vboxweb.cpp@ 67257

Last change on this file since 67257 was 66105, checked in by vboxsync, 8 years ago
Main: trailing spaces and a wrong indent
Property filesplitter.c set to `Makefile.kmk` Property svn:eol-style set to `native` Property svn:keywords set to `Id Revision`
File size: 82.7 KB

Line
1	/**
2	* vboxweb.cpp:
3	* hand-coded parts of the webservice server. This is linked with the
4	* generated code in out/.../src/VBox/Main/webservice/methodmaps.cpp
5	* (plus static gSOAP server code) to implement the actual webservice
6	* server, to which clients can connect.
7	*
8	* Copyright (C) 2007-2016 Oracle Corporation
9	*
10	* This file is part of VirtualBox Open Source Edition (OSE), as
11	* available from http://www.virtualbox.org. This file is free software;
12	* you can redistribute it and/or modify it under the terms of the GNU
13	* General Public License (GPL) as published by the Free Software
14	* Foundation, in version 2 as it comes in the "COPYING" file of the
15	* VirtualBox OSE distribution. VirtualBox OSE is distributed in the
16	* hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
17	*/
18
19	// shared webservice header
20	#include "vboxweb.h"
21
22	// vbox headers
23	#include <VBox/com/com.h>
24	#include <VBox/com/array.h>
25	#include <VBox/com/string.h>
26	#include <VBox/com/ErrorInfo.h>
27	#include <VBox/com/errorprint.h>
28	#include <VBox/com/listeners.h>
29	#include <VBox/com/NativeEventQueue.h>
30	#include <VBox/VBoxAuth.h>
31	#include <VBox/version.h>
32	#include <VBox/log.h>
33
34	#include <iprt/buildconfig.h>
35	#include <iprt/ctype.h>
36	#include <iprt/getopt.h>
37	#include <iprt/initterm.h>
38	#include <iprt/ldr.h>
39	#include <iprt/message.h>
40	#include <iprt/process.h>
41	#include <iprt/rand.h>
42	#include <iprt/semaphore.h>
43	#include <iprt/critsect.h>
44	#include <iprt/string.h>
45	#include <iprt/thread.h>
46	#include <iprt/time.h>
47	#include <iprt/path.h>
48	#include <iprt/system.h>
49	#include <iprt/base64.h>
50	#include <iprt/stream.h>
51	#include <iprt/asm.h>
52
53	#ifdef WITH_OPENSSL
54	# include <openssl/opensslv.h>
55	#endif
56
57	#ifndef RT_OS_WINDOWS
58	# include <signal.h>
59	#endif
60
61	// workaround for compile problems on gcc 4.1
62	#ifdef __GNUC__
63	#pragma GCC visibility push(default)
64	#endif
65
66	// gSOAP headers (must come after vbox includes because it checks for conflicting defs)
67	#include "soapH.h"
68
69	// standard headers
70	#include <map>
71	#include <list>
72
73	#ifdef __GNUC__
74	#pragma GCC visibility pop
75	#endif
76
77	// include generated namespaces table
78	#include "vboxwebsrv.nsmap"
79
80	RT_C_DECLS_BEGIN
81
82	// declarations for the generated WSDL text
83	extern const unsigned char g_abVBoxWebWSDL[];
84	extern const unsigned g_cbVBoxWebWSDL;
85
86	RT_C_DECLS_END
87
88	static void WebLogSoapError(struct soap *soap);
89
90	/****************************************************************************
91	*
92	* private typedefs
93	*
94	****************************************************************************/
95
96	typedef std::map<uint64_t, ManagedObjectRef*> ManagedObjectsMapById;
97	typedef ManagedObjectsMapById::iterator ManagedObjectsIteratorById;
98	typedef std::map<uintptr_t, ManagedObjectRef*> ManagedObjectsMapByPtr;
99	typedef ManagedObjectsMapByPtr::iterator ManagedObjectsIteratorByPtr;
100
101	typedef std::map<uint64_t, WebServiceSession*> WebsessionsMap;
102	typedef WebsessionsMap::iterator WebsessionsMapIterator;
103
104	typedef std::map<RTTHREAD, com::Utf8Str> ThreadsMap;
105
106	static DECLCALLBACK(int) fntWatchdog(RTTHREAD ThreadSelf, void *pvUser);
107
108	/****************************************************************************
109	*
110	* Read-only global variables
111	*
112	****************************************************************************/
113
114	static ComPtr<IVirtualBoxClient> g_pVirtualBoxClient = NULL;
115
116	// generated strings in methodmaps.cpp
117	extern const char *g_pcszISession,
118	*g_pcszIVirtualBox,
119	*g_pcszIVirtualBoxErrorInfo;
120
121	// globals for vboxweb command-line arguments
122	#define DEFAULT_TIMEOUT_SECS 300
123	#define DEFAULT_TIMEOUT_SECS_STRING "300"
124	static int g_iWatchdogTimeoutSecs = DEFAULT_TIMEOUT_SECS;
125	static int g_iWatchdogCheckInterval = 5;
126
127	static const char *g_pcszBindToHost = NULL; // host; NULL = localhost
128	static unsigned int g_uBindToPort = 18083; // port
129	static unsigned int g_uBacklog = 100; // backlog = max queue size for requests
130
131	#ifdef WITH_OPENSSL
132	static bool g_fSSL = false; // if SSL is enabled
133	static const char *g_pcszKeyFile = NULL; // server key file
134	static const char *g_pcszPassword = NULL; // password for server key
135	static const char *g_pcszCACert = NULL; // file with trusted CA certificates
136	static const char *g_pcszCAPath = NULL; // directory with trusted CA certificates
137	static const char *g_pcszDHFile = NULL; // DH file name or DH key length in bits, NULL=use RSA
138	static const char *g_pcszRandFile = NULL; // file with random data seed
139	static const char *g_pcszSID = "vboxwebsrv"; // server ID for SSL session cache
140	#endif /* WITH_OPENSSL */
141
142	static unsigned int g_cMaxWorkerThreads = 100; // max. no. of worker threads
143	static unsigned int g_cMaxKeepAlive = 100; // maximum number of soap requests in one connection
144
145	static const char *g_pcszAuthentication = NULL; // web service authentication
146
147	static uint32_t g_cHistory = 10; // enable log rotation, 10 files
148	static uint32_t g_uHistoryFileTime = RT_SEC_1DAY; // max 1 day per file
149	static uint64_t g_uHistoryFileSize = 100 * _1M; // max 100MB per file
150	bool g_fVerbose = false; // be verbose
151
152	static bool g_fDaemonize = false; // run in background.
153	static volatile bool g_fKeepRunning = true; // controlling the exit
154
155	const WSDLT_ID g_EmptyWSDLID; // for NULL MORs
156
157	/****************************************************************************
158	*
159	* Writeable global variables
160	*
161	****************************************************************************/
162
163	// The one global SOAP queue created by main().
164	class SoapQ;
165	static SoapQ *g_pSoapQ = NULL;
166
167	// this mutex protects the auth lib and authentication
168	static util::WriteLockHandle *g_pAuthLibLockHandle;
169
170	// this mutex protects the global VirtualBox reference below
171	static util::RWLockHandle *g_pVirtualBoxLockHandle;
172
173	static ComPtr<IVirtualBox> g_pVirtualBox = NULL;
174
175	// this mutex protects all of the below
176	util::WriteLockHandle *g_pWebsessionsLockHandle;
177
178	static WebsessionsMap g_mapWebsessions;
179	static ULONG64 g_cManagedObjects = 0;
180
181	// this mutex protects g_mapThreads
182	static util::RWLockHandle *g_pThreadsLockHandle;
183
184	// Threads map, so we can quickly map an RTTHREAD struct to a logger prefix
185	static ThreadsMap g_mapThreads;
186
187	/****************************************************************************
188	*
189	* Command line help
190	*
191	****************************************************************************/
192
193	static const RTGETOPTDEF g_aOptions[]
194	= {
195	{ "--help", 'h', RTGETOPT_REQ_NOTHING }, /* for DisplayHelp() */
196	#if defined(RT_OS_DARWIN) \|\| defined(RT_OS_LINUX) \|\| defined (RT_OS_SOLARIS) \|\| defined(RT_OS_FREEBSD)
197	{ "--background", 'b', RTGETOPT_REQ_NOTHING },
198	#endif
199	{ "--host", 'H', RTGETOPT_REQ_STRING },
200	{ "--port", 'p', RTGETOPT_REQ_UINT32 },
201	#ifdef WITH_OPENSSL
202	{ "--ssl", 's', RTGETOPT_REQ_NOTHING },
203	{ "--keyfile", 'K', RTGETOPT_REQ_STRING },
204	{ "--passwordfile", 'a', RTGETOPT_REQ_STRING },
205	{ "--cacert", 'c', RTGETOPT_REQ_STRING },
206	{ "--capath", 'C', RTGETOPT_REQ_STRING },
207	{ "--dhfile", 'D', RTGETOPT_REQ_STRING },
208	{ "--randfile", 'r', RTGETOPT_REQ_STRING },
209	#endif /* WITH_OPENSSL */
210	{ "--timeout", 't', RTGETOPT_REQ_UINT32 },
211	{ "--check-interval", 'i', RTGETOPT_REQ_UINT32 },
212	{ "--threads", 'T', RTGETOPT_REQ_UINT32 },
213	{ "--keepalive", 'k', RTGETOPT_REQ_UINT32 },
214	{ "--authentication", 'A', RTGETOPT_REQ_STRING },
215	{ "--verbose", 'v', RTGETOPT_REQ_NOTHING },
216	{ "--pidfile", 'P', RTGETOPT_REQ_STRING },
217	{ "--logfile", 'F', RTGETOPT_REQ_STRING },
218	{ "--logrotate", 'R', RTGETOPT_REQ_UINT32 },
219	{ "--logsize", 'S', RTGETOPT_REQ_UINT64 },
220	{ "--loginterval", 'I', RTGETOPT_REQ_UINT32 }
221	};
222
223	static void DisplayHelp()
224	{
225	RTStrmPrintf(g_pStdErr, "\nUsage: vboxwebsrv [options]\n\nSupported options (default values in brackets):\n");
226	for (unsigned i = 0;
227	i < RT_ELEMENTS(g_aOptions);
228	++i)
229	{
230	std::string str(g_aOptions[i].pszLong);
231	str += ", -";
232	str += g_aOptions[i].iShort;
233	str += ":";
234
235	const char *pcszDescr = "";
236
237	switch (g_aOptions[i].iShort)
238	{
239	case 'h':
240	pcszDescr = "Print this help message and exit.";
241	break;
242
243	#if defined(RT_OS_DARWIN) \|\| defined(RT_OS_LINUX) \|\| defined (RT_OS_SOLARIS) \|\| defined(RT_OS_FREEBSD)
244	case 'b':
245	pcszDescr = "Run in background (daemon mode).";
246	break;
247	#endif
248
249	case 'H':
250	pcszDescr = "The host to bind to (localhost).";
251	break;
252
253	case 'p':
254	pcszDescr = "The port to bind to (18083).";
255	break;
256
257	#ifdef WITH_OPENSSL
258	case 's':
259	pcszDescr = "Enable SSL/TLS encryption.";
260	break;
261
262	case 'K':
263	pcszDescr = "Server key and certificate file, PEM format (\"\").";
264	break;
265
266	case 'a':
267	pcszDescr = "File name for password to server key (\"\").";
268	break;
269
270	case 'c':
271	pcszDescr = "CA certificate file, PEM format (\"\").";
272	break;
273
274	case 'C':
275	pcszDescr = "CA certificate path (\"\").";
276	break;
277
278	case 'D':
279	pcszDescr = "DH file name or DH key length in bits (\"\").";
280	break;
281
282	case 'r':
283	pcszDescr = "File containing seed for random number generator (\"\").";
284	break;
285	#endif /* WITH_OPENSSL */
286
287	case 't':
288	pcszDescr = "Session timeout in seconds; 0 = disable timeouts (" DEFAULT_TIMEOUT_SECS_STRING ").";
289	break;
290
291	case 'T':
292	pcszDescr = "Maximum number of worker threads to run in parallel (100).";
293	break;
294
295	case 'k':
296	pcszDescr = "Maximum number of requests before a socket will be closed (100).";
297	break;
298
299	case 'A':
300	pcszDescr = "Authentication method for the webservice (\"\").";
301	break;
302
303	case 'i':
304	pcszDescr = "Frequency of timeout checks in seconds (5).";
305	break;
306
307	case 'v':
308	pcszDescr = "Be verbose.";
309	break;
310
311	case 'P':
312	pcszDescr = "Name of the PID file which is created when the daemon was started.";
313	break;
314
315	case 'F':
316	pcszDescr = "Name of file to write log to (no file).";
317	break;
318
319	case 'R':
320	pcszDescr = "Number of log files (0 disables log rotation).";
321	break;
322
323	case 'S':
324	pcszDescr = "Maximum size of a log file to trigger rotation (bytes).";
325	break;
326
327	case 'I':
328	pcszDescr = "Maximum time interval to trigger log rotation (seconds).";
329	break;
330	}
331
332	RTStrmPrintf(g_pStdErr, "%-23s%s\n", str.c_str(), pcszDescr);
333	}
334	}
335
336	/****************************************************************************
337	*
338	* SoapQ, SoapThread (multithreading)
339	*
340	****************************************************************************/
341
342	class SoapQ;
343
344	class SoapThread
345	{
346	public:
347	/**
348	* Constructor. Creates the new thread and makes it call process() for processing the queue.
349	* @param u Thread number. (So we can count from 1 and be readable.)
350	* @param q SoapQ instance which has the queue to process.
351	* @param soap struct soap instance from main() which we copy here.
352	*/
353	SoapThread(size_t u,
354	SoapQ &q,
355	const struct soap *soap)
356	: m_u(u),
357	m_strThread(com::Utf8StrFmt("SQW%02d", m_u)),
358	m_pQ(&q)
359	{
360	// make a copy of the soap struct for the new thread
361	m_soap = soap_copy(soap);
362	m_soap->fget = fnHttpGet;
363
364	/* The soap.max_keep_alive value can be set to the maximum keep-alive calls allowed,
365	* which is important to avoid a client from holding a thread indefinitely.
366	* http://www.cs.fsu.edu/~engelen/soapdoc2.html#sec:keepalive
367	*
368	* Strings with 8-bit content can hold ASCII (default) or UTF8. The latter is
369	* possible by enabling the SOAP_C_UTFSTRING flag.
370	*/
371	soap_set_omode(m_soap, SOAP_IO_KEEPALIVE \| SOAP_C_UTFSTRING);
372	soap_set_imode(m_soap, SOAP_IO_KEEPALIVE \| SOAP_C_UTFSTRING);
373	m_soap->max_keep_alive = g_cMaxKeepAlive;
374
375	int rc = RTThreadCreate(&m_pThread,
376	fntWrapper,
377	this, // pvUser
378	0, // cbStack
379	RTTHREADTYPE_MAIN_HEAVY_WORKER,
380	0,
381	m_strThread.c_str());
382	if (RT_FAILURE(rc))
383	{
384	RTMsgError("Cannot start worker thread %d: %Rrc\n", u, rc);
385	exit(1);
386	}
387	}
388
389	void process();
390
391	static int fnHttpGet(struct soap *soap)
392	{
393	char *s = strchr(soap->path, '?');
394	if (!s \|\| strcmp(s, "?wsdl"))
395	return SOAP_GET_METHOD;
396	soap_response(soap, SOAP_HTML);
397	soap_send_raw(soap, (const char *)g_abVBoxWebWSDL, g_cbVBoxWebWSDL);
398	soap_end_send(soap);
399	return SOAP_OK;
400	}
401
402	/**
403	* Static function that can be passed to RTThreadCreate and that calls
404	* process() on the SoapThread instance passed as the thread parameter.
405	*
406	* @param hThreadSelf
407	* @param pvThread
408	* @return
409	*/
410	static DECLCALLBACK(int) fntWrapper(RTTHREAD hThreadSelf, void *pvThread)
411	{
412	RT_NOREF(hThreadSelf);
413	SoapThread pst = (SoapThread)pvThread;
414	pst->process();
415	return VINF_SUCCESS;
416	}
417
418	size_t m_u; // thread number
419	com::Utf8Str m_strThread; // thread name ("SoapQWrkXX")
420	SoapQ *m_pQ; // the single SOAP queue that all the threads service
421	struct soap *m_soap; // copy of the soap structure for this thread (from soap_copy())
422	RTTHREAD m_pThread; // IPRT thread struct for this thread
423	};
424
425	/**
426	* SOAP queue encapsulation. There is only one instance of this, to
427	* which add() adds a queue item (called on the main thread),
428	* and from which get() fetch items, called from each queue thread.
429	*/
430	class SoapQ
431	{
432	public:
433
434	/**
435	* Constructor. Creates the soap queue.
436	* @param pSoap
437	*/
438	SoapQ(const struct soap *pSoap)
439	: m_soap(pSoap),
440	m_mutex(util::LOCKCLASS_OBJECTSTATE), // lowest lock order, no other may be held while this is held
441	m_cIdleThreads(0)
442	{
443	RTSemEventMultiCreate(&m_event);
444	}
445
446	~SoapQ()
447	{
448	/* Tell the threads to terminate. */
449	RTSemEventMultiSignal(m_event);
450	{
451	util::AutoWriteLock qlock(m_mutex COMMA_LOCKVAL_SRC_POS);
452	int i = 0;
453	while (m_llAllThreads.size() && i++ <= 30)
454	{
455	qlock.release();
456	RTThreadSleep(1000);
457	RTSemEventMultiSignal(m_event);
458	qlock.acquire();
459	}
460	LogRel(("ending queue processing (%d out of %d threads idle)\n", m_cIdleThreads, m_llAllThreads.size()));
461	}
462
463	RTSemEventMultiDestroy(m_event);
464	}
465
466	/**
467	* Adds the given socket to the SOAP queue and posts the
468	* member event sem to wake up the workers. Called on the main thread
469	* whenever a socket has work to do. Creates a new SOAP thread on the
470	* first call or when all existing threads are busy.
471	* @param s Socket from soap_accept() which has work to do.
472	*/
473	size_t add(SOAP_SOCKET s)
474	{
475	size_t cItems;
476	util::AutoWriteLock qlock(m_mutex COMMA_LOCKVAL_SRC_POS);
477
478	// if no threads have yet been created, or if all threads are busy,
479	// create a new SOAP thread
480	if ( !m_cIdleThreads
481	// but only if we're not exceeding the global maximum (default is 100)
482	&& (m_llAllThreads.size() < g_cMaxWorkerThreads)
483	)
484	{
485	SoapThread *pst = new SoapThread(m_llAllThreads.size() + 1,
486	*this,
487	m_soap);
488	m_llAllThreads.push_back(pst);
489	util::AutoWriteLock thrLock(g_pThreadsLockHandle COMMA_LOCKVAL_SRC_POS);
490	g_mapThreads[pst->m_pThread] = com::Utf8StrFmt("[%3u]", pst->m_u);
491	++m_cIdleThreads;
492	}
493
494	// enqueue the socket of this connection and post eventsem so that
495	// one of the threads (possibly the one just created) can pick it up
496	m_llSocketsQ.push_back(s);
497	cItems = m_llSocketsQ.size();
498	qlock.release();
499
500	// unblock one of the worker threads
501	RTSemEventMultiSignal(m_event);
502
503	return cItems;
504	}
505
506	/**
507	* Blocks the current thread until work comes in; then returns
508	* the SOAP socket which has work to do. This reduces m_cIdleThreads
509	* by one, and the caller MUST call done() when it's done processing.
510	* Called from the worker threads.
511	* @param cIdleThreads out: no. of threads which are currently idle (not counting the caller)
512	* @param cThreads out: total no. of SOAP threads running
513	* @return
514	*/
515	SOAP_SOCKET get(size_t &cIdleThreads, size_t &cThreads)
516	{
517	while (g_fKeepRunning)
518	{
519	// wait for something to happen
520	RTSemEventMultiWait(m_event, RT_INDEFINITE_WAIT);
521
522	if (!g_fKeepRunning)
523	break;
524
525	util::AutoWriteLock qlock(m_mutex COMMA_LOCKVAL_SRC_POS);
526	if (!m_llSocketsQ.empty())
527	{
528	SOAP_SOCKET socket = m_llSocketsQ.front();
529	m_llSocketsQ.pop_front();
530	cIdleThreads = --m_cIdleThreads;
531	cThreads = m_llAllThreads.size();
532
533	// reset the multi event only if the queue is now empty; otherwise
534	// another thread will also wake up when we release the mutex and
535	// process another one
536	if (m_llSocketsQ.empty())
537	RTSemEventMultiReset(m_event);
538
539	qlock.release();
540
541	return socket;
542	}
543
544	// nothing to do: keep looping
545	}
546	return SOAP_INVALID_SOCKET;
547	}
548
549	/**
550	* To be called by a worker thread after fetching an item from the
551	* queue via get() and having finished its lengthy processing.
552	*/
553	void done()
554	{
555	util::AutoWriteLock qlock(m_mutex COMMA_LOCKVAL_SRC_POS);
556	++m_cIdleThreads;
557	}
558
559	/**
560	* To be called by a worker thread when signing off, i.e. no longer
561	* willing to process requests.
562	*/
563	void signoff(SoapThread *th)
564	{
565	{
566	util::AutoWriteLock thrLock(g_pThreadsLockHandle COMMA_LOCKVAL_SRC_POS);
567	size_t c = g_mapThreads.erase(th->m_pThread);
568	AssertReturnVoid(c == 1);
569	}
570	{
571	util::AutoWriteLock qlock(m_mutex COMMA_LOCKVAL_SRC_POS);
572	m_llAllThreads.remove(th);
573	--m_cIdleThreads;
574	}
575	}
576
577	const struct soap *m_soap; // soap structure created by main(), passed to constructor
578
579	util::WriteLockHandle m_mutex;
580	RTSEMEVENTMULTI m_event; // posted by add(), blocked on by get()
581
582	std::list<SoapThread*> m_llAllThreads; // all the threads created by the constructor
583	size_t m_cIdleThreads; // threads which are currently idle (statistics)
584
585	// A std::list abused as a queue; this contains the actual jobs to do,
586	// each int being a socket from soap_accept()
587	std::list<SOAP_SOCKET> m_llSocketsQ;
588	};
589
590	/**
591	* Thread function for each of the SOAP queue worker threads. This keeps
592	* running, blocks on the event semaphore in SoapThread.SoapQ and picks
593	* up a socket from the queue therein, which has been put there by
594	* beginProcessing().
595	*/
596	void SoapThread::process()
597	{
598	LogRel(("New SOAP thread started\n"));
599
600	while (g_fKeepRunning)
601	{
602	// wait for a socket to arrive on the queue
603	size_t cIdleThreads = 0, cThreads = 0;
604	m_soap->socket = m_pQ->get(cIdleThreads, cThreads);
605
606	if (!soap_valid_socket(m_soap->socket))
607	continue;
608
609	LogRel(("Processing connection from IP=%RTnaipv4 socket=%d (%d out of %d threads idle)\n",
610	RT_H2N_U32(m_soap->ip), m_soap->socket, cIdleThreads, cThreads));
611
612	// Ensure that we don't get stuck indefinitely for connections using
613	// keepalive, otherwise stale connections tie up worker threads.
614	m_soap->send_timeout = 60;
615	m_soap->recv_timeout = 60;
616	// process the request; this goes into the COM code in methodmaps.cpp
617	do {
618	#ifdef WITH_OPENSSL
619	if (g_fSSL && soap_ssl_accept(m_soap))
620	{
621	WebLogSoapError(m_soap);
622	break;
623	}
624	#endif /* WITH_OPENSSL */
625	soap_serve(m_soap);
626	} while (0);
627
628	soap_destroy(m_soap); // clean up class instances
629	soap_end(m_soap); // clean up everything and close socket
630
631	// tell the queue we're idle again
632	m_pQ->done();
633	}
634	m_pQ->signoff(this);
635	}
636
637	/****************************************************************************
638	*
639	* VirtualBoxClient event listener
640	*
641	****************************************************************************/
642
643	class VirtualBoxClientEventListener
644	{
645	public:
646	VirtualBoxClientEventListener()
647	{
648	}
649
650	virtual ~VirtualBoxClientEventListener()
651	{
652	}
653
654	HRESULT init()
655	{
656	return S_OK;
657	}
658
659	void uninit()
660	{
661	}
662
663
664	STDMETHOD(HandleEvent)(VBoxEventType_T aType, IEvent *aEvent)
665	{
666	switch (aType)
667	{
668	case VBoxEventType_OnVBoxSVCAvailabilityChanged:
669	{
670	ComPtr<IVBoxSVCAvailabilityChangedEvent> pVSACEv = aEvent;
671	Assert(pVSACEv);
672	BOOL fAvailable = FALSE;
673	pVSACEv->COMGETTER(Available)(&fAvailable);
674	if (!fAvailable)
675	{
676	LogRel(("VBoxSVC became unavailable\n"));
677	{
678	util::AutoWriteLock vlock(g_pVirtualBoxLockHandle COMMA_LOCKVAL_SRC_POS);
679	g_pVirtualBox.setNull();
680	}
681	{
682	// we're messing with websessions, so lock them
683	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
684	WEBDEBUG(("SVC unavailable: deleting %d websessions\n", g_mapWebsessions.size()));
685
686	WebsessionsMapIterator it = g_mapWebsessions.begin(),
687	itEnd = g_mapWebsessions.end();
688	while (it != itEnd)
689	{
690	WebServiceSession *pWebsession = it->second;
691	WEBDEBUG(("SVC unavailable: websession %#llx stale, deleting\n", pWebsession->getID()));
692	delete pWebsession;
693	it = g_mapWebsessions.begin();
694	}
695	}
696	}
697	else
698	{
699	LogRel(("VBoxSVC became available\n"));
700	util::AutoWriteLock vlock(g_pVirtualBoxLockHandle COMMA_LOCKVAL_SRC_POS);
701	HRESULT hrc = g_pVirtualBoxClient->COMGETTER(VirtualBox)(g_pVirtualBox.asOutParam());
702	AssertComRC(hrc);
703	}
704	break;
705	}
706	default:
707	AssertFailed();
708	}
709
710	return S_OK;
711	}
712
713	private:
714	};
715
716	typedef ListenerImpl<VirtualBoxClientEventListener> VirtualBoxClientEventListenerImpl;
717
718	VBOX_LISTENER_DECLARE(VirtualBoxClientEventListenerImpl)
719
720	/**
721	* Helper for printing SOAP error messages.
722	* @param soap
723	*/
724	/static/
725	void WebLogSoapError(struct soap *soap)
726	{
727	if (soap_check_state(soap))
728	{
729	LogRel(("Error: soap struct not initialized\n"));
730	return;
731	}
732
733	const char pcszFaultString = soap_faultstring(soap);
734	const char **ppcszDetail = soap_faultcode(soap);
735	LogRel(("#### SOAP FAULT: %s [%s]\n",
736	pcszFaultString ? pcszFaultString : "[no fault string available]",
737	(ppcszDetail && ppcszDetail) ? ppcszDetail : "no details available"));
738	}
739
740	/**
741	* Helper for decoding AuthResult.
742	* @param result AuthResult
743	*/
744	static const char * decodeAuthResult(AuthResult result)
745	{
746	switch (result)
747	{
748	case AuthResultAccessDenied: return "access DENIED";
749	case AuthResultAccessGranted: return "access granted";
750	case AuthResultDelegateToGuest: return "delegated to guest";
751	default: return "unknown AuthResult";
752	}
753	}
754
755	#if defined(WITH_OPENSSL) && (OPENSSL_VERSION_NUMBER < 0x10100000 \|\| defined(LIBRESSL_VERSION_NUMBER))
756	/****************************************************************************
757	*
758	* OpenSSL convenience functions for multithread support.
759	* Not required for OpenSSL 1.1+
760	*
761	****************************************************************************/
762
763	static RTCRITSECT *g_pSSLMutexes = NULL;
764
765	struct CRYPTO_dynlock_value
766	{
767	RTCRITSECT mutex;
768	};
769
770	static unsigned long CRYPTO_id_function()
771	{
772	return (unsigned long)RTThreadNativeSelf();
773	}
774
775	static void CRYPTO_locking_function(int mode, int n, const char * /file/, int /line/)
776	{
777	if (mode & CRYPTO_LOCK)
778	RTCritSectEnter(&g_pSSLMutexes[n]);
779	else
780	RTCritSectLeave(&g_pSSLMutexes[n]);
781	}
782
783	static struct CRYPTO_dynlock_value CRYPTO_dyn_create_function(const char /file/, int /line/)
784	{
785	static uint32_t s_iCritSectDynlock = 0;
786	struct CRYPTO_dynlock_value value = (struct CRYPTO_dynlock_value )RTMemAlloc(sizeof(struct CRYPTO_dynlock_value));
787	if (value)
788	RTCritSectInitEx(&value->mutex, RTCRITSECT_FLAGS_NO_LOCK_VAL,
789	NIL_RTLOCKVALCLASS, RTLOCKVAL_SUB_CLASS_NONE,
790	"openssl-dyn-%u", ASMAtomicIncU32(&s_iCritSectDynlock) - 1);
791
792	return value;
793	}
794
795	static void CRYPTO_dyn_lock_function(int mode, struct CRYPTO_dynlock_value value, const char /file/, int /line/)
796	{
797	if (mode & CRYPTO_LOCK)
798	RTCritSectEnter(&value->mutex);
799	else
800	RTCritSectLeave(&value->mutex);
801	}
802
803	static void CRYPTO_dyn_destroy_function(struct CRYPTO_dynlock_value value, const char /file/, int /line/)
804	{
805	if (value)
806	{
807	RTCritSectDelete(&value->mutex);
808	free(value);
809	}
810	}
811
812	static int CRYPTO_thread_setup()
813	{
814	int num_locks = CRYPTO_num_locks();
815	g_pSSLMutexes = (RTCRITSECT )RTMemAlloc(num_locks sizeof(RTCRITSECT));
816	if (!g_pSSLMutexes)
817	return SOAP_EOM;
818
819	for (int i = 0; i < num_locks; i++)
820	{
821	int rc = RTCritSectInitEx(&g_pSSLMutexes[i], RTCRITSECT_FLAGS_NO_LOCK_VAL,
822	NIL_RTLOCKVALCLASS, RTLOCKVAL_SUB_CLASS_NONE,
823	"openssl-%d", i);
824	if (RT_FAILURE(rc))
825	{
826	for ( ; i >= 0; i--)
827	RTCritSectDelete(&g_pSSLMutexes[i]);
828	RTMemFree(g_pSSLMutexes);
829	g_pSSLMutexes = NULL;
830	return SOAP_EOM;
831	}
832	}
833
834	CRYPTO_set_id_callback(CRYPTO_id_function);
835	CRYPTO_set_locking_callback(CRYPTO_locking_function);
836	CRYPTO_set_dynlock_create_callback(CRYPTO_dyn_create_function);
837	CRYPTO_set_dynlock_lock_callback(CRYPTO_dyn_lock_function);
838	CRYPTO_set_dynlock_destroy_callback(CRYPTO_dyn_destroy_function);
839
840	return SOAP_OK;
841	}
842
843	static void CRYPTO_thread_cleanup()
844	{
845	if (!g_pSSLMutexes)
846	return;
847
848	CRYPTO_set_id_callback(NULL);
849	CRYPTO_set_locking_callback(NULL);
850	CRYPTO_set_dynlock_create_callback(NULL);
851	CRYPTO_set_dynlock_lock_callback(NULL);
852	CRYPTO_set_dynlock_destroy_callback(NULL);
853
854	int num_locks = CRYPTO_num_locks();
855	for (int i = 0; i < num_locks; i++)
856	RTCritSectDelete(&g_pSSLMutexes[i]);
857
858	RTMemFree(g_pSSLMutexes);
859	g_pSSLMutexes = NULL;
860	}
861	#endif /* WITH_OPENSSL && (OPENSSL_VERSION_NUMBER < 0x10100000 \|\| defined(LIBRESSL_VERSION_NUMBER)) */
862
863	/****************************************************************************
864	*
865	* SOAP queue pumper thread
866	*
867	****************************************************************************/
868
869	static void doQueuesLoop()
870	{
871	#if defined(WITH_OPENSSL) && (OPENSSL_VERSION_NUMBER < 0x10100000 \|\| defined(LIBRESSL_VERSION_NUMBER))
872	if (g_fSSL && CRYPTO_thread_setup())
873	{
874	LogRel(("Failed to set up OpenSSL thread mutex!"));
875	exit(RTEXITCODE_FAILURE);
876	}
877	#endif
878
879	// set up gSOAP
880	struct soap soap;
881	soap_init(&soap);
882
883	#ifdef WITH_OPENSSL
884	if (g_fSSL && soap_ssl_server_context(&soap, SOAP_SSL_REQUIRE_SERVER_AUTHENTICATION \| SOAP_TLSv1, g_pcszKeyFile,
885	g_pcszPassword, g_pcszCACert, g_pcszCAPath,
886	g_pcszDHFile, g_pcszRandFile, g_pcszSID))
887	{
888	WebLogSoapError(&soap);
889	exit(RTEXITCODE_FAILURE);
890	}
891	#endif /* WITH_OPENSSL */
892
893	soap.bind_flags \|= SO_REUSEADDR;
894	// avoid EADDRINUSE on bind()
895
896	SOAP_SOCKET m, s; // master and slave sockets
897	m = soap_bind(&soap,
898	g_pcszBindToHost ? g_pcszBindToHost : "localhost", // safe default host
899	g_uBindToPort, // port
900	g_uBacklog); // backlog = max queue size for requests
901	if (m == SOAP_INVALID_SOCKET)
902	WebLogSoapError(&soap);
903	else
904	{
905	#ifdef WITH_OPENSSL
906	const char *pszSsl = g_fSSL ? "SSL, " : "";
907	#else /* !WITH_OPENSSL */
908	const char *pszSsl = "";
909	#endif /!WITH_OPENSSL /
910	LogRel(("Socket connection successful: host = %s, port = %u, %smaster socket = %d\n",
911	(g_pcszBindToHost) ? g_pcszBindToHost : "default (localhost)",
912	g_uBindToPort, pszSsl, m));
913
914	// initialize thread queue, mutex and eventsem
915	g_pSoapQ = new SoapQ(&soap);
916
917	uint64_t cAccepted = 1;
918	while (g_fKeepRunning)
919	{
920	struct timeval timeout;
921	fd_set fds;
922	int rv;
923	for (;;)
924	{
925	timeout.tv_sec = 60;
926	timeout.tv_usec = 0;
927	FD_ZERO(&fds);
928	FD_SET(soap.master, &fds);
929	rv = select((int)soap.master + 1, &fds, &fds, &fds, &timeout);
930	if (rv > 0)
931	break; // work is waiting
932	else if (rv == 0)
933	continue; // timeout, not necessary to bother gsoap
934	else // r < 0, errno
935	{
936	if (soap_socket_errno(soap.master) == SOAP_EINTR)
937	rv = 0; // re-check if we should terminate
938	break;
939	}
940	}
941	if (rv == 0)
942	continue;
943
944	// call gSOAP to handle incoming SOAP connection
945	soap.accept_timeout = -1; // 1usec timeout, actual waiting is above
946	s = soap_accept(&soap);
947	if (!soap_valid_socket(s))
948	{
949	if (soap.errnum)
950	WebLogSoapError(&soap);
951	continue;
952	}
953
954	// add the socket to the queue and tell worker threads to
955	// pick up the job
956	size_t cItemsOnQ = g_pSoapQ->add(s);
957	LogRel(("Request %llu on socket %d queued for processing (%d items on Q)\n", cAccepted, s, cItemsOnQ));
958	cAccepted++;
959	}
960
961	delete g_pSoapQ;
962	g_pSoapQ = NULL;
963
964	LogRel(("ending SOAP request handling\n"));
965
966	delete g_pSoapQ;
967	g_pSoapQ = NULL;
968
969	}
970	soap_done(&soap); // close master socket and detach environment
971
972	#if defined(WITH_OPENSSL) && (OPENSSL_VERSION_NUMBER < 0x10100000 \|\| defined(LIBRESSL_VERSION_NUMBER))
973	if (g_fSSL)
974	CRYPTO_thread_cleanup();
975	#endif
976	}
977
978	/**
979	* Thread function for the "queue pumper" thread started from main(). This implements
980	* the loop that takes SOAP calls from HTTP and serves them by handing sockets to the
981	* SOAP queue worker threads.
982	*/
983	static DECLCALLBACK(int) fntQPumper(RTTHREAD hThreadSelf, void *pvUser)
984	{
985	RT_NOREF(hThreadSelf, pvUser);
986
987	// store a log prefix for this thread
988	util::AutoWriteLock thrLock(g_pThreadsLockHandle COMMA_LOCKVAL_SRC_POS);
989	g_mapThreads[RTThreadSelf()] = "[ P ]";
990	thrLock.release();
991
992	doQueuesLoop();
993
994	thrLock.acquire();
995	g_mapThreads.erase(RTThreadSelf());
996	return VINF_SUCCESS;
997	}
998
999	#ifdef RT_OS_WINDOWS
1000	/**
1001	* "Signal" handler for cleanly terminating the event loop.
1002	*/
1003	static BOOL WINAPI websrvSignalHandler(DWORD dwCtrlType)
1004	{
1005	bool fEventHandled = FALSE;
1006	switch (dwCtrlType)
1007	{
1008	/* User pressed CTRL+C or CTRL+BREAK or an external event was sent
1009	* via GenerateConsoleCtrlEvent(). */
1010	case CTRL_BREAK_EVENT:
1011	case CTRL_CLOSE_EVENT:
1012	case CTRL_C_EVENT:
1013	case CTRL_LOGOFF_EVENT:
1014	case CTRL_SHUTDOWN_EVENT:
1015	{
1016	ASMAtomicWriteBool(&g_fKeepRunning, false);
1017	com::NativeEventQueue *pQ = com::NativeEventQueue::getMainEventQueue();
1018	pQ->interruptEventQueueProcessing();
1019	fEventHandled = TRUE;
1020	break;
1021	}
1022	default:
1023	break;
1024	}
1025	return fEventHandled;
1026	}
1027	#else
1028	/**
1029	* Signal handler for cleanly terminating the event loop.
1030	*/
1031	static void websrvSignalHandler(int iSignal)
1032	{
1033	NOREF(iSignal);
1034	ASMAtomicWriteBool(&g_fKeepRunning, false);
1035	com::NativeEventQueue *pQ = com::NativeEventQueue::getMainEventQueue();
1036	pQ->interruptEventQueueProcessing();
1037	}
1038	#endif
1039
1040
1041	/**
1042	* Start up the webservice server. This keeps running and waits
1043	* for incoming SOAP connections; for each request that comes in,
1044	* it calls method implementation code, most of it in the generated
1045	* code in methodmaps.cpp.
1046	*
1047	* @param argc
1048	* @param argv[]
1049	* @return
1050	*/
1051	int main(int argc, char *argv[])
1052	{
1053	// initialize runtime
1054	int rc = RTR3InitExe(argc, &argv, 0);
1055	if (RT_FAILURE(rc))
1056	return RTMsgInitFailure(rc);
1057	#ifdef RT_OS_WINDOWS
1058	ATL::CComModule _Module; /* Required internally by ATL (constructor records instance in global variable). */
1059	#endif
1060
1061	// store a log prefix for this thread
1062	g_mapThreads[RTThreadSelf()] = "[M ]";
1063
1064	RTStrmPrintf(g_pStdErr, VBOX_PRODUCT " web service Version " VBOX_VERSION_STRING "\n"
1065	"(C) 2007-" VBOX_C_YEAR " " VBOX_VENDOR "\n"
1066	"All rights reserved.\n");
1067
1068	int c;
1069	const char *pszLogFile = NULL;
1070	const char *pszPidFile = NULL;
1071	RTGETOPTUNION ValueUnion;
1072	RTGETOPTSTATE GetState;
1073	RTGetOptInit(&GetState, argc, argv, g_aOptions, RT_ELEMENTS(g_aOptions), 1, 0 /fFlags/);
1074	while ((c = RTGetOpt(&GetState, &ValueUnion)))
1075	{
1076	switch (c)
1077	{
1078	case 'H':
1079	if (!ValueUnion.psz \|\| !*ValueUnion.psz)
1080	{
1081	/* Normalize NULL/empty string to NULL, which will be
1082	* interpreted as "localhost" below. */
1083	g_pcszBindToHost = NULL;
1084	}
1085	else
1086	g_pcszBindToHost = ValueUnion.psz;
1087	break;
1088
1089	case 'p':
1090	g_uBindToPort = ValueUnion.u32;
1091	break;
1092
1093	#ifdef WITH_OPENSSL
1094	case 's':
1095	g_fSSL = true;
1096	break;
1097
1098	case 'K':
1099	g_pcszKeyFile = ValueUnion.psz;
1100	break;
1101
1102	case 'a':
1103	if (ValueUnion.psz[0] == '\0')
1104	g_pcszPassword = NULL;
1105	else
1106	{
1107	PRTSTREAM StrmIn;
1108	if (!strcmp(ValueUnion.psz, "-"))
1109	StrmIn = g_pStdIn;
1110	else
1111	{
1112	int vrc = RTStrmOpen(ValueUnion.psz, "r", &StrmIn);
1113	if (RT_FAILURE(vrc))
1114	return RTMsgErrorExit(RTEXITCODE_FAILURE, "failed to open password file (%s, %Rrc)", ValueUnion.psz, vrc);
1115	}
1116	char szPasswd[512];
1117	int vrc = RTStrmGetLine(StrmIn, szPasswd, sizeof(szPasswd));
1118	if (RT_FAILURE(vrc))
1119	return RTMsgErrorExit(RTEXITCODE_FAILURE, "failed to read password (%s, %Rrc)", ValueUnion.psz, vrc);
1120	g_pcszPassword = RTStrDup(szPasswd);
1121	memset(szPasswd, '\0', sizeof(szPasswd));
1122	if (StrmIn != g_pStdIn)
1123	RTStrmClose(StrmIn);
1124	}
1125	break;
1126
1127	case 'c':
1128	g_pcszCACert = ValueUnion.psz;
1129	break;
1130
1131	case 'C':
1132	g_pcszCAPath = ValueUnion.psz;
1133	break;
1134
1135	case 'D':
1136	g_pcszDHFile = ValueUnion.psz;
1137	break;
1138
1139	case 'r':
1140	g_pcszRandFile = ValueUnion.psz;
1141	break;
1142	#endif /* WITH_OPENSSL */
1143
1144	case 't':
1145	g_iWatchdogTimeoutSecs = ValueUnion.u32;
1146	break;
1147
1148	case 'i':
1149	g_iWatchdogCheckInterval = ValueUnion.u32;
1150	break;
1151
1152	case 'F':
1153	pszLogFile = ValueUnion.psz;
1154	break;
1155
1156	case 'R':
1157	g_cHistory = ValueUnion.u32;
1158	break;
1159
1160	case 'S':
1161	g_uHistoryFileSize = ValueUnion.u64;
1162	break;
1163
1164	case 'I':
1165	g_uHistoryFileTime = ValueUnion.u32;
1166	break;
1167
1168	case 'P':
1169	pszPidFile = ValueUnion.psz;
1170	break;
1171
1172	case 'T':
1173	g_cMaxWorkerThreads = ValueUnion.u32;
1174	break;
1175
1176	case 'k':
1177	g_cMaxKeepAlive = ValueUnion.u32;
1178	break;
1179
1180	case 'A':
1181	g_pcszAuthentication = ValueUnion.psz;
1182	break;
1183
1184	case 'h':
1185	DisplayHelp();
1186	return 0;
1187
1188	case 'v':
1189	g_fVerbose = true;
1190	break;
1191
1192	#if defined(RT_OS_DARWIN) \|\| defined(RT_OS_LINUX) \|\| defined (RT_OS_SOLARIS) \|\| defined(RT_OS_FREEBSD)
1193	case 'b':
1194	g_fDaemonize = true;
1195	break;
1196	#endif
1197	case 'V':
1198	RTPrintf("%sr%s\n", RTBldCfgVersion(), RTBldCfgRevisionStr());
1199	return 0;
1200
1201	default:
1202	rc = RTGetOptPrintError(c, &ValueUnion);
1203	return rc;
1204	}
1205	}
1206
1207	/* create release logger, to stdout */
1208	char szError[RTPATH_MAX + 128];
1209	rc = com::VBoxLogRelCreate("web service", g_fDaemonize ? NULL : pszLogFile,
1210	RTLOGFLAGS_PREFIX_THREAD \| RTLOGFLAGS_PREFIX_TIME_PROG,
1211	"all", "VBOXWEBSRV_RELEASE_LOG",
1212	RTLOGDEST_STDOUT, UINT32_MAX /* cMaxEntriesPerGroup */,
1213	g_cHistory, g_uHistoryFileTime, g_uHistoryFileSize,
1214	szError, sizeof(szError));
1215	if (RT_FAILURE(rc))
1216	return RTMsgErrorExit(RTEXITCODE_FAILURE, "failed to open release log (%s, %Rrc)", szError, rc);
1217
1218	#if defined(RT_OS_DARWIN) \|\| defined(RT_OS_LINUX) \|\| defined (RT_OS_SOLARIS) \|\| defined(RT_OS_FREEBSD)
1219	if (g_fDaemonize)
1220	{
1221	/* prepare release logging */
1222	char szLogFile[RTPATH_MAX];
1223
1224	if (!pszLogFile \|\| !*pszLogFile)
1225	{
1226	rc = com::GetVBoxUserHomeDirectory(szLogFile, sizeof(szLogFile));
1227	if (RT_FAILURE(rc))
1228	return RTMsgErrorExit(RTEXITCODE_FAILURE, "could not get base directory for logging: %Rrc", rc);
1229	rc = RTPathAppend(szLogFile, sizeof(szLogFile), "vboxwebsrv.log");
1230	if (RT_FAILURE(rc))
1231	return RTMsgErrorExit(RTEXITCODE_FAILURE, "could not construct logging path: %Rrc", rc);
1232	pszLogFile = szLogFile;
1233	}
1234
1235	rc = RTProcDaemonizeUsingFork(false /* fNoChDir /, false / fNoClose */, pszPidFile);
1236	if (RT_FAILURE(rc))
1237	return RTMsgErrorExit(RTEXITCODE_FAILURE, "failed to daemonize, rc=%Rrc. exiting.", rc);
1238
1239	/* create release logger, to file */
1240	rc = com::VBoxLogRelCreate("web service", pszLogFile,
1241	RTLOGFLAGS_PREFIX_THREAD \| RTLOGFLAGS_PREFIX_TIME_PROG,
1242	"all", "VBOXWEBSRV_RELEASE_LOG",
1243	RTLOGDEST_FILE, UINT32_MAX /* cMaxEntriesPerGroup */,
1244	g_cHistory, g_uHistoryFileTime, g_uHistoryFileSize,
1245	szError, sizeof(szError));
1246	if (RT_FAILURE(rc))
1247	return RTMsgErrorExit(RTEXITCODE_FAILURE, "failed to open release log (%s, %Rrc)", szError, rc);
1248	}
1249	#endif
1250
1251	// initialize SOAP SSL support if enabled
1252	#ifdef WITH_OPENSSL
1253	if (g_fSSL)
1254	soap_ssl_init();
1255	#endif /* WITH_OPENSSL */
1256
1257	// initialize COM/XPCOM
1258	HRESULT hrc = com::Initialize();
1259	#ifdef VBOX_WITH_XPCOM
1260	if (hrc == NS_ERROR_FILE_ACCESS_DENIED)
1261	{
1262	char szHome[RTPATH_MAX] = "";
1263	com::GetVBoxUserHomeDirectory(szHome, sizeof(szHome));
1264	return RTMsgErrorExit(RTEXITCODE_FAILURE,
1265	"Failed to initialize COM because the global settings directory '%s' is not accessible!", szHome);
1266	}
1267	#endif
1268	if (FAILED(hrc))
1269	return RTMsgErrorExit(RTEXITCODE_FAILURE, "failed to initialize COM! hrc=%Rhrc\n", hrc);
1270
1271	hrc = g_pVirtualBoxClient.createInprocObject(CLSID_VirtualBoxClient);
1272	if (FAILED(hrc))
1273	{
1274	RTMsgError("failed to create the VirtualBoxClient object!");
1275	com::ErrorInfo info;
1276	if (!info.isFullAvailable() && !info.isBasicAvailable())
1277	{
1278	com::GluePrintRCMessage(hrc);
1279	RTMsgError("Most likely, the VirtualBox COM server is not running or failed to start.");
1280	}
1281	else
1282	com::GluePrintErrorInfo(info);
1283	return RTEXITCODE_FAILURE;
1284	}
1285
1286	hrc = g_pVirtualBoxClient->COMGETTER(VirtualBox)(g_pVirtualBox.asOutParam());
1287	if (FAILED(hrc))
1288	{
1289	RTMsgError("Failed to get VirtualBox object (rc=%Rhrc)!", hrc);
1290	return RTEXITCODE_FAILURE;
1291	}
1292
1293	// set the authentication method if requested
1294	if (g_pVirtualBox && g_pcszAuthentication && g_pcszAuthentication[0])
1295	{
1296	ComPtr<ISystemProperties> pSystemProperties;
1297	g_pVirtualBox->COMGETTER(SystemProperties)(pSystemProperties.asOutParam());
1298	if (pSystemProperties)
1299	pSystemProperties->COMSETTER(WebServiceAuthLibrary)(com::Bstr(g_pcszAuthentication).raw());
1300	}
1301
1302	/* VirtualBoxClient events registration. */
1303	ComPtr<IEventListener> vboxClientListener;
1304	{
1305	ComPtr<IEventSource> pES;
1306	CHECK_ERROR(g_pVirtualBoxClient, COMGETTER(EventSource)(pES.asOutParam()));
1307	ComObjPtr<VirtualBoxClientEventListenerImpl> clientListener;
1308	clientListener.createObject();
1309	clientListener->init(new VirtualBoxClientEventListener());
1310	vboxClientListener = clientListener;
1311	com::SafeArray<VBoxEventType_T> eventTypes;
1312	eventTypes.push_back(VBoxEventType_OnVBoxSVCAvailabilityChanged);
1313	CHECK_ERROR(pES, RegisterListener(vboxClientListener, ComSafeArrayAsInParam(eventTypes), true));
1314	}
1315
1316	// create the global mutexes
1317	g_pAuthLibLockHandle = new util::WriteLockHandle(util::LOCKCLASS_WEBSERVICE);
1318	g_pVirtualBoxLockHandle = new util::RWLockHandle(util::LOCKCLASS_WEBSERVICE);
1319	g_pWebsessionsLockHandle = new util::WriteLockHandle(util::LOCKCLASS_WEBSERVICE);
1320	g_pThreadsLockHandle = new util::RWLockHandle(util::LOCKCLASS_OBJECTSTATE);
1321
1322	// SOAP queue pumper thread
1323	RTTHREAD threadQPumper;
1324	rc = RTThreadCreate(&threadQPumper,
1325	fntQPumper,
1326	NULL, // pvUser
1327	0, // cbStack (default)
1328	RTTHREADTYPE_MAIN_WORKER,
1329	RTTHREADFLAGS_WAITABLE,
1330	"SQPmp");
1331	if (RT_FAILURE(rc))
1332	return RTMsgErrorExit(RTEXITCODE_FAILURE, "Cannot start SOAP queue pumper thread: %Rrc", rc);
1333
1334	// watchdog thread
1335	RTTHREAD threadWatchdog = NIL_RTTHREAD;
1336	if (g_iWatchdogTimeoutSecs > 0)
1337	{
1338	// start our watchdog thread
1339	rc = RTThreadCreate(&threadWatchdog,
1340	fntWatchdog,
1341	NULL,
1342	0,
1343	RTTHREADTYPE_MAIN_WORKER,
1344	RTTHREADFLAGS_WAITABLE,
1345	"Watchdog");
1346	if (RT_FAILURE(rc))
1347	return RTMsgErrorExit(RTEXITCODE_FAILURE, "Cannot start watchdog thread: %Rrc", rc);
1348	}
1349
1350	#ifdef RT_OS_WINDOWS
1351	if (!SetConsoleCtrlHandler((PHANDLER_ROUTINE)websrvSignalHandler, TRUE /* Add handler */))
1352	{
1353	rc = RTErrConvertFromWin32(GetLastError());
1354	RTMsgError("Unable to install console control handler, rc=%Rrc\n", rc);
1355	}
1356	#else
1357	signal(SIGINT, websrvSignalHandler);
1358	signal(SIGTERM, websrvSignalHandler);
1359	# ifdef SIGBREAK
1360	signal(SIGBREAK, websrvSignalHandler);
1361	# endif
1362	#endif
1363
1364	com::NativeEventQueue *pQ = com::NativeEventQueue::getMainEventQueue();
1365	while (g_fKeepRunning)
1366	{
1367	// we have to process main event queue
1368	WEBDEBUG(("Pumping COM event queue\n"));
1369	rc = pQ->processEventQueue(RT_INDEFINITE_WAIT);
1370	if (RT_FAILURE(rc))
1371	RTMsgError("processEventQueue -> %Rrc", rc);
1372	}
1373
1374	LogRel(("requested termination, cleaning up\n"));
1375
1376	#ifdef RT_OS_WINDOWS
1377	if (!SetConsoleCtrlHandler((PHANDLER_ROUTINE)websrvSignalHandler, FALSE /* Remove handler */))
1378	{
1379	rc = RTErrConvertFromWin32(GetLastError());
1380	RTMsgError("Unable to remove console control handler, rc=%Rrc\n", rc);
1381	}
1382	#else
1383	signal(SIGINT, SIG_DFL);
1384	signal(SIGTERM, SIG_DFL);
1385	# ifdef SIGBREAK
1386	signal(SIGBREAK, SIG_DFL);
1387	# endif
1388	#endif
1389
1390	#ifndef RT_OS_WINDOWS
1391	RTThreadPoke(threadQPumper);
1392	#endif
1393	RTThreadWait(threadQPumper, 30000, NULL);
1394	if (threadWatchdog != NIL_RTTHREAD)
1395	{
1396	#ifndef RT_OS_WINDOWS
1397	RTThreadPoke(threadWatchdog);
1398	#endif
1399	RTThreadWait(threadWatchdog, g_iWatchdogCheckInterval * 1000 + 10000, NULL);
1400	}
1401
1402	/* VirtualBoxClient events unregistration. */
1403	if (vboxClientListener)
1404	{
1405	ComPtr<IEventSource> pES;
1406	CHECK_ERROR(g_pVirtualBoxClient, COMGETTER(EventSource)(pES.asOutParam()));
1407	if (!pES.isNull())
1408	CHECK_ERROR(pES, UnregisterListener(vboxClientListener));
1409	vboxClientListener.setNull();
1410	}
1411
1412	{
1413	util::AutoWriteLock vlock(g_pVirtualBoxLockHandle COMMA_LOCKVAL_SRC_POS);
1414	g_pVirtualBox.setNull();
1415	}
1416	{
1417	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
1418	WebsessionsMapIterator it = g_mapWebsessions.begin(),
1419	itEnd = g_mapWebsessions.end();
1420	while (it != itEnd)
1421	{
1422	WebServiceSession *pWebsession = it->second;
1423	WEBDEBUG(("SVC unavailable: websession %#llx stale, deleting\n", pWebsession->getID()));
1424	delete pWebsession;
1425	it = g_mapWebsessions.begin();
1426	}
1427	}
1428	g_pVirtualBoxClient.setNull();
1429
1430	com::Shutdown();
1431
1432	return 0;
1433	}
1434
1435	/****************************************************************************
1436	*
1437	* Watchdog thread
1438	*
1439	****************************************************************************/
1440
1441	/**
1442	* Watchdog thread, runs in the background while the webservice is alive.
1443	*
1444	* This gets started by main() and runs in the background to check all websessions
1445	* for whether they have been no requests in a configurable timeout period. In
1446	* that case, the websession is automatically logged off.
1447	*/
1448	static DECLCALLBACK(int) fntWatchdog(RTTHREAD hThreadSelf, void *pvUser)
1449	{
1450	RT_NOREF(hThreadSelf, pvUser);
1451
1452	// store a log prefix for this thread
1453	util::AutoWriteLock thrLock(g_pThreadsLockHandle COMMA_LOCKVAL_SRC_POS);
1454	g_mapThreads[RTThreadSelf()] = "[W ]";
1455	thrLock.release();
1456
1457	WEBDEBUG(("Watchdog thread started\n"));
1458
1459	uint32_t tNextStat = 0;
1460
1461	while (g_fKeepRunning)
1462	{
1463	WEBDEBUG(("Watchdog: sleeping %d seconds\n", g_iWatchdogCheckInterval));
1464	RTThreadSleep(g_iWatchdogCheckInterval * 1000);
1465
1466	uint32_t tNow = RTTimeProgramSecTS();
1467
1468	// we're messing with websessions, so lock them
1469	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
1470	WEBDEBUG(("Watchdog: checking %d websessions\n", g_mapWebsessions.size()));
1471
1472	WebsessionsMapIterator it = g_mapWebsessions.begin(),
1473	itEnd = g_mapWebsessions.end();
1474	while (it != itEnd)
1475	{
1476	WebServiceSession *pWebsession = it->second;
1477	WEBDEBUG(("Watchdog: tNow: %d, websession timestamp: %d\n", tNow, pWebsession->getLastObjectLookup()));
1478	if (tNow > pWebsession->getLastObjectLookup() + g_iWatchdogTimeoutSecs)
1479	{
1480	WEBDEBUG(("Watchdog: websession %#llx timed out, deleting\n", pWebsession->getID()));
1481	delete pWebsession;
1482	it = g_mapWebsessions.begin();
1483	}
1484	else
1485	++it;
1486	}
1487
1488	// re-set the authentication method in case it has been changed
1489	if (g_pVirtualBox && g_pcszAuthentication && g_pcszAuthentication[0])
1490	{
1491	ComPtr<ISystemProperties> pSystemProperties;
1492	g_pVirtualBox->COMGETTER(SystemProperties)(pSystemProperties.asOutParam());
1493	if (pSystemProperties)
1494	pSystemProperties->COMSETTER(WebServiceAuthLibrary)(com::Bstr(g_pcszAuthentication).raw());
1495	}
1496
1497	// Log some MOR usage statistics every 5 minutes, but only if there's
1498	// something worth logging (at least one reference or a transition to
1499	// zero references). Avoids useless log spamming in idle webservice.
1500	if (tNow >= tNextStat)
1501	{
1502	size_t cMOR = 0;
1503	it = g_mapWebsessions.begin();
1504	itEnd = g_mapWebsessions.end();
1505	while (it != itEnd)
1506	{
1507	cMOR += it->second->CountRefs();
1508	++it;
1509	}
1510	static bool fLastZero = false;
1511	if (cMOR \|\| !fLastZero)
1512	LogRel(("Statistics: %zu websessions, %zu references\n",
1513	g_mapWebsessions.size(), cMOR));
1514	fLastZero = (cMOR == 0);
1515	while (tNextStat <= tNow)
1516	tNextStat += 5 * 60; /* 5 minutes */
1517	}
1518	}
1519
1520	thrLock.acquire();
1521	g_mapThreads.erase(RTThreadSelf());
1522
1523	LogRel(("ending Watchdog thread\n"));
1524	return 0;
1525	}
1526
1527	/****************************************************************************
1528	*
1529	* SOAP exceptions
1530	*
1531	****************************************************************************/
1532
1533	/**
1534	* Helper function to raise a SOAP fault. Called by the other helper
1535	* functions, which raise specific SOAP faults.
1536	*
1537	* @param soap
1538	* @param pcsz
1539	* @param extype
1540	* @param ex
1541	*/
1542	static void RaiseSoapFault(struct soap *soap,
1543	const char *pcsz,
1544	int extype,
1545	void *ex)
1546	{
1547	// raise the fault
1548	soap_sender_fault(soap, pcsz, NULL);
1549
1550	struct SOAP_ENV__Detail pDetail = (struct SOAP_ENV__Detail)soap_malloc(soap, sizeof(struct SOAP_ENV__Detail));
1551
1552	// without the following, gSOAP crashes miserably when sending out the
1553	// data because it will try to serialize all fields (stupid documentation)
1554	memset(pDetail, 0, sizeof(struct SOAP_ENV__Detail));
1555
1556	// fill extended info depending on SOAP version
1557	if (soap->version == 2) // SOAP 1.2 is used
1558	{
1559	soap->fault->SOAP_ENV__Detail = pDetail;
1560	soap->fault->SOAP_ENV__Detail->__type = extype;
1561	soap->fault->SOAP_ENV__Detail->fault = ex;
1562	soap->fault->SOAP_ENV__Detail->__any = NULL; // no other XML data
1563	}
1564	else
1565	{
1566	soap->fault->detail = pDetail;
1567	soap->fault->detail->__type = extype;
1568	soap->fault->detail->fault = ex;
1569	soap->fault->detail->__any = NULL; // no other XML data
1570	}
1571	}
1572
1573	/**
1574	* Raises a SOAP fault that signals that an invalid object was passed.
1575	*
1576	* @param soap
1577	* @param obj
1578	*/
1579	void RaiseSoapInvalidObjectFault(struct soap *soap,
1580	WSDLT_ID obj)
1581	{
1582	_vbox__InvalidObjectFault *ex = soap_new__vbox__InvalidObjectFault(soap, 1);
1583	ex->badObjectID = obj;
1584
1585	std::string str("VirtualBox error: ");
1586	str += "Invalid managed object reference \"" + obj + "\"";
1587
1588	RaiseSoapFault(soap,
1589	str.c_str(),
1590	SOAP_TYPE__vbox__InvalidObjectFault,
1591	ex);
1592	}
1593
1594	/**
1595	* Return a safe C++ string from the given COM string,
1596	* without crashing if the COM string is empty.
1597	* @param bstr
1598	* @return
1599	*/
1600	std::string ConvertComString(const com::Bstr &bstr)
1601	{
1602	com::Utf8Str ustr(bstr);
1603	return ustr.c_str(); /// @todo r=dj since the length is known, we can probably use a better std::string allocator
1604	}
1605
1606	/**
1607	* Return a safe C++ string from the given COM UUID,
1608	* without crashing if the UUID is empty.
1609	* @param uuid
1610	* @return
1611	*/
1612	std::string ConvertComString(const com::Guid &uuid)
1613	{
1614	com::Utf8Str ustr(uuid.toString());
1615	return ustr.c_str(); /// @todo r=dj since the length is known, we can probably use a better std::string allocator
1616	}
1617
1618	/** Code to handle string <-> byte arrays base64 conversion. */
1619	std::string Base64EncodeByteArray(ComSafeArrayIn(BYTE, aData))
1620	{
1621
1622	com::SafeArray<BYTE> sfaData(ComSafeArrayInArg(aData));
1623	ssize_t cbData = sfaData.size();
1624
1625	if (cbData == 0)
1626	return "";
1627
1628	ssize_t cchOut = RTBase64EncodedLength(cbData);
1629
1630	RTCString aStr;
1631
1632	aStr.reserve(cchOut+1);
1633	int rc = RTBase64Encode(sfaData.raw(), cbData,
1634	aStr.mutableRaw(), aStr.capacity(),
1635	NULL);
1636	AssertRC(rc);
1637	aStr.jolt();
1638
1639	return aStr.c_str();
1640	}
1641
1642	#define DECODE_STR_MAX _1M
1643	void Base64DecodeByteArray(struct soap soap, const std::string& aStr, ComSafeArrayOut(BYTE, aData), const WSDLT_ID &idThis, const char pszMethodName, IUnknown *pObj, const com::Guid &iid)
1644	{
1645	const char* pszStr = aStr.c_str();
1646	ssize_t cbOut = RTBase64DecodedSize(pszStr, NULL);
1647
1648	if (cbOut > DECODE_STR_MAX)
1649	{
1650	LogRel(("Decode string too long.\n"));
1651	RaiseSoapRuntimeFault(soap, idThis, pszMethodName, E_INVALIDARG, pObj, iid);
1652	}
1653
1654	com::SafeArray<BYTE> result(cbOut);
1655	int rc = RTBase64Decode(pszStr, result.raw(), cbOut, NULL, NULL);
1656	if (FAILED(rc))
1657	{
1658	LogRel(("String Decoding Failed. Error code: %Rrc\n", rc));
1659	RaiseSoapRuntimeFault(soap, idThis, pszMethodName, E_INVALIDARG, pObj, iid);
1660	}
1661
1662	result.detachTo(ComSafeArrayOutArg(aData));
1663	}
1664
1665	/**
1666	* Raises a SOAP runtime fault.
1667	*
1668	* @param soap
1669	* @param idThis
1670	* @param pcszMethodName
1671	* @param apirc
1672	* @param pObj
1673	* @param iid
1674	*/
1675	void RaiseSoapRuntimeFault(struct soap *soap,
1676	const WSDLT_ID &idThis,
1677	const char *pcszMethodName,
1678	HRESULT apirc,
1679	IUnknown *pObj,
1680	const com::Guid &iid)
1681	{
1682	com::ErrorInfo info(pObj, iid.ref());
1683
1684	WEBDEBUG((" error, raising SOAP exception\n"));
1685
1686	LogRel(("API method name: %s\n", pcszMethodName));
1687	LogRel(("API return code: %#10lx (%Rhrc)\n", apirc, apirc));
1688	if (info.isFullAvailable() \|\| info.isBasicAvailable())
1689	{
1690	const com::ErrorInfo *pInfo = &info;
1691	do
1692	{
1693	LogRel(("COM error info result code: %#10lx (%Rhrc)\n", pInfo->getResultCode(), pInfo->getResultCode()));
1694	LogRel(("COM error info text: %ls\n", pInfo->getText().raw()));
1695
1696	pInfo = pInfo->getNext();
1697	}
1698	while (pInfo);
1699	}
1700
1701	// compose descriptive message
1702	com::Utf8Str str = com::Utf8StrFmt("VirtualBox error: rc=%#lx", apirc);
1703	if (info.isFullAvailable() \|\| info.isBasicAvailable())
1704	{
1705	const com::ErrorInfo *pInfo = &info;
1706	do
1707	{
1708	str += com::Utf8StrFmt(" %ls (%#lx)", pInfo->getText().raw(), pInfo->getResultCode());
1709	pInfo = pInfo->getNext();
1710	}
1711	while (pInfo);
1712	}
1713
1714	// allocate our own soap fault struct
1715	_vbox__RuntimeFault *ex = soap_new__vbox__RuntimeFault(soap, 1);
1716	ComPtr<IVirtualBoxErrorInfo> pVirtualBoxErrorInfo;
1717	info.getVirtualBoxErrorInfo(pVirtualBoxErrorInfo);
1718	ex->resultCode = apirc;
1719	ex->returnval = createOrFindRefFromComPtr(idThis, g_pcszIVirtualBoxErrorInfo, pVirtualBoxErrorInfo);
1720
1721	RaiseSoapFault(soap,
1722	str.c_str(),
1723	SOAP_TYPE__vbox__RuntimeFault,
1724	ex);
1725	}
1726
1727	/****************************************************************************
1728	*
1729	* splitting and merging of object IDs
1730	*
1731	****************************************************************************/
1732
1733	/**
1734	* Splits a managed object reference (in string form, as passed in from a SOAP
1735	* method call) into two integers for websession and object IDs, respectively.
1736	*
1737	* @param id
1738	* @param pWebsessId
1739	* @param pObjId
1740	* @return
1741	*/
1742	static bool SplitManagedObjectRef(const WSDLT_ID &id,
1743	uint64_t *pWebsessId,
1744	uint64_t *pObjId)
1745	{
1746	// 64-bit numbers in hex have 16 digits; hence
1747	// the object-ref string must have 16 + "-" + 16 characters
1748	if ( id.length() == 33
1749	&& id[16] == '-'
1750	)
1751	{
1752	char psz[34];
1753	memcpy(psz, id.c_str(), 34);
1754	psz[16] = '\0';
1755	if (pWebsessId)
1756	RTStrToUInt64Full(psz, 16, pWebsessId);
1757	if (pObjId)
1758	RTStrToUInt64Full(psz + 17, 16, pObjId);
1759	return true;
1760	}
1761
1762	return false;
1763	}
1764
1765	/**
1766	* Creates a managed object reference (in string form) from
1767	* two integers representing a websession and object ID, respectively.
1768	*
1769	* @param sz Buffer with at least 34 bytes space to receive MOR string.
1770	* @param websessId
1771	* @param objId
1772	* @return
1773	*/
1774	static void MakeManagedObjectRef(char *sz,
1775	uint64_t websessId,
1776	uint64_t objId)
1777	{
1778	RTStrFormatNumber(sz, websessId, 16, 16, 0, RTSTR_F_64BIT \| RTSTR_F_ZEROPAD);
1779	sz[16] = '-';
1780	RTStrFormatNumber(sz + 17, objId, 16, 16, 0, RTSTR_F_64BIT \| RTSTR_F_ZEROPAD);
1781	}
1782
1783	/****************************************************************************
1784	*
1785	* class WebServiceSession
1786	*
1787	****************************************************************************/
1788
1789	class WebServiceSessionPrivate
1790	{
1791	public:
1792	ManagedObjectsMapById _mapManagedObjectsById;
1793	ManagedObjectsMapByPtr _mapManagedObjectsByPtr;
1794	};
1795
1796	/**
1797	* Constructor for the websession object.
1798	*
1799	* Preconditions: Caller must have locked g_pWebsessionsLockHandle.
1800	*/
1801	WebServiceSession::WebServiceSession()
1802	: _uNextObjectID(1), // avoid 0 for no real reason
1803	_fDestructing(false),
1804	_tLastObjectLookup(0)
1805	{
1806	_pp = new WebServiceSessionPrivate;
1807	_uWebsessionID = RTRandU64();
1808
1809	// register this websession globally
1810	Assert(g_pWebsessionsLockHandle->isWriteLockOnCurrentThread());
1811	g_mapWebsessions[_uWebsessionID] = this;
1812	}
1813
1814	/**
1815	* Destructor. Cleans up and destroys all contained managed object references on the way.
1816	*
1817	* Preconditions: Caller must have locked g_pWebsessionsLockHandle.
1818	*/
1819	WebServiceSession::~WebServiceSession()
1820	{
1821	// delete us from global map first so we can't be found
1822	// any more while we're cleaning up
1823	Assert(g_pWebsessionsLockHandle->isWriteLockOnCurrentThread());
1824	g_mapWebsessions.erase(_uWebsessionID);
1825
1826	// notify ManagedObjectRef destructor so it won't
1827	// remove itself from the maps; this avoids rebalancing
1828	// the map's tree on every delete as well
1829	_fDestructing = true;
1830
1831	ManagedObjectsIteratorById it,
1832	end = _pp->_mapManagedObjectsById.end();
1833	for (it = _pp->_mapManagedObjectsById.begin();
1834	it != end;
1835	++it)
1836	{
1837	ManagedObjectRef *pRef = it->second;
1838	delete pRef; // this frees the contained ComPtr as well
1839	}
1840
1841	delete _pp;
1842	}
1843
1844	/**
1845	* Authenticate the username and password against an authentication authority.
1846	*
1847	* @return 0 if the user was successfully authenticated, or an error code
1848	* otherwise.
1849	*/
1850	int WebServiceSession::authenticate(const char *pcszUsername,
1851	const char *pcszPassword,
1852	IVirtualBox **ppVirtualBox)
1853	{
1854	int rc = VERR_WEB_NOT_AUTHENTICATED;
1855	ComPtr<IVirtualBox> pVirtualBox;
1856	{
1857	util::AutoReadLock vlock(g_pVirtualBoxLockHandle COMMA_LOCKVAL_SRC_POS);
1858	pVirtualBox = g_pVirtualBox;
1859	}
1860	if (pVirtualBox.isNull())
1861	return rc;
1862	pVirtualBox.queryInterfaceTo(ppVirtualBox);
1863
1864	util::AutoReadLock lock(g_pAuthLibLockHandle COMMA_LOCKVAL_SRC_POS);
1865
1866	static bool fAuthLibLoaded = false;
1867	static PAUTHENTRY pfnAuthEntry = NULL;
1868	static PAUTHENTRY2 pfnAuthEntry2 = NULL;
1869	static PAUTHENTRY3 pfnAuthEntry3 = NULL;
1870
1871	if (!fAuthLibLoaded)
1872	{
1873	// retrieve authentication library from system properties
1874	ComPtr<ISystemProperties> systemProperties;
1875	pVirtualBox->COMGETTER(SystemProperties)(systemProperties.asOutParam());
1876
1877	com::Bstr authLibrary;
1878	systemProperties->COMGETTER(WebServiceAuthLibrary)(authLibrary.asOutParam());
1879	com::Utf8Str filename = authLibrary;
1880
1881	LogRel(("External authentication library is '%ls'\n", authLibrary.raw()));
1882
1883	if (filename == "null")
1884	// authentication disabled, let everyone in:
1885	fAuthLibLoaded = true;
1886	else
1887	{
1888	RTLDRMOD hlibAuth = 0;
1889	do
1890	{
1891	if (RTPathHavePath(filename.c_str()))
1892	rc = RTLdrLoad(filename.c_str(), &hlibAuth);
1893	else
1894	rc = RTLdrLoadAppPriv(filename.c_str(), &hlibAuth);
1895
1896	if (RT_FAILURE(rc))
1897	{
1898	WEBDEBUG(("%s() Failed to load external authentication library '%s'. Error code: %Rrc\n",
1899	__FUNCTION__, filename.c_str(), rc));
1900	break;
1901	}
1902
1903	if (RT_FAILURE(rc = RTLdrGetSymbol(hlibAuth, AUTHENTRY3_NAME, (void**)&pfnAuthEntry3)))
1904	{
1905	WEBDEBUG(("%s(): Could not resolve import '%s'. Error code: %Rrc\n",
1906	__FUNCTION__, AUTHENTRY3_NAME, rc));
1907
1908	if (RT_FAILURE(rc = RTLdrGetSymbol(hlibAuth, AUTHENTRY2_NAME, (void**)&pfnAuthEntry2)))
1909	{
1910	WEBDEBUG(("%s(): Could not resolve import '%s'. Error code: %Rrc\n",
1911	__FUNCTION__, AUTHENTRY2_NAME, rc));
1912
1913	if (RT_FAILURE(rc = RTLdrGetSymbol(hlibAuth, AUTHENTRY_NAME, (void**)&pfnAuthEntry)))
1914	WEBDEBUG(("%s(): Could not resolve import '%s'. Error code: %Rrc\n",
1915	__FUNCTION__, AUTHENTRY_NAME, rc));
1916	}
1917	}
1918
1919	if (pfnAuthEntry \|\| pfnAuthEntry2 \|\| pfnAuthEntry3)
1920	fAuthLibLoaded = true;
1921
1922	} while (0);
1923	}
1924	}
1925
1926	if (pfnAuthEntry3 \|\| pfnAuthEntry2 \|\| pfnAuthEntry)
1927	{
1928	const char *pszFn;
1929	AuthResult result;
1930	if (pfnAuthEntry3)
1931	{
1932	result = pfnAuthEntry3("webservice", NULL, AuthGuestNotAsked, pcszUsername, pcszPassword, NULL, true, 0);
1933	pszFn = AUTHENTRY3_NAME;
1934	}
1935	else if (pfnAuthEntry2)
1936	{
1937	result = pfnAuthEntry2(NULL, AuthGuestNotAsked, pcszUsername, pcszPassword, NULL, true, 0);
1938	pszFn = AUTHENTRY2_NAME;
1939	}
1940	else
1941	{
1942	result = pfnAuthEntry(NULL, AuthGuestNotAsked, pcszUsername, pcszPassword, NULL);
1943	pszFn = AUTHENTRY_NAME;
1944	}
1945	WEBDEBUG(("%s(): result of %s('%s', [%d]): %d (%s)\n",
1946	__FUNCTION__, pszFn, pcszUsername, strlen(pcszPassword), result, decodeAuthResult(result)));
1947	if (result == AuthResultAccessGranted)
1948	{
1949	LogRel(("Access for user '%s' granted\n", pcszUsername));
1950	rc = VINF_SUCCESS;
1951	}
1952	else
1953	{
1954	if (result == AuthResultAccessDenied)
1955	LogRel(("Access for user '%s' denied\n", pcszUsername));
1956	rc = VERR_WEB_NOT_AUTHENTICATED;
1957	}
1958	}
1959	else if (fAuthLibLoaded)
1960	{
1961	// fAuthLibLoaded = true but all pointers are NULL:
1962	// The authlib was "null" and auth was disabled
1963	rc = VINF_SUCCESS;
1964	}
1965	else
1966	{
1967	WEBDEBUG(("Could not resolve AuthEntry, VRDPAuth2 or VRDPAuth entry point"));
1968	rc = VERR_WEB_NOT_AUTHENTICATED;
1969	}
1970
1971	lock.release();
1972
1973	return rc;
1974	}
1975
1976	/**
1977	* Look up, in this websession, whether a ManagedObjectRef has already been
1978	* created for the given COM pointer.
1979	*
1980	* Note how we require that a ComPtr<IUnknown> is passed, which causes a
1981	* queryInterface call when the caller passes in a different type, since
1982	* a ComPtr<IUnknown> will point to something different than a
1983	* ComPtr<IVirtualBox>, for example. As we store the ComPtr<IUnknown> in
1984	* our private hash table, we must search for one too.
1985	*
1986	* Preconditions: Caller must have locked g_pWebsessionsLockHandle.
1987	*
1988	* @param pObject pointer to a COM object.
1989	* @return The existing ManagedObjectRef that represents the COM object, or NULL if there's none yet.
1990	*/
1991	ManagedObjectRef* WebServiceSession::findRefFromPtr(const IUnknown *pObject)
1992	{
1993	Assert(g_pWebsessionsLockHandle->isWriteLockOnCurrentThread());
1994
1995	uintptr_t ulp = (uintptr_t)pObject;
1996	// WEBDEBUG((" %s: looking up %#lx\n", __FUNCTION__, ulp));
1997	ManagedObjectsIteratorByPtr it = _pp->_mapManagedObjectsByPtr.find(ulp);
1998	if (it != _pp->_mapManagedObjectsByPtr.end())
1999	{
2000	ManagedObjectRef *pRef = it->second;
2001	WEBDEBUG((" %s: found existing ref %s (%s) for COM obj %#lx\n", __FUNCTION__, pRef->getWSDLID().c_str(), pRef->getInterfaceName(), ulp));
2002	return pRef;
2003	}
2004
2005	return NULL;
2006	}
2007
2008	/**
2009	* Static method which attempts to find the websession for which the given
2010	* managed object reference was created, by splitting the reference into the
2011	* websession and object IDs and then looking up the websession object.
2012	*
2013	* Preconditions: Caller must have locked g_pWebsessionsLockHandle in read mode.
2014	*
2015	* @param id Managed object reference (with combined websession and object IDs).
2016	* @return
2017	*/
2018	WebServiceSession *WebServiceSession::findWebsessionFromRef(const WSDLT_ID &id)
2019	{
2020	Assert(g_pWebsessionsLockHandle->isWriteLockOnCurrentThread());
2021
2022	WebServiceSession *pWebsession = NULL;
2023	uint64_t websessId;
2024	if (SplitManagedObjectRef(id,
2025	&websessId,
2026	NULL))
2027	{
2028	WebsessionsMapIterator it = g_mapWebsessions.find(websessId);
2029	if (it != g_mapWebsessions.end())
2030	pWebsession = it->second;
2031	}
2032	return pWebsession;
2033	}
2034
2035	/**
2036	* Touches the websession to prevent it from timing out.
2037	*
2038	* Each websession has an internal timestamp that records the last request made
2039	* to it from the client that started it. If no request was made within a
2040	* configurable timeframe, then the client is logged off automatically,
2041	* by calling IWebsessionManager::logoff()
2042	*/
2043	void WebServiceSession::touch()
2044	{
2045	_tLastObjectLookup = RTTimeProgramSecTS();
2046	}
2047
2048	/**
2049	* Counts the number of managed object references in this websession.
2050	*/
2051	size_t WebServiceSession::CountRefs()
2052	{
2053	return _pp->_mapManagedObjectsById.size();
2054	}
2055
2056
2057	/****************************************************************************
2058	*
2059	* class ManagedObjectRef
2060	*
2061	****************************************************************************/
2062
2063	/**
2064	* Constructor, which assigns a unique ID to this managed object
2065	* reference and stores it in two hashes (living in the associated
2066	* WebServiceSession object):
2067	*
2068	* a) _mapManagedObjectsById, which maps ManagedObjectID's to
2069	* instances of this class; this hash is then used by the
2070	* findObjectFromRef() template function in vboxweb.h
2071	* to quickly retrieve the COM object from its managed
2072	* object ID (mostly in the context of the method mappers
2073	* in methodmaps.cpp, when a web service client passes in
2074	* a managed object ID);
2075	*
2076	* b) _mapManagedObjectsByPtr, which maps COM pointers to
2077	* instances of this class; this hash is used by
2078	* createRefFromObject() to quickly figure out whether an
2079	* instance already exists for a given COM pointer.
2080	*
2081	* This constructor calls AddRef() on the given COM object, and
2082	* the destructor will call Release(). We require two input pointers
2083	* for that COM object, one generic IUnknown* pointer which is used
2084	* as the map key, and a specific interface pointer (e.g. IMachine*)
2085	* which must support the interface given in guidInterface. All
2086	* three values are returned by getPtr(), which gives future callers
2087	* a chance to reuse the specific interface pointer without having
2088	* to call QueryInterface, which can be expensive.
2089	*
2090	* This does _not_ check whether another instance already
2091	* exists in the hash. This gets called only from the
2092	* createOrFindRefFromComPtr() template function in vboxweb.h, which
2093	* does perform that check.
2094	*
2095	* Preconditions: Caller must have locked g_pWebsessionsLockHandle.
2096	*
2097	* @param websession Websession to which the MOR will be added.
2098	* @param pobjUnknown Pointer to IUnknown* interface for the COM object; this will be used in the hashes.
2099	* @param pobjInterface Pointer to a specific interface for the COM object, described by guidInterface.
2100	* @param guidInterface Interface which pobjInterface points to.
2101	* @param pcszInterface String representation of that interface (e.g. "IMachine") for readability and logging.
2102	*/
2103	ManagedObjectRef::ManagedObjectRef(WebServiceSession &websession,
2104	IUnknown *pobjUnknown,
2105	void *pobjInterface,
2106	const com::Guid &guidInterface,
2107	const char *pcszInterface)
2108	: _websession(websession),
2109	_pobjUnknown(pobjUnknown),
2110	_pobjInterface(pobjInterface),
2111	_guidInterface(guidInterface),
2112	_pcszInterface(pcszInterface)
2113	{
2114	Assert(pobjUnknown);
2115	Assert(pobjInterface);
2116
2117	// keep both stubs alive while this MOR exists (matching Release() calls are in destructor)
2118	uint32_t cRefs1 = pobjUnknown->AddRef();
2119	uint32_t cRefs2 = ((IUnknown*)pobjInterface)->AddRef();
2120	_ulp = (uintptr_t)pobjUnknown;
2121
2122	Assert(g_pWebsessionsLockHandle->isWriteLockOnCurrentThread());
2123	_id = websession.createObjectID();
2124	// and count globally
2125	ULONG64 cTotal = ++g_cManagedObjects; // raise global count and make a copy for the debug message below
2126
2127	char sz[34];
2128	MakeManagedObjectRef(sz, websession._uWebsessionID, _id);
2129	_strID = sz;
2130
2131	websession._pp->_mapManagedObjectsById[_id] = this;
2132	websession._pp->_mapManagedObjectsByPtr[_ulp] = this;
2133
2134	websession.touch();
2135
2136	WEBDEBUG((" * %s: MOR created for %s=%#p (IUnknown=%#p; COM refcount now %RI32/%RI32), new ID is %#llx; now %lld objects total\n",
2137	__FUNCTION__,
2138	pcszInterface,
2139	pobjInterface,
2140	pobjUnknown,
2141	cRefs1,
2142	cRefs2,
2143	_id,
2144	cTotal));
2145	}
2146
2147	/**
2148	* Destructor; removes the instance from the global hash of
2149	* managed objects. Calls Release() on the contained COM object.
2150	*
2151	* Preconditions: Caller must have locked g_pWebsessionsLockHandle.
2152	*/
2153	ManagedObjectRef::~ManagedObjectRef()
2154	{
2155	Assert(g_pWebsessionsLockHandle->isWriteLockOnCurrentThread());
2156	ULONG64 cTotal = --g_cManagedObjects;
2157
2158	Assert(_pobjUnknown);
2159	Assert(_pobjInterface);
2160
2161	// we called AddRef() on both interfaces, so call Release() on
2162	// both as well, but in reverse order
2163	uint32_t cRefs2 = ((IUnknown*)_pobjInterface)->Release();
2164	uint32_t cRefs1 = _pobjUnknown->Release();
2165	WEBDEBUG((" * %s: deleting MOR for ID %#llx (%s; COM refcount now %RI32/%RI32); now %lld objects total\n", __FUNCTION__, _id, _pcszInterface, cRefs1, cRefs2, cTotal));
2166
2167	// if we're being destroyed from the websession's destructor,
2168	// then that destructor is iterating over the maps, so
2169	// don't remove us there! (data integrity + speed)
2170	if (!_websession._fDestructing)
2171	{
2172	WEBDEBUG((" * %s: removing from websession maps\n", __FUNCTION__));
2173	_websession._pp->_mapManagedObjectsById.erase(_id);
2174	if (_websession._pp->_mapManagedObjectsByPtr.erase(_ulp) != 1)
2175	WEBDEBUG((" WARNING: could not find %#llx in _mapManagedObjectsByPtr\n", _ulp));
2176	}
2177	}
2178
2179	/**
2180	* Static helper method for findObjectFromRef() template that actually
2181	* looks up the object from a given integer ID.
2182	*
2183	* This has been extracted into this non-template function to reduce
2184	* code bloat as we have the actual STL map lookup only in this function.
2185	*
2186	* This also "touches" the timestamp in the websession whose ID is encoded
2187	* in the given integer ID, in order to prevent the websession from timing
2188	* out.
2189	*
2190	* Preconditions: Caller must have locked g_pWebsessionsLockHandle.
2191	*
2192	* @param id
2193	* @param pRef
2194	* @param fNullAllowed
2195	* @return
2196	*/
2197	int ManagedObjectRef::findRefFromId(const WSDLT_ID &id,
2198	ManagedObjectRef **pRef,
2199	bool fNullAllowed)
2200	{
2201	int rc = 0;
2202
2203	do
2204	{
2205	// allow NULL (== empty string) input reference, which should return a NULL pointer
2206	if (!id.length() && fNullAllowed)
2207	{
2208	*pRef = NULL;
2209	return 0;
2210	}
2211
2212	uint64_t websessId;
2213	uint64_t objId;
2214	WEBDEBUG((" %s(): looking up objref %s\n", __FUNCTION__, id.c_str()));
2215	if (!SplitManagedObjectRef(id,
2216	&websessId,
2217	&objId))
2218	{
2219	rc = VERR_WEB_INVALID_MANAGED_OBJECT_REFERENCE;
2220	break;
2221	}
2222
2223	WebsessionsMapIterator it = g_mapWebsessions.find(websessId);
2224	if (it == g_mapWebsessions.end())
2225	{
2226	WEBDEBUG((" %s: cannot find websession for objref %s\n", __FUNCTION__, id.c_str()));
2227	rc = VERR_WEB_INVALID_SESSION_ID;
2228	break;
2229	}
2230
2231	WebServiceSession *pWebsession = it->second;
2232	// "touch" websession to prevent it from timing out
2233	pWebsession->touch();
2234
2235	ManagedObjectsIteratorById iter = pWebsession->_pp->_mapManagedObjectsById.find(objId);
2236	if (iter == pWebsession->_pp->_mapManagedObjectsById.end())
2237	{
2238	WEBDEBUG((" %s: cannot find comobj for objref %s\n", __FUNCTION__, id.c_str()));
2239	rc = VERR_WEB_INVALID_OBJECT_ID;
2240	break;
2241	}
2242
2243	*pRef = iter->second;
2244
2245	} while (0);
2246
2247	return rc;
2248	}
2249
2250	/****************************************************************************
2251	*
2252	* interface IManagedObjectRef
2253	*
2254	****************************************************************************/
2255
2256	/**
2257	* This is the hard-coded implementation for the IManagedObjectRef::getInterfaceName()
2258	* that our WSDL promises to our web service clients. This method returns a
2259	* string describing the interface that this managed object reference
2260	* supports, e.g. "IMachine".
2261	*
2262	* @param soap
2263	* @param req
2264	* @param resp
2265	* @return
2266	*/
2267	int __vbox__IManagedObjectRef_USCOREgetInterfaceName(
2268	struct soap *soap,
2269	_vbox__IManagedObjectRef_USCOREgetInterfaceName *req,
2270	_vbox__IManagedObjectRef_USCOREgetInterfaceNameResponse *resp)
2271	{
2272	RT_NOREF(soap);
2273	HRESULT rc = S_OK;
2274	WEBDEBUG(("-- entering %s\n", __FUNCTION__));
2275
2276	do
2277	{
2278	// findRefFromId require the lock
2279	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
2280
2281	ManagedObjectRef *pRef;
2282	if (!ManagedObjectRef::findRefFromId(req->_USCOREthis, &pRef, false))
2283	resp->returnval = pRef->getInterfaceName();
2284
2285	} while (0);
2286
2287	WEBDEBUG(("-- leaving %s, rc: %#lx\n", __FUNCTION__, rc));
2288	if (FAILED(rc))
2289	return SOAP_FAULT;
2290	return SOAP_OK;
2291	}
2292
2293	/**
2294	* This is the hard-coded implementation for the IManagedObjectRef::release()
2295	* that our WSDL promises to our web service clients. This method releases
2296	* a managed object reference and removes it from our stacks.
2297	*
2298	* @param soap
2299	* @param req
2300	* @param resp
2301	* @return
2302	*/
2303	int __vbox__IManagedObjectRef_USCORErelease(
2304	struct soap *soap,
2305	_vbox__IManagedObjectRef_USCORErelease *req,
2306	_vbox__IManagedObjectRef_USCOREreleaseResponse *resp)
2307	{
2308	RT_NOREF(resp);
2309	HRESULT rc = S_OK;
2310	WEBDEBUG(("-- entering %s\n", __FUNCTION__));
2311
2312	do
2313	{
2314	// findRefFromId and the delete call below require the lock
2315	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
2316
2317	ManagedObjectRef *pRef;
2318	if ((rc = ManagedObjectRef::findRefFromId(req->_USCOREthis, &pRef, false)))
2319	{
2320	RaiseSoapInvalidObjectFault(soap, req->_USCOREthis);
2321	break;
2322	}
2323
2324	WEBDEBUG((" found reference; deleting!\n"));
2325	// this removes the object from all stacks; since
2326	// there's a ComPtr<> hidden inside the reference,
2327	// this should also invoke Release() on the COM
2328	// object
2329	delete pRef;
2330	} while (0);
2331
2332	WEBDEBUG(("-- leaving %s, rc: %#lx\n", __FUNCTION__, rc));
2333	if (FAILED(rc))
2334	return SOAP_FAULT;
2335	return SOAP_OK;
2336	}
2337
2338	/****************************************************************************
2339	*
2340	* interface IWebsessionManager
2341	*
2342	****************************************************************************/
2343
2344	/**
2345	* Hard-coded implementation for IWebsessionManager::logon. As opposed to the underlying
2346	* COM API, this is the first method that a webservice client must call before the
2347	* webservice will do anything useful.
2348	*
2349	* This returns a managed object reference to the global IVirtualBox object; into this
2350	* reference a websession ID is encoded which remains constant with all managed object
2351	* references returned by other methods.
2352	*
2353	* When the webservice client is done, it should call IWebsessionManager::logoff. This
2354	* will clean up internally (destroy all remaining managed object references and
2355	* related COM objects used internally).
2356	*
2357	* After logon, an internal timeout ensures that if the webservice client does not
2358	* call any methods, after a configurable number of seconds, the webservice will log
2359	* off the client automatically. This is to ensure that the webservice does not
2360	* drown in managed object references and eventually deny service. Still, it is
2361	* a much better solution, both for performance and cleanliness, for the webservice
2362	* client to clean up itself.
2363	*
2364	* @param soap
2365	* @param req
2366	* @param resp
2367	* @return
2368	*/
2369	int __vbox__IWebsessionManager_USCORElogon(
2370	struct soap *soap,
2371	_vbox__IWebsessionManager_USCORElogon *req,
2372	_vbox__IWebsessionManager_USCORElogonResponse *resp)
2373	{
2374	RT_NOREF(soap);
2375	HRESULT rc = S_OK;
2376	WEBDEBUG(("-- entering %s\n", __FUNCTION__));
2377
2378	do
2379	{
2380	// WebServiceSession constructor tinkers with global MOR map and requires a write lock
2381	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
2382
2383	// create new websession; the constructor stores the new websession
2384	// in the global map automatically
2385	WebServiceSession *pWebsession = new WebServiceSession();
2386	ComPtr<IVirtualBox> pVirtualBox;
2387
2388	// authenticate the user
2389	if (!(pWebsession->authenticate(req->username.c_str(),
2390	req->password.c_str(),
2391	pVirtualBox.asOutParam())))
2392	{
2393	// fake up a "root" MOR for this websession
2394	char sz[34];
2395	MakeManagedObjectRef(sz, pWebsession->getID(), 0ULL);
2396	WSDLT_ID id = sz;
2397
2398	// in the new websession, create a managed object reference (MOR) for the
2399	// global VirtualBox object; this encodes the websession ID in the MOR so
2400	// that it will be implicitly be included in all future requests of this
2401	// webservice client
2402	resp->returnval = createOrFindRefFromComPtr(id, g_pcszIVirtualBox, pVirtualBox);
2403	WEBDEBUG(("VirtualBox object ref is %s\n", resp->returnval.c_str()));
2404	}
2405	else
2406	rc = E_FAIL;
2407	} while (0);
2408
2409	WEBDEBUG(("-- leaving %s, rc: %#lx\n", __FUNCTION__, rc));
2410	if (FAILED(rc))
2411	return SOAP_FAULT;
2412	return SOAP_OK;
2413	}
2414
2415	/**
2416	* Returns a new ISession object every time.
2417	*
2418	* No longer connected in any way to logons, one websession can easily
2419	* handle multiple sessions.
2420	*/
2421	int __vbox__IWebsessionManager_USCOREgetSessionObject(
2422	struct soap*,
2423	_vbox__IWebsessionManager_USCOREgetSessionObject *req,
2424	_vbox__IWebsessionManager_USCOREgetSessionObjectResponse *resp)
2425	{
2426	HRESULT rc = S_OK;
2427	WEBDEBUG(("-- entering %s\n", __FUNCTION__));
2428
2429	do
2430	{
2431	// create a new ISession object
2432	ComPtr<ISession> pSession;
2433	rc = g_pVirtualBoxClient->COMGETTER(Session)(pSession.asOutParam());
2434	if (FAILED(rc))
2435	{
2436	WEBDEBUG(("ERROR: cannot create session object!"));
2437	break;
2438	}
2439
2440	// return its MOR
2441	resp->returnval = createOrFindRefFromComPtr(req->refIVirtualBox, g_pcszISession, pSession);
2442	WEBDEBUG(("Session object ref is %s\n", resp->returnval.c_str()));
2443	} while (0);
2444
2445	WEBDEBUG(("-- leaving %s, rc: %#lx\n", __FUNCTION__, rc));
2446	if (FAILED(rc))
2447	return SOAP_FAULT;
2448	return SOAP_OK;
2449	}
2450
2451	/**
2452	* hard-coded implementation for IWebsessionManager::logoff.
2453	*
2454	* @param req
2455	* @param resp
2456	* @return
2457	*/
2458	int __vbox__IWebsessionManager_USCORElogoff(
2459	struct soap*,
2460	_vbox__IWebsessionManager_USCORElogoff *req,
2461	_vbox__IWebsessionManager_USCORElogoffResponse *resp)
2462	{
2463	RT_NOREF(resp);
2464	HRESULT rc = S_OK;
2465	WEBDEBUG(("-- entering %s\n", __FUNCTION__));
2466
2467	{
2468	// findWebsessionFromRef and the websession destructor require the lock
2469	util::AutoWriteLock lock(g_pWebsessionsLockHandle COMMA_LOCKVAL_SRC_POS);
2470
2471	WebServiceSession *pWebsession = WebServiceSession::findWebsessionFromRef(req->refIVirtualBox);
2472	if (pWebsession)
2473	{
2474	WEBDEBUG(("websession logoff, deleting websession %#llx\n", pWebsession->getID()));
2475	delete pWebsession;
2476	// destructor cleans up
2477
2478	WEBDEBUG(("websession destroyed, %d websessions left open\n", g_mapWebsessions.size()));
2479	}
2480	}
2481
2482	WEBDEBUG(("-- leaving %s, rc: %#lx\n", __FUNCTION__, rc));
2483	if (FAILED(rc))
2484	return SOAP_FAULT;
2485	return SOAP_OK;
2486	}

Note: See TracBrowser for help on using the repository browser.

source: vbox/trunk/src/VBox/Main/webservice/vboxweb.cpp@ 67257

Download in other formats: