2 * Copyright (c) 2020-2022 Tracey Emery <tracey@traceyemery.net>
3 * Copyright (c) 2013 David Gwynne <dlg@openbsd.org>
4 * Copyright (c) 2013 Florian Obser <florian@openbsd.org>
6 * Permission to use, copy, modify, and distribute this software for any
7 * purpose with or without fee is hereby granted, provided that the above
8 * copyright notice and this permission notice appear in all copies.
10 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
11 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
12 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
13 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
14 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19 #include <arpa/inet.h>
20 #include <sys/queue.h>
21 #include <sys/socket.h>
22 #include <sys/types.h>
35 #include "got_error.h"
41 size_t fcgi_parse_record(uint8_t *, size_t, struct request *);
42 void fcgi_parse_begin_request(uint8_t *, uint16_t, struct request *,
44 void fcgi_parse_params(uint8_t *, uint16_t, struct request *, uint16_t);
45 int fcgi_send_response(struct request *, int, const void *, size_t);
47 void dump_fcgi_record_header(const char *, struct fcgi_record_header *);
48 void dump_fcgi_begin_request_body(const char *,
49 struct fcgi_begin_request_body *);
50 void dump_fcgi_end_request_body(const char *,
51 struct fcgi_end_request_body *);
53 extern int cgi_inflight;
54 extern volatile int client_cnt;
57 fcgi_request(int fd, short events, void *arg)
59 struct request *c = arg;
63 n = read(fd, c->buf + c->buf_pos + c->buf_len,
64 FCGI_RECORD_SIZE - c->buf_pos-c->buf_len);
78 log_debug("closed connection");
87 * Parse the records as they are received. Per the FastCGI
88 * specification, the server need only receive the FastCGI
89 * parameter records in full; it is free to begin execution
90 * at that point, which is what happens here.
93 parsed = fcgi_parse_record(c->buf + c->buf_pos, c->buf_len, c);
98 } while (parsed > 0 && c->buf_len > 0);
100 /* Make space for further reads */
102 if (c->buf_len > 0) {
103 bcopy(c->buf + c->buf_pos, c->buf, c->buf_len);
108 fcgi_cleanup_request(c);
112 fcgi_parse_record(uint8_t *buf, size_t n, struct request *c)
114 struct fcgi_record_header *h;
116 if (n < sizeof(struct fcgi_record_header))
119 h = (struct fcgi_record_header*) buf;
121 dump_fcgi_record("", h);
123 if (n < sizeof(struct fcgi_record_header) + ntohs(h->content_len)
128 log_warn("wrong version");
131 case FCGI_BEGIN_REQUEST:
132 fcgi_parse_begin_request(buf +
133 sizeof(struct fcgi_record_header),
134 ntohs(h->content_len), c, ntohs(h->id));
137 fcgi_parse_params(buf + sizeof(struct fcgi_record_header),
138 ntohs(h->content_len), c, ntohs(h->id));
141 case FCGI_ABORT_REQUEST:
142 if (c->sock->client_status != CLIENT_DISCONNECT &&
143 c->outbuf_len != 0) {
144 fcgi_send_response(c, FCGI_STDOUT, c->outbuf,
148 fcgi_create_end_record(c);
149 fcgi_cleanup_request(c);
152 log_warn("unimplemented type %d", h->type);
156 return (sizeof(struct fcgi_record_header) + ntohs(h->content_len)
161 fcgi_parse_begin_request(uint8_t *buf, uint16_t n,
162 struct request *c, uint16_t id)
164 /* XXX -- FCGI_CANT_MPX_CONN */
165 if (c->request_started) {
166 log_warn("unexpected FCGI_BEGIN_REQUEST, ignoring");
170 if (n != sizeof(struct fcgi_begin_request_body)) {
171 log_warn("wrong size %d != %lu", n,
172 sizeof(struct fcgi_begin_request_body));
176 c->request_started = 1;
181 fcgi_parse_params(uint8_t *buf, uint16_t n, struct request *c, uint16_t id)
183 uint32_t name_len, val_len;
186 if (!c->request_started) {
187 log_warn("FCGI_PARAMS without FCGI_BEGIN_REQUEST, ignoring");
192 log_warn("unexpected id, ignoring");
197 gotweb_process_request(c);
202 if (buf[0] >> 7 == 0) {
208 name_len = ((buf[0] & 0x7f) << 24) +
209 (buf[1] << 16) + (buf[2] << 8) + buf[3];
219 if (buf[0] >> 7 == 0) {
225 val_len = ((buf[0] & 0x7f) << 24) +
226 (buf[1] << 16) + (buf[2] << 8) +
234 if (n < name_len + val_len)
237 val = buf + name_len;
239 if (c->querystring[0] == '\0' &&
240 val_len < MAX_QUERYSTRING &&
242 strncmp(buf, "QUERY_STRING", 12) == 0) {
243 memcpy(c->querystring, val, val_len);
244 c->querystring[val_len] = '\0';
247 if (c->http_host[0] == '\0' &&
248 val_len < GOTWEBD_MAXTEXT &&
250 strncmp(buf, "HTTP_HOST", 9) == 0) {
251 memcpy(c->http_host, val, val_len);
252 c->http_host[val_len] = '\0';
255 * lazily get subdomain
256 * will only get domain if no subdomain exists
257 * this can still work if gotweb server name is the same
259 sd = strchr(c->http_host, '.');
264 if (c->document_uri[0] == '\0' &&
265 val_len < MAX_DOCUMENT_URI &&
267 strncmp(buf, "DOCUMENT_URI", 12) == 0) {
268 memcpy(c->document_uri, val, val_len);
269 c->document_uri[val_len] = '\0';
272 if (c->server_name[0] == '\0' &&
273 val_len < MAX_SERVER_NAME &&
275 strncmp(buf, "SERVER_NAME", 11) == 0) {
276 memcpy(c->server_name, val, val_len);
277 c->server_name[val_len] = '\0';
281 strncmp(buf, "HTTPS", 5) == 0)
284 buf += name_len + val_len;
285 n -= name_len - val_len;
290 fcgi_timeout(int fd, short events, void *arg)
292 fcgi_cleanup_request((struct request*) arg);
296 fcgi_puts(struct template *tp, const char *str)
300 return fcgi_gen_binary_response(tp->tp_arg, str, strlen(str));
304 fcgi_putc(struct template *tp, int ch)
307 return fcgi_gen_binary_response(tp->tp_arg, &c, 1);
311 fcgi_vprintf(struct request *c, const char *fmt, va_list ap)
316 r = vasprintf(&str, fmt, ap);
318 log_warn("%s: asprintf", __func__);
322 r = fcgi_gen_binary_response(c, str, r);
328 fcgi_printf(struct request *c, const char *fmt, ...)
334 r = fcgi_vprintf(c, fmt, ap);
341 fcgi_gen_binary_response(struct request *c, const uint8_t *data, int len)
345 if (c->sock->client_status == CLIENT_DISCONNECT)
348 if (data == NULL || len == 0)
352 * special case: send big replies -like blobs- directly
355 if (len > sizeof(c->outbuf)) {
356 if (c->outbuf_len > 0) {
357 fcgi_send_response(c, FCGI_STDOUT,
358 c->outbuf, c->outbuf_len);
361 return fcgi_send_response(c, FCGI_STDOUT, data, len);
364 if (len < sizeof(c->outbuf) - c->outbuf_len) {
365 memcpy(c->outbuf + c->outbuf_len, data, len);
366 c->outbuf_len += len;
370 r = fcgi_send_response(c, FCGI_STDOUT, c->outbuf, c->outbuf_len);
374 memcpy(c->outbuf, data, len);
380 send_response(struct request *c, int type, const uint8_t *data,
383 static const uint8_t padding[FCGI_PADDING_SIZE];
384 struct fcgi_record_header header;
388 size_t padded_len, tot;
389 int i, err = 0, th = 2000;
394 memset(&header, 0, sizeof(header));
397 header.id = htons(c->id);
398 header.content_len = htons(len);
400 /* The FastCGI spec suggests to align the output buffer */
401 tot = sizeof(header) + len;
402 padded_len = FCGI_ALIGN(tot);
403 if (padded_len > tot) {
404 header.padding_len = padded_len - tot;
405 tot += header.padding_len;
408 iov[0].iov_base = &header;
409 iov[0].iov_len = sizeof(header);
411 iov[1].iov_base = (void *)data;
412 iov[1].iov_len = len;
414 iov[2].iov_base = (void *)padding;
415 iov[2].iov_len = header.padding_len;
417 dump_fcgi_record("resp ", &header);
420 * XXX: add some simple write heuristics here
421 * On slower VMs, spotty connections, etc., we don't want to go right to
422 * disconnect. Let's at least try to write the data a few times before
426 nw = writev(c->fd, iov, nitems(iov));
428 c->sock->client_status = CLIENT_DISCONNECT;
433 if (errno == EAGAIN && err < th) {
434 nanosleep(&ts, NULL);
437 log_warn("%s: write failure", __func__);
438 c->sock->client_status = CLIENT_DISCONNECT;
443 log_debug("%s: partial write: %zu vs %zu", __func__,
447 for (i = 0; i < nitems(iov); ++i) {
448 if (nw < iov[i].iov_len) {
449 iov[i].iov_base += nw;
450 iov[i].iov_len -= nw;
453 nw -= iov[i].iov_len;
462 fcgi_send_response(struct request *c, int type, const void *data,
465 if (c->sock->client_status == CLIENT_DISCONNECT)
468 while (len > FCGI_CONTENT_SIZE) {
469 if (send_response(c, type, data, len) == -1)
472 data += FCGI_CONTENT_SIZE;
473 len -= FCGI_CONTENT_SIZE;
479 return send_response(c, type, data, len);
483 fcgi_create_end_record(struct request *c)
485 struct fcgi_end_request_body end_request;
487 memset(&end_request, 0, sizeof(end_request));
488 end_request.app_status = htonl(0); /* script status */
489 end_request.protocol_status = FCGI_REQUEST_COMPLETE;
491 fcgi_send_response(c, FCGI_END_REQUEST, &end_request,
492 sizeof(end_request));
496 fcgi_cleanup_request(struct request *c)
501 evtimer_del(&c->tmo);
502 if (event_initialized(&c->ev))
506 template_free(c->tp);
507 gotweb_free_transport(c->t);
512 dump_fcgi_record(const char *p, struct fcgi_record_header *h)
514 dump_fcgi_record_header(p, h);
516 if (h->type == FCGI_BEGIN_REQUEST)
517 dump_fcgi_begin_request_body(p,
518 (struct fcgi_begin_request_body *)(h + 1));
519 else if (h->type == FCGI_END_REQUEST)
520 dump_fcgi_end_request_body(p,
521 (struct fcgi_end_request_body *)(h + 1));
525 dump_fcgi_record_header(const char* p, struct fcgi_record_header *h)
527 log_debug("%sversion: %d", p, h->version);
528 log_debug("%stype: %d", p, h->type);
529 log_debug("%srequestId: %d", p, ntohs(h->id));
530 log_debug("%scontentLength: %d", p, ntohs(h->content_len));
531 log_debug("%spaddingLength: %d", p, h->padding_len);
532 log_debug("%sreserved: %d", p, h->reserved);
536 dump_fcgi_begin_request_body(const char *p, struct fcgi_begin_request_body *b)
538 log_debug("%srole %d", p, ntohs(b->role));
539 log_debug("%sflags %d", p, b->flags);
543 dump_fcgi_end_request_body(const char *p, struct fcgi_end_request_body *b)
545 log_debug("%sappStatus: %d", p, ntohl(b->app_status));
546 log_debug("%sprotocolStatus: %d", p, b->protocol_status);
