[voter] / src / main.rs

use rand::prelude::*;
use std::io::prelude::*;
use std::path::{Path, PathBuf};

const DATA_PATH: &str = "/var/lib/voter";
const COOKIE_NAME: &[u8] = b"__Secure-id";
const COOKIE_LENGTH: usize = 12;

fn validate_path(path: &str) -> Result<PathBuf, cgi::Response> {
    let invalid_path = || cgi::text_response(404, "Invalid path");
    if path == "/" {
        return Err(cgi::text_response(404, "(This is the voting place.  You should have been given a more specific URL for the specific thing you've been invited to vote on.)"));
    }
    if path.contains("..") || !path.starts_with("/") {
        return Err(invalid_path());
    }
    let dir = Path::new(&format!("{DATA_PATH}{path}")).to_path_buf();
    if !dir
        .canonicalize()
        .map_err(|_| invalid_path())?
        .starts_with(DATA_PATH)
    {
        return Err(invalid_path());
    }
    if !dir.is_dir() {
        return Err(invalid_path());
    }
    Ok(dir)
}

fn get_voter(request: &cgi::Request) -> Result<&[u8], cgi::Response> {
    // Expect exactly one cookie, exactly as we generate it.
    let cookie = request
        .headers()
        .get(cgi::http::header::COOKIE)
        .map(|c| c.as_bytes())
        .and_then(|c| c.strip_prefix(COOKIE_NAME))
        .and_then(|c| c.strip_prefix(b"="))
        .ok_or_else(|| cgi::text_response(400, "Invalid cookie"))?;
    if cookie.len() != COOKIE_LENGTH || cookie.contains(&b' ') || cookie.contains(&b';') {
        Err(cgi::text_response(400, "Invalid cookie"))
    } else {
        Ok(cookie)
    }
}

fn make_random_id() -> [u8; COOKIE_LENGTH] {
    let mut id = [0; COOKIE_LENGTH];
    for i in 0..COOKIE_LENGTH {
        while !(b'A'..=b'Z').contains(&id[i])
            && !(b'a'..=b'z').contains(&id[i])
            && !(b'0'..=b'9').contains(&id[i])
        {
            id[i] = random()
        }
    }
    id
}

fn set_cookie(mut response: cgi::Response, path: &str) -> Result<cgi::Response, cgi::Response> {
    response.headers_mut().append(
        cgi::http::header::SET_COOKIE,
        cgi::http::header::HeaderValue::from_bytes(
            &[
                COOKIE_NAME,
                b"=",
                &make_random_id(),
                b"; Secure HttpOnly SameSite=Strict Max-Age=30000000 Path=",
                path.as_bytes(),
            ]
            .concat(),
        )
        .map_err(|_| cgi::text_response(503, "Couldn't make cookie"))?,
    );
    Ok(response)
}

const HTML_HEADER: &str = "<!DOCTYPE html>
<html>
  <head>
    <meta charset=\"utf-8\">
    <title>Vote!</title>
    <style>
      input { transform: scale(1.5) }
      div { animation: 2s infinite linear spin }
      @keyframes spin {
        from { transform:rotate(0) }
        to { transform:rotate(1turn) }
      }
    </style>
    <script>
      window.onload = function() {
        for (cb of document.getElementsByTagName('input')) {
          cb.addEventListener('click', (function(cb) {
            return function() {
              cb.style.display = 'none'
              const spin = document.createElement('div')
              spin.appendChild(document.createTextNode('⏳'))
              cb.parentElement.insertBefore(spin, cb)

              const req = new XMLHttpRequest()
              req.addEventListener('load', function(e) {
                cb.parentElement.removeChild(cb.previousElementSibling)
                if (req.status == 200) {
                    cb.style.display = ''
                } else {
                   cb.parentElement.insertBefore(document.createTextNode('❗'), cb)
                }
              })
              req.open('PUT', window.location.href)
              req.send((cb.checked ? 1 : 0) + ' ' + cb.parentElement.nextSibling.innerHTML)
            }
          })(cb))
          cb.disabled = false
        }
      }
    </script>
  </head>
  <body>
    <table>";
const HTML_FOOTER: &str = "
    </table>
  </body>
</html>";

fn prompt_for_vote(dir: PathBuf, request: cgi::Request) -> Result<cgi::Response, cgi::Response> {
    let voter = get_voter(&request);
    let cfile = std::fs::File::open(dir.join("candidates"))
        .map_err(|_| cgi::text_response(503, "No candidates"))?;
    let mut response = cgi::html_response(
        200,
        std::iter::once(Ok(HTML_HEADER.to_owned()))
            .chain(std::io::BufReader::new(cfile).lines().map(|rc| {
                rc.map(|c| {
                    format!("<tr><td><input type=\"checkbox\" autocomplete=\"off\" disabled></td><td>{c}</td></tr>")
                })
            }))
            .chain(std::iter::once(Ok(HTML_FOOTER.to_owned())))
            .collect::<std::io::Result<String>>()
            .map_err(|_| cgi::text_response(503, "Missing candidates"))?,
    );
    if voter.is_err() {
        response = set_cookie(response, request.uri().path())?
    }
    Ok(response)
}

fn write_vote(dir: PathBuf, voter: &[u8], vote: &[u8]) -> std::io::Result<()> {
    let datum = [voter, b" ", vote, b"\n"].concat();
    let vpath = dir.join("votes");
    let vfile = std::fs::File::options()
        .append(true)
        .create(true)
        .open(vpath)?;
    let mut vlock = fd_lock::RwLock::new(vfile);
    vlock.write()?.write(&datum)?;
    Ok(())
}

fn record_vote(dir: PathBuf, request: cgi::Request) -> Result<cgi::Response, cgi::Response> {
    let body = request.body();
    // Valid votes look like "0 foo" or "1 bar"
    if body.len() < 3
        || (body[0] != b'0' && body[0] != b'1')
        || body[1] != b' '
        || body.contains(&b'\n')
    {
        return Err(cgi::text_response(415, "Invalid vote"));
    }
    write_vote(dir, &get_voter(&request)?, body)
        .map_err(|_| cgi::text_response(503, "Couldn't record vote"))?;
    Ok(cgi::text_response(200, "Vote recorded"))
}

fn strip_body(mut response: cgi::Response) -> cgi::Response {
    response.body_mut().clear();
    response
}

fn respond(request: cgi::Request) -> Result<cgi::Response, cgi::Response> {
    let dir = validate_path(request.uri().path())?;
    match request.method() {
        &cgi::http::Method::HEAD => prompt_for_vote(dir, request).map(strip_body),
        &cgi::http::Method::GET => prompt_for_vote(dir, request),
        &cgi::http::Method::PUT => record_vote(dir, request),
        _ => Err(cgi::text_response(405, "Huh?")),
    }
}

fn respond_or_report_error(request: cgi::Request) -> cgi::Response {
    match respond(request) {
        Ok(result) => result,
        Err(error) => error,
    }
}

cgi::cgi_main! { respond_or_report_error }
Commit	Line	Data
dd0a1246	1	use rand::prelude::*;
fbcdf3ed	2	use std::io::prelude::*;
c8402f1c	3	use std::path::{Path, PathBuf};
d1df2e73	4
c8402f1c	5	const DATA_PATH: &str = "/var/lib/voter";
fbcdf3ed	6	const COOKIE_NAME: &[u8] = b"__Secure-id";
ae9be1b6	7	const COOKIE_LENGTH: usize = 12;
c8402f1c SW	8
	9	fn validate_path(path: &str) -> Result<PathBuf, cgi::Response> {
	10	let invalid_path = \|\| cgi::text_response(404, "Invalid path");
	11	if path == "/" {
	12	return Err(cgi::text_response(404, "(This is the voting place. You should have been given a more specific URL for the specific thing you've been invited to vote on.)"));
	13	}
	14	if path.contains("..") \|\| !path.starts_with("/") {
	15	return Err(invalid_path());
	16	}
	17	let dir = Path::new(&format!("{DATA_PATH}{path}")).to_path_buf();
	18	if !dir
	19	.canonicalize()
	20	.map_err(\|_\| invalid_path())?
	21	.starts_with(DATA_PATH)
	22	{
	23	return Err(invalid_path());
	24	}
	25	if !dir.is_dir() {
	26	return Err(invalid_path());
	27	}
	28	Ok(dir)
	29	}
	30
fbcdf3ed SW	31	fn get_voter(request: &cgi::Request) -> Result<&[u8], cgi::Response> {
	32	// Expect exactly one cookie, exactly as we generate it.
	33	let cookie = request
	34	.headers()
	35	.get(cgi::http::header::COOKIE)
	36	.map(\|c\| c.as_bytes())
	37	.and_then(\|c\| c.strip_prefix(COOKIE_NAME))
	38	.and_then(\|c\| c.strip_prefix(b"="))
	39	.ok_or_else(\|\| cgi::text_response(400, "Invalid cookie"))?;
	40	if cookie.len() != COOKIE_LENGTH \|\| cookie.contains(&b' ') \|\| cookie.contains(&b';') {
	41	Err(cgi::text_response(400, "Invalid cookie"))
	42	} else {
	43	Ok(cookie)
	44	}
	45	}
	46
dd0a1246	47	fn make_random_id() -> [u8; COOKIE_LENGTH] {
5a0934fa SW	48	let mut id = [0; COOKIE_LENGTH];
	49	for i in 0..COOKIE_LENGTH {
	50	while !(b'A'..=b'Z').contains(&id[i])
	51	&& !(b'a'..=b'z').contains(&id[i])
	52	&& !(b'0'..=b'9').contains(&id[i])
	53	{
	54	id[i] = random()
	55	}
	56	}
	57	id
dd0a1246 SW	58	}
	59
	60	fn set_cookie(mut response: cgi::Response, path: &str) -> Result<cgi::Response, cgi::Response> {
	61	response.headers_mut().append(
	62	cgi::http::header::SET_COOKIE,
	63	cgi::http::header::HeaderValue::from_bytes(
	64	&[
	65	COOKIE_NAME,
	66	b"=",
	67	&make_random_id(),
	68	b"; Secure HttpOnly SameSite=Strict Max-Age=30000000 Path=",
	69	path.as_bytes(),
	70	]
	71	.concat(),
	72	)
	73	.map_err(\|_\| cgi::text_response(503, "Couldn't make cookie"))?,
	74	);
	75	Ok(response)
	76	}
	77
3a28e771	78	const HTML_HEADER: &str = "<!DOCTYPE html>
f5e90a7e SW	79	<html>
f5e90a7e SW	80	<head>
3a28e771	81	<meta charset=\"utf-8\">
9e49b3f0	82	<title>Vote!</title>
f5e90a7e	83	<style>
9d82c13f	84	input { transform: scale(1.5) }
95432069 SW	85	div { animation: 2s infinite linear spin }
	86	@keyframes spin {
	87	from { transform:rotate(0) }
	88	to { transform:rotate(1turn) }
	89	}
f5e90a7e	90	</style>
9d82c13f SW	91	<script>
	92	window.onload = function() {
	93	for (cb of document.getElementsByTagName('input')) {
95432069 SW	94	cb.addEventListener('click', (function(cb) {
	95	return function() {
	96	cb.style.display = 'none'
	97	const spin = document.createElement('div')
	98	spin.appendChild(document.createTextNode('⏳'))
	99	cb.parentElement.insertBefore(spin, cb)
f724d95f SW	100
	101	const req = new XMLHttpRequest()
	102	req.addEventListener('load', function(e) {
	103	cb.parentElement.removeChild(cb.previousElementSibling)
	104	if (req.status == 200) {
	105	cb.style.display = ''
	106	} else {
	107	cb.parentElement.insertBefore(document.createTextNode('❗'), cb)
	108	}
	109	})
	110	req.open('PUT', window.location.href)
	111	req.send((cb.checked ? 1 : 0) + ' ' + cb.parentElement.nextSibling.innerHTML)
95432069 SW	112	}
95432069 SW	113	})(cb))
9d82c13f SW	114	cb.disabled = false
	115	}
	116	}
	117	</script>
f5e90a7e SW	118	</head>
	119	<body>
	120	<table>";
	121	const HTML_FOOTER: &str = "
	122	</table>
	123	</body>
	124	</html>";
	125
c8402f1c	126	fn prompt_for_vote(dir: PathBuf, request: cgi::Request) -> Result<cgi::Response, cgi::Response> {
dd0a1246	127	let voter = get_voter(&request);
381eeda5 SW	128	let cfile = std::fs::File::open(dir.join("candidates"))
	129	.map_err(\|_\| cgi::text_response(503, "No candidates"))?;
	130	let mut response = cgi::html_response(
	131	200,
f5e90a7e SW	132	std::iter::once(Ok(HTML_HEADER.to_owned()))
f5e90a7e SW	133	.chain(std::io::BufReader::new(cfile).lines().map(\|rc\| {
9d82c13f	134	rc.map(\|c\| {
7717ed89	135	format!("<tr><td><input type=\"checkbox\" autocomplete=\"off\" disabled></td><td>{c}</td></tr>")
9d82c13f	136	})
f5e90a7e SW	137	}))
f5e90a7e SW	138	.chain(std::iter::once(Ok(HTML_FOOTER.to_owned())))
381eeda5 SW	139	.collect::<std::io::Result<String>>()
	140	.map_err(\|_\| cgi::text_response(503, "Missing candidates"))?,
	141	);
dd0a1246 SW	142	if voter.is_err() {
	143	response = set_cookie(response, request.uri().path())?
	144	}
	145	Ok(response)
c8402f1c SW	146	}
c8402f1c SW	147
fbcdf3ed SW	148	fn write_vote(dir: PathBuf, voter: &[u8], vote: &[u8]) -> std::io::Result<()> {
	149	let datum = [voter, b" ", vote, b"\n"].concat();
	150	let vpath = dir.join("votes");
	151	let vfile = std::fs::File::options()
	152	.append(true)
	153	.create(true)
	154	.open(vpath)?;
	155	let mut vlock = fd_lock::RwLock::new(vfile);
	156	vlock.write()?.write(&datum)?;
	157	Ok(())
	158	}
	159
c8402f1c	160	fn record_vote(dir: PathBuf, request: cgi::Request) -> Result<cgi::Response, cgi::Response> {
fbcdf3ed SW	161	let body = request.body();
	162	// Valid votes look like "0 foo" or "1 bar"
	163	if body.len() < 3
	164	\|\| (body[0] != b'0' && body[0] != b'1')
	165	\|\| body[1] != b' '
	166	\|\| body.contains(&b'\n')
	167	{
	168	return Err(cgi::text_response(415, "Invalid vote"));
	169	}
	170	write_vote(dir, &get_voter(&request)?, body)
	171	.map_err(\|_\| cgi::text_response(503, "Couldn't record vote"))?;
	172	Ok(cgi::text_response(200, "Vote recorded"))
	173	}
	174
	175	fn strip_body(mut response: cgi::Response) -> cgi::Response {
	176	response.body_mut().clear();
	177	response
c8402f1c SW	178	}
	179
	180	fn respond(request: cgi::Request) -> Result<cgi::Response, cgi::Response> {
	181	let dir = validate_path(request.uri().path())?;
	182	match request.method() {
fbcdf3ed	183	&cgi::http::Method::HEAD => prompt_for_vote(dir, request).map(strip_body),
c8402f1c	184	&cgi::http::Method::GET => prompt_for_vote(dir, request),
fbcdf3ed	185	&cgi::http::Method::PUT => record_vote(dir, request),
c8402f1c SW	186	_ => Err(cgi::text_response(405, "Huh?")),
	187	}
	188	}
	189
	190	fn respond_or_report_error(request: cgi::Request) -> cgi::Response {
	191	match respond(request) {
	192	Ok(result) => result,
	193	Err(error) => error,
	194	}
d1df2e73 SW	195	}
d1df2e73 SW	196
c8402f1c	197	cgi::cgi_main! { respond_or_report_error }