miniflux/internal/reader/icon/finder.go

// SPDX-FileCopyrightText: Copyright The Miniflux Authors. All rights reserved.
// SPDX-License-Identifier: Apache-2.0

package icon // import "miniflux.app/v2/internal/reader/icon"

import (
	"encoding/base64"
	"fmt"
	"io"
	"net/url"
	"strings"

	"miniflux.app/v2/internal/config"
	"miniflux.app/v2/internal/crypto"
	"miniflux.app/v2/internal/http/client"
	"miniflux.app/v2/internal/model"
	"miniflux.app/v2/internal/urllib"

	"github.com/PuerkitoBio/goquery"
)

// FindIcon try to find the website's icon.
func FindIcon(websiteURL, feedIconURL, userAgent string, fetchViaProxy, allowSelfSignedCertificates bool) (icon *model.Icon, err error) {
	if feedIconURL == "" {
		feedIconURL, err = fetchHTMLDocumentAndFindIconURL(websiteURL, userAgent, fetchViaProxy, allowSelfSignedCertificates)
		if err != nil {
			return nil, err
		}
	}

	if strings.HasPrefix(feedIconURL, "data:") {
		return parseImageDataURL(feedIconURL)
	}

	feedIconURL, err = generateIconURL(websiteURL, feedIconURL)
	if err != nil {
		return nil, err
	}

	if icon, err = downloadIcon(feedIconURL, userAgent, fetchViaProxy, allowSelfSignedCertificates); err != nil {
		return nil, err
	}

	return icon, nil
}

func generateIconURL(websiteURL, feedIconURL string) (iconURL string, err error) {
	feedIconURL = strings.TrimSpace(feedIconURL)

	if feedIconURL == "" {
		iconURL, err = urllib.JoinBaseURLAndPath(urllib.RootURL(websiteURL), "favicon.ico")
		if err != nil {
			return "", fmt.Errorf(`icon: unable to join base URL and path: %w`, err)
		}
	} else {
		iconURL, err = urllib.AbsoluteURL(websiteURL, feedIconURL)
		if err != nil {
			return "", fmt.Errorf(`icon: unable to convert icon URL to absolute URL: %w`, err)
		}
	}

	return iconURL, nil
}

func fetchHTMLDocumentAndFindIconURL(websiteURL, userAgent string, fetchViaProxy, allowSelfSignedCertificates bool) (string, error) {
	rootURL := urllib.RootURL(websiteURL)

	clt := client.NewClientWithConfig(rootURL, config.Opts)
	clt.WithUserAgent(userAgent)
	clt.AllowSelfSignedCertificates = allowSelfSignedCertificates

	if fetchViaProxy {
		clt.WithProxy()
	}

	response, err := clt.Get()
	if err != nil {
		return "", fmt.Errorf("icon: unable to download website index page: %v", err)
	}

	if response.HasServerFailure() {
		return "", fmt.Errorf("icon: unable to download website index page: status=%d", response.StatusCode)
	}

	return findIconURLFromHTMLDocument(response.Body)
}

func findIconURLFromHTMLDocument(body io.Reader) (string, error) {
	queries := []string{
		"link[rel='shortcut icon']",
		"link[rel='Shortcut Icon']",
		"link[rel='icon shortcut']",
		"link[rel='icon']",
	}

	doc, err := goquery.NewDocumentFromReader(body)
	if err != nil {
		return "", fmt.Errorf("icon: unable to read document: %v", err)
	}

	var iconURL string
	for _, query := range queries {
		doc.Find(query).Each(func(i int, s *goquery.Selection) {
			if href, exists := s.Attr("href"); exists {
				iconURL = strings.TrimSpace(href)
			}
		})

		if iconURL != "" {
			break
		}
	}

	return iconURL, nil
}

func downloadIcon(iconURL, userAgent string, fetchViaProxy, allowSelfSignedCertificates bool) (*model.Icon, error) {
	clt := client.NewClientWithConfig(iconURL, config.Opts)
	clt.WithUserAgent(userAgent)
	clt.AllowSelfSignedCertificates = allowSelfSignedCertificates
	if fetchViaProxy {
		clt.WithProxy()
	}

	response, err := clt.Get()
	if err != nil {
		return nil, fmt.Errorf("icon: unable to download iconURL: %v", err)
	}

	if response.HasServerFailure() {
		return nil, fmt.Errorf("icon: unable to download icon: status=%d", response.StatusCode)
	}

	body, err := io.ReadAll(response.Body)
	if err != nil {
		return nil, fmt.Errorf("icon: unable to read downloaded icon: %v", err)
	}

	if len(body) == 0 {
		return nil, fmt.Errorf("icon: downloaded icon is empty, iconURL=%s", iconURL)
	}

	icon := &model.Icon{
		Hash:     crypto.HashFromBytes(body),
		MimeType: response.ContentType,
		Content:  body,
	}

	return icon, nil
}

// https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/Data_URIs#syntax
// data:[<mediatype>][;base64],<data>
func parseImageDataURL(value string) (*model.Icon, error) {
	var mediaType string
	var encoding string

	if !strings.HasPrefix(value, "data:") {
		return nil, fmt.Errorf(`icon: invalid data URL (missing data:) %q`, value)
	}

	value = value[5:]

	comma := strings.Index(value, ",")
	if comma < 0 {
		return nil, fmt.Errorf(`icon: invalid data URL (no comma) %q`, value)
	}

	data := value[comma+1:]
	semicolon := strings.Index(value[0:comma], ";")

	if semicolon > 0 {
		mediaType = value[0:semicolon]
		encoding = value[semicolon+1 : comma]
	} else {
		mediaType = value[0:comma]
	}

	if !strings.HasPrefix(mediaType, "image/") {
		return nil, fmt.Errorf(`icon: invalid media type %q`, mediaType)
	}

	var blob []byte
	switch encoding {
	case "base64":
		var err error
		blob, err = base64.StdEncoding.DecodeString(data)
		if err != nil {
			return nil, fmt.Errorf(`icon: invalid data %q (%v)`, value, err)
		}
	case "":
		decodedData, err := url.QueryUnescape(data)
		if err != nil {
			return nil, fmt.Errorf(`icon: unable to decode data URL %q`, value)
		}
		blob = []byte(decodedData)
	default:
		return nil, fmt.Errorf(`icon: unsupported data URL encoding %q`, value)
	}

	if len(blob) == 0 {
		return nil, fmt.Errorf(`icon: empty data URL %q`, value)
	}

	icon := &model.Icon{
		Hash:     crypto.HashFromBytes(blob),
		Content:  blob,
		MimeType: mediaType,
	}

	return icon, nil
}
Replace copyright header with SPDX identifier 2023-06-19 23:42:47 +02:00			`// SPDX-FileCopyrightText: Copyright The Miniflux Authors. All rights reserved.`
			`// SPDX-License-Identifier: Apache-2.0`
First commit 2017-11-20 06:10:04 +01:00
Move internal packages to an internal folder For reference: https://go.dev/doc/go1.4#internalpackages 2023-08-11 04:46:45 +02:00			`package icon // import "miniflux.app/v2/internal/reader/icon"`
First commit 2017-11-20 06:10:04 +01:00
			`import (`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`"encoding/base64"`
First commit 2017-11-20 06:10:04 +01:00			`"fmt"`
Make sure XML feeds are always encoded in UTF-8 2017-11-21 02:12:37 +01:00			`"io"`
Rename internal url package to avoid overlap with net/url 2023-08-14 04:09:01 +02:00			`"net/url"`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`"strings"`
Make sure XML feeds are always encoded in UTF-8 2017-11-21 02:12:37 +01:00
Move internal packages to an internal folder For reference: https://go.dev/doc/go1.4#internalpackages 2023-08-11 04:46:45 +02:00			`"miniflux.app/v2/internal/config"`
			`"miniflux.app/v2/internal/crypto"`
			`"miniflux.app/v2/internal/http/client"`
			`"miniflux.app/v2/internal/model"`
Rename internal url package to avoid overlap with net/url 2023-08-14 04:09:01 +02:00			`"miniflux.app/v2/internal/urllib"`
First commit 2017-11-20 06:10:04 +01:00
			`"github.com/PuerkitoBio/goquery"`
			`)`

			`// FindIcon try to find the website's icon.`
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`func FindIcon(websiteURL, feedIconURL, userAgent string, fetchViaProxy, allowSelfSignedCertificates bool) (icon *model.Icon, err error) {`
			`if feedIconURL == "" {`
			`feedIconURL, err = fetchHTMLDocumentAndFindIconURL(websiteURL, userAgent, fetchViaProxy, allowSelfSignedCertificates)`
			`if err != nil {`
			`return nil, err`
			`}`
			`}`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`if strings.HasPrefix(feedIconURL, "data:") {`
			`return parseImageDataURL(feedIconURL)`
			`}`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`feedIconURL, err = generateIconURL(websiteURL, feedIconURL)`
			`if err != nil {`
			`return nil, err`
			`}`
Add option to allow self-signed or invalid certificates 2021-02-21 22:42:49 +01:00
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`if icon, err = downloadIcon(feedIconURL, userAgent, fetchViaProxy, allowSelfSignedCertificates); err != nil {`
			`return nil, err`
			`}`
First commit 2017-11-20 06:10:04 +01:00
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`return icon, nil`
			`}`

			`func generateIconURL(websiteURL, feedIconURL string) (iconURL string, err error) {`
			`feedIconURL = strings.TrimSpace(feedIconURL)`
First commit 2017-11-20 06:10:04 +01:00
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`if feedIconURL == "" {`
			`iconURL, err = urllib.JoinBaseURLAndPath(urllib.RootURL(websiteURL), "favicon.ico")`
Use image included in feed as feed icon 2023-06-05 00:01:59 +02:00			`if err != nil {`
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			return "", fmt.Errorf(`icon: unable to join base URL and path: %w`, err)
			`}`
			`} else {`
			`iconURL, err = urllib.AbsoluteURL(websiteURL, feedIconURL)`
			`if err != nil {`
			return "", fmt.Errorf(`icon: unable to convert icon URL to absolute URL: %w`, err)
Use image included in feed as feed icon 2023-06-05 00:01:59 +02:00			`}`
First commit 2017-11-20 06:10:04 +01:00			`}`

Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`return iconURL, nil`
			`}`

			`func fetchHTMLDocumentAndFindIconURL(websiteURL, userAgent string, fetchViaProxy, allowSelfSignedCertificates bool) (string, error) {`
			`rootURL := urllib.RootURL(websiteURL)`

			`clt := client.NewClientWithConfig(rootURL, config.Opts)`
			`clt.WithUserAgent(userAgent)`
			`clt.AllowSelfSignedCertificates = allowSelfSignedCertificates`

			`if fetchViaProxy {`
			`clt.WithProxy()`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`response, err := clt.Get()`
First commit 2017-11-20 06:10:04 +01:00			`if err != nil {`
Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`return "", fmt.Errorf("icon: unable to download website index page: %v", err)`
First commit 2017-11-20 06:10:04 +01:00			`}`

Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`if response.HasServerFailure() {`
			`return "", fmt.Errorf("icon: unable to download website index page: status=%d", response.StatusCode)`
			`}`

			`return findIconURLFromHTMLDocument(response.Body)`
First commit 2017-11-20 06:10:04 +01:00			`}`

Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`func findIconURLFromHTMLDocument(body io.Reader) (string, error) {`
First commit 2017-11-20 06:10:04 +01:00			`queries := []string{`
			`"link[rel='shortcut icon']",`
			`"link[rel='Shortcut Icon']",`
			`"link[rel='icon shortcut']",`
			`"link[rel='icon']",`
			`}`

Make sure icon URLs are always absolute Regression introduced in #1907 2023-09-09 23:18:39 +02:00			`doc, err := goquery.NewDocumentFromReader(body)`
First commit 2017-11-20 06:10:04 +01:00			`if err != nil {`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`return "", fmt.Errorf("icon: unable to read document: %v", err)`
First commit 2017-11-20 06:10:04 +01:00			`}`

			`var iconURL string`
			`for _, query := range queries {`
			`doc.Find(query).Each(func(i int, s *goquery.Selection) {`
			`if href, exists := s.Attr("href"); exists {`
Trim spaces around icon URLs 2020-11-07 02:11:52 +01:00			`iconURL = strings.TrimSpace(href)`
First commit 2017-11-20 06:10:04 +01:00			`}`
			`})`

			`if iconURL != "" {`
			`break`
			`}`
			`}`

			`return iconURL, nil`
			`}`

Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`func downloadIcon(iconURL, userAgent string, fetchViaProxy, allowSelfSignedCertificates bool) (*model.Icon, error) {`
http client: remove dependency on global config options 2020-09-27 23:29:48 +02:00			`clt := client.NewClientWithConfig(iconURL, config.Opts)`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`clt.WithUserAgent(userAgent)`
Add option to allow self-signed or invalid certificates 2021-02-21 22:42:49 +01:00			`clt.AllowSelfSignedCertificates = allowSelfSignedCertificates`
Add HTTP proxy option for subscriptions 2020-09-10 08:28:54 +02:00			`if fetchViaProxy {`
			`clt.WithProxy()`
			`}`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00
Move HTTP client to its own package 2018-04-28 19:51:07 +02:00			`response, err := clt.Get()`
First commit 2017-11-20 06:10:04 +01:00			`if err != nil {`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`return nil, fmt.Errorf("icon: unable to download iconURL: %v", err)`
First commit 2017-11-20 06:10:04 +01:00			`}`

			`if response.HasServerFailure() {`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`return nil, fmt.Errorf("icon: unable to download icon: status=%d", response.StatusCode)`
First commit 2017-11-20 06:10:04 +01:00			`}`

Remove deprecated io/ioutil package Miniflux now requires at least Go 1.16 and io/util is deprecated. https://golang.org/doc/go1.16#ioutil 2021-02-17 06:19:03 +01:00			`body, err := io.ReadAll(response.Body)`
First commit 2017-11-20 06:10:04 +01:00			`if err != nil {`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`return nil, fmt.Errorf("icon: unable to read downloaded icon: %v", err)`
First commit 2017-11-20 06:10:04 +01:00			`}`

			`if len(body) == 0 {`
Use custom feed user agent to fetch website icon 2022-01-09 00:09:12 +01:00			`return nil, fmt.Errorf("icon: downloaded icon is empty, iconURL=%s", iconURL)`
First commit 2017-11-20 06:10:04 +01:00			`}`

			`icon := &model.Icon{`
Rename helper packages 2018-01-03 04:15:08 +01:00			`Hash: crypto.HashFromBytes(body),`
First commit 2017-11-20 06:10:04 +01:00			`MimeType: response.ContentType,`
			`Content: body,`
			`}`

			`return icon, nil`
			`}`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`// https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/Data_URIs#syntax`
			`// data:[<mediatype>][;base64],<data>`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`func parseImageDataURL(value string) (*model.Icon, error) {`
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`var mediaType string`
			`var encoding string`

			`if !strings.HasPrefix(value, "data:") {`
			return nil, fmt.Errorf(`icon: invalid data URL (missing data:) %q`, value)
			`}`

			`value = value[5:]`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`comma := strings.Index(value, ",")`
			`if comma < 0 {`
			return nil, fmt.Errorf(`icon: invalid data URL (no comma) %q`, value)
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

			`data := value[comma+1:]`
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`semicolon := strings.Index(value[0:comma], ";")`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`if semicolon > 0 {`
			`mediaType = value[0:semicolon]`
			`encoding = value[semicolon+1 : comma]`
			`} else {`
			`mediaType = value[0:comma]`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`if !strings.HasPrefix(mediaType, "image/") {`
			return nil, fmt.Errorf(`icon: invalid media type %q`, mediaType)
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`var blob []byte`
			`switch encoding {`
			`case "base64":`
			`var err error`
			`blob, err = base64.StdEncoding.DecodeString(data)`
			`if err != nil {`
			return nil, fmt.Errorf(`icon: invalid data %q (%v)`, value, err)
			`}`
			`case "":`
Rename internal url package to avoid overlap with net/url 2023-08-14 04:09:01 +02:00			`decodedData, err := url.QueryUnescape(data)`
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`if err != nil {`
			return nil, fmt.Errorf(`icon: unable to decode data URL %q`, value)
			`}`
			`blob = []byte(decodedData)`
			`default:`
			return nil, fmt.Errorf(`icon: unsupported data URL encoding %q`, value)
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

			`if len(blob) == 0 {`
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			return nil, fmt.Errorf(`icon: empty data URL %q`, value)
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

			`icon := &model.Icon{`
Rename helper packages 2018-01-03 04:15:08 +01:00			`Hash: crypto.HashFromBytes(blob),`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`Content: blob,`
Fix invalid parsing of data URL Fetching icons crashes with "slice bounds out of range" error if no encoding is specified. 2022-03-26 06:05:19 +01:00			`MimeType: mediaType,`
Add support for data URL favicons 2017-12-23 04:01:39 +01:00			`}`

			`return icon, nil`
			`}`