mirror of
https://github.com/caddyserver/caddy.git
synced 2025-01-20 22:52:58 -05:00
bd17eb205d
* ci: Use golangci's github action for linting Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix most of the staticcheck lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the prealloc lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the misspell lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the varcheck lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the errcheck lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the bodyclose lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the deadcode lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the unused lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the gosec lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the gosimple lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the ineffassign lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Fix the staticcheck lint errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Revert the misspell change, use a neutral English Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Remove broken golangci-lint CI job Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Re-add errantly-removed weakrand initialization Signed-off-by: Dave Henderson <dhenderson@gmail.com> * don't break the loop and return * Removing extra handling for null rootKey * unignore RegisterModule/RegisterAdapter Co-authored-by: Mohammed Al Sahaf <msaa1990@gmail.com> * single-line log message Co-authored-by: Matt Holt <mholt@users.noreply.github.com> * Fix lint after a1808b0dbf209c615e438a496d257ce5e3acdce2 was merged Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Revert ticker change, ignore it instead Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Ignore some of the write errors Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Remove blank line Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Use lifetime Signed-off-by: Dave Henderson <dhenderson@gmail.com> * close immediately Co-authored-by: Matt Holt <mholt@users.noreply.github.com> * Preallocate configVals Signed-off-by: Dave Henderson <dhenderson@gmail.com> * Update modules/caddytls/distributedstek/distributedstek.go Co-authored-by: Mohammed Al Sahaf <msaa1990@gmail.com> Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
571 lines
14 KiB
Go
571 lines
14 KiB
Go
// Copyright 2015 Matthew Holt and The Caddy Authors
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
// Forked Jan. 2015 from http://bitbucket.org/PinIdea/fcgi_client
|
|
// (which is forked from https://code.google.com/p/go-fastcgi-client/).
|
|
// This fork contains several fixes and improvements by Matt Holt and
|
|
// other contributors to the Caddy project.
|
|
|
|
// Copyright 2012 Junqing Tan <ivan@mysqlab.net> and The Go Authors
|
|
// Use of this source code is governed by a BSD-style
|
|
// Part of source code is from Go fcgi package
|
|
|
|
package fastcgi
|
|
|
|
import (
|
|
"bufio"
|
|
"bytes"
|
|
"context"
|
|
"encoding/binary"
|
|
"errors"
|
|
"io"
|
|
"io/ioutil"
|
|
"mime/multipart"
|
|
"net"
|
|
"net/http"
|
|
"net/http/httputil"
|
|
"net/textproto"
|
|
"net/url"
|
|
"os"
|
|
"path/filepath"
|
|
"strconv"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
)
|
|
|
|
// FCGIListenSockFileno describes listen socket file number.
|
|
const FCGIListenSockFileno uint8 = 0
|
|
|
|
// FCGIHeaderLen describes header length.
|
|
const FCGIHeaderLen uint8 = 8
|
|
|
|
// Version1 describes the version.
|
|
const Version1 uint8 = 1
|
|
|
|
// FCGINullRequestID describes the null request ID.
|
|
const FCGINullRequestID uint8 = 0
|
|
|
|
// FCGIKeepConn describes keep connection mode.
|
|
const FCGIKeepConn uint8 = 1
|
|
|
|
const (
|
|
// BeginRequest is the begin request flag.
|
|
BeginRequest uint8 = iota + 1
|
|
// AbortRequest is the abort request flag.
|
|
AbortRequest
|
|
// EndRequest is the end request flag.
|
|
EndRequest
|
|
// Params is the parameters flag.
|
|
Params
|
|
// Stdin is the standard input flag.
|
|
Stdin
|
|
// Stdout is the standard output flag.
|
|
Stdout
|
|
// Stderr is the standard error flag.
|
|
Stderr
|
|
// Data is the data flag.
|
|
Data
|
|
// GetValues is the get values flag.
|
|
GetValues
|
|
// GetValuesResult is the get values result flag.
|
|
GetValuesResult
|
|
// UnknownType is the unknown type flag.
|
|
UnknownType
|
|
// MaxType is the maximum type flag.
|
|
MaxType = UnknownType
|
|
)
|
|
|
|
const (
|
|
// Responder is the responder flag.
|
|
Responder uint8 = iota + 1
|
|
// Authorizer is the authorizer flag.
|
|
Authorizer
|
|
// Filter is the filter flag.
|
|
Filter
|
|
)
|
|
|
|
const (
|
|
// RequestComplete is the completed request flag.
|
|
RequestComplete uint8 = iota
|
|
// CantMultiplexConns is the multiplexed connections flag.
|
|
CantMultiplexConns
|
|
// Overloaded is the overloaded flag.
|
|
Overloaded
|
|
// UnknownRole is the unknown role flag.
|
|
UnknownRole
|
|
)
|
|
|
|
const (
|
|
// MaxConns is the maximum connections flag.
|
|
MaxConns string = "MAX_CONNS"
|
|
// MaxRequests is the maximum requests flag.
|
|
MaxRequests string = "MAX_REQS"
|
|
// MultiplexConns is the multiplex connections flag.
|
|
MultiplexConns string = "MPXS_CONNS"
|
|
)
|
|
|
|
const (
|
|
maxWrite = 65500 // 65530 may work, but for compatibility
|
|
maxPad = 255
|
|
)
|
|
|
|
type header struct {
|
|
Version uint8
|
|
Type uint8
|
|
ID uint16
|
|
ContentLength uint16
|
|
PaddingLength uint8
|
|
Reserved uint8
|
|
}
|
|
|
|
// for padding so we don't have to allocate all the time
|
|
// not synchronized because we don't care what the contents are
|
|
var pad [maxPad]byte
|
|
|
|
func (h *header) init(recType uint8, reqID uint16, contentLength int) {
|
|
h.Version = 1
|
|
h.Type = recType
|
|
h.ID = reqID
|
|
h.ContentLength = uint16(contentLength)
|
|
h.PaddingLength = uint8(-contentLength & 7)
|
|
}
|
|
|
|
type record struct {
|
|
h header
|
|
rbuf []byte
|
|
}
|
|
|
|
func (rec *record) read(r io.Reader) (buf []byte, err error) {
|
|
if err = binary.Read(r, binary.BigEndian, &rec.h); err != nil {
|
|
return
|
|
}
|
|
if rec.h.Version != 1 {
|
|
err = errors.New("fcgi: invalid header version")
|
|
return
|
|
}
|
|
if rec.h.Type == EndRequest {
|
|
err = io.EOF
|
|
return
|
|
}
|
|
n := int(rec.h.ContentLength) + int(rec.h.PaddingLength)
|
|
if len(rec.rbuf) < n {
|
|
rec.rbuf = make([]byte, n)
|
|
}
|
|
if _, err = io.ReadFull(r, rec.rbuf[:n]); err != nil {
|
|
return
|
|
}
|
|
buf = rec.rbuf[:int(rec.h.ContentLength)]
|
|
|
|
return
|
|
}
|
|
|
|
// FCGIClient implements a FastCGI client, which is a standard for
|
|
// interfacing external applications with Web servers.
|
|
type FCGIClient struct {
|
|
mutex sync.Mutex
|
|
rwc io.ReadWriteCloser
|
|
h header
|
|
buf bytes.Buffer
|
|
stderr bytes.Buffer
|
|
keepAlive bool
|
|
reqID uint16
|
|
}
|
|
|
|
// DialWithDialerContext connects to the fcgi responder at the specified network address, using custom net.Dialer
|
|
// and a context.
|
|
// See func net.Dial for a description of the network and address parameters.
|
|
func DialWithDialerContext(ctx context.Context, network, address string, dialer net.Dialer) (fcgi *FCGIClient, err error) {
|
|
var conn net.Conn
|
|
conn, err = dialer.DialContext(ctx, network, address)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
fcgi = &FCGIClient{
|
|
rwc: conn,
|
|
keepAlive: false,
|
|
reqID: 1,
|
|
}
|
|
|
|
return
|
|
}
|
|
|
|
// DialContext is like Dial but passes ctx to dialer.Dial.
|
|
func DialContext(ctx context.Context, network, address string) (fcgi *FCGIClient, err error) {
|
|
// TODO: why not set timeout here?
|
|
return DialWithDialerContext(ctx, network, address, net.Dialer{})
|
|
}
|
|
|
|
// Dial connects to the fcgi responder at the specified network address, using default net.Dialer.
|
|
// See func net.Dial for a description of the network and address parameters.
|
|
func Dial(network, address string) (fcgi *FCGIClient, err error) {
|
|
return DialContext(context.Background(), network, address)
|
|
}
|
|
|
|
// Close closes fcgi connection
|
|
func (c *FCGIClient) Close() {
|
|
c.rwc.Close()
|
|
}
|
|
|
|
func (c *FCGIClient) writeRecord(recType uint8, content []byte) (err error) {
|
|
c.mutex.Lock()
|
|
defer c.mutex.Unlock()
|
|
c.buf.Reset()
|
|
c.h.init(recType, c.reqID, len(content))
|
|
if err := binary.Write(&c.buf, binary.BigEndian, c.h); err != nil {
|
|
return err
|
|
}
|
|
if _, err := c.buf.Write(content); err != nil {
|
|
return err
|
|
}
|
|
if _, err := c.buf.Write(pad[:c.h.PaddingLength]); err != nil {
|
|
return err
|
|
}
|
|
_, err = c.rwc.Write(c.buf.Bytes())
|
|
return err
|
|
}
|
|
|
|
func (c *FCGIClient) writeBeginRequest(role uint16, flags uint8) error {
|
|
b := [8]byte{byte(role >> 8), byte(role), flags}
|
|
return c.writeRecord(BeginRequest, b[:])
|
|
}
|
|
|
|
func (c *FCGIClient) writePairs(recType uint8, pairs map[string]string) error {
|
|
w := newWriter(c, recType)
|
|
b := make([]byte, 8)
|
|
nn := 0
|
|
for k, v := range pairs {
|
|
m := 8 + len(k) + len(v)
|
|
if m > maxWrite {
|
|
// param data size exceed 65535 bytes"
|
|
vl := maxWrite - 8 - len(k)
|
|
v = v[:vl]
|
|
}
|
|
n := encodeSize(b, uint32(len(k)))
|
|
n += encodeSize(b[n:], uint32(len(v)))
|
|
m = n + len(k) + len(v)
|
|
if (nn + m) > maxWrite {
|
|
w.Flush()
|
|
nn = 0
|
|
}
|
|
nn += m
|
|
if _, err := w.Write(b[:n]); err != nil {
|
|
return err
|
|
}
|
|
if _, err := w.WriteString(k); err != nil {
|
|
return err
|
|
}
|
|
if _, err := w.WriteString(v); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
w.Close()
|
|
return nil
|
|
}
|
|
|
|
func encodeSize(b []byte, size uint32) int {
|
|
if size > 127 {
|
|
size |= 1 << 31
|
|
binary.BigEndian.PutUint32(b, size)
|
|
return 4
|
|
}
|
|
b[0] = byte(size)
|
|
return 1
|
|
}
|
|
|
|
// bufWriter encapsulates bufio.Writer but also closes the underlying stream when
|
|
// Closed.
|
|
type bufWriter struct {
|
|
closer io.Closer
|
|
*bufio.Writer
|
|
}
|
|
|
|
func (w *bufWriter) Close() error {
|
|
if err := w.Writer.Flush(); err != nil {
|
|
w.closer.Close()
|
|
return err
|
|
}
|
|
return w.closer.Close()
|
|
}
|
|
|
|
func newWriter(c *FCGIClient, recType uint8) *bufWriter {
|
|
s := &streamWriter{c: c, recType: recType}
|
|
w := bufio.NewWriterSize(s, maxWrite)
|
|
return &bufWriter{s, w}
|
|
}
|
|
|
|
// streamWriter abstracts out the separation of a stream into discrete records.
|
|
// It only writes maxWrite bytes at a time.
|
|
type streamWriter struct {
|
|
c *FCGIClient
|
|
recType uint8
|
|
}
|
|
|
|
func (w *streamWriter) Write(p []byte) (int, error) {
|
|
nn := 0
|
|
for len(p) > 0 {
|
|
n := len(p)
|
|
if n > maxWrite {
|
|
n = maxWrite
|
|
}
|
|
if err := w.c.writeRecord(w.recType, p[:n]); err != nil {
|
|
return nn, err
|
|
}
|
|
nn += n
|
|
p = p[n:]
|
|
}
|
|
return nn, nil
|
|
}
|
|
|
|
func (w *streamWriter) Close() error {
|
|
// send empty record to close the stream
|
|
return w.c.writeRecord(w.recType, nil)
|
|
}
|
|
|
|
type streamReader struct {
|
|
c *FCGIClient
|
|
buf []byte
|
|
}
|
|
|
|
func (w *streamReader) Read(p []byte) (n int, err error) {
|
|
|
|
if len(p) > 0 {
|
|
if len(w.buf) == 0 {
|
|
|
|
// filter outputs for error log
|
|
for {
|
|
rec := &record{}
|
|
var buf []byte
|
|
buf, err = rec.read(w.c.rwc)
|
|
if err != nil {
|
|
return
|
|
}
|
|
// standard error output
|
|
if rec.h.Type == Stderr {
|
|
w.c.stderr.Write(buf)
|
|
continue
|
|
}
|
|
w.buf = buf
|
|
break
|
|
}
|
|
}
|
|
|
|
n = len(p)
|
|
if n > len(w.buf) {
|
|
n = len(w.buf)
|
|
}
|
|
copy(p, w.buf[:n])
|
|
w.buf = w.buf[n:]
|
|
}
|
|
|
|
return
|
|
}
|
|
|
|
// Do made the request and returns a io.Reader that translates the data read
|
|
// from fcgi responder out of fcgi packet before returning it.
|
|
func (c *FCGIClient) Do(p map[string]string, req io.Reader) (r io.Reader, err error) {
|
|
err = c.writeBeginRequest(uint16(Responder), 0)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
err = c.writePairs(Params, p)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
body := newWriter(c, Stdin)
|
|
if req != nil {
|
|
_, _ = io.Copy(body, req)
|
|
}
|
|
body.Close()
|
|
|
|
r = &streamReader{c: c}
|
|
return
|
|
}
|
|
|
|
// clientCloser is a io.ReadCloser. It wraps a io.Reader with a Closer
|
|
// that closes FCGIClient connection.
|
|
type clientCloser struct {
|
|
*FCGIClient
|
|
io.Reader
|
|
}
|
|
|
|
func (f clientCloser) Close() error { return f.rwc.Close() }
|
|
|
|
// Request returns a HTTP Response with Header and Body
|
|
// from fcgi responder
|
|
func (c *FCGIClient) Request(p map[string]string, req io.Reader) (resp *http.Response, err error) {
|
|
r, err := c.Do(p, req)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
rb := bufio.NewReader(r)
|
|
tp := textproto.NewReader(rb)
|
|
resp = new(http.Response)
|
|
|
|
// Parse the response headers.
|
|
mimeHeader, err := tp.ReadMIMEHeader()
|
|
if err != nil && err != io.EOF {
|
|
return
|
|
}
|
|
resp.Header = http.Header(mimeHeader)
|
|
|
|
if resp.Header.Get("Status") != "" {
|
|
statusParts := strings.SplitN(resp.Header.Get("Status"), " ", 2)
|
|
resp.StatusCode, err = strconv.Atoi(statusParts[0])
|
|
if err != nil {
|
|
return
|
|
}
|
|
if len(statusParts) > 1 {
|
|
resp.Status = statusParts[1]
|
|
}
|
|
|
|
} else {
|
|
resp.StatusCode = http.StatusOK
|
|
}
|
|
|
|
// TODO: fixTransferEncoding ?
|
|
resp.TransferEncoding = resp.Header["Transfer-Encoding"]
|
|
resp.ContentLength, _ = strconv.ParseInt(resp.Header.Get("Content-Length"), 10, 64)
|
|
|
|
if chunked(resp.TransferEncoding) {
|
|
resp.Body = clientCloser{c, httputil.NewChunkedReader(rb)}
|
|
} else {
|
|
resp.Body = clientCloser{c, ioutil.NopCloser(rb)}
|
|
}
|
|
return
|
|
}
|
|
|
|
// Get issues a GET request to the fcgi responder.
|
|
func (c *FCGIClient) Get(p map[string]string, body io.Reader, l int64) (resp *http.Response, err error) {
|
|
|
|
p["REQUEST_METHOD"] = "GET"
|
|
p["CONTENT_LENGTH"] = strconv.FormatInt(l, 10)
|
|
|
|
return c.Request(p, body)
|
|
}
|
|
|
|
// Head issues a HEAD request to the fcgi responder.
|
|
func (c *FCGIClient) Head(p map[string]string) (resp *http.Response, err error) {
|
|
|
|
p["REQUEST_METHOD"] = "HEAD"
|
|
p["CONTENT_LENGTH"] = "0"
|
|
|
|
return c.Request(p, nil)
|
|
}
|
|
|
|
// Options issues an OPTIONS request to the fcgi responder.
|
|
func (c *FCGIClient) Options(p map[string]string) (resp *http.Response, err error) {
|
|
|
|
p["REQUEST_METHOD"] = "OPTIONS"
|
|
p["CONTENT_LENGTH"] = "0"
|
|
|
|
return c.Request(p, nil)
|
|
}
|
|
|
|
// Post issues a POST request to the fcgi responder. with request body
|
|
// in the format that bodyType specified
|
|
func (c *FCGIClient) Post(p map[string]string, method string, bodyType string, body io.Reader, l int64) (resp *http.Response, err error) {
|
|
if p == nil {
|
|
p = make(map[string]string)
|
|
}
|
|
|
|
p["REQUEST_METHOD"] = strings.ToUpper(method)
|
|
|
|
if len(p["REQUEST_METHOD"]) == 0 || p["REQUEST_METHOD"] == "GET" {
|
|
p["REQUEST_METHOD"] = "POST"
|
|
}
|
|
|
|
p["CONTENT_LENGTH"] = strconv.FormatInt(l, 10)
|
|
if len(bodyType) > 0 {
|
|
p["CONTENT_TYPE"] = bodyType
|
|
} else {
|
|
p["CONTENT_TYPE"] = "application/x-www-form-urlencoded"
|
|
}
|
|
|
|
return c.Request(p, body)
|
|
}
|
|
|
|
// PostForm issues a POST to the fcgi responder, with form
|
|
// as a string key to a list values (url.Values)
|
|
func (c *FCGIClient) PostForm(p map[string]string, data url.Values) (resp *http.Response, err error) {
|
|
body := bytes.NewReader([]byte(data.Encode()))
|
|
return c.Post(p, "POST", "application/x-www-form-urlencoded", body, int64(body.Len()))
|
|
}
|
|
|
|
// PostFile issues a POST to the fcgi responder in multipart(RFC 2046) standard,
|
|
// with form as a string key to a list values (url.Values),
|
|
// and/or with file as a string key to a list file path.
|
|
func (c *FCGIClient) PostFile(p map[string]string, data url.Values, file map[string]string) (resp *http.Response, err error) {
|
|
buf := &bytes.Buffer{}
|
|
writer := multipart.NewWriter(buf)
|
|
bodyType := writer.FormDataContentType()
|
|
|
|
for key, val := range data {
|
|
for _, v0 := range val {
|
|
err = writer.WriteField(key, v0)
|
|
if err != nil {
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
for key, val := range file {
|
|
fd, e := os.Open(val)
|
|
if e != nil {
|
|
return nil, e
|
|
}
|
|
defer fd.Close()
|
|
|
|
part, e := writer.CreateFormFile(key, filepath.Base(val))
|
|
if e != nil {
|
|
return nil, e
|
|
}
|
|
_, err = io.Copy(part, fd)
|
|
if err != nil {
|
|
return
|
|
}
|
|
}
|
|
|
|
err = writer.Close()
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
return c.Post(p, "POST", bodyType, buf, int64(buf.Len()))
|
|
}
|
|
|
|
// SetReadTimeout sets the read timeout for future calls that read from the
|
|
// fcgi responder. A zero value for t means no timeout will be set.
|
|
func (c *FCGIClient) SetReadTimeout(t time.Duration) error {
|
|
if conn, ok := c.rwc.(net.Conn); ok && t != 0 {
|
|
return conn.SetReadDeadline(time.Now().Add(t))
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// SetWriteTimeout sets the write timeout for future calls that send data to
|
|
// the fcgi responder. A zero value for t means no timeout will be set.
|
|
func (c *FCGIClient) SetWriteTimeout(t time.Duration) error {
|
|
if conn, ok := c.rwc.(net.Conn); ok && t != 0 {
|
|
return conn.SetWriteDeadline(time.Now().Add(t))
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// Checks whether chunked is part of the encodings stack
|
|
func chunked(te []string) bool { return len(te) > 0 && te[0] == "chunked" }
|