2 * Copyright (c) 2022 Omar Polo <op@omarpolo.com>
4 * Permission to use, copy, modify, and distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 #include <sys/queue.h>
19 #include <sys/socket.h>
21 #include <netinet/in.h>
22 #include <arpa/inet.h>
38 #define MIN(a, b) ((a) < (b) ? (a) : (b))
41 unsigned char version;
43 unsigned char req_id1;
44 unsigned char req_id0;
45 unsigned char content_len1;
46 unsigned char content_len0;
47 unsigned char padding;
48 unsigned char reserved;
49 } __attribute__((packed));
52 * number of bytes in a FCGI_HEADER. Future version of the protocol
53 * will not reduce this number.
55 #define FCGI_HEADER_LEN 8
58 * values for the version component
60 #define FCGI_VERSION_1 1
63 * values for the type component
65 #define FCGI_BEGIN_REQUEST 1
66 #define FCGI_ABORT_REQUEST 2
67 #define FCGI_END_REQUEST 3
73 #define FCGI_GET_VALUES 9
74 #define FCGI_GET_VALUES_RESULT 10
75 #define FCGI_UNKNOWN_TYPE 11
76 #define FCGI_MAXTYPE (FCGI_UNKNOWN_TYPE)
78 struct fcgi_begin_req {
82 unsigned char reserved[5];
85 struct fcgi_begin_req_record {
86 struct fcgi_header header;
87 struct fcgi_begin_req body;
93 #define FCGI_KEEP_CONN 1
98 #define FCGI_RESPONDER 1
99 #define FCGI_AUTHORIZER 2
100 #define FCGI_FILTER 3
102 struct fcgi_end_req_body {
103 unsigned char app_status3;
104 unsigned char app_status2;
105 unsigned char app_status1;
106 unsigned char app_status0;
107 unsigned char proto_status;
108 unsigned char reserved[3];
112 * values for proto_status
114 #define FCGI_REQUEST_COMPLETE 0
115 #define FCGI_CANT_MPX_CONN 1
116 #define FCGI_OVERLOADED 2
117 #define FCGI_UNKNOWN_ROLE 3
120 * Variable names for FCGI_GET_VALUES / FCGI_GET_VALUES_RESULT
123 #define FCGI_MAX_CONNS "FCGI_MAX_CONNS"
124 #define FCGI_MAX_REQS "FCGI_MAX_REQS"
125 #define FCGI_MPXS_CONNS "FCGI_MPXS_CONNS"
127 #define CAT(f0, f1) ((f0) + ((f1) << 8))
134 volatile int fcgi_inflight;
137 fcgi_send_end_req(struct fcgi *fcgi, int id, int as, int ps)
139 struct bufferevent *bev = fcgi->fcg_bev;
140 struct fcgi_header hdr;
141 struct fcgi_end_req_body end;
143 memset(&hdr, 0, sizeof(hdr));
144 memset(&end, 0, sizeof(end));
146 hdr.version = FCGI_VERSION_1;
147 hdr.type = FCGI_END_REQUEST;
148 hdr.req_id0 = (id & 0xFF);
149 hdr.req_id1 = (id >> 8);
150 hdr.content_len0 = sizeof(end);
152 end.app_status0 = (unsigned char)as;
153 end.proto_status = (unsigned char)ps;
155 if (bufferevent_write(bev, &hdr, sizeof(hdr)) == -1)
157 if (bufferevent_write(bev, &end, sizeof(end)) == -1)
163 end_request(struct client *clt, int status, int proto_status)
165 struct fcgi *fcgi = clt->clt_fcgi;
168 if (clt_flush(clt) == -1)
171 r = fcgi_send_end_req(fcgi, clt->clt_id, status,
174 fcgi_error(fcgi->fcg_bev, EV_WRITE, fcgi);
178 SPLAY_REMOVE(client_tree, &fcgi->fcg_clients, clt);
179 proxy_client_free(clt);
181 if (!fcgi->fcg_keep_conn)
188 fcgi_end_request(struct client *clt, int status)
190 return (end_request(clt, status, FCGI_REQUEST_COMPLETE));
194 fcgi_abort_request(struct client *clt)
196 return (end_request(clt, 1, FCGI_OVERLOADED));
200 fcgi_inflight_dec(const char *why)
203 log_debug("%s: fcgi inflight decremented, now %d, %s",
204 __func__, fcgi_inflight, why);
208 fcgi_accept(int fd, short event, void *arg)
210 struct galileo *env = arg;
211 struct fcgi *fcgi = NULL;
213 struct sockaddr_storage ss;
216 event_add(&env->sc_evpause, NULL);
217 if ((event & EV_TIMEOUT))
221 if ((s = accept_reserve(env->sc_sock_fd, (struct sockaddr *)&ss,
222 &slen, FD_RESERVE, &fcgi_inflight)) == -1) {
224 * Pause accept if we are out of file descriptors, or
225 * libevent will haunt us here too.
227 if (errno == ENFILE || errno == EMFILE) {
228 struct timeval evtpause = { 1, 0 };
230 event_del(&env->sc_evsock);
231 evtimer_add(&env->sc_evpause, &evtpause);
232 log_debug("%s: deferring connections", __func__);
237 if ((fcgi = calloc(1, sizeof(*fcgi))) == NULL)
240 fcgi->fcg_id = ++proxy_fcg_id;
243 fcgi->fcg_want = FCGI_RECORD_HEADER;
244 fcgi->fcg_toread = sizeof(struct fcgi_header);
245 SPLAY_INIT(&fcgi->fcg_clients);
247 /* assume it's enabled until we get a FCGI_BEGIN_REQUEST */
248 fcgi->fcg_keep_conn = 1;
250 fcgi->fcg_bev = bufferevent_new(fcgi->fcg_s, fcgi_read, fcgi_write,
252 if (fcgi->fcg_bev == NULL)
255 bufferevent_enable(fcgi->fcg_bev, EV_READ | EV_WRITE);
262 fcgi_inflight_dec(__func__);
267 parse_len(struct fcgi *fcgi, struct evbuffer *src)
269 unsigned char c, x[3];
272 evbuffer_remove(src, &c, 1);
276 if (fcgi->fcg_toread < 3)
279 fcgi->fcg_toread -= 3;
280 evbuffer_remove(src, x, sizeof(x));
281 return (((c & 0x7F) << 24) | (x[0] << 16) | (x[1] << 8) | x[2]);
285 fcgi_parse_params(struct fcgi *fcgi, struct evbuffer *src, struct client *clt)
288 char server[HOST_NAME_MAX + 1];
292 while (fcgi->fcg_toread > 0) {
293 if ((nlen = parse_len(fcgi, src)) < 0 ||
294 (vlen = parse_len(fcgi, src)) < 0)
297 if (fcgi->fcg_toread < nlen + vlen)
300 if ((size_t)nlen > sizeof(pname) - 1) {
301 /* ignore this parameter */
302 fcgi->fcg_toread -= nlen - vlen;
303 evbuffer_drain(src, nlen + vlen);
307 fcgi->fcg_toread -= nlen;
308 evbuffer_remove(src, &pname, nlen);
311 if (!strcmp(pname, "SERVER_NAME") &&
312 (size_t)vlen < sizeof(server)) {
313 fcgi->fcg_toread -= vlen;
314 evbuffer_remove(src, &server, vlen);
317 free(clt->clt_server_name);
318 if ((clt->clt_server_name = strdup(server)) == NULL)
320 log_debug("clt %d: server_name: %s", clt->clt_id,
321 clt->clt_server_name);
325 if (!strcmp(pname, "SCRIPT_NAME") &&
326 (size_t)vlen < sizeof(path)) {
327 fcgi->fcg_toread -= vlen;
328 evbuffer_remove(src, &path, vlen);
331 free(clt->clt_script_name);
332 if ((clt->clt_script_name = strdup(path)) == NULL)
334 log_debug("clt %d: script_name: %s", clt->clt_id,
335 clt->clt_script_name);
339 if (!strcmp(pname, "PATH_INFO") &&
340 (size_t)vlen < sizeof(path)) {
341 fcgi->fcg_toread -= vlen;
342 evbuffer_remove(src, &path, vlen);
345 free(clt->clt_path_info);
346 clt->clt_path_info = NULL;
349 asprintf(&clt->clt_path_info, "/%s", path);
351 clt->clt_path_info = strdup(path);
353 if (clt->clt_path_info == NULL)
356 log_debug("clt %d: path_info: %s", clt->clt_id,
361 fcgi->fcg_toread -= vlen;
362 evbuffer_drain(src, vlen);
369 fcgi_read(struct bufferevent *bev, void *d)
371 struct fcgi *fcgi = d;
372 struct galileo *env = fcgi->fcg_env;
373 struct evbuffer *src = EVBUFFER_INPUT(bev);
374 struct fcgi_header hdr;
375 struct fcgi_begin_req breq;
376 struct client *clt, q;
379 memset(&q, 0, sizeof(q));
382 if (EVBUFFER_LENGTH(src) < (size_t)fcgi->fcg_toread)
385 if (fcgi->fcg_want == FCGI_RECORD_HEADER) {
386 fcgi->fcg_want = FCGI_RECORD_BODY;
387 bufferevent_read(bev, &hdr, sizeof(hdr));
390 log_warnx("header: v=%d t=%d id=%d len=%d p=%d",
391 hdr.version, hdr.type,
392 CAT(hdr.req_id0, hdr.req_id1),
393 CAT(hdr.content_len0, hdr.content_len1),
397 if (hdr.version != FCGI_VERSION_1) {
398 log_warnx("unknown fastcgi version: %d",
400 fcgi_error(bev, EV_READ, d);
404 fcgi->fcg_toread = CAT(hdr.content_len0,
406 if (fcgi->fcg_toread < 0) {
407 log_warnx("invalid record length: %d",
409 fcgi_error(bev, EV_READ, d);
413 fcgi->fcg_padding = hdr.padding;
414 if (fcgi->fcg_padding < 0) {
415 log_warnx("invalid padding: %d",
417 fcgi_error(bev, EV_READ, d);
421 fcgi->fcg_type = hdr.type;
422 fcgi->fcg_rec_id = CAT(hdr.req_id0, hdr.req_id1);
426 q.clt_id = fcgi->fcg_rec_id;
427 clt = SPLAY_FIND(client_tree, &fcgi->fcg_clients, &q);
429 switch (fcgi->fcg_type) {
430 case FCGI_BEGIN_REQUEST:
431 if (sizeof(breq) != fcgi->fcg_toread) {
432 log_warnx("unexpected size for "
433 "FCGI_BEGIN_REQUEST");
434 fcgi_error(bev, EV_READ, d);
438 evbuffer_remove(src, &breq, sizeof(breq));
440 role = CAT(breq.role0, breq.role1);
441 if (role != FCGI_RESPONDER) {
442 log_warnx("unknown fastcgi role: %d",
444 if (fcgi_send_end_req(fcgi, fcgi->fcg_rec_id,
445 1, FCGI_UNKNOWN_ROLE) == -1) {
446 fcgi_error(bev, EV_READ, d);
452 if (!fcgi->fcg_keep_conn) {
453 log_warnx("trying to reuse the fastcgi "
454 "socket without marking it as so.");
455 fcgi_error(bev, EV_READ, d);
458 fcgi->fcg_keep_conn = breq.flags & FCGI_KEEP_CONN;
461 log_warnx("ignoring attemp to re-use an "
462 "active request id (%d)",
467 if ((clt = calloc(1, sizeof(*clt))) == NULL) {
472 clt->clt_id = fcgi->fcg_rec_id;
474 clt->clt_fcgi = fcgi;
475 SPLAY_INSERT(client_tree, &fcgi->fcg_clients, clt);
479 log_warnx("got FCGI_PARAMS for inactive id "
480 "(%d)", fcgi->fcg_rec_id);
481 evbuffer_drain(src, fcgi->fcg_toread);
484 if (fcgi->fcg_toread == 0) {
485 evbuffer_drain(src, fcgi->fcg_toread);
486 proxy_start_request(env, clt);
489 if (fcgi_parse_params(fcgi, src, clt) == -1) {
490 log_warnx("fcgi_parse_params failed");
491 fcgi_error(bev, EV_READ, d);
497 evbuffer_drain(src, fcgi->fcg_toread);
499 case FCGI_ABORT_REQUEST:
501 log_warnx("got FCGI_ABORT_REQUEST for inactive"
502 " id (%d)", fcgi->fcg_rec_id);
503 evbuffer_drain(src, fcgi->fcg_toread);
506 if (fcgi_end_request(clt, 1) == -1) {
507 /* calls fcgi_error on failure */
512 log_warnx("unknown fastcgi record type %d",
514 evbuffer_drain(src, fcgi->fcg_toread);
518 /* Prepare for the next record. */
519 evbuffer_drain(src, fcgi->fcg_padding);
520 fcgi->fcg_want = FCGI_RECORD_HEADER;
521 fcgi->fcg_toread = sizeof(struct fcgi_header);
526 fcgi_write(struct bufferevent *bev, void *d)
528 struct fcgi *fcgi = d;
529 struct evbuffer *out = EVBUFFER_OUTPUT(bev);
531 if (fcgi->fcg_done && EVBUFFER_LENGTH(out) == 0)
532 fcgi_error(bev, EVBUFFER_EOF, fcgi);
536 fcgi_error(struct bufferevent *bev, short event, void *d)
538 struct fcgi *fcgi = d;
539 struct galileo *env = fcgi->fcg_env;
542 log_debug("fcgi failure, shutting down connection (ev: %x)",
544 fcgi_inflight_dec(__func__);
546 while ((clt = SPLAY_MIN(client_tree, &fcgi->fcg_clients)) != NULL) {
547 SPLAY_REMOVE(client_tree, &fcgi->fcg_clients, clt);
548 proxy_client_free(clt);
552 bufferevent_free(fcgi->fcg_bev);
553 SPLAY_REMOVE(fcgi_tree, &env->sc_fcgi_socks, fcgi);
560 clt_flush(struct client *clt)
562 struct fcgi *fcgi = clt->clt_fcgi;
563 struct bufferevent *bev = fcgi->fcg_bev;
564 struct fcgi_header hdr;
566 if (clt->clt_buflen == 0)
569 memset(&hdr, 0, sizeof(hdr));
570 hdr.version = FCGI_VERSION_1;
571 hdr.type = FCGI_STDOUT;
572 hdr.req_id0 = (clt->clt_id & 0xFF);
573 hdr.req_id1 = (clt->clt_id >> 8);
574 hdr.content_len0 = (clt->clt_buflen & 0xFF);
575 hdr.content_len1 = (clt->clt_buflen >> 8);
577 if (bufferevent_write(bev, &hdr, sizeof(hdr)) == -1 ||
578 bufferevent_write(bev, clt->clt_buf, clt->clt_buflen) == -1) {
579 fcgi_error(bev, EV_WRITE, fcgi);
589 clt_write(struct client *clt, const uint8_t *buf, size_t len)
594 left = sizeof(clt->clt_buf) - clt->clt_buflen;
596 if (clt_flush(clt) == -1)
598 left = sizeof(clt->clt_buf);
601 copy = MIN(left, len);
603 memcpy(&clt->clt_buf[clt->clt_buflen], buf, copy);
604 clt->clt_buflen += copy;
613 clt_putc(struct client *clt, char ch)
615 return (clt_write(clt, &ch, 1));
619 clt_puts(struct client *clt, const char *str)
621 return (clt_write(clt, str, strlen(str)));
625 clt_write_bufferevent(struct client *clt, struct bufferevent *bev)
627 struct evbuffer *src = EVBUFFER_INPUT(bev);
628 size_t len, left, copy;
630 len = EVBUFFER_LENGTH(src);
632 left = sizeof(clt->clt_buf) - clt->clt_buflen;
634 if (clt_flush(clt) == -1)
636 left = sizeof(clt->clt_buf);
639 copy = bufferevent_read(bev, &clt->clt_buf[clt->clt_buflen],
641 clt->clt_buflen += copy;
643 len = EVBUFFER_LENGTH(src);
650 clt_printf(struct client *clt, const char *fmt, ...)
652 struct fcgi *fcgi = clt->clt_fcgi;
653 struct bufferevent *bev = fcgi->fcg_bev;
659 r = vasprintf(&str, fmt, ap);
662 fcgi_error(bev, EV_WRITE, fcgi);
666 r = clt_write(clt, str, r);
672 fcgi_cmp(struct fcgi *a, struct fcgi *b)
674 return ((int)a->fcg_id - b->fcg_id);
678 fcgi_client_cmp(struct client *a, struct client *b)
680 return ((int)a->clt_id - b->clt_id);
683 SPLAY_GENERATE(fcgi_tree, fcgi, fcg_nodes, fcgi_cmp);
684 SPLAY_GENERATE(client_tree, client, clt_nodes, fcgi_client_cmp);
