mirror of
https://github.com/curl/curl.git
synced 2026-04-14 22:21:41 +03:00
03a792b186
Avoid never-ending growth. When adding more entries, it now deletes the first entry in the list, which is the oldest added entry still held in memory. I decided to avoid a Least Recently Used concept as I suspect with a list with this many entries most entries have not been used, and we don't save the timestamp of recent use anyway. The net effect might (no matter what) be that the removed entry might feel a bit "random" in the eyes of the user. Verify with test 1674 Ref #21183 Closes #21190
70 lines
2.5 KiB
C
70 lines
2.5 KiB
C
#ifndef HEADER_CURL_HSTS_H
|
|
#define HEADER_CURL_HSTS_H
|
|
/***************************************************************************
|
|
* _ _ ____ _
|
|
* Project ___| | | | _ \| |
|
|
* / __| | | | |_) | |
|
|
* | (__| |_| | _ <| |___
|
|
* \___|\___/|_| \_\_____|
|
|
*
|
|
* Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
|
|
*
|
|
* This software is licensed as described in the file COPYING, which
|
|
* you should have received as part of this distribution. The terms
|
|
* are also available at https://curl.se/docs/copyright.html.
|
|
*
|
|
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
|
|
* copies of the Software, and permit persons to whom the Software is
|
|
* furnished to do so, under the terms of the COPYING file.
|
|
*
|
|
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
|
|
* KIND, either express or implied.
|
|
*
|
|
* SPDX-License-Identifier: curl
|
|
*
|
|
***************************************************************************/
|
|
#include "curl_setup.h"
|
|
|
|
#if !defined(CURL_DISABLE_HTTP) && !defined(CURL_DISABLE_HSTS)
|
|
#include "llist.h"
|
|
|
|
#define MAX_HSTS_ENTRIES 1000
|
|
|
|
#if defined(DEBUGBUILD) || defined(UNITTESTS)
|
|
extern time_t deltatime;
|
|
#endif
|
|
|
|
struct stsentry {
|
|
struct Curl_llist_node node;
|
|
curl_off_t expires; /* the timestamp of this entry's expiry */
|
|
BIT(includeSubDomains);
|
|
char host[1];
|
|
};
|
|
|
|
/* The HSTS cache. Needs to be able to tailmatch hostnames. */
|
|
struct hsts {
|
|
struct Curl_llist list;
|
|
char *filename;
|
|
unsigned int flags;
|
|
};
|
|
|
|
struct hsts *Curl_hsts_init(void);
|
|
void Curl_hsts_cleanup(struct hsts **hp);
|
|
CURLcode Curl_hsts_parse(struct hsts *h, const char *hostname,
|
|
const char *header);
|
|
struct stsentry *Curl_hsts(struct hsts *h, const char *hostname,
|
|
size_t hlen, bool subdomain);
|
|
CURLcode Curl_hsts_save(struct Curl_easy *data, struct hsts *h,
|
|
const char *file);
|
|
CURLcode Curl_hsts_loadfile(struct Curl_easy *data,
|
|
struct hsts *h, const char *file);
|
|
CURLcode Curl_hsts_loadcb(struct Curl_easy *data,
|
|
struct hsts *h);
|
|
CURLcode Curl_hsts_loadfiles(struct Curl_easy *data);
|
|
#else
|
|
#define Curl_hsts_cleanup(x)
|
|
#define Curl_hsts_loadcb(x, y) CURLE_OK
|
|
#define Curl_hsts_save(x, y, z)
|
|
#define Curl_hsts_loadfiles(x) CURLE_OK
|
|
#endif /* CURL_DISABLE_HTTP || CURL_DISABLE_HSTS */
|
|
#endif /* HEADER_CURL_HSTS_H */
|