2 * Copyright (c) 1987-2013 by the citadel.org team
4 * This program is open source software; you can redistribute it and/or
5 * modify it under the terms of the GNU General Public License version 3.
7 * This program is distributed in the hope that it will be useful,
8 * but WITHOUT ANY WARRANTY; without even the implied warranty of
9 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10 * GNU General Public License for more details.
14 #include <sys/select.h>
25 #include <sys/types.h>
27 #include <sys/socket.h>
28 #ifdef HAVE_SYS_TIME_H
35 #include <sys/socket.h>
36 #include <netinet/in.h>
37 #include <arpa/inet.h>
48 #include <sys/utsname.h>
50 #include <libcitadel.h>
62 #define _(string) gettext(string)
64 #define _(string) (string)
67 #define IsEmptyStr(a) ((a)[0] == '\0')
70 #define DBG_QR(x) if(DO_DBG_QR) _DBG_QR(x)
71 #define DBG_QR2(x) if(DO_DBG_QR) _DBG_QR2(x)
75 #include <libical/ical.h>
81 #undef PACKAGE_TARNAME
82 #undef PACKAGE_VERSION
83 #undef PACKAGE_BUGREPORT
85 typedef struct wcsession wcsession;
91 #include "paramhandling.h"
93 #include "preferences.h"
95 #include "tcp_sockets.h"
98 /* Work around RedHat's b0rken OpenSSL includes */
99 #define OPENSSL_NO_KRB5
100 #include <openssl/ssl.h>
101 #include <openssl/err.h>
102 #include <openssl/rand.h>
103 extern char *ssl_cipher_list;
104 #define DEFAULT_SSL_CIPHER_LIST "DEFAULT" /* See http://openssl.org/docs/apps/ciphers.html */
107 #if SIZEOF_SIZE_T == SIZEOF_INT
108 #define SIZE_T_FMT "%d"
110 #define SIZE_T_FMT "%ld"
113 #if SIZEOF_LONG_UNSIGNED_INT == SIZEOF_INT
114 #define ULONG_FMT "%d"
116 #define ULONG_FMT "%ld"
119 #define CALENDAR_ROOM_NAME "Calendar"
120 #define PRODID "-//Citadel//NONSGML Citadel Calendar//EN"
122 #define SIZ 4096 /* generic buffer size */
124 #define TRACE syslog(LOG_DEBUG, "\033[3%dmCHECKPOINT: %s:%d\033[0m", ((__LINE__%6)+1), __FILE__, __LINE__)
130 #define SLEEPING 180 /* TCP connection timeout */
131 #define WEBCIT_TIMEOUT 900 /* WebCit session timeout */
132 #define PORT_NUM 2000 /* port number to listen on */
133 #define DEVELOPER_ID 0
135 #define CLIENT_VERSION 829 /* This version of WebCit */
136 #define MINIMUM_CIT_VERSION 829 /* Minimum required version of Citadel server */
137 #define LIBCITADEL_MIN 821 /* Minimum required version of libcitadel */
138 #define DEFAULT_HOST "localhost" /* Default Citadel server */
139 #define DEFAULT_PORT "504"
140 #define TARGET "webcit01" /* Window target for inline URL's */
141 #define HOUSEKEEPING 15 /* Housekeeping frequency */
142 #define MAX_WORKER_THREADS 250
143 #define LISTEN_QUEUE_LENGTH 100 /* listen() backlog queue */
145 #define USERCONFIGROOM "My Citadel Config"
146 #define DEFAULT_MAXMSGS 20
149 #ifdef LIBCITADEL_VERSION_NUMBER
150 #if LIBCITADEL_VERSION_NUMBER < LIBCITADEL_MIN
151 #error libcitadel is too old. Please upgrade it before continuing.
158 #define SRV_STATUS_MSG(ServerLineBuf) (ChrPtr(ServerLineBuf) + 4), (StrLength(ServerLineBuf) - 4)
159 #define MAJORCODE(a) (((int)(a / 100) ) * 100)
161 #define LISTING_FOLLOWS 100
163 #define MORE_DATA 300
164 #define SEND_LISTING 400
166 #define BINARY_FOLLOWS 600
167 #define SEND_BINARY 700
168 #define START_CHAT_MODE 800
169 #define ASYNC_MSG 900
171 #define MINORCODE(a) (a % 100)
172 #define ASYNC_GEXP 02
173 #define INTERNAL_ERROR 10
175 #define ILLEGAL_VALUE 12
176 #define NOT_LOGGED_IN 20
177 #define CMD_NOT_SUPPORTED 30
178 #define SERVER_SHUTTING_DOWN 31
179 #define PASSWORD_REQUIRED 40
180 #define ALREADY_LOGGED_IN 41
181 #define USERNAME_REQUIRED 42
182 #define HIGHER_ACCESS_REQUIRED 50
183 #define MAX_SESSIONS_EXCEEDED 51
184 #define RESOURCE_BUSY 52
185 #define RESOURCE_NOT_OPEN 53
187 #define INVALID_FLOOR_OPERATION 61
188 #define NO_SUCH_USER 70
189 #define FILE_NOT_FOUND 71
190 #define ROOM_NOT_FOUND 72
191 #define NO_SUCH_SYSTEM 73
192 #define ALREADY_EXISTS 74
193 #define MESSAGE_NOT_FOUND 75
196 * NLI is the string that shows up in a who's online listing for sessions
197 * that are active but do not (yet) have a user logged in.
199 #define NLI "(not logged in)"
202 * Expiry policy for the autopurger
204 #define EXPIRE_NEXTLEVEL 0 /* Inherit expiration policy */
205 #define EXPIRE_MANUAL 1 /* Don't expire messages at all */
206 #define EXPIRE_NUMMSGS 2 /* Keep only latest n messages */
207 #define EXPIRE_AGE 3 /* Expire messages after n days */
209 typedef struct __ExpirePolicy {
213 void LoadExpirePolicy(GPEXWhichPolicy which);
214 void SaveExpirePolicyFromHTTP(GPEXWhichPolicy which);
217 * Linked list of session variables encoded in an x-www-urlencoded content type
219 typedef struct urlcontent urlcontent;
221 char url_key[32]; /* key */
222 StrBuf *url_data; /* value */
226 * Information about the Citadel server to which we are connected
228 typedef struct _serv_info {
229 int serv_pid; /* Process ID of the Citadel server */
230 StrBuf *serv_nodename; /* Node name of the Citadel server */
231 StrBuf *serv_humannode; /* Juman readable node name of the Citadel server */
232 StrBuf *serv_fqdn; /* Fully qualified Domain Name (such as uncensored.citadel.org) */
233 StrBuf *serv_software; /* Free form text description of the server software in use */
234 int serv_rev_level; /* Server version number (times 100) */
235 StrBuf *serv_bbs_city; /* Geographic location of the Citadel server */
236 StrBuf *serv_sysadm; /* Name of system administrator */
237 int serv_supports_ldap; /* is the server linked against an ldap tree for adresses? */
238 int serv_newuser_disabled; /* Has the server disabled self-service new user creation? */
239 StrBuf *serv_default_cal_zone; /* Default timezone for unspecified calendar items */
240 int serv_supports_sieve; /* Server supports Sieve mail filtering */
241 int serv_fulltext_enabled; /* Full text index is enabled */
242 StrBuf *serv_svn_revision; /* svn or git revision of the server */
243 int serv_supports_openid; /* Server supports authentication via OpenID */
244 int serv_supports_guest; /* Server supports unauthenticated guest logins */
248 typedef struct _disp_cal {
249 icalcomponent *cal; /* cal items for display */
250 long cal_msgnum; /* cal msgids for display */
251 char *from; /* owner of this component */
252 int unread; /* already seen by the user? */
259 icalcomponent *SortBy; /* cal items for display */
260 icalproperty_status Status;
263 typedef struct _IcalKindEnumMap {
266 icalproperty_kind map;
268 typedef struct _IcalMethodEnumMap {
271 icalproperty_method map;
275 * Address book entry (keep it short and sweet, it's just a quickie lookup
276 * which we can use to get to the real meat and bones later)
278 typedef struct _addrbookent {
279 char ab_name[64]; /* name string */
280 long ab_msgnum; /* message number of address book entry */
285 #define ANONYMOUS (1<<1)
286 #define NEED_URL (1<<2)
287 #define XHTTP_COMMANDS (1<<3)
289 #define URLNAMESPACE (1<<4)
290 #define LOGCHATTY (1<<5)
291 #define COOKIEUNNEEDED (1<<6)
292 #define ISSTATIC (1<<7)
293 #define FORCE_SESSIONCLOSE (1<<8)
294 #define PARSE_REST_URL (1<<9)
295 #define PROHIBIT_STARTPAGE (1<<10)
298 #define DATEFMT_FULL 0
299 #define DATEFMT_BRIEF 1
300 #define DATEFMT_RAWDATE 2
301 #define DATEFMT_LOCALEDATE 3
302 long webcit_fmt_date(char *buf, size_t siz, time_t thetime, int Format);
305 typedef enum _RESTDispatchID {
311 typedef int (*WebcitRESTDispatchID)(RESTDispatchID WhichAction, int IgnoreFloor);
312 typedef void (*WebcitHandlerFunc)(void);
313 typedef struct _WebcitHandler{
315 WebcitRESTDispatchID RID;
322 void WebcitAddUrlHandler(const char * UrlString, long UrlSLen, const char *DisplayName, long dslen, WebcitHandlerFunc F, long Flags);
324 typedef struct _headereval {
325 ExamineMsgHeaderFunc evaluator;
355 extern const char *ReqStrs[eNONE];
358 #define AUTH_COOKIE 1
363 typedef struct _HdrRefs {
364 long eReqType; /* HTTP method */
371 time_t if_modified_since;
372 int gzip_ok; /* Nonzero if Accept-encoding: gzip */
373 int prohibit_caching;
377 /* these are references into Hdr->HTTPHeaders, so we don't need to free them. */
381 StrBuf *browser_host;
382 StrBuf *browser_language;
387 const WebcitHandler *Handler;
390 typedef struct _ParsedHttpHdrs {
391 int http_sock; /* HTTP server socket */
403 StrBuf *this_page; /* URL of current page */
407 HashList *urlstrings; /* variables passed to webcit in a URL */
408 HashList *HTTPHeaders; /* the headers the client sent us */
409 int nWildfireHeaders; /* how many wildfire headers did we already send? */
416 * One of these is kept for each active Citadel session.
417 * HTTP transactions are bound to one at a time.
420 /* infrastructural members */
421 wcsession *next; /* Linked list */
422 pthread_mutex_t SessionMutex; /* mutex for exclusive access */
423 int wc_session; /* WebCit session ID */
424 int killthis; /* Nonzero == purge this session */
425 int ctdl_pid; /* Session ID on the Citadel server */
426 int nonce; /* session nonce (to prevent session riding) */
427 int inuse; /* set to nonzero if bound to a running thread */
429 /* Session local Members */
430 int serv_sock; /* Client socket to Citadel server */
431 StrBuf *ReadBuf; /* linebuffered reads from the server */
432 StrBuf *MigrateReadLineBuf; /* here we buffer legacy server read stuff */
433 const char *ReadPos; /* whats our read position in ReadBuf? */
434 int last_chat_seq; /* When in chat - last message seq# we saw */
435 time_t lastreq; /* Timestamp of most recent HTTP */
436 time_t last_pager_check; /* last time we polled for instant msgs */
437 ServInfo *serv_info; /* Information about the citserver we're connected to */
438 StrBuf *PushedDestination; /* Where to go after login, registration, etc. */
440 /* Request local Members */
441 StrBuf *CLineBuf; /* linebuffering client stuff */
443 StrBuf *WBuf; /* Our output buffer */
444 StrBuf *HBuf; /* Our HeaderBuffer */
445 StrBuf *WFBuf; /* Wildfire error logging buffer */
446 StrBuf *trailing_javascript; /* extra javascript to be appended to page */
447 StrBuf *ImportantMsg;
448 HashList *Directory; /* Parts of the directory URL in snippets */
449 const Floor *CurrentFloor; /* when Parsing REST, which floor are we on? */
452 StrBuf *wc_username; /* login name of current user */
453 StrBuf *wc_fullname; /* Screen name of current user */
454 StrBuf *wc_password; /* Password of current user */
455 StrBuf *httpauth_pass; /* only for GroupDAV sessions */
456 int axlevel; /* this user's access level */
457 int is_aide; /* nonzero == this user is an Admin */
458 int connected; /* nonzero == we are connected to Citadel */
459 int logged_in; /* nonzero == we are logged in */
460 int need_regi; /* This user needs to register. */
461 int need_vali; /* New users require validation. */
464 StrBuf *cs_inet_email; /* User's preferred Internet addr. */
465 HashList *hash_prefs; /* WebCit preferences for this user */
466 StrBuf *DefaultCharset; /* Charset the user preferes */
467 int downloaded_prefs; /* Has the client download its prefs yet? */
468 int SavePrefsToServer; /* Should we save our preferences to the server at the end of the request? */
469 int selected_language; /* Language selected by user */
470 int time_format_cache; /* which timeformat does our user like? */
472 folder CurRoom; /* information about our current room */
473 const folder *ThisRoom; /* if REST found a room, remember it here. */
474 /* next/previous room thingabob */
475 struct march *march; /* march mode room list */
476 char ugname[128]; /* where does 'ungoto' take us */
477 long uglsn; /* last seen message number for ungoto */
479 /* Uploading; mime attachments for composing messages */
480 HashList *attachments; /* list of attachments for 'enter message' */
481 int upload_length; /* content length of http-uploaded data */
482 StrBuf *upload; /* pointer to http-uploaded data */
483 StrBuf *upload_filename; /* filename of http-uploaded data */
484 char upload_content_type[256]; /* content type of http-uploaded data */
486 int remember_new_mail; /* last count of new mail messages */
488 /* Roomiew control */
489 HashList *Floors; /* floors our citserver has hashed numeric for quicker access*/
490 HashList *FloorsByName; /* same but hashed by its name */
491 HashList *Rooms; /* our directory structure as loaded by LKRA */
492 HashList *summ; /* list of messages for mailbox summary view */
493 /** Perhaps these should be within a struct instead */
494 long startmsg; /* message number to start at */
495 long maxmsgs; /* maximum messages to display */
496 long num_displayed; /* number of messages actually displayed */
497 HashList *disp_cal_items; /* sorted list of calendar items; startdate is the sort criteria. */
500 char last_chat_user[256];
502 StrBuf *IconTheme; /* Icontheme setting */
504 /* Iconbar controls */
505 int cache_max_folders;
506 int cache_num_floors;
507 long *IBSettingsVec; /* which icons should be shown / not shown? */
508 const StrBuf *floordiv_expanded; /* which floordiv currently expanded */
509 int ib_wholist_expanded;
510 int ib_roomlist_expanded;
512 /* our known Sieve scripts; loaded by SIEVE:SCRIPTS iterator. */
513 HashList *KnownSieveScripts;
515 /* Transcoding cache buffers; used to avoid to frequent realloc */
519 /* cache stuff for templates. TODO: find a smarter way */
520 HashList *ServCfg; /* cache our server config for editing */
521 HashList *InetCfg; /* Our inet server config for editing */
522 ExpirePolicy Policy[maxpolicy];
524 /* used by the blog viewer */
525 int bptlid; /* hash of thread currently being rendered */
529 typedef void (*Header_Evaluator)(StrBuf *Line, ParsedHttpHdrs *hdr);
531 typedef struct _HttpHeader {
537 void RegisterHeaderHandler(const char *Name, long Len, Header_Evaluator F);
547 #define num_parms(source) num_tokens(source, '|')
550 #define site_prefix (WC ? (WC->Hdr->HostHeader) : NULL)
552 /* Per-session data */
553 #define WC ((struct wcsession *)pthread_getspecific(MyConKey))
554 extern pthread_key_t MyConKey;
556 /* Per-thread SSL context */
558 #define THREADSSL ((SSL *)pthread_getspecific(ThreadSSL))
559 extern pthread_key_t ThreadSSL;
560 extern char ctdl_key_dir[PATH_MAX];
561 extern char file_crpt_file_key[PATH_MAX];
562 extern char file_crpt_file_csr[PATH_MAX];
563 extern char file_crpt_file_cer[PATH_MAX];
567 void ssl_lock(int mode, int n, const char *file, int line);
568 int starttls(int sock);
569 extern SSL_CTX *ssl_ctx;
570 int client_read_sslbuffer(StrBuf *buf, int timeout);
571 int client_write_ssl(const StrBuf *Buf);
575 extern int follow_xff;
576 extern char *server_cookie;
577 extern char *ctdlhost, *ctdlport;
578 extern char *axdefs[];
579 extern int num_threads_existing;
580 extern int num_threads_executing;
581 extern int setup_wizard;
582 extern char wizard_filename[];
584 void InitialiseSemaphores(void);
585 void begin_critical_section(int which_one);
586 void end_critical_section(int which_one);
588 void CheckGZipCompressionAllowed(const char *MimeType, long MLen);
590 extern void do_404(void);
591 void http_redirect(const char *);
594 #ifdef UBER_VERBOSE_DEBUGGING
595 #define wc_printf(...) wcc_printf(__FILE__, __FUNCTION__, __LINE__, __VA_ARGS__)
596 void wcc_printf(const char *FILE, const char *FUNCTION, long LINE, const char *format, ...);
598 void wc_printf(const char *format,...)__attribute__((__format__(__printf__,1,2)));
601 void hprintf(const char *format,...)__attribute__((__format__(__printf__,1,2)));
603 void CheckAuthBasic(ParsedHttpHdrs *hdr);
604 void GetAuthBasic(ParsedHttpHdrs *hdr);
606 void sleeeeeeeeeep(int);
608 size_t wc_strftime(char *s, size_t max, const char *format, const struct tm *tm);
609 void fmt_time(char *buf, size_t siz, time_t thetime);
610 void httpdate(char *buf, time_t thetime);
611 time_t httpdate_to_timestamp(StrBuf *buf);
616 void end_webcit_session(void);
621 void cookie_to_stuff(StrBuf *cookie,
628 void locate_host(StrBuf *TBuf, int);
629 void become_logged_in(const StrBuf *user, const StrBuf *pass, StrBuf *serv_response);
631 void display_login(void);
632 void display_openids(void);
633 void display_default_landing_page(void);
634 void do_welcome(void);
636 void display_reg(int during_login);
637 void display_main_menu(void);
638 void display_aide_menu(void);
640 void RegisterEmbeddableMimeType(const char *MimeType, long MTLen, int Priority);
641 void CreateMimeStr(void);
644 void pop_destination(void);
646 void FmOut(StrBuf *Target, const char *align, const StrBuf *Source);
647 void wDumpContent(int);
650 void PutRequestLocalMem(void *Data, DeleteHashDataFunc DeleteIt);
652 void output_headers( int do_httpheaders,
658 void output_custom_content_header(const char *ctype);
659 void cdataout(char *rawdata);
662 void url(char *buf, size_t bufsize);
663 void UrlizeText(StrBuf* Target, StrBuf *Source, StrBuf *WrkBuf);
666 void display_vcard(StrBuf *Target, wc_mime_attachment *Mime, char alpha, int full, char **storename, long msgnum);
668 void display_success(const char *successmessage);
670 void shutdown_sessions(void);
674 StrBuf *load_mimepart(long msgnum, char *partnum);
675 void MimeLoadData(wc_mime_attachment *Mime);
676 void do_edit_vcard(long msgnum, char *partnum,
677 message_summary *VCMsg,
678 wc_mime_attachment *VCAtt,
679 const char *return_to,
680 const char *force_room);
682 void select_user_to_edit(const char *preselect);
684 void convenience_page(const char *titlebarcolor, const char *titlebarmsg, const char *messagetext);
685 void output_html(const char *, int, int, StrBuf *, StrBuf *);
687 ssize_t write(int fd, const void *buf, size_t count);
688 void cal_process_attachment(wc_mime_attachment *Mime);
690 void begin_ajax_response(void);
691 void end_ajax_response(void);
693 extern char *months[];
695 long locate_user_vcard_in_this_room(message_summary **VCMsg,
696 wc_mime_attachment **VCAtt);
697 void http_transmit_thing(const char *content_type, int is_static);
698 void http_transmit_headers(const char *content_type, int is_static, long is_chunked);
699 long unescape_input(char *buf);
700 void check_thread_pool_size(void);
701 void StrEndTab(StrBuf *Target, int tabnum, int num_tabs);
702 void StrBeginTab(StrBuf *Target, int tabnum, int num_tabs, StrBuf **Names);
703 void StrTabbedDialog(StrBuf *Target, int num_tabs, StrBuf *tabnames[]);
704 void tabbed_dialog(int num_tabs, char *tabnames[]);
705 void begin_tab(int tabnum, int num_tabs);
706 void end_tab(int tabnum, int num_tabs);
708 int get_time_format_cached (void);
709 void display_wiki_pagelist(void);
710 void str_wiki_index(char *);
712 HashList *GetRoomListHashLKRA(StrBuf *Target, WCTemplputParams *TP);
714 /* actual supported locales */
715 void TmplGettext(StrBuf *Target, WCTemplputParams *TP);
717 void set_selected_language(const char *);
718 void go_selected_language(void);
719 void stop_selected_language(void);
720 const char *get_selected_language(void);
722 void utf8ify_rfc822_string(char **buf);
724 void begin_burst(void);
725 long end_burst(void);
727 void AppendImportantMessage(const char *pch, long len);
729 void http_datestring(char *buf, size_t n, time_t xtime);
732 /* These should be empty, but we have them for testing */
733 #define DEFAULT_HTTPAUTH_USER ""
734 #define DEFAULT_HTTPAUTH_PASS ""
737 /* Exit codes 101 through 109 are initialization failures so we don't want to
738 * just keep respawning indefinitely.
740 #define WC_EXIT_BIND 101 /* Can't bind to the port */
741 #define WC_EXIT_SSL 102 /* Can't initialize SSL */
744 #define WC_TIMEFORMAT_NONE 0
745 #define WC_TIMEFORMAT_AMPM 1
746 #define WC_TIMEFORMAT_24 2
748 extern int time_to_die; /* Nonzero if server is shutting down */
749 extern int DisableGzip;
752 * Array type for a blog post. The first message is the post; the rest are comments
756 long *msgs; /* Array of msgnums for messages we are displaying */
757 int num_msgs; /* Number of msgnums stored in 'msgs' */
758 int alloc_msgs; /* Currently allocated size of array */
763 * Data which gets returned from a call to blogview_learn_thread_references()
771 struct bltr blogview_learn_thread_references(long msgnum);
772 void tmplput_blog_permalink(StrBuf *Target, WCTemplputParams *TP);
773 void display_summary_page(void);
775 HashList *GetValidDomainNames(StrBuf *Target, WCTemplputParams *TP);