mod_proxy.c revision 3aef0c9757e0c2cf1c8c13267907bbb7424735ec
97a9a944b5887e91042b019776c41d5dd74557aferikabele/* Licensed to the Apache Software Foundation (ASF) under one or more
97a9a944b5887e91042b019776c41d5dd74557aferikabele * contributor license agreements. See the NOTICE file distributed with
fd9abdda70912b99b24e3bf1a38f26fde908a74cnd * this work for additional information regarding copyright ownership.
fd9abdda70912b99b24e3bf1a38f26fde908a74cnd * The ASF licenses this file to You under the Apache License, Version 2.0
fd9abdda70912b99b24e3bf1a38f26fde908a74cnd * (the "License"); you may not use this file except in compliance with
a945f35eff8b6a88009ce73de6d4c862ce58de3cslive * the License. You may obtain a copy of the License at
96ad5d81ee4a2cc66a4ae19893efc8aa6d06fae7jailletc * Unless required by applicable law or agreed to in writing, software
5a58787efeb02a1c3f06569d019ad81fd2efa06end * distributed under the License is distributed on an "AS IS" BASIS,
5a58787efeb02a1c3f06569d019ad81fd2efa06end * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
d29d9ab4614ff992b0e8de6e2b88d52b6f1f153erbowen * See the License for the specific language governing permissions and
2e545ce2450a9953665f701bb05350f0d3f26275nd * limitations under the License.
5a58787efeb02a1c3f06569d019ad81fd2efa06endAPR_DECLARE_OPTIONAL_FN(int, ssl_proxy_enable, (conn_rec *));
a63f0ab647ad2ab72efc9bea7a66e24e9ebc5cc2ndAPR_DECLARE_OPTIONAL_FN(int, ssl_engine_disable, (conn_rec *));
5a58787efeb02a1c3f06569d019ad81fd2efa06end#define MAX(x,y) ((x) >= (y) ? (x) : (y))
5a58787efeb02a1c3f06569d019ad81fd2efa06end/* return the sizeof of one lb_worker in scoreboard. */
5a58787efeb02a1c3f06569d019ad81fd2efa06endstatic int ap_proxy_lb_worker_size(void)
55478342807b8fbc71ba2af7444e3a06fad7ebf1rbowen return sizeof(proxy_worker_stat);
9b6a3a558cc90ffdaa0b50bd02546ffec424ded7slive * A Web proxy module. Stages:
06ba4a61654b3763ad65f52283832ebf058fdf1cslive * translate_name: set filename to proxy:<URL>
9b6a3a558cc90ffdaa0b50bd02546ffec424ded7slive * map_to_storage: run proxy_walk (rather than directory_walk/file_walk)
9b6a3a558cc90ffdaa0b50bd02546ffec424ded7slive * can't trust directory_walk/file_walk since these are
ffb01336be79c64046b636e59fa8ddca8ec029edsf * not in our filesystem. Prevents mod_http from serving
ffb01336be79c64046b636e59fa8ddca8ec029edsf * the TRACE request we will set aside to handle later.
9b6a3a558cc90ffdaa0b50bd02546ffec424ded7slive * type_checker: set type to PROXY_MAGIC_TYPE if filename begins proxy:
9b6a3a558cc90ffdaa0b50bd02546ffec424ded7slive * fix_ups: convert the URL stored in the filename to the
5a58787efeb02a1c3f06569d019ad81fd2efa06end * canonical form.
c44eeebd065e2c8cd028016b45c58afb480aaf8fdruggeri * handler: handle proxy requests
c44eeebd065e2c8cd028016b45c58afb480aaf8fdruggeri/* -------------------------------------------------------------- */
5a58787efeb02a1c3f06569d019ad81fd2efa06end/* Translate the URL into a 'filename' */
deeee6bb6fd94c0ba5f3730b58abd9d299c89ccdnd#define PROXY_COPY_CONF_PARAMS(w, c) \
117c1f888a14e73cdd821dc6c23eb0411144a41cnd } while (0)
117c1f888a14e73cdd821dc6c23eb0411144a41cnd const char *key,
117c1f888a14e73cdd821dc6c23eb0411144a41cnd const char *val)
a63f0ab647ad2ab72efc9bea7a66e24e9ebc5cc2nd /* Normalized load factor. Used with BalancerMamber,
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh * it is a number between 1 and 100.
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar return "LoadFactor must be number between 1..100";
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar /* If set it will give the retry timeout for the worker
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar * The default value is 60 seconds, meaning that if
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar * in error state, it will be retried after that timeout.
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar return "Retry must be a positive value";
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar /* Time in seconds that will destroy all the connections
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar * that exceed the smax
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar return "TTL must be at least one second";
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar /* Initial number of connections to remote
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar return "Min must be a positive number";
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar /* Maximum number of connections to remote
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar return "Max must be a positive number";
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar /* XXX: More inteligent naming needed */
1f1b6bf13313fdd14a45e52e553d3ff28689b717coar /* Maximum number of connections to remote that
5a58787efeb02a1c3f06569d019ad81fd2efa06end * will not be destroyed
5a58787efeb02a1c3f06569d019ad81fd2efa06end return "Smax must be a positive number";
5a58787efeb02a1c3f06569d019ad81fd2efa06end /* Acquire timeout in given unit (default is milliseconds).
06ba4a61654b3763ad65f52283832ebf058fdf1cslive * If set this will be the maximum time to
06ba4a61654b3763ad65f52283832ebf058fdf1cslive * wait for a free connection.
a63f0ab647ad2ab72efc9bea7a66e24e9ebc5cc2nd if (ap_timeout_parameter_parse(val, &timeout, "ms") != APR_SUCCESS)
a63f0ab647ad2ab72efc9bea7a66e24e9ebc5cc2nd return "Acquire timeout has wrong format";
06ba4a61654b3763ad65f52283832ebf058fdf1cslive return "Acquire must be at least one millisecond";
5a58787efeb02a1c3f06569d019ad81fd2efa06end /* Connection timeout in seconds.
5a58787efeb02a1c3f06569d019ad81fd2efa06end * Defaults to server timeout.
5fe85d8662e07bb4e9dbe9c2d0274e90a3058135rbowen return "Timeout must be at least one second";
5a58787efeb02a1c3f06569d019ad81fd2efa06end if (s < 512 && s) {
5a58787efeb02a1c3f06569d019ad81fd2efa06end return "IOBufferSize must be >= 512 bytes, or 0 for system default.";
06ba4a61654b3763ad65f52283832ebf058fdf1cslive return "ReceiveBufferSize must be >= 512 bytes, or 0 for system default.";
5a58787efeb02a1c3f06569d019ad81fd2efa06end return "KeepAlive must be On|Off";
3b3b7fc78d1f5bfc2769903375050048ff41ff26nd return "DisableReuse must be On|Off";
f086b4b402fa9a2fefc7dda85de2a3cc1cd0a654rjung /* Worker route.
727872d18412fc021f03969b8641810d8896820bhumbedooh return "Route length must be < 64 characters";
727872d18412fc021f03969b8641810d8896820bhumbedooh /* Worker redirection route.
0d0ba3a410038e179b695446bb149cce6264e0abnd return "Redirect length must be < 64 characters";
0d0ba3a410038e179b695446bb149cce6264e0abnd const char *v;
0d0ba3a410038e179b695446bb149cce6264e0abnd /* Worker status.
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh for (v = val; *v; v++) {
205f749042ed530040a4f0080dbcb47ceae8a374rjung if (*v == '+') {
7fec19672a491661b2fe4b29f685bc7f4efa64d4nd else if (*v == '-') {
if (mode)
if (mode)
if (mode)
if (mode)
if (mode)
if (ival == 0)
return NULL;
apr_pool_t *p,
const char *key,
const char *val)
int ival;
char *path;
if (ival < 0)
if (provider) {
return NULL;
return NULL;
++aliasp;
++urip;
* GET http://othervhost/cgi-bin/printenv HTTP/1.0
: ap_default_port(r))))) {
return DECLINED;
const char *start;
const char *end;
const char *var;
const char *val;
const char *firstpart;
return str;
return str;
sizeof (struct proxy_alias));
return ret;
int i, len;
&proxy_module);
const char *fake;
const char *real;
int mismatch = 0;
if (r->proxyreq) {
return OK;
return DECLINED;
if (len != 0) {
return DECLINED;
if (nocanon
if (mismatch) {
if (found) {
return OK;
return DECLINED;
&proxy_module);
for (j = 0; j < num_sec; ++j)
if (entry_proxy->r
return OK;
int access_status;
return DECLINED;
return access_status;
return OK;
char *url, *p;
int access_status;
&proxy_module);
return DECLINED;
return access_status;
return HTTP_BAD_REQUEST;
char *nuri;
const char *ref;
return DECLINED;
&r->parsed_uri,
return HTTP_MOVED_PERMANENTLY;
const char *p2;
int direct_connect = 0;
const char *str;
long maxfwd;
return DECLINED;
switch (r->method_number) {
case M_TRACE: {
int access_status;
return OK;
case M_OPTIONS: {
int access_status;
return OK;
if (maxfwd >= 0) {
return HTTP_METHOD_NOT_ALLOWED;
return HTTP_REQUEST_ENTITY_TOO_LARGE;
if (p == NULL) {
return HTTP_BAD_REQUEST;
return HTTP_MOVED_PERMANENTLY;
!direct_connect; i++) {
#if DEBUGGING
r->uri);
return access_status;
if (!worker)
goto cleanup;
if (!direct_connect) {
const char *cl_a;
char *end;
goto cleanup;
if (cl_a) {
if (cl > 0) {
goto cleanup;
goto cleanup;
if (balancer) {
if (balancer) {
goto cleanup;
return access_status;
return ps;
ps->allowed_connect_ports = apr_array_append(p, base->allowed_connect_ports, overrides->allowed_connect_ports);
ps->recv_buffer_size = (overrides->recv_buffer_size_set == 0) ? base->recv_buffer_size : overrides->recv_buffer_size;
ps->io_buffer_size = (overrides->io_buffer_size_set == 0) ? base->io_buffer_size : overrides->io_buffer_size;
ps->error_override = (overrides->error_override_set == 0) ? base->error_override : overrides->error_override;
ps->preserve_host = (overrides->preserve_host_set == 0) ? base->preserve_host : overrides->preserve_host;
ps->proxy_status = (overrides->proxy_status_set == 0) ? base->proxy_status : overrides->proxy_status;
return ps;
return (void *) new;
return new;
char *r, *f, *scheme;
int port;
if (regex)
scheme[p-r] = 0;
if (q != NULL) {
if (regex)
if (regex) {
if (!reg)
return NULL;
char *r = NULL;
char *word;
unsigned int flags = 0;
while (*arg) {
if (is_regex) {
f = word;
r = word;
if (!val) {
if (r == NULL)
if (use_regex) {
return NULL;
if (!balancer) {
conf, r);
if (err)
if (err)
if (!worker) {
if (err)
if (err)
return NULL;
const char *fake;
const char *real;
const char *interp;
fake = f;
real = r;
interp = i;
real = f;
interp = r;
return NULL;
const char *r, const char *interp)
return NULL;
const char *r, const char *interp)
return NULL;
int found = 0;
if (!found) {
return NULL;
int *New;
return NULL;
int found = 0;
if (!found) {
#if DEBUGGING
#if DEBUGGING
#if DEBUGGING
#if DEBUGGING
return NULL;
return NULL;
return NULL;
return NULL;
return NULL;
return NULL;
return NULL;
return NULL;
int timeout;
return NULL;
return NULL;
return NULL;
return NULL;
char *word;
while (*arg) {
char *val;
if (!val) {
if (!path)
else if (!name)
if (!path)
if (!name)
if (!worker) {
const char *err;
if (err)
if (!balancer) {
if (err)
return NULL;
const char *err;
int in_proxy_section = 0;
if (!balancer) {
if (in_proxy_section) {
if (err)
if (!worker) {
if (in_proxy_section) {
if (err)
while (*arg) {
if (!val) {
if (worker)
if (err)
return NULL;
const char *arg)
return NULL;
&proxy_module);
const char *errmsg;
return err;
if (!arg) {
return errmsg;
conf->r = r;
NULL);
NULL);
if (!balancer) {
if (err)
conf->p);
if (!worker) {
if (err)
NULL);
while (*arg) {
if (!val) {
if (worker)
if (err)
return NULL;
{NULL}
if (proxy_ssl_enable) {
if (proxy_ssl_disable) {
return proxy_ssl_disable(c);
if (proxy_is_https) {
return proxy_is_https(c);
const char *var)
if (proxy_ssl_val) {
return NULL;
return OK;
return OK;
++worker;
++balancer;
return OK;
worker++;
if (!reverse) {
s = s->next;
proxy_lb_workers = 0;
return OK;
request_rec *r,
request_rec *r,
(request_rec *r), (r),
(status, r),