Commit Graph

3098 Commits (364939096a7136f54be4f5dec526407d74e583fc)
 

Author SHA1 Message Date
Glenn Strauss 61785d868f [core] array keys are non-empty in key-value list 3 years ago
Glenn Strauss db5ff222e4 [core] short-circuit path to clear request.headers
short-circuit path to clear con->request.headers if entire size of
all request headers is <= BUFFER_MAX_REUSE_SIZE

clear (reset) data_string key and value upon reuse
3 years ago
Glenn Strauss 5d9bfc9a76 [core] remove unused members of struct server 3 years ago
Glenn Strauss 10d71279ae [core] uint32_t for struct buffer sizes 3 years ago
Glenn Strauss 62e97967ca [core] prefer uint32_t to size_t in base.h
even 2 billion is way larger than even extreme operating values
expected for the members in base.h

include some structs directly in struct server, rather than by ptr
3 years ago
Glenn Strauss ddb78f75ee [core] remove unused array_reset() 3 years ago
Glenn Strauss 785037dded [core] http_header.c internal inline funcs 3 years ago
Glenn Strauss 70b5d729ae [core] mark some data_* funcs cold
mark funcs cold if seldom used or used only at startup config processing

mark most data_config_* funcs cold

data_*_copy()
data_*_insert_dup()
data_*_print()
data_*_reset()

array_reset()
3 years ago
Glenn Strauss b2991c686d [core] perf: array.c performance enhancements
mark array_get_index() as hot, rewrite to be pure and return sorted pos

mark routines as pure, as appropriate

mark routines as cold if used only at startup for config processing

mark params const, as appropriate

array_get_buf_ptr() for modifiable value buffer after insert into array

uint32_t used and size members instead of size_t

remove a->unique_ndx member; simply add to end of array for value lists
remove du->is_index_key member; simply check buffer_is_empty(du->key)

array_insert_key_value() used to be a hint that lookup could be skipped,
but the state from array_get_index() is now saved and reused internally,
so the distinction is no longer needed.  Use array_set_key_value().
3 years ago
Glenn Strauss 2fd0faf1bf [mod_extforward] simplify code: use light_isxdigit 3 years ago
Glenn Strauss d58787189a [core] handle common case of alnum or - field-name
handle common case of alnum or - field-name before calling
http_request_parse_header_other()
3 years ago
Glenn Strauss 71a7b54947 [core] more 'const' in request.c prototypes 3 years ago
Glenn Strauss 36f3206a4c [core] pass ptr to http_request_parse() 3 years ago
Glenn Strauss 8223903e50 [core] inline connection_read_header()
inline connection_read_header() into connection_handle_read_state()

(The large stack usage prevents the compiler from inlining the routine,
 but if we enter connection_handle_read_state(), then we are going to
 be running connection_read_header(), so put them together)
3 years ago
Glenn Strauss 11f3dd896b [core] perf: connection_read_header_hoff() hot 3 years ago
Glenn Strauss ec2ff2c6ae [core] perf: connection_read_header_more()
additional header parsing optimization
collect request headers into single buffer for parsing
3 years ago
Glenn Strauss 46d7e9c2ed [core] no need to pass srv to connection_set_state 3 years ago
Glenn Strauss 63e32e8100 [core] perf: HTTP header parsing using \n offsets 3 years ago
Glenn Strauss fa4ab19275 [core] reduce use of struct parse_header_state 3 years ago
Glenn Strauss cdf653f8ce [core] pass con around request, not srv and con
In the cold cases where srv is needed, obtain from con->srv
3 years ago
Glenn Strauss fcd1f57511 [core] connection_chunkqueue_compact() 3 years ago
Glenn Strauss 2ad92d17a1 [core] chunkqueue_compact_mem() 3 years ago
Glenn Strauss d22e7a769d [core] cold buffer_string_prepare_append_resize() 3 years ago
Glenn Strauss c22ec74770 [core] do not pass srv to http header parsing func
srv is retrieved from con->srv in the few cases where needed
3 years ago
Glenn Strauss 80d12919d1 [core] replace connection_set_state w/ assignment
replace connection_set_state() with simple assignment

(only connections.c and connections-glue.c should change con state)
3 years ago
Glenn Strauss be6964f415 [core] use func rc to indicate done reading header 3 years ago
Glenn Strauss 1334436394 [core] store struct server * in struct connection 3 years ago
Glenn Strauss 41944e3be8 [core] add User-Agent to http_header_e enum
recognize as common header

(minor performance enhancement)
3 years ago
Glenn Strauss 9858051d03 [core] remove srv->split_vals 3 years ago
Glenn Strauss bcd5288557 [mod_evhost] use local array to split values 3 years ago
Glenn Strauss 1b08c736ba [mod_flv_streaming] parse query string w/o copying 3 years ago
Glenn Strauss e2b4c309f6 [core] http_header_str_contains_token() 3 years ago
Glenn Strauss 6f803af03c [core] perf: request processing 3 years ago
Glenn Strauss 2230b08ef4 - next is 1.4.56 3 years ago
Glenn Strauss b1048b2349 [doc] NEWS 3 years ago
Glenn Strauss f37c16aadd [core] fix one-byte OOB read (underflow)
In some circumstances, if the character on the heap prior to the
beginning of the request is '\r', then it would be overwritten with '\0'

With default compiler flags, this does not appear to occur in practice
and we therefore believe it to be a low-probability vulnerability.

(thx Antonio Morales)

This issue was discovered and reported by GSL team member @
<https://github.com/antonio-morales>antonio-morales
<https://github.com/antonio-morales>  (Antonio Morales)
3 years ago
raw 2c409321df [build] Fix build when using nested CMake
(FetchContent, ExternalProject_Add)

github: closes #102
3 years ago
Niclas Rosenvik 8c9b5480f3 [core] Solaris has getloadavg in sys/loadavg.h
SunOS/Solaris/Illumos has getloadavg declared in sys/loadavg.h .

github: closes #101
3 years ago
Elan Ruusamäe 15cdc313b5 [config] update /var/run -> /run for systemd
This gets rid of the warning:
> May 19 10:56:32 buster systemd[1]: /lib/systemd/system/lighttpd.service:6:
> PIDFile= references path below legacy directory /var/run/,
> updating /var/run/lighttpd.pid → /run/lighttpd.pid;
> please update the unit file accordingly.

refs:
- a2d1fb882c
- https://github.com/systemd/systemd/pull/9019
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929203
- Filesystem Hierarchy Standard 3.0 (FHS 3.0)

github: closes #100
3 years ago
Glenn Strauss 12aa0f4c91 [core] save errno before logging if execve() fails
(fdevent_fork_execve())
3 years ago
Glenn Strauss fb74bb7514 [core] do not accept() > server.max-connections 3 years ago
Glenn Strauss 8bddac9263 [mod_auth] close connection after bad password
mitigation slows down brute force password attacks

x-ref:
  "Possible feature: authentication brute force hardening"
  https://redmine.lighttpd.net/boards/3/topics/8885
3 years ago
Glenn Strauss fce489b806 [core] fall back to accept() if accept4() EPERM (fixes #2998)
On some architectures, accept4() might result in EPERM depending
on Linux kernel and/or glibc support for accept4()

(thx alex-che)

x-ref:
  "accept4 returns EPERM instead of ENOSYS on some platforms"
  https://redmine.lighttpd.net/issues/2998
3 years ago
Glenn Strauss 9cdfb48466 [core] preserve %2b and %2B in query string (fixes #2999)
normalize %2b or %2B in query string to %2B (uppercase hex),
and not to '+'

(thx int-e)

x-ref:
  "url-normalize-required expands %2B in query strings"
  https://redmine.lighttpd.net/issues/2999
3 years ago
Glenn Strauss aaccb1bc5e [multiple] address coverity warnings 3 years ago
Glenn Strauss f4a5a09d96 [core] Oracle Solaris does not have POLLRDHUP
(IllumOS added support 5+ years ago)

x-ref:
  fc914ae442
3 years ago
Glenn Strauss 330c39c694 [mod_accesslog] parse multiple cookies (fixes #2986)
(thx xoneca)

x-ref:
  "Cookie format specifier is broken"
  https://redmine.lighttpd.net/issues/2986
3 years ago
Glenn Strauss fa8856757c [mod_openssl] reject invalid ALPN 3 years ago
Glenn Strauss 66624b375b [core] reject Transfer-Encoding + Content-Length (#2985)
reject requests with both Transfer-Encoding and Content-Length
as recommended in RFC 7230 Section 3.3.3.

strict header parsing is enabled by default in lighttpd.  However,
if explicitly disabled in lighttpd.conf, lighttpd will continue to
accept Transfer-Encoding and Content-Length in the same request,
and will ignore (and remove) Content-Length before passing to backend.
  UNSAFE: server.http-parseopts = ( "header-strict" => "disable" )
  This is NOT RECOMMENDED since doing so disables other protections
  provided by lighttpd strict http header parsing.

RFC7230 Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing
  3.3.3.  Message Body Length
  [...]
  If a message is received with both a Transfer-Encoding and a
  Content-Length header field, the Transfer-Encoding overrides the
  Content-Length.  Such a message might indicate an attempt to
  perform request smuggling (Section 9.5) or response splitting
  (Section 9.4) and ought to be handled as an error.  A sender MUST
  remove the received Content-Length field prior to forwarding such
  a message downstream.

x-ref:
  stricter request header parsing
  https://redmine.lighttpd.net/issues/2985
3 years ago
Glenn Strauss 61f85d14ee [core] reject WS following header field-name (fixes #2985)
reject whitespace following request header field-name and before colon
Such whitespace is forbidden in RFC 7230 Section 3.2.4.

strict header parsing is enabled by default in lighttpd.  However,
if explicitly disabled in lighttpd.conf, lighttpd will continue to
accept (and re-format) such field-names before passing to any backend.
  UNSAFE: server.http-parseopts = ( "header-strict" => "disable" )
  This is NOT RECOMMENDED since doing so disables other protections
  provided by lighttpd strict http header parsing.

(thx fedormixalich)

x-ref:
  stricter request header parsing
  https://redmine.lighttpd.net/issues/2985
3 years ago