LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8994 Commits
1 Branch
46 MiB
Tree: e094212b17
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e094212b17'
${ noResults }
openwrt-packages-dist/net/lighttpd/patches/0004-mod_cgi-cgi.local-redi...

105 lines
4.1 KiB
Raw Normal View History

lighttpd: backport more mod_cgi fixes queued for 1.4.46 The most important change is local redirects being disabled by default. There is an option called cgi.local-redir that allows enabling this optimization manually back if needed. Local redirects were initially introduced in 1.4.40 but caused many problems for *some* web services. One of problems is breaking Post/Redirect/Get design pattern. With redirects handled on server side there is no browser redirection making it "lose" the POST data. Another possible issue are HTML forms with action="". With CGI local redirects browser may be sending form data to the wrong URL (the one that was supposed to redirect the browser). Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
7 years ago
 
  1. From 57ab20ace504fdb6e0944ef6fa6e0ce35adc4446 Mon Sep 17 00:00:00 2001
  2. From: Glenn Strauss <gstrauss@gluelogic.com>
  3. Date: Sun, 26 Feb 2017 17:49:47 -0500
  4. Subject: [PATCH] [mod_cgi] cgi.local-redir = [enable|disable] (#2108, #2793)
  5. 

  6. new directive cgi.local-redir = [enable|disable]
  7. 

  8. *disable* RFC3875 6.2.2 local-redir by default.
  9. (behavior change from when local-redir support added in lighttpd 1.4.40)
  10. 

  11. The reason for this behavior change is that CGI local-redir support
  12. (RFC3875 6.2.2) is an optimization.  Absence of support may result in
  13. additional latency in servicing a request due the additional round-trip
  14. to the client, but that was the prior behavior (before lighttpd 1.4.40)
  15. and is the behavior of web servers which do not support CGI local-redir.
  16. 

  17. However, enabling CGI local-redir by default may result in broken links
  18. in the case where a user config (unaware of CGI local-redir behavior)
  19. returns HTML pages containing *relative* paths (not root-relative paths)
  20. which are relative to the location of the local-redir target document,
  21. and the local-redir target document is located at a different URL-path
  22. from the original CGI request.
  23. 

  24. x-ref:
  25.   RFC3875 CGI 1.1 specification section 6.2.2 Local Redirect Response
  26.   http://www.ietf.org/rfc/rfc3875
  27.   "CGI local redirect not implemented correctly"
  28.   https://redmine.lighttpd.net/issues/2108
  29.   "1.4.40 regression: broken redirect (using Location) between url.rewrite-once URLs"
  30.   https://redmine.lighttpd.net/issues/2793
  31. ---

  32.  src/mod_cgi.c       | 9 ++++++++-
  33.  tests/lighttpd.conf | 1 +
  34.  2 files changed, 9 insertions(+), 1 deletion(-)
  35. 

  36. --- a/src/mod_cgi.c

  37. +++ b/src/mod_cgi.c

  38. @@ -66,6 +66,7 @@ typedef struct {

  39.  typedef struct {
  40.  	array *cgi;
  41.  	unsigned short execute_x_only;
  42. +	unsigned short local_redir;

  43.  	unsigned short xsendfile_allow;
  44.  	array *xsendfile_docroot;
  45.  } plugin_config;
  46. @@ -172,6 +173,7 @@ SETDEFAULTS_FUNC(mod_fastcgi_set_default

  47.  		{ "cgi.execute-x-only",          NULL, T_CONFIG_BOOLEAN, T_CONFIG_SCOPE_CONNECTION },     /* 1 */
  48.  		{ "cgi.x-sendfile",              NULL, T_CONFIG_BOOLEAN, T_CONFIG_SCOPE_CONNECTION },     /* 2 */
  49.  		{ "cgi.x-sendfile-docroot",      NULL, T_CONFIG_ARRAY,   T_CONFIG_SCOPE_CONNECTION },     /* 3 */
  50. +		{ "cgi.local-redir",             NULL, T_CONFIG_BOOLEAN, T_CONFIG_SCOPE_CONNECTION },     /* 4 */

  51.  		{ NULL,                          NULL, T_CONFIG_UNSET, T_CONFIG_SCOPE_UNSET}
  52.  	};
  53.  
  54. @@ -189,6 +191,7 @@ SETDEFAULTS_FUNC(mod_fastcgi_set_default

  55.  
  56.  		s->cgi    = array_init();
  57.  		s->execute_x_only = 0;
  58. +		s->local_redir    = 0;

  59.  		s->xsendfile_allow= 0;
  60.  		s->xsendfile_docroot = array_init();
  61.  
  62. @@ -196,6 +199,7 @@ SETDEFAULTS_FUNC(mod_fastcgi_set_default

  63.  		cv[1].destination = &(s->execute_x_only);
  64.  		cv[2].destination = &(s->xsendfile_allow);
  65.  		cv[3].destination = s->xsendfile_docroot;
  66. +		cv[4].destination = &(s->local_redir);

  67.  
  68.  		p->config_storage[i] = s;
  69.  
  70. @@ -549,7 +553,7 @@ static int cgi_demux_response(server *sr

  71.  					 *  to same URL, since CGI should have handled it internally if it
  72.  					 *  really wanted to do that internally)
  73.  					 */
  74. -					if (con->http_status >= 300 && con->http_status < 400) {

  75. +					if (hctx->conf.local_redir && con->http_status >= 300 && con->http_status < 400) {

  76.  						/*(con->parsed_response & HTTP_LOCATION)*/
  77.  						size_t ulen = buffer_string_length(con->uri.path);
  78.  						data_string *ds;
  79. @@ -1321,6 +1325,7 @@ static int mod_cgi_patch_connection(serv

  80.  
  81.  	PATCH(cgi);
  82.  	PATCH(execute_x_only);
  83. +	PATCH(local_redir);

  84.  	PATCH(xsendfile_allow);
  85.  	PATCH(xsendfile_docroot);
  86.  
  87. @@ -1340,6 +1345,8 @@ static int mod_cgi_patch_connection(serv

  88.  				PATCH(cgi);
  89.  			} else if (buffer_is_equal_string(du->key, CONST_STR_LEN("cgi.execute-x-only"))) {
  90.  				PATCH(execute_x_only);
  91. +			} else if (buffer_is_equal_string(du->key, CONST_STR_LEN("cgi.local-redir"))) {

  92. +				PATCH(local_redir);

  93.  			} else if (buffer_is_equal_string(du->key, CONST_STR_LEN("cgi.x-sendfile"))) {
  94.  				PATCH(xsendfile_allow);
  95.  			} else if (buffer_is_equal_string(du->key, CONST_STR_LEN("cgi.x-sendfile-docroot"))) {
  96. --- a/tests/lighttpd.conf

  97. +++ b/tests/lighttpd.conf

  98. @@ -110,6 +110,7 @@ fastcgi.server = (

  99.  	) ),
  100.  )
  101.  
  102. +cgi.local-redir = "enable"

  103.  cgi.assign = (
  104.  	".pl"  => env.PERL,
  105.  	".cgi" => env.PERL,