nginxtra 1.0.15.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (363) hide show
  1. data/VERSION +1 -0
  2. data/bin/nginxtra +5 -0
  3. data/lib/nginxtra.rb +12 -0
  4. data/lib/nginxtra/action.rb +36 -0
  5. data/lib/nginxtra/actions/compile.rb +60 -0
  6. data/lib/nginxtra/actions/install.rb +99 -0
  7. data/lib/nginxtra/actions/reload.rb +14 -0
  8. data/lib/nginxtra/actions/restart.rb +15 -0
  9. data/lib/nginxtra/actions/start.rb +53 -0
  10. data/lib/nginxtra/actions/status.rb +31 -0
  11. data/lib/nginxtra/actions/stop.rb +14 -0
  12. data/lib/nginxtra/cli.rb +77 -0
  13. data/lib/nginxtra/config.rb +339 -0
  14. data/lib/nginxtra/error.rb +13 -0
  15. data/lib/nginxtra/status.rb +57 -0
  16. data/src/nginx/CHANGES +5630 -0
  17. data/src/nginx/CHANGES.ru +5716 -0
  18. data/src/nginx/LICENSE +25 -0
  19. data/src/nginx/README +3 -0
  20. data/src/nginx/auto/cc/acc +15 -0
  21. data/src/nginx/auto/cc/bcc +72 -0
  22. data/src/nginx/auto/cc/ccc +46 -0
  23. data/src/nginx/auto/cc/conf +189 -0
  24. data/src/nginx/auto/cc/gcc +183 -0
  25. data/src/nginx/auto/cc/icc +121 -0
  26. data/src/nginx/auto/cc/msvc +138 -0
  27. data/src/nginx/auto/cc/name +101 -0
  28. data/src/nginx/auto/cc/owc +104 -0
  29. data/src/nginx/auto/cc/sunc +158 -0
  30. data/src/nginx/auto/define +12 -0
  31. data/src/nginx/auto/endianess +45 -0
  32. data/src/nginx/auto/feature +123 -0
  33. data/src/nginx/auto/have +12 -0
  34. data/src/nginx/auto/have_headers +12 -0
  35. data/src/nginx/auto/headers +13 -0
  36. data/src/nginx/auto/include +61 -0
  37. data/src/nginx/auto/init +51 -0
  38. data/src/nginx/auto/install +184 -0
  39. data/src/nginx/auto/lib/conf +83 -0
  40. data/src/nginx/auto/lib/geoip/conf +79 -0
  41. data/src/nginx/auto/lib/google-perftools/conf +45 -0
  42. data/src/nginx/auto/lib/libatomic/conf +43 -0
  43. data/src/nginx/auto/lib/libatomic/make +14 -0
  44. data/src/nginx/auto/lib/libgd/conf +83 -0
  45. data/src/nginx/auto/lib/libxslt/conf +156 -0
  46. data/src/nginx/auto/lib/make +32 -0
  47. data/src/nginx/auto/lib/md5/conf +103 -0
  48. data/src/nginx/auto/lib/md5/make +96 -0
  49. data/src/nginx/auto/lib/md5/makefile.bcc +22 -0
  50. data/src/nginx/auto/lib/md5/makefile.msvc +22 -0
  51. data/src/nginx/auto/lib/md5/makefile.owc +11 -0
  52. data/src/nginx/auto/lib/openssl/conf +74 -0
  53. data/src/nginx/auto/lib/openssl/make +67 -0
  54. data/src/nginx/auto/lib/openssl/makefile.bcc +18 -0
  55. data/src/nginx/auto/lib/openssl/makefile.msvc +14 -0
  56. data/src/nginx/auto/lib/pcre/conf +180 -0
  57. data/src/nginx/auto/lib/pcre/make +64 -0
  58. data/src/nginx/auto/lib/pcre/makefile.bcc +26 -0
  59. data/src/nginx/auto/lib/pcre/makefile.msvc +22 -0
  60. data/src/nginx/auto/lib/pcre/makefile.owc +24 -0
  61. data/src/nginx/auto/lib/perl/conf +60 -0
  62. data/src/nginx/auto/lib/perl/make +36 -0
  63. data/src/nginx/auto/lib/sha1/conf +79 -0
  64. data/src/nginx/auto/lib/sha1/make +96 -0
  65. data/src/nginx/auto/lib/sha1/makefile.bcc +22 -0
  66. data/src/nginx/auto/lib/sha1/makefile.msvc +22 -0
  67. data/src/nginx/auto/lib/sha1/makefile.owc +11 -0
  68. data/src/nginx/auto/lib/test +40 -0
  69. data/src/nginx/auto/lib/zlib/conf +76 -0
  70. data/src/nginx/auto/lib/zlib/make +114 -0
  71. data/src/nginx/auto/lib/zlib/makefile.bcc +15 -0
  72. data/src/nginx/auto/lib/zlib/makefile.msvc +14 -0
  73. data/src/nginx/auto/lib/zlib/makefile.owc +14 -0
  74. data/src/nginx/auto/lib/zlib/patch.zlib.h +10 -0
  75. data/src/nginx/auto/make +417 -0
  76. data/src/nginx/auto/modules +479 -0
  77. data/src/nginx/auto/nohave +12 -0
  78. data/src/nginx/auto/options +490 -0
  79. data/src/nginx/auto/os/conf +105 -0
  80. data/src/nginx/auto/os/darwin +116 -0
  81. data/src/nginx/auto/os/freebsd +136 -0
  82. data/src/nginx/auto/os/linux +152 -0
  83. data/src/nginx/auto/os/solaris +60 -0
  84. data/src/nginx/auto/os/win32 +29 -0
  85. data/src/nginx/auto/sources +518 -0
  86. data/src/nginx/auto/stubs +8 -0
  87. data/src/nginx/auto/summary +114 -0
  88. data/src/nginx/auto/types/sizeof +83 -0
  89. data/src/nginx/auto/types/typedef +77 -0
  90. data/src/nginx/auto/types/uintptr_t +42 -0
  91. data/src/nginx/auto/types/value +12 -0
  92. data/src/nginx/auto/unix +719 -0
  93. data/src/nginx/conf/fastcgi.conf +24 -0
  94. data/src/nginx/conf/fastcgi_params +23 -0
  95. data/src/nginx/conf/koi-utf +109 -0
  96. data/src/nginx/conf/koi-win +103 -0
  97. data/src/nginx/conf/mime.types +80 -0
  98. data/src/nginx/conf/nginx.conf +118 -0
  99. data/src/nginx/conf/scgi_params +15 -0
  100. data/src/nginx/conf/uwsgi_params +15 -0
  101. data/src/nginx/conf/win-utf +126 -0
  102. data/src/nginx/configure +108 -0
  103. data/src/nginx/contrib/README +15 -0
  104. data/src/nginx/contrib/geo2nginx.pl +58 -0
  105. data/src/nginx/contrib/unicode2nginx/koi-utf +131 -0
  106. data/src/nginx/contrib/unicode2nginx/unicode-to-nginx.pl +45 -0
  107. data/src/nginx/contrib/unicode2nginx/win-utf +130 -0
  108. data/src/nginx/html/50x.html +18 -0
  109. data/src/nginx/html/index.html +8 -0
  110. data/src/nginx/man/nginx.8 +202 -0
  111. data/src/nginx/src/core/nginx.c +1333 -0
  112. data/src/nginx/src/core/nginx.h +20 -0
  113. data/src/nginx/src/core/ngx_array.c +147 -0
  114. data/src/nginx/src/core/ngx_array.h +53 -0
  115. data/src/nginx/src/core/ngx_buf.c +218 -0
  116. data/src/nginx/src/core/ngx_buf.h +162 -0
  117. data/src/nginx/src/core/ngx_conf_file.c +1506 -0
  118. data/src/nginx/src/core/ngx_conf_file.h +348 -0
  119. data/src/nginx/src/core/ngx_config.h +134 -0
  120. data/src/nginx/src/core/ngx_connection.c +1074 -0
  121. data/src/nginx/src/core/ngx_connection.h +195 -0
  122. data/src/nginx/src/core/ngx_core.h +95 -0
  123. data/src/nginx/src/core/ngx_cpuinfo.c +139 -0
  124. data/src/nginx/src/core/ngx_crc.h +39 -0
  125. data/src/nginx/src/core/ngx_crc32.c +129 -0
  126. data/src/nginx/src/core/ngx_crc32.h +79 -0
  127. data/src/nginx/src/core/ngx_crypt.c +238 -0
  128. data/src/nginx/src/core/ngx_crypt.h +20 -0
  129. data/src/nginx/src/core/ngx_cycle.c +1379 -0
  130. data/src/nginx/src/core/ngx_cycle.h +142 -0
  131. data/src/nginx/src/core/ngx_file.c +993 -0
  132. data/src/nginx/src/core/ngx_file.h +151 -0
  133. data/src/nginx/src/core/ngx_hash.c +976 -0
  134. data/src/nginx/src/core/ngx_hash.h +122 -0
  135. data/src/nginx/src/core/ngx_inet.c +1008 -0
  136. data/src/nginx/src/core/ngx_inet.h +120 -0
  137. data/src/nginx/src/core/ngx_list.c +71 -0
  138. data/src/nginx/src/core/ngx_list.h +83 -0
  139. data/src/nginx/src/core/ngx_log.c +459 -0
  140. data/src/nginx/src/core/ngx_log.h +250 -0
  141. data/src/nginx/src/core/ngx_md5.c +289 -0
  142. data/src/nginx/src/core/ngx_md5.h +60 -0
  143. data/src/nginx/src/core/ngx_murmurhash.c +50 -0
  144. data/src/nginx/src/core/ngx_murmurhash.h +19 -0
  145. data/src/nginx/src/core/ngx_open_file_cache.c +882 -0
  146. data/src/nginx/src/core/ngx_open_file_cache.h +119 -0
  147. data/src/nginx/src/core/ngx_output_chain.c +673 -0
  148. data/src/nginx/src/core/ngx_palloc.c +433 -0
  149. data/src/nginx/src/core/ngx_palloc.h +95 -0
  150. data/src/nginx/src/core/ngx_parse.c +249 -0
  151. data/src/nginx/src/core/ngx_parse.h +24 -0
  152. data/src/nginx/src/core/ngx_queue.c +80 -0
  153. data/src/nginx/src/core/ngx_queue.h +112 -0
  154. data/src/nginx/src/core/ngx_radix_tree.c +291 -0
  155. data/src/nginx/src/core/ngx_radix_tree.h +46 -0
  156. data/src/nginx/src/core/ngx_rbtree.c +383 -0
  157. data/src/nginx/src/core/ngx_rbtree.h +84 -0
  158. data/src/nginx/src/core/ngx_regex.c +206 -0
  159. data/src/nginx/src/core/ngx_regex.h +56 -0
  160. data/src/nginx/src/core/ngx_resolver.c +2201 -0
  161. data/src/nginx/src/core/ngx_resolver.h +149 -0
  162. data/src/nginx/src/core/ngx_sha1.h +31 -0
  163. data/src/nginx/src/core/ngx_shmtx.c +284 -0
  164. data/src/nginx/src/core/ngx_shmtx.h +38 -0
  165. data/src/nginx/src/core/ngx_slab.c +701 -0
  166. data/src/nginx/src/core/ngx_slab.h +54 -0
  167. data/src/nginx/src/core/ngx_spinlock.c +53 -0
  168. data/src/nginx/src/core/ngx_string.c +1837 -0
  169. data/src/nginx/src/core/ngx_string.h +231 -0
  170. data/src/nginx/src/core/ngx_times.c +407 -0
  171. data/src/nginx/src/core/ngx_times.h +51 -0
  172. data/src/nginx/src/event/modules/ngx_aio_module.c +171 -0
  173. data/src/nginx/src/event/modules/ngx_devpoll_module.c +569 -0
  174. data/src/nginx/src/event/modules/ngx_epoll_module.c +833 -0
  175. data/src/nginx/src/event/modules/ngx_eventport_module.c +602 -0
  176. data/src/nginx/src/event/modules/ngx_kqueue_module.c +785 -0
  177. data/src/nginx/src/event/modules/ngx_poll_module.c +443 -0
  178. data/src/nginx/src/event/modules/ngx_rtsig_module.c +735 -0
  179. data/src/nginx/src/event/modules/ngx_select_module.c +435 -0
  180. data/src/nginx/src/event/modules/ngx_win32_select_module.c +400 -0
  181. data/src/nginx/src/event/ngx_event.c +1275 -0
  182. data/src/nginx/src/event/ngx_event.h +573 -0
  183. data/src/nginx/src/event/ngx_event_accept.c +428 -0
  184. data/src/nginx/src/event/ngx_event_busy_lock.c +286 -0
  185. data/src/nginx/src/event/ngx_event_busy_lock.h +65 -0
  186. data/src/nginx/src/event/ngx_event_connect.c +258 -0
  187. data/src/nginx/src/event/ngx_event_connect.h +76 -0
  188. data/src/nginx/src/event/ngx_event_mutex.c +70 -0
  189. data/src/nginx/src/event/ngx_event_openssl.c +2382 -0
  190. data/src/nginx/src/event/ngx_event_openssl.h +162 -0
  191. data/src/nginx/src/event/ngx_event_pipe.c +996 -0
  192. data/src/nginx/src/event/ngx_event_pipe.h +95 -0
  193. data/src/nginx/src/event/ngx_event_posted.c +173 -0
  194. data/src/nginx/src/event/ngx_event_posted.h +75 -0
  195. data/src/nginx/src/event/ngx_event_timer.c +159 -0
  196. data/src/nginx/src/event/ngx_event_timer.h +102 -0
  197. data/src/nginx/src/http/modules/ngx_http_access_module.c +384 -0
  198. data/src/nginx/src/http/modules/ngx_http_addition_filter_module.c +250 -0
  199. data/src/nginx/src/http/modules/ngx_http_auth_basic_module.c +478 -0
  200. data/src/nginx/src/http/modules/ngx_http_autoindex_module.c +701 -0
  201. data/src/nginx/src/http/modules/ngx_http_browser_module.c +713 -0
  202. data/src/nginx/src/http/modules/ngx_http_charset_filter_module.c +1681 -0
  203. data/src/nginx/src/http/modules/ngx_http_chunked_filter_module.c +242 -0
  204. data/src/nginx/src/http/modules/ngx_http_dav_module.c +1141 -0
  205. data/src/nginx/src/http/modules/ngx_http_degradation_module.c +243 -0
  206. data/src/nginx/src/http/modules/ngx_http_empty_gif_module.c +140 -0
  207. data/src/nginx/src/http/modules/ngx_http_fastcgi_module.c +2916 -0
  208. data/src/nginx/src/http/modules/ngx_http_flv_module.c +254 -0
  209. data/src/nginx/src/http/modules/ngx_http_geo_module.c +1441 -0
  210. data/src/nginx/src/http/modules/ngx_http_geoip_module.c +671 -0
  211. data/src/nginx/src/http/modules/ngx_http_gzip_filter_module.c +1206 -0
  212. data/src/nginx/src/http/modules/ngx_http_gzip_static_module.c +299 -0
  213. data/src/nginx/src/http/modules/ngx_http_headers_filter_module.c +616 -0
  214. data/src/nginx/src/http/modules/ngx_http_image_filter_module.c +1489 -0
  215. data/src/nginx/src/http/modules/ngx_http_index_module.c +516 -0
  216. data/src/nginx/src/http/modules/ngx_http_limit_req_module.c +809 -0
  217. data/src/nginx/src/http/modules/ngx_http_limit_zone_module.c +553 -0
  218. data/src/nginx/src/http/modules/ngx_http_log_module.c +1357 -0
  219. data/src/nginx/src/http/modules/ngx_http_map_module.c +575 -0
  220. data/src/nginx/src/http/modules/ngx_http_memcached_module.c +624 -0
  221. data/src/nginx/src/http/modules/ngx_http_mp4_module.c +3000 -0
  222. data/src/nginx/src/http/modules/ngx_http_not_modified_filter_module.c +143 -0
  223. data/src/nginx/src/http/modules/ngx_http_proxy_module.c +2831 -0
  224. data/src/nginx/src/http/modules/ngx_http_random_index_module.c +317 -0
  225. data/src/nginx/src/http/modules/ngx_http_range_filter_module.c +855 -0
  226. data/src/nginx/src/http/modules/ngx_http_realip_module.c +476 -0
  227. data/src/nginx/src/http/modules/ngx_http_referer_module.c +613 -0
  228. data/src/nginx/src/http/modules/ngx_http_rewrite_module.c +1019 -0
  229. data/src/nginx/src/http/modules/ngx_http_scgi_module.c +1714 -0
  230. data/src/nginx/src/http/modules/ngx_http_secure_link_module.c +355 -0
  231. data/src/nginx/src/http/modules/ngx_http_split_clients_module.c +242 -0
  232. data/src/nginx/src/http/modules/ngx_http_ssi_filter_module.c +2913 -0
  233. data/src/nginx/src/http/modules/ngx_http_ssi_filter_module.h +114 -0
  234. data/src/nginx/src/http/modules/ngx_http_ssl_module.c +652 -0
  235. data/src/nginx/src/http/modules/ngx_http_ssl_module.h +52 -0
  236. data/src/nginx/src/http/modules/ngx_http_static_module.c +278 -0
  237. data/src/nginx/src/http/modules/ngx_http_stub_status_module.c +144 -0
  238. data/src/nginx/src/http/modules/ngx_http_sub_filter_module.c +716 -0
  239. data/src/nginx/src/http/modules/ngx_http_upstream_ip_hash_module.c +237 -0
  240. data/src/nginx/src/http/modules/ngx_http_userid_filter_module.c +846 -0
  241. data/src/nginx/src/http/modules/ngx_http_uwsgi_module.c +1774 -0
  242. data/src/nginx/src/http/modules/ngx_http_xslt_filter_module.c +984 -0
  243. data/src/nginx/src/http/modules/perl/Makefile.PL +42 -0
  244. data/src/nginx/src/http/modules/perl/nginx.pm +137 -0
  245. data/src/nginx/src/http/modules/perl/nginx.xs +986 -0
  246. data/src/nginx/src/http/modules/perl/ngx_http_perl_module.c +1076 -0
  247. data/src/nginx/src/http/modules/perl/ngx_http_perl_module.h +67 -0
  248. data/src/nginx/src/http/modules/perl/typemap +3 -0
  249. data/src/nginx/src/http/ngx_http.c +2073 -0
  250. data/src/nginx/src/http/ngx_http.h +160 -0
  251. data/src/nginx/src/http/ngx_http_busy_lock.c +307 -0
  252. data/src/nginx/src/http/ngx_http_busy_lock.h +54 -0
  253. data/src/nginx/src/http/ngx_http_cache.h +148 -0
  254. data/src/nginx/src/http/ngx_http_config.h +75 -0
  255. data/src/nginx/src/http/ngx_http_copy_filter_module.c +300 -0
  256. data/src/nginx/src/http/ngx_http_core_module.c +4736 -0
  257. data/src/nginx/src/http/ngx_http_core_module.h +541 -0
  258. data/src/nginx/src/http/ngx_http_file_cache.c +1715 -0
  259. data/src/nginx/src/http/ngx_http_header_filter_module.c +623 -0
  260. data/src/nginx/src/http/ngx_http_parse.c +1734 -0
  261. data/src/nginx/src/http/ngx_http_parse_time.c +276 -0
  262. data/src/nginx/src/http/ngx_http_postpone_filter_module.c +178 -0
  263. data/src/nginx/src/http/ngx_http_request.c +3181 -0
  264. data/src/nginx/src/http/ngx_http_request.h +573 -0
  265. data/src/nginx/src/http/ngx_http_request_body.c +644 -0
  266. data/src/nginx/src/http/ngx_http_script.c +1752 -0
  267. data/src/nginx/src/http/ngx_http_script.h +257 -0
  268. data/src/nginx/src/http/ngx_http_special_response.c +789 -0
  269. data/src/nginx/src/http/ngx_http_upstream.c +4555 -0
  270. data/src/nginx/src/http/ngx_http_upstream.h +350 -0
  271. data/src/nginx/src/http/ngx_http_upstream_round_robin.c +791 -0
  272. data/src/nginx/src/http/ngx_http_upstream_round_robin.h +85 -0
  273. data/src/nginx/src/http/ngx_http_variables.c +2053 -0
  274. data/src/nginx/src/http/ngx_http_variables.h +115 -0
  275. data/src/nginx/src/http/ngx_http_write_filter_module.c +315 -0
  276. data/src/nginx/src/mail/ngx_mail.c +542 -0
  277. data/src/nginx/src/mail/ngx_mail.h +407 -0
  278. data/src/nginx/src/mail/ngx_mail_auth_http_module.c +1452 -0
  279. data/src/nginx/src/mail/ngx_mail_core_module.c +553 -0
  280. data/src/nginx/src/mail/ngx_mail_handler.c +773 -0
  281. data/src/nginx/src/mail/ngx_mail_imap_handler.c +457 -0
  282. data/src/nginx/src/mail/ngx_mail_imap_module.c +253 -0
  283. data/src/nginx/src/mail/ngx_mail_imap_module.h +39 -0
  284. data/src/nginx/src/mail/ngx_mail_parse.c +885 -0
  285. data/src/nginx/src/mail/ngx_mail_pop3_handler.c +500 -0
  286. data/src/nginx/src/mail/ngx_mail_pop3_module.c +264 -0
  287. data/src/nginx/src/mail/ngx_mail_pop3_module.h +38 -0
  288. data/src/nginx/src/mail/ngx_mail_proxy_module.c +1089 -0
  289. data/src/nginx/src/mail/ngx_mail_smtp_handler.c +872 -0
  290. data/src/nginx/src/mail/ngx_mail_smtp_module.c +308 -0
  291. data/src/nginx/src/mail/ngx_mail_smtp_module.h +45 -0
  292. data/src/nginx/src/mail/ngx_mail_ssl_module.c +491 -0
  293. data/src/nginx/src/mail/ngx_mail_ssl_module.h +52 -0
  294. data/src/nginx/src/misc/ngx_cpp_test_module.cpp +27 -0
  295. data/src/nginx/src/misc/ngx_google_perftools_module.c +126 -0
  296. data/src/nginx/src/os/unix/ngx_aio_read.c +109 -0
  297. data/src/nginx/src/os/unix/ngx_aio_read_chain.c +78 -0
  298. data/src/nginx/src/os/unix/ngx_aio_write.c +109 -0
  299. data/src/nginx/src/os/unix/ngx_aio_write_chain.c +100 -0
  300. data/src/nginx/src/os/unix/ngx_alloc.c +90 -0
  301. data/src/nginx/src/os/unix/ngx_alloc.h +45 -0
  302. data/src/nginx/src/os/unix/ngx_atomic.h +311 -0
  303. data/src/nginx/src/os/unix/ngx_channel.c +258 -0
  304. data/src/nginx/src/os/unix/ngx_channel.h +34 -0
  305. data/src/nginx/src/os/unix/ngx_daemon.c +69 -0
  306. data/src/nginx/src/os/unix/ngx_darwin.h +20 -0
  307. data/src/nginx/src/os/unix/ngx_darwin_config.h +96 -0
  308. data/src/nginx/src/os/unix/ngx_darwin_init.c +166 -0
  309. data/src/nginx/src/os/unix/ngx_darwin_sendfile_chain.c +366 -0
  310. data/src/nginx/src/os/unix/ngx_errno.c +87 -0
  311. data/src/nginx/src/os/unix/ngx_errno.h +68 -0
  312. data/src/nginx/src/os/unix/ngx_file_aio_read.c +208 -0
  313. data/src/nginx/src/os/unix/ngx_files.c +566 -0
  314. data/src/nginx/src/os/unix/ngx_files.h +343 -0
  315. data/src/nginx/src/os/unix/ngx_freebsd.h +24 -0
  316. data/src/nginx/src/os/unix/ngx_freebsd_config.h +119 -0
  317. data/src/nginx/src/os/unix/ngx_freebsd_init.c +259 -0
  318. data/src/nginx/src/os/unix/ngx_freebsd_rfork_thread.c +756 -0
  319. data/src/nginx/src/os/unix/ngx_freebsd_rfork_thread.h +122 -0
  320. data/src/nginx/src/os/unix/ngx_freebsd_sendfile_chain.c +436 -0
  321. data/src/nginx/src/os/unix/ngx_gcc_atomic_amd64.h +82 -0
  322. data/src/nginx/src/os/unix/ngx_gcc_atomic_ppc.h +155 -0
  323. data/src/nginx/src/os/unix/ngx_gcc_atomic_sparc64.h +82 -0
  324. data/src/nginx/src/os/unix/ngx_gcc_atomic_x86.h +127 -0
  325. data/src/nginx/src/os/unix/ngx_linux.h +18 -0
  326. data/src/nginx/src/os/unix/ngx_linux_aio_read.c +137 -0
  327. data/src/nginx/src/os/unix/ngx_linux_config.h +117 -0
  328. data/src/nginx/src/os/unix/ngx_linux_init.c +91 -0
  329. data/src/nginx/src/os/unix/ngx_linux_sendfile_chain.c +378 -0
  330. data/src/nginx/src/os/unix/ngx_os.h +84 -0
  331. data/src/nginx/src/os/unix/ngx_posix_config.h +153 -0
  332. data/src/nginx/src/os/unix/ngx_posix_init.c +124 -0
  333. data/src/nginx/src/os/unix/ngx_process.c +590 -0
  334. data/src/nginx/src/os/unix/ngx_process.h +87 -0
  335. data/src/nginx/src/os/unix/ngx_process_cycle.c +1390 -0
  336. data/src/nginx/src/os/unix/ngx_process_cycle.h +61 -0
  337. data/src/nginx/src/os/unix/ngx_pthread_thread.c +278 -0
  338. data/src/nginx/src/os/unix/ngx_readv_chain.c +258 -0
  339. data/src/nginx/src/os/unix/ngx_recv.c +180 -0
  340. data/src/nginx/src/os/unix/ngx_send.c +73 -0
  341. data/src/nginx/src/os/unix/ngx_setproctitle.c +135 -0
  342. data/src/nginx/src/os/unix/ngx_setproctitle.h +52 -0
  343. data/src/nginx/src/os/unix/ngx_shmem.c +126 -0
  344. data/src/nginx/src/os/unix/ngx_shmem.h +29 -0
  345. data/src/nginx/src/os/unix/ngx_socket.c +116 -0
  346. data/src/nginx/src/os/unix/ngx_socket.h +64 -0
  347. data/src/nginx/src/os/unix/ngx_solaris.h +16 -0
  348. data/src/nginx/src/os/unix/ngx_solaris_config.h +107 -0
  349. data/src/nginx/src/os/unix/ngx_solaris_init.c +75 -0
  350. data/src/nginx/src/os/unix/ngx_solaris_sendfilev_chain.c +251 -0
  351. data/src/nginx/src/os/unix/ngx_sunpro_amd64.il +43 -0
  352. data/src/nginx/src/os/unix/ngx_sunpro_atomic_sparc64.h +61 -0
  353. data/src/nginx/src/os/unix/ngx_sunpro_sparc64.il +36 -0
  354. data/src/nginx/src/os/unix/ngx_sunpro_x86.il +44 -0
  355. data/src/nginx/src/os/unix/ngx_thread.h +128 -0
  356. data/src/nginx/src/os/unix/ngx_time.c +104 -0
  357. data/src/nginx/src/os/unix/ngx_time.h +66 -0
  358. data/src/nginx/src/os/unix/ngx_udp_recv.c +115 -0
  359. data/src/nginx/src/os/unix/ngx_user.c +109 -0
  360. data/src/nginx/src/os/unix/ngx_user.h +24 -0
  361. data/src/nginx/src/os/unix/ngx_writev_chain.c +181 -0
  362. data/src/nginx/src/os/unix/rfork_thread.S +73 -0
  363. metadata +419 -0
@@ -0,0 +1,308 @@
1
+
2
+ /*
3
+ * Copyright (C) Igor Sysoev
4
+ * Copyright (C) Nginx, Inc.
5
+ */
6
+
7
+
8
+ #include <ngx_config.h>
9
+ #include <ngx_core.h>
10
+ #include <ngx_event.h>
11
+ #include <ngx_mail.h>
12
+ #include <ngx_mail_smtp_module.h>
13
+
14
+
15
+ static void *ngx_mail_smtp_create_srv_conf(ngx_conf_t *cf);
16
+ static char *ngx_mail_smtp_merge_srv_conf(ngx_conf_t *cf, void *parent,
17
+ void *child);
18
+
19
+
20
+ static ngx_conf_bitmask_t ngx_mail_smtp_auth_methods[] = {
21
+ { ngx_string("plain"), NGX_MAIL_AUTH_PLAIN_ENABLED },
22
+ { ngx_string("login"), NGX_MAIL_AUTH_LOGIN_ENABLED },
23
+ { ngx_string("cram-md5"), NGX_MAIL_AUTH_CRAM_MD5_ENABLED },
24
+ { ngx_string("none"), NGX_MAIL_AUTH_NONE_ENABLED },
25
+ { ngx_null_string, 0 }
26
+ };
27
+
28
+
29
+ static ngx_str_t ngx_mail_smtp_auth_methods_names[] = {
30
+ ngx_string("PLAIN"),
31
+ ngx_string("LOGIN"),
32
+ ngx_null_string, /* APOP */
33
+ ngx_string("CRAM-MD5"),
34
+ ngx_null_string /* NONE */
35
+ };
36
+
37
+
38
+ static ngx_mail_protocol_t ngx_mail_smtp_protocol = {
39
+ ngx_string("smtp"),
40
+ { 25, 465, 587, 0 },
41
+ NGX_MAIL_SMTP_PROTOCOL,
42
+
43
+ ngx_mail_smtp_init_session,
44
+ ngx_mail_smtp_init_protocol,
45
+ ngx_mail_smtp_parse_command,
46
+ ngx_mail_smtp_auth_state,
47
+
48
+ ngx_string("451 4.3.2 Internal server error" CRLF)
49
+ };
50
+
51
+
52
+ static ngx_command_t ngx_mail_smtp_commands[] = {
53
+
54
+ { ngx_string("smtp_client_buffer"),
55
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
56
+ ngx_conf_set_size_slot,
57
+ NGX_MAIL_SRV_CONF_OFFSET,
58
+ offsetof(ngx_mail_smtp_srv_conf_t, client_buffer_size),
59
+ NULL },
60
+
61
+ { ngx_string("smtp_greeting_delay"),
62
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
63
+ ngx_conf_set_msec_slot,
64
+ NGX_MAIL_SRV_CONF_OFFSET,
65
+ offsetof(ngx_mail_smtp_srv_conf_t, greeting_delay),
66
+ NULL },
67
+
68
+ { ngx_string("smtp_capabilities"),
69
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_1MORE,
70
+ ngx_mail_capabilities,
71
+ NGX_MAIL_SRV_CONF_OFFSET,
72
+ offsetof(ngx_mail_smtp_srv_conf_t, capabilities),
73
+ NULL },
74
+
75
+ { ngx_string("smtp_auth"),
76
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_1MORE,
77
+ ngx_conf_set_bitmask_slot,
78
+ NGX_MAIL_SRV_CONF_OFFSET,
79
+ offsetof(ngx_mail_smtp_srv_conf_t, auth_methods),
80
+ &ngx_mail_smtp_auth_methods },
81
+
82
+ ngx_null_command
83
+ };
84
+
85
+
86
+ static ngx_mail_module_t ngx_mail_smtp_module_ctx = {
87
+ &ngx_mail_smtp_protocol, /* protocol */
88
+
89
+ NULL, /* create main configuration */
90
+ NULL, /* init main configuration */
91
+
92
+ ngx_mail_smtp_create_srv_conf, /* create server configuration */
93
+ ngx_mail_smtp_merge_srv_conf /* merge server configuration */
94
+ };
95
+
96
+
97
+ ngx_module_t ngx_mail_smtp_module = {
98
+ NGX_MODULE_V1,
99
+ &ngx_mail_smtp_module_ctx, /* module context */
100
+ ngx_mail_smtp_commands, /* module directives */
101
+ NGX_MAIL_MODULE, /* module type */
102
+ NULL, /* init master */
103
+ NULL, /* init module */
104
+ NULL, /* init process */
105
+ NULL, /* init thread */
106
+ NULL, /* exit thread */
107
+ NULL, /* exit process */
108
+ NULL, /* exit master */
109
+ NGX_MODULE_V1_PADDING
110
+ };
111
+
112
+
113
+ static void *
114
+ ngx_mail_smtp_create_srv_conf(ngx_conf_t *cf)
115
+ {
116
+ ngx_mail_smtp_srv_conf_t *sscf;
117
+
118
+ sscf = ngx_pcalloc(cf->pool, sizeof(ngx_mail_smtp_srv_conf_t));
119
+ if (sscf == NULL) {
120
+ return NULL;
121
+ }
122
+
123
+ sscf->client_buffer_size = NGX_CONF_UNSET_SIZE;
124
+ sscf->greeting_delay = NGX_CONF_UNSET_MSEC;
125
+
126
+ if (ngx_array_init(&sscf->capabilities, cf->pool, 4, sizeof(ngx_str_t))
127
+ != NGX_OK)
128
+ {
129
+ return NULL;
130
+ }
131
+
132
+ return sscf;
133
+ }
134
+
135
+
136
+ static char *
137
+ ngx_mail_smtp_merge_srv_conf(ngx_conf_t *cf, void *parent, void *child)
138
+ {
139
+ ngx_mail_smtp_srv_conf_t *prev = parent;
140
+ ngx_mail_smtp_srv_conf_t *conf = child;
141
+
142
+ u_char *p, *auth, *last;
143
+ size_t size;
144
+ ngx_str_t *c;
145
+ ngx_uint_t i, m, auth_enabled;
146
+ ngx_mail_core_srv_conf_t *cscf;
147
+
148
+ ngx_conf_merge_size_value(conf->client_buffer_size,
149
+ prev->client_buffer_size,
150
+ (size_t) ngx_pagesize);
151
+
152
+ ngx_conf_merge_msec_value(conf->greeting_delay,
153
+ prev->greeting_delay, 0);
154
+
155
+ ngx_conf_merge_bitmask_value(conf->auth_methods,
156
+ prev->auth_methods,
157
+ (NGX_CONF_BITMASK_SET
158
+ |NGX_MAIL_AUTH_PLAIN_ENABLED
159
+ |NGX_MAIL_AUTH_LOGIN_ENABLED));
160
+
161
+
162
+ cscf = ngx_mail_conf_get_module_srv_conf(cf, ngx_mail_core_module);
163
+
164
+ size = sizeof("220 ESMTP ready" CRLF) - 1 + cscf->server_name.len;
165
+
166
+ p = ngx_pnalloc(cf->pool, size);
167
+ if (p == NULL) {
168
+ return NGX_CONF_ERROR;
169
+ }
170
+
171
+ conf->greeting.len = size;
172
+ conf->greeting.data = p;
173
+
174
+ *p++ = '2'; *p++ = '2'; *p++ = '0'; *p++ = ' ';
175
+ p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len);
176
+ ngx_memcpy(p, " ESMTP ready" CRLF, sizeof(" ESMTP ready" CRLF) - 1);
177
+
178
+
179
+ size = sizeof("250 " CRLF) - 1 + cscf->server_name.len;
180
+
181
+ p = ngx_pnalloc(cf->pool, size);
182
+ if (p == NULL) {
183
+ return NGX_CONF_ERROR;
184
+ }
185
+
186
+ conf->server_name.len = size;
187
+ conf->server_name.data = p;
188
+
189
+ *p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = ' ';
190
+ p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len);
191
+ *p++ = CR; *p = LF;
192
+
193
+
194
+ if (conf->capabilities.nelts == 0) {
195
+ conf->capabilities = prev->capabilities;
196
+ }
197
+
198
+ size = sizeof("250-") - 1 + cscf->server_name.len + sizeof(CRLF) - 1;
199
+
200
+ c = conf->capabilities.elts;
201
+ for (i = 0; i < conf->capabilities.nelts; i++) {
202
+ size += sizeof("250 ") - 1 + c[i].len + sizeof(CRLF) - 1;
203
+ }
204
+
205
+ auth_enabled = 0;
206
+
207
+ for (m = NGX_MAIL_AUTH_PLAIN_ENABLED, i = 0;
208
+ m <= NGX_MAIL_AUTH_CRAM_MD5_ENABLED;
209
+ m <<= 1, i++)
210
+ {
211
+ if (m & conf->auth_methods) {
212
+ size += 1 + ngx_mail_smtp_auth_methods_names[i].len;
213
+ auth_enabled = 1;
214
+ }
215
+ }
216
+
217
+ if (auth_enabled) {
218
+ size += sizeof("250 AUTH") - 1 + sizeof(CRLF) - 1;
219
+ }
220
+
221
+ p = ngx_pnalloc(cf->pool, size);
222
+ if (p == NULL) {
223
+ return NGX_CONF_ERROR;
224
+ }
225
+
226
+ conf->capability.len = size;
227
+ conf->capability.data = p;
228
+
229
+ last = p;
230
+
231
+ *p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = '-';
232
+ p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len);
233
+ *p++ = CR; *p++ = LF;
234
+
235
+ for (i = 0; i < conf->capabilities.nelts; i++) {
236
+ last = p;
237
+ *p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = '-';
238
+ p = ngx_cpymem(p, c[i].data, c[i].len);
239
+ *p++ = CR; *p++ = LF;
240
+ }
241
+
242
+ auth = p;
243
+
244
+ if (auth_enabled) {
245
+ last = p;
246
+
247
+ *p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = ' ';
248
+ *p++ = 'A'; *p++ = 'U'; *p++ = 'T'; *p++ = 'H';
249
+
250
+ for (m = NGX_MAIL_AUTH_PLAIN_ENABLED, i = 0;
251
+ m <= NGX_MAIL_AUTH_CRAM_MD5_ENABLED;
252
+ m <<= 1, i++)
253
+ {
254
+ if (m & conf->auth_methods) {
255
+ *p++ = ' ';
256
+ p = ngx_cpymem(p, ngx_mail_smtp_auth_methods_names[i].data,
257
+ ngx_mail_smtp_auth_methods_names[i].len);
258
+ }
259
+ }
260
+
261
+ *p++ = CR; *p = LF;
262
+
263
+ } else {
264
+ last[3] = ' ';
265
+ }
266
+
267
+ size += sizeof("250 STARTTLS" CRLF) - 1;
268
+
269
+ p = ngx_pnalloc(cf->pool, size);
270
+ if (p == NULL) {
271
+ return NGX_CONF_ERROR;
272
+ }
273
+
274
+ conf->starttls_capability.len = size;
275
+ conf->starttls_capability.data = p;
276
+
277
+ p = ngx_cpymem(p, conf->capability.data, conf->capability.len);
278
+
279
+ p = ngx_cpymem(p, "250 STARTTLS" CRLF, sizeof("250 STARTTLS" CRLF) - 1);
280
+ *p++ = CR; *p = LF;
281
+
282
+ p = conf->starttls_capability.data
283
+ + (last - conf->capability.data) + 3;
284
+ *p = '-';
285
+
286
+ size = (auth - conf->capability.data)
287
+ + sizeof("250 STARTTLS" CRLF) - 1;
288
+
289
+ p = ngx_pnalloc(cf->pool, size);
290
+ if (p == NULL) {
291
+ return NGX_CONF_ERROR;
292
+ }
293
+
294
+ conf->starttls_only_capability.len = size;
295
+ conf->starttls_only_capability.data = p;
296
+
297
+ p = ngx_cpymem(p, conf->capability.data, auth - conf->capability.data);
298
+
299
+ ngx_memcpy(p, "250 STARTTLS" CRLF, sizeof("250 STARTTLS" CRLF) - 1);
300
+
301
+ if (last < auth) {
302
+ p = conf->starttls_only_capability.data
303
+ + (last - conf->capability.data) + 3;
304
+ *p = '-';
305
+ }
306
+
307
+ return NGX_CONF_OK;
308
+ }
@@ -0,0 +1,45 @@
1
+
2
+ /*
3
+ * Copyright (C) Igor Sysoev
4
+ * Copyright (C) Nginx, Inc.
5
+ */
6
+
7
+
8
+ #ifndef _NGX_MAIL_SMTP_MODULE_H_INCLUDED_
9
+ #define _NGX_MAIL_SMTP_MODULE_H_INCLUDED_
10
+
11
+
12
+ #include <ngx_config.h>
13
+ #include <ngx_core.h>
14
+ #include <ngx_mail.h>
15
+ #include <ngx_mail_smtp_module.h>
16
+
17
+
18
+ typedef struct {
19
+ ngx_msec_t greeting_delay;
20
+
21
+ size_t client_buffer_size;
22
+
23
+ ngx_str_t capability;
24
+ ngx_str_t starttls_capability;
25
+ ngx_str_t starttls_only_capability;
26
+
27
+ ngx_str_t server_name;
28
+ ngx_str_t greeting;
29
+
30
+ ngx_uint_t auth_methods;
31
+
32
+ ngx_array_t capabilities;
33
+ } ngx_mail_smtp_srv_conf_t;
34
+
35
+
36
+ void ngx_mail_smtp_init_session(ngx_mail_session_t *s, ngx_connection_t *c);
37
+ void ngx_mail_smtp_init_protocol(ngx_event_t *rev);
38
+ void ngx_mail_smtp_auth_state(ngx_event_t *rev);
39
+ ngx_int_t ngx_mail_smtp_parse_command(ngx_mail_session_t *s);
40
+
41
+
42
+ extern ngx_module_t ngx_mail_smtp_module;
43
+
44
+
45
+ #endif /* _NGX_MAIL_SMTP_MODULE_H_INCLUDED_ */
@@ -0,0 +1,491 @@
1
+
2
+ /*
3
+ * Copyright (C) Igor Sysoev
4
+ * Copyright (C) Nginx, Inc.
5
+ */
6
+
7
+
8
+ #include <ngx_config.h>
9
+ #include <ngx_core.h>
10
+ #include <ngx_mail.h>
11
+
12
+
13
+ #define NGX_DEFAULT_CIPHERS "HIGH:!aNULL:!MD5"
14
+ #define NGX_DEFAULT_ECDH_CURVE "prime256v1"
15
+
16
+
17
+ static void *ngx_mail_ssl_create_conf(ngx_conf_t *cf);
18
+ static char *ngx_mail_ssl_merge_conf(ngx_conf_t *cf, void *parent, void *child);
19
+
20
+ static char *ngx_mail_ssl_enable(ngx_conf_t *cf, ngx_command_t *cmd,
21
+ void *conf);
22
+ static char *ngx_mail_ssl_starttls(ngx_conf_t *cf, ngx_command_t *cmd,
23
+ void *conf);
24
+ static char *ngx_mail_ssl_session_cache(ngx_conf_t *cf, ngx_command_t *cmd,
25
+ void *conf);
26
+
27
+
28
+ static ngx_conf_enum_t ngx_http_starttls_state[] = {
29
+ { ngx_string("off"), NGX_MAIL_STARTTLS_OFF },
30
+ { ngx_string("on"), NGX_MAIL_STARTTLS_ON },
31
+ { ngx_string("only"), NGX_MAIL_STARTTLS_ONLY },
32
+ { ngx_null_string, 0 }
33
+ };
34
+
35
+
36
+
37
+ static ngx_conf_bitmask_t ngx_mail_ssl_protocols[] = {
38
+ { ngx_string("SSLv2"), NGX_SSL_SSLv2 },
39
+ { ngx_string("SSLv3"), NGX_SSL_SSLv3 },
40
+ { ngx_string("TLSv1"), NGX_SSL_TLSv1 },
41
+ { ngx_string("TLSv1.1"), NGX_SSL_TLSv1_1 },
42
+ { ngx_string("TLSv1.2"), NGX_SSL_TLSv1_2 },
43
+ { ngx_null_string, 0 }
44
+ };
45
+
46
+
47
+ static ngx_command_t ngx_mail_ssl_commands[] = {
48
+
49
+ { ngx_string("ssl"),
50
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_FLAG,
51
+ ngx_mail_ssl_enable,
52
+ NGX_MAIL_SRV_CONF_OFFSET,
53
+ offsetof(ngx_mail_ssl_conf_t, enable),
54
+ NULL },
55
+
56
+ { ngx_string("starttls"),
57
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
58
+ ngx_mail_ssl_starttls,
59
+ NGX_MAIL_SRV_CONF_OFFSET,
60
+ offsetof(ngx_mail_ssl_conf_t, starttls),
61
+ ngx_http_starttls_state },
62
+
63
+ { ngx_string("ssl_certificate"),
64
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
65
+ ngx_conf_set_str_slot,
66
+ NGX_MAIL_SRV_CONF_OFFSET,
67
+ offsetof(ngx_mail_ssl_conf_t, certificate),
68
+ NULL },
69
+
70
+ { ngx_string("ssl_certificate_key"),
71
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
72
+ ngx_conf_set_str_slot,
73
+ NGX_MAIL_SRV_CONF_OFFSET,
74
+ offsetof(ngx_mail_ssl_conf_t, certificate_key),
75
+ NULL },
76
+
77
+ { ngx_string("ssl_dhparam"),
78
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
79
+ ngx_conf_set_str_slot,
80
+ NGX_MAIL_SRV_CONF_OFFSET,
81
+ offsetof(ngx_mail_ssl_conf_t, dhparam),
82
+ NULL },
83
+
84
+ { ngx_string("ssl_ecdh_curve"),
85
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
86
+ ngx_conf_set_str_slot,
87
+ NGX_MAIL_SRV_CONF_OFFSET,
88
+ offsetof(ngx_mail_ssl_conf_t, ecdh_curve),
89
+ NULL },
90
+
91
+ { ngx_string("ssl_protocols"),
92
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_1MORE,
93
+ ngx_conf_set_bitmask_slot,
94
+ NGX_MAIL_SRV_CONF_OFFSET,
95
+ offsetof(ngx_mail_ssl_conf_t, protocols),
96
+ &ngx_mail_ssl_protocols },
97
+
98
+ { ngx_string("ssl_ciphers"),
99
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
100
+ ngx_conf_set_str_slot,
101
+ NGX_MAIL_SRV_CONF_OFFSET,
102
+ offsetof(ngx_mail_ssl_conf_t, ciphers),
103
+ NULL },
104
+
105
+ { ngx_string("ssl_prefer_server_ciphers"),
106
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_FLAG,
107
+ ngx_conf_set_flag_slot,
108
+ NGX_MAIL_SRV_CONF_OFFSET,
109
+ offsetof(ngx_mail_ssl_conf_t, prefer_server_ciphers),
110
+ NULL },
111
+
112
+ { ngx_string("ssl_session_cache"),
113
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE12,
114
+ ngx_mail_ssl_session_cache,
115
+ NGX_MAIL_SRV_CONF_OFFSET,
116
+ 0,
117
+ NULL },
118
+
119
+ { ngx_string("ssl_session_timeout"),
120
+ NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
121
+ ngx_conf_set_sec_slot,
122
+ NGX_MAIL_SRV_CONF_OFFSET,
123
+ offsetof(ngx_mail_ssl_conf_t, session_timeout),
124
+ NULL },
125
+
126
+ ngx_null_command
127
+ };
128
+
129
+
130
+ static ngx_mail_module_t ngx_mail_ssl_module_ctx = {
131
+ NULL, /* protocol */
132
+
133
+ NULL, /* create main configuration */
134
+ NULL, /* init main configuration */
135
+
136
+ ngx_mail_ssl_create_conf, /* create server configuration */
137
+ ngx_mail_ssl_merge_conf /* merge server configuration */
138
+ };
139
+
140
+
141
+ ngx_module_t ngx_mail_ssl_module = {
142
+ NGX_MODULE_V1,
143
+ &ngx_mail_ssl_module_ctx, /* module context */
144
+ ngx_mail_ssl_commands, /* module directives */
145
+ NGX_MAIL_MODULE, /* module type */
146
+ NULL, /* init master */
147
+ NULL, /* init module */
148
+ NULL, /* init process */
149
+ NULL, /* init thread */
150
+ NULL, /* exit thread */
151
+ NULL, /* exit process */
152
+ NULL, /* exit master */
153
+ NGX_MODULE_V1_PADDING
154
+ };
155
+
156
+
157
+ static ngx_str_t ngx_mail_ssl_sess_id_ctx = ngx_string("MAIL");
158
+
159
+
160
+ static void *
161
+ ngx_mail_ssl_create_conf(ngx_conf_t *cf)
162
+ {
163
+ ngx_mail_ssl_conf_t *scf;
164
+
165
+ scf = ngx_pcalloc(cf->pool, sizeof(ngx_mail_ssl_conf_t));
166
+ if (scf == NULL) {
167
+ return NULL;
168
+ }
169
+
170
+ /*
171
+ * set by ngx_pcalloc():
172
+ *
173
+ * scf->protocols = 0;
174
+ * scf->certificate = { 0, NULL };
175
+ * scf->certificate_key = { 0, NULL };
176
+ * scf->dhparam = { 0, NULL };
177
+ * scf->ecdh_curve = { 0, NULL };
178
+ * scf->ciphers = { 0, NULL };
179
+ * scf->shm_zone = NULL;
180
+ */
181
+
182
+ scf->enable = NGX_CONF_UNSET;
183
+ scf->starttls = NGX_CONF_UNSET_UINT;
184
+ scf->prefer_server_ciphers = NGX_CONF_UNSET;
185
+ scf->builtin_session_cache = NGX_CONF_UNSET;
186
+ scf->session_timeout = NGX_CONF_UNSET;
187
+
188
+ return scf;
189
+ }
190
+
191
+
192
+ static char *
193
+ ngx_mail_ssl_merge_conf(ngx_conf_t *cf, void *parent, void *child)
194
+ {
195
+ ngx_mail_ssl_conf_t *prev = parent;
196
+ ngx_mail_ssl_conf_t *conf = child;
197
+
198
+ char *mode;
199
+ ngx_pool_cleanup_t *cln;
200
+
201
+ ngx_conf_merge_value(conf->enable, prev->enable, 0);
202
+ ngx_conf_merge_uint_value(conf->starttls, prev->starttls,
203
+ NGX_MAIL_STARTTLS_OFF);
204
+
205
+ ngx_conf_merge_value(conf->session_timeout,
206
+ prev->session_timeout, 300);
207
+
208
+ ngx_conf_merge_value(conf->prefer_server_ciphers,
209
+ prev->prefer_server_ciphers, 0);
210
+
211
+ ngx_conf_merge_bitmask_value(conf->protocols, prev->protocols,
212
+ (NGX_CONF_BITMASK_SET|NGX_SSL_SSLv3|NGX_SSL_TLSv1
213
+ |NGX_SSL_TLSv1_1|NGX_SSL_TLSv1_2));
214
+
215
+ ngx_conf_merge_str_value(conf->certificate, prev->certificate, "");
216
+ ngx_conf_merge_str_value(conf->certificate_key, prev->certificate_key, "");
217
+
218
+ ngx_conf_merge_str_value(conf->dhparam, prev->dhparam, "");
219
+
220
+ ngx_conf_merge_str_value(conf->ecdh_curve, prev->ecdh_curve,
221
+ NGX_DEFAULT_ECDH_CURVE);
222
+
223
+ ngx_conf_merge_str_value(conf->ciphers, prev->ciphers, NGX_DEFAULT_CIPHERS);
224
+
225
+
226
+ conf->ssl.log = cf->log;
227
+
228
+ if (conf->enable) {
229
+ mode = "ssl";
230
+
231
+ } else if (conf->starttls != NGX_MAIL_STARTTLS_OFF) {
232
+ mode = "starttls";
233
+
234
+ } else {
235
+ mode = "";
236
+ }
237
+
238
+ if (*mode) {
239
+
240
+ if (conf->certificate.len == 0) {
241
+ ngx_log_error(NGX_LOG_EMERG, cf->log, 0,
242
+ "no \"ssl_certificate\" is defined for "
243
+ "the \"%s\" directive in %s:%ui",
244
+ mode, conf->file, conf->line);
245
+ return NGX_CONF_ERROR;
246
+ }
247
+
248
+ if (conf->certificate_key.len == 0) {
249
+ ngx_log_error(NGX_LOG_EMERG, cf->log, 0,
250
+ "no \"ssl_certificate_key\" is defined for "
251
+ "the \"%s\" directive in %s:%ui",
252
+ mode, conf->file, conf->line);
253
+ return NGX_CONF_ERROR;
254
+ }
255
+
256
+ } else {
257
+
258
+ if (conf->certificate.len == 0) {
259
+ return NGX_CONF_OK;
260
+ }
261
+
262
+ if (conf->certificate_key.len == 0) {
263
+ ngx_log_error(NGX_LOG_EMERG, cf->log, 0,
264
+ "no \"ssl_certificate_key\" is defined "
265
+ "for certificate \"%V\"",
266
+ &conf->certificate);
267
+ return NGX_CONF_ERROR;
268
+ }
269
+ }
270
+
271
+ if (ngx_ssl_create(&conf->ssl, conf->protocols, NULL) != NGX_OK) {
272
+ return NGX_CONF_ERROR;
273
+ }
274
+
275
+ cln = ngx_pool_cleanup_add(cf->pool, 0);
276
+ if (cln == NULL) {
277
+ return NGX_CONF_ERROR;
278
+ }
279
+
280
+ cln->handler = ngx_ssl_cleanup_ctx;
281
+ cln->data = &conf->ssl;
282
+
283
+ if (ngx_ssl_certificate(cf, &conf->ssl, &conf->certificate,
284
+ &conf->certificate_key)
285
+ != NGX_OK)
286
+ {
287
+ return NGX_CONF_ERROR;
288
+ }
289
+
290
+ if (conf->ciphers.len) {
291
+ if (SSL_CTX_set_cipher_list(conf->ssl.ctx,
292
+ (const char *) conf->ciphers.data)
293
+ == 0)
294
+ {
295
+ ngx_ssl_error(NGX_LOG_EMERG, cf->log, 0,
296
+ "SSL_CTX_set_cipher_list(\"%V\") failed",
297
+ &conf->ciphers);
298
+ }
299
+ }
300
+
301
+ if (conf->prefer_server_ciphers) {
302
+ SSL_CTX_set_options(conf->ssl.ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
303
+ }
304
+
305
+ SSL_CTX_set_tmp_rsa_callback(conf->ssl.ctx, ngx_ssl_rsa512_key_callback);
306
+
307
+ if (ngx_ssl_dhparam(cf, &conf->ssl, &conf->dhparam) != NGX_OK) {
308
+ return NGX_CONF_ERROR;
309
+ }
310
+
311
+ ngx_conf_merge_value(conf->builtin_session_cache,
312
+ prev->builtin_session_cache, NGX_SSL_NONE_SCACHE);
313
+
314
+ if (conf->shm_zone == NULL) {
315
+ conf->shm_zone = prev->shm_zone;
316
+ }
317
+
318
+ if (ngx_ssl_session_cache(&conf->ssl, &ngx_mail_ssl_sess_id_ctx,
319
+ conf->builtin_session_cache,
320
+ conf->shm_zone, conf->session_timeout)
321
+ != NGX_OK)
322
+ {
323
+ return NGX_CONF_ERROR;
324
+ }
325
+
326
+ return NGX_CONF_OK;
327
+ }
328
+
329
+
330
+ static char *
331
+ ngx_mail_ssl_enable(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
332
+ {
333
+ ngx_mail_ssl_conf_t *scf = conf;
334
+
335
+ char *rv;
336
+
337
+ rv = ngx_conf_set_flag_slot(cf, cmd, conf);
338
+
339
+ if (rv != NGX_CONF_OK) {
340
+ return rv;
341
+ }
342
+
343
+ if (scf->enable && (ngx_int_t) scf->starttls > NGX_MAIL_STARTTLS_OFF) {
344
+ ngx_conf_log_error(NGX_LOG_WARN, cf, 0,
345
+ "\"starttls\" directive conflicts with \"ssl on\"");
346
+ return NGX_CONF_ERROR;
347
+ }
348
+
349
+ scf->file = cf->conf_file->file.name.data;
350
+ scf->line = cf->conf_file->line;
351
+
352
+ return NGX_CONF_OK;
353
+ }
354
+
355
+
356
+ static char *
357
+ ngx_mail_ssl_starttls(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
358
+ {
359
+ ngx_mail_ssl_conf_t *scf = conf;
360
+
361
+ char *rv;
362
+
363
+ rv = ngx_conf_set_enum_slot(cf, cmd, conf);
364
+
365
+ if (rv != NGX_CONF_OK) {
366
+ return rv;
367
+ }
368
+
369
+ if (scf->enable == 1 && (ngx_int_t) scf->starttls > NGX_MAIL_STARTTLS_OFF) {
370
+ ngx_conf_log_error(NGX_LOG_WARN, cf, 0,
371
+ "\"ssl\" directive conflicts with \"starttls\"");
372
+ return NGX_CONF_ERROR;
373
+ }
374
+
375
+ scf->file = cf->conf_file->file.name.data;
376
+ scf->line = cf->conf_file->line;
377
+
378
+ return NGX_CONF_OK;
379
+ }
380
+
381
+
382
+ static char *
383
+ ngx_mail_ssl_session_cache(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
384
+ {
385
+ ngx_mail_ssl_conf_t *scf = conf;
386
+
387
+ size_t len;
388
+ ngx_str_t *value, name, size;
389
+ ngx_int_t n;
390
+ ngx_uint_t i, j;
391
+
392
+ value = cf->args->elts;
393
+
394
+ for (i = 1; i < cf->args->nelts; i++) {
395
+
396
+ if (ngx_strcmp(value[i].data, "off") == 0) {
397
+ scf->builtin_session_cache = NGX_SSL_NO_SCACHE;
398
+ continue;
399
+ }
400
+
401
+ if (ngx_strcmp(value[i].data, "none") == 0) {
402
+ scf->builtin_session_cache = NGX_SSL_NONE_SCACHE;
403
+ continue;
404
+ }
405
+
406
+ if (ngx_strcmp(value[i].data, "builtin") == 0) {
407
+ scf->builtin_session_cache = NGX_SSL_DFLT_BUILTIN_SCACHE;
408
+ continue;
409
+ }
410
+
411
+ if (value[i].len > sizeof("builtin:") - 1
412
+ && ngx_strncmp(value[i].data, "builtin:", sizeof("builtin:") - 1)
413
+ == 0)
414
+ {
415
+ n = ngx_atoi(value[i].data + sizeof("builtin:") - 1,
416
+ value[i].len - (sizeof("builtin:") - 1));
417
+
418
+ if (n == NGX_ERROR) {
419
+ goto invalid;
420
+ }
421
+
422
+ scf->builtin_session_cache = n;
423
+
424
+ continue;
425
+ }
426
+
427
+ if (value[i].len > sizeof("shared:") - 1
428
+ && ngx_strncmp(value[i].data, "shared:", sizeof("shared:") - 1)
429
+ == 0)
430
+ {
431
+ len = 0;
432
+
433
+ for (j = sizeof("shared:") - 1; j < value[i].len; j++) {
434
+ if (value[i].data[j] == ':') {
435
+ break;
436
+ }
437
+
438
+ len++;
439
+ }
440
+
441
+ if (len == 0) {
442
+ goto invalid;
443
+ }
444
+
445
+ name.len = len;
446
+ name.data = value[i].data + sizeof("shared:") - 1;
447
+
448
+ size.len = value[i].len - j - 1;
449
+ size.data = name.data + len + 1;
450
+
451
+ n = ngx_parse_size(&size);
452
+
453
+ if (n == NGX_ERROR) {
454
+ goto invalid;
455
+ }
456
+
457
+ if (n < (ngx_int_t) (8 * ngx_pagesize)) {
458
+ ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
459
+ "session cache \"%V\" is too small",
460
+ &value[i]);
461
+
462
+ return NGX_CONF_ERROR;
463
+ }
464
+
465
+ scf->shm_zone = ngx_shared_memory_add(cf, &name, n,
466
+ &ngx_mail_ssl_module);
467
+ if (scf->shm_zone == NULL) {
468
+ return NGX_CONF_ERROR;
469
+ }
470
+
471
+ scf->shm_zone->init = ngx_ssl_session_cache_init;
472
+
473
+ continue;
474
+ }
475
+
476
+ goto invalid;
477
+ }
478
+
479
+ if (scf->shm_zone && scf->builtin_session_cache == NGX_CONF_UNSET) {
480
+ scf->builtin_session_cache = NGX_SSL_NO_BUILTIN_SCACHE;
481
+ }
482
+
483
+ return NGX_CONF_OK;
484
+
485
+ invalid:
486
+
487
+ ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
488
+ "invalid session cache \"%V\"", &value[i]);
489
+
490
+ return NGX_CONF_ERROR;
491
+ }