Mirrors/chatmail-core
1
0
Fork 0
mirror of https://github.com/chatmail/core.git synced 2026-04-06 23:52:11 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2e4bc048fb349b026595d73fa8e32dfa690ce43d
chatmail-core/src/dc_oauth2.rs
dignifiedquire 313f71a004 it compiles
2019-05-01 23:41:11 +02:00

613 lines
27 KiB
Rust
Raw Blame History

use libc;
use crate::constants::Event;
use crate::dc_contact::*;
use crate::dc_context::dc_context_t;
use crate::dc_jsmn::*;
use crate::dc_log::*;
use crate::dc_sqlite3::*;
use crate::dc_strencode::*;
use crate::dc_tools::*;
use crate::types::*;
use crate::x::*;
#[derive(Copy, Clone)]
#[repr(C)]
pub struct oauth2_t {
pub client_id: *mut libc::c_char,
pub get_code: *mut libc::c_char,
pub init_token: *mut libc::c_char,
pub refresh_token: *mut libc::c_char,
pub get_userinfo: *mut libc::c_char,
}
pub unsafe fn dc_get_oauth2_url(
mut context: &dc_context_t,
mut addr: *const libc::c_char,
mut redirect_uri: *const libc::c_char,
) -> *mut libc::c_char {
let mut oauth2: *mut oauth2_t = 0 as *mut oauth2_t;
let mut oauth2_url: *mut libc::c_char = 0 as *mut libc::c_char;
if !(redirect_uri.is_null() || *redirect_uri.offset(0isize) as libc::c_int == 0i32) {
oauth2 = get_info(addr);
if !oauth2.is_null() {
dc_sqlite3_set_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_pending_redirect_uri\x00" as *const u8 as *const libc::c_char,
redirect_uri,
);
oauth2_url = dc_strdup((*oauth2).get_code);
replace_in_uri(
&mut oauth2_url,
b"$CLIENT_ID\x00" as *const u8 as *const libc::c_char,
(*oauth2).client_id,
);
replace_in_uri(
&mut oauth2_url,
b"$REDIRECT_URI\x00" as *const u8 as *const libc::c_char,
redirect_uri,
);
}
}
free(oauth2 as *mut libc::c_void);
return oauth2_url;
}
unsafe fn replace_in_uri(
mut uri: *mut *mut libc::c_char,
mut key: *const libc::c_char,
mut value: *const libc::c_char,
) {
if !uri.is_null() && !key.is_null() && !value.is_null() {
let mut value_urlencoded: *mut libc::c_char = dc_urlencode(value);
dc_str_replace(uri, key, value_urlencoded);
free(value_urlencoded as *mut libc::c_void);
};
}
unsafe fn get_info(mut addr: *const libc::c_char) -> *mut oauth2_t {
let mut oauth2: *mut oauth2_t = 0 as *mut oauth2_t;
let mut addr_normalized: *mut libc::c_char = 0 as *mut libc::c_char;
let mut domain: *const libc::c_char = 0 as *const libc::c_char;
addr_normalized = dc_addr_normalize(addr);
domain = strchr(addr_normalized, '@' as i32);
if !(domain.is_null() || *domain.offset(0isize) as libc::c_int == 0i32) {
domain = domain.offset(1isize);
if strcasecmp(domain, b"gmail.com\x00" as *const u8 as *const libc::c_char) == 0i32
|| strcasecmp(
domain,
b"googlemail.com\x00" as *const u8 as *const libc::c_char,
) == 0i32
{
oauth2 = calloc(1, ::std::mem::size_of::<oauth2_t>()) as *mut oauth2_t;
(*oauth2).client_id =
b"959970109878-4mvtgf6feshskf7695nfln6002mom908.apps.googleusercontent.com\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char;
(*oauth2).get_code =
b"https://accounts.google.com/o/oauth2/auth?client_id=$CLIENT_ID&redirect_uri=$REDIRECT_URI&response_type=code&scope=https%3A%2F%2Fmail.google.com%2F%20email&access_type=offline\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char;
(*oauth2).init_token =
b"https://accounts.google.com/o/oauth2/token?client_id=$CLIENT_ID&redirect_uri=$REDIRECT_URI&code=$CODE&grant_type=authorization_code\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char;
(*oauth2).refresh_token =
b"https://accounts.google.com/o/oauth2/token?client_id=$CLIENT_ID&redirect_uri=$REDIRECT_URI&refresh_token=$REFRESH_TOKEN&grant_type=refresh_token\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char;
(*oauth2).get_userinfo =
b"https://www.googleapis.com/oauth2/v1/userinfo?alt=json&access_token=$ACCESS_TOKEN\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char
} else if strcasecmp(
domain,
b"yandex.com\x00" as *const u8 as *const libc::c_char,
) == 0i32
|| strcasecmp(domain, b"yandex.ru\x00" as *const u8 as *const libc::c_char) == 0i32
|| strcasecmp(domain, b"yandex.ua\x00" as *const u8 as *const libc::c_char) == 0i32
{
oauth2 = calloc(1, ::std::mem::size_of::<oauth2_t>()) as *mut oauth2_t;
(*oauth2).client_id = b"c4d0b6735fc8420a816d7e1303469341\x00" as *const u8
as *const libc::c_char as *mut libc::c_char;
(*oauth2).get_code =
b"https://oauth.yandex.com/authorize?client_id=$CLIENT_ID&response_type=code&scope=mail%3Aimap_full%20mail%3Asmtp&force_confirm=true\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char;
(*oauth2).init_token =
b"https://oauth.yandex.com/token?grant_type=authorization_code&code=$CODE&client_id=$CLIENT_ID&client_secret=58b8c6e94cf44fbe952da8511955dacf\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char;
(*oauth2).refresh_token =
b"https://oauth.yandex.com/token?grant_type=refresh_token&refresh_token=$REFRESH_TOKEN&client_id=$CLIENT_ID&client_secret=58b8c6e94cf44fbe952da8511955dacf\x00"
as *const u8 as *const libc::c_char as *mut libc::c_char
}
}
free(addr_normalized as *mut libc::c_void);
return oauth2;
}
// the following function may block due http-requests;
// must not be called from the main thread or by the ui!
pub unsafe fn dc_get_oauth2_access_token(
mut context: &dc_context_t,
mut addr: *const libc::c_char,
mut code: *const libc::c_char,
mut flags: libc::c_int,
) -> *mut libc::c_char {
let mut current_block: u64;
let mut oauth2: *mut oauth2_t = 0 as *mut oauth2_t;
let mut access_token: *mut libc::c_char = 0 as *mut libc::c_char;
let mut refresh_token: *mut libc::c_char = 0 as *mut libc::c_char;
let mut refresh_token_for: *mut libc::c_char = 0 as *mut libc::c_char;
let mut redirect_uri: *mut libc::c_char = 0 as *mut libc::c_char;
let mut update_redirect_uri_on_success: libc::c_int = 0i32;
let mut token_url: *mut libc::c_char = 0 as *mut libc::c_char;
let mut expires_in: time_t = 0i32 as time_t;
let mut error: *mut libc::c_char = 0 as *mut libc::c_char;
let mut error_description: *mut libc::c_char = 0 as *mut libc::c_char;
let mut json: *mut libc::c_char = 0 as *mut libc::c_char;
let mut parser: jsmn_parser = jsmn_parser {
pos: 0,
toknext: 0,
toksuper: 0,
};
// we do not expect nor read more tokens
let mut tok: [jsmntok_t; 128] = [jsmntok_t {
type_0: JSMN_UNDEFINED,
start: 0,
end: 0,
size: 0,
}; 128];
let mut tok_cnt: libc::c_int = 0i32;
if code.is_null() || *code.offset(0isize) as libc::c_int == 0i32 {
dc_log_warning(
context,
0i32,
b"Internal OAuth2 error\x00" as *const u8 as *const libc::c_char,
);
} else {
oauth2 = get_info(addr);
if oauth2.is_null() {
dc_log_warning(
context,
0i32,
b"Internal OAuth2 error: 2\x00" as *const u8 as *const libc::c_char,
);
} else {
let lock = context.oauth2_critical.clone();
let l = lock.lock().unwrap();
// read generated token
if 0 == flags & 0x1i32 && 0 == is_expired(context) {
access_token = dc_sqlite3_get_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_access_token\x00" as *const u8 as *const libc::c_char,
0 as *const libc::c_char,
);
if !access_token.is_null() {
// success
current_block = 16914036240511706173;
} else {
current_block = 2838571290723028321;
}
} else {
current_block = 2838571290723028321;
}
match current_block {
16914036240511706173 => {}
_ => {
refresh_token = dc_sqlite3_get_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_refresh_token\x00" as *const u8 as *const libc::c_char,
0 as *const libc::c_char,
);
refresh_token_for = dc_sqlite3_get_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_refresh_token_for\x00" as *const u8 as *const libc::c_char,
b"unset\x00" as *const u8 as *const libc::c_char,
);
if refresh_token.is_null() || strcmp(refresh_token_for, code) != 0i32 {
dc_log_info(
context,
0i32,
b"Generate OAuth2 refresh_token and access_token...\x00" as *const u8
as *const libc::c_char,
);
redirect_uri = dc_sqlite3_get_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_pending_redirect_uri\x00" as *const u8 as *const libc::c_char,
b"unset\x00" as *const u8 as *const libc::c_char,
);
update_redirect_uri_on_success = 1i32;
token_url = dc_strdup((*oauth2).init_token)
} else {
dc_log_info(
context,
0i32,
b"Regenerate OAuth2 access_token by refresh_token...\x00" as *const u8
as *const libc::c_char,
);
redirect_uri = dc_sqlite3_get_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_redirect_uri\x00" as *const u8 as *const libc::c_char,
b"unset\x00" as *const u8 as *const libc::c_char,
);
token_url = dc_strdup((*oauth2).refresh_token)
}
replace_in_uri(
&mut token_url,
b"$CLIENT_ID\x00" as *const u8 as *const libc::c_char,
(*oauth2).client_id,
);
replace_in_uri(
&mut token_url,
b"$REDIRECT_URI\x00" as *const u8 as *const libc::c_char,
redirect_uri,
);
replace_in_uri(
&mut token_url,
b"$CODE\x00" as *const u8 as *const libc::c_char,
code,
);
replace_in_uri(
&mut token_url,
b"$REFRESH_TOKEN\x00" as *const u8 as *const libc::c_char,
refresh_token,
);
json = (context.cb)(
context,
Event::HTTP_POST,
token_url as uintptr_t,
0i32 as uintptr_t,
) as *mut libc::c_char;
if json.is_null() {
dc_log_warning(
context,
0i32,
b"Error calling OAuth2 at %s\x00" as *const u8 as *const libc::c_char,
token_url,
);
} else {
jsmn_init(&mut parser);
tok_cnt = jsmn_parse(
&mut parser,
json,
strlen(json),
tok.as_mut_ptr(),
(::std::mem::size_of::<[jsmntok_t; 128]>() as libc::c_ulong)
.wrapping_div(::std::mem::size_of::<jsmntok_t>() as libc::c_ulong)
as libc::c_uint,
);
if tok_cnt < 2i32
|| tok[0usize].type_0 as libc::c_uint
!= JSMN_OBJECT as libc::c_int as libc::c_uint
{
dc_log_warning(
context,
0i32,
b"Failed to parse OAuth2 json from %s\x00" as *const u8
as *const libc::c_char,
token_url,
);
} else {
let mut i: libc::c_int = 1i32;
while i < tok_cnt {
if access_token.is_null()
&& jsoneq(
json,
&mut *tok.as_mut_ptr().offset(i as isize),
b"access_token\x00" as *const u8 as *const libc::c_char,
) == 0i32
{
access_token = jsondup(
json,
&mut *tok.as_mut_ptr().offset((i + 1i32) as isize),
)
} else if refresh_token.is_null()
&& jsoneq(
json,
&mut *tok.as_mut_ptr().offset(i as isize),
b"refresh_token\x00" as *const u8 as *const libc::c_char,
) == 0i32
{
refresh_token = jsondup(
json,
&mut *tok.as_mut_ptr().offset((i + 1i32) as isize),
)
} else if jsoneq(
json,
&mut *tok.as_mut_ptr().offset(i as isize),
b"expires_in\x00" as *const u8 as *const libc::c_char,
) == 0i32
{
let mut expires_in_str: *mut libc::c_char = jsondup(
json,
&mut *tok.as_mut_ptr().offset((i + 1i32) as isize),
);
if !expires_in_str.is_null() {
let mut val: time_t = atol(expires_in_str);
if val > 20i32 as libc::c_long
&& val
< (60i32 * 60i32 * 24i32 * 365i32 * 5i32)
as libc::c_long
{
expires_in = val
}
free(expires_in_str as *mut libc::c_void);
}
} else if error.is_null()
&& jsoneq(
json,
&mut *tok.as_mut_ptr().offset(i as isize),
b"error\x00" as *const u8 as *const libc::c_char,
) == 0i32
{
error = jsondup(
json,
&mut *tok.as_mut_ptr().offset((i + 1i32) as isize),
)
} else if error_description.is_null()
&& jsoneq(
json,
&mut *tok.as_mut_ptr().offset(i as isize),
b"error_description\x00" as *const u8
as *const libc::c_char,
) == 0i32
{
error_description = jsondup(
json,
&mut *tok.as_mut_ptr().offset((i + 1i32) as isize),
)
}
i += 1
}
if !error.is_null() || !error_description.is_null() {
dc_log_warning(
context,
0i32,
b"OAuth error: %s: %s\x00" as *const u8 as *const libc::c_char,
if !error.is_null() {
error
} else {
b"unknown\x00" as *const u8 as *const libc::c_char
},
if !error_description.is_null() {
error_description
} else {
b"no details\x00" as *const u8 as *const libc::c_char
},
);
}
if !refresh_token.is_null()
&& 0 != *refresh_token.offset(0isize) as libc::c_int
{
dc_sqlite3_set_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_refresh_token\x00" as *const u8 as *const libc::c_char,
refresh_token,
);
dc_sqlite3_set_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_refresh_token_for\x00" as *const u8
as *const libc::c_char,
code,
);
}
// after that, save the access token.
// if it's unset, we may get it in the next round as we have the refresh_token now.
if access_token.is_null()
|| *access_token.offset(0isize) as libc::c_int == 0i32
{
dc_log_warning(
context,
0i32,
b"Failed to find OAuth2 access token\x00" as *const u8
as *const libc::c_char,
);
} else {
dc_sqlite3_set_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_access_token\x00" as *const u8 as *const libc::c_char,
access_token,
);
dc_sqlite3_set_config_int64(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_timestamp_expires\x00" as *const u8
as *const libc::c_char,
(if 0 != expires_in {
time(0 as *mut time_t) + expires_in - 5i32 as libc::c_long
} else {
0i32 as libc::c_long
}) as int64_t,
);
if 0 != update_redirect_uri_on_success {
dc_sqlite3_set_config(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_redirect_uri\x00" as *const u8
as *const libc::c_char,
redirect_uri,
);
}
}
}
}
}
}
drop(l);
}
}
free(refresh_token as *mut libc::c_void);
free(refresh_token_for as *mut libc::c_void);
free(redirect_uri as *mut libc::c_void);
free(token_url as *mut libc::c_void);
free(json as *mut libc::c_void);
free(error as *mut libc::c_void);
free(error_description as *mut libc::c_void);
free(oauth2 as *mut libc::c_void);
return if !access_token.is_null() {
access_token
} else {
dc_strdup(0 as *const libc::c_char)
};
}
unsafe fn jsondup(mut json: *const libc::c_char, mut tok: *mut jsmntok_t) -> *mut libc::c_char {
if (*tok).type_0 as libc::c_uint == JSMN_STRING as libc::c_int as libc::c_uint
|| (*tok).type_0 as libc::c_uint == JSMN_PRIMITIVE as libc::c_int as libc::c_uint
{
return strndup(
json.offset((*tok).start as isize),
((*tok).end - (*tok).start) as libc::c_ulong,
);
}
return strdup(b"\x00" as *const u8 as *const libc::c_char);
}
unsafe extern "C" fn jsoneq(
mut json: *const libc::c_char,
mut tok: *mut jsmntok_t,
mut s: *const libc::c_char,
) -> libc::c_int {
if (*tok).type_0 as libc::c_uint == JSMN_STRING as libc::c_int as libc::c_uint
&& strlen(s) as libc::c_int == (*tok).end - (*tok).start
&& strncmp(
json.offset((*tok).start as isize),
s,
((*tok).end - (*tok).start) as usize,
) == 0i32
{
return 0i32;
}
return -1i32;
}
unsafe fn is_expired(mut context: &dc_context_t) -> libc::c_int {
let mut expire_timestamp: time_t = dc_sqlite3_get_config_int64(
context,
&mut context.sql.clone().lock().unwrap(),
b"oauth2_timestamp_expires\x00" as *const u8 as *const libc::c_char,
0i32 as int64_t,
) as time_t;
if expire_timestamp <= 0i32 as libc::c_long {
return 0i32;
}
if expire_timestamp > time(0 as *mut time_t) {
return 0i32;
}
return 1i32;
}
pub unsafe fn dc_get_oauth2_addr(
mut context: &dc_context_t,
mut addr: *const libc::c_char,
mut code: *const libc::c_char,
) -> *mut libc::c_char {
let mut access_token: *mut libc::c_char = 0 as *mut libc::c_char;
let mut addr_out: *mut libc::c_char = 0 as *mut libc::c_char;
let mut oauth2: *mut oauth2_t = 0 as *mut oauth2_t;
if !({
oauth2 = get_info(addr);
oauth2.is_null()
} || (*oauth2).get_userinfo.is_null())
{
access_token = dc_get_oauth2_access_token(context, addr, code, 0i32);
addr_out = get_oauth2_addr(context, oauth2, access_token);
if addr_out.is_null() {
free(access_token as *mut libc::c_void);
access_token = dc_get_oauth2_access_token(context, addr, code, 0x1i32);
addr_out = get_oauth2_addr(context, oauth2, access_token)
}
}
free(access_token as *mut libc::c_void);
free(oauth2 as *mut libc::c_void);
return addr_out;
}
unsafe fn get_oauth2_addr(
mut context: &dc_context_t,
mut oauth2: *const oauth2_t,
mut access_token: *const libc::c_char,
) -> *mut libc::c_char {
let mut addr_out: *mut libc::c_char = 0 as *mut libc::c_char;
let mut userinfo_url: *mut libc::c_char = 0 as *mut libc::c_char;
let mut json: *mut libc::c_char = 0 as *mut libc::c_char;
let mut parser: jsmn_parser = jsmn_parser {
pos: 0,
toknext: 0,
toksuper: 0,
};
// we do not expect nor read more tokens
let mut tok: [jsmntok_t; 128] = [jsmntok_t {
type_0: JSMN_UNDEFINED,
start: 0,
end: 0,
size: 0,
}; 128];
let mut tok_cnt: libc::c_int = 0i32;
if !(access_token.is_null()
|| *access_token.offset(0isize) as libc::c_int == 0i32
|| oauth2.is_null())
{
userinfo_url = dc_strdup((*oauth2).get_userinfo);
replace_in_uri(
&mut userinfo_url,
b"$ACCESS_TOKEN\x00" as *const u8 as *const libc::c_char,
access_token,
);
json = (context.cb)(
context,
Event::HTTP_GET,
userinfo_url as uintptr_t,
0i32 as uintptr_t,
) as *mut libc::c_char;
if json.is_null() {
dc_log_warning(
context,
0i32,
b"Error getting userinfo.\x00" as *const u8 as *const libc::c_char,
);
} else {
jsmn_init(&mut parser);
tok_cnt = jsmn_parse(
&mut parser,
json,
strlen(json),
tok.as_mut_ptr(),
(::std::mem::size_of::<[jsmntok_t; 128]>() as libc::c_ulong)
.wrapping_div(::std::mem::size_of::<jsmntok_t>() as libc::c_ulong)
as libc::c_uint,
);
if tok_cnt < 2i32
|| tok[0usize].type_0 as libc::c_uint != JSMN_OBJECT as libc::c_int as libc::c_uint
{
dc_log_warning(
context,
0i32,
b"Failed to parse userinfo.\x00" as *const u8 as *const libc::c_char,
);
} else {
let mut i: libc::c_int = 1i32;
while i < tok_cnt {
if addr_out.is_null()
&& jsoneq(
json,
&mut *tok.as_mut_ptr().offset(i as isize),
b"email\x00" as *const u8 as *const libc::c_char,
) == 0i32
{
addr_out = jsondup(json, &mut *tok.as_mut_ptr().offset((i + 1i32) as isize))
}
i += 1
}
if addr_out.is_null() {
dc_log_warning(
context,
0i32,
b"E-mail missing in userinfo.\x00" as *const u8 as *const libc::c_char,
);
}
}
}
}
free(userinfo_url as *mut libc::c_void);
free(json as *mut libc::c_void);
return addr_out;
}
Reference in New Issue View Git Blame Copy Permalink