search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
kernel32: Do not allow to combine NORM_IGNORENONSPACE and/or NORM_IGNORESYMBOLS with...
[wine.git] / dlls / wininet / cookie.c
blob5da9710b2035f9fcb8ec5795dcb55e1222ae6e0b
1 /*
2 * Wininet - cookie handling stuff
3 *
4 * Copyright 2002 TransGaming Technologies Inc.
5 *
6 * David Hammerton
7 *
8 * This library is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public
10 * License as published by the Free Software Foundation; either
11 * version 2.1 of the License, or (at your option) any later version.
12 *
13 * This library is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 * Lesser General Public License for more details.
17 *
18 * You should have received a copy of the GNU Lesser General Public
19 * License along with this library; if not, write to the Free Software
20 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
21 */
22
23 #include "ws2tcpip.h"
24
25 #include <stdarg.h>
26 #include <stdio.h>
27 #include <stdlib.h>
28 #include <string.h>
29 #include <assert.h>
30
31 #include "windef.h"
32 #include "winbase.h"
33 #include "wininet.h"
34 #include "lmcons.h"
35 #include "winerror.h"
36
37 #include "wine/debug.h"
38 #include "internet.h"
39
40 #define RESPONSE_TIMEOUT 30 /* FROM internet.c */
41
42
43 WINE_DEFAULT_DEBUG_CHANNEL(wininet);
44
45 /* FIXME
46 * Cookies could use A LOT OF MEMORY. We need some kind of memory management here!
47 */
48
49 struct _cookie_domain_t;
50 struct _cookie_container_t;
51
52 typedef struct _cookie_t {
53 struct list entry;
54
55 struct _cookie_container_t *container;
56
57 WCHAR *name;
58 WCHAR *data;
59 DWORD flags;
60 FILETIME expiry;
61 FILETIME create;
62 } cookie_t;
63
64 typedef struct _cookie_container_t {
65 struct list entry;
66
67 WCHAR *cookie_url;
68 substr_t path;
69 struct _cookie_domain_t *domain;
70
71 struct list cookie_list;
72 } cookie_container_t;
73
74 typedef struct _cookie_domain_t {
75 struct list entry;
76
77 WCHAR *domain;
78 unsigned subdomain_len;
79
80 struct _cookie_domain_t *parent;
81 struct list subdomain_list;
82
83 /* List of stored paths sorted by length of the path. */
84 struct list path_list;
85 } cookie_domain_t;
86
87 static CRITICAL_SECTION cookie_cs;
88 static CRITICAL_SECTION_DEBUG cookie_cs_debug =
89 {
90 0, 0, &cookie_cs,
91 { &cookie_cs_debug.ProcessLocksList, &cookie_cs_debug.ProcessLocksList },
92 0, 0, { (DWORD_PTR)(__FILE__ ": cookie_cs") }
93 };
94 static CRITICAL_SECTION cookie_cs = { &cookie_cs_debug, -1, 0, 0, 0, 0 };
95 static struct list domain_list = LIST_INIT(domain_list);
96
97 static cookie_domain_t *get_cookie_domain(substr_t domain, BOOL create)
98 {
99 const WCHAR *ptr = domain.str + domain.len, *ptr_end, *subdomain_ptr;
100 cookie_domain_t *iter, *current_domain, *prev_domain = NULL;
101 struct list *current_list = &domain_list;
102
103 while(1) {
104 for(ptr_end = ptr--; ptr > domain.str && *ptr != '.'; ptr--);
105 subdomain_ptr = *ptr == '.' ? ptr+1 : ptr;
106
107 current_domain = NULL;
108 LIST_FOR_EACH_ENTRY(iter, current_list, cookie_domain_t, entry) {
109 if(ptr_end-subdomain_ptr == iter->subdomain_len
110 && !memcmp(subdomain_ptr, iter->domain, iter->subdomain_len*sizeof(WCHAR))) {
111 current_domain = iter;
112 break;
113 }
114 }
115
116 if(!current_domain) {
117 if(!create)
118 return prev_domain;
119
120 current_domain = heap_alloc(sizeof(*current_domain));
121 if(!current_domain)
122 return NULL;
123
124 current_domain->domain = heap_strndupW(subdomain_ptr, domain.str + domain.len - subdomain_ptr);
125 if(!current_domain->domain) {
126 heap_free(current_domain);
127 return NULL;
128 }
129
130 current_domain->subdomain_len = ptr_end-subdomain_ptr;
131
132 current_domain->parent = prev_domain;
133 list_init(&current_domain->path_list);
134 list_init(&current_domain->subdomain_list);
135
136 list_add_tail(current_list, &current_domain->entry);
137 }
138
139 if(ptr == domain.str)
140 return current_domain;
141
142 prev_domain = current_domain;
143 current_list = &current_domain->subdomain_list;
144 }
145 }
146
147 static WCHAR *create_cookie_url(substr_t domain, substr_t path, substr_t *ret_path)
148 {
149 WCHAR user[UNLEN], *p, *url;
150 DWORD len, user_len, i;
151
152 static const WCHAR cookie_prefix[] = {'C','o','o','k','i','e',':'};
153
154 user_len = sizeof(user)/sizeof(WCHAR);
155 if(!GetUserNameW(user, &user_len))
156 return FALSE;
157 user_len--;
158
159 len = sizeof(cookie_prefix)/sizeof(WCHAR) + user_len + 1 /* @ */ + domain.len + path.len;
160 url = heap_alloc((len+1) * sizeof(WCHAR));
161 if(!url)
162 return NULL;
163
164 memcpy(url, cookie_prefix, sizeof(cookie_prefix));
165 p = url + sizeof(cookie_prefix)/sizeof(WCHAR);
166
167 memcpy(p, user, user_len*sizeof(WCHAR));
168 p += user_len;
169
170 *p++ = '@';
171
172 memcpy(p, domain.str, domain.len*sizeof(WCHAR));
173 p += domain.len;
174
175 for(i=0; i < path.len; i++)
176 p[i] = tolowerW(path.str[i]);
177 p[path.len] = 0;
178
179 ret_path->str = p;
180 ret_path->len = path.len;
181 return url;
182 }
183
184 static cookie_container_t *get_cookie_container(substr_t domain, substr_t path, BOOL create)
185 {
186 cookie_domain_t *cookie_domain;
187 cookie_container_t *cookie_container, *iter;
188
189 cookie_domain = get_cookie_domain(domain, create);
190 if(!cookie_domain)
191 return NULL;
192
193 LIST_FOR_EACH_ENTRY(cookie_container, &cookie_domain->path_list, cookie_container_t, entry) {
194 if(cookie_container->path.len < path.len)
195 break;
196
197 if(path.len == cookie_container->path.len && !strncmpiW(cookie_container->path.str, path.str, path.len))
198 return cookie_container;
199 }
200
201 if(!create)
202 return NULL;
203
204 cookie_container = heap_alloc(sizeof(*cookie_container));
205 if(!cookie_container)
206 return NULL;
207
208 cookie_container->cookie_url = create_cookie_url(substrz(cookie_domain->domain), path, &cookie_container->path);
209 if(!cookie_container->cookie_url) {
210 heap_free(cookie_container);
211 return NULL;
212 }
213
214 cookie_container->domain = cookie_domain;
215 list_init(&cookie_container->cookie_list);
216
217 LIST_FOR_EACH_ENTRY(iter, &cookie_domain->path_list, cookie_container_t, entry) {
218 if(iter->path.len <= path.len) {
219 list_add_before(&iter->entry, &cookie_container->entry);
220 return cookie_container;
221 }
222 }
223
224 list_add_tail(&cookie_domain->path_list, &cookie_container->entry);
225 return cookie_container;
226 }
227
228 static void delete_cookie(cookie_t *cookie)
229 {
230 list_remove(&cookie->entry);
231
232 heap_free(cookie->name);
233 heap_free(cookie->data);
234 heap_free(cookie);
235 }
236
237 static cookie_t *alloc_cookie(substr_t name, substr_t data, FILETIME expiry, FILETIME create_time, DWORD flags)
238 {
239 cookie_t *new_cookie;
240
241 new_cookie = heap_alloc(sizeof(*new_cookie));
242 if(!new_cookie)
243 return NULL;
244
245 new_cookie->expiry = expiry;
246 new_cookie->create = create_time;
247 new_cookie->flags = flags;
248 list_init(&new_cookie->entry);
249
250 new_cookie->name = heap_strndupW(name.str, name.len);
251 new_cookie->data = heap_strndupW(data.str, data.len);
252 if(!new_cookie->name || !new_cookie->data) {
253 delete_cookie(new_cookie);
254 return NULL;
255 }
256
257 return new_cookie;
258 }
259
260 static cookie_t *find_cookie(cookie_container_t *container, substr_t name)
261 {
262 cookie_t *iter;
263
264 LIST_FOR_EACH_ENTRY(iter, &container->cookie_list, cookie_t, entry) {
265 if(strlenW(iter->name) == name.len && !strncmpiW(iter->name, name.str, name.len))
266 return iter;
267 }
268
269 return NULL;
270 }
271
272 static void add_cookie(cookie_container_t *container, cookie_t *new_cookie)
273 {
274 TRACE("Adding %s=%s to %s\n", debugstr_w(new_cookie->name), debugstr_w(new_cookie->data),
275 debugstr_w(container->cookie_url));
276
277 list_add_tail(&container->cookie_list, &new_cookie->entry);
278 new_cookie->container = container;
279 }
280
281 static void replace_cookie(cookie_container_t *container, cookie_t *new_cookie)
282 {
283 cookie_t *old_cookie;
284
285 old_cookie = find_cookie(container, substrz(new_cookie->name));
286 if(old_cookie)
287 delete_cookie(old_cookie);
288
289 add_cookie(container, new_cookie);
290 }
291
292 static BOOL cookie_match_path(cookie_container_t *container, substr_t path)
293 {
294 return path.len >= container->path.len && !strncmpiW(container->path.str, path.str, container->path.len);
295 }
296
297 static BOOL load_persistent_cookie(substr_t domain, substr_t path)
298 {
299 INTERNET_CACHE_ENTRY_INFOW *info;
300 cookie_container_t *cookie_container;
301 cookie_t *new_cookie;
302 HANDLE cookie;
303 char *str = NULL, *pbeg, *pend;
304 DWORD size, flags;
305 WCHAR *name, *data;
306 FILETIME expiry, create, time;
307
308 cookie_container = get_cookie_container(domain, path, TRUE);
309 if(!cookie_container)
310 return FALSE;
311
312 size = 0;
313 RetrieveUrlCacheEntryStreamW(cookie_container->cookie_url, NULL, &size, FALSE, 0);
314 if(GetLastError() != ERROR_INSUFFICIENT_BUFFER)
315 return TRUE;
316 info = heap_alloc(size);
317 if(!info)
318 return FALSE;
319 cookie = RetrieveUrlCacheEntryStreamW(cookie_container->cookie_url, info, &size, FALSE, 0);
320 size = info->dwSizeLow;
321 heap_free(info);
322 if(!cookie)
323 return FALSE;
324
325 if(!(str = heap_alloc(size+1)) || !ReadUrlCacheEntryStream(cookie, 0, str, &size, 0)) {
326 UnlockUrlCacheEntryStream(cookie, 0);
327 heap_free(str);
328 return FALSE;
329 }
330 str[size] = 0;
331 UnlockUrlCacheEntryStream(cookie, 0);
332
333 GetSystemTimeAsFileTime(&time);
334 for(pbeg=str; pbeg && *pbeg; name=data=NULL) {
335 pend = strchr(pbeg, '\n');
336 if(!pend)
337 break;
338 *pend = 0;
339 name = heap_strdupAtoW(pbeg);
340
341 pbeg = pend+1;
342 pend = strchr(pbeg, '\n');
343 if(!pend)
344 break;
345 *pend = 0;
346 data = heap_strdupAtoW(pbeg);
347
348 pbeg = strchr(pend+1, '\n');
349 if(!pbeg)
350 break;
351 sscanf(pbeg, "%u %u %u %u %u", &flags, &expiry.dwLowDateTime, &expiry.dwHighDateTime,
352 &create.dwLowDateTime, &create.dwHighDateTime);
353
354 /* skip "*\n" */
355 pbeg = strchr(pbeg, '*');
356 if(pbeg) {
357 pbeg++;
358 if(*pbeg)
359 pbeg++;
360 }
361
362 if(!name || !data)
363 break;
364
365 if(CompareFileTime(&time, &expiry) <= 0) {
366 new_cookie = alloc_cookie(substr(NULL, 0), substr(NULL, 0), expiry, create, flags);
367 if(!new_cookie)
368 break;
369
370 new_cookie->name = name;
371 new_cookie->data = data;
372
373 replace_cookie(cookie_container, new_cookie);
374 }else {
375 heap_free(name);
376 heap_free(data);
377 }
378 }
379 heap_free(str);
380 heap_free(name);
381 heap_free(data);
382
383 return TRUE;
384 }
385
386 static BOOL save_persistent_cookie(cookie_container_t *container)
387 {
388 static const WCHAR txtW[] = {'t','x','t',0};
389
390 WCHAR cookie_file[MAX_PATH];
391 HANDLE cookie_handle;
392 cookie_t *cookie_container = NULL, *cookie_iter;
393 BOOL do_save = FALSE;
394 char buf[64], *dyn_buf;
395 FILETIME time;
396 DWORD bytes_written;
397 size_t len;
398
399 /* check if there's anything to save */
400 GetSystemTimeAsFileTime(&time);
401 LIST_FOR_EACH_ENTRY_SAFE(cookie_container, cookie_iter, &container->cookie_list, cookie_t, entry)
402 {
403 if((cookie_container->expiry.dwLowDateTime || cookie_container->expiry.dwHighDateTime)
404 && CompareFileTime(&time, &cookie_container->expiry) > 0) {
405 delete_cookie(cookie_container);
406 continue;
407 }
408
409 if(!(cookie_container->flags & INTERNET_COOKIE_IS_SESSION)) {
410 do_save = TRUE;
411 break;
412 }
413 }
414
415 if(!do_save) {
416 DeleteUrlCacheEntryW(container->cookie_url);
417 return TRUE;
418 }
419
420 if(!CreateUrlCacheEntryW(container->cookie_url, 0, txtW, cookie_file, 0))
421 return FALSE;
422
423 cookie_handle = CreateFileW(cookie_file, GENERIC_WRITE, 0, NULL, OPEN_EXISTING, 0, NULL);
424 if(cookie_handle == INVALID_HANDLE_VALUE) {
425 DeleteFileW(cookie_file);
426 return FALSE;
427 }
428
429 LIST_FOR_EACH_ENTRY(cookie_container, &container->cookie_list, cookie_t, entry)
430 {
431 if(cookie_container->flags & INTERNET_COOKIE_IS_SESSION)
432 continue;
433
434 dyn_buf = heap_strdupWtoA(cookie_container->name);
435 if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) {
436 heap_free(dyn_buf);
437 do_save = FALSE;
438 break;
439 }
440 heap_free(dyn_buf);
441 if(!WriteFile(cookie_handle, "\n", 1, &bytes_written, NULL)) {
442 do_save = FALSE;
443 break;
444 }
445
446 dyn_buf = heap_strdupWtoA(cookie_container->data);
447 if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) {
448 heap_free(dyn_buf);
449 do_save = FALSE;
450 break;
451 }
452 heap_free(dyn_buf);
453 if(!WriteFile(cookie_handle, "\n", 1, &bytes_written, NULL)) {
454 do_save = FALSE;
455 break;
456 }
457
458 dyn_buf = heap_strdupWtoA(container->domain->domain);
459 if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) {
460 heap_free(dyn_buf);
461 do_save = FALSE;
462 break;
463 }
464 heap_free(dyn_buf);
465
466 len = WideCharToMultiByte(CP_ACP, 0, container->path.str, container->path.len, NULL, 0, NULL, NULL);
467 dyn_buf = heap_alloc(len+1);
468 if(dyn_buf) {
469 WideCharToMultiByte(CP_ACP, 0, container->path.str, container->path.len, dyn_buf, len, NULL, NULL);
470 dyn_buf[len] = 0;
471 }
472 if(!dyn_buf || !WriteFile(cookie_handle, dyn_buf, strlen(dyn_buf), &bytes_written, NULL)) {
473 heap_free(dyn_buf);
474 do_save = FALSE;
475 break;
476 }
477 heap_free(dyn_buf);
478
479 sprintf(buf, "\n%u\n%u\n%u\n%u\n%u\n*\n", cookie_container->flags,
480 cookie_container->expiry.dwLowDateTime, cookie_container->expiry.dwHighDateTime,
481 cookie_container->create.dwLowDateTime, cookie_container->create.dwHighDateTime);
482 if(!WriteFile(cookie_handle, buf, strlen(buf), &bytes_written, NULL)) {
483 do_save = FALSE;
484 break;
485 }
486 }
487
488 CloseHandle(cookie_handle);
489 if(!do_save) {
490 ERR("error saving cookie file\n");
491 DeleteFileW(cookie_file);
492 return FALSE;
493 }
494
495 memset(&time, 0, sizeof(time));
496 return CommitUrlCacheEntryW(container->cookie_url, cookie_file, time, time, 0, NULL, 0, txtW, 0);
497 }
498
499 static BOOL cookie_parse_url(const WCHAR *url, substr_t *host, substr_t *path)
500 {
501 URL_COMPONENTSW comp = { sizeof(comp) };
502 static const WCHAR rootW[] = {'/',0};
503
504 comp.dwHostNameLength = 1;
505 comp.dwUrlPathLength = 1;
506
507 if(!InternetCrackUrlW(url, 0, 0, &comp) || !comp.dwHostNameLength)
508 return FALSE;
509
510 /* discard the webpage off the end of the path */
511 while(comp.dwUrlPathLength && comp.lpszUrlPath[comp.dwUrlPathLength-1] != '/')
512 comp.dwUrlPathLength--;
513
514 *host = substr(comp.lpszHostName, comp.dwHostNameLength);
515 *path = comp.dwUrlPathLength ? substr(comp.lpszUrlPath, comp.dwUrlPathLength) : substr(rootW, 1);
516 return TRUE;
517 }
518
519 typedef struct {
520 cookie_t **cookies;
521 unsigned cnt;
522 unsigned size;
523
524 unsigned string_len;
525 } cookie_set_t;
526
527 static DWORD get_cookie(substr_t host, substr_t path, DWORD flags, cookie_set_t *res)
528 {
529 static const WCHAR empty_path[] = { '/',0 };
530
531 const WCHAR *p;
532 cookie_domain_t *domain;
533 cookie_container_t *container;
534 FILETIME tm;
535
536 GetSystemTimeAsFileTime(&tm);
537
538 p = host.str + host.len;
539 while(p > host.str && p[-1] != '.') p--;
540 while(p != host.str) {
541 p--;
542 while(p > host.str && p[-1] != '.') p--;
543 if(p == host.str) break;
544
545 load_persistent_cookie(substr(p, host.str+host.len-p), substr(empty_path, 1));
546 }
547
548 p = path.str + path.len;
549 do {
550 load_persistent_cookie(host, substr(path.str, p-path.str));
551
552 p--;
553 while(p > path.str && p[-1] != '/') p--;
554 }while(p != path.str);
555
556 domain = get_cookie_domain(host, FALSE);
557 if(!domain) {
558 TRACE("Unknown host %s\n", debugstr_wn(host.str, host.len));
559 return ERROR_NO_MORE_ITEMS;
560 }
561
562 for(domain = get_cookie_domain(host, FALSE); domain; domain = domain->parent) {
563 TRACE("Trying %s domain...\n", debugstr_w(domain->domain));
564
565 LIST_FOR_EACH_ENTRY(container, &domain->path_list, cookie_container_t, entry) {
566 struct list *cursor, *cursor2;
567
568 TRACE("path %s\n", debugstr_wn(container->path.str, container->path.len));
569
570 if(!cookie_match_path(container, path))
571 continue;
572
573 TRACE("found domain %p\n", domain->domain);
574
575 LIST_FOR_EACH_SAFE(cursor, cursor2, &container->cookie_list) {
576 cookie_t *cookie_iter = LIST_ENTRY(cursor, cookie_t, entry);
577
578 /* check for expiry */
579 if((cookie_iter->expiry.dwLowDateTime != 0 || cookie_iter->expiry.dwHighDateTime != 0)
580 && CompareFileTime(&tm, &cookie_iter->expiry) > 0) {
581 TRACE("Found expired cookie. deleting\n");
582 delete_cookie(cookie_iter);
583 continue;
584 }
585
586 if((cookie_iter->flags & INTERNET_COOKIE_HTTPONLY) && !(flags & INTERNET_COOKIE_HTTPONLY))
587 continue;
588
589
590 if(!res->size) {
591 res->cookies = heap_alloc(4*sizeof(*res->cookies));
592 if(!res->cookies)
593 continue;
594 res->size = 4;
595 }else if(res->cnt == res->size) {
596 cookie_t **new_cookies = heap_realloc(res->cookies, res->size*2*sizeof(*res->cookies));
597 if(!new_cookies)
598 continue;
599 res->cookies = new_cookies;
600 res->size *= 2;
601 }
602
603 if(res->cnt)
604 res->string_len += 2; /* '; ' */
605 res->cookies[res->cnt++] = cookie_iter;
606
607 res->string_len += strlenW(cookie_iter->name);
608 if(*cookie_iter->data)
609 res->string_len += 1 /* = */ + strlenW(cookie_iter->data);
610 }
611 }
612 }
613
614 return ERROR_SUCCESS;
615 }
616
617 static void cookie_set_to_string(const cookie_set_t *cookie_set, WCHAR *str)
618 {
619 WCHAR *ptr = str;
620 unsigned i, len;
621
622 for(i=0; i<cookie_set->cnt; i++) {
623 if(i) {
624 *ptr++ = ';';
625 *ptr++ = ' ';
626 }
627
628 len = strlenW(cookie_set->cookies[i]->name);
629 memcpy(ptr, cookie_set->cookies[i]->name, len*sizeof(WCHAR));
630 ptr += len;
631
632 if(*cookie_set->cookies[i]->data) {
633 *ptr++ = '=';
634 len = strlenW(cookie_set->cookies[i]->data);
635 memcpy(ptr, cookie_set->cookies[i]->data, len*sizeof(WCHAR));
636 ptr += len;
637 }
638 }
639
640 assert(ptr-str == cookie_set->string_len);
641 TRACE("%s\n", debugstr_wn(str, ptr-str));
642 }
643
644 DWORD get_cookie_header(const WCHAR *host, const WCHAR *path, WCHAR **ret)
645 {
646 cookie_set_t cookie_set = {0};
647 DWORD res;
648
649 static const WCHAR cookieW[] = {'C','o','o','k','i','e',':',' '};
650
651 EnterCriticalSection(&cookie_cs);
652
653 res = get_cookie(substrz(host), substrz(path), INTERNET_COOKIE_HTTPONLY, &cookie_set);
654 if(res != ERROR_SUCCESS) {
655 LeaveCriticalSection(&cookie_cs);
656 return res;
657 }
658
659 if(cookie_set.cnt) {
660 WCHAR *header, *ptr;
661
662 ptr = header = heap_alloc(sizeof(cookieW) + (cookie_set.string_len + 3 /* crlf0 */) * sizeof(WCHAR));
663 if(header) {
664 memcpy(ptr, cookieW, sizeof(cookieW));
665 ptr += sizeof(cookieW)/sizeof(*cookieW);
666
667 cookie_set_to_string(&cookie_set, ptr);
668 heap_free(cookie_set.cookies);
669 ptr += cookie_set.string_len;
670
671 *ptr++ = '\r';
672 *ptr++ = '\n';
673 *ptr++ = 0;
674
675 *ret = header;
676 }else {
677 res = ERROR_NOT_ENOUGH_MEMORY;
678 }
679 }else {
680 *ret = NULL;
681 }
682
683 LeaveCriticalSection(&cookie_cs);
684 return res;
685 }
686
687 static void free_cookie_domain_list(struct list *list)
688 {
689 cookie_container_t *container;
690 cookie_domain_t *domain;
691
692 while(!list_empty(list)) {
693 domain = LIST_ENTRY(list_head(list), cookie_domain_t, entry);
694
695 free_cookie_domain_list(&domain->subdomain_list);
696
697 while(!list_empty(&domain->path_list)) {
698 container = LIST_ENTRY(list_head(&domain->path_list), cookie_container_t, entry);
699
700 while(!list_empty(&container->cookie_list))
701 delete_cookie(LIST_ENTRY(list_head(&container->cookie_list), cookie_t, entry));
702
703 heap_free(container->cookie_url);
704 list_remove(&container->entry);
705 heap_free(container);
706 }
707
708 heap_free(domain->domain);
709 list_remove(&domain->entry);
710 heap_free(domain);
711 }
712 }
713
714 /***********************************************************************
715 * InternetGetCookieExW (WININET.@)
716 *
717 * Retrieve cookie from the specified url
718 *
719 * It should be noted that on windows the lpszCookieName parameter is "not implemented".
720 * So it won't be implemented here.
721 *
722 * RETURNS
723 * TRUE on success
724 * FALSE on failure
725 *
726 */
727 BOOL WINAPI InternetGetCookieExW(LPCWSTR lpszUrl, LPCWSTR lpszCookieName,
728 LPWSTR lpCookieData, LPDWORD lpdwSize, DWORD flags, void *reserved)
729 {
730 cookie_set_t cookie_set = {0};
731 substr_t host, path;
732 DWORD res;
733 BOOL ret;
734
735 TRACE("(%s, %s, %p, %p, %x, %p)\n", debugstr_w(lpszUrl),debugstr_w(lpszCookieName), lpCookieData, lpdwSize, flags, reserved);
736
737 if (flags)
738 FIXME("flags 0x%08x not supported\n", flags);
739
740 if (!lpszUrl)
741 {
742 SetLastError(ERROR_INVALID_PARAMETER);
743 return FALSE;
744 }
745
746 ret = cookie_parse_url(lpszUrl, &host, &path);
747 if (!ret) {
748 SetLastError(ERROR_INVALID_PARAMETER);
749 return FALSE;
750 }
751
752 EnterCriticalSection(&cookie_cs);
753
754 res = get_cookie(host, path, flags, &cookie_set);
755 if(res != ERROR_SUCCESS) {
756 LeaveCriticalSection(&cookie_cs);
757 SetLastError(res);
758 return FALSE;
759 }
760
761 if(cookie_set.cnt) {
762 if(!lpCookieData || cookie_set.string_len+1 > *lpdwSize) {
763 *lpdwSize = (cookie_set.string_len + 1) * sizeof(WCHAR);
764 TRACE("returning %u\n", *lpdwSize);
765 if(lpCookieData) {
766 SetLastError(ERROR_INSUFFICIENT_BUFFER);
767 ret = FALSE;
768 }
769 }else {
770 *lpdwSize = cookie_set.string_len + 1;
771 cookie_set_to_string(&cookie_set, lpCookieData);
772 lpCookieData[cookie_set.string_len] = 0;
773 }
774 }else {
775 TRACE("no cookies found for %s\n", debugstr_wn(host.str, host.len));
776 SetLastError(ERROR_NO_MORE_ITEMS);
777 ret = FALSE;
778 }
779
780 heap_free(cookie_set.cookies);
781 LeaveCriticalSection(&cookie_cs);
782 return ret;
783 }
784
785 /***********************************************************************
786 * InternetGetCookieW (WININET.@)
787 *
788 * Retrieve cookie for the specified URL.
789 */
790 BOOL WINAPI InternetGetCookieW(const WCHAR *url, const WCHAR *name, WCHAR *data, DWORD *size)
791 {
792 TRACE("(%s, %s, %s, %p)\n", debugstr_w(url), debugstr_w(name), debugstr_w(data), size);
793
794 return InternetGetCookieExW(url, name, data, size, 0, NULL);
795 }
796
797 /***********************************************************************
798 * InternetGetCookieExA (WININET.@)
799 *
800 * Retrieve cookie from the specified url
801 *
802 * RETURNS
803 * TRUE on success
804 * FALSE on failure
805 *
806 */
807 BOOL WINAPI InternetGetCookieExA(LPCSTR lpszUrl, LPCSTR lpszCookieName,
808 LPSTR lpCookieData, LPDWORD lpdwSize, DWORD flags, void *reserved)
809 {
810 WCHAR *url, *name;
811 DWORD len, size = 0;
812 BOOL r;
813
814 TRACE("(%s %s %p %p(%u) %x %p)\n", debugstr_a(lpszUrl), debugstr_a(lpszCookieName),
815 lpCookieData, lpdwSize, lpdwSize ? *lpdwSize : 0, flags, reserved);
816
817 url = heap_strdupAtoW(lpszUrl);
818 name = heap_strdupAtoW(lpszCookieName);
819
820 r = InternetGetCookieExW( url, name, NULL, &len, flags, reserved );
821 if( r )
822 {
823 WCHAR *szCookieData;
824
825 szCookieData = heap_alloc(len * sizeof(WCHAR));
826 if( !szCookieData )
827 {
828 r = FALSE;
829 }
830 else
831 {
832 r = InternetGetCookieExW( url, name, szCookieData, &len, flags, reserved );
833
834 if(r) {
835 size = WideCharToMultiByte( CP_ACP, 0, szCookieData, len, NULL, 0, NULL, NULL);
836 if(lpCookieData) {
837 if(*lpdwSize >= size) {
838 WideCharToMultiByte( CP_ACP, 0, szCookieData, len, lpCookieData, *lpdwSize, NULL, NULL);
839 }else {
840 SetLastError(ERROR_INSUFFICIENT_BUFFER);
841 r = FALSE;
842 }
843 }
844 }
845
846 heap_free( szCookieData );
847 }
848 }
849 *lpdwSize = size;
850 heap_free( name );
851 heap_free( url );
852 return r;
853 }
854
855 /***********************************************************************
856 * InternetGetCookieA (WININET.@)
857 *
858 * See InternetGetCookieW.
859 */
860 BOOL WINAPI InternetGetCookieA(const char *url, const char *name, char *data, DWORD *size)
861 {
862 TRACE("(%s, %s, %p, %p)\n", debugstr_a(url), debugstr_a(name), data, size);
863
864 return InternetGetCookieExA(url, name, data, size, 0, NULL);
865 }
866
867 static BOOL is_domain_legal_for_cookie(substr_t domain, substr_t full_domain)
868 {
869 const WCHAR *ptr;
870
871 if(!domain.len || *domain.str == '.' || !full_domain.len || *full_domain.str == '.') {
872 SetLastError(ERROR_INVALID_NAME);
873 return FALSE;
874 }
875
876 if(domain.len > full_domain.len || !memchrW(domain.str, '.', domain.len) || !memchrW(full_domain.str, '.', full_domain.len))
877 return FALSE;
878
879 ptr = full_domain.str + full_domain.len - domain.len;
880 if (strncmpiW(domain.str, ptr, domain.len) || (full_domain.len > domain.len && ptr[-1] != '.')) {
881 SetLastError(ERROR_INVALID_PARAMETER);
882 return FALSE;
883 }
884
885 return TRUE;
886 }
887
888 /***********************************************************************
889 * IsDomainLegalCookieDomainW (WININET.@)
890 */
891 BOOL WINAPI IsDomainLegalCookieDomainW(const WCHAR *domain, const WCHAR *full_domain)
892 {
893 FIXME("(%s, %s) semi-stub\n", debugstr_w(domain), debugstr_w(full_domain));
894
895 if (!domain || !full_domain) {
896 SetLastError(ERROR_INVALID_PARAMETER);
897 return FALSE;
898 }
899
900 return is_domain_legal_for_cookie(substrz(domain), substrz(full_domain));
901 }
902
903 static void substr_skip(substr_t *str, size_t len)
904 {
905 assert(str->len >= len);
906 str->str += len;
907 str->len -= len;
908 }
909
910 DWORD set_cookie(substr_t domain, substr_t path, substr_t name, substr_t data, DWORD flags)
911 {
912 cookie_container_t *container;
913 cookie_t *thisCookie;
914 substr_t value;
915 const WCHAR *end_ptr;
916 FILETIME expiry, create;
917 BOOL expired = FALSE, update_persistent = FALSE;
918 DWORD cookie_flags = 0, len;
919
920 TRACE("%s %s %s=%s %x\n", debugstr_wn(domain.str, domain.len), debugstr_wn(path.str, path.len),
921 debugstr_wn(name.str, name.len), debugstr_wn(data.str, data.len), flags);
922
923 memset(&expiry,0,sizeof(expiry));
924 GetSystemTimeAsFileTime(&create);
925
926 /* lots of information can be parsed out of the cookie value */
927
928 if(!(end_ptr = memchrW(data.str, ';', data.len)))
929 end_ptr = data.str + data.len;
930 value = substr(data.str, end_ptr-data.str);
931 data.str += value.len;
932 data.len -= value.len;
933
934 for(;;) {
935 static const WCHAR szDomain[] = {'d','o','m','a','i','n','='};
936 static const WCHAR szPath[] = {'p','a','t','h','='};
937 static const WCHAR szExpires[] = {'e','x','p','i','r','e','s','='};
938 static const WCHAR szSecure[] = {'s','e','c','u','r','e'};
939 static const WCHAR szHttpOnly[] = {'h','t','t','p','o','n','l','y'};
940 static const WCHAR szVersion[] = {'v','e','r','s','i','o','n','='};
941 static const WCHAR max_ageW[] = {'m','a','x','-','a','g','e','='};
942
943 /* Skip ';' */
944 if(data.len)
945 substr_skip(&data, 1);
946
947 while(data.len && *data.str == ' ')
948 substr_skip(&data, 1);
949
950 if(!data.len)
951 break;
952
953 if(!(end_ptr = memchrW(data.str, ';', data.len)))
954 end_ptr = data.str + data.len;
955
956 if(data.len >= (len = sizeof(szDomain)/sizeof(WCHAR)) && !strncmpiW(data.str, szDomain, len)) {
957 substr_skip(&data, len);
958
959 if(data.len && *data.str == '.')
960 substr_skip(&data, 1);
961
962 if(!is_domain_legal_for_cookie(substr(data.str, end_ptr-data.str), domain))
963 return COOKIE_STATE_UNKNOWN;
964
965 domain = substr(data.str, end_ptr-data.str);
966 TRACE("Parsing new domain %s\n", debugstr_wn(domain.str, domain.len));
967 }else if(data.len >= (len = sizeof(szPath)/sizeof(WCHAR)) && !strncmpiW(data.str, szPath, len)) {
968 substr_skip(&data, len);
969 path = substr(data.str, end_ptr - data.str);
970 TRACE("Parsing new path %s\n", debugstr_wn(path.str, path.len));
971 }else if(data.len >= (len = sizeof(szExpires)/sizeof(WCHAR)) && !strncmpiW(data.str, szExpires, len)) {
972 SYSTEMTIME st;
973 WCHAR buf[128];
974
975 substr_skip(&data, len);
976
977 if(end_ptr - data.str < sizeof(buf)/sizeof(WCHAR)-1) {
978 memcpy(buf, data.str, data.len*sizeof(WCHAR));
979 buf[data.len] = 0;
980
981 if (InternetTimeToSystemTimeW(data.str, &st, 0)) {
982 SystemTimeToFileTime(&st, &expiry);
983
984 if (CompareFileTime(&create,&expiry) > 0) {
985 TRACE("Cookie already expired.\n");
986 expired = TRUE;
987 }
988 }
989 }
990 }else if(data.len >= (len = sizeof(szSecure)/sizeof(WCHAR)) && !strncmpiW(data.str, szSecure, len)) {
991 substr_skip(&data, len);
992 FIXME("secure not handled\n");
993 }else if(data.len >= (len = sizeof(szHttpOnly)/sizeof(WCHAR)) && !strncmpiW(data.str, szHttpOnly, len)) {
994 substr_skip(&data, len);
995
996 if(!(flags & INTERNET_COOKIE_HTTPONLY)) {
997 WARN("HTTP only cookie added without INTERNET_COOKIE_HTTPONLY flag\n");
998 SetLastError(ERROR_INVALID_OPERATION);
999 return COOKIE_STATE_REJECT;
1000 }
1001
1002 cookie_flags |= INTERNET_COOKIE_HTTPONLY;
1003 }else if(data.len >= (len = sizeof(szVersion)/sizeof(WCHAR)) && !strncmpiW(data.str, szVersion, len)) {
1004 substr_skip(&data, len);
1005
1006 FIXME("version not handled (%s)\n",debugstr_wn(data.str, data.len));
1007 }else if(data.len >= (len = sizeof(max_ageW)/sizeof(WCHAR)) && !strncmpiW(data.str, max_ageW, len)) {
1008 /* Native doesn't support Max-Age attribute. */
1009 WARN("Max-Age ignored\n");
1010 }else if(data.len) {
1011 FIXME("Unknown additional option %s\n", debugstr_wn(data.str, data.len));
1012 }
1013
1014 substr_skip(&data, end_ptr - data.str);
1015 }
1016
1017 EnterCriticalSection(&cookie_cs);
1018
1019 load_persistent_cookie(domain, path);
1020
1021 container = get_cookie_container(domain, path, !expired);
1022 if(!container) {
1023 LeaveCriticalSection(&cookie_cs);
1024 return COOKIE_STATE_ACCEPT;
1025 }
1026
1027 if(!expiry.dwLowDateTime && !expiry.dwHighDateTime)
1028 cookie_flags |= INTERNET_COOKIE_IS_SESSION;
1029 else
1030 update_persistent = TRUE;
1031
1032 if ((thisCookie = find_cookie(container, name))) {
1033 if ((thisCookie->flags & INTERNET_COOKIE_HTTPONLY) && !(flags & INTERNET_COOKIE_HTTPONLY)) {
1034 WARN("An attempt to override httponly cookie\n");
1035 SetLastError(ERROR_INVALID_OPERATION);
1036 LeaveCriticalSection(&cookie_cs);
1037 return COOKIE_STATE_REJECT;
1038 }
1039
1040 if (!(thisCookie->flags & INTERNET_COOKIE_IS_SESSION))
1041 update_persistent = TRUE;
1042 delete_cookie(thisCookie);
1043 }
1044
1045 TRACE("setting cookie %s=%s for domain %s path %s\n", debugstr_wn(name.str, name.len),
1046 debugstr_wn(value.str, value.len), debugstr_w(container->domain->domain),
1047 debugstr_wn(container->path.str, container->path.len));
1048
1049 if (!expired) {
1050 cookie_t *new_cookie;
1051
1052 new_cookie = alloc_cookie(name, value, expiry, create, cookie_flags);
1053 if(!new_cookie) {
1054 LeaveCriticalSection(&cookie_cs);
1055 return COOKIE_STATE_UNKNOWN;
1056 }
1057
1058 add_cookie(container, new_cookie);
1059 }
1060
1061 if (!update_persistent || save_persistent_cookie(container))
1062 {
1063 LeaveCriticalSection(&cookie_cs);
1064 return COOKIE_STATE_ACCEPT;
1065 }
1066 LeaveCriticalSection(&cookie_cs);
1067 return COOKIE_STATE_UNKNOWN;
1068 }
1069
1070 /***********************************************************************
1071 * InternetSetCookieExW (WININET.@)
1072 *
1073 * Sets cookie for the specified url
1074 */
1075 DWORD WINAPI InternetSetCookieExW(LPCWSTR lpszUrl, LPCWSTR lpszCookieName,
1076 LPCWSTR lpCookieData, DWORD flags, DWORD_PTR reserved)
1077 {
1078 substr_t host, path, name, data;
1079 BOOL ret;
1080
1081 TRACE("(%s, %s, %s, %x, %lx)\n", debugstr_w(lpszUrl), debugstr_w(lpszCookieName),
1082 debugstr_w(lpCookieData), flags, reserved);
1083
1084 if (flags & ~INTERNET_COOKIE_HTTPONLY)
1085 FIXME("flags %x not supported\n", flags);
1086
1087 if (!lpszUrl || !lpCookieData)
1088 {
1089 SetLastError(ERROR_INVALID_PARAMETER);
1090 return COOKIE_STATE_UNKNOWN;
1091 }
1092
1093 ret = cookie_parse_url(lpszUrl, &host, &path);
1094 if (!ret || !host.len) return COOKIE_STATE_UNKNOWN;
1095
1096 if (!lpszCookieName) {
1097 const WCHAR *ptr;
1098
1099 /* some apps (or is it us??) try to add a cookie with no cookie name, but
1100 * the cookie data in the form of name[=data].
1101 */
1102 if (!(ptr = strchrW(lpCookieData, '=')))
1103 ptr = lpCookieData + strlenW(lpCookieData);
1104
1105 name = substr(lpCookieData, ptr - lpCookieData);
1106 data = substrz(*ptr == '=' ? ptr+1 : ptr);
1107 }else {
1108 name = substrz(lpszCookieName);
1109 data = substrz(lpCookieData);
1110 }
1111
1112 return set_cookie(host, path, name, data, flags);
1113 }
1114
1115 /***********************************************************************
1116 * InternetSetCookieW (WININET.@)
1117 *
1118 * Sets a cookie for the specified URL.
1119 */
1120 BOOL WINAPI InternetSetCookieW(const WCHAR *url, const WCHAR *name, const WCHAR *data)
1121 {
1122 TRACE("(%s, %s, %s)\n", debugstr_w(url), debugstr_w(name), debugstr_w(data));
1123
1124 return InternetSetCookieExW(url, name, data, 0, 0) == COOKIE_STATE_ACCEPT;
1125 }
1126
1127 /***********************************************************************
1128 * InternetSetCookieA (WININET.@)
1129 *
1130 * Sets cookie for the specified url
1131 *
1132 * RETURNS
1133 * TRUE on success
1134 * FALSE on failure
1135 *
1136 */
1137 BOOL WINAPI InternetSetCookieA(LPCSTR lpszUrl, LPCSTR lpszCookieName,
1138 LPCSTR lpCookieData)
1139 {
1140 LPWSTR data, url, name;
1141 BOOL r;
1142
1143 TRACE("(%s,%s,%s)\n", debugstr_a(lpszUrl),
1144 debugstr_a(lpszCookieName), debugstr_a(lpCookieData));
1145
1146 url = heap_strdupAtoW(lpszUrl);
1147 name = heap_strdupAtoW(lpszCookieName);
1148 data = heap_strdupAtoW(lpCookieData);
1149
1150 r = InternetSetCookieW( url, name, data );
1151
1152 heap_free( data );
1153 heap_free( name );
1154 heap_free( url );
1155 return r;
1156 }
1157
1158 /***********************************************************************
1159 * InternetSetCookieExA (WININET.@)
1160 *
1161 * See InternetSetCookieExW.
1162 */
1163 DWORD WINAPI InternetSetCookieExA( LPCSTR lpszURL, LPCSTR lpszCookieName, LPCSTR lpszCookieData,
1164 DWORD dwFlags, DWORD_PTR dwReserved)
1165 {
1166 WCHAR *data, *url, *name;
1167 DWORD r;
1168
1169 TRACE("(%s, %s, %s, %x, %lx)\n", debugstr_a(lpszURL), debugstr_a(lpszCookieName),
1170 debugstr_a(lpszCookieData), dwFlags, dwReserved);
1171
1172 url = heap_strdupAtoW(lpszURL);
1173 name = heap_strdupAtoW(lpszCookieName);
1174 data = heap_strdupAtoW(lpszCookieData);
1175
1176 r = InternetSetCookieExW(url, name, data, dwFlags, dwReserved);
1177
1178 heap_free( data );
1179 heap_free( name );
1180 heap_free( url );
1181 return r;
1182 }
1183
1184 /***********************************************************************
1185 * InternetClearAllPerSiteCookieDecisions (WININET.@)
1186 *
1187 * Clears all per-site decisions about cookies.
1188 *
1189 * RETURNS
1190 * TRUE on success
1191 * FALSE on failure
1192 *
1193 */
1194 BOOL WINAPI InternetClearAllPerSiteCookieDecisions( VOID )
1195 {
1196 FIXME("stub\n");
1197 return TRUE;
1198 }
1199
1200 /***********************************************************************
1201 * InternetEnumPerSiteCookieDecisionA (WININET.@)
1202 *
1203 * See InternetEnumPerSiteCookieDecisionW.
1204 */
1205 BOOL WINAPI InternetEnumPerSiteCookieDecisionA( LPSTR pszSiteName, ULONG *pcSiteNameSize,
1206 ULONG *pdwDecision, ULONG dwIndex )
1207 {
1208 FIXME("(%s, %p, %p, 0x%08x) stub\n",
1209 debugstr_a(pszSiteName), pcSiteNameSize, pdwDecision, dwIndex);
1210 return FALSE;
1211 }
1212
1213 /***********************************************************************
1214 * InternetEnumPerSiteCookieDecisionW (WININET.@)
1215 *
1216 * Enumerates all per-site decisions about cookies.
1217 *
1218 * RETURNS
1219 * TRUE on success
1220 * FALSE on failure
1221 *
1222 */
1223 BOOL WINAPI InternetEnumPerSiteCookieDecisionW( LPWSTR pszSiteName, ULONG *pcSiteNameSize,
1224 ULONG *pdwDecision, ULONG dwIndex )
1225 {
1226 FIXME("(%s, %p, %p, 0x%08x) stub\n",
1227 debugstr_w(pszSiteName), pcSiteNameSize, pdwDecision, dwIndex);
1228 return FALSE;
1229 }
1230
1231 /***********************************************************************
1232 * InternetGetPerSiteCookieDecisionA (WININET.@)
1233 */
1234 BOOL WINAPI InternetGetPerSiteCookieDecisionA( LPCSTR pwchHostName, ULONG *pResult )
1235 {
1236 FIXME("(%s, %p) stub\n", debugstr_a(pwchHostName), pResult);
1237 return FALSE;
1238 }
1239
1240 /***********************************************************************
1241 * InternetGetPerSiteCookieDecisionW (WININET.@)
1242 */
1243 BOOL WINAPI InternetGetPerSiteCookieDecisionW( LPCWSTR pwchHostName, ULONG *pResult )
1244 {
1245 FIXME("(%s, %p) stub\n", debugstr_w(pwchHostName), pResult);
1246 return FALSE;
1247 }
1248
1249 /***********************************************************************
1250 * InternetSetPerSiteCookieDecisionA (WININET.@)
1251 */
1252 BOOL WINAPI InternetSetPerSiteCookieDecisionA( LPCSTR pchHostName, DWORD dwDecision )
1253 {
1254 FIXME("(%s, 0x%08x) stub\n", debugstr_a(pchHostName), dwDecision);
1255 return FALSE;
1256 }
1257
1258 /***********************************************************************
1259 * InternetSetPerSiteCookieDecisionW (WININET.@)
1260 */
1261 BOOL WINAPI InternetSetPerSiteCookieDecisionW( LPCWSTR pchHostName, DWORD dwDecision )
1262 {
1263 FIXME("(%s, 0x%08x) stub\n", debugstr_w(pchHostName), dwDecision);
1264 return FALSE;
1265 }
1266
1267 void free_cookie(void)
1268 {
1269 EnterCriticalSection(&cookie_cs);
1270
1271 free_cookie_domain_list(&domain_list);
1272
1273 LeaveCriticalSection(&cookie_cs);
1274 }
Windows API implementation