HPCC-30942 Fix SOAPCALL handling of lowercase HTTP headers in response

[afishbeck]

Type of change:

• This change is a bug fix (non-breaking change which fixes an issue).
• This change is a new feature (non-breaking change which adds functionality).
• This change improves the code (refactor or other change that does not change the functionality)
• This change fixes warnings (the fix does not alter the functionality or the generated code)
• This change is a breaking change (fix or feature that will cause existing behavior to change).
• This change alters the query API (existing queries will have to be recompiled)

Checklist:

• My code follows the code style of this project.
  • My code does not create any new warnings from compiler, build system, or lint.
• The commit message is properly formatted and free of typos.
  • The commit message title makes sense in a changelog, by itself.
  • The commit is signed.
• My change requires a change to the documentation.
  • I have updated the documentation accordingly, or...
  • I have created a JIRA ticket to update the documentation.
  • Any new interfaces or exported functions are appropriately commented.
• I have read the CONTRIBUTORS document.
• The change has been fully tested:
  • I have added tests to cover my changes.
  • All new and existing tests passed.
  • I have checked that this change does not introduce memory leaks.
  • I have used Valgrind or similar tools to check for potential issues.
• I have given due consideration to all of the following potential concerns:
  • Scalability
  • Performance
  • Security
  • Thread-safety
  • Cloud-compatibility
  • Premature optimization
  • Existing deployed queries will not be broken
  • This change fixes the problem, not just the symptom
  • The target branch of this pull request is appropriate for such a change.
• There are no similar instances of the same problem that should be addressed
  • I have addressed them here
  • I have raised JIRA issues to address them separately
• This is a user interface / front-end modification
  • I have tested my changes in multiple modern browsers
  • The component(s) render as expected

Smoketest:

• Send notifications about my Pull Request position in Smoketest queue.
• Test my draft Pull Request.

Testing:

[afishbeck]

@ghalliday draft PR hasn't been tested yet. For your initial review.. and to make sure compiles on windows, etc.

[afishbeck]

@ghalliday not sure if there is JLIB alternative to strcasestr()?

[github-actions]

https://track.hpccsystems.com/browse/HPCC-30942
Jira updated

[afishbeck]

@ghalliday strcasestr() didn't compile on windows-22. Tweaked a public domain version of stristr(). Let me know if you'd prefer another approach.

[afishbeck]

@ghalliday not sure which release you'd like to target for this.

[ghalliday]

@afishbeck I'm not sure what I think. It is probably the minimal change to fix the bug, but I had been wondering about the implementation of the current functions. (Only spotted because I have been looking at this code recently.)
The stristr function is a good idea, but I think the implementation could be improved. It could also do with some unit tests (along with everything else in the system!)

So we could take it, and then improve/fix the functions as a separate PR, or we could improve them and fix this at the same time.
What are your thoughts?

[ghalliday]

move the definition of sptr here (delete line 2874):

const char * sptr = start;

[ghalliday]

Move the definition of pptr here, and remove the cast.

const char * pptr = needle;

[afishbeck]

Right. Originally they weren't const strings but I changed it and forgot this one.

[ghalliday]

slen, plen should really be size_t, not int.

[ghalliday]

Should be nlen!

[afishbeck]

Yes, I think the p was for pattern. But confusing, and really a prefix of "p" for anything but pointer can be confusing.

[ghalliday]

I think I would have coded as (untested):

char needle0 := tolower(*needle);
for (; slen >= plen; start++, slen--)
{
   if (tolower(*start) != needle0)
   {
      size_t i = 1;
      for (;;)
      {
           if (i == plen)
              return start;
            if (tolower(start[i] != tolower(needle[i]))
               break;
            i++;
      }   
   }
}
return nullptr;

It depends how important efficiency is (and how clever the c++ compiler is).

[ghalliday]

I did wonder about recoding this, to walk through checking for matches and then skipping to the next \n. It would avoid creating a temporary string, and would (debatebly) probably be more efficient.

[ghalliday]

If I did do that I would implement a
const char * findHttpHeaderValue(const char *httpheaders, const char *header)
function that returned a pointer to the value, which could then be used in the httpHeaderBlockContainsHeader and getHTTPHeader functions.

[ghalliday]

This function doesn't have the same checks as the one above. In particular,

"content-length" would match "\nxcontent-length: 100\n"

[ghalliday]

These should also really be using getHTTPHeader(dbgheader).

[afishbeck]

@afishbeck I'm not sure what I think. It is probably the minimal change to fix the bug, but I had been wondering about the implementation of the current functions. (Only spotted because I have been looking at this code recently.) The stristr function is a good idea, but I think the implementation could be improved. It could also do with some unit tests (along with everything else in the system!)

So we could take it, and then improve/fix the functions as a separate PR, or we could improve them and fix this at the same time. What are your thoughts?

@ghalliday I definitely noticed the code could use improvement. I was trying to minimize the fix to support HAProxy 2.0 thinking the change would likely go into an older branch (not sure how far back). If it were targeting latest I would definitely recommend improving the code right away for this fix I'm not sure. I can add the low risk improvements and open a jira for further refactoring?

[ghalliday]

I will merge as-is, but have created a jira to go back and clean it up.