/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4; fill-column: 100 -*- */ /* * This file is part of the LibreOffice project. * * This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ #include "config.h" #include "ClientSession.hpp" #include #include #include #include #include "common/Common.hpp" #include "DocumentBroker.hpp" #include "LOOLWSD.hpp" #include "common/Log.hpp" #include "common/Protocol.hpp" #include "common/Session.hpp" #include "common/Util.hpp" #include "common/Unit.hpp" using namespace LOOLProtocol; using Poco::Path; using Poco::StringTokenizer; ClientSession::ClientSession(const std::string& id, const std::shared_ptr& docBroker, const Poco::URI& uriPublic, const bool readOnly) : Session("ToClient-" + id, id, readOnly), _docBroker(docBroker), _uriPublic(uriPublic), _isDocumentOwner(false), _isAttached(false), _isViewLoaded(false) { const size_t curConnections = ++LOOLWSD::NumConnections; LOG_INF("ClientSession ctor [" << getName() << "], current number of connections: " << curConnections); } ClientSession::~ClientSession() { const size_t curConnections = --LOOLWSD::NumConnections; LOG_INF("~ClientSession dtor [" << getName() << "], current number of connections: " << curConnections); } void ClientSession::handleIncomingMessage(SocketDisposition &disposition) { if (UnitWSD::get().filterHandleRequest( UnitWSD::TestRequest::Client, disposition, *this)) return; Session::handleIncomingMessage(disposition); } bool ClientSession::_handleInput(const char *buffer, int length) { LOG_TRC(getName() << ": handling incoming [" << getAbbreviatedMessage(buffer, length) << "]."); const std::string firstLine = getFirstLine(buffer, length); const auto tokens = LOOLProtocol::tokenize(firstLine.data(), firstLine.size()); auto docBroker = getDocumentBroker(); if (!docBroker) { LOG_ERR("No DocBroker found. Terminating session " << getName()); return false; } LOOLWSD::dumpIncomingTrace(docBroker->getJailId(), getId(), firstLine); if (LOOLProtocol::tokenIndicatesUserInteraction(tokens[0])) { // Keep track of timestamps of incoming client messages that indicate user activity. updateLastActivityTime(); docBroker->updateLastActivityTime(); } if (tokens[0] == "loolclient") { const auto versionTuple = ParseVersion(tokens[1]); if (std::get<0>(versionTuple) != ProtocolMajorVersionNumber || std::get<1>(versionTuple) != ProtocolMinorVersionNumber) { sendTextFrame("error: cmd=loolclient kind=badprotocolversion"); return false; } // Send LOOL version information std::string version, hash; Util::getVersionInfo(version, hash); std::string versionStr = "{ \"Version\": \"" + version + "\", " + "\"Hash\": \"" + hash + "\", " + "\"Protocol\": \"" + GetProtocolVersion() + "\" }"; sendTextFrame("loolserver " + versionStr); // Send LOKit version information sendTextFrame("lokitversion " + LOOLWSD::LOKitVersion); return true; } if (tokens[0] == "load") { if (_docURL != "") { sendTextFrame("error: cmd=load kind=docalreadyloaded"); return false; } return loadDocument(buffer, length, tokens, docBroker); } else if (tokens[0] != "canceltiles" && tokens[0] != "clientzoom" && tokens[0] != "clientvisiblearea" && tokens[0] != "commandvalues" && tokens[0] != "closedocument" && tokens[0] != "downloadas" && tokens[0] != "getchildid" && tokens[0] != "gettextselection" && tokens[0] != "paste" && tokens[0] != "insertfile" && tokens[0] != "key" && tokens[0] != "mouse" && tokens[0] != "partpagerectangles" && tokens[0] != "ping" && tokens[0] != "renderfont" && tokens[0] != "requestloksession" && tokens[0] != "resetselection" && tokens[0] != "save" && tokens[0] != "saveas" && tokens[0] != "savetostorage" && tokens[0] != "selectgraphic" && tokens[0] != "selecttext" && tokens[0] != "setclientpart" && tokens[0] != "setpage" && tokens[0] != "status" && tokens[0] != "tile" && tokens[0] != "tilecombine" && tokens[0] != "uno" && tokens[0] != "useractive" && tokens[0] != "userinactive") { sendTextFrame("error: cmd=" + tokens[0] + " kind=unknown"); return false; } else if (_docURL == "") { sendTextFrame("error: cmd=" + tokens[0] + " kind=nodocloaded"); return false; } else if (tokens[0] == "canceltiles") { docBroker->cancelTileRequests(shared_from_this()); return true; } else if (tokens[0] == "commandvalues") { return getCommandValues(buffer, length, tokens, docBroker); } else if (tokens[0] == "closedocument") { // If this session is the owner of the file & 'EnableOwnerTermination' feature // is turned on by WOPI, let it close all sessions if (_isDocumentOwner && _wopiFileInfo && _wopiFileInfo->_enableOwnerTermination) { LOG_DBG("Session [" << getId() << "] requested owner termination"); docBroker->closeDocument("ownertermination"); } else if (docBroker->isDocumentChangedInStorage()) { LOG_DBG("Document marked as changed in storage and user [" << getUserId() << ", " << getUserName() << "] wants to refresh the document for all."); docBroker->closeDocument("documentconflict " + getUserName()); } return true; } else if (tokens[0] == "partpagerectangles") { // We don't support partpagerectangles any more, will be removed in the // next version sendTextFrame("partpagerectangles: "); return true; } else if (tokens[0] == "ping") { std::string count = std::to_string(docBroker->getRenderedTileCount()); sendTextFrame("pong rendercount=" + count); return true; } else if (tokens[0] == "renderfont") { return sendFontRendering(buffer, length, tokens, docBroker); } else if (tokens[0] == "status") { assert(firstLine.size() == static_cast(length)); return forwardToChild(firstLine, docBroker); } else if (tokens[0] == "tile") { return sendTile(buffer, length, tokens, docBroker); } else if (tokens[0] == "tilecombine") { return sendCombinedTiles(buffer, length, tokens, docBroker); } else if (tokens[0] == "save") { int dontTerminateEdit = 1; int dontSaveIfUnmodified = 1; getTokenInteger(tokens[1], "dontTerminateEdit", dontTerminateEdit); getTokenInteger(tokens[2], "dontSaveIfUnmodified", dontSaveIfUnmodified); docBroker->sendUnoSave(getId(), dontTerminateEdit != 0, dontSaveIfUnmodified != 0); } else if (tokens[0] == "savetostorage") { int force = 0; getTokenInteger(tokens[1], "force", force); if (docBroker->saveToStorage(getId(), true, "" /* This is irrelevant when success is true*/, true)) { docBroker->broadcastMessage("commandresult: { \"command\": \"savetostorage\", \"success\": true }"); } } else { if (!filterMessage(firstLine)) { const std::string dummyFrame = "dummymsg"; return forwardToChild(dummyFrame, docBroker); } else if (tokens[0] != "requestloksession") { return forwardToChild(std::string(buffer, length), docBroker); } else { assert(tokens[0] == "requestloksession"); return true; } } return false; } bool ClientSession::loadDocument(const char* /*buffer*/, int /*length*/, const std::vector& tokens, const std::shared_ptr& docBroker) { if (tokens.size() < 2) { // Failed loading ends connection. sendTextFrame("error: cmd=load kind=syntax"); return false; } LOG_INF("Requesting document load from child."); try { std::string timestamp; int loadPart = -1; parseDocOptions(tokens, loadPart, timestamp); std::ostringstream oss; oss << "load"; oss << " url=" << docBroker->getPublicUri().toString(); if (!_userId.empty() && !_userName.empty()) { std::string encodedUserId; Poco::URI::encode(_userId, "", encodedUserId); oss << " authorid=" << encodedUserId; std::string encodedUserName; Poco::URI::encode(_userName, "", encodedUserName); oss << " author=" << encodedUserName; } if (!_userExtraInfo.empty()) { std::string encodedUserExtraInfo; Poco::URI::encode(_userExtraInfo, "", encodedUserExtraInfo); oss << " authorextrainfo=" << encodedUserExtraInfo; } oss << " readonly=" << isReadOnly(); if (loadPart >= 0) { oss << " part=" << loadPart; } if (_haveDocPassword) { oss << " password=" << _docPassword; } if (!_lang.empty()) { oss << " lang=" << _lang; } if (!_docOptions.empty()) { oss << " options=" << _docOptions; } return forwardToChild(oss.str(), docBroker); } catch (const Poco::SyntaxException&) { sendTextFrame("error: cmd=load kind=uriinvalid"); } return false; } bool ClientSession::getCommandValues(const char *buffer, int length, const std::vector& tokens, const std::shared_ptr& docBroker) { std::string command; if (tokens.size() != 2 || !getTokenString(tokens[1], "command", command)) { return sendTextFrame("error: cmd=commandvalues kind=syntax"); } std::string cmdValues; if (docBroker->tileCache().getTextFile("cmdValues" + command + ".txt", cmdValues)) { return sendTextFrame(cmdValues); } return forwardToChild(std::string(buffer, length), docBroker); } bool ClientSession::sendFontRendering(const char *buffer, int length, const std::vector& tokens, const std::shared_ptr& docBroker) { std::string font, text; if (tokens.size() < 2 || !getTokenString(tokens[1], "font", font)) { return sendTextFrame("error: cmd=renderfont kind=syntax"); } getTokenString(tokens[2], "char", text); const std::string response = "renderfont: " + Poco::cat(std::string(" "), tokens.begin() + 1, tokens.end()) + "\n"; std::vector output; output.resize(response.size()); std::memcpy(output.data(), response.data(), response.size()); std::unique_ptr cachedRendering = docBroker->tileCache().lookupCachedFile(font+text, "font"); if (cachedRendering && cachedRendering->is_open()) { cachedRendering->seekg(0, std::ios_base::end); size_t pos = output.size(); std::streamsize size = cachedRendering->tellg(); output.resize(pos + size); cachedRendering->seekg(0, std::ios_base::beg); cachedRendering->read(output.data() + pos, size); cachedRendering->close(); return sendBinaryFrame(output.data(), output.size()); } return forwardToChild(std::string(buffer, length), docBroker); } bool ClientSession::sendTile(const char * /*buffer*/, int /*length*/, const std::vector& tokens, const std::shared_ptr& docBroker) { try { auto tileDesc = TileDesc::parse(tokens); docBroker->handleTileRequest(tileDesc, shared_from_this()); } catch (const std::exception& exc) { LOG_ERR("Failed to process tile command: " << exc.what()); return sendTextFrame("error: cmd=tile kind=invalid"); } return true; } bool ClientSession::sendCombinedTiles(const char* /*buffer*/, int /*length*/, const std::vector& tokens, const std::shared_ptr& docBroker) { try { auto tileCombined = TileCombined::parse(tokens); docBroker->handleTileCombinedRequest(tileCombined, shared_from_this()); } catch (const std::exception& exc) { LOG_ERR("Failed to process tilecombine command: " << exc.what()); return sendTextFrame("error: cmd=tile kind=invalid"); } return true; } bool ClientSession::forwardToChild(const std::string& message, const std::shared_ptr& docBroker) { return docBroker->forwardToChild(getId(), message); } bool ClientSession::filterMessage(const std::string& message) const { bool allowed = true; StringTokenizer tokens(message, " ", StringTokenizer::TOK_IGNORE_EMPTY | StringTokenizer::TOK_TRIM); // Set allowed flag to false depending on if particular WOPI properties are set if (tokens[0] == "downloadas") { std::string id; if (getTokenString(tokens[2], "id", id)) { if (id == "print" && _wopiFileInfo && _wopiFileInfo->_disablePrint) { allowed = false; LOG_WRN("WOPI host has disabled print for this session"); } else if (id == "export" && _wopiFileInfo && _wopiFileInfo->_disableExport) { allowed = false; LOG_WRN("WOPI host has disabled export for this session"); } } else { allowed = false; LOG_WRN("No value of id in downloadas message"); } } else if (tokens[0] == "gettextselection") { if (_wopiFileInfo && _wopiFileInfo->_disableCopy) { allowed = false; LOG_WRN("WOPI host has disabled copying from the document"); } } else if (isReadOnly()) { // By default, don't allow anything allowed = false; if (tokens[0] == "userinactive" || tokens[0] == "useractive" || tokens[0] == "saveas") { allowed = true; } else if (tokens[0] == "uno") { if (tokens[1] == ".uno:ExecuteSearch") { allowed = true; } } } return allowed; } void ClientSession::setReadOnly() { Session::setReadOnly(); // Also inform the client sendTextFrame("perm: readonly"); } int ClientSession::getPollEvents(std::chrono::steady_clock::time_point /* now */, int & /* timeoutMaxMs */) { LOG_TRC(getName() << " ClientSession has " << _senderQueue.size() << " write message(s) queued."); int events = POLLIN; if (_senderQueue.size()) events |= POLLOUT; return events; } void ClientSession::performWrites() { LOG_DBG(getName() << " ClientSession: performing writes"); std::shared_ptr item; if (_senderQueue.dequeue(item)) { try { const std::vector& data = item->data(); if (item->isBinary()) { Session::sendBinaryFrame(data.data(), data.size()); } else { Session::sendTextFrame(data.data(), data.size()); } } catch (const std::exception& ex) { LOG_ERR("Failed to send message " << item->abbr() << " to " << getName() << ": " << ex.what()); } } LOG_DBG(getName() << " ClientSession: performed write"); } bool ClientSession::handleKitToClientMessage(const char* buffer, const int length) { const auto payload = std::make_shared(buffer, length, Message::Dir::Out); LOG_TRC(getName() << ": handling kit-to-client [" << payload->abbr() << "]."); const std::string& firstLine = payload->firstLine(); const auto docBroker = _docBroker.lock(); if (!docBroker) { LOG_ERR("No DocBroker to handle kit-to-client message: " << firstLine); return false; } LOOLWSD::dumpOutgoingTrace(docBroker->getJailId(), getId(), firstLine); const auto& tokens = payload->tokens(); if (tokens[0] == "unocommandresult:") { const std::string stringMsg(buffer, length); LOG_INF(getName() << ": Command: " << stringMsg); const auto index = stringMsg.find_first_of('{'); if (index != std::string::npos) { const std::string stringJSON = stringMsg.substr(index); Poco::JSON::Parser parser; const auto parsedJSON = parser.parse(stringJSON); const auto& object = parsedJSON.extract(); if (object->get("commandName").toString() == ".uno:Save") { const bool success = object->get("success").toString() == "true"; std::string result; if (object->has("result")) { const auto parsedResultJSON = object->get("result"); const auto& resultObj = parsedResultJSON.extract(); if (resultObj->get("type").toString() == "string") result = resultObj->get("value").toString(); } // Save to Storage and log result. std::string id = getId(); docBroker->saveToStorage(id, success, result); forwardToClient(payload); return true; } } else { LOG_WRN("Expected json unocommandresult. Ignoring: " << stringMsg); } } else if (tokens[0] == "error:") { std::string errorCommand; std::string errorKind; if (getTokenString(tokens[1], "cmd", errorCommand) && getTokenString(tokens[2], "kind", errorKind) ) { if (errorCommand == "load") { if (errorKind == "passwordrequired:to-view" || errorKind == "passwordrequired:to-modify" || errorKind == "wrongpassword") { forwardToClient(payload); LOG_WRN("Document load failed: " << errorKind); return false; } } } } else if (tokens[0] == "curpart:" && tokens.size() == 2) { //TODO: Should forward to client? int curPart; return getTokenInteger(tokens[1], "part", curPart); } else if (tokens.size() == 2 && tokens[0] == "saveas:") { std::string url; if (!getTokenString(tokens[1], "url", url)) { LOG_ERR("Bad syntax for: " << firstLine); return false; } // Save-as completed, inform the ClientSession. const std::string filePrefix("file:///"); if (url.find(filePrefix) == 0) { // Rewrite file:// URLs, as they are visible to the outside world. const Path path(docBroker->getJailRoot(), url.substr(filePrefix.length())); if (Poco::File(path).exists()) { url = filePrefix + path.toString().substr(1); } else { // Blank for failure. LOG_DBG("SaveAs produced no output, producing blank url."); url.clear(); } } if (_saveAsSocket) { Poco::URI resultURL(url); LOG_TRC("Save-as URL: " << resultURL.toString()); // TODO: Send back error when there is no output. if (!resultURL.getPath().empty()) { const std::string mimeType = "application/octet-stream"; std::string encodedFilePath; Poco::URI::encode(resultURL.getPath(), "", encodedFilePath); LOG_TRC("Sending file: " << encodedFilePath); Poco::Net::HTTPResponse response; HttpHelper::sendFile(_saveAsSocket, encodedFilePath, mimeType, response); } // Conversion is done, cleanup this fake session. LOG_TRC("Removing save-as ClientSession after conversion."); // Remove us. std::string id = getId(); docBroker->removeSession(id); // Now terminate. docBroker->stop(); } return true; } else if (tokens.size() == 2 && tokens[0] == "statechanged:") { StringTokenizer stateTokens(tokens[1], "=", StringTokenizer::TOK_IGNORE_EMPTY | StringTokenizer::TOK_TRIM); if (stateTokens.count() == 2 && stateTokens[0] == ".uno:ModifiedStatus") { docBroker->setModified(stateTokens[1] == "true"); } } if (!_isDocPasswordProtected) { if (tokens[0] == "tile:") { assert(false && "Tile traffic should go through the DocumentBroker-LoKit WS."); } else if (tokens[0] == "status:") { setViewLoaded(); docBroker->setLoaded(); // Forward the status response to the client. return forwardToClient(payload); } else if (tokens[0] == "commandvalues:") { const std::string stringMsg(buffer, length); const auto index = stringMsg.find_first_of('{'); if (index != std::string::npos) { const std::string stringJSON = stringMsg.substr(index); Poco::JSON::Parser parser; const auto result = parser.parse(stringJSON); const auto& object = result.extract(); const std::string commandName = object->has("commandName") ? object->get("commandName").toString() : ""; if (commandName == ".uno:CharFontName" || commandName == ".uno:StyleApply") { // other commands should not be cached docBroker->tileCache().saveTextFile(stringMsg, "cmdValues" + commandName + ".txt"); } } } else if (tokens[0] == "invalidatetiles:") { assert(firstLine.size() == static_cast(length)); docBroker->invalidateTiles(firstLine); } else if (tokens[0] == "invalidatecursor:") { assert(firstLine.size() == static_cast(length)); StringTokenizer firstLineTokens(firstLine, " ", StringTokenizer::TOK_IGNORE_EMPTY | StringTokenizer::TOK_TRIM); int x = 0, y = 0, w = 0, h = 0; if (firstLineTokens.count() > 2 && stringToInteger(firstLineTokens[1], x) && stringToInteger(firstLineTokens[2], y)) { if (firstLineTokens.count() > 3) { stringToInteger(firstLineTokens[3], w); stringToInteger(firstLineTokens[4], h); } docBroker->invalidateCursor(x, y, w, h); } else { LOG_ERR("Unable to parse " << firstLine); } } else if (tokens[0] == "renderfont:") { std::string font, text; if (tokens.size() < 3 || !getTokenString(tokens[1], "font", font)) { LOG_ERR("Bad syntax for: " << firstLine); return false; } getTokenString(tokens[2], "char", text); assert(firstLine.size() < static_cast(length)); docBroker->tileCache().saveRendering(font+text, "font", buffer + firstLine.size() + 1, length - firstLine.size() - 1); return forwardToClient(payload); } } else { LOG_INF("Ignoring notification on password protected document: " << firstLine); } // Forward everything else. return forwardToClient(payload); } bool ClientSession::forwardToClient(const std::shared_ptr& payload) { const auto& message = payload->abbr(); if (isCloseFrame()) { LOG_TRC(getName() << ": peer began the closing handshake. Dropping forward message [" << message << "]."); return true; } enqueueSendMessage(payload); return true; } std::string ClientSession::getAccessToken() const { std::string accessToken; Poco::URI::QueryParameters queryParams = _uriPublic.getQueryParameters(); for (auto& param: queryParams) { if (param.first == "access_token") return param.second; } return std::string(); } void ClientSession::onDisconnect() { LOG_INF(getName() << " Disconnected, current number of connections: " << LOOLWSD::NumConnections); const auto docBroker = getDocumentBroker(); LOG_CHECK_RET(docBroker && "Null DocumentBroker instance", ); docBroker->assertCorrectThread(); const auto docKey = docBroker->getDocKey(); try { // Connection terminated. Destroy session. LOG_DBG(getName() << " on docKey [" << docKey << "] terminated. Cleaning up."); // We issue a force-save when last editable (non-readonly) session is going away // and defer destroying the last session and the docBroker. std::string id = getId(); docBroker->removeSession(id, true); } catch (const UnauthorizedRequestException& exc) { LOG_ERR("Error in client request handler: " << exc.toString()); const std::string status = "error: cmd=internal kind=unauthorized"; LOG_TRC("Sending to Client [" << status << "]."); sendMessage(status); } catch (const std::exception& exc) { LOG_ERR("Error in client request handler: " << exc.what()); } try { if (isCloseFrame()) { LOG_TRC("Normal close handshake."); // Client initiated close handshake // respond with close frame shutdown(); } else if (!ShutdownRequestFlag) { // something wrong, with internal exceptions LOG_TRC("Abnormal close handshake."); closeFrame(); shutdown(WebSocketHandler::StatusCodes::ENDPOINT_GOING_AWAY); } else { LOG_TRC("Server recycling."); closeFrame(); shutdown(WebSocketHandler::StatusCodes::ENDPOINT_GOING_AWAY); } } catch (const std::exception& exc) { LOG_WRN(getName() << ": Exception while closing socket for docKey [" << docKey << "]: " << exc.what()); } } void ClientSession::dumpState(std::ostream& os) { Session::dumpState(os); os << "\t\tisReadOnly: " << isReadOnly() << "\n\t\tisDocumentOwner: " << _isDocumentOwner << "\n\t\tisAttached: " << _isAttached << "\n"; _senderQueue.dumpState(os); } /* vim:set shiftwidth=4 softtabstop=4 expandtab: */