2b20e4050d
assert: invalid utf-8 - check Message::detectType() #3 0x00007fce7ae57fd6 in __GI___assert_fail at ./net/WebSocketHandler.hpp", #4 0x0000558bd2790231 in WebSocketHandler::sendFrame at ./net/WebSocketHandler.hpp:748 #5 0x0000558bd2851202 in WebSocketHandler::sendMessage (flush=false, code=WSOpCode::Text, len=22118, data=0x7fce5c227b50 "child-045 setclipboard\napplication/x-openoffice-embed-source-xml;windows_formatname=\"Star Embed Source (XML)\"\n1370\nPK\003\004\024", this=0x7fce6c003340) at ./net/WebSocketHandler.hpp:641 #6 WebSocketHandler::sendTextMessage (flush=false, len=22118, ...) at ./net/WebSocketHandler.hpp:619 #7 WebSocketHandler::sendMessage (msg="child-045 setclipboard\nappl...) at ./net/WebSocketHandler.hpp:613 #8 WSProcess::sendTextFrame (this=0x7fce6c001300, data="child-045 setclipboard\nap...) at wsd/COOLWSD.hpp:142 #9 0x0000558bd27d5678 in DocumentBroker::forwardToChild (this=this@entry=0x7fce64027940, viewId="045", message="setclipboard\n...) at /usr/include/c++/9/bits/shared_ptr_base.h:1020 #10 0x0000558bd2899d50 in ClientSession::handleClipboardRequest (this=0x7fce64027dc0, type=type@entry=DocumentBroker::CLIP_REQUEST_SET, ...) at ./common/Session.hpp:76 #11 0x0000558bd27e0999 in DocumentBroker::handleClipboardRequest (this=0x7fce64027940, type=DocumentBroker::CLIP_REQUEST_SET, ...) at /usr/include/c++/9/bits/shared_ptr_base.h:1020 #12 0x0000558bd2847b8b in ClientRequestDispatcher::handleClipboardRequest(...) at /usr/include/c++/9/bits/shared_ptr_base.h:1020 Change-Id: I406eee0ac3a47986fdd9511e674c9228d1994d38 Signed-off-by: Michael Meeks <michael.meeks@collabora.com>
611 lines
19 KiB
C++
611 lines
19 KiB
C++
/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4; fill-column: 100 -*- */
|
|
/*
|
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
*/
|
|
|
|
#pragma once
|
|
|
|
#include <algorithm>
|
|
#include <atomic>
|
|
#include <chrono>
|
|
#include <cstdio>
|
|
#include <map>
|
|
#include <set>
|
|
#include <unordered_map>
|
|
#include <unordered_set>
|
|
#include <string>
|
|
#include <utility>
|
|
|
|
#include <signal.h>
|
|
|
|
#include <Poco/Path.h>
|
|
#include <Poco/Util/AbstractConfiguration.h>
|
|
#include <Poco/Util/OptionSet.h>
|
|
#include <Poco/Util/ServerApplication.h>
|
|
|
|
#include "Util.hpp"
|
|
#include "FileUtil.hpp"
|
|
#include "RequestDetails.hpp"
|
|
#include "WebSocketHandler.hpp"
|
|
#include "QuarantineUtil.hpp"
|
|
|
|
class ChildProcess;
|
|
class TraceFileWriter;
|
|
class DocumentBroker;
|
|
class ClipboardCache;
|
|
|
|
std::shared_ptr<ChildProcess> getNewChild_Blocks(unsigned mobileAppDocId = 0);
|
|
|
|
// A WSProcess object in the WSD process represents a descendant process, either the direct child
|
|
// process ForKit or a grandchild Kit process, with which the WSD process communicates through a
|
|
// WebSocket.
|
|
class WSProcess
|
|
{
|
|
public:
|
|
/// @param pid is the process ID.
|
|
/// @param socket is the underlying Socket to the process.
|
|
WSProcess(const std::string& name,
|
|
const pid_t pid,
|
|
const std::shared_ptr<StreamSocket>& socket,
|
|
std::shared_ptr<WebSocketHandler> handler) :
|
|
|
|
_name(name),
|
|
_pid(pid),
|
|
_ws(std::move(handler)),
|
|
_socket(socket)
|
|
{
|
|
LOG_INF(_name << " ctor [" << _pid << "].");
|
|
}
|
|
|
|
|
|
WSProcess(WSProcess&& other) = delete;
|
|
|
|
const WSProcess& operator=(WSProcess&& other) = delete;
|
|
|
|
virtual ~WSProcess()
|
|
{
|
|
LOG_DBG('~' << _name << " dtor [" << _pid << "].");
|
|
|
|
if (_pid <= 0)
|
|
return;
|
|
|
|
terminate();
|
|
|
|
// No need for the socket anymore.
|
|
_ws.reset();
|
|
_socket.reset();
|
|
}
|
|
|
|
/// Let the child close a nice way.
|
|
void close()
|
|
{
|
|
if (_pid < 0)
|
|
return;
|
|
|
|
try
|
|
{
|
|
LOG_DBG("Closing ChildProcess [" << _pid << "].");
|
|
|
|
// Request the child to exit
|
|
if (isAlive())
|
|
{
|
|
LOG_DBG("Stopping ChildProcess [" << _pid << "] by sending 'exit' command.");
|
|
sendTextFrame("exit");
|
|
}
|
|
|
|
// Shutdown the socket.
|
|
if (_ws)
|
|
_ws->shutdown();
|
|
}
|
|
catch (const std::exception& ex)
|
|
{
|
|
LOG_ERR("Error while closing child process: " << ex.what());
|
|
}
|
|
|
|
_pid = -1; // Detach from child.
|
|
}
|
|
|
|
/// Kill or abandon the child.
|
|
void terminate()
|
|
{
|
|
if (_pid < 0)
|
|
return;
|
|
|
|
#if !MOBILEAPP
|
|
if (::kill(_pid, 0) == 0)
|
|
{
|
|
LOG_INF("Killing child [" << _pid << "].");
|
|
#if CODE_COVERAGE
|
|
constexpr auto signal = SIGTERM;
|
|
#else
|
|
constexpr auto signal = SIGKILL;
|
|
#endif
|
|
if (!SigUtil::killChild(_pid, signal))
|
|
{
|
|
LOG_ERR("Cannot terminate lokit [" << _pid << "]. Abandoning.");
|
|
}
|
|
}
|
|
#else
|
|
// What to do? Throw some unique exception that the outermost call in the thread catches and
|
|
// exits from the thread?
|
|
#endif
|
|
_pid = -1;
|
|
}
|
|
|
|
pid_t getPid() const { return _pid; }
|
|
|
|
/// Send a text payload to the child-process WS.
|
|
bool sendTextFrame(const std::string& data)
|
|
{
|
|
return sendFrame(data, false);
|
|
}
|
|
|
|
/// Send a payload to the child-process WS.
|
|
bool sendFrame(const std::string& data, bool binary = false)
|
|
{
|
|
try
|
|
{
|
|
if (_ws)
|
|
{
|
|
LOG_TRC("Send to " << _name << " message: [" << COOLProtocol::getAbbreviatedMessage(data) << "].");
|
|
_ws->sendMessage(data.c_str(), data.size(), (binary ? WSOpCode::Binary : WSOpCode::Text), false);
|
|
return true;
|
|
}
|
|
}
|
|
catch (const std::exception& exc)
|
|
{
|
|
LOG_ERR("Failed to send " << _name << " [" << _pid << "] data [" <<
|
|
COOLProtocol::getAbbreviatedMessage(data) << "] due to: " << exc.what());
|
|
throw;
|
|
}
|
|
|
|
LOG_WRN("No socket to " << _name << " to send [" << COOLProtocol::getAbbreviatedMessage(data) << ']');
|
|
return false;
|
|
}
|
|
|
|
/// Check whether this child is alive and socket not in error.
|
|
/// Note: zombies will show as alive, and sockets have waiting
|
|
/// time after the other end-point closes. So this isn't accurate.
|
|
virtual bool isAlive() const
|
|
{
|
|
#if !MOBILEAPP
|
|
try
|
|
{
|
|
return _pid > 1 && _ws && ::kill(_pid, 0) == 0;
|
|
}
|
|
catch (const std::exception&)
|
|
{
|
|
}
|
|
|
|
return false;
|
|
#else
|
|
return _pid > 1;
|
|
#endif
|
|
}
|
|
|
|
protected:
|
|
std::shared_ptr<WebSocketHandler> getWSHandler() const { return _ws; }
|
|
std::shared_ptr<Socket> getSocket() const { return _socket; };
|
|
|
|
private:
|
|
std::string _name;
|
|
pid_t _pid;
|
|
std::shared_ptr<WebSocketHandler> _ws;
|
|
std::shared_ptr<Socket> _socket;
|
|
};
|
|
|
|
#if !MOBILEAPP
|
|
|
|
class ForKitProcWSHandler : public WebSocketHandler
|
|
{
|
|
public:
|
|
ForKitProcWSHandler(const std::weak_ptr<StreamSocket>& socket,
|
|
const Poco::Net::HTTPRequest& request)
|
|
: WebSocketHandler(socket.lock(), request)
|
|
{
|
|
}
|
|
|
|
virtual void handleMessage(const std::vector<char>& data) override;
|
|
};
|
|
|
|
class ForKitProcess : public WSProcess
|
|
{
|
|
public:
|
|
ForKitProcess(int pid, std::shared_ptr<StreamSocket>& socket, const Poco::Net::HTTPRequest &request)
|
|
: WSProcess("ForKit", pid, socket, std::make_shared<ForKitProcWSHandler>(socket, request))
|
|
{
|
|
socket->setHandler(getWSHandler());
|
|
}
|
|
};
|
|
|
|
#endif
|
|
|
|
/// The Server class which is responsible for all
|
|
/// external interactions.
|
|
class COOLWSD : public Poco::Util::ServerApplication
|
|
{
|
|
public:
|
|
COOLWSD();
|
|
~COOLWSD();
|
|
|
|
// An Application is a singleton anyway,
|
|
// so just keep these as statics.
|
|
static std::atomic<uint64_t> NextConnectionId;
|
|
static unsigned int NumPreSpawnedChildren;
|
|
#if !MOBILEAPP
|
|
static bool NoCapsForKit;
|
|
static bool NoSeccomp;
|
|
static bool AdminEnabled;
|
|
static bool UnattendedRun; //< True when run from an unattended test, not interactive.
|
|
static bool SignalParent;
|
|
#if ENABLE_DEBUG
|
|
static bool SingleKit;
|
|
#endif
|
|
static std::shared_ptr<ForKitProcess> ForKitProc;
|
|
static std::atomic<int> ForKitProcId;
|
|
#endif
|
|
static std::string UserInterface;
|
|
static std::string ConfigFile;
|
|
static std::string ConfigDir;
|
|
static std::string SysTemplate;
|
|
static std::string LoTemplate;
|
|
static std::string ChildRoot;
|
|
static std::string ServerName;
|
|
static std::string FileServerRoot;
|
|
static std::string ServiceRoot; ///< There are installations that need prefixing every page with some path.
|
|
static std::string TmpFontDir;
|
|
static std::string LOKitVersion;
|
|
static bool EnableTraceEventLogging;
|
|
static FILE *TraceEventFile;
|
|
static void writeTraceEventRecording(const char *data, std::size_t nbytes);
|
|
static void writeTraceEventRecording(const std::string &recording);
|
|
static std::string LogLevel;
|
|
static std::string MostVerboseLogLevelSettableFromClient;
|
|
static std::string LeastVerboseLogLevelSettableFromClient;
|
|
static bool AnonymizeUserData;
|
|
static bool CheckCoolUser;
|
|
static bool CleanupOnly;
|
|
static bool IsProxyPrefixEnabled;
|
|
static std::atomic<unsigned> NumConnections;
|
|
static std::unique_ptr<TraceFileWriter> TraceDumper;
|
|
static std::unordered_map<std::string, std::vector<std::string>> QuarantineMap;
|
|
static std::string QuarantinePath;
|
|
#if !MOBILEAPP
|
|
static std::unique_ptr<ClipboardCache> SavedClipboards;
|
|
#endif
|
|
|
|
static std::unordered_set<std::string> EditFileExtensions;
|
|
static std::unordered_set<std::string> ViewWithCommentsFileExtensions;
|
|
static unsigned MaxConnections;
|
|
static unsigned MaxDocuments;
|
|
static std::string OverrideWatermark;
|
|
static std::set<const Poco::Util::AbstractConfiguration*> PluginConfigurations;
|
|
static std::chrono::steady_clock::time_point StartTime;
|
|
static std::string LatestVersion;
|
|
static std::mutex FetchUpdateMutex;
|
|
static bool IsBindMountingEnabled;
|
|
#if MOBILEAPP
|
|
#ifndef IOS
|
|
/// This is used to be able to wait until the lokit main thread has finished (and it is safe to load a new document).
|
|
static std::mutex lokit_main_mutex;
|
|
#endif
|
|
#endif
|
|
|
|
/// For testing only [!]
|
|
static int getClientPortNumber();
|
|
/// For testing only [!] DocumentBrokers are mostly single-threaded with their own thread
|
|
static std::vector<std::shared_ptr<DocumentBroker>> getBrokersTestOnly();
|
|
|
|
// Return a map for fast searches. Used in testing and in admin for cleanup
|
|
static std::set<pid_t> getKitPids();
|
|
|
|
static std::string GetConnectionId()
|
|
{
|
|
return Util::encodeId(NextConnectionId++, 3);
|
|
}
|
|
|
|
static bool isSSLEnabled()
|
|
{
|
|
#if ENABLE_SSL
|
|
return !Util::isFuzzing() && COOLWSD::SSLEnabled.get();
|
|
#else
|
|
return false;
|
|
#endif
|
|
}
|
|
|
|
static bool isSSLTermination()
|
|
{
|
|
#if ENABLE_SSL
|
|
return !Util::isFuzzing() && COOLWSD::SSLTermination.get();
|
|
#else
|
|
return false;
|
|
#endif
|
|
}
|
|
|
|
static std::shared_ptr<TerminatingPoll> getWebServerPoll();
|
|
|
|
/// Return true if extension is marked as view action in discovery.xml.
|
|
static bool IsViewFileExtension(const std::string& extension)
|
|
{
|
|
std::string lowerCaseExtension = extension;
|
|
std::transform(lowerCaseExtension.begin(), lowerCaseExtension.end(), lowerCaseExtension.begin(), ::tolower);
|
|
#if MOBILEAPP
|
|
if (lowerCaseExtension == "pdf")
|
|
return true; // true for only pdf - it is not editable
|
|
return false; // mark everything else editable on mobile
|
|
#else
|
|
return EditFileExtensions.find(lowerCaseExtension) == EditFileExtensions.end();
|
|
#endif
|
|
}
|
|
|
|
/// Return true if extension is marked as view_comment action in discovery.xml.
|
|
static bool IsViewWithCommentsFileExtension(const std::string& extension)
|
|
{
|
|
|
|
std::string lowerCaseExtension = extension;
|
|
std::transform(lowerCaseExtension.begin(), lowerCaseExtension.end(), lowerCaseExtension.begin(), ::tolower);
|
|
#if MOBILEAPP
|
|
if (lowerCaseExtension == "pdf")
|
|
return true; // true for only pdf - it is not editable
|
|
return false; // mark everything else editable on mobile
|
|
#else
|
|
return ViewWithCommentsFileExtensions.find(lowerCaseExtension) != ViewWithCommentsFileExtensions.end();
|
|
#endif
|
|
}
|
|
|
|
/// Returns the value of the specified application configuration,
|
|
/// or the default, if one doesn't exist.
|
|
template<typename T>
|
|
static
|
|
T getConfigValue(const std::string& name, const T def)
|
|
{
|
|
if (Util::isFuzzing())
|
|
{
|
|
return def;
|
|
}
|
|
|
|
return getConfigValue(Application::instance().config(), name, def);
|
|
}
|
|
|
|
/// Returns the value of the specified application configuration,
|
|
/// or the default, if one doesn't exist.
|
|
template <typename T> static T getConfigValueNonZero(const std::string& name, const T def)
|
|
{
|
|
static_assert(std::is_integral<T>::value, "Meaningless on non-integral types");
|
|
|
|
if (Util::isFuzzing())
|
|
{
|
|
return def;
|
|
}
|
|
|
|
const T res = getConfigValue(Application::instance().config(), name, def);
|
|
return res <= T(0) ? T(0) : res;
|
|
}
|
|
|
|
/// Reads and processes path entries with the given property
|
|
/// from the configuration.
|
|
/// Converts relative paths to absolute.
|
|
static
|
|
std::string getPathFromConfig(const std::string& name)
|
|
{
|
|
return getPathFromConfig(Application::instance().config(), name);
|
|
}
|
|
|
|
/// Reads and processes path entries with the given property
|
|
/// from the configuration. If value is empty then it reads from fallback
|
|
/// Converts relative paths to absolute.
|
|
static
|
|
std::string getPathFromConfigWithFallback(const std::string& name, const std::string& fallbackName)
|
|
{
|
|
std::string value;
|
|
// the expected path might not exist, in which case Poco throws an exception
|
|
try
|
|
{
|
|
value = COOLWSD::getPathFromConfig(name);
|
|
}
|
|
catch (...)
|
|
{
|
|
}
|
|
if (value.empty())
|
|
return COOLWSD::getPathFromConfig(fallbackName);
|
|
return value;
|
|
}
|
|
|
|
/// Returns true if and only if the property with the given key exists.
|
|
static
|
|
bool hasProperty(const std::string& key)
|
|
{
|
|
return Application::instance().config().hasProperty(key);
|
|
}
|
|
|
|
/// Trace a new session and take a snapshot of the file.
|
|
static void dumpNewSessionTrace(const std::string& id, const std::string& sessionId, const std::string& uri, const std::string& path);
|
|
|
|
/// Trace the end of a session.
|
|
static void dumpEndSessionTrace(const std::string& id, const std::string& sessionId, const std::string& uri);
|
|
|
|
static void dumpEventTrace(const std::string& id, const std::string& sessionId, const std::string& data);
|
|
|
|
static void dumpIncomingTrace(const std::string& id, const std::string& sessionId, const std::string& data);
|
|
|
|
static void dumpOutgoingTrace(const std::string& id, const std::string& sessionId, const std::string& data);
|
|
|
|
/// Waits on Forkit and reaps if it dies, then restores.
|
|
/// Return true if wait succeeds.
|
|
static bool checkAndRestoreForKit();
|
|
|
|
/// Creates a new instance of Forkit.
|
|
/// Return true when successful.
|
|
static bool createForKit();
|
|
|
|
/// Sends a message to ForKit through PrisonerPoll.
|
|
static void sendMessageToForKit(const std::string& message);
|
|
|
|
/// Checks forkit (and respawns), rebalances
|
|
/// child kit processes and cleans up DocBrokers.
|
|
static void doHousekeeping();
|
|
|
|
static void checkDiskSpaceAndWarnClients(const bool cacheLastCheck);
|
|
|
|
static void checkSessionLimitsAndWarnClients();
|
|
|
|
/// Close document with @docKey and a @message
|
|
static void closeDocument(const std::string& docKey, const std::string& message);
|
|
|
|
/// Autosave a given document (currently only called from Admin).
|
|
static void autoSave(const std::string& docKey);
|
|
|
|
/// Sets the log level of current kits.
|
|
static void setLogLevelsOfKits(const std::string& level);
|
|
|
|
/// Anonymize the basename of filenames, preserving the path and extension.
|
|
static std::string anonymizeUrl(const std::string& url)
|
|
{
|
|
return FileUtil::anonymizeUrl(url);
|
|
}
|
|
|
|
/// Anonymize user names and IDs.
|
|
/// Will use the Obfuscated User ID if one is provided via WOPI.
|
|
static std::string anonymizeUsername(const std::string& username)
|
|
{
|
|
return FileUtil::anonymizeUsername(username);
|
|
}
|
|
|
|
/// get correct server URL with protocol + port number for this running server
|
|
static std::string getServerURL();
|
|
|
|
protected:
|
|
void initialize(Poco::Util::Application& self) override
|
|
{
|
|
try
|
|
{
|
|
innerInitialize(self);
|
|
}
|
|
catch (const Poco::Exception& ex)
|
|
{
|
|
LOG_FTL("Failed to initialize COOLWSD: "
|
|
<< ex.displayText()
|
|
<< (ex.nested() ? " (" + ex.nested()->displayText() + ')' : ""));
|
|
throw; // Nothing further to do.
|
|
}
|
|
catch (const std::exception& ex)
|
|
{
|
|
LOG_FTL("Failed to initialize COOLWSD: " << ex.what());
|
|
throw; // Nothing further to do.
|
|
}
|
|
}
|
|
|
|
void defineOptions(Poco::Util::OptionSet& options) override;
|
|
void handleOption(const std::string& name, const std::string& value) override;
|
|
int main(const std::vector<std::string>& args) override;
|
|
|
|
/// Handle various global static destructors.
|
|
static void cleanup();
|
|
|
|
private:
|
|
#if ENABLE_SSL
|
|
static Util::RuntimeConstant<bool> SSLEnabled;
|
|
static Util::RuntimeConstant<bool> SSLTermination;
|
|
#endif
|
|
|
|
#if !MOBILEAPP
|
|
void processFetchUpdate();
|
|
#endif
|
|
void initializeSSL();
|
|
void displayHelp();
|
|
|
|
/// The actual initialize implementation.
|
|
void innerInitialize(Application& self);
|
|
|
|
/// The actual main implementation.
|
|
int innerMain();
|
|
|
|
class ConfigValueGetter
|
|
{
|
|
Poco::Util::LayeredConfiguration& _config;
|
|
const std::string& _name;
|
|
|
|
public:
|
|
ConfigValueGetter(Poco::Util::LayeredConfiguration& config,
|
|
const std::string& name)
|
|
: _config(config)
|
|
, _name(name)
|
|
{
|
|
}
|
|
|
|
void operator()(int& value) { value = _config.getInt(_name); }
|
|
void operator()(unsigned int& value) { value = _config.getUInt(_name); }
|
|
void operator()(uint64_t& value) { value = _config.getUInt64(_name); }
|
|
void operator()(bool& value) { value = _config.getBool(_name); }
|
|
void operator()(std::string& value) { value = _config.getString(_name); }
|
|
void operator()(double& value) { value = _config.getDouble(_name); }
|
|
};
|
|
|
|
template <typename T>
|
|
static bool getSafeConfig(Poco::Util::LayeredConfiguration& config,
|
|
const std::string& name, T& value)
|
|
{
|
|
try
|
|
{
|
|
ConfigValueGetter(config, name)(value);
|
|
return true;
|
|
}
|
|
catch (...)
|
|
{
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
template<typename T>
|
|
static
|
|
T getConfigValue(Poco::Util::LayeredConfiguration& config,
|
|
const std::string& name, const T def)
|
|
{
|
|
T value = def;
|
|
if (getSafeConfig(config, name, value) ||
|
|
getSafeConfig(config, name + "[@default]", value))
|
|
{
|
|
return value;
|
|
}
|
|
|
|
return def;
|
|
}
|
|
|
|
/// Reads and processes path entries with the given property
|
|
/// from the configuration.
|
|
/// Converts relative paths to absolute.
|
|
static
|
|
std::string getPathFromConfig(Poco::Util::LayeredConfiguration& config, const std::string& property)
|
|
{
|
|
std::string path = config.getString(property);
|
|
if (path.empty() && config.hasProperty(property + "[@default]"))
|
|
{
|
|
// Use the default value if empty and a default provided.
|
|
path = config.getString(property + "[@default]");
|
|
}
|
|
|
|
// Reconstruct absolute path if relative.
|
|
if (!Poco::Path(path).isAbsolute() &&
|
|
config.hasProperty(property + "[@relative]") &&
|
|
config.getBool(property + "[@relative]"))
|
|
{
|
|
path = Poco::Path(Application::instance().commandPath()).parent().append(path).toString();
|
|
}
|
|
|
|
return path;
|
|
}
|
|
|
|
private:
|
|
/// Settings passed from the command-line to override those in the config file.
|
|
std::map<std::string, std::string> _overrideSettings;
|
|
|
|
#if MOBILEAPP
|
|
public:
|
|
static int prisonerServerSocketFD;
|
|
#endif
|
|
};
|
|
|
|
/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
|