1755 lines
61 KiB
C
1755 lines
61 KiB
C
const char loadcfg_rcs[] = "$Id: loadcfg.c,v 1.121 2011/07/30 15:05:23 fabiankeil Exp $";
|
|
/*********************************************************************
|
|
*
|
|
* File : $Source: /cvsroot/ijbswa/current/loadcfg.c,v $
|
|
*
|
|
* Purpose : Loads settings from the configuration file into
|
|
* global variables. This file contains both the
|
|
* routine to load the configuration and the global
|
|
* variables it writes to.
|
|
*
|
|
* Copyright : Written by and Copyright (C) 2001-2009 the
|
|
* Privoxy team. http://www.privoxy.org/
|
|
*
|
|
* Based on the Internet Junkbuster originally written
|
|
* by and Copyright (C) 1997 Anonymous Coders and
|
|
* Junkbusters Corporation. http://www.junkbusters.com
|
|
*
|
|
* This program is free software; you can redistribute it
|
|
* and/or modify it under the terms of the GNU General
|
|
* Public License as published by the Free Software
|
|
* Foundation; either version 2 of the License, or (at
|
|
* your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will
|
|
* be useful, but WITHOUT ANY WARRANTY; without even the
|
|
* implied warranty of MERCHANTABILITY or FITNESS FOR A
|
|
* PARTICULAR PURPOSE. See the GNU General Public
|
|
* License for more details.
|
|
*
|
|
* The GNU General Public License should be included with
|
|
* this file. If not, you can view it at
|
|
* http://www.gnu.org/copyleft/gpl.html
|
|
* or write to the Free Software Foundation, Inc., 59
|
|
* Temple Place - Suite 330, Boston, MA 02111-1307, USA.
|
|
*
|
|
*********************************************************************/
|
|
|
|
|
|
#include "config.h"
|
|
|
|
#include <stdio.h>
|
|
#include <sys/types.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <signal.h>
|
|
#include <fcntl.h>
|
|
#include <errno.h>
|
|
#include <ctype.h>
|
|
#include <assert.h>
|
|
|
|
#ifdef _WIN32
|
|
|
|
# ifndef STRICT
|
|
# define STRICT
|
|
# endif
|
|
# include <windows.h>
|
|
|
|
# include "win32.h"
|
|
# ifndef _WIN_CONSOLE
|
|
# include "w32log.h"
|
|
# endif /* ndef _WIN_CONSOLE */
|
|
|
|
#else /* ifndef _WIN32 */
|
|
|
|
#ifndef __OS2__
|
|
# include <unistd.h>
|
|
# include <sys/wait.h>
|
|
#endif
|
|
# include <sys/time.h>
|
|
# include <sys/stat.h>
|
|
# include <signal.h>
|
|
|
|
#endif
|
|
|
|
#include "loadcfg.h"
|
|
#include "list.h"
|
|
#include "jcc.h"
|
|
#include "filters.h"
|
|
#include "loaders.h"
|
|
#include "miscutil.h"
|
|
#include "errlog.h"
|
|
#include "ssplit.h"
|
|
#include "encode.h"
|
|
#include "urlmatch.h"
|
|
#include "cgi.h"
|
|
#include "gateway.h"
|
|
|
|
const char loadcfg_h_rcs[] = LOADCFG_H_VERSION;
|
|
|
|
/*
|
|
* Fix a problem with Solaris. There should be no effect on other
|
|
* platforms.
|
|
* Solaris's isspace() is a macro which uses it's argument directly
|
|
* as an array index. Therefore we need to make sure that high-bit
|
|
* characters generate +ve values, and ideally we also want to make
|
|
* the argument match the declared parameter type of "int".
|
|
*/
|
|
#define ijb_isupper(__X) isupper((int)(unsigned char)(__X))
|
|
#define ijb_tolower(__X) tolower((int)(unsigned char)(__X))
|
|
|
|
#ifdef FEATURE_TOGGLE
|
|
/* Privoxy is enabled by default. */
|
|
int global_toggle_state = 1;
|
|
#endif /* def FEATURE_TOGGLE */
|
|
|
|
/* The filename of the configfile */
|
|
const char *configfile = NULL;
|
|
|
|
/*
|
|
* CGI functions will later need access to the invocation args,
|
|
* so we will make argc and argv global.
|
|
*/
|
|
int Argc = 0;
|
|
char * const * Argv = NULL;
|
|
|
|
static struct file_list *current_configfile = NULL;
|
|
|
|
|
|
/*
|
|
* This takes the "cryptic" hash of each keyword and aliases them to
|
|
* something a little more readable. This also makes changing the
|
|
* hash values easier if they should change or the hash algorthm changes.
|
|
* Use the included "hash" program to find out what the hash will be
|
|
* for any string supplied on the command line. (Or just put it in the
|
|
* config file and read the number from the error message in the log).
|
|
*
|
|
* Please keep this list sorted alphabetically (but with the Windows
|
|
* console and GUI specific options last).
|
|
*/
|
|
|
|
#define hash_actions_file 1196306641ul /* "actionsfile" */
|
|
#define hash_accept_intercepted_requests 1513024973ul /* "accept-intercepted-requests" */
|
|
#define hash_admin_address 4112573064ul /* "admin-address" */
|
|
#define hash_allow_cgi_request_crunching 258915987ul /* "allow-cgi-request-crunching" */
|
|
#define hash_buffer_limit 1881726070ul /* "buffer-limit */
|
|
#define hash_compression_level 2464423563ul /* "compression-level" */
|
|
#define hash_confdir 1978389ul /* "confdir" */
|
|
#define hash_connection_sharing 1348841265ul /* "connection-sharing" */
|
|
#define hash_debug 78263ul /* "debug" */
|
|
#define hash_default_server_timeout 2530089913ul /* "default-server-timeout" */
|
|
#define hash_deny_access 1227333715ul /* "deny-access" */
|
|
#define hash_enable_edit_actions 2517097536ul /* "enable-edit-actions" */
|
|
#define hash_enable_compression 3943696946ul /* "enable-compression" */
|
|
#define hash_enable_remote_toggle 2979744683ul /* "enable-remote-toggle" */
|
|
#define hash_enable_remote_http_toggle 110543988ul /* "enable-remote-http-toggle" */
|
|
#define hash_enforce_blocks 1862427469ul /* "enforce-blocks" */
|
|
#define hash_filterfile 250887266ul /* "filterfile" */
|
|
#define hash_forward 2029845ul /* "forward" */
|
|
#define hash_forward_socks4 3963965521ul /* "forward-socks4" */
|
|
#define hash_forward_socks4a 2639958518ul /* "forward-socks4a" */
|
|
#define hash_forward_socks5 3963965522ul /* "forward-socks5" */
|
|
#define hash_forwarded_connect_retries 101465292ul /* "forwarded-connect-retries" */
|
|
#define hash_handle_as_empty_returns_ok 1444873247ul /* "handle-as-empty-doc-returns-ok" */
|
|
#define hash_hostname 10308071ul /* "hostname" */
|
|
#define hash_keep_alive_timeout 3878599515ul /* "keep-alive-timeout" */
|
|
#define hash_listen_address 1255650842ul /* "listen-address" */
|
|
#define hash_logdir 422889ul /* "logdir" */
|
|
#define hash_logfile 2114766ul /* "logfile" */
|
|
#define hash_max_client_connections 3595884446ul /* "max-client-connections" */
|
|
#define hash_permit_access 3587953268ul /* "permit-access" */
|
|
#define hash_proxy_info_url 3903079059ul /* "proxy-info-url" */
|
|
#define hash_single_threaded 4250084780ul /* "single-threaded" */
|
|
#define hash_socket_timeout 1809001761ul /* "socket-timeout" */
|
|
#define hash_split_large_cgi_forms 671658948ul /* "split-large-cgi-forms" */
|
|
#define hash_suppress_blocklists 1948693308ul /* "suppress-blocklists" */
|
|
#define hash_templdir 11067889ul /* "templdir" */
|
|
#define hash_toggle 447966ul /* "toggle" */
|
|
#define hash_trust_info_url 430331967ul /* "trust-info-url" */
|
|
#define hash_trustfile 56494766ul /* "trustfile" */
|
|
#define hash_usermanual 1416668518ul /* "user-manual" */
|
|
#define hash_activity_animation 1817904738ul /* "activity-animation" */
|
|
#define hash_close_button_minimizes 3651284693ul /* "close-button-minimizes" */
|
|
#define hash_hide_console 2048809870ul /* "hide-console" */
|
|
#define hash_log_buffer_size 2918070425ul /* "log-buffer-size" */
|
|
#define hash_log_font_name 2866730124ul /* "log-font-name" */
|
|
#define hash_log_font_size 2866731014ul /* "log-font-size" */
|
|
#define hash_log_highlight_messages 4032101240ul /* "log-highlight-messages" */
|
|
#define hash_log_max_lines 2868344173ul /* "log-max-lines" */
|
|
#define hash_log_messages 2291744899ul /* "log-messages" */
|
|
#define hash_show_on_task_bar 215410365ul /* "show-on-task-bar" */
|
|
|
|
|
|
static void savearg(char *command, char *argument, struct configuration_spec * config);
|
|
|
|
/*********************************************************************
|
|
*
|
|
* Function : unload_configfile
|
|
*
|
|
* Description : Free the config structure and all components.
|
|
*
|
|
* Parameters :
|
|
* 1 : data: struct configuration_spec to unload
|
|
*
|
|
* Returns : N/A
|
|
*
|
|
*********************************************************************/
|
|
static void unload_configfile (void * data)
|
|
{
|
|
struct configuration_spec * config = (struct configuration_spec *)data;
|
|
struct forward_spec *cur_fwd = config->forward;
|
|
int i;
|
|
|
|
#ifdef FEATURE_ACL
|
|
struct access_control_list *cur_acl = config->acl;
|
|
|
|
while (cur_acl != NULL)
|
|
{
|
|
struct access_control_list * next_acl = cur_acl->next;
|
|
free(cur_acl);
|
|
cur_acl = next_acl;
|
|
}
|
|
config->acl = NULL;
|
|
#endif /* def FEATURE_ACL */
|
|
|
|
while (cur_fwd != NULL)
|
|
{
|
|
struct forward_spec * next_fwd = cur_fwd->next;
|
|
free_url_spec(cur_fwd->url);
|
|
|
|
freez(cur_fwd->gateway_host);
|
|
freez(cur_fwd->forward_host);
|
|
free(cur_fwd);
|
|
cur_fwd = next_fwd;
|
|
}
|
|
config->forward = NULL;
|
|
|
|
freez(config->confdir);
|
|
freez(config->logdir);
|
|
freez(config->templdir);
|
|
freez(config->hostname);
|
|
|
|
for (i = 0; i < MAX_LISTENING_SOCKETS; i++)
|
|
{
|
|
freez(config->haddr[i]);
|
|
}
|
|
freez(config->logfile);
|
|
|
|
for (i = 0; i < MAX_AF_FILES; i++)
|
|
{
|
|
freez(config->actions_file_short[i]);
|
|
freez(config->actions_file[i]);
|
|
freez(config->re_filterfile_short[i]);
|
|
freez(config->re_filterfile[i]);
|
|
}
|
|
|
|
freez(config->admin_address);
|
|
freez(config->proxy_info_url);
|
|
freez(config->proxy_args);
|
|
freez(config->usermanual);
|
|
|
|
#ifdef FEATURE_TRUST
|
|
freez(config->trustfile);
|
|
list_remove_all(config->trust_info);
|
|
#endif /* def FEATURE_TRUST */
|
|
|
|
freez(config);
|
|
}
|
|
|
|
|
|
#ifdef FEATURE_GRACEFUL_TERMINATION
|
|
/*********************************************************************
|
|
*
|
|
* Function : unload_current_config_file
|
|
*
|
|
* Description : Unloads current config file - reset to state at
|
|
* beginning of program.
|
|
*
|
|
* Parameters : None
|
|
*
|
|
* Returns : N/A
|
|
*
|
|
*********************************************************************/
|
|
void unload_current_config_file(void)
|
|
{
|
|
if (current_configfile)
|
|
{
|
|
current_configfile->unloader = unload_configfile;
|
|
current_configfile = NULL;
|
|
}
|
|
}
|
|
#endif
|
|
|
|
|
|
/*********************************************************************
|
|
*
|
|
* Function : parse_toggle_value
|
|
*
|
|
* Description : Parse the value of a directive that can only be
|
|
* enabled or disabled. Terminates with a fatal error
|
|
* if the value is NULL or something other than 0 or 1.
|
|
*
|
|
* Parameters :
|
|
* 1 : name: The name of the directive. Used for log messages.
|
|
* 2 : value: The value to parse
|
|
*
|
|
*
|
|
* Returns : The numerical toggle state
|
|
*
|
|
*********************************************************************/
|
|
static int parse_toggle_state(const char *name, const char *value)
|
|
{
|
|
int toggle_state;
|
|
assert(name != NULL);
|
|
assert(value != NULL);
|
|
|
|
if ((value == NULL) || (*value == '\0'))
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Directive %s used without argument", name);
|
|
}
|
|
|
|
toggle_state = atoi(value);
|
|
|
|
/*
|
|
* Also check the length as atoi() doesn't mind
|
|
* garbage after a valid integer, but we do.
|
|
*/
|
|
if (((toggle_state != 0) && (toggle_state != 1)) || (strlen(value) != 1))
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"Directive %s used with invalid argument '%s'. Use either '0' or '1'.",
|
|
name, value);
|
|
}
|
|
|
|
return toggle_state;
|
|
|
|
}
|
|
|
|
|
|
/*********************************************************************
|
|
*
|
|
* Function : load_config
|
|
*
|
|
* Description : Load the config file and all parameters.
|
|
*
|
|
* XXX: more than thousand lines long
|
|
* and thus in serious need of refactoring.
|
|
*
|
|
* Parameters : None
|
|
*
|
|
* Returns : The configuration_spec, or NULL on error.
|
|
*
|
|
*********************************************************************/
|
|
struct configuration_spec * load_config(void)
|
|
{
|
|
char *buf = NULL;
|
|
char *p, *q;
|
|
FILE *configfp = NULL;
|
|
struct configuration_spec * config = NULL;
|
|
struct client_state * fake_csp;
|
|
struct file_list *fs;
|
|
unsigned long linenum = 0;
|
|
int i;
|
|
char *logfile = NULL;
|
|
|
|
if (!check_file_changed(current_configfile, configfile, &fs))
|
|
{
|
|
/* No need to load */
|
|
return ((struct configuration_spec *)current_configfile->f);
|
|
}
|
|
if (NULL == fs)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"can't check configuration file '%s': %E", configfile);
|
|
return NULL;
|
|
}
|
|
|
|
if (NULL != current_configfile)
|
|
{
|
|
log_error(LOG_LEVEL_INFO, "Reloading configuration file '%s'", configfile);
|
|
}
|
|
|
|
#ifdef FEATURE_TOGGLE
|
|
global_toggle_state = 1;
|
|
#endif /* def FEATURE_TOGGLE */
|
|
|
|
fs->f = config = (struct configuration_spec *)zalloc(sizeof(*config));
|
|
|
|
if (NULL == config)
|
|
{
|
|
freez(fs->filename);
|
|
freez(fs);
|
|
log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration");
|
|
return NULL;
|
|
}
|
|
|
|
/*
|
|
* This is backwards from how it's usually done.
|
|
* Following the usual pattern, "fs" would be stored in a member
|
|
* variable in "csp", and then we'd access "config" from "fs->f",
|
|
* using a cast. However, "config" is used so often that a
|
|
* cast each time would be very ugly, and the extra indirection
|
|
* would waste CPU cycles. Therefore we store "config" in
|
|
* "csp->config", and "fs" in "csp->config->config_file_list".
|
|
*/
|
|
config->config_file_list = fs;
|
|
|
|
/*
|
|
* Set to defaults
|
|
*/
|
|
config->multi_threaded = 1;
|
|
config->buffer_limit = 4096 * 1024;
|
|
config->usermanual = strdup(USER_MANUAL_URL);
|
|
config->proxy_args = strdup("");
|
|
config->forwarded_connect_retries = 0;
|
|
config->max_client_connections = 0;
|
|
config->socket_timeout = 300; /* XXX: Should be a macro. */
|
|
#ifdef FEATURE_CONNECTION_KEEP_ALIVE
|
|
config->default_server_timeout = 0;
|
|
config->keep_alive_timeout = DEFAULT_KEEP_ALIVE_TIMEOUT;
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CONNECTION_KEEP_ALIVE;
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CONNECTION_SHARING;
|
|
#endif
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CGI_TOGGLE;
|
|
config->feature_flags &= ~RUNTIME_FEATURE_SPLIT_LARGE_FORMS;
|
|
config->feature_flags &= ~RUNTIME_FEATURE_ACCEPT_INTERCEPTED_REQUESTS;
|
|
config->feature_flags &= ~RUNTIME_FEATURE_EMPTY_DOC_RETURNS_OK;
|
|
#ifdef FEATURE_COMPRESSION
|
|
config->feature_flags &= ~RUNTIME_FEATURE_COMPRESSION;
|
|
/*
|
|
* XXX: Run some benchmarks to see if there are better default values.
|
|
*/
|
|
config->compression_level = 1;
|
|
#endif
|
|
|
|
configfp = fopen(configfile, "r");
|
|
if (NULL == configfp)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"can't open configuration file '%s': %E", configfile);
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
}
|
|
|
|
while (read_config_line(configfp, &linenum, &buf) != NULL)
|
|
{
|
|
char cmd[BUFFER_SIZE];
|
|
char arg[BUFFER_SIZE];
|
|
char tmp[BUFFER_SIZE];
|
|
#ifdef FEATURE_ACL
|
|
struct access_control_list *cur_acl;
|
|
#endif /* def FEATURE_ACL */
|
|
struct forward_spec *cur_fwd;
|
|
int vec_count;
|
|
char *vec[3];
|
|
unsigned long directive_hash;
|
|
|
|
strlcpy(tmp, buf, sizeof(tmp));
|
|
|
|
/* Copy command (i.e. up to space or tab) into cmd */
|
|
p = buf;
|
|
q = cmd;
|
|
while (*p && (*p != ' ') && (*p != '\t'))
|
|
{
|
|
*q++ = *p++;
|
|
}
|
|
*q = '\0';
|
|
|
|
/* Skip over the whitespace in buf */
|
|
while (*p && ((*p == ' ') || (*p == '\t')))
|
|
{
|
|
p++;
|
|
}
|
|
|
|
/* Copy the argument into arg */
|
|
if (strlcpy(arg, p, sizeof(arg)) >= sizeof(arg))
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Config line too long: %s", buf);
|
|
}
|
|
|
|
/* Should never happen, but check this anyway */
|
|
if (*cmd == '\0')
|
|
{
|
|
freez(buf);
|
|
continue;
|
|
}
|
|
|
|
/* Make sure the command field is lower case */
|
|
for (p = cmd; *p; p++)
|
|
{
|
|
if (ijb_isupper(*p))
|
|
{
|
|
*p = (char)ijb_tolower(*p);
|
|
}
|
|
}
|
|
|
|
directive_hash = hash_string(cmd);
|
|
switch (directive_hash)
|
|
{
|
|
/* *************************************************************************
|
|
* actionsfile actions-file-name
|
|
* In confdir by default
|
|
* *************************************************************************/
|
|
case hash_actions_file :
|
|
i = 0;
|
|
while ((i < MAX_AF_FILES) && (NULL != config->actions_file[i]))
|
|
{
|
|
i++;
|
|
}
|
|
|
|
if (i >= MAX_AF_FILES)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Too many 'actionsfile' directives in config file - limit is %d.\n"
|
|
"(You can increase this limit by changing MAX_AF_FILES in project.h and recompiling).",
|
|
MAX_AF_FILES);
|
|
}
|
|
config->actions_file_short[i] = strdup(arg);
|
|
config->actions_file[i] = make_path(config->confdir, arg);
|
|
|
|
break;
|
|
/* *************************************************************************
|
|
* accept-intercepted-requests
|
|
* *************************************************************************/
|
|
case hash_accept_intercepted_requests:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_ACCEPT_INTERCEPTED_REQUESTS;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_ACCEPT_INTERCEPTED_REQUESTS;
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* admin-address email-address
|
|
* *************************************************************************/
|
|
case hash_admin_address :
|
|
freez(config->admin_address);
|
|
config->admin_address = strdup(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* allow-cgi-request-crunching
|
|
* *************************************************************************/
|
|
case hash_allow_cgi_request_crunching:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_CGI_CRUNCHING;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CGI_CRUNCHING;
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* buffer-limit n
|
|
* *************************************************************************/
|
|
case hash_buffer_limit :
|
|
config->buffer_limit = (size_t)(1024 * atoi(arg));
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* confdir directory-name
|
|
* *************************************************************************/
|
|
case hash_confdir :
|
|
freez(config->confdir);
|
|
config->confdir = make_path( NULL, arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* compression-level 0-9
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_COMPRESSION
|
|
case hash_compression_level :
|
|
if (*arg != '\0')
|
|
{
|
|
int compression_level = atoi(arg);
|
|
if (-1 <= compression_level && compression_level <= 9)
|
|
{
|
|
config->compression_level = compression_level;;
|
|
}
|
|
else
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"Invalid compression-level value: %s", arg);
|
|
}
|
|
}
|
|
else
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"Invalid compression-level directive. Compression value missing");
|
|
}
|
|
break;
|
|
#endif
|
|
|
|
/* *************************************************************************
|
|
* connection-sharing (0|1)
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_CONNECTION_SHARING
|
|
case hash_connection_sharing :
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_CONNECTION_SHARING;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CONNECTION_SHARING;
|
|
}
|
|
break;
|
|
#endif
|
|
|
|
/* *************************************************************************
|
|
* debug n
|
|
* Specifies debug level, multiple values are ORed together.
|
|
* *************************************************************************/
|
|
case hash_debug :
|
|
config->debug |= atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* default-server-timeout timeout
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_CONNECTION_KEEP_ALIVE
|
|
case hash_default_server_timeout :
|
|
if (*arg != '\0')
|
|
{
|
|
int timeout = atoi(arg);
|
|
if (0 < timeout)
|
|
{
|
|
config->default_server_timeout = (unsigned int)timeout;
|
|
}
|
|
else
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"Invalid default-server-timeout value: %s", arg);
|
|
}
|
|
}
|
|
break;
|
|
#endif
|
|
|
|
/* *************************************************************************
|
|
* deny-access source-ip[/significant-bits] [dest-ip[/significant-bits]]
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_ACL
|
|
case hash_deny_access:
|
|
strlcpy(tmp, arg, sizeof(tmp));
|
|
vec_count = ssplit(tmp, " \t", vec, SZ(vec), 1, 1);
|
|
|
|
if ((vec_count != 1) && (vec_count != 2))
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for "
|
|
"deny-access directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Wrong number of parameters for "
|
|
"deny-access directive in configuration file.<br><br>\n");
|
|
break;
|
|
}
|
|
|
|
/* allocate a new node */
|
|
cur_acl = (struct access_control_list *) zalloc(sizeof(*cur_acl));
|
|
|
|
if (cur_acl == NULL)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration");
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
break;
|
|
}
|
|
cur_acl->action = ACL_DENY;
|
|
|
|
if (acl_addr(vec[0], cur_acl->src) < 0)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Invalid source address, port or netmask "
|
|
"for deny-access directive in configuration file: \"%s\"", vec[0]);
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Invalid source address, port or netmask "
|
|
"for deny-access directive in configuration file: \"");
|
|
string_append(&config->proxy_args,
|
|
vec[0]);
|
|
string_append(&config->proxy_args,
|
|
"\"<br><br>\n");
|
|
freez(cur_acl);
|
|
break;
|
|
}
|
|
if (vec_count == 2)
|
|
{
|
|
if (acl_addr(vec[1], cur_acl->dst) < 0)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Invalid destination address, port or netmask "
|
|
"for deny-access directive in configuration file: \"%s\"", vec[1]);
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Invalid destination address, port or netmask "
|
|
"for deny-access directive in configuration file: \"");
|
|
string_append(&config->proxy_args,
|
|
vec[1]);
|
|
string_append(&config->proxy_args,
|
|
"\"<br><br>\n");
|
|
freez(cur_acl);
|
|
break;
|
|
}
|
|
}
|
|
#ifdef HAVE_RFC2553
|
|
else
|
|
{
|
|
cur_acl->wildcard_dst = 1;
|
|
}
|
|
#endif /* def HAVE_RFC2553 */
|
|
|
|
/*
|
|
* Add it to the list. Note we reverse the list to get the
|
|
* behaviour the user expects. With both the ACL and
|
|
* actions file, the last match wins. However, the internal
|
|
* implementations are different: The actions file is stored
|
|
* in the same order as the file, and scanned completely.
|
|
* With the ACL, we reverse the order as we load it, then
|
|
* when we scan it we stop as soon as we get a match.
|
|
*/
|
|
cur_acl->next = config->acl;
|
|
config->acl = cur_acl;
|
|
|
|
break;
|
|
#endif /* def FEATURE_ACL */
|
|
|
|
/* *************************************************************************
|
|
* enable-edit-actions 0|1
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_CGI_EDIT_ACTIONS
|
|
case hash_enable_edit_actions:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_CGI_EDIT_ACTIONS;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CGI_EDIT_ACTIONS;
|
|
}
|
|
break;
|
|
#endif /* def FEATURE_CGI_EDIT_ACTIONS */
|
|
|
|
/* *************************************************************************
|
|
* enable-compression 0|1
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_COMPRESSION
|
|
case hash_enable_compression:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_COMPRESSION;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_COMPRESSION;
|
|
}
|
|
break;
|
|
#endif /* def FEATURE_COMPRESSION */
|
|
|
|
|
|
/* *************************************************************************
|
|
* enable-remote-toggle 0|1
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_TOGGLE
|
|
case hash_enable_remote_toggle:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_CGI_TOGGLE;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CGI_TOGGLE;
|
|
}
|
|
break;
|
|
#endif /* def FEATURE_TOGGLE */
|
|
|
|
/* *************************************************************************
|
|
* enable-remote-http-toggle 0|1
|
|
* *************************************************************************/
|
|
case hash_enable_remote_http_toggle:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_HTTP_TOGGLE;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_HTTP_TOGGLE;
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* enforce-blocks 0|1
|
|
* *************************************************************************/
|
|
case hash_enforce_blocks:
|
|
#ifdef FEATURE_FORCE_LOAD
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_ENFORCE_BLOCKS;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_ENFORCE_BLOCKS;
|
|
}
|
|
#else
|
|
log_error(LOG_LEVEL_ERROR, "Ignoring directive 'enforce-blocks'. "
|
|
"FEATURE_FORCE_LOAD is disabled, blocks will always be enforced.");
|
|
#endif /* def FEATURE_FORCE_LOAD */
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* filterfile file-name
|
|
* In confdir by default.
|
|
* *************************************************************************/
|
|
case hash_filterfile :
|
|
i = 0;
|
|
while ((i < MAX_AF_FILES) && (NULL != config->re_filterfile[i]))
|
|
{
|
|
i++;
|
|
}
|
|
|
|
if (i >= MAX_AF_FILES)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Too many 'filterfile' directives in config file - limit is %d.\n"
|
|
"(You can increase this limit by changing MAX_AF_FILES in project.h and recompiling).",
|
|
MAX_AF_FILES);
|
|
}
|
|
config->re_filterfile_short[i] = strdup(arg);
|
|
config->re_filterfile[i] = make_path(config->confdir, arg);
|
|
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* forward url-pattern (.|http-proxy-host[:port])
|
|
* *************************************************************************/
|
|
case hash_forward:
|
|
strlcpy(tmp, arg, sizeof(tmp));
|
|
vec_count = ssplit(tmp, " \t", vec, SZ(vec), 1, 1);
|
|
|
|
if (vec_count != 2)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for forward "
|
|
"directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Wrong number of parameters for "
|
|
"forward directive in configuration file.");
|
|
break;
|
|
}
|
|
|
|
/* allocate a new node */
|
|
cur_fwd = zalloc(sizeof(*cur_fwd));
|
|
if (cur_fwd == NULL)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration");
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
break;
|
|
}
|
|
|
|
cur_fwd->type = SOCKS_NONE;
|
|
|
|
/* Save the URL pattern */
|
|
if (create_url_spec(cur_fwd->url, vec[0]))
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Bad URL specifier for forward "
|
|
"directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Bad URL specifier for "
|
|
"forward directive in configuration file.");
|
|
break;
|
|
}
|
|
|
|
/* Parse the parent HTTP proxy host:port */
|
|
p = vec[1];
|
|
|
|
if (strcmp(p, ".") != 0)
|
|
{
|
|
cur_fwd->forward_port = 8000;
|
|
parse_forwarder_address(p, &cur_fwd->forward_host,
|
|
&cur_fwd->forward_port);
|
|
}
|
|
|
|
/* Add to list. */
|
|
cur_fwd->next = config->forward;
|
|
config->forward = cur_fwd;
|
|
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* forward-socks4 url-pattern socks-proxy[:port] (.|http-proxy[:port])
|
|
* *************************************************************************/
|
|
case hash_forward_socks4:
|
|
strlcpy(tmp, arg, sizeof(tmp));
|
|
vec_count = ssplit(tmp, " \t", vec, SZ(vec), 1, 1);
|
|
|
|
if (vec_count != 3)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for "
|
|
"forward-socks4 directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Wrong number of parameters for "
|
|
"forward-socks4 directive in configuration file.");
|
|
break;
|
|
}
|
|
|
|
/* allocate a new node */
|
|
cur_fwd = zalloc(sizeof(*cur_fwd));
|
|
if (cur_fwd == NULL)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration");
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
break;
|
|
}
|
|
|
|
cur_fwd->type = SOCKS_4;
|
|
|
|
/* Save the URL pattern */
|
|
if (create_url_spec(cur_fwd->url, vec[0]))
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Bad URL specifier for forward-socks4 "
|
|
"directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Bad URL specifier for "
|
|
"forward-socks4 directive in configuration file.");
|
|
break;
|
|
}
|
|
|
|
/* Parse the SOCKS proxy host[:port] */
|
|
p = vec[1];
|
|
|
|
/* XXX: This check looks like a bug. */
|
|
if (strcmp(p, ".") != 0)
|
|
{
|
|
cur_fwd->gateway_port = 1080;
|
|
parse_forwarder_address(p, &cur_fwd->gateway_host,
|
|
&cur_fwd->gateway_port);
|
|
}
|
|
|
|
/* Parse the parent HTTP proxy host[:port] */
|
|
p = vec[2];
|
|
|
|
if (strcmp(p, ".") != 0)
|
|
{
|
|
cur_fwd->forward_port = 8000;
|
|
parse_forwarder_address(p, &cur_fwd->forward_host,
|
|
&cur_fwd->forward_port);
|
|
}
|
|
|
|
/* Add to list. */
|
|
cur_fwd->next = config->forward;
|
|
config->forward = cur_fwd;
|
|
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* forward-socks4a url-pattern socks-proxy[:port] (.|http-proxy[:port])
|
|
* *************************************************************************/
|
|
case hash_forward_socks4a:
|
|
case hash_forward_socks5:
|
|
strlcpy(tmp, arg, sizeof(tmp));
|
|
vec_count = ssplit(tmp, " \t", vec, SZ(vec), 1, 1);
|
|
|
|
if (vec_count != 3)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for "
|
|
"forward-socks4a directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Wrong number of parameters for "
|
|
"forward-socks4a directive in configuration file.");
|
|
break;
|
|
}
|
|
|
|
/* allocate a new node */
|
|
cur_fwd = zalloc(sizeof(*cur_fwd));
|
|
if (cur_fwd == NULL)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration");
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
break;
|
|
}
|
|
|
|
if (directive_hash == hash_forward_socks4a)
|
|
{
|
|
cur_fwd->type = SOCKS_4A;
|
|
}
|
|
else
|
|
{
|
|
cur_fwd->type = SOCKS_5;
|
|
}
|
|
|
|
/* Save the URL pattern */
|
|
if (create_url_spec(cur_fwd->url, vec[0]))
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Bad URL specifier for forward-socks4a "
|
|
"directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Bad URL specifier for "
|
|
"forward-socks4a directive in configuration file.");
|
|
break;
|
|
}
|
|
|
|
/* Parse the SOCKS proxy host[:port] */
|
|
p = vec[1];
|
|
|
|
cur_fwd->gateway_port = 1080;
|
|
parse_forwarder_address(p, &cur_fwd->gateway_host,
|
|
&cur_fwd->gateway_port);
|
|
|
|
/* Parse the parent HTTP proxy host[:port] */
|
|
p = vec[2];
|
|
|
|
if (strcmp(p, ".") != 0)
|
|
{
|
|
cur_fwd->forward_port = 8000;
|
|
parse_forwarder_address(p, &cur_fwd->forward_host,
|
|
&cur_fwd->forward_port);
|
|
}
|
|
|
|
/* Add to list. */
|
|
cur_fwd->next = config->forward;
|
|
config->forward = cur_fwd;
|
|
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* forwarded-connect-retries n
|
|
* *************************************************************************/
|
|
case hash_forwarded_connect_retries :
|
|
config->forwarded_connect_retries = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* handle-as-empty-doc-returns-ok 0|1
|
|
*
|
|
* Workaround for firefox hanging on blocked javascript pages.
|
|
* Block with the "+handle-as-empty-document" flag and set the
|
|
* "handle-as-empty-doc-returns-ok" run-time config flag so that
|
|
* Privoxy returns a 200/OK status instead of a 403/Forbidden status
|
|
* to the browser for blocked pages.
|
|
***************************************************************************/
|
|
case hash_handle_as_empty_returns_ok:
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_EMPTY_DOC_RETURNS_OK;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_EMPTY_DOC_RETURNS_OK;
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* hostname hostname-to-show-on-cgi-pages
|
|
* *************************************************************************/
|
|
case hash_hostname :
|
|
freez(config->hostname);
|
|
config->hostname = strdup(arg);
|
|
if (NULL == config->hostname)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Out of memory saving hostname.");
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* keep-alive-timeout timeout
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_CONNECTION_KEEP_ALIVE
|
|
case hash_keep_alive_timeout :
|
|
if (*arg != '\0')
|
|
{
|
|
int timeout = atoi(arg);
|
|
if (0 < timeout)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_CONNECTION_KEEP_ALIVE;
|
|
config->keep_alive_timeout = (unsigned int)timeout;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CONNECTION_KEEP_ALIVE;
|
|
}
|
|
}
|
|
break;
|
|
#endif
|
|
|
|
/* *************************************************************************
|
|
* listen-address [ip][:port]
|
|
* *************************************************************************/
|
|
case hash_listen_address :
|
|
i = 0;
|
|
while ((i < MAX_LISTENING_SOCKETS) && (NULL != config->haddr[i]))
|
|
{
|
|
i++;
|
|
}
|
|
|
|
if (i >= MAX_LISTENING_SOCKETS)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Too many 'listen-address' directives in config file - limit is %d.\n"
|
|
"(You can increase this limit by changing MAX_LISTENING_SOCKETS in project.h and recompiling).",
|
|
MAX_LISTENING_SOCKETS);
|
|
}
|
|
config->haddr[i] = strdup(arg);
|
|
if (NULL == config->haddr[i])
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Out of memory while copying listening address");
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* logdir directory-name
|
|
* *************************************************************************/
|
|
case hash_logdir :
|
|
freez(config->logdir);
|
|
config->logdir = make_path(NULL, arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* logfile log-file-name
|
|
* In logdir by default
|
|
* *************************************************************************/
|
|
case hash_logfile :
|
|
if (daemon_mode)
|
|
{
|
|
logfile = make_path(config->logdir, arg);
|
|
if (NULL == logfile)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Out of memory while creating logfile path");
|
|
}
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* max-client-connections number
|
|
* *************************************************************************/
|
|
case hash_max_client_connections :
|
|
if (*arg != '\0')
|
|
{
|
|
int max_client_connections = atoi(arg);
|
|
if (0 <= max_client_connections)
|
|
{
|
|
config->max_client_connections = max_client_connections;
|
|
}
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* permit-access source-ip[/significant-bits] [dest-ip[/significant-bits]]
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_ACL
|
|
case hash_permit_access:
|
|
strlcpy(tmp, arg, sizeof(tmp));
|
|
vec_count = ssplit(tmp, " \t", vec, SZ(vec), 1, 1);
|
|
|
|
if ((vec_count != 1) && (vec_count != 2))
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Wrong number of parameters for "
|
|
"permit-access directive in configuration file.");
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Wrong number of parameters for "
|
|
"permit-access directive in configuration file.<br><br>\n");
|
|
|
|
break;
|
|
}
|
|
|
|
/* allocate a new node */
|
|
cur_acl = (struct access_control_list *) zalloc(sizeof(*cur_acl));
|
|
|
|
if (cur_acl == NULL)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "can't allocate memory for configuration");
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
break;
|
|
}
|
|
cur_acl->action = ACL_PERMIT;
|
|
|
|
if (acl_addr(vec[0], cur_acl->src) < 0)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Invalid source address, port or netmask "
|
|
"for permit-access directive in configuration file: \"%s\"", vec[0]);
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Invalid source address, port or netmask for "
|
|
"permit-access directive in configuration file: \"");
|
|
string_append(&config->proxy_args,
|
|
vec[0]);
|
|
string_append(&config->proxy_args,
|
|
"\"<br><br>\n");
|
|
freez(cur_acl);
|
|
break;
|
|
}
|
|
if (vec_count == 2)
|
|
{
|
|
if (acl_addr(vec[1], cur_acl->dst) < 0)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Invalid destination address, port or netmask "
|
|
"for permit-access directive in configuration file: \"%s\"", vec[1]);
|
|
string_append(&config->proxy_args,
|
|
"<br>\nWARNING: Invalid destination address, port or netmask for "
|
|
"permit-access directive in configuration file: \"");
|
|
string_append(&config->proxy_args,
|
|
vec[1]);
|
|
string_append(&config->proxy_args,
|
|
"\"<br><br>\n");
|
|
freez(cur_acl);
|
|
break;
|
|
}
|
|
}
|
|
#ifdef HAVE_RFC2553
|
|
else
|
|
{
|
|
cur_acl->wildcard_dst = 1;
|
|
}
|
|
#endif /* def HAVE_RFC2553 */
|
|
|
|
/*
|
|
* Add it to the list. Note we reverse the list to get the
|
|
* behaviour the user expects. With both the ACL and
|
|
* actions file, the last match wins. However, the internal
|
|
* implementations are different: The actions file is stored
|
|
* in the same order as the file, and scanned completely.
|
|
* With the ACL, we reverse the order as we load it, then
|
|
* when we scan it we stop as soon as we get a match.
|
|
*/
|
|
cur_acl->next = config->acl;
|
|
config->acl = cur_acl;
|
|
|
|
break;
|
|
#endif /* def FEATURE_ACL */
|
|
|
|
/* *************************************************************************
|
|
* proxy-info-url url
|
|
* *************************************************************************/
|
|
case hash_proxy_info_url :
|
|
freez(config->proxy_info_url);
|
|
config->proxy_info_url = strdup(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* single-threaded
|
|
* *************************************************************************/
|
|
case hash_single_threaded :
|
|
config->multi_threaded = 0;
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* socket-timeout numer_of_seconds
|
|
* *************************************************************************/
|
|
case hash_socket_timeout :
|
|
if (*arg != '\0')
|
|
{
|
|
int socket_timeout = atoi(arg);
|
|
if (0 < socket_timeout)
|
|
{
|
|
config->socket_timeout = socket_timeout;
|
|
}
|
|
else
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"Invalid socket-timeout: '%s'", arg);
|
|
}
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* split-large-cgi-forms
|
|
* *************************************************************************/
|
|
case hash_split_large_cgi_forms :
|
|
if (parse_toggle_state(cmd, arg) == 1)
|
|
{
|
|
config->feature_flags |= RUNTIME_FEATURE_SPLIT_LARGE_FORMS;
|
|
}
|
|
else
|
|
{
|
|
config->feature_flags &= ~RUNTIME_FEATURE_SPLIT_LARGE_FORMS;
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* templdir directory-name
|
|
* *************************************************************************/
|
|
case hash_templdir :
|
|
freez(config->templdir);
|
|
config->templdir = make_path(NULL, arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* toggle (0|1)
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_TOGGLE
|
|
case hash_toggle :
|
|
global_toggle_state = atoi(arg);
|
|
break;
|
|
#endif /* def FEATURE_TOGGLE */
|
|
|
|
/* *************************************************************************
|
|
* trust-info-url url
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_TRUST
|
|
case hash_trust_info_url :
|
|
enlist(config->trust_info, arg);
|
|
break;
|
|
#endif /* def FEATURE_TRUST */
|
|
|
|
/* *************************************************************************
|
|
* trustfile filename
|
|
* (In confdir by default.)
|
|
* *************************************************************************/
|
|
#ifdef FEATURE_TRUST
|
|
case hash_trustfile :
|
|
freez(config->trustfile);
|
|
config->trustfile = make_path(config->confdir, arg);
|
|
break;
|
|
#endif /* def FEATURE_TRUST */
|
|
|
|
/* *************************************************************************
|
|
* usermanual url
|
|
* *************************************************************************/
|
|
case hash_usermanual :
|
|
/*
|
|
* XXX: If this isn't the first config directive, the
|
|
* show-status page links to the website documentation
|
|
* for the directives that were already parsed. Lame.
|
|
*/
|
|
freez(config->usermanual);
|
|
config->usermanual = strdup(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* Win32 Console options:
|
|
* *************************************************************************/
|
|
|
|
/* *************************************************************************
|
|
* hide-console
|
|
* *************************************************************************/
|
|
#ifdef _WIN_CONSOLE
|
|
case hash_hide_console :
|
|
hideConsole = 1;
|
|
break;
|
|
#endif /*def _WIN_CONSOLE*/
|
|
|
|
|
|
/* *************************************************************************
|
|
* Win32 GUI options:
|
|
* *************************************************************************/
|
|
|
|
#if defined(_WIN32) && ! defined(_WIN_CONSOLE)
|
|
/* *************************************************************************
|
|
* activity-animation (0|1)
|
|
* *************************************************************************/
|
|
case hash_activity_animation :
|
|
g_bShowActivityAnimation = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* close-button-minimizes (0|1)
|
|
* *************************************************************************/
|
|
case hash_close_button_minimizes :
|
|
g_bCloseHidesWindow = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* log-buffer-size (0|1)
|
|
* *************************************************************************/
|
|
case hash_log_buffer_size :
|
|
g_bLimitBufferSize = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* log-font-name fontname
|
|
* *************************************************************************/
|
|
case hash_log_font_name :
|
|
if (strlcpy(g_szFontFaceName, arg,
|
|
sizeof(g_szFontFaceName)) >= sizeof(g_szFontFaceName))
|
|
{
|
|
log_error(LOG_LEVEL_FATAL,
|
|
"log-font-name argument '%s' is longer than %u characters.",
|
|
arg, sizeof(g_szFontFaceName)-1);
|
|
}
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* log-font-size n
|
|
* *************************************************************************/
|
|
case hash_log_font_size :
|
|
g_nFontSize = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* log-highlight-messages (0|1)
|
|
* *************************************************************************/
|
|
case hash_log_highlight_messages :
|
|
g_bHighlightMessages = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* log-max-lines n
|
|
* *************************************************************************/
|
|
case hash_log_max_lines :
|
|
g_nMaxBufferLines = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* log-messages (0|1)
|
|
* *************************************************************************/
|
|
case hash_log_messages :
|
|
g_bLogMessages = atoi(arg);
|
|
break;
|
|
|
|
/* *************************************************************************
|
|
* show-on-task-bar (0|1)
|
|
* *************************************************************************/
|
|
case hash_show_on_task_bar :
|
|
g_bShowOnTaskBar = atoi(arg);
|
|
break;
|
|
|
|
#endif /* defined(_WIN32) && ! defined(_WIN_CONSOLE) */
|
|
|
|
|
|
/* *************************************************************************
|
|
* Warnings about unsupported features
|
|
* *************************************************************************/
|
|
#ifndef FEATURE_ACL
|
|
case hash_deny_access:
|
|
#endif /* ndef FEATURE_ACL */
|
|
#ifndef FEATURE_CGI_EDIT_ACTIONS
|
|
case hash_enable_edit_actions:
|
|
#endif /* ndef FEATURE_CGI_EDIT_ACTIONS */
|
|
#ifndef FEATURE_TOGGLE
|
|
case hash_enable_remote_toggle:
|
|
#endif /* ndef FEATURE_TOGGLE */
|
|
#ifndef FEATURE_ACL
|
|
case hash_permit_access:
|
|
#endif /* ndef FEATURE_ACL */
|
|
#ifndef FEATURE_TOGGLE
|
|
case hash_toggle :
|
|
#endif /* ndef FEATURE_TOGGLE */
|
|
#ifndef FEATURE_TRUST
|
|
case hash_trustfile :
|
|
case hash_trust_info_url :
|
|
#endif /* ndef FEATURE_TRUST */
|
|
|
|
#ifndef _WIN_CONSOLE
|
|
case hash_hide_console :
|
|
#endif /* ndef _WIN_CONSOLE */
|
|
|
|
#if defined(_WIN_CONSOLE) || ! defined(_WIN32)
|
|
case hash_activity_animation :
|
|
case hash_close_button_minimizes :
|
|
case hash_log_buffer_size :
|
|
case hash_log_font_name :
|
|
case hash_log_font_size :
|
|
case hash_log_highlight_messages :
|
|
case hash_log_max_lines :
|
|
case hash_log_messages :
|
|
case hash_show_on_task_bar :
|
|
#endif /* defined(_WIN_CONSOLE) || ! defined(_WIN32) */
|
|
/* These warnings are annoying - so hide them. -- Jon */
|
|
/* log_error(LOG_LEVEL_INFO, "Unsupported directive \"%s\" ignored.", cmd); */
|
|
break;
|
|
|
|
/* *************************************************************************/
|
|
default :
|
|
/* *************************************************************************/
|
|
/*
|
|
* I decided that I liked this better as a warning than an
|
|
* error. To change back to an error, just change log level
|
|
* to LOG_LEVEL_FATAL.
|
|
*/
|
|
log_error(LOG_LEVEL_ERROR, "Ignoring unrecognized directive '%s' (%luul) in line %lu "
|
|
"in configuration file (%s).", buf, directive_hash, linenum, configfile);
|
|
string_append(&config->proxy_args,
|
|
" <strong class='warning'>Warning: Ignoring unrecognized directive:</strong>");
|
|
break;
|
|
|
|
/* *************************************************************************/
|
|
} /* end switch( hash_string(cmd) ) */
|
|
|
|
/* Save the argument for the show-status page. */
|
|
savearg(cmd, arg, config);
|
|
freez(buf);
|
|
} /* end while ( read_config_line(...) ) */
|
|
|
|
fclose(configfp);
|
|
|
|
set_debug_level(config->debug);
|
|
|
|
freez(config->logfile);
|
|
|
|
if (daemon_mode)
|
|
{
|
|
if (NULL != logfile)
|
|
{
|
|
config->logfile = logfile;
|
|
init_error_log(Argv[0], config->logfile);
|
|
}
|
|
else
|
|
{
|
|
disable_logging();
|
|
}
|
|
}
|
|
|
|
#ifdef FEATURE_CONNECTION_KEEP_ALIVE
|
|
if (config->default_server_timeout > config->keep_alive_timeout)
|
|
{
|
|
log_error(LOG_LEVEL_ERROR,
|
|
"Reducing the default-server-timeout from %d to the keep-alive-timeout %d.",
|
|
config->default_server_timeout, config->keep_alive_timeout);
|
|
config->default_server_timeout = config->keep_alive_timeout;
|
|
}
|
|
#endif /* def FEATURE_CONNECTION_KEEP_ALIVE */
|
|
|
|
#ifdef FEATURE_CONNECTION_SHARING
|
|
if (config->feature_flags & RUNTIME_FEATURE_CONNECTION_KEEP_ALIVE)
|
|
{
|
|
if (config->multi_threaded)
|
|
{
|
|
set_keep_alive_timeout(config->keep_alive_timeout);
|
|
}
|
|
else
|
|
{
|
|
/*
|
|
* While we could use keep-alive without multiple threads
|
|
* if we didn't bother with enforcing the connection timeout,
|
|
* that might make Tor users sad, even though they shouldn't
|
|
* enable the single-threaded option anyway.
|
|
*
|
|
* XXX: We could still use Proxy-Connection: keep-alive.
|
|
*/
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CONNECTION_KEEP_ALIVE;
|
|
log_error(LOG_LEVEL_ERROR,
|
|
"Config option single-threaded disables connection keep-alive.");
|
|
}
|
|
}
|
|
else if ((config->feature_flags & RUNTIME_FEATURE_CONNECTION_SHARING))
|
|
{
|
|
log_error(LOG_LEVEL_ERROR, "Config option connection-sharing "
|
|
"has no effect if keep-alive-timeout isn't set.");
|
|
config->feature_flags &= ~RUNTIME_FEATURE_CONNECTION_SHARING;
|
|
}
|
|
#endif /* def FEATURE_CONNECTION_SHARING */
|
|
|
|
if (NULL == config->proxy_args)
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Out of memory loading config - insufficient memory for config->proxy_args");
|
|
}
|
|
|
|
if (config->re_filterfile[0])
|
|
{
|
|
add_loader(load_re_filterfiles, config);
|
|
}
|
|
|
|
if (config->actions_file[0])
|
|
{
|
|
add_loader(load_action_files, config);
|
|
}
|
|
|
|
#ifdef FEATURE_TRUST
|
|
if (config->trustfile)
|
|
{
|
|
add_loader(load_trustfile, config);
|
|
}
|
|
#endif /* def FEATURE_TRUST */
|
|
|
|
if ( NULL == config->haddr[0] )
|
|
{
|
|
config->haddr[0] = strdup( HADDR_DEFAULT );
|
|
if (NULL == config->haddr[0])
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "Out of memory while copying default listening address");
|
|
}
|
|
}
|
|
|
|
for (i = 0; i < MAX_LISTENING_SOCKETS && NULL != config->haddr[i]; i++)
|
|
{
|
|
if ((*config->haddr[i] == '[')
|
|
&& (NULL != (p = strchr(config->haddr[i], ']')))
|
|
&& (p[1] == ':')
|
|
&& (0 < (config->hport[i] = atoi(p + 2))))
|
|
{
|
|
*p = '\0';
|
|
memmove((void *)config->haddr[i], config->haddr[i] + 1,
|
|
(size_t)(p - config->haddr[i]));
|
|
}
|
|
else if (NULL != (p = strchr(config->haddr[i], ':'))
|
|
&& (0 < (config->hport[i] = atoi(p + 1))))
|
|
{
|
|
*p = '\0';
|
|
}
|
|
else
|
|
{
|
|
log_error(LOG_LEVEL_FATAL, "invalid bind port spec %s", config->haddr[i]);
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
}
|
|
if (*config->haddr[i] == '\0')
|
|
{
|
|
/*
|
|
* Only the port specified. We stored it in config->hport[i]
|
|
* and don't need its text representation anymore.
|
|
* Use config->hport[i] == 0 to iterate listening addresses since
|
|
* now.
|
|
*/
|
|
freez(config->haddr[i]);
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Want to run all the loaders once now.
|
|
*
|
|
* Need to set up a fake csp, so they can get to the config.
|
|
*/
|
|
fake_csp = (struct client_state *) zalloc (sizeof(*fake_csp));
|
|
fake_csp->config = config;
|
|
|
|
if (run_loader(fake_csp))
|
|
{
|
|
freez(fake_csp);
|
|
log_error(LOG_LEVEL_FATAL, "A loader failed while loading config file. Exiting.");
|
|
/* Never get here - LOG_LEVEL_FATAL causes program exit */
|
|
}
|
|
freez(fake_csp);
|
|
|
|
/* FIXME: this is a kludge for win32 */
|
|
#if defined(_WIN32) && !defined (_WIN_CONSOLE)
|
|
|
|
g_default_actions_file = config->actions_file[1]; /* FIXME Hope this is default.action */
|
|
g_user_actions_file = config->actions_file[2]; /* FIXME Hope this is user.action */
|
|
g_default_filterfile = config->re_filterfile[0]; /* FIXME Hope this is default.filter */
|
|
g_user_filterfile = config->re_filterfile[1]; /* FIXME Hope this is user.filter */
|
|
|
|
#ifdef FEATURE_TRUST
|
|
g_trustfile = config->trustfile;
|
|
#endif /* def FEATURE_TRUST */
|
|
|
|
|
|
#endif /* defined(_WIN32) && !defined (_WIN_CONSOLE) */
|
|
/* FIXME: end kludge */
|
|
|
|
|
|
config->need_bind = 1;
|
|
|
|
if (current_configfile)
|
|
{
|
|
struct configuration_spec * oldcfg = (struct configuration_spec *)
|
|
current_configfile->f;
|
|
/*
|
|
* Check if config->haddr[i],hport[i] == oldcfg->haddr[i],hport[i]
|
|
*
|
|
* The following could be written more compactly as a single,
|
|
* (unreadably long) if statement.
|
|
*/
|
|
config->need_bind = 0;
|
|
|
|
for (i = 0; i < MAX_LISTENING_SOCKETS; i++)
|
|
{
|
|
if (config->hport[i] != oldcfg->hport[i])
|
|
{
|
|
config->need_bind = 1;
|
|
}
|
|
else if (config->haddr[i] == NULL)
|
|
{
|
|
if (oldcfg->haddr[i] != NULL)
|
|
{
|
|
config->need_bind = 1;
|
|
}
|
|
}
|
|
else if (oldcfg->haddr[i] == NULL)
|
|
{
|
|
config->need_bind = 1;
|
|
}
|
|
else if (0 != strcmp(config->haddr[i], oldcfg->haddr[i]))
|
|
{
|
|
config->need_bind = 1;
|
|
}
|
|
}
|
|
|
|
current_configfile->unloader = unload_configfile;
|
|
}
|
|
|
|
fs->next = files->next;
|
|
files->next = fs;
|
|
|
|
current_configfile = fs;
|
|
|
|
return (config);
|
|
}
|
|
|
|
|
|
/*********************************************************************
|
|
*
|
|
* Function : savearg
|
|
*
|
|
* Description : Called from `load_config'. It saves each non-empty
|
|
* and non-comment line from config into
|
|
* config->proxy_args. This is used to create the
|
|
* show-proxy-args page. On error, frees
|
|
* config->proxy_args and sets it to NULL
|
|
*
|
|
* Parameters :
|
|
* 1 : command = config setting that was found
|
|
* 2 : argument = the setting's argument (if any)
|
|
* 3 : config = Configuration to save into.
|
|
*
|
|
* Returns : N/A
|
|
*
|
|
*********************************************************************/
|
|
static void savearg(char *command, char *argument, struct configuration_spec * config)
|
|
{
|
|
char * buf;
|
|
char * s;
|
|
|
|
assert(command);
|
|
assert(argument);
|
|
|
|
/*
|
|
* Add config option name embedded in
|
|
* link to its section in the user-manual
|
|
*/
|
|
buf = strdup("\n<a href=\"");
|
|
if (!strncmpic(config->usermanual, "file://", 7) ||
|
|
!strncmpic(config->usermanual, "http", 4))
|
|
{
|
|
string_append(&buf, config->usermanual);
|
|
}
|
|
else
|
|
{
|
|
string_append(&buf, "http://" CGI_SITE_2_HOST "/user-manual/");
|
|
}
|
|
string_append(&buf, CONFIG_HELP_PREFIX);
|
|
string_join (&buf, string_toupper(command));
|
|
string_append(&buf, "\">");
|
|
string_append(&buf, command);
|
|
string_append(&buf, "</a> ");
|
|
|
|
if (NULL == buf)
|
|
{
|
|
freez(config->proxy_args);
|
|
return;
|
|
}
|
|
|
|
if ( (NULL != argument) && ('\0' != *argument) )
|
|
{
|
|
s = html_encode(argument);
|
|
if (NULL == s)
|
|
{
|
|
freez(buf);
|
|
freez(config->proxy_args);
|
|
return;
|
|
}
|
|
|
|
if (strncmpic(argument, "http://", 7) == 0)
|
|
{
|
|
string_append(&buf, "<a href=\"");
|
|
string_append(&buf, s);
|
|
string_append(&buf, "\">");
|
|
string_join (&buf, s);
|
|
string_append(&buf, "</a>");
|
|
}
|
|
else
|
|
{
|
|
string_join (&buf, s);
|
|
}
|
|
}
|
|
|
|
string_append(&buf, "<br>");
|
|
string_join(&config->proxy_args, buf);
|
|
}
|
|
|
|
|
|
/*
|
|
Local Variables:
|
|
tab-width: 3
|
|
end:
|
|
*/
|