annotate dpi/cookies.c @ 1629:c6f07a1455bc

Cookies_load_cookies()
author corvid <corvid@lavabit.com>
date Mon, 22 Mar 2010 01:01:44 +0000
parents ce89b1819729
children 00e22d98bce8
rev   line source
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
2 * File: cookies.c
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
3 * Cookies server.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
4 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
5 * Copyright 2001 Lars Clausen <lrclause@cs.uiuc.edu>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
6 * Jörgen Viksell <jorgen.viksell@telia.com>
35
d9e7b35430de Updated copyright lines
jcid
parents: 0
diff changeset
7 * Copyright 2002-2007 Jorge Arellano Cid <jcid@dillo.org>
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
8 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
9 * This program is free software; you can redistribute it and/or modify
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
10 * it under the terms of the GNU General Public License as published by
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
11 * the Free Software Foundation; either version 3 of the License, or
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
12 * (at your option) any later version.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
13 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
14 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
15
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
16 /* This is written to follow the HTTP State Working Group's
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
17 * draft-ietf-httpstate-cookie-01.txt.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
18 *
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
19 * We depart from the draft spec's domain format in that, rather than
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
20 * using a host-only flag, we continue to use the .domain notation
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
21 * internally to indicate cookies that may also be returned to subdomains.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
22 *
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
23 * Info on cookies in the wild:
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
24 * http://www.ietf.org/mail-archive/web/http-state/current/msg00078.html
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
25 * And dates specifically:
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
26 * http://www.ietf.org/mail-archive/web/http-state/current/msg00128.html
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
27 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
28
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
29 #ifdef DISABLE_COOKIES
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
30
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
31 int main(void)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
32 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
33 return 0; /* never called */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
34 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
35
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
36 #else
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
37
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
38
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
39 #include <sys/types.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
40 #include <sys/socket.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
41 #include <sys/stat.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
42 #include <sys/un.h>
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
43 #include <netinet/in.h>
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
44 #include <fcntl.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
45 #include <unistd.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
46 #include <errno.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
47 #include <stddef.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
48 #include <string.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
49 #include <stdlib.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
50 #include <stdio.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
51 #include <time.h> /* for time() and time_t */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
52 #include <ctype.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
53 #include <netdb.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
54 #include <signal.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
55 #include "dpiutil.h"
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
56 #include "../dpip/dpip.h"
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
57
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
58
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
59 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
60 * Debugging macros
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
61 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
62 #define _MSG(...)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
63 #define MSG(...) printf("[cookies dpi]: " __VA_ARGS__)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
64
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
65 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
66 * a_List_add()
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
67 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
68 * Make sure there's space for 'num_items' items within the list
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
69 * (First, allocate an 'alloc_step' sized chunk, after that, double the
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
70 * list size --to make it faster)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
71 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
72 #define a_List_add(list,num_items,alloc_step) \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
73 if (!list) { \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
74 list = dMalloc(alloc_step * sizeof((*list))); \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
75 } \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
76 if (num_items >= alloc_step){ \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
77 while ( num_items >= alloc_step ) \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
78 alloc_step <<= 1; \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
79 list = dRealloc(list, alloc_step * sizeof((*list))); \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
80 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
81
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
82 /* The maximum length of a line in the cookie file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
83 #define LINE_MAXLEN 4096
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
84
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
85 #define MAX_DOMAIN_COOKIES 20
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
86 #define MAX_TOTAL_COOKIES 1200
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
87
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
88 typedef enum {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
89 COOKIE_ACCEPT,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
90 COOKIE_ACCEPT_SESSION,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
91 COOKIE_DENY
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
92 } CookieControlAction;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
93
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
94 typedef struct {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
95 char *domain;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
96 CookieControlAction action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
97 } CookieControl;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
98
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
99 typedef struct {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
100 char *domain;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
101 Dlist *cookies;
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
102 } DomainNode;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
103
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
104 typedef struct {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
105 char *name;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
106 char *value;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
107 char *domain;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
108 char *path;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
109 time_t expires_at;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
110 bool_t secure;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
111 bool_t session_only;
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
112 long last_used;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
113 } CookieData_t;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
114
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
115 typedef struct {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
116 Dsh *sh;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
117 int status;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
118 } ClientInfo;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
119
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
120 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
121 * Local data
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
122 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
123
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
124 static Dlist *all_cookies;
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
125
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
126 /* List of DomainNode. Each node holds a domain and its list of cookies */
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
127 static Dlist *domains;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
128
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
129 /* Variables for access control */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
130 static CookieControl *ccontrol = NULL;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
131 static int num_ccontrol = 0;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
132 static int num_ccontrol_max = 1;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
133 static CookieControlAction default_action = COOKIE_DENY;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
134
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
135 static long cookies_use_counter = 0;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
136 static bool_t disabled;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
137 static FILE *file_stream;
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
138 static const char *const cookies_txt_header_str =
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
139 "# HTTP Cookie File\n"
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
140 "# This is a generated file! Do not edit.\n"
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
141 "# [domain TRUE path secure expiry_time name value]\n\n";
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
142
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
143 /* The epoch is Jan 1, 1970. When there is difficulty in representing future
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
144 * dates, use the (by far) most likely last representable time in Jan 19, 2038.
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
145 */
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
146 static struct tm cookies_epoch_tm = {0, 0, 0, 1, 0, 70, 0, 0, 0, 0, 0};
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
147 static time_t cookies_epoch_time, cookies_future_time;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
148
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
149 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
150 * Forward declarations
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
151 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
152
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
153 static CookieControlAction Cookies_control_check_domain(const char *domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
154 static int Cookie_control_init(void);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
155 static void Cookies_add_cookie(CookieData_t *cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
156 static int Cookies_cmp(const void *a, const void *b);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
157
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
158 /*
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
159 * Compare function for searching a domain node
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
160 */
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
161 static int Domain_node_cmp(const void *v1, const void *v2)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
162 {
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
163 const DomainNode *n1 = v1, *n2 = v2;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
164
1484
29d892265da0 domain comparison not case-sensitive
corvid <corvid@lavabit.com>
parents: 1483
diff changeset
165 return dStrcasecmp(n1->domain, n2->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
166 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
167
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
168 /*
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
169 * Compare function for searching a domain node by domain
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
170 */
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
171 static int Domain_node_by_domain_cmp(const void *v1, const void *v2)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
172 {
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
173 const DomainNode *node = v1;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
174 const char *domain = v2;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
175
1484
29d892265da0 domain comparison not case-sensitive
corvid <corvid@lavabit.com>
parents: 1483
diff changeset
176 return dStrcasecmp(node->domain, domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
177 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
178
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
179 /*
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
180 * Delete node. This will not free any cookies that might be in node->cookies.
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
181 */
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
182 static void Cookies_delete_node(DomainNode *node)
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
183 {
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
184 dList_remove(domains, node);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
185 dFree(node->domain);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
186 dList_free(node->cookies);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
187 dFree(node);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
188 }
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
189
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
190 /*
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
191 * Return a file pointer. If the file doesn't exist, try to create it,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
192 * with the optional 'init_str' as its content.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
193 */
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
194 static FILE *Cookies_fopen(const char *filename, const char *mode,
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
195 const char *init_str)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
196 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
197 FILE *F_in;
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
198 int fd, rc;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
199
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
200 if ((F_in = fopen(filename, mode)) == NULL) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
201 /* Create the file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
202 fd = open(filename, O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR | S_IWUSR);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
203 if (fd != -1) {
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
204 if (init_str) {
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
205 rc = write(fd, init_str, strlen(init_str));
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
206 if (rc == -1) {
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
207 MSG("Cookies: Could not write initial string to file %s: %s\n",
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
208 filename, dStrerror(errno));
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
209 }
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
210 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
211 close(fd);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
212
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
213 MSG("Created file: %s\n", filename);
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
214 F_in = fopen(filename, mode);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
215 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
216 MSG("Could not create file: %s!\n", filename);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
217 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
218 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
219
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
220 if (F_in) {
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
221 /* set close on exec */
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
222 fcntl(fileno(F_in), F_SETFD, FD_CLOEXEC | fcntl(fileno(F_in), F_GETFD));
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
223 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
224
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
225 return F_in;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
226 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
227
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
228 static void Cookies_free_cookie(CookieData_t *cookie)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
229 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
230 dFree(cookie->name);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
231 dFree(cookie->value);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
232 dFree(cookie->domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
233 dFree(cookie->path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
234 dFree(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
235 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
236
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
237 static void Cookies_tm_init(struct tm *tm)
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
238 {
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
239 tm->tm_sec = cookies_epoch_tm.tm_sec;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
240 tm->tm_min = cookies_epoch_tm.tm_min;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
241 tm->tm_hour = cookies_epoch_tm.tm_hour;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
242 tm->tm_mday = cookies_epoch_tm.tm_mday;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
243 tm->tm_mon = cookies_epoch_tm.tm_mon;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
244 tm->tm_year = cookies_epoch_tm.tm_year;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
245 tm->tm_isdst = cookies_epoch_tm.tm_isdst;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
246 }
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
247
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
248 /*
1629
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
249 * Read in cookies from 'stream' (cookies.txt)
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
250 */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
251 static void Cookies_load_cookies(FILE *stream)
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
252 {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
253 char line[LINE_MAXLEN];
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
254
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
255 all_cookies = dList_new(32);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
256 domains = dList_new(32);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
257
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
258 /* Get all lines in the file */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
259 while (!feof(stream)) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
260 line[0] = '\0';
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
261 if ((fgets(line, LINE_MAXLEN, stream) == NULL) && ferror(stream)) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
262 MSG("Error while reading from cookies.txt: %s\n", dStrerror(errno));
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
263 break; /* bail out */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
264 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
265
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
266 /* Remove leading and trailing whitespaces */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
267 dStrstrip(line);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
268
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
269 if ((line[0] != '\0') && (line[0] != '#')) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
270 /*
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
271 * Split the row into pieces using a tab as the delimiter.
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
272 * pieces[0] The domain name
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
273 * pieces[1] TRUE/FALSE: is the domain a suffix, or a full domain?
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
274 * pieces[2] The path
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
275 * pieces[3] TRUE/FALSE: is the cookie for secure use only?
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
276 * pieces[4] Timestamp of expire date
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
277 * pieces[5] Name of the cookie
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
278 * pieces[6] Value of the cookie
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
279 */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
280 CookieControlAction action;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
281 char *piece;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
282 char *line_marker = line;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
283 CookieData_t *cookie = dNew0(CookieData_t, 1);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
284
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
285 cookie->session_only = FALSE;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
286 cookie->domain = dStrdup(dStrsep(&line_marker, "\t"));
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
287 dStrsep(&line_marker, "\t"); /* we use domain always as sufix */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
288 cookie->path = dStrdup(dStrsep(&line_marker, "\t"));
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
289 piece = dStrsep(&line_marker, "\t");
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
290 if (piece != NULL && piece[0] == 'T')
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
291 cookie->secure = TRUE;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
292 piece = dStrsep(&line_marker, "\t");
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
293 if (piece != NULL) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
294 struct tm tm;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
295 Cookies_tm_init(&tm);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
296 tm.tm_sec += strtol(piece, NULL, 10);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
297 cookie->expires_at = mktime(&tm);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
298 } else {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
299 cookie->expires_at = (time_t) -1;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
300 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
301 cookie->name = dStrdup(dStrsep(&line_marker, "\t"));
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
302 cookie->value = dStrdup(line_marker ? line_marker : "");
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
303
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
304 if (!cookie->domain || cookie->domain[0] == '\0' ||
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
305 !cookie->path || cookie->path[0] != '/' ||
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
306 !cookie->name || !cookie->value) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
307 MSG("Malformed line in cookies.txt file!\n");
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
308 Cookies_free_cookie(cookie);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
309 continue;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
310 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
311
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
312 action = Cookies_control_check_domain(cookie->domain);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
313 if (action == COOKIE_DENY) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
314 Cookies_free_cookie(cookie);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
315 continue;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
316 } else if (action == COOKIE_ACCEPT_SESSION) {
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
317 cookie->session_only = TRUE;
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
318 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
319
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
320 /* Save cookie in memory */
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
321 Cookies_add_cookie(cookie);
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
322 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
323 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
324 MSG("Cookies loaded: %d.\n", dList_length(all_cookies));
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
325 }
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
326
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
327 /*
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
328 * Initialize the cookies module
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
329 * (The 'disabled' variable is writeable only within Cookies_init)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
330 */
51
6ff7b6758e0c Added the "static" qualifier where missing.
jcid
parents: 35
diff changeset
331 static void Cookies_init()
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
332 {
1629
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
333 char *filename;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
334 #ifndef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
335 struct flock lck;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
336 #endif
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
337 struct tm future_tm = {7, 14, 3, 19, 0, 138, 0, 0, 0, 0, 0};
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
338
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
339 /* Default setting */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
340 disabled = TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
341
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
342 cookies_epoch_time = mktime(&cookies_epoch_tm);
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
343 cookies_future_time = mktime(&future_tm);
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
344
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
345 /* Read and parse the cookie control file (cookiesrc) */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
346 if (Cookie_control_init() != 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
347 MSG("Disabling cookies.\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
348 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
349 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
350
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
351 /* Get a stream for the cookies file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
352 filename = dStrconcat(dGethomedir(), "/.dillo/cookies.txt", NULL);
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
353 file_stream = Cookies_fopen(filename, "r+", cookies_txt_header_str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
354
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
355 dFree(filename);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
356
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
357 if (!file_stream) {
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
358 MSG("ERROR: Can't open ~/.dillo/cookies.txt; disabling cookies\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
359 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
360 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
361
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
362 /* Try to get a lock from the file descriptor */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
363 #ifdef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
364 disabled = (lockf(fileno(file_stream), F_TLOCK, 0) == -1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
365 #else /* POSIX lock */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
366 lck.l_start = 0; /* start at beginning of file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
367 lck.l_len = 0; /* lock entire file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
368 lck.l_type = F_WRLCK;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
369 lck.l_whence = SEEK_SET; /* absolute offset */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
370
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
371 disabled = (fcntl(fileno(file_stream), F_SETLK, &lck) == -1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
372 #endif
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
373 if (disabled) {
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
374 MSG("The cookies file has a file lock; disabling cookies!\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
375 fclose(file_stream);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
376 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
377 }
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
378 MSG("Enabling cookies as per cookiesrc...\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
379
1629
c6f07a1455bc Cookies_load_cookies()
corvid <corvid@lavabit.com>
parents: 1628
diff changeset
380 Cookies_load_cookies(file_stream);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
381 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
382
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
383 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
384 * Flush cookies to disk and free all the memory allocated.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
385 */
51
6ff7b6758e0c Added the "static" qualifier where missing.
jcid
parents: 35
diff changeset
386 static void Cookies_save_and_free()
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
387 {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
388 int i, fd, saved = 0;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
389 DomainNode *node;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
390 CookieData_t *cookie;
1512
bd36920f32d4 don't bother to save expired cookies
corvid <corvid@lavabit.com>
parents: 1510
diff changeset
391 time_t now;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
392
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
393 #ifndef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
394 struct flock lck;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
395 #endif
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
396
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
397 if (disabled)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
398 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
399
1512
bd36920f32d4 don't bother to save expired cookies
corvid <corvid@lavabit.com>
parents: 1510
diff changeset
400 now = time(NULL);
bd36920f32d4 don't bother to save expired cookies
corvid <corvid@lavabit.com>
parents: 1510
diff changeset
401
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
402 rewind(file_stream);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
403 fd = fileno(file_stream);
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
404 if (ftruncate(fd, 0) == -1)
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
405 MSG("Cookies: Truncate file stream failed: %s\n", dStrerror(errno));
454
c0d3c2ec7140 - Fixed a printf bug in cookies dpi.
jcid
parents: 445
diff changeset
406 fprintf(file_stream, "%s", cookies_txt_header_str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
407
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
408 /* Iterate cookies per domain, saving and freeing */
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
409 while ((node = dList_nth_data(domains, 0))) {
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
410 for (i = 0; (cookie = dList_nth_data(node->cookies, i)); ++i) {
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
411 if (!cookie->session_only && difftime(cookie->expires_at, now) > 0) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
412 fprintf(file_stream, "%s\tTRUE\t%s\t%s\t%ld\t%s\t%s\n",
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
413 cookie->domain,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
414 cookie->path,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
415 cookie->secure ? "TRUE" : "FALSE",
1606
9c9b1a1e5bb4 another difftime
corvid <corvid@lavabit.com>
parents: 1605
diff changeset
416 (long)difftime(cookie->expires_at, cookies_epoch_time),
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
417 cookie->name,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
418 cookie->value);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
419 saved++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
420 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
421 Cookies_free_cookie(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
422 }
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
423 Cookies_delete_node(node);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
424 }
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
425 dList_free(domains);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
426 dList_free(all_cookies);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
427
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
428 #ifdef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
429 lockf(fd, F_ULOCK, 0);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
430 #else /* POSIX file lock */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
431 lck.l_start = 0; /* start at beginning of file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
432 lck.l_len = 0; /* lock entire file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
433 lck.l_type = F_UNLCK;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
434 lck.l_whence = SEEK_SET; /* absolute offset */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
435
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
436 fcntl(fileno(file_stream), F_SETLKW, &lck);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
437 #endif
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
438 fclose(file_stream);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
439
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
440 MSG("Cookies saved: %d.\n", saved);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
441 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
442
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
443 /*
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
444 * Take a month's name and return a number between 0-11.
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
445 * E.g. 'April' -> 3
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
446 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
447 static int Cookies_get_month(const char *month_name)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
448 {
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
449 static const char *const months[] =
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
450 { "Jan", "Feb", "Mar",
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
451 "Apr", "May", "Jun",
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
452 "Jul", "Aug", "Sep",
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
453 "Oct", "Nov", "Dec"
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
454 };
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
455 int i;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
456
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
457 for (i = 0; i < 12; i++) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
458 if (!dStrncasecmp(months[i], month_name, 3))
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
459 return i;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
460 }
1615
6f4cc0aa0d9b invalid value on invalid month
corvid <corvid@lavabit.com>
parents: 1614
diff changeset
461 return -1;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
462 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
463
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
464 /*
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
465 * Accept: RFC-1123 | RFC-850 | ANSI asctime | Old Netscape format date string.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
466 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
467 * Wdy, DD-Mon-YY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
468 * Wdy, DD-Mon-YYYY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
469 * Weekday, DD-Mon-YY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
470 * Weekday, DD-Mon-YYYY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
471 * Tue May 21 13:46:22 1991\n
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
472 * Tue May 21 13:46:22 1991
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
473 *
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
474 * Let's add:
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
475 * Mon Jan 11 08:00:00 2010 GMT
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
476 *
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
477 * Return a pointer to a struct tm, or NULL on error.
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
478 *
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
479 * NOTE that the draft spec wants user agents to be more flexible in what
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
480 * they accept. For now, let's hack in special cases when they're encountered.
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
481 * Why? Because this function is currently understandable, and I don't want to
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
482 * abandon that (or at best decrease that -- see section 5.1.1) until there
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
483 * is known to be good reason.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
484 */
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
485 static struct tm *Cookies_parse_date(const char *date)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
486 {
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
487 struct tm *tm;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
488 char *cp = strchr(date, ',');
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
489
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
490 if (!cp && strlen(date)>20 && date[13] == ':' && date[16] == ':') {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
491 /* Looks like ANSI asctime format... */
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
492 tm = dNew0(struct tm, 1);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
493
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
494 cp = (char *)date;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
495 tm->tm_mon = Cookies_get_month(cp + 4);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
496 tm->tm_mday = strtol(cp + 8, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
497 tm->tm_hour = strtol(cp + 11, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
498 tm->tm_min = strtol(cp + 14, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
499 tm->tm_sec = strtol(cp + 17, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
500 tm->tm_year = strtol(cp + 20, NULL, 10) - 1900;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
501
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
502 } else if (cp && (cp - date == 3 || cp - date > 5) &&
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
503 (strlen(cp) == 24 || strlen(cp) == 26)) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
504 /* RFC-1123 | RFC-850 format | Old Netscape format */
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
505 tm = dNew0(struct tm, 1);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
506
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
507 tm->tm_mday = strtol(cp + 2, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
508 tm->tm_mon = Cookies_get_month(cp + 5);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
509 tm->tm_year = strtol(cp + 9, &cp, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
510 /* tm_year is the number of years since 1900 */
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
511 if (tm->tm_year < 70)
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
512 tm->tm_year += 100;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
513 else if (tm->tm_year > 100)
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
514 tm->tm_year -= 1900;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
515 tm->tm_hour = strtol(cp + 1, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
516 tm->tm_min = strtol(cp + 4, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
517 tm->tm_sec = strtol(cp + 7, NULL, 10);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
518
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
519 } else {
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
520 tm = NULL;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
521 MSG("In date \"%s\", format not understood.\n", date);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
522 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
523
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
524 /* Error checks. This may be overkill. */
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
525 if (tm &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
526 !(tm->tm_mday > 0 && tm->tm_mday < 32 && tm->tm_mon >= 0 &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
527 tm->tm_mon < 12 && tm->tm_year >= 70 && tm->tm_hour >= 0 &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
528 tm->tm_hour < 24 && tm->tm_min >= 0 && tm->tm_min < 60 &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
529 tm->tm_sec >= 0 && tm->tm_sec < 60)) {
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
530 MSG("Date \"%s\" values not in range.\n", date);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
531 dFree(tm);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
532 tm = NULL;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
533 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
534
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
535 return tm;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
536 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
537
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
538 /*
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
539 * Find the least recently used cookie among those in the provided list.
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
540 */
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
541 static CookieData_t *Cookies_get_LRU(Dlist *cookies)
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
542 {
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
543 int i, n = dList_length(cookies);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
544 CookieData_t *lru = dList_nth_data(cookies, 0);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
545
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
546 for (i = 1; i < n; i++) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
547 CookieData_t *curr = dList_nth_data(cookies, i);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
548
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
549 if (curr->last_used < lru->last_used)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
550 lru = curr;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
551 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
552 return lru;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
553 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
554
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
555 /*
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
556 * Delete expired cookies.
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
557 * If node is given, only check those cookies.
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
558 * Note that nodes can disappear if all of their cookies were expired.
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
559 *
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
560 * Return the number of cookies that were expired.
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
561 */
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
562 static int Cookies_rm_expired_cookies(DomainNode *node)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
563 {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
564 Dlist *cookies = node ? node->cookies : all_cookies;
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
565 int removed = 0;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
566 int i = 0, n = dList_length(cookies);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
567 time_t now = time(NULL);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
568
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
569 while (i < n) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
570 CookieData_t *c = dList_nth_data(cookies, i);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
571
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
572 if (difftime(c->expires_at, now) < 0) {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
573 DomainNode *currnode = node ? node :
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
574 dList_find_sorted(domains, c->domain, Domain_node_by_domain_cmp);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
575 dList_remove_fast(currnode->cookies, c);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
576 if (dList_length(currnode->cookies) == 0)
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
577 Cookies_delete_node(currnode);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
578 dList_remove_fast(all_cookies, c);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
579 Cookies_free_cookie(c);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
580 n--;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
581 removed++;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
582 } else {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
583 i++;
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
584 }
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
585 }
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
586 return removed;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
587 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
588
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
589 /*
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
590 * There are too many cookies. Choose one to remove and delete.
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
591 * If node is given, select from among its cookies only.
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
592 */
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
593 static void Cookies_too_many(DomainNode *node)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
594 {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
595 CookieData_t *lru = Cookies_get_LRU(node ? node->cookies : all_cookies);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
596
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
597 MSG("Too many cookies!\n"
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
598 "Removing LRU cookie for \'%s\': \'%s=%s\'\n", lru->domain,
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
599 lru->name, lru->value);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
600 if (!node)
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
601 node = dList_find_sorted(domains, lru->domain,Domain_node_by_domain_cmp);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
602
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
603 dList_remove_fast(node->cookies, lru);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
604 dList_remove_fast(all_cookies, lru);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
605 Cookies_free_cookie(lru);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
606 if (dList_length(node->cookies) == 0)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
607 Cookies_delete_node(node);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
608 }
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
609
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
610 static void Cookies_add_cookie(CookieData_t *cookie)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
611 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
612 Dlist *domain_cookies;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
613 CookieData_t *c;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
614 DomainNode *node;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
615
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
616 node = dList_find_sorted(domains, cookie->domain,Domain_node_by_domain_cmp);
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
617 domain_cookies = (node) ? node->cookies : NULL;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
618
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
619 if (domain_cookies) {
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
620 /* Remove any cookies with the same name and path */
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
621 while ((c = dList_find_custom(domain_cookies, cookie, Cookies_cmp))) {
1627
0ae558e56003 cookies some remove_fast
corvid <corvid@lavabit.com>
parents: 1626
diff changeset
622 dList_remove_fast(domain_cookies, c);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
623 dList_remove_fast(all_cookies, c);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
624 Cookies_free_cookie(c);
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
625 }
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
626 }
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
627
1614
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
628 if ((cookie->expires_at == (time_t) -1) ||
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
629 (difftime(cookie->expires_at, time(NULL)) <= 0)) {
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
630 /*
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
631 * Don't add an expired cookie. Whether expiring now == expired, exactly,
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
632 * is arguable, but we definitely do not want to add a Max-Age=0 cookie.
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
633 */
1614
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
634 _MSG("Goodbye, cookie %s=%s d:%s p:%s\n", cookie->name,
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
635 cookie->value, cookie->domain, cookie->path);
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
636 Cookies_free_cookie(cookie);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
637 } else {
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
638 if (domain_cookies && dList_length(domain_cookies) >=MAX_DOMAIN_COOKIES){
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
639 int removed = Cookies_rm_expired_cookies(node);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
640
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
641 if (removed == 0) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
642 Cookies_too_many(node);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
643 } else if (removed >= MAX_DOMAIN_COOKIES) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
644 /* So many were removed that the node might have been deleted. */
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
645 node = dList_find_sorted(domains, cookie->domain,
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
646 Domain_node_by_domain_cmp);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
647 domain_cookies = (node) ? node->cookies : NULL;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
648 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
649 }
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
650 if (dList_length(all_cookies) >= MAX_TOTAL_COOKIES) {
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
651 if (Cookies_rm_expired_cookies(NULL) == 0) {
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
652 Cookies_too_many(NULL);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
653 } else if (domain_cookies) {
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
654 /* Our own node might have just been deleted. */
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
655 node = dList_find_sorted(domains, cookie->domain,
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
656 Domain_node_by_domain_cmp);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
657 domain_cookies = (node) ? node->cookies : NULL;
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
658 }
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
659 }
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
660
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
661 cookie->last_used = cookies_use_counter++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
662
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
663 /* Actually add the cookie! */
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
664 dList_append(all_cookies, cookie);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
665
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
666 if (!domain_cookies) {
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
667 domain_cookies = dList_new(5);
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
668 dList_append(domain_cookies, cookie);
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
669 node = dNew(DomainNode, 1);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
670 node->domain = dStrdup(cookie->domain);
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
671 node->cookies = domain_cookies;
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
672 dList_insert_sorted(domains, node, Domain_node_cmp);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
673 } else {
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
674 dList_append(domain_cookies, cookie);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
675 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
676 }
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
677 if (domain_cookies && (dList_length(domain_cookies) == 0))
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
678 Cookies_delete_node(node);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
679 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
680
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
681 /*
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
682 * Return the attribute that is present at *cookie_str.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
683 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
684 static char *Cookies_parse_attr(char **cookie_str)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
685 {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
686 char *str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
687 uint_t len;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
688
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
689 while (dIsspace(**cookie_str))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
690 (*cookie_str)++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
691
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
692 str = *cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
693 /* find '=' at end of attr, ';' after attr/val pair, '\0' end of string */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
694 len = strcspn(str, "=;");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
695 *cookie_str += len;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
696
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
697 while (len && (str[len - 1] == ' ' || str[len - 1] == '\t'))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
698 len--;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
699 return dStrndup(str, len);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
700 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
701
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
702 /*
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
703 * Get the value in *cookie_str.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
704 */
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
705 static char *Cookies_parse_value(char **cookie_str)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
706 {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
707 uint_t len;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
708 char *str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
709
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
710 if (**cookie_str == '=') {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
711 (*cookie_str)++;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
712 while (dIsspace(**cookie_str))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
713 (*cookie_str)++;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
714
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
715 str = *cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
716 /* finds ';' after attr/val pair or '\0' at end of string */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
717 len = strcspn(str, ";");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
718 *cookie_str += len;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
719
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
720 while (len && (str[len - 1] == ' ' || str[len - 1] == '\t'))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
721 len--;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
722 } else {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
723 str = *cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
724 len = 0;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
725 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
726 return dStrndup(str, len);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
727 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
728
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
729 /*
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
730 * Advance past any value
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
731 */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
732 static void Cookies_eat_value(char **cookie_str)
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
733 {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
734 if (**cookie_str == '=')
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
735 *cookie_str += strcspn(*cookie_str, ";");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
736 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
737
1610
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
738 /*
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
739 * Return the number of seconds by which our clock is ahead of the server's
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
740 * clock.
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
741 */
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
742 static double Cookies_server_timediff(const char *server_date)
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
743 {
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
744 double ret = 0;
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
745
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
746 if (server_date) {
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
747 struct tm *server_tm = Cookies_parse_date(server_date);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
748
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
749 if (server_tm) {
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
750 time_t server_time = mktime(server_tm);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
751
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
752 if (server_time != (time_t) -1)
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
753 ret = difftime(time(NULL), server_time);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
754 dFree(server_tm);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
755 }
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
756 }
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
757 return ret;
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
758 }
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
759
1609
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
760 static void Cookies_unquote_string(char *str)
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
761 {
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
762 if (str && str[0] == '\"') {
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
763 uint_t len = strlen(str);
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
764
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
765 if (len > 1 && str[len - 1] == '\"') {
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
766 str[len - 1] = '\0';
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
767 while ((*str = str[1]))
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
768 str++;
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
769 }
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
770 }
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
771 }
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
772
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
773 /*
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
774 * Parse cookie. A cookie might look something like:
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
775 * "Name=Val; Domain=example.com; Max-Age=3600; HttpOnly"
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
776 */
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
777 static CookieData_t *Cookies_parse(char *cookie_str, const char *server_date)
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
778 {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
779 CookieData_t *cookie = NULL;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
780 char *str = cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
781 bool_t first_attr = TRUE;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
782 bool_t max_age = FALSE;
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
783 bool_t expires = FALSE;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
784
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
785 /* Iterate until there is nothing left of the string */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
786 while (*str) {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
787 char *attr;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
788 char *value;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
789
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
790 /* Get attribute */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
791 attr = Cookies_parse_attr(&str);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
792
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
793 /* Get the value for the attribute and store it */
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
794 if (first_attr) {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
795 if (!*str && !*attr) {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
796 dFree(attr);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
797 return NULL;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
798 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
799 cookie = dNew0(CookieData_t, 1);
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
800
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
801 /* let's arbitrarily choose a year for now */
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
802 time_t now = time(NULL);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
803 struct tm *tm = gmtime(&now);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
804 ++tm->tm_year;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
805 cookie->expires_at = mktime(tm);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
806 if (cookie->expires_at == (time_t) -1)
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
807 cookie->expires_at = cookies_future_time;
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
808
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
809 if (*str != '=') {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
810 /* NOTE it seems possible that the Working Group will decide
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
811 * against allowing nameless cookies.
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
812 */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
813 cookie->name = dStrdup("");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
814 cookie->value = attr;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
815 } else {
1603
a31eecbe5938 fix cookie attr leak
corvid <corvid@lavabit.com>
parents: 1599
diff changeset
816 cookie->name = attr;
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
817 cookie->value = Cookies_parse_value(&str);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
818 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
819 } else if (dStrcasecmp(attr, "Path") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
820 value = Cookies_parse_value(&str);
1491
a10148c0bcab cookies don't leak extra domain/path attrs
corvid <corvid@lavabit.com>
parents: 1490
diff changeset
821 dFree(cookie->path);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
822 cookie->path = value;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
823 } else if (dStrcasecmp(attr, "Domain") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
824 value = Cookies_parse_value(&str);
1491
a10148c0bcab cookies don't leak extra domain/path attrs
corvid <corvid@lavabit.com>
parents: 1490
diff changeset
825 dFree(cookie->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
826 cookie->domain = value;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
827 } else if (dStrcasecmp(attr, "Max-Age") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
828 value = Cookies_parse_value(&str);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
829 if (isdigit(*value) || *value == '-') {
1508
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
830 time_t now = time(NULL);
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
831 long age = strtol(value, NULL, 10);
1612
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
832 struct tm *tm = gmtime(&now);
1508
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
833
1612
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
834 tm->tm_sec += age;
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
835 cookie->expires_at = mktime(tm);
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
836 if (age > 0 && cookie->expires_at == (time_t) -1) {
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
837 cookie->expires_at = cookies_future_time;
1508
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
838 }
1612
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
839 MSG("Cookie to expire at %s", ctime(&cookie->expires_at));
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
840 expires = max_age = TRUE;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
841 }
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
842 dFree(value);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
843 } else if (dStrcasecmp(attr, "Expires") == 0) {
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
844 if (!max_age) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
845 value = Cookies_parse_value(&str);
1611
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
846 Cookies_unquote_string(value);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
847 MSG("Expires attribute gives %s\n", value);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
848 struct tm *tm = Cookies_parse_date(value);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
849 if (tm) {
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
850 tm->tm_sec += Cookies_server_timediff(server_date);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
851 cookie->expires_at = mktime(tm);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
852 if (cookie->expires_at == (time_t) -1 && tm->tm_year >= 138) {
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
853 /* Just checking tm_year does not ensure that the problem was
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
854 * inability to represent a distant date...
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
855 */
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
856 cookie->expires_at = cookies_future_time;
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
857 }
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
858 MSG("Cookie to expire at %s", ctime(&cookie->expires_at));
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
859 dFree(tm);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
860 } else {
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
861 cookie->expires_at = (time_t) -1;
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
862 }
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
863 expires = TRUE;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
864 dFree(value);
1613
0f26b1d4ac2e if ignoring Expires attr, eat value
corvid <corvid@lavabit.com>
parents: 1612
diff changeset
865 } else {
0f26b1d4ac2e if ignoring Expires attr, eat value
corvid <corvid@lavabit.com>
parents: 1612
diff changeset
866 Cookies_eat_value(&str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
867 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
868 } else if (dStrcasecmp(attr, "Secure") == 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
869 cookie->secure = TRUE;
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
870 Cookies_eat_value(&str);
418
b7265ec32e33 - Allow login to wikipedia by ignoring the HttpOnly attribute (cookies)
jcid
parents: 379
diff changeset
871 } else if (dStrcasecmp(attr, "HttpOnly") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
872 Cookies_eat_value(&str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
873 } else {
379
52f65d7a0e7c - minor cookie MSG improvement.
jcid
parents: 368
diff changeset
874 MSG("Cookie contains unknown attribute: '%s'\n", attr);
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
875 Cookies_eat_value(&str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
876 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
877
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
878 if (first_attr)
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
879 first_attr = FALSE;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
880 else
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
881 dFree(attr);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
882
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
883 if (*str == ';')
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
884 str++;
159
70da40b41e3a - Fixed a bug in Cookies_parse_one. Set it to a single return potint too!
jcid
parents: 154
diff changeset
885 }
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
886 cookie->session_only = expires == FALSE;
159
70da40b41e3a - Fixed a bug in Cookies_parse_one. Set it to a single return potint too!
jcid
parents: 154
diff changeset
887 return cookie;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
888 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
889
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
890 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
891 * Compare cookies by name and path (return 0 if equal)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
892 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
893 static int Cookies_cmp(const void *a, const void *b)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
894 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
895 const CookieData_t *ca = a, *cb = b;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
896 int ret;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
897
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
898 if (!(ret = strcmp(ca->name, cb->name)))
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
899 ret = strcmp(ca->path, cb->path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
900 return ret;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
901 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
902
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
903 /*
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
904 * Is the domain an IP address?
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
905 */
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
906 static bool_t Cookies_domain_is_ip(const char *domain)
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
907 {
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
908 uint_t len;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
909
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
910 if (!domain)
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
911 return FALSE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
912
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
913 len = strlen(domain);
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
914
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
915 if (len == strspn(domain, "0123456789.")) {
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
916 _MSG("an IPv4 address\n");
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
917 return TRUE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
918 }
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
919 if (*domain == '[' &&
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
920 (len == strspn(domain, "0123456789abcdefABCDEF:.[]"))) {
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
921 /* The precise format is shown in section 3.2.2 of rfc 3986 */
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
922 _MSG("an IPv6 address\n");
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
923 return TRUE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
924 }
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
925 return FALSE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
926 }
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
927
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
928 /*
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
929 * Check whether url_path path-matches cookie_path
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
930 *
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
931 * Note different user agents apparently vary in path-matching behaviour,
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
932 * but this is the recommended method at the moment.
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
933 */
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
934 static bool_t Cookies_path_matches(const char *url_path,
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
935 const char *cookie_path)
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
936 {
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
937 bool_t ret = TRUE;
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
938
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
939 if (!url_path || !cookie_path) {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
940 ret = FALSE;
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
941 } else {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
942 uint_t c_len = strlen(cookie_path);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
943 uint_t u_len = strlen(url_path);
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
944
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
945 ret = (!strncmp(cookie_path, url_path, c_len) &&
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
946 ((c_len == u_len) ||
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
947 (c_len > 0 && cookie_path[c_len - 1] == '/') ||
1505
4f98690a951a unnecessary test
corvid <corvid@lavabit.com>
parents: 1504
diff changeset
948 (url_path[c_len] == '/')));
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
949 }
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
950 return ret;
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
951 }
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
952
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
953 /*
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
954 * If cookie path is not properly set, remedy that.
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
955 */
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
956 static void Cookies_validate_path(CookieData_t *cookie, const char *url_path)
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
957 {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
958 if (!cookie->path || cookie->path[0] != '/') {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
959 dFree(cookie->path);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
960
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
961 if (url_path) {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
962 uint_t len = strlen(url_path);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
963
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
964 while (len && url_path[len] != '/')
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
965 len--;
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
966 cookie->path = dStrndup(url_path, len ? len : 1);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
967 } else {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
968 cookie->path = dStrdup("/");
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
969 }
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
970 }
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
971 }
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
972
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
973 /*
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
974 * Check whether host name A domain-matches host name B.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
975 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
976 static bool_t Cookies_domain_matches(char *A, char *B)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
977 {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
978 int diff;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
979
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
980 if (!A || !*A || !B || !*B)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
981 return FALSE;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
982
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
983 if (*B == '.')
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
984 B++;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
985
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
986 /* Should we concern ourselves with trailing dots in matching (here or
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
987 * elsewhere)? The HTTP State people have found that most user agents
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
988 * don't, so: No.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
989 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
990
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
991 if (!dStrcasecmp(A, B))
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
992 return TRUE;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
993
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
994 if (Cookies_domain_is_ip(B))
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
995 return FALSE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
996
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
997 diff = strlen(A) - strlen(B);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
998
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
999 if (diff > 0) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1000 /* B is the tail of A, and the match is preceded by a '.' */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1001 return (dStrcasecmp(A + diff, B) == 0 && A[diff - 1] == '.');
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1002 } else {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1003 return FALSE;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1004 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1005 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1006
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1007 /*
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1008 * Based on the host, how many internal dots do we need in a cookie domain
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1009 * to make it valid? e.g., "org" is not on the list, so dillo.org is a safe
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1010 * cookie domain, but "uk" is on the list, so ac.uk is not safe.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1011 *
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1012 * This is imperfect, but it's something. Specifically, checking for these
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1013 * TLDs is the solution that Konqueror used once upon a time, according to
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1014 * reports.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1015 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1016 static uint_t Cookies_internal_dots_required(const char *host)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1017 {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1018 uint_t ret = 1;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1019
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1020 if (host) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1021 int start, after, tld_len;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1022
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1023 /* We may be able to trust the format of the host string more than
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1024 * I am here. Trailing dots and no dots are real possibilities, though.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1025 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1026 after = strlen(host);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1027 if (after > 0 && host[after - 1] == '.')
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1028 after--;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1029 start = after;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1030 while (start > 0 && host[start - 1] != '.')
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1031 start--;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1032 tld_len = after - start;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1033
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1034 if (tld_len > 0) {
1510
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1035 /* These TLDs were chosen by examining the current publicsuffix list
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1036 * in January 2010 and picking out those where it was simplest for
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1037 * them to describe the situation by beginning with a "*.[tld]" rule.
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1038 */
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1039 const char *const tlds[] = {"ar","au","bd","bn","bt","ck","cy","do",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1040 "eg","er","et","fj","fk","gt","gu","id",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1041 "il","jm","ke","kh","kw","ml","mm","mt",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1042 "mz","ni","np","nz","om","pg","py","qa",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1043 "sv","tr","uk","uy","ve","ye","yu","za",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1044 "zm","zw"};
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1045 uint_t i, tld_num = sizeof(tlds) / sizeof(tlds[0]);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1046
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1047 for (i = 0; i < tld_num; i++) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1048 if (strlen(tlds[i]) == (uint_t) tld_len &&
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1049 !dStrncasecmp(tlds[i], host + start, tld_len)) {
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1050 _MSG("TLD code matched %s\n", tlds[i]);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1051 ret++;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1052 break;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1053 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1054 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1055 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1056 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1057 return ret;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1058 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1059
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1060 /*
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1061 * Validate cookies domain against some security checks.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1062 */
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
1063 static bool_t Cookies_validate_domain(CookieData_t *cookie, char *host)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1064 {
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1065 uint_t i, internal_dots;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1066
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1067 if (!cookie->domain) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1068 cookie->domain = dStrdup(host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1069 return TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1070 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1071
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1072 if (cookie->domain[0] != '.' && !Cookies_domain_is_ip(cookie->domain)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1073 char *d = dStrconcat(".", cookie->domain, NULL);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1074 dFree(cookie->domain);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1075 cookie->domain = d;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1076 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1077
1488
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1078 if (!Cookies_domain_matches(host, cookie->domain))
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1079 return FALSE;
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1080
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1081 internal_dots = 0;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1082 for (i = 1; i < strlen(cookie->domain) - 1; i++) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1083 if (cookie->domain[i] == '.')
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1084 internal_dots++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1085 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1086
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1087 /* All of this dots business is a weak hack.
1488
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1088 * TODO: accept the publicsuffix.org list as an optional external file.
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1089 */
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1090 if (internal_dots < Cookies_internal_dots_required(host)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1091 MSG("not enough dots in %s\n", cookie->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1092 return FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1093 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1094
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1095 _MSG("host %s and domain %s is all right\n", host, cookie->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1096 return TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1097 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1098
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1099 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1100 * Set the value corresponding to the cookie string
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1101 * Return value: 0 set OK, -1 disabled, -2 denied, -3 rejected.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1102 */
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1103 static int Cookies_set(char *cookie_string, char *url_host,
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1104 char *url_path, char *server_date)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1105 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1106 CookieControlAction action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1107 CookieData_t *cookie;
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1108 int ret = -1;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1109
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1110 if (disabled)
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1111 return ret;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1112
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1113 action = Cookies_control_check_domain(url_host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1114 if (action == COOKIE_DENY) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1115 MSG("denied SET for %s\n", url_host);
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1116 ret = -2;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1117
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1118 } else {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1119 MSG("%s SETTING: %s\n", url_host, cookie_string);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1120 ret = -3;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1121 if ((cookie = Cookies_parse(cookie_string, server_date))) {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1122 if (Cookies_validate_domain(cookie, url_host)) {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1123 Cookies_validate_path(cookie, url_path);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1124 if (action == COOKIE_ACCEPT_SESSION)
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1125 cookie->session_only = TRUE;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1126 Cookies_add_cookie(cookie);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1127 ret = 0;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1128 } else {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1129 MSG("Rejecting cookie for domain %s from host %s path %s\n",
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1130 cookie->domain, url_host, url_path);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1131 Cookies_free_cookie(cookie);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1132 }
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1133 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1134 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1135
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1136 return ret;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1137 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1138
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1139 /*
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
1140 * Compare the cookie with the supplied data to see whether it matches
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1141 */
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
1142 static bool_t Cookies_match(CookieData_t *cookie, const char *url_path,
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1143 bool_t is_ssl)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1144 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1145 /* Insecure cookies matches both secure and insecure urls, secure
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1146 cookies matches only secure urls */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1147 if (cookie->secure && !is_ssl)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1148 return FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1149
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
1150 if (!Cookies_path_matches(url_path, cookie->path))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1151 return FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1152
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1153 /* It's a match */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1154 return TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1155 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1156
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1157 static void Cookies_add_matching_cookies(const char *domain,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1158 const char *url_path,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1159 Dlist *matching_cookies,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1160 bool_t is_ssl)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1161 {
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
1162 DomainNode *node = dList_find_sorted(domains, domain,
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
1163 Domain_node_by_domain_cmp);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1164 if (node) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1165 int i;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1166 CookieData_t *cookie;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
1167 Dlist *domain_cookies = node->cookies;
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1168
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1169 for (i = 0; (cookie = dList_nth_data(domain_cookies, i)); ++i) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1170 /* Remove expired cookie. */
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
1171 if (difftime(cookie->expires_at, time(NULL)) < 0) {
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1172 _MSG("Goodbye, expired cookie %s=%s d:%s p:%s\n", cookie->name,
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1173 cookie->value, cookie->domain, cookie->path);
1627
0ae558e56003 cookies some remove_fast
corvid <corvid@lavabit.com>
parents: 1626
diff changeset
1174 dList_remove_fast(domain_cookies, cookie);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
1175 dList_remove_fast(all_cookies, cookie);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
1176 Cookies_free_cookie(cookie);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1177 --i; continue;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1178 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1179 /* Check if the cookie matches the requesting URL */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1180 if (Cookies_match(cookie, url_path, is_ssl)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1181 int j;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1182 CookieData_t *curr;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1183 uint_t path_length = strlen(cookie->path);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1184
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1185 cookie->last_used = cookies_use_counter;
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1186
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1187 /* Longest cookies go first */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1188 for (j = 0;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1189 (curr = dList_nth_data(matching_cookies, j)) &&
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1190 strlen(curr->path) >= path_length;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1191 j++) ;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1192 dList_insert_pos(matching_cookies, cookie, j);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1193 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1194 }
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
1195
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
1196 if (dList_length(domain_cookies) == 0)
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
1197 Cookies_delete_node(node);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1198 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1199 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1200
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1201 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1202 * Return a string that contains all relevant cookies as headers.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1203 */
51
6ff7b6758e0c Added the "static" qualifier where missing.
jcid
parents: 35
diff changeset
1204 static char *Cookies_get(char *url_host, char *url_path,
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1205 char *url_scheme)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1206 {
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1207 char *domain_str, *str;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1208 CookieData_t *cookie;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1209 Dlist *matching_cookies;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1210 bool_t is_ssl;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1211 Dstr *cookie_dstring;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1212 int i;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1213
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1214 if (disabled)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1215 return dStrdup("");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1216
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1217 matching_cookies = dList_new(8);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1218
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1219 /* Check if the protocol is secure or not */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1220 is_ssl = (!dStrcasecmp(url_scheme, "https"));
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1221
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1222 for (domain_str = (char *) url_host;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1223 domain_str != NULL && *domain_str;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1224 domain_str = strchr(domain_str+1, '.')) {
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1225 Cookies_add_matching_cookies(domain_str, url_path, matching_cookies,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1226 is_ssl);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1227 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1228 if (!Cookies_domain_is_ip(url_host)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1229 domain_str = dStrconcat(".", url_host, NULL);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1230 Cookies_add_matching_cookies(domain_str, url_path, matching_cookies,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1231 is_ssl);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1232 dFree(domain_str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1233 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1234
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1235 /* Found the cookies, now make the string */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1236 cookie_dstring = dStr_new("");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1237 if (dList_length(matching_cookies) > 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1238
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1239 dStr_sprintfa(cookie_dstring, "Cookie: ");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1240
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1241 for (i = 0; (cookie = dList_nth_data(matching_cookies, i)); ++i) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1242 dStr_sprintfa(cookie_dstring,
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
1243 "%s%s%s",
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
1244 cookie->name, *cookie->name ? "=" : "", cookie->value);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1245 dStr_append(cookie_dstring,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1246 dList_length(matching_cookies) > i + 1 ? "; " : "\r\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1247 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1248 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1249
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1250 dList_free(matching_cookies);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1251 str = cookie_dstring->str;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1252 dStr_free(cookie_dstring, FALSE);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1253
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1254 if (*str)
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1255 cookies_use_counter++;
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1256
1506
408f86fed820 make cookies very chatty for now
corvid <corvid@lavabit.com>
parents: 1505
diff changeset
1257 MSG("%s GETTING: %s\n", url_host, str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1258 return str;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1259 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1260
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1261 /* -------------------------------------------------------------
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1262 * Access control routines
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1263 * ------------------------------------------------------------- */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1264
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1265
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1266 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1267 * Get the cookie control rules (from cookiesrc).
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1268 * Return value:
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1269 * 0 = Parsed OK, with cookies enabled
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1270 * 1 = Parsed OK, with cookies disabled
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1271 * 2 = Can't open the control file
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1272 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1273 static int Cookie_control_init(void)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1274 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1275 CookieControl cc;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1276 FILE *stream;
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1277 char *filename, *rc;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1278 char line[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1279 char domain[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1280 char rule[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1281 int i, j;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1282 bool_t enabled = FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1283
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1284 /* Get a file pointer */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1285 filename = dStrconcat(dGethomedir(), "/.dillo/cookiesrc", NULL);
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
1286 stream = Cookies_fopen(filename, "r", "DEFAULT DENY\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1287 dFree(filename);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1288
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1289 if (!stream)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1290 return 2;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1291
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1292 /* Get all lines in the file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1293 while (!feof(stream)) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1294 line[0] = '\0';
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1295 rc = fgets(line, LINE_MAXLEN, stream);
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1296 if (!rc && ferror(stream)) {
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
1297 MSG("Error while reading rule from cookiesrc: %s\n",
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1298 dStrerror(errno));
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1299 break; /* bail out */
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1300 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1301
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1302 /* Remove leading and trailing whitespaces */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1303 dStrstrip(line);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1304
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1305 if (line[0] != '\0' && line[0] != '#') {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1306 i = 0;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1307 j = 0;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1308
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1309 /* Get the domain */
1221
f34b803b8639 Handle signed chars. Aadded dIsspace() and dIsalnum() to dlib
Jorge Arellano Cid <jcid@dillo.org>
parents: 1201
diff changeset
1310 while (line[i] != '\0' && !dIsspace(line[i]))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1311 domain[j++] = line[i++];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1312 domain[j] = '\0';
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1313
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1314 /* Skip past whitespaces */
1221
f34b803b8639 Handle signed chars. Aadded dIsspace() and dIsalnum() to dlib
Jorge Arellano Cid <jcid@dillo.org>
parents: 1201
diff changeset
1315 while (dIsspace(line[i]))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1316 i++;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1317
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1318 /* Get the rule */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1319 j = 0;
1221
f34b803b8639 Handle signed chars. Aadded dIsspace() and dIsalnum() to dlib
Jorge Arellano Cid <jcid@dillo.org>
parents: 1201
diff changeset
1320 while (line[i] != '\0' && !dIsspace(line[i]))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1321 rule[j++] = line[i++];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1322 rule[j] = '\0';
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1323
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1324 if (dStrcasecmp(rule, "ACCEPT") == 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1325 cc.action = COOKIE_ACCEPT;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1326 else if (dStrcasecmp(rule, "ACCEPT_SESSION") == 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1327 cc.action = COOKIE_ACCEPT_SESSION;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1328 else if (dStrcasecmp(rule, "DENY") == 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1329 cc.action = COOKIE_DENY;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1330 else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1331 MSG("Cookies: rule '%s' for domain '%s' is not recognised.\n",
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1332 rule, domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1333 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1334 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1335
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1336 cc.domain = dStrdup(domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1337 if (dStrcasecmp(cc.domain, "DEFAULT") == 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1338 /* Set the default action */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1339 default_action = cc.action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1340 dFree(cc.domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1341 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1342 a_List_add(ccontrol, num_ccontrol, num_ccontrol_max);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1343 ccontrol[num_ccontrol++] = cc;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1344 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1345
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1346 if (cc.action != COOKIE_DENY)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1347 enabled = TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1348 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1349 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1350
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1351 fclose(stream);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1352
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1353 return (enabled ? 0 : 1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1354 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1355
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1356 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1357 * Check the rules for an appropriate action for this domain
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1358 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1359 static CookieControlAction Cookies_control_check_domain(const char *domain)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1360 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1361 int i, diff;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1362
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1363 for (i = 0; i < num_ccontrol; i++) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1364 if (ccontrol[i].domain[0] == '.') {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1365 diff = strlen(domain) - strlen(ccontrol[i].domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1366 if (diff >= 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1367 if (dStrcasecmp(domain + diff, ccontrol[i].domain) != 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1368 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1369 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1370 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1371 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1372 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1373 if (dStrcasecmp(domain, ccontrol[i].domain) != 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1374 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1375 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1376
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1377 /* If we got here we have a match */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1378 return( ccontrol[i].action );
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1379 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1380
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1381 return default_action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1382 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1383
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1384 /* -- Dpi parser ----------------------------------------------------------- */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1385
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1386 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1387 * Parse a data stream (dpi protocol)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1388 * Note: Buf is a zero terminated string
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1389 * Return code: { 0:OK, 1:Abort, 2:Close }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1390 */
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1391 static int srv_parse_tok(Dsh *sh, ClientInfo *client, char *Buf)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1392 {
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1393 char *cmd, *cookie, *host, *path;
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1394 int ret = 1;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1395 size_t BufSize = strlen(Buf);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1396
1236
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1397 cmd = a_Dpip_get_attr_l(Buf, BufSize, "cmd");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1398
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1399 if (!cmd) {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1400 /* abort */
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1401 } else if (client->status == 0) {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1402 /* authenticate */
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1403 if (a_Dpip_check_auth(Buf) == 1) {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1404 client->status = 1;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1405 ret = 0;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1406 }
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1407 } else if (strcmp(cmd, "DpiBye") == 0) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1408 dFree(cmd);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1409 MSG("(pid %d): Got DpiBye.\n", (int)getpid());
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1410 exit(0);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1411
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1412 } else if (strcmp(cmd, "set_cookie") == 0) {
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1413 int st;
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1414 char *date;
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1415
1236
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1416 cookie = a_Dpip_get_attr_l(Buf, BufSize, "cookie");
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1417 host = a_Dpip_get_attr_l(Buf, BufSize, "host");
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1418 path = a_Dpip_get_attr_l(Buf, BufSize, "path");
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1419 date = a_Dpip_get_attr_l(Buf, BufSize, "date");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1420
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1421 st = Cookies_set(cookie, host, path, date);
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1422
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1423 dFree(cmd);
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1424 cmd = a_Dpip_build_cmd("cmd=%s msg=%s", "set_cookie_answer",
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1425 st == 0 ? "ok" : "not set");
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1426 a_Dpip_dsh_write_str(sh, 1, cmd);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1427
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1428 dFree(date);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1429 dFree(path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1430 dFree(host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1431 dFree(cookie);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1432 ret = 2;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1433
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1434 } else if (strcmp(cmd, "get_cookie") == 0) {
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1435 char *scheme = a_Dpip_get_attr_l(Buf, BufSize, "scheme");
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1436
1236
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1437 host = a_Dpip_get_attr_l(Buf, BufSize, "host");
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1438 path = a_Dpip_get_attr_l(Buf, BufSize, "path");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1439
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1440 cookie = Cookies_get(host, path, scheme);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1441 dFree(scheme);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1442 dFree(path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1443 dFree(host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1444
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1445 dFree(cmd);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1446 cmd = a_Dpip_build_cmd("cmd=%s cookie=%s", "get_cookie_answer", cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1447
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1448 if (a_Dpip_dsh_write_str(sh, 1, cmd)) {
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1449 ret = 1;
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1450 } else {
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1451 _MSG("a_Dpip_dsh_write_str: SUCCESS cmd={%s}\n", cmd);
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1452 ret = 2;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1453 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1454 dFree(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1455 }
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1456 dFree(cmd);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1457
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1458 return ret;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1459 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1460
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1461 /* -- Termination handlers ----------------------------------------------- */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1462 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1463 * (was to delete the local namespace socket),
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1464 * but this is handled by 'dpid' now.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1465 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1466 static void cleanup(void)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1467 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1468 Cookies_save_and_free();
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1469 MSG("cleanup\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1470 /* no more cleanup required */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1471 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1472
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1473 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1474 * Perform any necessary cleanups upon abnormal termination
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1475 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1476 static void termination_handler(int signum)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1477 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1478 exit(signum);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1479 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1480
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1481
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1482 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1483 * -- MAIN -------------------------------------------------------------------
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1484 */
1385
eb98997886ec Introduced the new tokenizing dsh API to DPIP
Jorge Arellano Cid <jcid@dillo.org>
parents: 1236
diff changeset
1485 int main(void) {
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1486 struct sockaddr_in sin;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1487 socklen_t address_size;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1488 ClientInfo *client;
1439
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1489 int sock_fd, code;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1490 char *buf;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1491 Dsh *sh;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1492
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1493 /* Arrange the cleanup function for terminations via exit() */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1494 atexit(cleanup);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1495
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1496 /* Arrange the cleanup function for abnormal terminations */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1497 if (signal (SIGINT, termination_handler) == SIG_IGN)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1498 signal (SIGINT, SIG_IGN);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1499 if (signal (SIGHUP, termination_handler) == SIG_IGN)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1500 signal (SIGHUP, SIG_IGN);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1501 if (signal (SIGTERM, termination_handler) == SIG_IGN)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1502 signal (SIGTERM, SIG_IGN);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1503
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1504 Cookies_init();
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1505 MSG("(v.1) accepting connections...\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1506
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1507 if (disabled)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1508 exit(1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1509
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1510 /* some OSes may need this... */
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1511 address_size = sizeof(struct sockaddr_in);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1512
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1513 while (1) {
1439
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1514 sock_fd = accept(STDIN_FILENO, (struct sockaddr *)&sin, &address_size);
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1515 if (sock_fd == -1) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1516 perror("[accept]");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1517 exit(1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1518 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1519
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1520 /* create the Dsh structure */
1439
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1521 sh = a_Dpip_dsh_new(sock_fd, sock_fd, 8*1024);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1522 client = dNew(ClientInfo,1);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1523 client->sh = sh;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1524 client->status = 0;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1525
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1526 while (1) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1527 code = 1;
1388
eb35203124e4 Implemented the file dpi based on select() (removed its pthreads dependency)
Jorge Arellano Cid <jcid@dillo.org>
parents: 1387
diff changeset
1528 if ((buf = a_Dpip_dsh_read_token(sh, 1)) != NULL) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1529 /* Let's see what we fished... */
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1530 _MSG(" buf = {%s}\n", buf);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1531 code = srv_parse_tok(sh, client, buf);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1532 dFree(buf);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1533 }
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1534
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1535 _MSG(" code = %d %s\n", code, code == 1 ? "EXIT" : "BREAK");
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1536 if (code == 1) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1537 exit(1);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1538 } else if (code == 2) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1539 break;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1540 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1541 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1542
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1543 _MSG("Closing Dsh\n");
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1544 a_Dpip_dsh_close(sh);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1545 a_Dpip_dsh_free(sh);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1546 dFree(client);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1547
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1548 }/*while*/
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1549
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1550 return 0;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1551 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1552
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1553 #endif /* !DISABLE_COOKIES */