18abd06a7SGlenn Strauss #include "first.h"
28abd06a7SGlenn Strauss
3bcdc6a3bSJan Kneschke #include "base.h"
4d5782ebaSGlenn Strauss #include "array.h"
5bcdc6a3bSJan Kneschke #include "buffer.h"
6d5782ebaSGlenn Strauss #include "log.h"
7bcdc6a3bSJan Kneschke
8bcdc6a3bSJan Kneschke #include "plugin.h"
9bcdc6a3bSJan Kneschke
1022e8b456SStefan Bühler #include <stdlib.h>
1122e8b456SStefan Bühler #include <string.h>
1222e8b456SStefan Bühler
13bcdc6a3bSJan Kneschke typedef struct {
14d5782ebaSGlenn Strauss const array *alias;
15bcdc6a3bSJan Kneschke } plugin_config;
16bcdc6a3bSJan Kneschke
17bcdc6a3bSJan Kneschke typedef struct {
18bcdc6a3bSJan Kneschke PLUGIN_DATA;
19d5782ebaSGlenn Strauss plugin_config defaults;
20bcdc6a3bSJan Kneschke plugin_config conf;
21bcdc6a3bSJan Kneschke } plugin_data;
22bcdc6a3bSJan Kneschke
INIT_FUNC(mod_alias_init)23bcdc6a3bSJan Kneschke INIT_FUNC(mod_alias_init) {
24*5e14db43SGlenn Strauss return ck_calloc(1, sizeof(plugin_data));
25bcdc6a3bSJan Kneschke }
26bcdc6a3bSJan Kneschke
mod_alias_merge_config_cpv(plugin_config * const pconf,const config_plugin_value_t * const cpv)27d5782ebaSGlenn Strauss static void mod_alias_merge_config_cpv(plugin_config * const pconf, const config_plugin_value_t * const cpv) {
28d5782ebaSGlenn Strauss switch (cpv->k_id) { /* index into static config_plugin_keys_t cpk[] */
29d5782ebaSGlenn Strauss case 0: /* alias.url */
30d5782ebaSGlenn Strauss pconf->alias = cpv->v.a;
31d5782ebaSGlenn Strauss break;
32d5782ebaSGlenn Strauss default:/* should not happen */
33d5782ebaSGlenn Strauss return;
34d5782ebaSGlenn Strauss }
35bcdc6a3bSJan Kneschke }
36bd77abe0SGlenn Strauss
mod_alias_merge_config(plugin_config * const pconf,const config_plugin_value_t * cpv)37d5782ebaSGlenn Strauss static void mod_alias_merge_config(plugin_config * const pconf, const config_plugin_value_t *cpv) {
38d5782ebaSGlenn Strauss do {
39d5782ebaSGlenn Strauss mod_alias_merge_config_cpv(pconf, cpv);
40d5782ebaSGlenn Strauss } while ((++cpv)->k_id != -1);
41bd77abe0SGlenn Strauss }
42bd77abe0SGlenn Strauss
mod_alias_patch_config(request_st * const r,plugin_data * const p)437c7f8c46SGlenn Strauss static void mod_alias_patch_config(request_st * const r, plugin_data * const p) {
44cc2134c8SGlenn Strauss p->conf = p->defaults; /* copy small struct instead of memcpy() */
45cc2134c8SGlenn Strauss /*memcpy(&p->conf, &p->defaults, sizeof(plugin_config));*/
46d5782ebaSGlenn Strauss for (int i = 1, used = p->nconfig; i < used; ++i) {
477c7f8c46SGlenn Strauss if (config_check_cond(r, (uint32_t)p->cvlist[i].k_id))
48d5782ebaSGlenn Strauss mod_alias_merge_config(&p->conf, p->cvlist + p->cvlist[i].v.u2[0]);
49d5782ebaSGlenn Strauss }
50d5782ebaSGlenn Strauss }
5175c3a839SJan Kneschke
mod_alias_check_order(server * const srv,const array * const a)52d5782ebaSGlenn Strauss static int mod_alias_check_order(server * const srv, const array * const a) {
53d5782ebaSGlenn Strauss for (uint32_t j = 0; j < a->used; ++j) {
54c16c6a8fSGlenn Strauss const buffer * const prefix = &a->data[j]->key;
55af3df29aSGlenn Strauss const size_t plen = buffer_clen(prefix);
56d5782ebaSGlenn Strauss for (uint32_t k = j + 1; k < a->used; ++k) {
57c16c6a8fSGlenn Strauss const buffer * const key = &a->data[k]->key;
58af3df29aSGlenn Strauss if (buffer_clen(key) < plen) {
5975c3a839SJan Kneschke break;
6075c3a839SJan Kneschke }
61d5782ebaSGlenn Strauss if (memcmp(key->ptr, prefix->ptr, plen) != 0) {
6275c3a839SJan Kneschke break;
6375c3a839SJan Kneschke }
6475c3a839SJan Kneschke /* ok, they have same prefix. check position */
65c16c6a8fSGlenn Strauss const data_unset *dj = a->data[j];
66c16c6a8fSGlenn Strauss const data_unset *dk = a->data[k];
67e3dc34d1SGlenn Strauss const data_unset **data = (const data_unset **)a->data;
68e3dc34d1SGlenn Strauss while (*data != dj && *data != dk) ++data;
69e3dc34d1SGlenn Strauss if (*data == dj) {
70d5782ebaSGlenn Strauss log_error(srv->errh, __FILE__, __LINE__,
716d9d2cabSGlenn Strauss "alias.url: `%s' will never match as `%s' matched first",
72d5782ebaSGlenn Strauss key->ptr, prefix->ptr);
73d5782ebaSGlenn Strauss return 0;
74d5782ebaSGlenn Strauss }
75d5782ebaSGlenn Strauss }
76d5782ebaSGlenn Strauss }
77d5782ebaSGlenn Strauss return 1;
78d5782ebaSGlenn Strauss }
79d5782ebaSGlenn Strauss
SETDEFAULTS_FUNC(mod_alias_set_defaults)80d5782ebaSGlenn Strauss SETDEFAULTS_FUNC(mod_alias_set_defaults) {
81d5782ebaSGlenn Strauss static const config_plugin_keys_t cpk[] = {
82d5782ebaSGlenn Strauss { CONST_STR_LEN("alias.url"),
8303b4c993SGlenn Strauss T_CONFIG_ARRAY_KVSTRING,
84d5782ebaSGlenn Strauss T_CONFIG_SCOPE_CONNECTION }
85d5782ebaSGlenn Strauss ,{ NULL, 0,
86d5782ebaSGlenn Strauss T_CONFIG_UNSET,
87d5782ebaSGlenn Strauss T_CONFIG_SCOPE_UNSET }
88d5782ebaSGlenn Strauss };
89d5782ebaSGlenn Strauss
90d5782ebaSGlenn Strauss plugin_data * const p = p_d;
91d5782ebaSGlenn Strauss if (!config_plugin_values_init(srv, p, cpk, "mod_alias"))
92d5782ebaSGlenn Strauss return HANDLER_ERROR;
93d5782ebaSGlenn Strauss
94d5782ebaSGlenn Strauss /* process and validate config directives
95d5782ebaSGlenn Strauss * (init i to 0 if global context; to 1 to skip empty global context) */
96d5782ebaSGlenn Strauss for (int i = !p->cvlist[0].v.u2[1]; i < p->nconfig; ++i) {
97d5782ebaSGlenn Strauss const config_plugin_value_t *cpv = p->cvlist + p->cvlist[i].v.u2[0];
98d5782ebaSGlenn Strauss for (; -1 != cpv->k_id; ++cpv) {
99d5782ebaSGlenn Strauss switch (cpv->k_id) {
100d5782ebaSGlenn Strauss case 0: /* alias.url */
101d5782ebaSGlenn Strauss if (cpv->v.a->used >= 2 && !mod_alias_check_order(srv,cpv->v.a))
102d5782ebaSGlenn Strauss return HANDLER_ERROR;
103d5782ebaSGlenn Strauss break;
104d5782ebaSGlenn Strauss default:/* should not happen */
105d5782ebaSGlenn Strauss break;
10675c3a839SJan Kneschke }
10775c3a839SJan Kneschke }
10875c3a839SJan Kneschke }
109d5782ebaSGlenn Strauss
110d5782ebaSGlenn Strauss /* initialize p->defaults from global config context */
111d5782ebaSGlenn Strauss if (p->nconfig > 0 && p->cvlist->v.u2[1]) {
112d5782ebaSGlenn Strauss const config_plugin_value_t *cpv = p->cvlist + p->cvlist->v.u2[0];
113d5782ebaSGlenn Strauss if (-1 != cpv->k_id)
114d5782ebaSGlenn Strauss mod_alias_merge_config(&p->defaults, cpv);
115bcdc6a3bSJan Kneschke }
116bcdc6a3bSJan Kneschke
117bcdc6a3bSJan Kneschke return HANDLER_GO_ON;
118bcdc6a3bSJan Kneschke }
119bcdc6a3bSJan Kneschke
12062a874dfSGlenn Strauss static handler_t
mod_alias_remap(request_st * const r,const array * const aliases)12162a874dfSGlenn Strauss mod_alias_remap (request_st * const r, const array * const aliases)
12262a874dfSGlenn Strauss {
123d61f3381SGlenn Strauss /* do not include trailing slash on basedir */
124af3df29aSGlenn Strauss uint32_t basedir_len = buffer_clen(&r->physical.basedir);
12581ef66eaSGlenn Strauss if (buffer_has_pathsep_suffix(&r->physical.basedir)) --basedir_len;
126bcdc6a3bSJan Kneschke
127af3df29aSGlenn Strauss const uint32_t path_len = buffer_clen(&r->physical.path);
12862a874dfSGlenn Strauss if (0 == path_len || path_len < basedir_len) return HANDLER_GO_ON;
12962a874dfSGlenn Strauss
13062a874dfSGlenn Strauss const uint32_t uri_len = path_len - basedir_len;
131584a69c4SGlenn Strauss const char *uri_ptr = r->physical.path.ptr + basedir_len;
13262a874dfSGlenn Strauss data_string * const ds = (data_string *)
13362a874dfSGlenn Strauss (!r->conf.force_lowercase_filenames
13462a874dfSGlenn Strauss ? array_match_key_prefix_klen(aliases, uri_ptr, uri_len)
13562a874dfSGlenn Strauss : array_match_key_prefix_nc_klen(aliases, uri_ptr, uri_len));
13662a874dfSGlenn Strauss if (NULL == ds) return HANDLER_GO_ON;
137bcdc6a3bSJan Kneschke
138bcdc6a3bSJan Kneschke /* matched */
139bcdc6a3bSJan Kneschke
140af3df29aSGlenn Strauss const uint32_t alias_len = buffer_clen(&ds->key);
141af3df29aSGlenn Strauss const uint32_t vlen = buffer_clen(&ds->value);
14262a874dfSGlenn Strauss
1432105dae0SGlenn Strauss /* check for path traversal in url-path following alias if key
1442105dae0SGlenn Strauss * does not end in slash, but replacement value ends in slash */
1452105dae0SGlenn Strauss if (uri_ptr[alias_len] == '.') {
14662a874dfSGlenn Strauss const char *s = uri_ptr + alias_len + 1;
1472105dae0SGlenn Strauss if (*s == '.') ++s;
1482105dae0SGlenn Strauss if (*s == '/' || *s == '\0') {
149ad9b7e00SGlenn Strauss if (0 != alias_len && ds->key.ptr[alias_len-1] != '/'
150601c572cSGlenn Strauss && 0 != vlen && ds->value.ptr[vlen-1] == '/') {
1517c7f8c46SGlenn Strauss r->http_status = 403;
1522105dae0SGlenn Strauss return HANDLER_FINISHED;
1532105dae0SGlenn Strauss }
1542105dae0SGlenn Strauss }
1552105dae0SGlenn Strauss }
1562105dae0SGlenn Strauss
15762a874dfSGlenn Strauss /*(not buffer_append_path_len();
15862a874dfSGlenn Strauss * alias could be prefix instead of complete path segment,
15962a874dfSGlenn Strauss * (though resulting r->physical.basedir would not be a dir))*/
16062a874dfSGlenn Strauss if (vlen != basedir_len + alias_len) {
16162a874dfSGlenn Strauss const uint32_t nlen = vlen + uri_len - alias_len;
162584a69c4SGlenn Strauss if (path_len + buffer_string_space(&r->physical.path) < nlen) {
16362a874dfSGlenn Strauss buffer_string_prepare_append(&r->physical.path, nlen - path_len);
164584a69c4SGlenn Strauss uri_ptr = r->physical.path.ptr + basedir_len;/*(refresh if alloc)*/
165584a69c4SGlenn Strauss }
16662a874dfSGlenn Strauss memmove(r->physical.path.ptr + vlen,
16762a874dfSGlenn Strauss uri_ptr + alias_len, uri_len - alias_len);
168af3df29aSGlenn Strauss buffer_truncate(&r->physical.path, nlen);
16962a874dfSGlenn Strauss }
17062a874dfSGlenn Strauss memcpy(r->physical.path.ptr, ds->value.ptr, vlen);
17162a874dfSGlenn Strauss
17262a874dfSGlenn Strauss buffer_copy_string_len(&r->physical.basedir, ds->value.ptr, vlen);
173bcdc6a3bSJan Kneschke
174bcdc6a3bSJan Kneschke return HANDLER_GO_ON;
175bcdc6a3bSJan Kneschke }
176bcdc6a3bSJan Kneschke
PHYSICALPATH_FUNC(mod_alias_physical_handler)17762a874dfSGlenn Strauss PHYSICALPATH_FUNC(mod_alias_physical_handler) {
17862a874dfSGlenn Strauss plugin_data * const p = p_d;
17962a874dfSGlenn Strauss mod_alias_patch_config(r, p);
18062a874dfSGlenn Strauss return p->conf.alias ? mod_alias_remap(r, p->conf.alias) : HANDLER_GO_ON;
18162a874dfSGlenn Strauss }
18262a874dfSGlenn Strauss
183bcdc6a3bSJan Kneschke
184b82d7b8aSGlenn Strauss __attribute_cold__
18563f785a2SStefan Bühler int mod_alias_plugin_init(plugin *p);
mod_alias_plugin_init(plugin * p)186bcdc6a3bSJan Kneschke int mod_alias_plugin_init(plugin *p) {
187bcdc6a3bSJan Kneschke p->version = LIGHTTPD_VERSION_ID;
188e2de4e58SGlenn Strauss p->name = "alias";
189bcdc6a3bSJan Kneschke
190bcdc6a3bSJan Kneschke p->init = mod_alias_init;
1916adaad54SJan Kneschke p->handle_physical= mod_alias_physical_handler;
192bcdc6a3bSJan Kneschke p->set_defaults = mod_alias_set_defaults;
193bcdc6a3bSJan Kneschke
194bcdc6a3bSJan Kneschke return 0;
195bcdc6a3bSJan Kneschke }
196