rdelaage
/
gmid
mirror of https://github.com/omar-polo/gmid.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
gmid/gmid.c

937 lines
18 KiB
C
Raw Normal View History

initial commit
2020-10-02 19:39:00 +02:00
/*
* Copyright (c) 2020 Omar Polo <op@omarpolo.com>
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
#include <sys/mman.h>
initial commit
2020-10-02 19:39:00 +02:00
#include <sys/socket.h>
#include <sys/stat.h>
#include <assert.h>
#include <err.h>
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
#include <errno.h>
initial commit
2020-10-02 19:39:00 +02:00
#include <fcntl.h>
make -d handle correctly non-absolute paths before the -d option only accepted absolute paths, and this wasn't documented. Even more, with the default value of "docs" it won't work. Now it transforms all relative paths to absolute paths before going on.
2020-12-21 14:38:31 +01:00
#include <limits.h>
ignore SIGPIPE bad clients can shutdown the socket and we will exit due to a SIGPIPE. it ain’t fun.
2020-11-03 15:48:26 +01:00
#include <signal.h>
initial commit
2020-10-02 19:39:00 +02:00
#include <string.h>
reorder & fmt
2020-12-20 20:03:55 +01:00
moving declarations to header file
2020-12-24 16:48:39 +01:00
#include "gmid.h"
added support for mime types (by looking at file extension) At the moment there is an hardcoded table that maps mime types to extensions. For the time being this can be OK, as I don’t even currently serve all those types of file, but in the future I’d like to let user pass a file with the mapping, like /usr/share/misc/mime.types on OpenBSD, to map. However, even in this case, we should hardcode text/gemini IMHO, since most mime.types listing doesn’t have it yet.
2020-10-07 14:38:27 +02:00
macro reordering and while there replace SAFE_SETENV with an inline function. LOG is more difficult to transform into an inline function, given the string concatenations it does. The other LOG* and FATAL macros are fine as they already are.
2021-01-10 15:40:14 +01:00
#define LOG(priority, c, fmt, ...) \
do { \
char buf[INET_ADDRSTRLEN]; \
if (inet_ntop((c)->af, &(c)->addr, \
buf, sizeof(buf)) == NULL) \
FATAL("inet_ntop: %s", strerror(errno)); \
if (foreground) \
fprintf(stderr, \
"%s " fmt "\n", buf, __VA_ARGS__); \
else \
syslog((priority) | LOG_DAEMON, \
"%s " fmt, buf, __VA_ARGS__); \
} while (0)
#define LOGE(c, fmt, ...) LOG(LOG_ERR, c, fmt, __VA_ARGS__)
#define LOGN(c, fmt, ...) LOG(LOG_NOTICE, c, fmt, __VA_ARGS__)
#define LOGI(c, fmt, ...) LOG(LOG_INFO, c, fmt, __VA_ARGS__)
#define LOGD(c, fmt, ...) LOG(LOG_DEBUG, c, fmt, __VA_ARGS__)
#define FATAL(fmt, ...) \
do { \
if (foreground) \
fprintf(stderr, fmt "\n", __VA_ARGS__); \
else \
syslog(LOG_DAEMON | LOG_CRIT, \
fmt, __VA_ARGS__); \
exit(1); \
} while (0)
[cgi] execute cgi scripts only inside a specific directory change the meaning of the -x flag: now it takes a string and executes CGI scripts only if they are inside a directory with the given name, relatively to the document root.
2020-11-06 18:05:44 +01:00
const char *dir, *cgi;
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
int dirfd;
make port number configurable
2020-11-18 09:12:27 +01:00
int port;
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
int foreground;
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
int connected_clients;
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
struct etm { /* file extension to mime */
const char *mime;
const char *ext;
} filetypes[] = {
{"application/pdf", "pdf"},
{"image/gif", "gif"},
{"image/jpeg", "jpg"},
{"image/jpeg", "jpeg"},
{"image/png", "png"},
{"image/svg+xml", "svg"},
{"text/gemini", "gemini"},
{"text/gemini", "gmi"},
{"text/markdown", "markdown"},
{"text/markdown", "md"},
{"text/plain", "txt"},
{"text/xml", "xml"},
{NULL, NULL}
};
macro reordering and while there replace SAFE_SETENV with an inline function. LOG is more difficult to transform into an inline function, given the string concatenations it does. The other LOG* and FATAL macros are fine as they already are.
2021-01-10 15:40:14 +01:00
static inline void
safe_setenv(const char *name, const char *val)
{
if (val == NULL)
val = "";
setenv(name, val, 1);
}
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
void
ignore also SIGHUP SIGHUP is sent when the tty is detached and by default kills the process. When we run in the background we don't care anymore about the tty, so it should be safe for us to ignore SIGHUP. (frankly, I expected daemon(3) to do stuff like this for us).
2020-12-28 09:55:56 +01:00
sig_handler(int sig)
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
{
(void)sig;
}
[cgi] execute cgi scripts only inside a specific directory change the meaning of the -x flag: now it takes a string and executes CGI scripts only if they are inside a directory with the given name, relatively to the document root.
2020-11-06 18:05:44 +01:00
int
starts_with(const char *str, const char *prefix)
{
size_t i;
for (i = 0; prefix[i] != '\0'; ++i)
if (str[i] != prefix[i])
return 0;
return 1;
}
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
int
start_reply(struct pollfd *pfd, struct client *client, int code, const char *reason)
initial commit
2020-10-02 19:39:00 +02:00
{
char buf[1030] = {0}; /* status + ' ' + max reply len + \r\n\0 */
int len;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
int ret;
client->code = code;
client->meta = reason;
client->state = S_INITIALIZING;
initial commit
2020-10-02 19:39:00 +02:00
len = snprintf(buf, sizeof(buf), "%d %s\r\n", code, reason);
assert(len < (int)sizeof(buf));
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
ret = tls_write(client->ctx, buf, len);
if (ret == TLS_WANT_POLLIN) {
pfd->events = POLLIN;
return 0;
}
if (ret == TLS_WANT_POLLOUT) {
pfd->events = POLLOUT;
return 0;
}
return 1;
initial commit
2020-10-02 19:39:00 +02:00
}
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
ssize_t
filesize(int fd)
{
ssize_t len;
if ((len = lseek(fd, 0, SEEK_END)) == -1)
return -1;
if (lseek(fd, 0, SEEK_SET) == -1)
return -1;
return len;
}
added support for mime types (by looking at file extension) At the moment there is an hardcoded table that maps mime types to extensions. For the time being this can be OK, as I don’t even currently serve all those types of file, but in the future I’d like to let user pass a file with the mapping, like /usr/share/misc/mime.types on OpenBSD, to map. However, even in this case, we should hardcode text/gemini IMHO, since most mime.types listing doesn’t have it yet.
2020-10-07 14:38:27 +02:00
const char *
path_ext(const char *path)
{
const char *end;
end = path + strlen(path)-1; /* the last byte before the NUL */
for (; end != path; --end) {
if (*end == '.')
return end+1;
if (*end == '/')
break;
}
return NULL;
}
const char *
mime(const char *path)
{
const char *ext, *def = "application/octet-stream";
struct etm *t;
if ((ext = path_ext(path)) == NULL)
return def;
for (t = filetypes; t->mime != NULL; ++t)
if (!strcmp(ext, t->ext))
return t->mime;
return def;
}
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
int
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
check_path(struct client *c, const char *path, int *fd)
initial commit
2020-10-02 19:39:00 +02:00
{
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
struct stat sb;
initial commit
2020-10-02 19:39:00 +02:00
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
assert(path != NULL);
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
if ((*fd = openat(dirfd, *path ? path : ".",
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
O_RDONLY | O_NOFOLLOW | O_CLOEXEC)) == -1) {
return FILE_MISSING;
}
if (fstat(*fd, &sb) == -1) {
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
LOGN(c, "failed stat for %s: %s", path, strerror(errno));
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
return FILE_MISSING;
}
if (S_ISDIR(sb.st_mode))
return FILE_DIRECTORY;
if (sb.st_mode & S_IXUSR)
return FILE_EXECUTABLE;
return FILE_EXISTS;
}
/*
* the inverse of this algorithm, i.e. starting from the start of the
* path + strlen(cgi), and checking if each component, should be
* faster. But it's tedious to write. This does the opposite: starts
* from the end and strip one component at a time, until either an
* executable is found or we emptied the path.
*/
int
check_for_cgi(char *path, char *query, struct pollfd *fds, struct client *c)
{
char *end;
end = strchr(path, '\0');
/* NB: assume CGI is enabled and path matches cgi */
while (end > path) {
/* go up one level. UNIX paths are simple and POSIX
* dirname, with its ambiguities on if the given path
* is changed or not, gives me headaches. */
while (*end != '/')
end--;
*end = '\0';
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
switch (check_path(c, path, &c->fd)) {
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
case FILE_EXECUTABLE:
return start_cgi(path, end+1, query, fds,c);
case FILE_MISSING:
break;
default:
goto err;
}
*end = '/';
end--;
}
err:
if (!start_reply(fds, c, NOT_FOUND, "not found"))
return 0;
goodbye(fds, c);
return 0;
}
int
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
open_file(char *fpath, char *query, struct pollfd *fds, struct client *c)
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
{
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
switch (check_path(c, fpath, &c->fd)) {
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
case FILE_EXECUTABLE:
fix CGI with new IRI parser With new IRI, parser the old assumption of path starting with ./ is no longer valid.
2020-12-28 09:52:39 +01:00
if (cgi != NULL && starts_with(fpath, cgi))
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
return start_cgi(fpath, "", query, fds, c);
/* fallthrough */
case FILE_EXISTS:
if ((c->len = filesize(c->fd)) == -1) {
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
LOGE(c, "failed to get file size for %s", fpath);
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
goodbye(fds, c);
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
return 0;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
}
initial commit
2020-10-02 19:39:00 +02:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
if ((c->buf = mmap(NULL, c->len, PROT_READ, MAP_PRIVATE,
c->fd, 0)) == MAP_FAILED) {
warn("mmap: %s", fpath);
goodbye(fds, c);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
return 0;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
}
c->i = c->buf;
return start_reply(fds, c, SUCCESS, mime(fpath));
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
case FILE_DIRECTORY:
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
LOGD(c, "%s is a directory, trying %s/index.gmi", fpath, fpath);
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
close(c->fd);
c->fd = -1;
send_dir(fpath, fds, c);
return 0;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
case FILE_MISSING:
fix CGI with new IRI parser With new IRI, parser the old assumption of path starting with ./ is no longer valid.
2020-12-28 09:52:39 +01:00
if (cgi != NULL && starts_with(fpath, cgi))
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
return check_for_cgi(fpath, query, fds, c);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
if (!start_reply(fds, c, NOT_FOUND, "not found"))
return 0;
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
goodbye(fds, c);
return 0;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
default:
/* unreachable */
abort();
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
}
}
initial commit
2020-10-02 19:39:00 +02:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
int
start_cgi(const char *spath, const char *relpath, const char *query,
pass the query parameter to start_cgi
2020-11-06 15:06:50 +01:00
struct pollfd *fds, struct client *c)
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
{
pid_t pid;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
int p[2]; /* read end, write end */
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
if (pipe(p) == -1)
goto err;
switch (pid = fork()) {
case -1:
goto err;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
case 0: { /* child */
make port number configurable
2020-11-18 09:12:27 +01:00
char *ex, *requri, *portno;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
char addr[INET_ADDRSTRLEN];
char *argv[] = { NULL, NULL, NULL };
[cgi] setenv instead of building an env + define more env variables
2020-11-06 15:07:33 +01:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
close(p[0]);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
if (dup2(p[1], 1) == -1)
goto childerr;
if (inet_ntop(c->af, &c->addr, addr, sizeof(addr)) == NULL)
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
goto childerr;
make port number configurable
2020-11-18 09:12:27 +01:00
if (asprintf(&portno, "%d", port) == -1)
goto childerr;
fix CGI with new IRI parser With new IRI, parser the old assumption of path starting with ./ is no longer valid.
2020-12-28 09:52:39 +01:00
if (asprintf(&ex, "%s/%s", dir, spath) == -1)
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
goto childerr;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
if (asprintf(&requri, "%s%s%s", spath,
*relpath == '\0' ? "" : "/",
relpath) == -1)
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
goto childerr;
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
argv[0] = argv[1] = ex;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
[cgi] setenv instead of building an env + define more env variables
2020-11-06 15:07:33 +01:00
/* fix the env */
macro reordering and while there replace SAFE_SETENV with an inline function. LOG is more difficult to transform into an inline function, given the string concatenations it does. The other LOG* and FATAL macros are fine as they already are.
2021-01-10 15:40:14 +01:00
safe_setenv("GATEWAY_INTERFACE", "CGI/1.1");
safe_setenv("SERVER_SOFTWARE", "gmid");
safe_setenv("SERVER_PORT", portno);
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
/* setenv("SERVER_NAME", "", 1); */
macro reordering and while there replace SAFE_SETENV with an inline function. LOG is more difficult to transform into an inline function, given the string concatenations it does. The other LOG* and FATAL macros are fine as they already are.
2021-01-10 15:40:14 +01:00
safe_setenv("SCRIPT_NAME", spath);
safe_setenv("SCRIPT_EXECUTABLE", ex);
safe_setenv("REQUEST_URI", requri);
safe_setenv("REQUEST_RELATIVE", relpath);
safe_setenv("QUERY_STRING", query);
safe_setenv("REMOTE_HOST", addr);
safe_setenv("REMOTE_ADDR", addr);
safe_setenv("DOCUMENT_ROOT", dir);
clients certs support for CGI internally, gmid doesn’t care if the client issued a certificate, but now we pass that information to the CGI script in some new environment variables.
2020-12-02 15:17:19 +01:00
if (tls_peer_cert_provided(c->ctx)) {
macro reordering and while there replace SAFE_SETENV with an inline function. LOG is more difficult to transform into an inline function, given the string concatenations it does. The other LOG* and FATAL macros are fine as they already are.
2021-01-10 15:40:14 +01:00
safe_setenv("AUTH_TYPE", "Certificate");
safe_setenv("REMOTE_USER", tls_peer_cert_subject(c->ctx));
safe_setenv("TLS_CLIENT_ISSUER", tls_peer_cert_issuer(c->ctx));
safe_setenv("TLS_CLIENT_HASH", tls_peer_cert_hash(c->ctx));
clients certs support for CGI internally, gmid doesn’t care if the client issued a certificate, but now we pass that information to the CGI script in some new environment variables.
2020-12-02 15:17:19 +01:00
}
[cgi] setenv instead of building an env + define more env variables
2020-11-06 15:07:33 +01:00
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
execvp(ex, argv);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
goto childerr;
}
default: /* parent */
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
close(p[1]);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
close(c->fd);
c->fd = p[0];
c->child = pid;
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
mark_nonblock(c->fd);
c->state = S_SENDING;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
handle_cgi(fds, c);
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
return 0;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
}
err:
if (!start_reply(fds, c, TEMP_FAILURE, "internal server error"))
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
return 0;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
goodbye(fds, c);
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
return 0;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
childerr:
dprintf(p[1], "%d internal server error\r\n", TEMP_FAILURE);
close(p[1]);
[cgi] added support for path parameters enhance the CGI scripting support so that script can take path parameters. That is, a script at /cgi/foo is called when the request path is /cgi/foo/bar/... This commit also introduce some backward incompatible changes as the default env variables set for the CGI script changed.
2020-11-10 14:07:36 +01:00
_exit(1);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
}
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
void
rename cgi_setpoll_on_* to cgi_poll_on_*
2020-12-28 18:01:06 +01:00
cgi_poll_on_child(struct pollfd *fds, struct client *c)
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
{
int fd;
if (c->waiting_on_child)
return;
c->waiting_on_child = 1;
fds->events = POLLIN;
fd = fds->fd;
fds->fd = c->fd;
c->fd = fd;
}
void
rename cgi_setpoll_on_* to cgi_poll_on_*
2020-12-28 18:01:06 +01:00
cgi_poll_on_client(struct pollfd *fds, struct client *c)
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
{
int fd;
if (!c->waiting_on_child)
return;
c->waiting_on_child = 0;
fd = fds->fd;
fds->fd = c->fd;
c->fd = fd;
}
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
void
handle_cgi(struct pollfd *fds, struct client *c)
{
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
ssize_t r;
/* ensure c->fd is the child and fds->fd the client */
rename cgi_setpoll_on_* to cgi_poll_on_*
2020-12-28 18:01:06 +01:00
cgi_poll_on_client(fds, c);
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
while (1) {
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
if (c->len == 0) {
if ((r = read(c->fd, c->sbuf, sizeof(c->sbuf))) == 0)
goto end;
if (r == -1) {
if (errno == EAGAIN || errno == EWOULDBLOCK) {
rename cgi_setpoll_on_* to cgi_poll_on_*
2020-12-28 18:01:06 +01:00
cgi_poll_on_child(fds, c);
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
return;
}
goto end;
}
c->len = r;
c->off = 0;
}
while (c->len > 0) {
switch (r = tls_write(c->ctx, c->sbuf + c->off, c->len)) {
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
case -1:
goto end;
case TLS_WANT_POLLOUT:
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
fds->events = POLLOUT;
return;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
case TLS_WANT_POLLIN:
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
fds->events = POLLIN;
return;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
default:
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
c->off += r;
c->len -= r;
break;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
}
}
}
end:
goodbye(fds, c);
}
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
void
pass the query parameter to start_cgi
2020-11-06 15:06:50 +01:00
send_file(char *path, char *query, struct pollfd *fds, struct client *c)
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
{
ssize_t ret, len;
if (c->fd == -1) {
pass the query parameter to start_cgi
2020-11-06 15:06:50 +01:00
if (!open_file(path, query, fds, c))
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
return;
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
c->state = S_SENDING;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
}
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
len = (c->buf + c->len) - c->i;
while (len > 0) {
switch (ret = tls_write(c->ctx, c->i, len)) {
case -1:
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
LOGE(c, "tls_write: %s", tls_error(c->ctx));
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
goodbye(fds, c);
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
return;
initial commit
2020-10-02 19:39:00 +02:00
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
case TLS_WANT_POLLIN:
fds->events = POLLIN;
return;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
case TLS_WANT_POLLOUT:
fds->events = POLLOUT;
return;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
default:
c->i += ret;
len -= ret;
break;
initial commit
2020-10-02 19:39:00 +02:00
}
}
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
goodbye(fds, c);
initial commit
2020-10-02 19:39:00 +02:00
}
void
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
send_dir(char *path, struct pollfd *fds, struct client *client)
initial commit
2020-10-02 19:39:00 +02:00
{
char fpath[PATHBUF];
size_t len;
bzero(fpath, PATHBUF);
style
2020-10-14 09:21:59 +02:00
if (path[0] != '.')
initial commit
2020-10-02 19:39:00 +02:00
fpath[0] = '.';
/* this cannot fail since sizeof(fpath) > maxlen of path */
strlcat(fpath, path, PATHBUF);
len = strlen(fpath);
/* add a trailing / in case. */
if (fpath[len-1] != '/') {
fpath[len] = '/';
}
strlcat(fpath, "index.gmi", sizeof(fpath));
pass the query parameter to start_cgi
2020-11-06 15:06:50 +01:00
send_file(fpath, NULL, fds, client);
initial commit
2020-10-02 19:39:00 +02:00
}
void
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
handle(struct pollfd *fds, struct client *client)
initial commit
2020-10-02 19:39:00 +02:00
{
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
char buf[GEMINI_URL_LEN];
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
const char *parse_err;
struct uri uri;
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
switch (client->state) {
case S_OPEN:
bzero(buf, GEMINI_URL_LEN);
switch (tls_read(client->ctx, buf, sizeof(buf)-1)) {
case -1:
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
LOGE(client, "tls_read: %s", tls_error(client->ctx));
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
goodbye(fds, client);
return;
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
case TLS_WANT_POLLIN:
fds->events = POLLIN;
return;
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
case TLS_WANT_POLLOUT:
fds->events = POLLOUT;
return;
}
initialize error string to avoid returning garbage
2020-12-28 17:50:26 +01:00
parse_err = "invalid request";
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
if (!trim_req_uri(buf) || !parse_uri(buf, &uri, &parse_err)) {
if (!start_reply(fds, client, BAD_REQUEST, parse_err))
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
return;
goodbye(fds, client);
return;
}
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
LOGI(client, "GET %s%s%s",
*uri.path ? uri.path : "/",
*uri.query ? "?" : "",
*uri.query ? uri.query : "");
initial commit
2020-10-02 19:39:00 +02:00
implement a valid RFC3986 (URI) parser Up until now I used a "poor man" approach: the uri parser is barely a parser, it tries to extract the path from the request, with some minor checking, and that's all. This obviously is not RFC3986-compliant. The new RFC3986 (URI) parser should be fully compliant. It may accept some invalid URI, but shouldn't reject or mis-parse valid URI. (in particular, the rule for the path is way more relaxed in this parser than it is in the RFC text). A difference with RFC3986 is that we don't even try to parse the (optional) userinfo part of a URI: following the Gemini spec we treat it as an error. A further caveats is that %2F in the path part of the URI is indistinguishable from a literal '/': this is NOT conforming, but due to the scope and use of gmid, I don't see how treat a %2F sequence in the path (reject the URI?).
2020-12-25 13:13:12 +01:00
send_file(uri.path, uri.query, fds, client);
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
break;
case S_INITIALIZING:
if (!start_reply(fds, client, client->code, client->meta))
return;
if (client->code != SUCCESS) {
/* we don't need a body */
goodbye(fds, client);
return;
}
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
client->state = S_SENDING;
/* fallthrough */
case S_SENDING:
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
if (client->child != -1)
handle_cgi(fds, client);
else
send_file(NULL, NULL, fds, client);
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
break;
case S_CLOSING:
goodbye(fds, client);
break;
default:
/* unreachable */
abort();
}
}
void
mark_nonblock(int fd)
{
int flags;
if ((flags = fcntl(fd, F_GETFL)) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("fcntl(F_GETFL): %s", strerror(errno));
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
if (fcntl(fd, F_SETFL, flags | O_NONBLOCK) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("fcntl(F_SETFL): %s", strerror(errno));
initial commit
2020-10-02 19:39:00 +02:00
}
int
initial work for ipv6 make_socket can now return an ipv6 socket, and everything else still works. ipv4 is still hardcoded tho.
2020-10-15 13:45:57 +02:00
make_socket(int port, int family)
initial commit
2020-10-02 19:39:00 +02:00
{
int sock, v;
initial work for ipv6 make_socket can now return an ipv6 socket, and everything else still works. ipv4 is still hardcoded tho.
2020-10-15 13:45:57 +02:00
struct sockaddr_in addr4;
struct sockaddr_in6 addr6;
struct sockaddr *addr;
socklen_t len;
switch (family) {
case AF_INET:
bzero(&addr4, sizeof(addr4));
addr4.sin_family = family;
addr4.sin_port = htons(port);
addr4.sin_addr.s_addr = INADDR_ANY;
addr = (struct sockaddr*)&addr4;
len = sizeof(addr4);
break;
case AF_INET6:
bzero(&addr6, sizeof(addr6));
addr6.sin6_family = AF_INET6;
addr6.sin6_port = htons(port);
addr6.sin6_addr = in6addr_any;
addr = (struct sockaddr*)&addr6;
len = sizeof(addr6);
break;
initial commit
2020-10-02 19:39:00 +02:00
initial work for ipv6 make_socket can now return an ipv6 socket, and everything else still works. ipv4 is still hardcoded tho.
2020-10-15 13:45:57 +02:00
default:
/* unreachable */
abort();
}
if ((sock = socket(family, SOCK_STREAM, 0)) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("socket: %s", strerror(errno));
initial commit
2020-10-02 19:39:00 +02:00
v = 1;
if (setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &v, sizeof(v)) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("setsockopt(SO_REUSEADDR): %s", strerror(errno));
initial commit
2020-10-02 19:39:00 +02:00
v = 1;
if (setsockopt(sock, SOL_SOCKET, SO_REUSEPORT, &v, sizeof(v)) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("setsockopt(SO_REUSEPORT): %s", strerror(errno));
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
mark_nonblock(sock);
initial work for ipv6 make_socket can now return an ipv6 socket, and everything else still works. ipv4 is still hardcoded tho.
2020-10-15 13:45:57 +02:00
if (bind(sock, addr, len) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("bind: %s", strerror(errno));
initial commit
2020-10-02 19:39:00 +02:00
if (listen(sock, 16) == -1)
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("listen: %s", strerror(errno));
initial commit
2020-10-02 19:39:00 +02:00
return sock;
}
void
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
do_accept(int sock, struct tls *ctx, struct pollfd *fds, struct client *clients)
initial commit
2020-10-02 19:39:00 +02:00
{
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
int i, fd;
struct sockaddr_in addr;
initial commit
2020-10-02 19:39:00 +02:00
socklen_t len;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
len = sizeof(addr);
if ((fd = accept(sock, (struct sockaddr*)&addr, &len)) == -1) {
if (errno == EWOULDBLOCK)
return;
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("accept: %s", strerror(errno));
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
}
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
mark_nonblock(fd);
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
for (i = 0; i < MAX_USERS; ++i) {
if (fds[i].fd == -1) {
bzero(&clients[i], sizeof(struct client));
if (tls_accept_socket(ctx, &clients[i].ctx, fd) == -1)
break; /* goodbye fd! */
fds[i].fd = fd;
fds[i].events = POLLIN;
clients[i].state = S_OPEN;
clients[i].fd = -1;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
clients[i].child = -1;
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
clients[i].buf = MAP_FAILED;
added option to log to a file
2020-11-06 10:58:30 +01:00
clients[i].af = AF_INET;
clients[i].addr = addr.sin_addr;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
connected_clients++;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
return;
initial commit
2020-10-02 19:39:00 +02:00
}
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
}
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
close(fd);
}
void
goodbye(struct pollfd *pfd, struct client *c)
{
ssize_t ret;
initial commit
2020-10-02 19:39:00 +02:00
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
c->state = S_CLOSING;
ret = tls_close(c->ctx);
if (ret == TLS_WANT_POLLIN) {
pfd->events = POLLIN;
return;
}
if (ret == TLS_WANT_POLLOUT) {
pfd->events = POLLOUT;
return;
}
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
connected_clients--;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
tls_free(c->ctx);
c->ctx = NULL;
switching to mmap() based file handling
2020-10-14 10:06:24 +02:00
if (c->buf != MAP_FAILED)
munmap(c->buf, c->len);
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
if (c->fd != -1)
close(c->fd);
close(pfd->fd);
pfd->fd = -1;
}
void
loop(struct tls *ctx, int sock)
{
simplify loop todo was initially there for an optimization: don't loop to MAX_USERS when you know the upper limit is todo.
2021-01-08 17:59:50 +01:00
int i;
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
struct client clients[MAX_USERS];
struct pollfd fds[MAX_USERS];
for (i = 0; i < MAX_USERS; ++i) {
fds[i].fd = -1;
fds[i].events = POLLIN;
bzero(&clients[i], sizeof(struct client));
}
fds[0].fd = sock;
for (;;) {
simplify loop todo was initially there for an optimization: don't loop to MAX_USERS when you know the upper limit is todo.
2021-01-08 17:59:50 +01:00
if (poll(fds, MAX_USERS, INFTIM) == -1) {
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
if (errno == EINTR) {
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
warnx("connected clients: %d",
connected_clients);
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
continue;
}
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("poll: %s", strerror(errno));
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
}
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
for (i = 0; i < MAX_USERS; i++) {
if (fds[i].revents == 0)
continue;
if (fds[i].revents & (POLLERR|POLLNVAL))
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
FATAL("bad fd %d: %s", fds[i].fd,
strerror(errno));
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
if (fds[i].revents & POLLHUP) {
handle CGI concurrently don’t stop-the-world-until-cgi-end, but rather poll on the script, so we can handle other requests in the meantime.
2020-11-06 16:16:42 +01:00
/* fds[i] may be the fd of the stdin
* of a cgi script that has exited. */
if (!clients[i].waiting_on_child) {
goodbye(&fds[i], &clients[i]);
continue;
}
rewrote the main loop to use poll We can handle up to MAX_USERS (64 by default) concurrently. Now, given that we don’t support CGI, it’s not a big deal. Gemini requests are small (up to 1024 bytes), and also the replies from the server are small (one line plus the document — if any), all over TLS obviously. (but even there, it’s lighter than HTTP because we don’t need to send the whole chain for the certificate — see TOFU). Given all the above, this doesn’t really improve the performance in the real world, but it’s nice to have. The main use case for this is to disallow slow clients to stop fast clients.
2020-10-07 13:50:18 +02:00
}
if (i == 0) { /* new client */
do_accept(sock, ctx, fds, clients);
continue;
}
handle(&fds[i], &clients[i]);
}
initial commit
2020-10-02 19:39:00 +02:00
}
}
make -d handle correctly non-absolute paths before the -d option only accepted absolute paths, and this wasn't documented. Even more, with the default value of "docs" it won't work. Now it transforms all relative paths to absolute paths before going on.
2020-12-21 14:38:31 +01:00
char *
absolutify_path(const char *path)
{
char *wd, *r;
if (*path == '/')
return strdup(path);
wd = getwd(NULL);
if (asprintf(&r, "%s/%s", wd, path) == -1)
err(1, "asprintf");
free(wd);
return r;
}
initial commit
2020-10-02 19:39:00 +02:00
void
usage(const char *me)
{
fprintf(stderr,
[cgi] execute cgi scripts only inside a specific directory change the meaning of the -x flag: now it takes a string and executes CGI scripts only if they are inside a directory with the given name, relatively to the document root.
2020-11-06 18:05:44 +01:00
"USAGE: %s [-h] [-c cert.pem] [-d docs] [-k key.pem] "
make port number configurable
2020-11-18 09:12:27 +01:00
"[-l logfile] [-p port] [-x cgi-bin]\n",
initial commit
2020-10-02 19:39:00 +02:00
me);
}
int
main(int argc, char **argv)
{
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
const char *cert = "cert.pem", *key = "key.pem";
initial commit
2020-10-02 19:39:00 +02:00
struct tls *ctx = NULL;
struct tls_config *conf;
int sock, ch;
[debug] print number of connected clients on SIGINFO or SIGUSR2 for poor peoples
2020-11-06 16:18:38 +01:00
connected_clients = 0;
always check absolutify_path return
2020-12-21 15:42:06 +01:00
if ((dir = absolutify_path("docs")) == NULL)
err(1, "absolutify_path");
[cgi] execute cgi scripts only inside a specific directory change the meaning of the -x flag: now it takes a string and executes CGI scripts only if they are inside a directory with the given name, relatively to the document root.
2020-11-06 18:05:44 +01:00
cgi = NULL;
make port number configurable
2020-11-18 09:12:27 +01:00
port = 1965;
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
foreground = 0;
added option to log to a file
2020-11-06 10:58:30 +01:00
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
while ((ch = getopt(argc, argv, "c:d:fhk:p:x:")) != -1) {
initial commit
2020-10-02 19:39:00 +02:00
switch (ch) {
case 'c':
cert = optarg;
break;
case 'd':
make -d handle correctly non-absolute paths before the -d option only accepted absolute paths, and this wasn't documented. Even more, with the default value of "docs" it won't work. Now it transforms all relative paths to absolute paths before going on.
2020-12-21 14:38:31 +01:00
free((char*)dir);
if ((dir = absolutify_path(optarg)) == NULL)
err(1, "absolutify_path");
initial commit
2020-10-02 19:39:00 +02:00
break;
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
case 'f':
foreground = 1;
break;
initial commit
2020-10-02 19:39:00 +02:00
case 'h':
usage(*argv);
return 0;
case 'k':
key = optarg;
break;
make port number configurable
2020-11-18 09:12:27 +01:00
case 'p': {
char *ep;
long lval;
errno = 0;
lval = strtol(optarg, &ep, 10);
if (optarg[0] == '\0' || *ep != '\0')
err(1, "not a number: %s", optarg);
if (lval < 0 || lval > UINT16_MAX)
err(1, "port number out of range: %s", optarg);
port = lval;
break;
}
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
case 'x':
[cgi] execute cgi scripts only inside a specific directory change the meaning of the -x flag: now it takes a string and executes CGI scripts only if they are inside a directory with the given name, relatively to the document root.
2020-11-06 18:05:44 +01:00
cgi = optarg;
implementing CGI – NOT READY YET! This is a first try at implementing CGI scripting. The idea is that, if CGI is explicitly enabled by the user, when a user requires an executable file instead of serving it to the client, that file will be executed and its output fed to the client. There are various pieces that are still lacking, the firsts that comes to mind are: - performance: the handle_cgi just loops ignoring the WANT_POLLIN/POLLOUT and blocking if the child process hasn’t outputted anything. - we don’t parse query variable (yet) - we need to set more variables in the child environment side question: it’s better to set the variables using setenv() or by providing an explicit environment? - document what environment the CGI script will get - improve the horrible unveil/pledge(cgi ? …) but now I can serve “hello-world”-tier script from gmid!
2020-11-06 13:01:31 +01:00
break;
initial commit
2020-10-02 19:39:00 +02:00
default:
usage(*argv);
return 1;
}
}
ignore also SIGHUP SIGHUP is sent when the tty is detached and by default kills the process. When we run in the background we don't care anymore about the tty, so it should be safe for us to ignore SIGHUP. (frankly, I expected daemon(3) to do stuff like this for us).
2020-12-28 09:55:56 +01:00
signal(SIGPIPE, SIG_IGN);
signal(SIGCHLD, SIG_IGN);
#ifdef SIGINFO
signal(SIGINFO, sig_handler);
#endif
signal(SIGUSR2, sig_handler);
if (!foreground)
signal(SIGHUP, SIG_IGN);
initial commit
2020-10-02 19:39:00 +02:00
if ((conf = tls_config_new()) == NULL)
err(1, "tls_config_new");
clients certs support for CGI internally, gmid doesn’t care if the client issued a certificate, but now we pass that information to the CGI script in some new environment variables.
2020-12-02 15:17:19 +01:00
/* optionally accept client certs, but don't try to verify them */
tls_config_verify_client_optional(conf);
tls_config_insecure_noverifycert(conf);
explicitly require TLS 1.2 or 1.3 it's the default, but just in case (since gemini spec explicitly talks about 1.3 as "default" and 1.2 for ease of implementation)
2020-10-03 12:24:14 +02:00
if (tls_config_set_protocols(conf,
TLS_PROTOCOL_TLSv1_2 | TLS_PROTOCOL_TLSv1_3) == -1)
err(1, "tls_config_set_protocols");
improving style: no functional changes
2020-10-03 18:25:31 +02:00
if (tls_config_set_cert_file(conf, cert) == -1)
err(1, "tls_config_set_cert_file: %s", cert);
initial commit
2020-10-02 19:39:00 +02:00
improving style: no functional changes
2020-10-03 18:25:31 +02:00
if (tls_config_set_key_file(conf, key) == -1)
err(1, "tls_config_set_key_file: %s", key);
initial commit
2020-10-02 19:39:00 +02:00
if ((ctx = tls_server()) == NULL)
err(1, "tls_server");
if (tls_configure(ctx, conf) == -1)
errx(1, "tls_configure: %s", tls_error(ctx));
make port number configurable
2020-11-18 09:12:27 +01:00
sock = make_socket(port, AF_INET);
initial commit
2020-10-02 19:39:00 +02:00
if ((dirfd = open(dir, O_RDONLY | O_DIRECTORY)) == -1)
err(1, "open: %s", dir);
logging reworked and daemonize by default The -l option was removed: now it logs on syslog if -f (foreground) is not passed.
2020-12-02 21:18:01 +01:00
if (!foreground && daemon(0, 1) == -1)
exit(1);
simplify unveil/pledge calls
2021-01-01 13:03:04 +01:00
if (unveil(dir, "rx") == -1)
err(1, "unveil");
if (pledge("stdio rpath inet proc exec", NULL) == -1)
err(1, "pledge");
/* drop proc and exec if cgi isn't enabled */
if (cgi == NULL && pledge("stdio rpath inet", NULL) == -1)
err(1, "pledge");
initial commit
2020-10-02 19:39:00 +02:00
loop(ctx, sock);
close(sock);
tls_free(ctx);
tls_config_free(conf);
}