nginx-vendor-0-7: src/http/ngx_http

comparison src/http/ngx_http_request.c @ 506:b9fdcaf2062b NGINX_0_7_65

nginx 0.7.65 *) Security: now nginx/Windows ignores trailing spaces in URI. Thanks to Dan Crowley, Core Security Technologies. *) Security: now nginx/Windows ignores short files names. Thanks to Dan Crowley, Core Security Technologies. *) Change: now the "009" status code is written to an access log for proxied HTTP/0.9 responses. *) Change: now the default buffer size of the "large_client_header_buffers" directive is 8K. Thanks to Andrew Cholakian. *) Change: now default SSL ciphers are "HIGH:!ADH:!MD5". *) Change: now SSLv2 protocol is disabled by default. *) Change: now $host variable value is always low case. *) Feature: the conf/fastcgi.conf for simple FastCGI configurations. *) Feature: now URI part is not required a "proxy_pass" directive if variables are used. *) Feature: the $ssl_session_id variable. *) Bugfix: if a proxied or FastCGI request was internally redirected to another proxied or FastCGI location, then $upstream_response_time variable may have abnormally large value; the bug had appeared in 0.7.63. *) Bugfix: if the "expires modified" set date in the past, then a negative number was set in the "Cache-Control" response header line. Thanks to Alex Kapranoff. *) Bugfix: nginx closed a connection if a cached response had an empty body. Thanks to Piotr Sikora. *) Bugfix: nginx cached a 304 response if there was the "If-None-Match" header line in a proxied request. Thanks to Tim Dettrick and David Kostal. *) Bugfix: nginx did not treat a comma as separator in the "Cache-Control" backend response header line. *) Bugfix: cached HTTP/0.9 responses were handled incorrectly. *) Bugfix: nginx sent gzipped responses to clients those do not support gzip, if "gzip_static on" and "gzip_vary off"; the bug had appeared in 0.8.16. *) Bugfix: nginx always added "Content-Encoding: gzip" response header line in 304 responses sent by ngx_http_gzip_static_module. *) Bugfix: the "!-x" operator did not work. Thanks to Maxim Dounin. *) Bugfix: a segmentation fault might occur in a worker process, if limit_rate was used in HTTPS server. Thanks to Maxim Dounin. *) Bugfix: a segmentation fault might occur in a worker process while $limit_rate logging. Thanks to Maxim Dounin. *) Bugfix: nginx did not support dates in 2038 year on 32-bit platforms; *) Bugfix: nginx/Windows tried to delete a temporary file twice if the file should replace an already existent file. *) Bugfix: nginx/Windows tried to rename a temporary file twice if the file should replace an already existent file. *) Bugfix: nginx/Windows might not create temporary file, a cache file, or "proxy/fastcgi_store"d file if a worker had no enough access rights for top level directories. *) Bugfix: in UTF-8 encoding support by "try_files" directive in nginx/Windows. *) Bugfix: UTF-8 encoding usage in the ngx_http_autoindex_module. Thanks to Maxim Dounin. *) Bugfix: the ngx_http_autoindex_module did not show the trailing slash in links to a directory; the bug had appeared in 0.7.15. *) Bugfix: nginx did not close a log file set by the --error-log-path configuration option; the bug had appeared in 0.7.53. *) Bugfix: "addition_types" directive was incorrectly named "addtion_types". *) Bugfix: invalid request line in $request variable was written in access_log only if error_log was set to "info" or "debug" level.

author	Igor Sysoev <http://sysoev.ru>
date	Mon, 01 Feb 2010 00:00:00 +0000
parents	706fef7f4dcc
children	68c0ae0a4959

comparison

equal deleted inserted replaced

-:c62da3dcc544
+:b9fdcaf2062b
 static ngx_int_t ngx_http_process_cookie(ngx_http_request_t *r,
 ngx_table_elt_t *h, ngx_uint_t offset);
 static ngx_int_t ngx_http_process_request_header(ngx_http_request_t *r);
 static void ngx_http_process_request(ngx_http_request_t *r);
-static ssize_t ngx_http_validate_host(u_char *host, size_t len);
+static ssize_t ngx_http_validate_host(ngx_http_request_t *r, u_char **host,
+size_t len, ngx_uint_t alloc);
 static ngx_int_t ngx_http_find_virtual_server(ngx_http_request_t *r,
 u_char *host, size_t len);
 static void ngx_http_request_handler(ngx_event_t *ev);
 static ngx_int_t ngx_http_set_write_handler(ngx_http_request_t *r);
 int
 ngx_http_ssl_servername(ngx_ssl_conn_t *ssl_conn, int *ad, void *arg)
 {
 size_t                    len;
+u_char                   *host;
 const char               *servername;
 ngx_connection_t         *c;
 ngx_http_request_t       *r;
 ngx_http_ssl_srv_conf_t  *sscf;
 return SSL_TLSEXT_ERR_NOACK;
 }
 r = c->data;
-if (ngx_http_find_virtual_server(r, (u_char *) servername, len) != NGX_OK) {
+host = (u_char *) servername;
+len = ngx_http_validate_host(r, &host, len, 1);
+if (len <= 0) {
+return SSL_TLSEXT_ERR_NOACK;
+}
+if (ngx_http_find_virtual_server(r, host, len) != NGX_OK) {
 return SSL_TLSEXT_ERR_NOACK;
 }
 sscf = ngx_http_get_module_srv_conf(r, ngx_http_ssl_module);
 static void
 ngx_http_process_request_line(ngx_event_t *rev)
 {
+u_char                    *host;
 ssize_t                    n;
 ngx_int_t                  rc, rv;
 ngx_connection_t          *c;
 ngx_http_request_t        *r;
 ngx_http_core_srv_conf_t  *cscf;
 {
 u_char  *p;
 p = r->uri.data + r->uri.len - 1;
-if (*p == '.') {
+if (*p == '.' || *p == ' ') {
-while (--p > r->uri.data && *p == '.') { /* void */ }
+while (--p > r->uri.data && (*p == '.' || *p == ' ')) {
+/* void */
+}
 r->uri.len = p + 1 - r->uri.data;
 ngx_http_set_exten(r);
 }
 ngx_log_debug1(NGX_LOG_DEBUG_HTTP, c->log, 0,
 "http exten: \"%V\"", &r->exten);
 if (r->host_start && r->host_end) {
-n = ngx_http_validate_host(r->host_start,
-r->host_end - r->host_start);
+host = r->host_start;
+n = ngx_http_validate_host(r, &host,
-if (n <= 0) {
+r->host_end - r->host_start, 0);
+if (n == 0) {
 ngx_log_error(NGX_LOG_INFO, c->log, 0,
 "client sent invalid host in request line");
 ngx_http_finalize_request(r, NGX_HTTP_BAD_REQUEST);
 return;
 }
+if (n < 0) {
+ngx_http_close_request(r, NGX_HTTP_INTERNAL_SERVER_ERROR);
+return;
+}
 r->headers_in.server.len = n;
-r->headers_in.server.data = r->host_start;
+r->headers_in.server.data = host;
 }
 if (r->http_version < NGX_HTTP_VERSION_10) {
 if (ngx_http_find_virtual_server(r, r->headers_in.server.data,
 ngx_http_close_request(r, NGX_HTTP_INTERNAL_SERVER_ERROR);
 return;
 }
 if (rv == NGX_DECLINED) {
-len = r->header_in->end - r->header_name_start;
 p = r->header_name_start;
+if (p == NULL) {
+ngx_log_error(NGX_LOG_INFO, c->log, 0,
+"client sent too large request");
+ngx_http_finalize_request(r, NGX_HTTP_BAD_REQUEST);
+return;
+}
+len = r->header_in->end - p;
 if (len > NGX_MAX_ERROR_STR - 300) {
 len = NGX_MAX_ERROR_STR - 300;
 p[len++] = '.'; p[len++] = '.'; p[len++] = '.';
 }
 static ngx_int_t
 ngx_http_process_host(ngx_http_request_t *r, ngx_table_elt_t *h,
 ngx_uint_t offset)
 {
-ssize_t  len;
+u_char   *host;
+ssize_t   len;
 if (r->headers_in.host == NULL) {
 r->headers_in.host = h;
 }
-len = ngx_http_validate_host(h->value.data, h->value.len);
+host = h->value.data;
+len = ngx_http_validate_host(r, &host, h->value.len, 0);
-if (len <= 0) {
+if (len == 0) {
 ngx_log_error(NGX_LOG_INFO, r->connection->log, 0,
 "client sent invalid host header");
 ngx_http_finalize_request(r, NGX_HTTP_BAD_REQUEST);
 return NGX_ERROR;
 }
+if (len < 0) {
+ngx_http_close_request(r, NGX_HTTP_INTERNAL_SERVER_ERROR);
+return NGX_ERROR;
+}
 if (r->headers_in.server.len) {
 return NGX_OK;
 }
 r->headers_in.server.len = len;
-r->headers_in.server.data = h->value.data;
+r->headers_in.server.data = host;
 return NGX_OK;
 }
 ngx_http_run_posted_requests(c);
 }
 static ssize_t
-ngx_http_validate_host(u_char *host, size_t len)
+ngx_http_validate_host(ngx_http_request_t *r, u_char **host, size_t len,
-{
+ngx_uint_t alloc)
-u_char      ch;
+{
-size_t      i, last;
+u_char      *h, ch;
-ngx_uint_t  dot;
+size_t       i, last;
+ngx_uint_t   dot;
 last = len;
+h = *host;
 dot = 0;
 for (i = 0; i < len; i++) {
-ch = host[i];
+ch = h[i];
 if (ch == '.') {
 if (dot) {
-return -1;
+return 0;
 }
 dot = 1;
 continue;
 }
 last = i;
 continue;
 }
 if (ngx_path_separator(ch) || ch == '\0') {
-return -1;
+return 0;
+}
+if (ch >= 'A' || ch < 'Z') {
+alloc = 1;
 }
 }
 if (dot) {
 last--;
 }
+if (alloc) {
+*host = ngx_pnalloc(r->pool, last) ;
+if (*host == NULL) {
+return -1;
+}
+ngx_strlow(*host, h, last);
+}
 return last;
 }
 static ngx_int_t
 ngx_http_find_virtual_server(ngx_http_request_t *r, u_char *host, size_t len)
 {
-u_char                    *server;
-ngx_uint_t                 hash;
 ngx_http_core_loc_conf_t  *clcf;
 ngx_http_core_srv_conf_t  *cscf;
-u_char                     buf[32];
 if (r->virtual_names == NULL) {
 return NGX_DECLINED;
 }
-if (len <= 32) {
+cscf = ngx_hash_find_combined(&r->virtual_names->names,
-server = buf;
+ngx_hash_key(host, len), host, len);
-} else {
-server = ngx_pnalloc(r->pool, len);
-if (server == NULL) {
-return NGX_ERROR;
-}
-}
-hash = ngx_hash_strlow(server, host, len);
-cscf = ngx_hash_find_combined(&r->virtual_names->names, hash, server, len);
 if (cscf) {
 goto found;
 }
 ngx_uint_t               i;
 ngx_str_t                name;
 ngx_http_server_name_t  *sn;
 name.len = len;
-name.data = server;
+name.data = host;
 ncaptures = 0;
 sn = r->virtual_names->regex;
 ncaptures = (NGX_HTTP_MAX_CAPTURES + 1) * 3;
 r->captures = ngx_palloc(r->pool, ncaptures * sizeof(int));
 if (r->captures == NULL) {
 return NGX_ERROR;
-}
-if (server == buf) {
-server = ngx_pnalloc(r->pool, len);
-if (server == NULL) {
-return NGX_ERROR;
-}
-ngx_memcpy(server, buf, len);
-name.data = server;
 }
 }
 n = ngx_regex_exec(sn[i].regex, &name, r->captures, ncaptures);
 /* match */
 cscf = sn[i].core_srv_conf;
 r->ncaptures = ncaptures;
-r->captures_data = server;
+r->captures_data = host;
 goto found;
 }
 }

Mercurial > hg > nginx-vendor-0-7

comparison src/http/ngx_http_request.c @ 506:b9fdcaf2062b NGINX_0_7_65