File: check_liboauth2.c

package info (click to toggle)
liboauth2 2.1.1-1
links: PTS, VCS
area: main
in suites: forky, sid
size: 1,300 kB
sloc: ansic: 20,329; makefile: 190; sh: 13
file content (376 lines) | stat: -rw-r--r-- 9,676 bytes
/***************************************************************************
 *
 * Copyright (C) 2018-2025 - ZmartZone Holding BV
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 *
 * @Author: Hans Zandbelt - hans.zandbelt@openidc.com
 *
 **************************************************************************/

#include "check_liboauth2.h"
#include <arpa/inet.h>
#include <errno.h>
#include <fcntl.h>
#include <netinet/in.h>
#include <signal.h>
#include <stdio.h>
#include <stdlib.h>
#include <sys/socket.h>
#include <sys/stat.h>
#include <sys/types.h>
#include <sys/wait.h>
#include <unistd.h>

#include "../include/oauth2/log.h"
#include "../include/oauth2/mem.h"

#include "util_int.h"

// #include <semaphore.h>

static int http_server_port = 8080;
static int http_server_signal_delivered = 0;

#define HTTP_SERVER_BUFSIZE 8096

#define HTTP_SERVER_SIGNUM SIGCONT

static void http_server_signal_handler(int signum)
{
	http_server_signal_delivered = signum;
}

static void http_server_error(oauth2_log_t *log, int type, int socket_fd)
{
	ssize_t rc;
	static char buf[HTTP_SERVER_BUFSIZE + 1];
	char *status = "500 Internal Server Error";

	if (type == 400)
		status = "400 Bad Request";
	else if (type == 403)
		status = "403 Forbidden";
	else if (type == 404)
		status = "404 Not Found";
	else if (type == 405)
		status = "405 Method Not Allowed";
	else if (type == 406)
		status = "406 Not Acceptable";

	sprintf(buf, "HTTP/1.1 %s \nContent-Length: 0\nConnection: close\n\n",
		status);

	rc = write(socket_fd, buf, strlen(buf));
	(void)rc;
}

struct {
	char *ext;
	char *filetype;
} extensions[] = {{"html", "text/html"}, {"json", "application/json"}, {0, 0}};

typedef struct http_serve_routing_t {
	char *path;
	http_serve_callback_get_t *callback_get;
	http_serve_callback_get_t *callback_post;
	struct http_serve_routing_t *next;
} http_serve_routing_t;

static http_serve_routing_t *http_serve_routing_table = NULL;

void liboauth2_check_register_http_callbacks(
    const char *path, http_serve_callback_get_t *cb_get,
    http_serve_callback_post_t *cb_post)
{
	http_serve_routing_t *ptr = NULL;
	if (http_serve_routing_table == NULL) {
		http_serve_routing_table =
		    oauth2_mem_alloc(sizeof(http_serve_routing_t));
		ptr = http_serve_routing_table;
	} else {
		for (ptr = http_serve_routing_table; ptr->next; ptr = ptr->next)
			;
		ptr->next = oauth2_mem_alloc(sizeof(http_serve_routing_t));
		ptr = ptr->next;
	}
	ptr->path = oauth2_strdup(path);
	ptr->callback_get = cb_get;
	ptr->callback_post = cb_post;
	ptr->next = NULL;
}

static void liboauth2_check_cleanup_http_callbacks()
{
	http_serve_routing_t *ptr = NULL;
	while ((ptr = http_serve_routing_table)) {
		http_serve_routing_table = http_serve_routing_table->next;
		oauth2_mem_free(ptr->path);
		oauth2_mem_free(ptr);
	}
}

static void http_server_process(oauth2_log_t *log, int fd, int hit)
{
	int j, file_fd, buflen;
	long i, ret, len;
	char *fstr;
	static char buffer[HTTP_SERVER_BUFSIZE + 1];
	static char outbuf[HTTP_SERVER_BUFSIZE + 1];
	ssize_t rc;
	char *response = NULL;
	http_serve_routing_t *ptr = NULL;

	ret = read(fd, buffer, HTTP_SERVER_BUFSIZE);
	if (ret == 0 || ret == -1) {
		http_server_error(log, 400, fd);
		return;
	}
	if (ret > 0 && ret < HTTP_SERVER_BUFSIZE)
		buffer[ret] = 0;
	else
		buffer[0] = 0;
	for (i = 0; i < ret; i++)
		if (buffer[i] == '\r' || buffer[i] == '\n')
			buffer[i] = '*';
	oauth2_debug(log, "request: %s %d", buffer, hit);
	/*
	if (strncmp(buffer, "GET ", 4) && strncmp(buffer, "get ", 4)) {
		http_server_error(log, 405, fd);
		return;
	}
	*/
	for (i = 4; i < HTTP_SERVER_BUFSIZE; i++) {
		if (buffer[i] == ' ') {
			buffer[i] = 0;
			break;
		}
	}
	for (j = 0; j < i - 1; j++)
		if (buffer[j] == '.' && buffer[j + 1] == '.') {
			http_server_error(log, 403, fd);
			return;
		}

	if (!strncmp(&buffer[0], "GET /\0", 6) ||
	    !strncmp(&buffer[0], "get /\0", 6))
		(void)strcpy(buffer, "GET /index.html");

	buflen = strlen(buffer);
	fstr = (char *)0;
	for (i = 0; extensions[i].ext != 0; i++) {
		len = strlen(extensions[i].ext);
		if (!strncmp(&buffer[buflen - len], extensions[i].ext, len)) {
			fstr = extensions[i].filetype;
			break;
		}
	}

	if (fstr == 0) {
		// http_server_error(log, 406, fd);
		// return;
		fstr = "application/json";
	}

	for (ptr = http_serve_routing_table; ptr; ptr = ptr->next) {
		len = strlen(ptr->path);

		if (strncmp(&buffer[0], "GET", 3) == 0) {
			if (strncmp(&buffer[4], ptr->path, len) == 0) {
				if (ptr->callback_get)
					response =
					    ptr->callback_get(&buffer[4 + len]);
			}
		}

		if (strncmp(&buffer[0], "POST", 4) == 0) {
			if (strncmp(&buffer[5], ptr->path, len) == 0) {
				if (ptr->callback_post)
					response = ptr->callback_post(
					    &buffer[5 + len]);
			}
		}

		if (response) {
			sprintf(outbuf,
				"HTTP/1.1 200 \nContent-Length: "
				"%zu\nConnection: close\n\n",
				strlen(response));
			rc = write(fd, outbuf, strlen(outbuf));
			rc = write(fd, response, strlen(response));
			(void)rc;
			oauth2_mem_free(response);
			return;
		}
	}

	if ((file_fd = open(&buffer[5], O_RDONLY)) == -1) {
		http_server_error(log, 404, fd);
		return;
	}
	oauth2_debug(log, "SEND: %s, %d", &buffer[5], hit);
	len = (long)lseek(file_fd, (off_t)0, SEEK_END);
	(void)lseek(file_fd, (off_t)0, SEEK_SET);
	(void)sprintf(buffer,
		      "HTTP/1.1 200 OK \nServer: "
		      "libmodauth2/1.0\nContent-Length: "
		      "%ld\nConnection: close\nContent-Type: %s\n\n",
		      len, fstr);
	oauth2_debug(log, "Header: %s, %d", buffer, hit);
	rc = write(fd, buffer, strlen(buffer));
	(void)rc;

	while ((ret = read(file_fd, buffer, HTTP_SERVER_BUFSIZE)) > 0) {
		rc = write(fd, buffer, ret);
		(void)rc;
	}
}

// static sem_t *sema = NULL;

pid_t http_server_spawn()
{

	int listenfd, socketfd, hit;
	static struct sockaddr_in serv_addr;
	static struct sockaddr_in cli_addr;
	fd_set read_fd_set;
	socklen_t length;

	pid_t pid = fork();
	if (pid != 0) {
		return pid;
	}

	struct sigaction action;
	action.sa_flags = 0;
	action.sa_handler = http_server_signal_handler;
	sigemptyset(&action.sa_mask);
	sigaction(HTTP_SERVER_SIGNUM, &action, NULL);

	oauth2_log_t *log = oauth2_log_init(OAUTH2_LOG_TRACE1, NULL);

	if ((listenfd = socket(AF_INET, SOCK_STREAM, 0)) < 0)
		oauth2_error(log, "socket failed");
	serv_addr.sin_family = AF_INET;
	serv_addr.sin_addr.s_addr = htonl(INADDR_ANY);
	serv_addr.sin_port = htons(http_server_port);
	if (bind(listenfd, (struct sockaddr *)&serv_addr, sizeof(serv_addr)) <
	    0)
		oauth2_error(log, "bind failed");
	if (listen(listenfd, 64) < 0)
		oauth2_error(log, "listen failed");

	FD_ZERO(&read_fd_set);
	FD_SET(listenfd, &read_fd_set);

	// sem_post(sema);

	for (hit = 1;; hit++) {

		if (select(FD_SETSIZE, &read_fd_set, NULL, NULL, NULL) < 0) {
			if (http_server_signal_delivered == HTTP_SERVER_SIGNUM)
				break;
			oauth2_error(log, "select failed: %s", strerror(errno));
		}

		if (FD_ISSET(listenfd, &read_fd_set)) {

			length = sizeof(cli_addr);
			if ((socketfd =
				 accept(listenfd, (struct sockaddr *)&cli_addr,
					&length)) <= 0) {
				oauth2_error(log, "accept failed: %s, %d",
					     strerror(errno), socketfd);
				continue;
			}

			if (fork() == 0) {

				http_server_process(log, socketfd, hit);

				close(socketfd);
				oauth2_log_free(log);

				exit(0);
			}
		}
	}

	close(listenfd);
	oauth2_log_free(log);

	exit(0);
}

int main(void)
{
	int n_failed;

	SRunner *sr = srunner_create(suite_create("liboauth2"));

	// srunner_set_fork_status(sr, CK_NOFORK);

	srunner_add_suite(sr, oauth2_check_version_suite());
	srunner_add_suite(sr, oauth2_check_mem_suite());
	srunner_add_suite(sr, oauth2_check_log_suite());
	srunner_add_suite(sr, oauth2_check_cfg_suite());
	srunner_add_suite(sr, oauth2_check_util_suite());
	srunner_add_suite(sr, oauth2_check_ipc_suite());
	srunner_add_suite(sr, oauth2_check_cache_suite());
	srunner_add_suite(sr, oauth2_check_jose_suite());
	srunner_add_suite(sr, oauth2_check_http_suite());
	srunner_add_suite(sr, oauth2_check_proto_suite());
	srunner_add_suite(sr, oauth2_check_oauth2_suite());
	srunner_add_suite(sr, oauth2_check_openidc_suite());
#ifdef HAVE_LIBJQ
	srunner_add_suite(sr, oauth2_check_jq_suite());
#endif
#ifdef HAVE_APACHE
	srunner_add_suite(sr, oauth2_check_apache_suite());
#endif
#ifdef HAVE_NGINX
	srunner_add_suite(sr, oauth2_check_nginx_suite());
#endif

	// sema = sem_open ("sema", O_CREAT | O_EXCL, 0644, 0);
	pid_t pid = http_server_spawn();
	// sleep(1);
	// sem_wait(sema);

	// srunner_run_all(sr, CK_ENV);
	srunner_run_all(sr, CK_VERBOSE);
	n_failed = srunner_ntests_failed(sr);
	srunner_free(sr);

	kill(pid, HTTP_SERVER_SIGNUM);
	waitpid(pid, NULL, 0);

	//	http_serve_routing_t *ptr = NULL;
	//	while (http_serve_routing_table) {
	//		ptr = http_serve_routing_table;
	//		http_serve_routing_table =
	// http_serve_routing_table->next; 		oauth2_mem_free(ptr);
	//	}

	// sem_unlink("sema");

	oauth2_check_jose_cleanup();
	oauth2_check_http_cleanup();
	oauth2_check_proto_cleanup();
	oauth2_check_oauth2_cleanup();
	oauth2_check_openidc_cleanup();
	liboauth2_check_cleanup_http_callbacks();

	return (n_failed == 0) ? EXIT_SUCCESS : EXIT_FAILURE;
}