. */ if (!defined('STATUSNET')) { exit(1); } /** * PuSH feed subscription record * @package Hub * @author Brion Vibber */ class HubSub extends Managed_DataObject { public $__table = 'hubsub'; public $hashkey; // sha1(topic . '|' . $callback); (topic, callback) key is too long for myisam in utf8 public $topic; // varchar(191) not 255 because utf8mb4 takes more space public $callback; // varchar(191) not 255 because utf8mb4 takes more space public $secret; public $sub_start; public $sub_end; public $created; public $modified; static function hashkey($topic, $callback) { return sha1($topic . '|' . $callback); } public static function getByHashkey($topic, $callback) { return self::getKV('hashkey', self::hashkey($topic, $callback)); } public static function schemaDef() { return array( 'fields' => array( 'hashkey' => array('type' => 'char', 'not null' => true, 'length' => 40, 'description' => 'HubSub hashkey'), 'topic' => array('type' => 'varchar', 'not null' => true, 'length' => 191, 'description' => 'HubSub topic'), 'callback' => array('type' => 'varchar', 'not null' => true, 'length' => 191, 'description' => 'HubSub callback'), 'secret' => array('type' => 'text', 'description' => 'HubSub stored secret'), 'sub_start' => array('type' => 'datetime', 'description' => 'subscription start'), 'sub_end' => array('type' => 'datetime', 'description' => 'subscription end'), 'created' => array('type' => 'datetime', 'not null' => true, 'description' => 'date this record was created'), 'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'), ), 'primary key' => array('hashkey'), 'indexes' => array( 'hubsub_topic_idx' => array('topic'), ), ); } /** * Validates a requested lease length, sets length plus * subscription start & end dates. * * Does not save to database -- use before insert() or update(). * * @param int $length in seconds */ function setLease($length) { common_debug('PuSH hub got requested lease_seconds=='._ve($length)); assert(is_int($length)); $min = 86400; // 3600*24 (one day) $max = 86400 * 30; if ($length == 0) { // We want to garbage collect dead subscriptions! $length = $max; } elseif( $length < $min) { $length = $min; } else if ($length > $max) { $length = $max; } common_debug('PuSH hub after sanitation: lease_seconds=='._ve($length)); $this->sub_start = common_sql_now(); $this->sub_end = common_sql_date(time() + $length); } function getLeaseTime() { if (empty($this->sub_start) || empty($this->sub_end)) { return null; } $length = strtotime($this->sub_end) - strtotime($this->sub_start); assert($length > 0); return $length; } function getLeaseRemaining() { if (empty($this->sub_end)) { return null; } return strtotime($this->sub_end) - time(); } /** * Schedule a future verification ping to the subscriber. * If queues are disabled, will be immediate. * * @param string $mode 'subscribe' or 'unsubscribe' * @param string $token hub.verify_token value, if provided by client */ function scheduleVerify($mode, $token=null, $retries=null) { if ($retries === null) { $retries = intval(common_config('ostatus', 'hub_retries')); } $data = array('sub' => clone($this), 'mode' => $mode, 'token' => $token, // let's put it in there if remote uses PuSH <0.4 'retries' => $retries); $qm = QueueManager::get(); $qm->enqueue($data, 'hubconf'); } public function getTopic() { return $this->topic; } /** * Send a verification ping to subscriber, and if confirmed apply the changes. * This may create, update, or delete the database record. * * @param string $mode 'subscribe' or 'unsubscribe' * @param string $token hub.verify_token value, if provided by client * @throws ClientException on failure */ function verify($mode, $token=null) { assert($mode == 'subscribe' || $mode == 'unsubscribe'); $challenge = common_random_hexstr(32); $params = array('hub.mode' => $mode, 'hub.topic' => $this->getTopic(), 'hub.challenge' => $challenge); if ($mode == 'subscribe') { $params['hub.lease_seconds'] = $this->getLeaseTime(); } if ($token !== null) { // TODO: deprecated in PuSH 0.4 $params['hub.verify_token'] = $token; // let's put it in there if remote uses PuSH <0.4 } // Any existing query string parameters must be preserved $url = $this->callback; if (strpos($url, '?') !== false) { $url .= '&'; } else { $url .= '?'; } $url .= http_build_query($params, '', '&'); $request = new HTTPClient(); $response = $request->get($url); $status = $response->getStatus(); if ($status >= 200 && $status < 300) { common_log(LOG_INFO, "Verified {$mode} of {$this->callback}:{$this->getTopic()}"); } else { // TRANS: Client exception. %s is a HTTP status code. throw new ClientException(sprintf(_m('Hub subscriber verification returned HTTP %s.'),$status)); } $old = HubSub::getByHashkey($this->getTopic(), $this->callback); if ($mode == 'subscribe') { if ($old instanceof HubSub) { $this->update($old); } else { $ok = $this->insert(); } } else if ($mode == 'unsubscribe') { if ($old instanceof HubSub) { $old->delete(); } else { // That's ok, we're already unsubscribed. } } } /** * Insert wrapper; transparently set the hash key from topic and callback columns. * @return mixed success */ function insert() { $this->hashkey = self::hashkey($this->getTopic(), $this->callback); $this->created = common_sql_now(); $this->modified = common_sql_now(); return parent::insert(); } /** * Schedule delivery of a 'fat ping' to the subscriber's callback * endpoint. If queues are disabled, this will run immediately. * * @param string $atom well-formed Atom feed * @param int $retries optional count of retries if POST fails; defaults to hub_retries from config or 0 if unset */ function distribute($atom, $retries=null) { if ($retries === null) { $retries = intval(common_config('ostatus', 'hub_retries')); } // We dare not clone() as when the clone is discarded it'll // destroy the result data for the parent query. // @fixme use clone() again when it's safe to copy an // individual item from a multi-item query again. $sub = HubSub::getByHashkey($this->getTopic(), $this->callback); $data = array('sub' => $sub, 'atom' => $atom, 'retries' => $retries); common_log(LOG_INFO, "Queuing PuSH: {$this->getTopic()} to {$this->callback}"); $qm = QueueManager::get(); $qm->enqueue($data, 'hubout'); } /** * Queue up a large batch of pushes to multiple subscribers * for this same topic update. * * If queues are disabled, this will run immediately. * * @param string $atom well-formed Atom feed * @param array $pushCallbacks list of callback URLs */ function bulkDistribute($atom, $pushCallbacks) { $data = array('atom' => $atom, 'topic' => $this->getTopic(), 'pushCallbacks' => $pushCallbacks); common_log(LOG_INFO, "Queuing PuSH batch: {$this->getTopic()} to ".count($pushCallbacks)." sites"); $qm = QueueManager::get(); $qm->enqueue($data, 'hubprep'); } /** * Send a 'fat ping' to the subscriber's callback endpoint * containing the given Atom feed chunk. * * Determination of which items to send should be done at * a higher level; don't just shove in a complete feed! * * @param string $atom well-formed Atom feed * @throws Exception (HTTP or general) */ function push($atom) { $headers = array('Content-Type: application/atom+xml'); if ($this->secret) { $hmac = hash_hmac('sha1', $atom, $this->secret); $headers[] = "X-Hub-Signature: sha1=$hmac"; } else { $hmac = '(none)'; } common_log(LOG_INFO, "About to push feed to $this->callback for {$this->getTopic()}, HMAC $hmac"); $request = new HTTPClient(); $request->setConfig(array('follow_redirects' => false)); $request->setBody($atom); try { $response = $request->post($this->callback, $headers); if ($response->isOk()) { return true; } } catch (Exception $e) { $response = null; common_debug('PuSH callback to '._ve($this->callback).' for '._ve($this->getTopic()).' failed with exception: '._ve($e->getMessage())); } // XXX: DO NOT trust a Location header here, _especially_ from 'http' protocols, // but not 'https' either at least if we don't do proper CA verification. Trust that // the most common change here is simply switching 'http' to 'https' and we will // solve 99% of all of these issues for now. There should be a proper mechanism // if we want to change the callback URLs, preferrably just manual resubscriptions // from the remote side, combined with implemented PuSH subscription timeouts. // We failed the PuSH, but it might be that the remote site has changed their configuration to HTTPS if ('http' === parse_url($this->callback, PHP_URL_SCHEME)) { // Test if the feed callback for this node has migrated to HTTPS $httpscallback = preg_replace('/^http/', 'https', $this->callback, 1); if ($httpscallback === $this->callback) { throw new ServerException('Trying to preg_replace http to https on '._ve($this->callback).' failed and resulted in an identical string: '._ve($httpscallback).'.'); } common_debug('PuSH callback to '._ve($this->callback).' for '._ve($this->getTopic()).' testing with HTTPS callback: '._ve($httpscallback)); $response = $request->post($httpscallback, $headers); if ($response->isOk()) { $orig = clone($this); $this->callback = $httpscallback; $this->hashkey = self::hashkey($this->getTopic(), $this->callback); common_debug('HubSub DEBUG, from '._ve($orig).' to '._ve($this)); $this->updateWithKeys($orig, 'hashkey'); return true; } } // FIXME: Add 'failed' incremental count for this callback. if (is_null($response)) { // This means we got a lower-than-HTTP level error, like domain not found or maybe connection refused // This should be using a more distinguishable exception class, but for now this will do. throw new Exception(sprintf(_m('HTTP request failed without response to URL: %s'), _ve(isset($httpscallback) ? $httpscallback : $this->callback))); } // TRANS: Exception. %1$s is a response status code, %2$s is the body of the response. throw new Exception(sprintf(_m('Callback returned status: %1$s. Body: %2$s'), $response->getStatus(),trim($response->getBody()))); } }