mirrors
/
kore
mirror of https://git.kore.io/kore.git
1
0
Fork 1
Code Issues Projects Releases Wiki Activity
kore/src/config.c

1101 lines
25 KiB
C
Raw Normal View History

add missing config.c
2013-05-01 17:17:16 +02:00
/*
Bump copyright to 2016.
2016-01-04 12:58:51 +01:00
* Copyright (c) 2013-2016 Joris Vink <joris@coders.se>
add missing config.c
2013-05-01 17:17:16 +02:00
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#include <sys/param.h>
Missing sys/stat.h, from James Turner
2014-03-07 09:55:28 +01:00
#include <sys/stat.h>
Add missing C library headers
2016-01-22 12:08:13 +01:00
#include <stdio.h>
#include <string.h>
add stdint.h
2017-02-06 12:13:29 +01:00
#include <stdint.h>
add missing config.c
2013-05-01 17:17:16 +02:00
#include <ctype.h>
Add a callback that Kore can call in your module every given interval. The callback is run from the parent process (which runs as root). Adds kore_cb and kore_cb_interval configuration options.
2013-09-02 08:52:16 +02:00
#include <limits.h>
add missing config.c
2013-05-01 17:17:16 +02:00
#include <fcntl.h>
refactor code quite a bit.
2013-06-26 11:18:32 +02:00
#include <pwd.h>
add missing config.c
2013-05-01 17:17:16 +02:00
#include "kore.h"
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
#include "http.h"
add missing config.c
2013-05-01 17:17:16 +02:00
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#if defined(KORE_USE_PGSQL)
#include "pgsql.h"
#endif
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
#if defined(KORE_USE_TASKS)
#include "tasks.h"
#endif
Add initial python support. Based on work done by Stanislav Yudin.
2017-01-12 23:38:51 +01:00
#if defined(KORE_USE_PYTHON)
#include "python_api.h"
#endif
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
/* XXX - This is becoming a clusterfuck. Fix it. */
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
static int configure_load(char *);
Allow single binaries to load modules again.
2017-01-26 13:13:23 +01:00
#if defined(KORE_SINGLE_BINARY)
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
static FILE *config_file_write(void);
extern u_int8_t asset_builtin_kore_conf[];
extern u_int32_t asset_len_builtin_kore_conf;
#endif
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
static int configure_include(char *);
static int configure_bind(char *);
static int configure_domain(char *);
static int configure_chroot(char *);
static int configure_runas(char *);
static int configure_workers(char *);
static int configure_pidfile(char *);
static int configure_rlimit_nofiles(char *);
static int configure_max_connections(char *);
static int configure_accept_threshold(char *);
static int configure_set_affinity(char *);
static int configure_socket_backlog(char *);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#if !defined(KORE_NO_TLS)
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
static int configure_certfile(char *);
static int configure_certkey(char *);
static int configure_tls_version(char *);
static int configure_tls_cipher(char *);
static int configure_tls_dhparam(char *);
static int configure_client_certificates(char *);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif
#if !defined(KORE_NO_HTTP)
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
static int configure_handler(int, char *);
static int configure_static_handler(char *);
static int configure_dynamic_handler(char *);
static int configure_accesslog(char *);
static int configure_http_header_max(char *);
static int configure_http_body_max(char *);
static int configure_http_hsts_enable(char *);
static int configure_http_keepalive_time(char *);
static int configure_http_request_limit(char *);
static int configure_http_body_disk_offload(char *);
static int configure_http_body_disk_path(char *);
static int configure_validator(char *);
static int configure_params(char *);
static int configure_validate(char *);
static int configure_authentication(char *);
static int configure_authentication_uri(char *);
static int configure_authentication_type(char *);
static int configure_authentication_value(char *);
static int configure_authentication_validator(char *);
static int configure_websocket_maxframe(char *);
static int configure_websocket_timeout(char *);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#if defined(KORE_USE_PGSQL)
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
static int configure_pgsql_conn_max(char *);
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#endif
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
#if defined(KORE_USE_TASKS)
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
static int configure_task_threads(char *);
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
#endif
Add initial python support. Based on work done by Stanislav Yudin.
2017-01-12 23:38:51 +01:00
#if defined(KORE_USE_PYTHON)
static int configure_python_import(char *);
#endif
even more ssl to tls terminology.
2017-02-11 21:33:09 +01:00
static void domain_tls_init(void);
constify kore_parse_config_file() parameter.
2016-02-01 21:59:31 +01:00
static void kore_parse_config_file(const char *);
add missing config.c
2013-05-01 17:17:16 +02:00
static struct {
const char *name;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
int (*configure)(char *);
add missing config.c
2013-05-01 17:17:16 +02:00
} config_names[] = {
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
{ "include", configure_include },
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
{ "bind", configure_bind },
{ "load", configure_load },
Add initial python support. Based on work done by Stanislav Yudin.
2017-01-12 23:38:51 +01:00
#if defined(KORE_USE_PYTHON)
{ "python_import", configure_python_import },
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#endif
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
{ "domain", configure_domain },
{ "chroot", configure_chroot },
{ "runas", configure_runas },
{ "workers", configure_workers },
{ "worker_max_connections", configure_max_connections },
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
{ "worker_rlimit_nofiles", configure_rlimit_nofiles },
Fix typo in configuration option worker_accept_treshold. There is no backwards comptabile option available. Fixes #53
2015-05-18 12:20:28 +02:00
{ "worker_accept_threshold", configure_accept_threshold },
Add new configuration option: worker_set_affinity. Controls wether or not worker processes sets its affinity mask to bind themselves to a single CPU. Defaults to on (1).
2015-04-27 10:36:33 +02:00
{ "worker_set_affinity", configure_set_affinity },
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
{ "pidfile", configure_pidfile },
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{ "socket_backlog", configure_socket_backlog },
#if !defined(KORE_NO_TLS)
{ "tls_version", configure_tls_version },
{ "tls_cipher", configure_tls_cipher },
{ "tls_dhparam", configure_tls_dhparam },
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
{ "certfile", configure_certfile },
{ "certkey", configure_certkey },
Add CRL support. Allow Kore to use per domain CRLs when requiring client certificates. The require_client_cert configuration option has been renamed to a more sane client_certificates and can optionally take a second argument which is the CRL in pem format. You'll need a restart in case the CRLs get updated.
2014-10-18 02:32:05 +02:00
{ "client_certificates", configure_client_certificates },
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif
#if !defined(KORE_NO_HTTP)
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
{ "static", configure_static_handler },
{ "dynamic", configure_dynamic_handler },
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{ "accesslog", configure_accesslog },
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
{ "http_header_max", configure_http_header_max },
Add PUT/DELETE/HEAD methods (finally). This commit renames certain POST centric variable and configuration naming to the correct HTTP body stuff. API changes include http_postbody_text() and http_postbody_bytes() to have become http_body_text() and http_body_bytes(). The developer is still responsible for validating the method their page handler is called with. Hopefully this becomes a configuration option soon enough.
2014-10-08 11:03:14 +02:00
{ "http_body_max", configure_http_body_max },
Add http_hsts_enable (enabled by default with max-age=31536000) to Kore's configuration file. If enabled Kore adds the HSTS header to every response. - Additionally, fix some typos in the example configuration. - Change default SSL cipher list again, no more RC4 and almost PFS for all browsers.
2013-10-15 10:44:56 +02:00
{ "http_hsts_enable", configure_http_hsts_enable },
Add http_keepalive_time configuration parameter. Allows you to configure maximum amount of seconds an HTTP connection can stay open (does not affect SPDY connections). If set to 0 it will disable keep-alive all together. Add some inttypes fluff.
2013-10-15 11:10:45 +02:00
{ "http_keepalive_time", configure_http_keepalive_time },
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
{ "http_request_limit", configure_http_request_limit },
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
{ "http_body_disk_offload", configure_http_body_disk_offload },
{ "http_body_disk_path", configure_http_body_disk_path },
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
{ "validator", configure_validator },
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
{ "params", configure_params },
{ "validate", configure_validate },
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
{ "authentication", configure_authentication },
{ "authentication_uri", configure_authentication_uri },
{ "authentication_type", configure_authentication_type },
{ "authentication_value", configure_authentication_value },
{ "authentication_validator", configure_authentication_validator },
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
{ "websocket_maxframe", configure_websocket_maxframe },
{ "websocket_timeout", configure_websocket_timeout },
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#if defined(KORE_USE_PGSQL)
{ "pgsql_conn_max", configure_pgsql_conn_max },
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
#endif
#if defined(KORE_USE_TASKS)
{ "task_threads", configure_task_threads },
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#endif
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
{ NULL, NULL },
add missing config.c
2013-05-01 17:17:16 +02:00
};
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#if !defined(KORE_SINGLE_BINARY)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
char *config_file = NULL;
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#endif
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#if !defined(KORE_NO_HTTP)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
static u_int8_t current_method = 0;
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
static struct kore_auth *current_auth = NULL;
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
static struct kore_module_handle *current_handler = NULL;
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
extern const char *__progname;
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
static struct kore_domain *current_domain = NULL;
from now on configuration files must specify a domain for the handlers that follow. This allows for easy subdomain configuration. example: domain joris.local static / serve_index domain .joris.local static / serve_another_index
2013-05-02 13:30:13 +02:00
add missing config.c
2013-05-01 17:17:16 +02:00
void
refactor code quite a bit.
2013-06-26 11:18:32 +02:00
kore_parse_config(void)
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
{
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#if !defined(KORE_SINGLE_BINARY)
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
kore_parse_config_file(config_file);
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#else
kore_parse_config_file(NULL);
#endif
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
if (!kore_module_loaded())
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
fatal("no application module was loaded");
Make some configuration options fallback to defaults. * If no runas_user is given, use current user. * If no chroot path is given, don't complain if -n * If no workers is set, use the default 1.
2014-07-31 13:59:42 +02:00
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
if (skip_chroot != 1 && chroot_path == NULL) {
Gunk the default runas/chroot values. Fatal in the config setup if running without skip_{chroot,runas} and no values specified.
2015-05-20 11:08:51 +02:00
fatal("missing a chroot path");
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
}
Spacing.
2015-05-20 11:34:57 +02:00
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
if (getuid() != 0 && skip_chroot == 0) {
fatal("cannot chroot, use -n to skip it");
Make some configuration options fallback to defaults. * If no runas_user is given, use current user. * If no chroot path is given, don't complain if -n * If no workers is set, use the default 1.
2014-07-31 13:59:42 +02:00
}
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
if (skip_runas != 1 && runas_user == NULL) {
Update output message to match others.
2016-02-01 21:54:09 +01:00
fatal("missing runas user, use -r to skip it");
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
}
Spacing.
2015-05-20 11:34:57 +02:00
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
if (getuid() != 0 && skip_runas == 0) {
fix typo: -r for skip privs
2015-12-08 02:42:16 +01:00
fatal("cannot drop privileges, use -r to skip it");
Make runas behave similarly to chroot. Add new command line knob '-r', that disables runas similar to '-n', it's implied as well for kore command runs. Add default runas (nobody) user and chroot (/var/empty) path, if none are specified, fallback to these.
2015-05-18 21:34:39 +02:00
}
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
}
static void
constify kore_parse_config_file() parameter.
2016-02-01 21:59:31 +01:00
kore_parse_config_file(const char *fpath)
add missing config.c
2013-05-01 17:17:16 +02:00
{
FILE *fp;
int i, lineno;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char buf[BUFSIZ], *p, *t;
add missing config.c
2013-05-01 17:17:16 +02:00
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#if !defined(KORE_SINGLE_BINARY)
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
if ((fp = fopen(fpath, "r")) == NULL)
fatal("configuration given cannot be opened: %s", fpath);
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
#else
fp = config_file_write();
#endif
refactor code quite a bit.
2013-06-26 11:18:32 +02:00
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
kore_debug("parsing configuration file '%s'", fpath);
add missing config.c
2013-05-01 17:17:16 +02:00
lineno = 1;
Move shared file reading code to kore_read_line()
2016-02-01 22:10:10 +01:00
while ((p = kore_read_line(fp, buf, sizeof(buf))) != NULL) {
if (strlen(p) == 0) {
add missing config.c
2013-05-01 17:17:16 +02:00
lineno++;
continue;
}
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#if !defined(KORE_NO_HTTP)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
if (!strcmp(p, "}") && current_handler != NULL) {
lineno++;
current_handler = NULL;
continue;
}
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
if (!strcmp(p, "}") && current_auth != NULL) {
if (current_auth->validator == NULL) {
fatal("no authentication validator for %s",
current_auth->name);
}
lineno++;
current_auth = NULL;
continue;
}
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
if (!strcmp(p, "}") && current_domain != NULL)
even more ssl to tls terminology.
2017-02-11 21:33:09 +01:00
domain_tls_init();
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
Continue on terminating '}' in a config stanza.
2015-05-07 16:24:08 +02:00
if (!strcmp(p, "}")) {
lineno++;
continue;
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if ((t = strchr(p, ' ')) == NULL) {
printf("ignoring \"%s\" on line %d\n", p, lineno++);
continue;
add missing config.c
2013-05-01 17:17:16 +02:00
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
*(t)++ = '\0';
p = kore_text_trim(p, strlen(p));
t = kore_text_trim(t, strlen(t));
if (strlen(p) == 0 || strlen(t) == 0) {
printf("ignoring \"%s\" on line %d\n", p, lineno++);
continue;
}
for (i = 0; config_names[i].name != NULL; i++) {
if (!strcmp(config_names[i].name, p)) {
if (config_names[i].configure(t))
break;
fatal("configuration error on line %d", lineno);
/* NOTREACHED */
}
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (config_names[i].name == NULL)
printf("ignoring \"%s\" on line %d\n", p, lineno);
add missing config.c
2013-05-01 17:17:16 +02:00
lineno++;
}
refactor code quite a bit.
2013-06-26 11:18:32 +02:00
Close fp after reading configuration
2014-04-09 14:43:23 +02:00
fclose(fp);
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
}
Close fp after reading configuration
2014-04-09 14:43:23 +02:00
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_include(char *path)
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_parse_config_file(path);
Allow us to include config files with "include"
2014-04-22 13:15:19 +02:00
return (KORE_RESULT_OK);
add missing config.c
2013-05-01 17:17:16 +02:00
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_bind(char *options)
add missing config.c
2013-05-01 17:17:16 +02:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[4];
kore_split_string(options, " ", argv, 4);
if (argv[0] == NULL || argv[1] == NULL)
add missing config.c
2013-05-01 17:17:16 +02:00
return (KORE_RESULT_ERROR);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
return (kore_server_bind(argv[0], argv[1], argv[2]));
add missing config.c
2013-05-01 17:17:16 +02:00
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_load(char *options)
add missing config.c
2013-05-01 17:17:16 +02:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[3];
kore_split_string(options, " ", argv, 3);
if (argv[0] == NULL)
add missing config.c
2013-05-01 17:17:16 +02:00
return (KORE_RESULT_ERROR);
Add initial python support. Based on work done by Stanislav Yudin.
2017-01-12 23:38:51 +01:00
kore_module_load(argv[0], argv[1], KORE_MODULE_NATIVE);
allow onload to be given in the config file. onload specifies what function in your module to call when the module has been loaded or reloaded.
2013-05-30 21:26:39 +02:00
return (KORE_RESULT_OK);
}
Allow single binaries to load modules again.
2017-01-26 13:13:23 +01:00
#if defined(KORE_SINGLE_BINARY)
Allow "kore build" to produce single binaries. Producing single binaries can now be done with building with "kore build". To get started edit your build.conf and add the following directives: single_binary = yes kore_source = /path/to/kore optionally you can add kore_flavor to instruct how kore should be built: kore_flavor = NOTLS=1 When doing this your build.conf must also include the correct linking options as the linking is now done fully by kore build. The binary produced will include your configuration and takes over a few of kore its command line flags (such as -f, -n or -r).
2016-07-06 16:16:15 +02:00
static FILE *
config_file_write(void)
{
FILE *fp;
ssize_t ret;
int fd, len;
char fpath[MAXPATHLEN];
len = snprintf(fpath, sizeof(fpath), "/tmp/%s.XXXXXX", __progname);
if (len == -1 || (size_t)len >= sizeof(fpath))
fatal("failed to create temporary path");
if ((fd = mkstemp(fpath)) == -1)
fatal("mkstemp(%s): %s", fpath, errno_s);
(void)unlink(fpath);
for (;;) {
ret = write(fd, asset_builtin_kore_conf,
asset_len_builtin_kore_conf);
if (ret == -1) {
if (errno == EINTR)
continue;
fatal("failed to write temporary config: %s", errno_s);
}
if ((size_t)ret != asset_len_builtin_kore_conf)
fatal("failed to write temporary config");
break;
}
if ((fp = fdopen(fd, "w+")) == NULL)
fatal("fdopen(): %s", errno_s);
rewind(fp);
return (fp);
}
#endif
allow onload to be given in the config file. onload specifies what function in your module to call when the module has been loaded or reloaded.
2013-05-30 21:26:39 +02:00
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#if !defined(KORE_NO_TLS)
- Better spread load between all worker processes. - Introduce own memory management system on top of malloc to keep track of all our allocations and free's. Later we should introduce a pooling mechanism for fixed size allocations (http_request comes to mind). - Introduce ssl_cipher in configuration. Memory usage is kind of high right now, but it seems its OpenSSL doing it rather then Kore.
2013-06-27 08:43:07 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_tls_version(char *version)
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!strcmp(version, "1.2")) {
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
tls_version = KORE_TLS_VERSION_1_2;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcmp(version, "1.0")) {
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
tls_version = KORE_TLS_VERSION_1_0;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcmp(version, "both")) {
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
tls_version = KORE_TLS_VERSION_BOTH;
} else {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("unknown value for tls_version: %s\n", version);
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_tls_cipher(char *cipherlist)
- Better spread load between all worker processes. - Introduce own memory management system on top of malloc to keep track of all our allocations and free's. Later we should introduce a pooling mechanism for fixed size allocations (http_request comes to mind). - Introduce ssl_cipher in configuration. Memory usage is kind of high right now, but it seems its OpenSSL doing it rather then Kore.
2013-06-27 08:43:07 +02:00
{
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
if (strcmp(kore_tls_cipher_list, KORE_DEFAULT_CIPHER_LIST)) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("tls_cipher specified twice\n");
- Better spread load between all worker processes. - Introduce own memory management system on top of malloc to keep track of all our allocations and free's. Later we should introduce a pooling mechanism for fixed size allocations (http_request comes to mind). - Introduce ssl_cipher in configuration. Memory usage is kind of high right now, but it seems its OpenSSL doing it rather then Kore.
2013-06-27 08:43:07 +02:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_tls_cipher_list = kore_strdup(cipherlist);
- Better spread load between all worker processes. - Introduce own memory management system on top of malloc to keep track of all our allocations and free's. Later we should introduce a pooling mechanism for fixed size allocations (http_request comes to mind). - Introduce ssl_cipher in configuration. Memory usage is kind of high right now, but it seems its OpenSSL doing it rather then Kore.
2013-06-27 08:43:07 +02:00
return (KORE_RESULT_OK);
}
Add support for ephemeral key exchange mechanisms, ssl_dhparam configuration option must be set (and point to a file containing a generated DH key).
2013-08-07 16:51:39 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_tls_dhparam(char *path)
Add support for ephemeral key exchange mechanisms, ssl_dhparam configuration option must be set (and point to a file containing a generated DH key).
2013-08-07 16:51:39 +02:00
{
BIO *bio;
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
if (tls_dhparam != NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("tls_dhparam specified twice\n");
Add support for ephemeral key exchange mechanisms, ssl_dhparam configuration option must be set (and point to a file containing a generated DH key).
2013-08-07 16:51:39 +02:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if ((bio = BIO_new_file(path, "r")) == NULL) {
printf("%s did not exist\n", path);
Add support for ephemeral key exchange mechanisms, ssl_dhparam configuration option must be set (and point to a file containing a generated DH key).
2013-08-07 16:51:39 +02:00
return (KORE_RESULT_ERROR);
}
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
tls_dhparam = PEM_read_bio_DHparams(bio, NULL, NULL, NULL);
Add support for ephemeral key exchange mechanisms, ssl_dhparam configuration option must be set (and point to a file containing a generated DH key).
2013-08-07 16:51:39 +02:00
BIO_free(bio);
Default to only TLSv1.2 from now on. Add configuration setting tls_version to specify if you either want TLSv1.2 or TLSv1.0 or both. The configuration options ssl_cipher and ssl_dhparam have changed name to tls_cipher and tls_dhparam. There is no fallback so you might have to update your configs.
2015-05-06 10:59:43 +02:00
if (tls_dhparam == NULL) {
Be more verbose when configuration errors pop up.
2013-09-22 20:11:56 +02:00
printf("PEM_read_bio_DHparams(): %s\n", ssl_errno_s);
Add support for ephemeral key exchange mechanisms, ssl_dhparam configuration option must be set (and point to a file containing a generated DH key).
2013-08-07 16:51:39 +02:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
add missing config.c
2013-05-01 17:17:16 +02:00
return (KORE_RESULT_OK);
}
add chroot and runas directives so we can chroot and drop privilegs properly
2013-05-04 22:18:27 +02:00
Add support for client certificates
2013-12-14 16:31:07 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_client_certificates(char *options)
Add support for client certificates
2013-12-14 16:31:07 +01:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[3];
Add support for client certificates
2013-12-14 16:31:07 +01:00
if (current_domain == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("client_certificates not specified in domain context\n");
Add support for client certificates
2013-12-14 16:31:07 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_split_string(options, " ", argv, 3);
if (argv[0] == NULL) {
printf("client_certificate is missing a parameter\n");
Add support for client certificates
2013-12-14 16:31:07 +01:00
return (KORE_RESULT_ERROR);
}
if (current_domain->cafile != NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("client_certificate already set for %s\n",
Add support for client certificates
2013-12-14 16:31:07 +01:00
current_domain->domain);
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_domain->cafile = kore_strdup(argv[0]);
if (argv[1] != NULL)
current_domain->crlfile = kore_strdup(argv[1]);
Add CRL support. Allow Kore to use per domain CRLs when requiring client certificates. The require_client_cert configuration option has been renamed to a more sane client_certificates and can optionally take a second argument which is the CRL in pem format. You'll need a restart in case the CRLs get updated.
2014-10-18 02:32:05 +02:00
Add support for client certificates
2013-12-14 16:31:07 +01:00
return (KORE_RESULT_OK);
}
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_certfile(char *path)
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
{
if (current_domain == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("certfile not specified in domain context\n");
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
return (KORE_RESULT_ERROR);
}
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
if (current_domain->certfile != NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("certfile specified twice for %s\n",
current_domain->domain);
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_domain->certfile = kore_strdup(path);
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_certkey(char *path)
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
{
if (current_domain == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("certkey not specified in domain text\n");
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
return (KORE_RESULT_ERROR);
}
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
if (current_domain->certkey != NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("certkey specified twice for %s\n",
current_domain->domain);
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_domain->certkey = kore_strdup(path);
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
return (KORE_RESULT_OK);
}
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#endif /* !KORE_NO_TLS */
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_domain(char *options)
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[3];
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (current_domain != NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("nested domain contexts are not allowed\n");
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
return (KORE_RESULT_ERROR);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
}
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_split_string(options, " ", argv, 3);
if (strcmp(argv[1], "{")) {
printf("domain context not opened correctly\n");
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
Separate private keys from worker processes. Kore will now isolate RSA private keys to a separate process (keymgr). Worker processes that require RSA signing for TLS connections will communicate with this keymgr process in order to do so. This behaviour cannot be disabled and is always turned on.
2016-06-08 13:55:14 +02:00
}
if (strlen(argv[0]) >= KORE_DOMAINNAME_LEN - 1) {
printf("domain name '%s' too long\n", argv[0]);
return (KORE_RESULT_ERROR);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!kore_domain_new(argv[0])) {
printf("could not create new domain %s\n", argv[0]);
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
return (KORE_RESULT_ERROR);
Be more verbose when configuration errors pop up.
2013-09-22 20:11:56 +02:00
}
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_domain = kore_domain_lookup(argv[0]);
Add a form of synchronization between what worker will be accepting new connections and which ones will not be notified for it. Fixes the thundering herd problem, and nicely spreads out load between all the workers equally. A configuration option (workers_max_connections) is available to tweak how many connections a worker will have before giving up the accept lock. Two ways are added to this commit for access locking: - Locking via semaphores. - Locking via GCC's builtin atomic methods. The default is running with semaphores disabled (OpenBSD cannot do sem_init() with pshared set to 1, which is required). If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS, and -lpthread to LDFLAGS in the Makefile. Other fixes: - BSD: add a timeout to kevent(). - Merge kore_worker_wait together, linux knows waitpid() as well. - Send the correct SIGQUIT signal to workers instead of SIGINT. - Fix kore_time_ms(). - Log fatal worker messages in syslog. - Refactor code even more. - Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
return (KORE_RESULT_OK);
}
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
#if !defined(KORE_NO_HTTP)
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_static_handler(char *options)
{
return (configure_handler(HANDLER_TYPE_STATIC, options));
}
static int
configure_dynamic_handler(char *options)
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
return (configure_handler(HANDLER_TYPE_DYNAMIC, options));
}
static int
configure_handler(int type, char *options)
{
char *argv[4];
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (current_domain == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("page handler not specified in domain context\n");
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_split_string(options, " ", argv, 4);
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (argv[0] == NULL || argv[1] == NULL) {
printf("missing parameters for page handler\n");
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
}
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!kore_module_handler_new(argv[0],
current_domain->domain, argv[1], argv[2], type)) {
printf("cannot create handler for %s\n", argv[0]);
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
return (KORE_RESULT_ERROR);
Introduce new config option worker_accept_treshold This configuration option limits the maximum number of connections a worker process can accept() in a single event loop. It can be used to more evenly spread out incoming connections across workers when new connections arrive in a burst.
2015-04-23 10:24:00 +02:00
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_accesslog(char *path)
Introduce new config option worker_accept_treshold This configuration option limits the maximum number of connections a worker process can accept() in a single event loop. It can be used to more evenly spread out incoming connections across workers when new connections arrive in a burst.
2015-04-23 10:24:00 +02:00
{
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (current_domain == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_debug("accesslog not specified in domain context\n");
Introduce new config option worker_accept_treshold This configuration option limits the maximum number of connections a worker process can accept() in a single event loop. It can be used to more evenly spread out incoming connections across workers when new connections arrive in a burst.
2015-04-23 10:24:00 +02:00
return (KORE_RESULT_ERROR);
Add new configuration option: worker_set_affinity. Controls wether or not worker processes sets its affinity mask to bind themselves to a single CPU. Defaults to on (1).
2015-04-27 10:36:33 +02:00
}
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (current_domain->accesslog != -1) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("domain %s already has an open accesslog\n",
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
current_domain->domain);
Add new configuration option: worker_set_affinity. Controls wether or not worker processes sets its affinity mask to bind themselves to a single CPU. Defaults to on (1).
2015-04-27 10:36:33 +02:00
return (KORE_RESULT_ERROR);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
}
Add new configuration option: worker_set_affinity. Controls wether or not worker processes sets its affinity mask to bind themselves to a single CPU. Defaults to on (1).
2015-04-27 10:36:33 +02:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_domain->accesslog = open(path,
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
O_CREAT | O_APPEND | O_WRONLY,
S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
if (current_domain->accesslog == -1) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("accesslog open(%s): %s\n", path, errno_s);
Add new configuration option: worker_set_affinity. Controls wether or not worker processes sets its affinity mask to bind themselves to a single CPU. Defaults to on (1).
2015-04-27 10:36:33 +02:00
return (KORE_RESULT_ERROR);
Add worker_rlimit_nofiles as a configurable option.
2014-07-31 09:14:03 +02:00
}
return (KORE_RESULT_OK);
}
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_header_max(char *option)
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
http_header_max = kore_strtonum(option, 10, 1, 65535, &err);
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad http_header_max value: %s\n", option);
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_body_max(char *option)
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
{
int err;
unfuck parsing http_body_max.
2017-02-06 21:28:33 +01:00
http_body_max = kore_strtonum(option, 10, 0, LONG_MAX, &err);
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad http_body_max value: %s\n", option);
Add http_header_max and http_postbody_max configuration variables. - http_header_max: Maximum size of HTTP headers (in non SPDY connections). - http_postbody_max: Maximum size of an HTTP POST body (both in SPDY and HTTP mode). Right now Kore will simply DC the client, ideally we want to send a 413 (entity too large) to the client however. See modules/examples/module.conf for more.
2013-09-22 20:05:24 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_body_disk_offload(char *option)
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
http_body_disk_offload = kore_strtonum(option, 10, 0, LONG_MAX, &err);
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad http_body_disk_offload value: %s\n", option);
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_body_disk_path(char *path)
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
{
Properly check if path was already set.
2016-01-18 11:43:10 +01:00
if (strcmp(http_body_disk_path, HTTP_BODY_DISK_PATH))
Large changes to the memory subsystem in kore. - Change pools to use mmap() for allocating regions. - Change kore_malloc() to use pools for commonly sized objects. (split into multiple of 2 buckets, starting at 8 bytes up to 8192). - Rename kore_mem_free() to kore_free(). The preallocated pools will hold up to 128K of elements per block size. In case a larger object is to be allocated kore_malloc() will use malloc() instead.
2016-07-12 13:54:14 +02:00
kore_free(http_body_disk_path);
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
http_body_disk_path = kore_strdup(path);
Massive rework of HTTP layer. This commit is a flag day, your old modules will almost certainly need to be updated in order to build properly with these changes. Summary of changes: - Offload HTTP bodies to disk if they are large (inspired by #100). (disabled by default) - The http_argument_get* macros now takes an explicit http_request parameter. - Kore will now throw 404 errors almost immediately after an HTTP request has come in instead of waiting until all data has arrived. API changes: - http_argument_get* macros now require an explicit http_request parameter. (no more magic invokations). - http_generic_404() is gone - http_populate_arguments() is gone - http_body_bytes() is gone - http_body_text() is gone - http_body_read() has been added - http_populate_post() has been added - http_populate_get() has been added - http_file_read() has been added - http_file_rewind() has been added - http_file_lookup() no longer takes name, fname, data and len parameters. - http_file_lookup() now returns a struct http_file pointer. - http_populate_multipart_form() no longer takes an secondary parameter. New configuration options: - http_body_disk_offload: Number of bytes after which Kore will offload the HTTP body to disk instead of retaining it in memory. If 0 this feature is disabled. (Default: 0) - http_body_disk_path: The path where Kore will store temporary HTTP body files. (this directory does not get created if http_body_disk_offload is 0). New example: The upload example has been added, demonstrating how to deal with file uploads from a multipart form.
2016-01-18 11:30:22 +01:00
return (KORE_RESULT_OK);
}
Add http_hsts_enable (enabled by default with max-age=31536000) to Kore's configuration file. If enabled Kore adds the HSTS header to every response. - Additionally, fix some typos in the example configuration. - Change default SSL cipher list again, no more RC4 and almost PFS for all browsers.
2013-10-15 10:44:56 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_hsts_enable(char *option)
Add http_hsts_enable (enabled by default with max-age=31536000) to Kore's configuration file. If enabled Kore adds the HSTS header to every response. - Additionally, fix some typos in the example configuration. - Change default SSL cipher list again, no more RC4 and almost PFS for all browsers.
2013-10-15 10:44:56 +02:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
http_hsts_enable = kore_strtonum(option, 10, 0, LONG_MAX, &err);
Add http_hsts_enable (enabled by default with max-age=31536000) to Kore's configuration file. If enabled Kore adds the HSTS header to every response. - Additionally, fix some typos in the example configuration. - Change default SSL cipher list again, no more RC4 and almost PFS for all browsers.
2013-10-15 10:44:56 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad http_hsts_enable value: %s\n", option);
Add http_hsts_enable (enabled by default with max-age=31536000) to Kore's configuration file. If enabled Kore adds the HSTS header to every response. - Additionally, fix some typos in the example configuration. - Change default SSL cipher list again, no more RC4 and almost PFS for all browsers.
2013-10-15 10:44:56 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Add http_keepalive_time configuration parameter. Allows you to configure maximum amount of seconds an HTTP connection can stay open (does not affect SPDY connections). If set to 0 it will disable keep-alive all together. Add some inttypes fluff.
2013-10-15 11:10:45 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_keepalive_time(char *option)
Add http_keepalive_time configuration parameter. Allows you to configure maximum amount of seconds an HTTP connection can stay open (does not affect SPDY connections). If set to 0 it will disable keep-alive all together. Add some inttypes fluff.
2013-10-15 11:10:45 +02:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
http_keepalive_time = kore_strtonum(option, 10, 0, USHRT_MAX, &err);
Add http_keepalive_time configuration parameter. Allows you to configure maximum amount of seconds an HTTP connection can stay open (does not affect SPDY connections). If set to 0 it will disable keep-alive all together. Add some inttypes fluff.
2013-10-15 11:10:45 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad http_keepalive_time value: %s\n", option);
Add http_keepalive_time configuration parameter. Allows you to configure maximum amount of seconds an HTTP connection can stay open (does not affect SPDY connections). If set to 0 it will disable keep-alive all together. Add some inttypes fluff.
2013-10-15 11:10:45 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_http_request_limit(char *option)
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
http_request_limit = kore_strtonum(option, 10, 0, UINT_MAX, &err);
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad http_request_limit value: %s\n", option);
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_validator(char *name)
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
{
u_int8_t type;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *tname, *value;
if ((tname = strchr(name, ' ')) == NULL) {
printf("missing validator name\n");
return (KORE_RESULT_ERROR);
}
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
*(tname)++ = '\0';
tname = kore_text_trim(tname, strlen(tname));
if ((value = strchr(tname, ' ')) == NULL) {
printf("missing validator value\n");
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
return (KORE_RESULT_ERROR);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
}
*(value)++ = '\0';
value = kore_text_trim(value, strlen(value));
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!strcmp(tname, "regex")) {
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
type = KORE_VALIDATOR_TYPE_REGEX;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcmp(tname, "function")) {
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
type = KORE_VALIDATOR_TYPE_FUNCTION;
} else {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad type for validator %s\n", tname);
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!kore_validator_add(name, type, value)) {
printf("bad validator specified: %s\n", tname);
Add validators to kore, specified in the configuration using 'validator' keyword. Example: validator v_id function v_id_function validator v_url regex ^/url/path/[a-z]*$ You can then call these using kore_validator_run(char *, char *), example: if (!kore_validator_run("v_url", req->path)) [req->path is bad];
2013-11-09 16:21:52 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_params(char *options)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
{
struct kore_module_handle *hdlr;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[3];
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
if (current_domain == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("params not used in domain context\n");
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
}
if (current_handler != NULL) {
printf("previous params block not closed\n");
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_split_string(options, " ", argv, 3);
if (argv[1] == NULL)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!strcasecmp(argv[0], "post")) {
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
current_method = HTTP_METHOD_POST;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcasecmp(argv[0], "get")) {
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
current_method = HTTP_METHOD_GET;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcasecmp(argv[0], "put")) {
Support PUT, DELETE, and HEAD methods in cofigs. The primary usecase for this is RESTful APIs where PUT, DELETE, and HEAD can be useful methods to support.
2015-04-09 01:46:27 +02:00
current_method = HTTP_METHOD_PUT;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcasecmp(argv[0], "delete")) {
Support PUT, DELETE, and HEAD methods in cofigs. The primary usecase for this is RESTful APIs where PUT, DELETE, and HEAD can be useful methods to support.
2015-04-09 01:46:27 +02:00
current_method = HTTP_METHOD_DELETE;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcasecmp(argv[0], "head")) {
Support PUT, DELETE, and HEAD methods in cofigs. The primary usecase for this is RESTful APIs where PUT, DELETE, and HEAD can be useful methods to support.
2015-04-09 01:46:27 +02:00
current_method = HTTP_METHOD_HEAD;
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
} else {
printf("unknown method: %s in params block for %s\n",
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
argv[0], argv[1]);
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
}
/*
* Find the handler ourselves, otherwise the regex is applied
* in case of a dynamic page.
*/
TAILQ_FOREACH(hdlr, &(current_domain->handlers), list) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!strcmp(hdlr->path, argv[1])) {
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
current_handler = hdlr;
return (KORE_RESULT_OK);
}
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("params for unknown page handler: %s\n", argv[1]);
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_validate(char *options)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
{
struct kore_handler_params *p;
struct kore_validator *val;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[3];
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
if (current_handler == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("validate not used in domain context\n");
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_split_string(options, " ", argv, 3);
if (argv[1] == NULL)
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if ((val = kore_validator_lookup(argv[1])) == NULL) {
printf("unknown validator %s for %s\n", argv[1], argv[0]);
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
return (KORE_RESULT_ERROR);
}
p = kore_malloc(sizeof(*p));
p->validator = val;
p->method = current_method;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
p->name = kore_strdup(argv[0]);
Kore now supports GET parameters and automatic validation of GET/POST parameters. Kore will automatically removes invalid parameters as a security measure. See modules/examples/module.conf for an example of how this works.
2013-11-10 15:17:15 +01:00
TAILQ_INSERT_TAIL(&(current_handler->params), p, list);
return (KORE_RESULT_OK);
}
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_authentication(char *options)
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
char *argv[3];
if (current_auth != NULL) {
printf("previous authentication block not closed\n");
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_split_string(options, " ", argv, 3);
if (argv[1] == NULL) {
printf("missing name for authentication block\n");
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (strcmp(argv[1], "{")) {
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
printf("missing { for authentication block\n");
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!kore_auth_new(argv[0]))
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_auth = kore_auth_lookup(argv[0]);
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_authentication_type(char *option)
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
{
if (current_auth == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("authentication_type outside authentication context\n");
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (!strcmp(option, "cookie")) {
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
current_auth->type = KORE_AUTH_TYPE_COOKIE;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcmp(option, "header")) {
Add header as an option for authentication blocks
2014-01-22 23:11:52 +01:00
current_auth->type = KORE_AUTH_TYPE_HEADER;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
} else if (!strcmp(option, "request")) {
"request" auth blocks should set their own response.
2015-02-04 12:04:07 +01:00
current_auth->type = KORE_AUTH_TYPE_REQUEST;
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
} else {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("unknown authentication type '%s'\n", option);
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_authentication_value(char *option)
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
{
if (current_auth == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("authentication_value outside authentication context\n");
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (current_auth->value != NULL)
Large changes to the memory subsystem in kore. - Change pools to use mmap() for allocating regions. - Change kore_malloc() to use pools for commonly sized objects. (split into multiple of 2 buckets, starting at 8 bytes up to 8192). - Rename kore_mem_free() to kore_free(). The preallocated pools will hold up to 128K of elements per block size. In case a larger object is to be allocated kore_malloc() will use malloc() instead.
2016-07-12 13:54:14 +02:00
kore_free(current_auth->value);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_auth->value = kore_strdup(option);
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_authentication_validator(char *validator)
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
{
struct kore_validator *val;
if (current_auth == NULL) {
printf("authentication_validator outside authentication\n");
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if ((val = kore_validator_lookup(validator)) == NULL) {
printf("authentication validator '%s' not found\n", validator);
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
current_auth->validator = val;
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_authentication_uri(char *uri)
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
{
if (current_auth == NULL) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("authentication_uri outside authentication context\n");
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_ERROR);
}
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (current_auth->redirect != NULL)
Large changes to the memory subsystem in kore. - Change pools to use mmap() for allocating regions. - Change kore_malloc() to use pools for commonly sized objects. (split into multiple of 2 buckets, starting at 8 bytes up to 8192). - Rename kore_mem_free() to kore_free(). The preallocated pools will hold up to 128K of elements per block size. In case a larger object is to be allocated kore_malloc() will use malloc() instead.
2016-07-12 13:54:14 +02:00
kore_free(current_auth->redirect);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
current_auth->redirect = kore_strdup(uri);
Add authentication blocks for Kore. Using authentication blocks one can define "authentication" mechanisms in Kore for page handlers. This can be used to require a session cookie (validated by your own validator) for certain page handlers, and hopefully in the future provide a framework for adding more authentication things (like HTTP Auth). Right now only cookie checking is available.
2014-01-22 22:55:10 +01:00
return (KORE_RESULT_OK);
}
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_websocket_maxframe(char *option)
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_websocket_maxframe = kore_strtonum64(option, 1, &err);
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad kore_websocket_maxframe value: %s\n", option);
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_websocket_timeout(char *option)
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_websocket_timeout = kore_strtonum64(option, 1, &err);
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad kore_websocket_timeout value: %s\n", option);
Add websocket support to Kore. Introduces a few new api functions: - kore_websocket_handshake(struct http_request *): Performs the handshake on an HTTP request (coming from page handler) - kore_websocket_send(struct connection *, u_int8_t, void *, size_t): Sends data to a websocket connection. - kore_websocket_broadcast(struct connection *, u_int8_t, void *, size_t, int): Broadcast the given websocket op and data to all connected websocket clients on the worker. Note that as of right now the WEBSOCKET_BROADCAST_GLOBAL scope option does not work yet and messages broadcasted will be restricted to workers only. - kore_worker_websocket_broadcast(struct connection *, void *, void *): Backend function used by kore_websocket_broadcast(). Could prove useful for developers to have access to. A simple example is given under examples/websocket. Known issues: Kore does not support PING or CONT frames just yet.
2014-11-24 11:01:12 +01:00
return (KORE_RESULT_ERROR);
}
kore_websocket_timeout = kore_websocket_timeout * 1000;
return (KORE_RESULT_OK);
}
Spacing
2015-11-27 18:12:08 +01:00
#endif /* !KORE_NO_HTTP */
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_chroot(char *path)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (chroot_path != NULL)
Large changes to the memory subsystem in kore. - Change pools to use mmap() for allocating regions. - Change kore_malloc() to use pools for commonly sized objects. (split into multiple of 2 buckets, starting at 8 bytes up to 8192). - Rename kore_mem_free() to kore_free(). The preallocated pools will hold up to 128K of elements per block size. In case a larger object is to be allocated kore_malloc() will use malloc() instead.
2016-07-12 13:54:14 +02:00
kore_free(chroot_path);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
chroot_path = kore_strdup(path);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_runas(char *user)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (runas_user != NULL)
Large changes to the memory subsystem in kore. - Change pools to use mmap() for allocating regions. - Change kore_malloc() to use pools for commonly sized objects. (split into multiple of 2 buckets, starting at 8 bytes up to 8192). - Rename kore_mem_free() to kore_free(). The preallocated pools will hold up to 128K of elements per block size. In case a larger object is to be allocated kore_malloc() will use malloc() instead.
2016-07-12 13:54:14 +02:00
kore_free(runas_user);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
runas_user = kore_strdup(user);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_workers(char *option)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
worker_count = kore_strtonum(option, 10, 1, 255, &err);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("%s is not a valid worker number\n", option);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_pidfile(char *path)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
if (strcmp(kore_pidfile, KORE_PIDFILE_DEFAULT))
Large changes to the memory subsystem in kore. - Change pools to use mmap() for allocating regions. - Change kore_malloc() to use pools for commonly sized objects. (split into multiple of 2 buckets, starting at 8 bytes up to 8192). - Rename kore_mem_free() to kore_free(). The preallocated pools will hold up to 128K of elements per block size. In case a larger object is to be allocated kore_malloc() will use malloc() instead.
2016-07-12 13:54:14 +02:00
kore_free(kore_pidfile);
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_pidfile = kore_strdup(path);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_max_connections(char *option)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
worker_max_connections = kore_strtonum(option, 10, 1, UINT_MAX, &err);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad value for worker_max_connections: %s\n", option);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_rlimit_nofiles(char *option)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
worker_rlimit_nofiles = kore_strtonum(option, 10, 1, UINT_MAX, &err);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad value for worker_rlimit_nofiles: %s\n", option);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_accept_threshold(char *option)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
worker_accept_threshold = kore_strtonum(option, 0, 1, UINT_MAX, &err);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad value for worker_accept_threshold: %s\n", option);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_set_affinity(char *option)
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
worker_set_affinity = kore_strtonum(option, 10, 0, 1, &err);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad value for worker_set_affinity: %s\n", option);
Introduce NOHTTP=1 build option. This basically turns off the HTTP layer for Kore. It does not compile in anything for HTTP. This allows Kore to be used as a network application platform as well. Added an example for this called nohttp. Other changes that sneaked in while hacking on this: * Use calloc(), kill pendantic malloc option. * Killed off SPDY/3.1 support completely, will be superseded by http2 Note that comes with massive changes to a lot of the core API functions provided by Kore, these might break your application.
2015-11-27 16:22:50 +01:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_socket_backlog(char *option)
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_socket_backlog = kore_strtonum(option, 10, 0, UINT_MAX, &err);
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad socket_backlog value: %s\n", option);
Improve very heavy load handling. Introduces two new configuration knobs: * socket_backlog (backlog for listen(2)) * http_request_limit The second one is the most interesting one. Before, kore would iterate over all received HTTP requests in its queue before returning out of http_process(). Under heavy load this queue can cause Kore to spend a considerable amount of time iterating over said queue. With the http_request_limit, kore will process at MOST http_request_limit requests before returning back to the event loop. This means responses to processed requests are sent out much quicker and allows kore to handle any other incoming requests more gracefully.
2015-04-09 15:29:44 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
static void
even more ssl to tls terminology.
2017-02-11 21:33:09 +01:00
domain_tls_init(void)
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
{
even more ssl to tls terminology.
2017-02-11 21:33:09 +01:00
kore_domain_tlsinit(current_domain);
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
current_domain = NULL;
}
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#if defined(KORE_USE_PGSQL)
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_pgsql_conn_max(char *option)
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
{
int err;
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
pgsql_conn_max = kore_strtonum(option, 10, 0, USHRT_MAX, &err);
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad value for pgsql_conn_max: %s\n", option);
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
#endif
#if defined(KORE_USE_TASKS)
static int
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
configure_task_threads(char *option)
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
{
int err;
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
kore_task_threads = kore_strtonum(option, 10, 0, UCHAR_MAX, &err);
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
if (err != KORE_RESULT_OK) {
Redo config parsing a bit. No longer just call kore_string_split() on the line but separate out the configuration directive and let the appropriate callbacks parse things on their own.
2016-02-01 21:33:51 +01:00
printf("bad value for task_threads: %s\n", option);
Add task_threads configuration option. Before Kore would spawn a task thread per task started if none were available. This was an obvious bad idiom but never really hit me hard until now. Kore will now only spawn as many task threads as configured by "task_threads" and queue up any newly started tasks ontop of already running threads if the limit was hit.
2015-06-04 10:29:22 +02:00
return (KORE_RESULT_ERROR);
}
return (KORE_RESULT_OK);
}
Add pgsql_conn_max configuration parameter. Allows you to tune how many pgsql connections kore will make at one time.
2014-07-04 09:14:05 +02:00
#endif
Add initial python support. Based on work done by Stanislav Yudin.
2017-01-12 23:38:51 +01:00
#if defined(KORE_USE_PYTHON)
static int
configure_python_import(char *module)
{
char *argv[3];
kore_split_string(module, " ", argv, 3);
if (argv[0] == NULL)
return (KORE_RESULT_ERROR);
kore_module_load(argv[0], argv[1], KORE_MODULE_PYTHON);
return (KORE_RESULT_OK);
}
#endif