annotate dpi/cookies.c @ 1628:ce89b1819729

limit total number of cookies
author corvid <corvid@lavabit.com>
date Mon, 22 Mar 2010 00:34:05 +0000
parents 0ae558e56003
children c6f07a1455bc
rev   line source
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
2 * File: cookies.c
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
3 * Cookies server.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
4 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
5 * Copyright 2001 Lars Clausen <lrclause@cs.uiuc.edu>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
6 * Jörgen Viksell <jorgen.viksell@telia.com>
35
d9e7b35430de Updated copyright lines
jcid
parents: 0
diff changeset
7 * Copyright 2002-2007 Jorge Arellano Cid <jcid@dillo.org>
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
8 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
9 * This program is free software; you can redistribute it and/or modify
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
10 * it under the terms of the GNU General Public License as published by
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
11 * the Free Software Foundation; either version 3 of the License, or
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
12 * (at your option) any later version.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
13 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
14 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
15
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
16 /* This is written to follow the HTTP State Working Group's
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
17 * draft-ietf-httpstate-cookie-01.txt.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
18 *
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
19 * We depart from the draft spec's domain format in that, rather than
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
20 * using a host-only flag, we continue to use the .domain notation
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
21 * internally to indicate cookies that may also be returned to subdomains.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
22 *
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
23 * Info on cookies in the wild:
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
24 * http://www.ietf.org/mail-archive/web/http-state/current/msg00078.html
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
25 * And dates specifically:
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
26 * http://www.ietf.org/mail-archive/web/http-state/current/msg00128.html
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
27 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
28
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
29 #ifdef DISABLE_COOKIES
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
30
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
31 int main(void)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
32 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
33 return 0; /* never called */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
34 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
35
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
36 #else
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
37
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
38
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
39 #include <sys/types.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
40 #include <sys/socket.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
41 #include <sys/stat.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
42 #include <sys/un.h>
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
43 #include <netinet/in.h>
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
44 #include <fcntl.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
45 #include <unistd.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
46 #include <errno.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
47 #include <stddef.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
48 #include <string.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
49 #include <stdlib.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
50 #include <stdio.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
51 #include <time.h> /* for time() and time_t */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
52 #include <ctype.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
53 #include <netdb.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
54 #include <signal.h>
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
55 #include "dpiutil.h"
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
56 #include "../dpip/dpip.h"
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
57
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
58
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
59 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
60 * Debugging macros
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
61 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
62 #define _MSG(...)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
63 #define MSG(...) printf("[cookies dpi]: " __VA_ARGS__)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
64
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
65 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
66 * a_List_add()
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
67 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
68 * Make sure there's space for 'num_items' items within the list
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
69 * (First, allocate an 'alloc_step' sized chunk, after that, double the
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
70 * list size --to make it faster)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
71 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
72 #define a_List_add(list,num_items,alloc_step) \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
73 if (!list) { \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
74 list = dMalloc(alloc_step * sizeof((*list))); \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
75 } \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
76 if (num_items >= alloc_step){ \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
77 while ( num_items >= alloc_step ) \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
78 alloc_step <<= 1; \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
79 list = dRealloc(list, alloc_step * sizeof((*list))); \
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
80 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
81
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
82 /* The maximum length of a line in the cookie file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
83 #define LINE_MAXLEN 4096
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
84
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
85 #define MAX_DOMAIN_COOKIES 20
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
86 #define MAX_TOTAL_COOKIES 1200
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
87
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
88 typedef enum {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
89 COOKIE_ACCEPT,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
90 COOKIE_ACCEPT_SESSION,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
91 COOKIE_DENY
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
92 } CookieControlAction;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
93
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
94 typedef struct {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
95 char *domain;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
96 CookieControlAction action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
97 } CookieControl;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
98
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
99 typedef struct {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
100 char *domain;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
101 Dlist *cookies;
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
102 } DomainNode;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
103
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
104 typedef struct {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
105 char *name;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
106 char *value;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
107 char *domain;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
108 char *path;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
109 time_t expires_at;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
110 bool_t secure;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
111 bool_t session_only;
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
112 long last_used;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
113 } CookieData_t;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
114
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
115 typedef struct {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
116 Dsh *sh;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
117 int status;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
118 } ClientInfo;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
119
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
120 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
121 * Local data
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
122 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
123
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
124 static Dlist *all_cookies;
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
125
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
126 /* List of DomainNode. Each node holds a domain and its list of cookies */
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
127 static Dlist *domains;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
128
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
129 /* Variables for access control */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
130 static CookieControl *ccontrol = NULL;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
131 static int num_ccontrol = 0;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
132 static int num_ccontrol_max = 1;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
133 static CookieControlAction default_action = COOKIE_DENY;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
134
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
135 static long cookies_use_counter = 0;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
136 static bool_t disabled;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
137 static FILE *file_stream;
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
138 static const char *const cookies_txt_header_str =
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
139 "# HTTP Cookie File\n"
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
140 "# This is a generated file! Do not edit.\n"
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
141 "# [domain TRUE path secure expiry_time name value]\n\n";
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
142
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
143 /* The epoch is Jan 1, 1970. When there is difficulty in representing future
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
144 * dates, use the (by far) most likely last representable time in Jan 19, 2038.
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
145 */
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
146 static struct tm cookies_epoch_tm = {0, 0, 0, 1, 0, 70, 0, 0, 0, 0, 0};
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
147 static time_t cookies_epoch_time, cookies_future_time;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
148
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
149 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
150 * Forward declarations
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
151 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
152
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
153 static CookieControlAction Cookies_control_check_domain(const char *domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
154 static int Cookie_control_init(void);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
155 static void Cookies_add_cookie(CookieData_t *cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
156 static int Cookies_cmp(const void *a, const void *b);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
157
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
158 /*
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
159 * Compare function for searching a domain node
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
160 */
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
161 static int Domain_node_cmp(const void *v1, const void *v2)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
162 {
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
163 const DomainNode *n1 = v1, *n2 = v2;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
164
1484
29d892265da0 domain comparison not case-sensitive
corvid <corvid@lavabit.com>
parents: 1483
diff changeset
165 return dStrcasecmp(n1->domain, n2->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
166 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
167
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
168 /*
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
169 * Compare function for searching a domain node by domain
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
170 */
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
171 static int Domain_node_by_domain_cmp(const void *v1, const void *v2)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
172 {
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
173 const DomainNode *node = v1;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
174 const char *domain = v2;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
175
1484
29d892265da0 domain comparison not case-sensitive
corvid <corvid@lavabit.com>
parents: 1483
diff changeset
176 return dStrcasecmp(node->domain, domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
177 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
178
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
179 /*
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
180 * Delete node. This will not free any cookies that might be in node->cookies.
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
181 */
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
182 static void Cookies_delete_node(DomainNode *node)
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
183 {
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
184 dList_remove(domains, node);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
185 dFree(node->domain);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
186 dList_free(node->cookies);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
187 dFree(node);
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
188 }
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
189
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
190 /*
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
191 * Return a file pointer. If the file doesn't exist, try to create it,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
192 * with the optional 'init_str' as its content.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
193 */
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
194 static FILE *Cookies_fopen(const char *filename, const char *mode,
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
195 const char *init_str)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
196 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
197 FILE *F_in;
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
198 int fd, rc;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
199
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
200 if ((F_in = fopen(filename, mode)) == NULL) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
201 /* Create the file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
202 fd = open(filename, O_WRONLY | O_CREAT | O_TRUNC, S_IRUSR | S_IWUSR);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
203 if (fd != -1) {
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
204 if (init_str) {
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
205 rc = write(fd, init_str, strlen(init_str));
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
206 if (rc == -1) {
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
207 MSG("Cookies: Could not write initial string to file %s: %s\n",
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
208 filename, dStrerror(errno));
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
209 }
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
210 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
211 close(fd);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
212
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
213 MSG("Created file: %s\n", filename);
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
214 F_in = fopen(filename, mode);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
215 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
216 MSG("Could not create file: %s!\n", filename);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
217 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
218 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
219
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
220 if (F_in) {
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
221 /* set close on exec */
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
222 fcntl(fileno(F_in), F_SETFD, FD_CLOEXEC | fcntl(fileno(F_in), F_GETFD));
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
223 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
224
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
225 return F_in;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
226 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
227
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
228 static void Cookies_free_cookie(CookieData_t *cookie)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
229 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
230 dFree(cookie->name);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
231 dFree(cookie->value);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
232 dFree(cookie->domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
233 dFree(cookie->path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
234 dFree(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
235 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
236
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
237 static void Cookies_tm_init(struct tm *tm)
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
238 {
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
239 tm->tm_sec = cookies_epoch_tm.tm_sec;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
240 tm->tm_min = cookies_epoch_tm.tm_min;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
241 tm->tm_hour = cookies_epoch_tm.tm_hour;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
242 tm->tm_mday = cookies_epoch_tm.tm_mday;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
243 tm->tm_mon = cookies_epoch_tm.tm_mon;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
244 tm->tm_year = cookies_epoch_tm.tm_year;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
245 tm->tm_isdst = cookies_epoch_tm.tm_isdst;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
246 }
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
247
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
248 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
249 * Initialize the cookies module
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
250 * (The 'disabled' variable is writeable only within Cookies_init)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
251 */
51
6ff7b6758e0c Added the "static" qualifier where missing.
jcid
parents: 35
diff changeset
252 static void Cookies_init()
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
253 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
254 CookieData_t *cookie;
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
255 char *filename, *rc = NULL;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
256 char line[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
257 #ifndef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
258 struct flock lck;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
259 #endif
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
260 struct tm future_tm = {7, 14, 3, 19, 0, 138, 0, 0, 0, 0, 0};
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
261
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
262 /* Default setting */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
263 disabled = TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
264
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
265 cookies_epoch_time = mktime(&cookies_epoch_tm);
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
266 cookies_future_time = mktime(&future_tm);
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
267
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
268 /* Read and parse the cookie control file (cookiesrc) */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
269 if (Cookie_control_init() != 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
270 MSG("Disabling cookies.\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
271 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
272 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
273
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
274 /* Get a stream for the cookies file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
275 filename = dStrconcat(dGethomedir(), "/.dillo/cookies.txt", NULL);
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
276 file_stream = Cookies_fopen(filename, "r+", cookies_txt_header_str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
277
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
278 dFree(filename);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
279
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
280 if (!file_stream) {
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
281 MSG("ERROR: Can't open ~/.dillo/cookies.txt; disabling cookies\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
282 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
283 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
284
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
285 /* Try to get a lock from the file descriptor */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
286 #ifdef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
287 disabled = (lockf(fileno(file_stream), F_TLOCK, 0) == -1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
288 #else /* POSIX lock */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
289 lck.l_start = 0; /* start at beginning of file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
290 lck.l_len = 0; /* lock entire file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
291 lck.l_type = F_WRLCK;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
292 lck.l_whence = SEEK_SET; /* absolute offset */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
293
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
294 disabled = (fcntl(fileno(file_stream), F_SETLK, &lck) == -1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
295 #endif
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
296 if (disabled) {
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
297 MSG("The cookies file has a file lock; disabling cookies!\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
298 fclose(file_stream);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
299 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
300 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
301
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
302 MSG("Enabling cookies as per cookiesrc...\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
303
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
304 all_cookies = dList_new(32);
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
305 domains = dList_new(32);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
306
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
307 /* Get all lines in the file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
308 while (!feof(file_stream)) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
309 line[0] = '\0';
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
310 rc = fgets(line, LINE_MAXLEN, file_stream);
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
311 if (!rc && ferror(file_stream)) {
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
312 MSG("Error while reading from cookies.txt: %s\n", dStrerror(errno));
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
313 break; /* bail out */
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
314 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
315
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
316 /* Remove leading and trailing whitespaces */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
317 dStrstrip(line);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
318
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
319 if ((line[0] != '\0') && (line[0] != '#')) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
320 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
321 * Split the row into pieces using a tab as the delimiter.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
322 * pieces[0] The domain name
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
323 * pieces[1] TRUE/FALSE: is the domain a suffix, or a full domain?
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
324 * pieces[2] The path
1495
a83b066cbcb3 rm support for ancient ~/.dillo/cookies file
corvid <corvid@lavabit.com>
parents: 1491
diff changeset
325 * pieces[3] TRUE/FALSE: is the cookie for secure use only?
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
326 * pieces[4] Timestamp of expire date
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
327 * pieces[5] Name of the cookie
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
328 * pieces[6] Value of the cookie
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
329 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
330 CookieControlAction action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
331 char *piece;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
332 char *line_marker = line;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
333
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
334 cookie = dNew0(CookieData_t, 1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
335
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
336 cookie->session_only = FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
337 cookie->domain = dStrdup(dStrsep(&line_marker, "\t"));
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
338 dStrsep(&line_marker, "\t"); /* we use domain always as sufix */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
339 cookie->path = dStrdup(dStrsep(&line_marker, "\t"));
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
340 piece = dStrsep(&line_marker, "\t");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
341 if (piece != NULL && piece[0] == 'T')
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
342 cookie->secure = TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
343 piece = dStrsep(&line_marker, "\t");
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
344 if (piece != NULL) {
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
345 struct tm tm;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
346 Cookies_tm_init(&tm);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
347 tm.tm_sec += strtol(piece, NULL, 10);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
348 cookie->expires_at = mktime(&tm);
1614
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
349 } else {
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
350 cookie->expires_at = (time_t) -1;
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
351 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
352 cookie->name = dStrdup(dStrsep(&line_marker, "\t"));
1518
deccee022a42 handle nameless/valueless cookies in cookies.txt
corvid <corvid@lavabit.com>
parents: 1517
diff changeset
353 cookie->value = dStrdup(line_marker ? line_marker : "");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
354
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
355 if (!cookie->domain || cookie->domain[0] == '\0' ||
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
356 !cookie->path || cookie->path[0] != '/' ||
1518
deccee022a42 handle nameless/valueless cookies in cookies.txt
corvid <corvid@lavabit.com>
parents: 1517
diff changeset
357 !cookie->name || !cookie->value) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
358 MSG("Malformed line in cookies.txt file!\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
359 Cookies_free_cookie(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
360 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
361 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
362
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
363 action = Cookies_control_check_domain(cookie->domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
364 if (action == COOKIE_DENY) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
365 Cookies_free_cookie(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
366 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
367 } else if (action == COOKIE_ACCEPT_SESSION) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
368 cookie->session_only = TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
369 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
370
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
371 /* Save cookie in memory */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
372 Cookies_add_cookie(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
373 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
374 }
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
375 MSG("Cookies loaded: %d.\n", dList_length(all_cookies));
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
376 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
377
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
378 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
379 * Flush cookies to disk and free all the memory allocated.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
380 */
51
6ff7b6758e0c Added the "static" qualifier where missing.
jcid
parents: 35
diff changeset
381 static void Cookies_save_and_free()
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
382 {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
383 int i, fd, saved = 0;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
384 DomainNode *node;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
385 CookieData_t *cookie;
1512
bd36920f32d4 don't bother to save expired cookies
corvid <corvid@lavabit.com>
parents: 1510
diff changeset
386 time_t now;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
387
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
388 #ifndef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
389 struct flock lck;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
390 #endif
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
391
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
392 if (disabled)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
393 return;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
394
1512
bd36920f32d4 don't bother to save expired cookies
corvid <corvid@lavabit.com>
parents: 1510
diff changeset
395 now = time(NULL);
bd36920f32d4 don't bother to save expired cookies
corvid <corvid@lavabit.com>
parents: 1510
diff changeset
396
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
397 rewind(file_stream);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
398 fd = fileno(file_stream);
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
399 if (ftruncate(fd, 0) == -1)
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
400 MSG("Cookies: Truncate file stream failed: %s\n", dStrerror(errno));
454
c0d3c2ec7140 - Fixed a printf bug in cookies dpi.
jcid
parents: 445
diff changeset
401 fprintf(file_stream, "%s", cookies_txt_header_str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
402
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
403 /* Iterate cookies per domain, saving and freeing */
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
404 while ((node = dList_nth_data(domains, 0))) {
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
405 for (i = 0; (cookie = dList_nth_data(node->cookies, i)); ++i) {
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
406 if (!cookie->session_only && difftime(cookie->expires_at, now) > 0) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
407 fprintf(file_stream, "%s\tTRUE\t%s\t%s\t%ld\t%s\t%s\n",
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
408 cookie->domain,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
409 cookie->path,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
410 cookie->secure ? "TRUE" : "FALSE",
1606
9c9b1a1e5bb4 another difftime
corvid <corvid@lavabit.com>
parents: 1605
diff changeset
411 (long)difftime(cookie->expires_at, cookies_epoch_time),
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
412 cookie->name,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
413 cookie->value);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
414 saved++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
415 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
416 Cookies_free_cookie(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
417 }
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
418 Cookies_delete_node(node);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
419 }
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
420 dList_free(domains);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
421 dList_free(all_cookies);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
422
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
423 #ifdef HAVE_LOCKF
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
424 lockf(fd, F_ULOCK, 0);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
425 #else /* POSIX file lock */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
426 lck.l_start = 0; /* start at beginning of file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
427 lck.l_len = 0; /* lock entire file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
428 lck.l_type = F_UNLCK;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
429 lck.l_whence = SEEK_SET; /* absolute offset */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
430
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
431 fcntl(fileno(file_stream), F_SETLKW, &lck);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
432 #endif
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
433 fclose(file_stream);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
434
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
435 MSG("Cookies saved: %d.\n", saved);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
436 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
437
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
438 /*
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
439 * Take a month's name and return a number between 0-11.
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
440 * E.g. 'April' -> 3
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
441 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
442 static int Cookies_get_month(const char *month_name)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
443 {
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
444 static const char *const months[] =
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
445 { "Jan", "Feb", "Mar",
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
446 "Apr", "May", "Jun",
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
447 "Jul", "Aug", "Sep",
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
448 "Oct", "Nov", "Dec"
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
449 };
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
450 int i;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
451
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
452 for (i = 0; i < 12; i++) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
453 if (!dStrncasecmp(months[i], month_name, 3))
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
454 return i;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
455 }
1615
6f4cc0aa0d9b invalid value on invalid month
corvid <corvid@lavabit.com>
parents: 1614
diff changeset
456 return -1;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
457 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
458
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
459 /*
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
460 * Accept: RFC-1123 | RFC-850 | ANSI asctime | Old Netscape format date string.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
461 *
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
462 * Wdy, DD-Mon-YY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
463 * Wdy, DD-Mon-YYYY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
464 * Weekday, DD-Mon-YY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
465 * Weekday, DD-Mon-YYYY HH:MM:SS GMT
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
466 * Tue May 21 13:46:22 1991\n
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
467 * Tue May 21 13:46:22 1991
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
468 *
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
469 * Let's add:
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
470 * Mon Jan 11 08:00:00 2010 GMT
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
471 *
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
472 * Return a pointer to a struct tm, or NULL on error.
1500
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
473 *
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
474 * NOTE that the draft spec wants user agents to be more flexible in what
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
475 * they accept. For now, let's hack in special cases when they're encountered.
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
476 * Why? Because this function is currently understandable, and I don't want to
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
477 * abandon that (or at best decrease that -- see section 5.1.1) until there
335f1b3692c9 timestamps a little less strict
corvid <corvid@lavabit.com>
parents: 1499
diff changeset
478 * is known to be good reason.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
479 */
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
480 static struct tm *Cookies_parse_date(const char *date)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
481 {
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
482 struct tm *tm;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
483 char *cp = strchr(date, ',');
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
484
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
485 if (!cp && strlen(date)>20 && date[13] == ':' && date[16] == ':') {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
486 /* Looks like ANSI asctime format... */
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
487 tm = dNew0(struct tm, 1);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
488
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
489 cp = (char *)date;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
490 tm->tm_mon = Cookies_get_month(cp + 4);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
491 tm->tm_mday = strtol(cp + 8, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
492 tm->tm_hour = strtol(cp + 11, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
493 tm->tm_min = strtol(cp + 14, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
494 tm->tm_sec = strtol(cp + 17, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
495 tm->tm_year = strtol(cp + 20, NULL, 10) - 1900;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
496
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
497 } else if (cp && (cp - date == 3 || cp - date > 5) &&
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
498 (strlen(cp) == 24 || strlen(cp) == 26)) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
499 /* RFC-1123 | RFC-850 format | Old Netscape format */
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
500 tm = dNew0(struct tm, 1);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
501
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
502 tm->tm_mday = strtol(cp + 2, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
503 tm->tm_mon = Cookies_get_month(cp + 5);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
504 tm->tm_year = strtol(cp + 9, &cp, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
505 /* tm_year is the number of years since 1900 */
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
506 if (tm->tm_year < 70)
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
507 tm->tm_year += 100;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
508 else if (tm->tm_year > 100)
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
509 tm->tm_year -= 1900;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
510 tm->tm_hour = strtol(cp + 1, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
511 tm->tm_min = strtol(cp + 4, NULL, 10);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
512 tm->tm_sec = strtol(cp + 7, NULL, 10);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
513
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
514 } else {
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
515 tm = NULL;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
516 MSG("In date \"%s\", format not understood.\n", date);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
517 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
518
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
519 /* Error checks. This may be overkill. */
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
520 if (tm &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
521 !(tm->tm_mday > 0 && tm->tm_mday < 32 && tm->tm_mon >= 0 &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
522 tm->tm_mon < 12 && tm->tm_year >= 70 && tm->tm_hour >= 0 &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
523 tm->tm_hour < 24 && tm->tm_min >= 0 && tm->tm_min < 60 &&
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
524 tm->tm_sec >= 0 && tm->tm_sec < 60)) {
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
525 MSG("Date \"%s\" values not in range.\n", date);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
526 dFree(tm);
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
527 tm = NULL;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
528 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
529
1608
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
530 return tm;
5f8f8ce7a913 use tm when parsing date string
corvid <corvid@lavabit.com>
parents: 1607
diff changeset
531 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
532
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
533 /*
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
534 * Find the least recently used cookie among those in the provided list.
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
535 */
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
536 static CookieData_t *Cookies_get_LRU(Dlist *cookies)
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
537 {
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
538 int i, n = dList_length(cookies);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
539 CookieData_t *lru = dList_nth_data(cookies, 0);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
540
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
541 for (i = 1; i < n; i++) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
542 CookieData_t *curr = dList_nth_data(cookies, i);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
543
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
544 if (curr->last_used < lru->last_used)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
545 lru = curr;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
546 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
547 return lru;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
548 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
549
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
550 /*
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
551 * Delete expired cookies.
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
552 * If node is given, only check those cookies.
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
553 * Note that nodes can disappear if all of their cookies were expired.
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
554 *
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
555 * Return the number of cookies that were expired.
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
556 */
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
557 static int Cookies_rm_expired_cookies(DomainNode *node)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
558 {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
559 Dlist *cookies = node ? node->cookies : all_cookies;
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
560 int removed = 0;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
561 int i = 0, n = dList_length(cookies);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
562 time_t now = time(NULL);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
563
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
564 while (i < n) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
565 CookieData_t *c = dList_nth_data(cookies, i);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
566
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
567 if (difftime(c->expires_at, now) < 0) {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
568 DomainNode *currnode = node ? node :
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
569 dList_find_sorted(domains, c->domain, Domain_node_by_domain_cmp);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
570 dList_remove_fast(currnode->cookies, c);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
571 if (dList_length(currnode->cookies) == 0)
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
572 Cookies_delete_node(currnode);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
573 dList_remove_fast(all_cookies, c);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
574 Cookies_free_cookie(c);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
575 n--;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
576 removed++;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
577 } else {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
578 i++;
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
579 }
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
580 }
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
581 return removed;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
582 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
583
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
584 /*
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
585 * There are too many cookies. Choose one to remove and delete.
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
586 * If node is given, select from among its cookies only.
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
587 */
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
588 static void Cookies_too_many(DomainNode *node)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
589 {
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
590 CookieData_t *lru = Cookies_get_LRU(node ? node->cookies : all_cookies);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
591
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
592 MSG("Too many cookies!\n"
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
593 "Removing LRU cookie for \'%s\': \'%s=%s\'\n", lru->domain,
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
594 lru->name, lru->value);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
595 if (!node)
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
596 node = dList_find_sorted(domains, lru->domain,Domain_node_by_domain_cmp);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
597
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
598 dList_remove_fast(node->cookies, lru);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
599 dList_remove_fast(all_cookies, lru);
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
600 Cookies_free_cookie(lru);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
601 if (dList_length(node->cookies) == 0)
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
602 Cookies_delete_node(node);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
603 }
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
604
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
605 static void Cookies_add_cookie(CookieData_t *cookie)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
606 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
607 Dlist *domain_cookies;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
608 CookieData_t *c;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
609 DomainNode *node;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
610
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
611 node = dList_find_sorted(domains, cookie->domain,Domain_node_by_domain_cmp);
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
612 domain_cookies = (node) ? node->cookies : NULL;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
613
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
614 if (domain_cookies) {
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
615 /* Remove any cookies with the same name and path */
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
616 while ((c = dList_find_custom(domain_cookies, cookie, Cookies_cmp))) {
1627
0ae558e56003 cookies some remove_fast
corvid <corvid@lavabit.com>
parents: 1626
diff changeset
617 dList_remove_fast(domain_cookies, c);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
618 dList_remove_fast(all_cookies, c);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
619 Cookies_free_cookie(c);
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
620 }
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
621 }
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
622
1614
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
623 if ((cookie->expires_at == (time_t) -1) ||
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
624 (difftime(cookie->expires_at, time(NULL)) <= 0)) {
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
625 /*
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
626 * Don't add an expired cookie. Whether expiring now == expired, exactly,
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
627 * is arguable, but we definitely do not want to add a Max-Age=0 cookie.
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
628 */
1614
d6624cbf9beb make a point of using -1 for invalid time_t
corvid <corvid@lavabit.com>
parents: 1613
diff changeset
629 _MSG("Goodbye, cookie %s=%s d:%s p:%s\n", cookie->name,
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
630 cookie->value, cookie->domain, cookie->path);
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
631 Cookies_free_cookie(cookie);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
632 } else {
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
633 if (domain_cookies && dList_length(domain_cookies) >=MAX_DOMAIN_COOKIES){
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
634 int removed = Cookies_rm_expired_cookies(node);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
635
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
636 if (removed == 0) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
637 Cookies_too_many(node);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
638 } else if (removed >= MAX_DOMAIN_COOKIES) {
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
639 /* So many were removed that the node might have been deleted. */
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
640 node = dList_find_sorted(domains, cookie->domain,
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
641 Domain_node_by_domain_cmp);
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
642 domain_cookies = (node) ? node->cookies : NULL;
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
643 }
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
644 }
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
645 if (dList_length(all_cookies) >= MAX_TOTAL_COOKIES) {
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
646 if (Cookies_rm_expired_cookies(NULL) == 0) {
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
647 Cookies_too_many(NULL);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
648 } else if (domain_cookies) {
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
649 /* Our own node might have just been deleted. */
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
650 node = dList_find_sorted(domains, cookie->domain,
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
651 Domain_node_by_domain_cmp);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
652 domain_cookies = (node) ? node->cookies : NULL;
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
653 }
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
654 }
1626
fcf42389aa4d better handling when too many cookies
corvid <corvid@lavabit.com>
parents: 1625
diff changeset
655
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
656 cookie->last_used = cookies_use_counter++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
657
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
658 /* Actually add the cookie! */
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
659 dList_append(all_cookies, cookie);
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
660
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
661 if (!domain_cookies) {
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
662 domain_cookies = dList_new(5);
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
663 dList_append(domain_cookies, cookie);
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
664 node = dNew(DomainNode, 1);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
665 node->domain = dStrdup(cookie->domain);
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
666 node->cookies = domain_cookies;
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
667 dList_insert_sorted(domains, node, Domain_node_cmp);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
668 } else {
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
669 dList_append(domain_cookies, cookie);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
670 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
671 }
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
672 if (domain_cookies && (dList_length(domain_cookies) == 0))
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
673 Cookies_delete_node(node);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
674 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
675
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
676 /*
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
677 * Return the attribute that is present at *cookie_str.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
678 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
679 static char *Cookies_parse_attr(char **cookie_str)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
680 {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
681 char *str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
682 uint_t len;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
683
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
684 while (dIsspace(**cookie_str))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
685 (*cookie_str)++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
686
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
687 str = *cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
688 /* find '=' at end of attr, ';' after attr/val pair, '\0' end of string */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
689 len = strcspn(str, "=;");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
690 *cookie_str += len;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
691
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
692 while (len && (str[len - 1] == ' ' || str[len - 1] == '\t'))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
693 len--;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
694 return dStrndup(str, len);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
695 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
696
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
697 /*
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
698 * Get the value in *cookie_str.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
699 */
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
700 static char *Cookies_parse_value(char **cookie_str)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
701 {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
702 uint_t len;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
703 char *str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
704
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
705 if (**cookie_str == '=') {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
706 (*cookie_str)++;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
707 while (dIsspace(**cookie_str))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
708 (*cookie_str)++;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
709
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
710 str = *cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
711 /* finds ';' after attr/val pair or '\0' at end of string */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
712 len = strcspn(str, ";");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
713 *cookie_str += len;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
714
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
715 while (len && (str[len - 1] == ' ' || str[len - 1] == '\t'))
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
716 len--;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
717 } else {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
718 str = *cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
719 len = 0;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
720 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
721 return dStrndup(str, len);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
722 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
723
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
724 /*
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
725 * Advance past any value
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
726 */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
727 static void Cookies_eat_value(char **cookie_str)
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
728 {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
729 if (**cookie_str == '=')
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
730 *cookie_str += strcspn(*cookie_str, ";");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
731 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
732
1610
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
733 /*
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
734 * Return the number of seconds by which our clock is ahead of the server's
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
735 * clock.
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
736 */
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
737 static double Cookies_server_timediff(const char *server_date)
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
738 {
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
739 double ret = 0;
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
740
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
741 if (server_date) {
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
742 struct tm *server_tm = Cookies_parse_date(server_date);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
743
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
744 if (server_tm) {
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
745 time_t server_time = mktime(server_tm);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
746
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
747 if (server_time != (time_t) -1)
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
748 ret = difftime(time(NULL), server_time);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
749 dFree(server_tm);
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
750 }
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
751 }
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
752 return ret;
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
753 }
4b55c40d4eb9 separate out server time offset
corvid <corvid@lavabit.com>
parents: 1609
diff changeset
754
1609
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
755 static void Cookies_unquote_string(char *str)
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
756 {
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
757 if (str && str[0] == '\"') {
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
758 uint_t len = strlen(str);
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
759
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
760 if (len > 1 && str[len - 1] == '\"') {
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
761 str[len - 1] = '\0';
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
762 while ((*str = str[1]))
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
763 str++;
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
764 }
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
765 }
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
766 }
afbbdad5f64a separate out unquoting
corvid <corvid@lavabit.com>
parents: 1608
diff changeset
767
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
768 /*
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
769 * Parse cookie. A cookie might look something like:
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
770 * "Name=Val; Domain=example.com; Max-Age=3600; HttpOnly"
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
771 */
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
772 static CookieData_t *Cookies_parse(char *cookie_str, const char *server_date)
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
773 {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
774 CookieData_t *cookie = NULL;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
775 char *str = cookie_str;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
776 bool_t first_attr = TRUE;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
777 bool_t max_age = FALSE;
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
778 bool_t expires = FALSE;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
779
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
780 /* Iterate until there is nothing left of the string */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
781 while (*str) {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
782 char *attr;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
783 char *value;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
784
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
785 /* Get attribute */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
786 attr = Cookies_parse_attr(&str);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
787
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
788 /* Get the value for the attribute and store it */
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
789 if (first_attr) {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
790 if (!*str && !*attr) {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
791 dFree(attr);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
792 return NULL;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
793 }
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
794 cookie = dNew0(CookieData_t, 1);
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
795
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
796 /* let's arbitrarily choose a year for now */
1607
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
797 time_t now = time(NULL);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
798 struct tm *tm = gmtime(&now);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
799 ++tm->tm_year;
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
800 cookie->expires_at = mktime(tm);
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
801 if (cookie->expires_at == (time_t) -1)
7dc68ea220cb cookies: start using struct tm for time calculations
corvid <corvid@lavabit.com>
parents: 1606
diff changeset
802 cookie->expires_at = cookies_future_time;
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
803
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
804 if (*str != '=') {
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
805 /* NOTE it seems possible that the Working Group will decide
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
806 * against allowing nameless cookies.
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
807 */
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
808 cookie->name = dStrdup("");
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
809 cookie->value = attr;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
810 } else {
1603
a31eecbe5938 fix cookie attr leak
corvid <corvid@lavabit.com>
parents: 1599
diff changeset
811 cookie->name = attr;
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
812 cookie->value = Cookies_parse_value(&str);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
813 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
814 } else if (dStrcasecmp(attr, "Path") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
815 value = Cookies_parse_value(&str);
1491
a10148c0bcab cookies don't leak extra domain/path attrs
corvid <corvid@lavabit.com>
parents: 1490
diff changeset
816 dFree(cookie->path);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
817 cookie->path = value;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
818 } else if (dStrcasecmp(attr, "Domain") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
819 value = Cookies_parse_value(&str);
1491
a10148c0bcab cookies don't leak extra domain/path attrs
corvid <corvid@lavabit.com>
parents: 1490
diff changeset
820 dFree(cookie->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
821 cookie->domain = value;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
822 } else if (dStrcasecmp(attr, "Max-Age") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
823 value = Cookies_parse_value(&str);
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
824 if (isdigit(*value) || *value == '-') {
1508
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
825 time_t now = time(NULL);
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
826 long age = strtol(value, NULL, 10);
1612
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
827 struct tm *tm = gmtime(&now);
1508
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
828
1612
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
829 tm->tm_sec += age;
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
830 cookie->expires_at = mktime(tm);
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
831 if (age > 0 && cookie->expires_at == (time_t) -1) {
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
832 cookie->expires_at = cookies_future_time;
1508
3a82485edd3f cookie handle time overflow
corvid <corvid@lavabit.com>
parents: 1506
diff changeset
833 }
1612
3eb2cd09244d use tm for max-age
corvid <corvid@lavabit.com>
parents: 1611
diff changeset
834 MSG("Cookie to expire at %s", ctime(&cookie->expires_at));
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
835 expires = max_age = TRUE;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
836 }
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
837 dFree(value);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
838 } else if (dStrcasecmp(attr, "Expires") == 0) {
1482
a749c1b10fbe clean up cookie expiration/replacement and sessions
corvid <corvid@lavabit.com>
parents: 1481
diff changeset
839 if (!max_age) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
840 value = Cookies_parse_value(&str);
1611
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
841 Cookies_unquote_string(value);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
842 MSG("Expires attribute gives %s\n", value);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
843 struct tm *tm = Cookies_parse_date(value);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
844 if (tm) {
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
845 tm->tm_sec += Cookies_server_timediff(server_date);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
846 cookie->expires_at = mktime(tm);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
847 if (cookie->expires_at == (time_t) -1 && tm->tm_year >= 138) {
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
848 /* Just checking tm_year does not ensure that the problem was
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
849 * inability to represent a distant date...
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
850 */
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
851 cookie->expires_at = cookies_future_time;
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
852 }
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
853 MSG("Cookie to expire at %s", ctime(&cookie->expires_at));
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
854 dFree(tm);
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
855 } else {
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
856 cookie->expires_at = (time_t) -1;
0c8aeadcead3 get rid of the overflow
corvid <corvid@lavabit.com>
parents: 1610
diff changeset
857 }
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
858 expires = TRUE;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
859 dFree(value);
1613
0f26b1d4ac2e if ignoring Expires attr, eat value
corvid <corvid@lavabit.com>
parents: 1612
diff changeset
860 } else {
0f26b1d4ac2e if ignoring Expires attr, eat value
corvid <corvid@lavabit.com>
parents: 1612
diff changeset
861 Cookies_eat_value(&str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
862 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
863 } else if (dStrcasecmp(attr, "Secure") == 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
864 cookie->secure = TRUE;
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
865 Cookies_eat_value(&str);
418
b7265ec32e33 - Allow login to wikipedia by ignoring the HttpOnly attribute (cookies)
jcid
parents: 379
diff changeset
866 } else if (dStrcasecmp(attr, "HttpOnly") == 0) {
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
867 Cookies_eat_value(&str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
868 } else {
379
52f65d7a0e7c - minor cookie MSG improvement.
jcid
parents: 368
diff changeset
869 MSG("Cookie contains unknown attribute: '%s'\n", attr);
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
870 Cookies_eat_value(&str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
871 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
872
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
873 if (first_attr)
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
874 first_attr = FALSE;
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
875 else
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
876 dFree(attr);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
877
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
878 if (*str == ';')
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
879 str++;
159
70da40b41e3a - Fixed a bug in Cookies_parse_one. Set it to a single return potint too!
jcid
parents: 154
diff changeset
880 }
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
881 cookie->session_only = expires == FALSE;
159
70da40b41e3a - Fixed a bug in Cookies_parse_one. Set it to a single return potint too!
jcid
parents: 154
diff changeset
882 return cookie;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
883 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
884
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
885 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
886 * Compare cookies by name and path (return 0 if equal)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
887 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
888 static int Cookies_cmp(const void *a, const void *b)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
889 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
890 const CookieData_t *ca = a, *cb = b;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
891 int ret;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
892
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
893 if (!(ret = strcmp(ca->name, cb->name)))
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
894 ret = strcmp(ca->path, cb->path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
895 return ret;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
896 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
897
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
898 /*
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
899 * Is the domain an IP address?
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
900 */
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
901 static bool_t Cookies_domain_is_ip(const char *domain)
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
902 {
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
903 uint_t len;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
904
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
905 if (!domain)
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
906 return FALSE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
907
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
908 len = strlen(domain);
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
909
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
910 if (len == strspn(domain, "0123456789.")) {
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
911 _MSG("an IPv4 address\n");
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
912 return TRUE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
913 }
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
914 if (*domain == '[' &&
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
915 (len == strspn(domain, "0123456789abcdefABCDEF:.[]"))) {
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
916 /* The precise format is shown in section 3.2.2 of rfc 3986 */
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
917 _MSG("an IPv6 address\n");
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
918 return TRUE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
919 }
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
920 return FALSE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
921 }
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
922
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
923 /*
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
924 * Check whether url_path path-matches cookie_path
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
925 *
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
926 * Note different user agents apparently vary in path-matching behaviour,
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
927 * but this is the recommended method at the moment.
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
928 */
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
929 static bool_t Cookies_path_matches(const char *url_path,
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
930 const char *cookie_path)
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
931 {
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
932 bool_t ret = TRUE;
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
933
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
934 if (!url_path || !cookie_path) {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
935 ret = FALSE;
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
936 } else {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
937 uint_t c_len = strlen(cookie_path);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
938 uint_t u_len = strlen(url_path);
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
939
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
940 ret = (!strncmp(cookie_path, url_path, c_len) &&
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
941 ((c_len == u_len) ||
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
942 (c_len > 0 && cookie_path[c_len - 1] == '/') ||
1505
4f98690a951a unnecessary test
corvid <corvid@lavabit.com>
parents: 1504
diff changeset
943 (url_path[c_len] == '/')));
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
944 }
1486
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
945 return ret;
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
946 }
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
947
4fbeadf3191b cookie paths
corvid <corvid@lavabit.com>
parents: 1485
diff changeset
948 /*
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
949 * If cookie path is not properly set, remedy that.
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
950 */
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
951 static void Cookies_validate_path(CookieData_t *cookie, const char *url_path)
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
952 {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
953 if (!cookie->path || cookie->path[0] != '/') {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
954 dFree(cookie->path);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
955
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
956 if (url_path) {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
957 uint_t len = strlen(url_path);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
958
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
959 while (len && url_path[len] != '/')
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
960 len--;
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
961 cookie->path = dStrndup(url_path, len ? len : 1);
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
962 } else {
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
963 cookie->path = dStrdup("/");
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
964 }
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
965 }
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
966 }
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
967
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
968 /*
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
969 * Check whether host name A domain-matches host name B.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
970 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
971 static bool_t Cookies_domain_matches(char *A, char *B)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
972 {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
973 int diff;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
974
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
975 if (!A || !*A || !B || !*B)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
976 return FALSE;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
977
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
978 if (*B == '.')
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
979 B++;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
980
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
981 /* Should we concern ourselves with trailing dots in matching (here or
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
982 * elsewhere)? The HTTP State people have found that most user agents
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
983 * don't, so: No.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
984 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
985
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
986 if (!dStrcasecmp(A, B))
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
987 return TRUE;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
988
1517
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
989 if (Cookies_domain_is_ip(B))
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
990 return FALSE;
773b44547931 cookies: be more robust in rejecting IP addr partial matches
corvid <corvid@lavabit.com>
parents: 1516
diff changeset
991
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
992 diff = strlen(A) - strlen(B);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
993
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
994 if (diff > 0) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
995 /* B is the tail of A, and the match is preceded by a '.' */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
996 return (dStrcasecmp(A + diff, B) == 0 && A[diff - 1] == '.');
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
997 } else {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
998 return FALSE;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
999 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1000 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1001
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1002 /*
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1003 * Based on the host, how many internal dots do we need in a cookie domain
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1004 * to make it valid? e.g., "org" is not on the list, so dillo.org is a safe
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1005 * cookie domain, but "uk" is on the list, so ac.uk is not safe.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1006 *
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1007 * This is imperfect, but it's something. Specifically, checking for these
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1008 * TLDs is the solution that Konqueror used once upon a time, according to
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1009 * reports.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1010 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1011 static uint_t Cookies_internal_dots_required(const char *host)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1012 {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1013 uint_t ret = 1;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1014
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1015 if (host) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1016 int start, after, tld_len;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1017
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1018 /* We may be able to trust the format of the host string more than
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1019 * I am here. Trailing dots and no dots are real possibilities, though.
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1020 */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1021 after = strlen(host);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1022 if (after > 0 && host[after - 1] == '.')
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1023 after--;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1024 start = after;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1025 while (start > 0 && host[start - 1] != '.')
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1026 start--;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1027 tld_len = after - start;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1028
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1029 if (tld_len > 0) {
1510
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1030 /* These TLDs were chosen by examining the current publicsuffix list
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1031 * in January 2010 and picking out those where it was simplest for
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1032 * them to describe the situation by beginning with a "*.[tld]" rule.
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1033 */
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1034 const char *const tlds[] = {"ar","au","bd","bn","bt","ck","cy","do",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1035 "eg","er","et","fj","fk","gt","gu","id",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1036 "il","jm","ke","kh","kw","ml","mm","mt",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1037 "mz","ni","np","nz","om","pg","py","qa",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1038 "sv","tr","uk","uy","ve","ye","yu","za",
f08bcca10105 cookies update TLDs
corvid <corvid@lavabit.com>
parents: 1508
diff changeset
1039 "zm","zw"};
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1040 uint_t i, tld_num = sizeof(tlds) / sizeof(tlds[0]);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1041
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1042 for (i = 0; i < tld_num; i++) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1043 if (strlen(tlds[i]) == (uint_t) tld_len &&
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1044 !dStrncasecmp(tlds[i], host + start, tld_len)) {
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1045 _MSG("TLD code matched %s\n", tlds[i]);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1046 ret++;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1047 break;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1048 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1049 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1050 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1051 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1052 return ret;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1053 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1054
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1055 /*
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1056 * Validate cookies domain against some security checks.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1057 */
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
1058 static bool_t Cookies_validate_domain(CookieData_t *cookie, char *host)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1059 {
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1060 uint_t i, internal_dots;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1061
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1062 if (!cookie->domain) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1063 cookie->domain = dStrdup(host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1064 return TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1065 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1066
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1067 if (cookie->domain[0] != '.' && !Cookies_domain_is_ip(cookie->domain)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1068 char *d = dStrconcat(".", cookie->domain, NULL);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1069 dFree(cookie->domain);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1070 cookie->domain = d;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1071 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1072
1488
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1073 if (!Cookies_domain_matches(host, cookie->domain))
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1074 return FALSE;
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1075
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1076 internal_dots = 0;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1077 for (i = 1; i < strlen(cookie->domain) - 1; i++) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1078 if (cookie->domain[i] == '.')
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1079 internal_dots++;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1080 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1081
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1082 /* All of this dots business is a weak hack.
1488
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1083 * TODO: accept the publicsuffix.org list as an optional external file.
afe771c1d19f cookie domains
corvid <corvid@lavabit.com>
parents: 1487
diff changeset
1084 */
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1085 if (internal_dots < Cookies_internal_dots_required(host)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1086 MSG("not enough dots in %s\n", cookie->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1087 return FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1088 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1089
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1090 _MSG("host %s and domain %s is all right\n", host, cookie->domain);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1091 return TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1092 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1093
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1094 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1095 * Set the value corresponding to the cookie string
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1096 * Return value: 0 set OK, -1 disabled, -2 denied, -3 rejected.
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1097 */
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1098 static int Cookies_set(char *cookie_string, char *url_host,
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1099 char *url_path, char *server_date)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1100 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1101 CookieControlAction action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1102 CookieData_t *cookie;
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1103 int ret = -1;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1104
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1105 if (disabled)
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1106 return ret;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1107
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1108 action = Cookies_control_check_domain(url_host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1109 if (action == COOKIE_DENY) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1110 MSG("denied SET for %s\n", url_host);
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1111 ret = -2;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1112
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1113 } else {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1114 MSG("%s SETTING: %s\n", url_host, cookie_string);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1115 ret = -3;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1116 if ((cookie = Cookies_parse(cookie_string, server_date))) {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1117 if (Cookies_validate_domain(cookie, url_host)) {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1118 Cookies_validate_path(cookie, url_path);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1119 if (action == COOKIE_ACCEPT_SESSION)
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1120 cookie->session_only = TRUE;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1121 Cookies_add_cookie(cookie);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1122 ret = 0;
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1123 } else {
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1124 MSG("Rejecting cookie for domain %s from host %s path %s\n",
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1125 cookie->domain, url_host, url_path);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1126 Cookies_free_cookie(cookie);
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1127 }
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1128 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1129 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1130
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1131 return ret;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1132 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1133
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1134 /*
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
1135 * Compare the cookie with the supplied data to see whether it matches
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1136 */
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
1137 static bool_t Cookies_match(CookieData_t *cookie, const char *url_path,
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1138 bool_t is_ssl)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1139 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1140 /* Insecure cookies matches both secure and insecure urls, secure
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1141 cookies matches only secure urls */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1142 if (cookie->secure && !is_ssl)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1143 return FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1144
1497
4ecebf934b44 cookies follow draft spec for paths
corvid <corvid@lavabit.com>
parents: 1496
diff changeset
1145 if (!Cookies_path_matches(url_path, cookie->path))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1146 return FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1147
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1148 /* It's a match */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1149 return TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1150 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1151
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1152 static void Cookies_add_matching_cookies(const char *domain,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1153 const char *url_path,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1154 Dlist *matching_cookies,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1155 bool_t is_ssl)
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1156 {
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
1157 DomainNode *node = dList_find_sorted(domains, domain,
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
1158 Domain_node_by_domain_cmp);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1159 if (node) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1160 int i;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1161 CookieData_t *cookie;
1624
d7761a69d274 cookies some data structure renaming
corvid <corvid@lavabit.com>
parents: 1615
diff changeset
1162 Dlist *domain_cookies = node->cookies;
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1163
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1164 for (i = 0; (cookie = dList_nth_data(domain_cookies, i)); ++i) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1165 /* Remove expired cookie. */
1605
1dd07874017e cookies: use difftime() for time_t comparisons
corvid <corvid@lavabit.com>
parents: 1603
diff changeset
1166 if (difftime(cookie->expires_at, time(NULL)) < 0) {
1546
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1167 _MSG("Goodbye, expired cookie %s=%s d:%s p:%s\n", cookie->name,
afe20c3687f2 decrease cookies chattiness
corvid <corvid@lavabit.com>
parents: 1531
diff changeset
1168 cookie->value, cookie->domain, cookie->path);
1627
0ae558e56003 cookies some remove_fast
corvid <corvid@lavabit.com>
parents: 1626
diff changeset
1169 dList_remove_fast(domain_cookies, cookie);
1628
ce89b1819729 limit total number of cookies
corvid <corvid@lavabit.com>
parents: 1627
diff changeset
1170 dList_remove_fast(all_cookies, cookie);
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
1171 Cookies_free_cookie(cookie);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1172 --i; continue;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1173 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1174 /* Check if the cookie matches the requesting URL */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1175 if (Cookies_match(cookie, url_path, is_ssl)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1176 int j;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1177 CookieData_t *curr;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1178 uint_t path_length = strlen(cookie->path);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1179
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1180 cookie->last_used = cookies_use_counter;
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1181
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1182 /* Longest cookies go first */
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1183 for (j = 0;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1184 (curr = dList_nth_data(matching_cookies, j)) &&
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1185 strlen(curr->path) >= path_length;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1186 j++) ;
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1187 dList_insert_pos(matching_cookies, cookie, j);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1188 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1189 }
1519
6fcb13a8b680 Be careful not to delete domain_cookies while still using it.
corvid <corvid@lavabit.com>
parents: 1518
diff changeset
1190
1625
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
1191 if (dList_length(domain_cookies) == 0)
803c80da9d37 Cookies_delete_node
corvid <corvid@lavabit.com>
parents: 1624
diff changeset
1192 Cookies_delete_node(node);
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1193 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1194 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1195
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1196 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1197 * Return a string that contains all relevant cookies as headers.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1198 */
51
6ff7b6758e0c Added the "static" qualifier where missing.
jcid
parents: 35
diff changeset
1199 static char *Cookies_get(char *url_host, char *url_path,
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1200 char *url_scheme)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1201 {
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1202 char *domain_str, *str;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1203 CookieData_t *cookie;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1204 Dlist *matching_cookies;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1205 bool_t is_ssl;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1206 Dstr *cookie_dstring;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1207 int i;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1208
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1209 if (disabled)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1210 return dStrdup("");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1211
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1212 matching_cookies = dList_new(8);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1213
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1214 /* Check if the protocol is secure or not */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1215 is_ssl = (!dStrcasecmp(url_scheme, "https"));
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1216
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1217 for (domain_str = (char *) url_host;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1218 domain_str != NULL && *domain_str;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1219 domain_str = strchr(domain_str+1, '.')) {
1498
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1220 Cookies_add_matching_cookies(domain_str, url_path, matching_cookies,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1221 is_ssl);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1222 }
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1223 if (!Cookies_domain_is_ip(url_host)) {
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1224 domain_str = dStrconcat(".", url_host, NULL);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1225 Cookies_add_matching_cookies(domain_str, url_path, matching_cookies,
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1226 is_ssl);
c04b0de69b00 cookies follow draft spec for domains
corvid <corvid@lavabit.com>
parents: 1497
diff changeset
1227 dFree(domain_str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1228 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1229
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1230 /* Found the cookies, now make the string */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1231 cookie_dstring = dStr_new("");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1232 if (dList_length(matching_cookies) > 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1233
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1234 dStr_sprintfa(cookie_dstring, "Cookie: ");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1235
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1236 for (i = 0; (cookie = dList_nth_data(matching_cookies, i)); ++i) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1237 dStr_sprintfa(cookie_dstring,
1499
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
1238 "%s%s%s",
1803fe44871e cookies follow draft spec's simple parsing
corvid <corvid@lavabit.com>
parents: 1498
diff changeset
1239 cookie->name, *cookie->name ? "=" : "", cookie->value);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1240 dStr_append(cookie_dstring,
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1241 dList_length(matching_cookies) > i + 1 ? "; " : "\r\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1242 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1243 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1244
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1245 dList_free(matching_cookies);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1246 str = cookie_dstring->str;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1247 dStr_free(cookie_dstring, FALSE);
1504
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1248
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1249 if (*str)
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1250 cookies_use_counter++;
d10adebe95fb when too many cookies for domain, rm least recently used
corvid <corvid@lavabit.com>
parents: 1503
diff changeset
1251
1506
408f86fed820 make cookies very chatty for now
corvid <corvid@lavabit.com>
parents: 1505
diff changeset
1252 MSG("%s GETTING: %s\n", url_host, str);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1253 return str;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1254 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1255
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1256 /* -------------------------------------------------------------
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1257 * Access control routines
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1258 * ------------------------------------------------------------- */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1259
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1260
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1261 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1262 * Get the cookie control rules (from cookiesrc).
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1263 * Return value:
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1264 * 0 = Parsed OK, with cookies enabled
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1265 * 1 = Parsed OK, with cookies disabled
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1266 * 2 = Can't open the control file
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1267 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1268 static int Cookie_control_init(void)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1269 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1270 CookieControl cc;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1271 FILE *stream;
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1272 char *filename, *rc;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1273 char line[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1274 char domain[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1275 char rule[LINE_MAXLEN];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1276 int i, j;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1277 bool_t enabled = FALSE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1278
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1279 /* Get a file pointer */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1280 filename = dStrconcat(dGethomedir(), "/.dillo/cookiesrc", NULL);
219
201d89d1d002 - Allowed readonly permissions for cookiesrc.
jcid
parents: 174
diff changeset
1281 stream = Cookies_fopen(filename, "r", "DEFAULT DENY\n");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1282 dFree(filename);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1283
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1284 if (!stream)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1285 return 2;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1286
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1287 /* Get all lines in the file */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1288 while (!feof(stream)) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1289 line[0] = '\0';
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1290 rc = fgets(line, LINE_MAXLEN, stream);
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1291 if (!rc && ferror(stream)) {
1503
f02eb59edc7d cookies: a little cleaning
corvid <corvid@lavabit.com>
parents: 1501
diff changeset
1292 MSG("Error while reading rule from cookiesrc: %s\n",
1200
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1293 dStrerror(errno));
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1294 break; /* bail out */
6bdf6ea2637a Removed compiler warnings for unused return values
Michal Nowak newman.x@gmail.com
parents: 1127
diff changeset
1295 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1296
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1297 /* Remove leading and trailing whitespaces */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1298 dStrstrip(line);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1299
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1300 if (line[0] != '\0' && line[0] != '#') {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1301 i = 0;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1302 j = 0;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1303
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1304 /* Get the domain */
1221
f34b803b8639 Handle signed chars. Aadded dIsspace() and dIsalnum() to dlib
Jorge Arellano Cid <jcid@dillo.org>
parents: 1201
diff changeset
1305 while (line[i] != '\0' && !dIsspace(line[i]))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1306 domain[j++] = line[i++];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1307 domain[j] = '\0';
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1308
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1309 /* Skip past whitespaces */
1221
f34b803b8639 Handle signed chars. Aadded dIsspace() and dIsalnum() to dlib
Jorge Arellano Cid <jcid@dillo.org>
parents: 1201
diff changeset
1310 while (dIsspace(line[i]))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1311 i++;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1312
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1313 /* Get the rule */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1314 j = 0;
1221
f34b803b8639 Handle signed chars. Aadded dIsspace() and dIsalnum() to dlib
Jorge Arellano Cid <jcid@dillo.org>
parents: 1201
diff changeset
1315 while (line[i] != '\0' && !dIsspace(line[i]))
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1316 rule[j++] = line[i++];
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1317 rule[j] = '\0';
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1318
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1319 if (dStrcasecmp(rule, "ACCEPT") == 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1320 cc.action = COOKIE_ACCEPT;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1321 else if (dStrcasecmp(rule, "ACCEPT_SESSION") == 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1322 cc.action = COOKIE_ACCEPT_SESSION;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1323 else if (dStrcasecmp(rule, "DENY") == 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1324 cc.action = COOKIE_DENY;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1325 else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1326 MSG("Cookies: rule '%s' for domain '%s' is not recognised.\n",
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1327 rule, domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1328 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1329 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1330
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1331 cc.domain = dStrdup(domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1332 if (dStrcasecmp(cc.domain, "DEFAULT") == 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1333 /* Set the default action */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1334 default_action = cc.action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1335 dFree(cc.domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1336 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1337 a_List_add(ccontrol, num_ccontrol, num_ccontrol_max);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1338 ccontrol[num_ccontrol++] = cc;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1339 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1340
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1341 if (cc.action != COOKIE_DENY)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1342 enabled = TRUE;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1343 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1344 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1345
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1346 fclose(stream);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1347
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1348 return (enabled ? 0 : 1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1349 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1350
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1351 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1352 * Check the rules for an appropriate action for this domain
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1353 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1354 static CookieControlAction Cookies_control_check_domain(const char *domain)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1355 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1356 int i, diff;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1357
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1358 for (i = 0; i < num_ccontrol; i++) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1359 if (ccontrol[i].domain[0] == '.') {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1360 diff = strlen(domain) - strlen(ccontrol[i].domain);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1361 if (diff >= 0) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1362 if (dStrcasecmp(domain + diff, ccontrol[i].domain) != 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1363 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1364 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1365 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1366 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1367 } else {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1368 if (dStrcasecmp(domain, ccontrol[i].domain) != 0)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1369 continue;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1370 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1371
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1372 /* If we got here we have a match */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1373 return( ccontrol[i].action );
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1374 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1375
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1376 return default_action;
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1377 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1378
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1379 /* -- Dpi parser ----------------------------------------------------------- */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1380
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1381 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1382 * Parse a data stream (dpi protocol)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1383 * Note: Buf is a zero terminated string
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1384 * Return code: { 0:OK, 1:Abort, 2:Close }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1385 */
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1386 static int srv_parse_tok(Dsh *sh, ClientInfo *client, char *Buf)
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1387 {
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1388 char *cmd, *cookie, *host, *path;
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1389 int ret = 1;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1390 size_t BufSize = strlen(Buf);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1391
1236
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1392 cmd = a_Dpip_get_attr_l(Buf, BufSize, "cmd");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1393
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1394 if (!cmd) {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1395 /* abort */
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1396 } else if (client->status == 0) {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1397 /* authenticate */
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1398 if (a_Dpip_check_auth(Buf) == 1) {
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1399 client->status = 1;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1400 ret = 0;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1401 }
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1402 } else if (strcmp(cmd, "DpiBye") == 0) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1403 dFree(cmd);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1404 MSG("(pid %d): Got DpiBye.\n", (int)getpid());
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1405 exit(0);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1406
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1407 } else if (strcmp(cmd, "set_cookie") == 0) {
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1408 int st;
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1409 char *date;
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1410
1236
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1411 cookie = a_Dpip_get_attr_l(Buf, BufSize, "cookie");
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1412 host = a_Dpip_get_attr_l(Buf, BufSize, "host");
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1413 path = a_Dpip_get_attr_l(Buf, BufSize, "path");
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1414 date = a_Dpip_get_attr_l(Buf, BufSize, "date");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1415
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1416 st = Cookies_set(cookie, host, path, date);
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1417
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1418 dFree(cmd);
1531
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1419 cmd = a_Dpip_build_cmd("cmd=%s msg=%s", "set_cookie_answer",
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1420 st == 0 ? "ok" : "not set");
4810e433ed3f dpi send response when setting cookies
Jorge Arellano Cid <jcid@dillo.org>
parents: 1527
diff changeset
1421 a_Dpip_dsh_write_str(sh, 1, cmd);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1422
1501
6fd1c55d8022 cookies use server date to interpret Expires attr
corvid <corvid@lavabit.com>
parents: 1500
diff changeset
1423 dFree(date);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1424 dFree(path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1425 dFree(host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1426 dFree(cookie);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1427 ret = 2;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1428
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1429 } else if (strcmp(cmd, "get_cookie") == 0) {
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1430 char *scheme = a_Dpip_get_attr_l(Buf, BufSize, "scheme");
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1431
1236
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1432 host = a_Dpip_get_attr_l(Buf, BufSize, "host");
b912173aecd1 Added a_Dpip_get_attr_l() to DPIP's API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1221
diff changeset
1433 path = a_Dpip_get_attr_l(Buf, BufSize, "path");
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1434
1496
5bec8ce33a42 cookies: rm version, comment, comment url, port, Cookie2
corvid <corvid@lavabit.com>
parents: 1495
diff changeset
1435 cookie = Cookies_get(host, path, scheme);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1436 dFree(scheme);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1437 dFree(path);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1438 dFree(host);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1439
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1440 dFree(cmd);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1441 cmd = a_Dpip_build_cmd("cmd=%s cookie=%s", "get_cookie_answer", cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1442
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1443 if (a_Dpip_dsh_write_str(sh, 1, cmd)) {
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1444 ret = 1;
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1445 } else {
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1446 _MSG("a_Dpip_dsh_write_str: SUCCESS cmd={%s}\n", cmd);
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1447 ret = 2;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1448 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1449 dFree(cookie);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1450 }
1599
2b3aee52932a fix dpip cmd leak
corvid <corvid@lavabit.com>
parents: 1546
diff changeset
1451 dFree(cmd);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1452
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1453 return ret;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1454 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1455
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1456 /* -- Termination handlers ----------------------------------------------- */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1457 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1458 * (was to delete the local namespace socket),
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1459 * but this is handled by 'dpid' now.
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1460 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1461 static void cleanup(void)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1462 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1463 Cookies_save_and_free();
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1464 MSG("cleanup\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1465 /* no more cleanup required */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1466 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1467
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1468 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1469 * Perform any necessary cleanups upon abnormal termination
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1470 */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1471 static void termination_handler(int signum)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1472 {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1473 exit(signum);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1474 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1475
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1476
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1477 /*
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1478 * -- MAIN -------------------------------------------------------------------
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1479 */
1385
eb98997886ec Introduced the new tokenizing dsh API to DPIP
Jorge Arellano Cid <jcid@dillo.org>
parents: 1236
diff changeset
1480 int main(void) {
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1481 struct sockaddr_in sin;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1482 socklen_t address_size;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1483 ClientInfo *client;
1439
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1484 int sock_fd, code;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1485 char *buf;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1486 Dsh *sh;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1487
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1488 /* Arrange the cleanup function for terminations via exit() */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1489 atexit(cleanup);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1490
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1491 /* Arrange the cleanup function for abnormal terminations */
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1492 if (signal (SIGINT, termination_handler) == SIG_IGN)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1493 signal (SIGINT, SIG_IGN);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1494 if (signal (SIGHUP, termination_handler) == SIG_IGN)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1495 signal (SIGHUP, SIG_IGN);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1496 if (signal (SIGTERM, termination_handler) == SIG_IGN)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1497 signal (SIGTERM, SIG_IGN);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1498
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1499 Cookies_init();
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1500 MSG("(v.1) accepting connections...\n");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1501
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1502 if (disabled)
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1503 exit(1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1504
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1505 /* some OSes may need this... */
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1506 address_size = sizeof(struct sockaddr_in);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1507
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1508 while (1) {
1439
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1509 sock_fd = accept(STDIN_FILENO, (struct sockaddr *)&sin, &address_size);
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1510 if (sock_fd == -1) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1511 perror("[accept]");
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1512 exit(1);
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1513 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1514
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1515 /* create the Dsh structure */
1439
79fcf67eeea0 Fixed bookmarks "cancel" link (Add/Mod URL, Add Sec). Also s/tmp_fd/sock_fd.
Jorge Arellano Cid <jcid@dillo.org>
parents: 1388
diff changeset
1516 sh = a_Dpip_dsh_new(sock_fd, sock_fd, 8*1024);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1517 client = dNew(ClientInfo,1);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1518 client->sh = sh;
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1519 client->status = 0;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1520
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1521 while (1) {
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1522 code = 1;
1388
eb35203124e4 Implemented the file dpi based on select() (removed its pthreads dependency)
Jorge Arellano Cid <jcid@dillo.org>
parents: 1387
diff changeset
1523 if ((buf = a_Dpip_dsh_read_token(sh, 1)) != NULL) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1524 /* Let's see what we fished... */
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1525 _MSG(" buf = {%s}\n", buf);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1526 code = srv_parse_tok(sh, client, buf);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1527 dFree(buf);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1528 }
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1529
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1530 _MSG(" code = %d %s\n", code, code == 1 ? "EXIT" : "BREAK");
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1531 if (code == 1) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1532 exit(1);
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1533 } else if (code == 2) {
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1534 break;
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1535 }
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1536 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1537
1387
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1538 _MSG("Closing Dsh\n");
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1539 a_Dpip_dsh_close(sh);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1540 a_Dpip_dsh_free(sh);
16cf380cd04c Convert dpid, file dpi and cookies dpi to dsh API
Jorge Arellano Cid <jcid@dillo.org>
parents: 1385
diff changeset
1541 dFree(client);
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1542
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1543 }/*while*/
174
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1544
67e98a1211f0 - Fixed a cookies-related dillo freeze bug happening at:
jcid
parents: 159
diff changeset
1545 return 0;
0
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1546 }
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1547
6ee11bf9e3ea Initial revision
jcid
parents:
diff changeset
1548 #endif /* !DISABLE_COOKIES */