pidgin: libpurple/util.c comparison

comparison libpurple/util.c @ 24592:104f6f755c7e

Make our purple_util_fetch_url_request() function able to handle fetching stuff from https urls. This is needed by yahoo's webmessenger style login, if we want to try enable it again. And it will be needed by the new oscar authentication. I wrote this maybe a year ago and we've been using it at Meebo with no problems, but it would be great if one person could look through these changes.

author	Mark Doliner <mark@kingant.net>
date	Sat, 06 Dec 2008 01:08:20 +0000
parents	f9503aa61fb4
children	e7b27ee5e7b6 65cfc59858cf

comparison

equal deleted inserted replaced

-:a05e9cf91efb
+:104f6f755c7e
 	gboolean http11;
 	char *request;
 	gsize request_written;
 	gboolean include_headers;
+	gboolean is_ssl;
+	PurpleSslConnection *ssl_connection;
 	PurpleProxyConnectData *connect_data;
 	int fd;
 	guint inpa;
 	gboolean got_headers;
 	char proto[11];
 	const char *tmp, *param_string;
 	char *cmd;
 	GHashTable *params = NULL;
 	int len;
-	g_return_if_fail(uri != NULL);
 	if (!(tmp = strchr(uri, ':')) || tmp == uri) {
 		purple_debug_error("util", "Malformed protocol handler message - missing protocol.\n");
 		return;
 	}
 */
 gboolean
 purple_url_parse(const char *url, char **ret_host, int *ret_port,
 			   char **ret_path, char **ret_user, char **ret_passwd)
 {
+	gboolean is_https = FALSE;
 	char scan_info[255];
 	char port_str[6];
 	int f;
 	const char *at, *slash;
 	const char *turl;
 		turl += 7;
 		url = turl;
 	}
 	else if ((turl = purple_strcasestr(url, "https://")) != NULL)
 	{
+		is_https = TRUE;
 		turl += 8;
 		url = turl;
 	}
 	/* parse out authentication information if supplied */
 	{
 		g_snprintf(scan_info, sizeof(scan_info),
 				   "%%255[%s]/%%255[%s]",
 				   addr_ctrl, page_ctrl);
 		f = sscanf(url, scan_info, host, path);
-		g_snprintf(port_str, sizeof(port_str), "80");
+		/* Use the default port */
+		if (is_https)
+			g_snprintf(port_str, sizeof(port_str), "443");
+		else
+			g_snprintf(port_str, sizeof(port_str), "80");
 	}
 	if (f == 0)
 		*host = '\0';
 	g_free(error_message);
 	purple_util_fetch_url_cancel(gfud);
 }
 static void url_fetch_connect_cb(gpointer url_data, gint source, const gchar *error_message);
+static void ssl_url_fetch_connect_cb(gpointer data, PurpleSslConnection *ssl_connection, PurpleInputCondition cond);
+static void ssl_url_fetch_error_cb(PurpleSslConnection *ssl_connection, PurpleSslErrorType error, gpointer data);
 static gboolean
 parse_redirect(const char *data, size_t data_len,
 			   PurpleUtilFetchUrlData *gfud)
 {
 	gfud->url = new_url;
 	gfud->full = full;
 	g_free(gfud->request);
 	gfud->request = NULL;
-	purple_input_remove(gfud->inpa);
+	if (gfud->is_ssl) {
-	gfud->inpa = 0;
+		gfud->is_ssl = FALSE;
-	close(gfud->fd);
+		purple_ssl_close(gfud->ssl_connection);
-	gfud->fd = -1;
+		gfud->ssl_connection = NULL;
+	} else {
+		purple_input_remove(gfud->inpa);
+		gfud->inpa = 0;
+		close(gfud->fd);
+		gfud->fd = -1;
+	}
 	gfud->request_written = 0;
 	gfud->len = 0;
 	gfud->data_len = 0;
 	g_free(gfud->website.user);
 	g_free(gfud->website.address);
 	g_free(gfud->website.page);
 	purple_url_parse(new_url, &gfud->website.address, &gfud->website.port,
 				   &gfud->website.page, &gfud->website.user, &gfud->website.passwd);
-	gfud->connect_data = purple_proxy_connect(NULL, NULL,
+	if (purple_strcasestr(new_url, "https://") != NULL) {
-			gfud->website.address, gfud->website.port,
+		gfud->is_ssl = TRUE;
-			url_fetch_connect_cb, gfud);
+		gfud->ssl_connection = purple_ssl_connect(NULL,
+				gfud->website.address, gfud->website.port,
-	if (gfud->connect_data == NULL)
+				ssl_url_fetch_connect_cb, ssl_url_fetch_error_cb, gfud);
+	} else {
+		gfud->connect_data = purple_proxy_connect(NULL, NULL,
+				gfud->website.address, gfud->website.port,
+				url_fetch_connect_cb, gfud);
+	}
+	if (gfud->ssl_connection == NULL && gfud->connect_data == NULL)
 	{
 		purple_util_fetch_url_error(gfud, _("Unable to connect to %s"),
 				gfud->website.address);
 	}
 	int len;
 	char buf[4096];
 	char *data_cursor;
 	gboolean got_eof = FALSE;
-	while((len = read(source, buf, sizeof(buf))) > 0) {
+	/*
+	 * Read data in a loop until we can't read any more!  This is a
+	 * little confusing because we read using a different function
+	 * depending on whether the socket is ssl or cleartext.
+	 */
+	while ((gfud->is_ssl && ((len = purple_ssl_read(gfud->ssl_connection, buf, sizeof(buf))) > 0)) ||
+			(!gfud->is_ssl && (len = read(source, buf, sizeof(buf))) > 0))
+	{
 		if(gfud->max_len != -1 && (gfud->len + len) > gfud->max_len) {
 			purple_util_fetch_url_error(gfud, _("Error reading from %s: response too long (%d bytes limit)"),
 						    gfud->website.address, gfud->max_len);
 			return;
 		}
 		gfud->callback(gfud, gfud->user_data, gfud->webdata, gfud->len, NULL);
 		purple_util_fetch_url_cancel(gfud);
 	}
 }
+static void ssl_url_fetch_recv_cb(gpointer data, PurpleSslConnection *ssl_connection, PurpleInputCondition cond)
+{
+	url_fetch_recv_cb(data, -1, cond);
+}
+/*
+* This function is called when the socket is available to be written
+* to.
+*
+* @param source The file descriptor that can be written to.  This can
+*        be an http connection or it can be the SSL connection of an
+*        https request.  So be careful what you use it for!  If it's
+*        an https request then use purple_ssl_write() instead of
+*        writing to it directly.
+*/
 static void
 url_fetch_send_cb(gpointer data, gint source, PurpleInputCondition cond)
 {
 	PurpleUtilFetchUrlData *gfud;
 	int len, total_len;
 	gfud = data;
-	total_len = strlen(gfud->request);
+	if (gfud->request == NULL)
+	{
-	len = write(gfud->fd, gfud->request + gfud->request_written,
+		/* Host header is not forbidden in HTTP/1.0 requests, and HTTP/1.1
-			total_len - gfud->request_written);
+		 * clients must know how to handle the "chunked" transfer encoding.
+		 * Purple doesn't know how to handle "chunked", so should always send
-	if (len < 0 && errno == EAGAIN)
+		 * the Host header regardless, to get around some observed problems
-		return;
+		 */
-	else if (len < 0) {
-		purple_util_fetch_url_error(gfud, _("Error writing to %s: %s"),
-				gfud->website.address, g_strerror(errno));
-		return;
-	}
-	gfud->request_written += len;
-	if (gfud->request_written < total_len)
-		return;
-	/* We're done writing our request, now start reading the response */
-	purple_input_remove(gfud->inpa);
-	gfud->inpa = purple_input_add(gfud->fd, PURPLE_INPUT_READ, url_fetch_recv_cb,
-		gfud);
-}
-static void
-url_fetch_connect_cb(gpointer url_data, gint source, const gchar *error_message)
-{
-	PurpleUtilFetchUrlData *gfud;
-	gfud = url_data;
-	gfud->connect_data = NULL;
-	if (source == -1)
-	{
-		purple_util_fetch_url_error(gfud, _("Unable to connect to %s: %s"),
-				(gfud->website.address ? gfud->website.address : ""), error_message);
-		return;
-	}
-	gfud->fd = source;
-	if (!gfud->request) {
 		if (gfud->user_agent) {
-			/* Host header is not forbidden in HTTP/1.0 requests, and HTTP/1.1
-			 * clients must know how to handle the "chunked" transfer encoding.
-			 * Purple doesn't know how to handle "chunked", so should always send
-			 * the Host header regardless, to get around some observed problems
-			 */
 			gfud->request = g_strdup_printf(
 				"GET %s%s HTTP/%s\r\n"
 				"Connection: close\r\n"
 				"User-Agent: %s\r\n"
 				"Accept: */*\r\n"
 		}
 	}
 	purple_debug_misc("util", "Request: '%s'\n", gfud->request);
+	total_len = strlen(gfud->request);
+	if (gfud->is_ssl)
+		len = purple_ssl_write(gfud->ssl_connection, gfud->request + gfud->request_written,
+				total_len - gfud->request_written);
+	else
+		len = write(gfud->fd, gfud->request + gfud->request_written,
+				total_len - gfud->request_written);
+	if (len < 0 && errno == EAGAIN)
+		return;
+	else if (len < 0) {
+		purple_util_fetch_url_error(gfud, _("Error writing to %s: %s"),
+				gfud->website.address, g_strerror(errno));
+		return;
+	}
+	gfud->request_written += len;
+	if (gfud->request_written < total_len)
+		return;
+	/* We're done writing our request, now start reading the response */
+	if (gfud->is_ssl) {
+		purple_input_remove(gfud->inpa);
+		gfud->inpa = 0;
+		purple_ssl_input_add(gfud->ssl_connection, ssl_url_fetch_recv_cb, gfud);
+	} else {
+		purple_input_remove(gfud->inpa);
+		gfud->inpa = purple_input_add(gfud->fd, PURPLE_INPUT_READ, url_fetch_recv_cb,
+			gfud);
+	}
+}
+static void
+url_fetch_connect_cb(gpointer url_data, gint source, const gchar *error_message)
+{
+	PurpleUtilFetchUrlData *gfud;
+	gfud = url_data;
+	gfud->connect_data = NULL;
+	if (source == -1)
+	{
+		purple_util_fetch_url_error(gfud, _("Unable to connect to %s: %s"),
+				(gfud->website.address ? gfud->website.address : ""), error_message);
+		return;
+	}
+	gfud->fd = source;
 	gfud->inpa = purple_input_add(source, PURPLE_INPUT_WRITE,
 								url_fetch_send_cb, gfud);
 	url_fetch_send_cb(gfud, source, PURPLE_INPUT_WRITE);
+}
+static void ssl_url_fetch_connect_cb(gpointer data, PurpleSslConnection *ssl_connection, PurpleInputCondition cond)
+{
+	PurpleUtilFetchUrlData *gfud;
+	gfud = data;
+	gfud->inpa = purple_input_add(ssl_connection->fd, PURPLE_INPUT_WRITE,
+			url_fetch_send_cb, gfud);
+	url_fetch_send_cb(gfud, ssl_connection->fd, PURPLE_INPUT_WRITE);
+}
+static void ssl_url_fetch_error_cb(PurpleSslConnection *ssl_connection, PurpleSslErrorType error, gpointer data)
+{
+	PurpleUtilFetchUrlData *gfud;
+	gfud = data;
+	gfud->ssl_connection = NULL;
+	purple_util_fetch_url_error(gfud, _("Unable to connect to %s: %s"),
+			(gfud->website.address ? gfud->website.address : ""),
+	purple_ssl_strerror(error));
 }
 PurpleUtilFetchUrlData *
 purple_util_fetch_url_request(const char *url, gboolean full,
 		const char *user_agent, gboolean http11,
 {
 	return purple_util_fetch_url_request_len(url, full,
 					     user_agent, http11,
 					     request, include_headers, -1,
 					     callback, user_data);
-}
-static gboolean
-url_fetch_connect_failed(gpointer data)
-{
-	url_fetch_connect_cb(data, -1, "");
-	return FALSE;
 }
 PurpleUtilFetchUrlData *
 purple_util_fetch_url_request_len(const char *url, gboolean full,
 		const char *user_agent, gboolean http11,
 	gfud->max_len = max_len;
 	purple_url_parse(url, &gfud->website.address, &gfud->website.port,
 				   &gfud->website.page, &gfud->website.user, &gfud->website.passwd);
-	gfud->connect_data = purple_proxy_connect(NULL, NULL,
+	if (purple_strcasestr(url, "https://") != NULL) {
-			gfud->website.address, gfud->website.port,
+		gfud->is_ssl = TRUE;
-			url_fetch_connect_cb, gfud);
+		gfud->ssl_connection = purple_ssl_connect(NULL,
+				gfud->website.address, gfud->website.port,
-	if (gfud->connect_data == NULL)
+				ssl_url_fetch_connect_cb, ssl_url_fetch_error_cb, gfud);
-	{
+	} else {
-		/* Trigger the connect_cb asynchronously. */
+		gfud->connect_data = purple_proxy_connect(NULL, NULL,
-		purple_timeout_add(10, url_fetch_connect_failed, gfud);
+				gfud->website.address, gfud->website.port,
+				url_fetch_connect_cb, gfud);
+	}
+	if (gfud->ssl_connection == NULL && gfud->connect_data == NULL)
+	{
+		purple_util_fetch_url_error(gfud, _("Unable to connect to %s"),
+				gfud->website.address);
+		return NULL;
 	}
 	return gfud;
 }
 void
 purple_util_fetch_url_cancel(PurpleUtilFetchUrlData *gfud)
 {
+	if (gfud->ssl_connection != NULL)
+		purple_ssl_close(gfud->ssl_connection);
 	if (gfud->connect_data != NULL)
 		purple_proxy_connect_cancel(gfud->connect_data);
 	if (gfud->inpa > 0)
 		purple_input_remove(gfud->inpa);

Mercurial > pidgin

comparison libpurple/util.c @ 24592:104f6f755c7e