2 * uhttpd - Tiny single-threaded httpd - Main component
4 * Copyright (C) 2010 Jo-Philipp Wich <xm@subsignal.org>
6 * Licensed under the Apache License, Version 2.0 (the "License");
7 * you may not use this file except in compliance with the License.
8 * You may obtain a copy of the License at
10 * http://www.apache.org/licenses/LICENSE-2.0
12 * Unless required by applicable law or agreed to in writing, software
13 * distributed under the License is distributed on an "AS IS" BASIS,
14 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 * See the License for the specific language governing permissions and
16 * limitations under the License.
19 #define _XOPEN_SOURCE 500 /* crypt() */
22 #include "uhttpd-utils.h"
23 #include "uhttpd-file.h"
26 #include "uhttpd-cgi.h"
30 #include "uhttpd-lua.h"
34 #include "uhttpd-tls.h"
40 static void uh_sigterm(int sig)
45 static void uh_sigchld(int sig)
47 while( waitpid(-1, NULL, WNOHANG) > 0 ) { }
50 static void uh_config_parse(const char *path)
58 if( (c = fopen(path ? path : "/etc/httpd.conf", "r")) != NULL )
60 memset(line, 0, sizeof(line));
62 while( fgets(line, sizeof(line) - 1, c) )
64 if( (line[0] == '/') && (strchr(line, ':') != NULL) )
66 if( !(user = strchr(line, ':')) || (*user++ = 0) ||
67 !(pass = strchr(user, ':')) || (*pass++ = 0) ||
68 !(eol = strchr(pass, '\n')) || (*eol++ = 0) )
71 if( !uh_auth_add(line, user, pass) )
74 "Can not manage more than %i basic auth realms, "
75 "will skip the rest\n", UH_LIMIT_AUTHREALMS
87 static int uh_socket_bind(
88 fd_set *serv_fds, int *max_fd, const char *host, const char *port,
89 struct addrinfo *hints, int do_tls, struct config *conf
96 struct listener *l = NULL;
97 struct addrinfo *addrs = NULL, *p = NULL;
99 if( (status = getaddrinfo(host, port, hints, &addrs)) != 0 )
101 fprintf(stderr, "getaddrinfo(): %s\n", gai_strerror(status));
104 /* try to bind a new socket to each found address */
105 for( p = addrs; p; p = p->ai_next )
108 if( (sock = socket(p->ai_family, p->ai_socktype, p->ai_protocol)) == -1 )
114 /* "address already in use" */
115 if( setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &yes, sizeof(yes)) == -1 )
117 perror("setsockopt()");
121 /* required to get parallel v4 + v6 working */
122 if( p->ai_family == AF_INET6 )
124 if( setsockopt(sock, IPPROTO_IPV6, IPV6_V6ONLY, &yes, sizeof(yes)) == -1 )
126 perror("setsockopt()");
132 if( bind(sock, p->ai_addr, p->ai_addrlen) == -1 )
139 if( listen(sock, UH_LIMIT_CLIENTS) == -1 )
145 /* add listener to global list */
146 if( ! (l = uh_listener_add(sock, conf)) )
149 "uh_listener_add(): Can not create more than "
150 "%i listen sockets\n", UH_LIMIT_LISTENERS
158 l->tls = do_tls ? conf->tls : NULL;
161 /* add socket to server fd set */
162 FD_SET(sock, serv_fds);
164 *max_fd = max(*max_fd, sock);
179 static struct http_request * uh_http_header_parse(struct client *cl, char *buffer, int buflen)
181 char *method = &buffer[0];
183 char *version = NULL;
185 char *headers = NULL;
186 char *hdrname = NULL;
187 char *hdrdata = NULL;
192 static struct http_request req;
194 memset(&req, 0, sizeof(req));
197 /* terminate initial header line */
198 if( (headers = strfind(buffer, buflen, "\r\n", 2)) != NULL )
200 buffer[buflen-1] = 0;
205 /* find request path */
206 if( (path = strchr(buffer, ' ')) != NULL )
209 /* find http version */
210 if( (path != NULL) && ((version = strchr(path, ' ')) != NULL) )
215 if( strcmp(method, "GET") && strcmp(method, "HEAD") && strcmp(method, "POST") )
218 uh_http_response(cl, 405, "Method Not Allowed");
226 req.method = UH_HTTP_MSG_GET;
230 req.method = UH_HTTP_MSG_HEAD;
234 req.method = UH_HTTP_MSG_POST;
240 if( !path || !strlen(path) )
242 /* malformed request */
243 uh_http_response(cl, 400, "Bad Request");
252 if( strcmp(version, "HTTP/0.9") && strcmp(version, "HTTP/1.0") && strcmp(version, "HTTP/1.1") )
254 /* unsupported version */
255 uh_http_response(cl, 400, "Bad Request");
260 req.version = strtof(&version[5], NULL);
264 /* process header fields */
265 for( i = (int)(headers - buffer); i < buflen; i++ )
267 /* found eol and have name + value, push out header tuple */
268 if( hdrname && hdrdata && (buffer[i] == '\r' || buffer[i] == '\n') )
273 if( (hdrcount + 1) < array_size(req.headers) )
275 req.headers[hdrcount++] = hdrname;
276 req.headers[hdrcount++] = hdrdata;
278 hdrname = hdrdata = NULL;
284 uh_http_response(cl, 413, "Request Entity Too Large");
289 /* have name but no value and found a colon, start of value */
290 else if( hdrname && !hdrdata && ((i+2) < buflen) &&
291 (buffer[i] == ':') && (buffer[i+1] == ' ')
294 hdrdata = &buffer[i+2];
297 /* have no name and found [A-Z], start of name */
298 else if( !hdrname && isalpha(buffer[i]) && isupper(buffer[i]) )
300 hdrname = &buffer[i];
308 /* Malformed request */
309 uh_http_response(cl, 400, "Bad Request");
314 static struct http_request * uh_http_header_recv(struct client *cl)
316 static char buffer[UH_LIMIT_MSGHEAD];
317 char *bufptr = &buffer[0];
320 struct timeval timeout;
324 ssize_t blen = sizeof(buffer)-1;
328 memset(buffer, 0, sizeof(buffer));
333 FD_SET(cl->socket, &reader);
335 /* fail after 0.1s */
337 timeout.tv_usec = 100000;
339 /* check whether fd is readable */
340 if( select(cl->socket + 1, &reader, NULL, NULL, &timeout) > 0 )
343 rlen = uh_tcp_peek(cl, bufptr, blen);
347 if( (idxptr = strfind(buffer, sizeof(buffer), "\r\n\r\n", 4)) )
349 blen -= uh_tcp_recv(cl, bufptr, (int)(idxptr - bufptr) + 4);
351 /* header read complete ... */
352 return uh_http_header_parse(cl, buffer, sizeof(buffer) - blen - 1);
356 rlen = uh_tcp_recv(cl, bufptr, rlen);
363 /* invalid request (unexpected eof/timeout) */
364 uh_http_response(cl, 408, "Request Timeout");
370 /* invalid request (unexpected eof/timeout) */
371 uh_http_response(cl, 408, "Request Timeout");
376 /* request entity too large */
377 uh_http_response(cl, 413, "Request Entity Too Large");
381 static int uh_path_match(const char *prefix, const char *url)
383 if( (strstr(url, prefix) == url) &&
384 ((prefix[strlen(prefix)-1] == '/') ||
385 (strlen(url) == strlen(prefix)) ||
386 (url[strlen(prefix)] == '/'))
395 int main (int argc, char **argv)
402 /* master file descriptor list */
403 fd_set used_fds, serv_fds, read_fds;
405 /* working structs */
406 struct addrinfo hints;
407 struct http_request *req;
408 struct path_info *pin;
416 /* maximum file descriptor number */
417 int new_fd, cur_fd, max_fd = 0;
429 /* library handles */
433 /* clear the master and temp sets */
438 /* handle SIGPIPE, SIGINT, SIGTERM, SIGCHLD */
440 sigemptyset(&sa.sa_mask);
442 sa.sa_handler = SIG_IGN;
443 sigaction(SIGPIPE, &sa, NULL);
445 sa.sa_handler = uh_sigchld;
446 sigaction(SIGCHLD, &sa, NULL);
448 sa.sa_handler = uh_sigterm;
449 sigaction(SIGINT, &sa, NULL);
450 sigaction(SIGTERM, &sa, NULL);
454 sigaddset(&ss, SIGCHLD);
455 sigprocmask(SIG_BLOCK, &ss, NULL);
457 /* prepare addrinfo hints */
458 memset(&hints, 0, sizeof(hints));
459 hints.ai_family = AF_UNSPEC;
460 hints.ai_socktype = SOCK_STREAM;
461 hints.ai_flags = AI_PASSIVE;
464 memset(&conf, 0, sizeof(conf));
465 memset(bind, 0, sizeof(bind));
468 /* load TLS plugin */
469 if( ! (tls_lib = dlopen("uhttpd_tls.so", RTLD_LAZY | RTLD_GLOBAL)) )
472 "Notice: Unable to load TLS plugin - disabling SSL support! "
473 "(Reason: %s)\n", dlerror()
478 /* resolve functions */
479 if( !(conf.tls_init = dlsym(tls_lib, "uh_tls_ctx_init")) ||
480 !(conf.tls_cert = dlsym(tls_lib, "uh_tls_ctx_cert")) ||
481 !(conf.tls_key = dlsym(tls_lib, "uh_tls_ctx_key")) ||
482 !(conf.tls_free = dlsym(tls_lib, "uh_tls_ctx_free")) ||
483 !(conf.tls_accept = dlsym(tls_lib, "uh_tls_client_accept")) ||
484 !(conf.tls_close = dlsym(tls_lib, "uh_tls_client_close")) ||
485 !(conf.tls_recv = dlsym(tls_lib, "uh_tls_client_recv")) ||
486 !(conf.tls_send = dlsym(tls_lib, "uh_tls_client_send"))
489 "Error: Failed to lookup required symbols "
490 "in TLS plugin: %s\n", dlerror()
495 /* init SSL context */
496 if( ! (conf.tls = conf.tls_init()) )
498 fprintf(stderr, "Error: Failed to initalize SSL context\n");
504 while( (opt = getopt(argc, argv, "fC:K:p:s:h:c:l:L:d:r:m:x:t:")) > 0 )
511 if( (port = strrchr(optarg, ':')) != NULL )
513 if( (optarg[0] == '[') && (port > optarg) && (port[-1] == ']') )
514 memcpy(bind, optarg + 1,
515 min(sizeof(bind), (int)(port - optarg) - 2));
518 min(sizeof(bind), (int)(port - optarg)));
532 "Notice: TLS support is disabled, "
533 "ignoring '-s %s'\n", optarg
542 bound += uh_socket_bind(
543 &serv_fds, &max_fd, bind[0] ? bind : NULL, port,
544 &hints, (opt == 's'), &conf
554 if( conf.tls_cert(conf.tls, optarg) < 1 )
557 "Error: Invalid certificate file given\n");
570 if( conf.tls_key(conf.tls, optarg) < 1 )
573 "Error: Invalid private key file given\n");
585 if( ! realpath(optarg, conf.docroot) )
587 fprintf(stderr, "Error: Invalid directory %s: %s\n",
588 optarg, strerror(errno));
596 conf.cgi_prefix = optarg;
603 conf.lua_prefix = optarg;
608 conf.lua_handler = optarg;
612 #if defined(HAVE_CGI) || defined(HAVE_LUA)
615 conf.script_timeout = atoi(optarg);
626 if( (port = malloc(strlen(optarg)+1)) != NULL )
628 memset(port, 0, strlen(optarg)+1);
629 uh_urldecode(port, strlen(optarg), optarg, strlen(optarg));
636 /* basic auth realm */
643 printf("%s\n", crypt(optarg, "$1$"));
654 "Usage: %s -p [addr:]port [-h docroot]\n"
655 " -f Do not fork to background\n"
656 " -c file Configuration file, default is '/etc/httpd.conf'\n"
657 " -p [addr:]port Bind to specified address and port, multiple allowed\n"
659 " -s [addr:]port Like -p but provide HTTPS on this port\n"
660 " -C file ASN.1 server certificate file\n"
661 " -K file ASN.1 server private key file\n"
663 " -h directory Specify the document root, default is '.'\n"
665 " -l string URL prefix for Lua handler, default is '/lua'\n"
666 " -L file Lua handler script, omit to disable Lua\n"
669 " -x string URL prefix for CGI handler, default is '/cgi-bin'\n"
671 #if defined(HAVE_CGI) || defined(HAVE_LUA)
672 " -t seconds CGI and Lua script timeout in seconds, default is 60\n"
674 " -d string URL decode given string\n"
675 " -r string Specify basic auth realm\n"
676 " -m string MD5 crypt given string\n"
685 if( (tls == 1) && (keys < 2) )
687 fprintf(stderr, "Error: Missing private key or certificate file\n");
694 fprintf(stderr, "Error: No sockets bound, unable to continue\n");
698 /* default docroot */
699 if( !conf.docroot[0] && !realpath(".", conf.docroot) )
701 fprintf(stderr, "Error: Can not determine default document root: %s\n",
708 conf.realm = "Protected Area";
711 uh_config_parse(conf.file);
713 #if defined(HAVE_CGI) || defined(HAVE_LUA)
714 /* default script timeout */
715 if( conf.script_timeout <= 0 )
716 conf.script_timeout = 60;
720 /* default cgi prefix */
721 if( ! conf.cgi_prefix )
722 conf.cgi_prefix = "/cgi-bin";
726 /* load Lua plugin */
727 if( ! (lua_lib = dlopen("uhttpd_lua.so", RTLD_LAZY | RTLD_GLOBAL)) )
730 "Notice: Unable to load Lua plugin - disabling Lua support! "
731 "(Reason: %s)\n", dlerror()
736 /* resolve functions */
737 if( !(conf.lua_init = dlsym(lua_lib, "uh_lua_init")) ||
738 !(conf.lua_close = dlsym(lua_lib, "uh_lua_close")) ||
739 !(conf.lua_request = dlsym(lua_lib, "uh_lua_request"))
742 "Error: Failed to lookup required symbols "
743 "in Lua plugin: %s\n", dlerror()
748 /* init Lua runtime if handler is specified */
749 if( conf.lua_handler )
751 /* default lua prefix */
752 if( ! conf.lua_prefix )
753 conf.lua_prefix = "/lua";
755 L = conf.lua_init(conf.lua_handler);
760 /* fork (if not disabled) */
774 if( (cur_fd = open("/dev/null", O_WRONLY)) > -1 )
777 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
780 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
790 /* backup server descriptor set */
796 /* create a working copy of the used fd set */
799 /* sleep until socket activity */
800 if( select(max_fd + 1, &read_fds, NULL, NULL, NULL) == -1 )
806 /* run through the existing connections looking for data to be read */
807 for( cur_fd = 0; cur_fd <= max_fd; cur_fd++ )
809 /* is a socket managed by us */
810 if( FD_ISSET(cur_fd, &read_fds) )
812 /* is one of our listen sockets */
813 if( FD_ISSET(cur_fd, &serv_fds) )
815 /* handle new connections */
816 if( (new_fd = accept(cur_fd, NULL, 0)) != -1 )
818 /* add to global client list */
819 if( (cl = uh_client_add(new_fd, uh_listener_lookup(cur_fd))) != NULL )
822 /* setup client tls context */
827 /* add client socket to global fdset */
828 FD_SET(new_fd, &used_fds);
830 max_fd = max(max_fd, new_fd);
833 /* insufficient resources */
837 "uh_client_add(): Can not manage more than "
838 "%i client sockets, connection dropped\n",
847 /* is a client socket */
850 if( ! (cl = uh_client_lookup(cur_fd)) )
852 /* this should not happen! */
854 "uh_client_lookup(): No entry for fd %i!\n",
860 /* parse message header */
861 if( (req = uh_http_header_recv(cl)) != NULL )
865 if( L && uh_path_match(conf.lua_prefix, req->url) )
867 conf.lua_request(cl, req, L);
871 /* dispatch request */
872 if( (pin = uh_path_lookup(cl, req->url)) != NULL )
875 if( uh_auth_check(cl, req, pin) )
878 if( uh_path_match(conf.cgi_prefix, pin->name) )
880 uh_cgi_request(cl, req, pin);
885 uh_file_request(cl, req, pin);
893 uh_http_sendhf(cl, 404, "Not Found",
894 "No such file or directory");
901 uh_http_sendhf(cl, 400, "Bad Request",
902 "Malformed request received");
906 /* free client tls context */
913 /* close client socket */
915 FD_CLR(cur_fd, &used_fds);
917 /* remove from global client list */
918 uh_client_remove(cur_fd);
925 /* destroy the Lua state */
projects / oweals / openwrt.git / blob