ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/AnyEvent-HTTP/HTTP.pm
Revision: 1.71
Committed: Fri Dec 31 20:50:58 2010 UTC (13 years, 4 months ago) by root
Branch: MAIN
Changes since 1.70: +49 -34 lines
Log Message: 
refactor, cookie-quoting

File Contents

# Content
1 =head1 NAME
2
3 AnyEvent::HTTP - simple but non-blocking HTTP/HTTPS client
4
5 =head1 SYNOPSIS
6
7 use AnyEvent::HTTP;
8
9 http_get "http://www.nethype.de/", sub { print $_[1] };
10
11 # ... do something else here
12
13 =head1 DESCRIPTION
14
15 This module is an L<AnyEvent> user, you need to make sure that you use and
16 run a supported event loop.
17
18 This module implements a simple, stateless and non-blocking HTTP
19 client. It supports GET, POST and other request methods, cookies and more,
20 all on a very low level. It can follow redirects supports proxies and
21 automatically limits the number of connections to the values specified in
22 the RFC.
23
24 It should generally be a "good client" that is enough for most HTTP
25 tasks. Simple tasks should be simple, but complex tasks should still be
26 possible as the user retains control over request and response headers.
27
28 The caller is responsible for authentication management, cookies (if
29 the simplistic implementation in this module doesn't suffice), referer
30 and other high-level protocol details for which this module offers only
31 limited support.
32
33 =head2 METHODS
34
35 =over 4
36
37 =cut
38
39 package AnyEvent::HTTP;
40
41 use strict;
42 no warnings;
43
44 use Errno ();
45
46 use AnyEvent 5.0 ();
47 use AnyEvent::Util ();
48 use AnyEvent::Handle ();
49
50 use base Exporter::;
51
52 our $VERSION = '1.5';
53
54 our @EXPORT = qw(http_get http_post http_head http_request);
55
56 our $USERAGENT = "Mozilla/5.0 (compatible; U; AnyEvent-HTTP/$VERSION; +http://software.schmorp.de/pkg/AnyEvent)";
57 our $MAX_RECURSE = 10;
58 our $MAX_PERSISTENT = 8;
59 our $PERSISTENT_TIMEOUT = 2;
60 our $TIMEOUT = 300;
61
62 # changing these is evil
63 our $MAX_PERSISTENT_PER_HOST = 0;
64 our $MAX_PER_HOST = 4;
65
66 our $PROXY;
67 our $ACTIVE = 0;
68
69 my %KA_COUNT; # number of open keep-alive connections per host
70 my %CO_SLOT; # number of open connections, and wait queue, per host
71
72 =item http_get $url, key => value..., $cb->($data, $headers)
73
74 Executes an HTTP-GET request. See the http_request function for details on
75 additional parameters and the return value.
76
77 =item http_head $url, key => value..., $cb->($data, $headers)
78
79 Executes an HTTP-HEAD request. See the http_request function for details
80 on additional parameters and the return value.
81
82 =item http_post $url, $body, key => value..., $cb->($data, $headers)
83
84 Executes an HTTP-POST request with a request body of C<$body>. See the
85 http_request function for details on additional parameters and the return
86 value.
87
88 =item http_request $method => $url, key => value..., $cb->($data, $headers)
89
90 Executes a HTTP request of type C<$method> (e.g. C<GET>, C<POST>). The URL
91 must be an absolute http or https URL.
92
93 When called in void context, nothing is returned. In other contexts,
94 C<http_request> returns a "cancellation guard" - you have to keep the
95 object at least alive until the callback get called. If the object gets
96 destroyed before the callback is called, the request will be cancelled.
97
98 The callback will be called with the response body data as first argument
99 (or C<undef> if an error occured), and a hash-ref with response headers
100 (and trailers) as second argument.
101
102 All the headers in that hash are lowercased. In addition to the response
103 headers, the "pseudo-headers" (uppercase to avoid clashing with possible
104 response headers) C<HTTPVersion>, C<Status> and C<Reason> contain the
105 three parts of the HTTP Status-Line of the same name. If an error occurs
106 during the body phase of a request, then the original C<Status> and
107 C<Reason> values from the header are available as C<OrigStatus> and
108 C<OrigReason>.
109
110 The pseudo-header C<URL> contains the actual URL (which can differ from
111 the requested URL when following redirects - for example, you might get
112 an error that your URL scheme is not supported even though your URL is a
113 valid http URL because it redirected to an ftp URL, in which case you can
114 look at the URL pseudo header).
115
116 The pseudo-header C<Redirect> only exists when the request was a result
117 of an internal redirect. In that case it is an array reference with
118 the C<($data, $headers)> from the redirect response. Note that this
119 response could in turn be the result of a redirect itself, and C<<
120 $headers->{Redirect}[1]{Redirect} >> will then contain the original
121 response, and so on.
122
123 If the server sends a header multiple times, then their contents will be
124 joined together with a comma (C<,>), as per the HTTP spec.
125
126 If an internal error occurs, such as not being able to resolve a hostname,
127 then C<$data> will be C<undef>, C<< $headers->{Status} >> will be C<59x>
128 (usually C<599>) and the C<Reason> pseudo-header will contain an error
129 message.
130
131 A typical callback might look like this:
132
133 sub {
134 my ($body, $hdr) = @_;
135
136 if ($hdr->{Status} =~ /^2/) {
137 ... everything should be ok
138 } else {
139 print "error, $hdr->{Status} $hdr->{Reason}\n";
140 }
141 }
142
143 Additional parameters are key-value pairs, and are fully optional. They
144 include:
145
146 =over 4
147
148 =item recurse => $count (default: $MAX_RECURSE)
149
150 Whether to recurse requests or not, e.g. on redirects, authentication
151 retries and so on, and how often to do so.
152
153 =item headers => hashref
154
155 The request headers to use. Currently, C<http_request> may provide its own
156 C<Host:>, C<Content-Length:>, C<Connection:> and C<Cookie:> headers and
157 will provide defaults at least for C<TE:>, C<Referer:> and C<User-Agent:>
158 (this can be suppressed by using C<undef> for these headers in which case
159 they won't be sent at all).
160
161 =item timeout => $seconds
162
163 The time-out to use for various stages - each connect attempt will reset
164 the timeout, as will read or write activity, i.e. this is not an overall
165 timeout.
166
167 Default timeout is 5 minutes.
168
169 =item proxy => [$host, $port[, $scheme]] or undef
170
171 Use the given http proxy for all requests. If not specified, then the
172 default proxy (as specified by C<$ENV{http_proxy}>) is used.
173
174 C<$scheme> must be either missing, C<http> for HTTP or C<https> for
175 HTTPS.
176
177 =item body => $string
178
179 The request body, usually empty. Will be sent as-is (future versions of
180 this module might offer more options).
181
182 =item cookie_jar => $hash_ref
183
184 Passing this parameter enables (simplified) cookie-processing, loosely
185 based on the original netscape specification.
186
187 The C<$hash_ref> must be an (initially empty) hash reference which will
188 get updated automatically. It is possible to save the cookie jar to
189 persistent storage with something like JSON or Storable, but this is not
190 recommended, as session-only cookies might survive longer than expected.
191
192 Note that this cookie implementation is not meant to be complete. If
193 you want complete cookie management you have to do that on your
194 own. C<cookie_jar> is meant as a quick fix to get some cookie-using sites
195 working. Cookies are a privacy disaster, do not use them unless required
196 to.
197
198 When cookie processing is enabled, the C<Cookie:> and C<Set-Cookie:>
199 headers will be set and handled by this module, otherwise they will be
200 left untouched.
201
202 =item tls_ctx => $scheme | $tls_ctx
203
204 Specifies the AnyEvent::TLS context to be used for https connections. This
205 parameter follows the same rules as the C<tls_ctx> parameter to
206 L<AnyEvent::Handle>, but additionally, the two strings C<low> or
207 C<high> can be specified, which give you a predefined low-security (no
208 verification, highest compatibility) and high-security (CA and common-name
209 verification) TLS context.
210
211 The default for this option is C<low>, which could be interpreted as "give
212 me the page, no matter what".
213
214 =item on_prepare => $callback->($fh)
215
216 In rare cases you need to "tune" the socket before it is used to
217 connect (for exmaple, to bind it on a given IP address). This parameter
218 overrides the prepare callback passed to C<AnyEvent::Socket::tcp_connect>
219 and behaves exactly the same way (e.g. it has to provide a
220 timeout). See the description for the C<$prepare_cb> argument of
221 C<AnyEvent::Socket::tcp_connect> for details.
222
223 =item tcp_connect => $callback->($host, $service, $connect_cb, $prepare_cb)
224
225 In even rarer cases you want total control over how AnyEvent::HTTP
226 establishes connections. Normally it uses L<AnyEvent::Socket::tcp_connect>
227 to do this, but you can provide your own C<tcp_connect> function -
228 obviously, it has to follow the same calling conventions, except that it
229 may always return a connection guard object.
230
231 There are probably lots of weird uses for this function, starting from
232 tracing the hosts C<http_request> actually tries to connect, to (inexact
233 but fast) host => IP address caching or even socks protocol support.
234
235 =item on_header => $callback->($headers)
236
237 When specified, this callback will be called with the header hash as soon
238 as headers have been successfully received from the remote server (not on
239 locally-generated errors).
240
241 It has to return either true (in which case AnyEvent::HTTP will continue),
242 or false, in which case AnyEvent::HTTP will cancel the download (and call
243 the finish callback with an error code of C<598>).
244
245 This callback is useful, among other things, to quickly reject unwanted
246 content, which, if it is supposed to be rare, can be faster than first
247 doing a C<HEAD> request.
248
249 The downside is that cancelling the request makes it impossible to re-use
250 the connection. Also, the C<on_header> callback will not receive any
251 trailer (headers sent after the response body).
252
253 Example: cancel the request unless the content-type is "text/html".
254
255 on_header => sub {
256 $_[0]{"content-type"} =~ /^text\/html\s*(?:;|$)/
257 },
258
259 =item on_body => $callback->($partial_body, $headers)
260
261 When specified, all body data will be passed to this callback instead of
262 to the completion callback. The completion callback will get the empty
263 string instead of the body data.
264
265 It has to return either true (in which case AnyEvent::HTTP will continue),
266 or false, in which case AnyEvent::HTTP will cancel the download (and call
267 the completion callback with an error code of C<598>).
268
269 The downside to cancelling the request is that it makes it impossible to
270 re-use the connection.
271
272 This callback is useful when the data is too large to be held in memory
273 (so the callback writes it to a file) or when only some information should
274 be extracted, or when the body should be processed incrementally.
275
276 It is usually preferred over doing your own body handling via
277 C<want_body_handle>, but in case of streaming APIs, where HTTP is
278 only used to create a connection, C<want_body_handle> is the better
279 alternative, as it allows you to install your own event handler, reducing
280 resource usage.
281
282 =item want_body_handle => $enable
283
284 When enabled (default is disabled), the behaviour of AnyEvent::HTTP
285 changes considerably: after parsing the headers, and instead of
286 downloading the body (if any), the completion callback will be
287 called. Instead of the C<$body> argument containing the body data, the
288 callback will receive the L<AnyEvent::Handle> object associated with the
289 connection. In error cases, C<undef> will be passed. When there is no body
290 (e.g. status C<304>), the empty string will be passed.
291
292 The handle object might or might not be in TLS mode, might be connected to
293 a proxy, be a persistent connection etc., and configured in unspecified
294 ways. The user is responsible for this handle (it will not be used by this
295 module anymore).
296
297 This is useful with some push-type services, where, after the initial
298 headers, an interactive protocol is used (typical example would be the
299 push-style twitter API which starts a JSON/XML stream).
300
301 If you think you need this, first have a look at C<on_body>, to see if
302 that doesn't solve your problem in a better way.
303
304 =back
305
306 Example: do a simple HTTP GET request for http://www.nethype.de/ and print
307 the response body.
308
309 http_request GET => "http://www.nethype.de/", sub {
310 my ($body, $hdr) = @_;
311 print "$body\n";
312 };
313
314 Example: do a HTTP HEAD request on https://www.google.com/, use a
315 timeout of 30 seconds.
316
317 http_request
318 GET => "https://www.google.com",
319 timeout => 30,
320 sub {
321 my ($body, $hdr) = @_;
322 use Data::Dumper;
323 print Dumper $hdr;
324 }
325 ;
326
327 Example: do another simple HTTP GET request, but immediately try to
328 cancel it.
329
330 my $request = http_request GET => "http://www.nethype.de/", sub {
331 my ($body, $hdr) = @_;
332 print "$body\n";
333 };
334
335 undef $request;
336
337 =cut
338
339 sub _slot_schedule;
340 sub _slot_schedule($) {
341 my $host = shift;
342
343 while ($CO_SLOT{$host}[0] < $MAX_PER_HOST) {
344 if (my $cb = shift @{ $CO_SLOT{$host}[1] }) {
345 # somebody wants that slot
346 ++$CO_SLOT{$host}[0];
347 ++$ACTIVE;
348
349 $cb->(AnyEvent::Util::guard {
350 --$ACTIVE;
351 --$CO_SLOT{$host}[0];
352 _slot_schedule $host;
353 });
354 } else {
355 # nobody wants the slot, maybe we can forget about it
356 delete $CO_SLOT{$host} unless $CO_SLOT{$host}[0];
357 last;
358 }
359 }
360 }
361
362 # wait for a free slot on host, call callback
363 sub _get_slot($$) {
364 push @{ $CO_SLOT{$_[0]}[1] }, $_[1];
365
366 _slot_schedule $_[0];
367 }
368
369 sub cookie_jar_extract($$$$) {
370 my ($jar, $uscheme, $uhost, $upath) = @_;
371
372 %$jar = () if $jar->{version} != 1;
373
374 my @cookies;
375
376 while (my ($chost, $paths) = each %$jar) {
377 next unless ref $paths;
378
379 if ($chost =~ /^\./) {
380 next unless $chost eq substr $uhost, -length $chost;
381 } elsif ($chost =~ /\./) {
382 next unless $chost eq $uhost;
383 } else {
384 next;
385 }
386
387 while (my ($cpath, $cookies) = each %$paths) {
388 next unless $cpath eq substr $upath, 0, length $cpath;
389
390 while (my ($cookie, $kv) = each %$cookies) {
391 next if $uscheme ne "https" && exists $kv->{secure};
392
393 if (exists $kv->{expires}) {
394 if (AE::now > parse_date ($kv->{expires})) {
395 delete $cookies->{$cookie};
396 next;
397 }
398 }
399
400 my $value = $kv->{value};
401
402 if ($value =~ /[=;,[:space:]]/) {
403 $value =~ s/([\\"])/\\$1/g;
404 $value = "\"$value\"";
405 }
406
407 push @cookies, "$cookie=$value";
408 }
409 }
410 }
411
412 \@cookies
413 }
414
415 # continue to parse $_ for headers and place them into the arg
416 sub parse_hdr() {
417 my %hdr;
418
419 # things seen, not parsed:
420 # p3pP="NON CUR OTPi OUR NOR UNI"
421
422 $hdr{lc $1} .= ",$2"
423 while /\G
424 ([^:\000-\037]*):
425 [\011\040]*
426 ((?: [^\012]+ | \012[\011\040] )*)
427 \012
428 /gxc;
429
430 /\G$/
431 or return;
432
433 # remove the "," prefix we added to all headers above
434 substr $_, 0, 1, ""
435 for values %hdr;
436
437 \%hdr
438 }
439
440 our $qr_nlnl = qr{(?<![^\012])\015?\012};
441
442 our $TLS_CTX_LOW = { cache => 1, sslv2 => 1 };
443 our $TLS_CTX_HIGH = { cache => 1, verify => 1, verify_peername => "https" };
444
445 sub http_request($$@) {
446 my $cb = pop;
447 my ($method, $url, %arg) = @_;
448
449 my %hdr;
450
451 $arg{tls_ctx} = $TLS_CTX_LOW if $arg{tls_ctx} eq "low" || !exists $arg{tls_ctx};
452 $arg{tls_ctx} = $TLS_CTX_HIGH if $arg{tls_ctx} eq "high";
453
454 $method = uc $method;
455
456 if (my $hdr = $arg{headers}) {
457 while (my ($k, $v) = each %$hdr) {
458 $hdr{lc $k} = $v;
459 }
460 }
461
462 # pseudo headers for all subsequent responses
463 my @pseudo = (URL => $url);
464 push @pseudo, Redirect => delete $arg{Redirect} if exists $arg{Redirect};
465
466 my $recurse = exists $arg{recurse} ? delete $arg{recurse} : $MAX_RECURSE;
467
468 return $cb->(undef, { @pseudo, Status => 599, Reason => "Too many redirections" })
469 if $recurse < 0;
470
471 my $proxy = $arg{proxy} || $PROXY;
472 my $timeout = $arg{timeout} || $TIMEOUT;
473
474 my ($uscheme, $uauthority, $upath, $query, $fragment) =
475 $url =~ m|(?:([^:/?#]+):)?(?://([^/?#]*))?([^?#]*)(?:(\?[^#]*))?(?:#(.*))?|;
476
477 $uscheme = lc $uscheme;
478
479 my $uport = $uscheme eq "http" ? 80
480 : $uscheme eq "https" ? 443
481 : return $cb->(undef, { @pseudo, Status => 599, Reason => "Only http and https URL schemes supported" });
482
483 $uauthority =~ /^(?: .*\@ )? ([^\@:]+) (?: : (\d+) )?$/x
484 or return $cb->(undef, { @pseudo, Status => 599, Reason => "Unparsable URL" });
485
486 my $uhost = $1;
487 $uport = $2 if defined $2;
488
489 $hdr{host} = defined $2 ? "$uhost:$2" : "$uhost"
490 unless exists $hdr{host};
491
492 $uhost =~ s/^\[(.*)\]$/$1/;
493 $upath .= $query if length $query;
494
495 $upath =~ s%^/?%/%;
496
497 # cookie processing
498 if (my $jar = $arg{cookie_jar}) {
499 my $cookies = cookie_jar_extract $jar, $uscheme, $uhost, $upath;
500
501 $hdr{cookie} = join "; ", @$cookies
502 if @$cookies;
503 }
504
505 my ($rhost, $rport, $rscheme, $rpath); # request host, port, path
506
507 if ($proxy) {
508 ($rpath, $rhost, $rport, $rscheme) = ($url, @$proxy);
509
510 $rscheme = "http" unless defined $rscheme;
511
512 # don't support https requests over https-proxy transport,
513 # can't be done with tls as spec'ed, unless you double-encrypt.
514 $rscheme = "http" if $uscheme eq "https" && $rscheme eq "https";
515 } else {
516 ($rhost, $rport, $rscheme, $rpath) = ($uhost, $uport, $uscheme, $upath);
517 }
518
519 # leave out fragment and query string, just a heuristic
520 $hdr{referer} = "$uscheme://$uauthority$upath" unless exists $hdr{referer};
521 $hdr{"user-agent"} = $USERAGENT unless exists $hdr{"user-agent"};
522
523 $hdr{"content-length"} = length $arg{body}
524 if length $arg{body} || $method ne "GET";
525
526 $hdr{connection} = "close TE"; #1.1
527 $hdr{te} = "trailers" unless exists $hdr{te}; #1.1
528
529 my %state = (connect_guard => 1);
530
531 _get_slot $uhost, sub {
532 $state{slot_guard} = shift;
533
534 return unless $state{connect_guard};
535
536 my $connect_cb = sub {
537 $state{fh} = shift
538 or do {
539 my $err = "$!";
540 %state = ();
541 return $cb->(undef, { @pseudo, Status => 599, Reason => $err });
542 };
543
544 pop; # free memory, save a tree
545
546 return unless delete $state{connect_guard};
547
548 # get handle
549 $state{handle} = new AnyEvent::Handle
550 fh => $state{fh},
551 peername => $rhost,
552 tls_ctx => $arg{tls_ctx},
553 # these need to be reconfigured on keepalive handles
554 timeout => $timeout,
555 on_error => sub {
556 %state = ();
557 $cb->(undef, { @pseudo, Status => 599, Reason => $_[2] });
558 },
559 on_eof => sub {
560 %state = ();
561 $cb->(undef, { @pseudo, Status => 599, Reason => "Unexpected end-of-file" });
562 },
563 ;
564
565 # limit the number of persistent connections
566 # keepalive not yet supported
567 # if ($KA_COUNT{$_[1]} < $MAX_PERSISTENT_PER_HOST) {
568 # ++$KA_COUNT{$_[1]};
569 # $state{handle}{ka_count_guard} = AnyEvent::Util::guard {
570 # --$KA_COUNT{$_[1]}
571 # };
572 # $hdr{connection} = "keep-alive";
573 # }
574
575 $state{handle}->starttls ("connect") if $rscheme eq "https";
576
577 # handle actual, non-tunneled, request
578 my $handle_actual_request = sub {
579 $state{handle}->starttls ("connect") if $uscheme eq "https" && !exists $state{handle}{tls};
580
581 # send request
582 $state{handle}->push_write (
583 "$method $rpath HTTP/1.1\015\012"
584 . (join "", map "\u$_: $hdr{$_}\015\012", grep defined $hdr{$_}, keys %hdr)
585 . "\015\012"
586 . (delete $arg{body})
587 );
588
589 # return if error occured during push_write()
590 return unless %state;
591
592 %hdr = (); # reduce memory usage, save a kitten, also make it possible to re-use
593
594 # status line and headers
595 $state{read_response} = sub {
596 for ("$_[1]") {
597 y/\015//d; # weed out any \015, as they show up in the weirdest of places.
598
599 /^HTTP\/([0-9\.]+) \s+ ([0-9]{3}) (?: \s+ ([^\012]*) )? \012/igxc
600 or return (%state = (), $cb->(undef, { @pseudo, Status => 599, Reason => "Invalid server response" }));
601
602 # 100 Continue handling
603 # should not happen as we don't send expect: 100-continue,
604 # but we handle it just in case.
605 # since we send the request body regardless, if we get an error
606 # we are out of-sync, which we currently do NOT handle correctly.
607 return $state{handle}->push_read (line => $qr_nlnl, $state{read_response})
608 if $2 eq 100;
609
610 push @pseudo,
611 HTTPVersion => $1,
612 Status => $2,
613 Reason => $3,
614 ;
615
616 my $hdr = parse_hdr
617 or return (%state = (), $cb->(undef, { @pseudo, Status => 599, Reason => "Garbled response headers" }));
618
619 %hdr = (%$hdr, @pseudo);
620 }
621
622 # redirect handling
623 # microsoft and other shitheads don't give a shit for following standards,
624 # try to support some common forms of broken Location headers.
625 if ($hdr{location} !~ /^(?: $ | [^:\/?\#]+ : )/x) {
626 $hdr{location} =~ s/^\.\/+//;
627
628 my $url = "$rscheme://$uhost:$uport";
629
630 unless ($hdr{location} =~ s/^\///) {
631 $url .= $upath;
632 $url =~ s/\/[^\/]*$//;
633 }
634
635 $hdr{location} = "$url/$hdr{location}";
636 }
637
638 my $redirect;
639
640 if ($recurse) {
641 my $status = $hdr{Status};
642
643 # industry standard is to redirect POST as GET for
644 # 301, 302 and 303, in contrast to http/1.0 and 1.1.
645 # also, the UA should ask the user for 301 and 307 and POST,
646 # industry standard seems to be to simply follow.
647 # we go with the industry standard.
648 if ($status == 301 or $status == 302 or $status == 303) {
649 # HTTP/1.1 is unclear on how to mutate the method
650 $method = "GET" unless $method eq "HEAD";
651 $redirect = 1;
652 } elsif ($status == 307) {
653 $redirect = 1;
654 }
655 }
656
657 my $finish = sub { # ($data, $err_status, $err_reason[, $keepalive])
658 my $keepalive = pop;
659
660 $state{handle}->destroy if $state{handle};
661 %state = ();
662
663 if (defined $_[1]) {
664 $hdr{OrigStatus} = $hdr{Status}; $hdr{Status} = $_[1];
665 $hdr{OrigReason} = $hdr{Reason}; $hdr{Reason} = $_[2];
666 }
667
668 # set-cookie processing
669 if ($arg{cookie_jar}) {
670 for ($hdr{"set-cookie"}) {
671 # parse NAME=VALUE
672 my @kv;
673
674 while (
675 m{
676 \G\s*
677 (?:
678 expires \s*=\s* ([A-Z][a-z][a-z],\ [^,;]+)
679 | ([^=;,[:space:]]+) \s*=\s* (?: "((?:[^\\"]+|\\.)*)" | ([^=;,[:space:]]*) )
680 )
681 }gcxsi
682 ) {
683 my $name = $2;
684 my $value = $4;
685
686 unless (defined $name) {
687 # expires
688 $name = "expires";
689 $value = $1;
690 } elsif (!defined $value) {
691 # quoted
692 $value = $3;
693 $value =~ s/\\(.)/$1/gs;
694 }
695
696 push @kv, lc $name, $value;
697
698 last unless /\G\s*;/gc;
699 }
700
701 last unless @kv;
702
703 my $name = shift @kv;
704 my %kv = (value => shift @kv, @kv);
705
706 $kv{expires} ||= format_date (AE::now + $kv{"max-age"})
707 if exists $kv{"max-age"};
708
709 my $cdom;
710 my $cpath = (delete $kv{path}) || "/";
711
712 if (exists $kv{domain}) {
713 $cdom = delete $kv{domain};
714
715 $cdom =~ s/^\.?/./; # make sure it starts with a "."
716
717 next if $cdom =~ /\.$/;
718
719 # this is not rfc-like and not netscape-like. go figure.
720 my $ndots = $cdom =~ y/.//;
721 next if $ndots < ($cdom =~ /\.[^.][^.]\.[^.][^.]$/ ? 3 : 2);
722 } else {
723 $cdom = $uhost;
724 }
725
726 # store it
727 $arg{cookie_jar}{version} = 1;
728 $arg{cookie_jar}{$cdom}{$cpath}{$name} = \%kv;
729
730 redo if /\G\s*,/gc;
731 }
732 }
733
734 if ($redirect && exists $hdr{location}) {
735 # we ignore any errors, as it is very common to receive
736 # Content-Length != 0 but no actual body
737 # we also access %hdr, as $_[1] might be an erro
738 http_request (
739 $method => $hdr{location},
740 %arg,
741 recurse => $recurse - 1,
742 Redirect => [$_[0], \%hdr],
743 $cb);
744 } else {
745 $cb->($_[0], \%hdr);
746 }
747 };
748
749 my $len = $hdr{"content-length"};
750
751 if (!$redirect && $arg{on_header} && !$arg{on_header}(\%hdr)) {
752 $finish->(undef, 598 => "Request cancelled by on_header");
753 } elsif (
754 $hdr{Status} =~ /^(?:1..|204|205|304)$/
755 or $method eq "HEAD"
756 or (defined $len && !$len)
757 ) {
758 # no body
759 $finish->("", undef, undef, 1);
760 } else {
761 # body handling, many different code paths
762 # - no body expected
763 # - want_body_handle
764 # - te chunked
765 # - 2x length known (with or without on_body)
766 # - 2x length not known (with or without on_body)
767 if (!$redirect && $arg{want_body_handle}) {
768 $_[0]->on_eof (undef);
769 $_[0]->on_error (undef);
770 $_[0]->on_read (undef);
771
772 $finish->(delete $state{handle});
773
774 } elsif ($hdr{"transfer-encoding"} =~ /\bchunked\b/i) {
775 my $cl = 0;
776 my $body = undef;
777 my $on_body = $arg{on_body} || sub { $body .= shift; 1 };
778
779 $_[0]->on_error (sub { $finish->(undef, 599 => $_[2]) });
780
781 my $read_chunk; $read_chunk = sub {
782 $_[1] =~ /^([0-9a-fA-F]+)/
783 or $finish->(undef, 599 => "Garbled chunked transfer encoding");
784
785 my $len = hex $1;
786
787 if ($len) {
788 $cl += $len;
789
790 $_[0]->push_read (chunk => $len, sub {
791 $on_body->($_[1], \%hdr)
792 or return $finish->(undef, 598 => "Request cancelled by on_body");
793
794 $_[0]->push_read (line => sub {
795 length $_[1]
796 and return $finish->(undef, 599 => "Garbled chunked transfer encoding");
797 $_[0]->push_read (line => $read_chunk);
798 });
799 });
800 } else {
801 $hdr{"content-length"} ||= $cl;
802
803 $_[0]->push_read (line => $qr_nlnl, sub {
804 if (length $_[1]) {
805 for ("$_[1]") {
806 y/\015//d; # weed out any \015, as they show up in the weirdest of places.
807
808 my $hdr = parse_hdr
809 or return $finish->(undef, 599 => "Garbled response trailers");
810
811 %hdr = (%hdr, %$hdr);
812 }
813 }
814
815 $finish->($body, undef, undef, 1);
816 });
817 }
818 };
819
820 $_[0]->push_read (line => $read_chunk);
821
822 } elsif ($arg{on_body}) {
823 $_[0]->on_error (sub { $finish->(undef, 599 => $_[2]) });
824
825 if ($len) {
826 $_[0]->on_read (sub {
827 $len -= length $_[0]{rbuf};
828
829 $arg{on_body}(delete $_[0]{rbuf}, \%hdr)
830 or return $finish->(undef, 598 => "Request cancelled by on_body");
831
832 $len > 0
833 or $finish->("", undef, undef, 1);
834 });
835 } else {
836 $_[0]->on_eof (sub {
837 $finish->("");
838 });
839 $_[0]->on_read (sub {
840 $arg{on_body}(delete $_[0]{rbuf}, \%hdr)
841 or $finish->(undef, 598 => "Request cancelled by on_body");
842 });
843 }
844 } else {
845 $_[0]->on_eof (undef);
846
847 if ($len) {
848 $_[0]->on_error (sub { $finish->(undef, 599 => $_[2]) });
849 $_[0]->on_read (sub {
850 $finish->((substr delete $_[0]{rbuf}, 0, $len, ""), undef, undef, 1)
851 if $len <= length $_[0]{rbuf};
852 });
853 } else {
854 $_[0]->on_error (sub {
855 ($! == Errno::EPIPE || !$!)
856 ? $finish->(delete $_[0]{rbuf})
857 : $finish->(undef, 599 => $_[2]);
858 });
859 $_[0]->on_read (sub { });
860 }
861 }
862 }
863 };
864
865 $state{handle}->push_read (line => $qr_nlnl, $state{read_response});
866 };
867
868 # now handle proxy-CONNECT method
869 if ($proxy && $uscheme eq "https") {
870 # oh dear, we have to wrap it into a connect request
871
872 # maybe re-use $uauthority with patched port?
873 $state{handle}->push_write ("CONNECT $uhost:$uport HTTP/1.0\015\012Host: $uhost\015\012\015\012");
874 $state{handle}->push_read (line => $qr_nlnl, sub {
875 $_[1] =~ /^HTTP\/([0-9\.]+) \s+ ([0-9]{3}) (?: \s+ ([^\015\012]*) )?/ix
876 or return (%state = (), $cb->(undef, { @pseudo, Status => 599, Reason => "Invalid proxy connect response ($_[1])" }));
877
878 if ($2 == 200) {
879 $rpath = $upath;
880 &$handle_actual_request;
881 } else {
882 %state = ();
883 $cb->(undef, { @pseudo, Status => $2, Reason => $3 });
884 }
885 });
886 } else {
887 &$handle_actual_request;
888 }
889 };
890
891 my $tcp_connect = $arg{tcp_connect}
892 || do { require AnyEvent::Socket; \&AnyEvent::Socket::tcp_connect };
893
894 $state{connect_guard} = $tcp_connect->($rhost, $rport, $connect_cb, $arg{on_prepare} || sub { $timeout });
895
896 };
897
898 defined wantarray && AnyEvent::Util::guard { %state = () }
899 }
900
901 sub http_get($@) {
902 unshift @_, "GET";
903 &http_request
904 }
905
906 sub http_head($@) {
907 unshift @_, "HEAD";
908 &http_request
909 }
910
911 sub http_post($$@) {
912 my $url = shift;
913 unshift @_, "POST", $url, "body";
914 &http_request
915 }
916
917 =back
918
919 =head2 DNS CACHING
920
921 AnyEvent::HTTP uses the AnyEvent::Socket::tcp_connect function for
922 the actual connection, which in turn uses AnyEvent::DNS to resolve
923 hostnames. The latter is a simple stub resolver and does no caching
924 on its own. If you want DNS caching, you currently have to provide
925 your own default resolver (by storing a suitable resolver object in
926 C<$AnyEvent::DNS::RESOLVER>).
927
928 =head2 GLOBAL FUNCTIONS AND VARIABLES
929
930 =over 4
931
932 =item AnyEvent::HTTP::set_proxy "proxy-url"
933
934 Sets the default proxy server to use. The proxy-url must begin with a
935 string of the form C<http://host:port> (optionally C<https:...>), croaks
936 otherwise.
937
938 To clear an already-set proxy, use C<undef>.
939
940 =item $date = AnyEvent::HTTP::format_date $timestamp
941
942 Takes a POSIX timestamp (seconds since the epoch) and formats it as a HTTP
943 Date (RFC 2616).
944
945 =item $timestamp = AnyEvent::HTTP::parse_date $date
946
947 Takes a HTTP Date (RFC 2616) or a Cookie date (netscape cookie spec) and
948 returns the corresponding POSIX timestamp, or C<undef> if the date cannot
949 be parsed.
950
951 =item $AnyEvent::HTTP::MAX_RECURSE
952
953 The default value for the C<recurse> request parameter (default: C<10>).
954
955 =item $AnyEvent::HTTP::USERAGENT
956
957 The default value for the C<User-Agent> header (the default is
958 C<Mozilla/5.0 (compatible; U; AnyEvent-HTTP/$VERSION; +http://software.schmorp.de/pkg/AnyEvent)>).
959
960 =item $AnyEvent::HTTP::MAX_PER_HOST
961
962 The maximum number of concurrent connections to the same host (identified
963 by the hostname). If the limit is exceeded, then the additional requests
964 are queued until previous connections are closed.
965
966 The default value for this is C<4>, and it is highly advisable to not
967 increase it.
968
969 =item $AnyEvent::HTTP::ACTIVE
970
971 The number of active connections. This is not the number of currently
972 running requests, but the number of currently open and non-idle TCP
973 connections. This number of can be useful for load-leveling.
974
975 =back
976
977 =cut
978
979 our @month = qw(Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec);
980 our @weekday = qw(Sun Mon Tue Wed Thu Fri Sat);
981
982 sub format_date($) {
983 my ($time) = @_;
984
985 # RFC 822/1123 format
986 my ($S, $M, $H, $mday, $mon, $year, $wday, $yday, undef) = gmtime $time;
987
988 sprintf "%s, %02d %s %04d %02d:%02d:%02d GMT",
989 $weekday[$wday], $mday, $month[$mon], $year + 1900,
990 $H, $M, $S;
991 }
992
993 sub parse_date($) {
994 my ($date) = @_;
995
996 my ($d, $m, $y, $H, $M, $S);
997
998 if ($date =~ /^[A-Z][a-z][a-z], ([0-9][0-9])[\- ]([A-Z][a-z][a-z])[\- ]([0-9][0-9][0-9][0-9]) ([0-9][0-9]):([0-9][0-9]):([0-9][0-9]) GMT$/) {
999 # RFC 822/1123, required by RFC 2616 (with " ")
1000 # cookie dates (with "-")
1001
1002 ($d, $m, $y, $H, $M, $S) = ($1, $2, $3, $4, $5, $6);
1003
1004 } elsif ($date =~ /^[A-Z][a-z]+, ([0-9][0-9])-([A-Z][a-z][a-z])-([0-9][0-9]) ([0-9][0-9]):([0-9][0-9]):([0-9][0-9]) GMT$/) {
1005 # RFC 850
1006 ($d, $m, $y, $H, $M, $S) = ($1, $2, $3 < 69 ? $3 + 2000 : $3 + 1900, $4, $5, $6);
1007
1008 } elsif ($date =~ /^[A-Z][a-z][a-z] ([A-Z][a-z][a-z]) ([0-9 ][0-9]) ([0-9][0-9]):([0-9][0-9]):([0-9][0-9]) ([0-9][0-9][0-9][0-9])$/) {
1009 # ISO C's asctime
1010 ($d, $m, $y, $H, $M, $S) = ($2, $1, $6, $3, $4, $5);
1011 }
1012 # other formats fail in the loop below
1013
1014 for (0..11) {
1015 if ($m eq $month[$_]) {
1016 require Time::Local;
1017 return Time::Local::timegm ($S, $M, $H, $d, $_, $y);
1018 }
1019 }
1020
1021 undef
1022 }
1023
1024 sub set_proxy($) {
1025 if (length $_[0]) {
1026 $_[0] =~ m%^(https?):// ([^:/]+) (?: : (\d*) )?%ix
1027 or Carp::croak "$_[0]: invalid proxy URL";
1028 $PROXY = [$2, $3 || 3128, $1]
1029 } else {
1030 undef $PROXY;
1031 }
1032 }
1033
1034 # initialise proxy from environment
1035 eval {
1036 set_proxy $ENV{http_proxy};
1037 };
1038
1039 =head2 SOCKS PROXIES
1040
1041 Socks proxies are not directly supported by AnyEvent::HTTP. You can
1042 compile your perl to support socks, or use an external program such as
1043 F<socksify> (dante) or F<tsocks> to make your program use a socks proxy
1044 transparently.
1045
1046 Alternatively, for AnyEvent::HTTP only, you can use your own
1047 C<tcp_connect> function that does the proxy handshake - here is an example
1048 that works with socks4a proxies:
1049
1050 use Errno;
1051 use AnyEvent::Util;
1052 use AnyEvent::Socket;
1053 use AnyEvent::Handle;
1054
1055 # host, port and username of/for your socks4a proxy
1056 my $socks_host = "10.0.0.23";
1057 my $socks_port = 9050;
1058 my $socks_user = "";
1059
1060 sub socks4a_connect {
1061 my ($host, $port, $connect_cb, $prepare_cb) = @_;
1062
1063 my $hdl = new AnyEvent::Handle
1064 connect => [$socks_host, $socks_port],
1065 on_prepare => sub { $prepare_cb->($_[0]{fh}) },
1066 on_error => sub { $connect_cb->() },
1067 ;
1068
1069 $hdl->push_write (pack "CCnNZ*Z*", 4, 1, $port, 1, $socks_user, $host);
1070
1071 $hdl->push_read (chunk => 8, sub {
1072 my ($hdl, $chunk) = @_;
1073 my ($status, $port, $ipn) = unpack "xCna4", $chunk;
1074
1075 if ($status == 0x5a) {
1076 $connect_cb->($hdl->{fh}, (format_address $ipn) . ":$port");
1077 } else {
1078 $! = Errno::ENXIO; $connect_cb->();
1079 }
1080 });
1081
1082 $hdl
1083 }
1084
1085 Use C<socks4a_connect> instead of C<tcp_connect> when doing C<http_request>s,
1086 possibly after switching off other proxy types:
1087
1088 AnyEvent::HTTP::set_proxy undef; # usually you do not want other proxies
1089
1090 http_get 'http://www.google.com', tcp_connect => \&socks4a_connect, sub {
1091 my ($data, $headers) = @_;
1092 ...
1093 };
1094
1095 =head1 SEE ALSO
1096
1097 L<AnyEvent>.
1098
1099 =head1 AUTHOR
1100
1101 Marc Lehmann <schmorp@schmorp.de>
1102 http://home.schmorp.de/
1103
1104 With many thanks to Дмитрий Шалашов, who provided countless
1105 testcases and bugreports.
1106
1107 =cut
1108
1109 1
1110