/* Copyright Joyent, Inc. and other Node contributors. All rights reserved.

*

* Permission is hereby granted, free of charge, to any person obtaining a copy

* of this software and associated documentation files (the "Software"), to

* deal in the Software without restriction, including without limitation the

* rights to use, copy, modify, merge, publish, distribute, sublicense, and/or

* sell copies of the Software, and to permit persons to whom the Software is

* furnished to do so, subject to the following conditions:

*

* The above copyright notice and this permission notice shall be included in

* all copies or substantial portions of the Software.

*

* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING

* FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS

* IN THE SOFTWARE.

*/

#include <stdio.h>

#include <stdlib.h>

#include <malloc.h>

#include <wchar.h>

#include "uv.h"

#include "internal.h"

#define SIGKILL 9

const WCHAR* const wide;

const WCHAR* const wide_eq;

const size_t len; /* including null or '=' */

} env_var_t;

#define E_V(str) { L##str, L##str L"=", sizeof(str) }

static const env_var_t required_vars[] = { /* keep me sorted */

E_V("HOMEDRIVE"),

E_V("HOMEPATH"),

E_V("LOGONSERVER"),

E_V("PATH"),

E_V("SYSTEMDRIVE"),

E_V("SYSTEMROOT"),

E_V("TEMP"),

E_V("USERDOMAIN"),

E_V("USERNAME"),

E_V("USERPROFILE"),

E_V("WINDIR"),

};

static size_t n_required_vars = ARRAY_SIZE(required_vars);

static HANDLE uv_global_job_handle_;

static uv_once_t uv_global_job_handle_init_guard_ = UV_ONCE_INIT;

static void uv__init_global_job_handle(void) {

/* Create a job object and set it up to kill all contained processes when

* it's closed. Since this handle is made non-inheritable and we're not

* giving it to anyone, we're the only process holding a reference to it.

* That means that if this process exits it is closed and all the processes

* it contains are killed. All processes created with uv_spawn that are not

* spawned with the UV_PROCESS_DETACHED flag are assigned to this job.

*

* We're setting the JOB_OBJECT_LIMIT_SILENT_BREAKAWAY_OK flag so only the

* processes that we explicitly add are affected, and *their* subprocesses

* are not. This ensures that our child processes are not limited in their

* ability to use job control on Windows versions that don't deal with

* nested jobs (prior to Windows 8 / Server 2012). It also lets our child

* processes created detached processes without explicitly breaking away

* from job control (which uv_spawn doesn't, either).

*/

SECURITY_ATTRIBUTES attr;

JOBOBJECT_EXTENDED_LIMIT_INFORMATION info;

memset(&attr, 0, sizeof attr);

attr.bInheritHandle = FALSE;

memset(&info, 0, sizeof info);

info.BasicLimitInformation.LimitFlags =

JOB_OBJECT_LIMIT_BREAKAWAY_OK |

JOB_OBJECT_LIMIT_SILENT_BREAKAWAY_OK |

JOB_OBJECT_LIMIT_DIE_ON_UNHANDLED_EXCEPTION |

JOB_OBJECT_LIMIT_KILL_ON_JOB_CLOSE;

uv_global_job_handle_ = CreateJobObjectW(&attr, NULL);

if (uv_global_job_handle_ == NULL)

uv_fatal_error(GetLastError(), "CreateJobObjectW");

if (!SetInformationJobObject(uv_global_job_handle_,

JobObjectExtendedLimitInformation,

&info,

sizeof info))

uv_fatal_error(GetLastError(), "SetInformationJobObject");

}

int ws_len, r;

WCHAR* ws;

ws_len = MultiByteToWideChar(CP_UTF8,

0,

s,

-1,

NULL,

0);

if (ws_len <= 0) {

}

ws = (WCHAR*) malloc(ws_len * sizeof(WCHAR));

if (ws == NULL) {

}

r = MultiByteToWideChar(CP_UTF8,

0,

s,

-1,

ws,

ws_len);

assert(r == ws_len);

*ws_ptr = ws;

handle->exit_cb = NULL;

handle->pid = 0;

handle->exit_signal = 0;

handle->wait_handle = INVALID_HANDLE_VALUE;

handle->process_handle = INVALID_HANDLE_VALUE;

handle->exit_req.type = UV_PROCESS_EXIT;

handle->exit_req.data = handle;

}

/*

* Path search functions

*/

/*

* Helper function for search_path

*/

size_t dir_len,

const WCHAR* name,

size_t name_len,

const WCHAR* ext,

size_t ext_len,

const WCHAR* cwd,

size_t cwd_len) {

DWORD attrs;

if (dir_len >= 1 && (dir[0] == L'/' || dir[0] == L'\\')) {

/* It's a full path without drive letter, use cwd's drive letter only */

cwd_len = 2;

} else if (dir_len >= 2 && dir[1] == L':' &&

(dir_len < 3 || (dir[2] != L'/' && dir[2] != L'\\'))) {

/* It's a relative path with drive letter (ext.g. D:../some/file)

* Replace drive letter in dir by full cwd if it points to the same drive,

* otherwise use the dir only.

*/

if (cwd_len < 2 || _wcsnicmp(cwd, dir, 2) != 0) {

cwd_len = 0;

} else {

dir += 2;

dir_len -= 2;

}

} else if (dir_len > 2 && dir[1] == L':') {

/* It's an absolute path with drive letter

* Don't use the cwd at all

*/

cwd_len = 0;

}

/* Allocate buffer for output */

/* Copy cwd */

wcsncpy(result_pos, cwd, cwd_len);

result_pos += cwd_len;

/* Add a path separator if cwd didn't end with one */

if (cwd_len && wcsrchr(L"\\/:", result_pos[-1]) == NULL) {

result_pos[0] = L'\\';

result_pos++;

}

/* Copy dir */

wcsncpy(result_pos, dir, dir_len);

result_pos += dir_len;

/* Add a separator if the dir didn't end with one */

if (dir_len && wcsrchr(L"\\/:", result_pos[-1]) == NULL) {

result_pos[0] = L'\\';

result_pos++;

}

/* Copy filename */

wcsncpy(result_pos, name, name_len);

result_pos += name_len;

if (ext_len) {

/* Add a dot if the filename didn't end with one */

if (name_len && result_pos[-1] != '.') {

result_pos[0] = L'.';

result_pos++;

}

/* Copy extension */

wcsncpy(result_pos, ext, ext_len);

result_pos += ext_len;

}

/* Null terminator */

result_pos[0] = L'\0';

attrs = GetFileAttributesW(result);

if (attrs != INVALID_FILE_ATTRIBUTES &&

return result;

}

free(result);

return NULL;

}

/*

* Helper function for search_path

*/

size_t dir_len,

const WCHAR *name,

size_t name_len,

WCHAR *cwd,

size_t cwd_len,

int name_has_ext) {

if (name_has_ext) {

result = search_path_join_test(dir, dir_len,

name, name_len,

L"", 0,

cwd, cwd_len);

if (result != NULL) {

return result;

/* Try .com extension */

result = search_path_join_test(dir, dir_len,

name, name_len,

L"com", 3,

cwd, cwd_len);

if (result != NULL) {

return result;

}

/* Try .exe extension */

result = search_path_join_test(dir, dir_len,

name, name_len,

L"exe", 3,

cwd, cwd_len);

if (result != NULL) {

return result;

}

}

/*

* search_path searches the system path for an executable filename -

* the windows API doesn't provide this as a standalone function nor as an

* option to CreateProcess.

*

* It tries to return an absolute filename.

*

* Furthermore, it tries to follow the semantics that cmd.exe, with this

* exception that PATHEXT environment variable isn't used. Since CreateProcess

* can start only .com and .exe files, only those extensions are tried. This

* behavior equals that of msvcrt's spawn functions.

*

* - Do not search the path if the filename already contains a path (either

* relative or absolute).

*

* - If there's really only a filename, check the current directory for file,

* then search all path directories.

*

* specified extension first.

*

* - If the literal filename is not found in a directory, try *appending*

*

* - The path variable may contain relative paths; relative paths are relative

* to the cwd.

*

* - Directories in path may or may not end with a trailing backslash.

*

* - CMD does not trim leading/trailing whitespace from path/pathex entries

* nor from the environment variables as a whole.

*

* searching. However, unlike posix-y systems, it will happily try to run a

* file that is not readable/executable; if the spawn fails it will not

* continue searching.

*

* TODO: correctly interpret UNC paths

*/

static WCHAR* search_path(const WCHAR *file,

WCHAR *cwd,

const WCHAR *path) {

WCHAR* result = NULL;

WCHAR *file_name_start;

WCHAR *dot;

const WCHAR *dir_start, *dir_end, *dir_path;

int name_has_ext;

size_t file_len = wcslen(file);

size_t cwd_len = wcslen(cwd);

/* If the caller supplies an empty filename,

* we're not gonna return c:\windows\.exe -- GFY!

*/

if (file_len == 0

|| (file_len == 1 && file[0] == L'.')) {

return NULL;

}

/* Find the start of the filename so we can split the directory from the */

/* name. */

file_name_start > file

&& file_name_start[-1] != L'\\'

&& file_name_start[-1] != L'/'

&& file_name_start[-1] != L':';

file_name_start--);

file_has_dir = file_name_start != file;

/* Check if the filename includes an extension */

dot = wcschr(file_name_start, L'.');

name_has_ext = (dot != NULL && dot[1] != L'\0');

if (file_has_dir) {

result = path_search_walk_ext(

file, file_name_start - file,

file_name_start, file_len - (file_name_start - file),

cwd, cwd_len,

} else {

/* The file is really only a name; look in cwd first, then scan path */

result = path_search_walk_ext(L"", 0,

file, file_len,

cwd, cwd_len,

while (result == NULL) {

if (*dir_end == L'\0') {

break;

}

/* Skip the separator that dir_end now points to */

dir_end++;

}

/* Next slice starts just after where the previous one ended */

dir_start = dir_end;

/* Slice until the next ; or \0 is found */

dir_end = wcschr(dir_start, L';');

if (dir_end == NULL) {

dir_end = wcschr(dir_start, L'\0');

}

/* If the slice is zero-length, don't bother */

if (dir_end - dir_start == 0) {

continue;

}

dir_path = dir_start;

dir_len = dir_end - dir_start;

/* Adjust if the path is quoted. */

if (dir_path[0] == '"' || dir_path[0] == '\'') {

++dir_path;

--dir_len;

}

if (dir_path[dir_len - 1] == '"' || dir_path[dir_len - 1] == '\'') {

--dir_len;

}

result = path_search_walk_ext(dir_path, dir_len,

file, file_len,

cwd, cwd_len,

}

}

return result;

}

/*

* Quotes command line arguments

* Returns a pointer to the end (next char to be written) of the buffer

*/

size_t len = wcslen(source);

size_t i;

int quote_hit;

if (len == 0) {

/* Need double quotation for empty argument */

*(target++) = L'"';

*(target++) = L'"';

return target;

}

if (NULL == wcspbrk(source, L" \t\"")) {

/* No quotation needed */

wcsncpy(target, source, len);

target += len;

return target;

}

if (NULL == wcspbrk(source, L"\"\\")) {

* No embedded double quotes or backlashes, so I can just wrap

* quote marks around the whole thing.

*/

*(target++) = L'"';

wcsncpy(target, source, len);

target += len;

*(target++) = L'"';

return target;

}

/*

* input : hello"world

* output: "hello\"world"

* input : hello""world

* output: "hello\"\"world"

* input : hello\world

* input : hello\"world

* output: "hello\\\"world"

* input : hello\\"world

* output: "hello\\\\\"world"

* input : hello world\

* output: "hello world\"

*/

*(target++) = L'"';

start = target;

quote_hit = 1;

for (i = len; i > 0; --i) {

*(target++) = source[i - 1];

if (quote_hit && source[i - 1] == L'\\') {

*(target++) = L'\\';

} else if(source[i - 1] == L'"') {

quote_hit = 1;

*(target++) = L'\\';

} else {

quote_hit = 0;

}

}

target[0] = L'\0';

wcsrev(start);

*(target++) = L'"';

return target;

}

WCHAR* dst = NULL;

WCHAR* temp_buffer = NULL;

size_t dst_len = 0;

size_t temp_buffer_len = 0;

WCHAR* pos;

/* Count the required size. */

for (arg = args; *arg; arg++) {

DWORD arg_len;

arg_len = MultiByteToWideChar(CP_UTF8,

0,

*arg,

-1,

NULL,

0);

if (arg_len == 0) {

}

dst_len += arg_len;

if (arg_len > temp_buffer_len)

temp_buffer_len = arg_len;

arg_count++;

}

/* Allocate buffer for the final command line. */

dst = (WCHAR*) malloc(dst_len * sizeof(WCHAR));

if (dst == NULL) {

}

/* Allocate temporary working buffer. */

temp_buffer = (WCHAR*) malloc(temp_buffer_len * sizeof(WCHAR));

if (temp_buffer == NULL) {

}

DWORD arg_len;

/* Convert argument to wide char. */

arg_len = MultiByteToWideChar(CP_UTF8,

0,

*arg,

-1,

temp_buffer,

/* Copy verbatim. */

wcscpy(pos, temp_buffer);

pos += arg_len - 1;

/* Quote/escape, if needed. */

pos = quote_cmd_arg(temp_buffer, pos);

*pos++ = *(arg + 1) ? L' ' : L'\0';

}

free(temp_buffer);

*dst_ptr = dst;

error:

free(dst);

free(temp_buffer);

return err;

}

int env_strncmp(const wchar_t* a, int na, const wchar_t* b) {

wchar_t* a_eq;

wchar_t* b_eq;

wchar_t* A;

wchar_t* B;

int nb;

int r;

if (na < 0) {

a_eq = wcschr(a, L'=');

assert(a_eq);

na = (int)(long)(a_eq - a);

} else {

na--;

}

b_eq = wcschr(b, L'=');

assert(b_eq);

nb = b_eq - b;

A = alloca((na+1) * sizeof(wchar_t));

B = alloca((nb+1) * sizeof(wchar_t));

r = LCMapStringW(LOCALE_INVARIANT, LCMAP_UPPERCASE, a, na, A, na);

assert(r==na);

A[na] = L'\0';

r = LCMapStringW(LOCALE_INVARIANT, LCMAP_UPPERCASE, b, nb, B, nb);

assert(r==nb);

B[nb] = L'\0';

while (1) {

wchar_t AA = *A++;

wchar_t BB = *B++;

if (AA < BB) {

return -1;

} else if (AA > BB) {

return 1;

} else if (!AA && !BB) {

return 0;

}

}

}

static int qsort_wcscmp(const void *a, const void *b) {

wchar_t* astr = *(wchar_t* const*)a;

wchar_t* bstr = *(wchar_t* const*)b;

return env_strncmp(astr, -1, bstr);

}

* The way windows takes environment variables is different than what C does;

* Windows wants a contiguous block of null-terminated strings, terminated

* with an additional null.

* Windows has a few "essential" environment variables. winsock will fail

* to initialize if SYSTEMROOT is not defined; some APIs make reference to

* TEMP. SYSTEMDRIVE is probably also important. We therefore ensure that

* these get defined if the input environment block does not contain any

* values for them.

*

* Also add variables known to Cygwin to be required for correct

* subprocess operation in many cases:

* https://github.com/Alexpux/Cygwin/blob/b266b04fbbd3a595f02ea149e4306d3ab9b1fe3d/winsup/cygwin/environ.cc#L955

*

WCHAR* dst;

WCHAR* ptr;

size_t env_block_count = 1; /* 1 for null-terminator */

WCHAR* dst_copy;

WCHAR** ptr_copy;

WCHAR** env_copy;

DWORD* required_vars_value_len = alloca(n_required_vars * sizeof(DWORD*));

if (strchr(*env, '=')) {

len = MultiByteToWideChar(CP_UTF8,

0,

*env,

-1,

NULL,

0);

if (len <= 0) {

return GetLastError();

}

env_len += len;

env_block_count++;

}

/* second pass: copy to UTF-16 environment block */

dst_copy = _malloca(env_len * sizeof(WCHAR));

if (!dst_copy) {

return ERROR_OUTOFMEMORY;

}

env_copy = alloca(env_block_count * sizeof(WCHAR*));

ptr = dst_copy;

ptr_copy = env_copy;

for (env = env_block; *env; env++) {

if (strchr(*env, '=')) {

len = MultiByteToWideChar(CP_UTF8,

0,

*env,

-1,

ptr,

(int) (env_len - (ptr - dst_copy)));

if (len <= 0) {

DWORD err = GetLastError();

_freea(dst_copy);

return err;

}

*ptr_copy++ = ptr;

ptr += len;

}

*ptr_copy = NULL;

assert(env_len == ptr - dst_copy);

/* sort our (UTF-16) copy */

qsort(env_copy, env_block_count-1, sizeof(wchar_t*), qsort_wcscmp);

/* third pass: check for required variables */

for (ptr_copy = env_copy, i = 0; i < n_required_vars; ) {

int cmp;

if (!*ptr_copy) {

cmp = -1;

} else {

cmp = env_strncmp(required_vars[i].wide_eq,

required_vars[i].len,

*ptr_copy);

}

if (cmp < 0) {

/* missing required var */

if (var_size != 0) {

env_len += required_vars[i].len;

env_len += var_size;

}

i++;

} else {

ptr_copy++;

if (cmp == 0)

i++;

}

}

/* final pass: copy, in sort order, and inserting required variables */

dst = malloc((1+env_len) * sizeof(WCHAR));