blob: 82891f121edeefceb9ebc245efe65166f2ca1412 [file] [log] [blame]
Bernhard Reutner-Fischer2c998512006-04-12 18:09:26 +00001/* vi: set sw=4 ts=4: */
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002/*
3 * httpd implementation for busybox
4 *
Glenn L McGrath06e95652003-02-09 06:51:14 +00005 * Copyright (C) 2002,2003 Glenn Engel <glenne@engel.org>
"Vladimir N. Oleynik"79af7d52006-01-26 10:58:12 +00006 * Copyright (C) 2003-2006 Vladimir Oleynik <dzo@simtreas.ru>
Glenn L McGrath58c708a2003-01-05 04:01:56 +00007 *
Glenn L McGrath06e95652003-02-09 06:51:14 +00008 * simplify patch stolen from libbb without using strdup
Glenn L McGrath58c708a2003-01-05 04:01:56 +00009 *
Bernhard Reutner-Fischerdac7ff12006-04-12 17:55:51 +000010 * Licensed under GPLv2 or later, see file LICENSE in this tarball for details.
Glenn L McGrath58c708a2003-01-05 04:01:56 +000011 *
12 *****************************************************************************
13 *
Glenn L McGrath06e95652003-02-09 06:51:14 +000014 * Typical usage:
15 * for non root user
16 * httpd -p 8080 -h $HOME/public_html
17 * or for daemon start from rc script with uid=0:
18 * httpd -u www
19 * This is equivalent if www user have uid=80 to
20 * httpd -p 80 -u 80 -h /www -c /etc/httpd.conf -r "Web Server Authentication"
21 *
Glenn L McGrath58c708a2003-01-05 04:01:56 +000022 *
Denis Vlasenko073214f2007-08-17 19:20:07 +000023 * When a url starts by "/cgi-bin/" it is assumed to be a cgi script. The
Glenn L McGrath58c708a2003-01-05 04:01:56 +000024 * server changes directory to the location of the script and executes it
Glenn L McGrath1dc0cca2003-10-03 10:50:56 +000025 * after setting QUERY_STRING and other environment variables.
Glenn L McGrath58c708a2003-01-05 04:01:56 +000026 *
Denis Vlasenko8b458372006-11-21 21:23:21 +000027 * Doc:
28 * "CGI Environment Variables": http://hoohoo.ncsa.uiuc.edu/cgi/env.html
29 *
Denis Vlasenko0eb406c2008-06-13 09:53:06 +000030 * The applet can also be invoked as a url arg decoder and html text encoder
Glenn L McGrath58c708a2003-01-05 04:01:56 +000031 * as follows:
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000032 * foo=`httpd -d $foo` # decode "Hello%20World" as "Hello World"
Glenn L McGrathc9163fe2003-05-13 16:20:11 +000033 * bar=`httpd -e "<Hello World>"` # encode as "&#60Hello&#32World&#62"
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000034 * Note that url encoding for arguments is not the same as html encoding for
Eric Andersenaff114c2004-04-14 17:51:38 +000035 * presentation. -d decodes a url-encoded argument while -e encodes in html
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000036 * for page display.
Glenn L McGrath58c708a2003-01-05 04:01:56 +000037 *
38 * httpd.conf has the following format:
Eric Andersenc7bda1c2004-03-15 08:29:22 +000039 *
Denis Vlasenko395410b2008-07-20 23:25:32 +000040 * H:/serverroot # define the server root. It will override -h
Glenn L McGrathb65422c2003-09-08 10:59:27 +000041 * A:172.20. # Allow address from 172.20.0.0/16
42 * A:10.0.0.0/25 # Allow any address from 10.0.0.0-10.0.0.127
43 * A:10.0.0.0/255.255.255.128 # Allow any address that previous set
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000044 * A:127.0.0.1 # Allow local loopback connections
45 * D:* # Deny from other IP connections
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +000046 * E404:/path/e404.html # /path/e404.html is the 404 (not found) error page
Denis Vlasenkofcd878e2007-12-29 02:16:23 +000047 * I:index.html # Show index.html when a directory is requested
Denis Vlasenkof74194e2007-10-18 12:54:39 +000048 *
49 * P:/url:[http://]hostname[:port]/new/path
50 * # When /urlXXXXXX is requested, reverse proxy
51 * # it to http://hostname[:port]/new/pathXXXXXX
52 *
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000053 * /cgi-bin:foo:bar # Require user foo, pwd bar on urls starting with /cgi-bin/
54 * /adm:admin:setup # Require user admin, pwd setup on urls starting with /adm/
55 * /adm:toor:PaSsWd # or user toor, pwd PaSsWd on urls starting with /adm/
56 * .au:audio/basic # additional mime type for audio.au files
"Vladimir N. Oleynik"4333a092006-01-31 13:53:30 +000057 * *.php:/path/php # running cgi.php scripts through an interpreter
Eric Andersenc7bda1c2004-03-15 08:29:22 +000058 *
Denis Vlasenko0eb406c2008-06-13 09:53:06 +000059 * A/D may be as a/d or allow/deny - only first char matters.
60 * Deny/Allow IP logic:
61 * - Default is to allow all (Allow all (A:*) is a no-op).
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000062 * - Deny rules take precedence over allow rules.
Denis Vlasenko0eb406c2008-06-13 09:53:06 +000063 * - "Deny all" rule (D:*) is applied last.
Eric Andersenc7bda1c2004-03-15 08:29:22 +000064 *
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000065 * Example:
66 * 1. Allow only specified addresses
Glenn L McGrathb65422c2003-09-08 10:59:27 +000067 * A:172.20 # Allow any address that begins with 172.20.
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000068 * A:10.10. # Allow any address that begins with 10.10.
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000069 * A:127.0.0.1 # Allow local loopback connections
70 * D:* # Deny from other IP connections
Eric Andersenc7bda1c2004-03-15 08:29:22 +000071 *
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000072 * 2. Only deny specified addresses
73 * D:1.2.3. # deny from 1.2.3.0 - 1.2.3.255
74 * D:2.3.4. # deny from 2.3.4.0 - 2.3.4.255
75 * A:* # (optional line added for clarity)
Eric Andersenc7bda1c2004-03-15 08:29:22 +000076 *
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000077 * If a sub directory contains a config file it is parsed and merged with
Glenn L McGrathb65422c2003-09-08 10:59:27 +000078 * any existing settings as if it was appended to the original configuration.
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000079 *
80 * subdir paths are relative to the containing subdir and thus cannot
81 * affect the parent rules.
82 *
83 * Note that since the sub dir is parsed in the forked thread servicing the
84 * subdir http request, any merge is discarded when the process exits. As a
85 * result, the subdir settings only have a lifetime of a single request.
86 *
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +000087 * Custom error pages can contain an absolute path or be relative to
88 * 'home_httpd'. Error pages are to be static files (no CGI or script). Error
89 * page can only be defined in the root configuration file and are not taken
90 * into account in local (directories) config files.
Eric Andersenc7bda1c2004-03-15 08:29:22 +000091 *
92 * If -c is not set, an attempt will be made to open the default
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +000093 * root configuration file. If -c is set and the file is not found, the
94 * server exits with an error.
Eric Andersenc7bda1c2004-03-15 08:29:22 +000095 *
Denis Vlasenko073214f2007-08-17 19:20:07 +000096 */
Glenn L McGrath58c708a2003-01-05 04:01:56 +000097
Denis Vlasenkob6adbf12007-05-26 19:00:18 +000098#include "libbb.h"
Denis Vlasenko1b9064d2007-08-12 21:05:49 +000099#if ENABLE_FEATURE_HTTPD_USE_SENDFILE
100#include <sys/sendfile.h>
101#endif
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000102
Denis Vlasenko073214f2007-08-17 19:20:07 +0000103//#define DEBUG 1
104#define DEBUG 0
105
Denis Vlasenko32a471e2007-09-23 13:56:57 +0000106#define IOBUF_SIZE 8192 /* IO buffer */
107
Denis Vlasenko69981422007-01-07 21:25:12 +0000108/* amount of buffering in a pipe */
109#ifndef PIPE_BUF
110# define PIPE_BUF 4096
111#endif
Denis Vlasenko32a471e2007-09-23 13:56:57 +0000112#if PIPE_BUF >= IOBUF_SIZE
113# error "PIPE_BUF >= IOBUF_SIZE"
114#endif
Denis Vlasenko073214f2007-08-17 19:20:07 +0000115
116#define HEADER_READ_TIMEOUT 60
117
Denis Vlasenko6ca409e2007-08-12 20:58:27 +0000118static const char default_path_httpd_conf[] ALIGN1 = "/etc";
119static const char httpd_conf[] ALIGN1 = "httpd.conf";
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000120static const char HTTP_200[] ALIGN1 = "HTTP/1.0 200 OK\r\n";
Glenn L McGrath06e95652003-02-09 06:51:14 +0000121
Denis Vlasenko073214f2007-08-17 19:20:07 +0000122typedef struct has_next_ptr {
123 struct has_next_ptr *next;
124} has_next_ptr;
Eric Andersen07f2fea2004-10-08 08:03:29 +0000125
Denis Vlasenko073214f2007-08-17 19:20:07 +0000126/* Must have "next" as a first member */
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000127typedef struct Htaccess {
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000128 struct Htaccess *next;
Denis Vlasenko073214f2007-08-17 19:20:07 +0000129 char *after_colon;
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000130 char before_colon[1]; /* really bigger, must be last */
Glenn L McGrath06e95652003-02-09 06:51:14 +0000131} Htaccess;
132
Denis Vlasenko073214f2007-08-17 19:20:07 +0000133/* Must have "next" as a first member */
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000134typedef struct Htaccess_IP {
Denis Vlasenko073214f2007-08-17 19:20:07 +0000135 struct Htaccess_IP *next;
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000136 unsigned ip;
137 unsigned mask;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000138 int allow_deny;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000139} Htaccess_IP;
140
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000141/* Must have "next" as a first member */
142typedef struct Htaccess_Proxy {
143 struct Htaccess_Proxy *next;
144 char *url_from;
145 char *host_port;
146 char *url_to;
147} Htaccess_Proxy;
148
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000149enum {
150 HTTP_OK = 200,
Denis Vlasenkof4310172007-09-21 22:35:18 +0000151 HTTP_PARTIAL_CONTENT = 206,
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000152 HTTP_MOVED_TEMPORARILY = 302,
153 HTTP_BAD_REQUEST = 400, /* malformed syntax */
154 HTTP_UNAUTHORIZED = 401, /* authentication needed, respond with auth hdr */
155 HTTP_NOT_FOUND = 404,
156 HTTP_FORBIDDEN = 403,
157 HTTP_REQUEST_TIMEOUT = 408,
158 HTTP_NOT_IMPLEMENTED = 501, /* used for unrecognized requests */
159 HTTP_INTERNAL_SERVER_ERROR = 500,
160 HTTP_CONTINUE = 100,
161#if 0 /* future use */
162 HTTP_SWITCHING_PROTOCOLS = 101,
163 HTTP_CREATED = 201,
164 HTTP_ACCEPTED = 202,
165 HTTP_NON_AUTHORITATIVE_INFO = 203,
166 HTTP_NO_CONTENT = 204,
167 HTTP_MULTIPLE_CHOICES = 300,
168 HTTP_MOVED_PERMANENTLY = 301,
169 HTTP_NOT_MODIFIED = 304,
170 HTTP_PAYMENT_REQUIRED = 402,
171 HTTP_BAD_GATEWAY = 502,
172 HTTP_SERVICE_UNAVAILABLE = 503, /* overload, maintenance */
173 HTTP_RESPONSE_SETSIZE = 0xffffffff
174#endif
175};
176
Denis Vlasenko72b6a652007-08-21 11:18:25 +0000177static const uint16_t http_response_type[] ALIGN2 = {
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000178 HTTP_OK,
Denis Vlasenkof4310172007-09-21 22:35:18 +0000179#if ENABLE_FEATURE_HTTPD_RANGES
180 HTTP_PARTIAL_CONTENT,
181#endif
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000182 HTTP_MOVED_TEMPORARILY,
183 HTTP_REQUEST_TIMEOUT,
184 HTTP_NOT_IMPLEMENTED,
Denis Vlasenko3f5fdc72007-10-14 04:55:59 +0000185#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000186 HTTP_UNAUTHORIZED,
187#endif
188 HTTP_NOT_FOUND,
189 HTTP_BAD_REQUEST,
190 HTTP_FORBIDDEN,
191 HTTP_INTERNAL_SERVER_ERROR,
192#if 0 /* not implemented */
193 HTTP_CREATED,
194 HTTP_ACCEPTED,
195 HTTP_NO_CONTENT,
196 HTTP_MULTIPLE_CHOICES,
197 HTTP_MOVED_PERMANENTLY,
198 HTTP_NOT_MODIFIED,
199 HTTP_BAD_GATEWAY,
200 HTTP_SERVICE_UNAVAILABLE,
201#endif
202};
203
204static const struct {
205 const char *name;
206 const char *info;
207} http_response[ARRAY_SIZE(http_response_type)] = {
208 { "OK", NULL },
Denis Vlasenkof4310172007-09-21 22:35:18 +0000209#if ENABLE_FEATURE_HTTPD_RANGES
210 { "Partial Content", NULL },
211#endif
212 { "Found", NULL },
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000213 { "Request Timeout", "No request appeared within 60 seconds" },
214 { "Not Implemented", "The requested method is not recognized" },
215#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
216 { "Unauthorized", "" },
217#endif
218 { "Not Found", "The requested URL was not found" },
219 { "Bad Request", "Unsupported method" },
220 { "Forbidden", "" },
221 { "Internal Server Error", "Internal Server Error" },
222#if 0 /* not implemented */
223 { "Created" },
224 { "Accepted" },
225 { "No Content" },
226 { "Multiple Choices" },
227 { "Moved Permanently" },
228 { "Not Modified" },
229 { "Bad Gateway", "" },
230 { "Service Unavailable", "" },
231#endif
232};
233
Denis Vlasenkof4310172007-09-21 22:35:18 +0000234
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000235struct globals {
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000236 int verbose; /* must be int (used by getopt32) */
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000237 smallint flg_deny_all;
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000238
Denis Vlasenko37c33162007-08-19 18:54:22 +0000239 unsigned rmt_ip; /* used for IP-based allow/deny rules */
240 time_t last_mod;
Denis Vlasenko37c33162007-08-19 18:54:22 +0000241 char *rmt_ip_str; /* for $REMOTE_ADDR and $REMOTE_PORT */
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000242 const char *bind_addr_or_port;
243
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000244 const char *g_query;
245 const char *configFile;
246 const char *home_httpd;
Denis Vlasenkofcd878e2007-12-29 02:16:23 +0000247 const char *index_page;
Glenn L McGrath06e95652003-02-09 06:51:14 +0000248
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000249 const char *found_mime_type;
250 const char *found_moved_temporarily;
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000251 Htaccess_IP *ip_a_d; /* config allow/deny lines */
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000252
253 USE_FEATURE_HTTPD_BASIC_AUTH(const char *g_realm;)
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000254 USE_FEATURE_HTTPD_BASIC_AUTH(char *remoteuser;)
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000255 USE_FEATURE_HTTPD_CGI(char *referer;)
Denis Vlasenko6cd84da2007-07-21 14:57:54 +0000256 USE_FEATURE_HTTPD_CGI(char *user_agent;)
Glenn L McGrath1dc0cca2003-10-03 10:50:56 +0000257
Denis Vlasenkof4310172007-09-21 22:35:18 +0000258 off_t file_size; /* -1 - unknown */
259#if ENABLE_FEATURE_HTTPD_RANGES
260 off_t range_start;
261 off_t range_end;
262 off_t range_len;
263#endif
264
Denis Vlasenko55a99402006-09-30 20:41:44 +0000265#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000266 Htaccess *g_auth; /* config user:password lines */
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000267#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +0000268#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000269 Htaccess *mime_a; /* config mime types */
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000270#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +0000271#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000272 Htaccess *script_i; /* config script interpreters */
"Vladimir N. Oleynik"4333a092006-01-31 13:53:30 +0000273#endif
Denis Vlasenko921799d2007-08-19 19:28:09 +0000274 char *iobuf; /* [IOBUF_SIZE] */
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000275#define hdr_buf bb_common_bufsiz1
276 char *hdr_ptr;
277 int hdr_cnt;
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000278#if ENABLE_FEATURE_HTTPD_ERROR_PAGES
279 const char *http_error_page[ARRAY_SIZE(http_response_type)];
280#endif
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000281#if ENABLE_FEATURE_HTTPD_PROXY
282 Htaccess_Proxy *proxy;
283#endif
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000284};
285#define G (*ptr_to_globals)
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000286#define verbose (G.verbose )
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000287#define flg_deny_all (G.flg_deny_all )
288#define rmt_ip (G.rmt_ip )
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000289#define bind_addr_or_port (G.bind_addr_or_port)
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000290#define g_query (G.g_query )
291#define configFile (G.configFile )
292#define home_httpd (G.home_httpd )
Denis Vlasenkofcd878e2007-12-29 02:16:23 +0000293#define index_page (G.index_page )
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000294#define found_mime_type (G.found_mime_type )
295#define found_moved_temporarily (G.found_moved_temporarily)
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000296#define last_mod (G.last_mod )
297#define ip_a_d (G.ip_a_d )
298#define g_realm (G.g_realm )
299#define remoteuser (G.remoteuser )
300#define referer (G.referer )
301#define user_agent (G.user_agent )
Denis Vlasenkof4310172007-09-21 22:35:18 +0000302#define file_size (G.file_size )
303#if ENABLE_FEATURE_HTTPD_RANGES
304#define range_start (G.range_start )
305#define range_end (G.range_end )
306#define range_len (G.range_len )
307#endif
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000308#define rmt_ip_str (G.rmt_ip_str )
309#define g_auth (G.g_auth )
310#define mime_a (G.mime_a )
311#define script_i (G.script_i )
312#define iobuf (G.iobuf )
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000313#define hdr_ptr (G.hdr_ptr )
314#define hdr_cnt (G.hdr_cnt )
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000315#define http_error_page (G.http_error_page )
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000316#define proxy (G.proxy )
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000317#define INIT_G() do { \
Denis Vlasenko574f2f42008-02-27 18:41:59 +0000318 SET_PTR_TO_GLOBALS(xzalloc(sizeof(G))); \
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000319 USE_FEATURE_HTTPD_BASIC_AUTH(g_realm = "Web Server Authentication";) \
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000320 bind_addr_or_port = "80"; \
Denis Vlasenko1acb4ef2008-02-27 20:59:54 +0000321 index_page = "index.html"; \
Denis Vlasenkof4310172007-09-21 22:35:18 +0000322 file_size = -1; \
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000323} while (0)
Glenn L McGrath06e95652003-02-09 06:51:14 +0000324
Denis Vlasenkof4310172007-09-21 22:35:18 +0000325#if !ENABLE_FEATURE_HTTPD_RANGES
326enum {
327 range_start = 0,
328 range_end = MAXINT(off_t) - 1,
329 range_len = MAXINT(off_t),
330};
331#endif
332
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +0000333
Denis Vlasenko0bb993f2006-11-21 00:06:28 +0000334#define STRNCASECMP(a, str) strncasecmp((a), (str), sizeof(str)-1)
Glenn L McGrath06e95652003-02-09 06:51:14 +0000335
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000336/* Prototypes */
Denis Vlasenko2f518b02008-02-21 00:12:07 +0000337enum {
338 SEND_HEADERS = (1 << 0),
339 SEND_BODY = (1 << 1),
340 SEND_HEADERS_AND_BODY = SEND_HEADERS + SEND_BODY,
341};
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +0000342static void send_file_and_exit(const char *url, int what) NORETURN;
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000343
Denis Vlasenko073214f2007-08-17 19:20:07 +0000344static void free_llist(has_next_ptr **pptr)
345{
346 has_next_ptr *cur = *pptr;
347 while (cur) {
348 has_next_ptr *t = cur;
349 cur = cur->next;
350 free(t);
351 }
352 *pptr = NULL;
353}
354
355#if ENABLE_FEATURE_HTTPD_BASIC_AUTH \
356 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES \
357 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
358static ALWAYS_INLINE void free_Htaccess_list(Htaccess **pptr)
359{
360 free_llist((has_next_ptr**)pptr);
361}
362#endif
363
364static ALWAYS_INLINE void free_Htaccess_IP_list(Htaccess_IP **pptr)
365{
366 free_llist((has_next_ptr**)pptr);
367}
Glenn L McGrath06e95652003-02-09 06:51:14 +0000368
Denis Vlasenkod867f322007-08-19 21:15:42 +0000369/* Returns presumed mask width in bits or < 0 on error.
370 * Updates strp, stores IP at provided pointer */
371static int scan_ip(const char **strp, unsigned *ipp, unsigned char endc)
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000372{
Denis Vlasenkod867f322007-08-19 21:15:42 +0000373 const char *p = *strp;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000374 int auto_mask = 8;
Denis Vlasenkod867f322007-08-19 21:15:42 +0000375 unsigned ip = 0;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000376 int j;
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000377
Denis Vlasenkod867f322007-08-19 21:15:42 +0000378 if (*p == '/')
379 return -auto_mask;
380
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000381 for (j = 0; j < 4; j++) {
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000382 unsigned octet;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000383
Denis Vlasenkod867f322007-08-19 21:15:42 +0000384 if ((*p < '0' || *p > '9') && *p != '/' && *p)
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000385 return -auto_mask;
386 octet = 0;
387 while (*p >= '0' && *p <= '9') {
388 octet *= 10;
389 octet += *p - '0';
390 if (octet > 255)
391 return -auto_mask;
392 p++;
393 }
394 if (*p == '.')
395 p++;
Denis Vlasenkod867f322007-08-19 21:15:42 +0000396 if (*p != '/' && *p)
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000397 auto_mask += 8;
Denis Vlasenkod867f322007-08-19 21:15:42 +0000398 ip = (ip << 8) | octet;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000399 }
Denis Vlasenkod867f322007-08-19 21:15:42 +0000400 if (*p) {
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000401 if (*p != endc)
402 return -auto_mask;
403 p++;
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +0000404 if (*p == '\0')
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000405 return -auto_mask;
406 }
Denis Vlasenkod867f322007-08-19 21:15:42 +0000407 *ipp = ip;
408 *strp = p;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000409 return auto_mask;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000410}
411
Denis Vlasenkod867f322007-08-19 21:15:42 +0000412/* Returns 0 on success. Stores IP and mask at provided pointers */
413static int scan_ip_mask(const char *str, unsigned *ipp, unsigned *maskp)
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000414{
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000415 int i;
Denis Vlasenkod867f322007-08-19 21:15:42 +0000416 unsigned mask;
417 char *p;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000418
Denis Vlasenkod867f322007-08-19 21:15:42 +0000419 i = scan_ip(&str, ipp, '/');
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000420 if (i < 0)
421 return i;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000422
Denis Vlasenkod867f322007-08-19 21:15:42 +0000423 if (*str) {
424 /* there is /xxx after dotted-IP address */
425 i = bb_strtou(str, &p, 10);
426 if (*p == '.') {
427 /* 'xxx' itself is dotted-IP mask, parse it */
428 /* (return 0 (success) only if it has N.N.N.N form) */
429 return scan_ip(&str, maskp, '\0') - 32;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000430 }
Denis Vlasenkod867f322007-08-19 21:15:42 +0000431 if (*p)
432 return -1;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000433 }
Denis Vlasenkod867f322007-08-19 21:15:42 +0000434
435 if (i > 32)
Denis Vlasenko92758142006-10-03 19:56:34 +0000436 return -1;
Denis Vlasenkod867f322007-08-19 21:15:42 +0000437
438 if (sizeof(unsigned) == 4 && i == 32) {
439 /* mask >>= 32 below may not work */
440 mask = 0;
441 } else {
442 mask = 0xffffffff;
443 mask >>= i;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000444 }
Denis Vlasenkod867f322007-08-19 21:15:42 +0000445 /* i == 0 -> *maskp = 0x00000000
446 * i == 1 -> *maskp = 0x80000000
447 * i == 4 -> *maskp = 0xf0000000
448 * i == 31 -> *maskp = 0xfffffffe
449 * i == 32 -> *maskp = 0xffffffff */
450 *maskp = (uint32_t)(~mask);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000451 return 0;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000452}
453
Denis Vlasenko073214f2007-08-17 19:20:07 +0000454/*
455 * Parse configuration file into in-memory linked list.
Eric Andersenc7bda1c2004-03-15 08:29:22 +0000456 *
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +0000457 * The first non-white character is examined to determine if the config line
458 * is one of the following:
459 * .ext:mime/type # new mime type not compiled into httpd
460 * [adAD]:from # ip address allow/deny, * for wildcard
461 * /path:user:pass # username/password
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000462 * Ennn:error.html # error page for status nnn
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000463 * P:/url:[http://]hostname[:port]/new/path # reverse proxy
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +0000464 *
465 * Any previous IP rules are discarded.
466 * If the flag argument is not SUBDIR_PARSE then all /path and mime rules
467 * are also discarded. That is, previous settings are retained if flag is
468 * SUBDIR_PARSE.
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000469 * Error pages are only parsed on the main config file.
Glenn L McGrath4fe3ff82003-05-19 05:56:16 +0000470 *
Denis Vlasenko073214f2007-08-17 19:20:07 +0000471 * path Path where to look for httpd.conf (without filename).
472 * flag Type of the parse request.
473 */
474/* flag */
475#define FIRST_PARSE 0
476#define SUBDIR_PARSE 1
477#define SIGNALED_PARSE 2
478#define FIND_FROM_HTTPD_ROOT 3
Glenn L McGrath06e95652003-02-09 06:51:14 +0000479static void parse_conf(const char *path, int flag)
480{
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000481 FILE *f;
Denis Vlasenko55a99402006-09-30 20:41:44 +0000482#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko3bba5452006-12-30 17:57:03 +0000483 Htaccess *prev;
484#endif
485#if ENABLE_FEATURE_HTTPD_BASIC_AUTH \
486 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES \
487 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000488 Htaccess *cur;
Glenn L McGrathbaaa6e92003-09-15 15:00:43 +0000489#endif
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000490 const char *filename = configFile;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000491 char buf[160];
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000492 char *p, *p0;
493 char *after_colon;
Denis Vlasenko073214f2007-08-17 19:20:07 +0000494 Htaccess_IP *pip;
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000495
Denis Vlasenko073214f2007-08-17 19:20:07 +0000496 /* discard old rules */
497 free_Htaccess_IP_list(&ip_a_d);
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000498 flg_deny_all = 0;
Denis Vlasenko3bba5452006-12-30 17:57:03 +0000499#if ENABLE_FEATURE_HTTPD_BASIC_AUTH \
500 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES \
501 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000502 /* retain previous auth and mime config only for subdir parse */
503 if (flag != SUBDIR_PARSE) {
Denis Vlasenko55a99402006-09-30 20:41:44 +0000504#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko073214f2007-08-17 19:20:07 +0000505 free_Htaccess_list(&g_auth);
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000506#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +0000507#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
Denis Vlasenko073214f2007-08-17 19:20:07 +0000508 free_Htaccess_list(&mime_a);
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000509#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +0000510#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko073214f2007-08-17 19:20:07 +0000511 free_Htaccess_list(&script_i);
"Vladimir N. Oleynik"4333a092006-01-31 13:53:30 +0000512#endif
Glenn L McGrath06e95652003-02-09 06:51:14 +0000513 }
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000514#endif
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000515
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000516 if (flag == SUBDIR_PARSE || filename == NULL) {
517 filename = alloca(strlen(path) + sizeof(httpd_conf) + 2);
518 sprintf((char *)filename, "%s/%s", path, httpd_conf);
Glenn L McGrath393183d2003-05-26 14:07:50 +0000519 }
520
Denis Vlasenko5415c852008-07-21 23:05:26 +0000521 while ((f = fopen_for_read(filename)) == NULL) {
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000522 if (flag == SUBDIR_PARSE || flag == FIND_FROM_HTTPD_ROOT) {
523 /* config file not found, no changes to config */
524 return;
525 }
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000526 if (configFile && flag == FIRST_PARSE) /* if -c option given */
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000527 bb_simple_perror_msg_and_die(filename);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000528 flag = FIND_FROM_HTTPD_ROOT;
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000529 filename = httpd_conf;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000530 }
531
Denis Vlasenko55a99402006-09-30 20:41:44 +0000532#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000533 prev = g_auth;
Glenn L McGrath06e95652003-02-09 06:51:14 +0000534#endif
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000535 /* This could stand some work */
Denis Vlasenko55a99402006-09-30 20:41:44 +0000536 while ((p0 = fgets(buf, sizeof(buf), f)) != NULL) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000537 after_colon = NULL;
Denis Vlasenko073214f2007-08-17 19:20:07 +0000538 for (p = p0; *p0 != '\0' && *p0 != '#'; p0++) {
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000539 if (!isspace(*p0)) {
540 *p++ = *p0;
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000541 if (*p0 == ':' && after_colon == NULL)
542 after_colon = p;
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000543 }
Glenn L McGrathb65422c2003-09-08 10:59:27 +0000544 }
Denis Vlasenko073214f2007-08-17 19:20:07 +0000545 *p = '\0';
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000546
547 /* test for empty or strange line */
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000548 if (after_colon == NULL || *after_colon == '\0')
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000549 continue;
550 p0 = buf;
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000551 if (*p0 == 'd' || *p0 == 'a')
552 *p0 -= 0x20; /* a/d -> A/D */
553 if (*after_colon == '*') {
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000554 if (*p0 == 'D') {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000555 /* memorize "deny all" */
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000556 flg_deny_all = 1;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000557 }
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000558 /* skip assumed "A:*", it is a default anyway */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000559 continue;
560 }
561
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000562 if (*p0 == 'A' || *p0 == 'D') {
563 /* storing current config IP line */
Denis Vlasenko9b1381f2007-01-03 02:56:00 +0000564 pip = xzalloc(sizeof(Htaccess_IP));
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000565 if (scan_ip_mask(after_colon, &(pip->ip), &(pip->mask))) {
566 /* IP{/mask} syntax error detected, protect all */
567 *p0 = 'D';
568 pip->mask = 0;
569 }
570 pip->allow_deny = *p0;
571 if (*p0 == 'D') {
572 /* Deny:from_IP - prepend */
573 pip->next = ip_a_d;
574 ip_a_d = pip;
575 } else {
576 /* A:from_IP - append (thus D precedes A) */
577 Htaccess_IP *prev_IP = ip_a_d;
578 if (prev_IP == NULL) {
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000579 ip_a_d = pip;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000580 } else {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000581 while (prev_IP->next)
582 prev_IP = prev_IP->next;
583 prev_IP->next = pip;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000584 }
585 }
586 continue;
587 }
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000588
589#if ENABLE_FEATURE_HTTPD_ERROR_PAGES
590 if (flag == FIRST_PARSE && *p0 == 'E') {
Denis Vlasenko6b06cb82008-05-15 21:30:45 +0000591 unsigned i;
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000592 int status = atoi(++p0); /* error status code */
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000593 if (status < HTTP_CONTINUE) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000594 bb_error_msg("config error '%s' in '%s'", buf, filename);
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000595 continue;
596 }
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000597 /* then error page; find matching status */
598 for (i = 0; i < ARRAY_SIZE(http_response_type); i++) {
599 if (http_response_type[i] == status) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000600 /* We chdir to home_httpd, thus no need to
601 * concat_path_file(home_httpd, after_colon)
602 * here */
603 http_error_page[i] = xstrdup(after_colon);
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000604 break;
605 }
606 }
607 continue;
608 }
609#endif
610
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000611#if ENABLE_FEATURE_HTTPD_PROXY
612 if (flag == FIRST_PARSE && *p0 == 'P') {
613 /* P:/url:[http://]hostname[:port]/new/path */
614 char *url_from, *host_port, *url_to;
615 Htaccess_Proxy *proxy_entry;
616
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000617 url_from = after_colon;
618 host_port = strchr(after_colon, ':');
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000619 if (host_port == NULL) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000620 bb_error_msg("config error '%s' in '%s'", buf, filename);
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000621 continue;
622 }
623 *host_port++ = '\0';
624 if (strncmp(host_port, "http://", 7) == 0)
Denis Vlasenko78ee7c82007-10-21 23:24:42 +0000625 host_port += 7;
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000626 if (*host_port == '\0') {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000627 bb_error_msg("config error '%s' in '%s'", buf, filename);
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000628 continue;
629 }
630 url_to = strchr(host_port, '/');
631 if (url_to == NULL) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000632 bb_error_msg("config error '%s' in '%s'", buf, filename);
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000633 continue;
634 }
635 *url_to = '\0';
636 proxy_entry = xzalloc(sizeof(Htaccess_Proxy));
637 proxy_entry->url_from = xstrdup(url_from);
638 proxy_entry->host_port = xstrdup(host_port);
639 *url_to = '/';
640 proxy_entry->url_to = xstrdup(url_to);
641 proxy_entry->next = proxy;
642 proxy = proxy_entry;
643 continue;
644 }
645#endif
646
Denis Vlasenko55a99402006-09-30 20:41:44 +0000647#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000648 if (*p0 == '/') {
Denis Vlasenko073214f2007-08-17 19:20:07 +0000649 /* make full path from httpd root / current_path / config_line_path */
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000650 const char *tp = (flag == SUBDIR_PARSE ? path : "");
651 p0 = xmalloc(strlen(tp) + (after_colon - buf) + 2 + strlen(after_colon));
652 after_colon[-1] = '\0';
653 sprintf(p0, "/%s%s", tp, buf);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000654
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000655 /* looks like bb_simplify_path... */
656 tp = p = p0;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000657 do {
658 if (*p == '/') {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000659 if (*tp == '/') { /* skip duplicate (or initial) slash */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000660 continue;
Denis Vlasenko3d2a9212007-09-28 22:35:29 +0000661 }
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000662 if (*tp == '.') {
663 if (tp[1] == '/' || tp[1] == '\0') { /* remove extra '.' */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000664 continue;
Denis Vlasenko3d2a9212007-09-28 22:35:29 +0000665 }
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000666 if ((tp[1] == '.') && (tp[2] == '/' || tp[2] == '\0')) {
667 ++tp;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000668 if (p > p0) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000669 while (*--p != '/') /* omit previous dir */
670 continue;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000671 }
672 continue;
673 }
674 }
675 }
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000676 *++p = *tp;
677 } while (*++tp);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000678
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000679 if ((p == p0) || (*p != '/')) { /* not a trailing slash */
680 ++p; /* so keep last character */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000681 }
Denis Vlasenko3d2a9212007-09-28 22:35:29 +0000682 *p = ':';
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000683 strcpy(p + 1, after_colon);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000684 }
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000685#endif
Denis Vlasenkofcd878e2007-12-29 02:16:23 +0000686 if (*p0 == 'I') {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000687 index_page = xstrdup(after_colon);
Denis Vlasenkofcd878e2007-12-29 02:16:23 +0000688 continue;
689 }
690
Denis Vlasenko395410b2008-07-20 23:25:32 +0000691 /* Do not allow jumping around using H in subdir's configs */
692 if (flag == FIRST_PARSE && *p0 == 'H') {
693 home_httpd = xstrdup(after_colon);
694 xchdir(home_httpd);
695 continue;
696 }
697
Denis Vlasenko3bba5452006-12-30 17:57:03 +0000698#if ENABLE_FEATURE_HTTPD_BASIC_AUTH \
699 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES \
700 || ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000701 /* storing current config line */
Denis Vlasenko9b1381f2007-01-03 02:56:00 +0000702 cur = xzalloc(sizeof(Htaccess) + strlen(p0));
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000703 strcpy(cur->before_colon, p0);
Denis Vlasenko55a99402006-09-30 20:41:44 +0000704#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000705 if (*p0 == '/') /* was malloced - see above */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000706 free(p0);
Glenn L McGrathc9163fe2003-05-13 16:20:11 +0000707#endif
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000708 cur->after_colon = strchr(cur->before_colon, ':');
709 *cur->after_colon++ = '\0';
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000710#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000711 if (cur->before_colon[0] == '.') {
712 /* .mime line: prepend to mime_a list */
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000713 cur->next = mime_a;
714 mime_a = cur;
715 continue;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000716 }
Glenn L McGrathbaaa6e92003-09-15 15:00:43 +0000717#endif
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000718#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000719 if (cur->before_colon[0] == '*' && cur->before_colon[1] == '.') {
720 /* script interpreter line: prepend to script_i list */
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000721 cur->next = script_i;
722 script_i = cur;
723 continue;
724 }
725#endif
726#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000727//TODO: we do not test for leading "/"??
728//also, do we leak cur if BASIC_AUTH is off?
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000729 if (prev == NULL) {
730 /* first line */
731 g_auth = prev = cur;
732 } else {
733 /* sort path, if current length eq or bigger then move up */
734 Htaccess *prev_hti = g_auth;
Denis Vlasenko0eb406c2008-06-13 09:53:06 +0000735 size_t l = strlen(cur->before_colon);
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000736 Htaccess *hti;
737
738 for (hti = prev_hti; hti; hti = hti->next) {
739 if (l >= strlen(hti->before_colon)) {
740 /* insert before hti */
741 cur->next = hti;
742 if (prev_hti != hti) {
743 prev_hti->next = cur;
744 } else {
745 /* insert as top */
746 g_auth = cur;
747 }
748 break;
749 }
750 if (prev_hti != hti)
751 prev_hti = prev_hti->next;
752 }
753 if (!hti) { /* not inserted, add to bottom */
754 prev->next = cur;
755 prev = cur;
756 }
757 }
758#endif /* BASIC_AUTH */
759#endif /* BASIC_AUTH || MIME_TYPES || SCRIPT_INTERPR */
760 } /* while (fgets) */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000761 fclose(f);
Glenn L McGrath06e95652003-02-09 06:51:14 +0000762}
763
Denis Vlasenko55a99402006-09-30 20:41:44 +0000764#if ENABLE_FEATURE_HTTPD_ENCODE_URL_STR
Denis Vlasenko073214f2007-08-17 19:20:07 +0000765/*
766 * Given a string, html-encode special characters.
767 * This is used for the -e command line option to provide an easy way
768 * for scripts to encode result data without confusing browsers. The
769 * returned string pointer is memory allocated by malloc().
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000770 *
Denis Vlasenko073214f2007-08-17 19:20:07 +0000771 * Returns a pointer to the encoded string (malloced).
772 */
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000773static char *encodeString(const char *string)
774{
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000775 /* take the simple route and encode everything */
776 /* could possibly scan once to get length. */
777 int len = strlen(string);
Denis Vlasenkoab2aea42007-01-29 22:51:58 +0000778 char *out = xmalloc(len * 6 + 1);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000779 char *p = out;
780 char ch;
Glenn L McGrath06e95652003-02-09 06:51:14 +0000781
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000782 while ((ch = *string++)) {
Denis Vlasenko72b6a652007-08-21 11:18:25 +0000783 /* very simple check for what to encode */
784 if (isalnum(ch))
785 *p++ = ch;
786 else
787 p += sprintf(p, "&#%d;", (unsigned char) ch);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000788 }
Denis Vlasenkoab2aea42007-01-29 22:51:58 +0000789 *p = '\0';
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000790 return out;
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000791}
Denis Vlasenkob3a07152006-11-16 18:04:43 +0000792#endif /* FEATURE_HTTPD_ENCODE_URL_STR */
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000793
Denis Vlasenko073214f2007-08-17 19:20:07 +0000794/*
795 * Given a URL encoded string, convert it to plain ascii.
796 * Since decoding always makes strings smaller, the decode is done in-place.
Denis Vlasenkoc4523c22008-03-28 02:24:59 +0000797 * Thus, callers should xstrdup() the argument if they do not want the
Denis Vlasenko073214f2007-08-17 19:20:07 +0000798 * argument modified. The return is the original pointer, allowing this
799 * function to be easily used as arguments to other functions.
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000800 *
Denis Vlasenko073214f2007-08-17 19:20:07 +0000801 * string The first string to decode.
802 * option_d 1 if called for httpd -d
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000803 *
Denis Vlasenko073214f2007-08-17 19:20:07 +0000804 * Returns a pointer to the decoded string (same as input).
805 */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000806static unsigned hex_to_bin(unsigned char c)
807{
Denis Vlasenko72b6a652007-08-21 11:18:25 +0000808 unsigned v;
809
810 v = c - '0';
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000811 if (v <= 9)
812 return v;
Denis Vlasenko72b6a652007-08-21 11:18:25 +0000813 /* c | 0x20: letters to lower case, non-letters
814 * to (potentially different) non-letters */
815 v = (unsigned)(c | 0x20) - 'a';
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000816 if (v <= 5)
817 return v + 10;
818 return ~0;
819}
820/* For testing:
Denis Vlasenko72b6a652007-08-21 11:18:25 +0000821void t(char c) { printf("'%c'(%u) %u\n", c, c, hex_to_bin(c)); }
822int main() { t(0x10); t(0x20); t('0'); t('9'); t('A'); t('F'); t('a'); t('f');
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000823t('0'-1); t('9'+1); t('A'-1); t('F'+1); t('a'-1); t('f'+1); return 0; }
824*/
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000825static char *decodeString(char *orig, int option_d)
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000826{
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000827 /* note that decoded string is always shorter than original */
828 char *string = orig;
829 char *ptr = string;
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000830 char c;
Eric Andersena3bb3e62003-06-26 09:05:32 +0000831
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000832 while ((c = *ptr++) != '\0') {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000833 unsigned v;
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000834
835 if (option_d && c == '+') {
Denis Vlasenko601ae132006-11-28 23:37:46 +0000836 *string++ = ' ';
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000837 continue;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000838 }
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000839 if (c != '%') {
840 *string++ = c;
841 continue;
842 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000843 v = hex_to_bin(ptr[0]);
844 if (v > 15) {
845 bad_hex:
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000846 if (!option_d)
847 return NULL;
848 *string++ = '%';
849 continue;
850 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000851 v = (v * 16) | hex_to_bin(ptr[1]);
852 if (v > 255)
853 goto bad_hex;
854 if (!option_d && (v == '/' || v == '\0')) {
Denis Vlasenkof7996f32007-01-11 17:20:00 +0000855 /* caller takes it as indication of invalid
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000856 * (dangerous wrt exploits) chars */
857 return orig + 1;
858 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +0000859 *string++ = v;
Denis Vlasenkoa35c9e92006-11-29 15:58:50 +0000860 ptr += 2;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000861 }
862 *string = '\0';
863 return orig;
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000864}
865
Denis Vlasenko55a99402006-09-30 20:41:44 +0000866#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000867/*
Denis Vlasenko073214f2007-08-17 19:20:07 +0000868 * Decode a base64 data stream as per rfc1521.
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000869 * Note that the rfc states that non base64 chars are to be ignored.
Denis Vlasenko073214f2007-08-17 19:20:07 +0000870 * Since the decode always results in a shorter size than the input,
871 * it is OK to pass the input arg as an output arg.
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000872 * Parameter: a pointer to a base64 encoded string.
873 * Decoded data is stored in-place.
874 */
Glenn L McGrath06e95652003-02-09 06:51:14 +0000875static void decodeBase64(char *Data)
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000876{
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000877 const unsigned char *in = (const unsigned char *)Data;
Denis Vlasenko37c33162007-08-19 18:54:22 +0000878 /* The decoded size will be at most 3/4 the size of the encoded */
Denis Vlasenko088b9592007-04-18 21:14:46 +0000879 unsigned ch = 0;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000880 int i = 0;
Glenn L McGrath06e95652003-02-09 06:51:14 +0000881
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000882 while (*in) {
883 int t = *in++;
Glenn L McGrath06e95652003-02-09 06:51:14 +0000884
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000885 if (t >= '0' && t <= '9')
886 t = t - '0' + 52;
887 else if (t >= 'A' && t <= 'Z')
888 t = t - 'A';
889 else if (t >= 'a' && t <= 'z')
890 t = t - 'a' + 26;
891 else if (t == '+')
892 t = 62;
893 else if (t == '/')
894 t = 63;
895 else if (t == '=')
896 t = 0;
897 else
898 continue;
Glenn L McGrath874e3382003-05-14 12:11:36 +0000899
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000900 ch = (ch << 6) | t;
901 i++;
902 if (i == 4) {
903 *Data++ = (char) (ch >> 16);
904 *Data++ = (char) (ch >> 8);
905 *Data++ = (char) ch;
906 i = 0;
907 }
908 }
Denis Vlasenko088b9592007-04-18 21:14:46 +0000909 *Data = '\0';
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000910}
911#endif
912
Denis Vlasenko073214f2007-08-17 19:20:07 +0000913/*
914 * Create a listen server socket on the designated port.
915 */
Glenn L McGrath06e95652003-02-09 06:51:14 +0000916static int openServer(void)
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000917{
Denis Vlasenkof74194e2007-10-18 12:54:39 +0000918 unsigned n = bb_strtou(bind_addr_or_port, NULL, 10);
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000919 if (!errno && n && n <= 0xffff)
920 n = create_and_bind_stream_or_die(NULL, n);
921 else
922 n = create_and_bind_stream_or_die(bind_addr_or_port, 80);
923 xlisten(n, 9);
924 return n;
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000925}
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000926
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000927/*
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +0000928 * Log the connection closure and exit.
929 */
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +0000930static void log_and_exit(void) NORETURN;
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +0000931static void log_and_exit(void)
932{
Denis Vlasenko921799d2007-08-19 19:28:09 +0000933 /* Paranoia. IE said to be buggy. It may send some extra data
934 * or be confused by us just exiting without SHUT_WR. Oh well. */
935 shutdown(1, SHUT_WR);
Denis Vlasenkofaf334a2008-05-18 15:14:36 +0000936 /* Why??
937 (this also messes up stdin when user runs httpd -i from terminal)
Denis Vlasenko921799d2007-08-19 19:28:09 +0000938 ndelay_on(0);
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +0000939 while (read(STDIN_FILENO, iobuf, IOBUF_SIZE) > 0)
Denis Vlasenko921799d2007-08-19 19:28:09 +0000940 continue;
Denis Vlasenkofaf334a2008-05-18 15:14:36 +0000941 */
Denis Vlasenko921799d2007-08-19 19:28:09 +0000942
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +0000943 if (verbose > 2)
944 bb_error_msg("closed");
945 _exit(xfunc_error_retval);
946}
947
948/*
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000949 * Create and send HTTP response headers.
950 * The arguments are combined and sent as one write operation. Note that
951 * IE will puke big-time if the headers are not sent in one packet and the
952 * second packet is delayed for any reason.
953 * responseNum - the result code to send.
Denis Vlasenko0372f0f2007-08-14 16:50:01 +0000954 */
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000955static void send_headers(int responseNum)
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000956{
Denis Vlasenko073214f2007-08-17 19:20:07 +0000957 static const char RFC1123FMT[] ALIGN1 = "%a, %d %b %Y %H:%M:%S GMT";
958
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000959 const char *responseString = "";
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000960 const char *infoString = NULL;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000961 const char *mime_type;
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000962#if ENABLE_FEATURE_HTTPD_ERROR_PAGES
Denis Vlasenko2f518b02008-02-21 00:12:07 +0000963 const char *error_page = NULL;
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000964#endif
Denis Vlasenkob64eed62007-01-14 17:06:11 +0000965 unsigned i;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000966 time_t timer = time(0);
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000967 char tmp_str[80];
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000968 int len;
Glenn L McGrath06e95652003-02-09 06:51:14 +0000969
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +0000970 for (i = 0; i < ARRAY_SIZE(http_response_type); i++) {
971 if (http_response_type[i] == responseNum) {
972 responseString = http_response[i].name;
973 infoString = http_response[i].info;
974#if ENABLE_FEATURE_HTTPD_ERROR_PAGES
975 error_page = http_error_page[i];
976#endif
Glenn L McGrath06e95652003-02-09 06:51:14 +0000977 break;
978 }
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000979 }
980 /* error message is HTML */
981 mime_type = responseNum == HTTP_OK ?
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000982 found_mime_type : "text/html";
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000983
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000984 if (verbose)
Denis Vlasenko241b1562007-08-17 19:18:47 +0000985 bb_error_msg("response:%u", responseNum);
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000986
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000987 /* emit the current date */
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000988 strftime(tmp_str, sizeof(tmp_str), RFC1123FMT, gmtime(&timer));
989 len = sprintf(iobuf,
Denis Vlasenko69981422007-01-07 21:25:12 +0000990 "HTTP/1.0 %d %s\r\nContent-type: %s\r\n"
991 "Date: %s\r\nConnection: close\r\n",
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000992 responseNum, responseString, mime_type, tmp_str);
Glenn L McGrath58c708a2003-01-05 04:01:56 +0000993
Denis Vlasenko55a99402006-09-30 20:41:44 +0000994#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000995 if (responseNum == HTTP_UNAUTHORIZED) {
Denis Vlasenko384b1d12007-08-14 16:55:01 +0000996 len += sprintf(iobuf + len,
Denis Vlasenko8e858e22007-03-07 09:35:43 +0000997 "WWW-Authenticate: Basic realm=\"%s\"\r\n",
Denis Vlasenko77e44d62007-06-09 23:49:05 +0000998 g_realm);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +0000999 }
Glenn L McGrath3d2405c2003-02-10 22:28:21 +00001000#endif
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001001 if (responseNum == HTTP_MOVED_TEMPORARILY) {
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001002 len += sprintf(iobuf + len, "Location: %s/%s%s\r\n",
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001003 found_moved_temporarily,
1004 (g_query ? "?" : ""),
1005 (g_query ? g_query : ""));
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001006 }
Eric Andersen07f2fea2004-10-08 08:03:29 +00001007
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001008#if ENABLE_FEATURE_HTTPD_ERROR_PAGES
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001009 if (error_page && access(error_page, R_OK) == 0) {
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001010 strcat(iobuf, "\r\n");
1011 len += 2;
1012
1013 if (DEBUG)
1014 fprintf(stderr, "headers: '%s'\n", iobuf);
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001015 full_write(STDOUT_FILENO, iobuf, len);
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001016 if (DEBUG)
1017 fprintf(stderr, "writing error page: '%s'\n", error_page);
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001018 return send_file_and_exit(error_page, SEND_BODY);
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001019 }
1020#endif
1021
Denis Vlasenkof4310172007-09-21 22:35:18 +00001022 if (file_size != -1) { /* file */
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001023 strftime(tmp_str, sizeof(tmp_str), RFC1123FMT, gmtime(&last_mod));
Denis Vlasenkof4310172007-09-21 22:35:18 +00001024#if ENABLE_FEATURE_HTTPD_RANGES
1025 if (responseNum == HTTP_PARTIAL_CONTENT) {
1026 len += sprintf(iobuf + len, "Content-Range: bytes %"OFF_FMT"d-%"OFF_FMT"d/%"OFF_FMT"d\r\n",
1027 range_start,
1028 range_end,
1029 file_size);
1030 file_size = range_end - range_start + 1;
1031 }
1032#endif
1033 len += sprintf(iobuf + len,
1034#if ENABLE_FEATURE_HTTPD_RANGES
1035 "Accept-Ranges: bytes\r\n"
1036#endif
1037 "Last-Modified: %s\r\n%s %"OFF_FMT"d\r\n",
1038 tmp_str,
1039 "Content-length:",
1040 file_size
1041 );
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001042 }
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001043 iobuf[len++] = '\r';
1044 iobuf[len++] = '\n';
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001045 if (infoString) {
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001046 len += sprintf(iobuf + len,
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001047 "<HTML><HEAD><TITLE>%d %s</TITLE></HEAD>\n"
1048 "<BODY><H1>%d %s</H1>\n%s\n</BODY></HTML>\n",
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001049 responseNum, responseString,
1050 responseNum, responseString, infoString);
1051 }
Denis Vlasenko6c85ddc2006-11-21 00:08:39 +00001052 if (DEBUG)
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001053 fprintf(stderr, "headers: '%s'\n", iobuf);
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001054 if (full_write(STDOUT_FILENO, iobuf, len) != len) {
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001055 if (verbose > 1)
1056 bb_perror_msg("error");
1057 log_and_exit();
1058 }
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001059}
1060
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00001061static void send_headers_and_exit(int responseNum) NORETURN;
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001062static void send_headers_and_exit(int responseNum)
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001063{
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001064 send_headers(responseNum);
1065 log_and_exit();
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001066}
1067
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00001068/*
1069 * Read from the socket until '\n' or EOF. '\r' chars are removed.
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001070 * '\n' is replaced with NUL.
1071 * Return number of characters read or 0 if nothing is read
1072 * ('\r' and '\n' are not counted).
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00001073 * Data is returned in iobuf.
1074 */
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001075static int get_line(void)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001076{
Denis Vlasenko6c5e5a02006-11-10 23:28:57 +00001077 int count = 0;
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001078 char c;
Glenn L McGrath06e95652003-02-09 06:51:14 +00001079
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001080 while (1) {
1081 if (hdr_cnt <= 0) {
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001082 hdr_cnt = safe_read(STDIN_FILENO, hdr_buf, sizeof(hdr_buf));
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001083 if (hdr_cnt <= 0)
1084 break;
1085 hdr_ptr = hdr_buf;
1086 }
1087 iobuf[count] = c = *hdr_ptr++;
1088 hdr_cnt--;
1089
1090 if (c == '\r')
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00001091 continue;
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001092 if (c == '\n') {
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00001093 iobuf[count] = '\0';
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001094 return count;
1095 }
Denis Vlasenko921799d2007-08-19 19:28:09 +00001096 if (count < (IOBUF_SIZE - 1)) /* check overflow */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001097 count++;
1098 }
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001099 return count;
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001100}
1101
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001102#if ENABLE_FEATURE_HTTPD_CGI || ENABLE_FEATURE_HTTPD_PROXY
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001103
1104/* gcc 4.2.1 fares better with NOINLINE */
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00001105static NOINLINE void cgi_io_loop_and_exit(int fromCgi_rd, int toCgi_wr, int post_len) NORETURN;
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001106static NOINLINE void cgi_io_loop_and_exit(int fromCgi_rd, int toCgi_wr, int post_len)
1107{
1108 enum { FROM_CGI = 1, TO_CGI = 2 }; /* indexes in pfd[] */
1109 struct pollfd pfd[3];
1110 int out_cnt; /* we buffer a bit of initial CGI output */
1111 int count;
1112
1113 /* iobuf is used for CGI -> network data,
1114 * hdr_buf is for network -> CGI data (POSTDATA) */
1115
1116 /* If CGI dies, we still want to correctly finish reading its output
1117 * and send it to the peer. So please no SIGPIPEs! */
1118 signal(SIGPIPE, SIG_IGN);
1119
Denis Vlasenko4a457562007-10-14 02:34:20 +00001120 // We inconsistently handle a case when more POSTDATA from network
1121 // is coming than we expected. We may give *some part* of that
1122 // extra data to CGI.
1123
1124 //if (hdr_cnt > post_len) {
1125 // /* We got more POSTDATA from network than we expected */
1126 // hdr_cnt = post_len;
1127 //}
1128 post_len -= hdr_cnt;
1129 /* post_len - number of POST bytes not yet read from network */
1130
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001131 /* NB: breaking out of this loop jumps to log_and_exit() */
1132 out_cnt = 0;
1133 while (1) {
1134 memset(pfd, 0, sizeof(pfd));
1135
1136 pfd[FROM_CGI].fd = fromCgi_rd;
1137 pfd[FROM_CGI].events = POLLIN;
1138
1139 if (toCgi_wr) {
1140 pfd[TO_CGI].fd = toCgi_wr;
1141 if (hdr_cnt > 0) {
1142 pfd[TO_CGI].events = POLLOUT;
1143 } else if (post_len > 0) {
1144 pfd[0].events = POLLIN;
1145 } else {
1146 /* post_len <= 0 && hdr_cnt <= 0:
1147 * no more POST data to CGI,
1148 * let CGI see EOF on CGI's stdin */
1149 close(toCgi_wr);
1150 toCgi_wr = 0;
1151 }
1152 }
1153
1154 /* Now wait on the set of sockets */
Denis Vlasenko5d61e712007-09-27 10:09:59 +00001155 count = safe_poll(pfd, 3, -1);
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001156 if (count <= 0) {
1157#if 0
Denis Vlasenkofb0eba72008-01-02 19:55:04 +00001158 if (safe_waitpid(pid, &status, WNOHANG) <= 0) {
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001159 /* Weird. CGI didn't exit and no fd's
1160 * are ready, yet poll returned?! */
1161 continue;
1162 }
1163 if (DEBUG && WIFEXITED(status))
1164 bb_error_msg("CGI exited, status=%d", WEXITSTATUS(status));
1165 if (DEBUG && WIFSIGNALED(status))
1166 bb_error_msg("CGI killed, signal=%d", WTERMSIG(status));
1167#endif
1168 break;
1169 }
1170
1171 if (pfd[TO_CGI].revents) {
1172 /* hdr_cnt > 0 here due to the way pfd[TO_CGI].events set */
1173 /* Have data from peer and can write to CGI */
1174 count = safe_write(toCgi_wr, hdr_ptr, hdr_cnt);
1175 /* Doesn't happen, we dont use nonblocking IO here
1176 *if (count < 0 && errno == EAGAIN) {
1177 * ...
1178 *} else */
1179 if (count > 0) {
1180 hdr_ptr += count;
1181 hdr_cnt -= count;
1182 } else {
1183 /* EOF/broken pipe to CGI, stop piping POST data */
1184 hdr_cnt = post_len = 0;
1185 }
1186 }
1187
1188 if (pfd[0].revents) {
1189 /* post_len > 0 && hdr_cnt == 0 here */
1190 /* We expect data, prev data portion is eaten by CGI
1191 * and there *is* data to read from the peer
1192 * (POSTDATA) */
1193 //count = post_len > (int)sizeof(hdr_buf) ? (int)sizeof(hdr_buf) : post_len;
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001194 //count = safe_read(STDIN_FILENO, hdr_buf, count);
1195 count = safe_read(STDIN_FILENO, hdr_buf, sizeof(hdr_buf));
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001196 if (count > 0) {
1197 hdr_cnt = count;
1198 hdr_ptr = hdr_buf;
1199 post_len -= count;
1200 } else {
1201 /* no more POST data can be read */
1202 post_len = 0;
1203 }
1204 }
1205
1206 if (pfd[FROM_CGI].revents) {
1207 /* There is something to read from CGI */
1208 char *rbuf = iobuf;
1209
1210 /* Are we still buffering CGI output? */
1211 if (out_cnt >= 0) {
1212 /* HTTP_200[] has single "\r\n" at the end.
1213 * According to http://hoohoo.ncsa.uiuc.edu/cgi/out.html,
1214 * CGI scripts MUST send their own header terminated by
1215 * empty line, then data. That's why we have only one
1216 * <cr><lf> pair here. We will output "200 OK" line
1217 * if needed, but CGI still has to provide blank line
1218 * between header and body */
1219
1220 /* Must use safe_read, not full_read, because
1221 * CGI may output a few first bytes and then wait
1222 * for POSTDATA without closing stdout.
1223 * With full_read we may wait here forever. */
1224 count = safe_read(fromCgi_rd, rbuf + out_cnt, PIPE_BUF - 8);
1225 if (count <= 0) {
1226 /* eof (or error) and there was no "HTTP",
1227 * so write it, then write received data */
1228 if (out_cnt) {
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001229 full_write(STDOUT_FILENO, HTTP_200, sizeof(HTTP_200)-1);
1230 full_write(STDOUT_FILENO, rbuf, out_cnt);
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001231 }
1232 break; /* CGI stdout is closed, exiting */
1233 }
1234 out_cnt += count;
1235 count = 0;
1236 /* "Status" header format is: "Status: 302 Redirected\r\n" */
1237 if (out_cnt >= 8 && memcmp(rbuf, "Status: ", 8) == 0) {
1238 /* send "HTTP/1.0 " */
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001239 if (full_write(STDOUT_FILENO, HTTP_200, 9) != 9)
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001240 break;
1241 rbuf += 8; /* skip "Status: " */
1242 count = out_cnt - 8;
1243 out_cnt = -1; /* buffering off */
1244 } else if (out_cnt >= 4) {
1245 /* Did CGI add "HTTP"? */
1246 if (memcmp(rbuf, HTTP_200, 4) != 0) {
1247 /* there is no "HTTP", do it ourself */
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001248 if (full_write(STDOUT_FILENO, HTTP_200, sizeof(HTTP_200)-1) != sizeof(HTTP_200)-1)
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001249 break;
1250 }
1251 /* Commented out:
1252 if (!strstr(rbuf, "ontent-")) {
1253 full_write(s, "Content-type: text/plain\r\n\r\n", 28);
1254 }
1255 * Counter-example of valid CGI without Content-type:
1256 * echo -en "HTTP/1.0 302 Found\r\n"
1257 * echo -en "Location: http://www.busybox.net\r\n"
1258 * echo -en "\r\n"
1259 */
1260 count = out_cnt;
1261 out_cnt = -1; /* buffering off */
1262 }
1263 } else {
1264 count = safe_read(fromCgi_rd, rbuf, PIPE_BUF);
1265 if (count <= 0)
1266 break; /* eof (or error) */
1267 }
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001268 if (full_write(STDOUT_FILENO, rbuf, count) != count)
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001269 break;
1270 if (DEBUG)
1271 fprintf(stderr, "cgi read %d bytes: '%.*s'\n", count, count, rbuf);
1272 } /* if (pfd[FROM_CGI].revents) */
1273 } /* while (1) */
1274 log_and_exit();
1275}
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001276#endif
1277
1278#if ENABLE_FEATURE_HTTPD_CGI
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001279
Denis Vlasenko921799d2007-08-19 19:28:09 +00001280static void setenv1(const char *name, const char *value)
1281{
1282 setenv(name, value ? value : "", 1);
1283}
1284
Denis Vlasenko241b1562007-08-17 19:18:47 +00001285/*
1286 * Spawn CGI script, forward CGI's stdin/out <=> network
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001287 *
Denis Vlasenko241b1562007-08-17 19:18:47 +00001288 * Environment variables are set up and the script is invoked with pipes
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001289 * for stdin/stdout. If a POST is being done the script is fed the POST
Denis Vlasenko241b1562007-08-17 19:18:47 +00001290 * data in addition to setting the QUERY_STRING variable (for GETs or POSTs).
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001291 *
Denis Vlasenko241b1562007-08-17 19:18:47 +00001292 * Parameters:
1293 * const char *url The requested URL (with leading /).
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001294 * int post_len Length of the POST body.
Denis Vlasenko241b1562007-08-17 19:18:47 +00001295 * const char *cookie For set HTTP_COOKIE.
1296 * const char *content_type For set CONTENT_TYPE.
1297 */
1298static void send_cgi_and_exit(
1299 const char *url,
1300 const char *request,
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001301 int post_len,
Denis Vlasenko241b1562007-08-17 19:18:47 +00001302 const char *cookie,
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00001303 const char *content_type) NORETURN;
Denis Vlasenko241b1562007-08-17 19:18:47 +00001304static void send_cgi_and_exit(
1305 const char *url,
1306 const char *request,
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001307 int post_len,
Denis Vlasenko241b1562007-08-17 19:18:47 +00001308 const char *cookie,
Denis Vlasenko6c5e5a02006-11-10 23:28:57 +00001309 const char *content_type)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001310{
Denis Vlasenko37188322008-02-16 13:20:56 +00001311 struct fd_pair fromCgi; /* CGI -> httpd pipe */
1312 struct fd_pair toCgi; /* httpd -> CGI pipe */
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001313 char *script;
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001314 int pid;
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001315
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001316 /* Make a copy. NB: caller guarantees:
1317 * url[0] == '/', url[1] != '/' */
1318 url = xstrdup(url);
1319
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001320 /*
1321 * We are mucking with environment _first_ and then vfork/exec,
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001322 * this allows us to use vfork safely. Parent doesn't care about
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001323 * these environment changes anyway.
1324 */
1325
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001326 /* Check for [dirs/]script.cgi/PATH_INFO */
1327 script = (char*)url;
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001328 while ((script = strchr(script + 1, '/')) != NULL) {
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001329 struct stat sb;
1330
1331 *script = '\0';
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001332 if (!is_directory(url + 1, 1, &sb)) {
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001333 /* not directory, found script.cgi/PATH_INFO */
1334 *script = '/';
1335 break;
1336 }
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001337 *script = '/'; /* is directory, find next '/' */
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001338 }
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001339 setenv1("PATH_INFO", script); /* set to /PATH_INFO or "" */
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001340 setenv1("REQUEST_METHOD", request);
1341 if (g_query) {
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001342 putenv(xasprintf("%s=%s?%s", "REQUEST_URI", url, g_query));
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001343 } else {
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001344 setenv1("REQUEST_URI", url);
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001345 }
1346 if (script != NULL)
1347 *script = '\0'; /* cut off /PATH_INFO */
1348
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001349 /* SCRIPT_FILENAME is required by PHP in CGI mode */
1350 if (home_httpd[0] == '/') {
1351 char *fullpath = concat_path_file(home_httpd, url);
1352 setenv1("SCRIPT_FILENAME", fullpath);
1353 }
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001354 /* set SCRIPT_NAME as full path: /cgi-bin/dirs/script.cgi */
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001355 setenv1("SCRIPT_NAME", url);
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001356 /* http://hoohoo.ncsa.uiuc.edu/cgi/env.html:
1357 * QUERY_STRING: The information which follows the ? in the URL
1358 * which referenced this script. This is the query information.
1359 * It should not be decoded in any fashion. This variable
1360 * should always be set when there is query information,
1361 * regardless of command line decoding. */
1362 /* (Older versions of bbox seem to do some decoding) */
1363 setenv1("QUERY_STRING", g_query);
1364 putenv((char*)"SERVER_SOFTWARE=busybox httpd/"BB_VER);
1365 putenv((char*)"SERVER_PROTOCOL=HTTP/1.0");
1366 putenv((char*)"GATEWAY_INTERFACE=CGI/1.1");
1367 /* Having _separate_ variables for IP and port defeats
1368 * the purpose of having socket abstraction. Which "port"
1369 * are you using on Unix domain socket?
1370 * IOW - REMOTE_PEER="1.2.3.4:56" makes much more sense.
1371 * Oh well... */
1372 {
1373 char *p = rmt_ip_str ? rmt_ip_str : (char*)"";
1374 char *cp = strrchr(p, ':');
1375 if (ENABLE_FEATURE_IPV6 && cp && strchr(cp, ']'))
1376 cp = NULL;
1377 if (cp) *cp = '\0'; /* delete :PORT */
1378 setenv1("REMOTE_ADDR", p);
Denis Vlasenko37c33162007-08-19 18:54:22 +00001379 if (cp) {
1380 *cp = ':';
1381#if ENABLE_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV
1382 setenv1("REMOTE_PORT", cp + 1);
1383#endif
1384 }
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001385 }
1386 setenv1("HTTP_USER_AGENT", user_agent);
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001387 if (post_len)
1388 putenv(xasprintf("CONTENT_LENGTH=%d", post_len));
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001389 if (cookie)
1390 setenv1("HTTP_COOKIE", cookie);
1391 if (content_type)
1392 setenv1("CONTENT_TYPE", content_type);
1393#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
1394 if (remoteuser) {
1395 setenv1("REMOTE_USER", remoteuser);
1396 putenv((char*)"AUTH_TYPE=Basic");
1397 }
1398#endif
1399 if (referer)
1400 setenv1("HTTP_REFERER", referer);
Glenn L McGrath06e95652003-02-09 06:51:14 +00001401
Denis Vlasenko37188322008-02-16 13:20:56 +00001402 xpiped_pair(fromCgi);
1403 xpiped_pair(toCgi);
Denis Vlasenkoa3ee69f2006-11-21 00:07:31 +00001404
Denis Vlasenko80281fe2007-03-07 22:16:38 +00001405 pid = vfork();
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001406 if (pid < 0) {
1407 /* TODO: log perror? */
1408 log_and_exit();
1409 }
Denis Vlasenkof7996f32007-01-11 17:20:00 +00001410
Denis Vlasenkoa3ee69f2006-11-21 00:07:31 +00001411 if (!pid) {
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001412 /* Child process */
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001413 char *argv[3];
1414
Denis Vlasenko241b1562007-08-17 19:18:47 +00001415 xfunc_error_retval = 242;
1416
Denis Vlasenko284d0fa2008-02-16 13:18:17 +00001417 /* NB: close _first_, then move fds! */
1418 close(toCgi.wr);
1419 close(fromCgi.rd);
Denis Vlasenkoe5d37cc2007-08-11 20:20:02 +00001420 xmove_fd(toCgi.rd, 0); /* replace stdin with the pipe */
1421 xmove_fd(fromCgi.wr, 1); /* replace stdout with the pipe */
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001422 /* User seeing stderr output can be a security problem.
Denis Vlasenko241b1562007-08-17 19:18:47 +00001423 * If CGI really wants that, it can always do dup itself. */
Denis Vlasenko1ec15cd2007-08-11 20:20:43 +00001424 /* dup2(1, 2); */
Glenn L McGrath06e95652003-02-09 06:51:14 +00001425
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001426 /* Chdiring to script's dir */
1427 script = strrchr(url, '/');
1428 if (script != url) { /* paranoia */
1429 *script = '\0';
1430 if (chdir(url + 1) != 0) {
1431 bb_perror_msg("chdir %s", url + 1);
1432 goto error_execing_cgi;
1433 }
1434 // not needed: *script = '/';
1435 }
1436 script++;
Denis Vlasenkoa3ee69f2006-11-21 00:07:31 +00001437
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001438 /* set argv[0] to name without path */
1439 argv[0] = script;
1440 argv[1] = NULL;
Denis Vlasenkofc213052008-02-11 16:26:22 +00001441
1442#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001443 {
1444 char *suffix = strrchr(script, '.');
Denis Vlasenkofc213052008-02-11 16:26:22 +00001445
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001446 if (suffix) {
1447 Htaccess *cur;
1448 for (cur = script_i; cur; cur = cur->next) {
1449 if (strcmp(cur->before_colon + 1, suffix) == 0) {
1450 /* found interpreter name */
1451 argv[0] = cur->after_colon;
1452 argv[1] = script;
1453 argv[2] = NULL;
1454 break;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001455 }
1456 }
Denis Vlasenkoa3ee69f2006-11-21 00:07:31 +00001457 }
Denis Vlasenkoa3ee69f2006-11-21 00:07:31 +00001458 }
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001459#endif
1460 /* restore default signal dispositions for CGI process */
1461 bb_signals(0
1462 | (1 << SIGCHLD)
1463 | (1 << SIGPIPE)
1464 | (1 << SIGHUP)
1465 , SIG_DFL);
1466
1467 /* _NOT_ execvp. We do not search PATH. argv[0] is a filename
1468 * without any dir components and will only match a file
1469 * in the current directory */
1470 execv(argv[0], argv);
1471 if (verbose)
1472 bb_perror_msg("exec %s", argv[0]);
1473 error_execing_cgi:
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001474 /* send to stdout
1475 * (we are CGI here, our stdout is pumped to the net) */
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001476 send_headers_and_exit(HTTP_NOT_FOUND);
Denis Vlasenkoa3ee69f2006-11-21 00:07:31 +00001477 } /* end child */
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001478
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001479 /* Parent process */
1480
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001481 /* Restore variables possibly changed by child */
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001482 xfunc_error_retval = 0;
Denis Vlasenkob98c26a2007-08-17 19:21:12 +00001483
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001484 /* Pump data */
Denis Vlasenkoe5d37cc2007-08-11 20:20:02 +00001485 close(fromCgi.wr);
1486 close(toCgi.rd);
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001487 cgi_io_loop_and_exit(fromCgi.rd, toCgi.wr, post_len);
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001488}
Denis Vlasenko32a471e2007-09-23 13:56:57 +00001489
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001490#endif /* FEATURE_HTTPD_CGI */
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001491
Denis Vlasenko241b1562007-08-17 19:18:47 +00001492/*
1493 * Send a file response to a HTTP request, and exit
Denis Vlasenko3f5fdc72007-10-14 04:55:59 +00001494 *
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001495 * Parameters:
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001496 * const char *url The requested URL (with leading /).
1497 * what What to send (headers/body/both).
Denis Vlasenko241b1562007-08-17 19:18:47 +00001498 */
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001499static void send_file_and_exit(const char *url, int what)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001500{
Denis Vlasenko073214f2007-08-17 19:20:07 +00001501 static const char *const suffixTable[] = {
1502 /* Warning: shorter equivalent suffix in one line must be first */
1503 ".htm.html", "text/html",
1504 ".jpg.jpeg", "image/jpeg",
1505 ".gif", "image/gif",
1506 ".png", "image/png",
1507 ".txt.h.c.cc.cpp", "text/plain",
1508 ".css", "text/css",
1509 ".wav", "audio/wav",
1510 ".avi", "video/x-msvideo",
1511 ".qt.mov", "video/quicktime",
1512 ".mpe.mpeg", "video/mpeg",
1513 ".mid.midi", "audio/midi",
1514 ".mp3", "audio/mpeg",
1515#if 0 /* unpopular */
1516 ".au", "audio/basic",
1517 ".pac", "application/x-ns-proxy-autoconfig",
1518 ".vrml.wrl", "model/vrml",
1519#endif
1520 NULL
1521 };
1522
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001523 char *suffix;
Denis Vlasenko6ca409e2007-08-12 20:58:27 +00001524 int f;
1525 const char *const *table;
1526 const char *try_suffix;
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001527 ssize_t count;
1528#if ENABLE_FEATURE_HTTPD_USE_SENDFILE
Denis Vlasenkof4310172007-09-21 22:35:18 +00001529 off_t offset;
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001530#endif
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001531
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001532 /* If you want to know about EPIPE below
1533 * (happens if you abort downloads from local httpd): */
1534 signal(SIGPIPE, SIG_IGN);
1535
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001536 suffix = strrchr(url, '.');
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001537
Denis Vlasenko073214f2007-08-17 19:20:07 +00001538 /* If not found, set default as "application/octet-stream"; */
1539 found_mime_type = "application/octet-stream";
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001540 if (suffix) {
Denis Vlasenko073214f2007-08-17 19:20:07 +00001541#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
1542 Htaccess *cur;
1543#endif
1544 for (table = suffixTable; *table; table += 2) {
1545 try_suffix = strstr(table[0], suffix);
1546 if (try_suffix) {
1547 try_suffix += strlen(suffix);
1548 if (*try_suffix == '\0' || *try_suffix == '.') {
1549 found_mime_type = table[1];
1550 break;
1551 }
1552 }
1553 }
1554#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_MIME_TYPES
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001555 for (cur = mime_a; cur; cur = cur->next) {
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001556 if (strcmp(cur->before_colon, suffix) == 0) {
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001557 found_mime_type = cur->after_colon;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001558 break;
1559 }
1560 }
Denis Vlasenko073214f2007-08-17 19:20:07 +00001561#endif
Glenn L McGrath06e95652003-02-09 06:51:14 +00001562 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00001563
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001564 if (DEBUG)
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001565 bb_error_msg("sending file '%s' content-type: %s",
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001566 url, found_mime_type);
Glenn L McGrath06e95652003-02-09 06:51:14 +00001567
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001568 f = open(url, O_RDONLY);
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001569 if (f < 0) {
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001570 if (DEBUG)
Bernhard Reutner-Fischera53de7f2008-07-21 13:46:54 +00001571 bb_perror_msg("can't open '%s'", url);
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001572 /* Error pages are sent by using send_file_and_exit(SEND_BODY).
1573 * IOW: it is unsafe to call send_headers_and_exit
1574 * if what is SEND_BODY! Can recurse! */
1575 if (what != SEND_BODY)
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001576 send_headers_and_exit(HTTP_NOT_FOUND);
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001577 log_and_exit();
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001578 }
Denis Vlasenkof4310172007-09-21 22:35:18 +00001579#if ENABLE_FEATURE_HTTPD_RANGES
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001580 if (what == SEND_BODY)
Denis Vlasenkof4310172007-09-21 22:35:18 +00001581 range_start = 0; /* err pages and ranges don't mix */
1582 range_len = MAXINT(off_t);
1583 if (range_start) {
1584 if (!range_end) {
1585 range_end = file_size - 1;
1586 }
1587 if (range_end < range_start
1588 || lseek(f, range_start, SEEK_SET) != range_start
1589 ) {
1590 lseek(f, 0, SEEK_SET);
1591 range_start = 0;
1592 } else {
1593 range_len = range_end - range_start + 1;
1594 send_headers(HTTP_PARTIAL_CONTENT);
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001595 what = SEND_BODY;
Denis Vlasenkof4310172007-09-21 22:35:18 +00001596 }
1597 }
1598#endif
Glenn L McGrath06e95652003-02-09 06:51:14 +00001599
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001600 if (what & SEND_HEADERS)
Denis Vlasenkoe58e8d92007-08-21 10:26:55 +00001601 send_headers(HTTP_OK);
Denis Vlasenko241b1562007-08-17 19:18:47 +00001602
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001603#if ENABLE_FEATURE_HTTPD_USE_SENDFILE
Denis Vlasenkof4310172007-09-21 22:35:18 +00001604 offset = range_start;
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001605 do {
Denis Vlasenkof4310172007-09-21 22:35:18 +00001606 /* sz is rounded down to 64k */
1607 ssize_t sz = MAXINT(ssize_t) - 0xffff;
1608 USE_FEATURE_HTTPD_RANGES(if (sz > range_len) sz = range_len;)
1609 count = sendfile(1, f, &offset, sz);
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001610 if (count < 0) {
Denis Vlasenkof4310172007-09-21 22:35:18 +00001611 if (offset == range_start)
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001612 goto fallback;
Denis Vlasenko241b1562007-08-17 19:18:47 +00001613 goto fin;
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001614 }
Denis Vlasenkof4310172007-09-21 22:35:18 +00001615 USE_FEATURE_HTTPD_RANGES(range_len -= sz;)
1616 } while (count > 0 && range_len);
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001617 log_and_exit();
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001618
1619 fallback:
1620#endif
Denis Vlasenko921799d2007-08-19 19:28:09 +00001621 while ((count = safe_read(f, iobuf, IOBUF_SIZE)) > 0) {
Denis Vlasenkof4310172007-09-21 22:35:18 +00001622 ssize_t n;
1623 USE_FEATURE_HTTPD_RANGES(if (count > range_len) count = range_len;)
Bernhard Reutner-Fischer5e25ddb2008-05-19 09:48:17 +00001624 n = full_write(STDOUT_FILENO, iobuf, count);
Denis Vlasenko241b1562007-08-17 19:18:47 +00001625 if (count != n)
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001626 break;
Denis Vlasenkof4310172007-09-21 22:35:18 +00001627 USE_FEATURE_HTTPD_RANGES(range_len -= count;)
1628 if (!range_len)
1629 break;
Denis Vlasenko1b9064d2007-08-12 21:05:49 +00001630 }
Denis Vlasenko241b1562007-08-17 19:18:47 +00001631#if ENABLE_FEATURE_HTTPD_USE_SENDFILE
1632 fin:
1633#endif
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001634 if (count < 0 && verbose > 1)
1635 bb_perror_msg("error");
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001636 log_and_exit();
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001637}
1638
Glenn L McGrathb65422c2003-09-08 10:59:27 +00001639static int checkPermIP(void)
1640{
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001641 Htaccess_IP *cur;
Glenn L McGrathb65422c2003-09-08 10:59:27 +00001642
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001643 for (cur = ip_a_d; cur; cur = cur->next) {
Denis Vlasenkob64eed62007-01-14 17:06:11 +00001644#if DEBUG
Denis Vlasenko384b1d12007-08-14 16:55:01 +00001645 fprintf(stderr,
1646 "checkPermIP: '%s' ? '%u.%u.%u.%u/%u.%u.%u.%u'\n",
1647 rmt_ip_str,
Denis Vlasenko6536a9b2007-01-12 10:35:23 +00001648 (unsigned char)(cur->ip >> 24),
1649 (unsigned char)(cur->ip >> 16),
1650 (unsigned char)(cur->ip >> 8),
1651 (unsigned char)(cur->ip),
1652 (unsigned char)(cur->mask >> 24),
1653 (unsigned char)(cur->mask >> 16),
1654 (unsigned char)(cur->mask >> 8),
1655 (unsigned char)(cur->mask)
1656 );
Denis Vlasenko3bba5452006-12-30 17:57:03 +00001657#endif
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001658 if ((rmt_ip & cur->mask) == cur->ip)
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001659 return (cur->allow_deny == 'A'); /* A -> 1 */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001660 }
Glenn L McGrathb65422c2003-09-08 10:59:27 +00001661
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001662 return !flg_deny_all; /* depends on whether we saw "D:*" */
Glenn L McGrathb65422c2003-09-08 10:59:27 +00001663}
1664
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001665#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko073214f2007-08-17 19:20:07 +00001666/*
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001667 * Config file entries are of the form "/<path>:<user>:<passwd>".
1668 * If config file has no prefix match for path, access is allowed.
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001669 *
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001670 * path The file path
1671 * user_and_passwd "user:passwd" to validate
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001672 *
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001673 * Returns 1 if user_and_passwd is OK.
Denis Vlasenko073214f2007-08-17 19:20:07 +00001674 */
Denis Vlasenko25b46302008-06-13 09:55:13 +00001675static int check_user_passwd(const char *path, const char *user_and_passwd)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001676{
Denis Vlasenko073214f2007-08-17 19:20:07 +00001677 Htaccess *cur;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001678 const char *prev = NULL;
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001679
Denis Vlasenko77e44d62007-06-09 23:49:05 +00001680 for (cur = g_auth; cur; cur = cur->next) {
Denis Vlasenko25b46302008-06-13 09:55:13 +00001681 const char *dir_prefix;
1682 size_t len;
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001683
Denis Vlasenko25b46302008-06-13 09:55:13 +00001684 dir_prefix = cur->before_colon;
1685
1686 /* WHY? */
1687 /* If already saw a match, don't accept other different matches */
1688 if (prev && strcmp(prev, dir_prefix) != 0)
1689 continue;
1690
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001691 if (DEBUG)
Denis Vlasenko25b46302008-06-13 09:55:13 +00001692 fprintf(stderr, "checkPerm: '%s' ? '%s'\n", dir_prefix, user_and_passwd);
Glenn L McGrath06e95652003-02-09 06:51:14 +00001693
Denis Vlasenko25b46302008-06-13 09:55:13 +00001694 /* If it's not a prefix match, continue searching */
1695 len = strlen(dir_prefix);
1696 if (len != 1 /* dir_prefix "/" matches all, don't need to check */
1697 && (strncmp(dir_prefix, path, len) != 0
1698 || (path[len] != '/' && path[len] != '\0'))
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001699 ) {
Denis Vlasenko25b46302008-06-13 09:55:13 +00001700 continue;
1701 }
Glenn L McGrath1dc0cca2003-10-03 10:50:56 +00001702
Denis Vlasenko25b46302008-06-13 09:55:13 +00001703 /* Path match found */
1704 prev = dir_prefix;
Eric Andersen35e643b2003-07-28 07:40:39 +00001705
Denis Vlasenko25b46302008-06-13 09:55:13 +00001706 if (ENABLE_FEATURE_HTTPD_AUTH_MD5) {
1707 char *md5_passwd;
1708
1709 md5_passwd = strchr(cur->after_colon, ':');
1710 if (md5_passwd && md5_passwd[1] == '$' && md5_passwd[2] == '1'
1711 && md5_passwd[3] == '$' && md5_passwd[4]
1712 ) {
1713 char *encrypted;
1714 int r, user_len_p1;
1715
1716 md5_passwd++;
1717 user_len_p1 = md5_passwd - cur->after_colon;
1718 /* comparing "user:" */
1719 if (strncmp(cur->after_colon, user_and_passwd, user_len_p1) != 0) {
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001720 continue;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001721 }
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001722
Denis Vlasenko25b46302008-06-13 09:55:13 +00001723 encrypted = pw_encrypt(
1724 user_and_passwd + user_len_p1 /* cleartext pwd from user */,
1725 md5_passwd /*salt */, 1 /* cleanup */);
1726 r = strcmp(encrypted, md5_passwd);
1727 free(encrypted);
1728 if (r == 0)
1729 goto set_remoteuser_var; /* Ok */
1730 continue;
1731 }
1732 }
1733
1734 /* Comparing plaintext "user:pass" in one go */
1735 if (strcmp(cur->after_colon, user_and_passwd) == 0) {
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001736 set_remoteuser_var:
Denis Vlasenko25b46302008-06-13 09:55:13 +00001737 remoteuser = xstrndup(user_and_passwd,
1738 strchrnul(user_and_passwd, ':') - user_and_passwd);
1739 return 1; /* Ok */
Glenn L McGrath1dc0cca2003-10-03 10:50:56 +00001740 }
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001741 } /* for */
Glenn L McGrath06e95652003-02-09 06:51:14 +00001742
Denis Vlasenko25b46302008-06-13 09:55:13 +00001743 /* 0(bad) if prev is set: matches were found but passwd was wrong */
1744 return (prev == NULL);
Glenn L McGrath06e95652003-02-09 06:51:14 +00001745}
Denis Vlasenkob3a07152006-11-16 18:04:43 +00001746#endif /* FEATURE_HTTPD_BASIC_AUTH */
Glenn L McGrathc9163fe2003-05-13 16:20:11 +00001747
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001748#if ENABLE_FEATURE_HTTPD_PROXY
1749static Htaccess_Proxy *find_proxy_entry(const char *url)
1750{
1751 Htaccess_Proxy *p;
1752 for (p = proxy; p; p = p->next) {
1753 if (strncmp(url, p->url_from, strlen(p->url_from)) == 0)
1754 return p;
1755 }
1756 return NULL;
1757}
1758#endif
1759
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00001760/*
1761 * Handle timeouts
1762 */
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00001763static void exit_on_signal(int sig) NORETURN;
1764static void exit_on_signal(int sig UNUSED_PARAM)
Eric Andersen07f2fea2004-10-08 08:03:29 +00001765{
Denis Vlasenkoe45af732007-08-17 19:19:15 +00001766 send_headers_and_exit(HTTP_REQUEST_TIMEOUT);
Eric Andersen07f2fea2004-10-08 08:03:29 +00001767}
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001768
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00001769/*
1770 * Handle an incoming http request and exit.
1771 */
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00001772static void handle_incoming_and_exit(const len_and_sockaddr *fromAddr) NORETURN;
Denis Vlasenko367960b2007-08-18 14:20:21 +00001773static void handle_incoming_and_exit(const len_and_sockaddr *fromAddr)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001774{
Denis Vlasenko073214f2007-08-17 19:20:07 +00001775 static const char request_GET[] ALIGN1 = "GET";
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001776 struct stat sb;
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001777 char *urlcopy;
1778 char *urlp;
1779 char *tptr;
Denis Vlasenko55a99402006-09-30 20:41:44 +00001780#if ENABLE_FEATURE_HTTPD_CGI
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001781 static const char request_HEAD[] ALIGN1 = "HEAD";
Denis Vlasenko073214f2007-08-17 19:20:07 +00001782 const char *prequest;
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001783 char *cookie = NULL;
1784 char *content_type = NULL;
Denis Vlasenko0bb993f2006-11-21 00:06:28 +00001785 unsigned long length = 0;
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001786#elif ENABLE_FEATURE_HTTPD_PROXY
1787#define prequest request_GET
1788 unsigned long length = 0;
1789#endif
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001790#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
1791 smallint authorized = -1;
1792#endif
1793 smallint ip_allowed;
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001794 char http_major_version;
1795#if ENABLE_FEATURE_HTTPD_PROXY
1796 char http_minor_version;
Denis Vlasenko34cd7af2007-10-18 13:01:22 +00001797 char *header_buf = header_buf; /* for gcc */
1798 char *header_ptr = header_ptr;
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001799 Htaccess_Proxy *proxy_entry;
Glenn L McGrath58c708a2003-01-05 04:01:56 +00001800#endif
Glenn L McGrath06e95652003-02-09 06:51:14 +00001801
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001802 /* Allocation of iobuf is postponed until now
1803 * (IOW, server process doesn't need to waste 8k) */
Denis Vlasenko921799d2007-08-19 19:28:09 +00001804 iobuf = xmalloc(IOBUF_SIZE);
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00001805
Denis Vlasenko367960b2007-08-18 14:20:21 +00001806 rmt_ip = 0;
Bernhard Reutner-Fischer8c69afd2008-01-29 10:33:34 +00001807 if (fromAddr->u.sa.sa_family == AF_INET) {
1808 rmt_ip = ntohl(fromAddr->u.sin.sin_addr.s_addr);
Denis Vlasenko367960b2007-08-18 14:20:21 +00001809 }
Denis Vlasenko35465a32007-09-25 11:58:33 +00001810#if ENABLE_FEATURE_IPV6
Bernhard Reutner-Fischer8c69afd2008-01-29 10:33:34 +00001811 if (fromAddr->u.sa.sa_family == AF_INET6
1812 && fromAddr->u.sin6.sin6_addr.s6_addr32[0] == 0
1813 && fromAddr->u.sin6.sin6_addr.s6_addr32[1] == 0
1814 && ntohl(fromAddr->u.sin6.sin6_addr.s6_addr32[2]) == 0xffff)
1815 rmt_ip = ntohl(fromAddr->u.sin6.sin6_addr.s6_addr32[3]);
Denis Vlasenko35465a32007-09-25 11:58:33 +00001816#endif
Denis Vlasenko367960b2007-08-18 14:20:21 +00001817 if (ENABLE_FEATURE_HTTPD_CGI || DEBUG || verbose) {
Denis Vlasenkofaf334a2008-05-18 15:14:36 +00001818 /* NB: can be NULL (user runs httpd -i by hand?) */
Bernhard Reutner-Fischer8c69afd2008-01-29 10:33:34 +00001819 rmt_ip_str = xmalloc_sockaddr2dotted(&fromAddr->u.sa);
Denis Vlasenko367960b2007-08-18 14:20:21 +00001820 }
1821 if (verbose) {
1822 /* this trick makes -v logging much simpler */
Denis Vlasenkofaf334a2008-05-18 15:14:36 +00001823 if (rmt_ip_str)
1824 applet_name = rmt_ip_str;
Denis Vlasenko367960b2007-08-18 14:20:21 +00001825 if (verbose > 2)
1826 bb_error_msg("connected");
1827 }
1828
Denis Vlasenko073214f2007-08-17 19:20:07 +00001829 /* Install timeout handler */
Denis Vlasenko8e2cfec2008-03-12 23:19:35 +00001830 signal_no_SA_RESTART_empty_mask(SIGALRM, exit_on_signal);
Denis Vlasenko073214f2007-08-17 19:20:07 +00001831 alarm(HEADER_READ_TIMEOUT);
Eric Andersen07f2fea2004-10-08 08:03:29 +00001832
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001833 if (!get_line()) /* EOF or error or empty line */
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001834 send_headers_and_exit(HTTP_BAD_REQUEST);
Glenn L McGrath06e95652003-02-09 06:51:14 +00001835
Denis Vlasenko073214f2007-08-17 19:20:07 +00001836 /* Determine type of request (GET/POST) */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001837 urlp = strpbrk(iobuf, " \t");
1838 if (urlp == NULL)
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001839 send_headers_and_exit(HTTP_BAD_REQUEST);
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001840 *urlp++ = '\0';
Denis Vlasenko55a99402006-09-30 20:41:44 +00001841#if ENABLE_FEATURE_HTTPD_CGI
Denis Vlasenko073214f2007-08-17 19:20:07 +00001842 prequest = request_GET;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001843 if (strcasecmp(iobuf, prequest) != 0) {
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001844 prequest = request_HEAD;
1845 if (strcasecmp(iobuf, prequest) != 0) {
1846 prequest = "POST";
1847 if (strcasecmp(iobuf, prequest) != 0)
1848 send_headers_and_exit(HTTP_NOT_IMPLEMENTED);
1849 }
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001850 }
1851#else
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001852 if (strcasecmp(iobuf, request_GET) != 0)
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001853 send_headers_and_exit(HTTP_NOT_IMPLEMENTED);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001854#endif
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001855 urlp = skip_whitespace(urlp);
1856 if (urlp[0] != '/')
1857 send_headers_and_exit(HTTP_BAD_REQUEST);
1858
1859 /* Find end of URL and parse HTTP version, if any */
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001860 http_major_version = '0';
1861 USE_FEATURE_HTTPD_PROXY(http_minor_version = '0';)
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001862 tptr = strchrnul(urlp, ' ');
1863 /* Is it " HTTP/"? */
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001864 if (tptr[0] && strncmp(tptr + 1, HTTP_200, 5) == 0) {
1865 http_major_version = tptr[6];
1866 USE_FEATURE_HTTPD_PROXY(http_minor_version = tptr[8];)
1867 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001868 *tptr = '\0';
Glenn L McGrath06e95652003-02-09 06:51:14 +00001869
Denis Vlasenko073214f2007-08-17 19:20:07 +00001870 /* Copy URL from after "GET "/"POST " to stack-allocated char[] */
Denis Vlasenkofcd878e2007-12-29 02:16:23 +00001871 urlcopy = alloca((tptr - urlp) + 2 + strlen(index_page));
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001872 /*if (urlcopy == NULL)
1873 * send_headers_and_exit(HTTP_INTERNAL_SERVER_ERROR);*/
1874 strcpy(urlcopy, urlp);
1875 /* NB: urlcopy ptr is never changed after this */
Denis Vlasenko073214f2007-08-17 19:20:07 +00001876
1877 /* Extract url args if present */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001878 g_query = NULL;
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001879 tptr = strchr(urlcopy, '?');
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001880 if (tptr) {
1881 *tptr++ = '\0';
1882 g_query = tptr;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001883 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00001884
Denis Vlasenko073214f2007-08-17 19:20:07 +00001885 /* Decode URL escape sequences */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001886 tptr = decodeString(urlcopy, 0);
1887 if (tptr == NULL)
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001888 send_headers_and_exit(HTTP_BAD_REQUEST);
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001889 if (tptr == urlcopy + 1) {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001890 /* '/' or NUL is encoded */
1891 send_headers_and_exit(HTTP_NOT_FOUND);
1892 }
Denis Vlasenko0bb993f2006-11-21 00:06:28 +00001893
Denis Vlasenko073214f2007-08-17 19:20:07 +00001894 /* Canonicalize path */
1895 /* Algorithm stolen from libbb bb_simplify_path(),
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001896 * but don't strdup, retain trailing slash, protect root */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001897 urlp = tptr = urlcopy;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001898 do {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001899 if (*urlp == '/') {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001900 /* skip duplicate (or initial) slash */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001901 if (*tptr == '/') {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001902 continue;
1903 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001904 if (*tptr == '.') {
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001905 /* skip extra "/./" */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001906 if (tptr[1] == '/' || !tptr[1]) {
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001907 continue;
Denis Vlasenko0bb993f2006-11-21 00:06:28 +00001908 }
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001909 /* "..": be careful */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001910 if (tptr[1] == '.' && (tptr[2] == '/' || !tptr[2])) {
1911 ++tptr;
1912 if (urlp == urlcopy) /* protect root */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001913 send_headers_and_exit(HTTP_BAD_REQUEST);
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001914 while (*--urlp != '/') /* omit previous dir */;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001915 continue;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001916 }
1917 }
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001918 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001919 *++urlp = *tptr;
1920 } while (*++tptr);
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001921 *++urlp = '\0'; /* terminate after last character */
Glenn L McGrath06e95652003-02-09 06:51:14 +00001922
Denis Vlasenko073214f2007-08-17 19:20:07 +00001923 /* If URL is a directory, add '/' */
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00001924 if (urlp[-1] != '/') {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001925 if (is_directory(urlcopy + 1, 1, &sb)) {
1926 found_moved_temporarily = urlcopy;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001927 }
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001928 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00001929
Denis Vlasenko073214f2007-08-17 19:20:07 +00001930 /* Log it */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001931 if (verbose > 1)
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001932 bb_error_msg("url:%s", urlcopy);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001933
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001934 tptr = urlcopy;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001935 ip_allowed = checkPermIP();
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001936 while (ip_allowed && (tptr = strchr(tptr + 1, '/')) != NULL) {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001937 /* have path1/path2 */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001938 *tptr = '\0';
1939 if (is_directory(urlcopy + 1, 1, &sb)) {
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00001940 /* may have subdir config */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001941 parse_conf(urlcopy + 1, SUBDIR_PARSE);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001942 ip_allowed = checkPermIP();
1943 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001944 *tptr = '/';
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001945 }
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001946
1947#if ENABLE_FEATURE_HTTPD_PROXY
1948 proxy_entry = find_proxy_entry(urlcopy);
1949 if (proxy_entry)
Denis Vlasenko34cd7af2007-10-18 13:01:22 +00001950 header_buf = header_ptr = xmalloc(IOBUF_SIZE);
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001951#endif
1952
1953 if (http_major_version >= '0') {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001954 /* Request was with "... HTTP/nXXX", and n >= 0 */
Denis Vlasenko073214f2007-08-17 19:20:07 +00001955
1956 /* Read until blank line for HTTP version specified, else parse immediate */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001957 while (1) {
Denis Vlasenko073214f2007-08-17 19:20:07 +00001958 alarm(HEADER_READ_TIMEOUT);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001959 if (!get_line())
1960 break; /* EOF or error or empty line */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001961 if (DEBUG)
1962 bb_error_msg("header: '%s'", iobuf);
Denis Vlasenko073214f2007-08-17 19:20:07 +00001963
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001964#if ENABLE_FEATURE_HTTPD_PROXY
1965 /* We need 2 more bytes for yet another "\r\n" -
Denis Vlasenko34cd7af2007-10-18 13:01:22 +00001966 * see near fdprintf(proxy_fd...) further below */
1967 if (proxy_entry && (header_ptr - header_buf) < IOBUF_SIZE - 2) {
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001968 int len = strlen(iobuf);
Denis Vlasenko34cd7af2007-10-18 13:01:22 +00001969 if (len > IOBUF_SIZE - (header_ptr - header_buf) - 4)
1970 len = IOBUF_SIZE - (header_ptr - header_buf) - 4;
1971 memcpy(header_ptr, iobuf, len);
1972 header_ptr += len;
1973 header_ptr[0] = '\r';
1974 header_ptr[1] = '\n';
1975 header_ptr += 2;
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001976 }
1977#endif
1978
1979#if ENABLE_FEATURE_HTTPD_CGI || ENABLE_FEATURE_HTTPD_PROXY
1980 /* Try and do our best to parse more lines */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001981 if ((STRNCASECMP(iobuf, "Content-length:") == 0)) {
1982 /* extra read only for POST */
Denis Vlasenko85c24712008-03-17 09:04:04 +00001983 if (prequest != request_GET
1984#if ENABLE_FEATURE_HTTPD_CGI
1985 && prequest != request_HEAD
1986#endif
1987 ) {
Denis Vlasenko9c8c0382008-03-17 12:58:19 +00001988 tptr = skip_whitespace(iobuf + sizeof("Content-length:") - 1);
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00001989 if (!tptr[0])
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001990 send_headers_and_exit(HTTP_BAD_REQUEST);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001991 /* not using strtoul: it ignores leading minus! */
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001992 length = bb_strtou(tptr, NULL, 10);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00001993 /* length is "ulong", but we need to pass it to int later */
Denis Vlasenko2f518b02008-02-21 00:12:07 +00001994 if (errno || length > INT_MAX)
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00001995 send_headers_and_exit(HTTP_BAD_REQUEST);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00001996 }
Denis Vlasenkof74194e2007-10-18 12:54:39 +00001997 }
1998#endif
1999#if ENABLE_FEATURE_HTTPD_CGI
2000 else if (STRNCASECMP(iobuf, "Cookie:") == 0) {
Denis Vlasenkoc4523c22008-03-28 02:24:59 +00002001 cookie = xstrdup(skip_whitespace(iobuf + sizeof("Cookie:")-1));
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002002 } else if (STRNCASECMP(iobuf, "Content-Type:") == 0) {
Denis Vlasenkoc4523c22008-03-28 02:24:59 +00002003 content_type = xstrdup(skip_whitespace(iobuf + sizeof("Content-Type:")-1));
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002004 } else if (STRNCASECMP(iobuf, "Referer:") == 0) {
Denis Vlasenkoc4523c22008-03-28 02:24:59 +00002005 referer = xstrdup(skip_whitespace(iobuf + sizeof("Referer:")-1));
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002006 } else if (STRNCASECMP(iobuf, "User-Agent:") == 0) {
Denis Vlasenkoc4523c22008-03-28 02:24:59 +00002007 user_agent = xstrdup(skip_whitespace(iobuf + sizeof("User-Agent:")-1));
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002008 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00002009#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +00002010#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002011 if (STRNCASECMP(iobuf, "Authorization:") == 0) {
2012 /* We only allow Basic credentials.
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00002013 * It shows up as "Authorization: Basic <user>:<passwd>" where
2014 * "<user>:<passwd>" is base64 encoded.
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002015 */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002016 tptr = skip_whitespace(iobuf + sizeof("Authorization:")-1);
2017 if (STRNCASECMP(tptr, "Basic") != 0)
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002018 continue;
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002019 tptr += sizeof("Basic")-1;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002020 /* decodeBase64() skips whitespace itself */
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002021 decodeBase64(tptr);
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00002022 authorized = check_user_passwd(urlcopy, tptr);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002023 }
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00002024#endif
Denis Vlasenkof4310172007-09-21 22:35:18 +00002025#if ENABLE_FEATURE_HTTPD_RANGES
2026 if (STRNCASECMP(iobuf, "Range:") == 0) {
Denis Vlasenkof74194e2007-10-18 12:54:39 +00002027 /* We know only bytes=NNN-[MMM] */
Denis Vlasenkof4310172007-09-21 22:35:18 +00002028 char *s = skip_whitespace(iobuf + sizeof("Range:")-1);
2029 if (strncmp(s, "bytes=", 6) == 0) {
2030 s += sizeof("bytes=")-1;
2031 range_start = BB_STRTOOFF(s, &s, 10);
2032 if (s[0] != '-' || range_start < 0) {
2033 range_start = 0;
2034 } else if (s[1]) {
2035 range_end = BB_STRTOOFF(s+1, NULL, 10);
2036 if (errno || range_end < range_start)
2037 range_start = 0;
2038 }
2039 }
2040 }
2041#endif
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002042 } /* while extra header reading */
2043 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00002044
Denis Vlasenkof74194e2007-10-18 12:54:39 +00002045 /* We are done reading headers, disable peer timeout */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002046 alarm(0);
2047
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00002048 if (strcmp(bb_basename(urlcopy), httpd_conf) == 0 || !ip_allowed) {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002049 /* protect listing [/path]/httpd_conf or IP deny */
2050 send_headers_and_exit(HTTP_FORBIDDEN);
2051 }
2052
2053#if ENABLE_FEATURE_HTTPD_BASIC_AUTH
Denis Vlasenko0eb406c2008-06-13 09:53:06 +00002054 /* Case: no "Authorization:" was seen, but page does require passwd.
2055 * Check that with dummy user:pass */
Denis Vlasenko7504f2f2008-06-13 13:20:38 +00002056 if (authorized < 0)
2057 authorized = check_user_passwd(urlcopy, ":");
2058 if (!authorized)
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002059 send_headers_and_exit(HTTP_UNAUTHORIZED);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002060#endif
2061
2062 if (found_moved_temporarily) {
2063 send_headers_and_exit(HTTP_MOVED_TEMPORARILY);
2064 }
2065
Denis Vlasenkof74194e2007-10-18 12:54:39 +00002066#if ENABLE_FEATURE_HTTPD_PROXY
2067 if (proxy_entry != NULL) {
2068 int proxy_fd;
2069 len_and_sockaddr *lsa;
2070
2071 proxy_fd = socket(AF_INET, SOCK_STREAM, 0);
2072 if (proxy_fd < 0)
2073 send_headers_and_exit(HTTP_INTERNAL_SERVER_ERROR);
2074 lsa = host2sockaddr(proxy_entry->host_port, 80);
2075 if (lsa == NULL)
2076 send_headers_and_exit(HTTP_INTERNAL_SERVER_ERROR);
Bernhard Reutner-Fischer8c69afd2008-01-29 10:33:34 +00002077 if (connect(proxy_fd, &lsa->u.sa, lsa->len) < 0)
Denis Vlasenkof74194e2007-10-18 12:54:39 +00002078 send_headers_and_exit(HTTP_INTERNAL_SERVER_ERROR);
2079 fdprintf(proxy_fd, "%s %s%s%s%s HTTP/%c.%c\r\n",
2080 prequest, /* GET or POST */
2081 proxy_entry->url_to, /* url part 1 */
2082 urlcopy + strlen(proxy_entry->url_from), /* url part 2 */
2083 (g_query ? "?" : ""), /* "?" (maybe) */
2084 (g_query ? g_query : ""), /* query string (maybe) */
2085 http_major_version, http_minor_version);
Denis Vlasenko34cd7af2007-10-18 13:01:22 +00002086 header_ptr[0] = '\r';
2087 header_ptr[1] = '\n';
2088 header_ptr += 2;
2089 write(proxy_fd, header_buf, header_ptr - header_buf);
2090 free(header_buf); /* on the order of 8k, free it */
Denis Vlasenkof74194e2007-10-18 12:54:39 +00002091 /* cgi_io_loop_and_exit needs to have two disctinct fds */
2092 cgi_io_loop_and_exit(proxy_fd, dup(proxy_fd), length);
2093 }
2094#endif
2095
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002096 tptr = urlcopy + 1; /* skip first '/' */
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002097
2098#if ENABLE_FEATURE_HTTPD_CGI
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002099 if (strncmp(tptr, "cgi-bin/", 8) == 0) {
2100 if (tptr[8] == '\0') {
Denis Vlasenko073214f2007-08-17 19:20:07 +00002101 /* protect listing "cgi-bin/" */
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002102 send_headers_and_exit(HTTP_FORBIDDEN);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002103 }
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002104 send_cgi_and_exit(urlcopy, prequest, length, cookie, content_type);
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002105 }
Denis Vlasenko1ccd96f2007-03-05 19:24:33 +00002106#if ENABLE_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002107 {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002108 char *suffix = strrchr(tptr, '.');
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002109 if (suffix) {
2110 Htaccess *cur;
2111 for (cur = script_i; cur; cur = cur->next) {
2112 if (strcmp(cur->before_colon + 1, suffix) == 0) {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002113 send_cgi_and_exit(urlcopy, prequest, length, cookie, content_type);
Denis Vlasenko1ccd96f2007-03-05 19:24:33 +00002114 }
2115 }
2116 }
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002117 }
Denis Vlasenko1ccd96f2007-03-05 19:24:33 +00002118#endif
Denis Vlasenko2f518b02008-02-21 00:12:07 +00002119 if (prequest != request_GET && prequest != request_HEAD) {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002120 send_headers_and_exit(HTTP_NOT_IMPLEMENTED);
2121 }
Denis Vlasenko5d148e22006-11-21 00:12:09 +00002122#endif /* FEATURE_HTTPD_CGI */
Denis Vlasenkod6cd9d72007-08-18 14:22:09 +00002123
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002124 if (urlp[-1] == '/')
Denis Vlasenkofcd878e2007-12-29 02:16:23 +00002125 strcpy(urlp, index_page);
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002126 if (stat(tptr, &sb) == 0) {
Denis Vlasenkof4310172007-09-21 22:35:18 +00002127 file_size = sb.st_size;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002128 last_mod = sb.st_mtime;
2129 }
Denis Vlasenko5d148e22006-11-21 00:12:09 +00002130#if ENABLE_FEATURE_HTTPD_CGI
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002131 else if (urlp[-1] == '/') {
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002132 /* It's a dir URL and there is no index.html
2133 * Try cgi-bin/index.cgi */
2134 if (access("/cgi-bin/index.cgi"+1, X_OK) == 0) {
Denis Vlasenko52e15dc2007-08-19 18:53:43 +00002135 urlp[0] = '\0';
2136 g_query = urlcopy;
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002137 send_cgi_and_exit("/cgi-bin/index.cgi", prequest, length, cookie, content_type);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002138 }
Denis Vlasenko91adf7d2007-08-17 19:19:42 +00002139 }
Denis Vlasenko073214f2007-08-17 19:20:07 +00002140#endif
2141 /* else {
2142 * fall through to send_file, it errors out if open fails
2143 * }
2144 */
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002145
Denis Vlasenko2f518b02008-02-21 00:12:07 +00002146 send_file_and_exit(tptr,
Denis Vlasenko85c24712008-03-17 09:04:04 +00002147#if ENABLE_FEATURE_HTTPD_CGI
2148 (prequest != request_HEAD ? SEND_HEADERS_AND_BODY : SEND_HEADERS)
2149#else
2150 SEND_HEADERS_AND_BODY
2151#endif
2152 );
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002153}
2154
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002155/*
2156 * The main http server function.
Denis Vlasenko367960b2007-08-18 14:20:21 +00002157 * Given a socket, listen for new connections and farm out
2158 * the processing as a [v]forked process.
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002159 * Never returns.
2160 */
Denis Vlasenko367960b2007-08-18 14:20:21 +00002161#if BB_MMU
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00002162static void mini_httpd(int server_socket) NORETURN;
Denis Vlasenko9611cb12007-08-18 14:18:43 +00002163static void mini_httpd(int server_socket)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002164{
Denis Vlasenko073214f2007-08-17 19:20:07 +00002165 /* NB: it's best to not use xfuncs in this loop before fork().
2166 * Otherwise server may die on transient errors (temporary
2167 * out-of-memory condition, etc), which is Bad(tm).
2168 * Try to do any dangerous calls after fork.
2169 */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002170 while (1) {
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002171 int n;
2172 len_and_sockaddr fromAddr;
Denis Vlasenko3f5fdc72007-10-14 04:55:59 +00002173
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002174 /* Wait for connections... */
2175 fromAddr.len = LSA_SIZEOF_SA;
Bernhard Reutner-Fischer8c69afd2008-01-29 10:33:34 +00002176 n = accept(server_socket, &fromAddr.u.sa, &fromAddr.len);
Glenn L McGrath06e95652003-02-09 06:51:14 +00002177
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002178 if (n < 0)
Denis Vlasenko6c5e5a02006-11-10 23:28:57 +00002179 continue;
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002180 /* set the KEEPALIVE option to cull dead connections */
2181 setsockopt(n, SOL_SOCKET, SO_KEEPALIVE, &const_int_1, sizeof(const_int_1));
Denis Vlasenko04291bc2006-11-21 10:15:25 +00002182
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002183 if (fork() == 0) {
Denis Vlasenko04291bc2006-11-21 10:15:25 +00002184 /* child */
Denis Vlasenko55a99402006-09-30 20:41:44 +00002185#if ENABLE_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002186 /* Do not reload config on HUP */
Denis Vlasenko6c5e5a02006-11-10 23:28:57 +00002187 signal(SIGHUP, SIG_IGN);
Glenn L McGrathc9163fe2003-05-13 16:20:11 +00002188#endif
Denis Vlasenko9611cb12007-08-18 14:18:43 +00002189 close(server_socket);
2190 xmove_fd(n, 0);
2191 xdup2(0, 1);
2192
Denis Vlasenko367960b2007-08-18 14:20:21 +00002193 handle_incoming_and_exit(&fromAddr);
2194 }
2195 /* parent, or fork failed */
2196 close(n);
2197 } /* while (1) */
2198 /* never reached */
2199}
2200#else
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00002201static void mini_httpd_nommu(int server_socket, int argc, char **argv) NORETURN;
Denis Vlasenko367960b2007-08-18 14:20:21 +00002202static void mini_httpd_nommu(int server_socket, int argc, char **argv)
2203{
2204 char *argv_copy[argc + 2];
2205
2206 argv_copy[0] = argv[0];
2207 argv_copy[1] = (char*)"-i";
2208 memcpy(&argv_copy[2], &argv[1], argc * sizeof(argv[0]));
2209
2210 /* NB: it's best to not use xfuncs in this loop before vfork().
2211 * Otherwise server may die on transient errors (temporary
2212 * out-of-memory condition, etc), which is Bad(tm).
2213 * Try to do any dangerous calls after fork.
2214 */
2215 while (1) {
2216 int n;
2217 len_and_sockaddr fromAddr;
Denis Vlasenko3f5fdc72007-10-14 04:55:59 +00002218
Denis Vlasenko367960b2007-08-18 14:20:21 +00002219 /* Wait for connections... */
2220 fromAddr.len = LSA_SIZEOF_SA;
Denis Vlasenko671ca332008-02-19 14:13:20 +00002221 n = accept(server_socket, &fromAddr.u.sa, &fromAddr.len);
Denis Vlasenko367960b2007-08-18 14:20:21 +00002222
2223 if (n < 0)
2224 continue;
2225 /* set the KEEPALIVE option to cull dead connections */
2226 setsockopt(n, SOL_SOCKET, SO_KEEPALIVE, &const_int_1, sizeof(const_int_1));
2227
2228 if (vfork() == 0) {
2229 /* child */
2230#if ENABLE_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
2231 /* Do not reload config on HUP */
2232 signal(SIGHUP, SIG_IGN);
2233#endif
2234 close(server_socket);
2235 xmove_fd(n, 0);
2236 xdup2(0, 1);
2237
2238 /* Run a copy of ourself in inetd mode */
2239 re_exec(argv_copy);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002240 }
Denis Vlasenko921799d2007-08-19 19:28:09 +00002241 /* parent, or vfork failed */
Denis Vlasenko073214f2007-08-17 19:20:07 +00002242 close(n);
Denis Vlasenko04291bc2006-11-21 10:15:25 +00002243 } /* while (1) */
Denis Vlasenko241b1562007-08-17 19:18:47 +00002244 /* never reached */
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002245}
Denis Vlasenko56258b62007-06-23 23:14:02 +00002246#endif
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002247
Denis Vlasenko367960b2007-08-18 14:20:21 +00002248/*
2249 * Process a HTTP connection on stdin/out.
2250 * Never returns.
2251 */
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00002252static void mini_httpd_inetd(void) NORETURN;
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002253static void mini_httpd_inetd(void)
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002254{
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002255 len_and_sockaddr fromAddr;
Glenn L McGrath06e95652003-02-09 06:51:14 +00002256
Denis Vlasenkofaf334a2008-05-18 15:14:36 +00002257 memset(&fromAddr, 0, sizeof(fromAddr));
Denis Vlasenkoe45af732007-08-17 19:19:15 +00002258 fromAddr.len = LSA_SIZEOF_SA;
Denis Vlasenkofaf334a2008-05-18 15:14:36 +00002259 /* NB: can fail if user runs it by hand and types in http cmds */
Bernhard Reutner-Fischer8c69afd2008-01-29 10:33:34 +00002260 getpeername(0, &fromAddr.u.sa, &fromAddr.len);
Denis Vlasenko367960b2007-08-18 14:20:21 +00002261 handle_incoming_and_exit(&fromAddr);
Glenn L McGrath06e95652003-02-09 06:51:14 +00002262}
Glenn L McGrath06e95652003-02-09 06:51:14 +00002263
Denis Vlasenko55a99402006-09-30 20:41:44 +00002264#if ENABLE_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
Glenn L McGrath06e95652003-02-09 06:51:14 +00002265static void sighup_handler(int sig)
2266{
Denis Vlasenko395410b2008-07-20 23:25:32 +00002267 parse_conf(default_path_httpd_conf, sig ? SIGNALED_PARSE : FIRST_PARSE);
Denis Vlasenko8e2cfec2008-03-12 23:19:35 +00002268 signal_SA_RESTART_empty_mask(SIGHUP, sighup_handler);
Glenn L McGrath06e95652003-02-09 06:51:14 +00002269}
2270#endif
2271
Denis Vlasenko9f609292006-11-05 19:47:33 +00002272enum {
"Vladimir N. Oleynik"9a515402006-02-15 13:27:18 +00002273 c_opt_config_file = 0,
2274 d_opt_decode_url,
2275 h_opt_home_httpd,
2276 USE_FEATURE_HTTPD_ENCODE_URL_STR(e_opt_encode_url,)
Denis Vlasenko9f609292006-11-05 19:47:33 +00002277 USE_FEATURE_HTTPD_BASIC_AUTH( r_opt_realm ,)
2278 USE_FEATURE_HTTPD_AUTH_MD5( m_opt_md5 ,)
2279 USE_FEATURE_HTTPD_SETUID( u_opt_setuid ,)
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002280 p_opt_port ,
2281 p_opt_inetd ,
2282 p_opt_foreground,
Denis Vlasenko384b1d12007-08-14 16:55:01 +00002283 p_opt_verbose ,
Denis Vlasenko9f609292006-11-05 19:47:33 +00002284 OPT_CONFIG_FILE = 1 << c_opt_config_file,
2285 OPT_DECODE_URL = 1 << d_opt_decode_url,
2286 OPT_HOME_HTTPD = 1 << h_opt_home_httpd,
2287 OPT_ENCODE_URL = USE_FEATURE_HTTPD_ENCODE_URL_STR((1 << e_opt_encode_url)) + 0,
2288 OPT_REALM = USE_FEATURE_HTTPD_BASIC_AUTH( (1 << r_opt_realm )) + 0,
2289 OPT_MD5 = USE_FEATURE_HTTPD_AUTH_MD5( (1 << m_opt_md5 )) + 0,
2290 OPT_SETUID = USE_FEATURE_HTTPD_SETUID( (1 << u_opt_setuid )) + 0,
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002291 OPT_PORT = 1 << p_opt_port,
2292 OPT_INETD = 1 << p_opt_inetd,
2293 OPT_FOREGROUND = 1 << p_opt_foreground,
Denis Vlasenko384b1d12007-08-14 16:55:01 +00002294 OPT_VERBOSE = 1 << p_opt_verbose,
"Vladimir N. Oleynik"9a515402006-02-15 13:27:18 +00002295};
Eric Andersena3bb3e62003-06-26 09:05:32 +00002296
Eric Andersena3bb3e62003-06-26 09:05:32 +00002297
Denis Vlasenko9b49a5e2007-10-11 10:05:36 +00002298int httpd_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
Denis Vlasenkoa60f84e2008-07-05 09:18:54 +00002299int httpd_main(int argc UNUSED_PARAM, char **argv)
Glenn L McGrath06e95652003-02-09 06:51:14 +00002300{
Denis Vlasenko9611cb12007-08-18 14:18:43 +00002301 int server_socket = server_socket; /* for gcc */
Denis Vlasenko67b23e62006-10-03 21:00:06 +00002302 unsigned opt;
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002303 char *url_for_decode;
2304 USE_FEATURE_HTTPD_ENCODE_URL_STR(const char *url_for_encode;)
Denis Vlasenkode59c0f2006-10-05 22:50:22 +00002305 USE_FEATURE_HTTPD_SETUID(const char *s_ugid = NULL;)
2306 USE_FEATURE_HTTPD_SETUID(struct bb_uidgid_t ugid;)
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002307 USE_FEATURE_HTTPD_AUTH_MD5(const char *pass;)
Eric Andersen35e643b2003-07-28 07:40:39 +00002308
Denis Vlasenko073214f2007-08-17 19:20:07 +00002309 INIT_G();
2310
Denis Vlasenkofcdb00f2006-11-21 00:09:37 +00002311#if ENABLE_LOCALE_SUPPORT
2312 /* Undo busybox.c: we want to speak English in http (dates etc) */
2313 setlocale(LC_TIME, "C");
2314#endif
2315
Denis Vlasenko77e44d62007-06-09 23:49:05 +00002316 home_httpd = xrealloc_getcwd_or_warn(NULL);
Denis Vlasenko367960b2007-08-18 14:20:21 +00002317 /* -v counts, -i implies -f */
2318 opt_complementary = "vv:if";
Denis Vlasenko77e44d62007-06-09 23:49:05 +00002319 /* We do not "absolutize" path given by -h (home) opt.
Denis Vlasenko6bf05cf2008-05-07 12:18:48 +00002320 * If user gives relative path in -h,
2321 * $SCRIPT_FILENAME will not be set. */
Denis Vlasenkofe7cd642007-08-18 15:32:12 +00002322 opt = getopt32(argv, "c:d:h:"
Denis Vlasenko53091ec2007-03-26 13:35:09 +00002323 USE_FEATURE_HTTPD_ENCODE_URL_STR("e:")
2324 USE_FEATURE_HTTPD_BASIC_AUTH("r:")
2325 USE_FEATURE_HTTPD_AUTH_MD5("m:")
2326 USE_FEATURE_HTTPD_SETUID("u:")
Denis Vlasenko384b1d12007-08-14 16:55:01 +00002327 "p:ifv",
2328 &configFile, &url_for_decode, &home_httpd
"Vladimir N. Oleynik"9a515402006-02-15 13:27:18 +00002329 USE_FEATURE_HTTPD_ENCODE_URL_STR(, &url_for_encode)
Denis Vlasenko77e44d62007-06-09 23:49:05 +00002330 USE_FEATURE_HTTPD_BASIC_AUTH(, &g_realm)
"Vladimir N. Oleynik"9a515402006-02-15 13:27:18 +00002331 USE_FEATURE_HTTPD_AUTH_MD5(, &pass)
Denis Vlasenkode59c0f2006-10-05 22:50:22 +00002332 USE_FEATURE_HTTPD_SETUID(, &s_ugid)
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002333 , &bind_addr_or_port
Denis Vlasenko384b1d12007-08-14 16:55:01 +00002334 , &verbose
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002335 );
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002336 if (opt & OPT_DECODE_URL) {
Denis Vlasenko367960b2007-08-18 14:20:21 +00002337 fputs(decodeString(url_for_decode, 1), stdout);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002338 return 0;
2339 }
Denis Vlasenko55a99402006-09-30 20:41:44 +00002340#if ENABLE_FEATURE_HTTPD_ENCODE_URL_STR
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002341 if (opt & OPT_ENCODE_URL) {
Denis Vlasenko367960b2007-08-18 14:20:21 +00002342 fputs(encodeString(url_for_encode), stdout);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002343 return 0;
2344 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00002345#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +00002346#if ENABLE_FEATURE_HTTPD_AUTH_MD5
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002347 if (opt & OPT_MD5) {
Denis Vlasenko4ea83bf2008-06-12 16:55:59 +00002348 puts(pw_encrypt(pass, "$1$", 1));
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002349 return 0;
Glenn L McGrath06e95652003-02-09 06:51:14 +00002350 }
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002351#endif
Denis Vlasenko55a99402006-09-30 20:41:44 +00002352#if ENABLE_FEATURE_HTTPD_SETUID
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002353 if (opt & OPT_SETUID) {
Bernhard Reutner-Fischerd73cbd32008-07-21 14:41:33 +00002354 xget_uidgid(&ugid, s_ugid);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002355 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00002356#endif
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002357
Denis Vlasenko367960b2007-08-18 14:20:21 +00002358#if !BB_MMU
2359 if (!(opt & OPT_FOREGROUND)) {
2360 bb_daemonize_or_rexec(0, argv); /* don't change current directory */
2361 }
2362#endif
2363
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002364 xchdir(home_httpd);
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002365 if (!(opt & OPT_INETD)) {
Denis Vlasenko6536a9b2007-01-12 10:35:23 +00002366 signal(SIGCHLD, SIG_IGN);
Denis Vlasenko77e44d62007-06-09 23:49:05 +00002367 server_socket = openServer();
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002368#if ENABLE_FEATURE_HTTPD_SETUID
2369 /* drop privileges */
2370 if (opt & OPT_SETUID) {
2371 if (ugid.gid != (gid_t)-1) {
2372 if (setgroups(1, &ugid.gid) == -1)
Denis Vlasenko8e858e22007-03-07 09:35:43 +00002373 bb_perror_msg_and_die("setgroups");
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002374 xsetgid(ugid.gid);
2375 }
2376 xsetuid(ugid.uid);
Denis Vlasenkode59c0f2006-10-05 22:50:22 +00002377 }
Glenn L McGrath58c708a2003-01-05 04:01:56 +00002378#endif
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002379 }
Glenn L McGrath06e95652003-02-09 06:51:14 +00002380
Denis Vlasenko2535f122007-09-15 13:28:30 +00002381#if 0 /*was #if ENABLE_FEATURE_HTTPD_CGI*/
2382 /* User can do it himself: 'env - PATH="$PATH" httpd'
2383 * We don't do it because we don't want to screw users
2384 * which want to do
Denis Vlasenkof74194e2007-10-18 12:54:39 +00002385 * 'env - VAR1=val1 VAR2=val2 httpd'
Denis Vlasenko2535f122007-09-15 13:28:30 +00002386 * and have VAR1 and VAR2 values visible in their CGIs.
2387 * Besides, it is also smaller. */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002388 {
2389 char *p = getenv("PATH");
Denis Vlasenkoc4523c22008-03-28 02:24:59 +00002390 /* env strings themself are not freed, no need to xstrdup(p): */
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002391 clearenv();
2392 if (p)
Denis Vlasenko77e44d62007-06-09 23:49:05 +00002393 putenv(p - 5);
Denis Vlasenko9611cb12007-08-18 14:18:43 +00002394// if (!(opt & OPT_INETD))
2395// setenv_long("SERVER_PORT", ???);
Denis Vlasenko8b8c75e2006-09-26 10:07:41 +00002396 }
Glenn L McGrathfe538ba2003-09-10 23:35:45 +00002397#endif
2398
Denis Vlasenko55a99402006-09-30 20:41:44 +00002399#if ENABLE_FEATURE_HTTPD_RELOAD_CONFIG_SIGHUP
Denis Vlasenko395410b2008-07-20 23:25:32 +00002400 if (!(opt & OPT_INETD)) {
2401 /* runs parse_conf() inside */
Denis Vlasenko367960b2007-08-18 14:20:21 +00002402 sighup_handler(0);
Denis Vlasenko395410b2008-07-20 23:25:32 +00002403 } else
Glenn L McGrath06e95652003-02-09 06:51:14 +00002404#endif
Denis Vlasenko395410b2008-07-20 23:25:32 +00002405 {
2406 parse_conf(default_path_httpd_conf, FIRST_PARSE);
2407 }
Denis Vlasenko367960b2007-08-18 14:20:21 +00002408
Denis Vlasenkofeac3ce2007-08-17 19:20:39 +00002409 xfunc_error_retval = 0;
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002410 if (opt & OPT_INETD)
2411 mini_httpd_inetd();
Denis Vlasenko367960b2007-08-18 14:20:21 +00002412#if BB_MMU
Denis Vlasenko0871bc82006-11-16 16:17:02 +00002413 if (!(opt & OPT_FOREGROUND))
Denis Vlasenko0372f0f2007-08-14 16:50:01 +00002414 bb_daemonize(0); /* don't change current directory */
2415 mini_httpd(server_socket); /* never returns */
Denis Vlasenko56258b62007-06-23 23:14:02 +00002416#else
Denis Vlasenko367960b2007-08-18 14:20:21 +00002417 mini_httpd_nommu(server_socket, argc, argv); /* never returns */
Denis Vlasenko56258b62007-06-23 23:14:02 +00002418#endif
Denis Vlasenko367960b2007-08-18 14:20:21 +00002419 /* return 0; */
Glenn L McGrath06e95652003-02-09 06:51:14 +00002420}