2015-04-13 11:09:02 +02:00
/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4; fill-column: 100 -*- */
2015-03-05 00:14:04 +01:00
/*
* This Source Code Form is subject to the terms of the Mozilla Public
* License , v . 2.0 . If a copy of the MPL was not distributed with this
* file , You can obtain one at http : //mozilla.org/MPL/2.0/.
*/
2017-12-20 14:06:26 +01:00
# include <config.h>
2022-08-07 10:29:45 +02:00
# include <config_version.h>
2021-12-31 19:36:35 +01:00
# include <stdexcept>
2021-11-18 13:08:14 +01:00
# include "COOLWSD.hpp"
2019-11-07 16:24:37 +01:00
# include "ProofKey.hpp"
2022-02-08 06:50:09 +01:00
# include "CommandControl.hpp"
2022-03-24 11:23:34 +01:00
# include "HostUtil.hpp"
2017-03-08 17:38:22 +01:00
2016-07-18 13:45:36 +02:00
/* Default host used in the start test URI */
2021-11-18 13:08:14 +01:00
# define COOLWSD_TEST_HOST "localhost"
2016-07-18 13:45:36 +02:00
2021-11-03 15:31:18 +01:00
/* Default cool UI used in the admin console URI */
2021-11-18 13:08:14 +01:00
# define COOLWSD_TEST_ADMIN_CONSOLE " / browser / dist / admin / admin.html"
2016-12-08 18:47:03 +01:00
2021-11-03 15:31:18 +01:00
/* Default cool UI used in for monitoring URI */
2021-11-18 13:08:14 +01:00
# define COOLWSD_TEST_METRICS " / cool / getMetrics"
2019-11-25 13:06:07 +01:00
2021-11-03 15:31:18 +01:00
/* Default cool UI used in the start test URI */
2021-11-18 13:08:14 +01:00
# define COOLWSD_TEST_COOL_UI " / browser / " COOLWSD_VERSION_HASH " / debug.html"
2016-07-18 13:45:36 +02:00
/* Default document used in the start test URI */
2021-11-18 13:08:14 +01:00
# define COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_WRITER "test / data / hello-world.odt"
# define COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_CALC "test / data / hello-world.ods"
# define COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_IMPRESS "test / data / hello-world.odp"
# define COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_DRAW "test / data / hello-world.odg"
2016-07-18 13:45:36 +02:00
2019-07-27 01:31:55 +02:00
/* Default ciphers used, when not specified otherwise */
# define DEFAULT_CIPHER_SET "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH"
2021-11-18 13:08:14 +01:00
// This is the main source for the coolwsd program. COOL uses several coolwsd processes: one main
2021-11-15 17:00:44 +01:00
// parent process that listens on the TCP port and accepts connections from COOL clients, and a
2015-04-10 14:20:04 +02:00
// number of child processes, each which handles a viewing (editing) session for one document.
2015-04-08 16:22:42 +02:00
# include <unistd.h>
2020-02-07 15:14:21 +01:00
# include <stdlib.h>
2019-11-06 10:07:32 +01:00
# include <sysexits.h>
2015-04-08 16:22:42 +02:00
2016-10-30 02:15:00 +01:00
# include <sys/types.h>
2016-04-04 08:36:27 +02:00
# include <sys/wait.h>
2020-08-08 22:05:17 +02:00
# include <sys/resource.h>
2015-04-16 18:15:40 +02:00
# include <cassert>
2016-08-31 16:02:29 +02:00
# include <cerrno>
# include <clocale>
2016-04-10 08:37:51 +02:00
# include <condition_variable>
2015-03-28 12:55:35 +01:00
# include <cstdlib>
2015-04-14 16:50:38 +02:00
# include <cstring>
2016-08-31 16:02:29 +02:00
# include <ctime>
2019-07-19 12:39:59 +02:00
# include <chrono>
loolwsd: include cleanup and organization
A source file (.cpp) must include its own header first.
This insures that the header is self-contained and
doesn't depend on arbitrary (and accidental) includes
before it to compile.
Furthermore, system headers should go next, followed by
C then C++ headers, then libraries (Poco, etc) and, finally,
project headers come last.
This makes sure that headers and included in the same dependency
order to avoid side-effects. For example, Poco should never rely on
anything from our project in the same way that a C header should
never rely on anything in C++, Poco, or project headers.
Also, includes ought to be sorted where possible, to improve
readability and avoid accidental duplicates (of which there
were a few).
Change-Id: I62cc1343e4a091d69195e37ed659dba20cfcb1ef
Reviewed-on: https://gerrit.libreoffice.org/25262
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
Tested-by: Ashod Nakashian <ashnakash@gmail.com>
2016-05-21 16:23:07 +02:00
# include <fstream>
2015-03-05 00:14:04 +01:00
# include <iostream>
2016-03-22 19:27:38 +01:00
# include <map>
2015-07-13 16:13:06 +02:00
# include <mutex>
2016-03-08 08:31:29 +01:00
# include <sstream>
2021-03-20 23:06:09 +01:00
# include <string>
2016-04-14 17:22:19 +02:00
# include <thread>
2020-07-28 16:52:14 +02:00
# include <unordered_map>
2015-03-05 00:14:04 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-05 14:11:05 +02:00
# include <Poco/Net/Context.h>
# include <Poco/Net/HTMLForm.h>
# include <Poco/Net/HTTPRequest.h>
# include <Poco/Net/IPAddress.h>
# include <Poco/Net/MessageHeader.h>
# include <Poco/Net/NameValueCollection.h>
# include <Poco/Net/Net.h>
# include <Poco/Net/NetException.h>
# include <Poco/Net/PartHandler.h>
# include <Poco/Net/SocketAddress.h>
2020-10-26 13:55:54 +01:00
# include <net/HttpHelper.hpp>
2022-02-08 06:50:09 +01:00
# include <Poco/Net/AcceptCertificateHandler.h>
# include <Poco/Net/Context.h>
# include <Poco/Net/KeyConsoleHandler.h>
# include <Poco/Net/SSLManager.h>
2018-09-05 14:11:05 +02:00
using Poco : : Net : : HTMLForm ;
using Poco : : Net : : PartHandler ;
# endif
2016-03-22 16:25:35 +01:00
# include <Poco/DOM/AutoPtr.h>
# include <Poco/DOM/DOMParser.h>
# include <Poco/DOM/DOMWriter.h>
# include <Poco/DOM/Document.h>
# include <Poco/DOM/Element.h>
# include <Poco/DOM/NodeList.h>
2018-07-12 14:50:04 +02:00
# include <Poco/DateTimeFormatter.h>
# include <Poco/DirectoryIterator.h>
2015-05-08 14:46:10 +02:00
# include <Poco/Exception.h>
2015-04-16 18:15:40 +02:00
# include <Poco/File.h>
2016-02-24 08:39:23 +01:00
# include <Poco/FileStream.h>
2017-02-25 17:55:24 +01:00
# include <Poco/MemoryStream.h>
2018-10-24 12:37:58 +02:00
# include <Poco/Net/DNS.h>
# include <Poco/Net/HostEntry.h>
2015-04-16 18:15:40 +02:00
# include <Poco/Path.h>
2016-03-22 16:25:35 +01:00
# include <Poco/SAX/InputSource.h>
2016-02-24 08:39:23 +01:00
# include <Poco/StreamCopier.h>
# include <Poco/TemporaryFile.h>
# include <Poco/URI.h>
2017-11-07 14:12:18 +01:00
# include <Poco/Util/AbstractConfiguration.h>
2015-03-05 00:14:04 +01:00
# include <Poco/Util/HelpFormatter.h>
2016-06-25 14:20:56 +02:00
# include <Poco/Util/MapConfiguration.h>
2015-03-05 00:14:04 +01:00
# include <Poco/Util/Option.h>
2015-04-08 16:22:42 +02:00
# include <Poco/Util/OptionException.h>
2015-03-05 00:14:04 +01:00
# include <Poco/Util/OptionSet.h>
# include <Poco/Util/ServerApplication.h>
2017-11-07 14:12:18 +01:00
# include <Poco/Util/XMLConfiguration.h>
2015-03-05 00:14:04 +01:00
2016-02-16 00:05:24 +01:00
# include "Admin.hpp"
# include "Auth.hpp"
loolwsd: include cleanup and organization
A source file (.cpp) must include its own header first.
This insures that the header is self-contained and
doesn't depend on arbitrary (and accidental) includes
before it to compile.
Furthermore, system headers should go next, followed by
C then C++ headers, then libraries (Poco, etc) and, finally,
project headers come last.
This makes sure that headers and included in the same dependency
order to avoid side-effects. For example, Poco should never rely on
anything from our project in the same way that a C header should
never rely on anything in C++, Poco, or project headers.
Also, includes ought to be sorted where possible, to improve
readability and avoid accidental duplicates (of which there
were a few).
Change-Id: I62cc1343e4a091d69195e37ed659dba20cfcb1ef
Reviewed-on: https://gerrit.libreoffice.org/25262
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
Tested-by: Ashod Nakashian <ashnakash@gmail.com>
2016-05-21 16:23:07 +02:00
# include "ClientSession.hpp"
2017-12-20 14:06:26 +01:00
# include <Common.hpp>
2019-07-04 11:50:33 +02:00
# include <Clipboard.hpp>
2017-12-20 14:06:26 +01:00
# include <Crypto.hpp>
# include <DelaySocket.hpp>
2016-12-21 21:37:22 +01:00
# include "DocumentBroker.hpp"
2016-04-16 18:56:23 +02:00
# include "Exceptions.hpp"
2016-03-20 11:59:32 +01:00
# include "FileServer.hpp"
2022-06-22 16:18:03 +02:00
# include "ProxyRequestHandler.hpp"
2022-02-08 06:50:09 +01:00
# include <common/JsonUtil.hpp>
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
# include <common/FileUtil.hpp>
# include <common/JailUtil.hpp>
2019-02-12 12:16:40 +01:00
# if defined KIT_IN_PROCESS || MOBILEAPP
2017-11-08 09:34:37 +01:00
# include <Kit.hpp>
# endif
2017-12-20 14:06:26 +01:00
# include <Log.hpp>
2020-04-24 09:46:54 +02:00
# include <MobileApp.hpp>
2017-12-20 14:06:26 +01:00
# include <Protocol.hpp>
# include <Session.hpp>
2017-02-27 06:01:17 +01:00
# if ENABLE_SSL
2017-12-20 14:06:26 +01:00
# include <SslSocket.hpp>
2017-02-27 06:01:17 +01:00
# endif
2016-03-26 03:56:18 +01:00
# include "Storage.hpp"
2016-08-18 01:57:38 +02:00
# include "TraceFile.hpp"
2017-12-20 14:06:26 +01:00
# include <Unit.hpp>
loolwsd: include cleanup and organization
A source file (.cpp) must include its own header first.
This insures that the header is self-contained and
doesn't depend on arbitrary (and accidental) includes
before it to compile.
Furthermore, system headers should go next, followed by
C then C++ headers, then libraries (Poco, etc) and, finally,
project headers come last.
This makes sure that headers and included in the same dependency
order to avoid side-effects. For example, Poco should never rely on
anything from our project in the same way that a C header should
never rely on anything in C++, Poco, or project headers.
Also, includes ought to be sorted where possible, to improve
readability and avoid accidental duplicates (of which there
were a few).
Change-Id: I62cc1343e4a091d69195e37ed659dba20cfcb1ef
Reviewed-on: https://gerrit.libreoffice.org/25262
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
Tested-by: Ashod Nakashian <ashnakash@gmail.com>
2016-05-21 16:23:07 +02:00
# include "UserMessages.hpp"
2017-12-20 14:06:26 +01:00
# include <Util.hpp>
2021-03-27 22:40:59 +01:00
# include <common/ConfigUtil.hpp>
2021-06-01 12:21:09 +02:00
# include <common/TraceEvent.hpp>
2017-02-06 23:26:38 +01:00
2017-12-20 14:06:26 +01:00
# include <common/SigUtil.hpp>
2016-11-14 14:58:04 +01:00
2018-09-13 18:16:00 +02:00
# include <ServerSocket.hpp>
2019-02-12 12:16:40 +01:00
# if MOBILEAPP
2018-09-13 18:16:00 +02:00
# ifdef IOS
# include "ios.h"
2019-02-12 10:15:51 +01:00
# elif GTKAPP
2018-10-17 09:26:01 +02:00
# include "gtk.hpp"
2019-02-12 10:15:51 +01:00
# elif defined(__ANDROID__)
2019-02-13 15:09:37 +01:00
# include "androidapp.hpp"
Start on a gtk+-based workalike to the iOS app
The idea is that it would work sufficiently identically, so that even
people without a Mac and without an iOS device could participate in
development of the non-iOS-specific bits, like the JavaScript, or the
online MOBILEAPP-specific plumbing. Which would be great.
No, this doesn't do anything sane yet. It does compile the same online
C++ files as the iOS app, though. (Some minor tweaks were needed in a
couple of them to silence gcc warnings.)
There is a plain Makefile, but I should change to using autofoo, too.
Eventually, this will need to be built in a separate tree from a
normal online, just like when using the --enable-iosapp configure
switch. (But for now, doesn't matter.)
Change-Id: I13e4d921acb99d802d2f9da4b0df4a237ca60ad6
2018-10-16 23:40:49 +02:00
# endif
2018-09-13 18:16:00 +02:00
# endif
2021-11-18 13:08:14 +01:00
using namespace COOLProtocol ;
2015-04-14 16:50:38 +02:00
2017-11-07 14:12:18 +01:00
using Poco : : DirectoryIterator ;
2015-05-29 07:49:49 +02:00
using Poco : : Exception ;
2015-04-16 18:15:40 +02:00
using Poco : : File ;
2015-03-05 00:14:04 +01:00
using Poco : : Net : : HTTPRequest ;
using Poco : : Net : : HTTPResponse ;
2016-02-24 08:39:23 +01:00
using Poco : : Net : : MessageHeader ;
using Poco : : Net : : NameValueCollection ;
2015-04-16 18:15:40 +02:00
using Poco : : Path ;
2016-02-24 08:39:23 +01:00
using Poco : : StreamCopier ;
using Poco : : URI ;
2015-03-05 00:14:04 +01:00
using Poco : : Util : : Application ;
using Poco : : Util : : HelpFormatter ;
2022-02-08 06:50:09 +01:00
using Poco : : Util : : LayeredConfiguration ;
2015-04-08 16:22:42 +02:00
using Poco : : Util : : MissingOptionException ;
2015-03-05 00:14:04 +01:00
using Poco : : Util : : Option ;
using Poco : : Util : : OptionSet ;
using Poco : : Util : : ServerApplication ;
2017-11-07 14:12:18 +01:00
using Poco : : Util : : XMLConfiguration ;
2016-03-15 16:35:59 +01:00
using Poco : : XML : : AutoPtr ;
using Poco : : XML : : DOMParser ;
using Poco : : XML : : DOMWriter ;
2016-03-22 16:25:35 +01:00
using Poco : : XML : : Element ;
using Poco : : XML : : InputSource ;
2017-11-08 09:34:37 +01:00
using Poco : : XML : : NodeList ;
2015-03-05 00:14:04 +01:00
2018-01-09 15:02:02 +01:00
/// Port for external clients to connect to
2016-04-14 19:04:19 +02:00
int ClientPortNumber = DEFAULT_CLIENT_PORT_NUMBER ;
2018-01-09 15:02:02 +01:00
/// Protocols to listen on
Socket : : Type ClientPortProto = Socket : : Type : : All ;
2018-10-01 20:17:35 +02:00
/// INET address to listen on
ServerSocket : : Type ClientListenAddr = ServerSocket : : Type : : Public ;
2019-03-30 15:06:16 +01:00
# if !MOBILEAPP
/// UDS address for kits to connect to.
std : : string MasterLocation ;
2022-05-05 22:06:41 +02:00
std : : string COOLWSD : : LatestVersion ;
std : : mutex COOLWSD : : FetchUpdateMutex ;
2019-03-30 15:06:16 +01:00
# endif
2016-04-14 19:04:19 +02:00
2017-03-08 19:48:07 +01:00
// Tracks the set of prisoners / children waiting to be used.
2016-10-16 23:56:25 +02:00
static std : : mutex NewChildrenMutex ;
static std : : condition_variable NewChildrenCV ;
2017-03-08 19:48:07 +01:00
static std : : vector < std : : shared_ptr < ChildProcess > > NewChildren ;
2016-10-16 23:56:25 +02:00
static std : : chrono : : steady_clock : : time_point LastForkRequestTime = std : : chrono : : steady_clock : : now ( ) ;
2017-01-15 23:46:28 +01:00
static std : : atomic < int > OutstandingForks ( 0 ) ;
2017-01-10 16:32:16 +01:00
static std : : map < std : : string , std : : shared_ptr < DocumentBroker > > DocBrokers ;
2016-10-16 23:56:25 +02:00
static std : : mutex DocBrokersMutex ;
2021-03-27 14:39:03 +01:00
static Poco : : AutoPtr < Poco : : Util : : XMLConfiguration > KitXmlConfig ;
2016-04-09 17:54:22 +02:00
2022-06-14 04:17:40 +02:00
extern " C "
{
void dump_state ( void ) ; /* easy for gdb */
void forwardSigUsr2 ( ) ;
}
2017-03-03 22:18:55 +01:00
2016-04-12 12:48:42 +02:00
# if ENABLE_DEBUG
2020-12-14 20:00:55 +01:00
static std : : chrono : : milliseconds careerSpanMs ( std : : chrono : : milliseconds : : zero ( ) ) ;
2016-04-12 12:48:42 +02:00
# endif
2016-01-07 06:16:47 +01:00
2019-10-18 14:10:12 +02:00
/// The timeout for a child to spawn, initially high, then reset to the default.
int ChildSpawnTimeoutMs = CHILD_TIMEOUT_MS * 4 ;
2021-11-18 13:08:14 +01:00
std : : atomic < unsigned > COOLWSD : : NumConnections ;
std : : unordered_set < std : : string > COOLWSD : : EditFileExtensions ;
std : : unordered_set < std : : string > COOLWSD : : ViewWithCommentsFileExtensions ;
2018-09-05 14:11:05 +02:00
2019-02-12 12:16:40 +01:00
# if MOBILEAPP
2018-10-30 20:52:26 +01:00
2019-05-27 13:58:02 +02:00
// Or can this be retrieved in some other way?
2021-11-18 13:08:14 +01:00
int COOLWSD : : prisonerServerSocketFD ;
2018-10-30 20:52:26 +01:00
# else
/// Funky latency simulation basic delay (ms)
wsd: avoid static SocketPoll
The lifetime management of static objects
is extremely unpredictable and depends on
many variables outside of our control or
even reliable reproducibility.
Complex static objects that own threads
and other objects are doubly problematic
because of their dependency and/or
interaction with other objects.
Here we replace the static DelayPoll
instance with one we control its lifetime
in the LOOLWSD main body, such that it
is destroyed properly.
Specifically, DelayPoll's dtor was
accessing Poco's Logging subsystem out of
order. That is, after Poco had been
destroyed.
Another advantage to this approach is that
we don't even create the DelayPoll at all
if we don't need it. The onus now is on
the user of DelayPoll to make sure they
create a Delay object with a long-enough
lifetime to encompase it use.
For completeness, here is the stacktrace:
terminate called after throwing an instance of 'std::bad_alloc'
what(): std::bad_alloc
Program received signal SIGABRT, Aborted.
__GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
51 ../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
(gdb) bt
#0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
#1 0x00007ffff613f801 in __GI_abort () at abort.c:79
#2 0x00007ffff6d51957 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#3 0x00007ffff6d57ae6 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#4 0x00007ffff6d56b49 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#5 0x00007ffff6d574b8 in __gxx_personality_v0 () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#6 0x00007ffff671f573 in ?? () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#7 0x00007ffff671fad1 in _Unwind_RaiseException () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#8 0x00007ffff6d57d47 in __cxa_throw () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#9 0x00007ffff6d582dc in operator new(unsigned long) () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#10 0x00005555556b5927 in void std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::_M_construct<char*>(char*, char*, std::forward_iterator_tag) [clone .isra.41] ()
#11 0x0000555555982a14 in Poco::Message::Message(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, Poco::Message::Priority) ()
#12 0x000055555585a909 in SocketPoll::~SocketPoll (this=0x555555d10f60 <DelayPoll>, __in_chrg=<optimized out>) at net/Socket.cpp:145
#13 0x00007ffff6142041 in __run_exit_handlers (status=0, listp=0x7ffff64ea718 <__exit_funcs>, run_list_atexit=run_list_atexit@entry=true, run_dtors=run_dtors@entry=true) at exit.c:108
#14 0x00007ffff614213a in __GI_exit (status=<optimized out>) at exit.c:139
#15 0x0000555555752d78 in LOOLWSD::innerInitialize (this=<optimized out>, self=...) at wsd/LOOLWSD.cpp:1213
#16 0x0000555555788b07 in LOOLWSD::initialize (this=<optimized out>, self=...) at wsd/LOOLWSD.hpp:432
#17 0x00005555558dd7e4 in Poco::Util::Application::run() ()
#18 0x00005555556b6574 in main (argc=2, argv=0x7fffffffe528) at wsd/LOOLWSD.cpp:4276
Change-Id: Ifda55fe869fa6734b9c2490da4497d2551ac21c1
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2021-03-13 14:52:16 +01:00
static std : : size_t SimulatedLatencyMs = 0 ;
2018-10-30 20:52:26 +01:00
2018-09-13 18:16:00 +02:00
# endif
2018-09-05 14:11:05 +02:00
2016-10-30 02:15:00 +01:00
namespace
{
2016-09-29 15:48:09 +02:00
2018-02-26 16:08:36 +01:00
# if ENABLE_SUPPORT_KEY
2020-03-11 18:05:20 +01:00
inline void shutdownLimitReached ( const std : : shared_ptr < ProtocolHandlerInterface > & proto )
2016-09-29 15:48:09 +02:00
{
2020-03-04 14:54:04 +01:00
if ( ! proto )
return ;
2021-11-18 13:08:14 +01:00
const std : : string error = Poco : : format ( PAYLOAD_UNAVAILABLE_LIMIT_REACHED , COOLWSD : : MaxDocuments , COOLWSD : : MaxConnections ) ;
2018-02-13 16:36:38 +01:00
LOG_INF ( " Sending client 'hardlimitreached' message: " < < error ) ;
2016-09-29 15:48:09 +02:00
try
{
2017-03-01 07:21:49 +01:00
// Let the client know we are shutting down.
2020-03-20 18:04:29 +01:00
proto - > sendTextMessage ( error . data ( ) , error . size ( ) ) ;
2016-09-29 15:48:09 +02:00
2017-03-01 07:21:49 +01:00
// Shutdown.
2020-03-11 18:05:20 +01:00
proto - > shutdown ( true , error ) ;
2016-09-29 15:48:09 +02:00
}
2016-10-22 17:41:54 +02:00
catch ( const std : : exception & ex )
2016-09-29 15:48:09 +02:00
{
2020-02-05 14:47:14 +01:00
LOG_ERR ( " Error while shutting down socket on reaching limit: " < < ex . what ( ) ) ;
2016-09-29 15:48:09 +02:00
}
}
2018-02-26 16:08:36 +01:00
# endif
2016-09-29 15:48:09 +02:00
2020-03-16 17:19:37 +01:00
# if !MOBILEAPP
/// Internal implementation to alert all clients
/// connected to any document.
void alertAllUsersInternal ( const std : : string & msg )
{
std : : lock_guard < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
2020-05-24 15:10:18 +02:00
LOG_INF ( " Alerting all users: [ " < < msg < < ' ] ' ) ;
2020-03-16 17:19:37 +01:00
if ( UnitWSD : : get ( ) . filterAlertAllusers ( msg ) )
return ;
for ( auto & brokerIt : DocBrokers )
{
std : : shared_ptr < DocumentBroker > docBroker = brokerIt . second ;
docBroker - > addCallback ( [ msg , docBroker ] ( ) { docBroker - > alertAllUsers ( msg ) ; } ) ;
}
}
# endif
} // end anonymous namespace
2021-11-18 13:08:14 +01:00
void COOLWSD : : writeTraceEventRecording ( const char * data , std : : size_t nbytes )
2021-06-18 13:53:51 +02:00
{
static std : : mutex traceEventFileMutex ;
std : : unique_lock < std : : mutex > lock ( traceEventFileMutex ) ;
2021-11-18 13:08:14 +01:00
fwrite ( data , nbytes , 1 , COOLWSD : : TraceEventFile ) ;
2021-06-18 13:53:51 +02:00
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : writeTraceEventRecording ( const std : : string & recording )
2021-06-18 13:53:51 +02:00
{
writeTraceEventRecording ( recording . data ( ) , recording . length ( ) ) ;
}
2022-08-06 04:20:16 +02:00
# if !LIBFUZZER
2021-06-18 13:53:51 +02:00
// FIXME: Somewhat idiotically, the parameter to emitOneRecordingIfEnabled() should end with a
// newline, while the paramter to emitOneRecording() should not.
void TraceEvent : : emitOneRecordingIfEnabled ( const std : : string & recording )
2021-05-25 11:22:16 +02:00
{
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : TraceEventFile = = NULL )
2021-05-25 11:22:16 +02:00
return ;
2021-11-18 13:08:14 +01:00
COOLWSD : : writeTraceEventRecording ( recording ) ;
2021-06-18 13:53:51 +02:00
}
2021-06-17 11:55:44 +02:00
2021-06-18 13:53:51 +02:00
void TraceEvent : : emitOneRecording ( const std : : string & recording )
{
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : TraceEventFile = = NULL )
2021-06-18 13:53:51 +02:00
return ;
if ( ! TraceEvent : : isRecordingOn ( ) )
return ;
2021-06-17 11:55:44 +02:00
2021-11-18 13:08:14 +01:00
COOLWSD : : writeTraceEventRecording ( recording + " \n " ) ;
2021-05-25 11:22:16 +02:00
}
2022-08-06 04:20:16 +02:00
# endif //!LIBFUZZER
2021-11-18 13:08:14 +01:00
void COOLWSD : : checkSessionLimitsAndWarnClients ( )
2018-02-13 16:36:38 +01:00
{
2020-03-16 17:19:37 +01:00
# if !ENABLE_SUPPORT_KEY
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2019-10-04 11:30:49 +02:00
ssize_t docBrokerCount = DocBrokers . size ( ) - ConvertToBroker : : getInstanceCount ( ) ;
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : MaxDocuments < 10000 & &
( docBrokerCount > static_cast < ssize_t > ( COOLWSD : : MaxDocuments ) | | COOLWSD : : NumConnections > = COOLWSD : : MaxConnections ) )
2018-02-13 16:36:38 +01:00
{
2021-11-18 13:08:14 +01:00
const std : : string info = Poco : : format ( PAYLOAD_INFO_LIMIT_REACHED , COOLWSD : : MaxDocuments , COOLWSD : : MaxConnections ) ;
2018-02-24 02:59:59 +01:00
LOG_INF ( " Sending client 'limitreached' message: " < < info ) ;
try
{
Util : : alertAllUsers ( info ) ;
}
catch ( const std : : exception & ex )
{
2020-02-05 14:47:14 +01:00
LOG_ERR ( " Error while shutting down socket on reaching limit: " < < ex . what ( ) ) ;
2018-02-24 02:59:59 +01:00
}
2018-02-13 16:36:38 +01:00
}
2018-09-13 18:16:00 +02:00
# endif
Start on a gtk+-based workalike to the iOS app
The idea is that it would work sufficiently identically, so that even
people without a Mac and without an iOS device could participate in
development of the non-iOS-specific bits, like the JavaScript, or the
online MOBILEAPP-specific plumbing. Which would be great.
No, this doesn't do anything sane yet. It does compile the same online
C++ files as the iOS app, though. (Some minor tweaks were needed in a
couple of them to silence gcc warnings.)
There is a plain Makefile, but I should change to using autofoo, too.
Eventually, this will need to be built in a separate tree from a
normal online, just like when using the --enable-iosapp configure
switch. (But for now, doesn't matter.)
Change-Id: I13e4d921acb99d802d2f9da4b0df4a237ca60ad6
2018-10-16 23:40:49 +02:00
# endif
2020-03-16 17:19:37 +01:00
}
2018-02-24 02:59:59 +01:00
2021-11-18 13:08:14 +01:00
void COOLWSD : : checkDiskSpaceAndWarnClients ( const bool cacheLastCheck )
2018-02-24 02:59:59 +01:00
{
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-02-24 02:59:59 +01:00
try
{
const std : : string fs = FileUtil : : checkDiskSpaceOnRegisteredFileSystems ( cacheLastCheck ) ;
if ( ! fs . empty ( ) )
{
LOG_WRN ( " File system of [ " < < fs < < " ] is dangerously low on disk space. " ) ;
alertAllUsersInternal ( " error: cmd=internal kind=diskfull " ) ;
}
}
catch ( const std : : exception & exc )
{
2021-02-05 22:22:09 +01:00
LOG_ERR ( " Exception while checking disk-space and warning clients: " < < exc . what ( ) ) ;
2018-02-24 02:59:59 +01:00
}
2018-09-13 18:16:00 +02:00
# endif
2018-02-24 02:59:59 +01:00
}
2017-01-01 23:31:49 +01:00
/// Remove dead and idle DocBrokers.
/// The client of idle document should've greyed-out long ago.
2017-04-05 22:31:15 +02:00
void cleanupDocBrokers ( )
2016-10-23 21:59:22 +02:00
{
Util : : assertIsLocked ( DocBrokersMutex ) ;
2018-02-07 10:17:59 +01:00
const size_t count = DocBrokers . size ( ) ;
2016-10-23 21:59:22 +02:00
for ( auto it = DocBrokers . begin ( ) ; it ! = DocBrokers . end ( ) ; )
{
2018-02-07 10:17:59 +01:00
std : : shared_ptr < DocumentBroker > docBroker = it - > second ;
2017-03-13 03:31:50 +01:00
2017-04-06 18:58:41 +02:00
// Remove only when not alive.
if ( ! docBroker - > isAlive ( ) )
2017-02-10 07:43:32 +01:00
{
2017-04-06 18:58:41 +02:00
LOG_INF ( " Removing DocumentBroker for docKey [ " < < it - > first < < " ]. " ) ;
2019-10-04 11:30:49 +02:00
docBroker - > dispose ( ) ;
2017-04-06 18:58:41 +02:00
it = DocBrokers . erase ( it ) ;
continue ;
} else {
+ + it ;
2017-02-10 07:43:32 +01:00
}
2016-10-23 21:59:22 +02:00
}
2016-12-21 16:33:48 +01:00
if ( count ! = DocBrokers . size ( ) )
{
2018-02-07 10:17:59 +01:00
Log : : StreamLogger logger = Log : : trace ( ) ;
2017-03-13 03:31:50 +01:00
if ( logger . enabled ( ) )
2016-12-21 16:33:48 +01:00
{
2017-03-13 03:31:50 +01:00
logger < < " Have " < < DocBrokers . size ( ) < < " DocBrokers after cleanup. \n " ;
for ( auto & pair : DocBrokers )
{
logger < < " DocumentBroker [ " < < pair . first < < " ]. \n " ;
}
2022-04-17 15:31:09 +02:00
LOG_END ( logger ) ;
2016-12-21 16:33:48 +01:00
}
2020-03-04 20:38:17 +01:00
2020-03-09 10:05:21 +01:00
# if !MOBILEAPP && ENABLE_DEBUG
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : SingleKit & & DocBrokers . size ( ) = = 0 )
2020-03-04 20:38:17 +01:00
{
2021-04-13 04:26:06 +02:00
LOG_DBG ( " Setting ShutdownRequestFlag: No more docs left in single-kit mode. " ) ;
2020-03-04 20:38:17 +01:00
SigUtil : : requestShutdown ( ) ;
}
# endif
2016-12-21 16:33:48 +01:00
}
2016-10-23 21:59:22 +02:00
}
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2017-01-01 22:52:36 +01:00
/// Forks as many children as requested.
2017-01-17 05:09:55 +01:00
/// Returns the number of children requested to spawn,
/// -1 for error.
2017-03-20 05:41:43 +01:00
static int forkChildren ( const int number )
2016-04-04 16:17:03 +02:00
{
2019-05-04 23:50:00 +02:00
LOG_TRC ( " Request forkit to spawn " < < number < < " new child(ren) " ) ;
2016-10-16 23:56:25 +02:00
Util : : assertIsLocked ( NewChildrenMutex ) ;
2016-04-04 16:17:03 +02:00
2016-04-09 22:53:33 +02:00
if ( number > 0 )
{
2021-11-18 13:08:14 +01:00
COOLWSD : : checkDiskSpaceAndWarnClients ( false ) ;
2016-11-23 04:06:50 +01:00
2017-02-06 23:26:38 +01:00
# ifdef KIT_IN_PROCESS
2020-12-13 00:45:06 +01:00
forkLibreOfficeKit ( COOLWSD : : ChildRoot , COOLWSD : : SysTemplate , COOLWSD : : LoTemplate , number ) ;
2017-02-06 23:26:38 +01:00
# else
2020-05-24 15:10:18 +02:00
const std : : string aMessage = " spawn " + std : : to_string ( number ) + ' \n ' ;
2016-11-04 00:57:41 +01:00
LOG_DBG ( " MasterToForKit: " < < aMessage . substr ( 0 , aMessage . length ( ) - 1 ) ) ;
2021-11-18 13:08:14 +01:00
COOLWSD : : sendMessageToForKit ( aMessage ) ;
2017-02-06 23:26:38 +01:00
# endif
2020-04-02 17:11:36 +02:00
OutstandingForks + = number ;
LastForkRequestTime = std : : chrono : : steady_clock : : now ( ) ;
return number ;
2016-04-09 22:53:33 +02:00
}
2017-01-01 22:52:36 +01:00
2017-01-17 05:09:55 +01:00
return 0 ;
2016-04-04 16:17:03 +02:00
}
2016-10-22 17:42:57 +02:00
/// Cleans up dead children.
/// Returns true if removed at least one.
static bool cleanupChildren ( )
{
2016-11-06 03:15:44 +01:00
Util : : assertIsLocked ( NewChildrenMutex ) ;
2017-03-19 23:57:31 +01:00
const int count = NewChildren . size ( ) ;
for ( int i = count - 1 ; i > = 0 ; - - i )
2016-10-22 17:42:57 +02:00
{
if ( ! NewChildren [ i ] - > isAlive ( ) )
{
2016-12-22 00:11:38 +01:00
LOG_WRN ( " Removing dead spare child [ " < < NewChildren [ i ] - > getPid ( ) < < " ]. " ) ;
2016-10-22 17:42:57 +02:00
NewChildren . erase ( NewChildren . begin ( ) + i ) ;
}
}
2017-03-19 23:57:31 +01:00
return static_cast < int > ( NewChildren . size ( ) ) ! = count ;
2016-10-22 17:42:57 +02:00
}
2019-10-08 11:23:29 +02:00
/// Decides how many children need spawning and spawns.
2017-01-17 05:09:55 +01:00
/// Returns the number of children requested to spawn,
/// -1 for error.
static int rebalanceChildren ( int balance )
2017-01-02 00:25:19 +01:00
{
Util : : assertIsLocked ( NewChildrenMutex ) ;
2017-04-04 03:07:53 +02:00
LOG_TRC ( " rebalance children to " < < balance ) ;
2017-03-30 22:55:17 +02:00
2017-01-02 00:25:19 +01:00
// Do the cleanup first.
const bool rebalance = cleanupChildren ( ) ;
const auto duration = ( std : : chrono : : steady_clock : : now ( ) - LastForkRequestTime ) ;
2020-12-07 04:45:46 +01:00
const auto durationMs = std : : chrono : : duration_cast < std : : chrono : : milliseconds > ( duration ) ;
if ( OutstandingForks ! = 0 & & durationMs > = std : : chrono : : milliseconds ( ChildSpawnTimeoutMs ) )
2017-01-02 00:25:19 +01:00
{
// Children taking too long to spawn.
// Forget we had requested any, and request anew.
2020-12-07 04:45:46 +01:00
LOG_WRN ( " ForKit not responsive for " < < durationMs < < " forking " < < OutstandingForks
< < " children. Resetting. " ) ;
2017-01-02 00:25:19 +01:00
OutstandingForks = 0 ;
}
2018-02-07 10:17:59 +01:00
const size_t available = NewChildren . size ( ) ;
2017-01-02 00:25:19 +01:00
balance - = available ;
balance - = OutstandingForks ;
2017-01-14 04:22:39 +01:00
if ( balance > 0 & & ( rebalance | | OutstandingForks = = 0 ) )
2017-01-02 00:25:19 +01:00
{
LOG_DBG ( " prespawnChildren: Have " < < available < < " spare " < <
2017-01-15 18:41:45 +01:00
( available = = 1 ? " child " : " children " ) < < " , and " < <
OutstandingForks < < " outstanding, forking " < < balance < < " more. " ) ;
2017-01-02 00:25:19 +01:00
return forkChildren ( balance ) ;
}
2017-01-17 05:09:55 +01:00
return 0 ;
2017-01-02 00:25:19 +01:00
}
2017-01-01 21:53:29 +01:00
/// Proactively spawn children processes
2016-10-22 17:42:57 +02:00
/// to load documents with alacrity.
2017-01-01 22:52:36 +01:00
/// Returns true only if at least one child was requested to spawn.
2017-01-14 04:22:39 +01:00
static bool prespawnChildren ( )
2016-05-03 04:57:27 +02:00
{
2017-03-19 23:57:31 +01:00
// Rebalance if not forking already.
2016-10-16 23:56:25 +02:00
std : : unique_lock < std : : mutex > lock ( NewChildrenMutex , std : : defer_lock ) ;
2021-11-18 13:08:14 +01:00
return lock . try_lock ( ) & & ( rebalanceChildren ( COOLWSD : : NumPreSpawnedChildren ) > 0 ) ;
2017-01-01 21:53:29 +01:00
}
2018-09-13 18:16:00 +02:00
# endif
2022-06-13 13:26:05 +02:00
static size_t addNewChild ( std : : shared_ptr < ChildProcess > child )
2016-05-07 15:42:10 +02:00
{
2022-06-13 13:26:05 +02:00
assert ( child & & " Adding null child " ) ;
const auto pid = child - > getPid ( ) ;
2016-10-16 23:56:25 +02:00
std : : unique_lock < std : : mutex > lock ( NewChildrenMutex ) ;
2016-11-08 00:21:28 +01:00
2016-10-23 22:00:32 +02:00
- - OutstandingForks ;
2017-04-12 05:18:33 +02:00
// Prevent from going -ve if we have unexpected children.
if ( OutstandingForks < 0 )
+ + OutstandingForks ;
2022-07-19 02:31:12 +02:00
if ( COOLWSD : : IsBindMountingEnabled )
{
// Reset the child-spawn timeout to the default, now that we're set.
// But only when mounting is enabled. Otherwise, copying is always slow.
ChildSpawnTimeoutMs = CHILD_TIMEOUT_MS ;
}
2022-02-25 13:50:21 +01:00
2022-06-13 13:26:05 +02:00
LOG_TRC ( " Adding a new child " < < pid < < " to NewChildren " ) ;
NewChildren . emplace_back ( std : : move ( child ) ) ;
2018-02-07 10:17:59 +01:00
const size_t count = NewChildren . size ( ) ;
2016-11-08 00:21:28 +01:00
lock . unlock ( ) ;
2016-05-07 15:42:10 +02:00
2022-06-13 13:26:05 +02:00
LOG_INF ( " Have " < < count < < " spare " < < ( count = = 1 ? " child " : " children " )
< < " after adding [ " < < pid < < " ]. Notifying. " ) ;
2016-10-16 23:56:25 +02:00
NewChildrenCV . notify_one ( ) ;
2016-05-07 15:42:10 +02:00
return count ;
}
2019-12-05 22:27:16 +01:00
# if MOBILEAPP
2020-04-24 09:46:54 +02:00
# ifndef IOS
2021-11-18 13:08:14 +01:00
std : : mutex COOLWSD : : lokit_main_mutex ;
2019-12-05 22:27:16 +01:00
# endif
2020-04-24 09:46:54 +02:00
# endif
2019-12-05 22:27:16 +01:00
2020-04-24 09:46:54 +02:00
std : : shared_ptr < ChildProcess > getNewChild_Blocks ( unsigned mobileAppDocId )
2016-04-04 01:00:37 +02:00
{
2017-03-30 05:11:34 +02:00
std : : unique_lock < std : : mutex > lock ( NewChildrenMutex ) ;
const auto startTime = std : : chrono : : steady_clock : : now ( ) ;
2016-01-24 20:48:09 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2020-04-24 09:46:54 +02:00
( void ) mobileAppDocId ;
2017-03-30 05:11:34 +02:00
LOG_DBG ( " getNewChild: Rebalancing children. " ) ;
2021-11-18 13:08:14 +01:00
int numPreSpawn = COOLWSD : : NumPreSpawnedChildren ;
2017-03-30 05:11:34 +02:00
+ + numPreSpawn ; // Replace the one we'll dispatch just now.
if ( rebalanceChildren ( numPreSpawn ) < 0 )
2016-03-15 16:35:59 +01:00
{
2017-06-20 04:15:59 +02:00
LOG_DBG ( " getNewChild: rebalancing of children failed. Scheduling housekeeping to recover. " ) ;
2017-03-20 05:41:43 +01:00
2021-11-18 13:08:14 +01:00
COOLWSD : : doHousekeeping ( ) ;
2016-04-16 14:10:52 +02:00
2017-03-30 05:11:34 +02:00
// Let the caller retry after a while.
return nullptr ;
}
2018-06-04 00:17:33 +02:00
2022-02-25 13:50:21 +01:00
const auto timeout = std : : chrono : : milliseconds ( ChildSpawnTimeoutMs / 2 ) ;
LOG_TRC ( " Waiting for a new child for a max of " < < timeout ) ;
2018-09-13 18:16:00 +02:00
# else
const auto timeout = std : : chrono : : hours ( 100 ) ;
std : : thread ( [ & ]
{
2020-04-24 09:46:54 +02:00
# ifndef IOS
2021-11-18 13:08:14 +01:00
std : : lock_guard < std : : mutex > lock ( COOLWSD : : lokit_main_mutex ) ;
2018-10-16 15:53:19 +02:00
Util : : setThreadName ( " lokit_main " ) ;
2020-04-24 09:46:54 +02:00
# else
Util : : setThreadName ( " lokit_main_ " + Util : : encodeId ( mobileAppDocId , 3 ) ) ;
# endif
2021-11-18 13:08:14 +01:00
// Ugly to have that static global COOLWSD::prisonerServerSocketFD, Otoh we know
// there is just one COOLWSD object. (Even in real Online.)
lokit_main ( COOLWSD : : prisonerServerSocketFD , COOLWSD : : UserInterface , mobileAppDocId ) ;
2018-09-13 18:16:00 +02:00
} ) . detach ( ) ;
# endif
2017-03-30 05:11:34 +02:00
// FIXME: blocks ...
// Unfortunately we need to wait after spawning children to avoid bombing the system.
// If we fail fast and return, the next document will spawn more children without knowing
// there are some on the way already. And if the system is slow already, that wouldn't help.
2018-09-13 18:16:00 +02:00
LOG_TRC ( " Waiting for NewChildrenCV " ) ;
if ( NewChildrenCV . wait_for ( lock , timeout , [ ] ( )
{
LOG_TRC ( " Predicate for NewChildrenCV wait: NewChildren.size()= " < < NewChildren . size ( ) ) ;
return ! NewChildren . empty ( ) ;
} ) )
{
LOG_TRC ( " NewChildrenCV wait successful " ) ;
2018-02-07 10:17:59 +01:00
std : : shared_ptr < ChildProcess > child = NewChildren . back ( ) ;
2017-03-30 05:11:34 +02:00
NewChildren . pop_back ( ) ;
2018-02-07 10:17:59 +01:00
const size_t available = NewChildren . size ( ) ;
2016-03-15 16:35:59 +01:00
2017-03-30 05:11:34 +02:00
// Validate before returning.
if ( child & & child - > isAlive ( ) )
2016-03-15 16:35:59 +01:00
{
2020-12-07 04:45:46 +01:00
LOG_DBG ( " getNewChild: Have "
< < available < < " spare " < < ( available = = 1 ? " child " : " children " )
< < " after popping [ " < < child - > getPid ( ) < < " ] to return in "
< < std : : chrono : : duration_cast < std : : chrono : : milliseconds > (
std : : chrono : : steady_clock : : now ( ) - startTime ) ) ;
2017-03-30 05:11:34 +02:00
return child ;
2016-03-15 16:35:59 +01:00
}
2017-03-30 05:11:34 +02:00
LOG_WRN ( " getNewChild: popped dead child, need to find another. " ) ;
}
else
{
2018-09-13 18:16:00 +02:00
LOG_TRC ( " NewChildrenCV wait failed " ) ;
2017-03-30 05:11:34 +02:00
LOG_WRN ( " getNewChild: No child available. Sending spawn request to forkit and failing. " ) ;
2016-03-15 16:35:59 +01:00
}
2017-03-05 00:07:17 +01:00
LOG_DBG ( " getNewChild: Timed out while waiting for new child. " ) ;
return nullptr ;
}
2016-01-24 20:48:09 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2019-03-01 18:59:40 +01:00
/// Handles the filename part of the convert-to POST request payload,
/// Also owns the file - cleaning it up when destroyed.
2017-03-05 00:07:17 +01:00
class ConvertToPartHandler : public PartHandler
{
2019-03-01 18:59:40 +01:00
std : : string _filename ;
2017-08-02 18:55:43 +02:00
2017-03-05 00:07:17 +01:00
public :
2019-03-01 18:59:40 +01:00
std : : string getFilename ( ) const { return _filename ; }
2019-05-21 20:50:17 +02:00
/// Afterwards someone else is responsible for cleaning that up.
void takeFile ( ) { _filename . clear ( ) ; }
2020-11-23 03:39:39 +01:00
ConvertToPartHandler ( )
2019-03-01 18:59:40 +01:00
{
}
virtual ~ ConvertToPartHandler ( )
2016-04-07 22:59:27 +02:00
{
2019-05-21 20:50:17 +02:00
if ( ! _filename . empty ( ) )
{
2020-05-24 15:10:18 +02:00
LOG_TRC ( " Remove un-handled temporary file ' " < < _filename < < ' \' ' ) ;
2021-08-09 07:48:27 +02:00
StatelessBatchBroker : : removeFile ( _filename ) ;
2019-05-21 20:50:17 +02:00
}
2016-04-07 22:59:27 +02:00
}
2017-03-05 00:07:17 +01:00
virtual void handlePart ( const MessageHeader & header , std : : istream & stream ) override
2016-01-24 20:48:09 +01:00
{
2017-03-05 00:07:17 +01:00
// Extract filename and put it to a temporary directory.
std : : string disp ;
NameValueCollection params ;
if ( header . has ( " Content-Disposition " ) )
2016-01-06 15:13:21 +01:00
{
2017-03-05 00:07:17 +01:00
std : : string cd = header . get ( " Content-Disposition " ) ;
MessageHeader : : splitParameters ( cd , disp , params ) ;
2016-01-06 15:13:21 +01:00
}
2016-04-16 18:56:23 +02:00
2017-03-05 00:07:17 +01:00
if ( ! params . has ( " filename " ) )
return ;
2020-12-12 23:25:28 +01:00
// The temporary directory is child-root/<CHILDROOT_TMP_INCOMING_PATH>.
2020-11-23 03:39:39 +01:00
// Always create a random sub-directory to avoid file-name collision.
2020-02-08 20:41:55 +01:00
Path tempPath = Path : : forDirectory (
2020-12-12 22:35:43 +01:00
FileUtil : : createRandomTmpDir ( COOLWSD : : ChildRoot + JailUtil : : CHILDROOT_TMP_INCOMING_PATH )
2020-11-22 23:36:44 +01:00
+ ' / ' ) ;
2020-11-23 03:39:39 +01:00
LOG_TRC ( " Created temporary convert-to/insert path: " < < tempPath . toString ( ) ) ;
2018-11-08 00:00:32 +01:00
2017-03-05 00:07:17 +01:00
// Prevent user inputting anything funny here.
// A "filename" should always be a filename, not a path
const Path filenameParam ( params . get ( " filename " ) ) ;
2020-11-23 03:39:39 +01:00
if ( filenameParam . getFileName ( ) = = " callback: " )
tempPath . setFileName ( " incoming_file " ) ; // A sensible name.
else
tempPath . setFileName ( filenameParam . getFileName ( ) ) ; //TODO: Sanitize.
_filename = tempPath . toString ( ) ;
LOG_DBG ( " Storing incoming file to: " < < _filename ) ;
2015-04-21 14:06:41 +02:00
2017-03-05 00:07:17 +01:00
// Copy the stream to _filename.
std : : ofstream fileStream ;
fileStream . open ( _filename ) ;
StreamCopier : : copyStream ( stream , fileStream ) ;
fileStream . close ( ) ;
2016-01-06 03:29:12 +01:00
}
} ;
2015-11-26 03:23:08 +01:00
2021-08-09 07:48:27 +02:00
class RenderSearchResultPartHandler : public PartHandler
{
private :
std : : string _filename ;
std : : shared_ptr < std : : vector < char > > _pSearchResultContent ;
public :
std : : string getFilename ( ) const { return _filename ; }
/// Afterwards someone else is responsible for cleaning that up.
void takeFile ( ) { _filename . clear ( ) ; }
const std : : shared_ptr < std : : vector < char > > & getSearchResultContent ( ) const
{
return _pSearchResultContent ;
}
RenderSearchResultPartHandler ( ) = default ;
virtual ~ RenderSearchResultPartHandler ( )
{
if ( ! _filename . empty ( ) )
{
LOG_TRC ( " Remove un-handled temporary file ' " < < _filename < < ' \' ' ) ;
StatelessBatchBroker : : removeFile ( _filename ) ;
}
}
virtual void handlePart ( const MessageHeader & header , std : : istream & stream ) override
{
// Extract filename and put it to a temporary directory.
std : : string label ;
NameValueCollection content ;
if ( header . has ( " Content-Disposition " ) )
{
MessageHeader : : splitParameters ( header . get ( " Content-Disposition " ) , label , content ) ;
}
std : : string name = content . get ( " name " , " " ) ;
if ( name = = " document " )
{
std : : string filename = content . get ( " filename " , " " ) ;
const Path filenameParam ( filename ) ;
// The temporary directory is child-root/<JAIL_TMP_INCOMING_PATH>.
// Always create a random sub-directory to avoid file-name collision.
2020-12-12 22:35:43 +01:00
Path tempPath =
Path : : forDirectory ( FileUtil : : createRandomTmpDir (
COOLWSD : : ChildRoot + JailUtil : : CHILDROOT_TMP_INCOMING_PATH ) +
' / ' ) ;
2021-08-09 07:48:27 +02:00
LOG_TRC ( " Created temporary render-search-result file path: " < < tempPath . toString ( ) ) ;
// Prevent user inputting anything funny here.
// A "filename" should always be a filename, not a path
if ( filenameParam . getFileName ( ) = = " callback: " )
tempPath . setFileName ( " incoming_file " ) ; // A sensible name.
else
tempPath . setFileName ( filenameParam . getFileName ( ) ) ; //TODO: Sanitize.
_filename = tempPath . toString ( ) ;
// Copy the stream to _filename.
std : : ofstream fileStream ;
fileStream . open ( _filename ) ;
StreamCopier : : copyStream ( stream , fileStream ) ;
fileStream . close ( ) ;
}
else if ( name = = " result " )
{
// Copy content from the stream into a std::vector<char>
_pSearchResultContent = std : : make_shared < std : : vector < char > > (
std : : istreambuf_iterator < char > ( stream ) ,
std : : istreambuf_iterator < char > ( ) ) ;
}
}
} ;
2016-10-30 02:15:00 +01:00
namespace
{
2016-07-18 13:45:36 +02:00
2018-11-23 15:29:14 +01:00
# if ENABLE_DEBUG
2019-11-25 13:06:07 +01:00
inline std : : string getLaunchBase ( bool asAdmin = false )
2016-07-18 13:45:36 +02:00
{
2016-11-10 01:44:28 +01:00
std : : ostringstream oss ;
oss < < " " ;
2021-11-18 13:08:14 +01:00
oss < < ( ( COOLWSD : : isSSLEnabled ( ) | | COOLWSD : : isSSLTermination ( ) ) ? " https:// " : " http:// " ) ;
2019-11-25 13:06:07 +01:00
if ( asAdmin )
{
2021-11-18 13:08:14 +01:00
auto user = COOLWSD : : getConfigValue < std : : string > ( " admin_console.username " , " " ) ;
auto passwd = COOLWSD : : getConfigValue < std : : string > ( " admin_console.password " , " " ) ;
2019-11-25 13:06:07 +01:00
if ( user . empty ( ) | | passwd . empty ( ) )
return " " ;
2020-05-24 15:10:18 +02:00
oss < < user < < ' : ' < < passwd < < ' @ ' ;
2019-11-25 13:06:07 +01:00
}
2021-11-18 13:08:14 +01:00
oss < < COOLWSD_TEST_HOST " : " ;
2016-11-10 01:44:28 +01:00
oss < < ClientPortNumber ;
2016-12-08 18:47:03 +01:00
return oss . str ( ) ;
}
2018-02-22 16:13:20 +01:00
inline std : : string getLaunchURI ( const std : : string & document )
2016-12-08 18:47:03 +01:00
{
std : : ostringstream oss ;
2019-11-25 13:06:07 +01:00
oss < < getLaunchBase ( ) ;
2021-11-18 13:08:14 +01:00
oss < < COOLWSD : : ServiceRoot ;
oss < < COOLWSD_TEST_COOL_UI ;
2021-10-25 10:22:49 +02:00
oss < < " ?file_path= " ;
2018-04-30 03:02:50 +02:00
oss < < DEBUG_ABSSRCDIR " / " ;
2018-02-22 16:13:20 +01:00
oss < < document ;
2016-11-10 01:44:28 +01:00
return oss . str ( ) ;
2016-07-18 13:45:36 +02:00
}
2019-11-25 13:06:07 +01:00
inline std : : string getServiceURI ( const std : : string & sub , bool asAdmin = false )
2019-05-17 14:22:02 +02:00
{
std : : ostringstream oss ;
2019-11-25 13:06:07 +01:00
oss < < getLaunchBase ( asAdmin ) ;
2021-11-18 13:08:14 +01:00
oss < < COOLWSD : : ServiceRoot ;
2019-05-17 14:22:02 +02:00
oss < < sub ;
return oss . str ( ) ;
}
2018-11-23 15:29:14 +01:00
# endif
2016-12-08 18:47:03 +01:00
2020-07-15 11:44:52 +02:00
} // anonymous namespace
# endif // MOBILEAPP
namespace
{
2020-07-07 21:18:13 +02:00
void sendLoadResult ( std : : shared_ptr < ClientSession > clientSession , bool success ,
const std : : string & errorMsg )
{
const std : : string result = success ? " " : " Error while loading document " ;
const std : : string resultstr = success ? " true " : " false " ;
2020-10-03 18:38:25 +02:00
// Some sane limit, otherwise we get problems transferring this
2020-07-07 21:18:13 +02:00
// to the client with large strings (can be a whole webpage)
// Replace reserved characters
2021-11-18 13:08:14 +01:00
std : : string errorMsgFormatted = COOLProtocol : : getAbbreviatedMessage ( errorMsg ) ;
2020-07-07 21:18:13 +02:00
errorMsgFormatted = Poco : : translate ( errorMsg , " \" " , " ' " ) ;
clientSession - > sendMessage ( " commandresult: { \" command \" : \" load \" , \" success \" : " + resultstr +
" , \" result \" : \" " + result + " \" , \" errorMsg \" : \" " + errorMsgFormatted + " \" } " ) ;
}
2016-07-18 13:45:36 +02:00
} // anonymous namespace
2021-11-18 13:08:14 +01:00
std : : atomic < uint64_t > COOLWSD : : NextConnectionId ( 1 ) ;
2019-05-29 17:26:16 +02:00
2020-04-20 10:47:50 +02:00
# if !MOBILEAPP
2017-02-06 23:26:38 +01:00
# ifndef KIT_IN_PROCESS
2021-11-18 13:08:14 +01:00
std : : atomic < int > COOLWSD : : ForKitProcId ( - 1 ) ;
std : : shared_ptr < ForKitProcess > COOLWSD : : ForKitProc ;
2017-02-06 23:26:38 +01:00
# endif
2021-11-18 13:08:14 +01:00
bool COOLWSD : : NoCapsForKit = false ;
bool COOLWSD : : NoSeccomp = false ;
bool COOLWSD : : AdminEnabled = true ;
2022-02-16 03:04:37 +01:00
bool COOLWSD : : UnattendedRun = false ;
2022-04-13 20:53:49 +02:00
bool COOLWSD : : SignalParent = false ;
2020-03-04 20:38:17 +01:00
# if ENABLE_DEBUG
2021-11-18 13:08:14 +01:00
bool COOLWSD : : SingleKit = false ;
2020-03-04 20:38:17 +01:00
# endif
2020-02-28 14:55:42 +01:00
# endif
2021-11-18 13:08:14 +01:00
std : : string COOLWSD : : SysTemplate ;
std : : string COOLWSD : : LoTemplate = LO_PATH ;
std : : string COOLWSD : : ChildRoot ;
std : : string COOLWSD : : ServerName ;
std : : string COOLWSD : : FileServerRoot ;
std : : string COOLWSD : : ServiceRoot ;
2022-02-23 11:47:53 +01:00
std : : string COOLWSD : : TmpFontDir ;
2021-11-18 13:08:14 +01:00
std : : string COOLWSD : : LOKitVersion ;
std : : string COOLWSD : : ConfigFile = COOLWSD_CONFIGDIR " /coolwsd.xml " ;
std : : string COOLWSD : : ConfigDir = COOLWSD_CONFIGDIR " /conf.d " ;
bool COOLWSD : : EnableTraceEventLogging = false ;
FILE * COOLWSD : : TraceEventFile = NULL ;
std : : string COOLWSD : : LogLevel = " trace " ;
std : : string COOLWSD : : MostVerboseLogLevelSettableFromClient = " notice " ;
std : : string COOLWSD : : LeastVerboseLogLevelSettableFromClient = " fatal " ;
2021-11-19 15:24:18 +01:00
std : : string COOLWSD : : UserInterface = " default " ;
2021-11-18 13:08:14 +01:00
bool COOLWSD : : AnonymizeUserData = false ;
bool COOLWSD : : CheckCoolUser = true ;
bool COOLWSD : : CleanupOnly = false ; //< If we should cleanup and exit.
bool COOLWSD : : IsProxyPrefixEnabled = false ;
2019-08-20 10:20:22 +02:00
# if ENABLE_SSL
2021-11-18 13:08:14 +01:00
Util : : RuntimeConstant < bool > COOLWSD : : SSLEnabled ;
Util : : RuntimeConstant < bool > COOLWSD : : SSLTermination ;
2019-08-20 10:20:22 +02:00
# endif
2021-11-18 13:08:14 +01:00
unsigned COOLWSD : : MaxConnections ;
unsigned COOLWSD : : MaxDocuments ;
std : : string COOLWSD : : OverrideWatermark ;
std : : set < const Poco : : Util : : AbstractConfiguration * > COOLWSD : : PluginConfigurations ;
std : : chrono : : steady_clock : : time_point COOLWSD : : StartTime ;
2022-07-19 02:31:12 +02:00
bool COOLWSD : : IsBindMountingEnabled = true ;
2016-07-18 13:45:36 +02:00
2020-06-03 18:13:40 +02:00
// If you add global state please update dumpState below too
2016-04-08 10:00:58 +02:00
static std : : string UnitTestLibrary ;
2015-07-13 16:13:06 +02:00
2021-11-18 13:08:14 +01:00
unsigned int COOLWSD : : NumPreSpawnedChildren = 0 ;
std : : unique_ptr < TraceFileWriter > COOLWSD : : TraceDumper ;
std : : unordered_map < std : : string , std : : vector < std : : string > > COOLWSD : : QuarantineMap ;
std : : string COOLWSD : : QuarantinePath ;
2019-08-12 11:04:10 +02:00
# if !MOBILEAPP
2021-11-18 13:08:14 +01:00
std : : unique_ptr < ClipboardCache > COOLWSD : : SavedClipboards ;
2019-08-12 11:04:10 +02:00
# endif
2015-03-18 00:56:15 +01:00
2021-03-15 15:24:09 +01:00
/// This thread polls basic web serving, and handling of
/// websockets before upgrade: when upgraded they go to the
/// relevant DocumentBroker poll instead.
2022-06-02 23:24:38 +02:00
static std : : shared_ptr < TerminatingPoll > WebServerPoll ;
2017-03-07 08:00:51 +01:00
2021-03-13 20:20:46 +01:00
class PrisonPoll : public TerminatingPoll
{
2017-03-08 19:48:07 +01:00
public :
2021-03-13 20:20:46 +01:00
PrisonPoll ( ) : TerminatingPoll ( " prisoner_poll " ) { }
2017-03-08 19:48:07 +01:00
2017-04-05 22:31:15 +02:00
/// Check prisoners are still alive and balanced.
2017-03-08 19:48:07 +01:00
void wakeupHook ( ) override ;
2020-04-02 17:11:36 +02:00
2020-04-20 10:47:50 +02:00
# if !MOBILEAPP
2020-04-26 22:55:16 +02:00
// Resets the forkit process object
2020-04-02 17:11:36 +02:00
void setForKitProcess ( const std : : weak_ptr < ForKitProcess > & forKitProc )
{
assertCorrectThread ( ) ;
_forKitProc = forKitProc ;
}
void sendMessageToForKit ( const std : : string & msg )
{
if ( std : : this_thread : : get_id ( ) = = getThreadOwner ( ) )
{
// Speed up sending the message if the request comes from owner thread
std : : shared_ptr < ForKitProcess > forKitProc = _forKitProc . lock ( ) ;
if ( forKitProc )
{
forKitProc - > sendTextFrame ( msg ) ;
}
}
else
{
// Put the message in the owner's thread queue to be send later
// because WebSocketHandler is not thread safe and otherwise we
// should synchronize inside WebSocketHandler.
addCallback ( [ = ] {
std : : shared_ptr < ForKitProcess > forKitProc = _forKitProc . lock ( ) ;
if ( forKitProc )
{
forKitProc - > sendTextFrame ( msg ) ;
}
} ) ;
}
}
private :
std : : weak_ptr < ForKitProcess > _forKitProc ;
2020-04-20 10:47:50 +02:00
# endif
2017-03-08 19:48:07 +01:00
} ;
2021-03-15 15:24:09 +01:00
/// This thread listens for and accepts prisoner kit processes.
/// And also cleans up and balances the correct number of children.
static std : : unique_ptr < PrisonPoll > PrisonerPoll ;
/// The Web Server instance with the accept socket poll thread.
2022-03-17 14:43:57 +01:00
class COOLWSDServer ;
2021-11-18 13:08:14 +01:00
static std : : unique_ptr < COOLWSDServer > Server ;
2017-03-08 05:46:02 +01:00
2016-08-14 06:01:13 +02:00
/// Helper class to hold default configuration entries.
2016-12-13 13:56:33 +01:00
class AppConfigMap final : public Poco : : Util : : MapConfiguration
2016-06-25 14:20:56 +02:00
{
public :
AppConfigMap ( const std : : map < std : : string , std : : string > & map )
{
for ( const auto & pair : map )
{
setRaw ( pair . first , pair . second ) ;
}
}
} ;
2020-04-20 10:47:50 +02:00
# if !MOBILEAPP
2020-04-02 17:11:36 +02:00
void ForKitProcWSHandler : : handleMessage ( const std : : vector < char > & data )
{
2021-11-18 13:08:14 +01:00
LOG_TRC ( " ForKitProcWSHandler: handling incoming [ " < < COOLProtocol : : getAbbreviatedMessage ( & data [ 0 ] , data . size ( ) ) < < " ]. " ) ;
const std : : string firstLine = COOLProtocol : : getFirstLine ( & data [ 0 ] , data . size ( ) ) ;
2022-03-30 03:37:57 +02:00
const StringVector tokens = StringVector : : tokenize ( firstLine . data ( ) , firstLine . size ( ) ) ;
2020-04-02 17:11:36 +02:00
2020-04-07 23:21:17 +02:00
if ( tokens . equals ( 0 , " segfaultcount " ) )
{
int count = std : : stoi ( tokens [ 1 ] ) ;
if ( count > = 0 )
{
Admin : : instance ( ) . addSegFaultCount ( count ) ;
2021-11-18 13:08:14 +01:00
LOG_INF ( count < < " coolkit processes crashed with segmentation fault. " ) ;
2020-04-07 23:21:17 +02:00
}
else
{
LOG_WRN ( " Invalid 'segfaultcount' message received. " ) ;
}
}
else
{
LOG_ERR ( " ForKitProcWSHandler: unknown command: " < < tokens [ 0 ] ) ;
}
2020-04-02 17:11:36 +02:00
}
2020-04-20 10:47:50 +02:00
# endif
2021-11-18 13:08:14 +01:00
COOLWSD : : COOLWSD ( )
2015-03-05 00:14:04 +01:00
{
2015-03-18 00:56:15 +01:00
}
2015-03-07 12:23:46 +01:00
2021-11-18 13:08:14 +01:00
COOLWSD : : ~ COOLWSD ( )
2015-03-18 00:56:15 +01:00
{
}
2015-03-05 00:14:04 +01:00
2022-02-08 06:50:09 +01:00
# if !MOBILEAPP
2022-05-02 15:48:46 +02:00
/**
A custom socket poll to fetch remote config every 60 seconds .
If config changes it applies the new config using LayeredConfiguration .
The URI to fetch is read from the configuration too - it is either the
remote config itself , or the font configuration . It si passed via the
uriConfigKey param .
*/
2022-02-22 15:51:59 +01:00
class RemoteJSONPoll : public SocketPoll
2022-02-08 06:50:09 +01:00
{
public :
2022-05-02 15:48:46 +02:00
RemoteJSONPoll ( LayeredConfiguration & config , const std : : string & uriConfigKey , const std : : string & name , const std : : string & kind )
2022-02-22 15:51:59 +01:00
: SocketPoll ( name )
2022-02-08 06:50:09 +01:00
, conf ( config )
2022-05-02 15:48:46 +02:00
, configKey ( uriConfigKey )
2022-02-22 15:51:59 +01:00
, expectedKind ( kind )
{ }
virtual ~ RemoteJSONPoll ( ) { }
virtual void handleJSON ( Poco : : JSON : : Object : : Ptr json ) = 0 ;
2022-02-08 06:50:09 +01:00
2022-02-23 11:47:53 +01:00
virtual void handleUnchangedJSON ( )
{ }
2022-02-08 06:50:09 +01:00
void start ( )
{
2022-05-02 15:48:46 +02:00
Poco : : URI remoteServerURI ( conf . getString ( configKey ) ) ;
if ( expectedKind = = " configuration " )
2022-02-08 06:50:09 +01:00
{
2022-05-02 15:48:46 +02:00
if ( remoteServerURI . empty ( ) )
{
LOG_INF ( " Remote " < < expectedKind < < " is not specified in coolwsd.xml " ) ;
return ; // no remote config server setup.
}
2022-02-23 11:44:46 +01:00
# if !ENABLE_DEBUG
2022-05-02 15:48:46 +02:00
if ( Util : : iequal ( remoteServerURI . getScheme ( ) , " http " ) )
{
LOG_ERR ( " Remote config url should only use HTTPS protocol: " < < remoteServerURI . toString ( ) ) ;
return ;
}
2022-02-23 11:44:46 +01:00
# endif
2022-05-02 15:48:46 +02:00
}
2022-02-08 06:50:09 +01:00
startThread ( ) ;
}
void pollingThread ( )
{
while ( ! isStop ( ) & & ! SigUtil : : getTerminationFlag ( ) & & ! SigUtil : : getShutdownRequestFlag ( ) )
{
2022-05-02 15:48:46 +02:00
Poco : : URI remoteServerURI ( conf . getString ( configKey ) ) ;
// don't try to fetch from an empty URI
bool valid = ! remoteServerURI . empty ( ) ;
# if !ENABLE_DEBUG
if ( Util : : iequal ( remoteServerURI . getScheme ( ) , " http " ) )
2022-02-08 06:50:09 +01:00
{
2022-05-02 15:48:46 +02:00
LOG_ERR ( " Remote config url should only use HTTPS protocol: " < < remoteServerURI . toString ( ) ) ;
valid = false ;
}
# endif
2022-02-08 06:50:09 +01:00
2022-05-02 15:48:46 +02:00
if ( valid )
{
try
2022-02-08 06:50:09 +01:00
{
2022-05-02 15:48:46 +02:00
std : : shared_ptr < http : : Session > httpSession (
StorageBase : : getHttpSession ( remoteServerURI ) ) ;
http : : Request request ( remoteServerURI . getPathAndQuery ( ) ) ;
2022-02-08 06:50:09 +01:00
2022-05-02 15:48:46 +02:00
//we use ETag header to check whether JSON is modified or not
if ( ! eTagValue . empty ( ) )
{
request . set ( " If-None-Match " , eTagValue ) ;
}
2022-02-08 06:50:09 +01:00
2022-05-02 15:48:46 +02:00
const std : : shared_ptr < const http : : Response > httpResponse =
httpSession - > syncRequest ( request ) ;
2022-02-08 06:50:09 +01:00
2022-05-02 15:48:46 +02:00
unsigned int statusCode = httpResponse - > statusLine ( ) . statusCode ( ) ;
2022-02-08 06:50:09 +01:00
2022-05-02 15:48:46 +02:00
if ( statusCode = = Poco : : Net : : HTTPResponse : : HTTP_OK )
{
eTagValue = httpResponse - > get ( " ETag " ) ;
2022-02-08 06:50:09 +01:00
2022-05-02 15:48:46 +02:00
std : : string body = httpResponse - > getBody ( ) ;
2022-04-25 15:55:31 +02:00
2022-05-02 15:48:46 +02:00
LOG_DBG ( " Got " < < body . size ( ) < < " bytes for " < < remoteServerURI . toString ( ) ) ;
Poco : : JSON : : Object : : Ptr remoteJson ;
if ( JsonUtil : : parseJSON ( body , remoteJson ) )
2022-02-08 06:50:09 +01:00
{
2022-05-02 15:48:46 +02:00
std : : string kind ;
JsonUtil : : findJSONValue ( remoteJson , " kind " , kind ) ;
if ( kind = = expectedKind )
{
handleJSON ( remoteJson ) ;
}
else
{
LOG_ERR ( " Make sure that " < < remoteServerURI . toString ( ) < < " contains a property 'kind' with "
" value ' " < < expectedKind < < " ' " ) ;
}
2022-02-08 06:50:09 +01:00
}
else
{
2022-05-02 15:48:46 +02:00
LOG_ERR ( " Could not parse the remote config JSON " ) ;
2022-02-08 06:50:09 +01:00
}
}
2022-05-02 15:48:46 +02:00
else if ( statusCode = = Poco : : Net : : HTTPResponse : : HTTP_NOT_MODIFIED )
{
LOG_DBG ( " Not modified since last time: " < < remoteServerURI . toString ( ) ) ;
handleUnchangedJSON ( ) ;
}
2022-02-08 06:50:09 +01:00
else
{
2022-05-02 15:48:46 +02:00
LOG_ERR ( " Remote config server has response status code: " +
std : : to_string ( statusCode ) ) ;
2022-02-08 06:50:09 +01:00
}
}
2022-05-02 15:48:46 +02:00
catch ( . . . )
2022-02-08 06:50:09 +01:00
{
2022-05-02 15:48:46 +02:00
LOG_ERR ( " Failed to fetch remote config JSON, Please check JSON format " ) ;
2022-02-08 06:50:09 +01:00
}
}
poll ( std : : chrono : : seconds ( 60 ) ) ;
}
}
2022-02-22 15:51:59 +01:00
protected :
LayeredConfiguration & conf ;
2022-04-25 15:55:31 +02:00
std : : string eTagValue ;
2022-02-23 11:47:53 +01:00
private :
2022-05-02 15:48:46 +02:00
std : : string configKey ;
2022-02-22 15:51:59 +01:00
std : : string expectedKind ;
} ;
class RemoteConfigPoll : public RemoteJSONPoll
{
public :
RemoteConfigPoll ( LayeredConfiguration & config ) :
2022-05-02 15:48:46 +02:00
RemoteJSONPoll ( config , " remote_config.remote_url " , " remoteconfig_poll " , " configuration " )
2022-02-22 15:51:59 +01:00
{
}
virtual ~ RemoteConfigPoll ( ) { }
void handleJSON ( Poco : : JSON : : Object : : Ptr remoteJson ) override
2022-02-08 06:50:09 +01:00
{
constexpr int PRIO_JSON = - 200 ; // highest priority
std : : map < std : : string , std : : string > newAppConfig ;
fetchWopiHostPatterns ( newAppConfig , remoteJson ) ;
2022-03-07 14:37:14 +01:00
fetchAliasGroups ( newAppConfig , remoteJson ) ;
2022-08-03 04:04:49 +02:00
# if ENABLE_FEATURE_LOCK
2022-02-08 06:50:09 +01:00
fetchLockedHostPatterns ( newAppConfig , remoteJson ) ;
2022-07-05 14:03:14 +02:00
fetchLockedTranslations ( newAppConfig , remoteJson ) ;
fetchUnlockImageUrl ( newAppConfig , remoteJson ) ;
2022-02-08 06:50:09 +01:00
# endif
2022-05-02 15:48:46 +02:00
fetchRemoteFontConfig ( newAppConfig , remoteJson ) ;
2022-02-08 06:50:09 +01:00
AutoPtr < AppConfigMap > newConfig ( new AppConfigMap ( newAppConfig ) ) ;
conf . addWriteable ( newConfig , PRIO_JSON ) ;
2022-03-24 11:23:34 +01:00
HostUtil : : parseWopiHost ( conf ) ;
2022-03-07 14:37:14 +01:00
2022-08-03 04:04:49 +02:00
# if ENABLE_FEATURE_LOCK
2022-02-08 06:50:09 +01:00
CommandControl : : LockManager : : parseLockedHost ( conf ) ;
# endif
2022-03-24 11:23:34 +01:00
HostUtil : : parseAliases ( conf ) ;
2022-02-08 06:50:09 +01:00
}
void fetchWopiHostPatterns ( std : : map < std : : string , std : : string > & newAppConfig ,
Poco : : JSON : : Object : : Ptr remoteJson )
{
//wopi host patterns
if ( ! conf . getBool ( " storage.wopi[@allow] " , false ) )
{
2022-03-07 14:37:14 +01:00
LOG_INF ( " WOPI host feature is disabled in configuration " ) ;
2022-02-08 06:50:09 +01:00
return ;
}
2022-03-03 18:15:17 +01:00
try
2022-02-08 06:50:09 +01:00
{
2022-05-02 20:31:25 +02:00
Poco : : JSON : : Array : : Ptr wopiHostPatterns ;
try
{
wopiHostPatterns = remoteJson - > getObject ( " storage " ) - > getObject ( " wopi " ) - > getArray ( " hosts " ) ;
}
catch ( const Poco : : NullPointerException & )
{
LOG_INF ( " Not overwriting any wopi host pattern because the storage->wopi->hosts section does not exist " ) ;
return ;
}
2022-02-08 06:50:09 +01:00
2022-03-03 18:15:17 +01:00
if ( wopiHostPatterns - > size ( ) = = 0 )
{
2022-05-02 20:31:25 +02:00
LOG_INF ( " Not overwriting any wopi host pattern because JSON contains empty array " ) ;
2022-03-03 18:15:17 +01:00
return ;
}
2022-02-08 06:50:09 +01:00
2022-03-03 18:15:17 +01:00
std : : size_t i ;
for ( i = 0 ; i < wopiHostPatterns - > size ( ) ; i + + )
{
std : : string host ;
2022-02-08 06:50:09 +01:00
2022-03-03 18:15:17 +01:00
Poco : : JSON : : Object : : Ptr subObject = wopiHostPatterns - > getObject ( i ) ;
JsonUtil : : findJSONValue ( subObject , " host " , host ) ;
Poco : : Dynamic : : Var allow = subObject - > get ( " allow " ) ;
2022-02-08 06:50:09 +01:00
2022-03-03 18:15:17 +01:00
const std : : string path = " storage.wopi.host[ " + std : : to_string ( i ) + ' ] ' ;
newAppConfig . insert ( std : : make_pair ( path , host ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@allow] " , booleanToString ( allow ) ) ) ;
}
//if number of wopi host patterns defined in coolwsd.xml are greater than number of host
//fetched from json, overwrite the remaining host from config file to empty strings and
//set allow to false
for ( ; ; + + i )
2022-02-08 06:50:09 +01:00
{
2022-03-03 18:15:17 +01:00
const std : : string path = " storage.wopi.host[ " + std : : to_string ( i ) + " ] " ;
if ( ! conf . has ( path ) )
{
break ;
}
newAppConfig . insert ( std : : make_pair ( path , " " ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@allow] " , " false " ) ) ;
2022-02-08 06:50:09 +01:00
}
2022-03-03 18:15:17 +01:00
}
catch ( std : : exception & exc )
{
LOG_ERR ( " Failed to fetch wopi host patterns, please check JSON format: " < < exc . what ( ) ) ;
2022-02-08 06:50:09 +01:00
}
}
void fetchLockedHostPatterns ( std : : map < std : : string , std : : string > & newAppConfig ,
Poco : : JSON : : Object : : Ptr remoteJson )
{
if ( ! conf . getBool ( " feature_lock.locked_hosts[@allow] " , false ) )
{
2022-03-07 14:37:14 +01:00
LOG_INF ( " locked_hosts feature is disabled from configuration " ) ;
2022-02-08 06:50:09 +01:00
return ;
}
2022-03-03 18:15:17 +01:00
try
2022-02-08 06:50:09 +01:00
{
2022-03-03 18:15:17 +01:00
Poco : : JSON : : Array : : Ptr lockedHostPatterns =
remoteJson - > getObject ( " feature_locking " ) - > getObject ( " locked_hosts " ) - > getArray ( " hosts " ) ;
2022-02-08 06:50:09 +01:00
2022-03-03 18:15:17 +01:00
if ( lockedHostPatterns - > size ( ) = = 0 )
{
LOG_WRN ( " Not overwriting any locked wopi host pattern because JSON contains empty "
" array " ) ;
return ;
}
2022-02-08 06:50:09 +01:00
2022-03-03 18:15:17 +01:00
std : : size_t i ;
for ( i = 0 ; i < lockedHostPatterns - > size ( ) ; i + + )
{
std : : string host ;
Poco : : JSON : : Object : : Ptr subObject = lockedHostPatterns - > getObject ( i ) ;
JsonUtil : : findJSONValue ( subObject , " host " , host ) ;
Poco : : Dynamic : : Var readOnly = subObject - > get ( " read_only " ) ;
Poco : : Dynamic : : Var disabledCommands = subObject - > get ( " disabled_commands " ) ;
const std : : string path =
" feature_lock.locked_hosts.host[ " + std : : to_string ( i ) + " ] " ;
newAppConfig . insert ( std : : make_pair ( path , host ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@read_only] " , booleanToString ( readOnly ) ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@disabled_commands] " ,
booleanToString ( disabledCommands ) ) ) ;
}
//if number of locked wopi host patterns defined in coolwsd.xml are greater than number of host
//fetched from json, overwrite the remaining host from config file to empty strings and
//set read_only and disabled_commands to false
for ( ; ; + + i )
2022-02-08 06:50:09 +01:00
{
2022-03-03 18:15:17 +01:00
const std : : string path =
" feature_lock.locked_hosts.host[ " + std : : to_string ( i ) + " ] " ;
if ( ! conf . has ( path ) )
{
break ;
}
newAppConfig . insert ( std : : make_pair ( path , " " ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@read_only] " , " false " ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@disabled_commands] " , " false " ) ) ;
2022-02-08 06:50:09 +01:00
}
2022-03-03 18:15:17 +01:00
}
catch ( const std : : exception & exc )
{
LOG_ERR ( " Failed to fetch locked_hosts, please check JSON format: " < < exc . what ( ) ) ;
2022-02-08 06:50:09 +01:00
}
}
2022-03-07 14:37:14 +01:00
void fetchAliasGroups ( std : : map < std : : string , std : : string > & newAppConfig ,
Poco : : JSON : : Object : : Ptr remoteJson )
{
try
{
2022-05-02 20:31:25 +02:00
Poco : : JSON : : Object : : Ptr aliasGroups ;
Poco : : JSON : : Array : : Ptr groups ;
2022-03-07 14:37:14 +01:00
2022-05-02 20:31:25 +02:00
try
{
aliasGroups = remoteJson - > getObject ( " storage " ) - > getObject ( " wopi " ) - > getObject ( " alias_groups " ) ;
groups = aliasGroups - > getArray ( " groups " ) ;
}
catch ( const Poco : : NullPointerException & )
{
LOG_INF ( " Not overwriting any alias groups because storage->wopi->alias_groups->groups array does not exist " ) ;
return ;
}
2022-03-17 14:21:13 +01:00
if ( groups - > size ( ) = = 0 )
2022-03-07 14:37:14 +01:00
{
2022-05-02 20:31:25 +02:00
LOG_INF ( " Not overwriting any alias groups because alias_group array is empty " ) ;
2022-03-07 14:37:14 +01:00
return ;
}
2022-03-17 14:21:13 +01:00
std : : string mode = " first " ;
JsonUtil : : findJSONValue ( aliasGroups , " mode " , mode ) ;
newAppConfig . insert ( std : : make_pair ( " storage.wopi.alias_groups[@mode] " , mode ) ) ;
2022-03-07 14:37:14 +01:00
std : : size_t i ;
2022-03-17 14:21:13 +01:00
for ( i = 0 ; i < groups - > size ( ) ; i + + )
2022-03-07 14:37:14 +01:00
{
2022-03-17 14:21:13 +01:00
Poco : : JSON : : Object : : Ptr group = groups - > getObject ( i ) ;
2022-03-07 14:37:14 +01:00
std : : string host ;
JsonUtil : : findJSONValue ( group , " host " , host ) ;
Poco : : Dynamic : : Var allow = group - > get ( " allow " ) ;
2022-03-17 14:21:13 +01:00
const std : : string path =
" storage.wopi.alias_groups.group[ " + std : : to_string ( i ) + ' ] ' ;
2022-03-07 14:37:14 +01:00
newAppConfig . insert ( std : : make_pair ( path + " .host " , host ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " .host[@allow] " , booleanToString ( allow ) ) ) ;
2022-08-03 04:04:49 +02:00
# if ENABLE_FEATURE_LOCK
2022-07-14 12:26:58 +02:00
std : : string unlockLink ;
JsonUtil : : findJSONValue ( group , " unlock_link " , unlockLink ) ;
newAppConfig . insert ( std : : make_pair ( path + " .unlock_link " , unlockLink ) ) ;
# endif
2022-03-07 14:37:14 +01:00
Poco : : JSON : : Array : : Ptr aliases = group - > getArray ( " aliases " ) ;
auto it = aliases - > begin ( ) ;
size_t j ;
for ( j = 0 ; j < aliases - > size ( ) ; j + + )
{
const std : : string aliasPath = path + " .alias[ " + std : : to_string ( j ) + ' ] ' ;
newAppConfig . insert ( std : : make_pair ( aliasPath , it - > toString ( ) ) ) ;
it + + ;
}
for ( ; ; j + + )
{
const std : : string aliasPath = path + " .alias[ " + std : : to_string ( j ) + ' ] ' ;
if ( ! conf . has ( aliasPath ) )
{
break ;
}
newAppConfig . insert ( std : : make_pair ( aliasPath , " " ) ) ;
}
}
//if number of alias_groups defined in configuration are greater than number of alias_group
//fetched from json, overwrite the remaining alias_groups from config file to empty strings and
for ( ; ; i + + )
{
2022-03-17 14:21:13 +01:00
const std : : string path =
" storage.wopi.alias_groups.group[ " + std : : to_string ( i ) + " ].host " ;
2022-03-07 14:37:14 +01:00
if ( ! conf . has ( path ) )
{
break ;
}
newAppConfig . insert ( std : : make_pair ( path , " " ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " [@allowed] " , " false " ) ) ;
}
}
catch ( const std : : exception & exc )
{
LOG_ERR ( " Fetching of alias groups failed with error: " < < exc . what ( )
2022-05-02 20:31:25 +02:00
< < " , please check JSON format " ) ;
2022-03-07 14:37:14 +01:00
}
}
2022-05-02 15:48:46 +02:00
void fetchRemoteFontConfig ( std : : map < std : : string , std : : string > & newAppConfig ,
Poco : : JSON : : Object : : Ptr remoteJson )
{
try
{
Poco : : JSON : : Object : : Ptr remoteFontConfig = remoteJson - > getObject ( " remote_font_config " ) ;
std : : string url ;
if ( JsonUtil : : findJSONValue ( remoteFontConfig , " url " , url ) )
newAppConfig . insert ( std : : make_pair ( " remote_font_config.url " , url ) ) ;
}
2022-05-02 20:31:25 +02:00
catch ( const Poco : : NullPointerException & )
{
LOG_INF ( " Not overwriting the remote font config URL because the remove_font_config entry does not exist " ) ;
}
2022-05-02 15:48:46 +02:00
catch ( const std : : exception & exc )
{
2022-05-02 20:31:25 +02:00
LOG_ERR ( " Failed to fetch remote_font_config, please check JSON format: " < < exc . what ( ) ) ;
2022-05-02 15:48:46 +02:00
}
}
2022-07-05 14:03:14 +02:00
void fetchLockedTranslations ( std : : map < std : : string , std : : string > & newAppConfig ,
Poco : : JSON : : Object : : Ptr remoteJson )
{
Poco : : JSON : : Array : : Ptr lockedTranslations ;
try
{
lockedTranslations = remoteJson - > getObject ( " feature_locking " ) - > getArray ( " translations " ) ;
std : : size_t i ;
for ( i = 0 ; i < lockedTranslations - > size ( ) ; i + + )
{
Poco : : JSON : : Object : : Ptr translation = lockedTranslations - > getObject ( i ) ;
std : : string language ;
//default values if the one of the entry is missing in json
std : : string title = conf . getString ( " feature_lock.unlock_title " , " " ) ;
std : : string description = conf . getString ( " feature_lock.unlock_description " , " " ) ;
std : : string writerHighlights =
conf . getString ( " feature_lock.writer_unlock_highlights " , " " ) ;
std : : string impressHighlights =
conf . getString ( " feature_lock.impress_unlock_highlights " , " " ) ;
std : : string calcHighlights =
conf . getString ( " feature_lock.calc_unlock_highlights " , " " ) ;
std : : string drawHighlights =
conf . getString ( " feature_lock.draw_unlock_highlights " , " " ) ;
JsonUtil : : findJSONValue ( translation , " language " , language ) ;
JsonUtil : : findJSONValue ( translation , " unlock_title " , title ) ;
JsonUtil : : findJSONValue ( translation , " unlock_description " , description ) ;
JsonUtil : : findJSONValue ( translation , " writer_unlock_highlights " , writerHighlights ) ;
JsonUtil : : findJSONValue ( translation , " calc_unlock_highlights " , calcHighlights ) ;
JsonUtil : : findJSONValue ( translation , " impress_unlock_highlights " ,
impressHighlights ) ;
JsonUtil : : findJSONValue ( translation , " draw_unlock_highlights " , drawHighlights ) ;
const std : : string path =
" feature_lock.translations.language[ " + std : : to_string ( i ) + ' ] ' ;
newAppConfig . insert ( std : : make_pair ( path + " [@name] " , language ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " .unlock_title " , title ) ) ;
newAppConfig . insert ( std : : make_pair ( path + " .unlock_description " , description ) ) ;
newAppConfig . insert (
std : : make_pair ( path + " .writer_unlock_highlights " , writerHighlights ) ) ;
newAppConfig . insert (
std : : make_pair ( path + " .calc_unlock_highlights " , calcHighlights ) ) ;
newAppConfig . insert (
std : : make_pair ( path + " .impress_unlock_highlights " , impressHighlights ) ) ;
newAppConfig . insert (
std : : make_pair ( path + " .draw_unlock_highlights " , drawHighlights ) ) ;
}
//if number of translations defined in configuration are greater than number of translation
//fetched from json, overwrite the remaining translations from config file to empty strings
for ( ; ; i + + )
{
const std : : string path =
" feature_lock.translations.language[ " + std : : to_string ( i ) + " ][@name] " ;
if ( ! conf . has ( path ) )
{
break ;
}
newAppConfig . insert ( std : : make_pair ( path , " " ) ) ;
}
}
catch ( const Poco : : NullPointerException & )
{
LOG_INF ( " Not overwriting any translations because feature_locking->translations array "
" does not exist " ) ;
return ;
}
catch ( const std : : exception & exc )
{
LOG_ERR ( " Failed to fetch remote_font_config, please check JSON format: " < < exc . what ( ) ) ;
}
}
void fetchUnlockImageUrl ( std : : map < std : : string , std : : string > & newAppConfig ,
Poco : : JSON : : Object : : Ptr remoteJson )
{
try
{
Poco : : JSON : : Object : : Ptr featureLocking = remoteJson - > getObject ( " feature_locking " ) ;
std : : string unlockImage ;
if ( JsonUtil : : findJSONValue ( featureLocking , " unlock_image " , unlockImage ) )
{
newAppConfig . insert ( std : : make_pair ( " feature_lock.unlock_image " , unlockImage ) ) ;
}
}
catch ( const Poco : : NullPointerException & )
{
LOG_INF ( " Not overwriting the unlock_image URL because the unlock_image entry does not "
" exist " ) ;
}
catch ( const std : : exception & exc )
{
LOG_ERR ( " Failed to fetch unlock_image, please check JSON format: " < < exc . what ( ) ) ;
}
}
2022-02-08 06:50:09 +01:00
//sets property to false if it is missing from JSON
//and returns std::string
std : : string booleanToString ( Poco : : Dynamic : : Var & booleanFlag )
{
if ( booleanFlag . isEmpty ( ) )
{
booleanFlag = " false " ;
}
return booleanFlag . toString ( ) ;
}
} ;
2022-02-23 11:47:53 +01:00
class RemoteFontConfigPoll : public RemoteJSONPoll
{
public :
RemoteFontConfigPoll ( LayeredConfiguration & config )
2022-05-02 15:48:46 +02:00
: RemoteJSONPoll ( config , " remote_font_config.url " , " remotefontconfig_poll " , " fontconfiguration " )
2022-02-23 11:47:53 +01:00
{
}
virtual ~ RemoteFontConfigPoll ( ) { }
void handleJSON ( Poco : : JSON : : Object : : Ptr remoteJson ) override
{
// First mark all fonts we have downloaded previously as "inactive" to be able to check if
// some font gets deleted from the list in the JSON file.
for ( auto & it : fonts )
it . second . active = false ;
// Just pick up new fonts.
2022-04-20 12:36:29 +02:00
auto fontsPtr = remoteJson - > getArray ( " fonts " ) ;
if ( ! fontsPtr )
2022-02-23 11:47:53 +01:00
{
2022-04-20 12:36:29 +02:00
LOG_WRN ( " The 'fonts' property does not exist or is not an array " ) ;
return ;
}
for ( std : : size_t i = 0 ; i < fontsPtr - > size ( ) ; i + + )
{
if ( ! fontsPtr - > isObject ( i ) )
LOG_WRN ( " Element " < < i < < " in fonts array is not an object " ) ;
2022-02-23 11:47:53 +01:00
else
{
2022-04-20 12:36:29 +02:00
const auto fontPtr = fontsPtr - > getObject ( i ) ;
const auto uriPtr = fontPtr - > get ( " uri " ) ;
if ( uriPtr . isEmpty ( ) | | ! uriPtr . isString ( ) )
LOG_WRN ( " Element in fonts array does not have an 'uri' property or it is not a string " ) ;
else
{
const std : : string uri = uriPtr . toString ( ) ;
const auto stampPtr = fontPtr - > get ( " stamp " ) ;
if ( ! stampPtr . isEmpty ( ) & & ! stampPtr . isString ( ) )
LOG_WRN ( " Element in fonts array with uri ' " < < uri < < " ' has a stamp property that is not a string, ignored " ) ;
else if ( fonts . count ( uri ) = = 0 )
{
// First case: This font has not been downloaded.
if ( ! stampPtr . isEmpty ( ) )
{
if ( downloadPlain ( uri ) )
{
fonts [ uri ] . stamp = stampPtr . toString ( ) ;
fonts [ uri ] . active = true ;
}
}
else
{
if ( downloadWithETag ( uri , " " ) )
{
fonts [ uri ] . active = true ;
}
}
}
else if ( ! stampPtr . isEmpty ( ) & & stampPtr . toString ( ) ! = fonts [ uri ] . stamp )
{
// Second case: Font has been downloaded already, has a "stamp" property,
// and that has been changed in the JSON since it was downloaded.
2022-04-25 15:55:31 +02:00
restartForKitAndReDownloadConfigFile ( ) ;
break ;
2022-04-20 12:36:29 +02:00
}
else if ( ! stampPtr . isEmpty ( ) )
{
// Third case: Font has been downloaded already, has a "stamp" property, and
// that has *not* changed in the JSON since it was downloaded.
fonts [ uri ] . active = true ;
}
else
{
// Last case: Font has been downloaded but does not have a "stamp" property.
// Use ETag.
2022-04-25 15:55:31 +02:00
if ( ! eTagUnchanged ( uri , fonts [ uri ] . eTag ) )
2022-04-20 12:36:29 +02:00
{
2022-04-25 15:55:31 +02:00
restartForKitAndReDownloadConfigFile ( ) ;
break ;
2022-04-20 12:36:29 +02:00
}
2022-04-25 15:55:31 +02:00
fonts [ uri ] . active = true ;
2022-04-20 12:36:29 +02:00
}
}
2022-02-23 11:47:53 +01:00
}
}
// Any font that has been deleted from the JSON needs to be removed on this side, too.
2022-04-25 15:55:31 +02:00
for ( const auto & it : fonts )
2022-02-23 11:47:53 +01:00
{
2022-04-25 15:55:31 +02:00
if ( ! it . second . active )
2022-02-23 11:47:53 +01:00
{
2022-04-25 15:55:31 +02:00
LOG_DBG ( " Font no longer mentioned in the remote font config: " < < it . first ) ;
restartForKitAndReDownloadConfigFile ( ) ;
break ;
2022-02-23 11:47:53 +01:00
}
}
}
void handleUnchangedJSON ( ) override
{
// Iterate over the fonts that were mentioned in the JSON file when it was last downloaded.
for ( auto & it : fonts )
{
2022-04-20 12:36:29 +02:00
// If the JSON has a "stamp" for the font, and we have already downloaded it, by
// definition we don't need to do anything when the JSON file has not changed.
if ( it . second . stamp ! = " " & & it . second . pathName ! = " " )
continue ;
// If the JSON has a "stamp" it must have been downloaded already. Should we even
// assert() that?
if ( it . second . stamp ! = " " & & it . second . pathName = = " " )
2022-02-23 11:47:53 +01:00
{
2022-04-20 12:36:29 +02:00
LOG_WRN ( " Font at " < < it . first < < " was not downloaded, should have been " ) ;
continue ;
2022-02-23 11:47:53 +01:00
}
2022-04-20 12:36:29 +02:00
// Otherwise use the ETag to check if the font file needs re-downloading.
2022-04-25 15:55:31 +02:00
if ( ! eTagUnchanged ( it . first , it . second . eTag ) )
{
restartForKitAndReDownloadConfigFile ( ) ;
break ;
}
2022-04-20 12:36:29 +02:00
}
}
2022-02-23 11:47:53 +01:00
2022-04-20 12:36:29 +02:00
private :
bool downloadPlain ( const std : : string & uri )
{
const Poco : : URI fontUri { uri } ;
std : : shared_ptr < http : : Session > httpSession ( StorageBase : : getHttpSession ( fontUri ) ) ;
http : : Request request ( fontUri . getPathAndQuery ( ) ) ;
2022-02-23 11:47:53 +01:00
2022-04-20 12:36:29 +02:00
request . set ( " User-Agent " , WOPI_AGENT_STRING ) ;
2022-02-23 11:47:53 +01:00
2022-04-20 12:36:29 +02:00
const std : : shared_ptr < const http : : Response > httpResponse
= httpSession - > syncRequest ( request ) ;
2022-02-23 11:47:53 +01:00
2022-04-20 12:36:29 +02:00
return finishDownload ( uri , httpResponse ) ;
}
2022-02-23 11:47:53 +01:00
2022-04-25 15:55:31 +02:00
bool eTagUnchanged ( const std : : string & uri , const std : : string & oldETag )
{
const Poco : : URI fontUri { uri } ;
std : : shared_ptr < http : : Session > httpSession ( StorageBase : : getHttpSession ( fontUri ) ) ;
http : : Request request ( fontUri . getPathAndQuery ( ) ) ;
if ( ! oldETag . empty ( ) )
{
request . set ( " If-None-Match " , oldETag ) ;
}
request . set ( " User-Agent " , WOPI_AGENT_STRING ) ;
const std : : shared_ptr < const http : : Response > httpResponse
= httpSession - > syncRequest ( request ) ;
const unsigned int statusCode = httpResponse - > statusLine ( ) . statusCode ( ) ;
if ( statusCode = = Poco : : Net : : HTTPResponse : : HTTP_NOT_MODIFIED )
{
LOG_DBG ( " Not modified since last time: " < < uri ) ;
return true ;
}
return false ;
}
2022-04-20 12:36:29 +02:00
bool downloadWithETag ( const std : : string & uri , const std : : string & oldETag )
{
const Poco : : URI fontUri { uri } ;
std : : shared_ptr < http : : Session > httpSession ( StorageBase : : getHttpSession ( fontUri ) ) ;
http : : Request request ( fontUri . getPathAndQuery ( ) ) ;
2022-02-23 11:47:53 +01:00
2022-04-20 12:36:29 +02:00
if ( ! oldETag . empty ( ) )
{
request . set ( " If-None-Match " , oldETag ) ;
2022-02-23 11:47:53 +01:00
}
2022-04-20 12:36:29 +02:00
request . set ( " User-Agent " , WOPI_AGENT_STRING ) ;
const std : : shared_ptr < const http : : Response > httpResponse
= httpSession - > syncRequest ( request ) ;
const unsigned int statusCode = httpResponse - > statusLine ( ) . statusCode ( ) ;
if ( statusCode = = Poco : : Net : : HTTPResponse : : HTTP_NOT_MODIFIED )
{
LOG_DBG ( " Not modified since last time: " < < uri ) ;
return true ;
}
if ( ! finishDownload ( uri , httpResponse ) )
return false ;
fonts [ uri ] . eTag = httpResponse - > get ( " ETag " ) ;
return true ;
}
bool finishDownload ( const std : : string & uri , const std : : shared_ptr < const http : : Response > httpResponse )
{
const unsigned int statusCode = httpResponse - > statusLine ( ) . statusCode ( ) ;
if ( statusCode ! = Poco : : Net : : HTTPResponse : : HTTP_OK )
{
LOG_WRN ( " Could not fetch " < < uri ) ;
return false ;
}
const std : : string body = httpResponse - > getBody ( ) ;
std : : string fontFile ;
// We intentionally use a new file name also when an updated version of a font is
// downloaded. It causes trouble to rewrite the same file, in case it is in use in some Kit
// process at the moment.
// We don't remove the old file either as that also causes problems.
// And in reality, it is a bit unclear how likely it even is that fonts downloaded through
// this mechanism even will be updated.
fontFile = COOLWSD : : TmpFontDir + " / " + Util : : encodeId ( Util : : rng : : getNext ( ) ) + " .ttf " ;
std : : ofstream fontStream ( fontFile ) ;
fontStream . write ( body . data ( ) , body . size ( ) ) ;
if ( ! fontStream . good ( ) )
{
LOG_ERR ( " Could not write to " < < fontFile ) ;
return false ;
}
LOG_DBG ( " Got " < < body . size ( ) < < " bytes for " < < uri < < " and wrote to " < < fontFile ) ;
fonts [ uri ] . pathName = fontFile ;
COOLWSD : : sendMessageToForKit ( " addfont " + fontFile ) ;
return true ;
2022-02-23 11:47:53 +01:00
}
2022-04-25 15:55:31 +02:00
void restartForKitAndReDownloadConfigFile ( )
{
LOG_DBG ( " Downloaded font has been updated or a font has been removed. ForKit must be restarted. " ) ;
fonts . clear ( ) ;
// Clear the saved ETag of the remote font configuration file so that it will be
// re-downloaded, and all fonts mentioned in it re-downloaded and fed to ForKit.
eTagValue = " " ;
COOLWSD : : sendMessageToForKit ( " exit " ) ;
}
2022-02-23 11:47:53 +01:00
struct FontData
{
2022-04-20 12:36:29 +02:00
// Each font can have a "stamp" in the JSON that we treat just as a string. In practice it
// can be some timestamp, but we don't parse it. If the stamp is changed, we re-download the
// font file.
std : : string stamp ;
// If the font has no "stamp" property, we use the ETag mechanism to see if the font file
// needs to be re-downloaded.
2022-02-23 11:47:53 +01:00
std : : string eTag ;
// Where the font has been stored
std : : string pathName ;
// Flag that tells whether the font is mentioned in the JSON file that is being handled.
2022-04-20 12:36:29 +02:00
// Used only in handleJSON() when the JSON has been (re-)downloaded, not when the JSON was
// unchanged in handleUnchangedJSON().
2022-02-23 11:47:53 +01:00
bool active ;
} ;
// The key of this map is the download URI of the font.
std : : map < std : : string , FontData > fonts ;
} ;
2022-02-08 06:50:09 +01:00
# endif
2021-11-18 13:08:14 +01:00
void COOLWSD : : innerInitialize ( Application & self )
2015-03-18 00:56:15 +01:00
{
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2021-11-18 13:08:14 +01:00
if ( geteuid ( ) = = 0 & & CheckCoolUser )
2016-04-16 20:37:38 +02:00
{
2021-11-15 17:00:44 +01:00
throw std : : runtime_error ( " Do not run as root. Please run as cool user. " ) ;
2016-04-16 20:37:38 +02:00
}
2018-09-13 18:16:00 +02:00
# endif
2016-04-16 20:37:38 +02:00
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
Util : : setApplicationPath ( Poco : : Path ( Application : : instance ( ) . commandPath ( ) ) . parent ( ) . toString ( ) ) ;
2016-12-22 10:27:30 +01:00
if ( ! UnitWSD : : init ( UnitWSD : : UnitType : : Wsd , UnitTestLibrary ) )
2016-04-16 20:37:38 +02:00
{
throw std : : runtime_error ( " Failed to load wsd unit test library. " ) ;
}
2020-12-06 20:51:54 +01:00
StartTime = std : : chrono : : steady_clock : : now ( ) ;
2019-07-19 12:39:59 +02:00
2022-02-08 06:50:09 +01:00
LayeredConfiguration & conf = config ( ) ;
2016-06-25 14:20:56 +02:00
2021-05-13 11:51:56 +02:00
// Add default values of new entries here, so there is a sensible default in case
// the setting is missing from the config file. It is possible that users do not
// update their config files, and we are backward compatible.
// These defaults should be the same
// 1) here
2021-11-18 13:08:14 +01:00
// 2) in the 'default' attribute in coolwsd.xml, which is for documentation
2021-05-13 11:51:56 +02:00
// 3) the default parameter of getConfigValue() call. That is used when the
2021-11-18 13:08:14 +01:00
// setting is present in coolwsd.xml, but empty (i.e. use the default).
2022-02-10 12:22:47 +01:00
static const std : : map < std : : string , std : : string > DefAppConfig = {
{ " allowed_languages " , " de_DE en_GB en_US es_ES fr_FR it nl pt_BR pt_PT ru " } ,
{ " admin_console.enable_pam " , " false " } ,
{ " child_root_path " , " jails " } ,
{ " file_server_root_path " , " browser/.. " } ,
{ " hexify_embedded_urls " , " false " } ,
2022-03-17 13:25:43 +01:00
{ " experimental_features " , " false " } ,
2022-02-10 12:22:47 +01:00
{ " lo_jail_subpath " , " lo " } ,
{ " logging.protocol " , " false " } ,
{ " logging.anonymize.filenames " , " false " } , // Deprecated.
{ " logging.anonymize.usernames " , " false " } , // Deprecated.
// { "logging.anonymize.anonymize_user_data", "false" }, // Do not set to fallback on filename/username.
{ " logging.color " , " true " } ,
{ " logging.file.property[0] " , " coolwsd.log " } ,
{ " logging.file.property[0][@name] " , " path " } ,
{ " logging.file.property[1] " , " never " } ,
{ " logging.file.property[1][@name] " , " rotation " } ,
{ " logging.file.property[2] " , " true " } ,
{ " logging.file.property[2][@name] " , " compress " } ,
{ " logging.file.property[3] " , " false " } ,
{ " logging.file.property[3][@name] " , " flush " } ,
{ " logging.file.property[4] " , " 10 days " } ,
{ " logging.file.property[4][@name] " , " purgeAge " } ,
{ " logging.file.property[5] " , " 10 " } ,
{ " logging.file.property[5][@name] " , " purgeCount " } ,
{ " logging.file.property[6] " , " true " } ,
{ " logging.file.property[6][@name] " , " rotationOnOpen " } ,
{ " logging.file.property[7] " , " false " } ,
{ " logging.file.property[7][@name] " , " archive " } ,
{ " logging.file[@enable] " , " false " } ,
{ " logging.level " , " trace " } ,
{ " logging.lokit_sal_log " , " -INFO-WARN " } ,
2022-06-15 11:32:56 +02:00
{ " logging.docstats " , " false " } ,
{ " logging.userstats " , " false " } ,
2022-02-10 12:22:47 +01:00
{ " browser_logging " , " false " } ,
{ " mount_jail_tree " , " true " } ,
{ " net.connection_timeout_secs " , " 30 " } ,
{ " net.listen " , " any " } ,
{ " net.proto " , " all " } ,
{ " net.service_root " , " " } ,
{ " net.proxy_prefix " , " false " } ,
{ " num_prespawn_children " , " 1 " } ,
{ " per_document.always_save_on_exit " , " false " } ,
{ " per_document.autosave_duration_secs " , " 300 " } ,
{ " per_document.cleanup.cleanup_interval_ms " , " 10000 " } ,
{ " per_document.cleanup.bad_behavior_period_secs " , " 60 " } ,
{ " per_document.cleanup.idle_time_secs " , " 300 " } ,
{ " per_document.cleanup.limit_dirty_mem_mb " , " 3072 " } ,
{ " per_document.cleanup.limit_cpu_per " , " 85 " } ,
{ " per_document.cleanup.lost_kit_grace_period_secs " , " 120 " } ,
{ " per_document.cleanup[@enable] " , " false " } ,
{ " per_document.document_signing_url " , VEREIGN_URL } ,
{ " per_document.idle_timeout_secs " , " 3600 " } ,
{ " per_document.idlesave_duration_secs " , " 30 " } ,
{ " per_document.limit_file_size_mb " , " 0 " } ,
{ " per_document.limit_num_open_files " , " 0 " } ,
{ " per_document.limit_load_secs " , " 100 " } ,
{ " per_document.limit_store_failures " , " 5 " } ,
{ " per_document.limit_convert_secs " , " 100 " } ,
{ " per_document.limit_stack_mem_kb " , " 8000 " } ,
{ " per_document.limit_virt_mem_mb " , " 0 " } ,
{ " per_document.max_concurrency " , " 4 " } ,
2022-04-23 16:04:03 +02:00
{ " per_document.min_time_between_saves_ms " , " 500 " } ,
2022-04-24 00:20:10 +02:00
{ " per_document.min_time_between_uploads_ms " , " 5000 " } ,
2022-02-10 12:22:47 +01:00
{ " per_document.batch_priority " , " 5 " } ,
{ " per_document.pdf_resolution_dpi " , " 96 " } ,
{ " per_document.redlining_as_comments " , " false " } ,
2022-02-22 22:13:16 +01:00
{ " per_view.group_download_as " , " false " } ,
2022-02-10 12:22:47 +01:00
{ " per_view.idle_timeout_secs " , " 900 " } ,
{ " per_view.out_of_focus_timeout_secs " , " 120 " } ,
{ " security.capabilities " , " true " } ,
{ " security.seccomp " , " true " } ,
{ " security.jwt_expiry_secs " , " 1800 " } ,
{ " security.enable_metrics_unauthenticated " , " false " } ,
{ " certificates.database_path " , " " } ,
{ " server_name " , " " } ,
{ " ssl.ca_file_path " , COOLWSD_CONFIGDIR " /ca-chain.cert.pem " } ,
{ " ssl.cert_file_path " , COOLWSD_CONFIGDIR " /cert.pem " } ,
{ " ssl.enable " , " true " } ,
{ " ssl.hpkp.max_age[@enable] " , " true " } ,
{ " ssl.hpkp.report_uri[@enable] " , " false " } ,
{ " ssl.hpkp[@enable] " , " false " } ,
{ " ssl.hpkp[@report_only] " , " false " } ,
{ " ssl.sts.enabled " , " false " } ,
{ " ssl.sts.max_age " , " 31536000 " } ,
{ " ssl.key_file_path " , COOLWSD_CONFIGDIR " /key.pem " } ,
{ " ssl.termination " , " true " } ,
{ " storage.filesystem[@allow] " , " false " } ,
// "storage.ssl.enable" - deliberately not set; for back-compat
{ " storage.wopi.max_file_size " , " 0 " } ,
{ " storage.wopi[@allow] " , " true " } ,
{ " storage.wopi.locking.refresh " , " 900 " } ,
{ " sys_template_path " , " systemplate " } ,
{ " trace_event[@enable] " , " false " } ,
{ " trace.path[@compress] " , " true " } ,
{ " trace.path[@snapshot] " , " false " } ,
{ " trace[@enable] " , " false " } ,
2022-03-21 17:20:35 +01:00
{ " welcome.enable " , " false " } ,
2022-06-29 15:46:01 +02:00
{ " home_mode.enable " , " false " } ,
{ " feedback.show " , " true " } ,
2022-08-03 04:04:49 +02:00
# if ENABLE_FEATURE_LOCK
2022-02-08 06:50:09 +01:00
{ " feature_lock.locked_hosts[@allow] " , " false " } ,
{ " feature_lock.locked_hosts.fallback[@read_only] " , " false " } ,
{ " feature_lock.locked_hosts.fallback[@disabled_commands] " , " false " } ,
{ " feature_lock.locked_hosts.host[0] " , " localhost " } ,
{ " feature_lock.locked_hosts.host[0][@read_only] " , " false " } ,
{ " feature_lock.locked_hosts.host[0][@disabled_commands] " , " false " } ,
2022-02-10 12:22:47 +01:00
{ " feature_lock.is_lock_readonly " , " false " } ,
{ " feature_lock.locked_commands " , LOCKED_COMMANDS } ,
{ " feature_lock.unlock_title " , UNLOCK_TITLE } ,
{ " feature_lock.unlock_link " , UNLOCK_LINK } ,
{ " feature_lock.unlock_description " , UNLOCK_DESCRIPTION } ,
{ " feature_lock.writer_unlock_highlights " , WRITER_UNLOCK_HIGHLIGHTS } ,
{ " feature_lock.calc_unlock_highlights " , CALC_UNLOCK_HIGHLIGHTS } ,
{ " feature_lock.impress_unlock_highlights " , IMPRESS_UNLOCK_HIGHLIGHTS } ,
{ " feature_lock.draw_unlock_highlights " , DRAW_UNLOCK_HIGHLIGHTS } ,
2021-09-13 22:02:43 +02:00
# endif
2022-08-03 04:04:49 +02:00
# if ENABLE_FEATURE_RESTRICTION
2022-02-10 12:22:47 +01:00
{ " restricted_commands " , " " } ,
2021-05-29 14:31:33 +02:00
# endif
2022-02-10 12:22:47 +01:00
{ " user_interface.mode " , " default " } ,
{ " user_interface.use_integration_theme " , " true " } ,
{ " quarantine_files[@enable] " , " false " } ,
{ " quarantine_files.limit_dir_size_mb " , " 250 " } ,
{ " quarantine_files.max_versions_to_maintain " , " 2 " } ,
{ " quarantine_files.path " , " quarantine " } ,
2022-02-08 06:50:09 +01:00
{ " quarantine_files.expiry_min " , " 30 " } ,
2022-03-17 14:21:13 +01:00
{ " remote_config.remote_url " , " " } ,
2022-06-10 13:43:27 +02:00
{ " storage.wopi.alias_groups[@mode] " , " first " } ,
{ " languagetool.base_url " , " " } ,
{ " languagetool.api_key " , " " } ,
{ " languagetool.user_name " , " " } ,
2022-07-04 19:35:07 +02:00
{ " languagetool.enabled " , " false " } ,
{ " languagetool.ssl_verification " , " true " } ,
2022-07-28 11:22:12 +02:00
{ " deepl.api_url " , " " } ,
{ " deepl.auth_key " , " " } ,
2022-02-10 12:22:47 +01:00
} ;
2016-06-25 14:20:56 +02:00
// Set default values, in case they are missing from the config file.
2017-01-13 13:52:08 +01:00
AutoPtr < AppConfigMap > defConfig ( new AppConfigMap ( DefAppConfig ) ) ;
conf . addWriteable ( defConfig , PRIO_SYSTEM ) ; // Lowest priority
2016-06-25 14:20:56 +02:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2016-04-07 05:36:54 +02:00
// Load default configuration files, if present.
2016-06-25 14:20:56 +02:00
if ( loadConfiguration ( PRIO_DEFAULT ) = = 0 )
2016-03-24 10:37:17 +01:00
{
2021-11-18 13:08:14 +01:00
// Fallback to the COOLWSD_CONFIGDIR or --config-file path.
2017-01-26 09:19:50 +01:00
loadConfiguration ( ConfigFile , PRIO_DEFAULT ) ;
2016-03-24 10:37:17 +01:00
}
2016-03-16 20:52:01 +01:00
2017-11-07 14:12:18 +01:00
// Load extra ("plug-in") configuration files, if present
File dir ( ConfigDir ) ;
if ( dir . exists ( ) & & dir . isDirectory ( ) )
{
for ( auto configFileIterator = DirectoryIterator ( dir ) ; configFileIterator ! = DirectoryIterator ( ) ; + + configFileIterator )
{
// Only accept configuration files ending in .xml
const std : : string configFile = configFileIterator . path ( ) . getFileName ( ) ;
if ( configFile . length ( ) > 4 & & strcasecmp ( configFile . substr ( configFile . length ( ) - 4 ) . data ( ) , " .xml " ) = = 0 )
{
const std : : string fullFileName = dir . path ( ) + " / " + configFile ;
PluginConfigurations . insert ( new XMLConfiguration ( fullFileName ) ) ;
}
}
}
2016-06-25 18:31:22 +02:00
// Override any settings passed on the command-line.
2017-01-13 13:52:08 +01:00
AutoPtr < AppConfigMap > overrideConfig ( new AppConfigMap ( _overrideSettings ) ) ;
conf . addWriteable ( overrideConfig , PRIO_APPLICATION ) ; // Highest priority
2016-06-25 18:31:22 +02:00
2016-04-16 20:37:38 +02:00
// Allow UT to manipulate before using configuration values.
UnitWSD : : get ( ) . configure ( config ( ) ) ;
2022-03-17 13:25:43 +01:00
// Experimental features.
EnableExperimental = getConfigValue < bool > ( conf , " experimental_features " , false ) ;
2020-06-26 12:58:09 +02:00
// Setup user interface mode
2021-11-19 15:24:18 +01:00
UserInterface = getConfigValue < std : : string > ( conf , " user_interface.mode " , " default " ) ;
2020-06-26 12:58:09 +02:00
2022-04-22 12:00:00 +02:00
if ( UserInterface = = " compact " )
UserInterface = " classic " ;
if ( UserInterface = = " tabbed " )
UserInterface = " notebookbar " ;
2018-01-08 04:34:28 +01:00
// Set the log-level after complete initialization to force maximum details at startup.
LogLevel = getConfigValue < std : : string > ( conf , " logging.level " , " trace " ) ;
2021-05-31 13:00:21 +02:00
MostVerboseLogLevelSettableFromClient = getConfigValue < std : : string > ( conf , " logging.most_verbose_level_settable_from_client " , " notice " ) ;
LeastVerboseLogLevelSettableFromClient = getConfigValue < std : : string > ( conf , " logging.least_verbose_level_settable_from_client " , " fatal " ) ;
2021-05-28 13:31:57 +02:00
2021-11-18 13:08:14 +01:00
setenv ( " COOL_LOGLEVEL " , LogLevel . c_str ( ) , true ) ;
2021-01-08 15:40:23 +01:00
# if !ENABLE_DEBUG
2021-02-08 03:53:39 +01:00
const std : : string salLog = getConfigValue < std : : string > ( conf , " logging.lokit_sal_log " , " -INFO-WARN " ) ;
setenv ( " SAL_LOG " , salLog . c_str ( ) , 0 ) ;
2021-01-08 15:40:23 +01:00
# endif
2018-02-07 10:17:59 +01:00
const bool withColor = getConfigValue < bool > ( conf , " logging.color " , true ) & & isatty ( fileno ( stderr ) ) ;
2016-07-30 17:52:10 +02:00
if ( withColor )
2016-09-22 00:12:34 +02:00
{
2021-11-18 13:08:14 +01:00
setenv ( " COOL_LOGCOLOR " , " 1 " , true ) ;
2016-09-22 00:12:34 +02:00
}
2016-08-08 05:32:39 +02:00
const auto logToFile = getConfigValue < bool > ( conf , " logging.file[@enable] " , false ) ;
std : : map < std : : string , std : : string > logProperties ;
2018-06-28 06:47:20 +02:00
for ( std : : size_t i = 0 ; ; + + i )
2016-08-08 05:32:39 +02:00
{
2020-05-24 15:10:18 +02:00
const std : : string confPath = " logging.file.property[ " + std : : to_string ( i ) + ' ] ' ;
2018-02-07 10:17:59 +01:00
const std : : string confName = config ( ) . getString ( confPath + " [@name] " , " " ) ;
2016-08-13 14:59:14 +02:00
if ( ! confName . empty ( ) )
2016-08-08 05:32:39 +02:00
{
2018-02-07 10:17:59 +01:00
const std : : string value = config ( ) . getString ( confPath , " " ) ;
2016-08-13 14:59:14 +02:00
logProperties . emplace ( confName , value ) ;
2016-08-08 05:32:39 +02:00
}
else if ( ! config ( ) . has ( confPath ) )
{
break ;
}
}
2016-09-22 00:12:34 +02:00
// Setup the logfile envar for the kit processes.
if ( logToFile )
{
const auto it = logProperties . find ( " path " ) ;
if ( it ! = logProperties . end ( ) )
{
2021-11-18 13:08:14 +01:00
setenv ( " COOL_LOGFILE " , " 1 " , true ) ;
setenv ( " COOL_LOGFILENAME " , it - > second . c_str ( ) , true ) ;
2020-10-22 17:30:17 +02:00
std : : cerr < < " \n Logging at " < < LogLevel < < " level to file: " < < it - > second . c_str ( )
< < std : : endl ;
2016-09-22 00:12:34 +02:00
}
}
2018-01-08 04:34:28 +01:00
// Log at trace level until we complete the initialization.
Log : : initialize ( " wsd " , " trace " , withColor , logToFile , logProperties ) ;
if ( LogLevel ! = " trace " )
{
2020-10-22 17:30:17 +02:00
LOG_INF ( " Setting log-level to [trace] and delaying setting to configured [ "
< < LogLevel < < " ] until after WSD initialization. " ) ;
2018-01-08 04:34:28 +01:00
}
2016-07-30 17:52:10 +02:00
2021-05-13 11:21:52 +02:00
EnableTraceEventLogging = getConfigValue < bool > ( conf , " trace_event[@enable] " , false ) ;
2021-05-10 13:29:08 +02:00
if ( EnableTraceEventLogging )
2021-04-15 17:43:44 +02:00
{
2021-11-18 13:08:14 +01:00
const auto traceEventFile = getConfigValue < std : : string > ( conf , " trace_event.path " , COOLWSD_TRACEEVENTFILE ) ;
2021-05-04 10:57:58 +02:00
LOG_INF ( " Trace Event file is " < < traceEventFile < < " . " ) ;
TraceEventFile = fopen ( traceEventFile . c_str ( ) , " w " ) ;
if ( TraceEventFile ! = NULL )
2021-04-15 17:43:44 +02:00
{
2021-05-04 10:57:58 +02:00
if ( fcntl ( fileno ( TraceEventFile ) , F_SETFD , FD_CLOEXEC ) = = - 1 )
2021-04-15 17:43:44 +02:00
{
2021-05-04 10:57:58 +02:00
fclose ( TraceEventFile ) ;
TraceEventFile = NULL ;
2021-04-15 17:43:44 +02:00
}
else
2021-06-17 11:17:43 +02:00
{
2021-05-04 10:57:58 +02:00
fprintf ( TraceEventFile , " [ \n " ) ;
2021-06-17 11:17:43 +02:00
// Output a metadata event that tells that this is the WSD process
fprintf ( TraceEventFile , " { \" name \" : \" process_name \" , \" ph \" : \" M \" , \" args \" :{ \" name \" : \" WSD \" }, \" pid \" :%d, \" tid \" :%ld}, \n " ,
getpid ( ) , ( long ) Util : : getThreadId ( ) ) ;
2021-06-17 11:24:48 +02:00
fprintf ( TraceEventFile , " { \" name \" : \" thread_name \" , \" ph \" : \" M \" , \" args \" :{ \" name \" : \" Main \" }, \" pid \" :%d, \" tid \" :%ld}, \n " ,
getpid ( ) , ( long ) Util : : getThreadId ( ) ) ;
2021-06-17 11:17:43 +02:00
}
2021-04-15 17:43:44 +02:00
}
}
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
ServerName = config ( ) . getString ( " server_name " ) ;
2022-04-03 20:54:27 +02:00
LOG_INF ( " Initializing coolwsd server [ " < < ServerName < < " ]. Experimental features are "
< < ( EnableExperimental ? " enabled. " : " disabled. " ) ) ;
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
2018-08-02 04:25:38 +02:00
// Get anonymization settings.
2021-11-18 13:08:14 +01:00
# if COOLWSD_ANONYMIZE_USER_DATA
2019-04-14 18:24:45 +02:00
AnonymizeUserData = true ;
LOG_INF ( " Anonymization of user-data is permanently enabled. " ) ;
2018-08-02 04:25:38 +02:00
# else
2019-04-14 18:24:45 +02:00
LOG_INF ( " Anonymization of user-data is configurable. " ) ;
bool haveAnonymizeUserDataConfig = false ;
if ( getSafeConfig ( conf , " logging.anonymize.anonymize_user_data " , AnonymizeUserData ) )
haveAnonymizeUserDataConfig = true ;
bool anonymizeFilenames = false ;
bool anonymizeUsernames = false ;
if ( getSafeConfig ( conf , " logging.anonymize.usernames " , anonymizeFilenames ) | |
getSafeConfig ( conf , " logging.anonymize.filenames " , anonymizeUsernames ) )
{
LOG_WRN ( " NOTE: both logging.anonymize.usernames and logging.anonymize.filenames are deprecated and superseded by "
" logging.anonymize.anonymize_user_data. Please remove username and filename entries from the config and use only anonymize_user_data. " ) ;
2018-08-02 04:25:38 +02:00
2019-04-14 18:24:45 +02:00
if ( haveAnonymizeUserDataConfig )
LOG_WRN ( " Since logging.anonymize.anonymize_user_data is provided ( " < < AnonymizeUserData < < " ) in the config, it will be used. " ) ;
else
{
AnonymizeUserData = ( anonymizeFilenames | | anonymizeUsernames ) ;
}
}
2018-08-02 04:25:38 +02:00
# endif
2021-10-28 22:28:59 +02:00
if ( AnonymizeUserData & & LogLevel = = " trace " & & ! CleanupOnly )
2018-08-02 04:25:38 +02:00
{
2019-04-14 18:24:45 +02:00
if ( getConfigValue < bool > ( conf , " logging.anonymize.allow_logging_user_data " , false ) )
2018-08-02 04:25:38 +02:00
{
2019-04-14 18:24:45 +02:00
LOG_WRN ( " Enabling trace logging while anonymization is enabled due to logging.anonymize.allow_logging_user_data setting. "
" This will leak user-data! " ) ;
2018-08-24 03:38:01 +02:00
// Disable anonymization as it's useless now.
2019-04-14 18:24:45 +02:00
AnonymizeUserData = false ;
2018-08-02 04:25:38 +02:00
}
else
{
static const char failure [ ] = " Anonymization and trace-level logging are incompatible. "
2021-11-18 13:08:14 +01:00
" Please reduce logging level to debug or lower in coolwsd.xml to prevent leaking sensitive user data. " ;
2018-08-02 04:25:38 +02:00
LOG_FTL ( failure ) ;
std : : cerr < < ' \n ' < < failure < < std : : endl ;
# if ENABLE_DEBUG
2021-11-18 13:08:14 +01:00
std : : cerr < < " \n If you have used 'make run', edit coolwsd.xml and make sure you have removed "
2018-08-02 04:25:38 +02:00
" '--o:logging.level=trace' from the command line in Makefile.am. \n " < < std : : endl ;
# endif
2022-07-16 05:18:48 +02:00
Util : : forcedExit ( EX_SOFTWARE ) ;
2018-08-02 04:25:38 +02:00
}
}
2020-01-17 23:31:41 +01:00
std : : uint64_t anonymizationSalt = 82589933 ;
2019-04-14 18:24:45 +02:00
LOG_INF ( " Anonymization of user-data is " < < ( AnonymizeUserData ? " enabled. " : " disabled. " ) ) ;
if ( AnonymizeUserData )
2019-04-14 18:21:19 +02:00
{
// Get the salt, if set, otherwise default, and set as envar, so the kits inherit it.
2020-01-17 23:31:41 +01:00
anonymizationSalt = getConfigValue < std : : uint64_t > ( conf , " logging.anonymize.anonymization_salt " , 82589933 ) ;
const std : : string anonymizationSaltStr = std : : to_string ( anonymizationSalt ) ;
2021-11-18 13:08:14 +01:00
setenv ( " COOL_ANONYMIZATION_SALT " , anonymizationSaltStr . c_str ( ) , true ) ;
2019-04-14 18:21:19 +02:00
}
2020-01-17 23:31:41 +01:00
FileUtil : : setUrlAnonymization ( AnonymizeUserData , anonymizationSalt ) ;
2018-08-24 03:38:01 +02:00
2018-01-09 15:02:02 +01:00
{
std : : string proto = getConfigValue < std : : string > ( conf , " net.proto " , " " ) ;
2021-03-22 21:58:35 +01:00
if ( Util : : iequal ( proto , " ipv4 " ) )
2018-01-09 15:02:02 +01:00
ClientPortProto = Socket : : Type : : IPv4 ;
2021-03-22 21:58:35 +01:00
else if ( Util : : iequal ( proto , " ipv6 " ) )
2018-01-09 15:02:02 +01:00
ClientPortProto = Socket : : Type : : IPv6 ;
2021-03-22 21:58:35 +01:00
else if ( Util : : iequal ( proto , " all " ) )
2018-01-09 15:02:02 +01:00
ClientPortProto = Socket : : Type : : All ;
else
LOG_WRN ( " Invalid protocol: " < < proto ) ;
}
2018-10-01 20:17:35 +02:00
{
std : : string listen = getConfigValue < std : : string > ( conf , " net.listen " , " " ) ;
2021-03-22 21:58:35 +01:00
if ( Util : : iequal ( listen , " any " ) )
2018-10-01 20:17:35 +02:00
ClientListenAddr = ServerSocket : : Type : : Public ;
2021-03-22 21:58:35 +01:00
else if ( Util : : iequal ( listen , " loopback " ) )
2018-10-01 20:17:35 +02:00
ClientListenAddr = ServerSocket : : Type : : Local ;
else
LOG_WRN ( " Invalid listen address: " < < listen < < " . Falling back to default: 'any' " ) ;
}
2021-11-18 13:08:14 +01:00
// Prefix for the coolwsd pages; should not end with a '/'
2018-09-07 00:25:50 +02:00
ServiceRoot = getPathFromConfig ( " net.service_root " ) ;
while ( ServiceRoot . length ( ) > 0 & & ServiceRoot [ ServiceRoot . length ( ) - 1 ] = = ' / ' )
ServiceRoot . pop_back ( ) ;
2020-05-07 22:11:38 +02:00
IsProxyPrefixEnabled = getConfigValue < bool > ( conf , " net.proxy_prefix " , false ) ;
2017-03-15 20:59:54 +01:00
# if ENABLE_SSL
2021-11-18 13:08:14 +01:00
COOLWSD : : SSLEnabled . set ( getConfigValue < bool > ( conf , " ssl.enable " , true ) ) ;
COOLWSD : : SSLTermination . set ( getConfigValue < bool > ( conf , " ssl.termination " , true ) ) ;
2016-09-01 16:24:22 +02:00
# endif
2016-08-28 21:41:28 +02:00
2021-11-18 13:08:14 +01:00
LOG_INF ( " SSL support: SSL is " < < ( COOLWSD : : isSSLEnabled ( ) ? " enabled. " : " disabled. " ) ) ;
LOG_INF ( " SSL support: termination is " < < ( COOLWSD : : isSSLTermination ( ) ? " enabled. " : " disabled. " ) ) ;
2021-01-30 02:53:53 +01:00
2018-01-26 20:57:54 +01:00
std : : string allowedLanguages ( config ( ) . getString ( " allowed_languages " ) ) ;
2020-10-14 10:46:55 +02:00
// Core <= 7.0.
2018-01-26 20:57:54 +01:00
setenv ( " LOK_WHITELIST_LANGUAGES " , allowedLanguages . c_str ( ) , 1 ) ;
2020-10-14 10:46:55 +02:00
// Core >= 7.1.
setenv ( " LOK_ALLOWLIST_LANGUAGES " , allowedLanguages . c_str ( ) , 1 ) ;
2018-01-26 20:57:54 +01:00
2018-09-13 18:16:00 +02:00
# endif
2021-03-30 02:39:35 +02:00
int pdfResolution = getConfigValue < int > ( conf , " per_document.pdf_resolution_dpi " , 96 ) ;
2021-03-28 15:29:52 +02:00
if ( pdfResolution > 0 )
{
2021-03-30 02:39:35 +02:00
constexpr int MaxPdfResolutionDpi = 384 ;
if ( pdfResolution > MaxPdfResolutionDpi )
{
// Avoid excessive memory consumption.
LOG_WRN ( " The PDF resolution specified in per_document.pdf_resolution_dpi ( "
< < pdfResolution < < " ) is larger than the maximum ( " < < MaxPdfResolutionDpi
< < " ). Using " < < MaxPdfResolutionDpi < < " instead. " ) ;
pdfResolution = MaxPdfResolutionDpi ;
}
2021-03-28 15:29:52 +02:00
const std : : string pdfResolutionStr = std : : to_string ( pdfResolution ) ;
LOG_DBG ( " Setting envar PDFIMPORT_RESOLUTION_DPI= "
< < pdfResolutionStr < < " per config per_document.pdf_resolution_dpi " ) ;
: : setenv ( " PDFIMPORT_RESOLUTION_DPI " , pdfResolutionStr . c_str ( ) , 1 ) ;
}
2016-06-26 00:03:41 +02:00
SysTemplate = getPathFromConfig ( " sys_template_path " ) ;
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
if ( SysTemplate . empty ( ) )
{
LOG_FTL ( " Missing sys_template_path config entry. " ) ;
throw MissingOptionException ( " systemplate " ) ;
}
2016-06-26 00:03:41 +02:00
ChildRoot = getPathFromConfig ( " child_root_path " ) ;
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
if ( ChildRoot . empty ( ) )
{
LOG_FTL ( " Missing child_root_path config entry. " ) ;
throw MissingOptionException ( " childroot " ) ;
}
else
{
2020-07-01 12:48:01 +02:00
# if !MOBILEAPP
2020-06-28 17:30:22 +02:00
if ( CleanupOnly )
{
// Cleanup and exit.
JailUtil : : cleanupJails ( ChildRoot ) ;
2022-03-08 13:53:40 +01:00
Util : : forcedExit ( EX_OK ) ;
2020-06-28 17:30:22 +02:00
}
2020-07-01 12:48:01 +02:00
# endif
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
if ( ChildRoot [ ChildRoot . size ( ) - 1 ] ! = ' / ' )
ChildRoot + = ' / ' ;
2022-03-13 23:28:31 +01:00
# if CODE_COVERAGE
: : setenv ( " BASE_CHILD_ROOT " , Poco : : Path ( ChildRoot ) . absolute ( ) . toString ( ) . c_str ( ) , 1 ) ;
# endif
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
// Create a custom sub-path for parallelized unit tests.
if ( UnitBase : : isUnitTesting ( ) )
{
ChildRoot + = Util : : rng : : getHardRandomHexString ( 8 ) + ' / ' ;
LOG_INF ( " Creating sub-childroot: " + ChildRoot ) ;
}
else
LOG_INF ( " Creating childroot: " + ChildRoot ) ;
}
2021-04-02 19:22:44 +02:00
# if !MOBILEAPP
2021-03-27 22:40:59 +01:00
// Copy and serialize the config into XML to pass to forkit.
KitXmlConfig . reset ( new Poco : : Util : : XMLConfiguration ) ;
for ( const auto & pair : DefAppConfig )
{
try
{
KitXmlConfig - > setString ( pair . first , config ( ) . getRawString ( pair . first ) ) ;
}
catch ( const std : : exception & )
{
// Nothing to do.
}
}
// Fixup some config entries to match out decisions/overrides.
KitXmlConfig - > setBool ( " ssl.enable " , isSSLEnabled ( ) ) ;
KitXmlConfig - > setBool ( " ssl.termination " , isSSLTermination ( ) ) ;
// We don't pass the config via command-line
// to avoid dealing with escaping and other traps.
std : : ostringstream oss ;
KitXmlConfig - > save ( oss ) ;
2021-11-18 13:08:14 +01:00
setenv ( " COOL_CONFIG " , oss . str ( ) . c_str ( ) , true ) ;
2021-03-27 22:40:59 +01:00
// Initialize the config subsystem too.
config : : initialize ( & config ( ) ) ;
2022-07-19 02:31:12 +02:00
IsBindMountingEnabled = getConfigValue < bool > ( conf , " mount_jail_tree " , true ) ;
2022-03-13 23:28:31 +01:00
# if CODE_COVERAGE
// Code coverage is not supported with bind-mounting.
2022-07-19 02:31:12 +02:00
if ( IsBindMountingEnabled )
2022-03-13 23:28:31 +01:00
{
LOG_WRN ( " Mounting is not compatible with code-coverage. Disabling. " ) ;
2022-07-19 02:31:12 +02:00
IsBindMountingEnabled = false ;
2022-03-13 23:28:31 +01:00
}
# endif // CODE_COVERAGE
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
// Setup the jails.
2022-07-19 02:31:12 +02:00
JailUtil : : setupChildRoot ( IsBindMountingEnabled , ChildRoot , SysTemplate ) ;
2017-01-26 09:19:50 +01:00
2020-04-14 19:50:04 +02:00
LOG_DBG ( " FileServerRoot before config: " < < FileServerRoot ) ;
2016-06-26 00:03:41 +02:00
FileServerRoot = getPathFromConfig ( " file_server_root_path " ) ;
2020-04-14 19:50:04 +02:00
LOG_DBG ( " FileServerRoot after config: " < < FileServerRoot ) ;
2021-10-21 21:29:15 +02:00
//creating quarantine directory
2021-11-03 08:08:22 +01:00
if ( getConfigValue < bool > ( conf , " quarantine_files[@enable] " , false ) )
{
QuarantinePath = getPathFromConfig ( " quarantine_files.path " ) ;
2021-11-03 11:32:37 +01:00
if ( QuarantinePath [ QuarantinePath . size ( ) - 1 ] ! = ' / ' )
QuarantinePath + = ' / ' ;
2021-11-03 08:08:22 +01:00
Poco : : File p ( QuarantinePath ) ;
p . createDirectories ( ) ;
LOG_INF ( " Created quarantine directory " + p . path ( ) ) ;
2021-10-21 21:29:15 +02:00
2021-11-03 08:08:22 +01:00
Quarantine : : createQuarantineMap ( ) ;
}
2021-10-21 21:29:15 +02:00
2017-01-28 23:25:14 +01:00
NumPreSpawnedChildren = getConfigValue < int > ( conf , " num_prespawn_children " , 1 ) ;
if ( NumPreSpawnedChildren < 1 )
{
LOG_WRN ( " Invalid num_prespawn_children in config ( " < < NumPreSpawnedChildren < < " ). Resetting to 1. " ) ;
NumPreSpawnedChildren = 1 ;
}
2020-05-24 15:10:18 +02:00
LOG_INF ( " NumPreSpawnedChildren set to " < < NumPreSpawnedChildren < < ' . ' ) ;
2016-04-07 05:51:58 +02:00
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
FileUtil : : registerFileSystemForDiskSpaceChecks ( ChildRoot ) ;
2017-01-28 23:25:14 +01:00
const auto maxConcurrency = getConfigValue < int > ( conf , " per_document.max_concurrency " , 4 ) ;
2016-06-16 00:46:13 +02:00
if ( maxConcurrency > 0 )
{
setenv ( " MAX_CONCURRENCY " , std : : to_string ( maxConcurrency ) . c_str ( ) , 1 ) ;
}
2020-05-24 15:10:18 +02:00
LOG_INF ( " MAX_CONCURRENCY set to " < < maxConcurrency < < ' . ' ) ;
2018-09-13 18:16:00 +02:00
# endif
2016-06-16 00:46:13 +02:00
2020-02-20 02:24:20 +01:00
const auto redlining = getConfigValue < bool > ( conf , " per_document.redlining_as_comments " , false ) ;
2018-11-08 22:02:57 +01:00
if ( ! redlining )
{
setenv ( " DISABLE_REDLINE " , " 1 " , 1 ) ;
LOG_INF ( " DISABLE_REDLINE set " ) ;
}
2016-08-31 23:05:02 +02:00
// Otherwise we profile the soft-device at jail creation time.
2016-10-30 02:15:00 +01:00
setenv ( " SAL_DISABLE_OPENCL " , " true " , 1 ) ;
2016-08-31 23:05:02 +02:00
2017-01-03 21:19:02 +01:00
// Log the connection and document limits.
2022-06-29 15:46:01 +02:00
# if ENABLE_WELCOME_MESSAGE
if ( getConfigValue < bool > ( conf , " home_mode.enable " , false ) )
{
COOLWSD : : MaxConnections = 20 ;
COOLWSD : : MaxDocuments = 10 ;
}
else
{
conf . setString ( " feedback.show " , " true " ) ;
conf . setString ( " welcome.enable " , " true " ) ;
COOLWSD : : MaxConnections = MAX_CONNECTIONS ;
COOLWSD : : MaxDocuments = MAX_DOCUMENTS ;
}
# else
{
COOLWSD : : MaxConnections = MAX_CONNECTIONS ;
COOLWSD : : MaxDocuments = MAX_DOCUMENTS ;
}
# endif
2017-10-03 21:48:28 +02:00
2020-02-28 14:55:42 +01:00
# if !MOBILEAPP
2018-03-19 16:20:10 +01:00
NoSeccomp = ! getConfigValue < bool > ( conf , " security.seccomp " , true ) ;
NoCapsForKit = ! getConfigValue < bool > ( conf , " security.capabilities " , true ) ;
2018-04-17 21:47:17 +02:00
AdminEnabled = getConfigValue < bool > ( conf , " admin_console.enable " , true ) ;
2020-02-28 14:55:42 +01:00
# endif
2018-03-19 16:20:10 +01:00
2022-07-28 11:22:12 +02:00
// LanguageTool configuration
2022-06-10 13:43:27 +02:00
bool enableLanguageTool = getConfigValue < bool > ( conf , " languagetool.enabled " , false ) ;
setenv ( " LANGUAGETOOL_ENABLED " , enableLanguageTool ? " true " : " false " , 1 ) ;
const std : : string baseAPIUrl = getConfigValue < std : : string > ( conf , " languagetool.base_url " , " " ) ;
setenv ( " LANGUAGETOOL_BASEURL " , baseAPIUrl . c_str ( ) , 1 ) ;
const std : : string userName = getConfigValue < std : : string > ( conf , " languagetool.user_name " , " " ) ;
setenv ( " LANGUAGETOOL_USERNAME " , userName . c_str ( ) , 1 ) ;
const std : : string apiKey = getConfigValue < std : : string > ( conf , " languagetool.api_key " , " " ) ;
setenv ( " LANGUAGETOOL_APIKEY " , apiKey . c_str ( ) , 1 ) ;
2022-07-04 19:35:07 +02:00
bool sslVerification = getConfigValue < bool > ( conf , " languagetool.ssl_verification " , " " ) ;
setenv ( " LANGUAGETOOL_SSL_VERIFICATION " , sslVerification ? " true " : " false " , 1 ) ;
2022-06-10 13:43:27 +02:00
2022-07-28 11:22:12 +02:00
// DeepL configuration
const std : : string apiURL = getConfigValue < std : : string > ( conf , " deepl.api_url " , " " ) ;
const std : : string authKey = getConfigValue < std : : string > ( conf , " deepl.auth_key " , " " ) ;
setenv ( " DEEPL_API_URL " , apiURL . c_str ( ) , 1 ) ;
setenv ( " DEEPL_AUTH_KEY " , authKey . c_str ( ) , 1 ) ;
2017-10-03 21:48:28 +02:00
# if ENABLE_SUPPORT_KEY
const std : : string supportKeyString = getConfigValue < std : : string > ( conf , " support_key " , " " ) ;
if ( supportKeyString . empty ( ) )
{
2021-11-15 14:47:53 +01:00
LOG_WRN ( " Support key not set, please use 'coolconfig set-support-key'. " ) ;
std : : cerr < < " Support key not set, please use 'coolconfig set-support-key'. " < < std : : endl ;
2021-11-18 13:08:14 +01:00
COOLWSD : : OverrideWatermark = " Unsupported, the support key is missing. " ;
2017-10-03 21:48:28 +02:00
}
else
{
SupportKey key ( supportKeyString ) ;
if ( ! key . verify ( ) )
{
2021-11-15 14:47:53 +01:00
LOG_WRN ( " Invalid support key, please use 'coolconfig set-support-key'. " ) ;
std : : cerr < < " Invalid support key, please use 'coolconfig set-support-key'. " < < std : : endl ;
2021-11-18 13:08:14 +01:00
COOLWSD : : OverrideWatermark = " Unsupported, the support key is invalid. " ;
2017-10-03 21:48:28 +02:00
}
else
{
int validDays = key . validDaysRemaining ( ) ;
if ( validDays < = 0 )
{
2021-11-15 14:47:53 +01:00
LOG_WRN ( " Your support key has expired, please ask for a new one, and use 'coolconfig set-support-key'. " ) ;
std : : cerr < < " Your support key has expired, please ask for a new one, and use 'coolconfig set-support-key'. " < < std : : endl ;
2021-11-18 13:08:14 +01:00
COOLWSD : : OverrideWatermark = " Unsupported, the support key has expired. " ;
2017-10-03 21:48:28 +02:00
}
else
{
LOG_INF ( " Your support key is valid for " < < validDays < < " days " ) ;
2021-11-18 13:08:14 +01:00
COOLWSD : : MaxConnections = 1000 ;
COOLWSD : : MaxDocuments = 200 ;
COOLWSD : : OverrideWatermark = " " ;
2017-10-03 21:48:28 +02:00
}
}
}
# endif
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : MaxConnections < 3 )
2017-10-03 21:48:28 +02:00
{
LOG_ERR ( " MAX_CONNECTIONS must be at least 3 " ) ;
2021-11-18 13:08:14 +01:00
COOLWSD : : MaxConnections = 3 ;
2017-10-03 21:48:28 +02:00
}
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : MaxDocuments > COOLWSD : : MaxConnections )
2017-10-03 21:48:28 +02:00
{
LOG_ERR ( " MAX_DOCUMENTS cannot be bigger than MAX_CONNECTIONS " ) ;
2021-11-18 13:08:14 +01:00
COOLWSD : : MaxDocuments = COOLWSD : : MaxConnections ;
2017-10-03 21:48:28 +02:00
}
2020-08-08 22:05:17 +02:00
struct rlimit rlim ;
: : getrlimit ( RLIMIT_NOFILE , & rlim ) ;
LOG_INF ( " Maximum file descriptor supported by the system: " < < rlim . rlim_cur - 1 ) ;
// 4 fds per document are used for client connection, Kit process communication, and
// a wakeup pipe with 2 fds. 32 fds (i.e. 8 documents) are reserved.
LOG_INF ( " Maximum number of open documents supported by the system: " < < rlim . rlim_cur / 4 - 8 ) ;
2021-11-18 13:08:14 +01:00
LOG_INF ( " Maximum concurrent open Documents limit: " < < COOLWSD : : MaxDocuments ) ;
LOG_INF ( " Maximum concurrent client Connections limit: " < < COOLWSD : : MaxConnections ) ;
2016-07-14 04:01:23 +02:00
2021-11-18 13:08:14 +01:00
COOLWSD : : NumConnections = 0 ;
2016-07-14 04:01:23 +02:00
2016-07-31 04:22:28 +02:00
// Command Tracing.
if ( getConfigValue < bool > ( conf , " trace[@enable] " , false ) )
{
const auto & path = getConfigValue < std : : string > ( conf , " trace.path " , " " ) ;
2016-08-05 00:44:24 +02:00
const auto recordOutgoing = getConfigValue < bool > ( conf , " trace.outgoing.record " , false ) ;
std : : vector < std : : string > filters ;
for ( size_t i = 0 ; ; + + i )
{
2020-05-24 15:10:18 +02:00
const std : : string confPath = " trace.filter.message[ " + std : : to_string ( i ) + ' ] ' ;
2018-02-07 10:17:59 +01:00
const std : : string regex = config ( ) . getString ( confPath , " " ) ;
2016-08-05 00:44:24 +02:00
if ( ! regex . empty ( ) )
{
filters . push_back ( regex ) ;
}
else if ( ! config ( ) . has ( confPath ) )
{
break ;
}
}
2016-08-07 03:23:57 +02:00
const auto compress = getConfigValue < bool > ( conf , " trace.path[@compress] " , false ) ;
2017-02-06 03:59:08 +01:00
const auto takeSnapshot = getConfigValue < bool > ( conf , " trace.path[@snapshot] " , false ) ;
2020-10-14 17:57:08 +02:00
TraceDumper = Util : : make_unique < TraceFileWriter > ( path , recordOutgoing , compress , takeSnapshot , filters ) ;
2016-07-31 04:22:28 +02:00
}
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2020-10-14 17:57:08 +02:00
SavedClipboards = Util : : make_unique < ClipboardCache > ( ) ;
2019-07-04 11:50:33 +02:00
2020-11-29 23:26:35 +01:00
LOG_TRC ( " Initialize FileServerRequestHandler " ) ;
2017-04-27 15:14:31 +02:00
FileServerRequestHandler : : initialize ( ) ;
2018-09-13 18:16:00 +02:00
# endif
2017-04-26 15:50:00 +02:00
2021-03-15 15:24:09 +01:00
WebServerPoll = Util : : make_unique < TerminatingPoll > ( " websrv_poll " ) ;
2021-03-13 20:20:46 +01:00
2021-03-15 15:24:09 +01:00
PrisonerPoll = Util : : make_unique < PrisonPoll > ( ) ;
2021-03-13 20:20:46 +01:00
2021-11-18 13:08:14 +01:00
Server = Util : : make_unique < COOLWSDServer > ( ) ;
2021-03-13 20:32:52 +01:00
2020-11-29 23:26:35 +01:00
LOG_TRC ( " Initialize StorageBase " ) ;
2016-04-16 14:13:59 +02:00
StorageBase : : initialize ( ) ;
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2015-03-18 00:56:15 +01:00
ServerApplication : : initialize ( self ) ;
2016-07-31 04:19:31 +02:00
2017-06-12 05:47:48 +02:00
DocProcSettings docProcSettings ;
2019-01-08 09:05:40 +01:00
docProcSettings . setLimitVirtMemMb ( getConfigValue < int > ( " per_document.limit_virt_mem_mb " , 0 ) ) ;
docProcSettings . setLimitStackMemKb ( getConfigValue < int > ( " per_document.limit_stack_mem_kb " , 0 ) ) ;
docProcSettings . setLimitFileSizeMb ( getConfigValue < int > ( " per_document.limit_file_size_mb " , 0 ) ) ;
docProcSettings . setLimitNumberOpenFiles ( getConfigValue < int > ( " per_document.limit_num_open_files " , 0 ) ) ;
2020-06-08 12:41:03 +02:00
DocCleanupSettings & docCleanupSettings = docProcSettings . getCleanupSettings ( ) ;
docCleanupSettings . setEnable ( getConfigValue < bool > ( " per_document.cleanup[@enable] " , false ) ) ;
docCleanupSettings . setCleanupInterval ( getConfigValue < int > ( " per_document.cleanup.cleanup_interval_ms " , 10000 ) ) ;
docCleanupSettings . setBadBehaviorPeriod ( getConfigValue < int > ( " per_document.cleanup.bad_behavior_period_secs " , 60 ) ) ;
docCleanupSettings . setIdleTime ( getConfigValue < int > ( " per_document.cleanup.idle_time_secs " , 300 ) ) ;
docCleanupSettings . setLimitDirtyMem ( getConfigValue < int > ( " per_document.cleanup.limit_dirty_mem_mb " , 3072 ) ) ;
docCleanupSettings . setLimitCpu ( getConfigValue < int > ( " per_document.cleanup.limit_cpu_per " , 85 ) ) ;
2021-03-26 17:57:08 +01:00
docCleanupSettings . setLostKitGracePeriod ( getConfigValue < int > ( " per_document.cleanup.lost_kit_grace_period_secs " , 120 ) ) ;
2020-06-08 12:41:03 +02:00
2017-08-21 16:31:42 +02:00
Admin : : instance ( ) . setDefDocProcSettings ( docProcSettings , false ) ;
2017-06-12 05:47:48 +02:00
2016-09-27 14:30:45 +02:00
# if ENABLE_DEBUG
2020-01-14 17:54:08 +01:00
std : : string postMessageURI =
2021-11-03 15:36:59 +01:00
getServiceURI ( " /browser/dist/framed.doc.html?file_path= "
2022-01-25 20:25:43 +01:00
DEBUG_ABSSRCDIR " / " COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_WRITER ) ;
2018-02-22 16:13:20 +01:00
std : : cerr < < " \n Launch one of these in your browser: \n \n "
2021-11-18 13:08:14 +01:00
< < " Writer: " < < getLaunchURI ( COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_WRITER ) < < ' \n '
< < " Calc: " < < getLaunchURI ( COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_CALC ) < < ' \n '
< < " Impress: " < < getLaunchURI ( COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_IMPRESS ) < < ' \n '
< < " Draw: " < < getLaunchURI ( COOLWSD_TEST_DOCUMENT_RELATIVE_PATH_DRAW ) < < ' \n '
2020-01-14 17:54:08 +01:00
< < " postMessage: " < < postMessageURI < < std : : endl ;
2016-12-08 18:47:03 +01:00
2021-11-18 13:08:14 +01:00
const std : : string adminURI = getServiceURI ( COOLWSD_TEST_ADMIN_CONSOLE , true ) ;
2016-12-08 18:47:03 +01:00
if ( ! adminURI . empty ( ) )
2019-11-25 13:06:07 +01:00
std : : cerr < < " \n Or for the admin, monitoring, capabilities & discovery: \n \n "
2020-05-24 15:10:18 +02:00
< < adminURI < < ' \n '
2021-11-18 13:08:14 +01:00
< < getServiceURI ( COOLWSD_TEST_METRICS , true ) < < ' \n '
2020-05-24 15:10:18 +02:00
< < getServiceURI ( " /hosting/capabilities " ) < < ' \n '
< < getServiceURI ( " /hosting/discovery " ) < < ' \n ' ;
2019-05-17 14:22:02 +02:00
std : : cerr < < std : : endl ;
2016-09-27 14:30:45 +02:00
# endif
Start on a gtk+-based workalike to the iOS app
The idea is that it would work sufficiently identically, so that even
people without a Mac and without an iOS device could participate in
development of the non-iOS-specific bits, like the JavaScript, or the
online MOBILEAPP-specific plumbing. Which would be great.
No, this doesn't do anything sane yet. It does compile the same online
C++ files as the iOS app, though. (Some minor tweaks were needed in a
couple of them to silence gcc warnings.)
There is a plain Makefile, but I should change to using autofoo, too.
Eventually, this will need to be built in a separate tree from a
normal online, just like when using the --enable-iosapp configure
switch. (But for now, doesn't matter.)
Change-Id: I13e4d921acb99d802d2f9da4b0df4a237ca60ad6
2018-10-16 23:40:49 +02:00
# endif
2015-03-18 00:56:15 +01:00
}
2015-03-07 12:23:46 +01:00
2021-11-18 13:08:14 +01:00
void COOLWSD : : initializeSSL ( )
2016-03-23 12:08:01 +01:00
{
2018-09-13 18:16:00 +02:00
# if ENABLE_SSL
2021-11-18 13:08:14 +01:00
if ( ! COOLWSD : : isSSLEnabled ( ) )
2021-06-26 04:23:15 +02:00
return ;
2018-02-07 10:17:59 +01:00
const std : : string ssl_cert_file_path = getPathFromConfig ( " ssl.cert_file_path " ) ;
2016-11-06 17:39:19 +01:00
LOG_INF ( " SSL Cert file: " < < ssl_cert_file_path ) ;
2016-03-23 12:08:01 +01:00
2018-02-07 10:17:59 +01:00
const std : : string ssl_key_file_path = getPathFromConfig ( " ssl.key_file_path " ) ;
2016-11-06 17:39:19 +01:00
LOG_INF ( " SSL Key file: " < < ssl_key_file_path ) ;
2016-03-23 12:08:01 +01:00
2018-02-07 10:17:59 +01:00
const std : : string ssl_ca_file_path = getPathFromConfig ( " ssl.ca_file_path " ) ;
2016-11-06 17:39:19 +01:00
LOG_INF ( " SSL CA file: " < < ssl_ca_file_path ) ;
2016-03-25 03:42:37 +01:00
2019-07-27 01:31:55 +02:00
std : : string ssl_cipher_list = config ( ) . getString ( " ssl.cipher_list " , " " ) ;
if ( ssl_cipher_list . empty ( ) )
ssl_cipher_list = DEFAULT_CIPHER_SET ;
2017-11-22 16:54:42 +01:00
LOG_INF ( " SSL Cipher list: " < < ssl_cipher_list ) ;
2021-06-24 03:30:28 +02:00
// Initialize the non-blocking server socket SSL context.
ssl : : Manager : : initializeServerContext ( ssl_cert_file_path , ssl_key_file_path , ssl_ca_file_path ,
2021-06-27 21:22:17 +02:00
ssl_cipher_list , ssl : : CertificateVerification : : Disabled ) ;
2021-06-24 03:30:28 +02:00
if ( ! ssl : : Manager : : isServerContextInitialized ( ) )
LOG_ERR ( " Failed to initialize Server SSL. " ) ;
2021-03-23 18:49:34 +01:00
else
2021-06-24 03:30:28 +02:00
LOG_INF ( " Initialized Server SSL. " ) ;
2021-03-23 18:49:34 +01:00
# else
LOG_INF ( " SSL is unavailable in this build. " ) ;
2017-02-27 06:01:17 +01:00
# endif
2016-03-23 12:08:01 +01:00
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : dumpNewSessionTrace ( const std : : string & id , const std : : string & sessionId , const std : : string & uri , const std : : string & path )
2017-02-06 01:35:54 +01:00
{
if ( TraceDumper )
{
try
{
TraceDumper - > newSession ( id , sessionId , uri , path ) ;
}
catch ( const std : : exception & exc )
{
2021-02-05 22:22:09 +01:00
LOG_ERR ( " Exception in tracer newSession: " < < exc . what ( ) ) ;
2017-02-06 01:35:54 +01:00
}
}
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : dumpEndSessionTrace ( const std : : string & id , const std : : string & sessionId , const std : : string & uri )
2017-02-06 01:35:54 +01:00
{
2017-02-08 22:57:50 +01:00
if ( TraceDumper )
{
2017-02-06 01:35:54 +01:00
try
{
TraceDumper - > endSession ( id , sessionId , uri ) ;
}
catch ( const std : : exception & exc )
{
2021-02-05 22:22:09 +01:00
LOG_ERR ( " Exception in tracer newSession: " < < exc . what ( ) ) ;
2017-02-06 01:35:54 +01:00
}
2017-02-08 22:57:50 +01:00
}
2017-02-06 01:35:54 +01:00
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : dumpEventTrace ( const std : : string & id , const std : : string & sessionId , const std : : string & data )
2016-08-18 01:57:38 +02:00
{
if ( TraceDumper )
{
2017-01-13 13:52:08 +01:00
TraceDumper - > writeEvent ( id , sessionId , data ) ;
2016-08-18 01:57:38 +02:00
}
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : dumpIncomingTrace ( const std : : string & id , const std : : string & sessionId , const std : : string & data )
2016-08-18 01:57:38 +02:00
{
if ( TraceDumper )
{
2017-01-13 13:52:08 +01:00
TraceDumper - > writeIncoming ( id , sessionId , data ) ;
2016-08-18 01:57:38 +02:00
}
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : dumpOutgoingTrace ( const std : : string & id , const std : : string & sessionId , const std : : string & data )
2016-08-18 01:57:38 +02:00
{
if ( TraceDumper )
{
2017-01-13 13:52:08 +01:00
TraceDumper - > writeOutgoing ( id , sessionId , data ) ;
2016-08-18 01:57:38 +02:00
}
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : defineOptions ( OptionSet & optionSet )
2015-03-18 00:56:15 +01:00
{
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2015-10-28 10:55:03 +01:00
ServerApplication : : defineOptions ( optionSet ) ;
2015-03-18 00:56:15 +01:00
2015-10-28 10:55:03 +01:00
optionSet . addOption ( Option ( " help " , " " , " Display help information on command line arguments. " )
. required ( false )
. repeatable ( false ) ) ;
2015-03-18 00:56:15 +01:00
2020-06-28 17:30:22 +02:00
optionSet . addOption ( Option ( " version-hash " , " " , " Display product version-hash information and exit. " )
2020-05-26 21:12:13 +02:00
. required ( false )
. repeatable ( false ) ) ;
optionSet . addOption ( Option ( " version " , " " , " Display version and hash information. " )
2015-12-19 19:38:44 +01:00
. required ( false )
. repeatable ( false ) ) ;
2020-06-28 17:30:22 +02:00
optionSet . addOption ( Option ( " cleanup " , " " , " Cleanup jails and other temporary data and exit. " )
. required ( false )
. repeatable ( false ) ) ;
2016-10-26 15:40:46 +02:00
optionSet . addOption ( Option ( " port " , " " , " Port number to listen to (default: " +
2019-03-30 15:06:16 +01:00
std : : to_string ( DEFAULT_CLIENT_PORT_NUMBER ) + " ), " )
2015-10-28 10:55:03 +01:00
. required ( false )
. repeatable ( false )
2017-02-07 21:00:23 +01:00
. argument ( " port_number " ) ) ;
2015-10-28 10:55:03 +01:00
2016-07-18 13:45:36 +02:00
optionSet . addOption ( Option ( " disable-ssl " , " " , " Disable SSL security layer. " )
. required ( false )
. repeatable ( false ) ) ;
2021-11-18 13:08:14 +01:00
optionSet . addOption ( Option ( " disable-cool-user-checking " , " " , " Don't check whether coolwsd is running under the user 'cool'. NOTE: This is insecure, use only when you know what you are doing! " )
2020-04-23 20:01:04 +02:00
. required ( false )
. repeatable ( false ) ) ;
2018-10-10 09:02:55 +02:00
optionSet . addOption ( Option ( " override " , " o " , " Override any setting by providing full xmlpath=value. " )
2016-06-25 18:31:22 +02:00
. required ( false )
. repeatable ( true )
. argument ( " xmlpath " ) ) ;
2017-01-26 09:19:50 +01:00
optionSet . addOption ( Option ( " config-file " , " " , " Override configuration file path. " )
. required ( false )
. repeatable ( false )
. argument ( " path " ) ) ;
2017-11-07 14:12:18 +01:00
optionSet . addOption ( Option ( " config-dir " , " " , " Override extra configuration directory path. " )
. required ( false )
. repeatable ( false )
. argument ( " path " ) ) ;
2020-04-30 10:34:23 +02:00
optionSet . addOption ( Option ( " lo-template-path " , " " , " Override the LOK core installation directory path. " )
. required ( false )
. repeatable ( false )
. argument ( " path " ) ) ;
2022-02-16 03:04:37 +01:00
optionSet . addOption ( Option ( " unattended " , " " , " Unattended run, won't wait for a debugger on faulting. " )
. required ( false )
. repeatable ( false ) ) ;
2022-04-13 20:53:49 +02:00
optionSet . addOption ( Option ( " signal " , " " , " Send signal SIGUSR2 to parent process when server is ready to accept connections " )
. required ( false )
. repeatable ( false ) ) ;
2016-04-12 11:00:33 +02:00
# if ENABLE_DEBUG
2016-04-05 18:41:10 +02:00
optionSet . addOption ( Option ( " unitlib " , " " , " Unit testing library path. " )
. required ( false )
. repeatable ( false )
. argument ( " unitlib " ) ) ;
2016-04-12 12:48:42 +02:00
optionSet . addOption ( Option ( " careerspan " , " " , " How many seconds to run. " )
. required ( false )
. repeatable ( false )
. argument ( " seconds " ) ) ;
2020-03-04 20:38:17 +01:00
optionSet . addOption ( Option ( " singlekit " , " " , " Spawn one libreoffice kit. " )
. required ( false )
. repeatable ( false ) ) ;
2016-04-12 12:48:42 +02:00
# endif
2017-02-07 21:00:23 +01:00
2018-09-13 18:16:00 +02:00
# endif
2015-03-18 00:56:15 +01:00
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : handleOption ( const std : : string & optionName ,
2016-04-05 18:41:10 +02:00
const std : : string & value )
2015-03-25 13:39:58 +01:00
{
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2015-10-28 10:55:03 +01:00
ServerApplication : : handleOption ( optionName , value ) ;
2015-03-25 13:39:58 +01:00
2015-10-28 10:55:03 +01:00
if ( optionName = = " help " )
2015-03-25 13:39:58 +01:00
{
displayHelp ( ) ;
2022-03-08 13:53:40 +01:00
Util : : forcedExit ( EX_OK ) ;
2015-03-25 13:39:58 +01:00
}
2020-05-26 21:12:13 +02:00
else if ( optionName = = " version-hash " )
{
std : : string version , hash ;
Util : : getVersionInfo ( version , hash ) ;
std : : cout < < hash < < std : : endl ;
2022-03-08 13:53:40 +01:00
Util : : forcedExit ( EX_OK ) ;
2020-05-26 21:12:13 +02:00
}
2015-12-19 19:38:44 +01:00
else if ( optionName = = " version " )
2020-07-01 13:19:39 +02:00
; // ignore for compatibility
2020-06-28 17:30:22 +02:00
else if ( optionName = = " cleanup " )
CleanupOnly = true ; // Flag for later as we need the config.
2015-10-28 10:55:03 +01:00
else if ( optionName = = " port " )
2015-12-27 23:46:42 +01:00
ClientPortNumber = std : : stoi ( value ) ;
2016-07-18 13:45:36 +02:00
else if ( optionName = = " disable-ssl " )
_overrideSettings [ " ssl.enable " ] = " false " ;
2021-11-17 09:56:09 +01:00
else if ( optionName = = " disable-cool-user-checking " )
2021-11-18 13:08:14 +01:00
CheckCoolUser = false ;
2016-06-25 18:31:22 +02:00
else if ( optionName = = " override " )
{
std : : string optName ;
std : : string optValue ;
2021-11-18 13:08:14 +01:00
COOLProtocol : : parseNameValuePair ( value , optName , optValue ) ;
2016-06-25 18:31:22 +02:00
_overrideSettings [ optName ] = optValue ;
}
2017-01-26 09:19:50 +01:00
else if ( optionName = = " config-file " )
ConfigFile = value ;
2017-11-07 14:12:18 +01:00
else if ( optionName = = " config-dir " )
ConfigDir = value ;
2020-04-30 10:34:23 +02:00
else if ( optionName = = " lo-template-path " )
LoTemplate = value ;
2022-04-13 20:53:49 +02:00
else if ( optionName = = " signal " )
SignalParent = true ;
2016-07-03 16:43:36 +02:00
# if ENABLE_DEBUG
else if ( optionName = = " unitlib " )
UnitTestLibrary = value ;
2022-02-16 03:04:37 +01:00
else if ( optionName = = " unattended " )
{
UnattendedRun = true ;
SigUtil : : setUnattended ( ) ;
}
2018-03-19 16:20:10 +01:00
else if ( optionName = = " careerspan " )
2020-12-14 20:00:55 +01:00
careerSpanMs = std : : chrono : : seconds ( std : : stoi ( value ) ) ; // Convert second to ms
2020-03-04 20:38:17 +01:00
else if ( optionName = = " singlekit " )
{
SingleKit = true ;
NumPreSpawnedChildren = 1 ;
}
2016-05-04 13:06:34 +02:00
2021-11-18 13:08:14 +01:00
static const char * latencyMs = std : : getenv ( " COOL_DELAY_SOCKET_MS " ) ;
2017-04-26 18:38:50 +02:00
if ( latencyMs )
SimulatedLatencyMs = std : : stoi ( latencyMs ) ;
2016-04-12 12:48:42 +02:00
# endif
2018-09-13 18:16:00 +02:00
# endif
2015-03-25 13:39:58 +01:00
}
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2021-11-18 13:08:14 +01:00
void COOLWSD : : displayHelp ( )
2015-03-25 13:39:58 +01:00
{
HelpFormatter helpFormatter ( options ( ) ) ;
helpFormatter . setCommand ( commandName ( ) ) ;
helpFormatter . setUsage ( " OPTIONS " ) ;
2020-10-02 10:53:04 +02:00
helpFormatter . setHeader ( " Collabora Online WebSocket server. " ) ;
2015-03-25 13:39:58 +01:00
helpFormatter . format ( std : : cout ) ;
}
2015-03-18 00:56:15 +01:00
2021-11-18 13:08:14 +01:00
bool COOLWSD : : checkAndRestoreForKit ( )
2017-01-16 02:12:10 +01:00
{
2017-02-06 23:26:38 +01:00
# ifdef KIT_IN_PROCESS
return false ;
# else
2017-03-10 02:56:39 +01:00
2020-05-19 21:58:50 +02:00
// clang issues warning for WIF*() macro usages below:
// "equality comparison with extraneous parentheses [-Werror,-Wparentheses-equality]"
// https://bugs.llvm.org/show_bug.cgi?id=22949
# if defined __clang__
# pragma clang diagnostic push
# pragma clang diagnostic ignored "-Wparentheses-equality"
# endif
2017-03-10 02:56:39 +01:00
if ( ForKitProcId = = - 1 )
{
// Fire the ForKit process for the first time.
2019-08-12 09:03:16 +02:00
if ( ! SigUtil : : getShutdownRequestFlag ( ) & & ! SigUtil : : getTerminationFlag ( ) & & ! createForKit ( ) )
2017-03-10 02:56:39 +01:00
{
// Should never fail.
2021-11-16 10:59:05 +01:00
LOG_FTL ( " Setting ShutdownRequestFlag: Failed to spawn coolforkit. " ) ;
2017-03-20 05:41:43 +01:00
SigUtil : : requestShutdown ( ) ;
2017-03-10 02:56:39 +01:00
}
}
2017-01-16 02:12:10 +01:00
int status ;
const pid_t pid = waitpid ( ForKitProcId , & status , WUNTRACED | WNOHANG ) ;
if ( pid > 0 )
{
if ( pid = = ForKitProcId )
{
if ( WIFEXITED ( status ) | | WIFSIGNALED ( status ) )
{
if ( WIFEXITED ( status ) )
{
LOG_INF ( " Forkit process [ " < < pid < < " ] exited with code: " < <
2020-05-24 15:10:18 +02:00
WEXITSTATUS ( status ) < < ' . ' ) ;
2017-01-16 02:12:10 +01:00
}
else
{
LOG_ERR ( " Forkit process [ " < < pid < < " ] " < <
( WCOREDUMP ( status ) ? " core-dumped " : " died " ) < <
" with " < < SigUtil : : signalName ( WTERMSIG ( status ) ) ) ;
}
// Spawn a new forkit and try to dust it off and resume.
2019-08-12 09:03:16 +02:00
if ( ! SigUtil : : getShutdownRequestFlag ( ) & & ! SigUtil : : getTerminationFlag ( ) & & ! createForKit ( ) )
2017-01-16 02:12:10 +01:00
{
2021-04-13 04:26:06 +02:00
LOG_FTL ( " Setting ShutdownRequestFlag: Failed to spawn forkit instance. " ) ;
2017-01-16 02:12:10 +01:00
SigUtil : : requestShutdown ( ) ;
}
}
else if ( WIFSTOPPED ( status ) )
{
LOG_INF ( " Forkit process [ " < < pid < < " ] stopped with " < <
SigUtil : : signalName ( WSTOPSIG ( status ) ) ) ;
}
else if ( WIFCONTINUED ( status ) )
{
LOG_INF ( " Forkit process [ " < < pid < < " ] resumed with SIGCONT. " ) ;
}
else
{
2022-03-19 02:45:44 +01:00
LOG_WRN ( " Unknown status returned by waitpid: " < < std : : hex < < status < < std : : dec ) ;
2017-01-16 02:12:10 +01:00
}
return true ;
}
else
{
LOG_ERR ( " An unknown child process [ " < < pid < < " ] died. " ) ;
}
}
else if ( pid < 0 )
{
2020-12-24 14:58:47 +01:00
LOG_SYS ( " Forkit waitpid failed " ) ;
2017-01-16 02:12:10 +01:00
if ( errno = = ECHILD )
{
// No child processes.
// Spawn a new forkit and try to dust it off and resume.
2019-08-12 09:03:16 +02:00
if ( ! SigUtil : : getShutdownRequestFlag ( ) & & ! SigUtil : : getTerminationFlag ( ) & & ! createForKit ( ) )
2017-01-16 02:12:10 +01:00
{
2021-04-13 04:26:06 +02:00
LOG_FTL ( " Setting ShutdownRequestFlag: Failed to spawn forkit instance. " ) ;
2017-01-16 02:12:10 +01:00
SigUtil : : requestShutdown ( ) ;
}
}
return true ;
}
return false ;
2020-05-19 21:58:50 +02:00
# if defined __clang__
# pragma clang diagnostic pop
# endif
2017-02-06 23:26:38 +01:00
# endif
2017-01-16 02:12:10 +01:00
}
2018-09-13 18:16:00 +02:00
# endif
2021-11-18 13:08:14 +01:00
void COOLWSD : : doHousekeeping ( )
2017-04-03 01:56:42 +02:00
{
2021-03-15 15:24:09 +01:00
if ( PrisonerPoll )
2021-09-30 08:39:23 +02:00
{
2021-03-15 15:24:09 +01:00
PrisonerPoll - > wakeup ( ) ;
2021-09-30 08:39:23 +02:00
}
2017-04-03 01:56:42 +02:00
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : closeDocument ( const std : : string & docKey , const std : : string & message )
2017-07-07 13:42:19 +02:00
{
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
auto docBrokerIt = DocBrokers . find ( docKey ) ;
if ( docBrokerIt ! = DocBrokers . end ( ) )
{
std : : shared_ptr < DocumentBroker > docBroker = docBrokerIt - > second ;
docBroker - > addCallback ( [ docBroker , message ] ( ) {
docBroker - > closeDocument ( message ) ;
} ) ;
}
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : autoSave ( const std : : string & docKey )
2017-07-10 19:15:04 +02:00
{
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
auto docBrokerIt = DocBrokers . find ( docKey ) ;
if ( docBrokerIt ! = DocBrokers . end ( ) )
{
std : : shared_ptr < DocumentBroker > docBroker = docBrokerIt - > second ;
docBroker - > addCallback ( [ docBroker ] ( ) {
docBroker - > autoSave ( true ) ;
} ) ;
}
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : setLogLevelsOfKits ( const std : : string & level )
2020-11-23 12:07:44 +01:00
{
2020-11-15 13:23:54 +01:00
std : : lock_guard < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
LOG_INF ( " Changing kits' log levels: [ " < < level < < ' ] ' ) ;
2020-11-23 12:07:44 +01:00
for ( const auto & brokerIt : DocBrokers )
2020-11-15 13:23:54 +01:00
{
std : : shared_ptr < DocumentBroker > docBroker = brokerIt . second ;
docBroker - > addCallback ( [ docBroker , level ] ( ) {
2020-11-23 12:07:44 +01:00
docBroker - > setKitLogLevel ( level ) ;
2020-11-15 13:23:54 +01:00
} ) ;
}
}
2017-04-05 22:31:15 +02:00
/// Really do the house-keeping
2021-03-13 20:20:46 +01:00
void PrisonPoll : : wakeupHook ( )
2017-03-08 19:48:07 +01:00
{
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2019-05-04 23:50:00 +02:00
LOG_TRC ( " PrisonerPoll - wakes up with " < < NewChildren . size ( ) < <
" new children and " < < DocBrokers . size ( ) < < " brokers and " < <
OutstandingForks < < " kits forking " ) ;
2020-03-04 20:38:17 +01:00
2021-11-18 13:08:14 +01:00
if ( ! COOLWSD : : checkAndRestoreForKit ( ) )
2017-03-08 19:48:07 +01:00
{
// No children have died.
// Make sure we have sufficient reserves.
2022-04-15 01:05:26 +02:00
prespawnChildren ( ) ;
2017-03-08 19:48:07 +01:00
}
2018-09-13 18:16:00 +02:00
# endif
2017-03-28 03:46:16 +02:00
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex , std : : defer_lock ) ;
if ( docBrokersLock . try_lock ( ) )
2022-06-14 04:17:40 +02:00
{
2017-03-28 03:46:16 +02:00
cleanupDocBrokers ( ) ;
2022-06-14 04:17:40 +02:00
SigUtil : : checkForwardSigUsr2 ( forwardSigUsr2 ) ;
}
2017-03-28 03:46:16 +02:00
}
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2021-11-18 13:08:14 +01:00
bool COOLWSD : : createForKit ( )
2015-07-13 16:13:06 +02:00
{
2018-09-13 18:16:00 +02:00
# if defined KIT_IN_PROCESS
2017-02-06 23:26:38 +01:00
return true ;
# else
2017-01-15 18:57:22 +01:00
LOG_INF ( " Creating new forkit process. " ) ;
2022-02-25 13:50:21 +01:00
// Creating a new forkit is always a slow process.
ChildSpawnTimeoutMs = CHILD_TIMEOUT_MS * 4 ;
2017-06-20 04:47:30 +02:00
std : : unique_lock < std : : mutex > newChildrenLock ( NewChildrenMutex ) ;
2020-02-28 10:50:58 +01:00
StringVector args ;
2021-08-21 16:46:27 +02:00
std : : string parentPath = Path ( Application : : instance ( ) . commandPath ( ) ) . parent ( ) . toString ( ) ;
2021-11-16 10:59:05 +01:00
# if STRACE_COOLFORKIT
2021-08-21 16:46:27 +02:00
// if you want to use this, you need to sudo setcap cap_fowner,cap_chown,cap_mknod,cap_sys_chroot=ep /usr/bin/strace
2018-08-03 04:57:04 +02:00
args . push_back ( " -o " ) ;
args . push_back ( " strace.log " ) ;
args . push_back ( " -f " ) ;
args . push_back ( " -tt " ) ;
args . push_back ( " -s " ) ;
args . push_back ( " 256 " ) ;
2021-11-16 10:59:05 +01:00
args . push_back ( parentPath + " coolforkit " ) ;
# elif VALGRIND_COOLFORKIT
2021-08-21 16:46:27 +02:00
NoCapsForKit = true ;
NoSeccomp = true ;
// args.push_back("--log-file=valgrind.log");
// args.push_back("--track-fds=all");
args . push_back ( " --trace-children=yes " ) ;
args . push_back ( " --error-limit=no " ) ;
args . push_back ( " --num-callers=128 " ) ;
2021-11-16 10:59:05 +01:00
std : : string nocapsCopy = parentPath + " coolforkit-nocaps " ;
FileUtil : : copy ( parentPath + " coolforkit " , nocapsCopy , true , true ) ;
2021-08-21 16:46:27 +02:00
args . push_back ( nocapsCopy ) ;
2018-08-03 04:57:04 +02:00
# endif
2016-04-04 05:40:56 +02:00
args . push_back ( " --systemplate= " + SysTemplate ) ;
args . push_back ( " --lotemplate= " + LoTemplate ) ;
args . push_back ( " --childroot= " + ChildRoot ) ;
args . push_back ( " --clientport= " + std : : to_string ( ClientPortNumber ) ) ;
2019-03-30 15:06:16 +01:00
args . push_back ( " --masterport= " + MasterLocation ) ;
2017-06-11 17:48:24 +02:00
2017-06-12 05:47:48 +02:00
const DocProcSettings & docProcSettings = Admin : : instance ( ) . getDefDocProcSettings ( ) ;
2017-06-11 17:48:24 +02:00
std : : ostringstream ossRLimits ;
2019-01-08 09:05:40 +01:00
ossRLimits < < " limit_virt_mem_mb: " < < docProcSettings . getLimitVirtMemMb ( ) ;
ossRLimits < < " ;limit_stack_mem_kb: " < < docProcSettings . getLimitStackMemKb ( ) ;
ossRLimits < < " ;limit_file_size_mb: " < < docProcSettings . getLimitFileSizeMb ( ) ;
ossRLimits < < " ;limit_num_open_files: " < < docProcSettings . getLimitNumberOpenFiles ( ) ;
2017-06-11 17:48:24 +02:00
args . push_back ( " --rlimits= " + ossRLimits . str ( ) ) ;
2016-04-09 18:30:48 +02:00
if ( UnitWSD : : get ( ) . hasKitHooks ( ) )
args . push_back ( " --unitlib= " + UnitTestLibrary ) ;
2017-01-16 02:12:10 +01:00
2020-07-01 13:19:39 +02:00
args . push_back ( " --version " ) ;
2015-12-20 02:09:48 +01:00
2016-04-16 21:44:53 +02:00
if ( NoCapsForKit )
args . push_back ( " --nocaps " ) ;
2018-03-19 16:20:10 +01:00
if ( NoSeccomp )
args . push_back ( " --noseccomp " ) ;
2020-06-26 12:58:09 +02:00
args . push_back ( " --ui= " + UserInterface ) ;
2021-11-18 13:08:14 +01:00
if ( ! CheckCoolUser )
2021-11-17 09:56:09 +01:00
args . push_back ( " --disable-cool-user-checking " ) ;
2020-04-23 20:01:04 +02:00
2022-02-16 03:04:37 +01:00
if ( UnattendedRun )
args . push_back ( " --unattended " ) ;
2020-03-04 20:38:17 +01:00
# if ENABLE_DEBUG
if ( SingleKit )
args . push_back ( " --singlekit " ) ;
# endif
2021-11-16 10:59:05 +01:00
# if STRACE_COOLFORKIT
2021-08-21 16:46:27 +02:00
std : : string forKitPath = " /usr/bin/strace " ;
2021-11-16 10:59:05 +01:00
# elif VALGRIND_COOLFORKIT
2021-08-21 16:46:27 +02:00
std : : string forKitPath = " /usr/bin/valgrind " ;
2018-08-03 04:57:04 +02:00
# else
2021-11-16 10:59:05 +01:00
std : : string forKitPath = parentPath + " coolforkit " ;
2018-08-03 04:57:04 +02:00
# endif
2015-12-20 02:09:48 +01:00
2017-01-16 02:12:10 +01:00
// Always reap first, in case we haven't done so yet.
2017-06-12 05:47:48 +02:00
if ( ForKitProcId ! = - 1 )
{
int status ;
waitpid ( ForKitProcId , & status , WUNTRACED | WNOHANG ) ;
ForKitProcId = - 1 ;
Admin : : instance ( ) . setForKitPid ( ForKitProcId ) ;
}
2017-01-16 02:12:10 +01:00
2020-04-02 17:11:36 +02:00
// Below line will be executed by PrisonerPoll thread.
ForKitProc = nullptr ;
2021-03-15 15:24:09 +01:00
PrisonerPoll - > setForKitProcess ( ForKitProc ) ;
2020-04-10 15:37:29 +02:00
2017-01-15 23:46:28 +01:00
// ForKit always spawns one.
+ + OutstandingForks ;
2020-05-31 20:16:58 +02:00
LOG_INF ( " Launching forkit process: " < < forKitPath < < ' ' < < args . cat ( ' ' , 0 ) ) ;
2015-12-20 02:09:48 +01:00
2016-10-16 23:56:25 +02:00
LastForkRequestTime = std : : chrono : : steady_clock : : now ( ) ;
2020-04-02 17:11:36 +02:00
int child = Util : : spawnProcess ( forKitPath , args ) ;
2018-01-29 16:13:54 +01:00
ForKitProcId = child ;
2016-11-10 05:41:21 +01:00
2017-01-15 23:54:55 +01:00
LOG_INF ( " Forkit process launched: " < < ForKitProcId ) ;
2016-11-15 04:20:28 +01:00
2016-11-10 05:41:21 +01:00
// Init the Admin manager
2017-01-15 23:54:55 +01:00
Admin : : instance ( ) . setForKitPid ( ForKitProcId ) ;
2016-11-10 05:41:21 +01:00
2021-11-18 13:08:14 +01:00
const int balance = COOLWSD : : NumPreSpawnedChildren - OutstandingForks ;
2019-10-18 14:10:12 +02:00
if ( balance > 0 )
rebalanceChildren ( balance ) ;
2017-03-30 11:15:28 +02:00
return ForKitProcId ! = - 1 ;
2017-02-06 23:26:38 +01:00
# endif
2015-07-13 16:13:06 +02:00
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : sendMessageToForKit ( const std : : string & message )
2020-04-02 17:11:36 +02:00
{
2021-03-15 15:24:09 +01:00
if ( PrisonerPoll )
2021-03-16 09:43:06 +01:00
{
2021-03-15 15:24:09 +01:00
PrisonerPoll - > sendMessageToForKit ( message ) ;
2021-03-16 09:43:06 +01:00
}
2020-04-02 17:11:36 +02:00
}
2018-11-02 11:38:31 +01:00
# endif // !MOBILEAPP
2018-09-13 18:16:00 +02:00
2017-02-25 22:04:06 +01:00
/// Find the DocumentBroker for the given docKey, if one exists.
/// Otherwise, creates and adds a new one to DocBrokers.
/// May return null if terminating or MaxDocuments limit is reached.
/// After returning a valid instance DocBrokers must be cleaned up after exceptions.
2020-03-06 18:43:46 +01:00
static std : : shared_ptr < DocumentBroker >
2020-03-11 18:05:20 +01:00
findOrCreateDocBroker ( const std : : shared_ptr < ProtocolHandlerInterface > & proto ,
2020-05-02 20:13:14 +02:00
DocumentBroker : : ChildType type ,
2020-03-06 18:43:46 +01:00
const std : : string & uri ,
const std : : string & docKey ,
const std : : string & id ,
2020-04-24 09:46:54 +02:00
const Poco : : URI & uriPublic ,
unsigned mobileAppDocId = 0 )
2017-02-25 22:04:06 +01:00
{
LOG_INF ( " Find or create DocBroker for docKey [ " < < docKey < <
2021-11-18 13:08:14 +01:00
" ] for session [ " < < id < < " ] on url [ " < < COOLWSD : : anonymizeUrl ( uriPublic . toString ( ) ) < < " ]. " ) ;
2017-02-25 22:04:06 +01:00
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
cleanupDocBrokers ( ) ;
2022-02-19 15:42:30 +01:00
if ( SigUtil : : getShutdownRequestFlag ( ) )
2017-02-25 22:04:06 +01:00
{
2022-02-19 15:42:30 +01:00
// TerminationFlag implies ShutdownRequested.
LOG_ERR ( ( SigUtil : : getTerminationFlag ( ) ? " TerminationFlag " : " ShudownRequestedFlag " )
< < " set. Not loading new session [ " < < id < < ' ] ' ) ;
2017-02-25 22:04:06 +01:00
return nullptr ;
}
std : : shared_ptr < DocumentBroker > docBroker ;
// Lookup this document.
2018-01-14 17:16:10 +01:00
const auto it = DocBrokers . find ( docKey ) ;
2017-02-25 22:04:06 +01:00
if ( it ! = DocBrokers . end ( ) & & it - > second )
{
// Get the DocumentBroker from the Cache.
LOG_DBG ( " Found DocumentBroker with docKey [ " < < docKey < < " ]. " ) ;
docBroker = it - > second ;
2017-03-04 22:37:10 +01:00
2017-03-28 07:07:07 +02:00
// Destroying the document? Let the client reconnect.
2022-02-19 15:42:30 +01:00
if ( docBroker - > isUnloading ( ) )
2017-03-26 03:52:46 +02:00
{
2022-02-19 15:42:30 +01:00
LOG_WRN ( " DocBroker with docKey [ "
< < docKey < < " ] is unloading. Rejecting client request to load. " ) ;
2020-03-04 14:54:04 +01:00
if ( proto )
{
2022-02-19 15:42:30 +01:00
const std : : string msg ( " error: cmd=load kind=docunloading " ) ;
2020-03-04 14:54:04 +01:00
proto - > sendTextMessage ( msg . data ( ) , msg . size ( ) ) ;
2022-02-19 15:42:30 +01:00
proto - > shutdown ( true , msg ) ;
2020-03-04 14:54:04 +01:00
}
2017-03-27 09:18:30 +02:00
return nullptr ;
2017-03-26 03:52:46 +02:00
}
2017-02-25 22:04:06 +01:00
}
else
{
LOG_DBG ( " No DocumentBroker with docKey [ " < < docKey < < " ] found. New Child and Document. " ) ;
}
2022-02-19 15:42:30 +01:00
if ( SigUtil : : getShutdownRequestFlag ( ) )
2017-02-25 22:04:06 +01:00
{
2022-02-19 15:42:30 +01:00
// TerminationFlag implies ShutdownRequested.
LOG_ERR ( ( SigUtil : : getTerminationFlag ( ) ? " TerminationFlag " : " ShudownRequestedFlag " )
< < " set. Not loading new session [ " < < id < < ' ] ' ) ;
2017-02-25 22:04:06 +01:00
return nullptr ;
}
// Indicate to the client that we're connecting to the docbroker.
2020-03-04 14:54:04 +01:00
if ( proto )
{
const std : : string statusConnect = " statusindicator: connect " ;
LOG_TRC ( " Sending to Client [ " < < statusConnect < < " ]. " ) ;
proto - > sendTextMessage ( statusConnect . data ( ) , statusConnect . size ( ) ) ;
}
2017-02-25 22:04:06 +01:00
if ( ! docBroker )
2017-03-19 19:49:52 +01:00
{
Util : : assertIsLocked ( DocBrokersMutex ) ;
2021-11-18 13:08:14 +01:00
if ( DocBrokers . size ( ) + 1 > COOLWSD : : MaxDocuments )
2017-03-19 19:49:52 +01:00
{
2021-11-18 13:08:14 +01:00
LOG_INF ( " Maximum number of open documents of " < < COOLWSD : : MaxDocuments < < " reached. " ) ;
2018-02-13 16:36:38 +01:00
# if ENABLE_SUPPORT_KEY
2020-03-11 18:05:20 +01:00
shutdownLimitReached ( proto ) ;
2017-03-19 19:49:52 +01:00
return nullptr ;
2018-02-13 16:36:38 +01:00
# endif
2017-03-19 19:49:52 +01:00
}
// Set the one we just created.
LOG_DBG ( " New DocumentBroker for docKey [ " < < docKey < < " ]. " ) ;
2020-04-24 09:46:54 +02:00
docBroker = std : : make_shared < DocumentBroker > ( type , uri , uriPublic , docKey , mobileAppDocId ) ;
2017-03-19 19:49:52 +01:00
DocBrokers . emplace ( docKey , docBroker ) ;
LOG_TRC ( " Have " < < DocBrokers . size ( ) < < " DocBrokers after inserting [ " < < docKey < < " ]. " ) ;
}
2017-02-25 22:04:06 +01:00
return docBroker ;
}
2017-03-16 19:32:12 +01:00
/// Handles the socket that the prisoner kit connected to WSD on.
2017-03-06 20:50:06 +01:00
class PrisonerRequestDispatcher : public WebSocketHandler
{
std : : weak_ptr < ChildProcess > _childProcess ;
public :
PrisonerRequestDispatcher ( )
2021-05-04 15:35:27 +02:00
: WebSocketHandler ( /* isClient = */ false , /* isMasking = */ true )
2017-03-06 20:50:06 +01:00
{
}
~ PrisonerRequestDispatcher ( )
{
2022-03-06 23:30:49 +01:00
LOG_TRC ( " ~PrisonerRequestDispatcher " ) ;
2017-03-06 20:50:06 +01:00
// Notify the broker that we're done.
2022-03-06 23:30:49 +01:00
onDisconnect ( ) ;
2017-03-06 20:50:06 +01:00
}
private :
/// Keep our socket around ...
2017-03-27 05:06:44 +02:00
void onConnect ( const std : : shared_ptr < StreamSocket > & socket ) override
2017-03-06 20:50:06 +01:00
{
2018-10-24 09:35:46 +02:00
setSocket ( socket ) ;
2020-05-24 15:10:18 +02:00
LOG_TRC ( ' # ' < < socket - > getFD ( ) < < " Prisoner connected. " ) ;
2017-03-06 20:50:06 +01:00
}
void onDisconnect ( ) override
{
2018-10-24 09:35:46 +02:00
std : : shared_ptr < StreamSocket > socket = getSocket ( ) . lock ( ) ;
2017-03-27 05:06:44 +02:00
if ( socket )
2020-05-24 15:10:18 +02:00
LOG_TRC ( ' # ' < < socket - > getFD ( ) < < " Prisoner connection disconnected. " ) ;
2017-03-27 05:06:44 +02:00
else
LOG_WRN ( " Prisoner connection disconnected but without valid socket. " ) ;
2017-03-21 03:58:28 +01:00
// Notify the broker that we're done.
2018-02-07 10:17:59 +01:00
std : : shared_ptr < ChildProcess > child = _childProcess . lock ( ) ;
std : : shared_ptr < DocumentBroker > docBroker = child ? child - > getDocumentBroker ( ) : nullptr ;
2017-03-21 03:58:28 +01:00
if ( docBroker )
{
2022-07-26 04:42:28 +02:00
LOG_WRN ( " DocBroker [ " < < docBroker - > getDocKey ( ) < < " ] got disconnected from its Kit ( "
< < child - > getPid ( ) < < " ). Closing. " ) ;
2018-02-07 10:17:59 +01:00
std : : unique_lock < std : : mutex > lock = docBroker - > getLock ( ) ;
2022-03-06 23:30:49 +01:00
docBroker - > disconnectedFromKit ( ) ;
2017-03-21 03:58:28 +01:00
}
2022-07-26 04:42:28 +02:00
else if ( child )
LOG_WRN ( " Kit ( " < < child - > getPid ( ) < < " ) disconnected. No DocBroker associated. " ) ;
else
LOG_WRN ( " An unassociated Kit disconnected. " ) ;
2017-03-06 20:50:06 +01:00
}
/// Called after successful socket reads.
2017-05-05 12:51:43 +02:00
void handleIncomingMessage ( SocketDisposition & disposition ) override
2017-03-06 20:50:06 +01:00
{
if ( _childProcess . lock ( ) )
{
// FIXME: inelegant etc. - derogate to websocket code
2017-05-05 12:51:43 +02:00
WebSocketHandler : : handleIncomingMessage ( disposition ) ;
return ;
2017-03-06 20:50:06 +01:00
}
2018-10-24 09:35:46 +02:00
std : : shared_ptr < StreamSocket > socket = getSocket ( ) . lock ( ) ;
2020-04-19 20:46:01 +02:00
if ( ! socket )
{
LOG_ERR ( " Invalid socket while reading incoming message. " ) ;
return ;
}
2017-03-06 20:50:06 +01:00
2018-10-25 16:38:54 +02:00
Poco : : MemoryInputStream message ( & socket - > getInBuffer ( ) [ 0 ] ,
2020-10-31 20:08:08 +01:00
socket - > getInBuffer ( ) . size ( ) ) ;
2017-03-06 20:50:06 +01:00
Poco : : Net : : HTTPRequest request ;
2018-05-01 15:57:17 +02:00
2017-03-06 20:50:06 +01:00
try
{
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2019-05-22 04:21:50 +02:00
if ( ! socket - > parseHeader ( " Prisoner " , message , request ) )
2018-05-01 15:57:17 +02:00
return ;
2017-03-06 20:50:06 +01:00
2021-11-18 13:08:14 +01:00
LOG_TRC ( " Child connection with URI [ " < < COOLWSD : : anonymizeUrl ( request . getURI ( ) ) < < " ]. " ) ;
2018-05-07 15:09:40 +02:00
Poco : : URI requestURI ( request . getURI ( ) ) ;
2020-04-02 17:11:36 +02:00
# ifndef KIT_IN_PROCESS
if ( requestURI . getPath ( ) = = FORKIT_URI )
{
2021-11-18 13:08:14 +01:00
if ( socket - > getPid ( ) ! = COOLWSD : : ForKitProcId )
2020-04-02 17:11:36 +02:00
{
LOG_WRN ( " Connection request received on " < < FORKIT_URI < < " endpoint from unexpected ForKit process. Skipped. " ) ;
return ;
}
2021-11-18 13:08:14 +01:00
COOLWSD : : ForKitProc = std : : make_shared < ForKitProcess > ( COOLWSD : : ForKitProcId , socket , request ) ;
2020-04-02 17:11:36 +02:00
socket - > getInBuffer ( ) . clear ( ) ;
2021-11-18 13:08:14 +01:00
PrisonerPoll - > setForKitProcess ( COOLWSD : : ForKitProc ) ;
2020-04-02 17:11:36 +02:00
return ;
}
# endif
2018-05-07 15:09:40 +02:00
if ( requestURI . getPath ( ) ! = NEW_CHILD_URI )
2017-03-06 20:50:06 +01:00
{
LOG_ERR ( " Invalid incoming URI. " ) ;
2017-05-05 12:51:43 +02:00
return ;
2017-03-06 20:50:06 +01:00
}
// New Child is spawned.
2018-05-07 15:09:40 +02:00
const Poco : : URI : : QueryParameters params = requestURI . getQueryParameters ( ) ;
2019-03-30 22:07:58 +01:00
int pid = socket - > getPid ( ) ;
2017-05-07 17:05:34 +02:00
std : : string jailId ;
2017-03-06 20:50:06 +01:00
for ( const auto & param : params )
{
2019-03-30 22:07:58 +01:00
if ( param . first = = " jailid " )
2017-05-07 17:05:34 +02:00
jailId = param . second ;
2019-03-30 22:07:58 +01:00
2017-03-06 20:50:06 +01:00
else if ( param . first = = " version " )
2021-11-18 13:08:14 +01:00
COOLWSD : : LOKitVersion = param . second ;
2017-03-06 20:50:06 +01:00
}
if ( pid < = 0 )
{
2021-11-18 13:08:14 +01:00
LOG_ERR ( " Invalid PID in child URI [ " < < COOLWSD : : anonymizeUrl ( request . getURI ( ) ) < < " ]. " ) ;
2017-05-05 12:51:43 +02:00
return ;
2017-03-06 20:50:06 +01:00
}
2017-05-07 17:05:34 +02:00
if ( jailId . empty ( ) )
{
2021-11-18 13:08:14 +01:00
LOG_ERR ( " Invalid JailId in child URI [ " < < COOLWSD : : anonymizeUrl ( request . getURI ( ) ) < < " ]. " ) ;
2017-05-08 05:23:02 +02:00
return ;
2017-05-07 17:05:34 +02:00
}
2018-10-25 16:38:54 +02:00
socket - > getInBuffer ( ) . clear ( ) ;
2017-04-06 04:35:22 +02:00
2020-05-24 15:10:18 +02:00
LOG_INF ( " New child [ " < < pid < < " ], jailId: " < < jailId < < ' . ' ) ;
2017-03-06 20:50:06 +01:00
2017-03-16 19:32:12 +01:00
UnitWSD : : get ( ) . newChild ( * this ) ;
2018-09-13 18:16:00 +02:00
# else
2019-11-26 14:15:38 +01:00
pid_t pid = 100 ;
2018-09-13 18:16:00 +02:00
std : : string jailId = " jail " ;
2018-10-25 20:33:57 +02:00
socket - > getInBuffer ( ) . clear ( ) ;
2018-09-13 18:16:00 +02:00
# endif
LOG_TRC ( " Calling make_shared<ChildProcess>, for NewChildren? " ) ;
2017-03-06 20:50:06 +01:00
2017-05-07 17:05:34 +02:00
auto child = std : : make_shared < ChildProcess > ( pid , jailId , socket , request ) ;
2017-03-06 20:50:06 +01:00
2020-04-28 15:55:47 +02:00
child - > setSMapsFD ( socket - > getIncomingFD ( ) ) ;
2017-04-07 21:47:10 +02:00
_childProcess = child ; // weak
2017-03-08 05:46:02 +01:00
// Remove from prisoner poll since there is no activity
// until we attach the childProcess (with this socket)
// to a docBroker, which will do the polling.
2017-05-05 12:51:43 +02:00
disposition . setMove ( [ child ] ( const std : : shared_ptr < Socket > & ) {
2018-09-13 18:16:00 +02:00
LOG_TRC ( " Calling addNewChild in disposition's move thing to add to NewChildren " ) ;
2017-05-05 12:51:43 +02:00
addNewChild ( child ) ;
} ) ;
2017-03-06 20:50:06 +01:00
}
2020-03-06 18:43:46 +01:00
catch ( const std : : bad_weak_ptr & )
{
// Using shared_from_this() from a constructor is not good.
assert ( false ) ;
}
2017-03-06 20:50:06 +01:00
catch ( const std : : exception & exc )
{
// Probably don't have enough data just yet.
// TODO: timeout if we never get enough.
}
}
/// Prisoner websocket fun ... (for now)
2020-03-05 19:55:00 +01:00
virtual void handleMessage ( const std : : vector < char > & data ) override
2017-03-06 20:50:06 +01:00
{
if ( UnitWSD : : get ( ) . filterChildMessage ( data ) )
return ;
2022-06-06 00:37:03 +02:00
auto message = std : : make_shared < Message > ( data . data ( ) , data . size ( ) , Message : : Dir : : Out ) ;
2018-10-24 09:35:46 +02:00
std : : shared_ptr < StreamSocket > socket = getSocket ( ) . lock ( ) ;
2017-03-27 05:06:44 +02:00
if ( socket )
2022-06-06 00:37:03 +02:00
LOG_TRC ( ' # ' < < socket - > getFD ( ) < < " Prisoner message [ " < < message - > abbr ( ) < < ' ] ' ) ;
2017-03-27 05:06:44 +02:00
else
LOG_WRN ( " Message handler called but without valid socket. " ) ;
2017-03-06 20:50:06 +01:00
2018-02-07 10:17:59 +01:00
std : : shared_ptr < ChildProcess > child = _childProcess . lock ( ) ;
std : : shared_ptr < DocumentBroker > docBroker = child ? child - > getDocumentBroker ( ) : nullptr ;
2017-03-06 20:50:06 +01:00
if ( docBroker )
2022-06-06 00:37:03 +02:00
docBroker - > handleInput ( message ) ;
2017-04-10 00:27:25 +02:00
else
2020-04-28 19:19:36 +02:00
LOG_WRN ( " Child " < < child - > getPid ( ) < <
2022-06-06 00:37:03 +02:00
" has no DocumentBroker to handle message: [ " < < message - > abbr ( ) < < ' ] ' ) ;
2017-03-06 20:50:06 +01:00
}
2020-04-10 13:34:15 +02:00
int getPollEvents ( std : : chrono : : steady_clock : : time_point /* now */ ,
int64_t & /* timeoutMaxMs */ ) override
2017-03-06 20:50:06 +01:00
{
2017-03-17 22:59:09 +01:00
return POLLIN ;
2017-03-06 20:50:06 +01:00
}
2021-03-07 18:57:13 +01:00
void performWrites ( std : : size_t /*capacity*/ ) override { }
2017-03-06 20:50:06 +01:00
} ;
2019-08-07 13:40:27 +02:00
# if !MOBILEAPP
2019-06-22 18:45:36 +02:00
/// For clipboard setting
class ClipboardPartHandler : public PartHandler
{
std : : shared_ptr < std : : string > _data ; // large.
public :
std : : shared_ptr < std : : string > getData ( ) const { return _data ; }
ClipboardPartHandler ( ) { }
virtual void handlePart ( const MessageHeader & /* header */ , std : : istream & stream ) override
{
std : : istreambuf_iterator < char > eos ;
_data = std : : make_shared < std : : string > ( std : : istreambuf_iterator < char > ( stream ) , eos ) ;
LOG_TRC ( " Clipboard stream from part header stored of size " < < _data - > length ( ) ) ;
}
} ;
2019-08-07 13:40:27 +02:00
# endif
2017-02-25 17:55:24 +01:00
/// Handles incoming connections and dispatches to the appropriate handler.
2020-10-31 20:08:08 +01:00
class ClientRequestDispatcher final : public SimpleSocketHandler
2017-02-24 20:52:36 +01:00
{
2017-02-26 00:54:55 +01:00
public :
2017-03-02 10:38:49 +01:00
ClientRequestDispatcher ( )
2017-02-26 00:54:55 +01:00
{
}
2017-06-07 04:33:21 +02:00
static void InitStaticFileContentCache ( )
{
StaticFileContentCache [ " discovery.xml " ] = getDiscoveryXML ( ) ;
}
2018-05-13 14:35:32 +02:00
/// Does this address feature in the allowed hosts list.
2020-09-18 11:03:17 +02:00
static bool allowPostFrom ( const std : : string & address )
2018-05-13 14:35:32 +02:00
{
static bool init = false ;
static Util : : RegexListMatcher hosts ;
if ( ! init )
{
const auto & app = Poco : : Util : : Application : : instance ( ) ;
// Parse the host allow settings.
for ( size_t i = 0 ; ; + + i )
{
2020-05-24 15:10:18 +02:00
const std : : string path = " net.post_allow.host[ " + std : : to_string ( i ) + ' ] ' ;
2018-05-13 14:35:32 +02:00
const auto host = app . config ( ) . getString ( path , " " ) ;
if ( ! host . empty ( ) )
{
LOG_INF ( " Adding trusted POST_ALLOW host: [ " < < host < < " ]. " ) ;
hosts . allow ( host ) ;
}
else if ( ! app . config ( ) . has ( path ) )
{
break ;
}
}
2019-10-21 06:48:51 +02:00
init = true ;
2018-05-13 14:35:32 +02:00
}
return hosts . match ( address ) ;
}
2021-03-10 03:15:43 +01:00
static bool allowConvertTo ( const std : : string & address , const Poco : : Net : : HTTPRequest & request )
2018-10-24 12:37:58 +02:00
{
2018-10-25 10:48:10 +02:00
std : : string addressToCheck = address ;
std : : string hostToCheck = request . getHost ( ) ;
2022-03-24 11:23:34 +01:00
bool allow = allowPostFrom ( addressToCheck ) | | HostUtil : : allowedWopiHost ( hostToCheck ) ;
2018-10-25 10:48:10 +02:00
2018-10-25 22:24:00 +02:00
if ( ! allow )
{
2020-10-09 17:16:47 +02:00
LOG_WRN ( " convert-to: Requesting address is denied: " < < addressToCheck ) ;
2018-10-25 22:24:00 +02:00
return false ;
}
2020-10-09 17:16:47 +02:00
else
{
LOG_INF ( " convert-to: Requesting address is allowed: " < < addressToCheck ) ;
}
2018-10-25 22:24:00 +02:00
2018-10-25 10:48:10 +02:00
// Handle forwarded header and make sure all participating IPs are allowed
2018-10-24 12:37:58 +02:00
if ( request . has ( " X-Forwarded-For " ) )
{
2019-10-21 06:48:51 +02:00
const std : : string fowardedData = request . get ( " X-Forwarded-For " ) ;
2022-03-30 03:37:57 +02:00
StringVector tokens = StringVector : : tokenize ( fowardedData , ' , ' ) ;
2020-02-28 14:51:22 +01:00
for ( const auto & token : tokens )
2018-10-24 12:37:58 +02:00
{
2020-02-28 14:51:22 +01:00
std : : string param = tokens . getParam ( token ) ;
addressToCheck = Util : : trim ( param ) ;
2018-10-24 12:37:58 +02:00
try
{
2020-06-18 07:27:08 +02:00
if ( ! allowPostFrom ( addressToCheck ) )
{
hostToCheck = Poco : : Net : : DNS : : resolve ( addressToCheck ) . name ( ) ;
2022-03-24 11:23:34 +01:00
allow & = HostUtil : : allowedWopiHost ( hostToCheck ) ;
2020-06-18 07:27:08 +02:00
}
2018-10-24 12:37:58 +02:00
}
catch ( const Poco : : Exception & exc )
{
2021-02-05 22:22:09 +01:00
LOG_ERR ( " Poco::Net::DNS::resolve( \" " < < addressToCheck < < " \" ) failed: " < < exc . displayText ( ) ) ;
2020-06-18 07:27:08 +02:00
// We can't find out the hostname, and it already failed the IP check
allow = false ;
2018-10-24 12:37:58 +02:00
}
2018-10-25 22:24:00 +02:00
if ( ! allow )
{
2020-10-09 17:16:47 +02:00
LOG_WRN ( " convert-to: Requesting address is denied: " < < addressToCheck ) ;
2018-10-25 22:24:00 +02:00
return false ;
}
2020-10-09 17:16:47 +02:00
else
{
LOG_INF ( " convert-to: Requesting address is allowed: " < < addressToCheck ) ;
}
2018-10-24 12:37:58 +02:00
}
}
2018-10-25 10:48:10 +02:00
return allow ;
2018-10-24 12:37:58 +02:00
}
2018-05-13 14:35:32 +02:00
2017-02-25 17:55:24 +01:00
private :
/// Set the socket associated with this ResponseClient.
2017-03-27 05:06:44 +02:00
void onConnect ( const std : : shared_ptr < StreamSocket > & socket ) override
2017-02-24 20:52:36 +01:00
{
2021-11-18 13:08:14 +01:00
_id = COOLWSD : : GetConnectionId ( ) ;
2017-02-26 01:07:22 +01:00
_socket = socket ;
2020-05-24 15:10:18 +02:00
LOG_TRC ( ' # ' < < socket - > getFD ( ) < < " Connected to ClientRequestDispatcher. " ) ;
2017-02-25 17:55:24 +01:00
}
/// Called after successful socket reads.
2017-05-05 12:51:43 +02:00
void handleIncomingMessage ( SocketDisposition & disposition ) override
2017-02-25 17:55:24 +01:00
{
2018-02-07 10:17:59 +01:00
std : : shared_ptr < StreamSocket > socket = _socket . lock ( ) ;
2020-04-19 20:46:01 +02:00
if ( ! socket )
{
LOG_ERR ( " Invalid socket while handling incoming client request " ) ;
return ;
}
2017-02-28 04:38:18 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2021-11-18 13:08:14 +01:00
if ( ! COOLWSD : : isSSLEnabled ( ) & & socket - > sniffSSL ( ) )
2018-11-07 18:35:46 +01:00
{
LOG_ERR ( " Looks like SSL/TLS traffic on plain http port " ) ;
2020-10-26 13:55:54 +01:00
HttpHelper : : sendErrorAndShutdown ( 400 , socket ) ;
2018-11-07 18:35:46 +01:00
return ;
}
2019-05-22 04:21:50 +02:00
Poco : : MemoryInputStream startmessage ( & socket - > getInBuffer ( ) [ 0 ] ,
2020-12-03 04:27:31 +01:00
socket - > getInBuffer ( ) . size ( ) ) ;
2020-05-25 21:25:25 +02:00
#if 0 // debug a specific command's payload
if ( Util : : findInVector ( socket - > getInBuffer ( ) , " insertfile " ) ! = std : : string : : npos )
{
std : : ostringstream oss ;
oss < < " Debug - specific command: \n " ;
socket - > dumpState ( oss ) ;
LOG_INF ( oss . str ( ) ) ;
}
# endif
2017-02-26 00:59:44 +01:00
Poco : : Net : : HTTPRequest request ;
2017-02-28 04:38:18 +01:00
2019-05-22 04:21:50 +02:00
StreamSocket : : MessageMap map ;
if ( ! socket - > parseHeader ( " Client " , startmessage , request , & map ) )
2017-05-05 12:51:43 +02:00
return ;
2017-02-25 17:55:24 +01:00
wsd: reduce debug and generally redundant logs
In 'debug' log-level we expect a detailed, but
still readable output. Having one area with
disproportionately large number of logs reduces
the overall utility of the log output.
This patch reduces a number of redundant log
entries, including errors that are already
logged. It also reduces the level of some
others from 'information' to 'debug' and
from 'debug' to 'trace'.
The goal is to make 'debug' level as useful as
possible to read the progress and be able to
understand what was going on, such that one is
able to decide which area to dig deeper into.
Then, trace level could be used to get more
insight into that area, if necessary. For
example, when investigating a test failure,
one first enables 'debug' logs and reads through.
Once a section between two debug entries is
identified as being of interest, enabling 'trace'
level logs becomes more productive as it's
now possible to easily reach the first DBG
entry and read through until the second one.
It's unfortunate that we don't have per-area
control for enabling/disabling logs, so it
is common to see more and more 'debug' log
entries added all around, making logs
less and less readable.
It is also a limitation of the levels we have
that we really only have 3 usable levels:
one, two, many. That is, 'information' for
the most important events, 'debug' for
technical details needed to investigate issues,
and 'trace' for everything else. ('warning'
and 'error' aren't really 'levels'; they have
semantics that makes them special-cases.)
So we have to avoid degrading one into the
other, or have differences without distinction.
If any of these entries are needed to be
displayed more frequently, changing them
back to 'debug' or even 'information' should
be done. Though for me they seem special
cases that don't benefit most log readings.
Change-Id: Id2c6a9dc027483b81a066b0b4b50a298c5eff449
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2022-02-19 14:30:26 +01:00
LOG_DBG ( " Handling request: " < < request . getURI ( ) ) ;
2017-02-26 00:59:44 +01:00
try
{
2019-05-22 04:21:50 +02:00
// We may need to re-write the chunks moving the inBuffer.
socket - > compactChunks ( & map ) ;
Poco : : MemoryInputStream message ( & socket - > getInBuffer ( ) [ 0 ] ,
socket - > getInBuffer ( ) . size ( ) ) ;
// update the read cursor - headers are not altered by chunks.
message . seekg ( startmessage . tellg ( ) , std : : ios : : beg ) ;
2020-05-12 14:41:26 +02:00
// re-write ServiceRoot and cache.
2021-11-18 13:08:14 +01:00
RequestDetails requestDetails ( request , COOLWSD : : ServiceRoot ) ;
2020-05-25 16:52:37 +02:00
// LOG_TRC("Request details " << requestDetails.toString());
2018-09-07 00:25:50 +02:00
2020-05-07 22:11:38 +02:00
// Config & security ...
2020-05-12 14:41:26 +02:00
if ( requestDetails . isProxy ( ) )
2020-05-07 22:11:38 +02:00
{
2021-11-18 13:08:14 +01:00
if ( ! COOLWSD : : IsProxyPrefixEnabled )
2020-05-07 22:11:38 +02:00
throw BadRequestException ( " ProxyPrefix present but net.proxy_prefix is not enabled " ) ;
else if ( ! socket - > isLocal ( ) )
throw BadRequestException ( " ProxyPrefix request from non-local socket " ) ;
}
2017-02-25 17:55:24 +01:00
// Routing
2018-02-08 19:51:54 +01:00
if ( UnitWSD : : get ( ) . handleHttpRequest ( request , message , socket ) )
2017-02-25 17:55:24 +01:00
{
2017-08-09 22:02:29 +02:00
// Unit testing, nothing to do here
}
2021-11-03 15:36:59 +01:00
else if ( requestDetails . equals ( RequestDetails : : Field : : Type , " browser " ) | | requestDetails . equals ( RequestDetails : : Field : : Type , " wopi " ) )
2017-08-09 22:02:29 +02:00
{
// File server
2020-05-12 17:19:41 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2022-06-27 18:13:03 +02:00
constexpr auto ProxyRemote = " /remote/ " ;
2022-06-22 16:18:03 +02:00
constexpr auto ProxyRemoteLen = sizeof ( ProxyRemote ) - 1 ;
2022-06-27 18:13:03 +02:00
constexpr auto ProxyRemoteStatic = " /remote/static/ " ;
2022-06-22 16:18:03 +02:00
const auto uri = requestDetails . getURI ( ) ;
2022-06-27 18:13:03 +02:00
const auto pos = uri . find ( ProxyRemoteStatic ) ;
2022-06-22 16:18:03 +02:00
if ( pos ! = std : : string : : npos )
{
2022-07-05 14:03:14 +02:00
if ( Util : : endsWith ( uri , " lokit-extra-img.svg " ) )
{
ProxyRequestHandler : : handleRequest (
uri . substr ( pos + ProxyRemoteLen ) , socket ,
ProxyRequestHandler : : getProxyRatingServer ( ) ) ;
}
2022-08-03 04:04:49 +02:00
# if ENABLE_FEATURE_LOCK
2022-07-05 14:03:14 +02:00
else
{
const Poco : : URI unlockImageUri =
CommandControl : : LockManager : : getUnlockImageUri ( ) ;
if ( ! unlockImageUri . empty ( ) )
{
const std : : string & serverUri =
unlockImageUri . getScheme ( ) + " :// " + unlockImageUri . getAuthority ( ) ;
ProxyRequestHandler : : handleRequest ( uri . substr ( pos + ProxyRemoteLen ) ,
socket , serverUri ) ;
}
}
# endif
2022-06-22 16:18:03 +02:00
}
else
{
FileServerRequestHandler : : handleRequest ( request , requestDetails , message , socket ) ;
socket - > shutdown ( ) ;
}
2017-04-25 22:35:20 +02:00
}
2021-11-15 17:23:40 +01:00
else if ( requestDetails . equals ( RequestDetails : : Field : : Type , " cool " ) & &
2020-05-12 14:41:26 +02:00
requestDetails . equals ( 1 , " adminws " ) )
2017-04-25 22:35:20 +02:00
{
2017-08-09 22:02:29 +02:00
// Admin connections
2017-04-25 23:12:07 +02:00
LOG_INF ( " Admin request: " < < request . getURI ( ) ) ;
2017-04-25 22:35:20 +02:00
if ( AdminSocketHandler : : handleInitialRequest ( _socket , request ) )
2017-04-24 06:44:14 +02:00
{
2017-05-05 12:51:43 +02:00
disposition . setMove ( [ ] ( const std : : shared_ptr < Socket > & moveSocket ) {
2017-04-25 23:12:07 +02:00
// Hand the socket over to the Admin poll.
Admin : : instance ( ) . insertNewSocket ( moveSocket ) ;
} ) ;
2017-04-24 06:44:14 +02:00
}
2017-04-25 22:35:20 +02:00
}
2021-11-15 17:23:40 +01:00
else if ( requestDetails . equals ( RequestDetails : : Field : : Type , " cool " ) & &
2020-05-12 14:41:26 +02:00
requestDetails . equals ( 1 , " getMetrics " ) )
2019-11-12 10:50:33 +01:00
{
2020-05-12 14:41:26 +02:00
// See metrics.txt
2019-11-12 10:50:33 +01:00
std : : shared_ptr < Poco : : Net : : HTTPResponse > response ( new Poco : : Net : : HTTPResponse ( ) ) ;
2021-11-18 13:08:14 +01:00
if ( ! COOLWSD : : AdminEnabled )
2019-11-12 10:50:33 +01:00
throw Poco : : FileAccessDeniedException ( " Admin console disabled " ) ;
2021-03-20 22:37:38 +01:00
try
{
2021-11-05 13:26:48 +01:00
/* WARNING: security point, we may skip authentication */
2021-11-18 13:08:14 +01:00
bool skipAuthentication = COOLWSD : : getConfigValue < bool > ( " security.enable_metrics_unauthenticated " , false ) ;
2021-11-05 13:26:48 +01:00
if ( ! skipAuthentication )
if ( ! FileServerRequestHandler : : isAdminLoggedIn ( request , * response ) )
throw Poco : : Net : : NotAuthenticatedException ( " Invalid admin login " ) ;
2019-11-12 10:50:33 +01:00
}
catch ( const Poco : : Net : : NotAuthenticatedException & exc )
{
//LOG_ERR("FileServerRequestHandler::NotAuthenticated: " << exc.displayText());
2021-03-20 22:31:19 +01:00
http : : Response httpResponse ( http : : StatusLine ( 401 ) ) ;
httpResponse . set ( " Content-Type " , " text/html charset=UTF-8 " ) ;
httpResponse . set ( " WWW-authenticate " , " Basic realm= \" online \" " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2021-07-08 02:21:43 +02:00
socket - > ignoreInput ( ) ;
2019-11-12 10:50:33 +01:00
return ;
}
2020-10-24 18:07:10 +02:00
response - > add ( " Last-Modified " , Util : : getHttpTimeNow ( ) ) ;
2019-11-12 10:50:33 +01:00
// Ask UAs to block if they detect any XSS attempt
response - > add ( " X-XSS-Protection " , " 1; mode=block " ) ;
// No referrer-policy
response - > add ( " Referrer-Policy " , " no-referrer " ) ;
2021-03-20 22:24:13 +01:00
response - > set ( " Server " , HTTP_SERVER_STRING ) ;
2019-11-12 10:50:33 +01:00
response - > add ( " Content-Type " , " text/plain " ) ;
response - > add ( " X-Content-Type-Options " , " nosniff " ) ;
2020-12-04 18:43:47 +01:00
disposition . setTransfer ( Admin : : instance ( ) ,
[ response ] ( const std : : shared_ptr < Socket > & moveSocket ) {
const std : : shared_ptr < StreamSocket > streamSocket =
std : : static_pointer_cast < StreamSocket > ( moveSocket ) ;
Admin : : instance ( ) . sendMetrics ( streamSocket , response ) ;
} ) ;
2019-11-12 10:50:33 +01:00
}
2020-05-12 14:41:26 +02:00
else if ( requestDetails . isGetOrHead ( " / " ) )
2020-05-24 14:37:18 +02:00
handleRootRequest ( requestDetails , socket ) ;
2020-05-12 14:41:26 +02:00
else if ( requestDetails . isGet ( " /favicon.ico " ) )
2020-05-24 14:37:18 +02:00
handleFaviconRequest ( requestDetails , socket ) ;
2020-05-12 14:41:26 +02:00
else if ( requestDetails . isGet ( " /hosting/discovery " ) | |
requestDetails . isGet ( " /hosting/discovery/ " ) )
2020-05-12 17:19:41 +02:00
handleWopiDiscoveryRequest ( requestDetails , socket ) ;
2020-05-12 14:41:26 +02:00
else if ( requestDetails . isGet ( CAPABILITIES_END_POINT ) )
handleCapabilitiesRequest ( request , socket ) ;
else if ( requestDetails . isGet ( " /robots.txt " ) )
handleRobotsTxtRequest ( request , socket ) ;
2021-11-15 17:23:40 +01:00
else if ( requestDetails . equals ( RequestDetails : : Field : : Type , " cool " ) & &
2020-05-12 14:41:26 +02:00
requestDetails . equals ( 1 , " clipboard " ) )
{
2021-03-11 19:12:20 +01:00
// Util::dumpHex(std::cerr, socket->getInBuffer(), "clipboard:\n"); // lots of data ...
2020-05-12 14:41:26 +02:00
handleClipboardRequest ( request , message , disposition , socket ) ;
2017-04-25 22:35:20 +02:00
}
2020-05-12 14:41:26 +02:00
else if ( requestDetails . isProxy ( ) & & requestDetails . equals ( 2 , " ws " ) )
2020-05-12 17:19:41 +02:00
handleClientProxyRequest ( request , requestDetails , message , disposition ) ;
2020-05-12 16:04:40 +02:00
2021-11-15 17:23:40 +01:00
else if ( requestDetails . equals ( RequestDetails : : Field : : Type , " cool " ) & &
2020-05-12 14:41:26 +02:00
requestDetails . equals ( 2 , " ws " ) & & requestDetails . isWebSocket ( ) )
2020-05-12 17:19:41 +02:00
handleClientWsUpgrade ( request , requestDetails , disposition , socket ) ;
2020-05-12 16:04:40 +02:00
2021-11-19 12:29:22 +01:00
else if ( ! requestDetails . isWebSocket ( ) & &
( requestDetails . equals ( RequestDetails : : Field : : Type , " cool " ) | |
requestDetails . equals ( RequestDetails : : Field : : Type , " lool " ) ) )
2018-02-15 15:17:32 +01:00
{
2021-11-19 12:29:22 +01:00
// All post requests have url prefix 'cool', except when the prefix
// is 'lool' e.g. when integrations use the old /lool/convert-to endpoint
2020-05-12 15:39:26 +02:00
handlePostRequest ( requestDetails , request , message , disposition , socket ) ;
2018-02-15 15:17:32 +01:00
}
2017-04-25 22:35:20 +02:00
else
{
2020-05-12 14:41:26 +02:00
LOG_ERR ( " Unknown resource: " < < requestDetails . toString ( ) ) ;
// Bad request.
2020-10-26 13:55:54 +01:00
HttpHelper : : sendErrorAndShutdown ( 400 , socket ) ;
2020-05-12 14:41:26 +02:00
return ;
2017-02-25 17:55:24 +01:00
}
}
catch ( const std : : exception & exc )
{
2021-02-05 22:22:09 +01:00
LOG_ERR ( ' # ' < < socket - > getFD ( ) < < " Exception while processing incoming request: [ " < <
2021-11-18 13:08:14 +01:00
COOLProtocol : : getAbbreviatedMessage ( socket - > getInBuffer ( ) ) < < " ]: " < < exc . what ( ) ) ;
2020-02-08 20:41:55 +01:00
2017-08-02 18:55:43 +02:00
// Bad request.
2020-02-08 20:41:55 +01:00
// NOTE: Check _wsState to choose between HTTP response or WebSocket (app-level) error.
2021-03-20 22:37:38 +01:00
http : : Response httpResponse ( http : : StatusLine ( 400 ) ) ;
httpResponse . set ( " Content-Length " , " 0 " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2021-07-08 02:21:43 +02:00
socket - > ignoreInput ( ) ;
2019-03-30 12:38:17 +01:00
return ;
2017-02-24 20:52:36 +01:00
}
2017-03-19 04:22:56 +01:00
2017-04-25 22:35:20 +02:00
// if we succeeded - remove the request from our input buffer
// we expect one request per socket
2019-05-22 04:21:50 +02:00
socket - > eraseFirstInputBytes ( map ) ;
2018-09-13 18:16:00 +02:00
# else
Poco : : Net : : HTTPRequest request ;
2020-04-24 09:46:54 +02:00
# ifdef IOS
// The URL of the document is sent over the FakeSocket by the code in
// -[DocumentViewController userContentController:didReceiveScriptMessage:] when it gets the
// HULLO message from the JavaScript in global.js.
// The "app document id", the numeric id of the document, from the appDocIdCounter in CODocument.mm.
char * space = strchr ( socket - > getInBuffer ( ) . data ( ) , ' ' ) ;
assert ( space ! = nullptr ) ;
2020-07-16 16:42:09 +02:00
// The socket buffer is not nul-terminated so we can't just call strtoull() on the number at
// its end, it might be followed in memory by more digits. Is there really no better way to
// parse the number at the end of the buffer than to copy the bytes into a nul-terminated
// buffer?
const size_t appDocIdLen = ( socket - > getInBuffer ( ) . data ( ) + socket - > getInBuffer ( ) . size ( ) ) - ( space + 1 ) ;
char * appDocIdBuffer = ( char * ) malloc ( appDocIdLen + 1 ) ;
memcpy ( appDocIdBuffer , space + 1 , appDocIdLen ) ;
appDocIdBuffer [ appDocIdLen ] = ' \0 ' ;
unsigned appDocId = std : : strtoul ( appDocIdBuffer , nullptr , 10 ) ;
free ( appDocIdBuffer ) ;
2020-04-24 09:46:54 +02:00
handleClientWsUpgrade (
request , std : : string ( socket - > getInBuffer ( ) . data ( ) , space - socket - > getInBuffer ( ) . data ( ) ) ,
disposition , socket , appDocId ) ;
# else
2020-04-19 20:46:01 +02:00
handleClientWsUpgrade (
2020-05-12 17:19:41 +02:00
request , RequestDetails ( std : : string ( socket - > getInBuffer ( ) . data ( ) ,
socket - > getInBuffer ( ) . size ( ) ) ) ,
2020-04-19 20:46:01 +02:00
disposition , socket ) ;
2020-04-24 09:46:54 +02:00
# endif
2018-10-25 20:33:57 +02:00
socket - > getInBuffer ( ) . clear ( ) ;
2018-09-13 18:16:00 +02:00
# endif
2017-02-25 17:55:24 +01:00
}
2020-04-10 13:34:15 +02:00
int getPollEvents ( std : : chrono : : steady_clock : : time_point /* now */ ,
int64_t & /* timeoutMaxMs */ ) override
2017-03-06 17:26:52 +01:00
{
2017-03-17 22:59:09 +01:00
return POLLIN ;
2017-03-06 17:26:52 +01:00
}
2021-03-07 18:57:13 +01:00
void performWrites ( std : : size_t /*capacity*/ ) override { }
2017-03-06 17:26:52 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2020-05-12 17:19:41 +02:00
void handleRootRequest ( const RequestDetails & requestDetails ,
2020-04-19 20:46:01 +02:00
const std : : shared_ptr < StreamSocket > & socket )
2017-02-25 18:55:57 +01:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2020-05-12 17:19:41 +02:00
LOG_DBG ( " HTTP request: " < < requestDetails . getURI ( ) ) ;
2017-02-27 07:12:59 +01:00
const std : : string mimeType = " text/plain " ;
const std : : string responseString = " OK " ;
2021-03-20 23:06:09 +01:00
http : : Response httpResponse ( http : : StatusLine ( 200 ) ) ;
httpResponse . set ( " Content-Length " , std : : to_string ( responseString . size ( ) ) ) ;
httpResponse . set ( " Content-Type " , std : : to_string ( mimeType . size ( ) ) ) ;
httpResponse . set ( " Last-Modified " , Util : : getHttpTimeNow ( ) ) ;
httpResponse . set ( " Connection " , " close " ) ;
httpResponse . writeData ( socket - > getOutBuffer ( ) ) ;
2020-05-12 17:19:41 +02:00
if ( requestDetails . isGet ( ) )
2021-03-20 23:06:09 +01:00
socket - > send ( responseString ) ;
socket - > flush ( ) ;
2017-02-27 14:55:42 +01:00
socket - > shutdown ( ) ;
2017-02-28 03:35:06 +01:00
LOG_INF ( " Sent / response successfully. " ) ;
2017-02-25 18:55:57 +01:00
}
2020-09-18 11:03:17 +02:00
static void handleFaviconRequest ( const RequestDetails & requestDetails ,
2020-04-19 20:46:01 +02:00
const std : : shared_ptr < StreamSocket > & socket )
2017-02-25 18:55:57 +01:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
wsd: reduce debug and generally redundant logs
In 'debug' log-level we expect a detailed, but
still readable output. Having one area with
disproportionately large number of logs reduces
the overall utility of the log output.
This patch reduces a number of redundant log
entries, including errors that are already
logged. It also reduces the level of some
others from 'information' to 'debug' and
from 'debug' to 'trace'.
The goal is to make 'debug' level as useful as
possible to read the progress and be able to
understand what was going on, such that one is
able to decide which area to dig deeper into.
Then, trace level could be used to get more
insight into that area, if necessary. For
example, when investigating a test failure,
one first enables 'debug' logs and reads through.
Once a section between two debug entries is
identified as being of interest, enabling 'trace'
level logs becomes more productive as it's
now possible to easily reach the first DBG
entry and read through until the second one.
It's unfortunate that we don't have per-area
control for enabling/disabling logs, so it
is common to see more and more 'debug' log
entries added all around, making logs
less and less readable.
It is also a limitation of the levels we have
that we really only have 3 usable levels:
one, two, many. That is, 'information' for
the most important events, 'debug' for
technical details needed to investigate issues,
and 'trace' for everything else. ('warning'
and 'error' aren't really 'levels'; they have
semantics that makes them special-cases.)
So we have to avoid degrading one into the
other, or have differences without distinction.
If any of these entries are needed to be
displayed more frequently, changing them
back to 'debug' or even 'information' should
be done. Though for me they seem special
cases that don't benefit most log readings.
Change-Id: Id2c6a9dc027483b81a066b0b4b50a298c5eff449
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2022-02-19 14:30:26 +01:00
LOG_TRC ( " Favicon request: " < < requestDetails . getURI ( ) ) ;
2017-02-27 07:08:22 +01:00
std : : string mimeType = " image/vnd.microsoft.icon " ;
std : : string faviconPath = Path ( Application : : instance ( ) . commandPath ( ) ) . parent ( ) . toString ( ) + " favicon.ico " ;
if ( ! File ( faviconPath ) . exists ( ) )
2021-11-18 13:08:14 +01:00
faviconPath = COOLWSD : : FileServerRoot + " /favicon.ico " ;
2017-02-27 07:08:22 +01:00
2020-06-03 17:06:10 +02:00
HttpHelper : : sendFileAndShutdown ( socket , faviconPath , mimeType ) ;
2017-02-25 18:55:57 +01:00
}
2020-05-12 17:19:41 +02:00
void handleWopiDiscoveryRequest ( const RequestDetails & requestDetails ,
2020-04-19 20:46:01 +02:00
const std : : shared_ptr < StreamSocket > & socket )
2017-02-25 18:55:57 +01:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2020-05-12 17:19:41 +02:00
LOG_DBG ( " Wopi discovery request: " < < requestDetails . getURI ( ) ) ;
2017-02-27 06:41:22 +01:00
2017-06-07 04:33:21 +02:00
std : : string xml = getFileContent ( " discovery.xml " ) ;
2020-04-23 14:39:33 +02:00
std : : string srvUrl =
# if ENABLE_SSL
2021-11-18 13:08:14 +01:00
( ( COOLWSD : : isSSLEnabled ( ) | | COOLWSD : : isSSLTermination ( ) ) ? " https:// " : " http:// " )
2020-04-23 14:39:33 +02:00
# else
" http:// "
# endif
2021-11-18 13:08:14 +01:00
+ ( COOLWSD : : ServerName . empty ( ) ? requestDetails . getHostUntrusted ( ) : COOLWSD : : ServerName )
+ COOLWSD : : ServiceRoot ;
2020-05-12 17:19:41 +02:00
if ( requestDetails . isProxy ( ) )
srvUrl = requestDetails . getProxyPrefix ( ) ;
2020-04-23 14:39:33 +02:00
Poco : : replaceInPlace ( xml , std : : string ( " %SRV_URI% " ) , srvUrl ) ;
2017-02-27 06:41:22 +01:00
2021-03-20 23:06:09 +01:00
http : : Response httpResponse ( http : : StatusLine ( 200 ) ) ;
2021-03-21 15:02:14 +01:00
httpResponse . setBody ( xml , " text/xml " ) ;
2021-03-20 23:06:09 +01:00
httpResponse . set ( " Last-Modified " , Util : : getHttpTimeNow ( ) ) ;
httpResponse . set ( " X-Content-Type-Options " , " nosniff " ) ;
2021-07-22 06:40:33 +02:00
LOG_TRC ( " Sending back discovery.xml: " < < xml ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2017-02-27 06:41:22 +01:00
LOG_INF ( " Sent discovery.xml successfully. " ) ;
2017-02-25 18:55:57 +01:00
}
2020-04-19 20:46:01 +02:00
void handleCapabilitiesRequest ( const Poco : : Net : : HTTPRequest & request ,
const std : : shared_ptr < StreamSocket > & socket )
2018-10-19 18:14:48 +02:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2018-10-19 18:14:48 +02:00
LOG_DBG ( " Wopi capabilities request: " < < request . getURI ( ) ) ;
2020-04-19 20:46:01 +02:00
const std : : string capabilities = getCapabilitiesJson ( request , socket ) ;
2018-10-19 18:14:48 +02:00
2021-03-21 04:27:15 +01:00
http : : Response httpResponse ( http : : StatusLine ( 200 ) ) ;
httpResponse . set ( " Last-Modified " , Util : : getHttpTimeNow ( ) ) ;
2021-03-21 15:02:14 +01:00
httpResponse . setBody ( capabilities , " application/json " ) ;
2021-03-21 04:27:15 +01:00
httpResponse . set ( " X-Content-Type-Options " , " nosniff " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2019-05-17 14:22:02 +02:00
LOG_INF ( " Sent capabilities.json successfully. " ) ;
2018-10-19 18:14:48 +02:00
}
2020-09-18 11:03:17 +02:00
static void handleClipboardRequest ( const Poco : : Net : : HTTPRequest & request ,
2019-06-22 18:45:36 +02:00
Poco : : MemoryInputStream & message ,
2020-04-19 20:46:01 +02:00
SocketDisposition & disposition ,
const std : : shared_ptr < StreamSocket > & socket )
2019-06-04 21:26:39 +02:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2019-07-04 11:50:33 +02:00
LOG_DBG ( " Clipboard " < < ( ( request . getMethod ( ) = = HTTPRequest : : HTTP_GET ) ? " GET " : " POST " ) < <
" request: " < < request . getURI ( ) ) ;
2019-06-04 21:26:39 +02:00
Poco : : URI requestUri ( request . getURI ( ) ) ;
Poco : : URI : : QueryParameters params = requestUri . getQueryParameters ( ) ;
2019-06-26 02:43:07 +02:00
std : : string WOPISrc , serverId , viewId , tag , mime ;
2020-06-02 09:44:08 +02:00
for ( const auto & it : params )
2019-06-04 21:26:39 +02:00
{
2019-06-21 13:35:17 +02:00
if ( it . first = = " WOPISrc " )
2019-06-21 18:48:57 +02:00
WOPISrc = it . second ;
2019-06-21 13:35:17 +02:00
else if ( it . first = = " ServerId " )
2019-06-04 21:26:39 +02:00
serverId = it . second ;
else if ( it . first = = " ViewId " )
viewId = it . second ;
else if ( it . first = = " Tag " )
tag = it . second ;
2019-06-26 02:43:07 +02:00
else if ( it . first = = " MimeType " )
mime = it . second ;
2019-06-04 21:26:39 +02:00
}
LOG_TRC ( " Clipboard request for us: " < < serverId < < " with tag " < < tag ) ;
2020-12-03 21:29:18 +01:00
if ( serverId ! = Util : : getProcessIdentifier ( ) )
{
2021-03-12 03:10:59 +01:00
const std : : string errMsg = " Cluster configuration error: mis-matching "
" serverid "
+ serverId + " vs. " + Util : : getProcessIdentifier ( )
+ " on request to URL: " + request . getURI ( ) ;
2020-12-03 21:29:18 +01:00
LOG_ERR ( errMsg ) ;
2021-02-05 22:22:09 +01:00
2020-12-03 21:29:18 +01:00
// we got the wrong request.
2021-03-21 04:27:15 +01:00
http : : Response httpResponse ( http : : StatusLine ( 400 ) ) ;
httpResponse . set ( " Content-Length " , " 0 " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2021-07-08 02:21:43 +02:00
socket - > ignoreInput ( ) ;
2020-12-03 21:29:18 +01:00
return ;
}
2021-10-26 05:00:20 +02:00
const auto docKey = RequestDetails : : getDocKey ( WOPISrc ) ;
2019-06-04 21:26:39 +02:00
2019-06-21 18:48:57 +02:00
std : : shared_ptr < DocumentBroker > docBroker ;
2019-06-21 13:35:17 +02:00
{
2019-06-21 18:48:57 +02:00
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
auto it = DocBrokers . find ( docKey ) ;
if ( it ! = DocBrokers . end ( ) )
docBroker = it - > second ;
2019-06-21 13:35:17 +02:00
}
2021-03-12 03:17:07 +01:00
// If we have a valid docBroker, use it.
// Note: there is a race here as DocBroker may
// have already exited its SocketPoll, but we
// haven't cleaned up the DocBrokers container.
// Since we don't care about creating a new one,
// we simply go to the fallback below.
if ( docBroker & & docBroker - > isAlive ( ) )
2019-06-04 21:26:39 +02:00
{
2019-06-22 18:45:36 +02:00
std : : shared_ptr < std : : string > data ;
DocumentBroker : : ClipboardRequest type ;
if ( request . getMethod ( ) = = HTTPRequest : : HTTP_GET )
2019-06-26 02:43:07 +02:00
{
if ( mime = = " text/html " )
type = DocumentBroker : : CLIP_REQUEST_GET_RICH_HTML_ONLY ;
else
type = DocumentBroker : : CLIP_REQUEST_GET ;
}
2019-06-22 18:45:36 +02:00
else
{
type = DocumentBroker : : CLIP_REQUEST_SET ;
ClipboardPartHandler handler ;
HTMLForm form ( request , message , handler ) ;
data = handler . getData ( ) ;
2019-06-25 01:25:23 +02:00
if ( ! data | | data - > length ( ) = = 0 )
LOG_ERR ( " Invalid zero size set clipboard content " ) ;
2019-06-22 18:45:36 +02:00
}
2019-06-04 21:26:39 +02:00
// Do things in the right thread.
2020-12-04 18:43:47 +01:00
LOG_TRC ( " Move clipboard request " < < tag < < " to docbroker thread with data: " < <
( data ? data - > length ( ) : 0 ) < < " bytes " ) ;
docBroker - > setupTransfer ( disposition , [ = ] ( const std : : shared_ptr < Socket > & moveSocket )
2019-06-04 21:26:39 +02:00
{
2020-12-04 18:43:47 +01:00
auto streamSocket = std : : static_pointer_cast < StreamSocket > ( moveSocket ) ;
docBroker - > handleClipboardRequest ( type , streamSocket , viewId , tag , data ) ;
2019-06-04 21:26:39 +02:00
} ) ;
2019-06-22 18:45:36 +02:00
LOG_TRC ( " queued clipboard command " < < type < < " on docBroker fetch " ) ;
2019-07-04 11:50:33 +02:00
}
// fallback to persistent clipboards if we can
2020-04-19 20:46:01 +02:00
else if ( ! DocumentBroker : : lookupSendClipboardTag ( socket , tag , false ) )
2019-07-04 11:50:33 +02:00
{
2019-06-21 13:35:17 +02:00
LOG_ERR ( " Invalid clipboard request: " < < serverId < < " with tag " < < tag < <
2019-07-07 07:04:04 +02:00
" and broker: " < < ( docBroker ? " " : " not " ) < < " found " ) ;
2019-06-04 21:26:39 +02:00
2020-12-03 21:29:18 +01:00
std : : string errMsg = " Empty clipboard item / session tag " + tag ;
2019-06-04 21:26:39 +02:00
// Bad request.
2020-10-26 13:55:54 +01:00
HttpHelper : : sendErrorAndShutdown ( 400 , socket , errMsg ) ;
2019-06-04 21:26:39 +02:00
}
}
2020-09-18 11:03:17 +02:00
static void handleRobotsTxtRequest ( const Poco : : Net : : HTTPRequest & request ,
2020-04-19 20:46:01 +02:00
const std : : shared_ptr < StreamSocket > & socket )
2018-02-15 15:17:32 +01:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2018-02-15 15:17:32 +01:00
LOG_DBG ( " HTTP request: " < < request . getURI ( ) ) ;
const std : : string responseString = " User-agent: * \n Disallow: / \n " ;
2021-03-21 04:27:15 +01:00
http : : Response httpResponse ( http : : StatusLine ( 200 ) ) ;
httpResponse . set ( " Last-Modified " , Util : : getHttpTimeNow ( ) ) ;
httpResponse . set ( " Content-Length " , std : : to_string ( responseString . size ( ) ) ) ;
httpResponse . set ( " Content-Type " , " text/plain " ) ;
httpResponse . set ( " Connection " , " close " ) ;
httpResponse . writeData ( socket - > getOutBuffer ( ) ) ;
2018-02-15 15:17:32 +01:00
if ( request . getMethod ( ) = = Poco : : Net : : HTTPRequest : : HTTP_GET )
{
2021-03-21 04:27:15 +01:00
socket - > send ( responseString ) ;
2018-02-15 15:17:32 +01:00
}
socket - > shutdown ( ) ;
LOG_INF ( " Sent robots.txt response successfully. " ) ;
}
2017-03-01 01:34:21 +01:00
static std : : string getContentType ( const std : : string & fileName )
{
2020-07-28 16:52:14 +02:00
static std : : unordered_map < std : : string , std : : string > aContentTypes {
{ " svg " , " image/svg+xml " } ,
{ " pot " , " application/vnd.ms-powerpoint " } ,
{ " xla " , " application/vnd.ms-excel " } ,
// Writer documents
{ " sxw " , " application/vnd.sun.xml.writer " } ,
{ " odt " , " application/vnd.oasis.opendocument.text " } ,
{ " fodt " , " application/vnd.oasis.opendocument.text-flat-xml " } ,
// Calc documents
{ " sxc " , " application/vnd.sun.xml.calc " } ,
{ " ods " , " application/vnd.oasis.opendocument.spreadsheet " } ,
{ " fods " , " application/vnd.oasis.opendocument.spreadsheet-flat-xml " } ,
// Impress documents
{ " sxi " , " application/vnd.sun.xml.impress " } ,
{ " odp " , " application/vnd.oasis.opendocument.presentation " } ,
{ " fodp " , " application/vnd.oasis.opendocument.presentation-flat-xml " } ,
// Draw documents
{ " sxd " , " application/vnd.sun.xml.draw " } ,
{ " odg " , " application/vnd.oasis.opendocument.graphics " } ,
{ " fodg " , " application/vnd.oasis.opendocument.graphics-flat-xml " } ,
// Chart documents
{ " odc " , " application/vnd.oasis.opendocument.chart " } ,
// Text master documents
{ " sxg " , " application/vnd.sun.xml.writer.global " } ,
{ " odm " , " application/vnd.oasis.opendocument.text-master " } ,
// Math documents
// In fact Math documents are not supported at all.
// See: https://bugs.documentfoundation.org/show_bug.cgi?id=97006
{ " sxm " , " application/vnd.sun.xml.math " } ,
{ " odf " , " application/vnd.oasis.opendocument.formula " } ,
// Text template documents
{ " stw " , " application/vnd.sun.xml.writer.template " } ,
{ " ott " , " application/vnd.oasis.opendocument.text-template " } ,
// Writer master document templates
{ " otm " , " application/vnd.oasis.opendocument.text-master-template " } ,
// Spreadsheet template documents
{ " stc " , " application/vnd.sun.xml.calc.template " } ,
{ " ots " , " application/vnd.oasis.opendocument.spreadsheet-template " } ,
// Presentation template documents
{ " sti " , " application/vnd.sun.xml.impress.template " } ,
{ " otp " , " application/vnd.oasis.opendocument.presentation-template " } ,
// Drawing template documents
{ " std " , " application/vnd.sun.xml.draw.template " } ,
{ " otg " , " application/vnd.oasis.opendocument.graphics-template " } ,
// MS Word
{ " doc " , " application/msword " } ,
{ " dot " , " application/msword " } ,
// MS Excel
{ " xls " , " application/vnd.ms-excel " } ,
// MS PowerPoint
{ " ppt " , " application/vnd.ms-powerpoint " } ,
// OOXML wordprocessing
{ " docx " , " application/vnd.openxmlformats-officedocument.wordprocessingml.document " } ,
{ " docm " , " application/vnd.ms-word.document.macroEnabled.12 " } ,
{ " dotx " , " application/vnd.openxmlformats-officedocument.wordprocessingml.template " } ,
{ " dotm " , " application/vnd.ms-word.template.macroEnabled.12 " } ,
// OOXML spreadsheet
{ " xltx " , " application/vnd.openxmlformats-officedocument.spreadsheetml.template " } ,
{ " xltm " , " application/vnd.ms-excel.template.macroEnabled.12 " } ,
{ " xlsx " , " application/vnd.openxmlformats-officedocument.spreadsheetml.sheet " } ,
{ " xlsb " , " application/vnd.ms-excel.sheet.binary.macroEnabled.12 " } ,
{ " xlsm " , " application/vnd.ms-excel.sheet.macroEnabled.12 " } ,
// OOXML presentation
{ " pptx " , " application/vnd.openxmlformats-officedocument.presentationml.presentation " } ,
{ " pptm " , " application/vnd.ms-powerpoint.presentation.macroEnabled.12 " } ,
{ " potx " , " application/vnd.openxmlformats-officedocument.presentationml.template " } ,
{ " potm " , " application/vnd.ms-powerpoint.template.macroEnabled.12 " } ,
// Others
{ " wpd " , " application/vnd.wordperfect " } ,
{ " pdb " , " application/x-aportisdoc " } ,
{ " hwp " , " application/x-hwp " } ,
{ " wps " , " application/vnd.ms-works " } ,
{ " wri " , " application/x-mswrite " } ,
{ " dif " , " application/x-dif-document " } ,
{ " slk " , " text/spreadsheet " } ,
{ " csv " , " text/csv " } ,
{ " dbf " , " application/x-dbase " } ,
{ " wk1 " , " application/vnd.lotus-1-2-3 " } ,
{ " cgm " , " image/cgm " } ,
{ " dxf " , " image/vnd.dxf " } ,
{ " emf " , " image/x-emf " } ,
{ " wmf " , " image/x-wmf " } ,
{ " cdr " , " application/coreldraw " } ,
{ " vsd " , " application/vnd.visio2013 " } ,
{ " vss " , " application/vnd.visio " } ,
{ " pub " , " application/x-mspublisher " } ,
{ " lrf " , " application/x-sony-bbeb " } ,
{ " gnumeric " , " application/x-gnumeric " } ,
{ " mw " , " application/macwriteii " } ,
{ " numbers " , " application/x-iwork-numbers-sffnumbers " } ,
{ " oth " , " application/vnd.oasis.opendocument.text-web " } ,
{ " p65 " , " application/x-pagemaker " } ,
{ " rtf " , " text/rtf " } ,
{ " txt " , " text/plain " } ,
{ " fb2 " , " application/x-fictionbook+xml " } ,
{ " cwk " , " application/clarisworks " } ,
{ " wpg " , " image/x-wpg " } ,
{ " pages " , " application/x-iwork-pages-sffpages " } ,
{ " ppsx " , " application/vnd.openxmlformats-officedocument.presentationml.slideshow " } ,
{ " key " , " application/x-iwork-keynote-sffkey " } ,
{ " abw " , " application/x-abiword " } ,
{ " fh " , " image/x-freehand " } ,
{ " sxs " , " application/vnd.sun.xml.chart " } ,
{ " 602 " , " application/x-t602 " } ,
{ " bmp " , " image/bmp " } ,
{ " png " , " image/png " } ,
{ " gif " , " image/gif " } ,
{ " tiff " , " image/tiff " } ,
{ " jpg " , " image/jpg " } ,
{ " jpeg " , " image/jpeg " } ,
{ " pdf " , " application/pdf " } ,
} ;
const std : : string sExt = Poco : : Path ( fileName ) . getExtension ( ) ;
const auto it = aContentTypes . find ( sExt ) ;
if ( it ! = aContentTypes . end ( ) )
return it - > second ;
2017-03-01 01:34:21 +01:00
return " application/octet-stream " ;
}
2019-10-07 21:51:38 +02:00
static bool isSpreadsheet ( const std : : string & fileName )
{
2020-06-03 16:39:25 +02:00
const std : : string sContentType = getContentType ( fileName ) ;
2019-10-07 21:51:38 +02:00
2020-06-03 16:39:25 +02:00
return sContentType = = " application/vnd.oasis.opendocument.spreadsheet "
| | sContentType
= = " application/vnd.openxmlformats-officedocument.spreadsheetml.sheet "
| | sContentType = = " application/vnd.ms-excel " ;
2019-10-07 21:51:38 +02:00
}
2020-05-12 15:39:26 +02:00
void handlePostRequest ( const RequestDetails & requestDetails ,
const Poco : : Net : : HTTPRequest & request ,
2019-05-22 04:21:50 +02:00
Poco : : MemoryInputStream & message ,
2020-04-19 20:46:01 +02:00
SocketDisposition & disposition ,
const std : : shared_ptr < StreamSocket > & socket )
2017-02-25 18:55:57 +01:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2021-11-18 13:08:14 +01:00
LOG_INF ( " Post request: [ " < < COOLWSD : : anonymizeUrl ( requestDetails . getURI ( ) ) < < ' ] ' ) ;
2017-03-01 01:34:21 +01:00
2020-05-12 15:39:26 +02:00
if ( requestDetails . equals ( 1 , " convert-to " ) )
2017-03-01 01:34:21 +01:00
{
2019-03-01 22:05:11 +01:00
// Validate sender - FIXME: should do this even earlier.
2020-10-09 17:16:47 +02:00
if ( ! allowConvertTo ( socket - > clientAddress ( ) , request ) )
2018-05-13 14:35:32 +02:00
{
2019-10-21 06:48:51 +02:00
LOG_WRN ( " Conversion requests not allowed from this address: " < < socket - > clientAddress ( ) ) ;
2021-03-21 04:27:15 +01:00
http : : Response httpResponse ( http : : StatusLine ( 403 ) ) ;
httpResponse . set ( " Content-Length " , " 0 " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2021-07-08 02:21:43 +02:00
socket - > ignoreInput ( ) ;
2018-05-13 14:35:32 +02:00
return ;
}
2020-11-23 03:39:39 +01:00
ConvertToPartHandler handler ;
2019-03-01 22:05:11 +01:00
HTMLForm form ( request , message , handler ) ;
std : : string format = ( form . has ( " format " ) ? form . get ( " format " ) : " " ) ;
2017-08-02 18:55:43 +02:00
// prefer what is in the URI
2020-05-12 15:39:26 +02:00
if ( requestDetails . size ( ) > 2 )
format = requestDetails [ 2 ] ;
2017-03-01 01:34:21 +01:00
2020-06-03 16:39:25 +02:00
const std : : string fromPath = handler . getFilename ( ) ;
2018-11-08 00:00:32 +01:00
LOG_INF ( " Conversion request for URI [ " < < fromPath < < " ] format [ " < < format < < " ]. " ) ;
2018-02-24 01:18:24 +01:00
if ( ! fromPath . empty ( ) & & ! format . empty ( ) )
2017-03-01 01:34:21 +01:00
{
2021-10-22 05:27:28 +02:00
Poco : : URI uriPublic = RequestDetails : : sanitizeURI ( fromPath ) ;
2021-10-26 05:00:20 +02:00
const std : : string docKey = RequestDetails : : getDocKey ( uriPublic ) ;
2017-03-01 01:34:21 +01:00
2020-06-03 16:39:25 +02:00
std : : string options ;
2022-01-27 11:36:06 +01:00
if ( form . has ( " options " ) )
{
// Allow specifying options as-is, in case only data + format are used.
options = form . get ( " options " ) ;
}
2020-06-03 16:39:25 +02:00
const bool fullSheetPreview
= ( form . has ( " FullSheetPreview " ) & & form . get ( " FullSheetPreview " ) = = " true " ) ;
if ( fullSheetPreview & & format = = " pdf " & & isSpreadsheet ( fromPath ) )
2019-10-07 21:51:38 +02:00
{
2020-06-03 16:39:25 +02:00
//FIXME: We shouldn't have "true" as having the option already implies that
// we want it enabled (i.e. we shouldn't set the option if we don't want it).
options = " ,FullSheetPreview=trueFULLSHEETPREVEND " ;
2019-10-07 21:51:38 +02:00
}
2021-12-08 13:29:36 +01:00
const std : : string pdfVer = ( form . has ( " PDFVer " ) ? form . get ( " PDFVer " ) : " " ) ;
if ( ! pdfVer . empty ( ) )
{
if ( strcasecmp ( pdfVer . c_str ( ) , " PDF/A-1b " ) & & strcasecmp ( pdfVer . c_str ( ) , " PDF/A-2b " ) & & strcasecmp ( pdfVer . c_str ( ) , " PDF/A-3b " )
& & strcasecmp ( pdfVer . c_str ( ) , " PDF-1.5 " ) & & strcasecmp ( pdfVer . c_str ( ) , " PDF-1.6 " ) )
{
LOG_ERR ( " Wrong PDF type: " < < pdfVer < < " . Conversion aborted. " ) ;
http : : Response httpResponse ( http : : StatusLine ( 400 ) ) ;
httpResponse . set ( " Content-Length " , " 0 " ) ;
socket - > sendAndShutdown ( httpResponse ) ;
socket - > ignoreInput ( ) ;
return ;
}
options + = " ,PDFVer= " + pdfVer + " PDFVEREND " ;
}
2019-10-07 21:51:38 +02:00
2019-10-21 06:48:51 +02:00
// This lock could become a bottleneck.
// In that case, we can use a pool and index by publicPath.
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
2017-03-01 01:34:21 +01:00
2019-10-21 06:48:51 +02:00
LOG_DBG ( " New DocumentBroker for docKey [ " < < docKey < < " ]. " ) ;
2020-06-03 16:39:25 +02:00
auto docBroker = std : : make_shared < ConvertToBroker > ( fromPath , uriPublic , docKey , format , options ) ;
2019-10-21 06:48:51 +02:00
handler . takeFile ( ) ;
2017-03-01 01:34:21 +01:00
2019-10-21 06:48:51 +02:00
cleanupDocBrokers ( ) ;
2017-03-01 01:34:21 +01:00
2019-10-21 06:48:51 +02:00
DocBrokers . emplace ( docKey , docBroker ) ;
LOG_TRC ( " Have " < < DocBrokers . size ( ) < < " DocBrokers after inserting [ " < < docKey < < " ]. " ) ;
2017-03-01 01:34:21 +01:00
2019-12-12 06:09:35 +01:00
if ( ! docBroker - > startConversion ( disposition , _id ) )
2019-05-27 23:22:13 +02:00
{
2018-02-24 01:18:24 +01:00
LOG_WRN ( " Failed to create Client Session with id [ " < < _id < < " ] on docKey [ " < < docKey < < " ]. " ) ;
2019-05-27 23:22:13 +02:00
cleanupDocBrokers ( ) ;
}
2017-03-01 01:34:21 +01:00
}
2017-05-08 14:08:24 +02:00
return ;
2017-03-01 01:34:21 +01:00
}
2020-05-12 15:39:26 +02:00
else if ( requestDetails . equals ( 2 , " insertfile " ) )
2017-03-01 01:34:21 +01:00
{
LOG_INF ( " Insert file request. " ) ;
2019-03-01 18:59:40 +01:00
ConvertToPartHandler handler ;
2017-03-01 01:34:21 +01:00
HTMLForm form ( request , message , handler ) ;
if ( form . has ( " childid " ) & & form . has ( " name " ) )
{
const std : : string formChildid ( form . get ( " childid " ) ) ;
const std : : string formName ( form . get ( " name " ) ) ;
// Validate the docKey
2020-06-01 14:18:13 +02:00
const std : : string decodedUri = requestDetails . getDocumentURI ( ) ;
2021-10-26 05:00:20 +02:00
const std : : string docKey = RequestDetails : : getDocKey ( decodedUri ) ;
2020-05-25 16:52:37 +02:00
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
2017-03-01 01:34:21 +01:00
auto docBrokerIt = DocBrokers . find ( docKey ) ;
// Maybe just free the client from sending childid in form ?
if ( docBrokerIt = = DocBrokers . end ( ) | | docBrokerIt - > second - > getJailId ( ) ! = formChildid )
{
throw BadRequestException ( " DocKey [ " + docKey + " ] or childid [ " + formChildid + " ] is invalid. " ) ;
}
docBrokersLock . unlock ( ) ;
// protect against attempts to inject something funny here
if ( formChildid . find ( ' / ' ) = = std : : string : : npos & & formName . find ( ' / ' ) = = std : : string : : npos )
{
2021-11-18 13:08:14 +01:00
const std : : string dirPath = COOLWSD : : ChildRoot + formChildid
2017-03-01 01:34:21 +01:00
+ JAILED_DOCUMENT_ROOT + " insertfile " ;
2018-09-13 02:07:10 +02:00
const std : : string fileName = dirPath + ' / ' + form . get ( " name " ) ;
LOG_INF ( " Perform insertfile: " < < formChildid < < " , " < < formName < < " , filename: " < < fileName ) ;
2017-03-01 01:34:21 +01:00
File ( dirPath ) . createDirectories ( ) ;
2019-03-01 18:59:40 +01:00
File ( handler . getFilename ( ) ) . moveTo ( fileName ) ;
2020-11-23 03:39:39 +01:00
// Cleanup the directory after moving.
const std : : string dir = Poco : : Path ( handler . getFilename ( ) ) . parent ( ) . toString ( ) ;
if ( FileUtil : : isEmptyDirectory ( dir ) )
FileUtil : : removeFile ( dir ) ;
2020-05-25 17:21:13 +02:00
handler . takeFile ( ) ;
2021-03-21 04:27:15 +01:00
http : : Response httpResponse ( http : : StatusLine ( 200 ) ) ;
httpResponse . set ( " Content-Length " , " 0 " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2021-07-08 02:21:43 +02:00
socket - > ignoreInput ( ) ;
2017-04-25 23:12:07 +02:00
return ;
2017-03-01 01:34:21 +01:00
}
}
}
2020-09-03 11:34:13 +02:00
else if ( requestDetails . equals ( 2 , " download " ) )
2017-03-01 01:34:21 +01:00
{
2017-04-25 22:35:20 +02:00
LOG_INF ( " File download request. " ) ;
// TODO: Check that the user in question has access to this file!
// 1. Validate the dockey
2020-06-01 14:18:13 +02:00
const std : : string decodedUri = requestDetails . getDocumentURI ( ) ;
2021-10-26 05:00:20 +02:00
const std : : string docKey = RequestDetails : : getDocKey ( decodedUri ) ;
2020-05-25 16:52:37 +02:00
2017-04-25 22:35:20 +02:00
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
auto docBrokerIt = DocBrokers . find ( docKey ) ;
if ( docBrokerIt = = DocBrokers . end ( ) )
{
throw BadRequestException ( " DocKey [ " + docKey + " ] is invalid. " ) ;
}
2017-03-01 01:34:21 +01:00
2020-09-03 11:34:13 +02:00
std : : string downloadId = requestDetails [ 3 ] ;
std : : string url = docBrokerIt - > second - > getDownloadURL ( downloadId ) ;
docBrokerIt - > second - > unregisterDownloadId ( downloadId ) ;
std : : string jailId = docBrokerIt - > second - > getJailId ( ) ;
2017-03-01 01:34:21 +01:00
2017-04-25 22:35:20 +02:00
docBrokersLock . unlock ( ) ;
2020-09-03 11:34:13 +02:00
bool foundDownloadId = ! url . empty ( ) ;
2020-08-11 16:17:20 +02:00
2020-09-16 16:41:09 +02:00
std : : string decoded ;
Poco : : URI : : decode ( url , decoded ) ;
2021-11-18 13:08:14 +01:00
const Path filePath ( COOLWSD : : ChildRoot + jailId + JAILED_DOCUMENT_ROOT + decoded ) ;
const std : : string filePathAnonym = COOLWSD : : anonymizeUrl ( filePath . toString ( ) ) ;
2020-09-03 11:34:13 +02:00
if ( foundDownloadId & & filePath . isAbsolute ( ) & & File ( filePath ) . exists ( ) )
2017-03-01 01:34:21 +01:00
{
2020-09-03 11:34:13 +02:00
LOG_INF ( " HTTP request for: " < < filePathAnonym ) ;
2020-12-14 04:06:17 +01:00
const std : : string & fileName = filePath . getFileName ( ) ;
2018-06-27 16:23:25 +02:00
const Poco : : URI postRequestUri ( request . getURI ( ) ) ;
const Poco : : URI : : QueryParameters postRequestQueryParams = postRequestUri . getQueryParameters ( ) ;
bool serveAsAttachment = true ;
const auto attachmentIt = std : : find_if ( postRequestQueryParams . begin ( ) ,
postRequestQueryParams . end ( ) ,
[ ] ( const std : : pair < std : : string , std : : string > & element ) {
return element . first = = " attachment " ;
} ) ;
if ( attachmentIt ! = postRequestQueryParams . end ( ) )
serveAsAttachment = attachmentIt - > second ! = " 0 " ;
2018-05-28 13:03:04 +02:00
2021-03-21 04:27:15 +01:00
Poco : : Net : : HTTPResponse response ;
2017-05-11 10:35:28 +02:00
// Instruct browsers to download the file, not display it
2017-05-17 16:28:55 +02:00
// with the exception of SVG where we need the browser to
// actually show it.
2021-03-21 04:27:15 +01:00
const std : : string contentType = getContentType ( fileName ) ;
2018-06-27 16:23:25 +02:00
if ( serveAsAttachment & & contentType ! = " image/svg+xml " )
2020-05-24 15:10:18 +02:00
response . set ( " Content-Disposition " , " attachment; filename= \" " + fileName + ' " ' ) ;
2017-05-17 16:28:55 +02:00
2017-04-25 22:35:20 +02:00
try
{
2020-06-03 17:06:10 +02:00
HttpHelper : : sendFileAndShutdown ( socket , filePath . toString ( ) , contentType , & response ) ;
2017-04-25 22:35:20 +02:00
}
catch ( const Exception & exc )
{
LOG_ERR ( " Error sending file to client: " < < exc . displayText ( ) < <
( exc . nested ( ) ? " ( " + exc . nested ( ) - > displayText ( ) + " ) " : " " ) ) ;
}
FileUtil : : removeFile ( File ( filePath . parent ( ) ) . path ( ) , true ) ;
}
else
{
2020-09-03 11:34:13 +02:00
if ( foundDownloadId )
LOG_ERR ( " Download file [ " < < filePathAnonym < < " ] not found. " ) ;
else
LOG_ERR ( " Download with id [ " < < downloadId < < " ] not found. " ) ;
2021-03-20 22:31:19 +01:00
http : : Response httpResponse ( http : : StatusLine ( 404 ) ) ;
httpResponse . set ( " Content-Length " , " 0 " ) ;
2021-04-29 18:33:15 +02:00
socket - > sendAndShutdown ( httpResponse ) ;
2017-03-01 01:34:21 +01:00
}
2017-05-08 14:08:24 +02:00
return ;
2017-03-01 01:34:21 +01:00
}
2021-08-09 07:48:27 +02:00
else if ( requestDetails . equals ( 1 , " render-search-result " ) )
{
RenderSearchResultPartHandler handler ;
HTMLForm form ( request , message , handler ) ;
const std : : string fromPath = handler . getFilename ( ) ;
LOG_INF ( " Create render-search-result POST command handler " ) ;
if ( fromPath . empty ( ) )
return ;
2021-10-22 05:27:28 +02:00
Poco : : URI uriPublic = RequestDetails : : sanitizeURI ( fromPath ) ;
2021-10-26 05:00:20 +02:00
const std : : string docKey = RequestDetails : : getDocKey ( uriPublic ) ;
2021-08-09 07:48:27 +02:00
// This lock could become a bottleneck.
// In that case, we can use a pool and index by publicPath.
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
LOG_DBG ( " New DocumentBroker for docKey [ " < < docKey < < " ]. " ) ;
auto docBroker = std : : make_shared < RenderSearchResultBroker > ( fromPath , uriPublic , docKey , handler . getSearchResultContent ( ) ) ;
handler . takeFile ( ) ;
cleanupDocBrokers ( ) ;
DocBrokers . emplace ( docKey , docBroker ) ;
LOG_TRC ( " Have " < < DocBrokers . size ( ) < < " DocBrokers after inserting [ " < < docKey < < " ]. " ) ;
if ( ! docBroker - > executeCommand ( disposition , _id ) )
{
LOG_WRN ( " Failed to create Client Session with id [ " < < _id < < " ] on docKey [ " < < docKey < < " ]. " ) ;
cleanupDocBrokers ( ) ;
}
return ;
}
2017-03-01 01:34:21 +01:00
2017-04-25 22:35:20 +02:00
throw BadRequestException ( " Invalid or unknown request. " ) ;
2017-02-25 18:55:57 +01:00
}
2020-03-04 14:54:04 +01:00
void handleClientProxyRequest ( const Poco : : Net : : HTTPRequest & request ,
2020-05-12 17:19:41 +02:00
const RequestDetails & requestDetails ,
2020-03-04 14:54:04 +01:00
Poco : : MemoryInputStream & message ,
SocketDisposition & disposition )
{
2020-05-25 16:52:37 +02:00
//FIXME: The DocumentURI includes the WOPISrc, which makes it potentially invalid URI.
const std : : string url = requestDetails . getLegacyDocumentURI ( ) ;
2020-03-04 14:54:04 +01:00
2021-10-22 05:27:28 +02:00
LOG_INF ( " URL [ " < < url < < " ] for Proxy request. " ) ;
const auto uriPublic = RequestDetails : : sanitizeURI ( url ) ;
2021-10-26 05:00:20 +02:00
const auto docKey = RequestDetails : : getDocKey ( uriPublic ) ;
2020-03-04 14:54:04 +01:00
const std : : string fileId = Util : : getFilenameFromURL ( docKey ) ;
Util : : mapAnonymized ( fileId , fileId ) ; // Identity mapping, since fileId is already obfuscated
2021-11-18 13:08:14 +01:00
LOG_INF ( " Starting Proxy request handler for session [ " < < _id < < " ] on url [ " < < COOLWSD : : anonymizeUrl ( url ) < < " ]. " ) ;
2020-03-04 14:54:04 +01:00
// Check if readonly session is required
bool isReadOnly = false ;
for ( const auto & param : uriPublic . getQueryParameters ( ) )
{
LOG_DBG ( " Query param: " < < param . first < < " , value: " < < param . second ) ;
if ( param . first = = " permission " & & param . second = = " readonly " )
{
isReadOnly = true ;
}
}
2021-11-18 13:08:14 +01:00
LOG_INF ( " URL [ " < < COOLWSD : : anonymizeUrl ( url ) < < " ] is " < < ( isReadOnly ? " readonly " : " writable " ) < < ' . ' ) ;
2020-03-04 14:54:04 +01:00
( void ) request ; ( void ) message ; ( void ) disposition ;
std : : shared_ptr < ProtocolHandlerInterface > none ;
// Request a kit process for this doc.
std : : shared_ptr < DocumentBroker > docBroker = findOrCreateDocBroker (
2020-05-02 20:13:14 +02:00
none , DocumentBroker : : ChildType : : Interactive , url , docKey , _id , uriPublic ) ;
2020-03-04 14:54:04 +01:00
if ( docBroker )
{
// need to move into the DocumentBroker context before doing session lookup / creation etc.
std : : string id = _id ;
2020-12-04 18:43:47 +01:00
docBroker - > setupTransfer ( disposition , [ docBroker , id , uriPublic ,
isReadOnly , requestDetails ]
( const std : : shared_ptr < Socket > & moveSocket )
2020-03-04 14:54:04 +01:00
{
2020-12-04 18:43:47 +01:00
// Now inside the document broker thread ...
LOG_TRC ( " In the docbroker thread for " < < docBroker - > getDocKey ( ) ) ;
2020-03-04 14:54:04 +01:00
2020-12-04 18:43:47 +01:00
auto streamSocket = std : : static_pointer_cast < StreamSocket > ( moveSocket ) ;
try
{
docBroker - > handleProxyRequest (
id , uriPublic , isReadOnly ,
requestDetails , streamSocket ) ;
return ;
}
catch ( const UnauthorizedRequestException & exc )
{
LOG_ERR ( " Unauthorized Request while loading session for " < < docBroker - > getDocKey ( ) < < " : " < < exc . what ( ) ) ;
}
catch ( const StorageConnectionException & exc )
{
LOG_ERR ( " Error while loading : " < < exc . what ( ) ) ;
}
catch ( const std : : exception & exc )
{
LOG_ERR ( " Error while loading : " < < exc . what ( ) ) ;
}
// badness occurred:
HttpHelper : : sendErrorAndShutdown ( 400 , streamSocket ) ;
2020-03-04 14:54:04 +01:00
} ) ;
}
2020-06-08 15:43:04 +02:00
else
{
auto streamSocket = std : : static_pointer_cast < StreamSocket > ( disposition . getSocket ( ) ) ;
LOG_ERR ( " Failed to find document " ) ;
// badness occurred:
2020-10-26 13:55:54 +01:00
HttpHelper : : sendErrorAndShutdown ( 400 , streamSocket ) ;
2020-06-08 15:43:04 +02:00
// FIXME: send docunloading & re-try on client ?
}
2020-03-04 14:54:04 +01:00
}
2020-04-24 09:46:54 +02:00
# endif
2020-03-04 14:54:04 +01:00
2020-05-12 17:19:41 +02:00
void handleClientWsUpgrade ( const Poco : : Net : : HTTPRequest & request ,
const RequestDetails & requestDetails ,
2020-04-19 20:46:01 +02:00
SocketDisposition & disposition ,
2020-04-24 09:46:54 +02:00
const std : : shared_ptr < StreamSocket > & socket ,
unsigned mobileAppDocId = 0 )
2017-02-25 18:21:32 +01:00
{
2020-06-01 14:18:13 +02:00
const std : : string url = requestDetails . getDocumentURI ( ) ;
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2017-04-02 01:20:54 +02:00
2018-06-15 16:12:30 +02:00
// must be trace for anonymization
2020-05-12 17:19:41 +02:00
LOG_TRC ( " Client WS request: " < < requestDetails . getURI ( ) < < " , url: " < < url < < " , socket # " < < socket - > getFD ( ) ) ;
2017-02-26 00:54:55 +01:00
// First Upgrade.
2021-03-21 20:58:10 +01:00
auto ws = std : : make_shared < WebSocketHandler > ( socket , request ) ;
2017-02-25 18:22:20 +01:00
2017-05-15 04:58:02 +02:00
// Response to clients beyond this point is done via WebSocket.
try
2017-02-25 20:42:11 +01:00
{
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : NumConnections > = COOLWSD : : MaxConnections )
2017-05-15 04:58:02 +02:00
{
2021-11-18 13:08:14 +01:00
LOG_INF ( " Limit on maximum number of connections of " < < COOLWSD : : MaxConnections < < " reached. " ) ;
2018-02-13 16:36:38 +01:00
# if ENABLE_SUPPORT_KEY
2017-05-15 04:58:02 +02:00
shutdownLimitReached ( ws ) ;
return ;
2018-02-13 16:36:38 +01:00
# endif
2017-05-15 04:58:02 +02:00
}
2017-02-25 20:42:11 +01:00
2021-10-22 05:27:28 +02:00
LOG_INF ( " URL [ " < < url < < " ] for WS Request. " ) ;
const auto uriPublic = RequestDetails : : sanitizeURI ( url ) ;
2021-10-26 05:00:20 +02:00
const auto docKey = RequestDetails : : getDocKey ( uriPublic ) ;
2018-07-17 08:01:05 +02:00
const std : : string fileId = Util : : getFilenameFromURL ( docKey ) ;
Util : : mapAnonymized ( fileId , fileId ) ; // Identity mapping, since fileId is already obfuscated
2021-11-18 13:08:14 +01:00
LOG_INF ( " Starting GET request handler for session [ " < < _id < < " ] on url [ " < < COOLWSD : : anonymizeUrl ( url ) < < " ]. " ) ;
2017-02-25 21:35:32 +01:00
2017-05-15 04:58:02 +02:00
// Indicate to the client that document broker is searching.
2020-05-24 14:37:18 +02:00
static const std : : string status ( " statusindicator: find " ) ;
2017-05-15 04:58:02 +02:00
LOG_TRC ( " Sending to Client [ " < < status < < " ]. " ) ;
2020-03-06 18:43:46 +01:00
ws - > sendMessage ( status ) ;
2017-02-25 21:35:32 +01:00
2021-11-18 13:08:14 +01:00
LOG_INF ( " Sanitized URI [ " < < COOLWSD : : anonymizeUrl ( url ) < < " ] to [ " < < COOLWSD : : anonymizeUrl ( uriPublic . toString ( ) ) < <
2018-07-17 08:01:05 +02:00
" ] and mapped to docKey [ " < < docKey < < " ] for session [ " < < _id < < " ]. " ) ;
2017-02-25 21:35:32 +01:00
2017-05-15 04:58:02 +02:00
// Check if readonly session is required
bool isReadOnly = false ;
for ( const auto & param : uriPublic . getQueryParameters ( ) )
2017-02-25 21:35:32 +01:00
{
wsd: reduce debug and generally redundant logs
In 'debug' log-level we expect a detailed, but
still readable output. Having one area with
disproportionately large number of logs reduces
the overall utility of the log output.
This patch reduces a number of redundant log
entries, including errors that are already
logged. It also reduces the level of some
others from 'information' to 'debug' and
from 'debug' to 'trace'.
The goal is to make 'debug' level as useful as
possible to read the progress and be able to
understand what was going on, such that one is
able to decide which area to dig deeper into.
Then, trace level could be used to get more
insight into that area, if necessary. For
example, when investigating a test failure,
one first enables 'debug' logs and reads through.
Once a section between two debug entries is
identified as being of interest, enabling 'trace'
level logs becomes more productive as it's
now possible to easily reach the first DBG
entry and read through until the second one.
It's unfortunate that we don't have per-area
control for enabling/disabling logs, so it
is common to see more and more 'debug' log
entries added all around, making logs
less and less readable.
It is also a limitation of the levels we have
that we really only have 3 usable levels:
one, two, many. That is, 'information' for
the most important events, 'debug' for
technical details needed to investigate issues,
and 'trace' for everything else. ('warning'
and 'error' aren't really 'levels'; they have
semantics that makes them special-cases.)
So we have to avoid degrading one into the
other, or have differences without distinction.
If any of these entries are needed to be
displayed more frequently, changing them
back to 'debug' or even 'information' should
be done. Though for me they seem special
cases that don't benefit most log readings.
Change-Id: Id2c6a9dc027483b81a066b0b4b50a298c5eff449
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2022-02-19 14:30:26 +01:00
LOG_TRC ( " Query param: " < < param . first < < " , value: " < < param . second ) ;
2017-05-15 04:58:02 +02:00
if ( param . first = = " permission " & & param . second = = " readonly " )
{
isReadOnly = true ;
}
2017-02-25 21:35:32 +01:00
}
2021-11-18 13:08:14 +01:00
LOG_INF ( " URL [ " < < COOLWSD : : anonymizeUrl ( url ) < < " ] is " < < ( isReadOnly ? " readonly " : " writable " ) < < ' . ' ) ;
2017-02-25 21:35:32 +01:00
2017-05-15 04:58:02 +02:00
// Request a kit process for this doc.
2020-03-11 18:05:20 +01:00
std : : shared_ptr < DocumentBroker > docBroker = findOrCreateDocBroker (
2020-05-02 20:13:14 +02:00
std : : static_pointer_cast < ProtocolHandlerInterface > ( ws ) ,
2020-04-24 09:46:54 +02:00
DocumentBroker : : ChildType : : Interactive , url , docKey , _id , uriPublic , mobileAppDocId ) ;
2020-03-04 14:54:04 +01:00
if ( docBroker )
2017-03-07 08:00:51 +01:00
{
2020-03-04 22:56:48 +01:00
std : : shared_ptr < ClientSession > clientSession =
2020-05-12 22:10:56 +02:00
docBroker - > createNewClientSession ( ws , _id , uriPublic , isReadOnly , requestDetails ) ;
2017-05-15 04:58:02 +02:00
if ( clientSession )
2017-04-25 23:12:07 +02:00
{
2017-05-15 04:58:02 +02:00
// Transfer the client socket to the DocumentBroker when we get back to the poll:
2020-12-04 18:43:47 +01:00
docBroker - > setupTransfer ( disposition , [ docBroker , clientSession , ws ]
( const std : : shared_ptr < Socket > & moveSocket )
2017-04-25 23:12:07 +02:00
{
2020-12-04 18:43:47 +01:00
try
{
auto streamSocket = std : : static_pointer_cast < StreamSocket > ( moveSocket ) ;
2017-04-04 06:09:12 +02:00
2020-12-04 18:43:47 +01:00
// Set WebSocketHandler's socket after its construction for shared_ptr goodness.
streamSocket - > setHandler ( ws ) ;
2017-04-04 06:09:12 +02:00
2022-03-19 02:45:44 +01:00
LOG_DBG ( ' # ' < < moveSocket - > getFD ( ) < < " handler is " < < clientSession - > getName ( ) ) ;
2020-12-04 18:43:47 +01:00
// Add and load the session.
docBroker - > addSession ( clientSession ) ;
2021-11-18 13:08:14 +01:00
COOLWSD : : checkDiskSpaceAndWarnClients ( true ) ;
2020-12-04 18:43:47 +01:00
// Users of development versions get just an info
// when reaching max documents or connections
2021-11-18 13:08:14 +01:00
COOLWSD : : checkSessionLimitsAndWarnClients ( ) ;
2020-12-04 18:43:47 +01:00
sendLoadResult ( clientSession , true , " " ) ;
}
catch ( const UnauthorizedRequestException & exc )
2017-05-15 04:58:02 +02:00
{
2021-07-08 02:21:43 +02:00
LOG_ERR ( " Unauthorized Request while starting session on "
< < docBroker - > getDocKey ( ) < < " for socket # "
< < moveSocket - > getFD ( )
< < " . Terminating connection. Error: " < < exc . what ( ) ) ;
2020-12-04 18:43:47 +01:00
const std : : string msg = " error: cmd=internal kind=unauthorized " ;
2021-07-08 02:21:43 +02:00
ws - > shutdown ( WebSocketHandler : : StatusCodes : : POLICY_VIOLATION , msg ) ;
moveSocket - > ignoreInput ( ) ;
2020-12-04 18:43:47 +01:00
}
catch ( const StorageConnectionException & exc )
{
2021-07-08 02:21:43 +02:00
LOG_ERR ( " Storage error while starting session on "
< < docBroker - > getDocKey ( ) < < " for socket # "
< < moveSocket - > getFD ( )
< < " . Terminating connection. Error: " < < exc . what ( ) ) ;
2020-12-04 18:43:47 +01:00
const std : : string msg = " error: cmd=storage kind=loadfailed " ;
2021-07-08 02:21:43 +02:00
ws - > shutdown ( WebSocketHandler : : StatusCodes : : POLICY_VIOLATION , msg ) ;
moveSocket - > ignoreInput ( ) ;
2020-12-04 18:43:47 +01:00
}
catch ( const std : : exception & exc )
{
2021-07-08 02:21:43 +02:00
LOG_ERR ( " Error while starting session on "
< < docBroker - > getDocKey ( ) < < " for socket # "
< < moveSocket - > getFD ( )
< < " . Terminating connection. Error: " < < exc . what ( ) ) ;
2020-12-04 18:43:47 +01:00
const std : : string msg = " error: cmd=storage kind=loadfailed " ;
2021-07-08 02:21:43 +02:00
ws - > shutdown ( WebSocketHandler : : StatusCodes : : POLICY_VIOLATION , msg ) ;
moveSocket - > ignoreInput ( ) ;
2020-12-04 18:43:47 +01:00
}
2017-04-25 23:12:07 +02:00
} ) ;
2017-05-15 04:58:02 +02:00
}
else
{
LOG_WRN ( " Failed to create Client Session with id [ " < < _id < < " ] on docKey [ " < < docKey < < " ]. " ) ;
2021-12-31 19:36:35 +01:00
throw std : : runtime_error ( " Cannot create client session for doc " + docKey ) ;
2017-05-15 04:58:02 +02:00
}
2017-03-07 08:00:51 +01:00
}
2017-02-25 23:01:49 +01:00
else
2017-03-28 07:07:07 +02:00
{
2017-05-15 04:58:02 +02:00
throw ServiceUnavailableException ( " Failed to create DocBroker with docKey [ " + docKey + " ]. " ) ;
2017-03-28 07:07:07 +02:00
}
2017-02-25 23:01:49 +01:00
}
2017-05-15 04:58:02 +02:00
catch ( const std : : exception & exc )
{
LOG_ERR ( " Error while handling Client WS Request: " < < exc . what ( ) ) ;
const std : : string msg = " error: cmd=internal kind=load " ;
2020-03-06 18:43:46 +01:00
ws - > sendMessage ( msg ) ;
ws - > shutdown ( WebSocketHandler : : StatusCodes : : ENDPOINT_GOING_AWAY , msg ) ;
2021-07-08 02:21:43 +02:00
socket - > ignoreInput ( ) ;
2017-05-15 04:58:02 +02:00
}
2017-02-25 23:01:49 +01:00
}
2017-06-07 04:33:21 +02:00
/// Lookup cached file content.
2020-09-18 11:03:17 +02:00
static const std : : string & getFileContent ( const std : : string & filename )
2017-06-07 04:33:21 +02:00
{
const auto it = StaticFileContentCache . find ( filename ) ;
if ( it = = StaticFileContentCache . end ( ) )
{
throw Poco : : FileAccessDeniedException ( " Invalid or forbidden file path: [ " + filename + " ]. " ) ;
}
return it - > second ;
}
/// Process the discovery.xml file and return as string.
static std : : string getDiscoveryXML ( )
{
2019-02-13 17:34:59 +01:00
# if MOBILEAPP
// not needed for mobile
return std : : string ( ) ;
2018-10-17 21:41:01 +02:00
# else
2017-06-07 04:33:21 +02:00
std : : string discoveryPath = Path ( Application : : instance ( ) . commandPath ( ) ) . parent ( ) . toString ( ) + " discovery.xml " ;
if ( ! File ( discoveryPath ) . exists ( ) )
{
2018-10-17 21:41:01 +02:00
// http://server/hosting/discovery.xml
2021-11-18 13:08:14 +01:00
discoveryPath = COOLWSD : : FileServerRoot + " /discovery.xml " ;
2017-06-07 04:33:21 +02:00
}
2020-04-23 14:39:33 +02:00
const std : : string action = " action " ;
2020-07-30 14:26:05 +02:00
const std : : string favIconUrl = " favIconUrl " ;
2020-04-23 14:39:33 +02:00
const std : : string urlsrc = " urlsrc " ;
const std : : string rootUriValue = " %SRV_URI% " ;
2021-11-18 13:08:14 +01:00
const std : : string uriBaseValue = rootUriValue + " /browser/ " COOLWSD_VERSION_HASH " / " ;
2021-11-11 10:05:49 +01:00
const std : : string uriValue = uriBaseValue + " cool.html? " ;
2017-06-07 04:33:21 +02:00
InputSource inputSrc ( discoveryPath ) ;
DOMParser parser ;
AutoPtr < Poco : : XML : : Document > docXML = parser . parse ( & inputSrc ) ;
AutoPtr < NodeList > listNodes = docXML - > getElementsByTagName ( action ) ;
for ( unsigned long it = 0 ; it < listNodes - > length ( ) ; + + it )
{
2017-06-07 05:43:48 +02:00
Element * elem = static_cast < Element * > ( listNodes - > item ( it ) ) ;
2018-10-19 18:14:48 +02:00
Element * parent = elem - > parentNode ( ) ? static_cast < Element * > ( elem - > parentNode ( ) ) : nullptr ;
if ( parent & & parent - > getAttribute ( " name " ) = = " Capabilities " )
{
elem - > setAttribute ( urlsrc , rootUriValue + CAPABILITIES_END_POINT ) ;
}
else
{
elem - > setAttribute ( urlsrc , uriValue ) ;
}
2017-06-07 05:43:48 +02:00
// Set the View extensions cache as well.
2017-07-17 19:59:46 +02:00
if ( elem - > getAttribute ( " name " ) = = " edit " )
2021-11-18 13:08:14 +01:00
COOLWSD : : EditFileExtensions . insert ( elem - > getAttribute ( " ext " ) ) ;
2020-07-27 11:27:00 +02:00
else if ( elem - > getAttribute ( " name " ) = = " view_comment " )
{
2021-11-18 13:08:14 +01:00
COOLWSD : : ViewWithCommentsFileExtensions . insert ( elem - > getAttribute ( " ext " ) ) ;
2020-07-27 11:27:00 +02:00
}
2017-06-07 04:33:21 +02:00
}
2021-11-03 15:31:18 +01:00
// turn "images/img.svg" into "http://server.tld/browser/12345abcd/images/img.svg"
2020-07-30 14:26:05 +02:00
listNodes = docXML - > getElementsByTagName ( " app " ) ;
for ( unsigned long it = 0 ; it < listNodes - > length ( ) ; + + it )
{
Element * elem = static_cast < Element * > ( listNodes - > item ( it ) ) ;
if ( elem - > hasAttribute ( favIconUrl ) )
{
elem - > setAttribute ( favIconUrl , uriBaseValue + elem - > getAttribute ( favIconUrl ) ) ;
}
}
2019-11-07 16:24:37 +01:00
const auto & proofAttribs = GetProofKeyAttributes ( ) ;
if ( ! proofAttribs . empty ( ) )
{
// Add proof-key element to wopi-discovery root
AutoPtr < Element > keyElem = docXML - > createElement ( " proof-key " ) ;
for ( const auto & attrib : proofAttribs )
keyElem - > setAttribute ( attrib . first , attrib . second ) ;
docXML - > documentElement ( ) - > appendChild ( keyElem ) ;
}
2017-06-07 04:33:21 +02:00
std : : ostringstream ostrXML ;
DOMWriter writer ;
writer . writeNode ( ostrXML , docXML ) ;
return ostrXML . str ( ) ;
2019-02-13 17:34:59 +01:00
# endif
2017-06-07 04:33:21 +02:00
}
2018-12-19 14:56:01 +01:00
/// Create the /hosting/capabilities JSON and return as string.
2020-04-19 20:46:01 +02:00
std : : string getCapabilitiesJson ( const Poco : : Net : : HTTPRequest & request ,
const std : : shared_ptr < StreamSocket > & socket )
2018-10-19 18:14:48 +02:00
{
2020-04-19 20:46:01 +02:00
assert ( socket & & " Must have a valid socket " ) ;
2018-10-19 18:14:48 +02:00
2018-11-29 19:15:58 +01:00
// Can the convert-to be used?
Poco : : JSON : : Object : : Ptr convert_to = new Poco : : JSON : : Object ;
2018-10-24 12:37:58 +02:00
Poco : : Dynamic : : Var available = allowConvertTo ( socket - > clientAddress ( ) , request ) ;
2018-10-19 18:14:48 +02:00
convert_to - > set ( " available " , available ) ;
2021-11-19 12:29:22 +01:00
if ( available )
convert_to - > set ( " endpoint " , " /cool/convert-to " ) ;
2018-10-19 18:14:48 +02:00
2018-11-29 19:15:58 +01:00
Poco : : JSON : : Object : : Ptr capabilities = new Poco : : JSON : : Object ;
capabilities - > set ( " convert-to " , convert_to ) ;
2018-12-17 12:46:34 +01:00
// Supports the TemplateSaveAs in CheckFileInfo?
2019-12-09 13:07:25 +01:00
// TemplateSaveAs is broken by design, disable it everywhere (and
// remove at some stage too)
capabilities - > set ( " hasTemplateSaveAs " , false ) ;
2018-12-17 12:46:34 +01:00
2019-05-22 05:33:26 +02:00
// Supports the TemplateSource in CheckFileInfo?
capabilities - > set ( " hasTemplateSource " , true ) ;
2018-12-19 14:56:01 +01:00
// Hint to encourage use on mobile devices
capabilities - > set ( " hasMobileSupport " , true ) ;
2018-12-17 12:46:34 +01:00
2019-03-30 19:12:19 +01:00
// Set the product name
capabilities - > set ( " productName " , APP_NAME ) ;
2022-07-18 11:38:39 +02:00
// Set the Server ID
capabilities - > set ( " serverId " , Util : : getProcessIdentifier ( ) ) ;
2020-10-20 23:49:03 +02:00
std : : string version , hash ;
Util : : getVersionInfo ( version , hash ) ;
2020-05-26 21:12:13 +02:00
// Set the product version
2020-10-20 23:49:03 +02:00
capabilities - > set ( " productVersion " , version ) ;
2020-05-26 21:12:13 +02:00
// Set the product version hash
2020-10-20 23:49:03 +02:00
capabilities - > set ( " productVersionHash " , hash ) ;
2020-05-26 21:12:13 +02:00
2020-05-25 14:46:31 +02:00
// Set that this is a proxy.php-enabled instance
2021-11-18 13:08:14 +01:00
capabilities - > set ( " hasProxyPrefix " , COOLWSD : : IsProxyPrefixEnabled ) ;
2020-05-25 14:46:31 +02:00
2018-10-19 18:14:48 +02:00
std : : ostringstream ostrJSON ;
2018-11-29 19:15:58 +01:00
capabilities - > stringify ( ostrJSON ) ;
2018-10-19 18:14:48 +02:00
return ostrJSON . str ( ) ;
}
2017-02-25 17:55:24 +01:00
private :
2017-02-26 01:07:22 +01:00
// The socket that owns us (we can't own it).
2017-02-26 19:37:15 +01:00
std : : weak_ptr < StreamSocket > _socket ;
2017-02-25 20:42:11 +01:00
std : : string _id ;
2017-06-07 04:33:21 +02:00
/// Cache for static files, to avoid reading and processing from disk.
static std : : map < std : : string , std : : string > StaticFileContentCache ;
2017-02-25 17:55:24 +01:00
} ;
2017-02-24 20:52:36 +01:00
2017-06-07 04:33:21 +02:00
std : : map < std : : string , std : : string > ClientRequestDispatcher : : StaticFileContentCache ;
2017-02-25 17:55:24 +01:00
2017-09-12 10:03:26 +02:00
class PlainSocketFactory final : public SocketFactory
2017-02-25 17:55:24 +01:00
{
2017-03-23 18:14:51 +01:00
std : : shared_ptr < Socket > create ( const int physicalFd ) override
2017-02-25 17:55:24 +01:00
{
2017-03-23 18:14:51 +01:00
int fd = physicalFd ;
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2017-03-23 18:14:51 +01:00
if ( SimulatedLatencyMs > 0 )
fd = Delay : : create ( SimulatedLatencyMs , physicalFd ) ;
2018-09-13 18:16:00 +02:00
# endif
2021-06-27 17:38:59 +02:00
return StreamSocket : : create < StreamSocket > ( std : : string ( ) , fd , false ,
std : : make_shared < ClientRequestDispatcher > ( ) ) ;
2017-02-24 20:52:36 +01:00
}
} ;
2017-02-27 06:01:17 +01:00
# if ENABLE_SSL
2017-09-12 10:03:26 +02:00
class SslSocketFactory final : public SocketFactory
2017-02-24 20:52:36 +01:00
{
2017-03-23 18:14:51 +01:00
std : : shared_ptr < Socket > create ( const int physicalFd ) override
2017-02-24 20:52:36 +01:00
{
2017-03-23 18:14:51 +01:00
int fd = physicalFd ;
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2017-03-23 18:14:51 +01:00
if ( SimulatedLatencyMs > 0 )
fd = Delay : : create ( SimulatedLatencyMs , physicalFd ) ;
2018-11-01 22:22:01 +01:00
# endif
2017-03-23 18:14:51 +01:00
2021-06-27 17:38:59 +02:00
return StreamSocket : : create < SslStreamSocket > ( std : : string ( ) , fd , false ,
std : : make_shared < ClientRequestDispatcher > ( ) ) ;
2017-02-24 20:52:36 +01:00
}
} ;
2017-02-27 06:01:17 +01:00
# endif
2017-02-24 20:52:36 +01:00
2017-09-12 10:03:26 +02:00
class PrisonerSocketFactory final : public SocketFactory
2017-03-06 20:50:06 +01:00
{
std : : shared_ptr < Socket > create ( const int fd ) override
{
2017-03-23 18:14:51 +01:00
// No local delay.
2021-06-27 17:38:59 +02:00
return StreamSocket : : create < StreamSocket > ( std : : string ( ) , fd , false ,
std : : make_shared < PrisonerRequestDispatcher > ( ) ,
2020-04-23 12:35:42 +02:00
StreamSocket : : ReadType : : UseRecvmsgExpectFD ) ;
2017-03-06 20:50:06 +01:00
}
} ;
2017-02-24 20:52:36 +01:00
/// The main server thread.
///
2021-11-03 15:31:18 +01:00
/// Waits for the connections from the cools, and creates the
2017-02-24 20:52:36 +01:00
/// websockethandlers accordingly.
2021-11-18 13:08:14 +01:00
class COOLWSDServer
2017-02-24 20:52:36 +01:00
{
2021-11-18 13:08:14 +01:00
COOLWSDServer ( COOLWSDServer & & other ) = delete ;
const COOLWSDServer & operator = ( COOLWSDServer & & other ) = delete ;
2021-03-15 15:24:09 +01:00
// allocate port & hold temporarily.
std : : shared_ptr < ServerSocket > _serverSocket ;
2017-02-24 20:52:36 +01:00
public :
2021-11-18 13:08:14 +01:00
COOLWSDServer ( ) :
2017-03-08 05:46:02 +01:00
_acceptPoll ( " accept_poll " )
2017-02-24 20:52:36 +01:00
{
}
2021-11-18 13:08:14 +01:00
~ COOLWSDServer ( )
2017-02-24 20:52:36 +01:00
{
stop ( ) ;
}
2020-01-22 23:24:13 +01:00
void findClientPort ( )
{
_serverSocket = findServerPort ( ClientPortNumber ) ;
}
2019-03-30 15:06:16 +01:00
void startPrisoners ( )
2017-02-24 20:52:36 +01:00
{
2021-03-15 15:24:09 +01:00
PrisonerPoll - > startThread ( ) ;
PrisonerPoll - > insertNewSocket ( findPrisonerServerPort ( ) ) ;
2017-03-06 20:50:06 +01:00
}
2017-02-24 20:52:36 +01:00
2020-09-18 11:03:17 +02:00
static void stopPrisoners ( )
2017-04-05 03:28:55 +02:00
{
2021-03-15 15:24:09 +01:00
PrisonerPoll - > joinThread ( ) ;
2017-04-05 03:28:55 +02:00
}
2020-01-22 23:24:13 +01:00
void start ( )
2017-03-06 20:50:06 +01:00
{
2017-03-13 13:00:31 +01:00
_acceptPoll . startThread ( ) ;
2020-01-22 23:24:13 +01:00
_acceptPoll . insertNewSocket ( _serverSocket ) ;
2018-09-13 18:16:00 +02:00
2019-02-12 12:16:40 +01:00
# if MOBILEAPP
2021-11-18 13:08:14 +01:00
coolwsd_server_socket_fd = _serverSocket - > getFD ( ) ;
2018-09-13 18:16:00 +02:00
# endif
2020-01-23 10:12:46 +01:00
_serverSocket . reset ( ) ;
2021-03-15 15:24:09 +01:00
WebServerPoll - > startThread ( ) ;
2018-09-13 18:16:00 +02:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2017-03-15 17:13:13 +01:00
Admin : : instance ( ) . start ( ) ;
2018-09-13 18:16:00 +02:00
# endif
2017-02-24 20:52:36 +01:00
}
void stop ( )
{
2017-03-31 21:58:33 +02:00
_acceptPoll . joinThread ( ) ;
2021-03-15 15:24:09 +01:00
if ( WebServerPoll )
WebServerPoll - > joinThread ( ) ;
Admin: shutdown cleanly to avoid races during close.
Suspect cause for SEGV in:
std::_Rb_tree<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >, std::pair<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const, std::shared_ptr<DocumentBroker> >, std::_Select1st<std::pair<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const, std::shared_ptr<DocumentBroker> > >, std::less<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > >, std::allocator<std::pair<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const, std::shared_ptr<DocumentBroker> > > >::find(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&)
COOLWSD::closeDocument(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&)
Admin::triggerMemoryCleanup(unsigned long)
Admin::pollingThread()
Change-Id: Id09e4db4b21cb7a11dddb867758aded4b28ff3ec
Signed-off-by: Michael Meeks <michael.meeks@collabora.com>
2022-03-02 18:40:33 +01:00
# if !MOBILEAPP
Admin : : instance ( ) . stop ( ) ;
# endif
2017-02-24 20:52:36 +01:00
}
2017-03-13 00:03:45 +01:00
void dumpState ( std : : ostream & os )
2017-03-03 22:18:55 +01:00
{
2017-04-05 18:58:52 +02:00
// FIXME: add some stop-world magic before doing the dump(?)
Socket : : InhibitThreadChecks = true ;
2017-05-15 03:42:10 +02:00
SocketPoll : : InhibitThreadChecks = true ;
2017-04-05 18:58:52 +02:00
2020-07-01 13:19:39 +02:00
std : : string version , hash ;
Util : : getVersionInfo ( version , hash ) ;
2021-11-18 13:08:14 +01:00
os < < " COOLWSDServer: " < < version < < " - " < < hash
2019-03-31 13:34:24 +02:00
# if !MOBILEAPP
2021-11-18 13:08:14 +01:00
< < " \n Kit version: " < < COOLWSD : : LOKitVersion
2020-05-24 15:10:18 +02:00
< < " \n Ports: server " < < ClientPortNumber < < " prisoner " < < MasterLocation
2021-11-18 13:08:14 +01:00
< < " \n SSL: " < < ( COOLWSD : : isSSLEnabled ( ) ? " https " : " http " )
< < " \n SSL-Termination: " < < ( COOLWSD : : isSSLTermination ( ) ? " yes " : " no " )
< < " \n Security " < < ( COOLWSD : : NoCapsForKit ? " no " : " " ) < < " chroot, "
< < ( COOLWSD : : NoSeccomp ? " no " : " " ) < < " api lockdown "
< < " \n Admin: " < < ( COOLWSD : : AdminEnabled ? " enabled " : " disabled " )
2020-05-24 15:10:18 +02:00
# endif
< < " \n TerminationFlag: " < < SigUtil : : getTerminationFlag ( )
< < " \n isShuttingDown: " < < SigUtil : : getShutdownRequestFlag ( )
< < " \n NewChildren: " < < NewChildren . size ( )
< < " \n OutstandingForks: " < < OutstandingForks
2021-11-18 13:08:14 +01:00
< < " \n NumPreSpawnedChildren: " < < COOLWSD : : NumPreSpawnedChildren
2020-06-03 18:13:40 +02:00
< < " \n ChildSpawnTimeoutMs: " < < ChildSpawnTimeoutMs
< < " \n Document Brokers: " < < DocBrokers . size ( )
# if !MOBILEAPP
< < " \n of which ConvertTo: " < < ConvertToBroker : : getInstanceCount ( )
# endif
2021-11-18 13:08:14 +01:00
< < " \n vs. MaxDocuments: " < < COOLWSD : : MaxDocuments
< < " \n NumConnections: " < < COOLWSD : : NumConnections
< < " \n vs. MaxConnections: " < < COOLWSD : : MaxConnections
< < " \n SysTemplate: " < < COOLWSD : : SysTemplate
< < " \n LoTemplate: " < < COOLWSD : : LoTemplate
< < " \n ChildRoot: " < < COOLWSD : : ChildRoot
< < " \n FileServerRoot: " < < COOLWSD : : FileServerRoot
< < " \n ServiceRoot: " < < COOLWSD : : ServiceRoot
< < " \n LOKitVersion: " < < COOLWSD : : LOKitVersion
2020-07-02 14:36:50 +02:00
< < " \n HostIdentifier: " < < Util : : getProcessIdentifier ( )
2021-11-18 13:08:14 +01:00
< < " \n ConfigFile: " < < COOLWSD : : ConfigFile
< < " \n ConfigDir: " < < COOLWSD : : ConfigDir
< < " \n LogLevel: " < < COOLWSD : : LogLevel
< < " \n AnonymizeUserData: " < < ( COOLWSD : : AnonymizeUserData ? " yes " : " no " )
< < " \n CheckCoolUser: " < < ( COOLWSD : : CheckCoolUser ? " yes " : " no " )
< < " \n IsProxyPrefixEnabled: " < < ( COOLWSD : : IsProxyPrefixEnabled ? " yes " : " no " )
< < " \n OverrideWatermark: " < < COOLWSD : : OverrideWatermark
< < " \n UserInterface: " < < COOLWSD : : UserInterface
2020-06-03 18:13:40 +02:00
;
2020-05-24 15:10:18 +02:00
os < < " \n Server poll: \n " ;
2017-03-13 00:03:45 +01:00
_acceptPoll . dumpState ( os ) ;
2017-03-03 22:18:55 +01:00
2017-03-14 13:34:02 +01:00
os < < " Web Server poll: \n " ;
2021-03-15 15:24:09 +01:00
WebServerPoll - > dumpState ( os ) ;
2017-03-06 16:45:34 +01:00
2017-03-14 13:34:02 +01:00
os < < " Prisoner poll: \n " ;
2021-03-15 15:24:09 +01:00
PrisonerPoll - > dumpState ( os ) ;
2017-03-06 20:50:06 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2017-03-15 17:13:13 +01:00
os < < " Admin poll: \n " ;
Admin : : instance ( ) . dumpState ( os ) ;
2017-03-23 18:14:51 +01:00
// If we have any delaying work going on.
Delay : : dumpState ( os ) ;
2018-09-13 18:16:00 +02:00
# endif
2017-03-23 18:14:51 +01:00
2017-03-14 13:34:02 +01:00
os < < " Document Broker polls "
2017-03-09 19:19:53 +01:00
< < " [ " < < DocBrokers . size ( ) < < " ]: \n " ;
2017-03-06 16:45:34 +01:00
for ( auto & i : DocBrokers )
2017-03-13 00:03:45 +01:00
i . second - > dumpState ( os ) ;
2020-05-05 19:38:04 +02:00
# if !MOBILEAPP
2020-05-24 15:10:18 +02:00
os < < " Converter count: " < < ConvertToBroker : : getInstanceCount ( ) < < ' \n ' ;
2020-05-05 19:38:04 +02:00
# endif
2017-04-05 18:58:52 +02:00
Socket : : InhibitThreadChecks = false ;
2017-05-15 03:42:10 +02:00
SocketPoll : : InhibitThreadChecks = false ;
2017-03-03 22:18:55 +01:00
}
2017-02-24 20:52:36 +01:00
private :
2017-03-07 18:08:54 +01:00
class AcceptPoll : public TerminatingPoll {
public :
AcceptPoll ( const std : : string & threadName ) :
TerminatingPoll ( threadName ) { }
void wakeupHook ( ) override
{
2020-07-14 16:20:05 +02:00
SigUtil : : checkDumpGlobalState ( dump_state ) ;
2017-03-07 18:08:54 +01:00
}
} ;
2017-03-05 00:40:07 +01:00
/// This thread & poll accepts incoming connections.
2017-03-07 18:08:54 +01:00
AcceptPoll _acceptPoll ;
2017-02-24 20:52:36 +01:00
2018-01-09 15:02:02 +01:00
/// Create the internal only, local socket for forkit / kits prisoners to talk to.
2019-03-30 15:06:16 +01:00
std : : shared_ptr < ServerSocket > findPrisonerServerPort ( )
2017-03-06 20:50:06 +01:00
{
std : : shared_ptr < SocketFactory > factory = std : : make_shared < PrisonerSocketFactory > ( ) ;
2019-03-30 15:06:16 +01:00
# if !MOBILEAPP
2021-03-15 15:24:09 +01:00
auto socket = std : : make_shared < LocalServerSocket > ( * PrisonerPoll , factory ) ;
2017-03-06 20:50:06 +01:00
2021-03-10 14:29:25 +01:00
const std : : string location = socket - > bind ( ) ;
2019-03-30 15:06:16 +01:00
if ( ! location . length ( ) )
2017-03-06 20:50:06 +01:00
{
2019-03-30 15:06:16 +01:00
LOG_FTL ( " Failed to create local unix domain socket. Exiting. " ) ;
2022-07-16 05:18:48 +02:00
Util : : forcedExit ( EX_SOFTWARE ) ;
2019-03-30 15:06:16 +01:00
return nullptr ;
2017-03-06 20:50:06 +01:00
}
2019-03-30 15:06:16 +01:00
if ( ! socket - > listen ( ) )
2017-04-05 06:21:49 +02:00
{
2019-03-30 15:06:16 +01:00
LOG_FTL ( " Failed to listen on local unix domain socket at " < < location < < " . Exiting. " ) ;
2022-07-16 05:18:48 +02:00
Util : : forcedExit ( EX_SOFTWARE ) ;
2017-04-05 06:21:49 +02:00
}
2019-03-30 15:06:16 +01:00
LOG_INF ( " Listening to prisoner connections on " < < location ) ;
MasterLocation = location ;
2021-12-30 14:36:48 +01:00
# ifndef HAVE_ABSTRACT_UNIX_SOCKETS
if ( ! socket - > link ( COOLWSD : : SysTemplate + " /0 " + MasterLocation ) )
{
LOG_FTL ( " Failed to hardlink local unix domain socket into a jail. Exiting. " ) ;
2022-07-16 05:18:48 +02:00
Util : : forcedExit ( EX_SOFTWARE ) ;
2021-12-30 14:36:48 +01:00
}
# endif
2018-10-16 22:00:14 +02:00
# else
2019-03-30 15:06:16 +01:00
constexpr int DEFAULT_MASTER_PORT_NUMBER = 9981 ;
2021-03-09 19:12:45 +01:00
std : : shared_ptr < ServerSocket > socket
= ServerSocket : : create ( ServerSocket : : Type : : Public , DEFAULT_MASTER_PORT_NUMBER ,
2021-03-15 15:24:09 +01:00
ClientPortProto , * PrisonerPoll , factory ) ;
2019-03-30 15:06:16 +01:00
2021-11-18 13:08:14 +01:00
COOLWSD : : prisonerServerSocketFD = socket - > getFD ( ) ;
LOG_INF ( " Listening to prisoner connections on # " < < COOLWSD : : prisonerServerSocketFD ) ;
2018-09-13 18:16:00 +02:00
# endif
2017-03-06 20:50:06 +01:00
return socket ;
}
2018-01-09 15:02:02 +01:00
/// Create the externally listening public socket
2017-03-03 04:55:52 +01:00
std : : shared_ptr < ServerSocket > findServerPort ( int port )
{
2017-03-06 20:50:06 +01:00
std : : shared_ptr < SocketFactory > factory ;
2018-10-16 22:00:14 +02:00
2017-03-06 20:50:06 +01:00
# if ENABLE_SSL
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : isSSLEnabled ( ) )
2017-03-06 20:50:06 +01:00
factory = std : : make_shared < SslSocketFactory > ( ) ;
else
# endif
2017-03-07 08:15:27 +01:00
factory = std : : make_shared < PlainSocketFactory > ( ) ;
2017-03-06 20:50:06 +01:00
2021-03-13 20:20:46 +01:00
std : : shared_ptr < ServerSocket > socket = ServerSocket : : create (
2021-03-15 15:24:09 +01:00
ClientListenAddr , port , ClientPortProto , * WebServerPoll , factory ) ;
2020-01-17 21:49:38 +01:00
while ( ! socket & &
2018-10-01 19:42:09 +02:00
# ifdef BUILDING_TESTS
2020-01-17 21:49:38 +01:00
true
# else
UnitWSD : : isUnitTesting ( )
# endif
)
2017-03-03 04:55:52 +01:00
{
+ + port ;
2020-05-24 15:10:18 +02:00
LOG_INF ( " Client port " < < ( port - 1 ) < < " is busy, trying " < < port < < ' . ' ) ;
2021-03-13 20:20:46 +01:00
socket = ServerSocket : : create ( ClientListenAddr , port , ClientPortProto ,
2021-03-15 15:24:09 +01:00
* WebServerPoll , factory ) ;
2017-03-03 04:55:52 +01:00
}
2018-06-04 00:17:33 +02:00
2018-02-08 12:34:55 +01:00
if ( ! socket )
{
LOG_FTL ( " Failed to listen on Server port(s) ( " < <
ClientPortNumber < < ' - ' < < port < < " ). Exiting. " ) ;
2022-07-16 05:18:48 +02:00
Util : : forcedExit ( EX_SOFTWARE ) ;
2018-02-08 12:34:55 +01:00
}
2017-03-03 04:55:52 +01:00
2018-01-26 15:40:36 +01:00
ClientPortNumber = port ;
2018-10-16 22:00:14 +02:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2017-03-03 04:55:52 +01:00
LOG_INF ( " Listening to client connections on port " < < port ) ;
2018-10-16 22:00:14 +02:00
# else
LOG_INF ( " Listening to client connections on # " < < socket - > getFD ( ) ) ;
# endif
2017-03-03 04:55:52 +01:00
return socket ;
}
2017-02-24 20:52:36 +01:00
} ;
2019-02-13 18:50:37 +01:00
# if !MOBILEAPP
2022-05-05 22:06:41 +02:00
void COOLWSD : : processFetchUpdate ( )
{
try
{
Poco : : URI uriFetch ( std : : string ( INFOBAR_URL ) ) ;
2022-06-14 13:37:09 +02:00
uriFetch . addQueryParameter ( " product " , APP_NAME ) ;
uriFetch . addQueryParameter ( " version " , COOLWSD_VERSION ) ;
2022-05-05 22:06:41 +02:00
std : : shared_ptr < SocketPoll > socketPoll = std : : make_shared < SocketPoll > ( " update " ) ;
std : : shared_ptr < http : : Session > sessionFetch = StorageBase : : getHttpSession ( uriFetch ) ;
http : : Request request ( uriFetch . getPathAndQuery ( ) ) ;
if ( ! sessionFetch | | ! socketPoll )
return ;
request . add ( " Accept " , " application/json " ) ;
http : : Session : : FinishedCallback fetchCallback =
[ sessionFetch , socketPoll ] ( const std : : shared_ptr < http : : Session > & httpSession )
{
const std : : shared_ptr < const http : : Response > httpResponse = httpSession - > response ( ) ;
if ( httpResponse - > statusLine ( ) . statusCode ( ) = = Poco : : Net : : HTTPResponse : : HTTP_OK )
{
std : : lock_guard < std : : mutex > lock ( COOLWSD : : FetchUpdateMutex ) ;
COOLWSD : : LatestVersion = httpResponse - > getBody ( ) ;
}
socketPoll - > stop ( ) ;
} ;
sessionFetch - > setFinishedHandler ( fetchCallback ) ;
sessionFetch - > asyncRequest ( request , * socketPoll ) ;
socketPoll - > startThread ( ) ;
}
catch ( const Poco : : Exception & exc )
{
LOG_DBG ( " FetchUpdate: " < < exc . displayText ( ) ) ;
}
catch ( std : : exception & exc )
{
LOG_DBG ( " FetchUpdate: " < < exc . what ( ) ) ;
}
catch ( . . . )
{
LOG_DBG ( " FetchUpdate: Unknown exception " ) ;
}
}
2019-02-20 13:52:46 +01:00
# if ENABLE_DEBUG
2021-11-18 13:08:14 +01:00
std : : string COOLWSD : : getServerURL ( )
2019-02-13 18:01:08 +01:00
{
2021-11-18 13:08:14 +01:00
return getServiceURI ( COOLWSD_TEST_COOL_UI ) ;
2019-02-13 18:01:08 +01:00
}
2019-02-20 13:52:46 +01:00
# endif
2019-02-13 18:50:37 +01:00
# endif
2021-11-18 13:08:14 +01:00
int COOLWSD : : innerMain ( )
2015-07-13 16:13:06 +02:00
{
2022-04-15 01:05:26 +02:00
# if !MOBILEAPP
2017-03-03 22:18:55 +01:00
SigUtil : : setUserSignals ( ) ;
2021-11-18 13:08:14 +01:00
SigUtil : : setFatalSignals ( " wsd " COOLWSD_VERSION " " COOLWSD_VERSION_HASH ) ;
2017-02-08 21:39:55 +01:00
# endif
2016-07-30 16:59:38 +02:00
2020-07-01 13:19:39 +02:00
# if !MOBILEAPP
2020-11-17 07:24:18 +01:00
# ifdef __linux__
2016-10-07 18:49:37 +02:00
// down-pay all the forkit linking cost once & early.
2020-02-07 15:14:21 +01:00
setenv ( " LD_BIND_NOW " , " 1 " , 1 ) ;
2020-07-01 13:19:39 +02:00
# endif
2016-10-07 18:49:37 +02:00
2020-07-01 13:19:39 +02:00
std : : string version , hash ;
Util : : getVersionInfo ( version , hash ) ;
2021-11-18 13:08:14 +01:00
LOG_INF ( " Coolwsd version details: " < < version < < " - " < < hash < < " - id " < < Util : : getProcessIdentifier ( ) < < " - on " < < Util : : getLinuxVersion ( ) ) ;
2018-09-13 18:16:00 +02:00
# endif
2016-02-29 13:25:12 +01:00
2016-03-23 12:08:01 +01:00
initializeSSL ( ) ;
2016-03-21 09:37:39 +01:00
2022-02-08 06:50:09 +01:00
# if !MOBILEAPP
2022-02-23 11:47:53 +01:00
// Fetch remote settings from server if configured
2022-02-08 06:50:09 +01:00
RemoteConfigPoll remoteConfigThread ( config ( ) ) ;
remoteConfigThread . start ( ) ;
# endif
2020-06-24 12:45:24 +02:00
# ifndef IOS
// We can open files with non-ASCII names just fine on iOS without this, and this code is
// heavily Linux-specific anyway.
2018-03-15 20:17:17 +01:00
// Force a uniform UTF-8 locale for ourselves & our children.
2020-06-21 10:49:23 +02:00
char * locale = std : : setlocale ( LC_ALL , " C.UTF-8 " ) ;
if ( ! locale )
{
// rhbz#1590680 - C.UTF-8 is unsupported on RH7
LOG_WRN ( " Could not set locale to C.UTF-8, will try en_US.UTF-8 " ) ;
locale = std : : setlocale ( LC_ALL , " en_US.UTF-8 " ) ;
if ( ! locale )
LOG_WRN ( " Could not set locale to en_US.UTF-8. Without UTF-8 support documents with non-ASCII file names cannot be opened. " ) ;
}
if ( locale )
{
LOG_INF ( " Locale is set to " + std : : string ( locale ) ) ;
: : setenv ( " LC_ALL " , locale , 1 ) ;
}
2020-06-24 12:45:24 +02:00
# endif
2015-10-13 19:05:42 +02:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2021-11-18 13:08:14 +01:00
// We use the same option set for both parent and child coolwsd,
2015-07-17 23:55:27 +02:00
// so must check options required in the parent (but not in the
// child) separately now. Also check for options that are
// meaningless for the parent.
2016-01-15 09:40:54 +01:00
if ( LoTemplate . empty ( ) )
2016-10-14 11:57:27 +02:00
{
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
LOG_FTL ( " Missing --lo-template-path option " ) ;
2015-07-17 23:55:27 +02:00
throw MissingOptionException ( " lotemplate " ) ;
2016-10-14 11:57:27 +02:00
}
2018-09-13 02:07:10 +02:00
2016-03-20 15:07:24 +01:00
if ( FileServerRoot . empty ( ) )
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
FileServerRoot = Util : : getApplicationPath ( ) ;
2016-04-07 05:38:08 +02:00
FileServerRoot = Poco : : Path ( FileServerRoot ) . absolute ( ) . toString ( ) ;
2016-11-06 17:39:19 +01:00
LOG_DBG ( " FileServerRoot: " < < FileServerRoot ) ;
wsd: avoid static SocketPoll
The lifetime management of static objects
is extremely unpredictable and depends on
many variables outside of our control or
even reliable reproducibility.
Complex static objects that own threads
and other objects are doubly problematic
because of their dependency and/or
interaction with other objects.
Here we replace the static DelayPoll
instance with one we control its lifetime
in the LOOLWSD main body, such that it
is destroyed properly.
Specifically, DelayPoll's dtor was
accessing Poco's Logging subsystem out of
order. That is, after Poco had been
destroyed.
Another advantage to this approach is that
we don't even create the DelayPoll at all
if we don't need it. The onus now is on
the user of DelayPoll to make sure they
create a Delay object with a long-enough
lifetime to encompase it use.
For completeness, here is the stacktrace:
terminate called after throwing an instance of 'std::bad_alloc'
what(): std::bad_alloc
Program received signal SIGABRT, Aborted.
__GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
51 ../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
(gdb) bt
#0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
#1 0x00007ffff613f801 in __GI_abort () at abort.c:79
#2 0x00007ffff6d51957 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#3 0x00007ffff6d57ae6 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#4 0x00007ffff6d56b49 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#5 0x00007ffff6d574b8 in __gxx_personality_v0 () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#6 0x00007ffff671f573 in ?? () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#7 0x00007ffff671fad1 in _Unwind_RaiseException () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#8 0x00007ffff6d57d47 in __cxa_throw () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#9 0x00007ffff6d582dc in operator new(unsigned long) () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#10 0x00005555556b5927 in void std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::_M_construct<char*>(char*, char*, std::forward_iterator_tag) [clone .isra.41] ()
#11 0x0000555555982a14 in Poco::Message::Message(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, Poco::Message::Priority) ()
#12 0x000055555585a909 in SocketPoll::~SocketPoll (this=0x555555d10f60 <DelayPoll>, __in_chrg=<optimized out>) at net/Socket.cpp:145
#13 0x00007ffff6142041 in __run_exit_handlers (status=0, listp=0x7ffff64ea718 <__exit_funcs>, run_list_atexit=run_list_atexit@entry=true, run_dtors=run_dtors@entry=true) at exit.c:108
#14 0x00007ffff614213a in __GI_exit (status=<optimized out>) at exit.c:139
#15 0x0000555555752d78 in LOOLWSD::innerInitialize (this=<optimized out>, self=...) at wsd/LOOLWSD.cpp:1213
#16 0x0000555555788b07 in LOOLWSD::initialize (this=<optimized out>, self=...) at wsd/LOOLWSD.hpp:432
#17 0x00005555558dd7e4 in Poco::Util::Application::run() ()
#18 0x00005555556b6574 in main (argc=2, argv=0x7fffffffe528) at wsd/LOOLWSD.cpp:4276
Change-Id: Ifda55fe869fa6734b9c2490da4497d2551ac21c1
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2021-03-13 14:52:16 +01:00
LOG_DBG ( " Initializing DelaySocket with " < < SimulatedLatencyMs < < " ms. " ) ;
Delay delay ( SimulatedLatencyMs ) ;
2022-05-05 22:01:28 +02:00
const auto fetchUpdateCheck = std : : chrono : : duration_cast < std : : chrono : : milliseconds > (
std : : chrono : : hours ( std : : max ( getConfigValue < int > ( " fetch_update_check " , 10 ) , 0 ) ) ) ;
2018-10-08 15:25:12 +02:00
# endif
2015-07-17 23:55:27 +02:00
2017-06-07 04:33:21 +02:00
ClientRequestDispatcher : : InitStaticFileContentCache ( ) ;
2020-01-22 23:24:13 +01:00
// Allocate our port - passed to prisoners.
2022-03-17 14:48:32 +01:00
assert ( Server & & " The COOLWSDServer instance does not exist. " ) ;
2021-03-15 15:24:09 +01:00
Server - > findClientPort ( ) ;
2020-01-22 23:24:13 +01:00
2022-02-23 11:47:53 +01:00
TmpFontDir = SysTemplate + " /tmpfonts " ;
2017-03-10 02:56:39 +01:00
// Start the internal prisoner server and spawn forkit,
// which in turn forks first child.
2021-03-15 15:24:09 +01:00
Server - > startPrisoners ( ) ;
2015-07-17 20:02:25 +02:00
2018-09-13 18:16:00 +02:00
// No need to "have at least one child" beforehand on mobile
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2017-03-08 19:48:07 +01:00
# ifndef KIT_IN_PROCESS
{
2017-10-03 10:15:29 +02:00
// Make sure we have at least one child before moving forward.
2017-03-08 19:48:07 +01:00
std : : unique_lock < std : : mutex > lock ( NewChildrenMutex ) ;
2017-10-03 10:15:29 +02:00
// If we are debugging, it's not uncommon to wait for several minutes before first
// child is born. Don't use an expiry timeout in that case.
const bool debugging = std : : getenv ( " SLEEPFORDEBUGGER " ) | | std : : getenv ( " SLEEPKITFORDEBUGGER " ) ;
if ( debugging )
{
LOG_DBG ( " Waiting for new child without timeout. " ) ;
NewChildrenCV . wait ( lock , [ ] ( ) { return ! NewChildren . empty ( ) ; } ) ;
}
else
2017-03-08 19:48:07 +01:00
{
2021-11-18 13:08:14 +01:00
int retry = ( COOLWSD : : NoCapsForKit ? 150 : 50 ) ;
2021-10-03 17:05:26 +02:00
const auto timeout = std : : chrono : : milliseconds ( ChildSpawnTimeoutMs ) ;
while ( retry - - > 0 & & ! SigUtil : : getShutdownRequestFlag ( ) )
2017-10-03 10:15:29 +02:00
{
2021-10-03 17:05:26 +02:00
LOG_INF ( " Waiting for a new child for a max of " < < timeout ) ;
if ( NewChildrenCV . wait_for ( lock , timeout , [ ] ( ) { return ! NewChildren . empty ( ) ; } ) )
{
break ;
}
2017-10-03 10:15:29 +02:00
}
2017-03-08 19:48:07 +01:00
}
2017-03-10 02:56:39 +01:00
// Check we have at least one.
LOG_TRC ( " Have " < < NewChildren . size ( ) < < " new children. " ) ;
2021-10-03 17:05:26 +02:00
if ( NewChildren . empty ( ) )
{
if ( SigUtil : : getShutdownRequestFlag ( ) )
LOG_FTL ( " Shutdown requested while starting up. Exiting. " ) ;
else
LOG_FTL ( " No child process could be created. Exiting. " ) ;
Util : : forcedExit ( EX_SOFTWARE ) ;
}
2017-03-08 19:48:07 +01:00
assert ( NewChildren . size ( ) > 0 ) ;
}
# endif
2018-01-08 04:34:28 +01:00
if ( LogLevel ! = " trace " )
{
2018-06-04 03:01:47 +02:00
LOG_INF ( " WSD initialization complete: setting log-level to [ " < < LogLevel < < " ] as configured. " ) ;
2018-01-08 04:34:28 +01:00
Log : : logger ( ) . setLevel ( LogLevel ) ;
}
2021-01-04 17:12:22 +01:00
if ( Log : : logger ( ) . getLevel ( ) > = Poco : : Message : : Priority : : PRIO_INFORMATION )
LOG_ERR ( " Log level is set very high to ' " < < LogLevel < < " ' this will have a "
" significant performance impact. Do not use this in production. " ) ;
2018-09-13 18:16:00 +02:00
# endif
2018-07-19 07:22:07 +02:00
// URI with /contents are public and we don't need to anonymize them.
Util : : mapAnonymized ( " contents " , " contents " ) ;
2017-03-10 02:56:39 +01:00
// Start the server.
2021-03-15 15:24:09 +01:00
Server - > start ( ) ;
2017-02-24 20:52:36 +01:00
2017-03-16 19:52:49 +01:00
/// The main-poll does next to nothing:
2017-03-09 20:00:04 +01:00
SocketPoll mainWait ( " main " ) ;
2020-06-22 12:34:22 +02:00
# if !MOBILEAPP
2018-01-26 15:40:36 +01:00
std : : cerr < < " Ready to accept connections on port " < < ClientPortNumber < < " . \n " < < std : : endl ;
2022-04-13 20:53:49 +02:00
if ( SignalParent )
{
kill ( getppid ( ) , SIGUSR2 ) ;
}
2020-06-22 12:34:22 +02:00
# endif
2017-04-05 06:18:16 +02:00
2022-02-23 11:47:53 +01:00
# if !MOBILEAPP
// Start the remote font downloading polling thread.
std : : unique_ptr < RemoteFontConfigPoll > remoteFontConfigThread ;
try
{
// Fetch font settings from server if configured
remoteFontConfigThread = Util : : make_unique < RemoteFontConfigPoll > ( config ( ) ) ;
remoteFontConfigThread - > start ( ) ;
}
catch ( const Poco : : Exception & )
{
LOG_DBG ( " No remote_font_config " ) ;
}
# endif
2017-04-05 06:18:16 +02:00
const auto startStamp = std : : chrono : : steady_clock : : now ( ) ;
2022-05-05 22:01:28 +02:00
# if !MOBILEAPP
auto stampFetch = startStamp - ( fetchUpdateCheck - std : : chrono : : milliseconds ( 60000 ) ) ;
# endif
2017-04-05 06:18:16 +02:00
2019-08-12 09:03:16 +02:00
while ( ! SigUtil : : getTerminationFlag ( ) & & ! SigUtil : : getShutdownRequestFlag ( ) )
2015-07-17 20:02:25 +02:00
{
2017-03-26 03:53:17 +02:00
// This timeout affects the recovery time of prespawned children.
2022-02-10 01:37:40 +01:00
std : : chrono : : microseconds waitMicroS = SocketPoll : : DefaultPollTimeoutMicroS * 4 ;
if ( UnitWSD : : isUnitTesting ( ) )
{
UnitWSD : : get ( ) . invokeTest ( ) ;
// More frequent polling while testing, to reduce total test time.
waitMicroS =
std : : min ( UnitWSD : : get ( ) . getTimeoutMilliSeconds ( ) , std : : chrono : : milliseconds ( 1000 ) ) ;
waitMicroS / = 4 ;
}
2020-04-10 13:34:15 +02:00
mainWait . poll ( waitMicroS ) ;
2017-03-16 19:52:49 +01:00
2017-03-19 23:57:31 +01:00
// Wake the prisoner poll to spawn some children, if necessary.
2021-03-13 20:20:46 +01:00
PrisonerPoll - > wakeup ( ) ;
2017-03-19 23:57:31 +01:00
2022-05-05 22:01:28 +02:00
const auto timeNow = std : : chrono : : steady_clock : : now ( ) ;
2020-12-14 20:00:55 +01:00
const std : : chrono : : milliseconds timeSinceStartMs
2022-05-05 22:01:28 +02:00
= std : : chrono : : duration_cast < std : : chrono : : milliseconds > ( timeNow - startStamp ) ;
2017-03-16 19:52:49 +01:00
// Unit test timeout
2022-02-10 01:37:40 +01:00
if ( UnitWSD : : isUnitTesting ( ) )
2020-12-26 21:37:57 +01:00
{
2022-02-10 01:37:40 +01:00
UnitWSD : : get ( ) . checkTimeout ( timeSinceStartMs ) ;
2020-12-26 21:37:57 +01:00
}
2017-03-08 19:48:07 +01:00
2022-05-05 22:01:28 +02:00
# if !MOBILEAPP
const std : : chrono : : milliseconds durationFetch
= std : : chrono : : duration_cast < std : : chrono : : milliseconds > ( timeNow - stampFetch ) ;
if ( fetchUpdateCheck > std : : chrono : : milliseconds : : zero ( ) & & durationFetch > fetchUpdateCheck )
{
2022-05-05 22:06:41 +02:00
processFetchUpdate ( ) ;
2022-05-05 22:01:28 +02:00
stampFetch = timeNow ;
}
# endif
2019-12-19 14:49:12 +01:00
# if ENABLE_DEBUG && !MOBILEAPP
2020-12-14 20:00:55 +01:00
if ( careerSpanMs > std : : chrono : : milliseconds : : zero ( ) & & timeSinceStartMs > careerSpanMs )
2016-04-12 12:48:42 +02:00
{
2021-04-13 04:26:06 +02:00
LOG_INF ( " Setting ShutdownRequestFlag: " < < timeSinceStartMs < < " gone, career of "
< < careerSpanMs < < " expired. " ) ;
2019-11-03 21:03:11 +01:00
SigUtil : : requestShutdown ( ) ;
2016-04-12 12:48:42 +02:00
}
# endif
2015-07-17 20:02:25 +02:00
}
2018-09-13 02:07:10 +02:00
2016-11-14 05:55:18 +01:00
// Stop the listening to new connections
// and wait until sockets close.
2018-10-15 23:39:21 +02:00
LOG_INF ( " Stopping server socket listening. ShutdownRequestFlag: " < <
2019-08-12 09:03:16 +02:00
SigUtil : : getShutdownRequestFlag ( ) < < " , TerminationFlag: " < < SigUtil : : getTerminationFlag ( ) ) ;
2016-11-16 04:03:11 +01:00
2021-07-18 20:53:45 +02:00
if ( ! UnitWSD : : isUnitTesting ( ) )
{
// When running unit-tests the listening port will
// get recycled and another test will be listening.
// This is very problematic if a DocBroker here is
// saving and uploading before shutting down, because
// the test that gets the same port will receive this
// unexpected upload and fail.
// Otherwise, in production, we should probably respond
// with some error that we are recycling. But for now,
// don't change the behavior and stop listening.
2021-03-15 15:24:09 +01:00
Server - > stop ( ) ;
2021-07-18 20:53:45 +02:00
}
2015-11-26 03:59:24 +01:00
2016-11-28 01:07:32 +01:00
// atexit handlers tend to free Admin before Documents
2019-11-03 21:03:11 +01:00
LOG_INF ( " Exiting. Cleaning up lingering documents. " ) ;
2019-11-12 10:50:33 +01:00
# if !MOBILEAPP
2019-11-03 21:03:11 +01:00
if ( ! SigUtil : : getShutdownRequestFlag ( ) )
2017-04-19 06:54:42 +02:00
{
2019-11-03 21:03:11 +01:00
// This shouldn't happen, but it's fail safe to always cleanup properly.
2021-04-13 04:26:06 +02:00
LOG_WRN ( " Setting ShutdownRequestFlag: Exiting WSD without ShutdownRequestFlag. Setting it "
" now. " ) ;
2019-11-03 21:03:11 +01:00
SigUtil : : requestShutdown ( ) ;
2017-04-19 06:54:42 +02:00
}
2019-11-04 14:21:44 +01:00
# endif
2020-02-23 19:24:07 +01:00
2021-07-18 20:53:45 +02:00
// Wait until documents are saved and sessions closed.
2019-11-03 21:03:11 +01:00
// Don't stop the DocBroker, they will exit.
constexpr size_t sleepMs = 500 ;
2020-02-23 19:24:07 +01:00
constexpr size_t count = ( COMMAND_TIMEOUT_MS * 6 ) / sleepMs ;
2019-11-03 21:03:11 +01:00
for ( size_t i = 0 ; i < count ; + + i )
2017-04-19 06:54:42 +02:00
{
2019-11-03 21:03:11 +01:00
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
if ( DocBrokers . empty ( ) )
break ;
LOG_DBG ( " Waiting for " < < DocBrokers . size ( ) < < " documents to stop. " ) ;
cleanupDocBrokers ( ) ;
docBrokersLock . unlock ( ) ;
// Give them time to save and cleanup.
std : : this_thread : : sleep_for ( std : : chrono : : milliseconds ( sleepMs ) ) ;
2017-04-19 06:54:42 +02:00
}
2017-04-05 22:48:35 +02:00
2020-02-23 19:24:07 +01:00
if ( UnitWSD : : isUnitTesting ( ) & & ! SigUtil : : getTerminationFlag ( ) )
{
LOG_INF ( " Setting TerminationFlag to avoid deadlocking unittest. " ) ;
SigUtil : : setTerminationFlag ( ) ;
}
2017-04-06 08:56:21 +02:00
// Disable thread checking - we'll now cleanup lots of things if we can
Socket : : InhibitThreadChecks = true ;
2017-05-15 03:42:10 +02:00
SocketPoll : : InhibitThreadChecks = true ;
2017-04-06 08:56:21 +02:00
2019-11-03 21:03:11 +01:00
// Wait for the DocumentBrokers. They must be saving/uploading now.
// Do not stop them! Otherwise they might not save/upload the document.
// We block until they finish, or the service stopping times out.
{
std : : unique_lock < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
for ( auto & docBrokerIt : DocBrokers )
{
std : : shared_ptr < DocumentBroker > docBroker = docBrokerIt . second ;
if ( docBroker & & docBroker - > isAlive ( ) )
{
LOG_DBG ( " Joining docBroker [ " < < docBrokerIt . first < < " ]. " ) ;
docBroker - > joinThread ( ) ;
}
}
// Now should be safe to destroy what's left.
cleanupDocBrokers ( ) ;
DocBrokers . clear ( ) ;
}
2016-11-28 01:07:32 +01:00
2021-05-04 10:57:58 +02:00
if ( TraceEventFile ! = NULL )
2021-04-15 17:43:44 +02:00
{
2021-05-10 13:29:08 +02:00
// If we have written any objects to it, it ends with a comma and newline. Back over those.
if ( ftell ( TraceEventFile ) > 2 )
fseek ( TraceEventFile , - 2 , SEEK_CUR ) ;
// Close the JSON array.
2021-05-04 10:57:58 +02:00
fprintf ( TraceEventFile , " \n ] \n " ) ;
fclose ( TraceEventFile ) ;
TraceEventFile = NULL ;
2021-04-15 17:43:44 +02:00
}
2019-02-12 12:16:40 +01:00
# if !defined(KIT_IN_PROCESS) && !MOBILEAPP
2015-12-20 02:09:48 +01:00
// Terminate child processes
2017-01-15 23:54:55 +01:00
LOG_INF ( " Requesting forkit process " < < ForKitProcId < < " to terminate. " ) ;
2022-03-13 23:28:31 +01:00
# if CODE_COVERAGE
constexpr auto signal = SIGTERM ;
# else
constexpr auto signal = SIGKILL ;
# endif
SigUtil : : killChild ( ForKitProcId , signal ) ;
2017-02-06 23:26:38 +01:00
# endif
2016-11-16 04:13:22 +01:00
2021-03-15 15:24:09 +01:00
Server - > stopPrisoners ( ) ;
2021-07-18 20:53:45 +02:00
if ( UnitWSD : : isUnitTesting ( ) )
{
2021-03-15 15:24:09 +01:00
Server - > stop ( ) ;
Server . reset ( ) ;
2021-07-18 20:53:45 +02:00
}
2017-03-31 21:58:33 +02:00
2021-03-15 15:24:09 +01:00
PrisonerPoll . reset ( ) ;
2021-03-13 20:20:46 +01:00
2021-03-15 15:24:09 +01:00
WebServerPoll . reset ( ) ;
2021-03-13 20:20:46 +01:00
2016-11-16 04:13:22 +01:00
// Terminate child processes
LOG_INF ( " Requesting child processes to terminate. " ) ;
2016-10-16 23:56:25 +02:00
for ( auto & child : NewChildren )
2016-04-17 18:04:23 +02:00
{
2018-05-18 13:00:16 +02:00
child - > terminate ( ) ;
2016-04-17 18:04:23 +02:00
}
2015-12-03 01:15:39 +01:00
2019-11-12 16:37:00 +01:00
NewChildren . clear ( ) ;
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2017-02-06 23:26:38 +01:00
# ifndef KIT_IN_PROCESS
2016-11-16 04:03:11 +01:00
// Wait for forkit process finish.
2017-03-31 16:42:45 +02:00
LOG_INF ( " Waiting for forkit process to exit " ) ;
2017-02-06 23:26:38 +01:00
int status = 0 ;
2017-01-15 23:54:55 +01:00
waitpid ( ForKitProcId , & status , WUNTRACED ) ;
2020-04-02 17:11:36 +02:00
ForKitProcId = - 1 ;
ForKitProc . reset ( ) ;
2017-02-06 23:26:38 +01:00
# endif
2016-04-04 05:40:56 +02:00
wsd: faster jail setup via bind-mount
loolmount now works and supports mounting and
unmounting, plus numerous improvements,
refactoring, logging, etc.. When enabled,
binding improves the jail setup time by anywhere
from 2x to orders of magnitude (in docker, f.e.).
A new config entry mount_jail_tree controls
whether mounting is used or the old method of
linking/copying of jail contents. It is set to
true by default and falls back to linking/copying.
A test mount is done when the setting is enabled,
and if mounting fails, it's disabled to avoid noise.
Temporarily disabled for unit-tests until we can
cleanup lingering mounts after Jenkins aborts our
build job. In a future patch we will have mount/jail
cleanup as part of make.
The network/system files in /etc that need frequent
refreshing are now updated in systemplate to make
their most recent version available in the jails.
These files can change during the course of loolwsd
lifetime, and are unlikely to be updated in
systemplate after installation at all. We link to
them in the systemplate/etc directory, and if that
fails, we copy them before forking each kit
instance to have the latest.
This reworks the approach used to bind-mount the
jails and the templates such that the total is
now down to only three mounts: systemplate, lo, tmp.
As now systemplate and lotemplate are shared, they
must be mounted as readonly, this means that user/
must now be moved into tmp/user/ which is writable.
The mount-points must be recursive, because we mount
lo/ within the mount-point of systemplate (which is
the root of the jail). But because we (re)bind
recursively, and because both systemplate and
lotemplate are mounted for each jails, we need to
make them unbindable, so they wouldn't multiply the
mount-points for each jails (an explosive growth!)
Contrarywise, we don't want the mount-points to
be shared, because we don't expect to add/remove
mounts after a jail is created.
The random temp directory is now created and set
correctly, plus many logging and other improvements.
Change-Id: Iae3fda5e876cf47d2cae6669a87b5b826a8748df
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/92829
Tested-by: Jenkins
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Ashod Nakashian <ashnakash@gmail.com>
2020-04-09 15:02:58 +02:00
JailUtil : : cleanupJails ( ChildRoot ) ;
2018-09-13 18:16:00 +02:00
# endif // !MOBILEAPP
2021-11-30 02:14:10 +01:00
int returnValue = EX_OK ;
UnitWSD : : get ( ) . returnValue ( returnValue ) ;
2022-05-03 13:35:37 +02:00
LOG_INF ( " Process [coolwsd] finished with exit status: " < < returnValue ) ;
2021-11-30 02:14:10 +01:00
2021-10-03 17:01:49 +02:00
// At least on centos7, Poco deadlocks while
// cleaning up its SSL context singleton.
2021-11-30 02:14:10 +01:00
Util : : forcedExit ( returnValue ) ;
2021-10-03 17:01:49 +02:00
2021-11-30 02:14:10 +01:00
return returnValue ;
2017-03-27 21:14:16 +02:00
}
2015-12-29 00:24:29 +01:00
2022-06-02 23:24:38 +02:00
std : : shared_ptr < TerminatingPoll > COOLWSD : : getWebServerPoll ( )
{
return WebServerPoll ;
}
2021-11-18 13:08:14 +01:00
void COOLWSD : : cleanup ( )
2017-03-27 21:14:16 +02:00
{
2021-03-12 04:46:14 +01:00
try
{
2021-03-15 15:24:09 +01:00
Server . reset ( ) ;
wsd: avoid static LOOLWSDServer instance
LOOLWSDServer needs to shutdown its
accept_poll SocketPoll in its destructor,
which may be called after Poco's Logging
subsystem has been destroyed.
Instead of managing the lifetime of
accept_poll member of LOOLWSDServer,
it is safer to manage the lifetime
of LOOLWSDServer itself, and destroy
it in the cleanup stage. This makes
sure that its other members, or indeed
LOOLWSDServer itself, can't have any
late-destoryed objects that can cause
trouble.
The stacktrace for this crash:
terminate called after throwing an instance of 'std::bad_alloc'
what(): std::bad_alloc
Program received signal SIGABRT, Aborted.
__GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
51 ../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
(gdb) bt
#0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
#1 0x00007ffff613f801 in __GI_abort () at abort.c:79
#2 0x00007ffff6d51957 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#3 0x00007ffff6d57ae6 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#4 0x00007ffff6d56b49 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#5 0x00007ffff6d574b8 in __gxx_personality_v0 () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#6 0x00007ffff671f573 in ?? () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#7 0x00007ffff671fad1 in _Unwind_RaiseException () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#8 0x00007ffff6d57d47 in __cxa_throw () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#9 0x00007ffff6d582dc in operator new(unsigned long) () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#10 0x00005555556b6127 in void std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::_M_construct<char*>(char*, char*, std::forward_iterator_tag) [clone .isra.41] ()
#11 0x0000555555986b94 in Poco::Message::Message(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, Poco::Message::Priority) ()
#12 0x000055555585ea49 in SocketPoll::~SocketPoll (this=0x555555d13490 <srv+16>, __in_chrg=<optimized out>) at net/Socket.cpp:145
#13 0x000055555575d794 in TerminatingPoll::~TerminatingPoll (this=0x555555d13490 <srv+16>, __in_chrg=<optimized out>) at ./net/Socket.hpp:832
#14 LOOLWSDServer::AcceptPoll::~AcceptPoll (this=0x555555d13490 <srv+16>, __in_chrg=<optimized out>) at wsd/LOOLWSD.cpp:3766
#15 LOOLWSDServer::~LOOLWSDServer (this=0x555555d13480 <srv>, __in_chrg=<optimized out>) at wsd/LOOLWSD.cpp:3640
#16 0x00007ffff6142041 in __run_exit_handlers (status=0, listp=0x7ffff64ea718 <__exit_funcs>, run_list_atexit=run_list_atexit@entry=true, run_dtors=run_dtors@entry=true) at exit.c:108
#17 0x00007ffff614213a in __GI_exit (status=<optimized out>) at exit.c:139
#18 0x0000555555753658 in LOOLWSD::innerInitialize (this=<optimized out>, self=...) at wsd/LOOLWSD.cpp:1213
#19 0x0000555555789527 in LOOLWSD::initialize (this=<optimized out>, self=...) at wsd/LOOLWSD.hpp:439
#20 0x00005555558e1964 in Poco::Util::Application::run() ()
#21 0x00005555556b6d74 in main (argc=3, argv=0x7fffffffe4f8) at wsd/LOOLWSD.cpp:4286
Change-Id: I28ea6215ce49c752cbb90bc33269ab3b662accf1
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2021-03-13 19:25:10 +01:00
2021-03-15 15:24:09 +01:00
PrisonerPoll . reset ( ) ;
2021-03-13 20:20:46 +01:00
2021-03-15 15:24:09 +01:00
WebServerPoll . reset ( ) ;
2021-03-13 20:20:46 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2021-03-13 20:20:46 +01:00
SavedClipboards . reset ( ) ;
2021-03-12 04:46:14 +01:00
FileServerRequestHandler : : uninitialize ( ) ;
JWTAuth : : cleanup ( ) ;
2017-07-03 04:10:23 +02:00
2018-09-13 18:16:00 +02:00
# if ENABLE_SSL
2021-03-15 15:24:09 +01:00
// Finally, we no longer need SSL.
2021-11-18 13:08:14 +01:00
if ( COOLWSD : : isSSLEnabled ( ) )
2021-03-15 15:24:09 +01:00
{
Poco : : Net : : uninitializeSSL ( ) ;
Poco : : Crypto : : uninitializeCrypto ( ) ;
ssl : : Manager : : uninitializeClientContext ( ) ;
ssl : : Manager : : uninitializeServerContext ( ) ;
}
2018-09-13 18:16:00 +02:00
# endif
# endif
2021-03-13 20:20:46 +01:00
TraceDumper . reset ( ) ;
2021-03-12 04:46:14 +01:00
Socket : : InhibitThreadChecks = true ;
SocketPoll : : InhibitThreadChecks = true ;
2020-01-22 08:52:55 +01:00
2021-03-12 04:46:14 +01:00
// Delete these while the static Admin instance is still alive.
std : : lock_guard < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
DocBrokers . clear ( ) ;
}
catch ( const std : : exception & ex )
{
LOG_ERR ( " Failed to uninitialize: " < < ex . what ( ) ) ;
}
2017-03-27 21:14:16 +02:00
}
2021-11-18 13:08:14 +01:00
int COOLWSD : : main ( const std : : vector < std : : string > & /*args*/ )
2017-03-27 21:14:16 +02:00
{
2020-04-24 09:46:54 +02:00
# if MOBILEAPP && !defined IOS
2021-11-13 22:26:04 +01:00
SigUtil : : resetTerminationFlags ( ) ;
2018-10-15 22:56:04 +02:00
# endif
2017-03-27 21:14:16 +02:00
int returnValue ;
try {
returnValue = innerMain ( ) ;
2021-03-12 04:46:14 +01:00
}
catch ( const std : : exception & e )
{
LOG_FTL ( " Exception: " < < e . what ( ) ) ;
2019-06-21 17:02:00 +02:00
cleanup ( ) ;
2017-04-03 11:39:09 +02:00
throw ;
2017-03-27 21:14:16 +02:00
} catch ( . . . ) {
cleanup ( ) ;
throw ;
}
cleanup ( ) ;
2016-07-18 13:45:36 +02:00
2016-04-09 18:30:48 +02:00
UnitWSD : : get ( ) . returnValue ( returnValue ) ;
2016-04-06 20:50:55 +02:00
2021-11-18 13:08:14 +01:00
LOG_INF ( " Process [coolwsd] finished with exit status: " < < returnValue ) ;
2022-03-13 23:28:31 +01:00
# if CODE_COVERAGE
__gcov_dump ( ) ;
# endif
2016-04-06 20:50:55 +02:00
return returnValue ;
2015-03-18 00:56:15 +01:00
}
2015-03-05 00:14:04 +01:00
2019-02-12 12:16:40 +01:00
# if !MOBILEAPP
2018-09-13 18:16:00 +02:00
2021-11-18 13:08:14 +01:00
std : : vector < std : : shared_ptr < DocumentBroker > > COOLWSD : : getBrokersTestOnly ( )
2019-06-21 12:47:07 +02:00
{
std : : lock_guard < std : : mutex > docBrokersLock ( DocBrokersMutex ) ;
std : : vector < std : : shared_ptr < DocumentBroker > > result ;
2020-06-02 09:44:08 +02:00
result . reserve ( DocBrokers . size ( ) ) ;
2019-06-21 12:47:07 +02:00
for ( auto & brokerIt : DocBrokers )
result . push_back ( brokerIt . second ) ;
return result ;
}
2021-11-18 13:08:14 +01:00
int COOLWSD : : getClientPortNumber ( )
2020-01-17 22:18:42 +01:00
{
return ClientPortNumber ;
}
2021-11-18 13:08:14 +01:00
std : : set < pid_t > COOLWSD : : getKitPids ( )
2017-09-19 20:06:46 +02:00
{
2021-03-26 17:57:08 +01:00
std : : set < pid_t > pids ;
pid_t pid ;
2017-09-19 20:06:46 +02:00
{
std : : unique_lock < std : : mutex > lock ( NewChildrenMutex ) ;
for ( const auto & child : NewChildren )
2021-03-26 17:57:08 +01:00
{
pid = child - > getPid ( ) ;
2022-02-23 02:48:16 +01:00
if ( pid > 0 )
pids . emplace ( pid ) ;
2021-03-26 17:57:08 +01:00
}
2017-09-19 20:06:46 +02:00
}
{
std : : unique_lock < std : : mutex > lock ( DocBrokersMutex ) ;
for ( const auto & it : DocBrokers )
2019-05-03 14:51:49 +02:00
{
2021-03-26 17:57:08 +01:00
pid = it . second - > getPid ( ) ;
2019-05-03 14:51:49 +02:00
if ( pid > 0 )
2021-03-26 17:57:08 +01:00
pids . emplace ( pid ) ;
2019-05-03 14:51:49 +02:00
}
2017-09-19 20:06:46 +02:00
}
return pids ;
}
2017-02-06 15:59:14 +01:00
# if !defined(BUILDING_TESTS) && !defined(KIT_IN_PROCESS)
2016-09-28 21:07:07 +02:00
namespace Util
{
void alertAllUsers ( const std : : string & cmd , const std : : string & kind )
2016-11-17 15:00:05 +01:00
{
alertAllUsers ( " error: cmd= " + cmd + " kind= " + kind ) ;
}
void alertAllUsers ( const std : : string & msg )
2016-09-28 21:07:07 +02:00
{
2016-11-23 04:06:50 +01:00
alertAllUsersInternal ( msg ) ;
2016-09-28 21:07:07 +02:00
}
}
2017-02-06 15:59:14 +01:00
# endif
2016-09-28 21:07:07 +02:00
2018-09-13 18:16:00 +02:00
# endif
2017-03-03 22:18:55 +01:00
void dump_state ( )
{
2017-03-13 00:03:45 +01:00
std : : ostringstream oss ;
wsd: avoid static LOOLWSDServer instance
LOOLWSDServer needs to shutdown its
accept_poll SocketPoll in its destructor,
which may be called after Poco's Logging
subsystem has been destroyed.
Instead of managing the lifetime of
accept_poll member of LOOLWSDServer,
it is safer to manage the lifetime
of LOOLWSDServer itself, and destroy
it in the cleanup stage. This makes
sure that its other members, or indeed
LOOLWSDServer itself, can't have any
late-destoryed objects that can cause
trouble.
The stacktrace for this crash:
terminate called after throwing an instance of 'std::bad_alloc'
what(): std::bad_alloc
Program received signal SIGABRT, Aborted.
__GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
51 ../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
(gdb) bt
#0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
#1 0x00007ffff613f801 in __GI_abort () at abort.c:79
#2 0x00007ffff6d51957 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#3 0x00007ffff6d57ae6 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#4 0x00007ffff6d56b49 in ?? () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#5 0x00007ffff6d574b8 in __gxx_personality_v0 () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#6 0x00007ffff671f573 in ?? () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#7 0x00007ffff671fad1 in _Unwind_RaiseException () from /lib/x86_64-linux-gnu/libgcc_s.so.1
#8 0x00007ffff6d57d47 in __cxa_throw () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#9 0x00007ffff6d582dc in operator new(unsigned long) () from /usr/lib/x86_64-linux-gnu/libstdc++.so.6
#10 0x00005555556b6127 in void std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >::_M_construct<char*>(char*, char*, std::forward_iterator_tag) [clone .isra.41] ()
#11 0x0000555555986b94 in Poco::Message::Message(std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > const&, Poco::Message::Priority) ()
#12 0x000055555585ea49 in SocketPoll::~SocketPoll (this=0x555555d13490 <srv+16>, __in_chrg=<optimized out>) at net/Socket.cpp:145
#13 0x000055555575d794 in TerminatingPoll::~TerminatingPoll (this=0x555555d13490 <srv+16>, __in_chrg=<optimized out>) at ./net/Socket.hpp:832
#14 LOOLWSDServer::AcceptPoll::~AcceptPoll (this=0x555555d13490 <srv+16>, __in_chrg=<optimized out>) at wsd/LOOLWSD.cpp:3766
#15 LOOLWSDServer::~LOOLWSDServer (this=0x555555d13480 <srv>, __in_chrg=<optimized out>) at wsd/LOOLWSD.cpp:3640
#16 0x00007ffff6142041 in __run_exit_handlers (status=0, listp=0x7ffff64ea718 <__exit_funcs>, run_list_atexit=run_list_atexit@entry=true, run_dtors=run_dtors@entry=true) at exit.c:108
#17 0x00007ffff614213a in __GI_exit (status=<optimized out>) at exit.c:139
#18 0x0000555555753658 in LOOLWSD::innerInitialize (this=<optimized out>, self=...) at wsd/LOOLWSD.cpp:1213
#19 0x0000555555789527 in LOOLWSD::initialize (this=<optimized out>, self=...) at wsd/LOOLWSD.hpp:439
#20 0x00005555558e1964 in Poco::Util::Application::run() ()
#21 0x00005555556b6d74 in main (argc=3, argv=0x7fffffffe4f8) at wsd/LOOLWSD.cpp:4286
Change-Id: I28ea6215ce49c752cbb90bc33269ab3b662accf1
Signed-off-by: Ashod Nakashian <ashod.nakashian@collabora.co.uk>
2021-03-13 19:25:10 +01:00
2021-03-15 15:24:09 +01:00
if ( Server )
Server - > dumpState ( oss ) ;
2017-03-13 00:03:45 +01:00
const std : : string msg = oss . str ( ) ;
2017-05-12 04:01:28 +02:00
fprintf ( stderr , " %s \n " , msg . c_str ( ) ) ;
2017-03-13 00:03:45 +01:00
LOG_TRC ( msg ) ;
2017-03-03 22:18:55 +01:00
}
2022-06-14 04:17:40 +02:00
void forwardSigUsr2 ( )
{
LOG_TRC ( " forwardSigUsr2 " ) ;
Util : : assertIsLocked ( DocBrokersMutex ) ;
std : : lock_guard < std : : mutex > newChildLock ( NewChildrenMutex ) ;
# if !MOBILEAPP
# ifndef KIT_IN_PROCESS
if ( COOLWSD : : ForKitProcId > 0 )
{
LOG_INF ( " Sending SIGUSR2 to forkit " < < COOLWSD : : ForKitProcId ) ;
: : kill ( COOLWSD : : ForKitProcId , SIGUSR2 ) ;
}
# endif
# endif
for ( const auto & child : NewChildren )
{
if ( child & & child - > getPid ( ) > 0 )
{
LOG_INF ( " Sending SIGUSR2 to child " < < child - > getPid ( ) ) ;
: : kill ( child - > getPid ( ) , SIGUSR2 ) ;
}
}
for ( const auto & pair : DocBrokers )
{
std : : shared_ptr < DocumentBroker > docBroker = pair . second ;
if ( docBroker )
{
LOG_INF ( " Sending SIGUSR2 to docBroker " < < docBroker - > getPid ( ) ) ;
: : kill ( docBroker - > getPid ( ) , SIGUSR2 ) ;
}
}
}
Add an initial libfuzzer based fuzzer
- target ClientSession::_handleInput(), since crashing there would bring
down the whole loolwsd (not just a kit process), and it deals with
input from untrusted users (browsers)
- add a --enable-fuzzers configure switch to build with
-fsanitize=fuzzer (compared to normal sanitizers build, this is the only
special flag needed)
- configuring other sanitizers is not done automatically, either use
--with-sanitizer=... or the environment variables from LODE's sanitizer
config
- run the actual fuzzer like this:
./clientsession_fuzzer -max_len=16384 fuzzer/data/
- note that at least openSUSE Leap 15.1 sadly ships with a clang with
libfuzzer static libs removed from the package, so you need a
self-built clang to run the fuzzer (either manual build or one from
LODE)
- <https://chromium.googlesource.com/chromium/src/testing/libfuzzer/+/refs/heads/master/efficient_fuzzing.md#execution-speed>
suggests that "You should aim for at least 1,000 exec/s from your fuzz
target locally" (i.e. one run should not take more than 1 ms), so try
this minimal approach first. The alternative would be to start from the
existing loolwsd_fuzzer binary, then step by step cut it down to not
fork(), not do any network traffic, etc -- till it's fast enough that
the fuzzer can find interesting input
- the various configurations start to be really complex (the matrix is
just very large), so try to use Util::isFuzzing() for fuzzer-specific
changes (this is what core.git does as well), and only resort to ifdefs
for the Util::isFuzzing() itself
Change-Id: I72dc1193b34c93eacb5d8e39cef42387d42bd72f
Reviewed-on: https://gerrit.libreoffice.org/c/online/+/89226
Tested-by: Jenkins CollaboraOffice <jenkinscollaboraoffice@gmail.com>
Reviewed-by: Michael Meeks <michael.meeks@collabora.com>
2020-02-21 15:52:20 +01:00
// Avoid this in the Util::isFuzzing() case because libfuzzer defines its own main().
# if !MOBILEAPP && !LIBFUZZER
2018-09-13 18:16:00 +02:00
2021-11-18 13:08:14 +01:00
POCO_SERVER_MAIN ( COOLWSD )
2015-03-05 00:14:04 +01:00
2018-09-13 18:16:00 +02:00
# endif
2018-09-05 14:11:05 +02:00
2015-03-05 00:14:04 +01:00
/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
