|
|
8335b1 |
diff --git a/modules/mappers/mod_rewrite.c b/modules/mappers/mod_rewrite.c
|
|
|
8335b1 |
index 6061e53..75c2a35 100644
|
|
|
8335b1 |
--- a/modules/mappers/mod_rewrite.c
|
|
|
8335b1 |
+++ b/modules/mappers/mod_rewrite.c
|
|
|
8335b1 |
@@ -4120,6 +4120,7 @@ static int apply_rewrite_rule(rewriterule_entry *p, rewrite_ctx *ctx)
|
|
|
8335b1 |
r->filename));
|
|
|
8335b1 |
|
|
|
8335b1 |
r->filename = apr_pstrcat(r->pool, "proxy:", r->filename, NULL);
|
|
|
8335b1 |
+ apr_table_setn(r->notes, "rewrite-proxy", "1");
|
|
|
8335b1 |
return 1;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy.c b/modules/proxy/mod_proxy.c
|
|
|
8335b1 |
index b9d71fa..7f96aff 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy.c
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy.c
|
|
|
8335b1 |
@@ -1348,7 +1348,6 @@ static void *merge_proxy_dir_config(apr_pool_t *p, void *basev, void *addv)
|
|
|
8335b1 |
return new;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
-
|
|
|
8335b1 |
static const char *
|
|
|
8335b1 |
add_proxy(cmd_parms *cmd, void *dummy, const char *f1, const char *r1, int regex)
|
|
|
8335b1 |
{
|
|
|
8335b1 |
@@ -1423,6 +1422,36 @@ static const char *
|
|
|
8335b1 |
return add_proxy(cmd, dummy, f1, r1, 1);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
+static char *de_socketfy(apr_pool_t *p, char *url)
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ char *ptr;
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * We could be passed a URL during the config stage that contains
|
|
|
8335b1 |
+ * the UDS path... ignore it
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ if (!strncasecmp(url, "unix:", 5) &&
|
|
|
8335b1 |
+ ((ptr = ap_strchr(url, '|')) != NULL)) {
|
|
|
8335b1 |
+ /* move past the 'unix:...|' UDS path info */
|
|
|
8335b1 |
+ char *ret, *c;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ ret = ptr + 1;
|
|
|
8335b1 |
+ /* special case: "unix:....|scheme:" is OK, expand
|
|
|
8335b1 |
+ * to "unix:....|scheme://localhost"
|
|
|
8335b1 |
+ * */
|
|
|
8335b1 |
+ c = ap_strchr(ret, ':');
|
|
|
8335b1 |
+ if (c == NULL) {
|
|
|
8335b1 |
+ return NULL;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ if (c[1] == '\0') {
|
|
|
8335b1 |
+ return apr_pstrcat(p, ret, "//localhost", NULL);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ return ret;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ return url;
|
|
|
8335b1 |
+}
|
|
|
8335b1 |
+
|
|
|
8335b1 |
static const char *
|
|
|
8335b1 |
add_pass(cmd_parms *cmd, void *dummy, const char *arg, int is_regex)
|
|
|
8335b1 |
{
|
|
|
8335b1 |
@@ -1514,7 +1543,7 @@ static const char *
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
new->fake = apr_pstrdup(cmd->pool, f);
|
|
|
8335b1 |
- new->real = apr_pstrdup(cmd->pool, r);
|
|
|
8335b1 |
+ new->real = apr_pstrdup(cmd->pool, de_socketfy(cmd->pool, r));
|
|
|
8335b1 |
new->flags = flags;
|
|
|
8335b1 |
if (use_regex) {
|
|
|
8335b1 |
new->regex = ap_pregcomp(cmd->pool, f, AP_REG_EXTENDED);
|
|
|
8335b1 |
@@ -1550,26 +1579,41 @@ static const char *
|
|
|
8335b1 |
new->balancer = balancer;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
- proxy_worker *worker = ap_proxy_get_worker(cmd->temp_pool, NULL, conf, r);
|
|
|
8335b1 |
+ proxy_worker *worker = ap_proxy_get_worker(cmd->temp_pool, NULL, conf, new->real);
|
|
|
8335b1 |
int reuse = 0;
|
|
|
8335b1 |
if (!worker) {
|
|
|
8335b1 |
- const char *err = ap_proxy_define_worker(cmd->pool, &worker, NULL, conf, r, 0);
|
|
|
8335b1 |
+ const char *err;
|
|
|
8335b1 |
+ if (use_regex) {
|
|
|
8335b1 |
+ err = ap_proxy_define_match_worker(cmd->pool, &worker, NULL,
|
|
|
8335b1 |
+ conf, r, 0);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ err = ap_proxy_define_worker(cmd->pool, &worker, NULL,
|
|
|
8335b1 |
+ conf, r, 0);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
if (err)
|
|
|
8335b1 |
return apr_pstrcat(cmd->temp_pool, "ProxyPass ", err, NULL);
|
|
|
8335b1 |
|
|
|
8335b1 |
PROXY_COPY_CONF_PARAMS(worker, conf);
|
|
|
8335b1 |
- } else {
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else if ((use_regex != 0) ^ (worker->s->is_name_matchable)) {
|
|
|
8335b1 |
+ return apr_pstrcat(cmd->temp_pool, "ProxyPass/<Proxy> and "
|
|
|
8335b1 |
+ "ProxyPassMatch/<ProxyMatch> can't be used "
|
|
|
8335b1 |
+ "altogether with the same worker name ",
|
|
|
8335b1 |
+ "(", worker->s->name, ")", NULL);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
reuse = 1;
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_INFO, 0, cmd->server, APLOGNO(01145)
|
|
|
8335b1 |
"Sharing worker '%s' instead of creating new worker '%s'",
|
|
|
8335b1 |
- worker->s->name, new->real);
|
|
|
8335b1 |
+ ap_proxy_worker_name(cmd->pool, worker), new->real);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
for (i = 0; i < arr->nelts; i++) {
|
|
|
8335b1 |
if (reuse) {
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_WARNING, 0, cmd->server, APLOGNO(01146)
|
|
|
8335b1 |
"Ignoring parameter '%s=%s' for worker '%s' because of worker sharing",
|
|
|
8335b1 |
- elts[i].key, elts[i].val, worker->s->name);
|
|
|
8335b1 |
+ elts[i].key, elts[i].val, ap_proxy_worker_name(cmd->pool, worker));
|
|
|
8335b1 |
} else {
|
|
|
8335b1 |
const char *err = set_worker_param(cmd->pool, worker, elts[i].key,
|
|
|
8335b1 |
elts[i].val);
|
|
|
8335b1 |
@@ -2026,7 +2070,7 @@ static const char *add_member(cmd_parms *cmd, void *dummy, const char *arg)
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
/* Try to find existing worker */
|
|
|
8335b1 |
- worker = ap_proxy_get_worker(cmd->temp_pool, balancer, conf, name);
|
|
|
8335b1 |
+ worker = ap_proxy_get_worker(cmd->temp_pool, balancer, conf, de_socketfy(cmd->temp_pool, name));
|
|
|
8335b1 |
if (!worker) {
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, cmd->server, APLOGNO(01147)
|
|
|
8335b1 |
"Defining worker '%s' for balancer '%s'",
|
|
|
8335b1 |
@@ -2035,13 +2079,13 @@ static const char *add_member(cmd_parms *cmd, void *dummy, const char *arg)
|
|
|
8335b1 |
return apr_pstrcat(cmd->temp_pool, "BalancerMember ", err, NULL);
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, cmd->server, APLOGNO(01148)
|
|
|
8335b1 |
"Defined worker '%s' for balancer '%s'",
|
|
|
8335b1 |
- worker->s->name, balancer->s->name);
|
|
|
8335b1 |
+ ap_proxy_worker_name(cmd->pool, worker), balancer->s->name);
|
|
|
8335b1 |
PROXY_COPY_CONF_PARAMS(worker, conf);
|
|
|
8335b1 |
} else {
|
|
|
8335b1 |
reuse = 1;
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_INFO, 0, cmd->server, APLOGNO(01149)
|
|
|
8335b1 |
"Sharing worker '%s' instead of creating new worker '%s'",
|
|
|
8335b1 |
- worker->s->name, name);
|
|
|
8335b1 |
+ ap_proxy_worker_name(cmd->pool, worker), name);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
arr = apr_table_elts(params);
|
|
|
8335b1 |
@@ -2050,7 +2094,7 @@ static const char *add_member(cmd_parms *cmd, void *dummy, const char *arg)
|
|
|
8335b1 |
if (reuse) {
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_WARNING, 0, cmd->server, APLOGNO(01150)
|
|
|
8335b1 |
"Ignoring parameter '%s=%s' for worker '%s' because of worker sharing",
|
|
|
8335b1 |
- elts[i].key, elts[i].val, worker->s->name);
|
|
|
8335b1 |
+ elts[i].key, elts[i].val, ap_proxy_worker_name(cmd->pool, worker));
|
|
|
8335b1 |
} else {
|
|
|
8335b1 |
err = set_worker_param(cmd->pool, worker, elts[i].key,
|
|
|
8335b1 |
elts[i].val);
|
|
|
8335b1 |
@@ -2112,7 +2156,7 @@ static const char *
|
|
|
8335b1 |
}
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
- worker = ap_proxy_get_worker(cmd->temp_pool, NULL, conf, name);
|
|
|
8335b1 |
+ worker = ap_proxy_get_worker(cmd->temp_pool, NULL, conf, de_socketfy(cmd->temp_pool, name));
|
|
|
8335b1 |
if (!worker) {
|
|
|
8335b1 |
if (in_proxy_section) {
|
|
|
8335b1 |
err = ap_proxy_define_worker(cmd->pool, &worker, NULL,
|
|
|
8335b1 |
@@ -2170,6 +2214,7 @@ static const char *proxysection(cmd_parms *cmd, void *mconfig, const char *arg)
|
|
|
8335b1 |
char *word, *val;
|
|
|
8335b1 |
proxy_balancer *balancer = NULL;
|
|
|
8335b1 |
proxy_worker *worker = NULL;
|
|
|
8335b1 |
+ int use_regex = 0;
|
|
|
8335b1 |
|
|
|
8335b1 |
const char *err = ap_check_cmd_context(cmd, NOT_IN_DIR_LOC_FILE);
|
|
|
8335b1 |
proxy_server_conf *sconf =
|
|
|
8335b1 |
@@ -2219,6 +2264,7 @@ static const char *proxysection(cmd_parms *cmd, void *mconfig, const char *arg)
|
|
|
8335b1 |
if (!r) {
|
|
|
8335b1 |
return "Regex could not be compiled";
|
|
|
8335b1 |
}
|
|
|
8335b1 |
+ use_regex = 1;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
/* initialize our config and fetch it */
|
|
|
8335b1 |
@@ -2258,14 +2304,26 @@ static const char *proxysection(cmd_parms *cmd, void *mconfig, const char *arg)
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
worker = ap_proxy_get_worker(cmd->temp_pool, NULL, sconf,
|
|
|
8335b1 |
- conf->p);
|
|
|
8335b1 |
+ de_socketfy(cmd->temp_pool, (char*)conf->p));
|
|
|
8335b1 |
if (!worker) {
|
|
|
8335b1 |
- err = ap_proxy_define_worker(cmd->pool, &worker, NULL,
|
|
|
8335b1 |
- sconf, conf->p, 0);
|
|
|
8335b1 |
+ if (use_regex) {
|
|
|
8335b1 |
+ err = ap_proxy_define_match_worker(cmd->pool, &worker, NULL,
|
|
|
8335b1 |
+ sconf, conf->p, 0);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ err = ap_proxy_define_worker(cmd->pool, &worker, NULL,
|
|
|
8335b1 |
+ sconf, conf->p, 0);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
if (err)
|
|
|
8335b1 |
return apr_pstrcat(cmd->temp_pool, thiscmd->name,
|
|
|
8335b1 |
" ", err, NULL);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
+ else if ((use_regex != 0) ^ (worker->s->is_name_matchable)) {
|
|
|
8335b1 |
+ return apr_pstrcat(cmd->temp_pool, "ProxyPass/<Proxy> and "
|
|
|
8335b1 |
+ "ProxyPassMatch/<ProxyMatch> can't be used "
|
|
|
8335b1 |
+ "altogether with the same worker name ",
|
|
|
8335b1 |
+ "(", worker->s->name, ")", NULL);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
}
|
|
|
8335b1 |
if (worker == NULL && balancer == NULL) {
|
|
|
8335b1 |
return apr_pstrcat(cmd->pool, thiscmd->name,
|
|
|
8335b1 |
@@ -2570,6 +2628,8 @@ static void child_init(apr_pool_t *p, server_rec *s)
|
|
|
8335b1 |
ap_proxy_hashfunc(conf->forward->s->name, PROXY_HASHFUNC_FNV);
|
|
|
8335b1 |
/* Do not disable worker in case of errors */
|
|
|
8335b1 |
conf->forward->s->status |= PROXY_WORKER_IGNORE_ERRORS;
|
|
|
8335b1 |
+ /* Mark as the "generic" worker */
|
|
|
8335b1 |
+ conf->forward->s->status |= PROXY_WORKER_GENERIC;
|
|
|
8335b1 |
ap_proxy_initialize_worker(conf->forward, s, conf->pool);
|
|
|
8335b1 |
/* Disable address cache for generic forward worker */
|
|
|
8335b1 |
conf->forward->s->is_address_reusable = 0;
|
|
|
8335b1 |
@@ -2585,6 +2645,8 @@ static void child_init(apr_pool_t *p, server_rec *s)
|
|
|
8335b1 |
ap_proxy_hashfunc(reverse->s->name, PROXY_HASHFUNC_FNV);
|
|
|
8335b1 |
/* Do not disable worker in case of errors */
|
|
|
8335b1 |
reverse->s->status |= PROXY_WORKER_IGNORE_ERRORS;
|
|
|
8335b1 |
+ /* Mark as the "generic" worker */
|
|
|
8335b1 |
+ reverse->s->status |= PROXY_WORKER_GENERIC;
|
|
|
8335b1 |
conf->reverse = reverse;
|
|
|
8335b1 |
ap_proxy_initialize_worker(conf->reverse, s, conf->pool);
|
|
|
8335b1 |
/* Disable address cache for generic reverse worker */
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy.h b/modules/proxy/mod_proxy.h
|
|
|
8335b1 |
index 81fd14c..4fb21c7 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy.h
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy.h
|
|
|
8335b1 |
@@ -249,6 +249,7 @@ typedef struct {
|
|
|
8335b1 |
unsigned int need_flush:1; /* Flag to decide whether we need to flush the
|
|
|
8335b1 |
* filter chain or not */
|
|
|
8335b1 |
unsigned int inreslist:1; /* connection in apr_reslist? */
|
|
|
8335b1 |
+ const char *uds_path; /* Unix domain socket path */
|
|
|
8335b1 |
} proxy_conn_rec;
|
|
|
8335b1 |
|
|
|
8335b1 |
typedef struct {
|
|
|
8335b1 |
@@ -269,6 +270,7 @@ struct proxy_conn_pool {
|
|
|
8335b1 |
#define PROXY_WORKER_INITIALIZED 0x0001
|
|
|
8335b1 |
#define PROXY_WORKER_IGNORE_ERRORS 0x0002
|
|
|
8335b1 |
#define PROXY_WORKER_DRAIN 0x0004
|
|
|
8335b1 |
+#define PROXY_WORKER_GENERIC 0x0008
|
|
|
8335b1 |
#define PROXY_WORKER_IN_SHUTDOWN 0x0010
|
|
|
8335b1 |
#define PROXY_WORKER_DISABLED 0x0020
|
|
|
8335b1 |
#define PROXY_WORKER_STOPPED 0x0040
|
|
|
8335b1 |
@@ -280,6 +282,7 @@ struct proxy_conn_pool {
|
|
|
8335b1 |
#define PROXY_WORKER_INITIALIZED_FLAG 'O'
|
|
|
8335b1 |
#define PROXY_WORKER_IGNORE_ERRORS_FLAG 'I'
|
|
|
8335b1 |
#define PROXY_WORKER_DRAIN_FLAG 'N'
|
|
|
8335b1 |
+#define PROXY_WORKER_GENERIC_FLAG 'G'
|
|
|
8335b1 |
#define PROXY_WORKER_IN_SHUTDOWN_FLAG 'U'
|
|
|
8335b1 |
#define PROXY_WORKER_DISABLED_FLAG 'D'
|
|
|
8335b1 |
#define PROXY_WORKER_STOPPED_FLAG 'S'
|
|
|
8335b1 |
@@ -300,6 +303,8 @@ PROXY_WORKER_DISABLED | PROXY_WORKER_STOPPED | PROXY_WORKER_IN_ERROR )
|
|
|
8335b1 |
|
|
|
8335b1 |
#define PROXY_WORKER_IS_DRAINING(f) ( (f)->s->status & PROXY_WORKER_DRAIN )
|
|
|
8335b1 |
|
|
|
8335b1 |
+#define PROXY_WORKER_IS_GENERIC(f) ( (f)->s->status & PROXY_WORKER_GENERIC )
|
|
|
8335b1 |
+
|
|
|
8335b1 |
/* default worker retry timeout in seconds */
|
|
|
8335b1 |
#define PROXY_WORKER_DEFAULT_RETRY 60
|
|
|
8335b1 |
|
|
|
8335b1 |
@@ -341,6 +346,7 @@ typedef struct {
|
|
|
8335b1 |
char route[PROXY_WORKER_MAX_ROUTE_SIZE]; /* balancing route */
|
|
|
8335b1 |
char redirect[PROXY_WORKER_MAX_ROUTE_SIZE]; /* temporary balancing redirection route */
|
|
|
8335b1 |
char flusher[PROXY_WORKER_MAX_SCHEME_SIZE]; /* flush provider used by mod_proxy_fdpass */
|
|
|
8335b1 |
+ char uds_path[PROXY_WORKER_MAX_NAME_SIZE]; /* path to worker's unix domain socket if applicable */
|
|
|
8335b1 |
int lbset; /* load balancer cluster set */
|
|
|
8335b1 |
int retries; /* number of retries on this worker */
|
|
|
8335b1 |
int lbstatus; /* Current lbstatus */
|
|
|
8335b1 |
@@ -387,6 +393,7 @@ typedef struct {
|
|
|
8335b1 |
unsigned int keepalive_set:1;
|
|
|
8335b1 |
unsigned int disablereuse_set:1;
|
|
|
8335b1 |
unsigned int was_malloced:1;
|
|
|
8335b1 |
+ unsigned int is_name_matchable:1;
|
|
|
8335b1 |
} proxy_worker_shared;
|
|
|
8335b1 |
|
|
|
8335b1 |
#define ALIGNED_PROXY_WORKER_SHARED_SIZE (APR_ALIGN_DEFAULT(sizeof(proxy_worker_shared)))
|
|
|
8335b1 |
@@ -586,6 +593,16 @@ typedef __declspec(dllimport) const char *
|
|
|
8335b1 |
|
|
|
8335b1 |
/* Connection pool API */
|
|
|
8335b1 |
/**
|
|
|
8335b1 |
+ * Return the user-land, UDS aware worker name
|
|
|
8335b1 |
+ * @param p memory pool used for displaying worker name
|
|
|
8335b1 |
+ * @param worker the worker
|
|
|
8335b1 |
+ * @return name
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+PROXY_DECLARE(char *) ap_proxy_worker_name(apr_pool_t *p,
|
|
|
8335b1 |
+ proxy_worker *worker);
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+/**
|
|
|
8335b1 |
* Get the worker from proxy configuration
|
|
|
8335b1 |
* @param p memory pool used for finding worker
|
|
|
8335b1 |
* @param balancer the balancer that the worker belongs to
|
|
|
8335b1 |
@@ -615,6 +632,24 @@ PROXY_DECLARE(char *) ap_proxy_define_worker(apr_pool_t *p,
|
|
|
8335b1 |
int do_malloc);
|
|
|
8335b1 |
|
|
|
8335b1 |
/**
|
|
|
8335b1 |
+ * Define and Allocate space for the ap_strcmp_match()able worker to proxy
|
|
|
8335b1 |
+ * configuration.
|
|
|
8335b1 |
+ * @param p memory pool to allocate worker from
|
|
|
8335b1 |
+ * @param worker the new worker
|
|
|
8335b1 |
+ * @param balancer the balancer that the worker belongs to
|
|
|
8335b1 |
+ * @param conf current proxy server configuration
|
|
|
8335b1 |
+ * @param url url containing worker name (produces match pattern)
|
|
|
8335b1 |
+ * @param do_malloc true if shared struct should be malloced
|
|
|
8335b1 |
+ * @return error message or NULL if successful (*worker is new worker)
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+PROXY_DECLARE(char *) ap_proxy_define_match_worker(apr_pool_t *p,
|
|
|
8335b1 |
+ proxy_worker **worker,
|
|
|
8335b1 |
+ proxy_balancer *balancer,
|
|
|
8335b1 |
+ proxy_server_conf *conf,
|
|
|
8335b1 |
+ const char *url,
|
|
|
8335b1 |
+ int do_malloc);
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+/**
|
|
|
8335b1 |
* Share a defined proxy worker via shm
|
|
|
8335b1 |
* @param worker worker to be shared
|
|
|
8335b1 |
* @param shm location of shared info
|
|
|
8335b1 |
@@ -983,6 +1018,13 @@ APR_DECLARE_OPTIONAL_FN(int, ap_proxy_clear_connection,
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
int ap_proxy_lb_workers(void);
|
|
|
8335b1 |
|
|
|
8335b1 |
+/**
|
|
|
8335b1 |
+ * Return the port number of a known scheme (eg: http -> 80).
|
|
|
8335b1 |
+ * @param scheme scheme to test
|
|
|
8335b1 |
+ * @return port number or 0 if unknown
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+PROXY_DECLARE(apr_port_t) ap_proxy_port_of_scheme(const char *scheme);
|
|
|
8335b1 |
+
|
|
|
8335b1 |
extern module PROXY_DECLARE_DATA proxy_module;
|
|
|
8335b1 |
|
|
|
8335b1 |
#endif /*MOD_PROXY_H*/
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy_ajp.c b/modules/proxy/mod_proxy_ajp.c
|
|
|
8335b1 |
index 3736156..cf52a7d 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy_ajp.c
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy_ajp.c
|
|
|
8335b1 |
@@ -32,7 +32,7 @@ static int proxy_ajp_canon(request_rec *r, char *url)
|
|
|
8335b1 |
char *host, *path, sport[7];
|
|
|
8335b1 |
char *search = NULL;
|
|
|
8335b1 |
const char *err;
|
|
|
8335b1 |
- apr_port_t port = AJP13_DEF_PORT;
|
|
|
8335b1 |
+ apr_port_t port, def_port;
|
|
|
8335b1 |
|
|
|
8335b1 |
/* ap_port_of_scheme() */
|
|
|
8335b1 |
if (strncasecmp(url, "ajp:", 4) == 0) {
|
|
|
8335b1 |
@@ -48,6 +48,8 @@ static int proxy_ajp_canon(request_rec *r, char *url)
|
|
|
8335b1 |
* do syntactic check.
|
|
|
8335b1 |
* We break the URL into host, port, path, search
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
+ port = def_port = ap_proxy_port_of_scheme("ajp");
|
|
|
8335b1 |
+
|
|
|
8335b1 |
err = ap_proxy_canon_netloc(r->pool, &url, NULL, NULL, &host, &port);
|
|
|
8335b1 |
if (err) {
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(00867) "error parsing URL %s: %s",
|
|
|
8335b1 |
@@ -71,7 +73,10 @@ static int proxy_ajp_canon(request_rec *r, char *url)
|
|
|
8335b1 |
if (path == NULL)
|
|
|
8335b1 |
return HTTP_BAD_REQUEST;
|
|
|
8335b1 |
|
|
|
8335b1 |
- apr_snprintf(sport, sizeof(sport), ":%d", port);
|
|
|
8335b1 |
+ if (port != def_port)
|
|
|
8335b1 |
+ apr_snprintf(sport, sizeof(sport), ":%d", port);
|
|
|
8335b1 |
+ else
|
|
|
8335b1 |
+ sport[0] = '\0';
|
|
|
8335b1 |
|
|
|
8335b1 |
if (ap_strchr_c(host, ':')) {
|
|
|
8335b1 |
/* if literal IPv6 address */
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy_balancer.c b/modules/proxy/mod_proxy_balancer.c
|
|
|
8335b1 |
index 0f45be7..514b8d8 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy_balancer.c
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy_balancer.c
|
|
|
8335b1 |
@@ -118,7 +118,8 @@ static void init_balancer_members(apr_pool_t *p, server_rec *s,
|
|
|
8335b1 |
int worker_is_initialized;
|
|
|
8335b1 |
proxy_worker *worker = *workers;
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, APLOGNO(01158)
|
|
|
8335b1 |
- "Looking at %s -> %s initialized?", balancer->s->name, worker->s->name);
|
|
|
8335b1 |
+ "Looking at %s -> %s initialized?", balancer->s->name,
|
|
|
8335b1 |
+ ap_proxy_worker_name(p, worker));
|
|
|
8335b1 |
worker_is_initialized = PROXY_WORKER_IS_INITIALIZED(worker);
|
|
|
8335b1 |
if (!worker_is_initialized) {
|
|
|
8335b1 |
ap_proxy_initialize_worker(worker, s, p);
|
|
|
8335b1 |
@@ -638,10 +639,11 @@ static int proxy_balancer_post_request(proxy_worker *worker,
|
|
|
8335b1 |
int val = ((int *)balancer->errstatuses->elts)[i];
|
|
|
8335b1 |
if (r->status == val) {
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01174)
|
|
|
8335b1 |
- "%s: Forcing worker (%s) into error state "
|
|
|
8335b1 |
+ "%s: Forcing worker (%s) into error state "
|
|
|
8335b1 |
"due to status code %d matching 'failonstatus' "
|
|
|
8335b1 |
"balancer parameter",
|
|
|
8335b1 |
- balancer->s->name, worker->s->name, val);
|
|
|
8335b1 |
+ balancer->s->name, ap_proxy_worker_name(r->pool, worker),
|
|
|
8335b1 |
+ val);
|
|
|
8335b1 |
worker->s->status |= PROXY_WORKER_IN_ERROR;
|
|
|
8335b1 |
worker->s->error_time = apr_time_now();
|
|
|
8335b1 |
break;
|
|
|
8335b1 |
@@ -654,7 +656,7 @@ static int proxy_balancer_post_request(proxy_worker *worker,
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(02460)
|
|
|
8335b1 |
"%s: Forcing worker (%s) into error state "
|
|
|
8335b1 |
"due to timeout and 'failonstatus' parameter being set",
|
|
|
8335b1 |
- balancer->s->name, worker->s->name);
|
|
|
8335b1 |
+ balancer->s->name, ap_proxy_worker_name(r->pool, worker));
|
|
|
8335b1 |
worker->s->status |= PROXY_WORKER_IN_ERROR;
|
|
|
8335b1 |
worker->s->error_time = apr_time_now();
|
|
|
8335b1 |
|
|
|
8335b1 |
@@ -1282,7 +1284,7 @@ static int balancer_handler(request_rec *r)
|
|
|
8335b1 |
worker = *workers;
|
|
|
8335b1 |
/* Start proxy_worker */
|
|
|
8335b1 |
ap_rputs(" <httpd:worker>\n", r);
|
|
|
8335b1 |
- ap_rvputs(r, " <httpd:name>", worker->s->name,
|
|
|
8335b1 |
+ ap_rvputs(r, " <httpd:name>", ap_proxy_worker_name(r->pool, worker),
|
|
|
8335b1 |
"</httpd:name>\n", NULL);
|
|
|
8335b1 |
ap_rvputs(r, " <httpd:scheme>", worker->s->scheme,
|
|
|
8335b1 |
"</httpd:scheme>\n", NULL);
|
|
|
8335b1 |
@@ -1524,7 +1526,8 @@ static int balancer_handler(request_rec *r)
|
|
|
8335b1 |
ap_escape_uri(r->pool, worker->s->name),
|
|
|
8335b1 |
"&nonce=", balancer->s->nonce,
|
|
|
8335b1 |
"\">", NULL);
|
|
|
8335b1 |
- ap_rvputs(r, worker->s->name, "", NULL);
|
|
|
8335b1 |
+ ap_rvputs(r, (*worker->s->uds_path ? "" : ""), ap_proxy_worker_name(r->pool, worker),
|
|
|
8335b1 |
+ (*worker->s->uds_path ? "" : ""), "", NULL);
|
|
|
8335b1 |
ap_rvputs(r, "", ap_escape_html(r->pool, worker->s->route),
|
|
|
8335b1 |
NULL);
|
|
|
8335b1 |
ap_rvputs(r, "",
|
|
|
8335b1 |
@@ -1549,7 +1552,7 @@ static int balancer_handler(request_rec *r)
|
|
|
8335b1 |
ap_rputs(" \n", r);
|
|
|
8335b1 |
if (wsel && bsel) {
|
|
|
8335b1 |
ap_rputs("Edit worker settings for ", r);
|
|
|
8335b1 |
- ap_rvputs(r, wsel->s->name, "\n", NULL);
|
|
|
8335b1 |
+ ap_rvputs(r, (*wsel->s->uds_path?"":""), ap_proxy_worker_name(r->pool, wsel), (*wsel->s->uds_path?"":""), "\n", NULL);
|
|
|
8335b1 |
ap_rputs("
|
|
|
8335b1 |
ap_rvputs(r, ap_escape_uri(r->pool, action), "\">\n", NULL);
|
|
|
8335b1 |
ap_rputs("\n
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy_fcgi.c b/modules/proxy/mod_proxy_fcgi.c
|
|
|
8335b1 |
index 0f84416..d5ca1fa 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy_fcgi.c
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy_fcgi.c
|
|
|
8335b1 |
@@ -77,7 +77,7 @@ static int proxy_fcgi_canon(request_rec *r, char *url)
|
|
|
8335b1 |
{
|
|
|
8335b1 |
char *host, sport[7];
|
|
|
8335b1 |
const char *err, *path;
|
|
|
8335b1 |
- apr_port_t port = 8000;
|
|
|
8335b1 |
+ apr_port_t port, def_port;
|
|
|
8335b1 |
|
|
|
8335b1 |
if (strncasecmp(url, "fcgi:", 5) == 0) {
|
|
|
8335b1 |
url += 5;
|
|
|
8335b1 |
@@ -86,9 +86,10 @@ static int proxy_fcgi_canon(request_rec *r, char *url)
|
|
|
8335b1 |
return DECLINED;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
+ port = def_port = ap_proxy_port_of_scheme("fcgi");
|
|
|
8335b1 |
+
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r,
|
|
|
8335b1 |
"canonicalising URL %s", url);
|
|
|
8335b1 |
-
|
|
|
8335b1 |
err = ap_proxy_canon_netloc(r->pool, &url, NULL, NULL, &host, &port);
|
|
|
8335b1 |
if (err) {
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01059)
|
|
|
8335b1 |
@@ -96,7 +97,10 @@ static int proxy_fcgi_canon(request_rec *r, char *url)
|
|
|
8335b1 |
return HTTP_BAD_REQUEST;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
- apr_snprintf(sport, sizeof(sport), ":%d", port);
|
|
|
8335b1 |
+ if (port != def_port)
|
|
|
8335b1 |
+ apr_snprintf(sport, sizeof(sport), ":%d", port);
|
|
|
8335b1 |
+ else
|
|
|
8335b1 |
+ sport[0] = '\0';
|
|
|
8335b1 |
|
|
|
8335b1 |
if (ap_strchr_c(host, ':')) {
|
|
|
8335b1 |
/* if literal IPv6 address */
|
|
|
8335b1 |
@@ -930,7 +934,7 @@ static int proxy_fcgi_handler(request_rec *r, proxy_worker *worker,
|
|
|
8335b1 |
int status;
|
|
|
8335b1 |
char server_portstr[32];
|
|
|
8335b1 |
conn_rec *origin = NULL;
|
|
|
8335b1 |
- proxy_conn_rec *backend = NULL;
|
|
|
8335b1 |
+ proxy_conn_rec *backend;
|
|
|
8335b1 |
|
|
|
8335b1 |
proxy_dir_conf *dconf = ap_get_module_config(r->per_dir_config,
|
|
|
8335b1 |
&proxy_module);
|
|
|
8335b1 |
@@ -943,10 +947,7 @@ static int proxy_fcgi_handler(request_rec *r, proxy_worker *worker,
|
|
|
8335b1 |
"url: %s proxyname: %s proxyport: %d",
|
|
|
8335b1 |
url, proxyname, proxyport);
|
|
|
8335b1 |
|
|
|
8335b1 |
- if (strncasecmp(url, "fcgi:", 5) == 0) {
|
|
|
8335b1 |
- url += 5;
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- else {
|
|
|
8335b1 |
+ if (strncasecmp(url, "fcgi:", 5) != 0) {
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(01077) "declining URL %s", url);
|
|
|
8335b1 |
return DECLINED;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
@@ -954,16 +955,14 @@ static int proxy_fcgi_handler(request_rec *r, proxy_worker *worker,
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(01078) "serving URL %s", url);
|
|
|
8335b1 |
|
|
|
8335b1 |
/* Create space for state information */
|
|
|
8335b1 |
- if (! backend) {
|
|
|
8335b1 |
- status = ap_proxy_acquire_connection(FCGI_SCHEME, &backend, worker,
|
|
|
8335b1 |
- r->server);
|
|
|
8335b1 |
- if (status != OK) {
|
|
|
8335b1 |
- if (backend) {
|
|
|
8335b1 |
- backend->close = 1;
|
|
|
8335b1 |
- ap_proxy_release_connection(FCGI_SCHEME, backend, r->server);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- return status;
|
|
|
8335b1 |
+ status = ap_proxy_acquire_connection(FCGI_SCHEME, &backend, worker,
|
|
|
8335b1 |
+ r->server);
|
|
|
8335b1 |
+ if (status != OK) {
|
|
|
8335b1 |
+ if (backend) {
|
|
|
8335b1 |
+ backend->close = 1;
|
|
|
8335b1 |
+ ap_proxy_release_connection(FCGI_SCHEME, backend, r->server);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
+ return status;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
backend->is_ssl = 0;
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy_http.c b/modules/proxy/mod_proxy_http.c
|
|
|
8335b1 |
index 05f33b4..f0bb0ed 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy_http.c
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy_http.c
|
|
|
8335b1 |
@@ -54,7 +54,7 @@ static int proxy_http_canon(request_rec *r, char *url)
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
return DECLINED;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- def_port = apr_uri_port_of_scheme(scheme);
|
|
|
8335b1 |
+ port = def_port = ap_proxy_port_of_scheme(scheme);
|
|
|
8335b1 |
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_TRACE1, 0, r,
|
|
|
8335b1 |
"HTTP: canonicalising URL %s", url);
|
|
|
8335b1 |
@@ -62,7 +62,6 @@ static int proxy_http_canon(request_rec *r, char *url)
|
|
|
8335b1 |
/* do syntatic check.
|
|
|
8335b1 |
* We break the URL into host, port, path, search
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
- port = def_port;
|
|
|
8335b1 |
err = ap_proxy_canon_netloc(r->pool, &url, NULL, NULL, &host, &port);
|
|
|
8335b1 |
if (err) {
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01083)
|
|
|
8335b1 |
diff --git a/modules/proxy/mod_proxy_scgi.c b/modules/proxy/mod_proxy_scgi.c
|
|
|
8335b1 |
index f77a986..6deae78 100644
|
|
|
8335b1 |
--- a/modules/proxy/mod_proxy_scgi.c
|
|
|
8335b1 |
+++ b/modules/proxy/mod_proxy_scgi.c
|
|
|
8335b1 |
@@ -176,13 +176,15 @@ static int scgi_canon(request_rec *r, char *url)
|
|
|
8335b1 |
{
|
|
|
8335b1 |
char *host, sport[sizeof(":65535")];
|
|
|
8335b1 |
const char *err, *path;
|
|
|
8335b1 |
- apr_port_t port = SCGI_DEFAULT_PORT;
|
|
|
8335b1 |
+ apr_port_t port, def_port;
|
|
|
8335b1 |
|
|
|
8335b1 |
if (strncasecmp(url, SCHEME "://", sizeof(SCHEME) + 2)) {
|
|
|
8335b1 |
return DECLINED;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
url += sizeof(SCHEME); /* Keep slashes */
|
|
|
8335b1 |
|
|
|
8335b1 |
+ port = def_port = SCGI_DEFAULT_PORT;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
err = ap_proxy_canon_netloc(r->pool, &url, NULL, NULL, &host, &port);
|
|
|
8335b1 |
if (err) {
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(00857)
|
|
|
8335b1 |
@@ -190,7 +192,12 @@ static int scgi_canon(request_rec *r, char *url)
|
|
|
8335b1 |
return HTTP_BAD_REQUEST;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
- apr_snprintf(sport, sizeof(sport), ":%u", port);
|
|
|
8335b1 |
+ if (port != def_port) {
|
|
|
8335b1 |
+ apr_snprintf(sport, sizeof(sport), ":%u", port);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ sport[0] = '\0';
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
|
|
|
8335b1 |
if (ap_strchr(host, ':')) { /* if literal IPv6 address */
|
|
|
8335b1 |
host = apr_pstrcat(r->pool, "[", host, "]", NULL);
|
|
|
8335b1 |
diff --git a/modules/proxy/proxy_util.c b/modules/proxy/proxy_util.c
|
|
|
8335b1 |
index 8bc9fab..dea2b10 100644
|
|
|
8335b1 |
--- a/modules/proxy/proxy_util.c
|
|
|
8335b1 |
+++ b/modules/proxy/proxy_util.c
|
|
|
8335b1 |
@@ -21,6 +21,7 @@
|
|
|
8335b1 |
#include "apr_version.h"
|
|
|
8335b1 |
#include "apr_hash.h"
|
|
|
8335b1 |
#include "proxy_util.h"
|
|
|
8335b1 |
+#include "ajp.h"
|
|
|
8335b1 |
|
|
|
8335b1 |
#if APR_HAVE_UNISTD_H
|
|
|
8335b1 |
#include <unistd.h> /* for getpid() */
|
|
|
8335b1 |
@@ -31,6 +32,13 @@
|
|
|
8335b1 |
#define apr_socket_create apr_socket_create_ex
|
|
|
8335b1 |
#endif
|
|
|
8335b1 |
|
|
|
8335b1 |
+#if APR_HAVE_SYS_UN_H
|
|
|
8335b1 |
+#include <sys/un.h>
|
|
|
8335b1 |
+#endif
|
|
|
8335b1 |
+#if (APR_MAJOR_VERSION < 2)
|
|
|
8335b1 |
+#include "apr_support.h" /* for apr_wait_for_io_or_timeout() */
|
|
|
8335b1 |
+#endif
|
|
|
8335b1 |
+
|
|
|
8335b1 |
APLOG_USE_MODULE(proxy);
|
|
|
8335b1 |
|
|
|
8335b1 |
/*
|
|
|
8335b1 |
@@ -86,14 +94,20 @@ PROXY_DECLARE(apr_status_t) ap_proxy_strncpy(char *dst, const char *src,
|
|
|
8335b1 |
char *thenil;
|
|
|
8335b1 |
apr_size_t thelen;
|
|
|
8335b1 |
|
|
|
8335b1 |
+ /* special case handling */
|
|
|
8335b1 |
+ if (!dlen) {
|
|
|
8335b1 |
+ /* XXX: APR_ENOSPACE would be better */
|
|
|
8335b1 |
+ return APR_EGENERAL;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ if (!src) {
|
|
|
8335b1 |
+ *dst = '\0';
|
|
|
8335b1 |
+ return APR_SUCCESS;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
thenil = apr_cpystrn(dst, src, dlen);
|
|
|
8335b1 |
thelen = thenil - dst;
|
|
|
8335b1 |
- /* Assume the typical case is smaller copying into bigger
|
|
|
8335b1 |
- so we have a fast return */
|
|
|
8335b1 |
- if ((thelen < dlen-1) || ((strlen(src)) == thelen)) {
|
|
|
8335b1 |
+ if (src[thelen] == '\0') {
|
|
|
8335b1 |
return APR_SUCCESS;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- /* XXX: APR_ENOSPACE would be better */
|
|
|
8335b1 |
return APR_EGENERAL;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
@@ -1218,11 +1232,11 @@ PROXY_DECLARE(apr_status_t) ap_proxy_share_balancer(proxy_balancer *balancer,
|
|
|
8335b1 |
} else {
|
|
|
8335b1 |
action = "re-using";
|
|
|
8335b1 |
}
|
|
|
8335b1 |
+ balancer->s = shm;
|
|
|
8335b1 |
+ balancer->s->index = i;
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, ap_server_conf, APLOGNO(02337)
|
|
|
8335b1 |
"%s shm[%d] (0x%pp) for %s", action, i, (void *)shm,
|
|
|
8335b1 |
balancer->s->name);
|
|
|
8335b1 |
- balancer->s = shm;
|
|
|
8335b1 |
- balancer->s->index = i;
|
|
|
8335b1 |
/* the below should always succeed */
|
|
|
8335b1 |
lbmethod = ap_lookup_provider(PROXY_LBMETHOD, balancer->s->lbpname, "0");
|
|
|
8335b1 |
if (lbmethod) {
|
|
|
8335b1 |
@@ -1356,7 +1370,7 @@ static apr_status_t connection_cleanup(void *theconn)
|
|
|
8335b1 |
ap_log_perror(APLOG_MARK, APLOG_ERR, 0, conn->pool, APLOGNO(00923)
|
|
|
8335b1 |
"Pooled connection 0x%pp for worker %s has been"
|
|
|
8335b1 |
" already returned to the connection pool.", conn,
|
|
|
8335b1 |
- worker->s->name);
|
|
|
8335b1 |
+ ap_proxy_worker_name(conn->pool, worker));
|
|
|
8335b1 |
return APR_SUCCESS;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
@@ -1480,6 +1494,55 @@ static apr_status_t connection_destructor(void *resource, void *params,
|
|
|
8335b1 |
* WORKER related...
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
|
|
|
8335b1 |
+PROXY_DECLARE(char *) ap_proxy_worker_name(apr_pool_t *p,
|
|
|
8335b1 |
+ proxy_worker *worker)
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ if (!(*worker->s->uds_path) || !p) {
|
|
|
8335b1 |
+ /* just in case */
|
|
|
8335b1 |
+ return worker->s->name;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ return apr_pstrcat(p, "unix:", worker->s->uds_path, "|", worker->s->name, NULL);
|
|
|
8335b1 |
+}
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+/*
|
|
|
8335b1 |
+ * Taken from ap_strcmp_match() :
|
|
|
8335b1 |
+ * Match = 0, NoMatch = 1, Abort = -1, Inval = -2
|
|
|
8335b1 |
+ * Based loosely on sections of wildmat.c by Rich Salz
|
|
|
8335b1 |
+ * Hmmm... shouldn't this really go component by component?
|
|
|
8335b1 |
+ *
|
|
|
8335b1 |
+ * Adds handling of the "\<any>" => "<any>" unescaping.
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+static int ap_proxy_strcmp_ematch(const char *str, const char *expected)
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ apr_size_t x, y;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ for (x = 0, y = 0; expected[y]; ++y, ++x) {
|
|
|
8335b1 |
+ if ((!str[x]) && (expected[y] != '$' || !apr_isdigit(expected[y + 1])))
|
|
|
8335b1 |
+ return -1;
|
|
|
8335b1 |
+ if (expected[y] == '$' && apr_isdigit(expected[y + 1])) {
|
|
|
8335b1 |
+ while (expected[y] == '$' && apr_isdigit(expected[y + 1]))
|
|
|
8335b1 |
+ y += 2;
|
|
|
8335b1 |
+ if (!expected[y])
|
|
|
8335b1 |
+ return 0;
|
|
|
8335b1 |
+ while (str[x]) {
|
|
|
8335b1 |
+ int ret;
|
|
|
8335b1 |
+ if ((ret = ap_proxy_strcmp_ematch(&str[x++], &expected[y])) != 1)
|
|
|
8335b1 |
+ return ret;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ return -1;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else if (expected[y] == '\\') {
|
|
|
8335b1 |
+ /* NUL is an invalid char! */
|
|
|
8335b1 |
+ if (!expected[++y])
|
|
|
8335b1 |
+ return -2;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ if (str[x] != expected[y])
|
|
|
8335b1 |
+ return 1;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ /* We got all the way through the worker path without a difference */
|
|
|
8335b1 |
+ return 0;
|
|
|
8335b1 |
+}
|
|
|
8335b1 |
+
|
|
|
8335b1 |
PROXY_DECLARE(proxy_worker *) ap_proxy_get_worker(apr_pool_t *p,
|
|
|
8335b1 |
proxy_balancer *balancer,
|
|
|
8335b1 |
proxy_server_conf *conf,
|
|
|
8335b1 |
@@ -1495,6 +1558,10 @@ PROXY_DECLARE(proxy_worker *) ap_proxy_get_worker(apr_pool_t *p,
|
|
|
8335b1 |
char *url_copy;
|
|
|
8335b1 |
int i;
|
|
|
8335b1 |
|
|
|
8335b1 |
+ if (!url) {
|
|
|
8335b1 |
+ return NULL;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
c = ap_strchr_c(url, ':');
|
|
|
8335b1 |
if (c == NULL || c[1] != '/' || c[2] != '/' || c[3] == '\0') {
|
|
|
8335b1 |
return NULL;
|
|
|
8335b1 |
@@ -1536,11 +1603,15 @@ PROXY_DECLARE(proxy_worker *) ap_proxy_get_worker(apr_pool_t *p,
|
|
|
8335b1 |
if ( ((worker_name_length = strlen(worker->s->name)) <= url_length)
|
|
|
8335b1 |
&& (worker_name_length >= min_match)
|
|
|
8335b1 |
&& (worker_name_length > max_match)
|
|
|
8335b1 |
- && (strncmp(url_copy, worker->s->name, worker_name_length) == 0) ) {
|
|
|
8335b1 |
+ && (worker->s->is_name_matchable
|
|
|
8335b1 |
+ || strncmp(url_copy, worker->s->name,
|
|
|
8335b1 |
+ worker_name_length) == 0)
|
|
|
8335b1 |
+ && (!worker->s->is_name_matchable
|
|
|
8335b1 |
+ || ap_proxy_strcmp_ematch(url_copy,
|
|
|
8335b1 |
+ worker->s->name) == 0) ) {
|
|
|
8335b1 |
max_worker = worker;
|
|
|
8335b1 |
max_match = worker_name_length;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
-
|
|
|
8335b1 |
}
|
|
|
8335b1 |
} else {
|
|
|
8335b1 |
worker = (proxy_worker *)conf->workers->elts;
|
|
|
8335b1 |
@@ -1548,7 +1619,12 @@ PROXY_DECLARE(proxy_worker *) ap_proxy_get_worker(apr_pool_t *p,
|
|
|
8335b1 |
if ( ((worker_name_length = strlen(worker->s->name)) <= url_length)
|
|
|
8335b1 |
&& (worker_name_length >= min_match)
|
|
|
8335b1 |
&& (worker_name_length > max_match)
|
|
|
8335b1 |
- && (strncmp(url_copy, worker->s->name, worker_name_length) == 0) ) {
|
|
|
8335b1 |
+ && (worker->s->is_name_matchable
|
|
|
8335b1 |
+ || strncmp(url_copy, worker->s->name,
|
|
|
8335b1 |
+ worker_name_length) == 0)
|
|
|
8335b1 |
+ && (!worker->s->is_name_matchable
|
|
|
8335b1 |
+ || ap_proxy_strcmp_ematch(url_copy,
|
|
|
8335b1 |
+ worker->s->name) == 0) ) {
|
|
|
8335b1 |
max_worker = worker;
|
|
|
8335b1 |
max_match = worker_name_length;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
@@ -1573,20 +1649,47 @@ PROXY_DECLARE(char *) ap_proxy_define_worker(apr_pool_t *p,
|
|
|
8335b1 |
int do_malloc)
|
|
|
8335b1 |
{
|
|
|
8335b1 |
int rv;
|
|
|
8335b1 |
- apr_uri_t uri;
|
|
|
8335b1 |
+ apr_uri_t uri, urisock;
|
|
|
8335b1 |
proxy_worker_shared *wshared;
|
|
|
8335b1 |
- char *ptr;
|
|
|
8335b1 |
+ char *ptr, *sockpath = NULL;
|
|
|
8335b1 |
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * Look to see if we are using UDS:
|
|
|
8335b1 |
+ * require format: unix:/path/foo/bar.sock|http://ignored/path2/
|
|
|
8335b1 |
+ * This results in talking http to the socket at /path/foo/bar.sock
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ ptr = ap_strchr((char *)url, '|');
|
|
|
8335b1 |
+ if (ptr) {
|
|
|
8335b1 |
+ *ptr = '\0';
|
|
|
8335b1 |
+ rv = apr_uri_parse(p, url, &urisock);
|
|
|
8335b1 |
+ if (rv == APR_SUCCESS && !strcasecmp(urisock.scheme, "unix")) {
|
|
|
8335b1 |
+ sockpath = ap_runtime_dir_relative(p, urisock.path);;
|
|
|
8335b1 |
+ url = ptr+1; /* so we get the scheme for the uds */
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ *ptr = '|';
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
rv = apr_uri_parse(p, url, &uri);
|
|
|
8335b1 |
|
|
|
8335b1 |
if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
- return "Unable to parse URL";
|
|
|
8335b1 |
+ return apr_pstrcat(p, "Unable to parse URL: ", url, NULL);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- if (!uri.hostname || !uri.scheme) {
|
|
|
8335b1 |
- return "URL must be absolute!";
|
|
|
8335b1 |
+ if (!uri.scheme) {
|
|
|
8335b1 |
+ return apr_pstrcat(p, "URL must be absolute!: ", url, NULL);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ /* allow for unix:/path|http: */
|
|
|
8335b1 |
+ if (!uri.hostname) {
|
|
|
8335b1 |
+ if (sockpath) {
|
|
|
8335b1 |
+ uri.hostname = "localhost";
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ return apr_pstrcat(p, "URL must be absolute!: ", url, NULL);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ ap_str_tolower(uri.hostname);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
-
|
|
|
8335b1 |
- ap_str_tolower(uri.hostname);
|
|
|
8335b1 |
ap_str_tolower(uri.scheme);
|
|
|
8335b1 |
/*
|
|
|
8335b1 |
* Workers can be associated w/ balancers or on their
|
|
|
8335b1 |
@@ -1642,6 +1745,16 @@ PROXY_DECLARE(char *) ap_proxy_define_worker(apr_pool_t *p,
|
|
|
8335b1 |
wshared->hash.def = ap_proxy_hashfunc(wshared->name, PROXY_HASHFUNC_DEFAULT);
|
|
|
8335b1 |
wshared->hash.fnv = ap_proxy_hashfunc(wshared->name, PROXY_HASHFUNC_FNV);
|
|
|
8335b1 |
wshared->was_malloced = (do_malloc != 0);
|
|
|
8335b1 |
+ wshared->is_name_matchable = 0;
|
|
|
8335b1 |
+ if (sockpath) {
|
|
|
8335b1 |
+ if (PROXY_STRNCPY(wshared->uds_path, sockpath) != APR_SUCCESS) {
|
|
|
8335b1 |
+ return apr_psprintf(p, "worker uds path (%s) too long", sockpath);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ *wshared->uds_path = '\0';
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
|
|
|
8335b1 |
(*worker)->hash = wshared->hash;
|
|
|
8335b1 |
(*worker)->context = NULL;
|
|
|
8335b1 |
@@ -1652,6 +1765,24 @@ PROXY_DECLARE(char *) ap_proxy_define_worker(apr_pool_t *p,
|
|
|
8335b1 |
return NULL;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
+PROXY_DECLARE(char *) ap_proxy_define_match_worker(apr_pool_t *p,
|
|
|
8335b1 |
+ proxy_worker **worker,
|
|
|
8335b1 |
+ proxy_balancer *balancer,
|
|
|
8335b1 |
+ proxy_server_conf *conf,
|
|
|
8335b1 |
+ const char *url,
|
|
|
8335b1 |
+ int do_malloc)
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ char *err;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ err = ap_proxy_define_worker(p, worker, balancer, conf, url, do_malloc);
|
|
|
8335b1 |
+ if (err) {
|
|
|
8335b1 |
+ return err;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ (*worker)->s->is_name_matchable = 1;
|
|
|
8335b1 |
+ return NULL;
|
|
|
8335b1 |
+}
|
|
|
8335b1 |
+
|
|
|
8335b1 |
/*
|
|
|
8335b1 |
* Create an already defined worker and free up memory
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
@@ -1670,12 +1801,18 @@ PROXY_DECLARE(apr_status_t) ap_proxy_share_worker(proxy_worker *worker, proxy_wo
|
|
|
8335b1 |
} else {
|
|
|
8335b1 |
action = "re-using";
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, ap_server_conf, APLOGNO(02338)
|
|
|
8335b1 |
- "%s shm[%d] (0x%pp) for worker: %s", action, i, (void *)shm,
|
|
|
8335b1 |
- worker->s->name);
|
|
|
8335b1 |
-
|
|
|
8335b1 |
worker->s = shm;
|
|
|
8335b1 |
worker->s->index = i;
|
|
|
8335b1 |
+ {
|
|
|
8335b1 |
+ apr_pool_t *pool;
|
|
|
8335b1 |
+ apr_pool_create(&pool, ap_server_conf->process->pool);
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, ap_server_conf, APLOGNO(02338)
|
|
|
8335b1 |
+ "%s shm[%d] (0x%pp) for worker: %s", action, i, (void *)shm,
|
|
|
8335b1 |
+ ap_proxy_worker_name(pool, worker));
|
|
|
8335b1 |
+ if (pool) {
|
|
|
8335b1 |
+ apr_pool_destroy(pool);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
return APR_SUCCESS;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
@@ -1687,11 +1824,13 @@ PROXY_DECLARE(apr_status_t) ap_proxy_initialize_worker(proxy_worker *worker, ser
|
|
|
8335b1 |
if (worker->s->status & PROXY_WORKER_INITIALIZED) {
|
|
|
8335b1 |
/* The worker is already initialized */
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, APLOGNO(00924)
|
|
|
8335b1 |
- "worker %s shared already initialized", worker->s->name);
|
|
|
8335b1 |
+ "worker %s shared already initialized",
|
|
|
8335b1 |
+ ap_proxy_worker_name(p, worker));
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, APLOGNO(00925)
|
|
|
8335b1 |
- "initializing worker %s shared", worker->s->name);
|
|
|
8335b1 |
+ "initializing worker %s shared",
|
|
|
8335b1 |
+ ap_proxy_worker_name(p, worker));
|
|
|
8335b1 |
/* Set default parameters */
|
|
|
8335b1 |
if (!worker->s->retry_set) {
|
|
|
8335b1 |
worker->s->retry = apr_time_from_sec(PROXY_WORKER_DEFAULT_RETRY);
|
|
|
8335b1 |
@@ -1727,11 +1866,13 @@ PROXY_DECLARE(apr_status_t) ap_proxy_initialize_worker(proxy_worker *worker, ser
|
|
|
8335b1 |
/* What if local is init'ed and shm isn't?? Even possible? */
|
|
|
8335b1 |
if (worker->local_status & PROXY_WORKER_INITIALIZED) {
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, APLOGNO(00926)
|
|
|
8335b1 |
- "worker %s local already initialized", worker->s->name);
|
|
|
8335b1 |
+ "worker %s local already initialized",
|
|
|
8335b1 |
+ ap_proxy_worker_name(p, worker));
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, APLOGNO(00927)
|
|
|
8335b1 |
- "initializing worker %s local", worker->s->name);
|
|
|
8335b1 |
+ "initializing worker %s local",
|
|
|
8335b1 |
+ ap_proxy_worker_name(p, worker));
|
|
|
8335b1 |
apr_global_mutex_lock(proxy_mutex);
|
|
|
8335b1 |
/* Now init local worker data */
|
|
|
8335b1 |
if (worker->tmutex == NULL) {
|
|
|
8335b1 |
@@ -1853,6 +1994,8 @@ PROXY_DECLARE(int) ap_proxy_pre_request(proxy_worker **worker,
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else if (r->proxyreq == PROXYREQ_REVERSE) {
|
|
|
8335b1 |
if (conf->reverse) {
|
|
|
8335b1 |
+ char *ptr;
|
|
|
8335b1 |
+ char *ptr2;
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r,
|
|
|
8335b1 |
"*: found reverse proxy worker for %s", *url);
|
|
|
8335b1 |
*balancer = NULL;
|
|
|
8335b1 |
@@ -1864,6 +2007,36 @@ PROXY_DECLARE(int) ap_proxy_pre_request(proxy_worker **worker,
|
|
|
8335b1 |
* regarding the Connection header in the request.
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
apr_table_setn(r->subprocess_env, "proxy-nokeepalive", "1");
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * In the case of the generic reverse proxy, we need to see if we
|
|
|
8335b1 |
+ * were passed a UDS url (eg: from mod_proxy) and adjust uds_path
|
|
|
8335b1 |
+ * as required.
|
|
|
8335b1 |
+ *
|
|
|
8335b1 |
+ * NOTE: Here we use a quick note lookup, but we could also
|
|
|
8335b1 |
+ * check to see if r->filename starts with 'proxy:'
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ if (apr_table_get(r->notes, "rewrite-proxy") &&
|
|
|
8335b1 |
+ (ptr2 = ap_strcasestr(r->filename, "unix:")) &&
|
|
|
8335b1 |
+ (ptr = ap_strchr(ptr2, '|'))) {
|
|
|
8335b1 |
+ apr_uri_t urisock;
|
|
|
8335b1 |
+ apr_status_t rv;
|
|
|
8335b1 |
+ *ptr = '\0';
|
|
|
8335b1 |
+ rv = apr_uri_parse(r->pool, ptr2, &urisock);
|
|
|
8335b1 |
+ if (rv == APR_SUCCESS) {
|
|
|
8335b1 |
+ char *rurl = ptr+1;
|
|
|
8335b1 |
+ char *sockpath = ap_runtime_dir_relative(r->pool, urisock.path);
|
|
|
8335b1 |
+ apr_table_setn(r->notes, "uds_path", sockpath);
|
|
|
8335b1 |
+ *url = apr_pstrdup(r->pool, rurl); /* so we get the scheme for the uds */
|
|
|
8335b1 |
+ /* r->filename starts w/ "proxy:", so add after that */
|
|
|
8335b1 |
+ memmove(r->filename+6, rurl, strlen(rurl)+1);
|
|
|
8335b1 |
+ ap_log_rerror(APLOG_MARK, APLOG_TRACE2, 0, r,
|
|
|
8335b1 |
+ "*: rewrite of url due to UDS(%s): %s (%s)",
|
|
|
8335b1 |
+ sockpath, *url, r->filename);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ *ptr = '|';
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
}
|
|
|
8335b1 |
}
|
|
|
8335b1 |
}
|
|
|
8335b1 |
@@ -2053,6 +2226,7 @@ ap_proxy_determine_connection(apr_pool_t *p, request_rec *r,
|
|
|
8335b1 |
int server_port;
|
|
|
8335b1 |
apr_status_t err = APR_SUCCESS;
|
|
|
8335b1 |
apr_status_t uerr = APR_SUCCESS;
|
|
|
8335b1 |
+ const char *uds_path;
|
|
|
8335b1 |
|
|
|
8335b1 |
/*
|
|
|
8335b1 |
* Break up the URL to determine the host to connect to
|
|
|
8335b1 |
@@ -2065,7 +2239,7 @@ ap_proxy_determine_connection(apr_pool_t *p, request_rec *r,
|
|
|
8335b1 |
NULL));
|
|
|
8335b1 |
}
|
|
|
8335b1 |
if (!uri->port) {
|
|
|
8335b1 |
- uri->port = apr_uri_port_of_scheme(uri->scheme);
|
|
|
8335b1 |
+ uri->port = ap_proxy_port_of_scheme(uri->scheme);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(00944)
|
|
|
8335b1 |
@@ -2093,73 +2267,117 @@ ap_proxy_determine_connection(apr_pool_t *p, request_rec *r,
|
|
|
8335b1 |
* to check host and port on the conn and be careful about
|
|
|
8335b1 |
* spilling the cached addr from the worker.
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
- if (!conn->hostname || !worker->s->is_address_reusable ||
|
|
|
8335b1 |
- worker->s->disablereuse) {
|
|
|
8335b1 |
- if (proxyname) {
|
|
|
8335b1 |
- conn->hostname = apr_pstrdup(conn->pool, proxyname);
|
|
|
8335b1 |
- conn->port = proxyport;
|
|
|
8335b1 |
- /*
|
|
|
8335b1 |
- * If we have a forward proxy and the protocol is HTTPS,
|
|
|
8335b1 |
- * then we need to prepend a HTTP CONNECT request before
|
|
|
8335b1 |
- * sending our actual HTTPS requests.
|
|
|
8335b1 |
- * Save our real backend data for using it later during HTTP CONNECT.
|
|
|
8335b1 |
- */
|
|
|
8335b1 |
- if (conn->is_ssl) {
|
|
|
8335b1 |
- const char *proxy_auth;
|
|
|
8335b1 |
-
|
|
|
8335b1 |
- forward_info *forward = apr_pcalloc(conn->pool, sizeof(forward_info));
|
|
|
8335b1 |
- conn->forward = forward;
|
|
|
8335b1 |
- forward->use_http_connect = 1;
|
|
|
8335b1 |
- forward->target_host = apr_pstrdup(conn->pool, uri->hostname);
|
|
|
8335b1 |
- forward->target_port = uri->port;
|
|
|
8335b1 |
- /* Do we want to pass Proxy-Authorization along?
|
|
|
8335b1 |
- * If we haven't used it, then YES
|
|
|
8335b1 |
- * If we have used it then MAYBE: RFC2616 says we MAY propagate it.
|
|
|
8335b1 |
- * So let's make it configurable by env.
|
|
|
8335b1 |
- * The logic here is the same used in mod_proxy_http.
|
|
|
8335b1 |
- */
|
|
|
8335b1 |
- proxy_auth = apr_table_get(r->headers_in, "Proxy-Authorization");
|
|
|
8335b1 |
- if (proxy_auth != NULL &&
|
|
|
8335b1 |
- proxy_auth[0] != '\0' &&
|
|
|
8335b1 |
- r->user == NULL && /* we haven't yet authenticated */
|
|
|
8335b1 |
- apr_table_get(r->subprocess_env, "Proxy-Chain-Auth")) {
|
|
|
8335b1 |
- forward->proxy_auth = apr_pstrdup(conn->pool, proxy_auth);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
+ uds_path = (*worker->s->uds_path ? worker->s->uds_path : apr_table_get(r->notes, "uds_path"));
|
|
|
8335b1 |
+ if (uds_path) {
|
|
|
8335b1 |
+ if (conn->uds_path == NULL) {
|
|
|
8335b1 |
+ /* use (*conn)->pool instead of worker->cp->pool to match lifetime */
|
|
|
8335b1 |
+ conn->uds_path = apr_pstrdup(conn->pool, uds_path);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- else {
|
|
|
8335b1 |
- conn->hostname = apr_pstrdup(conn->pool, uri->hostname);
|
|
|
8335b1 |
- conn->port = uri->port;
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- socket_cleanup(conn);
|
|
|
8335b1 |
- err = apr_sockaddr_info_get(&(conn->addr),
|
|
|
8335b1 |
- conn->hostname, APR_UNSPEC,
|
|
|
8335b1 |
- conn->port, 0,
|
|
|
8335b1 |
- conn->pool);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- else if (!worker->cp->addr) {
|
|
|
8335b1 |
- if ((err = PROXY_THREAD_LOCK(worker)) != APR_SUCCESS) {
|
|
|
8335b1 |
- ap_log_rerror(APLOG_MARK, APLOG_ERR, err, r, APLOGNO(00945) "lock");
|
|
|
8335b1 |
- return HTTP_INTERNAL_SERVER_ERROR;
|
|
|
8335b1 |
+ if (conn->uds_path) {
|
|
|
8335b1 |
+ ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(02545)
|
|
|
8335b1 |
+ "%s: has determined UDS as %s",
|
|
|
8335b1 |
+ uri->scheme, conn->uds_path);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ /* should never happen */
|
|
|
8335b1 |
+ ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(02546)
|
|
|
8335b1 |
+ "%s: cannot determine UDS (%s)",
|
|
|
8335b1 |
+ uri->scheme, uds_path);
|
|
|
8335b1 |
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
/*
|
|
|
8335b1 |
- * Worker can have the single constant backend adress.
|
|
|
8335b1 |
- * The single DNS lookup is used once per worker.
|
|
|
8335b1 |
- * If dynamic change is needed then set the addr to NULL
|
|
|
8335b1 |
- * inside dynamic config to force the lookup.
|
|
|
8335b1 |
+ * In UDS cases, some structs are NULL. Protect from de-refs
|
|
|
8335b1 |
+ * and provide info for logging at the same time.
|
|
|
8335b1 |
*/
|
|
|
8335b1 |
- err = apr_sockaddr_info_get(&(worker->cp->addr),
|
|
|
8335b1 |
- conn->hostname, APR_UNSPEC,
|
|
|
8335b1 |
- conn->port, 0,
|
|
|
8335b1 |
- worker->cp->pool);
|
|
|
8335b1 |
- conn->addr = worker->cp->addr;
|
|
|
8335b1 |
- if ((uerr = PROXY_THREAD_UNLOCK(worker)) != APR_SUCCESS) {
|
|
|
8335b1 |
- ap_log_rerror(APLOG_MARK, APLOG_ERR, uerr, r, APLOGNO(00946) "unlock");
|
|
|
8335b1 |
+ if (!conn->addr) {
|
|
|
8335b1 |
+ apr_sockaddr_t *sa;
|
|
|
8335b1 |
+ apr_sockaddr_info_get(&sa, NULL, APR_UNSPEC, 0, 0, conn->pool);
|
|
|
8335b1 |
+ conn->addr = sa;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
+ conn->hostname = "httpd-UDS";
|
|
|
8335b1 |
+ conn->port = 0;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
else {
|
|
|
8335b1 |
- conn->addr = worker->cp->addr;
|
|
|
8335b1 |
+ int will_reuse = worker->s->is_address_reusable && !worker->s->disablereuse;
|
|
|
8335b1 |
+ if (!conn->hostname || !will_reuse) {
|
|
|
8335b1 |
+ if (proxyname) {
|
|
|
8335b1 |
+ conn->hostname = apr_pstrdup(conn->pool, proxyname);
|
|
|
8335b1 |
+ conn->port = proxyport;
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * If we have a forward proxy and the protocol is HTTPS,
|
|
|
8335b1 |
+ * then we need to prepend a HTTP CONNECT request before
|
|
|
8335b1 |
+ * sending our actual HTTPS requests.
|
|
|
8335b1 |
+ * Save our real backend data for using it later during HTTP CONNECT.
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ if (conn->is_ssl) {
|
|
|
8335b1 |
+ const char *proxy_auth;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ forward_info *forward = apr_pcalloc(conn->pool, sizeof(forward_info));
|
|
|
8335b1 |
+ conn->forward = forward;
|
|
|
8335b1 |
+ forward->use_http_connect = 1;
|
|
|
8335b1 |
+ forward->target_host = apr_pstrdup(conn->pool, uri->hostname);
|
|
|
8335b1 |
+ forward->target_port = uri->port;
|
|
|
8335b1 |
+ /* Do we want to pass Proxy-Authorization along?
|
|
|
8335b1 |
+ * If we haven't used it, then YES
|
|
|
8335b1 |
+ * If we have used it then MAYBE: RFC2616 says we MAY propagate it.
|
|
|
8335b1 |
+ * So let's make it configurable by env.
|
|
|
8335b1 |
+ * The logic here is the same used in mod_proxy_http.
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ proxy_auth = apr_table_get(r->headers_in, "Proxy-Authorization");
|
|
|
8335b1 |
+ if (proxy_auth != NULL &&
|
|
|
8335b1 |
+ proxy_auth[0] != '\0' &&
|
|
|
8335b1 |
+ r->user == NULL && /* we haven't yet authenticated */
|
|
|
8335b1 |
+ apr_table_get(r->subprocess_env, "Proxy-Chain-Auth")) {
|
|
|
8335b1 |
+ forward->proxy_auth = apr_pstrdup(conn->pool, proxy_auth);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ conn->hostname = apr_pstrdup(conn->pool, uri->hostname);
|
|
|
8335b1 |
+ conn->port = uri->port;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ if (!will_reuse) {
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * Only do a lookup if we should not reuse the backend address.
|
|
|
8335b1 |
+ * Otherwise we will look it up once for the worker.
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ err = apr_sockaddr_info_get(&(conn->addr),
|
|
|
8335b1 |
+ conn->hostname, APR_UNSPEC,
|
|
|
8335b1 |
+ conn->port, 0,
|
|
|
8335b1 |
+ conn->pool);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ socket_cleanup(conn);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ if (will_reuse) {
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * Looking up the backend address for the worker only makes sense if
|
|
|
8335b1 |
+ * we can reuse the address.
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ if (!worker->cp->addr) {
|
|
|
8335b1 |
+ if ((err = PROXY_THREAD_LOCK(worker)) != APR_SUCCESS) {
|
|
|
8335b1 |
+ ap_log_rerror(APLOG_MARK, APLOG_ERR, err, r, APLOGNO(00945) "lock");
|
|
|
8335b1 |
+ return HTTP_INTERNAL_SERVER_ERROR;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * Worker can have the single constant backend adress.
|
|
|
8335b1 |
+ * The single DNS lookup is used once per worker.
|
|
|
8335b1 |
+ * If dynamic change is needed then set the addr to NULL
|
|
|
8335b1 |
+ * inside dynamic config to force the lookup.
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ err = apr_sockaddr_info_get(&(worker->cp->addr),
|
|
|
8335b1 |
+ conn->hostname, APR_UNSPEC,
|
|
|
8335b1 |
+ conn->port, 0,
|
|
|
8335b1 |
+ worker->cp->pool);
|
|
|
8335b1 |
+ conn->addr = worker->cp->addr;
|
|
|
8335b1 |
+ if ((uerr = PROXY_THREAD_UNLOCK(worker)) != APR_SUCCESS) {
|
|
|
8335b1 |
+ ap_log_rerror(APLOG_MARK, APLOG_ERR, uerr, r, APLOGNO(00946) "unlock");
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ conn->addr = worker->cp->addr;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
}
|
|
|
8335b1 |
/* Close a possible existing socket if we are told to do so */
|
|
|
8335b1 |
if (conn->close) {
|
|
|
8335b1 |
@@ -2360,6 +2578,52 @@ static apr_status_t send_http_connect(proxy_conn_rec *backend,
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
|
|
|
8335b1 |
+#if APR_HAVE_SYS_UN_H
|
|
|
8335b1 |
+/* lifted from mod_proxy_fdpass.c; tweaked addrlen in connect() call */
|
|
|
8335b1 |
+static apr_status_t socket_connect_un(apr_socket_t *sock,
|
|
|
8335b1 |
+ struct sockaddr_un *sa)
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ apr_status_t rv;
|
|
|
8335b1 |
+ apr_os_sock_t rawsock;
|
|
|
8335b1 |
+ apr_interval_time_t t;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ rv = apr_os_sock_get(&rawsock, sock);
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ return rv;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ rv = apr_socket_timeout_get(sock, &t);
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ return rv;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ do {
|
|
|
8335b1 |
+ const socklen_t addrlen = APR_OFFSETOF(struct sockaddr_un, sun_path)
|
|
|
8335b1 |
+ + strlen(sa->sun_path) + 1;
|
|
|
8335b1 |
+ rv = connect(rawsock, (struct sockaddr*)sa, addrlen);
|
|
|
8335b1 |
+ } while (rv == -1 && errno == EINTR);
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ if ((rv == -1) && (errno == EINPROGRESS || errno == EALREADY)
|
|
|
8335b1 |
+ && (t > 0)) {
|
|
|
8335b1 |
+#if APR_MAJOR_VERSION < 2
|
|
|
8335b1 |
+ rv = apr_wait_for_io_or_timeout(NULL, sock, 0);
|
|
|
8335b1 |
+#else
|
|
|
8335b1 |
+ rv = apr_socket_wait(sock, APR_WAIT_WRITE);
|
|
|
8335b1 |
+#endif
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ return rv;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ if (rv == -1 && errno != EISCONN) {
|
|
|
8335b1 |
+ return errno;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ return APR_SUCCESS;
|
|
|
8335b1 |
+}
|
|
|
8335b1 |
+#endif
|
|
|
8335b1 |
+
|
|
|
8335b1 |
PROXY_DECLARE(int) ap_proxy_connect_backend(const char *proxy_function,
|
|
|
8335b1 |
proxy_conn_rec *conn,
|
|
|
8335b1 |
proxy_worker *worker,
|
|
|
8335b1 |
@@ -2384,93 +2648,131 @@ PROXY_DECLARE(int) ap_proxy_connect_backend(const char *proxy_function,
|
|
|
8335b1 |
proxy_function);
|
|
|
8335b1 |
}
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- while (backend_addr && !connected) {
|
|
|
8335b1 |
- if ((rv = apr_socket_create(&newsock, backend_addr->family,
|
|
|
8335b1 |
- SOCK_STREAM, APR_PROTO_TCP,
|
|
|
8335b1 |
- conn->scpool)) != APR_SUCCESS) {
|
|
|
8335b1 |
- loglevel = backend_addr->next ? APLOG_DEBUG : APLOG_ERR;
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, loglevel, rv, s, APLOGNO(00952)
|
|
|
8335b1 |
- "%s: error creating fam %d socket for target %s",
|
|
|
8335b1 |
- proxy_function,
|
|
|
8335b1 |
- backend_addr->family,
|
|
|
8335b1 |
- worker->s->hostname);
|
|
|
8335b1 |
- /*
|
|
|
8335b1 |
- * this could be an IPv6 address from the DNS but the
|
|
|
8335b1 |
- * local machine won't give us an IPv6 socket; hopefully the
|
|
|
8335b1 |
- * DNS returned an additional address to try
|
|
|
8335b1 |
- */
|
|
|
8335b1 |
- backend_addr = backend_addr->next;
|
|
|
8335b1 |
- continue;
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- conn->connection = NULL;
|
|
|
8335b1 |
+ while ((backend_addr || conn->uds_path) && !connected) {
|
|
|
8335b1 |
+#if APR_HAVE_SYS_UN_H
|
|
|
8335b1 |
+ if (conn->uds_path)
|
|
|
8335b1 |
+ {
|
|
|
8335b1 |
+ struct sockaddr_un sa;
|
|
|
8335b1 |
|
|
|
8335b1 |
- if (worker->s->recv_buffer_size > 0 &&
|
|
|
8335b1 |
- (rv = apr_socket_opt_set(newsock, APR_SO_RCVBUF,
|
|
|
8335b1 |
- worker->s->recv_buffer_size))) {
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00953)
|
|
|
8335b1 |
- "apr_socket_opt_set(SO_RCVBUF): Failed to set "
|
|
|
8335b1 |
- "ProxyReceiveBufferSize, using default");
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
+ rv = apr_socket_create(&newsock, AF_UNIX, SOCK_STREAM, 0,
|
|
|
8335b1 |
+ conn->scpool);
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ loglevel = APLOG_ERR;
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, loglevel, rv, s, APLOGNO(02453)
|
|
|
8335b1 |
+ "%s: error creating Unix domain socket for "
|
|
|
8335b1 |
+ "target %s",
|
|
|
8335b1 |
+ proxy_function,
|
|
|
8335b1 |
+ worker->s->hostname);
|
|
|
8335b1 |
+ break;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ conn->connection = NULL;
|
|
|
8335b1 |
|
|
|
8335b1 |
- rv = apr_socket_opt_set(newsock, APR_TCP_NODELAY, 1);
|
|
|
8335b1 |
- if (rv != APR_SUCCESS && rv != APR_ENOTIMPL) {
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00954)
|
|
|
8335b1 |
- "apr_socket_opt_set(APR_TCP_NODELAY): "
|
|
|
8335b1 |
- "Failed to set");
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
+ sa.sun_family = AF_UNIX;
|
|
|
8335b1 |
+ apr_cpystrn(sa.sun_path, conn->uds_path, sizeof(sa.sun_path));
|
|
|
8335b1 |
|
|
|
8335b1 |
- /* Set a timeout for connecting to the backend on the socket */
|
|
|
8335b1 |
- if (worker->s->conn_timeout_set) {
|
|
|
8335b1 |
- apr_socket_timeout_set(newsock, worker->s->conn_timeout);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- else if (worker->s->timeout_set) {
|
|
|
8335b1 |
- apr_socket_timeout_set(newsock, worker->s->timeout);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- else if (conf->timeout_set) {
|
|
|
8335b1 |
- apr_socket_timeout_set(newsock, conf->timeout);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- else {
|
|
|
8335b1 |
- apr_socket_timeout_set(newsock, s->timeout);
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
- /* Set a keepalive option */
|
|
|
8335b1 |
- if (worker->s->keepalive) {
|
|
|
8335b1 |
- if ((rv = apr_socket_opt_set(newsock,
|
|
|
8335b1 |
- APR_SO_KEEPALIVE, 1)) != APR_SUCCESS) {
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00955)
|
|
|
8335b1 |
- "apr_socket_opt_set(SO_KEEPALIVE): Failed to set"
|
|
|
8335b1 |
- " Keepalive");
|
|
|
8335b1 |
+ rv = socket_connect_un(newsock, &sa);
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ apr_socket_close(newsock);
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(02454)
|
|
|
8335b1 |
+ "%s: attempt to connect to Unix domain socket "
|
|
|
8335b1 |
+ "%s (%s) failed",
|
|
|
8335b1 |
+ proxy_function,
|
|
|
8335b1 |
+ conn->uds_path,
|
|
|
8335b1 |
+ worker->s->hostname);
|
|
|
8335b1 |
+ break;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, APLOG_TRACE2, 0, s,
|
|
|
8335b1 |
- "%s: fam %d socket created to connect to %s",
|
|
|
8335b1 |
- proxy_function, backend_addr->family, worker->s->hostname);
|
|
|
8335b1 |
+ else
|
|
|
8335b1 |
+#endif
|
|
|
8335b1 |
+ {
|
|
|
8335b1 |
+ if ((rv = apr_socket_create(&newsock, backend_addr->family,
|
|
|
8335b1 |
+ SOCK_STREAM, APR_PROTO_TCP,
|
|
|
8335b1 |
+ conn->scpool)) != APR_SUCCESS) {
|
|
|
8335b1 |
+ loglevel = backend_addr->next ? APLOG_DEBUG : APLOG_ERR;
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, loglevel, rv, s, APLOGNO(00952)
|
|
|
8335b1 |
+ "%s: error creating fam %d socket for "
|
|
|
8335b1 |
+ "target %s",
|
|
|
8335b1 |
+ proxy_function,
|
|
|
8335b1 |
+ backend_addr->family,
|
|
|
8335b1 |
+ worker->s->hostname);
|
|
|
8335b1 |
+ /*
|
|
|
8335b1 |
+ * this could be an IPv6 address from the DNS but the
|
|
|
8335b1 |
+ * local machine won't give us an IPv6 socket; hopefully the
|
|
|
8335b1 |
+ * DNS returned an additional address to try
|
|
|
8335b1 |
+ */
|
|
|
8335b1 |
+ backend_addr = backend_addr->next;
|
|
|
8335b1 |
+ continue;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ conn->connection = NULL;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ if (worker->s->recv_buffer_size > 0 &&
|
|
|
8335b1 |
+ (rv = apr_socket_opt_set(newsock, APR_SO_RCVBUF,
|
|
|
8335b1 |
+ worker->s->recv_buffer_size))) {
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00953)
|
|
|
8335b1 |
+ "apr_socket_opt_set(SO_RCVBUF): Failed to set "
|
|
|
8335b1 |
+ "ProxyReceiveBufferSize, using default");
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
|
|
|
8335b1 |
- if (conf->source_address_set) {
|
|
|
8335b1 |
- local_addr = apr_pmemdup(conn->pool, conf->source_address,
|
|
|
8335b1 |
- sizeof(apr_sockaddr_t));
|
|
|
8335b1 |
- local_addr->pool = conn->pool;
|
|
|
8335b1 |
- rv = apr_socket_bind(newsock, local_addr);
|
|
|
8335b1 |
- if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00956)
|
|
|
8335b1 |
- "%s: failed to bind socket to local address",
|
|
|
8335b1 |
- proxy_function);
|
|
|
8335b1 |
+ rv = apr_socket_opt_set(newsock, APR_TCP_NODELAY, 1);
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS && rv != APR_ENOTIMPL) {
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00954)
|
|
|
8335b1 |
+ "apr_socket_opt_set(APR_TCP_NODELAY): "
|
|
|
8335b1 |
+ "Failed to set");
|
|
|
8335b1 |
}
|
|
|
8335b1 |
- }
|
|
|
8335b1 |
|
|
|
8335b1 |
- /* make the connection out of the socket */
|
|
|
8335b1 |
- rv = apr_socket_connect(newsock, backend_addr);
|
|
|
8335b1 |
+ /* Set a timeout for connecting to the backend on the socket */
|
|
|
8335b1 |
+ if (worker->s->conn_timeout_set) {
|
|
|
8335b1 |
+ apr_socket_timeout_set(newsock, worker->s->conn_timeout);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else if (worker->s->timeout_set) {
|
|
|
8335b1 |
+ apr_socket_timeout_set(newsock, worker->s->timeout);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else if (conf->timeout_set) {
|
|
|
8335b1 |
+ apr_socket_timeout_set(newsock, conf->timeout);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ else {
|
|
|
8335b1 |
+ apr_socket_timeout_set(newsock, s->timeout);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ /* Set a keepalive option */
|
|
|
8335b1 |
+ if (worker->s->keepalive) {
|
|
|
8335b1 |
+ if ((rv = apr_socket_opt_set(newsock,
|
|
|
8335b1 |
+ APR_SO_KEEPALIVE, 1)) != APR_SUCCESS) {
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00955)
|
|
|
8335b1 |
+ "apr_socket_opt_set(SO_KEEPALIVE): Failed to set"
|
|
|
8335b1 |
+ " Keepalive");
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_TRACE2, 0, s,
|
|
|
8335b1 |
+ "%s: fam %d socket created to connect to %s",
|
|
|
8335b1 |
+ proxy_function, backend_addr->family, worker->s->hostname);
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ if (conf->source_address_set) {
|
|
|
8335b1 |
+ local_addr = apr_pmemdup(conn->pool, conf->source_address,
|
|
|
8335b1 |
+ sizeof(apr_sockaddr_t));
|
|
|
8335b1 |
+ local_addr->pool = conn->pool;
|
|
|
8335b1 |
+ rv = apr_socket_bind(newsock, local_addr);
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, APLOG_ERR, rv, s, APLOGNO(00956)
|
|
|
8335b1 |
+ "%s: failed to bind socket to local address",
|
|
|
8335b1 |
+ proxy_function);
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
|
|
|
8335b1 |
- /* if an error occurred, loop round and try again */
|
|
|
8335b1 |
- if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
- apr_socket_close(newsock);
|
|
|
8335b1 |
- loglevel = backend_addr->next ? APLOG_DEBUG : APLOG_ERR;
|
|
|
8335b1 |
- ap_log_error(APLOG_MARK, loglevel, rv, s, APLOGNO(00957)
|
|
|
8335b1 |
- "%s: attempt to connect to %pI (%s) failed",
|
|
|
8335b1 |
- proxy_function,
|
|
|
8335b1 |
- backend_addr,
|
|
|
8335b1 |
- worker->s->hostname);
|
|
|
8335b1 |
- backend_addr = backend_addr->next;
|
|
|
8335b1 |
- continue;
|
|
|
8335b1 |
+ /* make the connection out of the socket */
|
|
|
8335b1 |
+ rv = apr_socket_connect(newsock, backend_addr);
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+ /* if an error occurred, loop round and try again */
|
|
|
8335b1 |
+ if (rv != APR_SUCCESS) {
|
|
|
8335b1 |
+ apr_socket_close(newsock);
|
|
|
8335b1 |
+ loglevel = backend_addr->next ? APLOG_DEBUG : APLOG_ERR;
|
|
|
8335b1 |
+ ap_log_error(APLOG_MARK, loglevel, rv, s, APLOGNO(00957)
|
|
|
8335b1 |
+ "%s: attempt to connect to %pI (%s) failed",
|
|
|
8335b1 |
+ proxy_function,
|
|
|
8335b1 |
+ backend_addr,
|
|
|
8335b1 |
+ worker->s->hostname);
|
|
|
8335b1 |
+ backend_addr = backend_addr->next;
|
|
|
8335b1 |
+ continue;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
/* Set a timeout on the socket */
|
|
|
8335b1 |
@@ -2486,7 +2788,7 @@ PROXY_DECLARE(int) ap_proxy_connect_backend(const char *proxy_function,
|
|
|
8335b1 |
|
|
|
8335b1 |
conn->sock = newsock;
|
|
|
8335b1 |
|
|
|
8335b1 |
- if (conn->forward) {
|
|
|
8335b1 |
+ if (!conn->uds_path && conn->forward) {
|
|
|
8335b1 |
forward_info *forward = (forward_info *)conn->forward;
|
|
|
8335b1 |
/*
|
|
|
8335b1 |
* For HTTP CONNECT we need to prepend CONNECT request before
|
|
|
8335b1 |
@@ -2767,7 +3069,7 @@ PROXY_DECLARE(apr_status_t) ap_proxy_sync_balancer(proxy_balancer *b, server_rec
|
|
|
8335b1 |
found = 1;
|
|
|
8335b1 |
ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, APLOGNO(02402)
|
|
|
8335b1 |
"re-grabbing shm[%d] (0x%pp) for worker: %s", i, (void *)shm,
|
|
|
8335b1 |
- worker->s->name);
|
|
|
8335b1 |
+ ap_proxy_worker_name(conf->pool, worker));
|
|
|
8335b1 |
break;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
}
|
|
|
8335b1 |
@@ -3201,6 +3503,39 @@ PROXY_DECLARE(int) ap_proxy_pass_brigade(apr_bucket_alloc_t *bucket_alloc,
|
|
|
8335b1 |
return OK;
|
|
|
8335b1 |
}
|
|
|
8335b1 |
|
|
|
8335b1 |
+/* Fill in unknown schemes from apr_uri_port_of_scheme() */
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+typedef struct proxy_schemes_t {
|
|
|
8335b1 |
+ const char *name;
|
|
|
8335b1 |
+ apr_port_t default_port;
|
|
|
8335b1 |
+} proxy_schemes_t ;
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+static proxy_schemes_t pschemes[] =
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ {"fcgi", 8000},
|
|
|
8335b1 |
+ {"ajp", AJP13_DEF_PORT},
|
|
|
8335b1 |
+ {"scgi", 4000},
|
|
|
8335b1 |
+ { NULL, 0xFFFF } /* unknown port */
|
|
|
8335b1 |
+};
|
|
|
8335b1 |
+
|
|
|
8335b1 |
+PROXY_DECLARE(apr_port_t) ap_proxy_port_of_scheme(const char *scheme)
|
|
|
8335b1 |
+{
|
|
|
8335b1 |
+ if (scheme) {
|
|
|
8335b1 |
+ apr_port_t port;
|
|
|
8335b1 |
+ if ((port = apr_uri_port_of_scheme(scheme)) != 0) {
|
|
|
8335b1 |
+ return port;
|
|
|
8335b1 |
+ } else {
|
|
|
8335b1 |
+ proxy_schemes_t *pscheme;
|
|
|
8335b1 |
+ for (pscheme = pschemes; pscheme->name != NULL; ++pscheme) {
|
|
|
8335b1 |
+ if (strcasecmp(scheme, pscheme->name) == 0) {
|
|
|
8335b1 |
+ return pscheme->default_port;
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ }
|
|
|
8335b1 |
+ return 0;
|
|
|
8335b1 |
+}
|
|
|
8335b1 |
+
|
|
|
8335b1 |
void proxy_util_register_hooks(apr_pool_t *p)
|
|
|
8335b1 |
{
|
|
|
8335b1 |
APR_REGISTER_OPTIONAL_FN(ap_proxy_retry_worker);
|