playground/suckless-quark
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
suckless-quark/main.c

418 lines
8.4 KiB
C
Raw Normal View History

Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
/* See LICENSE file for copyright and license details. */
#include <errno.h>
#include <grp.h>
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
#include <limits.h>
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
#include <netinet/in.h>
#include <pwd.h>
#include <regex.h>
#include <signal.h>
#include <sys/resource.h>
#include <sys/socket.h>
#include <sys/types.h>
#include <sys/wait.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <time.h>
#include <unistd.h>
Rename resp.{c,h} to data.{c,h} The methods in data.h only deal with the actual response data, not the request handling itself, which has been formalized a bit more in http.h. To avoid confusion, we rename it to data.h. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-28 21:29:54 +00:00
#include "data.h"
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
#include "http.h"
#include "sock.h"
#include "util.h"
static char *udsname;
static void
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
logmsg(const struct connection *c)
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
{
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
char inaddr_str[INET6_ADDRSTRLEN /* > INET_ADDRSTRLEN */];
Give an indication of the time zone in the log We use Zulu-time (aka UTC) for the log timestamps.
2018-04-02 23:23:00 +00:00
char tstmp[21];
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
/* create timestamp */
if (!strftime(tstmp, sizeof(tstmp), "%Y-%m-%dT%H:%M:%SZ",
gmtime(&(time_t){time(NULL)}))) {
warn("strftime: Exceeded buffer capacity");
/* continue anyway (we accept the truncation) */
}
/* generate address-string */
if (sock_get_inaddr_str(&c->ia, inaddr_str, LEN(inaddr_str))) {
warn("sock_get_inaddr_str: Couldn't generate adress-string");
inaddr_str[0] = '\0';
}
printf("%s\t%s\t%d\t%s\t%s\n", tstmp, inaddr_str, c->res.status,
c->req.field[REQ_HOST], c->req.uri);
}
static void
serve(struct connection *c, const struct server *srv)
{
enum status s;
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
/* set connection timeout */
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
if (sock_set_timeout(c->fd, 30)) {
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
goto cleanup;
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
/* handle request */
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
if ((s = http_recv_header(c->fd, c->header, LEN(c->header), &c->off)) ||
(s = http_parse_header(c->header, &c->req))) {
http_prepare_error_response(&c->req, &c->res, s);
Improve http_prepare_response()'s error semantics I don't like the juggling with status-values in serve. It makes sense for http_recv_header() and http_parse_header(), because we don't have a response-struct yet that we can "fill". We could pass it to them, but that would make the usage a bit messy. However, in http_prepare_response(), we are already entrusted with a pointer to a response-struct, and just failing here (by returning an error value) leaves the response-struct in an invalid state. Instead, we make it a void function and reflect the status using the status field in the passed response struct. This way, there is no case where the response struct is in an invalid state after calling a http_prepare_*()-method. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-28 20:48:32 +00:00
} else {
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
http_prepare_response(&c->req, &c->res, srv);
Replace http_send_status() with http_prepare_error_response() This approach fits better in line of first initializing the response struct and then sending the header with http_send_header() later. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-28 20:32:47 +00:00
}
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
if ((s = http_send_header(c->fd, &c->res)) ||
(s = http_send_body(c->fd, &c->res, &c->req))) {
c->res.status = s;
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
logmsg(c);
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
cleanup:
/* clean up and finish */
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
shutdown(c->fd, SHUT_RD);
shutdown(c->fd, SHUT_WR);
close(c->fd);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
static void
cleanup(void)
{
if (udsname)
sock_rem_uds(udsname);
}
static void
sigcleanup(int sig)
{
cleanup();
kill(0, sig);
_exit(1);
}
static void
handlesignals(void(*hdl)(int))
{
Use compound literals and explicit initialization I didn't really like the use of a "yes"-variable for setsockopt(). A better way is to use compound literals (part of C99). Another point are the structs. Instead of memsetting to zero we make use of the standard which guarantees that "unmentioned" fields are set to zero anyways. Just to note it here: The use of memset() also sets padding to zero, which is not guaranteed with the method of "unmentioned" fields. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-05-30 21:15:47 +00:00
struct sigaction sa = {
.sa_handler = hdl,
};
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
sigemptyset(&sa.sa_mask);
sigaction(SIGTERM, &sa, NULL);
sigaction(SIGHUP, &sa, NULL);
sigaction(SIGINT, &sa, NULL);
sigaction(SIGQUIT, &sa, NULL);
}
Improve tokenization for m- and v-flag parsing I wasn't happy with the tokenizer for the m- and v-flags, because it was handling space-separated input and there was no way to have spaces within the tokens themselves. This is a fine detail, but I didn't want to impose this restriction where it could be solved (path prefixes or folder names can very well contain spaces). Given it's a bit quirky to handle multiple arguments to a single flag in the command line, especially when parameters are optional, this alternative wasn't further considered and I instead implemented a tokenizer that allows escaping spaces with '\'. While at it, I clarified the manual regarding this point. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-24 20:50:39 +00:00
static int
spacetok(const char *s, char **t, size_t tlen)
{
const char *tok;
size_t i, j, toki, spaces;
/* fill token-array with NULL-pointers */
for (i = 0; i < tlen; i++) {
t[i] = NULL;
}
toki = 0;
/* don't allow NULL string or leading spaces */
if (!s || *s == ' ') {
return 1;
}
start:
/* skip spaces */
for (; *s == ' '; s++)
;
/* don't allow trailing spaces */
if (*s == '\0') {
goto err;
}
/* consume token */
for (tok = s, spaces = 0; ; s++) {
if (*s == '\\' && *(s + 1) == ' ') {
spaces++;
s++;
continue;
} else if (*s == ' ') {
/* end of token */
goto token;
} else if (*s == '\0') {
/* end of string */
goto token;
}
}
token:
if (toki >= tlen) {
goto err;
}
if (!(t[toki] = malloc(s - tok - spaces + 1))) {
die("malloc:");
}
for (i = 0, j = 0; j < s - tok - spaces + 1; i++, j++) {
if (tok[i] == '\\' && tok[i + 1] == ' ') {
i++;
}
t[toki][j] = tok[i];
}
t[toki][s - tok - spaces] = '\0';
toki++;
if (*s == ' ') {
s++;
goto start;
}
return 0;
err:
for (i = 0; i < tlen; i++) {
free(t[i]);
t[i] = NULL;
}
return 1;
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
static void
usage(void)
{
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
const char *opts = "[-u user] [-g group] [-n num] [-d dir] [-l] "
Update the documentation to reflect the new flag-centric usage
2018-03-05 08:51:29 +00:00
"[-i file] [-v vhost] ... [-m map] ...";
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
Make host parameters optional For me at least, the first valid configuration found by getaddrinfo works fine most of the time. Obviously if this isn't the configuration you want, you can specify the host explicitly.
2020-04-21 15:04:37 +00:00
die("usage: %s -p port [-h host] %s\n"
Update the documentation to reflect the new flag-centric usage
2018-03-05 08:51:29 +00:00
" %s -U file [-p port] %s", argv0,
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
opts, argv0, opts);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
int
main(int argc, char *argv[])
{
struct group *grp = NULL;
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
struct passwd *pwd = NULL;
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
struct rlimit rlim;
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
struct server srv = {
Reduce global state by localizing the server-struct The server-struct variable s was global, which made it readable and modifiable from any point in the code. Making it a local variable in main() instead and passing it as a pointer to constant memory to each function needing it makes much more sense and allows the compiler to warn us if we do try to modify it, which it wouldn't have before. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-17 09:37:25 +00:00
.docindex = "index.html",
};
Be extra pedantic again and remove all warnings Since now config.def.h has been reduced we don't have any more unused variables and thus the manual fiddling with error-levels is no longer necessary. To get a completely clean result though we have to still cast some variables here and there.
2018-03-04 23:30:53 +00:00
size_t i;
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
int insock, status = 0;
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
const char *err;
Improve tokenization for m- and v-flag parsing I wasn't happy with the tokenizer for the m- and v-flags, because it was handling space-separated input and there was no way to have spaces within the tokens themselves. This is a fine detail, but I didn't want to impose this restriction where it could be solved (path prefixes or folder names can very well contain spaces). Given it's a bit quirky to handle multiple arguments to a single flag in the command line, especially when parameters are optional, this alternative wasn't further considered and I instead implemented a tokenizer that allows escaping spaces with '\'. While at it, I clarified the manual regarding this point. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-24 20:50:39 +00:00
char *tok[4];
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
/* defaults */
int maxnprocs = 512;
char *servedir = ".";
char *user = "nobody";
char *group = "nogroup";
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
ARGBEGIN {
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'd':
servedir = EARGF(usage());
break;
case 'g':
group = EARGF(usage());
break;
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
case 'h':
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.host = EARGF(usage());
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
break;
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'i':
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.docindex = EARGF(usage());
if (strchr(srv.docindex, '/')) {
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
die("The document index must not contain '/'");
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
break;
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'l':
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.listdirs = 1;
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
break;
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'm':
Improve tokenization for m- and v-flag parsing I wasn't happy with the tokenizer for the m- and v-flags, because it was handling space-separated input and there was no way to have spaces within the tokens themselves. This is a fine detail, but I didn't want to impose this restriction where it could be solved (path prefixes or folder names can very well contain spaces). Given it's a bit quirky to handle multiple arguments to a single flag in the command line, especially when parameters are optional, this alternative wasn't further considered and I instead implemented a tokenizer that allows escaping spaces with '\'. While at it, I clarified the manual regarding this point. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-24 20:50:39 +00:00
if (spacetok(EARGF(usage()), tok, 3) || !tok[0] || !tok[1]) {
usage();
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
}
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
if (!(srv.map = reallocarray(srv.map, ++srv.map_len,
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
sizeof(struct map)))) {
die("reallocarray:");
}
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.map[srv.map_len - 1].from = tok[0];
srv.map[srv.map_len - 1].to = tok[1];
srv.map[srv.map_len - 1].chost = tok[2];
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
break;
case 'n':
maxnprocs = strtonum(EARGF(usage()), 1, INT_MAX, &err);
if (err) {
die("strtonum '%s': %s", EARGF(usage()), err);
}
break;
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'p':
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.port = EARGF(usage());
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
break;
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'U':
udsname = EARGF(usage());
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
break;
Sort flag-switch alphabetically Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-23 12:50:59 +00:00
case 'u':
user = EARGF(usage());
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
break;
case 'v':
Improve tokenization for m- and v-flag parsing I wasn't happy with the tokenizer for the m- and v-flags, because it was handling space-separated input and there was no way to have spaces within the tokens themselves. This is a fine detail, but I didn't want to impose this restriction where it could be solved (path prefixes or folder names can very well contain spaces). Given it's a bit quirky to handle multiple arguments to a single flag in the command line, especially when parameters are optional, this alternative wasn't further considered and I instead implemented a tokenizer that allows escaping spaces with '\'. While at it, I clarified the manual regarding this point. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-02-24 20:50:39 +00:00
if (spacetok(EARGF(usage()), tok, 4) || !tok[0] || !tok[1] ||
!tok[2]) {
usage();
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
}
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
if (!(srv.vhost = reallocarray(srv.vhost, ++srv.vhost_len,
sizeof(*srv.vhost)))) {
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
die("reallocarray:");
}
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.vhost[srv.vhost_len - 1].chost = tok[0];
srv.vhost[srv.vhost_len - 1].regex = tok[1];
srv.vhost[srv.vhost_len - 1].dir = tok[2];
srv.vhost[srv.vhost_len - 1].prefix = tok[3];
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
break;
default:
usage();
} ARGEND
if (argc) {
usage();
}
Make host parameters optional For me at least, the first valid configuration found by getaddrinfo works fine most of the time. Obviously if this isn't the configuration you want, you can specify the host explicitly.
2020-04-21 15:04:37 +00:00
/* can't have both host and UDS but must have one of port or UDS*/
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
if ((srv.host && udsname) || !(srv.port || udsname)) {
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
usage();
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
if (udsname && (!access(udsname, F_OK) || errno != ENOENT)) {
Make user/group-handling-code more robust As is there is no security issue, but _if_ we end up with a user or group set to NULL after e.g. ARGEND, we would've hit a null-pointer- dereference of grp in which is now line 311. What we want to check instead is if user or group are NULL respectively and throw an error. Consequently, we can remove the later checks in the drop root section, as we now guarantee that grp and pwd are not NULL. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 21:20:06 +00:00
die("UNIX-domain socket '%s': %s", udsname, errno ?
strerror(errno) : "File exists");
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
/* compile and check the supplied vhost regexes */
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
for (i = 0; i < srv.vhost_len; i++) {
if (regcomp(&srv.vhost[i].re, srv.vhost[i].regex,
Introduce flag-centric usage The config.h-interface has proven to be very effective for a lot of suckless tools, but it just does not make too much sense for a web server like quark. $ quark If you run multiple instances of it, you want to see in the command line (or top) what it does, and given the amount of options it's logical to just express them as options given in the command line. It also is a problem if you can modify quark via the config.h, contradicting the manual. Just saying "Well, then don't touch config.h" is also not good, as the vhost and map options were only exposed via this interface. What is left in config.h are mime-types and two constants relating to the incoming HTTP-header-limits. In order to introduce these changes, some structs and safe utility functions were added and imported from OpenBSD respectively.
2018-03-04 23:14:25 +00:00
REG_EXTENDED | REG_ICASE | REG_NOSUB)) {
die("regcomp '%s': invalid regex",
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
srv.vhost[i].regex);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
}
/* raise the process limit */
rlim.rlim_cur = rlim.rlim_max = maxnprocs;
if (setrlimit(RLIMIT_NPROC, &rlim) < 0) {
die("setrlimit RLIMIT_NPROC:");
}
/* validate user and group */
errno = 0;
Make user/group-handling-code more robust As is there is no security issue, but _if_ we end up with a user or group set to NULL after e.g. ARGEND, we would've hit a null-pointer- dereference of grp in which is now line 311. What we want to check instead is if user or group are NULL respectively and throw an error. Consequently, we can remove the later checks in the drop root section, as we now guarantee that grp and pwd are not NULL. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 21:20:06 +00:00
if (!user || !(pwd = getpwnam(user))) {
die("getpwnam '%s': %s", user ? user : "null",
errno ? strerror(errno) : "Entry not found");
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
errno = 0;
Make user/group-handling-code more robust As is there is no security issue, but _if_ we end up with a user or group set to NULL after e.g. ARGEND, we would've hit a null-pointer- dereference of grp in which is now line 311. What we want to check instead is if user or group are NULL respectively and throw an error. Consequently, we can remove the later checks in the drop root section, as we now guarantee that grp and pwd are not NULL. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 21:20:06 +00:00
if (!group || !(grp = getgrnam(group))) {
die("getgrnam '%s': %s", group ? group : "null",
errno ? strerror(errno) : "Entry not found");
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
Begin comment in lowercase Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-05 17:14:10 +00:00
/* open a new process group */
Add space in list Thanks Hiltjo! Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-05 21:27:05 +00:00
setpgid(0, 0);
Open a new process group before setting up signal handler When cleaning up after a caught signal, quark forwards the signal to all processes in the process group with `kill(0, ...)`. If we do not open up a new process group in the parent process, quarks parent will be sent a SIG... too, resulting it to shut down (especially considering that the parent process might run as root). As a result, if we set up the service with djb's excellent daemontools, `svc -d quark` will terminate the svscan-process and tear all other services down with it. See also <https://cr.yp.to/daemontools/faq/create.html#pgrphack>.
2018-07-02 02:08:08 +00:00
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
handlesignals(sigcleanup);
/* bind socket */
insock = udsname ? sock_get_uds(udsname, pwd->pw_uid, grp->gr_gid) :
Rename s to srv This improves readability a bit and helps iron out confusions with status-variables called s in other methods. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-23 09:02:38 +00:00
sock_get_ips(srv.host, srv.port);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
Remove three dead stores in main() Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 20:43:46 +00:00
switch (fork()) {
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
case -1:
warn("fork:");
break;
case 0:
/* restore default handlers */
handlesignals(SIG_DFL);
/* reap children automatically */
if (signal(SIGCHLD, SIG_IGN) == SIG_ERR) {
die("signal: Failed to set SIG_IGN on SIGCHLD");
}
Use pledge(2) and unveil(2) on OpenBSD It has been on my todo-list for a long time. I tested it on OpenBSD 6.5. Thanks Richard Ulmer for the reminder. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-09-23 14:56:28 +00:00
/* limit ourselves to reading the servedir and block further unveils */
eunveil(servedir, "r");
eunveil(NULL, NULL);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
/* chroot */
if (chdir(servedir) < 0) {
die("chdir '%s':", servedir);
}
if (chroot(".") < 0) {
die("chroot .:");
}
/* drop root */
Make user/group-handling-code more robust As is there is no security issue, but _if_ we end up with a user or group set to NULL after e.g. ARGEND, we would've hit a null-pointer- dereference of grp in which is now line 311. What we want to check instead is if user or group are NULL respectively and throw an error. Consequently, we can remove the later checks in the drop root section, as we now guarantee that grp and pwd are not NULL. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 21:20:06 +00:00
if (setgroups(1, &(grp->gr_gid)) < 0) {
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
die("setgroups:");
}
Make user/group-handling-code more robust As is there is no security issue, but _if_ we end up with a user or group set to NULL after e.g. ARGEND, we would've hit a null-pointer- dereference of grp in which is now line 311. What we want to check instead is if user or group are NULL respectively and throw an error. Consequently, we can remove the later checks in the drop root section, as we now guarantee that grp and pwd are not NULL. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 21:20:06 +00:00
if (setgid(grp->gr_gid) < 0) {
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
die("setgid:");
}
Make user/group-handling-code more robust As is there is no security issue, but _if_ we end up with a user or group set to NULL after e.g. ARGEND, we would've hit a null-pointer- dereference of grp in which is now line 311. What we want to check instead is if user or group are NULL respectively and throw an error. Consequently, we can remove the later checks in the drop root section, as we now guarantee that grp and pwd are not NULL. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 21:20:06 +00:00
if (setuid(pwd->pw_uid) < 0) {
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
die("setuid:");
}
Use pledge(2) and unveil(2) on OpenBSD It has been on my todo-list for a long time. I tested it on OpenBSD 6.5. Thanks Richard Ulmer for the reminder. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-09-23 14:56:28 +00:00
if (udsname) {
epledge("stdio rpath proc unix", NULL);
} else {
epledge("stdio rpath proc inet", NULL);
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
if (getuid() == 0) {
Refine error messages I forgot that they can fail with errno = 0, which indicates that the given entry was not found.
2018-02-04 20:40:51 +00:00
die("Won't run as root user", argv0);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
if (getgid() == 0) {
Refine error messages I forgot that they can fail with errno = 0, which indicates that the given entry was not found.
2018-02-04 20:40:51 +00:00
die("Won't run as root group", argv0);
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
}
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
/* accept incoming connections */
while (1) {
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
struct connection c = { 0 };
if ((c.fd = accept(insock, (struct sockaddr *)&c.ia,
&(socklen_t){sizeof(c.ia)})) < 0) {
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
warn("accept:");
continue;
}
/* fork and handle */
Remove three dead stores in main() Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 20:43:46 +00:00
switch (fork()) {
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
case 0:
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
serve(&c, &srv);
Actually exit the child process once finished serving Thanks Rodrigo S. Cañibano for noticing this!
2018-02-23 21:29:00 +00:00
exit(0);
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
break;
If fork fails, close the incoming socket
2018-02-23 21:40:47 +00:00
case -1:
warn("fork:");
/* fallthrough */
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
default:
/* close the connection in the parent */
Add logmsg() and refactor connection handling Also use compound literals for immediate pointers we don't use later (same as with setsockopt() in 32223c96bdee8f94980d3a1877a643a4d59f897f). Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-29 11:02:51 +00:00
close(c.fd);
Remove server-architecture specifics from serve() and add them to main() To make the code a bit more flexible, let's get rid of the forking-code in serve() and do it in main(). This way, we are more liberal in the future to possibly handle it in a different way.
2018-02-05 16:15:29 +00:00
}
}
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
exit(0);
default:
Use pledge(2) and unveil(2) on OpenBSD It has been on my todo-list for a long time. I tested it on OpenBSD 6.5. Thanks Richard Ulmer for the reminder. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-09-23 14:56:28 +00:00
/* limit ourselves even further while we are waiting */
if (udsname) {
Fix unveil(2) usage Thanks to the feedback by z0lqLA! I forgot that unveil(NULL, NULL) only locks further unveil calls when there has been at least _one_ prior call to unveil! To fix this, we reorder the calls and also make sure to call unveil() before we disallow unveils via pledge. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-03-20 19:35:34 +00:00
eunveil(udsname, "c");
eunveil(NULL, NULL);
Use pledge(2) and unveil(2) on OpenBSD It has been on my todo-list for a long time. I tested it on OpenBSD 6.5. Thanks Richard Ulmer for the reminder. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-09-23 14:56:28 +00:00
epledge("stdio cpath", NULL);
} else {
Fix unveil(2) usage Thanks to the feedback by z0lqLA! I forgot that unveil(NULL, NULL) only locks further unveil calls when there has been at least _one_ prior call to unveil! To fix this, we reorder the calls and also make sure to call unveil() before we disallow unveils via pledge. Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-03-20 19:35:34 +00:00
eunveil("/", "");
eunveil(NULL, NULL);
Use pledge(2) and unveil(2) on OpenBSD It has been on my todo-list for a long time. I tested it on OpenBSD 6.5. Thanks Richard Ulmer for the reminder. Signed-off-by: Laslo Hunhold <dev@frign.de>
2019-09-23 14:56:28 +00:00
epledge("stdio", NULL);
}
Remove three dead stores in main() Signed-off-by: Laslo Hunhold <dev@frign.de>
2020-08-09 20:43:46 +00:00
while (wait(&status) > 0)
Refactor the single source file into multiple modules And many other things, too many to list here. For example, it now properly logs uds instead of erroring out. Separating concerns in many places definitely improves the readability.
2018-02-04 20:27:33 +00:00
;
}
cleanup();
return status;
}
Reference in a new issue Copy permalink