Ryzom
/
ryzom-core
1
1
Fork 0
Code Issues 38 Pull Requests Projects 1 Releases 1 Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
fix-linux-multi-monitor
core4
add-toggle-free-look-ah
main/yubo-dev
fix-media-player-playlist-limit
feature/change-sound-driver-ingame
10-use-item-shortcut-client
53-setting-to-change-tooltip-opacity
47-hide-quality-indicator-on-item-if-equal-to-1
18-enchant-icon-does-not-properly-update-on-weapon
feature/quick-start-py
23-sort-inventory-by-type-weight-bulk-quantity-quality-2
51-shift-enter-at-merchant-no-longer-sells-to-merchant
52-add-escape-shortcut-to-open-quit-menu
60-weapon-does-not-show-in-both-hands-on-load-in
main/atys-live
main/gingo-test
feature/split-action-bar-1-and-2
55-remove-chat-replies-shortcuts
46-rework-item-buff-icon-placement
43-crafting-items-are-not-sorted
40-dragging-from-player-trade-to-inventory-takes-two-tries
38-add-smooth-resizing-of-entitie-when-vpb-are-changed
36-add-ability-to-have-translated-titles-with-untraslated-fields
35-allow-drag-and-drop-between-zig-and-guild
feature/compatibility-old-gcc
26-encoding-issues-in-client-beta-after-core4-merge
fix-viewtext-localized-text
main/atys-pre-live
21-fix-nopatch-without-argument-crash
30-changes-for-silan-refactoring
fixes
27-fixed-crash-with-html-image-downloads
feature/hunter
16-drag-drop-to-player-trade-window-from-all-inventories
23-sort-inventory-by-type-weight-bulk-quantity-quality
25-remove-lock-option-from-item-menu-in-guild-inventory
feature/colissions-stairs
feature/core4-atys
feature/hunter-dxsdk-download
merge/2021-11-19
fix-area-effect-flying-text
add-screenshot-dir-to-config
feature/develop-atys
self-kill
inventory-fixes
develop
13-inventory-fixes
20-add-equip-option-to-right-click-dialog-in-all-inventories
6-animal-status-innacurate-when-zig-is-in-bag
atys
use-item-macro
ryzomclassic-develop
ryzom/silan_refactoring
feature/prepare-cross-merge
storyline/s2e0
feature/bonusmalus-timers
ryzom/ark/features
ryzom/op_refactoring
feature/css-lang-var
ryzom/ui/improvements
fx
feature/hires-textures
feature/cdb-packed-ryzomclassic
feature/cdb-packed
feature/opengl3
ryzom/patch-changes
fix_opengl_on_mac
ryzom/deepl
ryzom/lua-features
fix-media-player
feature/code-to-root
feature/post-code-move
feature/pre-code-move
fix-menu-scroll
storyline/s2e1
webig-fixes
ryzom/sheets
feature/streamed-package
hg/develop
hg/hotfix/patches-from-atys
hg/yubo
hg/atys
hg/ark
hg/feature/html-improvements
undelete-develop
hg/feature/menu-navi
hg/compatibility-develop
kaetemi-develop
feature/nel-dll
feature/version-resources
feature/clean-deprecated
feature/3ds-max-2020
feature/pipeline-tools
feature/build-pipeline-v3
hg/feature/material-editor
hg/feature/opengl3
hg/feature/qt5
hg/feature/cef3
hg/feature/streamed-package
hg/feature/light_cycle
hg/compatibility
hg/feature/gsoc2012-fabien
hg/feature/build_pipeline_v3
hg/feature/cdb-packed
hg/feature/game-device
hg/feature/sdl2
hg/feature/sse2
hg/feature/gsoc2013-dfighter
hg/feature/sound
3.3.0
Live-746
Live-791
Live-803
Live-813
Live-831
Live-832
Live-834
compatibility-merge
latest-default-graft
latest-graft-to-default
latest-merge-from-default
live/837
live/893
live/895
ryzom-patch-3.0.0
ryzom-patch-3.0.1
ryzom-patch-3.0.2
ryzom-patch-3.1.0
ryzom-patch-3.1.0-april_patch
ryzom-patch-3.1.0-hotfix
ryzom-patch-3.2.0
ryzom-patch-3.2.1
ryzom-patch-3.3.0
ryzom-patch-3.3.1
ryzom-patch-3.4.0
ryzom-patch-3.4.0_Atysmas
ryzom-patch-3.4.0_Steam_Fix
ryzom-patch-3.5.0
ryzom-patch-3.5.0.9637
ryzom/3.0.0
ryzom/3.0.1
ryzom/3.0.2
ryzom/3.1.0
ryzom/3.1.0-april_patch
ryzom/3.1.0-hotfix
ryzom/3.2.0
ryzom/3.2.1
ryzom/3.3.0
ryzom/3.3.1
ryzom/3.4.0
ryzom/3.4.0-atysmas
ryzom/3.4.0-steam_fix
ryzom/3.5.0
ryzom/3.5.0.9637
ryzomcore/v0.10.0
ryzomcore/v0.11.0
ryzomcore/v0.11.1
ryzomcore/v0.11.2
ryzomcore/v0.11.3
ryzomcore/v0.12.0
ryzomcore/v0.8.0
ryzomcore/v0.9.0
ryzomcore/v0.9.1
ryzomcore/v1.0.0
ryzomcore/v1.0.1
ryzomcore_0_8_0
v0.10.0
v0.11.0
v0.11.1
v0.11.2
v0.11.3
v0.12.0
v0.8.0
v0.9.0
v0.9.1
v1.0.0
v1.0.1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'bb03f80d84'
${ noResults }
ryzom-core/nel/src/gui/http_hsts.cpp

253 lines
5.3 KiB
C++
Raw Blame History

// Ryzom - MMORPG Framework <http://dev.ryzom.com/projects/ryzom/>
// Copyright (C) 2010 Winch Gate Property Limited
//
// This source file has been modified by the following contributors:
// Copyright (C) 2018 Jan BOON (Kaetemi) <jan.boon@kaetemi.be>
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as
// published by the Free Software Foundation, either version 3 of the
// License, or (at your option) any later version.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with this program. If not, see <http://www.gnu.org/licenses/>.
#include "stdpch.h"
#include "nel/gui/http_hsts.h"
using namespace std;
using namespace NLMISC;
#ifdef DEBUG_NEW
#define new DEBUG_NEW
#endif
namespace NLGUI {
CStrictTransportSecurity* CStrictTransportSecurity::instance = NULL;
CStrictTransportSecurity* CStrictTransportSecurity::getInstance()
{
if (!instance)
{
instance= new CStrictTransportSecurity();
}
return instance;
}
void CStrictTransportSecurity::release()
{
delete instance;
instance = NULL;
}
CStrictTransportSecurity::~CStrictTransportSecurity()
{
save();
}
// ************************************************************************
bool CStrictTransportSecurity::isSecureHost(const std::string &domain) const
{
SHSTSObject hsts;
if (get(domain, hsts))
{
time_t currentTime;
time(&currentTime);
return (hsts.Expires > currentTime);
}
return false;
}
// ************************************************************************
void CStrictTransportSecurity::erase(const std::string &domain)
{
if (_Domains.count(domain) > 0)
{
_Domains.erase(domain);
}
}
void CStrictTransportSecurity::set(const std::string &domain, uint64 expires, bool includeSubDomains)
{
if (expires == 0)
{
erase(domain);
return;
}
_Domains[domain].Expires = expires;
_Domains[domain].IncludeSubDomains = includeSubDomains;
}
bool CStrictTransportSecurity::get(const std::string &domain, SHSTSObject &hsts) const
{
if (domain.empty() || _Domains.empty())
return false;
THSTSObjectMap::const_iterator itHsts;
itHsts = _Domains.find(domain);
if (itHsts != _Domains.end())
{
hsts = itHsts->second;
return true;
}
size_t firstOf = domain.find_first_of(".");
size_t lastOf = domain.find_last_of(".");
while(firstOf != lastOf)
{
std::string tmp;
tmp = domain.substr(firstOf+1);
itHsts = _Domains.find(tmp);
if (itHsts != _Domains.end())
{
if (itHsts->second.IncludeSubDomains)
{
hsts = itHsts->second;
return true;
}
return false;
}
firstOf = domain.find_first_of(".", firstOf + 1);
}
return false;
}
void CStrictTransportSecurity::init(const std::string &fname)
{
_Domains.clear();
_Filename = fname;
if (_Filename.empty() || !CFile::fileExists(_Filename))
{
return;
}
CIFile in;
if (!in.open(_Filename))
{
nlwarning("Unable to open %s for reading", _Filename.c_str());
return;
}
serial(in);
}
void CStrictTransportSecurity::save()
{
if (_Filename.empty())
return;
if (_Domains.empty())
{
CFile::deleteFile(_Filename);
return;
}
COFile out;
if (!out.open(_Filename))
{
nlwarning("Unable to open %s for writing", _Filename.c_str());
return;
}
serial(out);
out.close();
}
void CStrictTransportSecurity::serial(NLMISC::IStream& f)
{
try
{
f.serialVersion(1);
// HSTS
f.serialCheck(NELID("STSH"));
if (f.isReading())
{
uint32 nbItems;
f.serial(nbItems);
for(uint32 k = 0; k < nbItems; ++k)
{
std::string domain;
f.serial(domain);
f.serial(_Domains[domain].Expires);
f.serial(_Domains[domain].IncludeSubDomains);
}
}
else
{
uint32 nbItems = _Domains.size();
f.serial(nbItems);
for (THSTSObjectMap::iterator it = _Domains.begin(); it != _Domains.end(); ++it)
{
std::string domain(it->first);
f.serial(domain);
f.serial(_Domains[domain].Expires);
f.serial(_Domains[domain].IncludeSubDomains);
}
}
}
catch (...)
{
_Domains.clear();
nlwarning("Invalid HTST file format (%s)", _Filename.c_str());
}
}
// ***************************************************************************
void CStrictTransportSecurity::setFromHeader(const std::string &domain, const std::string &header)
{
// max-age=<seconds>; includeSubdomains; preload;
std::vector<std::string> elements;
NLMISC::splitString(toLowerAscii(header), ";", elements);
if (elements.empty()) return;
time_t currentTime;
time(&currentTime);
uint64 expire = 0;
bool includeSubDomains = false;
for(uint i=0; i< elements.size(); ++i)
{
std::string str(trim(elements[i]));
if (str.substr(0, 8) == "max-age=")
{
uint64 ttl;
if (fromString(str.substr(8), ttl))
{
if (ttl > 0)
{
expire = currentTime + ttl;
}
}
}
else if (str == "includesubdomains")
{
includeSubDomains = true;
}
}
if (expire == 0)
{
erase(domain);
}
else
{
set(domain, expire, includeSubDomains);
}
}
}
Reference in New Issue View Git Blame Copy Permalink