2 * uhttpd - Tiny single-threaded httpd - Main component
4 * Copyright (C) 2010 Jo-Philipp Wich <xm@subsignal.org>
6 * Licensed under the Apache License, Version 2.0 (the "License");
7 * you may not use this file except in compliance with the License.
8 * You may obtain a copy of the License at
10 * http://www.apache.org/licenses/LICENSE-2.0
12 * Unless required by applicable law or agreed to in writing, software
13 * distributed under the License is distributed on an "AS IS" BASIS,
14 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 * See the License for the specific language governing permissions and
16 * limitations under the License.
19 #define _XOPEN_SOURCE 500 /* crypt() */
22 #include "uhttpd-utils.h"
23 #include "uhttpd-file.h"
26 #include "uhttpd-cgi.h"
30 #include "uhttpd-lua.h"
34 #include "uhttpd-tls.h"
40 static void uh_sigterm(int sig
)
45 static void uh_sigchld(int sig
)
47 while( waitpid(-1, NULL
, WNOHANG
) > 0 ) { }
50 static void uh_config_parse(const char *path
)
58 if( (c
= fopen(path
? path
: "/etc/httpd.conf", "r")) != NULL
)
60 memset(line
, 0, sizeof(line
));
62 while( fgets(line
, sizeof(line
) - 1, c
) )
64 if( (line
[0] == '/') && (strchr(line
, ':') != NULL
) )
66 if( !(user
= strchr(line
, ':')) || (*user
++ = 0) ||
67 !(pass
= strchr(user
, ':')) || (*pass
++ = 0) ||
68 !(eol
= strchr(pass
, '\n')) || (*eol
++ = 0) )
71 if( !uh_auth_add(line
, user
, pass
) )
74 "Can not manage more than %i basic auth realms, "
75 "will skip the rest\n", UH_LIMIT_AUTHREALMS
87 static int uh_socket_bind(
88 fd_set
*serv_fds
, int *max_fd
, const char *host
, const char *port
,
89 struct addrinfo
*hints
, int do_tls
, struct config
*conf
96 struct listener
*l
= NULL
;
97 struct addrinfo
*addrs
= NULL
, *p
= NULL
;
99 if( (status
= getaddrinfo(host
, port
, hints
, &addrs
)) != 0 )
101 fprintf(stderr
, "getaddrinfo(): %s\n", gai_strerror(status
));
104 /* try to bind a new socket to each found address */
105 for( p
= addrs
; p
; p
= p
->ai_next
)
108 if( (sock
= socket(p
->ai_family
, p
->ai_socktype
, p
->ai_protocol
)) == -1 )
114 /* "address already in use" */
115 if( setsockopt(sock
, SOL_SOCKET
, SO_REUSEADDR
, &yes
, sizeof(yes
)) == -1 )
117 perror("setsockopt()");
121 /* required to get parallel v4 + v6 working */
122 if( p
->ai_family
== AF_INET6
)
124 if( setsockopt(sock
, IPPROTO_IPV6
, IPV6_V6ONLY
, &yes
, sizeof(yes
)) == -1 )
126 perror("setsockopt()");
132 if( bind(sock
, p
->ai_addr
, p
->ai_addrlen
) == -1 )
139 if( listen(sock
, UH_LIMIT_CLIENTS
) == -1 )
145 /* add listener to global list */
146 if( ! (l
= uh_listener_add(sock
, conf
)) )
149 "uh_listener_add(): Can not create more than "
150 "%i listen sockets\n", UH_LIMIT_LISTENERS
158 l
->tls
= do_tls
? conf
->tls
: NULL
;
161 /* add socket to server fd set */
162 FD_SET(sock
, serv_fds
);
164 *max_fd
= max(*max_fd
, sock
);
179 static struct http_request
* uh_http_header_parse(struct client
*cl
, char *buffer
, int buflen
)
181 char *method
= &buffer
[0];
183 char *version
= NULL
;
185 char *headers
= NULL
;
186 char *hdrname
= NULL
;
187 char *hdrdata
= NULL
;
192 static struct http_request req
;
194 memset(&req
, 0, sizeof(req
));
197 /* terminate initial header line */
198 if( (headers
= strfind(buffer
, buflen
, "\r\n", 2)) != NULL
)
200 buffer
[buflen
-1] = 0;
205 /* find request path */
206 if( (path
= strchr(buffer
, ' ')) != NULL
)
209 /* find http version */
210 if( (path
!= NULL
) && ((version
= strchr(path
, ' ')) != NULL
) )
215 if( strcmp(method
, "GET") && strcmp(method
, "HEAD") && strcmp(method
, "POST") )
218 uh_http_response(cl
, 405, "Method Not Allowed");
226 req
.method
= UH_HTTP_MSG_GET
;
230 req
.method
= UH_HTTP_MSG_HEAD
;
234 req
.method
= UH_HTTP_MSG_POST
;
240 if( !path
|| !strlen(path
) )
242 /* malformed request */
243 uh_http_response(cl
, 400, "Bad Request");
252 if( strcmp(version
, "HTTP/0.9") && strcmp(version
, "HTTP/1.0") && strcmp(version
, "HTTP/1.1") )
254 /* unsupported version */
255 uh_http_response(cl
, 400, "Bad Request");
260 req
.version
= strtof(&version
[5], NULL
);
264 /* process header fields */
265 for( i
= (int)(headers
- buffer
); i
< buflen
; i
++ )
267 /* found eol and have name + value, push out header tuple */
268 if( hdrname
&& hdrdata
&& (buffer
[i
] == '\r' || buffer
[i
] == '\n') )
273 if( (hdrcount
+ 1) < array_size(req
.headers
) )
275 req
.headers
[hdrcount
++] = hdrname
;
276 req
.headers
[hdrcount
++] = hdrdata
;
278 hdrname
= hdrdata
= NULL
;
284 uh_http_response(cl
, 413, "Request Entity Too Large");
289 /* have name but no value and found a colon, start of value */
290 else if( hdrname
&& !hdrdata
&& ((i
+2) < buflen
) &&
291 (buffer
[i
] == ':') && (buffer
[i
+1] == ' ')
294 hdrdata
= &buffer
[i
+2];
297 /* have no name and found [A-Z], start of name */
298 else if( !hdrname
&& isalpha(buffer
[i
]) && isupper(buffer
[i
]) )
300 hdrname
= &buffer
[i
];
308 /* Malformed request */
309 uh_http_response(cl
, 400, "Bad Request");
314 static struct http_request
* uh_http_header_recv(struct client
*cl
)
316 static char buffer
[UH_LIMIT_MSGHEAD
];
317 char *bufptr
= &buffer
[0];
320 struct timeval timeout
;
324 ssize_t blen
= sizeof(buffer
)-1;
328 memset(buffer
, 0, sizeof(buffer
));
333 FD_SET(cl
->socket
, &reader
);
335 /* fail after 0.1s */
337 timeout
.tv_usec
= 100000;
339 /* check whether fd is readable */
340 if( select(cl
->socket
+ 1, &reader
, NULL
, NULL
, &timeout
) > 0 )
343 rlen
= uh_tcp_peek(cl
, bufptr
, blen
);
347 if( (idxptr
= strfind(buffer
, sizeof(buffer
), "\r\n\r\n", 4)) )
349 blen
-= uh_tcp_recv(cl
, bufptr
, (int)(idxptr
- bufptr
) + 4);
351 /* header read complete ... */
352 return uh_http_header_parse(cl
, buffer
, sizeof(buffer
) - blen
- 1);
356 rlen
= uh_tcp_recv(cl
, bufptr
, rlen
);
363 /* invalid request (unexpected eof/timeout) */
364 uh_http_response(cl
, 408, "Request Timeout");
370 /* invalid request (unexpected eof/timeout) */
371 uh_http_response(cl
, 408, "Request Timeout");
376 /* request entity too large */
377 uh_http_response(cl
, 413, "Request Entity Too Large");
381 static int uh_path_match(const char *prefix
, const char *url
)
383 if( (strstr(url
, prefix
) == url
) &&
384 ((prefix
[strlen(prefix
)-1] == '/') ||
385 (strlen(url
) == strlen(prefix
)) ||
386 (url
[strlen(prefix
)] == '/'))
395 int main (int argc
, char **argv
)
402 /* master file descriptor list */
403 fd_set used_fds
, serv_fds
, read_fds
;
405 /* working structs */
406 struct addrinfo hints
;
407 struct http_request
*req
;
408 struct path_info
*pin
;
413 /* maximum file descriptor number */
414 int new_fd
, cur_fd
, max_fd
= 0;
426 /* library handles */
430 /* clear the master and temp sets */
435 /* handle SIGPIPE, SIGCHILD */
437 sigemptyset(&sa
.sa_mask
);
439 sa
.sa_handler
= SIG_IGN
;
440 sigaction(SIGPIPE
, &sa
, NULL
);
442 sa
.sa_handler
= uh_sigchld
;
443 sigaction(SIGCHLD
, &sa
, NULL
);
445 sa
.sa_handler
= uh_sigterm
;
446 sigaction(SIGINT
, &sa
, NULL
);
447 sigaction(SIGTERM
, &sa
, NULL
);
449 /* prepare addrinfo hints */
450 memset(&hints
, 0, sizeof(hints
));
451 hints
.ai_family
= AF_UNSPEC
;
452 hints
.ai_socktype
= SOCK_STREAM
;
453 hints
.ai_flags
= AI_PASSIVE
;
456 memset(&conf
, 0, sizeof(conf
));
457 memset(bind
, 0, sizeof(bind
));
460 /* load TLS plugin */
461 if( ! (tls_lib
= dlopen("uhttpd_tls.so", RTLD_LAZY
| RTLD_GLOBAL
)) )
464 "Notice: Unable to load TLS plugin - disabling SSL support! "
465 "(Reason: %s)\n", dlerror()
470 /* resolve functions */
471 if( !(conf
.tls_init
= dlsym(tls_lib
, "uh_tls_ctx_init")) ||
472 !(conf
.tls_cert
= dlsym(tls_lib
, "uh_tls_ctx_cert")) ||
473 !(conf
.tls_key
= dlsym(tls_lib
, "uh_tls_ctx_key")) ||
474 !(conf
.tls_free
= dlsym(tls_lib
, "uh_tls_ctx_free")) ||
475 !(conf
.tls_accept
= dlsym(tls_lib
, "uh_tls_client_accept")) ||
476 !(conf
.tls_close
= dlsym(tls_lib
, "uh_tls_client_close")) ||
477 !(conf
.tls_recv
= dlsym(tls_lib
, "uh_tls_client_recv")) ||
478 !(conf
.tls_send
= dlsym(tls_lib
, "uh_tls_client_send"))
481 "Error: Failed to lookup required symbols "
482 "in TLS plugin: %s\n", dlerror()
487 /* init SSL context */
488 if( ! (conf
.tls
= conf
.tls_init()) )
490 fprintf(stderr
, "Error: Failed to initalize SSL context\n");
496 while( (opt
= getopt(argc
, argv
, "fC:K:p:s:h:c:l:L:d:r:m:x:t:")) > 0 )
503 if( (port
= strrchr(optarg
, ':')) != NULL
)
505 if( (optarg
[0] == '[') && (port
> optarg
) && (port
[-1] == ']') )
506 memcpy(bind
, optarg
+ 1,
507 min(sizeof(bind
), (int)(port
- optarg
) - 2));
510 min(sizeof(bind
), (int)(port
- optarg
)));
524 "Notice: TLS support is disabled, "
525 "ignoring '-s %s'\n", optarg
534 bound
+= uh_socket_bind(
535 &serv_fds
, &max_fd
, bind
[0] ? bind
: NULL
, port
,
536 &hints
, (opt
== 's'), &conf
546 if( conf
.tls_cert(conf
.tls
, optarg
) < 1 )
549 "Error: Invalid certificate file given\n");
562 if( conf
.tls_key(conf
.tls
, optarg
) < 1 )
565 "Error: Invalid private key file given\n");
577 if( ! realpath(optarg
, conf
.docroot
) )
579 fprintf(stderr
, "Error: Invalid directory %s: %s\n",
580 optarg
, strerror(errno
));
588 conf
.cgi_prefix
= optarg
;
595 conf
.lua_prefix
= optarg
;
600 conf
.lua_handler
= optarg
;
604 #if defined(HAVE_CGI) || defined(HAVE_LUA)
607 conf
.script_timeout
= atoi(optarg
);
618 if( (port
= malloc(strlen(optarg
)+1)) != NULL
)
620 memset(port
, 0, strlen(optarg
)+1);
621 uh_urldecode(port
, strlen(optarg
), optarg
, strlen(optarg
));
628 /* basic auth realm */
635 printf("%s\n", crypt(optarg
, "$1$"));
646 "Usage: %s -p [addr:]port [-h docroot]\n"
647 " -f Do not fork to background\n"
648 " -c file Configuration file, default is '/etc/httpd.conf'\n"
649 " -p [addr:]port Bind to specified address and port, multiple allowed\n"
651 " -s [addr:]port Like -p but provide HTTPS on this port\n"
652 " -C file ASN.1 server certificate file\n"
653 " -K file ASN.1 server private key file\n"
655 " -h directory Specify the document root, default is '.'\n"
657 " -l string URL prefix for Lua handler, default is '/lua'\n"
658 " -L file Lua handler script, omit to disable Lua\n"
661 " -x string URL prefix for CGI handler, default is '/cgi-bin'\n"
663 #if defined(HAVE_CGI) || defined(HAVE_LUA)
664 " -t seconds CGI and Lua script timeout in seconds, default is 60\n"
666 " -d string URL decode given string\n"
667 " -r string Specify basic auth realm\n"
668 " -m string MD5 crypt given string\n"
677 if( (tls
== 1) && (keys
< 2) )
679 fprintf(stderr
, "Error: Missing private key or certificate file\n");
686 fprintf(stderr
, "Error: No sockets bound, unable to continue\n");
690 /* default docroot */
691 if( !conf
.docroot
[0] && !realpath(".", conf
.docroot
) )
693 fprintf(stderr
, "Error: Can not determine default document root: %s\n",
700 conf
.realm
= "Protected Area";
703 uh_config_parse(conf
.file
);
705 #if defined(HAVE_CGI) || defined(HAVE_LUA)
706 /* default script timeout */
707 if( conf
.script_timeout
<= 0 )
708 conf
.script_timeout
= 60;
712 /* default cgi prefix */
713 if( ! conf
.cgi_prefix
)
714 conf
.cgi_prefix
= "/cgi-bin";
718 /* load Lua plugin */
719 if( ! (lua_lib
= dlopen("uhttpd_lua.so", RTLD_LAZY
| RTLD_GLOBAL
)) )
722 "Notice: Unable to load Lua plugin - disabling Lua support! "
723 "(Reason: %s)\n", dlerror()
728 /* resolve functions */
729 if( !(conf
.lua_init
= dlsym(lua_lib
, "uh_lua_init")) ||
730 !(conf
.lua_close
= dlsym(lua_lib
, "uh_lua_close")) ||
731 !(conf
.lua_request
= dlsym(lua_lib
, "uh_lua_request"))
734 "Error: Failed to lookup required symbols "
735 "in Lua plugin: %s\n", dlerror()
740 /* init Lua runtime if handler is specified */
741 if( conf
.lua_handler
)
743 /* default lua prefix */
744 if( ! conf
.lua_prefix
)
745 conf
.lua_prefix
= "/lua";
747 L
= conf
.lua_init(conf
.lua_handler
);
752 /* fork (if not disabled) */
766 if( (cur_fd
= open("/dev/null", O_WRONLY
)) > -1 )
769 if( (cur_fd
= open("/dev/null", O_RDONLY
)) > -1 )
772 if( (cur_fd
= open("/dev/null", O_RDONLY
)) > -1 )
782 /* backup server descriptor set */
788 /* create a working copy of the used fd set */
791 /* sleep until socket activity */
792 if( select(max_fd
+ 1, &read_fds
, NULL
, NULL
, NULL
) == -1 )
798 /* run through the existing connections looking for data to be read */
799 for( cur_fd
= 0; cur_fd
<= max_fd
; cur_fd
++ )
801 /* is a socket managed by us */
802 if( FD_ISSET(cur_fd
, &read_fds
) )
804 /* is one of our listen sockets */
805 if( FD_ISSET(cur_fd
, &serv_fds
) )
807 /* handle new connections */
808 if( (new_fd
= accept(cur_fd
, NULL
, 0)) != -1 )
810 /* add to global client list */
811 if( (cl
= uh_client_add(new_fd
, uh_listener_lookup(cur_fd
))) != NULL
)
814 /* setup client tls context */
819 /* add client socket to global fdset */
820 FD_SET(new_fd
, &used_fds
);
822 max_fd
= max(max_fd
, new_fd
);
825 /* insufficient resources */
829 "uh_client_add(): Can not manage more than "
830 "%i client sockets, connection dropped\n",
839 /* is a client socket */
842 if( ! (cl
= uh_client_lookup(cur_fd
)) )
844 /* this should not happen! */
846 "uh_client_lookup(): No entry for fd %i!\n",
852 /* parse message header */
853 if( (req
= uh_http_header_recv(cl
)) != NULL
)
857 if( L
&& uh_path_match(conf
.lua_prefix
, req
->url
) )
859 conf
.lua_request(cl
, req
, L
);
863 /* dispatch request */
864 if( (pin
= uh_path_lookup(cl
, req
->url
)) != NULL
)
867 if( uh_auth_check(cl
, req
, pin
) )
870 if( uh_path_match(conf
.cgi_prefix
, pin
->name
) )
872 uh_cgi_request(cl
, req
, pin
);
877 uh_file_request(cl
, req
, pin
);
885 uh_http_sendhf(cl
, 404, "Not Found",
886 "No such file or directory");
893 uh_http_sendhf(cl
, 400, "Bad Request",
894 "Malformed request received");
898 /* free client tls context */
905 /* close client socket */
907 FD_CLR(cur_fd
, &used_fds
);
909 /* remove from global client list */
910 uh_client_remove(cur_fd
);
917 /* destroy the Lua state */