[ashd.git] / src / htparser.c

/*
    ashd - A Sane HTTP Daemon
    Copyright (C) 2008  Fredrik Tolf <fredrik@dolda2000.com>

    This program is free software: you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation, either version 3 of the License, or
    (at your option) any later version.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

#include <stdlib.h>
#include <unistd.h>
#include <stdio.h>
#include <string.h>
#include <sys/socket.h>
#include <pwd.h>
#include <errno.h>

#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <utils.h>
#include <mt.h>
#include <mtio.h>
#include <log.h>
#include <req.h>
#include <proc.h>

#include "htparser.h"

static int plex;

static void trimx(struct hthead *req)
{
    int i;
    
    i = 0;
    while(i < req->noheaders) {
	if(!strncasecmp(req->headers[i][0], "x-ash-", 6)) {
	    free(req->headers[i][0]);
	    free(req->headers[i][1]);
	    free(req->headers[i]);
	    memmove(req->headers + i, req->headers + i + 1, sizeof(*req->headers) * (--req->noheaders - i));
	} else {
	    i++;
	}
    }
}

static struct hthead *parsereq(FILE *in)
{
    struct hthead *req;
    struct charbuf method, url, ver;
    int c;
    
    req = NULL;
    bufinit(method);
    bufinit(url);
    bufinit(ver);
    while(1) {
	c = getc(in);
	if(c == ' ') {
	    break;
	} else if((c == EOF) || (c < 32) || (c >= 128)) {
	    goto fail;
	} else {
	    bufadd(method, c);
	}
    }
    while(1) {
	c = getc(in);
	if(c == ' ') {
	    break;
	} else if((c == EOF) || (c < 32)) {
	    goto fail;
	} else {
	    bufadd(url, c);
	}
    }
    while(1) {
	c = getc(in);
	if(c == 10) {
	    break;
	} else if(c == 13) {
	} else if((c == EOF) || (c < 32) || (c >= 128)) {
	    goto fail;
	} else {
	    bufadd(ver, c);
	}
    }
    bufadd(method, 0);
    bufadd(url, 0);
    bufadd(ver, 0);
    req = mkreq(method.b, url.b, ver.b);
    if(parseheaders(req, in))
	goto fail;
    trimx(req);
    goto out;
    
fail:
    if(req != NULL) {
	freehthead(req);
	req = NULL;
    }
out:
    buffree(method);
    buffree(url);
    buffree(ver);
    return(req);
}

static struct hthead *parseresp(FILE *in)
{
    struct hthead *req;
    int code;
    struct charbuf ver, msg;
    int c;
    
    req = NULL;
    bufinit(ver);
    bufinit(msg);
    code = 0;
    while(1) {
	c = getc(in);
	if(c == ' ') {
	    break;
	} else if((c == EOF) || (c < 32) || (c >= 128)) {
	    goto fail;
	} else {
	    bufadd(ver, c);
	}
    }
    while(1) {
	c = getc(in);
	if(c == ' ') {
	    break;
	} else if((c == EOF) || (c < '0') || (c > '9')) {
	    goto fail;
	} else {
	    code = (code * 10) + (c - '0');
	}
    }
    while(1) {
	c = getc(in);
	if(c == 10) {
	    break;
	} else if(c == 13) {
	} else if((c == EOF) || (c < 32)) {
	    goto fail;
	} else {
	    bufadd(msg, c);
	}
    }
    bufadd(msg, 0);
    bufadd(ver, 0);
    req = mkresp(code, msg.b, ver.b);
    if(parseheaders(req, in))
	goto fail;
    goto out;
    
fail:
    if(req != NULL) {
	freehthead(req);
	req = NULL;
    }
out:
    buffree(msg);
    buffree(ver);
    return(req);
}

static off_t passdata(FILE *in, FILE *out, off_t max)
{
    size_t read;
    off_t total;
    char buf[8192];
    
    total = 0;
    while(!feof(in) && ((max < 0) || (total < max))) {
	read = sizeof(buf);
	if(max >= 0)
	    read = min(max - total, read);
	read = fread(buf, 1, read, in);
	if(ferror(in))
	    return(-1);
	if(fwrite(buf, 1, read, out) != read)
	    return(-1);
	total += read;
    }
    return(total);
}

static int passchunks(FILE *in, FILE *out)
{
    char buf[8192];
    size_t read;
    
    do {
	read = fread(buf, 1, sizeof(buf), in);
	if(ferror(in))
	    return(-1);
	fprintf(out, "%zx\r\n", read);
	if(fwrite(buf, 1, read, out) != read)
	    return(-1);
	fprintf(out, "\r\n");
    } while(read > 0);
    return(0);
}

static int hasheader(struct hthead *head, char *name, char *val)
{
    char *hd;
    
    if((hd = getheader(head, name)) == NULL)
	return(0);
    return(!strcasecmp(hd, val));
}

void serve(FILE *in, struct conn *conn)
{
    int pfds[2];
    FILE *out;
    struct hthead *req, *resp;
    char *hd, *p;
    off_t dlen;
    
    out = NULL;
    req = resp = NULL;
    while(1) {
	if((req = parsereq(in)) == NULL)
	    break;
	replrest(req, req->url);
	if(req->rest[0] == '/')
	    replrest(req, req->rest + 1);
	if((p = strchr(req->rest, '?')) != NULL)
	    *p = 0;
	
	if((conn->initreq != NULL) && conn->initreq(conn, req))
	    break;
	
	if(block(plex, EV_WRITE, 60) <= 0)
	    break;
	if(socketpair(PF_UNIX, SOCK_STREAM, 0, pfds))
	    break;
	if(sendreq(plex, req, pfds[0]))
	    break;
	close(pfds[0]);
	out = mtstdopen(pfds[1], 1, 600, "r+");

	if((hd = getheader(req, "content-length")) != NULL) {
	    dlen = atoo(hd);
	    if(dlen > 0) {
		if(passdata(in, out, dlen) != dlen)
		    break;
	    }
	}
	if(fflush(out))
	    break;
	/* Make sure to send EOF */
	shutdown(pfds[1], SHUT_WR);
	
	if((resp = parseresp(out)) == NULL)
	    break;
	replstr(&resp->ver, req->ver);

	if(!strcmp(req->ver, "HTTP/1.0")) {
	    writeresp(in, resp);
	    fprintf(in, "\r\n");
	    if((hd = getheader(resp, "content-length")) != NULL) {
		dlen = passdata(out, in, -1);
		if(dlen != atoo(hd))
		    break;
		if(!hasheader(req, "connection", "keep-alive"))
		    break;
	    } else {
		passdata(out, in, -1);
		break;
	    }
	    if(hasheader(req, "connection", "close") || hasheader(resp, "connection", "close"))
		break;
	} else if(!strcmp(req->ver, "HTTP/1.1")) {
	    if((hd = getheader(resp, "content-length")) != NULL) {
		writeresp(in, resp);
		fprintf(in, "\r\n");
		dlen = passdata(out, in, -1);
		if(dlen != atoo(hd))
		    break;
	    } else if(!getheader(resp, "transfer-encoding")) {
		headappheader(resp, "Transfer-Encoding", "chunked");
		writeresp(in, resp);
		fprintf(in, "\r\n");
		if(passchunks(out, in))
		    break;
	    } else {
		writeresp(in, resp);
		fprintf(in, "\r\n");
		passdata(out, in, -1);
		break;
	    }
	    if(hasheader(req, "connection", "close") || hasheader(resp, "connection", "close"))
		break;
	} else {
	    break;
	}

	fclose(out);
	out = NULL;
	freehthead(req);
	freehthead(resp);
	req = resp = NULL;
    }
    
    if(out != NULL)
	fclose(out);
    if(req != NULL)
	freehthead(req);
    if(resp != NULL)
	freehthead(resp);
    fclose(in);
}

static void plexwatch(struct muth *muth, va_list args)
{
    vavar(int, fd);
    char *buf;
    int ret;
    
    while(1) {
	block(fd, EV_READ, 0);
	buf = smalloc(65536);
	ret = recv(fd, buf, 65536, 0);
	if(ret < 0) {
	    flog(LOG_WARNING, "received error on rootplex read channel: %s", strerror(errno));
	    exit(1);
	} else if(ret == 0) {
	    exit(0);
	}
	/* Maybe I'd like to implement some protocol in this direction
	 * some day... */
	free(buf);
    }
}

static void usage(FILE *out)
{
    fprintf(out, "usage: htparser [-hSf] [-u USER] [-r ROOT] PORTSPEC... -- ROOT [ARGS...]\n");
    fprintf(out, "\twhere PORTSPEC is HANDLER[:PAR[=VAL][(,PAR[=VAL])...]] (try HANDLER:help)\n");
    fprintf(out, "\tavailable handlers are `plain' and `ssl'.\n");
}

static void addport(char *spec)
{
    char *nm, *p, *p2, *n;
    struct charvbuf pars, vals;
    
    bufinit(pars);
    bufinit(vals);
    if((p = strchr(spec, ':')) == NULL) {
	nm = spec;
    } else {
	nm = spec;
	*(p++) = 0;
	do {
	    if((n = strchr(p, ',')) != NULL)
		*(n++) = 0;
	    if((p2 = strchr(p, '=')) != NULL)
		*(p2++) = 0;
	    if(!*p) {
		usage(stderr);
		exit(1);
	    }
	    bufadd(pars, p);
	    if(p2)
		bufadd(vals, p2);
	    else
		bufadd(vals, "");
	} while((p = n) != NULL);
    }
    
    /* XXX: It would be nice to decentralize this, but, meh... */
    if(!strcmp(nm, "plain")) {
	handleplain(pars.d, pars.b, vals.b);
#ifdef HAVE_GNUTLS
    } else if(!strcmp(nm, "ssl")) {
	handlegnussl(pars.d, pars.b, vals.b);
#endif
    } else {
	flog(LOG_ERR, "htparser: unknown port handler `%s'", nm);
	exit(1);
    }
    
    buffree(pars);
    buffree(vals);
}

int main(int argc, char **argv)
{
    int c;
    int i, s1;
    int daemonize, logsys;
    char *root;
    struct passwd *pwent;
    
    daemonize = logsys = 0;
    root = NULL;
    pwent = NULL;
    while((c = getopt(argc, argv, "+hSfu:r:")) >= 0) {
	switch(c) {
	case 'h':
	    usage(stdout);
	    exit(0);
	case 'f':
	    daemonize = 1;
	    break;
	case 'S':
	    logsys = 1;
	    break;
	case 'u':
	    if((pwent = getpwnam(optarg)) == NULL) {
		flog(LOG_ERR, "could not find user %s", optarg);
		exit(1);
	    }
	    break;
	case 'r':
	    root = optarg;
	    break;
	default:
	    usage(stderr);
	    exit(1);
	}
    }
    s1 = 0;
    for(i = optind; i < argc; i++) {
	if(!strcmp(argv[i], "--"))
	    break;
	s1 = 1;
	addport(argv[i]);
    }
    if(!s1 || (i == argc)) {
	usage(stderr);
	exit(1);
    }
    if((plex = stdmkchild(argv + ++i)) < 0) {
	flog(LOG_ERR, "could not spawn root multiplexer: %s", strerror(errno));
	return(1);
    }
    mustart(plexwatch, plex);
    if(logsys)
	opensyslog();
    if(root) {
	if(chroot(root)) {
	    flog(LOG_ERR, "could not chroot to %s: %s", root, strerror(errno));
	    exit(1);
	}
    }
    if(pwent) {
	if(setgid(pwent->pw_gid)) {
	    flog(LOG_ERR, "could not switch group to %i: %s", (int)pwent->pw_gid, strerror(errno));
	    exit(1);
	}
	if(setuid(pwent->pw_uid)) {
	    flog(LOG_ERR, "could not switch user to %i: %s", (int)pwent->pw_uid, strerror(errno));
	    exit(1);
	}
    }
    if(daemonize) {
	daemon(0, 0);
    }
    ioloop();
    return(0);
}
Commit	Line	Data
	1	/*
	2	ashd - A Sane HTTP Daemon
	3	Copyright (C) 2008 Fredrik Tolf <fredrik@dolda2000.com>
	4
	5	This program is free software: you can redistribute it and/or modify
	6	it under the terms of the GNU General Public License as published by
	7	the Free Software Foundation, either version 3 of the License, or
	8	(at your option) any later version.
	9
	10	This program is distributed in the hope that it will be useful,
	11	but WITHOUT ANY WARRANTY; without even the implied warranty of
	12	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	13	GNU General Public License for more details.
	14
	15	You should have received a copy of the GNU General Public License
	16	along with this program. If not, see <http://www.gnu.org/licenses/>.
	17	*/
	18
	19	#include <stdlib.h>
	20	#include <unistd.h>
	21	#include <stdio.h>
	22	#include <string.h>
	23	#include <sys/socket.h>
	24	#include <pwd.h>
	25	#include <errno.h>
	26
	27	#ifdef HAVE_CONFIG_H
	28	#include <config.h>
	29	#endif
	30	#include <utils.h>
	31	#include <mt.h>
	32	#include <mtio.h>
	33	#include <log.h>
	34	#include <req.h>
	35	#include <proc.h>
	36
	37	#include "htparser.h"
	38
	39	static int plex;
	40
	41	static void trimx(struct hthead *req)
	42	{
	43	int i;
	44
	45	i = 0;
	46	while(i < req->noheaders) {
	47	if(!strncasecmp(req->headers[i][0], "x-ash-", 6)) {
	48	free(req->headers[i][0]);
	49	free(req->headers[i][1]);
	50	free(req->headers[i]);
	51	memmove(req->headers + i, req->headers + i + 1, sizeof(req->headers) (--req->noheaders - i));
	52	} else {
	53	i++;
	54	}
	55	}
	56	}
	57
	58	static struct hthead parsereq(FILE in)
	59	{
	60	struct hthead *req;
	61	struct charbuf method, url, ver;
	62	int c;
	63
	64	req = NULL;
	65	bufinit(method);
	66	bufinit(url);
	67	bufinit(ver);
	68	while(1) {
	69	c = getc(in);
	70	if(c == ' ') {
	71	break;
	72	} else if((c == EOF) \|\| (c < 32) \|\| (c >= 128)) {
	73	goto fail;
	74	} else {
	75	bufadd(method, c);
	76	}
	77	}
	78	while(1) {
	79	c = getc(in);
	80	if(c == ' ') {
	81	break;
	82	} else if((c == EOF) \|\| (c < 32)) {
	83	goto fail;
	84	} else {
	85	bufadd(url, c);
	86	}
	87	}
	88	while(1) {
	89	c = getc(in);
	90	if(c == 10) {
	91	break;
	92	} else if(c == 13) {
	93	} else if((c == EOF) \|\| (c < 32) \|\| (c >= 128)) {
	94	goto fail;
	95	} else {
	96	bufadd(ver, c);
	97	}
	98	}
	99	bufadd(method, 0);
	100	bufadd(url, 0);
	101	bufadd(ver, 0);
	102	req = mkreq(method.b, url.b, ver.b);
	103	if(parseheaders(req, in))
	104	goto fail;
	105	trimx(req);
	106	goto out;
	107
	108	fail:
	109	if(req != NULL) {
	110	freehthead(req);
	111	req = NULL;
	112	}
	113	out:
	114	buffree(method);
	115	buffree(url);
	116	buffree(ver);
	117	return(req);
	118	}
	119
	120	static struct hthead parseresp(FILE in)
	121	{
	122	struct hthead *req;
	123	int code;
	124	struct charbuf ver, msg;
	125	int c;
	126
	127	req = NULL;
	128	bufinit(ver);
	129	bufinit(msg);
	130	code = 0;
	131	while(1) {
	132	c = getc(in);
	133	if(c == ' ') {
	134	break;
	135	} else if((c == EOF) \|\| (c < 32) \|\| (c >= 128)) {
	136	goto fail;
	137	} else {
	138	bufadd(ver, c);
	139	}
	140	}
	141	while(1) {
	142	c = getc(in);
	143	if(c == ' ') {
	144	break;
	145	} else if((c == EOF) \|\| (c < '0') \|\| (c > '9')) {
	146	goto fail;
	147	} else {
	148	code = (code * 10) + (c - '0');
	149	}
	150	}
	151	while(1) {
	152	c = getc(in);
	153	if(c == 10) {
	154	break;
	155	} else if(c == 13) {
	156	} else if((c == EOF) \|\| (c < 32)) {
	157	goto fail;
	158	} else {
	159	bufadd(msg, c);
	160	}
	161	}
	162	bufadd(msg, 0);
	163	bufadd(ver, 0);
	164	req = mkresp(code, msg.b, ver.b);
	165	if(parseheaders(req, in))
	166	goto fail;
	167	goto out;
	168
	169	fail:
	170	if(req != NULL) {
	171	freehthead(req);
	172	req = NULL;
	173	}
	174	out:
	175	buffree(msg);
	176	buffree(ver);
	177	return(req);
	178	}
	179
	180	static off_t passdata(FILE in, FILE out, off_t max)
	181	{
	182	size_t read;
	183	off_t total;
	184	char buf[8192];
	185
	186	total = 0;
	187	while(!feof(in) && ((max < 0) \|\| (total < max))) {
	188	read = sizeof(buf);
	189	if(max >= 0)
	190	read = min(max - total, read);
	191	read = fread(buf, 1, read, in);
	192	if(ferror(in))
	193	return(-1);
	194	if(fwrite(buf, 1, read, out) != read)
	195	return(-1);
	196	total += read;
	197	}
	198	return(total);
	199	}
	200
	201	static int passchunks(FILE in, FILE out)
	202	{
	203	char buf[8192];
	204	size_t read;
	205
	206	do {
	207	read = fread(buf, 1, sizeof(buf), in);
	208	if(ferror(in))
	209	return(-1);
	210	fprintf(out, "%zx\r\n", read);
	211	if(fwrite(buf, 1, read, out) != read)
	212	return(-1);
	213	fprintf(out, "\r\n");
	214	} while(read > 0);
	215	return(0);
	216	}
	217
	218	static int hasheader(struct hthead head, char name, char *val)
	219	{
	220	char *hd;
	221
	222	if((hd = getheader(head, name)) == NULL)
	223	return(0);
	224	return(!strcasecmp(hd, val));
	225	}
	226
	227	void serve(FILE in, struct conn conn)
	228	{
	229	int pfds[2];
	230	FILE *out;
	231	struct hthead req, resp;
	232	char hd, p;
	233	off_t dlen;
	234
	235	out = NULL;
	236	req = resp = NULL;
	237	while(1) {
	238	if((req = parsereq(in)) == NULL)
	239	break;
	240	replrest(req, req->url);
	241	if(req->rest[0] == '/')
	242	replrest(req, req->rest + 1);
	243	if((p = strchr(req->rest, '?')) != NULL)
	244	*p = 0;
	245
	246	if((conn->initreq != NULL) && conn->initreq(conn, req))
	247	break;
	248
	249	if(block(plex, EV_WRITE, 60) <= 0)
	250	break;
	251	if(socketpair(PF_UNIX, SOCK_STREAM, 0, pfds))
	252	break;
	253	if(sendreq(plex, req, pfds[0]))
	254	break;
	255	close(pfds[0]);
	256	out = mtstdopen(pfds[1], 1, 600, "r+");
	257
	258	if((hd = getheader(req, "content-length")) != NULL) {
	259	dlen = atoo(hd);
	260	if(dlen > 0) {
	261	if(passdata(in, out, dlen) != dlen)
	262	break;
	263	}
	264	}
	265	if(fflush(out))
	266	break;
	267	/* Make sure to send EOF */
	268	shutdown(pfds[1], SHUT_WR);
	269
	270	if((resp = parseresp(out)) == NULL)
	271	break;
	272	replstr(&resp->ver, req->ver);
	273
	274	if(!strcmp(req->ver, "HTTP/1.0")) {
	275	writeresp(in, resp);
	276	fprintf(in, "\r\n");
	277	if((hd = getheader(resp, "content-length")) != NULL) {
	278	dlen = passdata(out, in, -1);
	279	if(dlen != atoo(hd))
	280	break;
	281	if(!hasheader(req, "connection", "keep-alive"))
	282	break;
	283	} else {
	284	passdata(out, in, -1);
	285	break;
	286	}
	287	if(hasheader(req, "connection", "close") \|\| hasheader(resp, "connection", "close"))
	288	break;
	289	} else if(!strcmp(req->ver, "HTTP/1.1")) {
	290	if((hd = getheader(resp, "content-length")) != NULL) {
	291	writeresp(in, resp);
	292	fprintf(in, "\r\n");
	293	dlen = passdata(out, in, -1);
	294	if(dlen != atoo(hd))
	295	break;
	296	} else if(!getheader(resp, "transfer-encoding")) {
	297	headappheader(resp, "Transfer-Encoding", "chunked");
	298	writeresp(in, resp);
	299	fprintf(in, "\r\n");
	300	if(passchunks(out, in))
	301	break;
	302	} else {
	303	writeresp(in, resp);
	304	fprintf(in, "\r\n");
	305	passdata(out, in, -1);
	306	break;
	307	}
	308	if(hasheader(req, "connection", "close") \|\| hasheader(resp, "connection", "close"))
	309	break;
	310	} else {
	311	break;
	312	}
	313
	314	fclose(out);
	315	out = NULL;
	316	freehthead(req);
	317	freehthead(resp);
	318	req = resp = NULL;
	319	}
	320
	321	if(out != NULL)
	322	fclose(out);
	323	if(req != NULL)
	324	freehthead(req);
	325	if(resp != NULL)
	326	freehthead(resp);
	327	fclose(in);
	328	}
	329
	330	static void plexwatch(struct muth *muth, va_list args)
	331	{
	332	vavar(int, fd);
	333	char *buf;
	334	int ret;
	335
	336	while(1) {
	337	block(fd, EV_READ, 0);
	338	buf = smalloc(65536);
	339	ret = recv(fd, buf, 65536, 0);
	340	if(ret < 0) {
	341	flog(LOG_WARNING, "received error on rootplex read channel: %s", strerror(errno));
	342	exit(1);
	343	} else if(ret == 0) {
	344	exit(0);
	345	}
	346	/* Maybe I'd like to implement some protocol in this direction
	347	* some day... */
	348	free(buf);
	349	}
	350	}
	351
	352	static void usage(FILE *out)
	353	{
	354	fprintf(out, "usage: htparser [-hSf] [-u USER] [-r ROOT] PORTSPEC... -- ROOT [ARGS...]\n");
	355	fprintf(out, "\twhere PORTSPEC is HANDLER[:PAR[=VAL][(,PAR[=VAL])...]] (try HANDLER:help)\n");
	356	fprintf(out, "\tavailable handlers are `plain' and `ssl'.\n");
	357	}
	358
	359	static void addport(char *spec)
	360	{
	361	char nm, p, p2, n;
	362	struct charvbuf pars, vals;
	363
	364	bufinit(pars);
	365	bufinit(vals);
	366	if((p = strchr(spec, ':')) == NULL) {
	367	nm = spec;
	368	} else {
	369	nm = spec;
	370	*(p++) = 0;
	371	do {
	372	if((n = strchr(p, ',')) != NULL)
	373	*(n++) = 0;
	374	if((p2 = strchr(p, '=')) != NULL)
	375	*(p2++) = 0;
	376	if(!*p) {
	377	usage(stderr);
	378	exit(1);
	379	}
	380	bufadd(pars, p);
	381	if(p2)
	382	bufadd(vals, p2);
	383	else
	384	bufadd(vals, "");
	385	} while((p = n) != NULL);
	386	}
	387
	388	/* XXX: It would be nice to decentralize this, but, meh... */
	389	if(!strcmp(nm, "plain")) {
	390	handleplain(pars.d, pars.b, vals.b);
	391	#ifdef HAVE_GNUTLS
	392	} else if(!strcmp(nm, "ssl")) {
	393	handlegnussl(pars.d, pars.b, vals.b);
	394	#endif
	395	} else {
	396	flog(LOG_ERR, "htparser: unknown port handler `%s'", nm);
	397	exit(1);
	398	}
	399
	400	buffree(pars);
	401	buffree(vals);
	402	}
	403
	404	int main(int argc, char **argv)
	405	{
	406	int c;
	407	int i, s1;
	408	int daemonize, logsys;
	409	char *root;
	410	struct passwd *pwent;
	411
	412	daemonize = logsys = 0;
	413	root = NULL;
	414	pwent = NULL;
	415	while((c = getopt(argc, argv, "+hSfu:r:")) >= 0) {
	416	switch(c) {
	417	case 'h':
	418	usage(stdout);
	419	exit(0);
	420	case 'f':
	421	daemonize = 1;
	422	break;
	423	case 'S':
	424	logsys = 1;
	425	break;
	426	case 'u':
	427	if((pwent = getpwnam(optarg)) == NULL) {
	428	flog(LOG_ERR, "could not find user %s", optarg);
	429	exit(1);
	430	}
	431	break;
	432	case 'r':
	433	root = optarg;
	434	break;
	435	default:
	436	usage(stderr);
	437	exit(1);
	438	}
	439	}
	440	s1 = 0;
	441	for(i = optind; i < argc; i++) {
	442	if(!strcmp(argv[i], "--"))
	443	break;
	444	s1 = 1;
	445	addport(argv[i]);
	446	}
	447	if(!s1 \|\| (i == argc)) {
	448	usage(stderr);
	449	exit(1);
	450	}
	451	if((plex = stdmkchild(argv + ++i)) < 0) {
	452	flog(LOG_ERR, "could not spawn root multiplexer: %s", strerror(errno));
	453	return(1);
	454	}
	455	mustart(plexwatch, plex);
	456	if(logsys)
	457	opensyslog();
	458	if(root) {
	459	if(chroot(root)) {
	460	flog(LOG_ERR, "could not chroot to %s: %s", root, strerror(errno));
	461	exit(1);
	462	}
	463	}
	464	if(pwent) {
	465	if(setgid(pwent->pw_gid)) {
	466	flog(LOG_ERR, "could not switch group to %i: %s", (int)pwent->pw_gid, strerror(errno));
	467	exit(1);
	468	}
	469	if(setuid(pwent->pw_uid)) {
	470	flog(LOG_ERR, "could not switch user to %i: %s", (int)pwent->pw_uid, strerror(errno));
	471	exit(1);
	472	}
	473	}
	474	if(daemonize) {
	475	daemon(0, 0);
	476	}
	477	ioloop();
	478	return(0);
	479	}