMessage(data)

  43. 	if err != nil {

  44. 		return nil, err

  45. 	}

  46. 

  47. 	resFds := []int{}

  48. 	for i := range msgs {

  49. 		var fds []int

  50. 		fds, err := syscall.ParseUnixRights(&msgs[i])

  51. 		if err != nil {

  52. 			return nil, err

  53. 		}

  54. 

  55. 		resFds = append(resFds, fds...)

  56. 	}

  57. 

  58. 	return resFds, nil

  59. }

  60. 

  61. func makeRequestRawBuf(method, url, sid string, body io.Reader) (*bytes.Buffer, error) {

  62. 	// send request

  63. 	sbuf := new(bytes.Buffer)

  64. 

  65. 	req, err := http.NewRequest(method, url, body)

  66. 	if err != nil {

  67. 		return nil, err

  68. 	}

  69. 	req.Header.Add("X-HUATUO-SID", sid)

  70. 	req.Header.Set("Content-Type", "application/json")

  71. 

  72. 	if err := req.Write(sbuf); err != nil {

  73. 		return nil, err

  74. 	}

  75. 

  76. 	return sbuf, err

  77. }

  78. 

  79. func connectUnix(sock string) (*net.UnixConn, error) {

  80. 	c, err := net.Dial("unix", sock)

  81. 	if err != nil {

  82. 		return nil, err

  83. 	}

  84. 

  85. 	// auto clean

  86. 	runtime.SetFinalizer(c, (*net.UnixConn).Close)

  87. 

  88. 	return c.(*net.UnixConn), nil

  89. }

  90. 

  91. // SendRequest Provide a standard interface for sending http to the security agent

  92. func (h *RawHTTP) SendRequest(sock, method, url, sid string, body io.Reader) error {

  93. 	conn, err := connectUnix(sock)

  94. 	if err != nil {

  95. 		return err

  96. 	}

  97. 

  98. 	buf, err := makeRequestRawBuf(method, url, sid, body)

  99. 	if err != nil {

  100. 		return err

  101. 	}

  102. 

  103. 	// write raw http data

  104. 	_, err = conn.Write(buf.Bytes())

  105. 	if err != nil {

  106. 		return err

  107. 	}

  108. 

  109. 	h.conn = conn

  110. 	h.method = method

  111. 

  112. 	return nil

  113. }

  114. 

  115. func setCmsgtoResp(resp *http.Response, fds []int) (*http.Response, error) {

  116. 	// Resp.Body we will re assign the value so close it

  117. 	resp.Body.Close()

  118. 

  119. 	// Construct body info, we only transfer fds

  120. 	body := make(map[string]any)

  121. 	body["fds"] = &fds

  122. 

  123. 	newbody, err := json.Marshal(body)

  124. 	if err != nil {

  125. 		return nil, err

  126. 	}

  127. 

  128. 	resp.Body = io.NopCloser(bytes.NewReader(newbody))

  129. 	return resp, nil

  130. }

  131. 

  132. func noExistCmsg(length int) bool {

  133. 	// If length is 0, it means that data is only http response data,

  134. 	return length == 0

  135. }

  136. 

  137. func handlerResponse(method string, data []byte) (*http.Response, error) {

  138. 	return http.ReadResponse(bufio.NewReader(bytes.NewReader(data)), &http.Request{Method: method})

  139. }

  140. 

  141. func handlerCmsgAndResponse(method string, requestFD int, cmsgData []byte) (*http.Response, error) {

  142. 	// When the count of CPUs exceeds 200, there can receive multiple responses within cmsgs.

  143. 	var allFds []int

  144. 

  145. 	// The first response contains cmsg.

  146. 	fds, err := parsePerfFds(cmsgData)

  147. 	if err != nil {

  148. 		return nil, err

  149. 	}

  150. 	allFds = append(allFds, fds...)

  151. 

  152. 	for {

  153. 		// Read the next response which could contain cmsg.

  154. 		httpData, cmsgData, err := readCmsgAndResponse(requestFD)

  155. 		if err != nil {

  156. 			return nil, err

  157. 		}

  158. 

  159. 		// Judge cmsgData to determine whether data is only HTTP response data, and exit

  160. 		// the loop.

  161. 		if noExistCmsg(len(cmsgData)) {

  162. 			resp, err := http.ReadResponse(bufio.NewReader(bytes.NewReader(httpData)), &http.Request{Method: method})

  163. 			if err != nil {

  164. 				return nil, err

  165. 			}

  166. 

  167. 			return setCmsgtoResp(resp, allFds)

  168. 		}

  169. 

  170. 		// Parse cmsg

  171. 		fds, err := parsePerfFds(cmsgData)

  172. 		if err != nil {

  173. 			return nil, err

  174. 		}

  175. 		allFds = append(allFds, fds...)

  176. 	}

  177. }

  178. 

  179. // readCmsgAndResponse Provide a standard interface for reading cmsg and http response to

  180. // the security agent.

  181. func readCmsgAndResponse(fd int) ([]byte, []byte, error) {

  182. 	// The data is divided into two parts:

  183. 	// 1. [:cmsgLen] as cmsg

  184. 	// 2. [cmsgLen:] as http response data

  185. 	data := make([]byte, dataMax)

  186. 	cmsgLen := syscall.CmsgSpace(cmsgDataMax)

  187. 

  188. 	cmsgData := data[:cmsgLen]

  189. 	httpData := data[cmsgLen:]

  190. 

  191. 	// Read data: There are two cases here

  192. 	// 1. If cLen is 0, only HTTP response data is received.

  193. 	// 2. If cLen is not 0, it means that cmsg has been received and next recv HTTP response.

  194. 	_, cLen, _, _, err := syscall.Recvmsg(fd, httpData, cmsgData, 0)

  195. 	if err != nil {

  196. 		return nil, nil, err

  197. 	}

  198. 

  199. 	return httpData, cmsgData[:cLen], nil

  200. }

  201. 

  202. // ReadResponse Provide a standard interface for reading http response to the security agent

  203. func (h *RawHTTP) ReadResponse() (*http.Response, error) {

  204. 	connFile, err := h.conn.File()

  205. 	if err != nil {

  206. 		return nil, err

  207. 	}

  208. 

  209. 	defer connFile.Close()

  210. 	defer h.conn.Close()

  211. 

  212. 	httpData, cmsgData, err := readCmsgAndResponse(int(connFile.Fd()))

  213. 	if err != nil {

  214. 		return nil, err

  215. 	}

  216. 

  217. 	// Judge cLen to determine whether data is only HTTP response data

  218. 	if noExistCmsg(len(cmsgData)) {

  219. 		return handlerResponse(h.method, httpData)

  220. 	}

  221. 

  222. 	// set cmsg to response body

  223. 	return handlerCmsgAndResponse(h.method, int(connFile.Fd()), cmsgData)

  224. }

  225. 

  226. // EncodeBody encode the body to io.Reader for Post body

  227. func EncodeBody(obj any) (io.Reader, error) {

  228. 	if obj == nil {

  229. 		return nil, nil

  230. 	}

  231. 	body, err := encodeData(obj)

  232. 	if err != nil {

  233. 		return nil, err

  234. 	}

  235. 

  236. 	return body, nil

  237. }