uhttpd: protect tcp receive operations with select, make tcp keep-alive optional...
[openwrt/openwrt.git] / package / uhttpd / src / uhttpd.c
1 /*
2 * uhttpd - Tiny single-threaded httpd - Main component
3 *
4 * Copyright (C) 2010 Jo-Philipp Wich <xm@subsignal.org>
5 *
6 * Licensed under the Apache License, Version 2.0 (the "License");
7 * you may not use this file except in compliance with the License.
8 * You may obtain a copy of the License at
9 *
10 * http://www.apache.org/licenses/LICENSE-2.0
11 *
12 * Unless required by applicable law or agreed to in writing, software
13 * distributed under the License is distributed on an "AS IS" BASIS,
14 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 * See the License for the specific language governing permissions and
16 * limitations under the License.
17 */
18
19 #define _XOPEN_SOURCE 500 /* crypt() */
20
21 #include "uhttpd.h"
22 #include "uhttpd-utils.h"
23 #include "uhttpd-file.h"
24
25 #ifdef HAVE_CGI
26 #include "uhttpd-cgi.h"
27 #endif
28
29 #ifdef HAVE_LUA
30 #include "uhttpd-lua.h"
31 #endif
32
33 #ifdef HAVE_TLS
34 #include "uhttpd-tls.h"
35 #endif
36
37
38 static int run = 1;
39
40 static void uh_sigterm(int sig)
41 {
42 run = 0;
43 }
44
45 static void uh_sigchld(int sig)
46 {
47 while( waitpid(-1, NULL, WNOHANG) > 0 ) { }
48 }
49
50 static void uh_config_parse(struct config *conf)
51 {
52 FILE *c;
53 char line[512];
54 char *col1 = NULL;
55 char *col2 = NULL;
56 char *eol = NULL;
57
58 const char *path = conf->file ? conf->file : "/etc/httpd.conf";
59
60
61 if( (c = fopen(path, "r")) != NULL )
62 {
63 memset(line, 0, sizeof(line));
64
65 while( fgets(line, sizeof(line) - 1, c) )
66 {
67 if( (line[0] == '/') && (strchr(line, ':') != NULL) )
68 {
69 if( !(col1 = strchr(line, ':')) || (*col1++ = 0) ||
70 !(col2 = strchr(col1, ':')) || (*col2++ = 0) ||
71 !(eol = strchr(col2, '\n')) || (*eol++ = 0) )
72 continue;
73
74 if( !uh_auth_add(line, col1, col2) )
75 {
76 fprintf(stderr,
77 "Notice: No password set for user %s, ignoring "
78 "authentication on %s\n", col1, line
79 );
80 }
81 }
82 else if( !strncmp(line, "I:", 2) )
83 {
84 if( !(col1 = strchr(line, ':')) || (*col1++ = 0) ||
85 !(eol = strchr(col1, '\n')) || (*eol++ = 0) )
86 continue;
87
88 conf->index_file = strdup(col1);
89 }
90 else if( !strncmp(line, "E404:", 5) )
91 {
92 if( !(col1 = strchr(line, ':')) || (*col1++ = 0) ||
93 !(eol = strchr(col1, '\n')) || (*eol++ = 0) )
94 continue;
95
96 conf->error_handler = strdup(col1);
97 }
98 #ifdef HAVE_CGI
99 else if( (line[0] == '*') && (strchr(line, ':') != NULL) )
100 {
101 if( !(col1 = strchr(line, '*')) || (*col1++ = 0) ||
102 !(col2 = strchr(col1, ':')) || (*col2++ = 0) ||
103 !(eol = strchr(col2, '\n')) || (*eol++ = 0) )
104 continue;
105
106 if( !uh_interpreter_add(col1, col2) )
107 {
108 fprintf(stderr,
109 "Unable to add interpreter %s for extension %s: "
110 "Out of memory\n", col2, col1
111 );
112 }
113 }
114 #endif
115 }
116
117 fclose(c);
118 }
119 }
120
121 static int uh_socket_bind(
122 fd_set *serv_fds, int *max_fd, const char *host, const char *port,
123 struct addrinfo *hints, int do_tls, struct config *conf
124 ) {
125 int sock = -1;
126 int yes = 1;
127 int status;
128 int bound = 0;
129
130 int tcp_ka_idl, tcp_ka_int, tcp_ka_cnt;
131
132 struct listener *l = NULL;
133 struct addrinfo *addrs = NULL, *p = NULL;
134
135 if( (status = getaddrinfo(host, port, hints, &addrs)) != 0 )
136 {
137 fprintf(stderr, "getaddrinfo(): %s\n", gai_strerror(status));
138 }
139
140 /* try to bind a new socket to each found address */
141 for( p = addrs; p; p = p->ai_next )
142 {
143 /* get the socket */
144 if( (sock = socket(p->ai_family, p->ai_socktype, p->ai_protocol)) == -1 )
145 {
146 perror("socket()");
147 goto error;
148 }
149
150 /* "address already in use" */
151 if( setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &yes, sizeof(yes)) )
152 {
153 perror("setsockopt()");
154 goto error;
155 }
156
157 /* TCP keep-alive */
158 if( conf->tcp_keepalive > 0 )
159 {
160 tcp_ka_idl = 1;
161 tcp_ka_cnt = 3;
162 tcp_ka_int = conf->tcp_keepalive;
163
164 if( setsockopt(sock, SOL_SOCKET, SO_KEEPALIVE, &yes, sizeof(yes)) ||
165 setsockopt(sock, SOL_TCP, TCP_KEEPIDLE, &tcp_ka_idl, sizeof(tcp_ka_idl)) ||
166 setsockopt(sock, SOL_TCP, TCP_KEEPINTVL, &tcp_ka_int, sizeof(tcp_ka_int)) ||
167 setsockopt(sock, SOL_TCP, TCP_KEEPCNT, &tcp_ka_cnt, sizeof(tcp_ka_cnt)) )
168 {
169 fprintf(stderr, "Notice: Unable to enable TCP keep-alive: %s\n",
170 strerror(errno));
171 }
172 }
173
174 /* required to get parallel v4 + v6 working */
175 if( p->ai_family == AF_INET6 )
176 {
177 if( setsockopt(sock, IPPROTO_IPV6, IPV6_V6ONLY, &yes, sizeof(yes)) == -1 )
178 {
179 perror("setsockopt()");
180 goto error;
181 }
182 }
183
184 /* bind */
185 if( bind(sock, p->ai_addr, p->ai_addrlen) == -1 )
186 {
187 perror("bind()");
188 goto error;
189 }
190
191 /* listen */
192 if( listen(sock, UH_LIMIT_CLIENTS) == -1 )
193 {
194 perror("listen()");
195 goto error;
196 }
197
198 /* add listener to global list */
199 if( ! (l = uh_listener_add(sock, conf)) )
200 {
201 fprintf(stderr, "uh_listener_add(): Failed to allocate memory\n");
202 goto error;
203 }
204
205 #ifdef HAVE_TLS
206 /* init TLS */
207 l->tls = do_tls ? conf->tls : NULL;
208 #endif
209
210 /* add socket to server fd set */
211 FD_SET(sock, serv_fds);
212 fd_cloexec(sock);
213 *max_fd = max(*max_fd, sock);
214
215 bound++;
216 continue;
217
218 error:
219 if( sock > 0 )
220 close(sock);
221 }
222
223 freeaddrinfo(addrs);
224
225 return bound;
226 }
227
228 static struct http_request * uh_http_header_parse(struct client *cl, char *buffer, int buflen)
229 {
230 char *method = &buffer[0];
231 char *path = NULL;
232 char *version = NULL;
233
234 char *headers = NULL;
235 char *hdrname = NULL;
236 char *hdrdata = NULL;
237
238 int i;
239 int hdrcount = 0;
240
241 static struct http_request req;
242
243 memset(&req, 0, sizeof(req));
244
245
246 /* terminate initial header line */
247 if( (headers = strfind(buffer, buflen, "\r\n", 2)) != NULL )
248 {
249 buffer[buflen-1] = 0;
250
251 *headers++ = 0;
252 *headers++ = 0;
253
254 /* find request path */
255 if( (path = strchr(buffer, ' ')) != NULL )
256 *path++ = 0;
257
258 /* find http version */
259 if( (path != NULL) && ((version = strchr(path, ' ')) != NULL) )
260 *version++ = 0;
261
262
263 /* check method */
264 if( strcmp(method, "GET") && strcmp(method, "HEAD") && strcmp(method, "POST") )
265 {
266 /* invalid method */
267 uh_http_response(cl, 405, "Method Not Allowed");
268 return NULL;
269 }
270 else
271 {
272 switch(method[0])
273 {
274 case 'G':
275 req.method = UH_HTTP_MSG_GET;
276 break;
277
278 case 'H':
279 req.method = UH_HTTP_MSG_HEAD;
280 break;
281
282 case 'P':
283 req.method = UH_HTTP_MSG_POST;
284 break;
285 }
286 }
287
288 /* check path */
289 if( !path || !strlen(path) )
290 {
291 /* malformed request */
292 uh_http_response(cl, 400, "Bad Request");
293 return NULL;
294 }
295 else
296 {
297 req.url = path;
298 }
299
300 /* check version */
301 if( (version == NULL) || (strcmp(version, "HTTP/0.9") &&
302 strcmp(version, "HTTP/1.0") && strcmp(version, "HTTP/1.1")) )
303 {
304 /* unsupported version */
305 uh_http_response(cl, 400, "Bad Request");
306 return NULL;
307 }
308 else
309 {
310 req.version = strtof(&version[5], NULL);
311 }
312
313
314 /* process header fields */
315 for( i = (int)(headers - buffer); i < buflen; i++ )
316 {
317 /* found eol and have name + value, push out header tuple */
318 if( hdrname && hdrdata && (buffer[i] == '\r' || buffer[i] == '\n') )
319 {
320 buffer[i] = 0;
321
322 /* store */
323 if( (hdrcount + 1) < array_size(req.headers) )
324 {
325 req.headers[hdrcount++] = hdrname;
326 req.headers[hdrcount++] = hdrdata;
327
328 hdrname = hdrdata = NULL;
329 }
330
331 /* too large */
332 else
333 {
334 uh_http_response(cl, 413, "Request Entity Too Large");
335 return NULL;
336 }
337 }
338
339 /* have name but no value and found a colon, start of value */
340 else if( hdrname && !hdrdata && ((i+2) < buflen) &&
341 (buffer[i] == ':') && (buffer[i+1] == ' ')
342 ) {
343 buffer[i] = 0;
344 hdrdata = &buffer[i+2];
345 }
346
347 /* have no name and found [A-Za-z], start of name */
348 else if( !hdrname && isalpha(buffer[i]) )
349 {
350 hdrname = &buffer[i];
351 }
352 }
353
354 /* valid enough */
355 req.redirect_status = 200;
356 return &req;
357 }
358
359 /* Malformed request */
360 uh_http_response(cl, 400, "Bad Request");
361 return NULL;
362 }
363
364
365 static struct http_request * uh_http_header_recv(struct client *cl)
366 {
367 static char buffer[UH_LIMIT_MSGHEAD];
368 char *bufptr = &buffer[0];
369 char *idxptr = NULL;
370
371 struct timeval timeout;
372
373 fd_set reader;
374
375 ssize_t blen = sizeof(buffer)-1;
376 ssize_t rlen = 0;
377
378 memset(buffer, 0, sizeof(buffer));
379
380 while( blen > 0 )
381 {
382 FD_ZERO(&reader);
383 FD_SET(cl->socket, &reader);
384
385 /* fail after 0.1s */
386 timeout.tv_sec = 0;
387 timeout.tv_usec = 100000;
388
389 /* check whether fd is readable */
390 if( select(cl->socket + 1, &reader, NULL, NULL, &timeout) > 0 )
391 {
392 /* receive data */
393 ensure_out(rlen = uh_tcp_peek(cl, bufptr, blen));
394
395 if( (idxptr = strfind(buffer, sizeof(buffer), "\r\n\r\n", 4)) )
396 {
397 ensure_out(rlen = uh_tcp_recv(cl, bufptr,
398 (int)(idxptr - bufptr) + 4));
399
400 /* header read complete ... */
401 blen -= rlen;
402 return uh_http_header_parse(cl, buffer,
403 sizeof(buffer) - blen - 1);
404 }
405 else
406 {
407 ensure_out(rlen = uh_tcp_recv(cl, bufptr, rlen));
408
409 /* unexpected eof - #7904 */
410 if( rlen == 0 )
411 return NULL;
412
413 blen -= rlen;
414 bufptr += rlen;
415 }
416 }
417 else
418 {
419 /* invalid request (unexpected eof/timeout) */
420 return NULL;
421 }
422 }
423
424 /* request entity too large */
425 uh_http_response(cl, 413, "Request Entity Too Large");
426
427 out:
428 return NULL;
429 }
430
431 #if defined(HAVE_LUA) || defined(HAVE_CGI)
432 static int uh_path_match(const char *prefix, const char *url)
433 {
434 if( (strstr(url, prefix) == url) &&
435 ((prefix[strlen(prefix)-1] == '/') ||
436 (strlen(url) == strlen(prefix)) ||
437 (url[strlen(prefix)] == '/'))
438 ) {
439 return 1;
440 }
441
442 return 0;
443 }
444 #endif
445
446 static void uh_dispatch_request(
447 struct client *cl, struct http_request *req, struct path_info *pin
448 ) {
449 #ifdef HAVE_CGI
450 struct interpreter *ipr = NULL;
451
452 if( uh_path_match(cl->server->conf->cgi_prefix, pin->name) ||
453 (ipr = uh_interpreter_lookup(pin->phys)) )
454 {
455 uh_cgi_request(cl, req, pin, ipr);
456 }
457 else
458 #endif
459 {
460 uh_file_request(cl, req, pin);
461 }
462 }
463
464 static void uh_mainloop(struct config *conf, fd_set serv_fds, int max_fd)
465 {
466 /* master file descriptor list */
467 fd_set used_fds, read_fds;
468
469 /* working structs */
470 struct http_request *req;
471 struct path_info *pin;
472 struct client *cl;
473
474 /* maximum file descriptor number */
475 int new_fd, cur_fd = 0;
476
477 /* clear the master and temp sets */
478 FD_ZERO(&used_fds);
479 FD_ZERO(&read_fds);
480
481 /* backup server descriptor set */
482 used_fds = serv_fds;
483
484 /* loop */
485 while(run)
486 {
487 /* create a working copy of the used fd set */
488 read_fds = used_fds;
489
490 /* sleep until socket activity */
491 if( select(max_fd + 1, &read_fds, NULL, NULL, NULL) == -1 )
492 {
493 perror("select()");
494 exit(1);
495 }
496
497 /* run through the existing connections looking for data to be read */
498 for( cur_fd = 0; cur_fd <= max_fd; cur_fd++ )
499 {
500 /* is a socket managed by us */
501 if( FD_ISSET(cur_fd, &read_fds) )
502 {
503 /* is one of our listen sockets */
504 if( FD_ISSET(cur_fd, &serv_fds) )
505 {
506 /* handle new connections */
507 if( (new_fd = accept(cur_fd, NULL, 0)) != -1 )
508 {
509 /* add to global client list */
510 if( (cl = uh_client_add(new_fd, uh_listener_lookup(cur_fd))) != NULL )
511 {
512 #ifdef HAVE_TLS
513 /* setup client tls context */
514 if( conf->tls )
515 conf->tls_accept(cl);
516 #endif
517
518 /* add client socket to global fdset */
519 FD_SET(new_fd, &used_fds);
520 fd_cloexec(new_fd);
521 max_fd = max(max_fd, new_fd);
522 }
523
524 /* insufficient resources */
525 else
526 {
527 fprintf(stderr,
528 "uh_client_add(): Cannot allocate memory\n");
529
530 close(new_fd);
531 }
532 }
533 }
534
535 /* is a client socket */
536 else
537 {
538 if( ! (cl = uh_client_lookup(cur_fd)) )
539 {
540 /* this should not happen! */
541 fprintf(stderr,
542 "uh_client_lookup(): No entry for fd %i!\n",
543 cur_fd);
544
545 goto cleanup;
546 }
547
548 /* parse message header */
549 if( (req = uh_http_header_recv(cl)) != NULL )
550 {
551 /* RFC1918 filtering required? */
552 if( conf->rfc1918_filter &&
553 sa_rfc1918(&cl->peeraddr) &&
554 !sa_rfc1918(&cl->servaddr) )
555 {
556 uh_http_sendhf(cl, 403, "Forbidden",
557 "Rejected request from RFC1918 IP "
558 "to public server address");
559 }
560 else
561 #ifdef HAVE_LUA
562 /* Lua request? */
563 if( conf->lua_state &&
564 uh_path_match(conf->lua_prefix, req->url) )
565 {
566 conf->lua_request(cl, req, conf->lua_state);
567 }
568 else
569 #endif
570 /* dispatch request */
571 if( (pin = uh_path_lookup(cl, req->url)) != NULL )
572 {
573 /* auth ok? */
574 if( !pin->redirected && uh_auth_check(cl, req, pin) )
575 uh_dispatch_request(cl, req, pin);
576 }
577
578 /* 404 */
579 else
580 {
581 /* Try to invoke an error handler */
582 pin = uh_path_lookup(cl, conf->error_handler);
583
584 if( pin && uh_auth_check(cl, req, pin) )
585 {
586 req->redirect_status = 404;
587 uh_dispatch_request(cl, req, pin);
588 }
589 else
590 {
591 uh_http_sendhf(cl, 404, "Not Found",
592 "No such file or directory");
593 }
594 }
595 }
596
597 #ifdef HAVE_TLS
598 /* free client tls context */
599 if( conf->tls )
600 conf->tls_close(cl);
601 #endif
602
603 cleanup:
604
605 /* close client socket */
606 close(cur_fd);
607 FD_CLR(cur_fd, &used_fds);
608
609 /* remove from global client list */
610 uh_client_remove(cur_fd);
611 }
612 }
613 }
614 }
615
616 #ifdef HAVE_LUA
617 /* destroy the Lua state */
618 if( conf->lua_state != NULL )
619 conf->lua_close(conf->lua_state);
620 #endif
621 }
622
623
624 int main (int argc, char **argv)
625 {
626 /* master file descriptor list */
627 fd_set serv_fds;
628
629 /* working structs */
630 struct addrinfo hints;
631 struct sigaction sa;
632 struct config conf;
633
634 /* signal mask */
635 sigset_t ss;
636
637 /* maximum file descriptor number */
638 int cur_fd, max_fd = 0;
639
640 #ifdef HAVE_TLS
641 int tls = 0;
642 int keys = 0;
643 #endif
644
645 int bound = 0;
646 int nofork = 0;
647
648 /* args */
649 int opt;
650 char bind[128];
651 char *port = NULL;
652
653 #if defined(HAVE_TLS) || defined(HAVE_LUA)
654 /* library handle */
655 void *lib;
656 #endif
657
658 FD_ZERO(&serv_fds);
659
660 /* handle SIGPIPE, SIGINT, SIGTERM, SIGCHLD */
661 sa.sa_flags = 0;
662 sigemptyset(&sa.sa_mask);
663
664 sa.sa_handler = SIG_IGN;
665 sigaction(SIGPIPE, &sa, NULL);
666
667 sa.sa_handler = uh_sigchld;
668 sigaction(SIGCHLD, &sa, NULL);
669
670 sa.sa_handler = uh_sigterm;
671 sigaction(SIGINT, &sa, NULL);
672 sigaction(SIGTERM, &sa, NULL);
673
674 /* defer SIGCHLD */
675 sigemptyset(&ss);
676 sigaddset(&ss, SIGCHLD);
677 sigprocmask(SIG_BLOCK, &ss, NULL);
678
679 /* prepare addrinfo hints */
680 memset(&hints, 0, sizeof(hints));
681 hints.ai_family = AF_UNSPEC;
682 hints.ai_socktype = SOCK_STREAM;
683 hints.ai_flags = AI_PASSIVE;
684
685 /* parse args */
686 memset(&conf, 0, sizeof(conf));
687 memset(bind, 0, sizeof(bind));
688
689 #ifdef HAVE_TLS
690 /* load TLS plugin */
691 if( ! (lib = dlopen("uhttpd_tls.so", RTLD_LAZY | RTLD_GLOBAL)) )
692 {
693 fprintf(stderr,
694 "Notice: Unable to load TLS plugin - disabling SSL support! "
695 "(Reason: %s)\n", dlerror()
696 );
697 }
698 else
699 {
700 /* resolve functions */
701 if( !(conf.tls_init = dlsym(lib, "uh_tls_ctx_init")) ||
702 !(conf.tls_cert = dlsym(lib, "uh_tls_ctx_cert")) ||
703 !(conf.tls_key = dlsym(lib, "uh_tls_ctx_key")) ||
704 !(conf.tls_free = dlsym(lib, "uh_tls_ctx_free")) ||
705 !(conf.tls_accept = dlsym(lib, "uh_tls_client_accept")) ||
706 !(conf.tls_close = dlsym(lib, "uh_tls_client_close")) ||
707 !(conf.tls_recv = dlsym(lib, "uh_tls_client_recv")) ||
708 !(conf.tls_send = dlsym(lib, "uh_tls_client_send"))
709 ) {
710 fprintf(stderr,
711 "Error: Failed to lookup required symbols "
712 "in TLS plugin: %s\n", dlerror()
713 );
714 exit(1);
715 }
716
717 /* init SSL context */
718 if( ! (conf.tls = conf.tls_init()) )
719 {
720 fprintf(stderr, "Error: Failed to initalize SSL context\n");
721 exit(1);
722 }
723 }
724 #endif
725
726 while( (opt = getopt(argc, argv,
727 "fSDRC:K:E:I:p:s:h:c:l:L:d:r:m:x:i:t:T:A:")) > 0
728 ) {
729 switch(opt)
730 {
731 /* [addr:]port */
732 case 'p':
733 case 's':
734 if( (port = strrchr(optarg, ':')) != NULL )
735 {
736 if( (optarg[0] == '[') && (port > optarg) && (port[-1] == ']') )
737 memcpy(bind, optarg + 1,
738 min(sizeof(bind), (int)(port - optarg) - 2));
739 else
740 memcpy(bind, optarg,
741 min(sizeof(bind), (int)(port - optarg)));
742
743 port++;
744 }
745 else
746 {
747 port = optarg;
748 }
749
750 #ifdef HAVE_TLS
751 if( opt == 's' )
752 {
753 if( !conf.tls )
754 {
755 fprintf(stderr,
756 "Notice: TLS support is disabled, "
757 "ignoring '-s %s'\n", optarg
758 );
759 continue;
760 }
761
762 tls = 1;
763 }
764 #endif
765
766 /* bind sockets */
767 bound += uh_socket_bind(
768 &serv_fds, &max_fd, bind[0] ? bind : NULL, port,
769 &hints, (opt == 's'), &conf
770 );
771
772 memset(bind, 0, sizeof(bind));
773 break;
774
775 #ifdef HAVE_TLS
776 /* certificate */
777 case 'C':
778 if( conf.tls )
779 {
780 if( conf.tls_cert(conf.tls, optarg) < 1 )
781 {
782 fprintf(stderr,
783 "Error: Invalid certificate file given\n");
784 exit(1);
785 }
786
787 keys++;
788 }
789
790 break;
791
792 /* key */
793 case 'K':
794 if( conf.tls )
795 {
796 if( conf.tls_key(conf.tls, optarg) < 1 )
797 {
798 fprintf(stderr,
799 "Error: Invalid private key file given\n");
800 exit(1);
801 }
802
803 keys++;
804 }
805
806 break;
807 #endif
808
809 /* docroot */
810 case 'h':
811 if( ! realpath(optarg, conf.docroot) )
812 {
813 fprintf(stderr, "Error: Invalid directory %s: %s\n",
814 optarg, strerror(errno));
815 exit(1);
816 }
817 break;
818
819 /* error handler */
820 case 'E':
821 if( (strlen(optarg) == 0) || (optarg[0] != '/') )
822 {
823 fprintf(stderr, "Error: Invalid error handler: %s\n",
824 optarg);
825 exit(1);
826 }
827 conf.error_handler = optarg;
828 break;
829
830 /* index file */
831 case 'I':
832 if( (strlen(optarg) == 0) || (optarg[0] == '/') )
833 {
834 fprintf(stderr, "Error: Invalid index page: %s\n",
835 optarg);
836 exit(1);
837 }
838 conf.index_file = optarg;
839 break;
840
841 /* don't follow symlinks */
842 case 'S':
843 conf.no_symlinks = 1;
844 break;
845
846 /* don't list directories */
847 case 'D':
848 conf.no_dirlists = 1;
849 break;
850
851 case 'R':
852 conf.rfc1918_filter = 1;
853 break;
854
855 #ifdef HAVE_CGI
856 /* cgi prefix */
857 case 'x':
858 conf.cgi_prefix = optarg;
859 break;
860
861 /* interpreter */
862 case 'i':
863 if( (optarg[0] == '.') && (port = strchr(optarg, '=')) )
864 {
865 *port++ = 0;
866 uh_interpreter_add(optarg, port);
867 }
868 else
869 {
870 fprintf(stderr, "Error: Invalid interpreter: %s\n",
871 optarg);
872 exit(1);
873 }
874 break;
875 #endif
876
877 #ifdef HAVE_LUA
878 /* lua prefix */
879 case 'l':
880 conf.lua_prefix = optarg;
881 break;
882
883 /* lua handler */
884 case 'L':
885 conf.lua_handler = optarg;
886 break;
887 #endif
888
889 #if defined(HAVE_CGI) || defined(HAVE_LUA)
890 /* script timeout */
891 case 't':
892 conf.script_timeout = atoi(optarg);
893 break;
894 #endif
895
896 /* network timeout */
897 case 'T':
898 conf.network_timeout = atoi(optarg);
899 break;
900
901 /* tcp keep-alive */
902 case 'A':
903 conf.tcp_keepalive = atoi(optarg);
904 break;
905
906 /* no fork */
907 case 'f':
908 nofork = 1;
909 break;
910
911 /* urldecode */
912 case 'd':
913 if( (port = malloc(strlen(optarg)+1)) != NULL )
914 {
915 memset(port, 0, strlen(optarg)+1);
916 uh_urldecode(port, strlen(optarg), optarg, strlen(optarg));
917 printf("%s", port);
918 free(port);
919 exit(0);
920 }
921 break;
922
923 /* basic auth realm */
924 case 'r':
925 conf.realm = optarg;
926 break;
927
928 /* md5 crypt */
929 case 'm':
930 printf("%s\n", crypt(optarg, "$1$"));
931 exit(0);
932 break;
933
934 /* config file */
935 case 'c':
936 conf.file = optarg;
937 break;
938
939 default:
940 fprintf(stderr,
941 "Usage: %s -p [addr:]port [-h docroot]\n"
942 " -f Do not fork to background\n"
943 " -c file Configuration file, default is '/etc/httpd.conf'\n"
944 " -p [addr:]port Bind to specified address and port, multiple allowed\n"
945 #ifdef HAVE_TLS
946 " -s [addr:]port Like -p but provide HTTPS on this port\n"
947 " -C file ASN.1 server certificate file\n"
948 " -K file ASN.1 server private key file\n"
949 #endif
950 " -h directory Specify the document root, default is '.'\n"
951 " -E string Use given virtual URL as 404 error handler\n"
952 " -I string Use given filename as index page for directories\n"
953 " -S Do not follow symbolic links outside of the docroot\n"
954 " -D Do not allow directory listings, send 403 instead\n"
955 " -R Enable RFC1918 filter\n"
956 #ifdef HAVE_LUA
957 " -l string URL prefix for Lua handler, default is '/lua'\n"
958 " -L file Lua handler script, omit to disable Lua\n"
959 #endif
960 #ifdef HAVE_CGI
961 " -x string URL prefix for CGI handler, default is '/cgi-bin'\n"
962 " -i .ext=path Use interpreter at path for files with the given extension\n"
963 #endif
964 #if defined(HAVE_CGI) || defined(HAVE_LUA)
965 " -t seconds CGI and Lua script timeout in seconds, default is 60\n"
966 #endif
967 " -T seconds Network timeout in seconds, default is 30\n"
968 " -d string URL decode given string\n"
969 " -r string Specify basic auth realm\n"
970 " -m string MD5 crypt given string\n"
971 "\n", argv[0]
972 );
973
974 exit(1);
975 }
976 }
977
978 #ifdef HAVE_TLS
979 if( (tls == 1) && (keys < 2) )
980 {
981 fprintf(stderr, "Error: Missing private key or certificate file\n");
982 exit(1);
983 }
984 #endif
985
986 if( bound < 1 )
987 {
988 fprintf(stderr, "Error: No sockets bound, unable to continue\n");
989 exit(1);
990 }
991
992 /* default docroot */
993 if( !conf.docroot[0] && !realpath(".", conf.docroot) )
994 {
995 fprintf(stderr, "Error: Can not determine default document root: %s\n",
996 strerror(errno));
997 exit(1);
998 }
999
1000 /* default realm */
1001 if( ! conf.realm )
1002 conf.realm = "Protected Area";
1003
1004 /* config file */
1005 uh_config_parse(&conf);
1006
1007 /* default network timeout */
1008 if( conf.network_timeout <= 0 )
1009 conf.network_timeout = 30;
1010
1011 #if defined(HAVE_CGI) || defined(HAVE_LUA)
1012 /* default script timeout */
1013 if( conf.script_timeout <= 0 )
1014 conf.script_timeout = 60;
1015 #endif
1016
1017 #ifdef HAVE_CGI
1018 /* default cgi prefix */
1019 if( ! conf.cgi_prefix )
1020 conf.cgi_prefix = "/cgi-bin";
1021 #endif
1022
1023 #ifdef HAVE_LUA
1024 /* load Lua plugin */
1025 if( ! (lib = dlopen("uhttpd_lua.so", RTLD_LAZY | RTLD_GLOBAL)) )
1026 {
1027 fprintf(stderr,
1028 "Notice: Unable to load Lua plugin - disabling Lua support! "
1029 "(Reason: %s)\n", dlerror()
1030 );
1031 }
1032 else
1033 {
1034 /* resolve functions */
1035 if( !(conf.lua_init = dlsym(lib, "uh_lua_init")) ||
1036 !(conf.lua_close = dlsym(lib, "uh_lua_close")) ||
1037 !(conf.lua_request = dlsym(lib, "uh_lua_request"))
1038 ) {
1039 fprintf(stderr,
1040 "Error: Failed to lookup required symbols "
1041 "in Lua plugin: %s\n", dlerror()
1042 );
1043 exit(1);
1044 }
1045
1046 /* init Lua runtime if handler is specified */
1047 if( conf.lua_handler )
1048 {
1049 /* default lua prefix */
1050 if( ! conf.lua_prefix )
1051 conf.lua_prefix = "/lua";
1052
1053 conf.lua_state = conf.lua_init(conf.lua_handler);
1054 }
1055 }
1056 #endif
1057
1058 /* fork (if not disabled) */
1059 if( ! nofork )
1060 {
1061 switch( fork() )
1062 {
1063 case -1:
1064 perror("fork()");
1065 exit(1);
1066
1067 case 0:
1068 /* daemon setup */
1069 if( chdir("/") )
1070 perror("chdir()");
1071
1072 if( (cur_fd = open("/dev/null", O_WRONLY)) > -1 )
1073 dup2(cur_fd, 0);
1074
1075 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
1076 dup2(cur_fd, 1);
1077
1078 if( (cur_fd = open("/dev/null", O_RDONLY)) > -1 )
1079 dup2(cur_fd, 2);
1080
1081 break;
1082
1083 default:
1084 exit(0);
1085 }
1086 }
1087
1088 /* server main loop */
1089 uh_mainloop(&conf, serv_fds, max_fd);
1090
1091 #ifdef HAVE_LUA
1092 /* destroy the Lua state */
1093 if( conf.lua_state != NULL )
1094 conf.lua_close(conf.lua_state);
1095 #endif
1096
1097 return 0;
1098 }