diff options
| author | Stefan Bühler <stbuehler@web.de> | 2009-11-07 18:24:04 +0000 |
|---|---|---|
| committer | Stefan Bühler <stbuehler@web.de> | 2009-11-07 18:24:04 +0000 |
| commit | 781784664a1b9b5302254b5012044974b9de7b3b (patch) | |
| tree | c5066bdb60d4442b5844e857f8773f1acd50540c | |
| parent | e430ce09bc63a5a04f6eddd358db2fb5e0a314bd (diff) | |
| download | lighttpd-git-781784664a1b9b5302254b5012044974b9de7b3b.tar.gz | |
mod_fastcgi: fix mod_fastcgi packet parsing
git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.4.x@2691 152afb58-edef-0310-8abb-c4023f1b3aa9
| -rw-r--r-- | NEWS | 1 | ||||
| -rw-r--r-- | src/mod_fastcgi.c | 21 |
2 files changed, 12 insertions, 10 deletions
@@ -11,6 +11,7 @@ NEWS * mod_rrdtool: fix creating file if it doesn't exist (#1788) * reset tlsext_server_name in connection_reset - fixes random hostnames in the $HTTP["host"] conditional * export some SSL_CLIENT_* vars for client cert validation (fixes #1288, thx presbrey) + * mod_fastcgi: fix mod_fastcgi packet parsing - 1.4.24 - 2009-10-25 * Add T_CONFIG_INT for bigger integers from the config (needed for #1966) diff --git a/src/mod_fastcgi.c b/src/mod_fastcgi.c index f7563248..789a22af 100644 --- a/src/mod_fastcgi.c +++ b/src/mod_fastcgi.c @@ -2416,8 +2416,8 @@ typedef struct { static int fastcgi_get_packet(server *srv, handler_ctx *hctx, fastcgi_response_packet *packet) { chunk * c; - size_t offset = 0; - size_t toread = 0; + size_t offset; + size_t toread; FCGI_Header *header; if (!hctx->rb->first) return -1; @@ -2428,20 +2428,22 @@ static int fastcgi_get_packet(server *srv, handler_ctx *hctx, fastcgi_response_p packet->padding = 0; packet->request_id = 0; + offset = 0; toread = 8; /* get at least the FastCGI header */ for (c = hctx->rb->first; c; c = c->next) { - size_t weWant = sizeof(*header) - (packet->b->used - 1); size_t weHave = c->mem->used - c->offset - 1; - if (weHave > weWant) weHave = weWant; + if (weHave > toread) weHave = toread; if (packet->b->used == 0) { buffer_copy_string_len(packet->b, c->mem->ptr + c->offset, weHave); } else { buffer_append_string_len(packet->b, c->mem->ptr + c->offset, weHave); } + toread -= weHave; + offset = weHave; /* skip offset bytes in chunk for "real" data */ - if (packet->b->used >= sizeof(*header) + 1) break; + if (0 == toread) break; } if ((packet->b->used == 0) || @@ -2449,7 +2451,9 @@ static int fastcgi_get_packet(server *srv, handler_ctx *hctx, fastcgi_response_p /* no header */ buffer_free(packet->b); - log_error_write(srv, __FILE__, __LINE__, "sdsds", "FastCGI: header too small:", packet->b->used, "bytes <", sizeof(FCGI_Header), "bytes"); + if (hctx->plugin_data->conf.debug) { + log_error_write(srv, __FILE__, __LINE__, "sdsds", "FastCGI: header too small:", packet->b->used, "bytes <", sizeof(FCGI_Header), "bytes, waiting for more data"); + } return -1; } @@ -2461,9 +2465,6 @@ static int fastcgi_get_packet(server *srv, handler_ctx *hctx, fastcgi_response_p packet->type = header->type; packet->padding = header->paddingLength; - /* the first bytes in packet->b are the header */ - offset = sizeof(*header); - /* ->b should only be the content */ buffer_copy_string_len(packet->b, CONST_STR_LEN("")); /* used == 1 */ @@ -2477,7 +2478,7 @@ static int fastcgi_get_packet(server *srv, handler_ctx *hctx, fastcgi_response_p buffer_append_string_len(packet->b, c->mem->ptr + c->offset + offset, weHave); - /* we only skipped the first 8 bytes as they are the fcgi header */ + /* we only skipped the first bytes as they belonged to the fcgi header */ offset = 0; } |