2 * Copyright (c) 2021, 2022, 2023 Omar Polo <op@omarpolo.com>
4 * Permission to use, copy, modify, and distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
34 #define MIN(a, b) ((a) < (b) ? (a) : (b))
37 #define nitems(_a) (sizeof((_a)) / sizeof((_a)[0]))
41 static struct event siginfo;
43 static struct event sigusr2;
45 int connected_clients;
48 * This function is not publicy exported because it is a hack until libtls
49 * has a proper privsep setup.
51 void tls_config_use_fake_private_key(struct tls_config *);
53 static inline int matches(const char*, const char*);
55 static void handle_handshake(int, short, void*);
56 static void fmtbuf(char *, size_t, const char *, struct client *,
58 static int apply_block_return(struct client*);
59 static int check_matching_certificate(X509_STORE *, struct client *);
60 static int apply_reverse_proxy(struct client *);
61 static int apply_fastcgi(struct client*);
62 static int apply_require_ca(struct client*);
63 static void open_dir(struct client*);
64 static void redirect_canonical_dir(struct client*);
66 static void client_tls_readcb(int, short, void *);
67 static void client_tls_writecb(int, short, void *);
69 static void client_read(struct bufferevent *, void *);
70 void client_write(struct bufferevent *, void *);
71 static void client_error(struct bufferevent *, short, void *);
73 static void client_close_ev(int, short, void *);
75 static void handle_siginfo(int, short, void*);
77 static int server_dispatch_parent(int, struct privsep_proc *, struct imsg *);
78 static int server_dispatch_crypto(int, struct privsep_proc *, struct imsg *);
79 static int server_dispatch_logger(int, struct privsep_proc *, struct imsg *);
81 static struct privsep_proc procs[] = {
82 { "parent", PROC_PARENT, server_dispatch_parent },
83 { "crypto", PROC_CRYPTO, server_dispatch_crypto },
84 { "logger", PROC_LOGGER, server_dispatch_logger },
87 static uint32_t server_client_id;
89 struct client_tree_id clients;
92 match_addr(struct address *target, struct address *source)
94 return (target->ai_flags == source->ai_flags &&
95 target->ai_family == source->ai_family &&
96 target->ai_socktype == source->ai_socktype &&
97 target->ai_protocol == source->ai_protocol &&
98 target->slen == source->slen &&
99 !memcmp(&target->ss, &source->ss, target->slen));
103 matches(const char *pattern, const char *path)
107 return !fnmatch(pattern, path, 0);
111 match_host(struct vhost *v, struct client *c)
114 struct address *addr;
116 TAILQ_FOREACH(addr, &v->addrs, addrs)
117 if (match_addr(addr, c->addr))
122 if (matches(v->domain, c->domain))
125 TAILQ_FOREACH(a, &v->aliases, aliases)
126 if (matches(a->alias, c->domain))
133 vhost_lang(struct vhost *v, const char *path)
135 struct location *loc;
137 if (v == NULL || path == NULL)
140 loc = TAILQ_FIRST(&v->locations);
141 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
142 if (*loc->lang != '\0') {
143 if (matches(loc->match, path))
148 loc = TAILQ_FIRST(&v->locations);
149 if (*loc->lang == '\0')
155 vhost_default_mime(struct vhost *v, const char *path)
157 struct location *loc;
158 const char *default_mime = "application/octet-stream";
160 if (v == NULL || path == NULL)
163 loc = TAILQ_FIRST(&v->locations);
164 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
165 if (*loc->default_mime != '\0') {
166 if (matches(loc->match, path))
167 return loc->default_mime;
171 loc = TAILQ_FIRST(&v->locations);
172 if (*loc->default_mime != '\0')
173 return loc->default_mime;
178 vhost_index(struct vhost *v, const char *path)
180 struct location *loc;
181 const char *index = "index.gmi";
183 if (v == NULL || path == NULL)
186 loc = TAILQ_FIRST(&v->locations);
187 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
188 if (*loc->index != '\0') {
189 if (matches(loc->match, path))
194 loc = TAILQ_FIRST(&v->locations);
195 if (*loc->index != '\0')
201 vhost_auto_index(struct vhost *v, const char *path)
203 struct location *loc;
205 if (v == NULL || path == NULL)
208 loc = TAILQ_FIRST(&v->locations);
209 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
210 if (loc->auto_index != 0) {
211 if (matches(loc->match, path))
212 return loc->auto_index == 1;
216 loc = TAILQ_FIRST(&v->locations);
217 return loc->auto_index == 1;
221 vhost_block_return(struct vhost *v, const char *path, int *code, const char **fmt)
223 struct location *loc;
225 if (v == NULL || path == NULL)
228 loc = TAILQ_FIRST(&v->locations);
229 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
230 if (loc->block_code != 0) {
231 if (matches(loc->match, path)) {
232 *code = loc->block_code;
233 *fmt = loc->block_fmt;
239 loc = TAILQ_FIRST(&v->locations);
240 *code = loc->block_code;
241 *fmt = loc->block_fmt;
242 return loc->block_code != 0;
246 vhost_fastcgi(struct vhost *v, const char *path)
248 struct location *loc;
249 int force_disable = 0;
251 if (v == NULL || path == NULL)
254 loc = TAILQ_FIRST(&v->locations);
255 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
257 if (matches(loc->match, path))
259 if (loc->nofcgi && matches(loc->match, path))
266 loc = TAILQ_FIRST(&v->locations);
267 return loc->fcgi == -1 ? NULL : loc;
271 vhost_dirfd(struct vhost *v, const char *path, size_t *retloc)
273 struct location *loc;
276 if (v == NULL || path == NULL)
279 loc = TAILQ_FIRST(&v->locations);
280 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
282 if (loc->dirfd != -1)
283 if (matches(loc->match, path)) {
290 loc = TAILQ_FIRST(&v->locations);
295 vhost_strip(struct vhost *v, const char *path)
297 struct location *loc;
299 if (v == NULL || path == NULL)
302 loc = TAILQ_FIRST(&v->locations);
303 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
304 if (loc->strip != 0) {
305 if (matches(loc->match, path))
310 loc = TAILQ_FIRST(&v->locations);
315 vhost_require_ca(struct vhost *v, const char *path)
317 struct location *loc;
319 if (v == NULL || path == NULL)
322 loc = TAILQ_FIRST(&v->locations);
323 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
324 if (loc->reqca != NULL) {
325 if (matches(loc->match, path))
330 loc = TAILQ_FIRST(&v->locations);
335 vhost_disable_log(struct vhost *v, const char *path)
337 struct location *loc;
339 if (v == NULL || path == NULL)
342 loc = TAILQ_FIRST(&v->locations);
343 while ((loc = TAILQ_NEXT(loc, locations)) != NULL) {
344 if (loc->disable_log && matches(loc->match, path))
348 loc = TAILQ_FIRST(&v->locations);
349 return loc->disable_log;
353 mark_nonblock(int fd)
357 if ((flags = fcntl(fd, F_GETFL)) == -1)
358 fatal("fcntl(F_GETFL)");
359 if (fcntl(fd, F_SETFL, flags | O_NONBLOCK) == -1)
360 fatal("fcntl(F_SETFL)");
364 handle_handshake(int fd, short ev, void *d)
366 struct client *c = d;
367 struct conf *conf = c->conf;
369 const char *servname;
370 const char *parse_err = "unknown error";
372 switch (tls_handshake(c->ctx)) {
373 case 0: /* success */
376 log_warnx("(%s:%s) tls_handshake failed: %s",
377 c->rhost, c->rserv, tls_error(c->ctx));
380 case TLS_WANT_POLLIN:
381 event_once(c->fd, EV_READ, handle_handshake, c, NULL);
383 case TLS_WANT_POLLOUT:
384 event_once(c->fd, EV_WRITE, handle_handshake, c, NULL);
391 c->bev = bufferevent_new(fd, client_read, client_write,
394 fatal("%s: failed to allocate client buffer", __func__);
396 event_set(&c->bev->ev_read, c->fd, EV_READ,
397 client_tls_readcb, c->bev);
398 event_set(&c->bev->ev_write, c->fd, EV_WRITE,
399 client_tls_writecb, c->bev);
402 evbuffer_unfreeze(c->bev->input, 0);
403 evbuffer_unfreeze(c->bev->output, 1);
406 if ((servname = tls_conn_servername(c->ctx)) == NULL) {
407 log_debug("handshake: missing SNI");
411 if (!puny_decode(servname, c->domain, sizeof(c->domain), &parse_err)) {
412 log_info("puny_decode: %s", parse_err);
416 TAILQ_FOREACH(h, &conf->hosts, vhosts)
417 if (match_host(h, c))
420 log_debug("handshake: SNI: \"%s\"; decoded: \"%s\"; matched: \"%s\"",
421 servname != NULL ? servname : "(null)",
423 h != NULL ? h->domain : "(null)");
427 bufferevent_enable(c->bev, EV_READ);
432 start_reply(c, BAD_REQUEST, "Wrong/malformed host or missing SNI");
436 fmtbuf(char *buf, size_t buflen, const char *fmt, struct client *c,
443 memset(tmp, 0, sizeof(tmp));
444 for (i = 0; *fmt; ++fmt) {
445 if (i == sizeof(tmp)-1 || *fmt == '%') {
446 strlcat(buf, tmp, buflen);
447 memset(tmp, 0, sizeof(tmp));
458 strlcat(buf, "%", buflen);
462 strlcat(buf, "/", buflen);
463 strlcat(buf, path, buflen);
466 strlcat(buf, c->iri.query, buflen);
469 snprintf(tmp, sizeof(tmp), "%d", c->addr->port);
470 strlcat(buf, tmp, buflen);
471 memset(tmp, 0, sizeof(tmp));
474 strlcat(buf, c->domain, buflen);
477 log_warnx("%s: unknown fmt specifier %c",
483 strlcat(buf, tmp, buflen);
486 /* 1 if a matching `block return' (and apply it), 0 otherwise */
488 apply_block_return(struct client *c)
490 char buf[GEMINI_URL_LEN];
491 const char *fmt, *path;
494 if (!vhost_block_return(c->host, c->iri.path, &code, &fmt))
497 path = strip_path(c->iri.path, vhost_strip(c->host, c->iri.path));
498 fmtbuf(buf, sizeof(buf), fmt, c, path);
500 start_reply(c, code, buf);
504 static struct proxy *
505 matched_proxy(struct client *c)
512 TAILQ_FOREACH(p, &c->host->proxies, proxies) {
513 if (*(proto = p->match_proto) == '\0')
515 if (*(host = p->match_host) == '\0')
517 if (*(port = p->match_port) == '\0')
520 if (matches(proto, c->iri.schema) &&
521 matches(host, c->domain) &&
522 matches(port, c->iri.port))
530 check_matching_certificate(X509_STORE *store, struct client *c)
535 if (!tls_peer_cert_provided(c->ctx)) {
536 start_reply(c, CLIENT_CERT_REQ, "client certificate required");
540 cert = tls_peer_cert_chain_pem(c->ctx, &len);
541 if (!validate_against_ca(store, cert, len)) {
542 start_reply(c, CERT_NOT_AUTH, "certificate not authorised");
550 proxy_socket(struct client *c, const char *host, const char *port)
552 struct addrinfo hints, *res, *res0;
553 int r, sock, save_errno;
554 const char *cause = NULL;
556 memset(&hints, 0, sizeof(hints));
557 hints.ai_family = AF_UNSPEC;
558 hints.ai_socktype = SOCK_STREAM;
560 /* XXX: asr_run? :> */
561 r = getaddrinfo(host, port, &hints, &res0);
563 log_warnx("getaddrinfo(\"%s\", \"%s\"): %s",
564 host, port, gai_strerror(r));
568 for (res = res0; res; res = res->ai_next) {
569 sock = socket(res->ai_family, res->ai_socktype,
576 if (connect(sock, res->ai_addr, res->ai_addrlen) == -1) {
589 log_warn("can't connect to %s:%s: %s", host, port, cause);
596 /* 1 if matching a proxy relay-to (and apply it), 0 otherwise */
598 apply_reverse_proxy(struct client *c)
602 if ((p = matched_proxy(c)) == NULL)
607 if (p->reqca != NULL && check_matching_certificate(p->reqca, c))
610 log_debug("opening proxy connection for %s:%s",
613 if ((c->pfd = proxy_socket(c, p->host, p->port)) == -1) {
614 start_reply(c, PROXY_ERROR, "proxy error");
618 mark_nonblock(c->pfd);
619 if (proxy_init(c) == -1)
620 start_reply(c, PROXY_ERROR, "proxy error");
626 fcgi_open_sock(struct fcgi *f)
628 struct sockaddr_un addr;
631 if ((fd = socket(AF_UNIX, SOCK_STREAM, 0)) == -1) {
636 memset(&addr, 0, sizeof(addr));
637 addr.sun_family = AF_UNIX;
638 strlcpy(addr.sun_path, f->path, sizeof(addr.sun_path));
640 if (connect(fd, (struct sockaddr*)&addr, sizeof(addr)) == -1) {
641 log_warn("failed to connect to %s", f->path);
650 fcgi_open_conn(struct fcgi *f)
652 struct addrinfo hints, *servinfo, *p;
653 int r, sock, save_errno;
654 const char *cause = NULL;
656 memset(&hints, 0, sizeof(hints));
657 hints.ai_family = AF_UNSPEC;
658 hints.ai_socktype = SOCK_STREAM;
659 hints.ai_flags = AI_ADDRCONFIG;
661 if ((r = getaddrinfo(f->path, f->port, &hints, &servinfo)) != 0) {
662 log_warnx("getaddrinfo %s:%s: %s", f->path, f->port,
667 for (p = servinfo; p != NULL; p = p->ai_next) {
668 sock = socket(p->ai_family, p->ai_socktype, p->ai_protocol);
673 if (connect(sock, p->ai_addr, p->ai_addrlen) == -1) {
684 log_warn("couldn't connect to %s:%s: %s", f->path, f->port,
689 freeaddrinfo(servinfo);
693 /* 1 if matching `fcgi' (and apply it), 0 otherwise */
695 apply_fastcgi(struct client *c)
699 struct location *loc;
701 if ((loc = vhost_fastcgi(c->host, c->iri.path)) == NULL)
704 TAILQ_FOREACH(f, &c->conf->fcgi, fcgi) {
711 log_warnx("can't find fcgi #%d", loc->fcgi);
715 log_debug("opening fastcgi connection for (%s,%s)",
718 if (*f->port == '\0')
719 c->pfd = fcgi_open_sock(f);
721 c->pfd = fcgi_open_conn(f);
724 start_reply(c, CGI_ERROR, "CGI error");
728 mark_nonblock(c->pfd);
730 c->cgibev = bufferevent_new(c->pfd, fcgi_read, fcgi_write,
732 if (c->cgibev == NULL) {
733 start_reply(c, TEMP_FAILURE, "internal server error");
737 bufferevent_enable(c->cgibev, EV_READ|EV_WRITE);
743 /* 1 if matching `require client ca' fails (and apply it), 0 otherwise */
745 apply_require_ca(struct client *c)
749 if ((store = vhost_require_ca(c->host, c->iri.path)) == NULL)
751 return check_matching_certificate(store, c);
755 server_dir_listing(struct client *c)
759 root = !strcmp(c->iri.path, "/") || *c->iri.path == '\0';
761 if (!vhost_auto_index(c->host, c->iri.path)) {
762 start_reply(c, NOT_FOUND, "not found");
766 c->dirlen = scandir_fd(c->pfd, &c->dir,
767 root ? select_non_dotdot : select_non_dot,
769 if (c->dirlen == -1) {
770 log_warn("scandir_fd(%d) (vhost:%s) %s",
771 c->pfd, c->host->domain, c->iri.path);
772 start_reply(c, TEMP_FAILURE, "internal server error");
776 c->type = REQUEST_DIR;
777 start_reply(c, SUCCESS, "text/gemini");
778 evbuffer_add_printf(EVBUFFER_OUTPUT(c->bev),
779 "# Index of /%s\n\n", c->iri.path);
783 open_dir(struct client *c)
790 if (*c->iri.path != '\0' && !ends_with(c->iri.path, "/")) {
791 redirect_canonical_dir(c);
795 index = vhost_index(c->host, c->iri.path);
796 fd = openat(c->pfd, index, O_RDONLY);
798 server_dir_listing(c);
802 if (fstat(fd, &sb) == -1) {
805 start_reply(c, TEMP_FAILURE, "internal server error");
809 if (!S_ISREG(sb.st_mode)) {
811 server_dir_listing(c);
815 strlcpy(path, c->iri.path, sizeof(path));
816 strlcat(path, index, sizeof(path));
820 c->type = REQUEST_FILE;
821 start_reply(c, SUCCESS, mime(c->conf, c->host, path));
825 redirect_canonical_dir(struct client *c)
827 char buf[GEMINI_URL_LEN];
830 r = snprintf(buf, sizeof(buf), "/%s/", c->iri.path);
831 if (r < 0 || (size_t)r >= sizeof(buf)) {
832 start_reply(c, TEMP_FAILURE, "internal server error");
836 start_reply(c, TEMP_REDIRECT, buf);
840 client_tls_readcb(int fd, short event, void *d)
842 struct bufferevent *bufev = d;
843 struct client *client = bufev->cbarg;
846 int what = EVBUFFER_READ;
847 int howmuch = IBUF_READ_SIZE;
848 char buf[IBUF_READ_SIZE];
850 if (event == EV_TIMEOUT) {
851 what |= EVBUFFER_TIMEOUT;
855 if (bufev->wm_read.high != 0)
856 howmuch = MIN(sizeof(buf), bufev->wm_read.high);
858 switch (ret = tls_read(client->ctx, buf, howmuch)) {
859 case TLS_WANT_POLLIN:
860 case TLS_WANT_POLLOUT:
863 what |= EVBUFFER_ERROR;
869 what |= EVBUFFER_EOF;
873 if (evbuffer_add(bufev->input, buf, len) == -1) {
874 what |= EVBUFFER_ERROR;
878 event_add(&bufev->ev_read, NULL);
879 if (bufev->wm_read.low != 0 && len < bufev->wm_read.low)
881 if (bufev->wm_read.high != 0 && len > bufev->wm_read.high) {
883 * here we could implement a read pressure policy.
887 if (bufev->readcb != NULL)
888 (*bufev->readcb)(bufev, bufev->cbarg);
893 event_add(&bufev->ev_read, NULL);
897 (*bufev->errorcb)(bufev, what, bufev->cbarg);
901 client_tls_writecb(int fd, short event, void *d)
903 struct bufferevent *bufev = d;
904 struct client *client = bufev->cbarg;
907 short what = EVBUFFER_WRITE;
909 if (event == EV_TIMEOUT) {
910 what |= EVBUFFER_TIMEOUT;
914 if (EVBUFFER_LENGTH(bufev->output) != 0) {
915 ret = tls_write(client->ctx,
916 EVBUFFER_DATA(bufev->output),
917 EVBUFFER_LENGTH(bufev->output));
919 case TLS_WANT_POLLIN:
920 case TLS_WANT_POLLOUT:
923 what |= EVBUFFER_ERROR;
927 evbuffer_drain(bufev->output, len);
930 if (EVBUFFER_LENGTH(bufev->output) != 0)
931 event_add(&bufev->ev_write, NULL);
933 if (bufev->writecb != NULL &&
934 EVBUFFER_LENGTH(bufev->output) <= bufev->wm_write.low)
935 (*bufev->writecb)(bufev, bufev->cbarg);
939 event_add(&bufev->ev_write, NULL);
942 log_warnx("tls error: %s", tls_error(client->ctx));
943 (*bufev->errorcb)(bufev, what, bufev->cbarg);
947 client_read(struct bufferevent *bev, void *d)
950 struct client *c = d;
951 struct evbuffer *src = EVBUFFER_INPUT(bev);
952 const char *path, *p, *parse_err = "invalid request";
953 char decoded[DOMAIN_NAME_LEN];
955 bufferevent_disable(bev, EVBUFFER_READ);
958 * libevent2 can still somehow call this function, even
959 * though I never enable EV_READ in the bufferevent. If
960 * that's the case, bail out.
962 if (c->type != REQUEST_UNDECIDED)
965 /* max url len + \r\n */
966 if (EVBUFFER_LENGTH(src) > 1024 + 2) {
967 log_debug("too much data received");
968 start_reply(c, BAD_REQUEST, "bad request");
972 c->req = evbuffer_readln(src, &c->reqlen, EVBUFFER_EOL_CRLF_STRICT);
973 if (c->req == NULL) {
974 /* not enough data yet. */
975 bufferevent_enable(bev, EVBUFFER_READ);
978 if (c->reqlen > 1024+2) {
979 log_debug("URL too long");
980 start_reply(c, BAD_REQUEST, "bad request");
984 if (!parse_iri(c->req, &c->iri, &parse_err) ||
985 !puny_decode(c->iri.host, decoded, sizeof(decoded), &parse_err)) {
986 log_debug("IRI parse error: %s", parse_err);
987 start_reply(c, BAD_REQUEST, "bad request");
991 if (apply_reverse_proxy(c))
994 /* ignore the port number */
995 if (strcmp(c->iri.schema, "gemini") ||
996 strcmp(decoded, c->domain)) {
997 start_reply(c, PROXY_REFUSED, "won't proxy request");
1001 if (apply_require_ca(c) ||
1002 apply_block_return(c)||
1007 p = strip_path(path, vhost_strip(c->host, path));
1013 c->pfd = openat(vhost_dirfd(c->host, path, &c->loc), p, O_RDONLY);
1015 if (errno == EACCES)
1016 log_info("can't open %s: %s", p, strerror(errno));
1017 start_reply(c, NOT_FOUND, "not found");
1021 if (fstat(c->pfd, &sb) == -1) {
1022 log_warnx("fstat %s", path);
1023 start_reply(c, TEMP_FAILURE, "internal server error");
1027 if (S_ISDIR(sb.st_mode)) {
1032 c->type = REQUEST_FILE;
1033 start_reply(c, SUCCESS, mime(c->conf, c->host, p));
1037 client_write(struct bufferevent *bev, void *d)
1039 struct client *c = d;
1040 struct evbuffer *out = EVBUFFER_OUTPUT(bev);
1046 case REQUEST_UNDECIDED:
1048 * Ignore spurious calls when we still don't have idea
1049 * what to do with the request.
1054 if ((r = read(c->pfd, buf, sizeof(buf))) == -1) {
1056 client_error(bev, EVBUFFER_ERROR, c);
1058 } else if (r == 0) {
1061 } else if (r != sizeof(buf))
1062 c->type = REQUEST_DONE;
1063 bufferevent_write(bev, buf, r);
1067 /* TODO: handle big big directories better */
1068 for (c->diroff = 0; c->diroff < c->dirlen; ++c->diroff) {
1069 const char *sufx = "";
1071 encode_path(nam, sizeof(nam),
1072 c->dir[c->diroff]->d_name);
1073 if (c->dir[c->diroff]->d_type == DT_DIR)
1075 evbuffer_add_printf(out, "=> ./%s%s\n", nam, sufx);
1076 free(c->dir[c->diroff]);
1081 c->type = REQUEST_DONE;
1083 event_add(&c->bev->ev_write, NULL);
1089 * Here we depend on fastcgi or proxy connection to
1095 if (EVBUFFER_LENGTH(out) == 0)
1102 client_error(struct bufferevent *bev, short error, void *d)
1104 struct client *c = d;
1106 c->type = REQUEST_DONE;
1108 if (error & EVBUFFER_TIMEOUT) {
1109 log_debug("timeout; forcefully closing the connection");
1111 start_reply(c, BAD_REQUEST, "timeout");
1117 if (error & EVBUFFER_EOF) {
1122 log_warnx("unknown bufferevent error 0x%x", error);
1127 start_reply(struct client *c, int code, const char *meta)
1129 struct evbuffer *evb = EVBUFFER_OUTPUT(c->bev);
1133 bufferevent_enable(c->bev, EVBUFFER_WRITE);
1138 r = evbuffer_add_printf(evb, "%d %s", code, meta);
1142 /* 2 digit status + space + 1024 max reply */
1146 if (c->type != REQUEST_FCGI &&
1147 c->type != REQUEST_PROXY &&
1148 !strcmp(meta, "text/gemini") &&
1149 (lang = vhost_lang(c->host, c->iri.path)) != NULL) {
1150 rr = evbuffer_add_printf(evb, ";lang=%s", lang);
1157 bufferevent_write(c->bev, "\r\n", 2);
1159 if (!vhost_disable_log(c->host, c->iri.path))
1160 log_request(c, code, meta);
1163 c->type = REQUEST_DONE;
1168 log_warnx("evbuffer_add_printf error: no memory");
1169 evbuffer_drain(evb, EVBUFFER_LENGTH(evb));
1170 c->type = REQUEST_DONE;
1174 log_warnx("reply header overflow");
1175 evbuffer_drain(evb, EVBUFFER_LENGTH(evb));
1176 start_reply(c, TEMP_FAILURE, "internal error");
1181 client_close_ev(int fd, short event, void *d)
1183 struct client *c = d;
1185 switch (tls_close(c->ctx)) {
1186 case TLS_WANT_POLLIN:
1187 event_once(c->fd, EV_READ, client_close_ev, c, NULL);
1189 case TLS_WANT_POLLOUT:
1190 event_once(c->fd, EV_WRITE, client_close_ev, c, NULL);
1194 connected_clients--;
1216 client_proxy_close(int fd, short event, void *d)
1218 struct tls *ctx = d;
1225 switch (tls_close(ctx)) {
1226 case TLS_WANT_POLLIN:
1227 event_once(fd, EV_READ, client_proxy_close, d, NULL);
1229 case TLS_WANT_POLLOUT:
1230 event_once(fd, EV_WRITE, client_proxy_close, d, NULL);
1239 client_close(struct client *c)
1242 * We may end up calling client_close in various situations
1243 * and for the most unexpected reasons. Therefore, we need to
1244 * ensure that everything gets properly released once we reach
1248 SPLAY_REMOVE(client_tree_id, &clients, c);
1250 if (c->cgibev != NULL) {
1251 bufferevent_disable(c->cgibev, EVBUFFER_READ|EVBUFFER_WRITE);
1252 bufferevent_free(c->cgibev);
1258 if (c->bev != NULL) {
1259 bufferevent_disable(c->bev, EVBUFFER_READ|EVBUFFER_WRITE);
1260 bufferevent_free(c->bev);
1263 if (c->proxyevset &&
1264 event_pending(&c->proxyev, EV_READ|EV_WRITE, NULL)) {
1266 event_del(&c->proxyev);
1269 if (c->pfd != -1 && c->proxyctx != NULL) {
1270 /* shut down the proxy TLS connection */
1271 client_proxy_close(c->pfd, 0, c->proxyctx);
1275 if (c->proxybev != NULL)
1276 bufferevent_free(c->proxybev);
1278 client_close_ev(c->fd, 0, c);
1282 server_accept(int sock, short et, void *d)
1284 struct address *addr = d;
1286 struct sockaddr_storage raddr;
1287 struct sockaddr *sraddr;
1291 sraddr = (struct sockaddr *)&raddr;
1292 len = sizeof(raddr);
1293 if ((fd = accept(sock, sraddr, &len)) == -1) {
1294 if (errno == EWOULDBLOCK || errno == EAGAIN ||
1295 errno == ECONNABORTED)
1302 c = xcalloc(1, sizeof(*c));
1303 c->conf = addr->conf;
1305 c->id = ++server_client_id;
1308 memcpy(&c->raddr, &raddr, sizeof(raddr));
1311 e = getnameinfo(sraddr, len, c->rhost, sizeof(c->rhost),
1312 c->rserv, sizeof(c->rserv), NI_NUMERICHOST | NI_NUMERICSERV);
1314 log_warnx("getnameinfo failed: %s", gai_strerror(e));
1320 if (tls_accept_socket(addr->ctx, &c->ctx, fd) == -1) {
1321 log_warnx("failed to accept socket: %s", tls_error(c->ctx));
1327 SPLAY_INSERT(client_tree_id, &clients, c);
1328 event_once(c->fd, EV_READ|EV_WRITE, handle_handshake, c, NULL);
1329 connected_clients++;
1333 handle_siginfo(int fd, short ev, void *d)
1335 log_info("%d connected clients", connected_clients);
1339 add_matching_kps(struct tls_config *tlsconf, struct address *addr,
1342 struct address *vaddr;
1346 TAILQ_FOREACH(h, &conf->hosts, vhosts) {
1347 TAILQ_FOREACH(vaddr, &h->addrs, addrs) {
1348 if (!match_addr(addr, vaddr))
1353 r = tls_config_set_keypair_ocsp_mem(tlsconf,
1354 h->cert, h->certlen, h->key, h->keylen,
1355 h->ocsp, h->ocsplen);
1357 r = tls_config_add_keypair_ocsp_mem(tlsconf,
1358 h->cert, h->certlen, h->key, h->keylen,
1359 h->ocsp, h->ocsplen);
1363 fatalx("failed to load keypair"
1364 " for host %s: %s", h->domain,
1365 tls_config_error(tlsconf));
1371 setup_tls(struct conf *conf)
1373 struct tls_config *tlsconf;
1374 struct address *addr;
1376 TAILQ_FOREACH(addr, &conf->addrs, addrs) {
1377 if ((tlsconf = tls_config_new()) == NULL)
1378 fatal("tls_config_new");
1380 if (conf->use_privsep_crypto)
1381 tls_config_use_fake_private_key(tlsconf);
1383 /* optionally accept client certs but don't verify */
1384 tls_config_verify_client_optional(tlsconf);
1385 tls_config_insecure_noverifycert(tlsconf);
1387 if (tls_config_set_protocols(tlsconf, conf->protos) == -1)
1388 fatalx("tls_config_set_protocols: %s",
1389 tls_config_error(tlsconf));
1391 add_matching_kps(tlsconf, addr, conf);
1393 tls_reset(addr->ctx);
1394 if (tls_configure(addr->ctx, tlsconf) == -1)
1395 fatalx("tls_configure: %s", tls_error(addr->ctx));
1397 tls_config_free(tlsconf);
1402 load_vhosts(struct conf *conf)
1406 char path[PATH_MAX], *p;
1409 TAILQ_FOREACH(h, &conf->hosts, vhosts) {
1410 TAILQ_FOREACH(l, &h->locations, locations) {
1411 if (*l->dir == '\0')
1416 if (conf->conftest && *conf->chroot != '\0') {
1417 r = snprintf(path, sizeof(path), "%s/%s",
1418 conf->chroot, l->dir);
1419 if (r < 0 || (size_t)r >= sizeof(path))
1420 fatalx("path too long: %s", l->dir);
1424 l->dirfd = open(p, O_RDONLY | O_DIRECTORY);
1426 fatal("open %s for domain %s", l->dir,
1433 server(struct privsep *ps, struct privsep_proc *p)
1435 proc_run(ps, p, procs, nitems(procs), server_init, NULL);
1439 server_init(struct privsep *ps, struct privsep_proc *p, void *arg)
1443 SPLAY_INIT(&clients);
1446 signal_set(&siginfo, SIGINFO, &handle_siginfo, NULL);
1447 signal_add(&siginfo, NULL);
1449 signal_set(&sigusr2, SIGUSR2, &handle_siginfo, NULL);
1450 signal_add(&sigusr2, NULL);
1452 sandbox_server_process();
1455 * gemexp doesn't use the privsep crypto engine; it doesn't
1456 * use privsep at all so `ps' is NULL.
1460 if (c->use_privsep_crypto)
1461 crypto_engine_init(ps->ps_env);
1466 server_configure_done(struct conf *conf)
1468 struct address *addr;
1470 if (load_default_mime(&conf->mime) == -1)
1471 fatal("can't load default mime");
1472 sort_mime(&conf->mime);
1476 TAILQ_FOREACH(addr, &conf->addrs, addrs) {
1477 if (addr->sock != -1)
1478 event_add(&addr->evsock, NULL);
1485 server_dispatch_parent(int fd, struct privsep_proc *p, struct imsg *imsg)
1487 struct privsep *ps = p->p_ps;
1488 struct conf *conf = ps->ps_env;
1490 switch (imsg_get_type(imsg)) {
1491 case IMSG_RECONF_START:
1492 case IMSG_RECONF_LOG_FMT:
1493 case IMSG_RECONF_MIME:
1494 case IMSG_RECONF_PROTOS:
1495 case IMSG_RECONF_SOCK:
1496 case IMSG_RECONF_FCGI:
1497 case IMSG_RECONF_HOST:
1498 case IMSG_RECONF_CERT:
1499 case IMSG_RECONF_KEY:
1500 case IMSG_RECONF_OCSP:
1501 case IMSG_RECONF_HOST_ADDR:
1502 case IMSG_RECONF_LOC:
1503 case IMSG_RECONF_ENV:
1504 case IMSG_RECONF_ALIAS:
1505 case IMSG_RECONF_PROXY:
1506 case IMSG_RECONF_PROXY_CERT:
1507 case IMSG_RECONF_PROXY_KEY:
1508 return config_recv(conf, imsg);
1509 case IMSG_RECONF_END:
1510 if (config_recv(conf, imsg) == -1)
1512 if (server_configure_done(conf) == -1)
1523 server_dispatch_crypto(int fd, struct privsep_proc *p, struct imsg *imsg)
1529 server_dispatch_logger(int fd, struct privsep_proc *p, struct imsg *imsg)
1535 client_tree_cmp(struct client *a, struct client *b)
1539 else if (a->id < b->id)
1545 SPLAY_GENERATE(client_tree_id, client, entry, client_tree_cmp)
