2 * uhttpd - Tiny single-threaded httpd - Main component
4 * Copyright (C) 2010 Jo-Philipp Wich <xm@subsignal.org>
6 * Licensed under the Apache License, Version 2.0 (the "License");
7 * you may not use this file except in compliance with the License.
8 * You may obtain a copy of the License at
10 * http://www.apache.org/licenses/LICENSE-2.0
12 * Unless required by applicable law or agreed to in writing, software
13 * distributed under the License is distributed on an "AS IS" BASIS,
14 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 * See the License for the specific language governing permissions and
16 * limitations under the License.
19 #define _XOPEN_SOURCE 500 /* crypt() */
22 #include "uhttpd-utils.h"
23 #include "uhttpd-file.h"
26 #include "uhttpd-cgi.h"
30 #include "uhttpd-lua.h"
34 #include "uhttpd-tls.h"
40 static void uh_sigterm(int sig)
45 static void uh_config_parse(const char *path)
53 if( (c = fopen(path ? path : "/etc/httpd.conf", "r")) != NULL )
55 memset(line, 0, sizeof(line));
57 while( fgets(line, sizeof(line) - 1, c) )
59 if( (line[0] == '/') && (strchr(line, ':') != NULL) )
61 if( !(user = strchr(line, ':')) || (*user++ = 0) ||
62 !(pass = strchr(user, ':')) || (*pass++ = 0) ||
63 !(eol = strchr(pass, '\n')) || (*eol++ = 0) )
66 if( !uh_auth_add(line, user, pass) )
69 "Can not manage more than %i basic auth realms, "
70 "will skip the rest\n", UH_LIMIT_AUTHREALMS
82 static int uh_socket_bind(
83 fd_set *serv_fds, int *max_fd, const char *host, const char *port,
84 struct addrinfo *hints, int do_tls, struct config *conf
91 struct listener *l = NULL;
92 struct addrinfo *addrs = NULL, *p = NULL;
94 if( (status = getaddrinfo(host, port, hints, &addrs)) != 0 )
96 fprintf(stderr, "getaddrinfo(): %s\n", gai_strerror(status));
99 /* try to bind a new socket to each found address */
100 for( p = addrs; p; p = p->ai_next )
103 if( (sock = socket(p->ai_family, p->ai_socktype, p->ai_protocol)) == -1 )
109 /* "address already in use" */
110 if( setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &yes, sizeof(yes)) == -1 )
112 perror("setsockopt()");
116 /* required to get parallel v4 + v6 working */
117 if( p->ai_family == AF_INET6 )
119 if( setsockopt(sock, IPPROTO_IPV6, IPV6_V6ONLY, &yes, sizeof(yes)) == -1 )
121 perror("setsockopt()");
127 if( bind(sock, p->ai_addr, p->ai_addrlen) == -1 )
134 if( listen(sock, UH_LIMIT_CLIENTS) == -1 )
140 /* add listener to global list */
141 if( ! (l = uh_listener_add(sock, conf)) )
144 "uh_listener_add(): Can not create more than "
145 "%i listen sockets\n", UH_LIMIT_LISTENERS
153 l->tls = do_tls ? conf->tls : NULL;
156 /* add socket to server fd set */
157 FD_SET(sock, serv_fds);
158 *max_fd = max(*max_fd, sock);
173 static struct http_request * uh_http_header_parse(struct client *cl, char *buffer, int buflen)
175 char *method = &buffer[0];
177 char *version = NULL;
179 char *headers = NULL;
180 char *hdrname = NULL;
181 char *hdrdata = NULL;
186 static struct http_request req;
188 memset(&req, 0, sizeof(req));
191 /* terminate initial header line */
192 if( (headers = strfind(buffer, buflen, "\r\n", 2)) != NULL )
194 buffer[buflen-1] = 0;
199 /* find request path */
200 if( (path = strchr(buffer, ' ')) != NULL )
203 /* find http version */
204 if( (path != NULL) && ((version = strchr(path, ' ')) != NULL) )
209 if( strcmp(method, "GET") && strcmp(method, "HEAD") && strcmp(method, "POST") )
212 uh_http_response(cl, 405, "Method Not Allowed");
220 req.method = UH_HTTP_MSG_GET;
224 req.method = UH_HTTP_MSG_HEAD;
228 req.method = UH_HTTP_MSG_POST;
234 if( !path || !strlen(path) )
236 /* malformed request */
237 uh_http_response(cl, 400, "Bad Request");
246 if( strcmp(version, "HTTP/0.9") && strcmp(version, "HTTP/1.0") && strcmp(version, "HTTP/1.1") )
248 /* unsupported version */
249 uh_http_response(cl, 400, "Bad Request");
254 req.version = strtof(&version[5], NULL);
258 /* process header fields */
259 for( i = (int)(headers - buffer); i < buflen; i++ )
261 /* found eol and have name + value, push out header tuple */
262 if( hdrname && hdrdata && (buffer[i] == '\r' || buffer[i] == '\n') )
267 if( (hdrcount + 1) < array_size(req.headers) )
269 req.headers[hdrcount++] = hdrname;
270 req.headers[hdrcount++] = hdrdata;
272 hdrname = hdrdata = NULL;
278 uh_http_response(cl, 413, "Request Entity Too Large");
283 /* have name but no value and found a colon, start of value */
284 else if( hdrname && !hdrdata && ((i+2) < buflen) &&
285 (buffer[i] == ':') && (buffer[i+1] == ' ')
288 hdrdata = &buffer[i+2];
291 /* have no name and found [A-Z], start of name */
292 else if( !hdrname && isalpha(buffer[i]) && isupper(buffer[i]) )
294 hdrname = &buffer[i];
302 /* Malformed request */
303 uh_http_response(cl, 400, "Bad Request");
308 static struct http_request * uh_http_header_recv(struct client *cl)
310 static char buffer[UH_LIMIT_MSGHEAD];
311 char *bufptr = &buffer[0];
314 struct timeval timeout;
318 ssize_t blen = sizeof(buffer)-1;
322 memset(buffer, 0, sizeof(buffer));
327 FD_SET(cl->socket, &reader);
329 /* fail after 0.1s */
331 timeout.tv_usec = 100000;
333 /* check whether fd is readable */
334 if( select(cl->socket + 1, &reader, NULL, NULL, &timeout) > 0 )
337 rlen = uh_tcp_peek(cl, bufptr, blen);
341 if( (idxptr = strfind(buffer, sizeof(buffer), "\r\n\r\n", 4)) )
343 blen -= uh_tcp_recv(cl, bufptr, (int)(idxptr - bufptr) + 4);
345 /* header read complete ... */
346 return uh_http_header_parse(cl, buffer, sizeof(buffer) - blen - 1);
350 rlen = uh_tcp_recv(cl, bufptr, rlen);
357 /* invalid request (unexpected eof/timeout) */
358 uh_http_response(cl, 408, "Request Timeout");
364 /* invalid request (unexpected eof/timeout) */
365 uh_http_response(cl, 408, "Request Timeout");
370 /* request entity too large */
371 uh_http_response(cl, 413, "Request Entity Too Large");
375 static int uh_path_match(const char *prefix, const char *url)
377 if( (strstr(url, prefix) == url) &&
378 ((prefix[strlen(prefix)-1] == '/') ||
379 (strlen(url) == strlen(prefix)) ||
380 (url[strlen(prefix)] == '/'))
389 int main (int argc, char **argv)
396 /* master file descriptor list */
397 fd_set used_fds, serv_fds, read_fds;
399 /* working structs */
400 struct addrinfo hints;
401 struct http_request *req;
402 struct path_info *pin;
407 /* maximum file descriptor number */
408 int new_fd, cur_fd, max_fd = 0;
420 /* library handles */
424 /* clear the master and temp sets */
429 /* handle SIGPIPE, SIGCHILD */
431 sigemptyset(&sa.sa_mask);
433 sa.sa_handler = SIG_IGN;
434 sigaction(SIGPIPE, &sa, NULL);
435 sigaction(SIGCHLD, &sa, NULL);
437 sa.sa_handler = uh_sigterm;
438 sigaction(SIGINT, &sa, NULL);
439 sigaction(SIGTERM, &sa, NULL);
441 /* prepare addrinfo hints */
442 memset(&hints, 0, sizeof(hints));
443 hints.ai_family = AF_UNSPEC;
444 hints.ai_socktype = SOCK_STREAM;
445 hints.ai_flags = AI_PASSIVE;
448 memset(&conf, 0, sizeof(conf));
449 memset(bind, 0, sizeof(bind));
452 /* load TLS plugin */
453 if( ! (tls_lib = dlopen("uhttpd_tls.so", RTLD_LAZY | RTLD_GLOBAL)) )
456 "Notice: Unable to load TLS plugin - disabling SSL support! "
457 "(Reason: %s)\n", dlerror()
462 /* resolve functions */
463 if( !(conf.tls_init = dlsym(tls_lib, "uh_tls_ctx_init")) ||
464 !(conf.tls_cert = dlsym(tls_lib, "uh_tls_ctx_cert")) ||
465 !(conf.tls_key = dlsym(tls_lib, "uh_tls_ctx_key")) ||
466 !(conf.tls_free = dlsym(tls_lib, "uh_tls_ctx_free")) ||
467 !(conf.tls_accept = dlsym(tls_lib, "uh_tls_client_accept")) ||
468 !(conf.tls_close = dlsym(tls_lib, "uh_tls_client_close")) ||
469 !(conf.tls_recv = dlsym(tls_lib, "uh_tls_client_recv")) ||
470 !(conf.tls_send = dlsym(tls_lib, "uh_tls_client_send"))
473 "Error: Failed to lookup required symbols "
474 "in TLS plugin: %s\n", dlerror()
479 /* init SSL context */
480 if( ! (conf.tls = conf.tls_init()) )
482 fprintf(stderr, "Error: Failed to initalize SSL context\n");
488 while( (opt = getopt(argc, argv, "fC:K:p:s:h:c:l:L:d:r:m:x:")) > 0 )
495 if( (port = strrchr(optarg, ':')) != NULL )
497 if( (optarg[0] == '[') && (port > optarg) && (port[-1] == ']') )
498 memcpy(bind, optarg + 1,
499 min(sizeof(bind), (int)(port - optarg) - 2));
502 min(sizeof(bind), (int)(port - optarg)));
516 "Notice: TLS support is disabled, "
517 "ignoring '-s %s'\n", optarg
526 bound += uh_socket_bind(
527 &serv_fds, &max_fd, bind[0] ? bind : NULL, port,
528 &hints, (opt == 's'), &conf
538 if( conf.tls_cert(conf.tls, optarg) < 1 )
541 "Error: Invalid certificate file given\n");
554 if( conf.tls_key(conf.tls, optarg) < 1 )
557 "Error: Invalid private key file given\n");
569 if( ! realpath(optarg, conf.docroot) )
571 fprintf(stderr, "Error: Invalid directory %s: %s\n",
572 optarg, strerror(errno));
580 conf.cgi_prefix = optarg;
587 conf.lua_prefix = optarg;
592 conf.lua_handler = optarg;
603 if( (port = malloc(strlen(optarg)+1)) != NULL )
605 memset(port, 0, strlen(optarg)+1);
606 uh_urldecode(port, strlen(optarg), optarg, strlen(optarg));
613 /* basic auth realm */
620 printf("%s\n", crypt(optarg, "$1$"));
631 "Usage: %s -p [addr:]port [-h docroot]\n"
632 " -f Do not fork to background\n"
633 " -c file Configuration file, default is '/etc/httpd.conf'\n"
634 " -p [addr:]port Bind to specified address and port, multiple allowed\n"
636 " -s [addr:]port Like -p but provide HTTPS on this port\n"
637 " -C file ASN.1 server certificate file\n"
638 " -K file ASN.1 server private key file\n"
640 " -h directory Specify the document root, default is '.'\n"
642 " -l string URL prefix for Lua handler, default is '/lua'\n"
643 " -L file Lua handler script, omit to disable Lua\n"
646 " -x string URL prefix for CGI handler, default is '/cgi-bin'\n"
648 " -d string URL decode given string\n"
649 " -r string Specify basic auth realm\n"
650 " -m string MD5 crypt given string\n"
659 if( (tls == 1) && (keys < 2) )
661 fprintf(stderr, "Error: Missing private key or certificate file\n");
668 fprintf(stderr, "Error: No sockets bound, unable to continue\n");
672 /* default docroot */
673 if( !conf.docroot[0] && !realpath(".", conf.docroot) )
675 fprintf(stderr, "Error: Can not determine default document root: %s\n",
682 conf.realm = "Protected Area";
685 uh_config_parse(conf.file);
688 /* default cgi prefix */
689 if( ! conf.cgi_prefix )
690 conf.cgi_prefix = "/cgi-bin";
694 /* load Lua plugin */
695 if( ! (lua_lib = dlopen("uhttpd_lua.so", RTLD_LAZY | RTLD_GLOBAL)) )
698 "Notice: Unable to load Lua plugin - disabling Lua support! "
699 "(Reason: %s)\n", dlerror()
704 /* resolve functions */
705 if( !(conf.lua_init = dlsym(lua_lib, "uh_lua_init")) ||
706 !(conf.lua_close = dlsym(lua_lib, "uh_lua_close")) ||
707 !(conf.lua_request = dlsym(lua_lib, "uh_lua_request"))
710 "Error: Failed to lookup required symbols "
711 "in Lua plugin: %s\n", dlerror()
716 /* init Lua runtime if handler is specified */
717 if( conf.lua_handler )
719 /* default lua prefix */
720 if( ! conf.lua_prefix )
721 conf.lua_prefix = "/lua";
723 L = conf.lua_init(conf.lua_handler);
728 /* fork (if not disabled) */
742 if( (cur_fd = open("/dev/null", O_WRONLY)) > -1 )
745 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
748 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
758 /* backup server descriptor set */
764 /* create a working copy of the used fd set */
767 /* sleep until socket activity */
768 if( select(max_fd + 1, &read_fds, NULL, NULL, NULL) == -1 )
774 /* run through the existing connections looking for data to be read */
775 for( cur_fd = 0; cur_fd <= max_fd; cur_fd++ )
777 /* is a socket managed by us */
778 if( FD_ISSET(cur_fd, &read_fds) )
780 /* is one of our listen sockets */
781 if( FD_ISSET(cur_fd, &serv_fds) )
783 /* handle new connections */
784 if( (new_fd = accept(cur_fd, NULL, 0)) != -1 )
786 /* add to global client list */
787 if( (cl = uh_client_add(new_fd, uh_listener_lookup(cur_fd))) != NULL )
790 /* setup client tls context */
795 /* add client socket to global fdset */
796 FD_SET(new_fd, &used_fds);
797 max_fd = max(max_fd, new_fd);
800 /* insufficient resources */
804 "uh_client_add(): Can not manage more than "
805 "%i client sockets, connection dropped\n",
814 /* is a client socket */
817 if( ! (cl = uh_client_lookup(cur_fd)) )
819 /* this should not happen! */
821 "uh_client_lookup(): No entry for fd %i!\n",
827 /* parse message header */
828 if( (req = uh_http_header_recv(cl)) != NULL )
832 if( L && uh_path_match(conf.lua_prefix, req->url) )
834 conf.lua_request(cl, req, L);
838 /* dispatch request */
839 if( (pin = uh_path_lookup(cl, req->url)) != NULL )
842 if( uh_auth_check(cl, req, pin) )
845 if( uh_path_match(conf.cgi_prefix, pin->name) )
847 uh_cgi_request(cl, req, pin);
852 uh_file_request(cl, req, pin);
860 uh_http_sendhf(cl, 404, "Not Found",
861 "No such file or directory");
868 uh_http_sendhf(cl, 400, "Bad Request",
869 "Malformed request received");
873 /* free client tls context */
880 /* close client socket */
882 FD_CLR(cur_fd, &used_fds);
884 /* remove from global client list */
885 uh_client_remove(cur_fd);
892 /* destroy the Lua state */
projects / project / luci.git / blob