[ashd.git] / src / callcgi.c

/*
    ashd - A Sane HTTP Daemon
    Copyright (C) 2008  Fredrik Tolf <fredrik@dolda2000.com>

    This program is free software: you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation, either version 3 of the License, or
    (at your option) any later version.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

#include <stdlib.h>
#include <string.h>
#include <stdio.h>
#include <unistd.h>
#include <errno.h>
#include <ctype.h>
#include <signal.h>
#include <sys/poll.h>
#include <sys/wait.h>

#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <utils.h>
#include <log.h>
#include <req.h>

static char **environ;

static int passdata(FILE *in, FILE *out)
{
    int ret;
    char buf[65536];
    struct pollfd pfds[2];
    
    while(!feof(in)) {
	memset(pfds, 0, sizeof(struct pollfd) * 2);
	pfds[0].fd = fileno(in);
	pfds[0].events = POLLIN;
	pfds[1].fd = fileno(out);
	pfds[1].events = POLLHUP;
	ret = poll(pfds, 2, -1);
	if(ret < 0) {
	    if(errno != EINTR) {
		flog(LOG_ERR, "callcgi: error in poll: %s", strerror(errno));
		return(1);
	    }
	}
	if(ret > 0) {
	    if(pfds[0].revents & (POLLIN | POLLERR | POLLHUP)) {
		ret = fread(buf, 1, 65536, in);
		if(ferror(in)) {
		    flog(LOG_ERR, "callcgi: could not read input: %s", strerror(errno));
		    return(1);
		}
		if(fwrite(buf, 1, ret, out) != ret) {
		    flog(LOG_ERR, "callcgi: could not write output: %s", strerror(errno));
		    return(1);
		}
	    }
	    if(pfds[1].revents & POLLHUP)
		return(1);
	}
    }
    return(0);
}

static char *absolutify(char *file)
{
    char cwd[1024];
    
    if(*file != '/') {
	getcwd(cwd, sizeof(cwd));
	return(sprintf2("%s/%s", cwd, file));
    }
    return(sstrdup(file));
}

static pid_t forkchild(int inpath, char *prog, char *file, char *method, char *url, char *rest, int *infd, int *outfd)
{
    char *qp, **env, *name;
    int inp[2], outp[2];
    pid_t pid;
    char *pi;

    pipe(inp);
    pipe(outp);
    if((pid = fork()) < 0) {
	flog(LOG_ERR, "callcgi: could not fork");
	exit(1);
    }
    if(pid == 0) {
	dup2(inp[0], 0);
	dup2(outp[1], 1);
	close(inp[0]);
	close(inp[1]);
	close(outp[0]);
	close(outp[1]);
	if((qp = strchr(url, '?')) != NULL)
	    *(qp++) = 0;
	putenv(sprintf2("SERVER_SOFTWARE=ashd/%s", VERSION));
	putenv("GATEWAY_INTERFACE=CGI/1.1");
	if(getenv("HTTP_VERSION"))
	    putenv(sprintf2("SERVER_PROTOCOL=%s", getenv("HTTP_VERSION")));
	putenv(sprintf2("REQUEST_METHOD=%s", method));
	name = url;
	/* XXX: This is an ugly hack (I think), but though I can think
	 * of several alternatives, none seem to be better. */
	if(*rest && (strlen(url) >= strlen(rest)) &&
	   !strcmp(rest, url + strlen(url) - strlen(rest))) {
	    name = sprintf2("%.*s", (int)(strlen(url) - strlen(rest)), url);
	}
	if((pi = unquoteurl(rest)) == NULL)
	    pi = rest;
	if(!strcmp(name, "/")) {
	    /*
	     * Normal CGI behavior appears to be to always let
	     * PATH_INFO begin with a slash and never let SCRIPT_NAME
	     * end with one. That conflicts, however, with some
	     * behaviors, such as "mounting" CGI applications on a
	     * directory element of the URI space -- a handler
	     * responding to "/foo/" would not be able to tell that it
	     * is not called "/foo", which makes a large difference,
	     * not least in relation to URI reconstruction and
	     * redirections. A common practical case is CGI-handled
	     * index files in directories. Therefore, this only
	     * handles the nonconditional case of the root directory
	     * and leaves other decisions to the previous handler
	     * handing over the request to callcgi. It is unclear if
	     * there is a better way to handle the problem.
	     */
	    name[0] = 0;
	    pi = sprintf2("/%s", pi);
	}
	putenv(sprintf2("PATH_INFO=%s", pi));
	putenv(sprintf2("SCRIPT_NAME=%s", name));
	putenv(sprintf2("QUERY_STRING=%s", qp?qp:""));
	if(getenv("REQ_HOST"))
	    putenv(sprintf2("SERVER_NAME=%s", getenv("REQ_HOST")));
	if(getenv("REQ_X_ASH_SERVER_PORT"))
	    putenv(sprintf2("SERVER_PORT=%s", getenv("REQ_X_ASH_SERVER_PORT")));
	if(getenv("REQ_X_ASH_PROTOCOL") && !strcmp(getenv("REQ_X_ASH_PROTOCOL"), "https"))
	    putenv("HTTPS=on");
	if(getenv("REQ_X_ASH_ADDRESS"))
	    putenv(sprintf2("REMOTE_ADDR=%s", getenv("REQ_X_ASH_ADDRESS")));
	if(getenv("REQ_X_ASH_REMOTE_USER"))
	    putenv(sprintf2("REMOTE_USER=%s", getenv("REQ_X_ASH_REMOTE_USER")));
	if(getenv("REQ_CONTENT_TYPE"))
	    putenv(sprintf2("CONTENT_TYPE=%s", getenv("REQ_CONTENT_TYPE")));
	if(getenv("REQ_CONTENT_LENGTH"))
	    putenv(sprintf2("CONTENT_LENGTH=%s", getenv("REQ_CONTENT_LENGTH")));
	for(env = environ; *env; env++) {
	    if(!strncmp(*env, "REQ_", 4))
		putenv(sprintf2("HTTP_%s", (*env) + 4));
	}
	/*
	 * This is (understandably) missing from the CGI
	 * specification, but PHP seems to require it.
	 */
	putenv(sprintf2("SCRIPT_FILENAME=%s", absolutify(file)));
	if(inpath)
	    execlp(prog, prog, file, NULL);
	else
	    execl(prog, prog, file, NULL);
	exit(127);
    }
    close(inp[0]);
    close(outp[1]);
    *infd = inp[1];
    *outfd = outp[0];
    return(pid);
}

static void trim(struct charbuf *buf)
{
    char *p;
    
    for(p = buf->b; (p - buf->b < buf->d) && isspace(*p); p++);
    memmove(buf->b, p, buf->d -= (p - buf->b));
    for(p = buf->b + buf->d - 1; (p > buf->b) && isspace(*p); p--, buf->d--);
}

static char **parsecgiheaders(FILE *s)
{
    int c, state;
    struct charvbuf hbuf;
    struct charbuf buf;
    
    bufinit(hbuf);
    bufinit(buf);
    state = 0;
    while(1) {
	c = fgetc(s);
    again:
	if(state == 0) {
	    if(c == '\r') {
	    } else if(c == '\n') {
		break;
	    } else if(c == EOF) {
		goto fail;
	    } else {
		state = 1;
		goto again;
	    }
	} else if(state == 1) {
	    if(c == ':') {
		trim(&buf);
		bufadd(buf, 0);
		bufadd(hbuf, buf.b);
		bufinit(buf);
		state = 2;
	    } else if(c == '\r') {
	    } else if(c == '\n') {
		goto fail;
	    } else if(c == EOF) {
		goto fail;
	    } else {
		bufadd(buf, c);
	    }
	} else if(state == 2) {
	    if(c == '\r') {
	    } else if(c == '\n') {
		trim(&buf);
		bufadd(buf, 0);
		bufadd(hbuf, buf.b);
		bufinit(buf);
		state = 0;
	    } else if(c == EOF) {
		goto fail;
	    } else {
		bufadd(buf, c);
	    }
	}
    }
    bufadd(hbuf, NULL);
    return(hbuf.b);
    
fail:
    buffree(hbuf);
    buffree(buf);
    return(NULL);
}

static char *defstatus(int code)
{
    if(code == 200)
	return("OK");
    else if(code == 201)
	return("Created");
    else if(code == 202)
	return("Accepted");
    else if(code == 204)
	return("No Content");
    else if(code == 300)
	return("Multiple Choices");
    else if(code == 301)
	return("Moved Permanently");
    else if(code == 302)
	return("Found");
    else if(code == 303)
	return("See Other");
    else if(code == 304)
	return("Not Modified");
    else if(code == 307)
	return("Moved Temporarily");
    else if(code == 400)
	return("Bad Request");
    else if(code == 401)
	return("Unauthorized");
    else if(code == 403)
	return("Forbidden");
    else if(code == 404)
	return("Not Found");
    else if(code == 500)
	return("Internal Server Error");
    else if(code == 501)
	return("Not Implemented");
    else if(code == 503)
	return("Service Unavailable");
    else
	return("Unknown status");
}

static void sendstatus(char **headers, FILE *out)
{
    char **hp;
    char *status, *location;
    
    hp = headers;
    status = location = NULL;
    while(*hp) {
	if(!strcasecmp(hp[0], "status")) {
	    status = hp[1];
	    /* Clear this header, so that it is not transmitted by sendheaders. */
	    **hp = 0;
	} else if(!strcasecmp(hp[0], "location")) {
	    location = hp[1];
	    hp += 2;
	} else {
	    hp += 2;
	}
    }
    if(status) {
	if(strchr(status, ' '))
	    fprintf(out, "HTTP/1.1 %s\n", status);
	else
	    fprintf(out, "HTTP/1.1 %i %s\n", atoi(status), defstatus(atoi(status)));
    } else if(location) {
	fprintf(out, "HTTP/1.1 303 See Other\n");
    } else {
	fprintf(out, "HTTP/1.1 200 OK\n");
    }
}

static void sendheaders(char **headers, FILE *out)
{
    while(*headers) {
	if(**headers)
	    fprintf(out, "%s: %s\n", headers[0], headers[1]);
	headers += 2;
    }
}

static void usage(void)
{
    flog(LOG_ERR, "usage: callcgi [-c] [-p PROGRAM] METHOD URL REST");
}

int main(int argc, char **argv, char **envp)
{
    int c;
    char *file, *prog, *sp;
    int inpath, cd;
    int infd, outfd;
    FILE *in, *out;
    char **headers;
    pid_t child;
    int estat;
    
    environ = envp;
    signal(SIGPIPE, SIG_IGN);
    
    prog = NULL;
    inpath = 0;
    cd = 0;
    while((c = getopt(argc, argv, "cp:")) >= 0) {
	switch(c) {
	case 'c':
	    cd = 1;
	    break;
	case 'p':
	    prog = optarg;
	    inpath = 1;
	    break;
	default:
	    usage();
	    exit(1);
	}
    }
    
    if(argc - optind < 3) {
	usage();
	exit(1);
    }
    if((file = getenv("REQ_X_ASH_FILE")) == NULL) {
	flog(LOG_ERR, "callcgi: needs to be called with the X-Ash-File header");
	exit(1);
    }
    
    if(cd) {
	/* This behavior is encouraged by the CGI specification (RFC 3875, 7.2),
	 * but not strictly required, and I get the feeling it might break some
	 * relative paths here or there, so it's not the default for now. */
	if((sp = strrchr(file, '/')) != NULL) {
	    *sp = 0;
	    if(chdir(file)) {
		*sp = '/';
	    } else {
		file = sp + 1;
	    }
	}
    }
    
    if(prog == NULL)
	prog = file;
    child = forkchild(inpath, prog, file, argv[optind], argv[optind + 1], argv[optind + 2], &infd, &outfd);
    in = fdopen(infd, "w");
    passdata(stdin, in);	/* Ignore errors, perhaps? */
    fclose(in);
    out = fdopen(outfd, "r");
    if((headers = parsecgiheaders(out)) == NULL) {
	flog(LOG_WARNING, "CGI handler returned invalid headers");
	exit(1);
    }
    sendstatus(headers, stdout);
    sendheaders(headers, stdout);
    printf("\n");
    if(passdata(out, stdout))
	kill(child, SIGINT);
    if(waitpid(child, &estat, 0) == child) {
	if(WCOREDUMP(estat))
	    flog(LOG_WARNING, "CGI handler `%s' dumped core", prog);
	if(WIFEXITED(estat) && !WEXITSTATUS(estat))
	    return(0);
	else
	    return(1);
    }
    flog(LOG_WARNING, "could not wait for CGI handler: %s", strerror(errno));
    return(1);
}
Commit	Line	Data
8cc51634 FT	1	/*
	2	ashd - A Sane HTTP Daemon
	3	Copyright (C) 2008 Fredrik Tolf <fredrik@dolda2000.com>
	4
	5	This program is free software: you can redistribute it and/or modify
	6	it under the terms of the GNU General Public License as published by
	7	the Free Software Foundation, either version 3 of the License, or
	8	(at your option) any later version.
	9
	10	This program is distributed in the hope that it will be useful,
	11	but WITHOUT ANY WARRANTY; without even the implied warranty of
	12	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	13	GNU General Public License for more details.
	14
	15	You should have received a copy of the GNU General Public License
	16	along with this program. If not, see <http://www.gnu.org/licenses/>.
	17	*/
	18
	19	#include <stdlib.h>
	20	#include <string.h>
	21	#include <stdio.h>
	22	#include <unistd.h>
	23	#include <errno.h>
	24	#include <ctype.h>
	25	#include <signal.h>
df96b222	26	#include <sys/poll.h>
3349651f	27	#include <sys/wait.h>
8cc51634 FT	28
	29	#ifdef HAVE_CONFIG_H
	30	#include <config.h>
	31	#endif
	32	#include <utils.h>
	33	#include <log.h>
09c82f9c	34	#include <req.h>
8cc51634 FT	35
	36	static char **environ;
	37
df96b222	38	static int passdata(FILE in, FILE out)
8cc51634 FT	39	{
8cc51634 FT	40	int ret;
df96b222 FT	41	char buf[65536];
df96b222 FT	42	struct pollfd pfds[2];
8cc51634	43
8cc51634	44	while(!feof(in)) {
df96b222 FT	45	memset(pfds, 0, sizeof(struct pollfd) * 2);
	46	pfds[0].fd = fileno(in);
	47	pfds[0].events = POLLIN;
	48	pfds[1].fd = fileno(out);
	49	pfds[1].events = POLLHUP;
	50	ret = poll(pfds, 2, -1);
	51	if(ret < 0) {
	52	if(errno != EINTR) {
	53	flog(LOG_ERR, "callcgi: error in poll: %s", strerror(errno));
	54	return(1);
	55	}
8cc51634	56	}
df96b222	57	if(ret > 0) {
19409e87	58	if(pfds[0].revents & (POLLIN \| POLLERR \| POLLHUP)) {
df96b222 FT	59	ret = fread(buf, 1, 65536, in);
	60	if(ferror(in)) {
	61	flog(LOG_ERR, "callcgi: could not read input: %s", strerror(errno));
	62	return(1);
	63	}
	64	if(fwrite(buf, 1, ret, out) != ret) {
	65	flog(LOG_ERR, "callcgi: could not write output: %s", strerror(errno));
	66	return(1);
	67	}
	68	}
	69	if(pfds[1].revents & POLLHUP)
	70	return(1);
8cc51634 FT	71	}
8cc51634 FT	72	}
df96b222	73	return(0);
8cc51634 FT	74	}
8cc51634 FT	75
bac8c1f9 FT	76	static char absolutify(char file)
	77	{
	78	char cwd[1024];
	79
	80	if(*file != '/') {
	81	getcwd(cwd, sizeof(cwd));
	82	return(sprintf2("%s/%s", cwd, file));
	83	}
	84	return(sstrdup(file));
	85	}
	86
df96b222	87	static pid_t forkchild(int inpath, char prog, char file, char method, char url, char rest, int infd, int *outfd)
8cc51634	88	{
85059e82	89	char qp, env, name;
8cc51634 FT	90	int inp[2], outp[2];
8cc51634 FT	91	pid_t pid;
53d666ca	92	char *pi;
8cc51634 FT	93
	94	pipe(inp);
	95	pipe(outp);
	96	if((pid = fork()) < 0) {
	97	flog(LOG_ERR, "callcgi: could not fork");
	98	exit(1);
	99	}
	100	if(pid == 0) {
8cc51634 FT	101	dup2(inp[0], 0);
8cc51634 FT	102	dup2(outp[1], 1);
18838a2e FT	103	close(inp[0]);
	104	close(inp[1]);
	105	close(outp[0]);
	106	close(outp[1]);
8cc51634 FT	107	if((qp = strchr(url, '?')) != NULL)
8cc51634 FT	108	*(qp++) = 0;
8cc51634 FT	109	putenv(sprintf2("SERVER_SOFTWARE=ashd/%s", VERSION));
	110	putenv("GATEWAY_INTERFACE=CGI/1.1");
	111	if(getenv("HTTP_VERSION"))
147c2b51	112	putenv(sprintf2("SERVER_PROTOCOL=%s", getenv("HTTP_VERSION")));
8cc51634	113	putenv(sprintf2("REQUEST_METHOD=%s", method));
85059e82 FT	114	name = url;
	115	/* XXX: This is an ugly hack (I think), but though I can think
	116	* of several alternatives, none seem to be better. */
2d65add0 FT	117	if(*rest && (strlen(url) >= strlen(rest)) &&
	118	!strcmp(rest, url + strlen(url) - strlen(rest))) {
	119	name = sprintf2("%.*s", (int)(strlen(url) - strlen(rest)), url);
85059e82	120	}
53d666ca FT	121	if((pi = unquoteurl(rest)) == NULL)
	122	pi = rest;
	123	if(!strcmp(name, "/")) {
	124	/*
	125	* Normal CGI behavior appears to be to always let
	126	* PATH_INFO begin with a slash and never let SCRIPT_NAME
	127	* end with one. That conflicts, however, with some
	128	* behaviors, such as "mounting" CGI applications on a
	129	* directory element of the URI space -- a handler
	130	* responding to "/foo/" would not be able to tell that it
	131	* is not called "/foo", which makes a large difference,
	132	* not least in relation to URI reconstruction and
	133	* redirections. A common practical case is CGI-handled
	134	* index files in directories. Therefore, this only
	135	* handles the nonconditional case of the root directory
	136	* and leaves other decisions to the previous handler
	137	* handing over the request to callcgi. It is unclear if
	138	* there is a better way to handle the problem.
	139	*/
	140	name[0] = 0;
	141	pi = sprintf2("/%s", pi);
	142	}
	143	putenv(sprintf2("PATH_INFO=%s", pi));
85059e82	144	putenv(sprintf2("SCRIPT_NAME=%s", name));
8cc51634 FT	145	putenv(sprintf2("QUERY_STRING=%s", qp?qp:""));
	146	if(getenv("REQ_HOST"))
	147	putenv(sprintf2("SERVER_NAME=%s", getenv("REQ_HOST")));
8626e489 FT	148	if(getenv("REQ_X_ASH_SERVER_PORT"))
	149	putenv(sprintf2("SERVER_PORT=%s", getenv("REQ_X_ASH_SERVER_PORT")));
	150	if(getenv("REQ_X_ASH_PROTOCOL") && !strcmp(getenv("REQ_X_ASH_PROTOCOL"), "https"))
f0a758cc	151	putenv("HTTPS=on");
8cc51634 FT	152	if(getenv("REQ_X_ASH_ADDRESS"))
8cc51634 FT	153	putenv(sprintf2("REMOTE_ADDR=%s", getenv("REQ_X_ASH_ADDRESS")));
381f9919 FT	154	if(getenv("REQ_X_ASH_REMOTE_USER"))
381f9919 FT	155	putenv(sprintf2("REMOTE_USER=%s", getenv("REQ_X_ASH_REMOTE_USER")));
8cc51634 FT	156	if(getenv("REQ_CONTENT_TYPE"))
	157	putenv(sprintf2("CONTENT_TYPE=%s", getenv("REQ_CONTENT_TYPE")));
	158	if(getenv("REQ_CONTENT_LENGTH"))
	159	putenv(sprintf2("CONTENT_LENGTH=%s", getenv("REQ_CONTENT_LENGTH")));
	160	for(env = environ; *env; env++) {
	161	if(!strncmp(*env, "REQ_", 4))
	162	putenv(sprintf2("HTTP_%s", (*env) + 4));
	163	}
	164	/*
	165	* This is (understandably) missing from the CGI
	166	* specification, but PHP seems to require it.
	167	*/
bac8c1f9	168	putenv(sprintf2("SCRIPT_FILENAME=%s", absolutify(file)));
341b3f0b FT	169	if(inpath)
	170	execlp(prog, prog, file, NULL);
	171	else
	172	execl(prog, prog, file, NULL);
8cc51634 FT	173	exit(127);
	174	}
	175	close(inp[0]);
	176	close(outp[1]);
	177	*infd = inp[1];
	178	*outfd = outp[0];
df96b222	179	return(pid);
8cc51634 FT	180	}
	181
	182	static void trim(struct charbuf *buf)
	183	{
	184	char *p;
	185
	186	for(p = buf->b; (p - buf->b < buf->d) && isspace(*p); p++);
	187	memmove(buf->b, p, buf->d -= (p - buf->b));
	188	for(p = buf->b + buf->d - 1; (p > buf->b) && isspace(*p); p--, buf->d--);
	189	}
	190
09c82f9c	191	static char *parsecgiheaders(FILE s)
8cc51634 FT	192	{
	193	int c, state;
	194	struct charvbuf hbuf;
	195	struct charbuf buf;
	196
	197	bufinit(hbuf);
	198	bufinit(buf);
	199	state = 0;
	200	while(1) {
	201	c = fgetc(s);
	202	again:
	203	if(state == 0) {
	204	if(c == '\r') {
	205	} else if(c == '\n') {
	206	break;
	207	} else if(c == EOF) {
	208	goto fail;
	209	} else {
	210	state = 1;
	211	goto again;
	212	}
	213	} else if(state == 1) {
	214	if(c == ':') {
	215	trim(&buf);
	216	bufadd(buf, 0);
	217	bufadd(hbuf, buf.b);
	218	bufinit(buf);
	219	state = 2;
	220	} else if(c == '\r') {
	221	} else if(c == '\n') {
	222	goto fail;
	223	} else if(c == EOF) {
	224	goto fail;
	225	} else {
	226	bufadd(buf, c);
	227	}
	228	} else if(state == 2) {
	229	if(c == '\r') {
	230	} else if(c == '\n') {
	231	trim(&buf);
	232	bufadd(buf, 0);
	233	bufadd(hbuf, buf.b);
	234	bufinit(buf);
	235	state = 0;
	236	} else if(c == EOF) {
	237	goto fail;
	238	} else {
	239	bufadd(buf, c);
	240	}
	241	}
	242	}
	243	bufadd(hbuf, NULL);
	244	return(hbuf.b);
	245
	246	fail:
	247	buffree(hbuf);
	248	buffree(buf);
	249	return(NULL);
	250	}
	251
2e535ab0 FT	252	static char *defstatus(int code)
	253	{
	254	if(code == 200)
	255	return("OK");
	256	else if(code == 201)
	257	return("Created");
	258	else if(code == 202)
	259	return("Accepted");
	260	else if(code == 204)
	261	return("No Content");
	262	else if(code == 300)
	263	return("Multiple Choices");
	264	else if(code == 301)
	265	return("Moved Permanently");
	266	else if(code == 302)
	267	return("Found");
	268	else if(code == 303)
	269	return("See Other");
	270	else if(code == 304)
	271	return("Not Modified");
	272	else if(code == 307)
	273	return("Moved Temporarily");
	274	else if(code == 400)
	275	return("Bad Request");
	276	else if(code == 401)
	277	return("Unauthorized");
	278	else if(code == 403)
	279	return("Forbidden");
	280	else if(code == 404)
	281	return("Not Found");
	282	else if(code == 500)
	283	return("Internal Server Error");
	284	else if(code == 501)
	285	return("Not Implemented");
	286	else if(code == 503)
	287	return("Service Unavailable");
	288	else
	289	return("Unknown status");
	290	}
	291
8cc51634 FT	292	static void sendstatus(char *headers, FILE out)
	293	{
	294	char **hp;
	295	char status, location;
	296
	297	hp = headers;
	298	status = location = NULL;
	299	while(*hp) {
	300	if(!strcasecmp(hp[0], "status")) {
	301	status = hp[1];
	302	/* Clear this header, so that it is not transmitted by sendheaders. */
	303	**hp = 0;
	304	} else if(!strcasecmp(hp[0], "location")) {
	305	location = hp[1];
f9255ddd	306	hp += 2;
8cc51634 FT	307	} else {
	308	hp += 2;
	309	}
	310	}
	311	if(status) {
2e535ab0	312	if(strchr(status, ' '))
81cfca6c	313	fprintf(out, "HTTP/1.1 %s\n", status);
2e535ab0	314	else
81cfca6c	315	fprintf(out, "HTTP/1.1 %i %s\n", atoi(status), defstatus(atoi(status)));
8cc51634	316	} else if(location) {
81cfca6c	317	fprintf(out, "HTTP/1.1 303 See Other\n");
8cc51634	318	} else {
81cfca6c	319	fprintf(out, "HTTP/1.1 200 OK\n");
8cc51634 FT	320	}
	321	}
	322
	323	static void sendheaders(char *headers, FILE out)
	324	{
	325	while(*headers) {
	326	if(**headers)
81cfca6c	327	fprintf(out, "%s: %s\n", headers[0], headers[1]);
8cc51634 FT	328	headers += 2;
	329	}
	330	}
	331
341b3f0b FT	332	static void usage(void)
341b3f0b FT	333	{
5e74f3f1	334	flog(LOG_ERR, "usage: callcgi [-c] [-p PROGRAM] METHOD URL REST");
341b3f0b FT	335	}
341b3f0b FT	336
8cc51634 FT	337	int main(int argc, char argv, char envp)
8cc51634 FT	338	{
341b3f0b	339	int c;
5e74f3f1 FT	340	char file, prog, *sp;
5e74f3f1 FT	341	int inpath, cd;
341b3f0b FT	342	int infd, outfd;
341b3f0b FT	343	FILE in, out;
8cc51634	344	char **headers;
df96b222	345	pid_t child;
3349651f	346	int estat;
8cc51634 FT	347
	348	environ = envp;
	349	signal(SIGPIPE, SIG_IGN);
341b3f0b FT	350
	351	prog = NULL;
	352	inpath = 0;
5e74f3f1 FT	353	cd = 0;
5e74f3f1 FT	354	while((c = getopt(argc, argv, "cp:")) >= 0) {
341b3f0b	355	switch(c) {
5e74f3f1 FT	356	case 'c':
	357	cd = 1;
	358	break;
341b3f0b FT	359	case 'p':
	360	prog = optarg;
	361	inpath = 1;
	362	break;
	363	default:
	364	usage();
	365	exit(1);
	366	}
	367	}
	368
	369	if(argc - optind < 3) {
	370	usage();
8cc51634 FT	371	exit(1);
	372	}
	373	if((file = getenv("REQ_X_ASH_FILE")) == NULL) {
	374	flog(LOG_ERR, "callcgi: needs to be called with the X-Ash-File header");
	375	exit(1);
	376	}
5e74f3f1 FT	377
	378	if(cd) {
	379	/* This behavior is encouraged by the CGI specification (RFC 3875, 7.2),
	380	* but not strictly required, and I get the feeling it might break some
	381	* relative paths here or there, so it's not the default for now. */
	382	if((sp = strrchr(file, '/')) != NULL) {
	383	*sp = 0;
	384	if(chdir(file)) {
	385	*sp = '/';
	386	} else {
	387	file = sp + 1;
	388	}
	389	}
	390	}
	391
341b3f0b FT	392	if(prog == NULL)
341b3f0b FT	393	prog = file;
df96b222	394	child = forkchild(inpath, prog, file, argv[optind], argv[optind + 1], argv[optind + 2], &infd, &outfd);
341b3f0b	395	in = fdopen(infd, "w");
df96b222	396	passdata(stdin, in); /* Ignore errors, perhaps? */
341b3f0b FT	397	fclose(in);
341b3f0b FT	398	out = fdopen(outfd, "r");
09c82f9c	399	if((headers = parsecgiheaders(out)) == NULL) {
8cc51634 FT	400	flog(LOG_WARNING, "CGI handler returned invalid headers");
	401	exit(1);
	402	}
	403	sendstatus(headers, stdout);
	404	sendheaders(headers, stdout);
81cfca6c	405	printf("\n");
df96b222 FT	406	if(passdata(out, stdout))
df96b222 FT	407	kill(child, SIGINT);
3349651f FT	408	if(waitpid(child, &estat, 0) == child) {
	409	if(WCOREDUMP(estat))
	410	flog(LOG_WARNING, "CGI handler `%s' dumped core", prog);
	411	if(WIFEXITED(estat) && !WEXITSTATUS(estat))
	412	return(0);
	413	else
	414	return(1);
	415	}
	416	flog(LOG_WARNING, "could not wait for CGI handler: %s", strerror(errno));
	417	return(1);
8cc51634	418	}