2 * uhttpd - Tiny single-threaded httpd - Main component
4 * Copyright (C) 2010 Jo-Philipp Wich <xm@subsignal.org>
6 * Licensed under the Apache License, Version 2.0 (the "License");
7 * you may not use this file except in compliance with the License.
8 * You may obtain a copy of the License at
10 * http://www.apache.org/licenses/LICENSE-2.0
12 * Unless required by applicable law or agreed to in writing, software
13 * distributed under the License is distributed on an "AS IS" BASIS,
14 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 * See the License for the specific language governing permissions and
16 * limitations under the License.
19 #define _XOPEN_SOURCE 500 /* crypt() */
22 #include "uhttpd-utils.h"
23 #include "uhttpd-file.h"
26 #include "uhttpd-cgi.h"
30 #include "uhttpd-lua.h"
34 #include "uhttpd-tls.h"
40 static void uh_sigterm(int sig)
45 static void uh_config_parse(const char *path)
53 if( (c = fopen(path ? path : "/etc/httpd.conf", "r")) != NULL )
55 memset(line, 0, sizeof(line));
57 while( fgets(line, sizeof(line) - 1, c) )
59 if( (line[0] == '/') && (strchr(line, ':') != NULL) )
61 if( !(user = strchr(line, ':')) || (*user++ = 0) ||
62 !(pass = strchr(user, ':')) || (*pass++ = 0) ||
63 !(eol = strchr(pass, '\n')) || (*eol++ = 0) )
66 if( !uh_auth_add(line, user, pass) )
69 "Can not manage more than %i basic auth realms, "
70 "will skip the rest\n", UH_LIMIT_AUTHREALMS
82 static int uh_socket_bind(
83 fd_set *serv_fds, int *max_fd, const char *host, const char *port,
84 struct addrinfo *hints, int do_tls, struct config *conf
91 struct listener *l = NULL;
92 struct addrinfo *addrs = NULL, *p = NULL;
94 if( (status = getaddrinfo(host, port, hints, &addrs)) != 0 )
96 fprintf(stderr, "getaddrinfo(): %s\n", gai_strerror(status));
99 /* try to bind a new socket to each found address */
100 for( p = addrs; p; p = p->ai_next )
103 if( (sock = socket(p->ai_family, p->ai_socktype, p->ai_protocol)) == -1 )
109 /* "address already in use" */
110 if( setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &yes, sizeof(yes)) == -1 )
112 perror("setsockopt()");
116 /* required to get parallel v4 + v6 working */
117 if( p->ai_family == AF_INET6 )
119 if( setsockopt(sock, IPPROTO_IPV6, IPV6_V6ONLY, &yes, sizeof(yes)) == -1 )
121 perror("setsockopt()");
127 if( bind(sock, p->ai_addr, p->ai_addrlen) == -1 )
134 if( listen(sock, UH_LIMIT_CLIENTS) == -1 )
140 /* add listener to global list */
141 if( ! (l = uh_listener_add(sock, conf)) )
144 "uh_listener_add(): Can not create more than "
145 "%i listen sockets\n", UH_LIMIT_LISTENERS
153 l->tls = do_tls ? conf->tls : NULL;
156 /* add socket to server fd set */
157 FD_SET(sock, serv_fds);
158 *max_fd = max(*max_fd, sock);
173 static struct http_request * uh_http_header_parse(struct client *cl, char *buffer, int buflen)
175 char *method = &buffer[0];
177 char *version = NULL;
179 char *headers = NULL;
180 char *hdrname = NULL;
181 char *hdrdata = NULL;
186 static struct http_request req;
188 memset(&req, 0, sizeof(req));
191 /* terminate initial header line */
192 if( (headers = strfind(buffer, buflen, "\r\n", 2)) != NULL )
194 buffer[buflen-1] = 0;
199 /* find request path */
200 if( (path = strchr(buffer, ' ')) != NULL )
203 /* find http version */
204 if( (path != NULL) && ((version = strchr(path, ' ')) != NULL) )
209 if( strcmp(method, "GET") && strcmp(method, "HEAD") && strcmp(method, "POST") )
212 uh_http_response(cl, 405, "Method Not Allowed");
220 req.method = UH_HTTP_MSG_GET;
224 req.method = UH_HTTP_MSG_HEAD;
228 req.method = UH_HTTP_MSG_POST;
234 if( !path || !strlen(path) )
236 /* malformed request */
237 uh_http_response(cl, 400, "Bad Request");
246 if( strcmp(version, "HTTP/0.9") && strcmp(version, "HTTP/1.0") && strcmp(version, "HTTP/1.1") )
248 /* unsupported version */
249 uh_http_response(cl, 400, "Bad Request");
254 req.version = strtof(&version[5], NULL);
258 /* process header fields */
259 for( i = (int)(headers - buffer); i < buflen; i++ )
261 /* found eol and have name + value, push out header tuple */
262 if( hdrname && hdrdata && (buffer[i] == '\r' || buffer[i] == '\n') )
267 if( (hdrcount + 1) < array_size(req.headers) )
269 req.headers[hdrcount++] = hdrname;
270 req.headers[hdrcount++] = hdrdata;
272 hdrname = hdrdata = NULL;
278 uh_http_response(cl, 413, "Request Entity Too Large");
283 /* have name but no value and found a colon, start of value */
284 else if( hdrname && !hdrdata && ((i+2) < buflen) &&
285 (buffer[i] == ':') && (buffer[i+1] == ' ')
288 hdrdata = &buffer[i+2];
291 /* have no name and found [A-Z], start of name */
292 else if( !hdrname && isalpha(buffer[i]) && isupper(buffer[i]) )
294 hdrname = &buffer[i];
302 /* Malformed request */
303 uh_http_response(cl, 400, "Bad Request");
308 static struct http_request * uh_http_header_recv(struct client *cl)
310 static char buffer[UH_LIMIT_MSGHEAD];
311 char *bufptr = &buffer[0];
314 struct timeval timeout;
318 ssize_t blen = sizeof(buffer)-1;
322 memset(buffer, 0, sizeof(buffer));
327 FD_SET(cl->socket, &reader);
329 /* fail after 0.1s */
331 timeout.tv_usec = 100000;
333 /* check whether fd is readable */
334 if( select(cl->socket + 1, &reader, NULL, NULL, &timeout) > 0 )
337 rlen = uh_tcp_peek(cl, bufptr, blen);
341 if( (idxptr = strfind(buffer, sizeof(buffer), "\r\n\r\n", 4)) )
343 blen -= uh_tcp_recv(cl, bufptr, (int)(idxptr - bufptr) + 4);
345 /* header read complete ... */
346 return uh_http_header_parse(cl, buffer, sizeof(buffer) - blen - 1);
350 rlen = uh_tcp_recv(cl, bufptr, rlen);
357 /* invalid request (unexpected eof/timeout) */
358 uh_http_response(cl, 408, "Request Timeout");
364 /* invalid request (unexpected eof/timeout) */
365 uh_http_response(cl, 408, "Request Timeout");
370 /* request entity too large */
371 uh_http_response(cl, 413, "Request Entity Too Large");
375 static int uh_path_match(const char *prefix, const char *url)
377 if( (strstr(url, prefix) == url) &&
378 ((prefix[strlen(prefix)-1] == '/') ||
379 (strlen(url) == strlen(prefix)) ||
380 (url[strlen(prefix)] == '/'))
389 int main (int argc, char **argv)
396 /* master file descriptor list */
397 fd_set used_fds, serv_fds, read_fds;
399 /* working structs */
400 struct addrinfo hints;
401 struct http_request *req;
402 struct path_info *pin;
407 /* maximum file descriptor number */
408 int new_fd, cur_fd, max_fd = 0;
420 /* clear the master and temp sets */
425 /* handle SIGPIPE, SIGCHILD */
427 sigemptyset(&sa.sa_mask);
429 sa.sa_handler = SIG_IGN;
430 sigaction(SIGPIPE, &sa, NULL);
431 sigaction(SIGCHLD, &sa, NULL);
433 sa.sa_handler = uh_sigterm;
434 sigaction(SIGINT, &sa, NULL);
435 sigaction(SIGTERM, &sa, NULL);
437 /* prepare addrinfo hints */
438 memset(&hints, 0, sizeof(hints));
439 hints.ai_family = AF_UNSPEC;
440 hints.ai_socktype = SOCK_STREAM;
441 hints.ai_flags = AI_PASSIVE;
444 memset(&conf, 0, sizeof(conf));
445 memset(bind, 0, sizeof(bind));
448 /* init SSL context */
449 if( ! (conf.tls = uh_tls_ctx_init()) )
451 fprintf(stderr, "Failed to initalize SSL context\n");
456 while( (opt = getopt(argc, argv, "fC:K:p:s:h:c:l:L:d:r:m:x:")) > 0 )
463 if( (port = strrchr(optarg, ':')) != NULL )
465 if( (optarg[0] == '[') && (port > optarg) && (port[-1] == ']') )
466 memcpy(bind, optarg + 1,
467 min(sizeof(bind), (int)(port - optarg) - 2));
470 min(sizeof(bind), (int)(port - optarg)));
483 bound += uh_socket_bind(
484 &serv_fds, &max_fd, bind[0] ? bind : NULL, port,
493 if( SSL_CTX_use_certificate_file(conf.tls, optarg, SSL_FILETYPE_ASN1) < 1 )
495 fprintf(stderr, "Invalid certificate file given\n");
504 if( SSL_CTX_use_PrivateKey_file(conf.tls, optarg, SSL_FILETYPE_ASN1) < 1 )
506 fprintf(stderr, "Invalid private key file given\n");
516 if( ! realpath(optarg, conf.docroot) )
518 fprintf(stderr, "Invalid directory %s: %s\n", optarg, strerror(errno));
526 conf.cgi_prefix = optarg;
533 conf.lua_prefix = optarg;
538 conf.lua_handler = optarg;
549 if( (port = malloc(strlen(optarg)+1)) != NULL )
551 memset(port, 0, strlen(optarg)+1);
552 uh_urldecode(port, strlen(optarg), optarg, strlen(optarg));
559 /* basic auth realm */
566 printf("%s\n", crypt(optarg, "$1$"));
577 "Usage: %s -p [addr:]port [-h docroot]\n"
578 " -f Do not fork to background\n"
579 " -c file Configuration file, default is '/etc/httpd.conf'\n"
580 " -p [addr:]port Bind to specified address and port, multiple allowed\n"
582 " -s [addr:]port Like -p but provide HTTPS on this port\n"
583 " -C file ASN.1 server certificate file\n"
584 " -K file ASN.1 server private key file\n"
586 " -h directory Specify the document root, default is '.'\n"
588 " -l string URL prefix for Lua handler, default is '/lua'\n"
589 " -L file Lua handler script, omit to disable Lua\n"
592 " -x string URL prefix for CGI handler, default is '/cgi-bin'\n"
594 " -d string URL decode given string\n"
595 " -r string Specify basic auth realm\n"
596 " -m string MD5 crypt given string\n"
605 if( (tls == 1) && (keys < 2) )
607 fprintf(stderr, "Missing private key or certificate file\n");
614 fprintf(stderr, "No sockets bound, unable to continue\n");
618 /* default docroot */
619 if( !conf.docroot[0] && !realpath(".", conf.docroot) )
621 fprintf(stderr, "Can not determine default document root: %s\n",
628 conf.realm = "Protected Area";
631 uh_config_parse(conf.file);
634 /* default cgi prefix */
635 if( ! conf.cgi_prefix )
636 conf.cgi_prefix = "/cgi-bin";
640 /* init Lua runtime if handler is specified */
641 if( conf.lua_handler )
643 /* default lua prefix */
644 if( ! conf.lua_prefix )
645 conf.lua_prefix = "/lua";
647 L = uh_lua_init(conf.lua_handler);
651 /* fork (if not disabled) */
665 if( (cur_fd = open("/dev/null", O_WRONLY)) > -1 )
668 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
671 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
681 /* backup server descriptor set */
687 /* create a working copy of the used fd set */
690 /* sleep until socket activity */
691 if( select(max_fd + 1, &read_fds, NULL, NULL, NULL) == -1 )
697 /* run through the existing connections looking for data to be read */
698 for( cur_fd = 0; cur_fd <= max_fd; cur_fd++ )
700 /* is a socket managed by us */
701 if( FD_ISSET(cur_fd, &read_fds) )
703 /* is one of our listen sockets */
704 if( FD_ISSET(cur_fd, &serv_fds) )
706 /* handle new connections */
707 if( (new_fd = accept(cur_fd, NULL, 0)) != -1 )
709 /* add to global client list */
710 if( (cl = uh_client_add(new_fd, uh_listener_lookup(cur_fd))) != NULL )
713 /* setup client tls context */
714 uh_tls_client_accept(cl);
717 /* add client socket to global fdset */
718 FD_SET(new_fd, &used_fds);
719 max_fd = max(max_fd, new_fd);
722 /* insufficient resources */
726 "uh_client_add(): Can not manage more than "
727 "%i client sockets, connection dropped\n",
736 /* is a client socket */
739 if( ! (cl = uh_client_lookup(cur_fd)) )
741 /* this should not happen! */
743 "uh_client_lookup(): No entry for fd %i!\n",
749 /* parse message header */
750 if( (req = uh_http_header_recv(cl)) != NULL )
754 if( L && uh_path_match(conf.lua_prefix, req->url) )
756 uh_lua_request(cl, req, L);
760 /* dispatch request */
761 if( (pin = uh_path_lookup(cl, req->url)) != NULL )
764 if( uh_auth_check(cl, req, pin) )
767 if( uh_path_match(conf.cgi_prefix, pin->name) )
769 uh_cgi_request(cl, req, pin);
774 uh_file_request(cl, req, pin);
782 uh_http_sendhf(cl, 404, "Not Found",
783 "No such file or directory");
790 uh_http_sendhf(cl, 400, "Bad Request",
791 "Malformed request received");
795 /* free client tls context */
796 uh_tls_client_close(cl);
801 /* close client socket */
803 FD_CLR(cur_fd, &used_fds);
805 /* remove from global client list */
806 uh_client_remove(cur_fd);
813 /* destroy the Lua state */