Use headers

Author: kazk

Cargo.toml

@@ -47,6 +47,7 @@ sha-1 = "0.10"
 thiserror = "1.0.23"
 url = "2.1.0"
 utf-8 = "0.7.5"
+headers = "0.3.7"
 
 [dependencies.flate2]
 optional = true
@@ -83,3 +84,6 @@ rand = "0.8.4"
 [[bench]]
 name = "buffer"
 harness = false
+
+[patch.crates-io]
+headers = { git = "https://github.com/kazk/headers", branch = "sec-websocket-extensions" }

src/error.rs

@@ -234,6 +234,9 @@ pub enum ProtocolError {
     /// The negotiation response included an extension more than once.
     #[error("Extension negotiation response had conflicting extension: {0}")]
     ExtensionConflict(String),
+    /// The `Sec-WebSocket-Extensions` header is invalid.
+    #[error("Invalid \"Sec-WebSocket-Extensions\" header")]
+    InvalidExtensionsHeader,
 }
 
 /// Indicates the specific type/cause of URL error.

src/extensions/mod.rs

@@ -1,6 +1,5 @@
 //! WebSocket extensions.
 // Only `permessage-deflate` is supported at the moment.
-use http::HeaderValue;
 
 #[cfg(feature = "deflate")]
 mod compression;
@@ -17,128 +16,3 @@ pub struct Extensions {
     #[cfg(feature = "deflate")]
     pub(crate) compression: Option<DeflateContext>,
 }
-
-/// Iterator of all extension offers/responses in `Sec-WebSocket-Extensions` values.
-pub(crate) fn iter_all<'a>(
-    values: impl Iterator<Item = &'a HeaderValue>,
-) -> impl Iterator<Item = (&'a str, impl Iterator<Item = (&'a str, Option<&'a str>)>)> {
-    values
-        .filter_map(|h| h.to_str().ok())
-        .map(|value_str| {
-            split_iter(value_str, ',').filter_map(|offer| {
-                // Parameters are separted by semicolons.
-                // The first element is the name of the extension.
-                let mut iter = split_iter(offer.trim(), ';').map(str::trim);
-                let name = iter.next()?;
-                let params = iter.filter_map(|kv| {
-                    let mut it = kv.splitn(2, '=');
-                    let key = it.next()?.trim();
-                    let val = it.next().map(|v| v.trim().trim_matches('"'));
-                    Some((key, val))
-                });
-                Some((name, params))
-            })
-        })
-        .flatten()
-}
-
-fn split_iter(input: &str, sep: char) -> impl Iterator<Item = &str> {
-    let mut in_quotes = false;
-    let mut prev = None;
-    input.split(move |c| {
-        if in_quotes {
-            if c == '"' && prev != Some('\\') {
-                in_quotes = false;
-            }
-            prev = Some(c);
-            false
-        } else if c == sep {
-            prev = Some(c);
-            true
-        } else {
-            if c == '"' {
-                in_quotes = true;
-            }
-            prev = Some(c);
-            false
-        }
-    })
-}
-
-#[cfg(test)]
-mod tests {
-    use http::{header::SEC_WEBSOCKET_EXTENSIONS, HeaderMap};
-
-    use super::*;
-
-    // Make sure comma separated offers and multiple headers are equivalent
-    fn test_iteration<'a>(
-        mut iter: impl Iterator<Item = (&'a str, impl Iterator<Item = (&'a str, Option<&'a str>)>)>,
-    ) {
-        let (name, mut params) = iter.next().unwrap();
-        assert_eq!(name, "permessage-deflate");
-        assert_eq!(params.next(), Some(("client_max_window_bits", None)));
-        assert_eq!(params.next(), Some(("server_max_window_bits", Some("10"))));
-        assert!(params.next().is_none());
-
-        let (name, mut params) = iter.next().unwrap();
-        assert_eq!(name, "permessage-deflate");
-        assert_eq!(params.next(), Some(("client_max_window_bits", None)));
-        assert!(params.next().is_none());
-
-        assert!(iter.next().is_none());
-    }
-
-    #[test]
-    fn iter_single() {
-        let mut hm = HeaderMap::new();
-        hm.append(
-            SEC_WEBSOCKET_EXTENSIONS,
-            HeaderValue::from_static(
-                "permessage-deflate; client_max_window_bits; server_max_window_bits=10, permessage-deflate; client_max_window_bits",
-            ),
-        );
-        test_iteration(iter_all(std::iter::once(hm.get(SEC_WEBSOCKET_EXTENSIONS).unwrap())));
-    }
-
-    #[test]
-    fn iter_multiple() {
-        let mut hm = HeaderMap::new();
-        hm.append(
-            SEC_WEBSOCKET_EXTENSIONS,
-            HeaderValue::from_static(
-                "permessage-deflate; client_max_window_bits; server_max_window_bits=10",
-            ),
-        );
-        hm.append(
-            SEC_WEBSOCKET_EXTENSIONS,
-            HeaderValue::from_static("permessage-deflate; client_max_window_bits"),
-        );
-        test_iteration(iter_all(hm.get_all(SEC_WEBSOCKET_EXTENSIONS).iter()));
-    }
-}
-
-// TODO More strict parsing
-// https://datatracker.ietf.org/doc/html/rfc6455#section-4.3
-// Sec-WebSocket-Extensions = extension-list
-// extension-list = 1#extension
-// extension = extension-token *( ";" extension-param )
-// extension-token = registered-token
-// registered-token = token
-// extension-param = token [ "=" (token | quoted-string) ]
-//     ;When using the quoted-string syntax variant, the value
-//     ;after quoted-string unescaping MUST conform to the
-//     ;'token' ABNF.
-//
-// token          = 1*<any CHAR except CTLs or separators>
-// CHAR           = <any US-ASCII character (octets 0 - 127)>
-// CTL            = <any US-ASCII control character (octets 0 - 31) and DEL (127)>
-// separators     = "(" | ")" | "<" | ">" | "@"
-//                   | "," | ";" | ":" | "\" | <">
-//                   | "/" | "[" | "]" | "?" | "="
-//                   | "{" | "}" | SP | HT
-// SP             = <US-ASCII SP, space (32)>
-// HT             = <US-ASCII HT, horizontal-tab (9)>
-// quoted-string  = ( <"> *(qdtext | quoted-pair ) <"> )
-// qdtext         = <any TEXT except <">>
-// quoted-pair    = "\" CHAR

src/handshake/client.rs

@@ -5,6 +5,7 @@ use std::{
     marker::PhantomData,
 };
 
+use headers::{HeaderMapExt, SecWebsocketExtensions};
 use http::{
     header::HeaderName, HeaderMap, Request as HttpRequest, Response as HttpResponse, StatusCode,
 };
@@ -234,44 +235,53 @@ impl VerifyData {
         // indicated an extension not requested by the client), the client
         // MUST _Fail the WebSocket Connection_. (RFC 6455)
         let extensions = {
-            // Note that multiple headers are allowed in response. See https://www.rfc-editor.org/errata/eid3433
-            let mut agreed_extensions =
-                crate::extensions::iter_all(headers.get_all("Sec-WebSocket-Extensions").iter());
-            #[cfg(feature = "deflate")]
+            if let Some(agreed_extensions) = headers
+                .typed_try_get::<SecWebsocketExtensions>()
+                .map_err(|_| Error::Protocol(ProtocolError::InvalidExtensionsHeader))?
             {
-                let mut extensions = None;
-                if let Some(compression) = _config.and_then(|c| c.compression) {
-                    for (name, params) in agreed_extensions {
-                        if name != compression.name() {
-                            return Err(Error::Protocol(ProtocolError::InvalidExtension(
-                                name.to_string(),
-                            )));
+                let mut agreed_extensions = agreed_extensions.iter();
+                #[cfg(feature = "deflate")]
+                {
+                    let mut extensions = None;
+                    if let Some(compression) = _config.and_then(|c| c.compression) {
+                        for extension in agreed_extensions {
+                            if extension.name() != compression.name() {
+                                return Err(Error::Protocol(ProtocolError::InvalidExtension(
+                                    extension.name().to_string(),
+                                )));
+                            }
+
+                            // Already had PMCE configured
+                            if extensions.is_some() {
+                                return Err(Error::Protocol(ProtocolError::ExtensionConflict(
+                                    extension.name().to_string(),
+                                )));
+                            }
+
+                            extensions = Some(Extensions {
+                                compression: Some(compression.accept_response(extension.params())?),
+                            });
                         }
-
-                        // Already had PMCE configured
-                        if extensions.is_some() {
-                            return Err(Error::Protocol(ProtocolError::ExtensionConflict(
-                                name.to_string(),
-                            )));
-                        }
-
-                        extensions = Some(Extensions {
-                            compression: Some(compression.accept_response(params)?),
-                        });
+                    } else if let Some(extension) = agreed_extensions.next() {
+                        // The client didn't request anything, but got something
+                        return Err(Error::Protocol(ProtocolError::InvalidExtension(
+                            extension.name().to_string(),
+                        )));
                     }
-                } else if let Some((name, _)) = agreed_extensions.next() {
-                    // The client didn't request anything, but got something
-                    return Err(Error::Protocol(ProtocolError::InvalidExtension(name.to_string())));
+                    extensions
                 }
-                extensions
-            }
 
-            #[cfg(not(feature = "deflate"))]
-            {
-                if let Some((name, _)) = agreed_extensions.next() {
-                    // The client didn't request anything, but got something
-                    return Err(Error::Protocol(ProtocolError::InvalidExtension(name.to_string())));
+                #[cfg(not(feature = "deflate"))]
+                {
+                    if let Some(extension) = agreed_extensions.next() {
+                        // The client didn't request anything, but got something
+                        return Err(Error::Protocol(ProtocolError::InvalidExtension(
+                            extension.name().to_string(),
+                        )));
+                    }
+                    None
                 }
+            } else {
                 None
             }
         };

src/handshake/server.rs

@@ -6,6 +6,7 @@ use std::{
     result::Result as StdResult,
 };
 
+use headers::{HeaderMapExt, SecWebsocketExtensions};
 use http::{
     response::Builder, HeaderMap, Request as HttpRequest, Response as HttpResponse, StatusCode,
 };
@@ -246,10 +247,15 @@ impl<S: Read + Write, C: Callback> HandshakeRole for ServerHandshake<S, C> {
 
                 let mut response = create_response(&result)?;
                 if let Some(config) = &self.config {
-                    let values = result.headers().get_all("Sec-WebSocket-Extensions").iter();
-                    if let Some((agreed, extensions)) = config.accept_offers(values) {
-                        response.headers_mut().insert("Sec-WebSocket-Extensions", agreed);
-                        self.extensions = Some(extensions);
+                    if let Some(values) = result
+                        .headers()
+                        .typed_try_get::<SecWebsocketExtensions>()
+                        .map_err(|_| Error::Protocol(ProtocolError::InvalidExtensionsHeader))?
+                    {
+                        if let Some((agreed, extensions)) = config.accept_offers(values) {
+                            response.headers_mut().insert("Sec-WebSocket-Extensions", agreed);
+                            self.extensions = Some(extensions);
+                        }
                     }
                 }
 

src/protocol/mod.rs

@@ -92,25 +92,20 @@ impl WebSocketConfig {
 
     // This can be used with `WebSocket::from_raw_socket_with_extensions` for integration.
     /// Returns negotiation response based on offers and `Extensions` to manage extensions.
-    pub fn accept_offers<'a>(
-        &'a self,
-        _extensions: impl Iterator<Item = &'a HeaderValue>,
+    pub fn accept_offers(
+        &self,
+        _extensions: headers::SecWebsocketExtensions,
     ) -> Option<(HeaderValue, Extensions)> {
         #[cfg(feature = "deflate")]
         {
             if let Some(compression) = &self.compression {
-                let extensions = crate::extensions::iter_all(_extensions);
-                let offers =
-                    extensions.filter_map(
-                        |(k, v)| {
-                            if k == compression.name() {
-                                Some(v)
-                            } else {
-                                None
-                            }
-                        },
-                    );
-
+                let offers = _extensions.iter().filter_map(|extension| {
+                    if extension.name() == compression.name() {
+                        Some(extension.params())
+                    } else {
+                        None
+                    }
+                });
                 // To support more extensions, store extension context in `Extensions` and
                 // concatenate negotiation responses from each extension.
                 compression