2005-07-25 02:18:37 +00:00
|
|
|
require 'rex/socket'
|
|
|
|
|
require 'rex/proto/http'
|
|
|
|
|
|
|
|
|
|
module Rex
|
|
|
|
|
module Proto
|
|
|
|
|
module Http
|
|
|
|
|
|
|
|
|
|
###
|
|
|
|
|
#
|
|
|
|
|
# Runtime extension of the HTTP clients that connect to the server.
|
|
|
|
|
#
|
|
|
|
|
###
|
|
|
|
|
module ServerClient
|
|
|
|
|
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# Initialize a new request instance.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
def init_cli(server)
|
|
|
|
|
self.request = Request.new
|
|
|
|
|
self.server = server
|
|
|
|
|
self.keepalive = false
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# Resets the parsing state.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
def reset_cli
|
|
|
|
|
self.request.reset
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# Transmits a response and adds the appropriate headers.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
def send_response(response)
|
|
|
|
|
# Set the connection to close or keep-alive depending on what the client
|
|
|
|
|
# can support.
|
|
|
|
|
response['Connection'] = (keepalive) ? 'Keep-Alive' : 'close'
|
|
|
|
|
|
|
|
|
|
# Add any other standard response headers.
|
|
|
|
|
server.add_response_headers(response)
|
|
|
|
|
|
|
|
|
|
# Send it off.
|
|
|
|
|
put(response.to_s)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# The current request context.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
attr_accessor :request
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# Boolean that indicates whether or not the connection supports keep-alive.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
attr_accessor :keepalive
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# A reference to the server the client is associated with.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
attr_accessor :server
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
###
|
|
|
|
|
#
|
|
|
|
|
# Acts as an HTTP server, processing requests and dispatching them to
|
|
|
|
|
# registered procs.
|
|
|
|
|
#
|
|
|
|
|
###
|
|
|
|
|
class Server
|
|
|
|
|
|
2005-08-22 04:34:40 +00:00
|
|
|
include Proto
|
|
|
|
|
|
2005-07-25 02:18:37 +00:00
|
|
|
DefaultServer = "Rex"
|
|
|
|
|
|
|
|
|
|
def initialize(port = 80, listen_host = '0.0.0.0')
|
|
|
|
|
self.listen_host = listen_host
|
2005-09-22 03:24:32 +00:00
|
|
|
self.listen_port = port
|
2005-07-25 02:18:37 +00:00
|
|
|
self.listener = nil
|
|
|
|
|
self.resources = {}
|
|
|
|
|
end
|
|
|
|
|
|
2005-08-22 04:34:40 +00:00
|
|
|
#
|
|
|
|
|
# HTTP server.
|
|
|
|
|
#
|
|
|
|
|
def alias
|
|
|
|
|
super || "HTTP Server"
|
|
|
|
|
end
|
|
|
|
|
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
# Listens on the defined port and host and starts monitoring for clients.
|
|
|
|
|
#
|
|
|
|
|
def start
|
|
|
|
|
self.listener = Rex::Socket::TcpServer.create(
|
|
|
|
|
'LocalHost' => self.listen_host,
|
|
|
|
|
'LocalPort' => self.listen_port)
|
2005-08-22 02:36:09 +00:00
|
|
|
|
|
|
|
|
# Register callbacks
|
|
|
|
|
self.listener.on_client_connect_proc = Proc.new { |cli|
|
|
|
|
|
on_client_connect(cli)
|
2005-07-25 02:18:37 +00:00
|
|
|
}
|
2005-08-22 02:36:09 +00:00
|
|
|
self.listener.on_client_data_proc = Proc.new { |cli|
|
|
|
|
|
on_client_data(cli)
|
2005-07-25 02:18:37 +00:00
|
|
|
}
|
2005-08-22 02:36:09 +00:00
|
|
|
|
|
|
|
|
self.listener.start
|
2005-07-25 02:18:37 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# Terminates the monitor thread and turns off the listener.
|
|
|
|
|
#
|
|
|
|
|
def stop
|
2005-08-22 02:36:09 +00:00
|
|
|
self.listener.stop
|
2005-07-25 02:18:37 +00:00
|
|
|
self.listener.close
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
2005-08-22 02:36:09 +00:00
|
|
|
# Closes the supplied client, if valid.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
def close_client(cli)
|
2005-08-22 02:36:09 +00:00
|
|
|
listener.close_client(cli)
|
2005-07-25 02:18:37 +00:00
|
|
|
end
|
|
|
|
|
|
2005-07-25 02:39:14 +00:00
|
|
|
#
|
|
|
|
|
# Adds a resource handler, such as one for /, which will be called whenever
|
|
|
|
|
# the resource is requested. The ``opts'' parameter can have any of the
|
|
|
|
|
# following:
|
|
|
|
|
#
|
|
|
|
|
# Proc (proc) - The procedure to call when a request comes in for this resource.
|
|
|
|
|
# LongCall (bool) - Hints to the server that this resource may have long
|
|
|
|
|
# request processing times.
|
|
|
|
|
#
|
|
|
|
|
def add_resource(name, opts)
|
|
|
|
|
if (self.resources[name])
|
|
|
|
|
raise RuntimeError,
|
|
|
|
|
"The supplied resource '#{name}' is already added.", caller
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
self.resources[name] = opts
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# Removes the supplied resource handler.
|
|
|
|
|
#
|
|
|
|
|
def remove_resource(name)
|
|
|
|
|
self.resources.delete(name)
|
|
|
|
|
end
|
|
|
|
|
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
2005-08-22 02:36:09 +00:00
|
|
|
# Adds Server headers and stuff.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
def add_response_headers(resp)
|
|
|
|
|
resp['Server'] = DefaultServer
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
attr_accessor :listen_port, :listen_host
|
|
|
|
|
|
|
|
|
|
protected
|
|
|
|
|
|
2005-08-22 02:36:09 +00:00
|
|
|
attr_accessor :listener, :resources
|
2005-07-25 02:18:37 +00:00
|
|
|
|
|
|
|
|
#
|
2005-08-22 02:36:09 +00:00
|
|
|
# Extends new clients with the ServerClient module and initializes them.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
2005-08-22 02:36:09 +00:00
|
|
|
def on_client_connect(cli)
|
|
|
|
|
cli.extend(ServerClient)
|
2005-07-25 02:18:37 +00:00
|
|
|
|
2005-08-22 02:36:09 +00:00
|
|
|
cli.init_cli(self)
|
2005-07-25 02:18:37 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
2005-08-22 02:36:09 +00:00
|
|
|
# Processes data coming in from a client.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
2005-08-22 02:36:09 +00:00
|
|
|
def on_client_data(cli)
|
2005-07-25 02:18:37 +00:00
|
|
|
begin
|
|
|
|
|
case cli.request.parse(cli.get)
|
|
|
|
|
when Packet::ParseCode::Completed
|
|
|
|
|
dispatch_request(cli, cli.request)
|
|
|
|
|
|
|
|
|
|
cli.reset_cli
|
|
|
|
|
when Packet::ParseCode::Error
|
|
|
|
|
close_client(cli)
|
|
|
|
|
end
|
|
|
|
|
rescue EOFError
|
|
|
|
|
if (cli.request.completed?)
|
|
|
|
|
dispatch_request(cli, cli.request)
|
|
|
|
|
|
|
|
|
|
cli.reset_cli
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
close_client(cli)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
2005-11-15 05:22:13 +00:00
|
|
|
# Dispatches the supplied request for a given connection.
|
2005-07-25 02:18:37 +00:00
|
|
|
#
|
|
|
|
|
def dispatch_request(cli, request)
|
|
|
|
|
# Is the client requesting keep-alive?
|
|
|
|
|
if ((request['Connection']) and
|
|
|
|
|
(request['Connection'].downcase == 'Keep-Alive'.downcase))
|
|
|
|
|
cli.keepalive = true
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
if (p = self.resources[request.resource])
|
|
|
|
|
if (p['LongCall'] == true)
|
|
|
|
|
Thread.new {
|
|
|
|
|
p['Proc'].call(cli, request)
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
p['Proc'].call(cli, request)
|
|
|
|
|
end
|
|
|
|
|
else
|
|
|
|
|
send_e404(cli, request)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
# If keep-alive isn't enabled for this client, close the connection
|
|
|
|
|
if (cli.keepalive == false)
|
|
|
|
|
close_client(cli)
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# Sends a 404 error to the client for a given request.
|
|
|
|
|
#
|
|
|
|
|
def send_e404(cli, request)
|
|
|
|
|
resp = Response::E404.new
|
|
|
|
|
|
|
|
|
|
resp.body =
|
|
|
|
|
"<html><head>" +
|
|
|
|
|
"<title>404 Not Found</title" +
|
|
|
|
|
"</head><body>" +
|
|
|
|
|
"<h1>Not found</h1>" +
|
|
|
|
|
"The requested URL #{request.resource} was not found on this server.<p><hr>" +
|
|
|
|
|
"</body></html>"
|
|
|
|
|
|
|
|
|
|
# Send the response to the client like what
|
|
|
|
|
cli.send_response(resp)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
