+
- Why? Because "return" only sets the "returnCode" attribute of the - interpreter object, which the function actually interpreting the - procedure then reads and uses as the return code of the procedure. - This proc adds just that level of processing to the statement. + Why? Because "return" only sets the "returnCode" attribute of the + interpreter object, which the function actually interpreting the + procedure then reads and uses as the return code of the procedure. + This proc adds just that level of processing to the statement. -
+
- When is that useful or necessary? Here: + When is that useful or necessary? Here: -
- set errno [catch {
- return -code error "Boo!"
- } error]
-
+
+ set errno [catch {
+ return -code error "Boo!"
+ } error]
+
- In this case, errno will always contain 2 (TCL_RETURN).
- If you use ad_return instead, it'll contain what you wanted, namely
- 1 (TCL_ERROR).
+ In this case, errno will always contain 2 (TCL_RETURN).
+ If you use ad_return instead, it'll contain what you wanted, namely
+ 1 (TCL_ERROR).
} {
- eval return $args
+ return {*}$args
}
ad_proc -private rp_registered_proc_info_compare { info1 info2 } {
- A comparison predicate for registered procedures, returning -1, 0,
- or 1 depending the relative sorted order of $info1 and $info2 in the
- procedure list. Items with longer paths come first.
+ A comparison predicate for registered procedures, returning -1, 0,
+ or 1 depending the relative sorted order of $info1 and $info2 in the
+ procedure list. Items with longer paths come first.
} {
set info1_path [lindex $info1 1]
@@ -206,25 +212,25 @@
method path proc { arg "" }
} {
- Registers a procedure (see ns_register_proc for syntax). Use a
- method of "*" to register GET, POST, and HEAD filters. If debug is
- set to "t", all invocations of the procedure will be logged in the
- server log.
+ Registers a procedure (see ns_register_proc for syntax). Use a
+ method of "*" to register GET, POST, and HEAD filters. If debug is
+ set to "t", all invocations of the procedure will be logged in the
+ server log.
- @param sitewide specifies that the filter should be applied on a
- sitewide (not subsite-by-subsite basis).
+ @param sitewide specifies that the filter should be applied on a
+ sitewide (not subsite-by-subsite basis).
} {
if {$method eq "*"} {
# Shortcut to allow registering filter for all methods. Just
# call ad_register_proc again, with each of the three methods.
foreach method { GET POST HEAD } {
- ad_register_proc -debug $debug -noinherit $noinherit $method $path $proc $arg
- }
+ ad_register_proc -debug $debug -noinherit $noinherit $method $path $proc $arg
+ }
return
}
- if { [lsearch -exact { GET POST HEAD } $method] == -1 } {
+ if {$method ni { GET POST HEAD }} {
error "Method passed to ad_register_proc must be one of GET, POST, or HEAD"
}
@@ -234,13 +240,13 @@
ad_proc -private rp_invoke_filter { conn filter_info why } {
- Invokes the filter described in $argv, writing an error message to
- the browser if it fails (unless kind is trace).
+ Invokes the filter described in $argv, writing an error message to
+ the browser if it fails (unless kind is trace).
} {
set startclicks [clock clicks -milliseconds]
- util_unlist $filter_info filter_index debug_p arg_count proc arg
+ lassign $filter_info filter_index debug_p arg_count proc arg
rp_debug -debug $debug_p "Invoking $why filter $proc"
@@ -259,70 +265,70 @@
}
}
- global errorCode
if { $errno } {
- # Uh-oh - an error occurred.
- global errorInfo
- ds_add rp [list filter [list $why [ns_conn method] [ns_conn url] $proc $arg] $startclicks [clock clicks -milliseconds] "error" $errorInfo]
- # make sure you report catching the error!
- rp_debug "error in filter $proc for [ns_conn method] [ns_conn url]?[ns_conn query] errno is $errno message is $errorInfo"
- rp_report_error
- set result "filter_return"
- } elseif {$result ne "filter_ok" && $result ne "filter_break" && \
- [string compare $result "filter_return"] } {
- set error_msg "error in filter $proc for [ns_conn method] [ns_conn url]?[ns_conn query]. Filter returned invalid result \"$result\""
- ds_add rp [list filter [list $why [ns_conn method] [ns_conn url] $proc $arg] $startclicks [clock clicks -milliseconds] "error" $error_msg]
- # report the bad filter_return message
- rp_debug -debug t -ns_log_level error $error_msg
- rp_report_error -message $error_msg
- set result "filter_return"
+ # Uh-oh - an error occurred.
+ ds_add rp [list filter [list $why [ns_conn method] [ns_conn url] $proc $arg] \
+ $startclicks [clock clicks -milliseconds] "error" $::errorInfo]
+ # make sure you report catching the error!
+ rp_debug "error in filter $proc for [ns_conn method] [ns_conn url]?[ns_conn query] errno is $errno message is $::errorInfo"
+ rp_report_error
+ set result "filter_return"
+
+ } elseif {$result ne "filter_ok" && $result ne "filter_break" && $result ne "filter_return" } {
+
+ set error_msg "error in filter $proc for [ns_conn method] [ns_conn url]?[ns_conn query]. Filter returned invalid result \"$result\""
+ ds_add rp [list filter [list $why [ns_conn method] [ns_conn url] $proc $arg] \
+ $startclicks [clock clicks -milliseconds] "error" $error_msg]
+ # report the bad filter_return message
+ rp_debug -debug t -ns_log_level error $error_msg
+ rp_report_error -message $error_msg
+ set result "filter_return"
} else {
- ds_add rp [list filter [list $why [ns_conn method] [ns_conn url] $proc $arg] $startclicks [clock clicks -milliseconds] $result]
+ ds_add rp [list filter [list $why [ns_conn method] [ns_conn url] $proc $arg] \
+ $startclicks [clock clicks -milliseconds] $result]
}
rp_debug -debug $debug_p "Done invoking $why filter $proc (returning $result)"
-# JCD: Why was this here? the rp_finish_serving_page is called inside the
-# handlers and this handles trace filters
-# if {$result ne "filter_return" } {
-# rp_finish_serving_page
-# }
+ # JCD: Why was this here? the rp_finish_serving_page is called inside the
+ # handlers and this handles trace filters
+ # if {$result ne "filter_return" } {
+ # rp_finish_serving_page
+ # }
return $result
}
ad_proc -private rp_invoke_proc { conn argv } {
- Invokes a registered procedure.
+ Invokes a registered procedure.
} {
set startclicks [clock clicks -milliseconds]
- util_unlist $argv proc_index debug_p arg_count proc arg
+ lassign $argv proc_index debug_p arg_count proc arg
rp_debug -debug $debug_p "Invoking registered procedure $proc"
switch $arg_count {
0 { set errno [catch $proc error] }
1 { set errno [catch "$proc $arg" error] }
default { set errno [catch {
- ad_try {
- $proc [list $conn] $arg
- } ad_script_abort val {
- # do nothing
- }
+ ad_try {
+ $proc [list $conn] $arg
+ } ad_script_abort val {
+ # do nothing
+ }
} error] }
}
- global errorCode
if { $errno } {
- # Uh-oh - an error occurred.
- global errorInfo
- ds_add rp [list registered_proc [list $proc $arg] $startclicks [clock clicks -milliseconds] "error" $errorInfo]
- rp_debug "error in $proc for [ns_conn method] [ns_conn url]?[ns_conn query] errno is $errno message is $errorInfo"
- rp_report_error
+ # Uh-oh - an error occurred.
+ ds_add rp [list registered_proc [list $proc $arg] $startclicks [clock clicks -milliseconds] "error" $::errorInfo]
+ rp_debug "error in $proc for [ns_conn method] [ns_conn url]?[ns_conn query] errno is $errno message is $::errorInfo"
+ rp_report_error
} else {
- ds_add rp [list registered_proc [list $proc $arg] $startclicks [clock clicks -milliseconds]]
+ ds_add rp [list registered_proc [list $proc $arg] $startclicks [clock clicks -milliseconds]]
}
rp_debug -debug $debug_p "Done Invoking registered procedure $proc"
@@ -346,46 +352,46 @@
kind method path proc { arg "" }
} {
- Registers a filter that gets called during page serving. The filter
- should return one of
+ Registers a filter that gets called during page serving. The filter
+ should return one of
- filter_ok, meaning the page serving will continue;
filter_break meaning the rest of the filters of
- this type will not be called;
+ this type will not be called;
filter_return meaning the server will close the
- connection and end the request processing.
- [ad_footer]" + ns_log Error "rp_report_error: Error rendering error page (!)\n$::errorInfo" + set rendered_page "[ns_quotehtml $error_message]
" } ns_return 500 text/html $rendered_page @@ -795,151 +819,158 @@ } ad_proc -private rp_path_prefixes {path} { - Returns all the prefixes of a path ordered from most to least specific. + Returns all the prefixes of a path ordered from most to least specific. } { - if {[string index $path 0] ne "/"} { - set path "/$path" - } - set path [string trimright $path /] - if { $path eq "" } { - return "/" - } + if {[string index $path 0] ne "/"} { + set path "/$path" + } + set path [string trimright $path /] + if { $path eq "" } { + return "/" + } - set components [split $path "/"] - set prefixes [list] - for {set i [expr {[llength $components] -1}]} {$i > 0} {incr i -1} { - lappend prefixes "[join [lrange $components 0 $i] "/"]/" - lappend prefixes "[join [lrange $components 0 $i] "/"]" - } - lappend prefixes "/" + set components [split $path "/"] + set prefixes [list] + for {set i [expr {[llength $components] -1}]} {$i > 0} {incr i -1} { + lappend prefixes "[join [lrange $components 0 $i] "/"]/" + lappend prefixes "[join [lrange $components 0 $i] "/"]" + } + lappend prefixes "/" - return $prefixes + return $prefixes } ad_proc -private rp_handler {} { - The request handler, which responds to absolutely every HTTP request made to - the server. + The request handler, which responds to absolutely every HTTP request made to + the server. } { - # DRB: Fix obscure case where we are served a request like GET http://www.google.com. - # In this case AOLserver 4.0.10 (at least) doesn't run the preauth filter "rp_filter", - # but rather tries to serve /global/file-not-found directly. rp_handler dies a horrible - # death if it's called without ad_conn being set up. My fix is to simply redirect - # to the url AOLserver substitutes if ad_conn does not exist (rp_filter begins with - # ad_conn -reset) ... + # DRB: Fix obscure case where we are served a request like GET http://www.google.com. + # In this case AOLserver 4.0.10 (at least) doesn't run the preauth filter "rp_filter", + # but rather tries to serve /global/file-not-found directly. rp_handler dies a horrible + # death if it's called without ad_conn being set up. My fix is to simply redirect + # to the url AOLserver substitutes if ad_conn does not exist (rp_filter begins with + # ad_conn -reset) ... - global ad_conn - if { ![info exists ad_conn] } { - ad_returnredirect [ns_conn url] - return - } - if {$ad_conn(extra_url) ne "" && ![string match *$ad_conn(extra_url) [ns_conn url]]} { - # On internal redirects, the current extra_url might be from a - # previous request, which might have lead to a not-found error - # pointing to a new url. This can lead to an hard-to find loop - # which ends with a "recursion depth exceeded". Therefore, we - # refetch the url in case, in case, we have already extra_url - # set to an incompatible value - # - array set node [site_node::get -url [ad_conn url]] - ad_conn -set extra_url [string range [ad_conn url] [string length $node(url)] end] - } - - # JCD: keep track of rp_handler call count to prevent dev support from recording - # information twice when for example we get a 404 internal redirect. We should probably - set recursion_count [ad_conn recursion_count] - ad_conn -set recursion_count [incr recursion_count] - - set startclicks [clock clicks -milliseconds] - rp_debug "rp_handler: handling request: [ns_conn method] [ns_conn url]?[ns_conn query]" - if { [set code [catch { - if { [rp_performance_mode] } { - global tcl_url2file tcl_url2path_info - if { ![catch { - set file $tcl_url2file([ad_conn url]) - set path_info $tcl_url2path_info([ad_conn url]) - } errmsg] } { - ad_conn -set file $file - ad_conn -set path_info $path_info - rp_serve_concrete_file $file + global ad_conn + if { ![info exists ad_conn] } { + ad_returnredirect [ns_conn url] return - } - rp_debug -debug t "error in rp_handler: $errmsg" } + if {$ad_conn(extra_url) ne "" && ![string match "*$ad_conn(extra_url)" [ns_conn url]]} { + # + # On internal redirects, the current ad_conn(extra_url) might be + # from a previous request, which might have lead to a not-found + # error pointing to a new url. This can lead to an hard-to find + # loop which ends with a "recursion depth exceeded". There is a + # similar problem with ad_conn(package_key) and + # ad_conn(package_url) Therefore, we refetch the url info in case, + # in case, and reset these values. These variables seem to be + # sufficient to handle request processor loops, but maybe other + # variables have to be reset either. + # + array set node [site_node::get -url [ad_conn url]] + ad_conn -set extra_url [string range [ad_conn url] [string length $node(url)] end] + ad_conn -set package_key $node(package_key) + ad_conn -set package_url $node(url) + } - set resolve_values [concat $::acs::pageroot[string trimright [ad_conn package_url] /] \ - [apm_package_url_resolution [ad_conn package_key]]] + # JCD: keep track of rp_handler call count to prevent dev support from recording + # information twice when for example we get a 404 internal redirect. We should probably + set recursion_count [ad_conn recursion_count] + ad_conn -set recursion_count [incr recursion_count] - foreach resolve_value $resolve_values { - foreach {root match_prefix} $resolve_value {} - set extra_url [ad_conn extra_url] - if { $match_prefix ne "" } { - if { [string first $match_prefix $extra_url] == 0 } { - # An empty root indicates we should reject the attempted reference. This - # is used to block references to embeded package [sitewide-]admin pages that - # avoid the request processor permission check - if { $root eq "" } { - break - } - set extra_url [string trimleft \ - [string range $extra_url [string length $match_prefix] end] /] - } else { - continue + set startclicks [clock clicks -milliseconds] + rp_debug "rp_handler: handling request: [ns_conn method] [ns_conn url]?[ns_conn query]" + if { [set code [catch { + if { [rp_performance_mode] } { + global tcl_url2file tcl_url2path_info + if { ![catch { + set file $tcl_url2file([ad_conn url]) + set path_info $tcl_url2path_info([ad_conn url]) + } errmsg] } { + ad_conn -set file $file + ad_conn -set path_info $path_info + rp_serve_concrete_file $file + return } + rp_debug -debug t "error in rp_handler: $errmsg" } - ds_add rp [list notice "Trying rp_serve_abstract_file $root/$extra_url" $startclicks [clock clicks -milliseconds]] - ad_try { - rp_serve_abstract_file "$root/$extra_url" - set tcl_url2file([ad_conn url]) [ad_conn file] - set tcl_url2path_info([ad_conn url]) [ad_conn path_info] - } notfound val { - ds_add rp [list notice "File $root/$extra_url: Not found" $startclicks [clock clicks -milliseconds]] - ds_add rp [list transformation [list notfound "$root / $extra_url" $val] $startclicks [clock clicks -milliseconds]] - continue - } redirect url { - ds_add rp [list notice "File $root/$extra_url: Redirect" $startclicks [clock clicks -milliseconds]] - ds_add rp [list transformation [list redirect $root/$extra_url $url] $startclicks [clock clicks -milliseconds]] - ad_returnredirect $url - } directory dir_index { - ds_add rp [list notice "File $root/$extra_url: Directory index" $startclicks [clock clicks -milliseconds]] - ds_add rp [list transformation [list directory $root/$extra_url $dir_index] $startclicks [clock clicks -milliseconds]] - continue - } - return - } - if {[info exists dir_index] - && ![string match */CVS/* $dir_index] - } { - if { [nsv_get rp_directory_listing_p .] } { - ns_returnnotice 200 "Directory listing of $dir_index" \ - [rp_html_directory_listing $dir_index] - return - } - } + set resolve_values [concat $::acs::pageroot[string trimright [ad_conn package_url] /] \ + [apm_package_url_resolution [ad_conn package_key]]] - # OK, we didn't find a normal file. Let's look for a path info style thingy, - # visiting possible file matches from most specific to least. - - foreach prefix [rp_path_prefixes $extra_url] { foreach resolve_value $resolve_values { - foreach {root match_prefix} $resolve_value {} + lassign $resolve_value root match_prefix set extra_url [ad_conn extra_url] if { $match_prefix ne "" } { if { [string first $match_prefix $extra_url] == 0 } { + # An empty root indicates we should reject the attempted reference. This + # is used to block references to embeded package [sitewide-]admin pages that + # avoid the request processor permission check + if { $root eq "" } { + break + } set extra_url [string trimleft \ - [string range $extra_url [string length $match_prefix] end] /] + [string range $extra_url [string length $match_prefix] end] /] } else { continue } } + ds_add rp [list notice "Trying rp_serve_abstract_file $root/$extra_url" $startclicks [clock clicks -milliseconds]] + ad_try { - ad_conn -set path_info \ - [string range $extra_url [expr {[string length $prefix] - 1}] end] - rp_serve_abstract_file -noredirect -nodirectory \ - -extension_pattern ".vuh" "$root$prefix" + rp_serve_abstract_file "$root/$extra_url" + set tcl_url2file([ad_conn url]) [ad_conn file] + set tcl_url2path_info([ad_conn url]) [ad_conn path_info] + } notfound val { + ds_add rp [list notice "File $root/$extra_url: Not found" $startclicks [clock clicks -milliseconds]] + ds_add rp [list transformation [list notfound "$root / $extra_url" $val] $startclicks [clock clicks -milliseconds]] + continue + } redirect url { + ds_add rp [list notice "File $root/$extra_url: Redirect" $startclicks [clock clicks -milliseconds]] + ds_add rp [list transformation [list redirect $root/$extra_url $url] $startclicks [clock clicks -milliseconds]] + ad_returnredirect $url + } directory dir_index { + ds_add rp [list notice "File $root/$extra_url: Directory index" $startclicks [clock clicks -milliseconds]] + ds_add rp [list transformation [list directory $root/$extra_url $dir_index] $startclicks [clock clicks -milliseconds]] + continue + } + return + } + + if {[info exists dir_index] + && ![string match "*/CVS/*" $dir_index] + } { + if { [nsv_get rp_directory_listing_p .] } { + ns_returnnotice 200 "Directory listing of $dir_index" \ + [rp_html_directory_listing $dir_index] + return + } + } + + # OK, we didn't find a normal file. Let's look for a path info style thingy, + # visiting possible file matches from most specific to least. + + foreach prefix [rp_path_prefixes $extra_url] { + foreach resolve_value $resolve_values { + lassign $resolve_value root match_prefix + set extra_url [ad_conn extra_url] + if { $match_prefix ne "" } { + if { [string first $match_prefix $extra_url] == 0 } { + set extra_url [string trimleft \ + [string range $extra_url [string length $match_prefix] end] /] + } else { + continue + } + } + ad_try { + ad_conn -set path_info \ + [string range $extra_url [string length $prefix]-1 end] + rp_serve_abstract_file -noredirect -nodirectory \ + -extension_pattern ".vuh" "$root$prefix" set tcl_url2file([ad_conn url]) [ad_conn file] set tcl_url2path_info([ad_conn url]) [ad_conn path_info] } notfound val { @@ -952,30 +983,30 @@ ds_add rp [list transformation [list directory $root$prefix $dir_index] $startclicks [clock clicks -milliseconds]] continue } - return + return + } } - } - ds_add rp [list transformation [list notfound $root/$extra_url notfound] $startclicks [clock clicks -milliseconds]] - ns_returnnotfound - } errmsg]] } { - if {$code == 1} { - if {[ns_conn query] ne "" } { - set q ? - } else { - set q "" + ds_add rp [list transformation [list notfound $root/$extra_url notfound] $startclicks [clock clicks -milliseconds]] + ns_returnnotfound + } errmsg]] } { + if {$code == 1} { + if {[ns_conn query] ne "" } { + set q ? + } else { + set q "" + } + rp_debug "error in rp_handler: serving [ns_conn method] [ns_conn url]$q[ns_conn query] \n\tad_url \"[ad_conn url]\" maps to file \"[ad_conn file]\"\nerrmsg is $errmsg" + rp_report_error } - rp_debug "error in rp_handler: serving [ns_conn method] [ns_conn url]$q[ns_conn query] \n\tad_url \"[ad_conn url]\" maps to file \"[ad_conn file]\"\nerrmsg is $errmsg" - rp_report_error } - } } ad_proc -private rp_serve_abstract_file { - -noredirect:boolean - -nodirectory:boolean - {-extension_pattern ".*"} - path + -noredirect:boolean + -nodirectory:boolean + {-extension_pattern ".*"} + path } { Serves up a file given the abstract path. Raises the following exceptions in the obvious cases: @@ -990,64 +1021,64 @@ @see rp_internal_redirect } { - if {[string index $path end] eq "/"} { - if { [file isdirectory $path] } { - # The path specified was a directory; return its index file. + if {[string index $path end] eq "/"} { + if { [file isdirectory $path] } { + # The path specified was a directory; return its index file. - # Directory name with trailing slash. Search for an index.* file. - # Remember the name of the directory in $dir_index, so we can later - # generate a directory listing if necessary. - set dir_index $path - set path "[string trimright $path /]/index" + # Directory name with trailing slash. Search for an index.* file. + # Remember the name of the directory in $dir_index, so we can later + # generate a directory listing if necessary. + set dir_index $path + set path "[string trimright $path /]/index" - } else { + } else { - # If there's a trailing slash on the path, the URL must refer to a - # directory (which we know doesn't exist, since [file isdirectory $path] - # returned 0). - ad_raise notfound + # If there's a trailing slash on the path, the URL must refer to a + # directory (which we know doesn't exist, since [file isdirectory $path] + # returned 0). + ad_raise notfound + } } - } - ### no more trailing slash. + ### no more trailing slash. - if { [file isfile $path] } { - # It's actually a file. - ad_conn -set file $path - } else { - # The path provided doesn't correspond directly to a file - we - # need to glob. (It could correspond directly to a directory.) + if { [file isfile $path] } { + # It's actually a file. + ad_conn -set file $path + } else { + # The path provided doesn't correspond directly to a file - we + # need to glob. (It could correspond directly to a directory.) - if { ![file isdirectory [file dirname $path]] } { - ad_raise notfound - } + if { ![file isdirectory [file dirname $path]] } { + ad_raise notfound + } - ad_conn -set file [rp_concrete_file -extension_pattern $extension_pattern $path] - - if { [empty_string_p [ad_conn file]] } { - - if { [file isdirectory $path] && !$noredirect_p } { - # Directory name with no trailing slash. Redirect to the same - # URL but with a trailing slash. + ad_conn -set file [rp_concrete_file -extension_pattern $extension_pattern $path] - set url "[ad_conn url]/" - if { [ad_conn query] ne "" } { - append url "?[ad_conn query]" + if { [ad_conn file] eq "" } { + + if { [file isdirectory $path] && !$noredirect_p } { + # Directory name with no trailing slash. Redirect to the same + # URL but with a trailing slash. + + set url "[ad_conn url]/" + if { [ad_conn query] ne "" } { + append url "?[ad_conn query]" + } + + ad_raise redirect $url + } else { + if { [info exists dir_index] && !$nodirectory_p } { + ad_raise directory $dir_index + } else { + # Nothing at all found! 404 time. + ad_raise notfound + } + } } - - ad_raise redirect $url - } else { - if { [info exists dir_index] && !$nodirectory_p } { - ad_raise directory $dir_index - } else { - # Nothing at all found! 404 time. - ad_raise notfound - } - } } - } - rp_serve_concrete_file [ad_conn file] + rp_serve_concrete_file [ad_conn file] } ad_proc -public rp_serve_concrete_file {file} { @@ -1059,6 +1090,10 @@ if { [nsv_exists rp_extension_handlers $extension] } { set handler [nsv_get rp_extension_handlers $extension] + #ns_log notice "check for extension handler for <$file> ==> <$handler>" + + catch {ds_init} + if { [set errno [catch { ad_try { $handler @@ -1068,65 +1103,101 @@ rp_finish_serving_page ds_add rp [list serve_file [list $file $handler] $startclicks [clock clicks -milliseconds]] } error]] } { - global errorCode errorInfo - ds_add rp [list serve_file [list $file $handler] $startclicks [clock clicks -milliseconds] error "$errorCode: $errorInfo"] - return -code $errno -errorcode $errorCode -errorinfo $errorInfo $error + ds_add rp [list serve_file [list $file $handler] $startclicks [clock clicks -milliseconds] \ + error "$::errorCode: $::errorInfo"] + return -code $errno -errorcode $::errorCode -errorinfo $::errorInfo $error } + } elseif { [rp_file_can_be_public_p $file] } { + set type [ns_guesstype $file] + ds_add rp [list serve_file [list $file $type] $startclicks [clock clicks -milliseconds]] + ns_returnfile 200 $type $file } else { - # Some other random kind of file - guess the type and return it. + ad_raise notfound + } +} - # first check that we are not serving a forbidden file like a .xql, a backup or CVS file - foreach match [parameter::get -parameter ExcludedFiles -package_id [ad_acs_kernel_id] -default {}] { - if {[string match $match $file]} { - ad_raise notfound - } - } - if {[string equal $extension ".xql"] - && ![parameter::get -parameter ServeXQLFiles -package_id [ad_acs_kernel_id] -default 0] } { - ad_raise notfound - } else { - set type [ns_guesstype $file] - ds_add rp [list serve_file [list $file $type] $startclicks [clock clicks -milliseconds]] - ns_returnfile 200 $type $file - } +ad_proc -private rp_file_can_be_public_p { path } { + Determines if -- absent application restrictions -- a file can be served to + a client without violating simple security checks. The checks and response + do not require the initialization of ad_conn or expensive permission:: + calls. + + The proc will return page-not-found messages to the client in the case + where the file must not be served, log a warning, and close the connection + to the client. + + @param path The file to perform the simple security checks on. + @return 0 (and close the connection!) if the file must not be served. 1 if the application should + perform its own checks, if any. +} { + # first check that we are not serving a forbidden file like a .xql, a backup or CVS file + if {[file extension $path] eq ".xql" + && ![parameter::get -parameter ServeXQLFiles -package_id [ad_acs_kernel_id] -default 0] } { + # Can't use ad_return_exception_page because it depends upon an initialized ad_conn + ns_log Warning "An attempt was made to access an .XQL resource: {$path}." + ns_return 404 "text/html" "Not Found" + ns_conn close + return 0 } + foreach match [parameter::get -parameter ExcludedFiles -package_id [ad_acs_kernel_id] -default {}] { + if {[string match $match $path]} { + # Can't use ad_return_exception_page because it depends upon an initialized ad_conn + ns_log Warning "An attempt was made to access an ExcludedFiles resource: {$path}." + ns_return 404 "text/html" "Not Found" + ns_conn close + return 0 + } + } + return 1 } ad_proc -private rp_concrete_file { - {-extension_pattern ".*"} - path + {-extension_pattern ".*"} + path } { - Given a path in the filesystem, returns the file that would be - served, trying all possible extensions. Returns an empty string if - there's no file "$path.*" in the filesystem (even if the file $path - itself does exist). + Given a path in the filesystem, returns the file that would be + served, trying all possible extensions. Returns an empty string if + there's no file "$path.*" in the filesystem (even if the file $path + itself does exist). } { - # Sub out funky characters in the pathname, so the user can't request - # http://www.arsdigita.com/*/index (causing a potentially expensive glob - # and bypassing registered procedures)! - regsub -all {[^0-9a-zA-Z_/:.]} $path {\\&} path_glob + # Sub out funky characters in the pathname, so the user can't request + # http://www.arsdigita.com/*/index (causing a potentially expensive glob + # and bypassing registered procedures)! + regsub -all {[^0-9a-zA-Z_/:.]} $path {\\&} path_glob - # Grab a list of all available files with extensions. - set files [glob -nocomplain "$path_glob$extension_pattern"] + # Grab a list of all available files with extensions. + set files [glob -nocomplain "$path_glob$extension_pattern"] - # Search for files in the order specified in ExtensionPrecedence. - set precedence [parameter::get -package_id [ad_acs_kernel_id] -parameter ExtensionPrecedence -default tcl] - foreach extension [split [string trim $precedence] ","] { - if { [lsearch -glob $files "*.$extension"] != -1 } { - return "$path.$extension" + # Search for files in the order specified in ExtensionPrecedence, + # include always "vuh" + set precedence [parameter::get -package_id [ad_acs_kernel_id] -parameter ExtensionPrecedence -default tcl] + foreach extension [concat [split [string trim $precedence] ","] vuh] { + if { [lsearch -glob $files "*.$extension"] != -1 } { + return "$path.$extension" + } } - } - # None of the extensions from ExtensionPrecedence were found - just pick - # the first in alphabetical order. - if { [llength $files] > 0 } { - set files [lsort $files] - return [lindex $files 0] - } + # None of the extensions from ExtensionPrecedence were found - just pick + # the first in alphabetical order. + # + # GN: OpenACS was trying to serve files with arbitrary extensions + # (i.e. not included in the kernel parameter ExtensionPrecedence) in + # case the requested file was not found. This is quite dangerous + # and breaks e.g. the listing of openacs.org/repository (which is a + # directory), since the directory is moved every night into + # openacs.org/repository.bak. With the given logic, it tries to + # server the .bak directory as a file (which does of course not + # work). That blind logic is not inecessary, and is actually a + # potential attack vector. + # + #if { [llength $files] > 0 } { + # set files [lsort $files] + # return [lindex $files 0] + #} - # Nada! - return "" + # Nada! + return "" } ad_proc -public ad_script_abort {} { @@ -1135,7 +1206,7 @@ Used to stop processing after doing ad_returnredirect or other commands which have already returned output to the client. } { - ad_raise ad_script_abort + ad_raise ad_script_abort } @@ -1159,176 +1230,221 @@ ad_proc -public ad_conn {args} { - Returns a property about the connection. See the request - processor documentation for an (almost complete) list of allowable values. + Returns a property about the connection. See the request + processor documentation for an (almost complete) list of allowable values. -[ns_quotehtml $error_message]
+
- If -set is passed then it sets a property. + If -set is passed then it sets a property. -
+
- If the property has not been set directly by OpenACS it will be passed on to aolservers ns_conn: http://www.aolserver.com/docs/devel/tcl/api/conn.html#ns_conn. If it is not a valid option for ns_conn either then it will throw an error.
+ If the property has not been set directly by OpenACS it will be passed on to aolservers ns_conn: http://www.aolserver.com/docs/devel/tcl/api/conn.html#ns_conn. If it is not a valid option for ns_conn either then it will throw an error.
- Valid options for ad_conn are: request, sec_validated, browser_id, session_id, user_id, token, last_issue, deferred_dml, start_clicks, node_id, object_id, object_url, object_type, package_id, package_url, instance_name, package_key, extra_url, system_p, path_info, recursion_count.
-
+ Valid options for ad_conn are: request, sec_validated, browser_id, session_id, user_id, token, last_issue, deferred_dml, start_clicks, node_id, object_id, object_url, object_type, package_id, package_url, instance_name, package_key, extra_url, system_p, path_info, recursion_count. +
- Added recursion_count to properly deal with internalredirects.
+ Added recursion_count to properly deal with internalredirects.
} {
- global ad_conn
+ global ad_conn
- set flag [lindex $args 0]
- if {[string index $flag 0] ne "-"} {
- set var $flag
- set flag "-get"
- } else {
- set var [lindex $args 1]
- }
-
- switch -- $flag {
- -connected_p {
- return [info exists ad_conn(request)]
+ set flag [lindex $args 0]
+ if {[string index $flag 0] ne "-"} {
+ set var $flag
+ set flag "-get"
+ } else {
+ set var [lindex $args 1]
}
- -set {
- set ad_conn($var) [lindex $args 2]
- }
+ switch -- $flag {
+ -connected_p {
+ return [info exists ad_conn(request)]
+ }
- -unset {
- unset ad_conn($var)
- }
+ -set {
+ set ad_conn($var) [lindex $args 2]
+ }
- -reset {
- if {[info exists ad_conn]} {
- unset ad_conn
- }
- array set ad_conn {
- request ""
- sec_validated ""
- browser_id ""
- session_id ""
- user_id ""
- token ""
- last_issue ""
- deferred_dml ""
- start_clicks ""
- node_id ""
- object_id ""
- object_url ""
- object_type ""
- package_id ""
- package_url ""
- instance_name ""
- package_key ""
- extra_url ""
- file ""
- system_p 0
- path_info ""
- system_p 0
- recursion_count 0
- form_count -1
- }
- array unset ad_conn subsite_id
- array unset ad_conn locale
- }
+ -unset {
+ unset ad_conn($var)
+ }
- -get {
- # Special handling for the form, because "ns_conn form" can
- # cause the server to hang until the socket times out. This
- # happens on pages handling multipart form data, where
- # ad_page_contract already has called ns_getform and has
- # retrieved all data from the client. ns_getform has its
- # own caching, so calling it instead of [ns_conn form]
- # is OK.
-
- switch $var {
- form {
- return [ns_getform]
+ -reset {
+ if {[info exists ad_conn]} {
+ unset ad_conn
}
- all {
- return [array get ad_conn]
+ array set ad_conn {
+ request ""
+ sec_validated ""
+ browser_id ""
+ session_id ""
+ user_id ""
+ token ""
+ last_issue ""
+ deferred_dml ""
+ start_clicks ""
+ node_id ""
+ object_id ""
+ object_url ""
+ object_type ""
+ package_id ""
+ package_url ""
+ instance_name ""
+ package_key ""
+ extra_url ""
+ file ""
+ system_p 0
+ path_info ""
+ system_p 0
+ recursion_count 0
+ form_count -1
}
- default {
- if { [info exists ad_conn($var)] } {
- return $ad_conn($var)
+ array unset ad_conn subsite_id
+ array unset ad_conn locale
+ }
+
+ -get {
+ # Special handling for the form, because "ns_conn form" can
+ # cause the server to hang until the socket times out. This
+ # happens on pages handling multipart form data, where
+ # ad_page_contract already has called ns_getform and has
+ # retrieved all data from the client. ns_getform has its
+ # own caching, so calling it instead of [ns_conn form]
+ # is OK.
+
+ switch $var {
+ form {
+ return [ns_getform]
}
+ all {
+ return [array get ad_conn]
+ }
+ default {
+ if { [info exists ad_conn($var)] } {
+ return $ad_conn($var)
+ }
- # Fallback
- switch $var {
- locale {
- set ad_conn(locale) [parameter::get \
- -parameter SiteWideLocale \
- -package_id [apm_package_id_from_key "acs-lang"] \
- -default {en_US}]
- return $ad_conn(locale)
+ # Fallback
+ switch $var {
+ locale {
+ set ad_conn(locale) [parameter::get \
+ -parameter SiteWideLocale \
+ -package_id [apm_package_id_from_key "acs-lang"] \
+ -default {en_US}]
+ return $ad_conn(locale)
+ }
+ node_id {
+ # This is just a fallback, when the request
+ # processor has failed to set the actual site
+ # node, e.g. on invalid requests. When the
+ # fallback is missing, ns_conn spits out an
+ # error message since it does not know what a
+ # "node_id" is. The fallback is especially
+ # necessary, when a template is used for the
+ # error message, the templating system cannot
+ # determine the appropriate template without
+ # the node_id. In case of failure, the
+ # toplevel node_is is returned.
+ array set node [site_node::get -url /]
+ set ad_conn($var) $node(node_id)
+ ns_log notice "request processor did not set