nginx-devel January 2017

nginx-devel@nginx.org

25 participants
73 discussions

[PATCH] SSL: decrease log level of SSL_R_NO_RENEGOTIATION to "info"

by Piotr Sikora

# HG changeset patch # User Piotr Sikora <piotrsikora(a)google.com> # Date 1476859304 25200 # Tue Oct 18 23:41:44 2016 -0700 # Node ID ae85978091f832d27d862e468ee5e4cbfb18da11 # Parent 8081e1f3ab8b9ccb4e2d7f9240cbfb8e404a3c95 SSL: decrease log level of SSL_R_NO_RENEGOTIATION to "info". Previously, "no renegotiation" error was logged at the "critical" level when using BoringSSL, which rejects renegotiation at the protocol level. Signed-off-by: Piotr Sikora <piotrsikora(a)google.com> diff -r 8081e1f3ab8b -r ae85978091f8 src/event/ngx_event_openssl.c --- a/src/event/ngx_event_openssl.c +++ b/src/event/ngx_event_openssl.c @@ -2045,6 +2045,9 @@ ngx_ssl_connection_error(ngx_connection_ #ifdef SSL_R_UNSAFE_LEGACY_RENEGOTIATION_DISABLED || n == SSL_R_UNSAFE_LEGACY_RENEGOTIATION_DISABLED /* 338 */ #endif +#ifdef SSL_R_NO_RENEGOTIATION + || n == SSL_R_NO_RENEGOTIATION /* 339 */ +#endif #ifdef SSL_R_SCSV_RECEIVED_WHEN_RENEGOTIATING || n == SSL_R_SCSV_RECEIVED_WHEN_RENEGOTIATING /* 345 */ #endif

5 years, 7 months

[PATCH 1 of 2] HTTP: add support for "429 Too Many Requests" response (RFC6585)

by Piotr Sikora

# HG changeset patch # User Piotr Sikora <piotrsikora(a)google.com> # Date 1476859139 25200 # Tue Oct 18 23:38:59 2016 -0700 # Node ID 1eec5355ef1e4a8b0aecebdec84c744734c0d36e # Parent 8081e1f3ab8b9ccb4e2d7f9240cbfb8e404a3c95 HTTP: add support for "429 Too Many Requests" response (RFC6585). This change adds reason phrase in status line and pretty response body when "429" status code is used in "return", "limit_conn_status" and/or "limit_req_status" directives. It also adds "http_429" parameter to "proxy_next_upstream" for retrying rate-limited requests, and to "proxy_cache_use_stale" for serving stale cached responses after being rate-limited. Signed-off-by: Piotr Sikora <piotrsikora(a)google.com> diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/modules/ngx_http_fastcgi_module.c --- a/src/http/modules/ngx_http_fastcgi_module.c +++ b/src/http/modules/ngx_http_fastcgi_module.c @@ -211,6 +211,7 @@ static ngx_conf_bitmask_t ngx_http_fast { ngx_string("http_503"), NGX_HTTP_UPSTREAM_FT_HTTP_503 }, { ngx_string("http_403"), NGX_HTTP_UPSTREAM_FT_HTTP_403 }, { ngx_string("http_404"), NGX_HTTP_UPSTREAM_FT_HTTP_404 }, + { ngx_string("http_429"), NGX_HTTP_UPSTREAM_FT_HTTP_429 }, { ngx_string("updating"), NGX_HTTP_UPSTREAM_FT_UPDATING }, { ngx_string("off"), NGX_HTTP_UPSTREAM_FT_OFF }, { ngx_null_string, 0 } diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/modules/ngx_http_proxy_module.c --- a/src/http/modules/ngx_http_proxy_module.c +++ b/src/http/modules/ngx_http_proxy_module.c @@ -220,6 +220,7 @@ static ngx_conf_bitmask_t ngx_http_prox { ngx_string("http_504"), NGX_HTTP_UPSTREAM_FT_HTTP_504 }, { ngx_string("http_403"), NGX_HTTP_UPSTREAM_FT_HTTP_403 }, { ngx_string("http_404"), NGX_HTTP_UPSTREAM_FT_HTTP_404 }, + { ngx_string("http_429"), NGX_HTTP_UPSTREAM_FT_HTTP_429 }, { ngx_string("updating"), NGX_HTTP_UPSTREAM_FT_UPDATING }, { ngx_string("off"), NGX_HTTP_UPSTREAM_FT_OFF }, { ngx_null_string, 0 } diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/modules/ngx_http_scgi_module.c --- a/src/http/modules/ngx_http_scgi_module.c +++ b/src/http/modules/ngx_http_scgi_module.c @@ -82,6 +82,7 @@ static ngx_conf_bitmask_t ngx_http_scgi_ { ngx_string("http_503"), NGX_HTTP_UPSTREAM_FT_HTTP_503 }, { ngx_string("http_403"), NGX_HTTP_UPSTREAM_FT_HTTP_403 }, { ngx_string("http_404"), NGX_HTTP_UPSTREAM_FT_HTTP_404 }, + { ngx_string("http_429"), NGX_HTTP_UPSTREAM_FT_HTTP_429 }, { ngx_string("updating"), NGX_HTTP_UPSTREAM_FT_UPDATING }, { ngx_string("off"), NGX_HTTP_UPSTREAM_FT_OFF }, { ngx_null_string, 0 } diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/modules/ngx_http_uwsgi_module.c --- a/src/http/modules/ngx_http_uwsgi_module.c +++ b/src/http/modules/ngx_http_uwsgi_module.c @@ -114,6 +114,7 @@ static ngx_conf_bitmask_t ngx_http_uwsgi { ngx_string("http_503"), NGX_HTTP_UPSTREAM_FT_HTTP_503 }, { ngx_string("http_403"), NGX_HTTP_UPSTREAM_FT_HTTP_403 }, { ngx_string("http_404"), NGX_HTTP_UPSTREAM_FT_HTTP_404 }, + { ngx_string("http_429"), NGX_HTTP_UPSTREAM_FT_HTTP_429 }, { ngx_string("updating"), NGX_HTTP_UPSTREAM_FT_UPDATING }, { ngx_string("off"), NGX_HTTP_UPSTREAM_FT_OFF }, { ngx_null_string, 0 } diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/ngx_http_header_filter_module.c --- a/src/http/ngx_http_header_filter_module.c +++ b/src/http/ngx_http_header_filter_module.c @@ -100,12 +100,16 @@ static ngx_str_t ngx_http_status_lines[] ngx_null_string, /* "419 unused" */ ngx_null_string, /* "420 unused" */ ngx_string("421 Misdirected Request"), + ngx_null_string, /* "422 Unprocessable Entity" */ + ngx_null_string, /* "423 Locked" */ + ngx_null_string, /* "424 Failed Dependency" */ + ngx_null_string, /* "425 unused" */ + ngx_null_string, /* "426 Upgrade Required" */ + ngx_null_string, /* "427 unused" */ + ngx_null_string, /* "428 Precondition Required" */ + ngx_string("429 Too Many Requests"), - /* ngx_null_string, */ /* "422 Unprocessable Entity" */ - /* ngx_null_string, */ /* "423 Locked" */ - /* ngx_null_string, */ /* "424 Failed Dependency" */ - -#define NGX_HTTP_LAST_4XX 422 +#define NGX_HTTP_LAST_4XX 430 #define NGX_HTTP_OFF_5XX (NGX_HTTP_LAST_4XX - 400 + NGX_HTTP_OFF_4XX) ngx_string("500 Internal Server Error"), diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/ngx_http_request.h --- a/src/http/ngx_http_request.h +++ b/src/http/ngx_http_request.h @@ -96,6 +96,7 @@ #define NGX_HTTP_UNSUPPORTED_MEDIA_TYPE 415 #define NGX_HTTP_RANGE_NOT_SATISFIABLE 416 #define NGX_HTTP_MISDIRECTED_REQUEST 421 +#define NGX_HTTP_TOO_MANY_REQUESTS 429 /* Our own HTTP codes */ diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/ngx_http_special_response.c --- a/src/http/ngx_http_special_response.c +++ b/src/http/ngx_http_special_response.c @@ -218,6 +218,14 @@ static char ngx_http_error_421_page[] = ; +static char ngx_http_error_429_page[] = +"<html>" CRLF +"<head><title>429 Too Many Requests</title></head>" CRLF +"<body bgcolor=\"white\">" CRLF +"<center><h1>429 Too Many Requests</h1></center>" CRLF +; + + static char ngx_http_error_494_page[] = "<html>" CRLF "<head><title>400 Request Header Or Cookie Too Large</title></head>" @@ -347,8 +355,16 @@ static ngx_str_t ngx_http_error_pages[] ngx_null_string, /* 419 */ ngx_null_string, /* 420 */ ngx_string(ngx_http_error_421_page), + ngx_null_string, /* 422 */ + ngx_null_string, /* 423 */ + ngx_null_string, /* 424 */ + ngx_null_string, /* 425 */ + ngx_null_string, /* 426 */ + ngx_null_string, /* 427 */ + ngx_null_string, /* 428 */ + ngx_string(ngx_http_error_429_page), -#define NGX_HTTP_LAST_4XX 422 +#define NGX_HTTP_LAST_4XX 430 #define NGX_HTTP_OFF_5XX (NGX_HTTP_LAST_4XX - 400 + NGX_HTTP_OFF_4XX) ngx_string(ngx_http_error_494_page), /* 494, request header too large */ diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/ngx_http_upstream.c --- a/src/http/ngx_http_upstream.c +++ b/src/http/ngx_http_upstream.c @@ -422,6 +422,7 @@ static ngx_http_upstream_next_t ngx_htt { 504, NGX_HTTP_UPSTREAM_FT_HTTP_504 }, { 403, NGX_HTTP_UPSTREAM_FT_HTTP_403 }, { 404, NGX_HTTP_UPSTREAM_FT_HTTP_404 }, + { 429, NGX_HTTP_UPSTREAM_FT_HTTP_429 }, { 0, 0 } }; @@ -3951,7 +3952,8 @@ ngx_http_upstream_next(ngx_http_request_ if (u->peer.sockaddr) { if (ft_type == NGX_HTTP_UPSTREAM_FT_HTTP_403 - || ft_type == NGX_HTTP_UPSTREAM_FT_HTTP_404) + || ft_type == NGX_HTTP_UPSTREAM_FT_HTTP_404 + || ft_type == NGX_HTTP_UPSTREAM_FT_HTTP_429) { state = NGX_PEER_NEXT; @@ -3991,6 +3993,10 @@ ngx_http_upstream_next(ngx_http_request_ status = NGX_HTTP_NOT_FOUND; break; + case NGX_HTTP_UPSTREAM_FT_HTTP_429: + status = NGX_HTTP_TOO_MANY_REQUESTS; + break; + /* * NGX_HTTP_UPSTREAM_FT_BUSY_LOCK and NGX_HTTP_UPSTREAM_FT_MAX_WAITING * never reach here diff -r 8081e1f3ab8b -r 1eec5355ef1e src/http/ngx_http_upstream.h --- a/src/http/ngx_http_upstream.h +++ b/src/http/ngx_http_upstream.h @@ -26,10 +26,11 @@ #define NGX_HTTP_UPSTREAM_FT_HTTP_504 0x00000080 #define NGX_HTTP_UPSTREAM_FT_HTTP_403 0x00000100 #define NGX_HTTP_UPSTREAM_FT_HTTP_404 0x00000200 -#define NGX_HTTP_UPSTREAM_FT_UPDATING 0x00000400 -#define NGX_HTTP_UPSTREAM_FT_BUSY_LOCK 0x00000800 -#define NGX_HTTP_UPSTREAM_FT_MAX_WAITING 0x00001000 -#define NGX_HTTP_UPSTREAM_FT_NON_IDEMPOTENT 0x00002000 +#define NGX_HTTP_UPSTREAM_FT_HTTP_429 0x00000400 +#define NGX_HTTP_UPSTREAM_FT_UPDATING 0x00000800 +#define NGX_HTTP_UPSTREAM_FT_BUSY_LOCK 0x00001000 +#define NGX_HTTP_UPSTREAM_FT_MAX_WAITING 0x00002000 +#define NGX_HTTP_UPSTREAM_FT_NON_IDEMPOTENT 0x00004000 #define NGX_HTTP_UPSTREAM_FT_NOLIVE 0x40000000 #define NGX_HTTP_UPSTREAM_FT_OFF 0x80000000 @@ -38,7 +39,8 @@ |NGX_HTTP_UPSTREAM_FT_HTTP_503 \ |NGX_HTTP_UPSTREAM_FT_HTTP_504 \ |NGX_HTTP_UPSTREAM_FT_HTTP_403 \ - |NGX_HTTP_UPSTREAM_FT_HTTP_404) + |NGX_HTTP_UPSTREAM_FT_HTTP_404 \ + |NGX_HTTP_UPSTREAM_FT_HTTP_429) #define NGX_HTTP_UPSTREAM_INVALID_HEADER 40

5 years, 8 months

Fixing ngx_http_slice_module use with named locations

by Mindaugas Rasiukevicius

Hi, There is a problem with ngx_http_slice_module when it is used together with an internal redirection to a named location. It results in Nginx workers caching incorrect content and spinning in an infinite loop. Consider the following fragment: location /foo { error_page 550 = @bar; return 550; } location @bar { slice ...; proxy_pass ...; proxy_cache ...; ... } In ngx_http_slice_body_filter(), the slice context is associated with the subrequest: ngx_http_set_ctx(sr, ctx, ngx_http_slice_filter_module); However, the location re-match is triggered for the subrequests trying to fetch each slice. In the ngx_http_named_location() function: /* clear the modules contexts */ ngx_memzero(r->ctx, sizeof(void *) * ngx_http_max_module); So, the slice context gets lost. There are several ways to fix this. Unless you want an API to preserve the context, one simple fix would be to get the context via r->parent (if ctx == NULL && r != r->main). What would be the preferred way to fix this? Thanks. -- Mindaugas

5 years, 9 months

[PATCH] HTTP: NGINX_VER_BUILD in Server header and error page tail.

by Tom Thorogood

Hi, This patch adds a build option to the server_tokens directive. When build is specified the Server header will have a value of NGINX_VER_BUILD. Also the tail of built in error pages will be NGINX_VER_BUILD. off and on are retained as valid values and behave as they always have. This makes it possible to specify semi-custom server tokens of the form "nginx/<version> (<value>)". <value> is specified with the --build flag for ./configure. A potential use case is including the name of a custom build for example with --build="super-nginx/0.1". This would give: nginx/1.9.15 (super-nginx/0.1). Another potential use case of this feature is to include the git revision of a parent build with --build="`git rev-parse --short HEAD`". This would give: nginx/1.9.15 (c3ebabd). In that case the feature can be used to enhance troubleshooting and/or provide more information to end users. Kind Regards, Tom Thorogood.

5 years, 9 months

[PATCH] Proxy: make timeout directives accept variables

by Thibault Charbonnier

Hello! This is a proposal to allow for better granularity (eventually, on a per-request basis?) regarding the proxy_*_timeout directives. Please let me know how you feel about such a feature, and if you think this patch should be implemented in a different way. Thanks! # HG changeset patch # User Thibault Charbonnier <thibaultcha(a)fastmail.com> # Date 1485823618 28800 # Mon Jan 30 16:46:58 2017 -0800 # Branch proxy/variables-in-timeouts # Node ID 9f27c1d40590566ae5ac55e04af473d5f8e97d87 # Parent 640f035293959b2d4b0ba5939d954bc517f57f77 Proxy: make timeout directives accept variables We try to stay as close as possible from the original behavior regarding the parsing of the ngx_msec_t fields, to preserve the proper parsing error logs. As long as the timeout directives do not contain a variable, the behavior is identical as prior to this patch. If a timeout directive contains a variable, we consider such variable to contain the related timeout in ms precision. diff -r 640f03529395 -r 9f27c1d40590 src/http/modules/ngx_http_proxy_module.c --- a/src/http/modules/ngx_http_proxy_module.c Fri Jan 27 19:06:35 2017 +0300 +++ b/src/http/modules/ngx_http_proxy_module.c Mon Jan 30 16:46:58 2017 -0800 @@ -45,6 +45,16 @@ typedef struct { + ngx_uint_t complex; + + union { + ngx_msec_t simple; + ngx_http_complex_value_t *complex; + } value; +} ngx_http_proxy_timeout_t; + + +typedef struct { ngx_array_t *flushes; ngx_array_t *lengths; ngx_array_t *values; @@ -77,6 +87,10 @@ ngx_str_t location; ngx_str_t url; + ngx_http_proxy_timeout_t *connect_timeout; + ngx_http_proxy_timeout_t *send_timeout; + ngx_http_proxy_timeout_t *read_timeout; + #if (NGX_HTTP_CACHE) ngx_http_complex_value_t cache_key; #endif @@ -171,6 +185,8 @@ static ngx_int_t ngx_http_proxy_init_headers(ngx_conf_t *cf, ngx_http_proxy_loc_conf_t *conf, ngx_http_proxy_headers_t *headers, ngx_keyval_t *default_headers); +static ngx_int_t ngx_http_proxy_compile_timeout(ngx_http_request_t *r, + ngx_http_complex_value_t *c_timeout, ngx_msec_t *u_timeout); static char *ngx_http_proxy_pass(ngx_conf_t *cf, ngx_command_t *cmd, void *conf); @@ -182,6 +198,8 @@ void *conf); static char *ngx_http_proxy_store(ngx_conf_t *cf, ngx_command_t *cmd, void *conf); +static char * ngx_http_proxy_timeout(ngx_conf_t *cf, ngx_command_t *cmd, + void *conf); #if (NGX_HTTP_CACHE) static char *ngx_http_proxy_cache(ngx_conf_t *cf, ngx_command_t *cmd, void *conf); @@ -324,16 +342,16 @@ { ngx_string("proxy_connect_timeout"), NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_CONF_TAKE1, - ngx_conf_set_msec_slot, + ngx_http_proxy_timeout, NGX_HTTP_LOC_CONF_OFFSET, - offsetof(ngx_http_proxy_loc_conf_t, upstream.connect_timeout), + offsetof(ngx_http_proxy_loc_conf_t, connect_timeout), NULL }, { ngx_string("proxy_send_timeout"), NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_CONF_TAKE1, - ngx_conf_set_msec_slot, + ngx_http_proxy_timeout, NGX_HTTP_LOC_CONF_OFFSET, - offsetof(ngx_http_proxy_loc_conf_t, upstream.send_timeout), + offsetof(ngx_http_proxy_loc_conf_t, send_timeout), NULL }, { ngx_string("proxy_send_lowat"), @@ -408,9 +426,9 @@ { ngx_string("proxy_read_timeout"), NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_CONF_TAKE1, - ngx_conf_set_msec_slot, + ngx_http_proxy_timeout, NGX_HTTP_LOC_CONF_OFFSET, - offsetof(ngx_http_proxy_loc_conf_t, upstream.read_timeout), + offsetof(ngx_http_proxy_loc_conf_t, read_timeout), NULL }, { ngx_string("proxy_buffers"), @@ -829,6 +847,11 @@ }; +static ngx_http_proxy_timeout_t ngx_http_proxy_default_timeout = { + 0, { 60000 } +}; + + static ngx_int_t ngx_http_proxy_handler(ngx_http_request_t *r) { @@ -1137,6 +1160,7 @@ size_t len, uri_len, loc_len, body_len; uintptr_t escape; ngx_buf_t *b; + ngx_int_t rc; ngx_str_t method; ngx_uint_t i, unparsed_uri; ngx_chain_t *cl, *body; @@ -1160,6 +1184,33 @@ headers = &plcf->headers; #endif + if (plcf->connect_timeout->complex) { + rc = ngx_http_proxy_compile_timeout(r, + plcf->connect_timeout->value.complex, + &u->conf->connect_timeout); + if (rc != NGX_OK) { + return rc; + } + } + + if (plcf->send_timeout->complex) { + rc = ngx_http_proxy_compile_timeout(r, + plcf->send_timeout->value.complex, + &u->conf->send_timeout); + if (rc != NGX_OK) { + return rc; + } + } + + if (plcf->read_timeout->complex) { + rc = ngx_http_proxy_compile_timeout(r, + plcf->read_timeout->value.complex, + &u->conf->read_timeout); + if (rc != NGX_OK) { + return rc; + } + } + if (u->method.len) { /* HEAD was changed to GET to cache response */ method = u->method; @@ -2805,6 +2856,9 @@ * conf->upstream.ssl_name = NULL; * * conf->method = NULL; + * conf->connect_timeout = NULL; + * conf->send_timeout = NULL; + * conf->read_timeout = NULL; * conf->headers_source = NULL; * conf->headers.lengths = NULL; * conf->headers.values = NULL; @@ -2953,14 +3007,35 @@ ngx_conf_merge_ptr_value(conf->upstream.local, prev->upstream.local, NULL); - ngx_conf_merge_msec_value(conf->upstream.connect_timeout, - prev->upstream.connect_timeout, 60000); - - ngx_conf_merge_msec_value(conf->upstream.send_timeout, - prev->upstream.send_timeout, 60000); - - ngx_conf_merge_msec_value(conf->upstream.read_timeout, - prev->upstream.read_timeout, 60000); + if (conf->connect_timeout == NULL) { + conf->connect_timeout = (prev->connect_timeout != NULL) + ? prev->connect_timeout + : &ngx_http_proxy_default_timeout; + } + + if (!conf->connect_timeout->complex) { + conf->upstream.connect_timeout = conf->connect_timeout->value.simple; + } + + if (conf->send_timeout == NULL) { + conf->send_timeout = (prev->send_timeout != NULL) + ? prev->send_timeout + : &ngx_http_proxy_default_timeout; + } + + if (!conf->send_timeout->complex) { + conf->upstream.send_timeout = conf->send_timeout->value.simple; + } + + if (conf->read_timeout == NULL) { + conf->read_timeout = (prev->read_timeout != NULL) + ? prev->read_timeout + : &ngx_http_proxy_default_timeout; + } + + if (!conf->read_timeout->complex) { + conf->upstream.read_timeout = conf->read_timeout->value.simple; + } ngx_conf_merge_msec_value(conf->upstream.next_upstream_timeout, prev->upstream.next_upstream_timeout, 0); @@ -3746,6 +3821,61 @@ static char * +ngx_http_proxy_timeout(ngx_conf_t *cf, ngx_command_t *cmd, void *conf) +{ + char *p = conf; + + ngx_msec_t msp; + ngx_str_t *value; + ngx_http_proxy_timeout_t **t; + ngx_http_complex_value_t *cv; + ngx_http_compile_complex_value_t ccv; + + t = (ngx_http_proxy_timeout_t **) (p + cmd->offset); + if (*t != NULL) { + return "is duplicate"; + } + + *t = ngx_palloc(cf->pool, sizeof(ngx_http_proxy_timeout_t)); + if (*t == NULL) { + return NGX_CONF_ERROR; + } + + value = cf->args->elts; + + if (ngx_http_script_variables_count(&value[1]) > 0) { + cv = ngx_palloc(cf->pool, sizeof(ngx_http_complex_value_t)); + if (cv == NULL) { + return NGX_CONF_ERROR; + } + + ngx_memzero(&ccv, sizeof(ngx_http_compile_complex_value_t)); + + ccv.cf = cf; + ccv.value = &value[1]; + ccv.complex_value = cv; + + if (ngx_http_compile_complex_value(&ccv) != NGX_OK) { + return NGX_CONF_ERROR; + } + + (*t)->complex = 1; + (*t)->value.complex = cv; + + } else { + msp = ngx_parse_time(&value[1], 0); + if (msp == (ngx_msec_t) NGX_ERROR) { + return "invalid value"; + } + + (*t)->value.simple = msp; + } + + return NGX_CONF_OK; +} + + +static char * ngx_http_proxy_redirect(ngx_conf_t *cf, ngx_command_t *cmd, void *conf) { ngx_http_proxy_loc_conf_t *plcf = conf; @@ -4410,3 +4540,29 @@ v->uri = u->uri; } + + +static ngx_int_t +ngx_http_proxy_compile_timeout(ngx_http_request_t *r, + ngx_http_complex_value_t *c_timeout, ngx_msec_t *u_timeout) +{ + ngx_str_t timeout; + ngx_msec_t msp; + + if (ngx_http_complex_value(r, c_timeout, &timeout) != NGX_OK) { + ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, + "could not compile timeout value"); + return NGX_ERROR; + } + + msp = ngx_atoi(timeout.data, timeout.len); + if (msp == (ngx_msec_t) NGX_ERROR) { + ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, + "invalid timeout value: \"%V\"", &timeout); + return NGX_ERROR; + } + + *u_timeout = msp; + + return NGX_OK; +}

5 years, 10 months

[PATCH] SSI: Implement #fsize SSI command

by Matwey V. Kornilov

# HG changeset patch # User Matwey V. Kornilov <matwey.kornilov(a)gmail.com> # Date 1485600652 -10800 # Sat Jan 28 13:50:52 2017 +0300 # Branch fsize # Node ID f3bb0258beb24b975b94966a94d45e9a9f5c3c39 # Parent 640f035293959b2d4b0ba5939d954bc517f57f77 SSI: Implement #fsize SSI command diff -r 640f03529395 -r f3bb0258beb2 src/http/modules/ngx_http_ssi_filter_module.c --- a/src/http/modules/ngx_http_ssi_filter_module.c Fri Jan 27 19:06:35 2017 +0300 +++ b/src/http/modules/ngx_http_ssi_filter_module.c Sat Jan 28 13:50:52 2017 +0300 @@ -89,6 +89,10 @@ ngx_int_t rc); static ngx_int_t ngx_http_ssi_set_variable(ngx_http_request_t *r, void *data, ngx_int_t rc); +static ngx_int_t ngx_http_ssi_fsize(ngx_http_request_t *r, + ngx_http_ssi_ctx_t *ctx, ngx_str_t **params); +static ngx_int_t ngx_http_ssi_fsize_output(ngx_http_request_t *r, void *data, + ngx_int_t rc); static ngx_int_t ngx_http_ssi_echo(ngx_http_request_t *r, ngx_http_ssi_ctx_t *ctx, ngx_str_t **params); static ngx_int_t ngx_http_ssi_config(ngx_http_request_t *r, @@ -211,6 +215,7 @@ static u_char ngx_http_ssi_string[] = "<!--"; +static u_char ngx_http_ssi_si_prefix[] = " kMGTPEZY"; static ngx_str_t ngx_http_ssi_none = ngx_string("(none)"); static ngx_str_t ngx_http_ssi_timefmt = ngx_string("%A, %d-%b-%Y %H:%M:%S %Z"); @@ -223,12 +228,16 @@ #define NGX_HTTP_SSI_INCLUDE_SET 3 #define NGX_HTTP_SSI_INCLUDE_STUB 4 +#define NGX_HTTP_SSI_FSIZE_VIRTUAL 0 +#define NGX_HTTP_SSI_FSIZE_FILE 1 + #define NGX_HTTP_SSI_ECHO_VAR 0 #define NGX_HTTP_SSI_ECHO_DEFAULT 1 #define NGX_HTTP_SSI_ECHO_ENCODING 2 #define NGX_HTTP_SSI_CONFIG_ERRMSG 0 #define NGX_HTTP_SSI_CONFIG_TIMEFMT 1 +#define NGX_HTTP_SSI_CONFIG_SIZEFMT 2 #define NGX_HTTP_SSI_SET_VAR 0 #define NGX_HTTP_SSI_SET_VALUE 1 @@ -248,6 +257,13 @@ }; +static ngx_http_ssi_param_t ngx_http_ssi_fsize_params[] = { + { ngx_string("virtual"), NGX_HTTP_SSI_FSIZE_VIRTUAL, 0, 0 }, + { ngx_string("file"), NGX_HTTP_SSI_FSIZE_FILE, 0, 0 }, + { ngx_null_string, 0, 0, 0 } +}; + + static ngx_http_ssi_param_t ngx_http_ssi_echo_params[] = { { ngx_string("var"), NGX_HTTP_SSI_ECHO_VAR, 1, 0 }, { ngx_string("default"), NGX_HTTP_SSI_ECHO_DEFAULT, 0, 0 }, @@ -259,6 +275,7 @@ static ngx_http_ssi_param_t ngx_http_ssi_config_params[] = { { ngx_string("errmsg"), NGX_HTTP_SSI_CONFIG_ERRMSG, 0, 0 }, { ngx_string("timefmt"), NGX_HTTP_SSI_CONFIG_TIMEFMT, 0, 0 }, + { ngx_string("sizefmt"), NGX_HTTP_SSI_CONFIG_SIZEFMT, 0, 0 }, { ngx_null_string, 0, 0, 0 } }; @@ -290,6 +307,8 @@ static ngx_http_ssi_command_t ngx_http_ssi_commands[] = { { ngx_string("include"), ngx_http_ssi_include, ngx_http_ssi_include_params, 0, 0, 1 }, + { ngx_string("fsize"), ngx_http_ssi_fsize, + ngx_http_ssi_fsize_params, 0, 0, 1 }, { ngx_string("echo"), ngx_http_ssi_echo, ngx_http_ssi_echo_params, 0, 0, 0 }, { ngx_string("config"), ngx_http_ssi_config, @@ -2239,6 +2258,116 @@ return rc; } +static ngx_int_t ngx_http_ssi_fsize(ngx_http_request_t *r, + ngx_http_ssi_ctx_t *ctx, ngx_str_t **params) +{ + ngx_int_t rc; + ngx_str_t *uri, *file, args; + ngx_uint_t flags; + ngx_http_request_t *sr; + ngx_http_post_subrequest_t *psr; + + uri = params[NGX_HTTP_SSI_FSIZE_VIRTUAL]; + file = params[NGX_HTTP_SSI_FSIZE_FILE]; + + if (uri && file) { + ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, + "fsize may be either virtual=\"%V\" or file=\"%V\"", + uri, file); + return NGX_HTTP_SSI_ERROR; + } + + if (uri == NULL && file == NULL) { + ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, + "no parameter in \"fsize\" SSI command"); + return NGX_HTTP_SSI_ERROR; + } + + if (uri == NULL) { + uri = file; + } + + rc = ngx_http_ssi_evaluate_string(r, ctx, uri, NGX_HTTP_SSI_ADD_PREFIX); + + if (rc != NGX_OK) { + return rc; + } + + ngx_log_debug1(NGX_LOG_DEBUG_HTTP, r->connection->log, 0, + "ssi fsize: \"%V\"", uri); + + ngx_str_null(&args); + flags = NGX_HTTP_LOG_UNSAFE; + + if (ngx_http_parse_unsafe_uri(r, uri, &args, &flags) != NGX_OK) { + return NGX_HTTP_SSI_ERROR; + } + + psr = ngx_palloc(r->pool, sizeof(ngx_http_post_subrequest_t)); + if (psr == NULL) { + return NGX_ERROR; + } + + psr->handler = ngx_http_ssi_fsize_output; + psr->data = ctx; + + if (ngx_http_subrequest(r, uri, &args, &sr, psr, flags) != NGX_OK) { + return NGX_HTTP_SSI_ERROR; + } + sr->header_only = 1; + + return NGX_OK; +} + + +static ngx_int_t ngx_http_ssi_fsize_output(ngx_http_request_t *r, void *data, + ngx_int_t rc) +{ + ngx_chain_t *out; + ngx_buf_t *b; + u_char *p; + size_t len, i; + ngx_http_ssi_ctx_t *ctx; + unsigned sizefmt_bytes; + + ctx = data; + sizefmt_bytes = (ctx ? ctx->sizefmt_bytes : 0); + + p = ngx_pnalloc(r->pool, NGX_OFF_T_LEN + 1); + if (p == NULL) { + return NGX_ERROR; + } + + len = ngx_sprintf(p, "%O", r->headers_out.content_length_n) - p; + + if (!sizefmt_bytes) { + i = len / 3; + len = len % 3; + + p[len] = ngx_http_ssi_si_prefix[i]; + len++; + } + + b = ngx_calloc_buf(r->pool); + if (b == NULL) { + return NGX_ERROR; + } + + b->memory = 1; + b->pos = p; + b->last = p + len; + + out= ngx_alloc_chain_link(r->pool); + if (out == NULL) { + return NGX_ERROR; + } + + out->buf = b; + out->next = NULL; + + return ngx_http_output_filter(r, out); +} + static ngx_int_t ngx_http_ssi_echo(ngx_http_request_t *r, ngx_http_ssi_ctx_t *ctx, @@ -2400,6 +2529,22 @@ ctx->errmsg = *value; } + value = params[NGX_HTTP_SSI_CONFIG_SIZEFMT]; + + if (value) { + if (value->len == 5 + && ngx_strncasecmp(value->data, (u_char*)"bytes", 5) == 0) { + ctx->sizefmt_bytes = 1; + } else if (value->len == 6 + && ngx_strncasecmp(value->data, (u_char*)"abbrev", 6) == 0) { + ctx->sizefmt_bytes = 0; + } else { + ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, + "#config sizefmt may be either \"bytes\" or \"abbrev\""); + return NGX_HTTP_SSI_ERROR; + } + } + return NGX_OK; } diff -r 640f03529395 -r f3bb0258beb2 src/http/modules/ngx_http_ssi_filter_module.h --- a/src/http/modules/ngx_http_ssi_filter_module.h Fri Jan 27 19:06:35 2017 +0300 +++ b/src/http/modules/ngx_http_ssi_filter_module.h Sat Jan 28 13:50:52 2017 +0300 @@ -76,6 +76,7 @@ unsigned block:1; unsigned output:1; unsigned output_chosen:1; + unsigned sizefmt_bytes:1; ngx_http_request_t *wait; void *value_buf;

5 years, 10 months

[nginx] Variables: generic prefix variables.

by Dmitry Volyntsev

details: http://hg.nginx.org/nginx/rev/d2b2ff157da5 branches: changeset: 6899:d2b2ff157da5 user: Dmitry Volyntsev <xeioex(a)nginx.com> date: Tue Jan 31 21:19:58 2017 +0300 description: Variables: generic prefix variables. diffstat: src/http/modules/ngx_http_rewrite_module.c | 13 +- src/http/ngx_http_core_module.h | 3 +- src/http/ngx_http_upstream.c | 14 +- src/http/ngx_http_upstream.h | 5 - src/http/ngx_http_variables.c | 250 ++++++++++++++-------------- src/http/ngx_http_variables.h | 2 + src/stream/ngx_stream.h | 3 +- src/stream/ngx_stream_variables.c | 146 ++++++++++++++-- src/stream/ngx_stream_variables.h | 2 + 9 files changed, 271 insertions(+), 167 deletions(-) diffs (747 lines): diff -r 25203fc377fb -r d2b2ff157da5 src/http/modules/ngx_http_rewrite_module.c --- a/src/http/modules/ngx_http_rewrite_module.c Tue Jan 31 12:09:40 2017 +0300 +++ b/src/http/modules/ngx_http_rewrite_module.c Tue Jan 31 21:19:58 2017 +0300 @@ -917,7 +917,8 @@ ngx_http_rewrite_set(ngx_conf_t *cf, ngx value[1].len--; value[1].data++; - v = ngx_http_add_variable(cf, &value[1], NGX_HTTP_VAR_CHANGEABLE); + v = ngx_http_add_variable(cf, &value[1], + NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_WEAK); if (v == NULL) { return NGX_CONF_ERROR; } @@ -927,15 +928,7 @@ ngx_http_rewrite_set(ngx_conf_t *cf, ngx return NGX_CONF_ERROR; } - if (v->get_handler == NULL - && ngx_strncasecmp(value[1].data, (u_char *) "http_", 5) != 0 - && ngx_strncasecmp(value[1].data, (u_char *) "sent_http_", 10) != 0 - && ngx_strncasecmp(value[1].data, (u_char *) "upstream_http_", 14) != 0 - && ngx_strncasecmp(value[1].data, (u_char *) "cookie_", 7) != 0 - && ngx_strncasecmp(value[1].data, (u_char *) "upstream_cookie_", 16) - != 0 - && ngx_strncasecmp(value[1].data, (u_char *) "arg_", 4) != 0) - { + if (v->get_handler == NULL) { v->get_handler = ngx_http_rewrite_var; v->data = index; } diff -r 25203fc377fb -r d2b2ff157da5 src/http/ngx_http_core_module.h --- a/src/http/ngx_http_core_module.h Tue Jan 31 12:09:40 2017 +0300 +++ b/src/http/ngx_http_core_module.h Tue Jan 31 21:19:58 2017 +0300 @@ -158,7 +158,8 @@ typedef struct { ngx_hash_t variables_hash; - ngx_array_t variables; /* ngx_http_variable_t */ + ngx_array_t variables; /* ngx_http_variable_t */ + ngx_array_t prefix_variables; /* ngx_http_variable_t */ ngx_uint_t ncaptures; ngx_uint_t server_names_hash_max_size; diff -r 25203fc377fb -r d2b2ff157da5 src/http/ngx_http_upstream.c --- a/src/http/ngx_http_upstream.c Tue Jan 31 12:09:40 2017 +0300 +++ b/src/http/ngx_http_upstream.c Tue Jan 31 21:19:58 2017 +0300 @@ -162,6 +162,10 @@ static ngx_int_t ngx_http_upstream_respo ngx_http_variable_value_t *v, uintptr_t data); static ngx_int_t ngx_http_upstream_response_length_variable( ngx_http_request_t *r, ngx_http_variable_value_t *v, uintptr_t data); +static ngx_int_t ngx_http_upstream_header_variable(ngx_http_request_t *r, + ngx_http_variable_value_t *v, uintptr_t data); +static ngx_int_t ngx_http_upstream_cookie_variable(ngx_http_request_t *r, + ngx_http_variable_value_t *v, uintptr_t data); static char *ngx_http_upstream(ngx_conf_t *cf, ngx_command_t *cmd, void *dummy); static char *ngx_http_upstream_server(ngx_conf_t *cf, ngx_command_t *cmd, @@ -413,6 +417,12 @@ static ngx_http_variable_t ngx_http_ups #endif + { ngx_string("upstream_http_"), NULL, ngx_http_upstream_header_variable, + 0, NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_PREFIX, 0 }, + + { ngx_string("upstream_cookie_"), NULL, ngx_http_upstream_cookie_variable, + 0, NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_PREFIX, 0 }, + { ngx_null_string, NULL, NULL, 0, 0, 0 } }; @@ -5391,7 +5401,7 @@ ngx_http_upstream_response_length_variab } -ngx_int_t +static ngx_int_t ngx_http_upstream_header_variable(ngx_http_request_t *r, ngx_http_variable_value_t *v, uintptr_t data) { @@ -5406,7 +5416,7 @@ ngx_http_upstream_header_variable(ngx_ht } -ngx_int_t +static ngx_int_t ngx_http_upstream_cookie_variable(ngx_http_request_t *r, ngx_http_variable_value_t *v, uintptr_t data) { diff -r 25203fc377fb -r d2b2ff157da5 src/http/ngx_http_upstream.h --- a/src/http/ngx_http_upstream.h Tue Jan 31 12:09:40 2017 +0300 +++ b/src/http/ngx_http_upstream.h Tue Jan 31 21:19:58 2017 +0300 @@ -402,11 +402,6 @@ typedef struct { } ngx_http_upstream_param_t; -ngx_int_t ngx_http_upstream_cookie_variable(ngx_http_request_t *r, - ngx_http_variable_value_t *v, uintptr_t data); -ngx_int_t ngx_http_upstream_header_variable(ngx_http_request_t *r, - ngx_http_variable_value_t *v, uintptr_t data); - ngx_int_t ngx_http_upstream_create(ngx_http_request_t *r); void ngx_http_upstream_init(ngx_http_request_t *r); ngx_http_upstream_srv_conf_t *ngx_http_upstream_add(ngx_conf_t *cf, diff -r 25203fc377fb -r d2b2ff157da5 src/http/ngx_http_variables.c --- a/src/http/ngx_http_variables.c Tue Jan 31 12:09:40 2017 +0300 +++ b/src/http/ngx_http_variables.c Tue Jan 31 21:19:58 2017 +0300 @@ -11,6 +11,9 @@ #include <nginx.h> +static ngx_http_variable_t *ngx_http_add_prefix_variable(ngx_conf_t *cf, + ngx_str_t *name, ngx_uint_t flags); + static ngx_int_t ngx_http_variable_request(ngx_http_request_t *r, ngx_http_variable_value_t *v, uintptr_t data); #if 0 @@ -356,6 +359,18 @@ static ngx_http_variable_t ngx_http_cor 3, NGX_HTTP_VAR_NOCACHEABLE, 0 }, #endif + { ngx_string("http_"), NULL, ngx_http_variable_unknown_header_in, + 0, NGX_HTTP_VAR_PREFIX, 0 }, + + { ngx_string("sent_http_"), NULL, ngx_http_variable_unknown_header_out, + 0, NGX_HTTP_VAR_PREFIX, 0 }, + + { ngx_string("cookie_"), NULL, ngx_http_variable_cookie, + 0, NGX_HTTP_VAR_PREFIX, 0 }, + + { ngx_string("arg_"), NULL, ngx_http_variable_argument, + 0, NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_PREFIX, 0 }, + { ngx_null_string, NULL, NULL, 0, 0, 0 } }; @@ -384,6 +399,10 @@ ngx_http_add_variable(ngx_conf_t *cf, ng return NULL; } + if (flags & NGX_HTTP_VAR_PREFIX) { + return ngx_http_add_prefix_variable(cf, name, flags); + } + cmcf = ngx_http_conf_get_module_main_conf(cf, ngx_http_core_module); key = cmcf->variables_keys->keys.elts; @@ -402,6 +421,8 @@ ngx_http_add_variable(ngx_conf_t *cf, ng return NULL; } + v->flags &= flags | ~NGX_HTTP_VAR_WEAK; + return v; } @@ -440,6 +461,59 @@ ngx_http_add_variable(ngx_conf_t *cf, ng } +static ngx_http_variable_t * +ngx_http_add_prefix_variable(ngx_conf_t *cf, ngx_str_t *name, ngx_uint_t flags) +{ + ngx_uint_t i; + ngx_http_variable_t *v; + ngx_http_core_main_conf_t *cmcf; + + cmcf = ngx_http_conf_get_module_main_conf(cf, ngx_http_core_module); + + v = cmcf->prefix_variables.elts; + for (i = 0; i < cmcf->prefix_variables.nelts; i++) { + if (name->len != v[i].name.len + || ngx_strncasecmp(name->data, v[i].name.data, name->len) != 0) + { + continue; + } + + v = &v[i]; + + if (!(v->flags & NGX_HTTP_VAR_CHANGEABLE)) { + ngx_conf_log_error(NGX_LOG_EMERG, cf, 0, + "the duplicate \"%V\" variable", name); + return NULL; + } + + v->flags &= flags | ~NGX_HTTP_VAR_WEAK; + + return v; + } + + v = ngx_array_push(&cmcf->prefix_variables); + if (v == NULL) { + return NULL; + } + + v->name.len = name->len; + v->name.data = ngx_pnalloc(cf->pool, name->len); + if (v->name.data == NULL) { + return NULL; + } + + ngx_strlow(v->name.data, name->data, name->len); + + v->set_handler = NULL; + v->get_handler = NULL; + v->data = 0; + v->flags = flags; + v->index = 0; + + return v; +} + + ngx_int_t ngx_http_get_variable_index(ngx_conf_t *cf, ngx_str_t *name) { @@ -573,6 +647,8 @@ ngx_http_get_flushed_variable(ngx_http_r ngx_http_variable_value_t * ngx_http_get_variable(ngx_http_request_t *r, ngx_str_t *name, ngx_uint_t key) { + size_t len; + ngx_uint_t i, n; ngx_http_variable_t *v; ngx_http_variable_value_t *vv; ngx_http_core_main_conf_t *cmcf; @@ -610,64 +686,22 @@ ngx_http_get_variable(ngx_http_request_t return NULL; } - if (name->len >= 5 && ngx_strncmp(name->data, "http_", 5) == 0) { - - if (ngx_http_variable_unknown_header_in(r, vv, (uintptr_t) name) - == NGX_OK) + len = 0; + + v = cmcf->prefix_variables.elts; + n = cmcf->prefix_variables.nelts; + + for (i = 0; i < cmcf->prefix_variables.nelts; i++) { + if (name->len >= v[i].name.len && name->len > len + && ngx_strncmp(name->data, v[i].name.data, v[i].name.len) == 0) { - return vv; - } - - return NULL; - } - - if (name->len >= 10 && ngx_strncmp(name->data, "sent_http_", 10) == 0) { - - if (ngx_http_variable_unknown_header_out(r, vv, (uintptr_t) name) - == NGX_OK) - { - return vv; - } - - return NULL; - } - - if (name->len >= 14 && ngx_strncmp(name->data, "upstream_http_", 14) == 0) { - - if (ngx_http_upstream_header_variable(r, vv, (uintptr_t) name) - == NGX_OK) - { - return vv; + len = v[i].name.len; + n = i; } - - return NULL; - } - - if (name->len >= 7 && ngx_strncmp(name->data, "cookie_", 7) == 0) { - - if (ngx_http_variable_cookie(r, vv, (uintptr_t) name) == NGX_OK) { - return vv; - } - - return NULL; } - if (name->len >= 16 - && ngx_strncmp(name->data, "upstream_cookie_", 16) == 0) - { - - if (ngx_http_upstream_cookie_variable(r, vv, (uintptr_t) name) - == NGX_OK) - { - return vv; - } - - return NULL; - } - - if (name->len >= 4 && ngx_strncmp(name->data, "arg_", 4) == 0) { - - if (ngx_http_variable_argument(r, vv, (uintptr_t) name) == NGX_OK) { + if (n != cmcf->prefix_variables.nelts) { + if (v[n].get_handler(r, vv, (uintptr_t) name) == NGX_OK) { return vv; } @@ -2502,7 +2536,6 @@ ngx_http_regex_exec(ngx_http_request_t * ngx_int_t ngx_http_variables_add_core_vars(ngx_conf_t *cf) { - ngx_int_t rc; ngx_http_variable_t *cv, *v; ngx_http_core_main_conf_t *cmcf; @@ -2523,27 +2556,20 @@ ngx_http_variables_add_core_vars(ngx_con return NGX_ERROR; } + if (ngx_array_init(&cmcf->prefix_variables, cf->pool, 8, + sizeof(ngx_http_variable_t)) + != NGX_OK) + { + return NGX_ERROR; + } + for (cv = ngx_http_core_variables; cv->name.len; cv++) { - v = ngx_palloc(cf->pool, sizeof(ngx_http_variable_t)); + v = ngx_http_add_variable(cf, &cv->name, cv->flags); if (v == NULL) { return NGX_ERROR; } *v = *cv; - - rc = ngx_hash_add_key(cmcf->variables_keys, &v->name, v, - NGX_HASH_READONLY_KEY); - - if (rc == NGX_OK) { - continue; - } - - if (rc == NGX_BUSY) { - ngx_conf_log_error(NGX_LOG_EMERG, cf, 0, - "conflicting variable name \"%V\"", &v->name); - } - - return NGX_ERROR; } return NGX_OK; @@ -2553,10 +2579,11 @@ ngx_http_variables_add_core_vars(ngx_con ngx_int_t ngx_http_variables_init_vars(ngx_conf_t *cf) { + size_t len; ngx_uint_t i, n; ngx_hash_key_t *key; ngx_hash_init_t hash; - ngx_http_variable_t *v, *av; + ngx_http_variable_t *v, *av, *pv; ngx_http_core_main_conf_t *cmcf; /* set the handlers for the indexed http variables */ @@ -2564,6 +2591,7 @@ ngx_http_variables_init_vars(ngx_conf_t cmcf = ngx_http_conf_get_module_main_conf(cf, ngx_http_core_module); v = cmcf->variables.elts; + pv = cmcf->prefix_variables.elts; key = cmcf->variables_keys->keys.elts; for (i = 0; i < cmcf->variables.nelts; i++) { @@ -2584,7 +2612,9 @@ ngx_http_variables_init_vars(ngx_conf_t av->index = i; - if (av->get_handler == NULL) { + if (av->get_handler == NULL + || (av->flags & NGX_HTTP_VAR_WEAK)) + { break; } @@ -2592,68 +2622,34 @@ ngx_http_variables_init_vars(ngx_conf_t } } - if (v[i].name.len >= 5 - && ngx_strncmp(v[i].name.data, "http_", 5) == 0) - { - v[i].get_handler = ngx_http_variable_unknown_header_in; - v[i].data = (uintptr_t) &v[i].name; - - continue; - } - - if (v[i].name.len >= 10 - && ngx_strncmp(v[i].name.data, "sent_http_", 10) == 0) - { - v[i].get_handler = ngx_http_variable_unknown_header_out; - v[i].data = (uintptr_t) &v[i].name; - - continue; - } - - if (v[i].name.len >= 14 - && ngx_strncmp(v[i].name.data, "upstream_http_", 14) == 0) - { - v[i].get_handler = ngx_http_upstream_header_variable; - v[i].data = (uintptr_t) &v[i].name; - v[i].flags = NGX_HTTP_VAR_NOCACHEABLE; - - continue; + len = 0; + av = NULL; + + for (n = 0; n < cmcf->prefix_variables.nelts; n++) { + if (v[i].name.len >= pv[n].name.len && v[i].name.len > len + && ngx_strncmp(v[i].name.data, pv[n].name.data, pv[n].name.len) + == 0) + { + av = &pv[n]; + len = pv[n].name.len; + } } - if (v[i].name.len >= 7 - && ngx_strncmp(v[i].name.data, "cookie_", 7) == 0) - { - v[i].get_handler = ngx_http_variable_cookie; - v[i].data = (uintptr_t) &v[i].name; - - continue; - } - - if (v[i].name.len >= 16 - && ngx_strncmp(v[i].name.data, "upstream_cookie_", 16) == 0) - { - v[i].get_handler = ngx_http_upstream_cookie_variable; + if (av) { + v[i].get_handler = av->get_handler; v[i].data = (uintptr_t) &v[i].name; - v[i].flags = NGX_HTTP_VAR_NOCACHEABLE; - - continue; + v[i].flags = av->flags; + + goto next; } - if (v[i].name.len >= 4 - && ngx_strncmp(v[i].name.data, "arg_", 4) == 0) - { - v[i].get_handler = ngx_http_variable_argument; - v[i].data = (uintptr_t) &v[i].name; - v[i].flags = NGX_HTTP_VAR_NOCACHEABLE; - - continue; + if (v[i].get_handler == NULL) { + ngx_log_error(NGX_LOG_EMERG, cf->log, 0, + "unknown \"%V\" variable", &v[i].name); + + return NGX_ERROR; } - ngx_log_error(NGX_LOG_EMERG, cf->log, 0, - "unknown \"%V\" variable", &v[i].name); - - return NGX_ERROR; - next: continue; } diff -r 25203fc377fb -r d2b2ff157da5 src/http/ngx_http_variables.h --- a/src/http/ngx_http_variables.h Tue Jan 31 12:09:40 2017 +0300 +++ b/src/http/ngx_http_variables.h Tue Jan 31 21:19:58 2017 +0300 @@ -30,6 +30,8 @@ typedef ngx_int_t (*ngx_http_get_variabl #define NGX_HTTP_VAR_NOCACHEABLE 2 #define NGX_HTTP_VAR_INDEXED 4 #define NGX_HTTP_VAR_NOHASH 8 +#define NGX_HTTP_VAR_WEAK 16 +#define NGX_HTTP_VAR_PREFIX 32 struct ngx_http_variable_s { diff -r 25203fc377fb -r d2b2ff157da5 src/stream/ngx_stream.h --- a/src/stream/ngx_stream.h Tue Jan 31 12:09:40 2017 +0300 +++ b/src/stream/ngx_stream.h Tue Jan 31 21:19:58 2017 +0300 @@ -153,7 +153,8 @@ typedef struct { ngx_hash_t variables_hash; - ngx_array_t variables; /* ngx_stream_variable_t */ + ngx_array_t variables; /* ngx_stream_variable_t */ + ngx_array_t prefix_variables; /* ngx_stream_variable_t */ ngx_uint_t ncaptures; ngx_uint_t variables_hash_max_size; diff -r 25203fc377fb -r d2b2ff157da5 src/stream/ngx_stream_variables.c --- a/src/stream/ngx_stream_variables.c Tue Jan 31 12:09:40 2017 +0300 +++ b/src/stream/ngx_stream_variables.c Tue Jan 31 21:19:58 2017 +0300 @@ -10,6 +10,8 @@ #include <ngx_stream.h> #include <nginx.h> +static ngx_stream_variable_t *ngx_stream_add_prefix_variable(ngx_conf_t *cf, + ngx_str_t *name, ngx_uint_t flags); static ngx_int_t ngx_stream_variable_binary_remote_addr( ngx_stream_session_t *s, ngx_stream_variable_value_t *v, uintptr_t data); @@ -137,6 +139,10 @@ ngx_stream_add_variable(ngx_conf_t *cf, return NULL; } + if (flags & NGX_STREAM_VAR_PREFIX) { + return ngx_stream_add_prefix_variable(cf, name, flags); + } + cmcf = ngx_stream_conf_get_module_main_conf(cf, ngx_stream_core_module); key = cmcf->variables_keys->keys.elts; @@ -155,6 +161,8 @@ ngx_stream_add_variable(ngx_conf_t *cf, return NULL; } + v->flags &= flags | ~NGX_STREAM_VAR_WEAK; + return v; } @@ -193,6 +201,60 @@ ngx_stream_add_variable(ngx_conf_t *cf, } +static ngx_stream_variable_t * +ngx_stream_add_prefix_variable(ngx_conf_t *cf, ngx_str_t *name, + ngx_uint_t flags) +{ + ngx_uint_t i; + ngx_stream_variable_t *v; + ngx_stream_core_main_conf_t *cmcf; + + cmcf = ngx_stream_conf_get_module_main_conf(cf, ngx_stream_core_module); + + v = cmcf->prefix_variables.elts; + for (i = 0; i < cmcf->prefix_variables.nelts; i++) { + if (name->len != v[i].name.len + || ngx_strncasecmp(name->data, v[i].name.data, name->len) != 0) + { + continue; + } + + v = &v[i]; + + if (!(v->flags & NGX_STREAM_VAR_CHANGEABLE)) { + ngx_conf_log_error(NGX_LOG_EMERG, cf, 0, + "the duplicate \"%V\" variable", name); + return NULL; + } + + v->flags &= flags | ~NGX_STREAM_VAR_WEAK; + + return v; + } + + v = ngx_array_push(&cmcf->prefix_variables); + if (v == NULL) { + return NULL; + } + + v->name.len = name->len; + v->name.data = ngx_pnalloc(cf->pool, name->len); + if (v->name.data == NULL) { + return NULL; + } + + ngx_strlow(v->name.data, name->data, name->len); + + v->set_handler = NULL; + v->get_handler = NULL; + v->data = 0; + v->flags = flags; + v->index = 0; + + return v; +} + + ngx_int_t ngx_stream_get_variable_index(ngx_conf_t *cf, ngx_str_t *name) { @@ -327,6 +389,8 @@ ngx_stream_variable_value_t * ngx_stream_get_variable(ngx_stream_session_t *s, ngx_str_t *name, ngx_uint_t key) { + size_t len; + ngx_uint_t i, n; ngx_stream_variable_t *v; ngx_stream_variable_value_t *vv; ngx_stream_core_main_conf_t *cmcf; @@ -365,6 +429,28 @@ ngx_stream_get_variable(ngx_stream_sessi return NULL; } + len = 0; + + v = cmcf->prefix_variables.elts; + n = cmcf->prefix_variables.nelts; + + for (i = 0; i < cmcf->prefix_variables.nelts; i++) { + if (name->len >= v[i].name.len && name->len > len + && ngx_strncmp(name->data, v[i].name.data, v[i].name.len) == 0) + { + len = v[i].name.len; + n = i; + } + } + + if (n != cmcf->prefix_variables.nelts) { + if (v[n].get_handler(s, vv, (uintptr_t) name) == NGX_OK) { + return vv; + } + + return NULL; + } + vv->not_found = 1; return vv; @@ -1000,7 +1086,6 @@ ngx_stream_regex_exec(ngx_stream_session ngx_int_t ngx_stream_variables_add_core_vars(ngx_conf_t *cf) { - ngx_int_t rc; ngx_stream_variable_t *cv, *v; ngx_stream_core_main_conf_t *cmcf; @@ -1021,27 +1106,20 @@ ngx_stream_variables_add_core_vars(ngx_c return NGX_ERROR; } + if (ngx_array_init(&cmcf->prefix_variables, cf->pool, 8, + sizeof(ngx_stream_variable_t)) + != NGX_OK) + { + return NGX_ERROR; + } + for (cv = ngx_stream_core_variables; cv->name.len; cv++) { - v = ngx_palloc(cf->pool, sizeof(ngx_stream_variable_t)); + v = ngx_stream_add_variable(cf, &cv->name, cv->flags); if (v == NULL) { return NGX_ERROR; } *v = *cv; - - rc = ngx_hash_add_key(cmcf->variables_keys, &v->name, v, - NGX_HASH_READONLY_KEY); - - if (rc == NGX_OK) { - continue; - } - - if (rc == NGX_BUSY) { - ngx_conf_log_error(NGX_LOG_EMERG, cf, 0, - "conflicting variable name \"%V\"", &v->name); - } - - return NGX_ERROR; } return NGX_OK; @@ -1051,10 +1129,11 @@ ngx_stream_variables_add_core_vars(ngx_c ngx_int_t ngx_stream_variables_init_vars(ngx_conf_t *cf) { + size_t len; ngx_uint_t i, n; ngx_hash_key_t *key; ngx_hash_init_t hash; - ngx_stream_variable_t *v, *av; + ngx_stream_variable_t *v, *av, *pv; ngx_stream_core_main_conf_t *cmcf; /* set the handlers for the indexed stream variables */ @@ -1062,6 +1141,7 @@ ngx_stream_variables_init_vars(ngx_conf_ cmcf = ngx_stream_conf_get_module_main_conf(cf, ngx_stream_core_module); v = cmcf->variables.elts; + pv = cmcf->prefix_variables.elts; key = cmcf->variables_keys->keys.elts; for (i = 0; i < cmcf->variables.nelts; i++) { @@ -1082,7 +1162,9 @@ ngx_stream_variables_init_vars(ngx_conf_ av->index = i; - if (av->get_handler == NULL) { + if (av->get_handler == NULL + || (av->flags & NGX_STREAM_VAR_WEAK)) + { break; } @@ -1090,10 +1172,32 @@ ngx_stream_variables_init_vars(ngx_conf_ } } - ngx_log_error(NGX_LOG_EMERG, cf->log, 0, - "unknown \"%V\" variable", &v[i].name); + len = 0; + av = NULL; - return NGX_ERROR; + for (n = 0; n < cmcf->prefix_variables.nelts; n++) { + if (v[i].name.len >= pv[n].name.len && v[i].name.len > len + && ngx_strncmp(v[i].name.data, pv[n].name.data, pv[n].name.len) + == 0) + { + av = &pv[n]; + len = pv[n].name.len; + } + } + + if (av) { + v[i].get_handler = av->get_handler; + v[i].data = (uintptr_t) &v[i].name; + v[i].flags = av->flags; + + goto next; + } + + if (v[i].get_handler == NULL) { + ngx_log_error(NGX_LOG_EMERG, cf->log, 0, + "unknown \"%V\" variable", &v[i].name); + return NGX_ERROR; + } next: continue; diff -r 25203fc377fb -r d2b2ff157da5 src/stream/ngx_stream_variables.h --- a/src/stream/ngx_stream_variables.h Tue Jan 31 12:09:40 2017 +0300 +++ b/src/stream/ngx_stream_variables.h Tue Jan 31 21:19:58 2017 +0300 @@ -30,6 +30,8 @@ typedef ngx_int_t (*ngx_stream_get_varia #define NGX_STREAM_VAR_NOCACHEABLE 2 #define NGX_STREAM_VAR_INDEXED 4 #define NGX_STREAM_VAR_NOHASH 8 +#define NGX_STREAM_VAR_WEAK 16 +#define NGX_STREAM_VAR_PREFIX 32 struct ngx_stream_variable_s {

5 years, 10 months

[njs] Support of undefined return from stream body filter.

by Roman Arutyunyan

details: http://hg.nginx.org/njs/rev/67d4bcb5823f branches: changeset: 308:67d4bcb5823f user: Roman Arutyunyan <arut(a)nginx.com> date: Tue Jan 31 20:22:01 2017 +0300 description: Support of undefined return from stream body filter. diffstat: nginx/ngx_stream_js_module.c | 38 ++++++++++++++++++++------------------ 1 files changed, 20 insertions(+), 18 deletions(-) diffs (52 lines): diff -r e9c89068140d -r 67d4bcb5823f nginx/ngx_stream_js_module.c --- a/nginx/ngx_stream_js_module.c Fri Jan 27 16:45:34 2017 +0300 +++ b/nginx/ngx_stream_js_module.c Tue Jan 31 20:22:01 2017 +0300 @@ -503,28 +503,30 @@ ngx_stream_js_body_filter(ngx_stream_ses return NGX_ERROR; } - if (njs_vm_retval(ctx->vm, &value) != NJS_OK) { - return NGX_ERROR; - } - - ngx_log_debug2(NGX_LOG_DEBUG_STREAM, c->log, 0, - "js return value: \"%*s\"", - value.length, value.start); - - if (value.length) { - rc = ngx_atoi(value.start, value.length); - - if (rc != NGX_OK && rc != -NGX_ERROR) { - ngx_log_error(NGX_LOG_ERR, c->log, 0, - "unexpected js return code: \"%*s\"", - value.length, value.start); + if (ctx->vm->retval.type != NJS_VOID) { + if (njs_vm_retval(ctx->vm, &value) != NJS_OK) { return NGX_ERROR; } - rc = -rc; + ngx_log_debug2(NGX_LOG_DEBUG_STREAM, c->log, 0, + "js return value: \"%*s\"", + value.length, value.start); - if (rc == NGX_ERROR) { - return NGX_ERROR; + if (value.length) { + rc = ngx_atoi(value.start, value.length); + + if (rc != NGX_OK && rc != -NGX_ERROR) { + ngx_log_error(NGX_LOG_ERR, c->log, 0, + "unexpected js return code: \"%*s\"", + value.length, value.start); + return NGX_ERROR; + } + + rc = -rc; + + if (rc == NGX_ERROR) { + return NGX_ERROR; + } } }

5 years, 10 months

[nginx] release-1.10.3 tag

by Maxim Dounin

details: http://hg.nginx.org/nginx/rev/43ba2bb504fb branches: stable-1.10 changeset: 6898:43ba2bb504fb user: Maxim Dounin <mdounin(a)mdounin.ru> date: Tue Jan 31 18:01:10 2017 +0300 description: release-1.10.3 tag diffstat: .hgtags | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diffs (8 lines): diff --git a/.hgtags b/.hgtags --- a/.hgtags +++ b/.hgtags @@ -401,3 +401,4 @@ 13070ecfda67397985f0e986eb9c42ecb46d05b5 d4b7edd7fa81cbf554ee3dcfe9de53ad6d1dbc69 release-1.10.0 7fcde9122088094471a97030161e347aa940f8ed release-1.10.1 b98f9fdee487b00556bea6a24f8f976d7fd60795 release-1.10.2 +369b74459cf24dd35c5e1111d17c2cd4a6ecfd4b release-1.10.3

5 years, 10 months

[nginx] nginx-1.10.3-RELEASE

by Maxim Dounin

details: http://hg.nginx.org/nginx/rev/369b74459cf2 branches: stable-1.10 changeset: 6897:369b74459cf2 user: Maxim Dounin <mdounin(a)mdounin.ru> date: Tue Jan 31 18:01:10 2017 +0300 description: nginx-1.10.3-RELEASE diffstat: docs/xml/nginx/changes.xml | 95 ++++++++++++++++++++++++++++++++++++++++++++++ 1 files changed, 95 insertions(+), 0 deletions(-) diffs (105 lines): diff --git a/docs/xml/nginx/changes.xml b/docs/xml/nginx/changes.xml --- a/docs/xml/nginx/changes.xml +++ b/docs/xml/nginx/changes.xml @@ -5,6 +5,101 @@ <change_log title="nginx"> +<changes ver="1.10.3" date="31.01.2017"> + +<change type="bugfix"> +<para lang="ru"> +в директиве add_after_body при использовании совместно с директивой sub_filter. +</para> +<para lang="en"> +in the "add_after_body" directive when used with the "sub_filter" directive. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +unix domain listen-сокеты могли не наследоваться +при обновлении исполняемого файла на Linux. +</para> +<para lang="en"> +unix domain listen sockets might not be inherited +during binary upgrade on Linux. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +плавное завершение старых рабочих процессов могло занимать бесконечное время +при использовании HTTP/2. +</para> +<para lang="en"> +graceful shutdown of old worker processes might require infinite time +when using HTTP/2. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +при использовании HTTP/2 и директив limit_req или auth_request +тело запроса могло быть повреждено; +ошибка появилась в 1.10.2. +</para> +<para lang="en"> +when using HTTP/2 and the "limit_req" or "auth_request" directives +client request body might be corrupted; +the bug had appeared in 1.10.2. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +при использовании HTTP/2 в рабочем процессе мог произойти segmentation fault; +ошибка появилась в 1.10.2. +</para> +<para lang="en"> +a segmentation fault might occur in a worker process when using HTTP/2; +the bug had appeared in 1.10.2. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +при использовании директивы sendfile на FreeBSD и macOS +мог возвращаться некорректный ответ; +ошибка появилась в 1.7.8. +</para> +<para lang="en"> +an incorrect response might be returned +when using the "sendfile" directive on FreeBSD and macOS; +the bug had appeared in 1.7.8. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +при использовании директивы aio_write +ответ мог сохраняться в кэш не полностью. +</para> +<para lang="en"> +a truncated response might be stored in cache +when using the "aio_write" directive. +</para> +</change> + +<change type="bugfix"> +<para lang="ru"> +при использовании директивы aio_write +могла происходить утечка сокетов. +</para> +<para lang="en"> +a socket leak might occur +when using the "aio_write" directive. +</para> +</change> + +</changes> + + <changes ver="1.10.2" date="18.10.2016"> <change type="change">

5 years, 10 months

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

nginx-devel January 2017