diff --git a/.github/main.workflow b/.github/main.workflow new file mode 100644 index 00000000..ff0b234f --- /dev/null +++ b/.github/main.workflow @@ -0,0 +1,34 @@ +workflow "MyDemoWorkFlow" { + on = "push" + resolves = ["GitHub Action for npm-1"] +} + +action "GitHub Action for npm" { + uses = "actions/npm@e7aaefe" + args = "install" + secrets = ["GITHUB_TOKEN"] +} + +action "GitHub Action for npm-1" { + uses = "actions/npm@e7aaefe" + needs = ["GitHub Action for npm"] + args = "ls" + secrets = ["GITHUB_TOKEN"] +} + +workflow "DummyFlow" { + on = "push" + resolves = ["actions/bin/sh"] +} + +action "actions/bin/sh@5968b3a61ecdca99746eddfdc3b3aab7dc39ea31" { + uses = "actions/bin/sh@5968b3a61ecdca99746eddfdc3b3aab7dc39ea31" + args = "ls" + secrets = ["GITHUB_TOKEN"] +} + +action "actions/bin/sh" { + uses = "actions/bin/sh@5968b3a61ecdca99746eddfdc3b3aab7dc39ea31" + needs = ["actions/bin/sh@5968b3a61ecdca99746eddfdc3b3aab7dc39ea31"] + args = "ls $HOME" +} diff --git a/.whitesource b/.whitesource new file mode 100644 index 00000000..aecf9c58 --- /dev/null +++ b/.whitesource @@ -0,0 +1,16 @@ +{ + "scanSettings": { + "configMode": "AUTO", + "configExternalURL": "", + "projectToken": "", + "baseBranches": [] + }, + "checkRunSettings": { + "vulnerableCheckRunConclusionLevel": "failure" + }, + "issueSettings": { + "minSeverityLevel": "LOW" + } +} + + diff --git a/README.md b/README.md index 4fcbee4c..84c3c672 100644 --- a/README.md +++ b/README.md @@ -1,4 +1,4 @@ -# forever +# forever and not forever [![Join the chat at https://gitter.im/foreverjs/forever](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/foreverjs/forever?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge) diff --git a/ios.dummy b/ios.dummy new file mode 100644 index 00000000..8b137891 --- /dev/null +++ b/ios.dummy @@ -0,0 +1 @@ + diff --git a/package.json b/package.json index 1db6c649..6c0d55b3 100644 --- a/package.json +++ b/package.json @@ -1,7 +1,7 @@ { "name": "forever", "preferGlobal": "true", - "description": "A simple CLI tool for ensuring that a given node script runs continuously (i.e. forever)", + "description": "2 A simple CLI tool for ensuring that a given node script runs continuously (i.e. forever)", "version": "0.15.3", "author": "Charlie Robbins ", "maintainers": [ @@ -18,7 +18,8 @@ "sysadmin", "tools" ], - "dependencies": { + "dependencies": + "node-sass": "4.13.1", "cliff": "~0.1.9", "clone": "^1.0.2", "colors": "~0.6.2", diff --git a/request.c b/request.c new file mode 100644 index 00000000..bbffd1c9 --- /dev/null +++ b/request.c @@ -0,0 +1,937 @@ +#include + +#include +#include +#include +#include +#include + +#include "request.h" +#include "keyvalue.h" +#include "log.h" + +static int request_check_hostname(server *srv, connection *con, buffer *host) { + enum { DOMAINLABEL, TOPLABEL } stage = TOPLABEL; + size_t i; + int label_len = 0; + size_t host_len; + char *colon; + int is_ip = -1; /* -1 don't know yet, 0 no, 1 yes */ + int level = 0; + + UNUSED(srv); + UNUSED(con); + + /* + * hostport = host [ ":" port ] + * host = hostname | IPv4address | IPv6address + * hostname = *( domainlabel "." ) toplabel [ "." ] + * domainlabel = alphanum | alphanum *( alphanum | "-" ) alphanum + * toplabel = alpha | alpha *( alphanum | "-" ) alphanum + * IPv4address = 1*digit "." 1*digit "." 1*digit "." 1*digit + * IPv6address = "[" ... "]" + * port = *digit + */ + + /* no Host: */ + if (!host || host->used == 0) return 0; + + host_len = host->used - 1; + + /* IPv6 adress */ + if (host->ptr[0] == '[') { + char *c = host->ptr + 1; + int colon_cnt = 0; + + /* check portnumber */ + for (; *c && *c != ']'; c++) { + if (*c == ':') { + if (++colon_cnt > 7) { + return -1; + } + } else if (!light_isxdigit(*c)) { + return -1; + } + } + + /* missing ] */ + if (!*c) { + return -1; + } + + /* check port */ + if (*(c+1) == ':') { + for (c += 2; *c; c++) { + if (!light_isdigit(*c)) { + return -1; + } + } + } + return 0; + } + + if (NULL != (colon = memchr(host->ptr, ':', host_len))) { + char *c = colon + 1; + + /* check portnumber */ + for (; *c; c++) { + if (!light_isdigit(*c)) return -1; + } + + /* remove the port from the host-len */ + host_len = colon - host->ptr; + } + + /* Host is empty */ + if (host_len == 0) return -1; + + /* scan from the right and skip the \0 */ + for (i = host_len - 1; i + 1 > 0; i--) { + char c = host->ptr[i]; + + switch (stage) { + case TOPLABEL: + if (c == '.') { + /* only switch stage, if this is not the last character */ + if (i != host_len - 1) { + if (label_len == 0) { + return -1; + } + + /* check the first character at right of the dot */ + if (is_ip == 0) { + if (!light_isalpha(host->ptr[i+1])) { + return -1; + } + } else if (!light_isdigit(host->ptr[i+1])) { + is_ip = 0; + } else if ('-' == host->ptr[i+1]) { + return -1; + } else { + /* just digits */ + is_ip = 1; + } + + stage = DOMAINLABEL; + + label_len = 0; + level++; + } else if (i == 0) { + /* just a dot and nothing else is evil */ + return -1; + } + } else if (i == 0) { + /* the first character of the hostname */ + if (!light_isalpha(c)) { + return -1; + } + label_len++; + } else { + if (c != '-' && !light_isalnum(c)) { + return -1; + } + if (is_ip == -1) { + if (!light_isdigit(c)) is_ip = 0; + } + label_len++; + } + + break; + case DOMAINLABEL: + if (is_ip == 1) { + if (c == '.') { + if (label_len == 0) { + return -1; + } + + label_len = 0; + level++; + } else if (!light_isdigit(c)) { + return -1; + } else { + label_len++; + } + } else { + if (c == '.') { + if (label_len == 0) { + return -1; + } + + /* c is either - or alphanum here */ + if ('-' == host->ptr[i+1]) { + return -1; + } + + label_len = 0; + level++; + } else if (i == 0) { + if (!light_isalnum(c)) { + return -1; + } + label_len++; + } else { + if (c != '-' && !light_isalnum(c)) { + return -1; + } + label_len++; + } + } + + break; + } + } + + /* a IP has to consist of 4 parts */ + if (is_ip == 1 && level != 3) { + return -1; + } + + if (label_len == 0) { + return -1; + } + + return 0; +} + +#if 0 +#define DUMP_HEADER +#endif + +int http_request_split_value(array *vals, buffer *b) { + char *s; + size_t i; + int state = 0; + /* + * parse + * + * val1, val2, val3, val4 + * + * into a array (more or less a explode() incl. striping of whitespaces + */ + + if (b->used == 0) return 0; + + s = b->ptr; + + for (i =0; i < b->used - 1; ) { + char *start = NULL, *end = NULL; + data_string *ds; + + switch (state) { + case 0: /* ws */ + + /* skip ws */ + for (; (*s == ' ' || *s == '\t') && i < b->used - 1; i++, s++); + + + state = 1; + break; + case 1: /* value */ + start = s; + + for (; *s != ',' && i < b->used - 1; i++, s++); + end = s - 1; + + for (; (*end == ' ' || *end == '\t') && end > start; end--); + + if (NULL == (ds = (data_string *)array_get_unused_element(vals, TYPE_STRING))) { + ds = data_string_init(); + } + + buffer_copy_string_len(ds->value, start, end-start+1); + array_insert_unique(vals, (data_unset *)ds); + + if (*s == ',') { + state = 0; + i++; + s++; + } else { + /* end of string */ + + state = 2; + } + break; + default: + i++; + break; + } + } + return 0; +} + +int request_uri_is_valid_char(char c) { + /* RFC 2396 - Appendix A */ + + /* alphanum */ + if (light_isalnum(c)) return 1; + + + switch(c) { + /* reserved */ + case ';': + case '/': + case '?': + case ':': + case '@': + case '&': + case '=': + case '+': + case '$': + case ',': + + /* mark */ + case '-': + case '_': + case '.': + case '!': + case '~': + case '*': + case '\'': + case '(': + case ')': + + /* escaped */ + case '%': + + /* fragment, should not be out in the wild $*/ + case '#': + + /* non RFC */ + case '[': + case ']': + + return 1; + } + + return 0; +} + +int http_request_parse(server *srv, connection *con) { + char *uri = NULL, *proto = NULL, *method = NULL, con_length_set; + int is_key = 1, key_len = 0, is_ws_after_key = 0, in_folding; + char *value = NULL, *key = NULL; + + enum { HTTP_CONNECTION_UNSET, HTTP_CONNECTION_KEEPALIVE, HTTP_CONNECTION_CLOSE } keep_alive_set = HTTP_CONNECTION_UNSET; + + int line = 0; + + int request_line_stage = 0; + size_t i, first; + + int done = 0; + + data_string *ds = NULL; + + /* + * Request: "^(GET|POST|HEAD) ([^ ]+(\\?[^ ]+|)) (HTTP/1\\.[01])$" + * Option : "^([-a-zA-Z]+): (.+)$" + * End : "^$" + */ + + if (con->conf.log_request_header) { + log_error_write(srv, __FILE__, __LINE__, "sdsdSb", + "fd:", con->fd, + "request-len:", con->request.request->used, + "\n", con->request.request); + } + + if (con->request_count > 1 && + con->request.request->ptr[0] == '\r' && + con->request.request->ptr[1] == '\n') { + /* we are in keep-alive and might get \r\n after a previous POST request.*/ + + buffer_copy_string_len(con->parse_request, con->request.request->ptr + 2, con->request.request->used - 1 - 2); + } else { + /* fill the local request buffer */ + buffer_copy_string_buffer(con->parse_request, con->request.request); + } + + keep_alive_set = 0; + con_length_set = 0; + + /* parse the first line of the request + * + * should be: + * + * \r\n + * */ + for (i = 0, first = 0; i < con->parse_request->used && line == 0; i++) { + char *cur = con->parse_request->ptr + i; + + switch(*cur) { + case '\r': + if (con->parse_request->ptr[i+1] == '\n') { + http_method_t r; + char *nuri = NULL; + size_t j; + + /* \r\n -> \0\0 */ + con->parse_request->ptr[i] = '\0'; + con->parse_request->ptr[i+1] = '\0'; + + buffer_copy_string_len(con->request.request_line, con->parse_request->ptr, i); + + if (request_line_stage != 2) { + con->http_status = 400; + con->response.keep_alive = 0; + con->keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "s", "incomplete request line -> 400"); + if (srv->srvconf.log_request_header_on_error) { + log_error_write(srv, __FILE__, __LINE__, "Sb", + "request-header:\n", + con->request.request); + } + return 0; + } + + proto = con->parse_request->ptr + first; + + *(uri - 1) = '\0'; + *(proto - 1) = '\0'; + + /* we got the first one :) */ + if (-1 == (r = get_http_method_key(method))) { + con->http_status = 501; + con->response.keep_alive = 0; + con->keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "s", "unknown http-method -> 501"); + if (srv->srvconf.log_request_header_on_error) { + log_error_write(srv, __FILE__, __LINE__, "Sb", + "request-header:\n", + con->request.request); + } + + return 0; + } + + con->request.http_method = r; + + if (0 == strncmp(proto, "HTTP/1.", sizeof("HTTP/1.") - 1)) { + if (proto[7] == '1') { + con->request.http_version = con->conf.allow_http11 ? HTTP_VERSION_1_1 : HTTP_VERSION_1_0; + } else if (proto[7] == '0') { + con->request.http_version = HTTP_VERSION_1_0; + } else { + con->http_status = 505; + + log_error_write(srv, __FILE__, __LINE__, "s", "unknown HTTP version -> 505"); + if (srv->srvconf.log_request_header_on_error) { + log_error_write(srv, __FILE__, __LINE__, "Sb", + "request-header:\n", + con->request.request); + } + return 0; + } + } else { + con->http_status = 400; + con->keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "s", "unknown protocol -> 400"); + if (srv->srvconf.log_request_header_on_error) { + log_error_write(srv, __FILE__, __LINE__, "Sb", + "request-header:\n", + con->request.request); + } + return 0; + } + + if (0 == strncmp(uri, "http://", 7) && + NULL != (nuri = strchr(uri + 7, '/'))) { + /* ignore the host-part */ + + buffer_copy_string_len(con->request.uri, nuri, proto - nuri - 1); + } else { + /* everything looks good so far */ + buffer_copy_string_len(con->request.uri, uri, proto - uri - 1); + } + + /* check uri for invalid characters */ + for (j = 0; j < con->request.uri->used - 1; j++) { + if (!request_uri_is_valid_char(con->request.uri->ptr[j])) { + con->http_status = 400; + con->keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "sd", + "invalid character in URI -> 400", + con->request.uri->ptr[j]); + + if (srv->srvconf.log_request_header_on_error) { + log_error_write(srv, __FILE__, __LINE__, "Sb", + "request-header:\n", + con->request.request); + } + + return 0; + } + } + + buffer_copy_string_buffer(con->request.orig_uri, con->request.uri); + + con->http_status = 0; + + i++; + line++; + first = i+1; + } + break; + case ' ': + switch(request_line_stage) { + case 0: + /* GET|POST|... */ + method = con->parse_request->ptr + first; + first = i + 1; + break; + case 1: + /* /foobar/... */ + uri = con->parse_request->ptr + first; + first = i + 1; + break; + default: + /* ERROR, one space to much */ + con->http_status = 400; + con->response.keep_alive = 0; + con->keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "s", "overlong request line -> 400"); + if (srv->srvconf.log_request_header_on_error) { + log_error_write(srv, __FILE__, __LINE__, "Sb", + "request-header:\n", + con->request.request); + } + return 0; + } + + request_line_stage++; + break; + } + } + + in_folding = 0; + + for (; i < con->parse_request->used && !done; i++) { + char *cur = con->parse_request->ptr + i; + + if (is_key) { + size_t j; + int got_colon = 0; + + /** + * 1* + * CTLs == 0-31 + 127 + * + */ + switch(*cur) { + case ':': + is_key = 0; + + value = cur + 1; + + if (is_ws_after_key == 0) { + key_len = i - first; + } + is_ws_after_key = 0; + + break; + case '(': + case ')': + case '<': + case '>': + case '@': + case ',': + case ';': + case '\\': + case '\"': + case '/': + case '[': + case ']': + case '?': + case '=': + case '{': + case '}': + con->http_status = 400; + con->keep_alive = 0; + con->response.keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "sbsds", + "invalid character in key", con->request.request, cur, *cur, "-> 400"); + return 0; + case ' ': + case '\t': + if (i == first) { + is_key = 0; + in_folding = 1; + value = cur; + + break; + } + + + key_len = i - first; + + /* skip every thing up to the : */ + for (j = 1; !got_colon; j++) { + switch(con->parse_request->ptr[j + i]) { + case ' ': + case '\t': + /* skip WS */ + continue; + case ':': + /* ok, done */ + + i += j - 1; + got_colon = 1; + + break; + default: + /* error */ + + log_error_write(srv, __FILE__, __LINE__, "s", "WS character in key -> 400"); + + con->http_status = 400; + con->response.keep_alive = 0; + con->keep_alive = 0; + + return 0; + } + } + + break; + case '\r': + if (con->parse_request->ptr[i+1] == '\n' && i == first) { + /* End of Header */ + con->parse_request->ptr[i] = '\0'; + con->parse_request->ptr[i+1] = '\0'; + + i++; + + done = 1; + + break; + } else { + log_error_write(srv, __FILE__, __LINE__, "s", "CR without LF -> 400"); + + con->http_status = 400; + con->keep_alive = 0; + con->response.keep_alive = 0; + return 0; + } + /* fall thru */ + case 0: /* illegal characters (faster than a if () :) */ + case 1: + case 2: + case 3: + case 4: + case 5: + case 6: + case 7: + case 8: + case 10: + case 11: + case 12: + case 14: + case 15: + case 16: + case 17: + case 18: + case 19: + case 20: + case 21: + case 22: + case 23: + case 24: + case 25: + case 26: + case 27: + case 28: + case 29: + case 30: + case 31: + case 127: + con->http_status = 400; + con->keep_alive = 0; + con->response.keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "sbsds", + "CTL character in key", con->request.request, cur, *cur, "-> 400"); + + return 0; + default: + /* ok */ + break; + } + } else { + switch(*cur) { + case '\r': + if (con->parse_request->ptr[i+1] == '\n') { + /* End of Headerline */ + con->parse_request->ptr[i] = '\0'; + con->parse_request->ptr[i+1] = '\0'; + + if (in_folding) { + if (!ds) { + /* 400 */ + + log_error_write(srv, __FILE__, __LINE__, "s", "WS at the start of first line -> 400"); + + con->http_status = 400; + con->keep_alive = 0; + con->response.keep_alive = 0; + return 0; + } + buffer_append_string(ds->value, value); + } else { + int s_len; + key = con->parse_request->ptr + first; + + s_len = cur - value; + + if (s_len > 0) { + int cmp = 0; + if (NULL == (ds = (data_string *)array_get_unused_element(con->request.headers, TYPE_STRING))) { + ds = data_string_init(); + } + buffer_copy_string_len(ds->key, key, key_len); + buffer_copy_string_len(ds->value, value, s_len); + + /* retreive values + * + * + * the list of options is sorted to simplify the search + */ + + if (0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("Connection")))) { + array *vals; + size_t vi; + + /* split on , */ + + vals = srv->split_vals; + + array_reset(vals); + + http_request_split_value(vals, ds->value); + + for (vi = 0; vi < vals->used; vi++) { + data_string *dsv = (data_string *)vals->data[vi]; + + if (0 == buffer_caseless_compare(CONST_BUF_LEN(dsv->value), CONST_STR_LEN("keep-alive"))) { + keep_alive_set = HTTP_CONNECTION_KEEPALIVE; + + break; + } else if (0 == buffer_caseless_compare(CONST_BUF_LEN(dsv->value), CONST_STR_LEN("close"))) { + keep_alive_set = HTTP_CONNECTION_CLOSE; + + break; + } + } + + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("Content-Length")))) { + char *err; + unsigned long int r; + size_t j; + + if (ds->value->used == 0) SEGFAULT(); + + for (j = 0; j < ds->value->used - 1; j++) { + char c = ds->value->ptr[j]; + if (!isdigit((unsigned char)c)) { + log_error_write(srv, __FILE__, __LINE__, "sbs", + "content-length broken:", ds->value, "-> 400"); + + con->http_status = 400; + con->keep_alive = 0; + + array_insert_unique(con->request.headers, (data_unset *)ds); + return 0; + } + } + + r = strtoul(ds->value->ptr, &err, 10); + + if (*err == '\0') { + con_length_set = 1; + con->request.content_length = r; + } else { + log_error_write(srv, __FILE__, __LINE__, "sbs", + "content-length broken:", ds->value, "-> 400"); + + con->http_status = 400; + con->keep_alive = 0; + + array_insert_unique(con->request.headers, (data_unset *)ds); + return 0; + } + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("Content-Type")))) { + con->request.http_content_type = ds->value->ptr; + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("Expect")))) { + /* HTTP 2616 8.2.3 + * Expect: 100-continue + * + * -> (10.1.1) 100 (read content, process request, send final status-code) + * -> (10.4.18) 417 (close) + * + * (not handled at all yet, we always send 417 here) + */ + + con->http_status = 417; + con->keep_alive = 0; + + array_insert_unique(con->request.headers, (data_unset *)ds); + return 0; + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("Host")))) { + con->request.http_host = ds->value; + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("If-Modified-Since")))) { + con->request.http_if_modified_since = ds->value->ptr; + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("If-None-Match")))) { + con->request.http_if_none_match = ds->value->ptr; + } else if (cmp > 0 && 0 == (cmp = buffer_caseless_compare(CONST_BUF_LEN(ds->key), CONST_STR_LEN("Range")))) { + /* bytes=.*-.* */ + + if (0 == strncasecmp(ds->value->ptr, "bytes=", 6) && + NULL != strchr(ds->value->ptr+6, '-')) { + + con->request.http_range = ds->value->ptr + 6; + } + } + + array_insert_unique(con->request.headers, (data_unset *)ds); + } else { + /* empty header-fields are not allowed by HTTP-RFC, we just ignore them */ + } + } + + i++; + first = i+1; + is_key = 1; + value = 0; + key_len = 0; + in_folding = 0; + } else { + log_error_write(srv, __FILE__, __LINE__, "sbs", + "CR without LF", con->request.request, "-> 400"); + + con->http_status = 400; + con->keep_alive = 0; + con->response.keep_alive = 0; + return 0; + } + break; + case ' ': + case '\t': + /* strip leading WS */ + if (value == cur) value = cur+1; + default: + break; + } + } + } + + con->header_len = i; + + /* do some post-processing */ + + if (con->request.http_version == HTTP_VERSION_1_1) { + if (keep_alive_set != HTTP_CONNECTION_CLOSE) { + /* no Connection-Header sent */ + + /* HTTP/1.1 -> keep-alive default TRUE */ + con->keep_alive = 1; + } else { + con->keep_alive = 0; + } + + /* RFC 2616, 14.23 */ + if (con->request.http_host == NULL || + buffer_is_empty(con->request.http_host)) { + con->http_status = 400; + con->response.keep_alive = 0; + con->keep_alive = 0; + + log_error_write(srv, __FILE__, __LINE__, "s", "HTTP/1.1 but Host missing -> 400"); + return 0; + } + } else { + if (keep_alive_set == HTTP_CONNECTION_KEEPALIVE) { + /* no Connection-Header sent */ + + /* HTTP/1.0 -> keep-alive default FALSE */ + con->keep_alive = 1; + } else { + con->keep_alive = 0; + } + } + + /* check hostname field */ + if (0 != request_check_hostname(srv, con, con->request.http_host)) { + log_error_write(srv, __FILE__, __LINE__, "sbs", + "Invalid Hostname:", con->request.http_host, "-> 400"); + + con->http_status = 400; + con->response.keep_alive = 0; + con->keep_alive = 0; + + return 0; + } + + /* check if we have read post data */ + if (con->request.http_method == HTTP_METHOD_POST) { + server_socket *srv_socket = con->srv_socket; + if (con->request.http_content_type == NULL) { + log_error_write(srv, __FILE__, __LINE__, "s", + "POST request, but content-type not set"); + } + + if (con_length_set == 0) { + /* content-length is missing */ + log_error_write(srv, __FILE__, __LINE__, "s", + "POST-request, but content-length missing -> 411"); + + con->http_status = 411; + return 0; + } + + /* don't handle more the SSIZE_MAX bytes in content-length */ + if (con->request.content_length > SSIZE_MAX) { + con->http_status = 413; + + log_error_write(srv, __FILE__, __LINE__, "sds", + "request-size too long:", con->request.content_length, "-> 413"); + return 0; + } + + /* divide by 1024 as srvconf.max_request_size is in kBytes */ + if (srv_socket->max_request_size != 0 && + (con->request.content_length >> 10) > srv_socket->max_request_size) { + /* the request body itself is larger then + * our our max_request_size + */ + + con->http_status = 413; + + log_error_write(srv, __FILE__, __LINE__, "sds", + "request-size too long:", con->request.content_length, "-> 413"); + return 0; + } + + + /* we have content */ + if (con->request.content_length != 0) { + return 1; + } + } + + return 0; +} + +int http_request_header_finished(server *srv, connection *con) { + UNUSED(srv); + + if (con->request.request->used < 5) return 0; + + if (0 == memcmp(con->request.request->ptr + con->request.request->used - 5, "\r\n\r\n", 4)) return 1; + if (NULL != strstr(con->request.request->ptr, "\r\n\r\n")) return 1; + + return 0; +}