]>
Commit | Line | Data |
---|---|---|
ef416fc2 | 1 | /* |
f2d18633 | 2 | * "$Id$" |
ef416fc2 | 3 | * |
2c85b752 | 4 | * Private HTTP definitions for CUPS. |
ef416fc2 | 5 | * |
2c85b752 MS |
6 | * Copyright 2007-2013 by Apple Inc. |
7 | * Copyright 1997-2007 by Easy Software Products, all rights reserved. | |
ef416fc2 | 8 | * |
2c85b752 MS |
9 | * These coded instructions, statements, and computer programs are the |
10 | * property of Apple Inc. and are protected by Federal copyright | |
11 | * law. Distribution and use rights are outlined in the file "LICENSE.txt" | |
12 | * which should have been included with this file. If this file is | |
13 | * file is missing or damaged, see the license at "http://www.cups.org/". | |
ef416fc2 | 14 | * |
2c85b752 | 15 | * This file is subject to the Apple OS-Developed Software exception. |
ef416fc2 | 16 | */ |
17 | ||
18 | #ifndef _CUPS_HTTP_PRIVATE_H_ | |
19 | # define _CUPS_HTTP_PRIVATE_H_ | |
20 | ||
21 | /* | |
22 | * Include necessary headers... | |
23 | */ | |
24 | ||
71e16022 | 25 | # include "config.h" |
41e6c1f1 | 26 | # include <cups/language.h> |
5180a04c | 27 | # include <stddef.h> |
a74454a7 | 28 | # include <stdlib.h> |
ef416fc2 | 29 | |
30 | # ifdef __sun | |
ef416fc2 | 31 | # include <sys/select.h> |
32 | # endif /* __sun */ | |
33 | ||
34 | # include <limits.h> | |
35 | # ifdef WIN32 | |
36 | # include <io.h> | |
37 | # include <winsock2.h> | |
db8b865d | 38 | # define CUPS_SOCAST (const char *) |
ef416fc2 | 39 | # else |
40 | # include <unistd.h> | |
41 | # include <fcntl.h> | |
42 | # include <sys/socket.h> | |
db8b865d | 43 | # define CUPS_SOCAST |
ef416fc2 | 44 | # endif /* WIN32 */ |
45 | ||
f7deaa1a | 46 | # ifdef HAVE_GSSAPI |
eac3a0a0 MS |
47 | # ifdef HAVE_GSS_GSSAPI_H |
48 | # include <GSS/gssapi.h> | |
eac3a0a0 | 49 | # elif defined(HAVE_GSSAPI_GSSAPI_H) |
f7deaa1a | 50 | # include <gssapi/gssapi.h> |
eac3a0a0 | 51 | # elif defined(HAVE_GSSAPI_H) |
f7deaa1a | 52 | # include <gssapi.h> |
eac3a0a0 | 53 | # endif /* HAVE_GSS_GSSAPI_H */ |
f7deaa1a | 54 | # ifndef HAVE_GSS_C_NT_HOSTBASED_SERVICE |
55 | # define GSS_C_NT_HOSTBASED_SERVICE gss_nt_service_name | |
56 | # endif /* !HAVE_GSS_C_NT_HOSTBASED_SERVICE */ | |
57 | # endif /* HAVE_GSSAPI */ | |
58 | ||
b94498cf | 59 | # ifdef HAVE_AUTHORIZATION_H |
60 | # include <Security/Authorization.h> | |
61 | # endif /* HAVE_AUTHORIZATION_H */ | |
62 | ||
3dd9c340 | 63 | # if defined(__APPLE__) && !defined(_SOCKLEN_T) |
ef416fc2 | 64 | /* |
3dd9c340 | 65 | * MacOS X 10.2.x does not define socklen_t, and in fact uses an int instead of |
ef416fc2 | 66 | * unsigned type for length values... |
67 | */ | |
68 | ||
69 | typedef int socklen_t; | |
3dd9c340 | 70 | # endif /* __APPLE__ && !_SOCKLEN_T */ |
ef416fc2 | 71 | |
71e16022 MS |
72 | # include <cups/http.h> |
73 | # include "md5-private.h" | |
fa73b229 | 74 | # include "ipp-private.h" |
ef416fc2 | 75 | |
07ed0e9a MS |
76 | # if defined HAVE_LIBSSL |
77 | # include <openssl/err.h> | |
78 | # include <openssl/rand.h> | |
79 | # include <openssl/ssl.h> | |
80 | # elif defined HAVE_GNUTLS | |
81 | # include <gnutls/gnutls.h> | |
82 | # include <gnutls/x509.h> | |
83 | # include <gcrypt.h> | |
84 | # elif defined(HAVE_CDSASSL) | |
85 | # include <CoreFoundation/CoreFoundation.h> | |
86 | # include <Security/Security.h> | |
87 | # include <Security/SecureTransport.h> | |
eac3a0a0 MS |
88 | # ifdef HAVE_SECURETRANSPORTPRIV_H |
89 | # include <Security/SecureTransportPriv.h> | |
90 | # endif /* HAVE_SECURETRANSPORTPRIV_H */ | |
07ed0e9a MS |
91 | # ifdef HAVE_SECITEM_H |
92 | # include <Security/SecItem.h> | |
93 | # endif /* HAVE_SECITEM_H */ | |
94 | # ifdef HAVE_SECBASEPRIV_H | |
95 | # include <Security/SecBasePriv.h> | |
96 | # endif /* HAVE_SECBASEPRIV_H */ | |
97 | # ifdef HAVE_SECCERTIFICATE_H | |
98 | # include <Security/SecCertificate.h> | |
99 | # include <Security/SecIdentity.h> | |
100 | # endif /* HAVE_SECCERTIFICATE_H */ | |
101 | # ifdef HAVE_SECITEMPRIV_H | |
102 | # include <Security/SecItemPriv.h> | |
103 | # endif /* HAVE_SECITEMPRIV_H */ | |
104 | # ifdef HAVE_SECIDENTITYSEARCHPRIV_H | |
105 | # include <Security/SecIdentitySearchPriv.h> | |
106 | # endif /* HAVE_SECIDENTITYSEARCHPRIV_H */ | |
107 | # ifdef HAVE_SECPOLICYPRIV_H | |
108 | # include <Security/SecPolicyPriv.h> | |
109 | # endif /* HAVE_SECPOLICYPRIV_H */ | |
110 | # elif defined(HAVE_SSPISSL) | |
111 | # include "sspi-private.h" | |
112 | # endif /* HAVE_LIBSSL */ | |
113 | ||
114 | # ifndef WIN32 | |
115 | # include <net/if.h> | |
116 | # ifdef HAVE_GETIFADDRS | |
117 | # include <ifaddrs.h> | |
118 | # else | |
119 | # include <sys/ioctl.h> | |
120 | # ifdef HAVE_SYS_SOCKIO_H | |
121 | # include <sys/sockio.h> | |
122 | # endif /* HAVE_SYS_SOCKIO_H */ | |
123 | # endif /* HAVE_GETIFADDRS */ | |
124 | # endif /* !WIN32 */ | |
125 | ||
a469f8a5 MS |
126 | # ifdef HAVE_LIBZ |
127 | # include <zlib.h> | |
128 | # endif /* HAVE_LIBZ */ | |
129 | ||
07ed0e9a MS |
130 | |
131 | /* | |
132 | * C++ magic... | |
133 | */ | |
134 | ||
135 | # ifdef __cplusplus | |
136 | extern "C" { | |
137 | # endif /* __cplusplus */ | |
138 | ||
139 | ||
eac3a0a0 MS |
140 | /* |
141 | * Constants... | |
142 | */ | |
143 | ||
144 | ||
145 | #define _HTTP_RESOLVE_DEFAULT 0 /* Just resolve with default options */ | |
146 | #define _HTTP_RESOLVE_STDERR 1 /* Log resolve progress to stderr */ | |
147 | #define _HTTP_RESOLVE_FQDN 2 /* Resolve to a FQDN */ | |
f3c17241 | 148 | #define _HTTP_RESOLVE_FAXOUT 4 /* Resolve FaxOut service? */ |
eac3a0a0 MS |
149 | |
150 | ||
07ed0e9a MS |
151 | /* |
152 | * Types and functions for SSL support... | |
153 | */ | |
154 | ||
ef416fc2 | 155 | # if defined HAVE_LIBSSL |
156 | /* | |
157 | * The OpenSSL library provides its own SSL/TLS context structure for its | |
411affcf | 158 | * IO and protocol management. However, we need to provide our own BIO |
159 | * (basic IO) implementation to do timeouts... | |
ef416fc2 | 160 | */ |
161 | ||
7cf5915e MS |
162 | typedef SSL *http_tls_t; |
163 | typedef void *http_tls_credentials_t; | |
ef416fc2 | 164 | |
d3d89474 | 165 | //extern BIO_METHOD *_httpBIOMethods(void); |
411affcf | 166 | |
ef416fc2 | 167 | # elif defined HAVE_GNUTLS |
168 | /* | |
169 | * The GNU TLS library is more of a "bare metal" SSL/TLS library... | |
170 | */ | |
ef416fc2 | 171 | |
7cf5915e MS |
172 | typedef gnutls_session http_tls_t; |
173 | typedef void *http_tls_credentials_t; | |
ef416fc2 | 174 | |
d3d89474 MS |
175 | //extern ssize_t _httpReadGNUTLS(gnutls_transport_ptr ptr, void *data, |
176 | // size_t length); | |
177 | //extern ssize_t _httpWriteGNUTLS(gnutls_transport_ptr ptr, const void *data, | |
178 | // size_t length); | |
411affcf | 179 | |
ef416fc2 | 180 | # elif defined(HAVE_CDSASSL) |
181 | /* | |
182 | * Darwin's Security framework provides its own SSL/TLS context structure | |
183 | * for its IO and protocol management... | |
184 | */ | |
185 | ||
07ed0e9a | 186 | # if !defined(HAVE_SECBASEPRIV_H) && defined(HAVE_CSSMERRORSTRING) /* Declare prototype for function in that header... */ |
7cf5915e | 187 | extern const char *cssmErrorString(int error); |
07ed0e9a MS |
188 | # endif /* !HAVE_SECBASEPRIV_H && HAVE_CSSMERRORSTRING */ |
189 | # ifndef HAVE_SECITEMPRIV_H /* Declare constants from that header... */ | |
7cf5915e MS |
190 | extern const CFTypeRef kSecClassCertificate; |
191 | extern const CFTypeRef kSecClassIdentity; | |
07ed0e9a MS |
192 | # endif /* !HAVE_SECITEMPRIV_H */ |
193 | # if !defined(HAVE_SECIDENTITYSEARCHPRIV_H) && defined(HAVE_SECIDENTITYSEARCHCREATEWITHPOLICY) /* Declare prototype for function in that header... */ | |
7cf5915e MS |
194 | extern OSStatus SecIdentitySearchCreateWithPolicy(SecPolicyRef policy, |
195 | CFStringRef idString, CSSM_KEYUSE keyUsage, | |
196 | CFTypeRef keychainOrArray, | |
197 | Boolean returnOnlyValidIdentities, | |
198 | SecIdentitySearchRef* searchRef); | |
07ed0e9a MS |
199 | # endif /* !HAVE_SECIDENTITYSEARCHPRIV_H && HAVE_SECIDENTITYSEARCHCREATEWITHPOLICY */ |
200 | # if !defined(HAVE_SECPOLICYPRIV_H) && defined(HAVE_SECPOLICYSETVALUE) /* Declare prototype for function in that header... */ | |
7cf5915e MS |
201 | extern OSStatus SecPolicySetValue(SecPolicyRef policyRef, |
202 | const CSSM_DATA *value); | |
07ed0e9a | 203 | # endif /* !HAVE_SECPOLICYPRIV_H && HAVE_SECPOLICYSETVALUE */ |
7cf5915e MS |
204 | |
205 | typedef SSLContextRef http_tls_t; | |
206 | typedef CFArrayRef http_tls_credentials_t; | |
ef416fc2 | 207 | |
cc754834 | 208 | # elif defined(HAVE_SSPISSL) |
07ed0e9a MS |
209 | /* |
210 | * Windows' SSPI library gets a CUPS wrapper... | |
211 | */ | |
212 | ||
7cf5915e MS |
213 | typedef _sspi_struct_t * http_tls_t; |
214 | typedef void *http_tls_credentials_t; | |
07ed0e9a | 215 | |
7cf5915e | 216 | # else |
07ed0e9a MS |
217 | /* |
218 | * Otherwise define stub types since we have no SSL support... | |
219 | */ | |
220 | ||
7cf5915e | 221 | typedef void *http_tls_t; |
07ed0e9a | 222 | typedef void *http_tls_credentials_t; |
ef416fc2 | 223 | # endif /* HAVE_LIBSSL */ |
224 | ||
a469f8a5 MS |
225 | typedef enum _http_coding_e /**** HTTP content coding enumeration ****/ |
226 | { | |
227 | _HTTP_CODING_IDENTITY, /* No content coding */ | |
228 | _HTTP_CODING_GZIP, /* LZ77+gzip decompression */ | |
229 | _HTTP_CODING_DEFLATE, /* LZ77+zlib compression */ | |
230 | _HTTP_CODING_GUNZIP, /* LZ77+gzip decompression */ | |
231 | _HTTP_CODING_INFLATE /* LZ77+zlib decompression */ | |
232 | } _http_coding_t; | |
233 | ||
234 | typedef enum _http_mode_e /**** HTTP mode enumeration ****/ | |
235 | { | |
236 | _HTTP_MODE_CLIENT, /* Client connected to server */ | |
237 | _HTTP_MODE_SERVER /* Server connected (accepted) from client */ | |
238 | } _http_mode_t; | |
239 | ||
5ec1fd3d | 240 | # ifndef _HTTP_NO_PRIVATE |
a469f8a5 | 241 | struct _http_s /**** HTTP connection structure ****/ |
f7deaa1a | 242 | { |
243 | int fd; /* File descriptor for this socket */ | |
244 | int blocking; /* To block or not to block */ | |
245 | int error; /* Last error on read */ | |
246 | time_t activity; /* Time since last read/write */ | |
247 | http_state_t state; /* State of client */ | |
248 | http_status_t status; /* Status of last request */ | |
249 | http_version_t version; /* Protocol version */ | |
250 | http_keepalive_t keep_alive; /* Keep-alive supported? */ | |
85dda01c | 251 | struct sockaddr_in _hostaddr; /* Address of connected host (deprecated) */ |
f7deaa1a | 252 | char hostname[HTTP_MAX_HOST], |
253 | /* Name of connected host */ | |
a469f8a5 MS |
254 | fields[HTTP_FIELD_ACCEPT_ENCODING][HTTP_MAX_VALUE]; |
255 | /* Field values up to Accept-Encoding */ | |
f7deaa1a | 256 | char *data; /* Pointer to data buffer */ |
257 | http_encoding_t data_encoding; /* Chunked or not */ | |
85dda01c | 258 | int _data_remaining;/* Number of bytes left (deprecated) */ |
f7deaa1a | 259 | int used; /* Number of bytes used in buffer */ |
260 | char buffer[HTTP_MAX_BUFFER]; | |
261 | /* Buffer for incoming data */ | |
5ec1fd3d | 262 | int _auth_type; /* Authentication in use (deprecated) */ |
f7deaa1a | 263 | _cups_md5_state_t md5_state; /* MD5 state */ |
264 | char nonce[HTTP_MAX_VALUE]; | |
265 | /* Nonce value */ | |
266 | int nonce_count; /* Nonce count */ | |
7cf5915e | 267 | http_tls_t tls; /* TLS state information */ |
f7deaa1a | 268 | http_encryption_t encryption; /* Encryption requirements */ |
a469f8a5 | 269 | |
f7deaa1a | 270 | /**** New in CUPS 1.1.19 ****/ |
85dda01c MS |
271 | fd_set *input_set; /* select() set for httpWait() (deprecated) */ |
272 | http_status_t expect; /* Expect: header */ | |
273 | char *cookie; /* Cookie value(s) */ | |
a469f8a5 | 274 | |
f7deaa1a | 275 | /**** New in CUPS 1.1.20 ****/ |
276 | char _authstring[HTTP_MAX_VALUE], | |
c1420c87 | 277 | /* Current Authorization value (deprecated) */ |
f7deaa1a | 278 | userpass[HTTP_MAX_VALUE]; |
85dda01c MS |
279 | /* Username:password string */ |
280 | int digest_tries; /* Number of tries for digest auth */ | |
a469f8a5 | 281 | |
f7deaa1a | 282 | /**** New in CUPS 1.2 ****/ |
85dda01c MS |
283 | off_t data_remaining; /* Number of bytes left */ |
284 | http_addr_t *hostaddr; /* Current host address and port */ | |
285 | http_addrlist_t *addrlist; /* List of valid addresses */ | |
f7deaa1a | 286 | char wbuffer[HTTP_MAX_BUFFER]; |
287 | /* Buffer for outgoing data */ | |
85dda01c | 288 | int wused; /* Write buffer bytes used */ |
a469f8a5 | 289 | |
f7deaa1a | 290 | /**** New in CUPS 1.3 ****/ |
291 | char *field_authorization; | |
85dda01c | 292 | /* Authorization field */ |
c1420c87 | 293 | char *authstring; /* Current Authorization field */ |
f7deaa1a | 294 | # ifdef HAVE_GSSAPI |
85dda01c MS |
295 | gss_OID gssmech; /* Authentication mechanism */ |
296 | gss_ctx_id_t gssctx; /* Authentication context */ | |
297 | gss_name_t gssname; /* Authentication server name */ | |
f7deaa1a | 298 | # endif /* HAVE_GSSAPI */ |
b94498cf | 299 | # ifdef HAVE_AUTHORIZATION_H |
85dda01c | 300 | AuthorizationRef auth_ref; /* Authorization ref */ |
b94498cf | 301 | # endif /* HAVE_AUTHORIZATION_H */ |
a469f8a5 | 302 | |
7cf5915e MS |
303 | /**** New in CUPS 1.5 ****/ |
304 | http_tls_credentials_t tls_credentials; | |
85dda01c MS |
305 | /* TLS credentials */ |
306 | http_timeout_cb_t timeout_cb; /* Timeout callback */ | |
307 | void *timeout_data; /* User data pointer */ | |
308 | double timeout_value; /* Timeout in seconds */ | |
309 | int wait_value; /* httpWait value for timeout */ | |
eac3a0a0 MS |
310 | # ifdef HAVE_GSSAPI |
311 | char gsshost[256]; /* Hostname for Kerberos */ | |
312 | # endif /* HAVE_GSSAPI */ | |
a469f8a5 MS |
313 | |
314 | /**** New in CUPS 1.7 ****/ | |
cb7f98ee | 315 | int tls_upgrade; /* Non-zero if we are doing an upgrade */ |
a469f8a5 MS |
316 | _http_mode_t mode; /* _HTTP_MODE_CLIENT or _HTTP_MODE_SERVER */ |
317 | char *accept_encoding, | |
318 | /* Accept-Encoding field */ | |
319 | *allow, /* Allow field */ | |
c1420c87 MS |
320 | *server, /* Server field */ |
321 | *default_accept_encoding, | |
322 | *default_server, | |
323 | *default_user_agent; | |
324 | /* Default field values */ | |
a469f8a5 MS |
325 | # ifdef HAVE_LIBZ |
326 | _http_coding_t coding; /* _HTTP_CODING_xxx */ | |
327 | z_stream stream; /* (De)compression stream */ | |
0fa6c7fa | 328 | Bytef *dbuffer; /* Decompression buffer */ |
a469f8a5 | 329 | # endif /* HAVE_LIBZ */ |
f7deaa1a | 330 | }; |
5ec1fd3d | 331 | # endif /* !_HTTP_NO_PRIVATE */ |
f7deaa1a | 332 | |
333 | ||
ef416fc2 | 334 | /* |
335 | * Some OS's don't have hstrerror(), most notably Solaris... | |
336 | */ | |
337 | ||
338 | # ifndef HAVE_HSTRERROR | |
339 | extern const char *_cups_hstrerror(int error); | |
340 | # define hstrerror _cups_hstrerror | |
ef416fc2 | 341 | # endif /* !HAVE_HSTRERROR */ |
342 | ||
89d46774 | 343 | |
344 | /* | |
345 | * Some OS's don't have getifaddrs() and freeifaddrs()... | |
346 | */ | |
347 | ||
07ed0e9a MS |
348 | # if !defined(WIN32) && !defined(HAVE_GETIFADDRS) |
349 | # ifdef ifa_dstaddr | |
350 | # undef ifa_dstaddr | |
351 | # endif /* ifa_dstaddr */ | |
352 | # ifndef ifr_netmask | |
353 | # define ifr_netmask ifr_addr | |
354 | # endif /* !ifr_netmask */ | |
89d46774 | 355 | |
356 | struct ifaddrs /**** Interface Structure ****/ | |
357 | { | |
358 | struct ifaddrs *ifa_next; /* Next interface in list */ | |
359 | char *ifa_name; /* Name of interface */ | |
360 | unsigned int ifa_flags; /* Flags (up, point-to-point, etc.) */ | |
361 | struct sockaddr *ifa_addr, /* Network address */ | |
f301802f | 362 | *ifa_netmask; /* Address mask */ |
363 | union | |
364 | { | |
365 | struct sockaddr *ifu_broadaddr; /* Broadcast address of this interface. */ | |
366 | struct sockaddr *ifu_dstaddr; /* Point-to-point destination address. */ | |
367 | } ifa_ifu; | |
368 | ||
89d46774 | 369 | void *ifa_data; /* Interface statistics */ |
370 | }; | |
371 | ||
07ed0e9a MS |
372 | # ifndef ifa_broadaddr |
373 | # define ifa_broadaddr ifa_ifu.ifu_broadaddr | |
374 | # endif /* !ifa_broadaddr */ | |
375 | # ifndef ifa_dstaddr | |
376 | # define ifa_dstaddr ifa_ifu.ifu_dstaddr | |
377 | # endif /* !ifa_dstaddr */ | |
f301802f | 378 | |
a74454a7 | 379 | extern int _cups_getifaddrs(struct ifaddrs **addrs); |
07ed0e9a | 380 | # define getifaddrs _cups_getifaddrs |
a74454a7 | 381 | extern void _cups_freeifaddrs(struct ifaddrs *addrs); |
07ed0e9a MS |
382 | # define freeifaddrs _cups_freeifaddrs |
383 | # endif /* !WIN32 && !HAVE_GETIFADDRS */ | |
384 | ||
89d46774 | 385 | |
839a51c8 | 386 | /* |
1ff0402e | 387 | * Prototypes... |
839a51c8 MS |
388 | */ |
389 | ||
22c9029b | 390 | extern void _httpAddrSetPort(http_addr_t *addr, int port); |
85dda01c MS |
391 | extern http_tls_credentials_t |
392 | _httpCreateCredentials(cups_array_t *credentials); | |
1106b00e MS |
393 | extern char *_httpDecodeURI(char *dst, const char *src, |
394 | size_t dstsize); | |
6d2f911b | 395 | extern void _httpDisconnect(http_t *http); |
5eb9da71 MS |
396 | extern char *_httpEncodeURI(char *dst, const char *src, |
397 | size_t dstsize); | |
7cf5915e | 398 | extern void _httpFreeCredentials(http_tls_credentials_t credentials); |
5eb9da71 | 399 | extern const char *_httpResolveURI(const char *uri, char *resolved_uri, |
eac3a0a0 | 400 | size_t resolved_size, int options, |
07ed0e9a MS |
401 | int (*cb)(void *context), |
402 | void *context); | |
41e6c1f1 | 403 | extern const char *_httpStatus(cups_lang_t *lang, http_status_t status); |
e60ec91f | 404 | extern int _httpUpdate(http_t *http, http_status_t *status); |
38e73f87 | 405 | extern int _httpWait(http_t *http, int msec, int usessl); |
6d2f911b MS |
406 | |
407 | ||
07ed0e9a MS |
408 | /* |
409 | * C++ magic... | |
410 | */ | |
411 | ||
412 | # ifdef __cplusplus | |
413 | } | |
414 | # endif /* __cplusplus */ | |
415 | ||
ef416fc2 | 416 | #endif /* !_CUPS_HTTP_PRIVATE_H_ */ |
417 | ||
418 | /* | |
f2d18633 | 419 | * End of "$Id$". |
ef416fc2 | 420 | */ |