mirror of https://github.com/nealey/eris.git
744 lines
19 KiB
C
744 lines
19 KiB
C
/*
|
|
* simple httpd to be started from tcpserver
|
|
*/
|
|
#define _FILE_OFFSET_BITS 64
|
|
#include <stdlib.h>
|
|
#include <unistd.h>
|
|
#include <ctype.h>
|
|
#include <sys/types.h>
|
|
#include <sys/stat.h>
|
|
#include <fcntl.h>
|
|
#include <time.h>
|
|
#include <stdio.h>
|
|
#include <string.h>
|
|
#include <signal.h>
|
|
#include <sys/wait.h>
|
|
#include <grp.h>
|
|
#include <errno.h>
|
|
#include <sys/select.h>
|
|
#include <sys/socket.h>
|
|
#include <netinet/in.h>
|
|
#include <netinet/tcp.h>
|
|
#include <dirent.h>
|
|
#include <limits.h>
|
|
|
|
#ifdef __linux__
|
|
# include <sys/sendfile.h>
|
|
#else
|
|
# define sendfile(a, b, c, d) -1
|
|
#endif
|
|
|
|
#ifndef min
|
|
#define min(a,b) ((a)<(b)?(a):(b))
|
|
#endif
|
|
|
|
/*
|
|
* Some things I use for debugging
|
|
*/
|
|
#define DUMPf(fmt, args...) fprintf(stderr, "%s:%s:%d " fmt "\n", __FILE__, __FUNCTION__, __LINE__, ##args)
|
|
#define DUMP() DUMPf("")
|
|
#define DUMP_d(v) DUMPf("%s = %d", #v, v)
|
|
#define DUMP_u(v) DUMPf("%s = %u", #v, v)
|
|
#define DUMP_x(v) DUMPf("%s = 0x%x", #v, v)
|
|
#define DUMP_s(v) DUMPf("%s = %s", #v, v)
|
|
#define DUMP_c(v) DUMPf("%s = %c", #v, v)
|
|
#define DUMP_p(v) DUMPf("%s = %p", #v, v)
|
|
#define DUMP_buf(v, l) DUMPf("%s = %.*s", #v, (int)(l), v)
|
|
|
|
/* Wait this long (seconds) for a valid HTTP request */
|
|
#define READTIMEOUT 2
|
|
|
|
/* Wait this long trying to write out the response */
|
|
#define WRITETIMEOUT 20
|
|
|
|
/* Wait this long for CGI to complete */
|
|
#define CGI_TIMEOUT (5*60)
|
|
|
|
/* Maximum size of a request header (the whole block) */
|
|
#define MAXHEADERLEN 8192
|
|
|
|
/* Maximum size of a request line */
|
|
#define MAXREQUESTLEN 2048
|
|
|
|
/* Maximum number of header fields */
|
|
#define MAXHEADERFIELDS 60
|
|
|
|
/*
|
|
* Options
|
|
*/
|
|
int doauth = 0;
|
|
int docgi = 0;
|
|
int doidx = 0;
|
|
int redirect = 0;
|
|
int portappend = 0;
|
|
|
|
/* Variables that persist between requests */
|
|
int cwd;
|
|
int keepalive = 0;
|
|
char *remote_ip = NULL;
|
|
char *remote_port = NULL;
|
|
char *remote_ident = NULL;
|
|
|
|
/*
|
|
* Things that are really super convenient to have globally.
|
|
* These could be put into a struct for a threading version
|
|
* of eris.
|
|
*/
|
|
enum { GET, POST, HEAD } method;
|
|
char *host;
|
|
char *user_agent;
|
|
char *refer;
|
|
char *path;
|
|
int http_version;
|
|
char *content_type;
|
|
size_t content_length;
|
|
off_t range_start, range_end;
|
|
time_t ims = 0;
|
|
|
|
|
|
#define BUFFER_SIZE 8192
|
|
char stdout_buf[BUFFER_SIZE];
|
|
|
|
#include "strings.c"
|
|
#include "mime.c"
|
|
#include "time.c"
|
|
|
|
/*
|
|
* TCP_CORK is a Linux extension to work around a TCP problem.
|
|
* http://www.baus.net/on-tcp_cork has a good description.
|
|
* XXX: Since we do our own buffering, TCP_CORK may not be helping
|
|
* with anything. This needs testing.
|
|
*/
|
|
void
|
|
cork(int enable)
|
|
{
|
|
#ifdef TCP_CORK
|
|
static int corked = 0;
|
|
|
|
if (enable != corked) {
|
|
setsockopt(1, IPPROTO_TCP, TCP_CORK, &enable, sizeof(enable));
|
|
corked = enable;
|
|
}
|
|
#endif
|
|
}
|
|
|
|
/** Log a request */
|
|
static void
|
|
dolog(int code, off_t len)
|
|
{ /* write a log line to stderr */
|
|
sanitize(host);
|
|
sanitize(user_agent);
|
|
sanitize(refer);
|
|
|
|
fprintf(stderr, "%s %d %lu %s %s %s %s\n",
|
|
remote_ip, code, (unsigned long) len, host, user_agent, refer, path);
|
|
}
|
|
|
|
void
|
|
header(unsigned int code, const char *httpcomment)
|
|
{
|
|
printf("HTTP/1.%d %u %s\r\n", http_version, code, httpcomment);
|
|
printf("Server: " FNORD "\r\n");
|
|
printf("Connection: %s\r\n", keepalive?"keep-alive":"close");
|
|
}
|
|
|
|
void
|
|
eoh()
|
|
{
|
|
printf("\r\n");
|
|
}
|
|
|
|
/*
|
|
* output an error message and exit
|
|
*/
|
|
static void
|
|
badrequest(long code, const char *httpcomment, const char *message)
|
|
{
|
|
size_t msglen = 0;
|
|
|
|
keepalive = 0;
|
|
header(code, httpcomment);
|
|
if (message) {
|
|
msglen = (strlen(message) * 2) + 15;
|
|
|
|
printf("Content-Length: %lu\r\nContent-Type: text/html\r\n",
|
|
(unsigned long) msglen);
|
|
printf("<title>%s</title>%s", message, message);
|
|
}
|
|
printf("\r\n");
|
|
fflush(stdout);
|
|
dolog(code, msglen);
|
|
|
|
exit(0);
|
|
}
|
|
|
|
#include "cgi.c"
|
|
|
|
void
|
|
not_found()
|
|
{
|
|
char msg[] = "The requested URL does not exist here.";
|
|
|
|
header(404, "Not Found");
|
|
printf("Content-Type: text/html\r\n");
|
|
printf("Content-Length: %lu\r\n", sizeof msg);
|
|
printf("\r\n");
|
|
printf("%s\n", msg); /* sizeof msg includes the NULL */
|
|
dolog(404, sizeof msg);
|
|
fflush(stdout);
|
|
}
|
|
|
|
|
|
void
|
|
get_ucspi_env()
|
|
{
|
|
char *ucspi = getenv("PROTO");
|
|
|
|
if (ucspi) {
|
|
int protolen = strlen(ucspi);
|
|
char buf[80];
|
|
|
|
if (protolen > 20) {
|
|
return;
|
|
}
|
|
strcpy(buf, ucspi);
|
|
|
|
strcpy(buf + protolen, "REMOTEIP");
|
|
remote_ip = getenv(buf);
|
|
|
|
strcpy(buf + protolen, "REMOTEPORT");
|
|
remote_port = getenv(buf);
|
|
|
|
strcpy(buf + protolen, "REMOTEINFO");
|
|
remote_ident = getenv(buf);
|
|
}
|
|
}
|
|
|
|
void
|
|
parse_options(int argc, char *argv[])
|
|
{
|
|
int opt;
|
|
|
|
while (-1 != (opt = getopt(argc, argv, "acdhkprv"))) {
|
|
switch (opt) {
|
|
case 'a':
|
|
doauth = 1;
|
|
break;
|
|
case 'c':
|
|
docgi = 1;
|
|
break;
|
|
case 'd':
|
|
doidx = 1;
|
|
break;
|
|
case 'p':
|
|
portappend = 1;
|
|
break;
|
|
case 'r':
|
|
redirect = 1;
|
|
break;
|
|
case 'v':
|
|
printf(FNORD "\n");
|
|
exit(0);
|
|
default:
|
|
fprintf(stderr, "Usage: %s [OPTIONS]\n",
|
|
argv[0]);
|
|
fprintf(stderr, "\n");
|
|
fprintf(stderr, "-a Enable authentication\n");
|
|
fprintf(stderr, "-c Enable CGI\n");
|
|
fprintf(stderr, "-d Enable directory listing\n");
|
|
fprintf(stderr, "-p Append port to hostname directory\n");
|
|
fprintf(stderr, "-r Enable symlink redirection\n");
|
|
fprintf(stderr, "-v Print version and exit\n");
|
|
exit(69);
|
|
}
|
|
}
|
|
}
|
|
|
|
|
|
void
|
|
fake_sendfile(int out_fd, int in_fd, off_t *offset, size_t count)
|
|
{
|
|
char buf[BUFFER_SIZE];
|
|
ssize_t l, m;
|
|
|
|
/* is mmap quicker? does it matter? */
|
|
if (-1 == lseek(in_fd, *offset, SEEK_SET)) {
|
|
/* We're screwed. The most helpful thing we can do now is die. */
|
|
fprintf(stderr, "Unable to seek. Dying.\n");
|
|
exit(0);
|
|
}
|
|
l = read(in_fd, buf, min(count, sizeof buf));
|
|
if (-1 == l) {
|
|
/* Also screwed. */
|
|
fprintf(stderr, "Unable to read an open file. Dying.\n");
|
|
exit(0);
|
|
}
|
|
*offset += l;
|
|
|
|
while (l) {
|
|
m = write(out_fd, buf, l);
|
|
if (-1 == m) {
|
|
/* ALSO screwed. */
|
|
fprintf(stderr, "Unable to write to client. Dying.\n");
|
|
exit(0);
|
|
}
|
|
l -= m;
|
|
}
|
|
}
|
|
|
|
void
|
|
serve_file(int fd, char *filename, struct stat *st)
|
|
{
|
|
off_t len, remain;
|
|
|
|
if (method == POST) {
|
|
badrequest(405, "Method Not Supported", "POST is not supported by this URL");
|
|
}
|
|
|
|
if (st->st_mtime < ims) {
|
|
header(304, "Not Changed");
|
|
eoh();
|
|
return;
|
|
}
|
|
|
|
header(200, "OK");
|
|
printf("Content-Type: %s\r\n", getmimetype(filename));
|
|
|
|
if ((range_end == 0) || (range_end > st->st_size)) {
|
|
range_end = st->st_size;
|
|
}
|
|
len = range_end - range_start;
|
|
printf("Content-Length: %llu\r\n", (unsigned long long) len);
|
|
|
|
{
|
|
struct tm *tp;
|
|
char buf[40];
|
|
|
|
tp = gmtime(&(st->st_mtime));
|
|
|
|
strftime(buf, sizeof buf, "%a, %d %b %Y %H:%M:%S GMT", tp);
|
|
printf("Last-Modified: %s\r\n", buf);
|
|
}
|
|
|
|
eoh();
|
|
fflush(stdout);
|
|
|
|
if (method == HEAD) {
|
|
return;
|
|
}
|
|
|
|
for (remain = len; remain; ) {
|
|
size_t count = min(remain, SIZE_MAX);
|
|
ssize_t sent;
|
|
|
|
sent = sendfile(1, fd, &range_start, count);
|
|
if (-1 == sent) {
|
|
fake_sendfile(1, fd, &range_start, count);
|
|
}
|
|
remain -= sent;
|
|
}
|
|
|
|
dolog(200, len);
|
|
}
|
|
|
|
void
|
|
serve_idx(int fd, char *path)
|
|
{
|
|
DIR *d = fdopendir(fd);
|
|
struct dirent *de;
|
|
|
|
if (method == POST) {
|
|
badrequest(405, "Method Not Supported", "POST is not supported by this URL");
|
|
}
|
|
|
|
keepalive = 0;
|
|
header(200, "OK");
|
|
printf("Content-Type: text/html\r\n");
|
|
eoh();
|
|
|
|
printf("<!DOCTYPE html>\r<html><head><title>");
|
|
html_esc(stdout, path);
|
|
printf("</title></head><body><h1>Directory Listing: ");
|
|
html_esc(stdout, path);
|
|
printf("</h1><pre>");
|
|
if (path[1]) {
|
|
printf("<a href=\"../\">Parent Directory</a>\n");
|
|
}
|
|
|
|
while ((de = readdir(d))) {
|
|
char *name = de->d_name;
|
|
char symlink[PATH_MAX];
|
|
struct stat st;
|
|
|
|
if (name[0] == '.') {
|
|
continue; /* hidden files -> skip */
|
|
}
|
|
if (lstat(name, &st)) {
|
|
continue; /* can't stat -> skip */
|
|
}
|
|
|
|
if (S_ISDIR(st.st_mode)) {
|
|
printf("[DIR] ");
|
|
} else if (S_ISLNK(st.st_mode)) {
|
|
ssize_t len = readlink(de->d_name, symlink, (sizeof symlink) - 1);
|
|
|
|
if (len < 1) {
|
|
continue;
|
|
}
|
|
name = symlink;
|
|
printf("[LNK] "); /* symlink */
|
|
} else if (S_ISREG(st.st_mode)) {
|
|
printf("[ ] %10llu", (unsigned long long)st.st_size);
|
|
} else {
|
|
continue; /* not a file we can provide -> skip */
|
|
}
|
|
|
|
/*
|
|
* write a href
|
|
*/
|
|
printf(" <a href=\"");
|
|
url_esc(stdout, name);
|
|
if (S_ISDIR(st.st_mode)) {
|
|
printf("/");
|
|
}
|
|
printf("\">");
|
|
url_esc(stdout, name);
|
|
printf("</a>\n");
|
|
}
|
|
printf("</pre></body></html>");
|
|
fflush(stdout);
|
|
}
|
|
|
|
void
|
|
find_serve_file(char *relpath)
|
|
{
|
|
int fd;
|
|
struct stat st;
|
|
|
|
/* Open fspath. If that worked, */
|
|
if ((fd = open(relpath, O_RDONLY)) > -1) {
|
|
fstat(fd, &st);
|
|
/* If it is a directory, */
|
|
if (S_ISDIR(st.st_mode)) {
|
|
char path2[PATH_MAX];
|
|
int fd2;
|
|
|
|
/* Redirect if it doesn't end with / */
|
|
if (! endswith(path, "/")) {
|
|
header(301, "Redirect");
|
|
printf("Location: %s/", path);
|
|
eoh();
|
|
return;
|
|
}
|
|
|
|
/* Open relpath + "index.html". If that worked,*/
|
|
snprintf(path2, sizeof path2, "%sindex.html", relpath);
|
|
if ((fd2 = open(path2, O_RDONLY)) > -1) {
|
|
/* serve that file and return. */
|
|
fstat(fd2, &st);
|
|
serve_file(fd2, path2, &st);
|
|
close(fd2);
|
|
close(fd);
|
|
return;
|
|
} else {
|
|
if (docgi) {
|
|
snprintf(path2, sizeof path2, "%sindex.cgi", relpath);
|
|
if (! stat(path2, &st)) {
|
|
return serve_cgi(path2);
|
|
}
|
|
}
|
|
if (doidx) {
|
|
serve_idx(fd, relpath + 1);
|
|
close(fd);
|
|
return;
|
|
}
|
|
return not_found();
|
|
}
|
|
} else {
|
|
if (docgi && endswith(relpath, ".cgi")) {
|
|
close(fd);
|
|
return serve_cgi(relpath);
|
|
}
|
|
serve_file(fd, relpath, &st);
|
|
}
|
|
} else {
|
|
if (docgi && (errno == ENOTDIR)) {
|
|
char *p;
|
|
|
|
if ((p = strstr(relpath, ".cgi"))) {
|
|
p += 4;
|
|
setenv("PATH_INFO", p, 1);
|
|
*p = 0;
|
|
if (! stat(relpath, &st)) {
|
|
close(fd);
|
|
return serve_cgi(relpath);
|
|
}
|
|
}
|
|
}
|
|
return not_found();
|
|
}
|
|
}
|
|
|
|
void
|
|
handle_request()
|
|
{
|
|
char request[MAXREQUESTLEN];
|
|
char fspath[PATH_MAX];
|
|
char buf[MAXHEADERLEN];
|
|
char *p;
|
|
|
|
host = NULL;
|
|
user_agent = NULL;
|
|
refer = NULL;
|
|
path = NULL;
|
|
range_start = 0;
|
|
range_end = 0;
|
|
content_type = NULL;
|
|
content_length = 0;
|
|
|
|
alarm(READTIMEOUT);
|
|
|
|
/* Read request line first */
|
|
request[0] = 0;
|
|
if (NULL == fgets(request, sizeof request, stdin)) {
|
|
/* They must have hung up! */
|
|
exit(0);
|
|
}
|
|
if (!strncmp(request, "GET /", 5)) {
|
|
method = GET;
|
|
p = request + 5;
|
|
} else if (!strncmp(request, "POST /", 6)) {
|
|
method = POST;
|
|
p = request + 6;
|
|
} else if (!strncmp(request, "HEAD /", 6)) {
|
|
method = HEAD;
|
|
p = request + 6;
|
|
} else {
|
|
/* This also handles the case where fgets does nothing */
|
|
badrequest(405, "Method Not Allowed", "Unsupported HTTP method.");
|
|
}
|
|
|
|
if (docgi) {
|
|
p[-2] = 0;
|
|
setenv("REQUEST_METHOD", request, 1);
|
|
}
|
|
|
|
/* Interpret path into fspath. */
|
|
path = p - 1;
|
|
{
|
|
FILE *f = fmemopen(fspath, sizeof fspath, "w");
|
|
char *query_string = NULL;
|
|
|
|
fprintf(f, "./");
|
|
for (; *p != ' '; p += 1) {
|
|
if (! query_string) {
|
|
char c = *p;
|
|
|
|
switch (c) {
|
|
case 0:
|
|
badrequest(413, "Request Entity Too Large", "The HTTP request was too long");
|
|
case '\n':
|
|
badrequest(505, "Version Not Supported", "HTTP/0.9 not supported");
|
|
case '?':
|
|
query_string = p + 1;
|
|
continue;
|
|
case '.':
|
|
if (p[-1] == '/') {
|
|
c = ':';
|
|
}
|
|
break;
|
|
case '%':
|
|
if (p[1] && p[2]) {
|
|
int a = fromhex(p[1]);
|
|
int b = fromhex(p[2]);
|
|
|
|
if ((a >= 0) && (b >= 0)) {
|
|
c = (a << 4) | b;
|
|
p += 2;
|
|
}
|
|
}
|
|
break;
|
|
}
|
|
|
|
fputc(c, f);
|
|
}
|
|
}
|
|
fputc(0, f);
|
|
fclose(f);
|
|
|
|
*(p++) = 0; /* NULL-terminate path */
|
|
|
|
if (docgi && query_string) {
|
|
setenv("QUERY_STRING", query_string, 1);
|
|
}
|
|
}
|
|
|
|
http_version = -1;
|
|
if (! strncmp(p, "HTTP/1.", 7) && p[8] && ((p[8] == '\r') || (p[8] == '\n'))) {
|
|
http_version = p[7] - '0';
|
|
}
|
|
if (! ((http_version == 0) || (http_version == 1))) {
|
|
http_version = 0;
|
|
badrequest(505, "Version Not Supported", "HTTP version not supported");
|
|
}
|
|
if (http_version == 1) {
|
|
keepalive = 1;
|
|
} else {
|
|
keepalive = 0;
|
|
}
|
|
if (docgi) {
|
|
setenv("SERVER_PROTOCOL", p, 1);
|
|
}
|
|
|
|
/* Read header fields */
|
|
{
|
|
char *base = buf;
|
|
char *lastchar = base + (sizeof buf) - 2;
|
|
int nheaders = 0;
|
|
|
|
*lastchar = 0;
|
|
while (1) {
|
|
char *cgi_name = base;
|
|
char *p;
|
|
int plen = (sizeof buf) - (base - buf);
|
|
char *name, *val;
|
|
size_t len;
|
|
|
|
/* 40 is totally arbitrary here. */
|
|
if (plen < 40) {
|
|
badrequest(431, "Request Header Too Large", "The HTTP header block was too large");
|
|
}
|
|
if (nheaders++ >= MAXHEADERFIELDS) {
|
|
badrequest(431, "Request Header Too Large", "Too many HTTP Headers");
|
|
}
|
|
strcpy(cgi_name, "HTTP_");
|
|
plen -= 5;
|
|
p = cgi_name + 5;
|
|
|
|
if (NULL == fgets(p, plen, stdin)) {
|
|
badrequest(500, "OS Error", "OS error reading headers");
|
|
}
|
|
if (*lastchar) {
|
|
badrequest(431, "Request Header Too Large", "An HTTP header field was too large");
|
|
}
|
|
|
|
len = extract_header_field(p, &val, 1);
|
|
if (! len) {
|
|
/* blank line */
|
|
break;
|
|
}
|
|
if (! val) {
|
|
badrequest(400, "Invalid header", "Unable to parse header block");
|
|
}
|
|
|
|
name = p;
|
|
|
|
/* Set up CGI environment variables */
|
|
if (docgi) {
|
|
setenv(cgi_name, val, 1);
|
|
}
|
|
|
|
/* By default, re-use buffer space */
|
|
base = cgi_name;
|
|
|
|
/* Handle special header fields */
|
|
if (! strcmp(name, "HOST")) {
|
|
host = val;
|
|
base = name + len + 1;
|
|
} else if (! strcmp(name, "USER_AGENT")) {
|
|
user_agent = val;
|
|
base = name + len + 1;
|
|
} else if (! strcmp(name, "REFERER")) {
|
|
refer = val;
|
|
base = name + len + 1;
|
|
} else if (! strcmp(name, "CONTENT_TYPE")) {
|
|
content_type = val;
|
|
base = name + len + 1;
|
|
} else if (! strcmp(name, "CONTENT_LENGTH")) {
|
|
content_length = (size_t) strtoull(val, NULL, 10);
|
|
} else if (! strcmp(name, "CONNECTION")) {
|
|
if (! strcasecmp(val, "keep-alive")) {
|
|
keepalive = 1;
|
|
} else {
|
|
keepalive = 0;
|
|
}
|
|
} else if (! strcmp(name, "IF_MODIFIED_SINCE")) {
|
|
ims = timerfc(val);
|
|
} else if (! strcmp(name, "RANGE")) {
|
|
/* Range: bytes=17-23 */
|
|
/* Range: bytes=23- */
|
|
if (! strncmp(val, "bytes=", 6)) {
|
|
p = val + 6;
|
|
range_start = (off_t) strtoull(p, &p, 10);
|
|
if (*p == '-') {
|
|
range_end = (off_t) strtoull(p+1, NULL, 10);
|
|
} else {
|
|
range_end = 0;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
/* Try to change into the appropriate directory */
|
|
{
|
|
char fn[PATH_MAX];
|
|
|
|
if (host) {
|
|
strncpy(fn, host, sizeof fn);
|
|
} else {
|
|
fn[0] = 0;
|
|
}
|
|
if (fn[0] == '.') {
|
|
fn[0] = ':';
|
|
}
|
|
for (p = fn; *p; p += 1) {
|
|
switch (*p) {
|
|
case '/':
|
|
*p = ':';
|
|
break;
|
|
case ':':
|
|
*p = 0;
|
|
break;
|
|
case 'A'...'Z':
|
|
*p ^= ' ';
|
|
break;
|
|
}
|
|
}
|
|
|
|
if ((-1 == chdir(fn)) && (-1 == chdir("default"))) {
|
|
badrequest(404, "Not Found", "This host is not served here");
|
|
}
|
|
}
|
|
|
|
/* Serve the file */
|
|
cork(1);
|
|
find_serve_file(fspath);
|
|
cork(0);
|
|
|
|
return;
|
|
}
|
|
|
|
int
|
|
main(int argc, char *argv[], const char *const *envp)
|
|
{
|
|
parse_options(argc, argv);
|
|
|
|
cwd = open(".", O_RDONLY);
|
|
|
|
setbuffer(stdout, stdout_buf, sizeof stdout_buf);
|
|
|
|
signal(SIGPIPE, SIG_IGN);
|
|
get_ucspi_env();
|
|
|
|
while (1) {
|
|
handle_request();
|
|
if (! keepalive) {
|
|
break;
|
|
}
|
|
fchdir(cwd);
|
|
}
|
|
|
|
return 0;
|
|
}
|