Ladybird: Add RequestServer process to optionally replace Qt Networking

LibTLS still can't access many parts of the web, so let's hide this behind a flag (with all the plumbing that entails). Hopefully this can encourage folks to improve LibTLS's algorithm support :^).
2025-07-25 05:07:34 +00:00 · 2023-08-01 14:39:19 -06:00 · 2023-08-01 14:39:19 -06:00 · b5bfe732d7
commit b5bfe732d7
parent ec3267e002
26 changed files with 336 additions and 31 deletions
--- a/Ladybird/RequestServer/main.cpp
+++ b/Ladybird/RequestServer/main.cpp
@ -0,0 +1,68 @@
+/*
+ * Copyright (c) 2018-2020, Andreas Kling <kling@serenityos.org>
+ * Copyright (c) 2023, Andrew Kaster <akaster@serenityos.org>
+ *
+ * SPDX-License-Identifier: BSD-2-Clause
+ */
+
+#include "../Utilities.h"
+#include <AK/LexicalPath.h>
+#include <AK/OwnPtr.h>
+#include <LibCore/ArgsParser.h>
+#include <LibCore/EventLoop.h>
+#include <LibCore/LocalServer.h>
+#include <LibCore/System.h>
+#include <LibFileSystem/FileSystem.h>
+#include <LibIPC/SingleServer.h>
+#include <LibMain/Main.h>
+#include <LibTLS/Certificate.h>
+#include <QCoreApplication>
+#include <RequestServer/ConnectionFromClient.h>
+#include <RequestServer/GeminiProtocol.h>
+#include <RequestServer/HttpProtocol.h>
+#include <RequestServer/HttpsProtocol.h>
+
+ErrorOr<String> find_certificates()
+{
+    auto cert_path = TRY(String::formatted("{}/res/ladybird/cacert.pem", s_serenity_resource_root));
+    if (!FileSystem::exists(cert_path)) {
+        auto app_dir = ak_deprecated_string_from_qstring(QCoreApplication::applicationDirPath());
+
+        cert_path = TRY(String::formatted("{}/cacert.pem", LexicalPath(app_dir).parent()));
+        if (!FileSystem::exists(cert_path))
+            return Error::from_string_view("Don't know how to load certs!"sv);
+    }
+    return cert_path;
+}
+
+ErrorOr<int> serenity_main(Main::Arguments arguments)
+{
+    QCoreApplication application(arguments.argc, arguments.argv);
+    platform_init();
+
+    // Ensure the certificates are read out here.
+    DefaultRootCACertificates::set_default_certificate_path(TRY(find_certificates()));
+    [[maybe_unused]] auto& certs = DefaultRootCACertificates::the();
+
+    int fd_passing_socket { -1 };
+
+    Core::ArgsParser args_parser;
+    args_parser.add_option(fd_passing_socket, "File descriptor of the fd passing socket", "fd-passing-socket", 'c', "fd-passing-socket");
+    args_parser.parse(arguments);
+
+    Core::EventLoop event_loop;
+
+    [[maybe_unused]] auto gemini = make<RequestServer::GeminiProtocol>();
+    [[maybe_unused]] auto http = make<RequestServer::HttpProtocol>();
+    [[maybe_unused]] auto https = make<RequestServer::HttpsProtocol>();
+
+    auto client = TRY(IPC::take_over_accepted_client_from_system_server<RequestServer::ConnectionFromClient>());
+    client->set_fd_passing_socket(TRY(Core::LocalSocket::adopt_fd(fd_passing_socket)));
+
+    auto result = event_loop.exec();
+
+    // FIXME: We exit instead of returning, so that protocol destructors don't get called.
+    //        The Protocol base class should probably do proper de-registration instead of
+    //        just VERIFY_NOT_REACHED().
+    exit(result);
+}