annotate src/os/unix/ngx_user.c @ 508:68c0ae0a4959 NGINX_0_7_66

nginx 0.7.66 *) Security: now nginx/Windows ignores default file stream name. Thanks to Jose Antonio Vazquez Gonzalez. *) Change: now the charset filter runs before the SSI filter. *) Change: now no message is written in an error log if a variable is not found by $r->variable() method. *) Change: now keepalive connections after POST requests are not disabled for MSIE 7.0+. Thanks to Adam Lounds. *) Feature: the "proxy_no_cache" and "fastcgi_no_cache" directives. *) Feature: now the "rewrite" directive does a redirect automatically if the $scheme variable is used. Thanks to Piotr Sikora. *) Feature: the "chunked_transfer_encoding" directive. *) Feature: the $geoip_city_continent_code, $geoip_latitude, and $geoip_longitude variables. Thanks to Arvind Sundararajan. *) Feature: now the ngx_http_image_filter_module deletes always EXIF and other application specific data if the data consume more than 5% of a JPEG file. *) Feature: now the "msie_padding" directive works for Chrome too. *) Workaround: now keepalive connections are disabled for Safari. Thanks to Joshua Sierles. *) Bugfix: nginx ignored the "private" and "no-store" values in the "Cache-Control" backend response header line. *) Bugfix: an "&" character was not escaped when it was copied in arguments part in a rewrite rule. *) Bugfix: nginx might be terminated abnormally while a signal processing or if the directive "timer_resolution" was used on platforms which do not support kqueue or eventport notification methods. Thanks to George Xie and Maxim Dounin. *) Bugfix: if temporary files and permanent storage area resided at different file systems, then permanent file modification times were incorrect. Thanks to Maxim Dounin. *) Bugfix: ngx_http_memcached_module might issue the error message "memcached sent invalid trailer". Thanks to Maxim Dounin. *) Bugfix: nginx could not built zlib-1.2.4 library using the library sources. Thanks to Maxim Dounin. *) Bugfix: values of the $query_string, $arg_..., etc. variables cached in main request were used by the SSI module in subrequests. *) Bugfix: nginx did not support HTTPS referrers. *) Bugfix: nginx/Windows might not find file if path in configuration was given in other character case; the bug had appeared in 0.7.65. *) Bugfix: the $date_local variable has an incorrect value, if the "%s" format was used. Thanks to Maxim Dounin. *) Bugfix: nginx did not support all ciphers and digests used in client certificates. Thanks to Innocenty Enikeew. *) Bugfix: if ssl_session_cache was not set or was set to "none", then during client certificate verify the error "session id context uninitialized" might occur; the bug had appeared in 0.7.1. *) Bugfix: OpenSSL-1.0.0 compatibility on 64-bit Linux. Thanks to Maxim Dounin. *) Bugfix: a geo range returned default value if the range included two or more /16 networks and did not begin at /16 network boundary. *) Bugfix: the $uid_got variable might not be used in the SSI and perl modules. *) Bugfix: a worker process hung if a FIFO file was requested. Thanks to Vicente Aguilar and Maxim Dounin. *) Bugfix: a variable value was repeatedly encoded after each an "echo" SSI-command output; the bug had appeared in 0.6.14. *) Bugfix: a "stub" parameter of an "include" SSI directive was not used, if empty response has 200 status code. *) Bugfix: a block used in a "stub" parameter of an "include" SSI directive was output with "text/plain" MIME type. *) Bugfix: if a proxied or FastCGI request was internally redirected to another proxied or FastCGI location, then a segmentation fault might occur in a worker process; the bug had appeared in 0.7.65. Thanks to Yichun Zhang. *) Bugfix: IMAP connections may hang until they timed out while talking to Zimbra server. Thanks to Alan Batie. *) Bugfix: nginx did not support chunked transfer encoding for 201 responses. Thanks to Julian Reich.
author Igor Sysoev <http://sysoev.ru>
date Mon, 07 Jun 2010 00:00:00 +0400
parents 984bb0b1399b
children e1f4748dc78e
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
1
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
2 /*
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
3 * Copyright (C) Igor Sysoev
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
4 */
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
5
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
6
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
7 #include <ngx_config.h>
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
8 #include <ngx_core.h>
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
9
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
10
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
11 /*
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
12 * Solaris has thread-safe crypt()
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
13 * Linux has crypt_r(); "struct crypt_data" is more than 128K
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
14 * FreeBSD needs the mutex to protect crypt()
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
15 *
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
16 * TODO:
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
17 * ngx_crypt_init() to init mutex
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
18 */
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
19
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
20
54
bcb5fce0b038 nginx 0.1.27
Igor Sysoev <http://sysoev.ru>
parents: 52
diff changeset
21 #if (NGX_CRYPT)
bcb5fce0b038 nginx 0.1.27
Igor Sysoev <http://sysoev.ru>
parents: 52
diff changeset
22
76
da9a3b14312d nginx 0.1.38
Igor Sysoev <http://sysoev.ru>
parents: 58
diff changeset
23 #if (NGX_HAVE_GNU_CRYPT_R)
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
24
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
25 ngx_int_t
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
26 ngx_crypt(ngx_pool_t *pool, u_char *key, u_char *salt, u_char **encrypted)
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
27 {
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
28 char *value;
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
29 size_t len;
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
30 ngx_err_t err;
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
31 struct crypt_data cd;
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
32
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
33 ngx_set_errno(0);
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
34
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
35 cd.initialized = 0;
78
9db7e0b5b27f nginx 0.1.39
Igor Sysoev <http://sysoev.ru>
parents: 76
diff changeset
36 /* work around the glibc bug */
9db7e0b5b27f nginx 0.1.39
Igor Sysoev <http://sysoev.ru>
parents: 76
diff changeset
37 cd.current_salt[0] = ~salt[0];
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
38
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
39 value = crypt_r((char *) key, (char *) salt, &cd);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
40
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
41 err = ngx_errno;
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
42
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
43 if (err == 0) {
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
44 len = ngx_strlen(value);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
45
382
984bb0b1399b nginx 0.7.3
Igor Sysoev <http://sysoev.ru>
parents: 78
diff changeset
46 *encrypted = ngx_pnalloc(pool, len);
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
47 if (*encrypted) {
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
48 ngx_memcpy(*encrypted, value, len + 1);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
49 return NGX_OK;
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
50 }
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
51 }
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
52
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
53 ngx_log_error(NGX_LOG_CRIT, pool->log, err, "crypt_r() failed");
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
54
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
55 return NGX_ERROR;
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
56 }
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
57
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
58 #else
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
59
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
60 ngx_int_t
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
61 ngx_crypt(ngx_pool_t *pool, u_char *key, u_char *salt, u_char **encrypted)
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
62 {
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
63 char *value;
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
64 size_t len;
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
65 ngx_err_t err;
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
66
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
67 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
68
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
69 /* crypt() is a time consuming funtion, so we only try to lock */
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
70
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
71 if (ngx_mutex_trylock(ngx_crypt_mutex) != NGX_OK) {
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
72 return NGX_AGAIN;
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
73 }
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
74
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
75 #endif
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
76
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
77 ngx_set_errno(0);
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
78
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
79 value = crypt((char *) key, (char *) salt);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
80
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
81 if (value) {
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
82 len = ngx_strlen(value);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
83
382
984bb0b1399b nginx 0.7.3
Igor Sysoev <http://sysoev.ru>
parents: 78
diff changeset
84 *encrypted = ngx_pnalloc(pool, len);
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
85 if (*encrypted) {
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
86 ngx_memcpy(*encrypted, value, len + 1);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
87 }
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
88
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
89 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
90 ngx_mutex_unlock(ngx_crypt_mutex);
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
91 #endif
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
92 return NGX_OK;
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
93 }
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
94
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
95 err = ngx_errno;
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
96
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
97 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
98 ngx_mutex_unlock(ngx_crypt_mutex);
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
99 #endif
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
100
58
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
101 ngx_log_error(NGX_LOG_CRIT, pool->log, err, "crypt() failed");
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
102
b55cbf18157e nginx 0.1.29
Igor Sysoev <http://sysoev.ru>
parents: 54
diff changeset
103 return NGX_ERROR;
52
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
104 }
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
105
0d75d65c642f nginx 0.1.26
Igor Sysoev <http://sysoev.ru>
parents:
diff changeset
106 #endif
54
bcb5fce0b038 nginx 0.1.27
Igor Sysoev <http://sysoev.ru>
parents: 52
diff changeset
107
bcb5fce0b038 nginx 0.1.27
Igor Sysoev <http://sysoev.ru>
parents: 52
diff changeset
108 #endif /* NGX_CRYPT */