1 // carddav-servercontact.cpp - CardDAV Object - Server Contact subroutines.
3 // (c) 2012-2015 Xestia Software Development.
5 // This file is part of Xestia Address Book.
7 // Xestia Address Book is free software: you can redistribute it and/or modify
8 // it under the terms of the GNU General Public License as published by the
9 // Free Software Foundation, version 3 of the license.
11 // Xestia Address Book is distributed in the hope that it will be useful,
12 // but WITHOUT ANY WARRANTY; without even the implied warranty of
13 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 // GNU General Public License for more details.
16 // You should have received a copy of the GNU General Public License along
17 // with Xestia Address Book. If not, see <http://www.gnu.org/licenses/>
20 #include "../version.h"
22 #include <wx/tokenzr.h>
24 #include <libxml/parser.h>
25 #include <libxml/tree.h>
28 #include "../vcard/vcard.h"
29 #include "../common/dirs.h"
31 void CardDAV::GetServerContactData()
34 // Get the server contact data.
41 AbortConnection = FALSE;
43 wxString ServerCertFilename;
44 bool MatchingCert = FALSE;
48 wxString ServerAddressURL;
50 wxString ServerAddressSSL;
51 wxString ServerAddressNormal;
53 conn = curl_easy_init();
55 SetConnectionObject(conn);
57 struct CardDAVCURLPasser {
60 bool HeaderMode = TRUE;
62 } CardDAVHeader, CardDAVFooter;
64 CardDAVHeader.Data = this;
65 CardDAVHeader.HeaderMode = TRUE;
67 CardDAVFooter.Data = this;
68 CardDAVFooter.HeaderMode = FALSE;
73 ServerAddressURL = ServerAddress + wxT(":") + wxString::Format(wxT("%i"), ServerPort) + wxT("/") + ServerPrefix + ServerFilenameLocation;
74 ServerAddressSSL = wxT("https://") + ServerAddressURL;
75 ServerAddressNormal = wxT("http://") + ServerAddressURL;
77 ServerAuth = ServerUser + wxT(":") + ServerPass;
79 std::map<int,int>::iterator ActIter;
80 struct UploadDataStruc UploadData;
82 ActIter = ActivityListPtr->find((int)ItemIndex);
88 curl_easy_setopt(conn, CURLOPT_URL, (const char*)ServerAddressSSL.mb_str(wxConvUTF8));
89 curl_easy_setopt(conn, CURLOPT_NOPROGRESS, 1L);
90 curl_easy_setopt(conn, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
91 curl_easy_setopt(conn, CURLOPT_TIMEOUT, 60);
92 curl_easy_setopt(conn, CURLOPT_FAILONERROR, TRUE);
93 curl_easy_setopt(conn, CURLOPT_USERAGENT, XSDAB_USERAGENT);
94 curl_easy_setopt(conn, CURLOPT_USERPWD, (const char*)ServerAuth.mb_str(wxConvUTF8));
95 curl_easy_setopt(conn, CURLOPT_WRITEFUNCTION, WritebackFunc);
96 curl_easy_setopt(conn, CURLOPT_WRITEDATA, &PageData);
97 curl_easy_setopt(conn, CURLOPT_WRITEHEADER, &PageHeader);
98 curl_easy_setopt(conn, CURLOPT_NOSIGNAL, 1);
100 #if defined(__APPLE__)
104 ServerCertFilename = GetAccountDir(ServerAccount, TRUE);
106 if (wxFile::Exists(ServerCertFilename) == TRUE){
108 curl_easy_setopt(conn, CURLOPT_SSL_VERIFYPEER, 1);
109 curl_easy_setopt(conn, CURLOPT_SSL_VERIFYHOST, 2);
110 curl_easy_setopt(conn, CURLOPT_CAINFO, (const char*)ServerCertFilename.mb_str(wxConvUTF8));
116 claconncode = (curl_easy_perform(conn));
118 // If CURLE_PEER_FAILED_VERIFICATION is returned, retry without
119 // the local certificate in use.
121 if (claconncode == CURLE_PEER_FAILED_VERIFICATION){
123 curl_easy_cleanup(conn);
124 conn = curl_easy_init();
126 curl_easy_setopt(conn, CURLOPT_URL, (const char*)ServerAddressSSL.mb_str(wxConvUTF8));
127 curl_easy_setopt(conn, CURLOPT_NOPROGRESS, 1L);
128 curl_easy_setopt(conn, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
129 curl_easy_setopt(conn, CURLOPT_TIMEOUT, 60);
130 curl_easy_setopt(conn, CURLOPT_FAILONERROR, TRUE);
131 curl_easy_setopt(conn, CURLOPT_USERAGENT, XSDAB_USERAGENT);
132 curl_easy_setopt(conn, CURLOPT_USERPWD, (const char*)ServerAuth.mb_str(wxConvUTF8));
133 curl_easy_setopt(conn, CURLOPT_WRITEFUNCTION, WritebackFunc);
134 curl_easy_setopt(conn, CURLOPT_WRITEDATA, &PageData);
135 curl_easy_setopt(conn, CURLOPT_WRITEHEADER, &PageHeader);
136 curl_easy_setopt(conn, CURLOPT_NOSIGNAL, 1);
138 claconncode = (curl_easy_perform(conn));
140 // If claconncode is CURLE_OK then delete the certificate file as that
141 // is no longer needed.
143 if (claconncode == CURLE_OK){
145 // Delete the certificate file.
147 wxRemoveFile(ServerCertFilename);
153 // Check if it fails with a CURLE_SSL_CACERT then compare
154 // the certificates as PEM files.
156 #if defined(__APPLE__)
160 if (claconncode == CURLE_SSL_CACERT && wxFile::Exists(ServerCertFilename) == TRUE){
163 sslerrconn = curl_easy_init();
164 CURLcode sslerrconncode;
166 wxString ServerAddressOnly = wxT("https://") + ServerAddress + wxT(":") + wxString::Format(wxT("%i"), ServerPort) + wxT("/");
168 curl_easy_setopt(sslerrconn, CURLOPT_URL, (const char*)ServerAddressOnly.mb_str(wxConvUTF8));
169 curl_easy_setopt(sslerrconn, CURLOPT_NOPROGRESS, 1L);
170 curl_easy_setopt(sslerrconn, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
171 curl_easy_setopt(sslerrconn, CURLOPT_TIMEOUT, 60);
172 curl_easy_setopt(sslerrconn, CURLOPT_FAILONERROR, TRUE);
173 curl_easy_setopt(sslerrconn, CURLOPT_USERAGENT, XSDAB_USERAGENT);
174 curl_easy_setopt(sslerrconn, CURLOPT_USERPWD, (const char*)ServerAuth.mb_str(wxConvUTF8));
175 curl_easy_setopt(sslerrconn, CURLOPT_WRITEFUNCTION, WritebackFunc);
176 curl_easy_setopt(sslerrconn, CURLOPT_WRITEDATA, &PageData);
177 curl_easy_setopt(sslerrconn, CURLOPT_WRITEHEADER, &PageHeader);
178 curl_easy_setopt(sslerrconn, CURLOPT_NOSIGNAL, 1);
179 curl_easy_setopt(sslerrconn, CURLOPT_SSL_VERIFYPEER, 0);
180 curl_easy_setopt(sslerrconn, CURLOPT_SSL_VERIFYHOST, 0);
181 curl_easy_setopt(sslerrconn, CURLOPT_CERTINFO, 1);
183 wxString SSLLocalData;
184 wxString SSLServerData;
186 sslerrconncode = (curl_easy_perform(sslerrconn));
188 SSLCertCol = BuildSSLCollection(sslerrconn);
189 std::map<int, SSLCertData>::iterator SSLCDIter = SSLCertCol.SSLCollection.find(0);
190 std::multimap<wxString,wxString>::iterator SSLDataIter = SSLCDIter->second.CertData.find(wxT("Cert"));
192 wxFFile SSLLocalFile;
194 #if wxABI_VERSION < 20900
195 SSLLocalFile.Open(ServerCertFilename.c_str(), wxT("r"));
197 SSLLocalFile.Open(ServerCertFilename, wxT("r"));
200 // Load the recovery database for tasks not done.
202 if (SSLLocalFile.IsOpened() == TRUE){
204 SSLLocalFile.ReadAll(&SSLLocalData, wxConvAuto());
209 SSLServerData = SSLDataIter->second;
211 if (SSLLocalData == SSLServerData){
213 // Server key matches with local key so retry with CURLOPT_SSL_VERIFYPEER
214 // and CURLOPT_SSL_VERIFYHOST off.
216 curl_easy_cleanup(conn);
217 conn = curl_easy_init();
222 curl_easy_setopt(conn, CURLOPT_URL, (const char*)ServerAddressSSL.mb_str(wxConvUTF8));
223 curl_easy_setopt(conn, CURLOPT_NOPROGRESS, 1L);
224 curl_easy_setopt(conn, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
225 curl_easy_setopt(conn, CURLOPT_TIMEOUT, 60);
226 curl_easy_setopt(conn, CURLOPT_FAILONERROR, TRUE);
227 curl_easy_setopt(conn, CURLOPT_USERAGENT, XSDAB_USERAGENT);
228 curl_easy_setopt(conn, CURLOPT_USERPWD, (const char*)ServerAuth.mb_str(wxConvUTF8));
229 curl_easy_setopt(conn, CURLOPT_WRITEFUNCTION, WritebackFunc);
230 curl_easy_setopt(conn, CURLOPT_WRITEDATA, &PageData);
231 curl_easy_setopt(conn, CURLOPT_WRITEHEADER, &PageHeader);
232 curl_easy_setopt(conn, CURLOPT_NOSIGNAL, 1);
233 curl_easy_setopt(conn, CURLOPT_SSL_VERIFYHOST, 0);
234 curl_easy_setopt(conn, CURLOPT_SSL_VERIFYPEER, 0);
236 claconncode = (curl_easy_perform(conn));
242 if (MatchingCert == FALSE){
244 claconncode = CURLE_SSL_CACERT;
249 curl_easy_cleanup(sslerrconn);
255 // Sort out SSL error.
257 // When SSL cert error occurs, connect again and fetch certificates.
258 // Display a message to the user explaining that an invalid
259 // certificate has been given and let the user decide what
262 if (claconncode == CURLE_OK){
264 } else if (claconncode == CURLE_SSL_CACERT || claconncode == CURLE_PEER_FAILED_VERIFICATION){
267 sslerrconn = curl_easy_init();
268 CURLcode sslerrconncode;
270 wxString ServerAddressOnly = wxT("https://") + ServerAddress + wxT(":") + wxString::Format(wxT("%i"), ServerPort) + wxT("/");
272 // Replace conn with sslerrconn!
274 curl_easy_setopt(sslerrconn, CURLOPT_URL, (const char*)ServerAddressOnly.mb_str(wxConvUTF8));
275 curl_easy_setopt(sslerrconn, CURLOPT_NOPROGRESS, 0);
276 curl_easy_setopt(sslerrconn, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
277 curl_easy_setopt(sslerrconn, CURLOPT_TIMEOUT, 60);
278 curl_easy_setopt(sslerrconn, CURLOPT_FAILONERROR, TRUE);
279 curl_easy_setopt(sslerrconn, CURLOPT_USERAGENT, XSDAB_USERAGENT);
280 curl_easy_setopt(sslerrconn, CURLOPT_WRITEFUNCTION, WritebackFunc);
281 curl_easy_setopt(sslerrconn, CURLOPT_WRITEDATA, &PageData);
282 curl_easy_setopt(sslerrconn, CURLOPT_WRITEHEADER, &PageHeader);
283 curl_easy_setopt(sslerrconn, CURLOPT_PROGRESSDATA, this);
284 curl_easy_setopt(sslerrconn, CURLOPT_PROGRESSFUNCTION, ProgressFunc);
285 curl_easy_setopt(sslerrconn, CURLOPT_NOSIGNAL, 1);
286 curl_easy_setopt(sslerrconn, CURLOPT_SSL_VERIFYPEER, 0);
287 curl_easy_setopt(sslerrconn, CURLOPT_CERTINFO, 1);
289 SetConnectionObject(sslerrconn);
291 sslerrconncode = (curl_easy_perform(sslerrconn));
293 SSLCertCol = BuildSSLCollection(sslerrconn);
294 SSLCertCol.SuccessCode = 1;
298 } else if (claconncode == CURLE_HTTP_RETURNED_ERROR){
300 fprintf(stderr, "curl_easy_perform() failed: %s\n",
301 curl_easy_strerror(claconncode));
303 curl_easy_getinfo(conn, CURLINFO_RESPONSE_CODE, &http_code);
304 fprintf(stderr, "Error code was: %d\n", http_code);
310 fprintf(stderr, "curl_easy_perform() failed: %s\n",
311 curl_easy_strerror(claconncode));
313 curl_easy_getinfo(conn, CURLINFO_RESPONSE_CODE, &http_code);
314 fprintf(stderr, "Error code was: %d\n", http_code);
324 wxString EmptyString;
326 curl_easy_setopt(conn, CURLOPT_URL, (const char*)ServerAddressNormal.mb_str(wxConvUTF8));
327 curl_easy_setopt(conn, CURLOPT_NOPROGRESS, 1L);
328 curl_easy_setopt(conn, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
329 curl_easy_setopt(conn, CURLOPT_TIMEOUT, 60);
330 curl_easy_setopt(conn, CURLOPT_FAILONERROR, TRUE);
331 curl_easy_setopt(conn, CURLOPT_USERAGENT, XSDAB_USERAGENT);
332 curl_easy_setopt(conn, CURLOPT_USERPWD, (const char*)ServerAuth.mb_str(wxConvUTF8));
333 curl_easy_setopt(conn, CURLOPT_WRITEFUNCTION, WritebackFunc);
334 curl_easy_setopt(conn, CURLOPT_WRITEDATA, &PageData);
335 curl_easy_setopt(conn, CURLOPT_WRITEHEADER, &PageHeader);
336 curl_easy_setopt(conn, CURLOPT_NOSIGNAL, 1);
341 conncode = (curl_easy_perform(conn));
343 if (conncode == CURLE_OK){
345 } else if (conncode == CURLE_HTTP_RETURNED_ERROR){
347 fprintf(stderr, "curl_easy_perform() failed: %s\n",
348 curl_easy_strerror(conncode));
350 fprintf(stderr, "curl_easy_perform() HTTP code was: %i\n",
357 fprintf(stderr, "curl_easy_perform() failed: %s\n",
358 curl_easy_strerror(conncode));