op public repos

Blob

Date:: Sun Jul 23 18:45:05 2023 UTC
Message:: revamp fastcgi configuration: make it per-location this revamps the syntax in the configuration to better match httpd(8) (and in general be less weird) and to allow per-location fastcgi configurations. the bare `param' is now deprecated, but for compatibility it acts like `fastcgi param' would do now. Same story for `fastcgi <path�>'.
Actions:: History | Blame | Raw File
1 /*
2  * Copyright (c) 2023 Omar Polo <op@omarpolo.com>
3  *
4  * Permission to use, copy, modify, and distribute this software for any
5  * purpose with or without fee is hereby granted, provided that the above
6  * copyright notice and this permission notice appear in all copies.
7  *
8  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11  * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13  * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14  * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
15  */
16 
17 #include "gmid.h"
18 
19 #include <sys/stat.h>
20 
21 #include <fcntl.h>
22 #include <limits.h>
23 #include <string.h>
24 
25 #include <openssl/pem.h>
26 
27 #include "log.h"
28 #include "proc.h"
29 
30 struct conf *
31 config_new(void)
32 {
33 	struct conf *conf;
34 
35 	conf = xcalloc(1, sizeof(*conf));
36 
37 	TAILQ_INIT(&conf->fcgi);
38 	TAILQ_INIT(&conf->hosts);
39 	TAILQ_INIT(&conf->pkis);
40 	TAILQ_INIT(&conf->addrs);
41 
42 	conf->protos = TLS_PROTOCOL_TLSv1_2 | TLS_PROTOCOL_TLSv1_3;
43 
44 	init_mime(&conf->mime);
45 
46 	conf->prefork = 3;
47 
48 #ifdef __OpenBSD__
49 	conf->use_privsep_crypto = 1;
50 #endif
51 
52 	return conf;
53 }
54 
55 void
56 config_purge(struct conf *conf)
57 {
58 	struct privsep *ps;
59 	struct fcgi *f, *tf;
60 	struct vhost *h, *th;
61 	struct location *l, *tl;
62 	struct proxy *p, *tp;
63 	struct envlist *e, *te;
64 	struct alist *a, *ta;
65 	struct pki *pki, *tpki;
66 	struct address *addr, *taddr;
67 	int use_privsep_crypto;
68 
69 	ps = conf->ps;
70 	use_privsep_crypto = conf->use_privsep_crypto;
71 
72 	free_mime(&conf->mime);
73 	TAILQ_FOREACH_SAFE(f, &conf->fcgi, fcgi, tf) {
74 		TAILQ_REMOVE(&conf->fcgi, f, fcgi);
75 		free(f);
76 	}
77 
78 	TAILQ_FOREACH_SAFE(h, &conf->hosts, vhosts, th) {
79 		free(h->cert_path);
80 		free(h->key_path);
81 		free(h->ocsp_path);
82 		free(h->cert);
83 		free(h->key);
84 		free(h->ocsp);
85 
86 		TAILQ_FOREACH_SAFE(addr, &h->addrs, addrs, taddr) {
87 			TAILQ_REMOVE(&h->addrs, addr, addrs);
88 			free(addr);
89 		}
90 
91 		TAILQ_FOREACH_SAFE(l, &h->locations, locations, tl) {
92 			TAILQ_REMOVE(&h->locations, l, locations);
93 
94 			if (l->dirfd != -1)
95 				close(l->dirfd);
96 
97 			free(l->reqca_path);
98 			X509_STORE_free(l->reqca);
99 			free(l);
100 
101 			TAILQ_FOREACH_SAFE(e, &l->params, envs, te) {
102 				TAILQ_REMOVE(&l->params, e, envs);
103 				free(e);
104 			}
105 		}
106 
107 		TAILQ_FOREACH_SAFE(a, &h->aliases, aliases, ta) {
108 			TAILQ_REMOVE(&h->aliases, a, aliases);
109 			free(a);
110 		}
111 
112 		TAILQ_FOREACH_SAFE(p, &h->proxies, proxies, tp) {
113 			TAILQ_REMOVE(&h->proxies, p, proxies);
114 			free(p->cert_path);
115 			free(p->cert);
116 			free(p->key_path);
117 			free(p->key);
118 			free(p->reqca_path);
119 			X509_STORE_free(p->reqca);
120 			free(p);
121 		}
122 
123 		TAILQ_REMOVE(&conf->hosts, h, vhosts);
124 		free(h);
125 	}
126 
127 	TAILQ_FOREACH_SAFE(pki, &conf->pkis, pkis, tpki) {
128 		TAILQ_REMOVE(&conf->pkis, pki, pkis);
129 		free(pki->hash);
130 		EVP_PKEY_free(pki->pkey);
131 		free(pki);
132 	}
133 
134 	TAILQ_FOREACH_SAFE(addr, &conf->addrs, addrs, taddr) {
135 		TAILQ_REMOVE(&conf->addrs, addr, addrs);
136 		if (addr->sock != -1) {
137 			close(addr->sock);
138 			event_del(&addr->evsock);
139 			tls_free(addr->ctx);
140 		}
141 		free(addr);
142 	}
143 
144 	memset(conf, 0, sizeof(*conf));
145 
146 	conf->ps = ps;
147 	conf->use_privsep_crypto = use_privsep_crypto;
148 	conf->protos = TLS_PROTOCOL_TLSv1_2 | TLS_PROTOCOL_TLSv1_3;
149 	init_mime(&conf->mime);
150 	TAILQ_INIT(&conf->fcgi);
151 	TAILQ_INIT(&conf->hosts);
152 	TAILQ_INIT(&conf->pkis);
153 }
154 
155 static int
156 config_send_file(struct privsep *ps, enum privsep_procid id, int type,
157     int fd, void *data, size_t l)
158 {
159 	int	 n, m, d;
160 
161 	n = -1;
162 	proc_range(ps, id, &n, &m);
163 	for (n = 0; n < m; ++n) {
164 		d = -1;
165 		if (fd != -1 && (d = dup(fd)) == -1)
166 			fatal("dup %d", fd);
167 		if (proc_compose_imsg(ps, id, n, type, -1, d, data, l)
168 		    == -1)
169 			return -1;
170 	}
171 
172 	if (fd != -1)
173 		close(fd);
174 
175 	/* avoid fd rampage */
176 	if (proc_flush_imsg(ps, id, -1) == -1) {
177 		log_warn("%s: proc_fush_imsg", __func__);
178 		return -1;
179 	}
180 
181 	return 0;
182 }
183 
184 static int
185 config_open_send(struct privsep *ps, enum privsep_procid id, int type,
186     const char *path)
187 {
188 	int fd;
189 
190 	log_debug("sending %s", path);
191 
192 	if ((fd = open(path, O_RDONLY)) == -1)
193 		fatal("can't open %s", path);
194 
195 	return config_send_file(ps, id, type, fd, NULL, 0);
196 }
197 
198 static int
199 config_send_kp(struct privsep *ps, int cert_type, int key_type,
200     const char *cert, const char *key)
201 {
202 	struct conf *conf = ps->ps_env;
203 	int fd, d, key_target;
204 
205 	log_debug("sending %s", cert);
206 	if ((fd = open(cert, O_RDONLY)) == -1)
207 		fatal("can't open %s", cert);
208 	if ((d = dup(fd)) == -1)
209 		fatal("fd");
210 
211 	if (config_send_file(ps, PROC_SERVER, cert_type, fd, NULL, 0) == -1) {
212 		close(d);
213 		return -1;
214 	}
215 	if (conf->use_privsep_crypto &&
216 	    config_send_file(ps, PROC_CRYPTO, cert_type, d, NULL, 0) == -1)
217 		return -1;
218 
219 	key_target = PROC_CRYPTO;
220 	if (!conf->use_privsep_crypto)
221 		key_target = PROC_SERVER;
222 
223 	if (config_open_send(ps, key_target, key_type, key) == -1)
224 		return -1;
225 
226 	return 0;
227 }
228 
229 static int
230 config_send_socks(struct conf *conf)
231 {
232 	struct privsep	*ps = conf->ps;
233 	struct address	*addr, a;
234 	int		 sock, v;
235 
236 	TAILQ_FOREACH(addr, &conf->addrs, addrs) {
237 		sock = socket(addr->ai_family, addr->ai_socktype,
238 		    addr->ai_protocol);
239 		if (sock == -1)
240 			fatal("socket");
241 
242 		v = 1;
243 		if (setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, &v, sizeof(v))
244 		    == -1)
245 			fatal("setsockopt(SO_REUSEADDR)");
246 
247 		v = 1;
248 		if (setsockopt(sock, SOL_SOCKET, SO_REUSEPORT, &v, sizeof(v))
249 		    == -1)
250 			fatal("setsockopt(SO_REUSEPORT)");
251 
252 		mark_nonblock(sock);
253 
254 		if (bind(sock, (struct sockaddr *)&addr->ss, addr->slen)
255 		    == -1)
256 			fatal("bind");
257 
258 		if (listen(sock, 16) == -1)
259 			fatal("listen");
260 
261 		memcpy(&a, addr, sizeof(a));
262 		a.conf = NULL;
263 		a.sock = -1;
264 		memset(&a.evsock, 0, sizeof(a.evsock));
265 		memset(&a.addrs, 0, sizeof(a.addrs));
266 
267 		if (config_send_file(ps, PROC_SERVER, IMSG_RECONF_SOCK, sock,
268 		    &a, sizeof(a)) == -1)
269 			return -1;
270 	}
271 
272 	return 0;
273 }
274 
275 int
276 config_send(struct conf *conf)
277 {
278 	struct privsep	*ps = conf->ps;
279 	struct etm	*m;
280 	struct fcgi	*fcgi;
281 	struct vhost	*h;
282 	struct location	*l;
283 	struct proxy	*p;
284 	struct envlist	*e;
285 	struct alist	*a;
286 	size_t		 i;
287 
288 	for (i = 0; i < conf->mime.len; ++i) {
289 		m = &conf->mime.t[i];
290 		if (proc_compose(ps, PROC_SERVER, IMSG_RECONF_MIME,
291 		    m, sizeof(*m)) == -1)
292 			return -1;
293 	}
294 
295 	if (proc_compose(ps, PROC_SERVER, IMSG_RECONF_PROTOS,
296 	    &conf->protos, sizeof(conf->protos)) == -1)
297 		return -1;
298 
299 	if (config_send_socks(conf) == -1)
300 		return -1;
301 
302 	TAILQ_FOREACH(fcgi, &conf->fcgi, fcgi) {
303 		log_debug("sending fastcgi %s", fcgi->path);
304 		if (proc_compose(ps, PROC_SERVER, IMSG_RECONF_FCGI,
305 		    fcgi, sizeof(*fcgi)) == -1)
306 			return -1;
307 	}
308 
309 	TAILQ_FOREACH(h, &conf->hosts, vhosts) {
310 		struct vhost vcopy;
311 		struct address *addr, acopy;
312 
313 		memcpy(&vcopy, h, sizeof(vcopy));
314 		vcopy.cert_path = NULL;
315 		vcopy.key_path = NULL;
316 		vcopy.ocsp_path = NULL;
317 
318 		log_debug("sending host %s", h->domain);
319 
320 		if (proc_compose(ps, PROC_SERVER, IMSG_RECONF_HOST,
321 		    &vcopy, sizeof(vcopy)) == -1)
322 			return -1;
323 
324 		if (config_send_kp(ps, IMSG_RECONF_CERT, IMSG_RECONF_KEY,
325 		    h->cert_path, h->key_path) == -1)
326 			return -1;
327 
328 		if (h->ocsp_path != NULL) {
329 			if (config_open_send(ps, PROC_SERVER, IMSG_RECONF_OCSP,
330 			    h->ocsp_path) == -1)
331 				return -1;
332 		}
333 
334 		TAILQ_FOREACH(addr, &h->addrs, addrs) {
335 			memcpy(&acopy, addr, sizeof(acopy));
336 			memset(&acopy.addrs, 0, sizeof(acopy.addrs));
337 
338 			if (proc_compose(ps, PROC_SERVER,
339 			    IMSG_RECONF_HOST_ADDR, &acopy, sizeof(acopy))
340 			    == -1)
341 				return -1;
342 		}
343 
344 		if (proc_flush_imsg(ps, PROC_SERVER, -1) == -1) {
345 			log_warn("%s: proc_fush_imsg", __func__);
346 			return -1;
347 		}
348 
349 		TAILQ_FOREACH(l, &h->locations, locations) {
350 			struct location lcopy;
351 			int fd = -1;
352 
353 			memcpy(&lcopy, l, sizeof(lcopy));
354 			lcopy.reqca_path = NULL;
355 			lcopy.reqca = NULL;
356 			lcopy.dirfd = -1;
357 			memset(&lcopy.locations, 0, sizeof(lcopy.locations));
358 
359 			if (l->reqca_path != NULL &&
360 			    (fd = open(l->reqca_path, O_RDONLY)) == -1)
361 				fatal("can't open %s", l->reqca_path);
362 
363 			if (config_send_file(ps, PROC_SERVER, IMSG_RECONF_LOC,
364 			    fd, &lcopy, sizeof(lcopy)) == -1)
365 				return -1;
366 
367 			TAILQ_FOREACH(e, &l->params, envs) {
368 				if (proc_compose(ps, PROC_SERVER,
369 				    IMSG_RECONF_ENV, e, sizeof(*e)) == -1)
370 					return -1;
371 			}
372 		}
373 
374 		if (proc_flush_imsg(ps, PROC_SERVER, -1) == -1)
375 			return -1;
376 
377 		TAILQ_FOREACH(a, &h->aliases, aliases) {
378 			if (proc_compose(ps, PROC_SERVER, IMSG_RECONF_ALIAS,
379 			    a, sizeof(*a)) == -1)
380 				return -1;
381 		}
382 
383 		if (proc_flush_imsg(ps, PROC_SERVER, -1) == -1)
384 			return -1;
385 
386 		TAILQ_FOREACH(p, &h->proxies, proxies) {
387 			struct proxy pcopy;
388 			int fd = -1;
389 
390 			memcpy(&pcopy, p, sizeof(pcopy));
391 			pcopy.cert_path = NULL;
392 			pcopy.cert = NULL;
393 			pcopy.certlen = 0;
394 			pcopy.key_path = NULL;
395 			pcopy.key = NULL;
396 			pcopy.keylen = 0;
397 			pcopy.reqca_path = NULL;
398 			pcopy.reqca = NULL;
399 
400 			if (p->reqca_path != NULL) {
401 				fd = open(p->reqca_path, O_RDONLY);
402 				if (fd == -1)
403 					fatal("can't open %s", p->reqca_path);
404 			}
405 
406 			if (config_send_file(ps, PROC_SERVER, IMSG_RECONF_PROXY,
407 			    fd, &pcopy, sizeof(pcopy)) == -1)
408 				return -1;
409 
410 			if (p->cert_path == NULL || p->key_path == NULL)
411 				continue;
412 
413 			if (config_open_send(ps, PROC_SERVER,
414 			    IMSG_RECONF_PROXY_CERT, p->cert_path) == -1 ||
415 			    config_open_send(ps, PROC_SERVER,
416 			    IMSG_RECONF_PROXY_KEY, p->key_path) == -1)
417 				return -1;
418 		}
419 	}
420 
421 	return 0;
422 }
423 
424 static int
425 load_file(int fd, uint8_t **data, size_t *len)
426 {
427 	struct stat	 sb;
428 	ssize_t		 r;
429 
430 	if (fstat(fd, &sb) == -1)
431 		fatal("fstat");
432 
433 	if (sb.st_size < 0 /* || sb.st_size > SIZE_MAX */) {
434 		log_warnx("file too large");
435 		close(fd);
436 		return -1;
437 	}
438 	*len = sb.st_size;
439 
440 	if ((*data = malloc(*len)) == NULL)
441 		fatal("malloc");
442 
443 	r = pread(fd, *data, *len, 0);
444 	if (r == -1 || (size_t)r != *len) {
445 		log_warn("read failed");
446 		close(fd);
447 		free(*data);
448 		return -1;
449 	}
450 
451 	close(fd);
452 	return 0;
453 }
454 
455 static int
456 config_crypto_recv_kp(struct conf *conf, struct imsg *imsg)
457 {
458 	static struct pki *pki;
459 	uint8_t *d;
460 	size_t len;
461 
462 	/* XXX: check for duplicates */
463 
464 	if (imsg->fd == -1)
465 		fatalx("no fd for imsg %d", imsg->hdr.type);
466 
467 	switch (imsg->hdr.type) {
468 	case IMSG_RECONF_CERT:
469 		if (pki != NULL)
470 			fatalx("imsg in wrong order; pki is not NULL");
471 		if ((pki = calloc(1, sizeof(*pki))) == NULL)
472 			fatal("calloc");
473 		if (load_file(imsg->fd, &d, &len) == -1)
474 			fatalx("can't load file");
475 		if ((pki->hash = ssl_pubkey_hash(d, len)) == NULL)
476 			fatalx("failed to compute cert hash");
477 		free(d);
478 		TAILQ_INSERT_TAIL(&conf->pkis, pki, pkis);
479 		break;
480 
481 	case IMSG_RECONF_KEY:
482 		if (pki == NULL)
483 			fatalx("got key without cert beforehand %d",
484 			    imsg->hdr.type);
485 		if (load_file(imsg->fd, &d, &len) == -1)
486 			fatalx("failed to load private key");
487 		if ((pki->pkey = ssl_load_pkey(d, len)) == NULL)
488 			fatalx("failed load private key");
489 		free(d);
490 		pki = NULL;
491 		break;
492 
493 	default:
494 		return -1;
495 	}
496 
497 	return 0;
498 }
499 
500 int
501 config_recv(struct conf *conf, struct imsg *imsg)
502 {
503 	static struct vhost *h;
504 	static struct location *l;
505 	static struct proxy *p;
506 	struct privsep	*ps = conf->ps;
507 	struct etm	 m;
508 	struct fcgi	*fcgi;
509 	struct vhost	*vh, vht;
510 	struct location	*loc;
511 	struct envlist	*env;
512 	struct alist	*alias;
513 	struct proxy	*proxy;
514 	struct address	*addr;
515 	uint8_t		*d;
516 	size_t		 len, datalen;
517 
518 	datalen = IMSG_DATA_SIZE(imsg);
519 
520 	switch (imsg->hdr.type) {
521 	case IMSG_RECONF_START:
522 		config_purge(conf);
523 		h = NULL;
524 		p = NULL;
525 		break;
526 
527 	case IMSG_RECONF_MIME:
528 		IMSG_SIZE_CHECK(imsg, &m);
529 		memcpy(&m, imsg->data, datalen);
530 		if (m.mime[sizeof(m.mime) - 1] != '\0' ||
531 		    m.ext[sizeof(m.ext) - 1] != '\0')
532 			fatal("received corrupted IMSG_RECONF_MIME");
533 		if (add_mime(&conf->mime, m.mime, m.ext) == -1)
534 			fatal("failed to add mime mapping %s -> %s",
535 			    m.mime, m.ext);
536 		break;
537 
538 	case IMSG_RECONF_PROTOS:
539 		IMSG_SIZE_CHECK(imsg, &conf->protos);
540 		memcpy(&conf->protos, imsg->data, datalen);
541 		break;
542 
543 	case IMSG_RECONF_SOCK:
544 		addr = xcalloc(1, sizeof(*addr));
545 		IMSG_SIZE_CHECK(imsg, addr);
546 		memcpy(addr, imsg->data, sizeof(*addr));
547 		if (imsg->fd == -1)
548 			fatalx("missing socket for IMSG_RECONF_SOCK");
549 		addr->conf = conf;
550 		addr->sock = imsg->fd;
551 		event_set(&addr->evsock, addr->sock, EV_READ|EV_PERSIST,
552 		    server_accept, addr);
553 		if ((addr->ctx = tls_server()) == NULL)
554 			fatal("tls_server failure");
555 		TAILQ_INSERT_HEAD(&conf->addrs, addr, addrs);
556 		break;
557 
558 	case IMSG_RECONF_FCGI:
559 		IMSG_SIZE_CHECK(imsg, fcgi);
560 		fcgi = xcalloc(1, sizeof(*fcgi));
561 		memcpy(fcgi, imsg->data, datalen);
562 		log_debug("received fcgi %s", fcgi->path);
563 		TAILQ_INSERT_TAIL(&conf->fcgi, fcgi, fcgi);
564 		break;
565 
566 	case IMSG_RECONF_HOST:
567 		IMSG_SIZE_CHECK(imsg, &vht);
568 		memcpy(&vht, imsg->data, datalen);
569 		vh = new_vhost();
570 		strlcpy(vh->domain, vht.domain, sizeof(vh->domain));
571 		h = vh;
572 		TAILQ_INSERT_TAIL(&conf->hosts, h, vhosts);
573 
574 		/* reset location and proxy */
575 		l = NULL;
576 		p = NULL;
577 		break;
578 
579 	case IMSG_RECONF_CERT:
580 		log_debug("receiving cert");
581 		if (privsep_process == PROC_CRYPTO)
582 			return config_crypto_recv_kp(conf, imsg);
583 		if (h == NULL)
584 			fatalx("recv'd cert without host");
585 		if (h->cert != NULL)
586 			fatalx("cert already received");
587 		if (imsg->fd == -1)
588 			fatalx("no fd for IMSG_RECONF_CERT");
589 		if (load_file(imsg->fd, &h->cert, &h->certlen) == -1)
590 			fatalx("failed to load cert for %s",
591 			    h->domain);
592 		break;
593 
594 	case IMSG_RECONF_KEY:
595 		log_debug("receiving key");
596 		if (privsep_process == PROC_CRYPTO)
597 			return config_crypto_recv_kp(conf, imsg);
598 		if (h == NULL)
599 			fatalx("recv'd key without host");
600 		if (h->key != NULL)
601 			fatalx("key already received");
602 		if (imsg->fd == -1)
603 			fatalx("no fd for IMSG_RECONF_KEY");
604 		if (load_file(imsg->fd, &h->key, &h->keylen) == -1)
605 			fatalx("failed to load key for %s",
606 			    h->domain);
607 		break;
608 
609 	case IMSG_RECONF_OCSP:
610 		log_debug("receiving ocsp");
611 		if (h == NULL)
612 			fatalx("recv'd ocsp without host");
613 		if (h->ocsp != NULL)
614 			fatalx("ocsp already received");
615 		if (imsg->fd == -1)
616 			fatalx("no fd for IMSG_RECONF_OCSP");
617 		if (load_file(imsg->fd, &h->ocsp, &h->ocsplen) == -1)
618 			fatalx("failed to load ocsp for %s",
619 			    h->domain);
620 		break;
621 
622 	case IMSG_RECONF_HOST_ADDR:
623 		log_debug("receiving host addr");
624 		if (h == NULL)
625 			fatalx("recv'd host address withouth host");
626 		IMSG_SIZE_CHECK(imsg, addr);
627 		addr = xcalloc(1, sizeof(*addr));
628 		memcpy(addr, imsg->data, datalen);
629 		TAILQ_INSERT_TAIL(&h->addrs, addr, addrs);
630 		break;
631 
632 	case IMSG_RECONF_LOC:
633 		if (h == NULL)
634 			fatalx("recv'd location without host");
635 		IMSG_SIZE_CHECK(imsg, loc);
636 		loc = xcalloc(1, sizeof(*loc));
637 		memcpy(loc, imsg->data, datalen);
638 		TAILQ_INIT(&loc->params);
639 
640 		if (imsg->fd != -1) {
641 			if (load_file(imsg->fd, &d, &len) == -1)
642 				fatal("load_file");
643 			loc->reqca = load_ca(d, len);
644 			if (loc->reqca == NULL)
645 				fatalx("failed to load CA");
646 			free(d);
647 		}
648 
649 		l = loc;
650 		TAILQ_INSERT_TAIL(&h->locations, loc, locations);
651 		break;
652 
653 	case IMSG_RECONF_ENV:
654 		if (l == NULL)
655 			fatalx("recv'd env without location");
656 		IMSG_SIZE_CHECK(imsg, env);
657 		env = xcalloc(1, sizeof(*env));
658 		memcpy(env, imsg->data, datalen);
659 		TAILQ_INSERT_TAIL(&l->params, env, envs);
660 		break;
661 
662 	case IMSG_RECONF_ALIAS:
663 		if (h == NULL)
664 			fatalx("recv'd alias without host");
665 		IMSG_SIZE_CHECK(imsg, alias);
666 		alias = xcalloc(1, sizeof(*alias));
667 		memcpy(alias, imsg->data, datalen);
668 		TAILQ_INSERT_TAIL(&h->aliases, alias, aliases);
669 		break;
670 
671 	case IMSG_RECONF_PROXY:
672 		log_debug("receiving proxy");
673 		if (h == NULL)
674 			fatalx("recv'd proxy without host");
675 		IMSG_SIZE_CHECK(imsg, proxy);
676 		proxy = xcalloc(1, sizeof(*proxy));
677 		memcpy(proxy, imsg->data, datalen);
678 
679 		if (imsg->fd != -1) {
680 			if (load_file(imsg->fd, &d, &len) == -1)
681 				fatal("load_file");
682 			proxy->reqca = load_ca(d, len);
683 			if (proxy->reqca == NULL)
684 				fatal("failed to load CA");
685 			free(d);
686 		}
687 
688 		TAILQ_INSERT_TAIL(&h->proxies, proxy, proxies);
689 		p = proxy;
690 		break;
691 
692 	case IMSG_RECONF_PROXY_CERT:
693 		log_debug("receiving proxy cert");
694 		if (p == NULL)
695 			fatalx("recv'd proxy cert without proxy");
696 		if (p->cert != NULL)
697 			fatalx("proxy cert already received");
698 		if (imsg->fd == -1)
699 			fatalx("no fd for IMSG_RECONF_PROXY_CERT");
700 		if (load_file(imsg->fd, &p->cert, &p->certlen) == -1)
701 			fatalx("failed to load cert for proxy %s of %s",
702 			    p->host, h->domain);
703 		break;
704 
705 	case IMSG_RECONF_PROXY_KEY:
706 		log_debug("receiving proxy key");
707 		if (p == NULL)
708 			fatalx("recv'd proxy key without proxy");
709 		if (p->key != NULL)
710 			fatalx("proxy key already received");
711 		if (imsg->fd == -1)
712 			fatalx("no fd for IMSG_RECONF_PROXY_KEY");
713 		if (load_file(imsg->fd, &p->key, &p->keylen) == -1)
714 			fatalx("failed to load key for proxy %s of %s",
715 			    p->host, h->domain);
716 		break;
717 
718 	case IMSG_RECONF_END:
719 		if (proc_compose(ps, PROC_PARENT, IMSG_RECONF_DONE,
720 		    NULL, 0) == -1)
721 			return -1;
722 		break;
723 
724 	default:
725 		return -1;
726 	}
727 
728 	return 0;
729 }