2 * httpd implementation for busybox
4 * Copyright (C) 2002,2003 Glenn Engel <glenne@engel.org>
5 * Copyright (C) 2003 Vladimir Oleynik <dzo@simtreas.ru>
7 * simplify patch stolen from libbb without using strdup
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 * General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23 *****************************************************************************
27 * httpd -p 8080 -h $HOME/public_html
28 * or for daemon start from rc script with uid=0:
30 * This is equivalent if www user have uid=80 to
31 * httpd -p 80 -u 80 -h /www -c /etc/httpd.conf -r "Web Server Authentication"
34 * When a url contains "cgi-bin" it is assumed to be a cgi script. The
35 * server changes directory to the location of the script and executes it
36 * after setting QUERY_STRING and other environment variables. If url args
37 * are included in the url or as a post, the args are placed into decoded
38 * environment variables. e.g. /cgi-bin/setup?foo=Hello%20World will set
39 * the $CGI_foo environment variable to "Hello World" while
40 * CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV enabled.
42 * The server can also be invoked as a url arg decoder and html text encoder
44 * foo=`httpd -d $foo` # decode "Hello%20World" as "Hello World"
45 * bar=`httpd -e "<Hello World>"` # encode as "<Hello World>"
46 * Note that url encoding for arguments is not the same as html encoding for
47 * presenation. -d decodes a url-encoded argument while -e encodes in html
50 * httpd.conf has the following format:
52 * A:172.20. # Allow any address that begins with 172.20
53 * A:10.10. # Allow any address that begins with 10.10.
54 * A:10.20 # Allow any address that previous set and 10.200-209.X.X
55 * A:127.0.0.1 # Allow local loopback connections
56 * D:* # Deny from other IP connections
57 * /cgi-bin:foo:bar # Require user foo, pwd bar on urls starting with /cgi-bin/
58 * /adm:admin:setup # Require user admin, pwd setup on urls starting with /adm/
59 * /adm:toor:PaSsWd # or user toor, pwd PaSsWd on urls starting with /adm/
60 * .au:audio/basic # additional mime type for audio.au files
62 * A/D may be as a/d or allow/deny - first char case unsensitive
63 * Deny IP rules take precedence over allow rules.
66 * The Deny/Allow IP logic:
68 * - Default is to allow all. No addresses are denied unless
69 * denied with a D: rule.
70 * - Order of Deny/Allow rules is significant
71 * - Deny rules take precedence over allow rules.
72 * - If a deny all rule (D:*) is used it acts as a catch-all for unmatched
74 * - Specification of Allow all (A:*) is a no-op
77 * 1. Allow only specified addresses
78 * A:172.20. # Allow any address that begins with 172.20
79 * A:10.10. # Allow any address that begins with 10.10.
80 * A:10.10 # Allow any address that previous set and 10.100-109.X.X
81 * A:127.0.0.1 # Allow local loopback connections
82 * D:* # Deny from other IP connections
84 * 2. Only deny specified addresses
85 * D:1.2.3. # deny from 1.2.3.0 - 1.2.3.255
86 * D:2.3.4. # deny from 2.3.4.0 - 2.3.4.255
87 * A:* # (optional line added for clarity)
89 * If a sub directory contains a config file it is parsed and merged with
90 * any existing settings as if it was appended to the original configuration
91 * except that all previous IP config rules are discarded.
93 * subdir paths are relative to the containing subdir and thus cannot
94 * affect the parent rules.
96 * Note that since the sub dir is parsed in the forked thread servicing the
97 * subdir http request, any merge is discarded when the process exits. As a
98 * result, the subdir settings only have a lifetime of a single request.
101 * If -c is not set, an attempt will be made to open the default
102 * root configuration file. If -c is set and the file is not found, the
103 * server exits with an error.
109 #include <ctype.h> /* for isspace */
111 #include <stdlib.h> /* for malloc */
113 #include <unistd.h> /* for close */
115 #include <sys/types.h>
116 #include <sys/socket.h> /* for connect and socket*/
117 #include <netinet/in.h> /* for sockaddr_in */
118 #include <sys/time.h>
119 #include <sys/stat.h>
120 #include <sys/wait.h>
121 #include <fcntl.h> /* for open modes */
125 static const char httpdVersion[] = "busybox httpd/1.28 22-Jun-2003";
126 static const char default_path_httpd_conf[] = "/etc";
127 static const char httpd_conf[] = "httpd.conf";
128 static const char home[] = "./";
130 // Note: bussybox xfuncs are not used because we want the server to keep running
131 // if something bad happens due to a malformed user request.
132 // As a result, all memory allocation after daemonize
133 // is checked rigorously
137 /* Configure options, disabled by default as custom httpd feature */
139 /* disabled as optional features */
140 //#define CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV
141 //#define CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
142 //#define CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV
143 //#define CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
144 //#define CONFIG_FEATURE_HTTPD_SETUID
145 //#define CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
147 /* If set, use this server from internet superserver only */
148 //#define CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
150 /* You can use this server as standalone, require libbb.a for linking */
151 //#define HTTPD_STANDALONE
153 /* Config options, disable this for do very small module */
154 //#define CONFIG_FEATURE_HTTPD_CGI
155 //#define CONFIG_FEATURE_HTTPD_BASIC_AUTH
157 #ifdef HTTPD_STANDALONE
158 /* standalone, enable all features */
159 #undef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
160 /* unset config option for remove warning as redefined */
161 #undef CONFIG_FEATURE_HTTPD_BASIC_AUTH
162 #undef CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV
163 #undef CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
164 #undef CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV
165 #undef CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
166 #undef CONFIG_FEATURE_HTTPD_CGI
167 #undef CONFIG_FEATURE_HTTPD_SETUID
168 #undef CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
169 /* enable all features now */
170 #define CONFIG_FEATURE_HTTPD_BASIC_AUTH
171 #define CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV
172 #define CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
173 #define CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV
174 #define CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
175 #define CONFIG_FEATURE_HTTPD_CGI
176 #define CONFIG_FEATURE_HTTPD_SETUID
177 #define CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
179 /* require from libbb.a for linking */
180 const char *bb_applet_name = "httpd";
182 void bb_show_usage(void)
184 fprintf(stderr, "Usage: %s [-p <port>] [-c configFile] [-d/-e <string>] "
185 "[-r realm] [-u user] [-h homedir]\n", bb_applet_name);
190 #ifdef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
191 #undef CONFIG_FEATURE_HTTPD_SETUID /* use inetd user.group config settings */
192 #undef CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP /* so is not daemon */
193 /* inetd set stderr to accepted socket and we can`t true see debug messages */
197 /* CGI environ size */
198 #ifdef CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV
199 #define ENVSIZE 70 /* set max CGI variable */
201 #define ENVSIZE 15 /* minimal requires */
204 #define MAX_POST_SIZE (64*1024) /* 64k. Its Small? May be ;) */
206 #define MAX_MEMORY_BUFF 8192 /* IO buffer */
208 typedef struct HT_ACCESS {
210 struct HT_ACCESS *next;
211 char before_colon[1]; /* really bigger, must last */
216 #ifdef CONFIG_FEATURE_HTTPD_CGI
217 char *envp[ENVSIZE+1];
220 char buf[MAX_MEMORY_BUFF];
222 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
225 const char *configFile;
227 char rmt_ip[16]; /* for set env REMOTE_ADDR */
228 unsigned port; /* server initial port and for
229 set env REMOTE_PORT */
231 const char *found_mime_type;
232 off_t ContentLength; /* -1 - unknown */
235 Htaccess *ip_a_d; /* config allow/deny lines */
237 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
238 Htaccess *auth; /* config user:password lines */
240 #ifdef CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
241 Htaccess *mime_a; /* config mime types */
244 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
246 #define a_c_r config->accepted_socket
247 #define a_c_w config->accepted_socket
248 int debugHttpd; /* if seted, don`t stay daemon */
255 static HttpdConfig *config;
257 static const char request_GET[] = "GET"; /* size algorithic optimize */
259 static const char* const suffixTable [] = {
260 /* Warning: shorted equalent suffix in one line must be first */
261 ".htm.html", "text/html",
262 ".jpg.jpeg", "image/jpeg",
265 ".txt.h.c.cc.cpp", "text/plain",
268 ".avi", "video/x-msvideo",
269 ".qt.mov", "video/quicktime",
270 ".mpe.mpeg", "video/mpeg",
271 ".mid.midi", "audio/midi",
272 ".mp3", "audio/mpeg",
273 #if 0 /* unpopular */
274 ".au", "audio/basic",
275 ".pac", "application/x-ns-proxy-autoconfig",
276 ".vrml.wrl", "model/vrml",
278 0, "application/octet-stream" /* default */
284 HTTP_UNAUTHORIZED = 401, /* authentication needed, respond with auth hdr */
285 HTTP_NOT_FOUND = 404,
286 HTTP_NOT_IMPLEMENTED = 501, /* used for unrecognized requests */
287 HTTP_BAD_REQUEST = 400, /* malformed syntax */
288 HTTP_FORBIDDEN = 403,
289 HTTP_INTERNAL_SERVER_ERROR = 500,
290 #if 0 /* future use */
292 HTTP_SWITCHING_PROTOCOLS = 101,
295 HTTP_NON_AUTHORITATIVE_INFO = 203,
296 HTTP_NO_CONTENT = 204,
297 HTTP_MULTIPLE_CHOICES = 300,
298 HTTP_MOVED_PERMANENTLY = 301,
299 HTTP_MOVED_TEMPORARILY = 302,
300 HTTP_NOT_MODIFIED = 304,
301 HTTP_PAYMENT_REQUIRED = 402,
302 HTTP_BAD_GATEWAY = 502,
303 HTTP_SERVICE_UNAVAILABLE = 503, /* overload, maintenance */
304 HTTP_RESPONSE_SETSIZE=0xffffffff
310 HttpResponseNum type;
315 static const HttpEnumString httpResponseNames[] = {
317 { HTTP_NOT_IMPLEMENTED, "Not Implemented",
318 "The requested method is not recognized by this server." },
319 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
320 { HTTP_UNAUTHORIZED, "Unauthorized", "" },
322 { HTTP_NOT_FOUND, "Not Found",
323 "The requested URL was not found on this server." },
324 { HTTP_BAD_REQUEST, "Bad Request", "Unsupported method." },
325 { HTTP_FORBIDDEN, "Forbidden", "" },
326 { HTTP_INTERNAL_SERVER_ERROR, "Internal Server Error",
327 "Internal Server Error" },
328 #if 0 /* not implemented */
329 { HTTP_CREATED, "Created" },
330 { HTTP_ACCEPTED, "Accepted" },
331 { HTTP_NO_CONTENT, "No Content" },
332 { HTTP_MULTIPLE_CHOICES, "Multiple Choices" },
333 { HTTP_MOVED_PERMANENTLY, "Moved Permanently" },
334 { HTTP_MOVED_TEMPORARILY, "Moved Temporarily" },
335 { HTTP_NOT_MODIFIED, "Not Modified" },
336 { HTTP_BAD_GATEWAY, "Bad Gateway", "" },
337 { HTTP_SERVICE_UNAVAILABLE, "Service Unavailable", "" },
342 static const char RFC1123FMT[] = "%a, %d %b %Y %H:%M:%S GMT";
343 static const char Content_length[] = "Content-length:";
347 static void free_config_lines(Htaccess **pprev)
349 Htaccess *prev = *pprev;
352 Htaccess *cur = prev;
361 #define FIRST_PARSE 0
362 #define SUBDIR_PARSE 1
363 #define SIGNALED_PARSE 2
364 #define FIND_FROM_HTTPD_ROOT 3
365 /****************************************************************************
367 > $Function: parse_conf()
369 * $Description: parse configuration file into in-memory linked list.
371 * The first non-white character is examined to determine if the config line
372 * is one of the following:
373 * .ext:mime/type # new mime type not compiled into httpd
374 * [adAD]:from # ip address allow/deny, * for wildcard
375 * /path:user:pass # username/password
377 * Any previous IP rules are discarded.
378 * If the flag argument is not SUBDIR_PARSE then all /path and mime rules
379 * are also discarded. That is, previous settings are retained if flag is
383 * (const char *) path . . null for ip address checks, path for password
385 * (int) flag . . . . . . the source of the parse request.
389 ****************************************************************************/
390 static void parse_conf(const char *path, int flag)
394 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
398 const char *cf = config->configFile;
403 /* free previous ip setup if present */
404 free_config_lines(&config->ip_a_d);
405 config->flg_deny_all = 0;
406 /* retain previous auth and mime config only for subdir parse */
407 if(flag != SUBDIR_PARSE) {
408 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
409 free_config_lines(&config->auth)
411 ; /* appease compiler warnings if option is not set */
412 #ifdef CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
413 free_config_lines(&config->mime_a);
417 if(flag == SUBDIR_PARSE || cf == NULL) {
418 cf = alloca(strlen(path) + sizeof(httpd_conf) + 2);
420 if(flag == FIRST_PARSE)
421 bb_error_msg_and_die(bb_msg_memory_exhausted);
424 sprintf((char *)cf, "%s/%s", path, httpd_conf);
427 while((f = fopen(cf, "r")) == NULL) {
428 if(flag != FIRST_PARSE) {
429 /* config file not found, no changes to config */
432 if(config->configFile) /* if -c option given */
433 bb_perror_msg_and_die("%s", cf);
434 flag = FIND_FROM_HTTPD_ROOT;
438 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
441 /* This could stand some work */
442 while ( (p0 = fgets(buf, sizeof(buf), f)) != NULL) {
444 for(p = p0; *p0 != 0 && *p0 != '#'; p0++) {
447 if(*p0 == ':' && c == NULL)
453 /* test for empty or strange line */
454 if (c == NULL || *c == 0)
461 /* memorize deny all */
462 config->flg_deny_all++;
464 /* skip default other "word:*" config lines */
471 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
474 #ifdef CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
480 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
482 /* make full path from httpd root / curent_path / config_line_path */
483 cf = flag == SUBDIR_PARSE ? path : "";
484 p0 = malloc(strlen(cf) + (c - buf) + 2 + strlen(c));
488 sprintf(p0, "/%s%s", cf, buf);
490 /* another call bb_simplify_path */
495 if (*cf == '/') { /* skip duplicate (or initial) slash */
497 } else if (*cf == '.') {
498 if (cf[1] == '/' || cf[1] == 0) { /* remove extra '.' */
500 } else if ((cf[1] == '.') && (cf[2] == '/' || cf[2] == 0)) {
503 while (*--p != '/'); /* omit previous dir */
512 if ((p == p0) || (*p != '/')) { /* not a trailing slash */
513 ++p; /* so keep last character */
516 sprintf(p0, "%s:%s", p0, c);
519 /* storing current config line */
521 cur = calloc(1, sizeof(Htaccess) + strlen(p0));
523 cf = strcpy(cur->before_colon, p0);
526 cur->after_colon = c;
527 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
531 if(*cf == 'A' || *cf == 'D') {
533 /* Deny:form_IP move top */
534 cur->next = config->ip_a_d;
535 config->ip_a_d = cur;
537 /* add to bottom A:form_IP config line */
538 Htaccess *prev_IP = config->ip_a_d;
540 if(prev_IP == NULL) {
541 config->ip_a_d = cur;
544 prev_IP = prev_IP->next;
549 #ifdef CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
550 else if(*cf == '.') {
551 /* config .mime line move top for overwrite previous */
552 cur->next = config->mime_a;
553 config->mime_a = cur;
557 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
558 else if(prev == NULL) {
560 config->auth = prev = cur;
562 /* sort path, if current lenght eq or bigger then move up */
563 Htaccess *prev_hti = config->auth;
567 for(hti = prev_hti; hti; hti = hti->next) {
568 if(l >= strlen(hti->before_colon)) {
569 /* insert before hti */
571 if(prev_hti != hti) {
572 prev_hti->next = cur;
580 prev_hti = prev_hti->next;
582 if(!hti) { /* not inserted, add to bottom */
593 #ifdef CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
594 /****************************************************************************
596 > $Function: encodeString()
598 * $Description: Given a string, html encode special characters.
599 * This is used for the -e command line option to provide an easy way
600 * for scripts to encode result data without confusing browsers. The
601 * returned string pointer is memory allocated by malloc().
604 * (const char *) string . . The first string to encode.
606 * $Return: (char *) . . . .. . . A pointer to the encoded string.
608 * $Errors: Returns a null string ("") if memory is not available.
610 ****************************************************************************/
611 static char *encodeString(const char *string)
613 /* take the simple route and encode everything */
614 /* could possibly scan once to get length. */
615 int len = strlen(string);
616 char *out = malloc(len*5 +1);
621 while ((ch = *string++)) {
622 // very simple check for what to encode
623 if (isalnum(ch)) *p++ = ch;
624 else p += sprintf(p, "&#%d", (unsigned char) ch);
629 #endif /* CONFIG_FEATURE_HTTPD_ENCODE_URL_STR */
631 /****************************************************************************
633 > $Function: decodeString()
635 * $Description: Given a URL encoded string, convert it to plain ascii.
636 * Since decoding always makes strings smaller, the decode is done in-place.
637 * Thus, callers should strdup() the argument if they do not want the
638 * argument modified. The return is the original pointer, allowing this
639 * function to be easily used as arguments to other functions.
642 * (char *) string . . . The first string to decode.
643 * (int) flag . . . 1 if require decode '+' as ' ' for CGI
645 * $Return: (char *) . . . . A pointer to the decoded string (same as input).
649 ****************************************************************************/
650 static char *decodeString(char *orig, int flag_plus_to_space)
652 /* note that decoded string is always shorter than original */
658 if (*ptr == '+' && flag_plus_to_space) { *string++ = ' '; ptr++; }
659 else if (*ptr != '%') *string++ = *ptr++;
662 sscanf(ptr+1, "%2X", &value);
672 #ifdef CONFIG_FEATURE_HTTPD_CGI
673 /****************************************************************************
675 > $Function: addEnv()
677 * $Description: Add an enviornment variable setting to the global list.
678 * A NAME=VALUE string is allocated, filled, and added to the list of
679 * environment settings passed to the cgi execution script.
682 * (char *) name_before_underline - The first part environment variable name.
683 * (char *) name_after_underline - The second part environment variable name.
684 * (char *) value . . The value to which the env variable is set.
688 * $Errors: Silently returns if the env runs out of space to hold the new item
690 ****************************************************************************/
691 static void addEnv(const char *name_before_underline,
692 const char *name_after_underline, const char *value)
695 const char *underline;
697 if (config->envCount >= ENVSIZE)
701 underline = *name_after_underline ? "_" : "";
702 asprintf(&s, "%s%s%s=%s", name_before_underline, underline,
703 name_after_underline, value);
705 config->envp[config->envCount++] = s;
706 config->envp[config->envCount] = 0;
710 #if defined(CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV) || !defined(CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY)
711 /* set environs SERVER_PORT and REMOTE_PORT */
712 static void addEnvPort(const char *port_name)
716 sprintf(buf, "%u", config->port);
717 addEnv(port_name, "PORT", buf);
720 #endif /* CONFIG_FEATURE_HTTPD_CGI */
722 #ifdef CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV
723 /****************************************************************************
725 > $Function: addEnvCgi
727 * $Description: Create environment variables given a URL encoded arg list.
728 * For each variable setting the URL encoded arg list, create a corresponding
729 * environment variable. URL encoded arguments have the form
730 * name1=value1&name2=value2&name3=&ignores
731 * from this example, name3 set empty value, tail without '=' skiping
734 * (char *) pargs . . . . A pointer to the URL encoded arguments.
740 ****************************************************************************/
741 static void addEnvCgi(const char *pargs)
745 char *namelist; /* space separated list of arg names */
746 if (pargs==0) return;
748 /* args are a list of name=value&name2=value2 sequences */
749 namelist = (char *) malloc(strlen(pargs));
750 if (namelist) namelist[0]=0;
751 memargs = args = strdup(pargs);
752 while (args && *args) {
753 const char *name = args;
754 char *value = strchr(args, '=');
756 if (!value) /* &XXX without '=' */
759 args = strchr(value, '&');
762 addEnv("CGI", name, decodeString(value, 1));
763 if (*namelist) strcat(namelist, " ");
764 strcat(namelist, name);
768 addEnv("CGI", "ARGLIST_", namelist);
772 #endif /* CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV */
775 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
776 /****************************************************************************
778 > $Function: decodeBase64()
780 > $Description: Decode a base 64 data stream as per rfc1521.
781 * Note that the rfc states that none base64 chars are to be ignored.
782 * Since the decode always results in a shorter size than the input, it is
783 * OK to pass the input arg as an output arg.
786 * (char *) Data . . . . A pointer to a base64 encoded string.
787 * Where to place the decoded data.
793 ****************************************************************************/
794 static void decodeBase64(char *Data)
797 const unsigned char *in = Data;
798 // The decoded size will be at most 3/4 the size of the encoded
799 unsigned long ch = 0;
805 if(t >= '0' && t <= '9')
807 else if(t >= 'A' && t <= 'Z')
809 else if(t >= 'a' && t <= 'z')
823 *Data++ = (char) (ch >> 16);
824 *Data++ = (char) (ch >> 8);
834 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
835 /****************************************************************************
837 > $Function: openServer()
839 * $Description: create a listen server socket on the designated port.
841 * $Return: (int) . . . A connection socket. -1 for errors.
845 ****************************************************************************/
846 static int openServer(void)
848 struct sockaddr_in lsocket;
851 /* create the socket right now */
852 /* inet_addr() returns a value that is already in network order */
853 memset(&lsocket, 0, sizeof(lsocket));
854 lsocket.sin_family = AF_INET;
855 lsocket.sin_addr.s_addr = INADDR_ANY;
856 lsocket.sin_port = htons(config->port) ;
857 fd = socket(AF_INET, SOCK_STREAM, 0);
859 /* tell the OS it's OK to reuse a previous address even though */
860 /* it may still be in a close down state. Allows bind to succeed. */
863 setsockopt(fd, SOL_SOCKET, SO_REUSEPORT, (void *)&on, sizeof(on)) ;
865 setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, (void *)&on, sizeof(on)) ;
867 if (bind(fd, (struct sockaddr *)&lsocket, sizeof(lsocket)) == 0) {
869 signal(SIGCHLD, SIG_IGN); /* prevent zombie (defunct) processes */
871 bb_perror_msg_and_die("bind");
874 bb_perror_msg_and_die("create socket");
878 #endif /* CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY */
880 /****************************************************************************
882 > $Function: sendHeaders()
884 * $Description: Create and send HTTP response headers.
885 * The arguments are combined and sent as one write operation. Note that
886 * IE will puke big-time if the headers are not sent in one packet and the
887 * second packet is delayed for any reason.
890 * (HttpResponseNum) responseNum . . . The result code to send.
892 * $Return: (int) . . . . writing errors
894 ****************************************************************************/
895 static int sendHeaders(HttpResponseNum responseNum)
897 char *buf = config->buf;
898 const char *responseString = "";
899 const char *infoString = 0;
901 time_t timer = time(0);
906 i < (sizeof(httpResponseNames)/sizeof(httpResponseNames[0])); i++) {
907 if (httpResponseNames[i].type == responseNum) {
908 responseString = httpResponseNames[i].name;
909 infoString = httpResponseNames[i].info;
913 if (responseNum != HTTP_OK) {
914 config->found_mime_type = "text/html"; // error message is HTML
917 /* emit the current date */
918 strftime(timeStr, sizeof(timeStr), RFC1123FMT, gmtime(&timer));
920 "HTTP/1.0 %d %s\nContent-type: %s\r\n"
921 "Date: %s\r\nConnection: close\r\n",
922 responseNum, responseString, config->found_mime_type, timeStr);
924 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
925 if (responseNum == HTTP_UNAUTHORIZED) {
926 len += sprintf(buf+len, "WWW-Authenticate: Basic realm=\"%s\"\r\n",
930 if (config->ContentLength != -1) { /* file */
931 strftime(timeStr, sizeof(timeStr), RFC1123FMT, gmtime(&config->last_mod));
932 len += sprintf(buf+len, "Last-Modified: %s\r\n%s %ld\r\n",
933 timeStr, Content_length, config->ContentLength);
938 len += sprintf(buf+len,
939 "<HEAD><TITLE>%d %s</TITLE></HEAD>\n"
940 "<BODY><H1>%d %s</H1>\n%s\n</BODY>\n",
941 responseNum, responseString,
942 responseNum, responseString, infoString);
945 if (config->debugHttpd) fprintf(stderr, "Headers: '%s'", buf);
947 return bb_full_write(a_c_w, buf, len);
950 /****************************************************************************
952 > $Function: getLine()
954 * $Description: Read from the socket until an end of line char found.
956 * Characters are read one at a time until an eol sequence is found.
959 * (char *) buf . . Where to place the read result.
961 * $Return: (int) . . . . number of characters read. -1 if error.
963 ****************************************************************************/
964 static int getLine(char *buf)
968 while (read(a_c_r, buf + count, 1) == 1) {
969 if (buf[count] == '\r') continue;
970 if (buf[count] == '\n') {
974 if(count < (MAX_MEMORY_BUFF-1)) /* check owerflow */
977 if (count) return count;
981 #ifdef CONFIG_FEATURE_HTTPD_CGI
982 /****************************************************************************
984 > $Function: sendCgi()
986 * $Description: Execute a CGI script and send it's stdout back
988 * Environment variables are set up and the script is invoked with pipes
989 * for stdin/stdout. If a post is being done the script is fed the POST
990 * data in addition to setting the QUERY_STRING variable (for GETs or POSTs).
993 * (const char *) url . . . The requested URL (with leading /).
994 * (const char *urlArgs). . Any URL arguments.
995 * (const char *body) . . . POST body contents.
996 * (int bodyLen) . . . . . Length of the post body.
997 * (const char *cookie) . . For set HTTP_COOKIE.
1000 * $Return: (char *) . . . . A pointer to the decoded string (same as input).
1004 ****************************************************************************/
1005 static int sendCgi(const char *url,
1006 const char *request, const char *urlArgs,
1007 const char *body, int bodyLen, const char *cookie)
1009 int fromCgi[2]; /* pipe for reading data from CGI */
1010 int toCgi[2]; /* pipe for sending data to CGI */
1012 static char * argp[] = { 0, 0 };
1019 if (pipe(fromCgi) != 0) {
1022 if (pipe(toCgi) != 0) {
1035 char *purl = strdup( url );
1036 char realpath_buff[MAXPATHLEN];
1044 dup2(inFd, 0); // replace stdin with the pipe
1045 dup2(outFd, 1); // replace stdout with the pipe
1047 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1048 if (!config->debugHttpd)
1050 dup2(outFd, 2); // replace stderr with the pipe
1061 while((script = strchr( script + 1, '/' )) != NULL) {
1062 /* have script.cgi/PATH_INFO or dirs/script.cgi[/PATH_INFO] */
1066 if(is_directory(purl + 1, 1, &sb) == 0) {
1067 /* not directory, found script.cgi/PATH_INFO */
1071 *script = '/'; /* is directory, find next '/' */
1073 addEnv("PATH", "INFO", script); /* set /PATH_INFO or NULL */
1074 addEnv("PATH", "", getenv("PATH"));
1075 addEnv("REQUEST", "METHOD", request);
1077 char *uri = alloca(strlen(purl) + 2 + strlen(urlArgs));
1079 sprintf(uri, "%s?%s", purl, urlArgs);
1080 addEnv("REQUEST", "URI", uri);
1082 addEnv("REQUEST", "URI", purl);
1085 *script = '\0'; /* reduce /PATH_INFO */
1086 /* set SCRIPT_NAME as full path: /cgi-bin/dirs/script.cgi */
1087 addEnv("SCRIPT_NAME", "", purl);
1088 addEnv("QUERY_STRING", "", urlArgs);
1089 addEnv("SERVER", "SOFTWARE", httpdVersion);
1090 addEnv("SERVER", "PROTOCOL", "HTTP/1.0");
1091 addEnv("GATEWAY_INTERFACE", "", "CGI/1.1");
1092 #ifdef CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV
1093 addEnv("REMOTE", "ADDR", config->rmt_ip);
1094 addEnvPort("REMOTE");
1096 addEnv("REMOTE_ADDR", "", config->rmt_ip);
1101 sprintf(sbl, "%d", bodyLen);
1102 addEnv("CONTENT_LENGTH", "", sbl);
1105 addEnv("HTTP_COOKIE", "", cookie);
1107 #ifdef CONFIG_FEATURE_HTTPD_SET_CGI_VARS_TO_ENV
1108 if (request != request_GET) {
1115 /* set execve argp[0] without path */
1116 argp[0] = strrchr( purl, '/' ) + 1;
1117 /* but script argp[0] must have absolute path and chdiring to this */
1118 if(realpath(purl + 1, realpath_buff) != NULL) {
1119 script = strrchr(realpath_buff, '/');
1122 if(chdir(realpath_buff) == 0) {
1124 // now run the program. If it fails,
1125 // use _exit() so no destructors
1126 // get called and make a mess.
1127 execve(realpath_buff, argp, config->envp);
1131 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1132 config->accepted_socket = 1; /* send to stdout */
1134 sendHeaders(HTTP_NOT_FOUND);
1141 /* parent process */
1148 if (body) bb_full_write(outFd, body, bodyLen);
1152 struct timeval timeout;
1159 FD_SET(inFd, &readSet);
1161 /* Now wait on the set of sockets! */
1163 timeout.tv_usec = 10000;
1164 nfound = select(inFd + 1, &readSet, 0, 0, &timeout);
1167 if (waitpid(pid, &status, WNOHANG) > 0) {
1170 if (config->debugHttpd) {
1171 if (WIFEXITED(status))
1172 bb_error_msg("piped has exited with status=%d", WEXITSTATUS(status));
1173 if (WIFSIGNALED(status))
1174 bb_error_msg("piped has exited with signal=%d", WTERMSIG(status));
1183 // There is something to read
1184 count = bb_full_read(inFd, buf, sizeof(buf)-1);
1185 // If a read returns 0 at this point then some type of error has
1186 // occurred. Bail now.
1187 if (count == 0) break;
1190 /* check to see if the user script added headers */
1191 if (strncmp(buf, "HTTP/1.0 200 OK\n", 4) != 0) {
1192 bb_full_write(s, "HTTP/1.0 200 OK\n", 16);
1194 if (strstr(buf, "ontent-") == 0) {
1195 bb_full_write(s, "Content-type: text/plain\n\n", 26);
1199 bb_full_write(s, buf, count);
1201 if (config->debugHttpd)
1202 fprintf(stderr, "cgi read %d bytes\n", count);
1210 #endif /* CONFIG_FEATURE_HTTPD_CGI */
1212 /****************************************************************************
1214 > $Function: sendFile()
1216 * $Description: Send a file response to an HTTP request
1219 * (const char *) url . . The URL requested.
1220 * (char *) buf . . . . . The stack buffer.
1222 * $Return: (int) . . . . . . Always 0.
1224 ****************************************************************************/
1225 static int sendFile(const char *url, char *buf)
1229 const char * const * table;
1230 const char * try_suffix;
1232 suffix = strrchr(url, '.');
1234 for (table = suffixTable; *table; table += 2)
1235 if(suffix != NULL && (try_suffix = strstr(*table, suffix)) != 0) {
1236 try_suffix += strlen(suffix);
1237 if(*try_suffix == 0 || *try_suffix == '.')
1240 /* also, if not found, set default as "application/octet-stream"; */
1241 config->found_mime_type = *(table+1);
1242 #ifdef CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
1246 for (cur = config->mime_a; cur; cur = cur->next) {
1247 if(strcmp(cur->before_colon, suffix) == 0) {
1248 config->found_mime_type = cur->after_colon;
1253 #endif /* CONFIG_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES */
1256 if (config->debugHttpd)
1257 fprintf(stderr, "Sending file '%s' Content-type: %s\n",
1258 url, config->found_mime_type);
1261 f = open(url, O_RDONLY);
1265 sendHeaders(HTTP_OK);
1266 while ((count = bb_full_read(f, buf, MAX_MEMORY_BUFF)) > 0) {
1267 bb_full_write(a_c_w, buf, count);
1272 if (config->debugHttpd)
1273 bb_perror_msg("Unable to open '%s'", url);
1275 sendHeaders(HTTP_NOT_FOUND);
1281 /****************************************************************************
1283 > $Function: checkPerm()
1285 * $Description: Check the permission file for access.
1287 * If config file isn't present, everything is allowed.
1288 * Entries are of the form you can see example from header source
1291 * (const char *) path . . . . The file path or NULL for ip addresses.
1292 * (const char *) request . . . User information to validate.
1294 * $Return: (int) . . . . . . . . . 1 if request OK, 0 otherwise.
1296 ****************************************************************************/
1298 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1299 static int checkPerm(const char *path, const char *request)
1305 int ipaddr = path == NULL;
1306 const char *prev = NULL;
1308 /* This could stand some work */
1309 for (cur = ipaddr ? config->ip_a_d : config->auth; cur; cur = cur->next) {
1310 p0 = cur->before_colon;
1311 if(prev != NULL && strcmp(prev, p0) != 0)
1312 continue; /* find next identical */
1313 p = cur->after_colon;
1315 if (config->debugHttpd)
1316 fprintf(stderr,"checkPerm: '%s' ? '%s'\n",
1317 (ipaddr ? (*p ? p : "*") : p0), request);
1320 if(strncmp(p, request, strlen(p)) != 0)
1322 return *p0 == 'A'; /* Allow/Deny */
1326 if(strncmp(p0, path, l) == 0 &&
1327 (l == 1 || path[l] == '/' || path[l] == 0)) {
1328 /* path match found. Check request */
1329 if (strcmp(p, request) == 0)
1331 /* unauthorized, but check next /path:user:password */
1338 return !config->flg_deny_all;
1339 return prev == NULL;
1342 #else /* ifndef CONFIG_FEATURE_HTTPD_BASIC_AUTH */
1343 static int checkPermIP(const char *request)
1348 /* This could stand some work */
1349 for (cur = config->ip_a_d; cur; cur = cur->next) {
1350 p = cur->after_colon;
1352 if (config->debugHttpd)
1353 fprintf(stderr, "checkPerm: '%s' ? '%s'\n",
1354 (*p ? p : "*"), request);
1356 if(strncmp(p, request, strlen(p)) == 0)
1357 return *cur->before_colon == 'A'; /* Allow/Deny */
1360 /* if uncofigured, return 1 - access from all */
1361 return !config->flg_deny_all;
1363 #define checkPerm(null, request) checkPermIP(request)
1364 #endif /* CONFIG_FEATURE_HTTPD_BASIC_AUTH */
1367 /****************************************************************************
1369 > $Function: handleIncoming()
1371 * $Description: Handle an incoming http request.
1373 ****************************************************************************/
1374 static void handleIncoming(void)
1376 char *buf = config->buf;
1381 #ifdef CONFIG_FEATURE_HTTPD_CGI
1382 const char *prequest = request_GET;
1391 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1392 int credentials = -1; /* if not requred this is Ok */
1398 if (getLine(buf) <= 0)
1401 purl = strpbrk(buf, " \t");
1404 sendHeaders(HTTP_BAD_REQUEST);
1408 #ifdef CONFIG_FEATURE_HTTPD_CGI
1409 if(strcasecmp(buf, prequest) != 0) {
1411 if(strcasecmp(buf, prequest) != 0) {
1412 sendHeaders(HTTP_NOT_IMPLEMENTED);
1417 if(strcasecmp(buf, request_GET) != 0) {
1418 sendHeaders(HTTP_NOT_IMPLEMENTED);
1423 count = sscanf(purl, " %[^ ] HTTP/%d.%*d", buf, &blank);
1425 decodeString(buf, 0);
1426 if (count < 1 || buf[0] != '/') {
1427 /* Garbled request/URL */
1430 url = alloca(strlen(buf) + 12); /* + sizeof("/index.html\0") */
1432 sendHeaders(HTTP_INTERNAL_SERVER_ERROR);
1436 /* extract url args if present */
1437 urlArgs = strchr(url, '?');
1441 /* algorithm stolen from libbb bb_simplify_path(),
1442 but don`t strdup and reducing trailing slash and protect out root */
1447 if (*test == '/') { /* skip duplicate (or initial) slash */
1449 } else if (*test == '.') {
1450 if (test[1] == '/' || test[1] == 0) { /* skip extra '.' */
1452 } else if ((test[1] == '.') && (test[2] == '/' || test[2] == 0)) {
1455 /* protect out root */
1458 while (*--purl != '/'); /* omit previous dir */
1466 *++purl = 0; /* so keep last character */
1467 test = purl; /* end ptr */
1469 /* If URL is directory, adding '/' */
1470 if(test[-1] != '/') {
1471 if ( is_directory(url + 1, 1, &sb) ) {
1474 purl = test; /* end ptr */
1478 if (config->debugHttpd)
1479 fprintf(stderr, "url='%s', args=%s\n", url, urlArgs);
1483 ip_allowed = checkPerm(NULL, config->rmt_ip);
1484 while(ip_allowed && (test = strchr( test + 1, '/' )) != NULL) {
1485 /* have path1/path2 */
1487 if( is_directory(url + 1, 1, &sb) ) {
1488 /* may be having subdir config */
1489 parse_conf(url + 1, SUBDIR_PARSE);
1490 ip_allowed = checkPerm(NULL, config->rmt_ip);
1495 // read until blank line for HTTP version specified, else parse immediate
1496 while (blank >= 0 && (count = getLine(buf)) > 0) {
1499 if (config->debugHttpd) fprintf(stderr, "Header: '%s'\n", buf);
1502 #ifdef CONFIG_FEATURE_HTTPD_CGI
1503 /* try and do our best to parse more lines */
1504 if ((strncasecmp(buf, Content_length, 15) == 0)) {
1505 if(prequest != request_GET)
1506 length = strtol(buf + 15, 0, 0); // extra read only for POST
1507 } else if ((strncasecmp(buf, "Cookie:", 7) == 0)) {
1508 for(test = buf + 7; isspace(*test); test++)
1510 cookie = strdup(test);
1514 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1515 if (strncasecmp(buf, "Authorization:", 14) == 0) {
1516 /* We only allow Basic credentials.
1517 * It shows up as "Authorization: Basic <userid:password>" where
1518 * the userid:password is base64 encoded.
1520 for(test = buf + 14; isspace(*test); test++)
1522 if (strncasecmp(test, "Basic", 5) != 0)
1525 test += 5; /* decodeBase64() skiping space self */
1527 credentials = checkPerm(url, test);
1529 #endif /* CONFIG_FEATURE_HTTPD_BASIC_AUTH */
1531 } /* while extra header reading */
1534 if (strcmp(strrchr(url, '/') + 1, httpd_conf) == 0 || ip_allowed == 0) {
1535 /* protect listing [/path]/httpd_conf or IP deny */
1536 #ifdef CONFIG_FEATURE_HTTPD_CGI
1537 FORBIDDEN: /* protect listing /cgi-bin */
1539 sendHeaders(HTTP_FORBIDDEN);
1543 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1544 if (credentials <= 0 && checkPerm(url, ":") == 0) {
1545 sendHeaders(HTTP_UNAUTHORIZED);
1550 test = url + 1; /* skip first '/' */
1552 #ifdef CONFIG_FEATURE_HTTPD_CGI
1553 /* if strange Content-Length */
1554 if (length < 0 || length > MAX_POST_SIZE)
1558 body = malloc(length + 1);
1560 length = bb_full_read(a_c_r, body, length);
1561 if(length < 0) // closed
1563 body[length] = 0; // always null terminate for safety
1567 if (strncmp(test, "cgi-bin", 7) == 0) {
1568 if(test[7] == '/' && test[8] == 0)
1569 goto FORBIDDEN; // protect listing cgi-bin/
1570 sendCgi(url, prequest, urlArgs, body, length, cookie);
1572 if (prequest != request_GET)
1573 sendHeaders(HTTP_NOT_IMPLEMENTED);
1575 #endif /* CONFIG_FEATURE_HTTPD_CGI */
1577 strcpy(purl, "index.html");
1578 if ( stat(test, &sb ) == 0 ) {
1579 config->ContentLength = sb.st_size;
1580 config->last_mod = sb.st_mtime;
1582 sendFile(test, buf);
1583 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1584 /* unset if non inetd looped */
1585 config->ContentLength = -1;
1588 #ifdef CONFIG_FEATURE_HTTPD_CGI
1596 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1597 /* from inetd don`t looping: freeing, closing automatic from exit always */
1599 if (config->debugHttpd) fprintf(stderr, "closing socket\n");
1601 # ifdef CONFIG_FEATURE_HTTPD_CGI
1605 shutdown(a_c_w, SHUT_WR);
1606 shutdown(a_c_r, SHUT_RD);
1607 close(config->accepted_socket);
1608 #endif /* CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY */
1611 /****************************************************************************
1613 > $Function: miniHttpd()
1615 * $Description: The main http server function.
1617 * Given an open socket fildes, listen for new connections and farm out
1618 * the processing as a forked process.
1621 * (int) server. . . The server socket fildes.
1623 * $Return: (int) . . . . Always 0.
1625 ****************************************************************************/
1626 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1627 static int miniHttpd(int server)
1629 fd_set readfd, portfd;
1632 FD_SET(server, &portfd);
1634 /* copy the ports we are watching to the readfd set */
1638 /* Now wait INDEFINATELY on the set of sockets! */
1639 if (select(server + 1, &readfd, 0, 0, 0) > 0) {
1640 if (FD_ISSET(server, &readfd)) {
1642 struct sockaddr_in fromAddr;
1645 socklen_t fromAddrLen = sizeof(fromAddr);
1646 int s = accept(server,
1647 (struct sockaddr *)&fromAddr, &fromAddrLen);
1652 config->accepted_socket = s;
1653 addr = ntohl(fromAddr.sin_addr.s_addr);
1654 sprintf(config->rmt_ip, "%u.%u.%u.%u",
1655 (unsigned char)(addr >> 24),
1656 (unsigned char)(addr >> 16),
1657 (unsigned char)(addr >> 8),
1659 config->port = ntohs(fromAddr.sin_port);
1661 if (config->debugHttpd) {
1662 bb_error_msg("connection from IP=%s, port %u\n",
1663 config->rmt_ip, config->port);
1666 /* set the KEEPALIVE option to cull dead connections */
1668 setsockopt(s, SOL_SOCKET, SO_KEEPALIVE, (void *)&on, sizeof (on));
1670 if (config->debugHttpd || fork() == 0) {
1671 /* This is the spawned thread */
1672 #ifdef CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
1673 /* protect reload config, may be confuse checking */
1674 signal(SIGHUP, SIG_IGN);
1677 if(!config->debugHttpd)
1690 static int miniHttpd(void)
1692 struct sockaddr_in fromAddrLen;
1693 socklen_t sinlen = sizeof (struct sockaddr_in);
1696 getpeername (0, (struct sockaddr *)&fromAddrLen, &sinlen);
1697 addr = ntohl(fromAddrLen.sin_addr.s_addr);
1698 sprintf(config->rmt_ip, "%u.%u.%u.%u",
1699 (unsigned char)(addr >> 24),
1700 (unsigned char)(addr >> 16),
1701 (unsigned char)(addr >> 8),
1703 config->port = ntohs(fromAddrLen.sin_port);
1707 #endif /* CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY */
1709 #ifdef CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
1710 static void sighup_handler(int sig)
1713 struct sigaction sa;
1715 sa.sa_handler = sighup_handler;
1716 sigemptyset(&sa.sa_mask);
1717 sa.sa_flags = SA_RESTART;
1718 sigaction(SIGHUP, &sa, NULL);
1719 parse_conf(default_path_httpd_conf,
1720 sig == SIGHUP ? SIGNALED_PARSE : FIRST_PARSE);
1725 static const char httpd_opts[]="c:d:h:"
1726 #ifdef CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
1732 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1738 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1740 #ifdef CONFIG_FEATURE_HTTPD_SETUID
1746 #define OPT_CONFIG_FILE (1<<0)
1747 #define OPT_DECODE_URL (1<<1)
1748 #define OPT_HOME_HTTPD (1<<2)
1749 #define OPT_ENCODE_URL (1<<(2+OPT_INC_1))
1750 #define OPT_REALM (1<<(2+OPT_INC_1+OPT_INC_2))
1751 #define OPT_PORT (1<<(3+OPT_INC_1+OPT_INC_2))
1752 #define OPT_DEBUG (1<<(4+OPT_INC_1+OPT_INC_2))
1753 #define OPT_SETUID (1<<(5+OPT_INC_1+OPT_INC_2))
1756 #ifdef HTTPD_STANDALONE
1757 int main(int argc, char *argv[])
1759 int httpd_main(int argc, char *argv[])
1763 const char *home_httpd = home;
1764 char *url_for_decode;
1765 #ifdef CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
1766 const char *url_for_encode;
1768 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1772 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1776 #ifdef CONFIG_FEATURE_HTTPD_SETUID
1781 config = xcalloc(1, sizeof(*config));
1782 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1783 config->realm = "Web Server Authentication";
1786 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1790 config->ContentLength = -1;
1792 opt = bb_getopt_ulflags(argc, argv, httpd_opts,
1793 &(config->configFile), &url_for_decode, &home_httpd
1794 #ifdef CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
1797 #ifdef CONFIG_FEATURE_HTTPD_BASIC_AUTH
1800 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1802 #ifdef CONFIG_FEATURE_HTTPD_SETUID
1808 if(opt & OPT_DECODE_URL) {
1809 printf("%s", decodeString(url_for_decode, 1));
1812 #ifdef CONFIG_FEATURE_HTTPD_ENCODE_URL_STR
1813 if(opt & OPT_ENCODE_URL) {
1814 printf("%s", encodeString(url_for_encode));
1818 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1820 config->port = bb_xgetlarg(s_port, 10, 1, 0xffff);
1821 config->debugHttpd = opt & OPT_DEBUG;
1822 #ifdef CONFIG_FEATURE_HTTPD_SETUID
1823 if(opt & OPT_SETUID) {
1826 uid = strtol(s_uid, &e, 0);
1829 uid = my_getpwnam(s_uid);
1835 if(chdir(home_httpd)) {
1836 bb_perror_msg_and_die("can`t chdir to %s", home_httpd);
1838 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1839 server = openServer();
1840 # ifdef CONFIG_FEATURE_HTTPD_SETUID
1841 /* drop privilegies */
1845 # ifdef CONFIG_FEATURE_HTTPD_CGI
1846 addEnvPort("SERVER");
1850 #ifdef CONFIG_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
1853 parse_conf(default_path_httpd_conf, FIRST_PARSE);
1856 #ifndef CONFIG_FEATURE_HTTPD_USAGE_FROM_INETD_ONLY
1857 if (!config->debugHttpd) {
1858 if (daemon(1, 0) < 0) /* don`t change curent directory */
1859 bb_perror_msg_and_die("daemon");
1861 return miniHttpd(server);