nginxtra 1.0.15.0
Sign up to get free protection for your applications and to get access to all the features.
- data/VERSION +1 -0
- data/bin/nginxtra +5 -0
- data/lib/nginxtra.rb +12 -0
- data/lib/nginxtra/action.rb +36 -0
- data/lib/nginxtra/actions/compile.rb +60 -0
- data/lib/nginxtra/actions/install.rb +99 -0
- data/lib/nginxtra/actions/reload.rb +14 -0
- data/lib/nginxtra/actions/restart.rb +15 -0
- data/lib/nginxtra/actions/start.rb +53 -0
- data/lib/nginxtra/actions/status.rb +31 -0
- data/lib/nginxtra/actions/stop.rb +14 -0
- data/lib/nginxtra/cli.rb +77 -0
- data/lib/nginxtra/config.rb +339 -0
- data/lib/nginxtra/error.rb +13 -0
- data/lib/nginxtra/status.rb +57 -0
- data/src/nginx/CHANGES +5630 -0
- data/src/nginx/CHANGES.ru +5716 -0
- data/src/nginx/LICENSE +25 -0
- data/src/nginx/README +3 -0
- data/src/nginx/auto/cc/acc +15 -0
- data/src/nginx/auto/cc/bcc +72 -0
- data/src/nginx/auto/cc/ccc +46 -0
- data/src/nginx/auto/cc/conf +189 -0
- data/src/nginx/auto/cc/gcc +183 -0
- data/src/nginx/auto/cc/icc +121 -0
- data/src/nginx/auto/cc/msvc +138 -0
- data/src/nginx/auto/cc/name +101 -0
- data/src/nginx/auto/cc/owc +104 -0
- data/src/nginx/auto/cc/sunc +158 -0
- data/src/nginx/auto/define +12 -0
- data/src/nginx/auto/endianess +45 -0
- data/src/nginx/auto/feature +123 -0
- data/src/nginx/auto/have +12 -0
- data/src/nginx/auto/have_headers +12 -0
- data/src/nginx/auto/headers +13 -0
- data/src/nginx/auto/include +61 -0
- data/src/nginx/auto/init +51 -0
- data/src/nginx/auto/install +184 -0
- data/src/nginx/auto/lib/conf +83 -0
- data/src/nginx/auto/lib/geoip/conf +79 -0
- data/src/nginx/auto/lib/google-perftools/conf +45 -0
- data/src/nginx/auto/lib/libatomic/conf +43 -0
- data/src/nginx/auto/lib/libatomic/make +14 -0
- data/src/nginx/auto/lib/libgd/conf +83 -0
- data/src/nginx/auto/lib/libxslt/conf +156 -0
- data/src/nginx/auto/lib/make +32 -0
- data/src/nginx/auto/lib/md5/conf +103 -0
- data/src/nginx/auto/lib/md5/make +96 -0
- data/src/nginx/auto/lib/md5/makefile.bcc +22 -0
- data/src/nginx/auto/lib/md5/makefile.msvc +22 -0
- data/src/nginx/auto/lib/md5/makefile.owc +11 -0
- data/src/nginx/auto/lib/openssl/conf +74 -0
- data/src/nginx/auto/lib/openssl/make +67 -0
- data/src/nginx/auto/lib/openssl/makefile.bcc +18 -0
- data/src/nginx/auto/lib/openssl/makefile.msvc +14 -0
- data/src/nginx/auto/lib/pcre/conf +180 -0
- data/src/nginx/auto/lib/pcre/make +64 -0
- data/src/nginx/auto/lib/pcre/makefile.bcc +26 -0
- data/src/nginx/auto/lib/pcre/makefile.msvc +22 -0
- data/src/nginx/auto/lib/pcre/makefile.owc +24 -0
- data/src/nginx/auto/lib/perl/conf +60 -0
- data/src/nginx/auto/lib/perl/make +36 -0
- data/src/nginx/auto/lib/sha1/conf +79 -0
- data/src/nginx/auto/lib/sha1/make +96 -0
- data/src/nginx/auto/lib/sha1/makefile.bcc +22 -0
- data/src/nginx/auto/lib/sha1/makefile.msvc +22 -0
- data/src/nginx/auto/lib/sha1/makefile.owc +11 -0
- data/src/nginx/auto/lib/test +40 -0
- data/src/nginx/auto/lib/zlib/conf +76 -0
- data/src/nginx/auto/lib/zlib/make +114 -0
- data/src/nginx/auto/lib/zlib/makefile.bcc +15 -0
- data/src/nginx/auto/lib/zlib/makefile.msvc +14 -0
- data/src/nginx/auto/lib/zlib/makefile.owc +14 -0
- data/src/nginx/auto/lib/zlib/patch.zlib.h +10 -0
- data/src/nginx/auto/make +417 -0
- data/src/nginx/auto/modules +479 -0
- data/src/nginx/auto/nohave +12 -0
- data/src/nginx/auto/options +490 -0
- data/src/nginx/auto/os/conf +105 -0
- data/src/nginx/auto/os/darwin +116 -0
- data/src/nginx/auto/os/freebsd +136 -0
- data/src/nginx/auto/os/linux +152 -0
- data/src/nginx/auto/os/solaris +60 -0
- data/src/nginx/auto/os/win32 +29 -0
- data/src/nginx/auto/sources +518 -0
- data/src/nginx/auto/stubs +8 -0
- data/src/nginx/auto/summary +114 -0
- data/src/nginx/auto/types/sizeof +83 -0
- data/src/nginx/auto/types/typedef +77 -0
- data/src/nginx/auto/types/uintptr_t +42 -0
- data/src/nginx/auto/types/value +12 -0
- data/src/nginx/auto/unix +719 -0
- data/src/nginx/conf/fastcgi.conf +24 -0
- data/src/nginx/conf/fastcgi_params +23 -0
- data/src/nginx/conf/koi-utf +109 -0
- data/src/nginx/conf/koi-win +103 -0
- data/src/nginx/conf/mime.types +80 -0
- data/src/nginx/conf/nginx.conf +118 -0
- data/src/nginx/conf/scgi_params +15 -0
- data/src/nginx/conf/uwsgi_params +15 -0
- data/src/nginx/conf/win-utf +126 -0
- data/src/nginx/configure +108 -0
- data/src/nginx/contrib/README +15 -0
- data/src/nginx/contrib/geo2nginx.pl +58 -0
- data/src/nginx/contrib/unicode2nginx/koi-utf +131 -0
- data/src/nginx/contrib/unicode2nginx/unicode-to-nginx.pl +45 -0
- data/src/nginx/contrib/unicode2nginx/win-utf +130 -0
- data/src/nginx/html/50x.html +18 -0
- data/src/nginx/html/index.html +8 -0
- data/src/nginx/man/nginx.8 +202 -0
- data/src/nginx/src/core/nginx.c +1333 -0
- data/src/nginx/src/core/nginx.h +20 -0
- data/src/nginx/src/core/ngx_array.c +147 -0
- data/src/nginx/src/core/ngx_array.h +53 -0
- data/src/nginx/src/core/ngx_buf.c +218 -0
- data/src/nginx/src/core/ngx_buf.h +162 -0
- data/src/nginx/src/core/ngx_conf_file.c +1506 -0
- data/src/nginx/src/core/ngx_conf_file.h +348 -0
- data/src/nginx/src/core/ngx_config.h +134 -0
- data/src/nginx/src/core/ngx_connection.c +1074 -0
- data/src/nginx/src/core/ngx_connection.h +195 -0
- data/src/nginx/src/core/ngx_core.h +95 -0
- data/src/nginx/src/core/ngx_cpuinfo.c +139 -0
- data/src/nginx/src/core/ngx_crc.h +39 -0
- data/src/nginx/src/core/ngx_crc32.c +129 -0
- data/src/nginx/src/core/ngx_crc32.h +79 -0
- data/src/nginx/src/core/ngx_crypt.c +238 -0
- data/src/nginx/src/core/ngx_crypt.h +20 -0
- data/src/nginx/src/core/ngx_cycle.c +1379 -0
- data/src/nginx/src/core/ngx_cycle.h +142 -0
- data/src/nginx/src/core/ngx_file.c +993 -0
- data/src/nginx/src/core/ngx_file.h +151 -0
- data/src/nginx/src/core/ngx_hash.c +976 -0
- data/src/nginx/src/core/ngx_hash.h +122 -0
- data/src/nginx/src/core/ngx_inet.c +1008 -0
- data/src/nginx/src/core/ngx_inet.h +120 -0
- data/src/nginx/src/core/ngx_list.c +71 -0
- data/src/nginx/src/core/ngx_list.h +83 -0
- data/src/nginx/src/core/ngx_log.c +459 -0
- data/src/nginx/src/core/ngx_log.h +250 -0
- data/src/nginx/src/core/ngx_md5.c +289 -0
- data/src/nginx/src/core/ngx_md5.h +60 -0
- data/src/nginx/src/core/ngx_murmurhash.c +50 -0
- data/src/nginx/src/core/ngx_murmurhash.h +19 -0
- data/src/nginx/src/core/ngx_open_file_cache.c +882 -0
- data/src/nginx/src/core/ngx_open_file_cache.h +119 -0
- data/src/nginx/src/core/ngx_output_chain.c +673 -0
- data/src/nginx/src/core/ngx_palloc.c +433 -0
- data/src/nginx/src/core/ngx_palloc.h +95 -0
- data/src/nginx/src/core/ngx_parse.c +249 -0
- data/src/nginx/src/core/ngx_parse.h +24 -0
- data/src/nginx/src/core/ngx_queue.c +80 -0
- data/src/nginx/src/core/ngx_queue.h +112 -0
- data/src/nginx/src/core/ngx_radix_tree.c +291 -0
- data/src/nginx/src/core/ngx_radix_tree.h +46 -0
- data/src/nginx/src/core/ngx_rbtree.c +383 -0
- data/src/nginx/src/core/ngx_rbtree.h +84 -0
- data/src/nginx/src/core/ngx_regex.c +206 -0
- data/src/nginx/src/core/ngx_regex.h +56 -0
- data/src/nginx/src/core/ngx_resolver.c +2201 -0
- data/src/nginx/src/core/ngx_resolver.h +149 -0
- data/src/nginx/src/core/ngx_sha1.h +31 -0
- data/src/nginx/src/core/ngx_shmtx.c +284 -0
- data/src/nginx/src/core/ngx_shmtx.h +38 -0
- data/src/nginx/src/core/ngx_slab.c +701 -0
- data/src/nginx/src/core/ngx_slab.h +54 -0
- data/src/nginx/src/core/ngx_spinlock.c +53 -0
- data/src/nginx/src/core/ngx_string.c +1837 -0
- data/src/nginx/src/core/ngx_string.h +231 -0
- data/src/nginx/src/core/ngx_times.c +407 -0
- data/src/nginx/src/core/ngx_times.h +51 -0
- data/src/nginx/src/event/modules/ngx_aio_module.c +171 -0
- data/src/nginx/src/event/modules/ngx_devpoll_module.c +569 -0
- data/src/nginx/src/event/modules/ngx_epoll_module.c +833 -0
- data/src/nginx/src/event/modules/ngx_eventport_module.c +602 -0
- data/src/nginx/src/event/modules/ngx_kqueue_module.c +785 -0
- data/src/nginx/src/event/modules/ngx_poll_module.c +443 -0
- data/src/nginx/src/event/modules/ngx_rtsig_module.c +735 -0
- data/src/nginx/src/event/modules/ngx_select_module.c +435 -0
- data/src/nginx/src/event/modules/ngx_win32_select_module.c +400 -0
- data/src/nginx/src/event/ngx_event.c +1275 -0
- data/src/nginx/src/event/ngx_event.h +573 -0
- data/src/nginx/src/event/ngx_event_accept.c +428 -0
- data/src/nginx/src/event/ngx_event_busy_lock.c +286 -0
- data/src/nginx/src/event/ngx_event_busy_lock.h +65 -0
- data/src/nginx/src/event/ngx_event_connect.c +258 -0
- data/src/nginx/src/event/ngx_event_connect.h +76 -0
- data/src/nginx/src/event/ngx_event_mutex.c +70 -0
- data/src/nginx/src/event/ngx_event_openssl.c +2382 -0
- data/src/nginx/src/event/ngx_event_openssl.h +162 -0
- data/src/nginx/src/event/ngx_event_pipe.c +996 -0
- data/src/nginx/src/event/ngx_event_pipe.h +95 -0
- data/src/nginx/src/event/ngx_event_posted.c +173 -0
- data/src/nginx/src/event/ngx_event_posted.h +75 -0
- data/src/nginx/src/event/ngx_event_timer.c +159 -0
- data/src/nginx/src/event/ngx_event_timer.h +102 -0
- data/src/nginx/src/http/modules/ngx_http_access_module.c +384 -0
- data/src/nginx/src/http/modules/ngx_http_addition_filter_module.c +250 -0
- data/src/nginx/src/http/modules/ngx_http_auth_basic_module.c +478 -0
- data/src/nginx/src/http/modules/ngx_http_autoindex_module.c +701 -0
- data/src/nginx/src/http/modules/ngx_http_browser_module.c +713 -0
- data/src/nginx/src/http/modules/ngx_http_charset_filter_module.c +1681 -0
- data/src/nginx/src/http/modules/ngx_http_chunked_filter_module.c +242 -0
- data/src/nginx/src/http/modules/ngx_http_dav_module.c +1141 -0
- data/src/nginx/src/http/modules/ngx_http_degradation_module.c +243 -0
- data/src/nginx/src/http/modules/ngx_http_empty_gif_module.c +140 -0
- data/src/nginx/src/http/modules/ngx_http_fastcgi_module.c +2916 -0
- data/src/nginx/src/http/modules/ngx_http_flv_module.c +254 -0
- data/src/nginx/src/http/modules/ngx_http_geo_module.c +1441 -0
- data/src/nginx/src/http/modules/ngx_http_geoip_module.c +671 -0
- data/src/nginx/src/http/modules/ngx_http_gzip_filter_module.c +1206 -0
- data/src/nginx/src/http/modules/ngx_http_gzip_static_module.c +299 -0
- data/src/nginx/src/http/modules/ngx_http_headers_filter_module.c +616 -0
- data/src/nginx/src/http/modules/ngx_http_image_filter_module.c +1489 -0
- data/src/nginx/src/http/modules/ngx_http_index_module.c +516 -0
- data/src/nginx/src/http/modules/ngx_http_limit_req_module.c +809 -0
- data/src/nginx/src/http/modules/ngx_http_limit_zone_module.c +553 -0
- data/src/nginx/src/http/modules/ngx_http_log_module.c +1357 -0
- data/src/nginx/src/http/modules/ngx_http_map_module.c +575 -0
- data/src/nginx/src/http/modules/ngx_http_memcached_module.c +624 -0
- data/src/nginx/src/http/modules/ngx_http_mp4_module.c +3000 -0
- data/src/nginx/src/http/modules/ngx_http_not_modified_filter_module.c +143 -0
- data/src/nginx/src/http/modules/ngx_http_proxy_module.c +2831 -0
- data/src/nginx/src/http/modules/ngx_http_random_index_module.c +317 -0
- data/src/nginx/src/http/modules/ngx_http_range_filter_module.c +855 -0
- data/src/nginx/src/http/modules/ngx_http_realip_module.c +476 -0
- data/src/nginx/src/http/modules/ngx_http_referer_module.c +613 -0
- data/src/nginx/src/http/modules/ngx_http_rewrite_module.c +1019 -0
- data/src/nginx/src/http/modules/ngx_http_scgi_module.c +1714 -0
- data/src/nginx/src/http/modules/ngx_http_secure_link_module.c +355 -0
- data/src/nginx/src/http/modules/ngx_http_split_clients_module.c +242 -0
- data/src/nginx/src/http/modules/ngx_http_ssi_filter_module.c +2913 -0
- data/src/nginx/src/http/modules/ngx_http_ssi_filter_module.h +114 -0
- data/src/nginx/src/http/modules/ngx_http_ssl_module.c +652 -0
- data/src/nginx/src/http/modules/ngx_http_ssl_module.h +52 -0
- data/src/nginx/src/http/modules/ngx_http_static_module.c +278 -0
- data/src/nginx/src/http/modules/ngx_http_stub_status_module.c +144 -0
- data/src/nginx/src/http/modules/ngx_http_sub_filter_module.c +716 -0
- data/src/nginx/src/http/modules/ngx_http_upstream_ip_hash_module.c +237 -0
- data/src/nginx/src/http/modules/ngx_http_userid_filter_module.c +846 -0
- data/src/nginx/src/http/modules/ngx_http_uwsgi_module.c +1774 -0
- data/src/nginx/src/http/modules/ngx_http_xslt_filter_module.c +984 -0
- data/src/nginx/src/http/modules/perl/Makefile.PL +42 -0
- data/src/nginx/src/http/modules/perl/nginx.pm +137 -0
- data/src/nginx/src/http/modules/perl/nginx.xs +986 -0
- data/src/nginx/src/http/modules/perl/ngx_http_perl_module.c +1076 -0
- data/src/nginx/src/http/modules/perl/ngx_http_perl_module.h +67 -0
- data/src/nginx/src/http/modules/perl/typemap +3 -0
- data/src/nginx/src/http/ngx_http.c +2073 -0
- data/src/nginx/src/http/ngx_http.h +160 -0
- data/src/nginx/src/http/ngx_http_busy_lock.c +307 -0
- data/src/nginx/src/http/ngx_http_busy_lock.h +54 -0
- data/src/nginx/src/http/ngx_http_cache.h +148 -0
- data/src/nginx/src/http/ngx_http_config.h +75 -0
- data/src/nginx/src/http/ngx_http_copy_filter_module.c +300 -0
- data/src/nginx/src/http/ngx_http_core_module.c +4736 -0
- data/src/nginx/src/http/ngx_http_core_module.h +541 -0
- data/src/nginx/src/http/ngx_http_file_cache.c +1715 -0
- data/src/nginx/src/http/ngx_http_header_filter_module.c +623 -0
- data/src/nginx/src/http/ngx_http_parse.c +1734 -0
- data/src/nginx/src/http/ngx_http_parse_time.c +276 -0
- data/src/nginx/src/http/ngx_http_postpone_filter_module.c +178 -0
- data/src/nginx/src/http/ngx_http_request.c +3181 -0
- data/src/nginx/src/http/ngx_http_request.h +573 -0
- data/src/nginx/src/http/ngx_http_request_body.c +644 -0
- data/src/nginx/src/http/ngx_http_script.c +1752 -0
- data/src/nginx/src/http/ngx_http_script.h +257 -0
- data/src/nginx/src/http/ngx_http_special_response.c +789 -0
- data/src/nginx/src/http/ngx_http_upstream.c +4555 -0
- data/src/nginx/src/http/ngx_http_upstream.h +350 -0
- data/src/nginx/src/http/ngx_http_upstream_round_robin.c +791 -0
- data/src/nginx/src/http/ngx_http_upstream_round_robin.h +85 -0
- data/src/nginx/src/http/ngx_http_variables.c +2053 -0
- data/src/nginx/src/http/ngx_http_variables.h +115 -0
- data/src/nginx/src/http/ngx_http_write_filter_module.c +315 -0
- data/src/nginx/src/mail/ngx_mail.c +542 -0
- data/src/nginx/src/mail/ngx_mail.h +407 -0
- data/src/nginx/src/mail/ngx_mail_auth_http_module.c +1452 -0
- data/src/nginx/src/mail/ngx_mail_core_module.c +553 -0
- data/src/nginx/src/mail/ngx_mail_handler.c +773 -0
- data/src/nginx/src/mail/ngx_mail_imap_handler.c +457 -0
- data/src/nginx/src/mail/ngx_mail_imap_module.c +253 -0
- data/src/nginx/src/mail/ngx_mail_imap_module.h +39 -0
- data/src/nginx/src/mail/ngx_mail_parse.c +885 -0
- data/src/nginx/src/mail/ngx_mail_pop3_handler.c +500 -0
- data/src/nginx/src/mail/ngx_mail_pop3_module.c +264 -0
- data/src/nginx/src/mail/ngx_mail_pop3_module.h +38 -0
- data/src/nginx/src/mail/ngx_mail_proxy_module.c +1089 -0
- data/src/nginx/src/mail/ngx_mail_smtp_handler.c +872 -0
- data/src/nginx/src/mail/ngx_mail_smtp_module.c +308 -0
- data/src/nginx/src/mail/ngx_mail_smtp_module.h +45 -0
- data/src/nginx/src/mail/ngx_mail_ssl_module.c +491 -0
- data/src/nginx/src/mail/ngx_mail_ssl_module.h +52 -0
- data/src/nginx/src/misc/ngx_cpp_test_module.cpp +27 -0
- data/src/nginx/src/misc/ngx_google_perftools_module.c +126 -0
- data/src/nginx/src/os/unix/ngx_aio_read.c +109 -0
- data/src/nginx/src/os/unix/ngx_aio_read_chain.c +78 -0
- data/src/nginx/src/os/unix/ngx_aio_write.c +109 -0
- data/src/nginx/src/os/unix/ngx_aio_write_chain.c +100 -0
- data/src/nginx/src/os/unix/ngx_alloc.c +90 -0
- data/src/nginx/src/os/unix/ngx_alloc.h +45 -0
- data/src/nginx/src/os/unix/ngx_atomic.h +311 -0
- data/src/nginx/src/os/unix/ngx_channel.c +258 -0
- data/src/nginx/src/os/unix/ngx_channel.h +34 -0
- data/src/nginx/src/os/unix/ngx_daemon.c +69 -0
- data/src/nginx/src/os/unix/ngx_darwin.h +20 -0
- data/src/nginx/src/os/unix/ngx_darwin_config.h +96 -0
- data/src/nginx/src/os/unix/ngx_darwin_init.c +166 -0
- data/src/nginx/src/os/unix/ngx_darwin_sendfile_chain.c +366 -0
- data/src/nginx/src/os/unix/ngx_errno.c +87 -0
- data/src/nginx/src/os/unix/ngx_errno.h +68 -0
- data/src/nginx/src/os/unix/ngx_file_aio_read.c +208 -0
- data/src/nginx/src/os/unix/ngx_files.c +566 -0
- data/src/nginx/src/os/unix/ngx_files.h +343 -0
- data/src/nginx/src/os/unix/ngx_freebsd.h +24 -0
- data/src/nginx/src/os/unix/ngx_freebsd_config.h +119 -0
- data/src/nginx/src/os/unix/ngx_freebsd_init.c +259 -0
- data/src/nginx/src/os/unix/ngx_freebsd_rfork_thread.c +756 -0
- data/src/nginx/src/os/unix/ngx_freebsd_rfork_thread.h +122 -0
- data/src/nginx/src/os/unix/ngx_freebsd_sendfile_chain.c +436 -0
- data/src/nginx/src/os/unix/ngx_gcc_atomic_amd64.h +82 -0
- data/src/nginx/src/os/unix/ngx_gcc_atomic_ppc.h +155 -0
- data/src/nginx/src/os/unix/ngx_gcc_atomic_sparc64.h +82 -0
- data/src/nginx/src/os/unix/ngx_gcc_atomic_x86.h +127 -0
- data/src/nginx/src/os/unix/ngx_linux.h +18 -0
- data/src/nginx/src/os/unix/ngx_linux_aio_read.c +137 -0
- data/src/nginx/src/os/unix/ngx_linux_config.h +117 -0
- data/src/nginx/src/os/unix/ngx_linux_init.c +91 -0
- data/src/nginx/src/os/unix/ngx_linux_sendfile_chain.c +378 -0
- data/src/nginx/src/os/unix/ngx_os.h +84 -0
- data/src/nginx/src/os/unix/ngx_posix_config.h +153 -0
- data/src/nginx/src/os/unix/ngx_posix_init.c +124 -0
- data/src/nginx/src/os/unix/ngx_process.c +590 -0
- data/src/nginx/src/os/unix/ngx_process.h +87 -0
- data/src/nginx/src/os/unix/ngx_process_cycle.c +1390 -0
- data/src/nginx/src/os/unix/ngx_process_cycle.h +61 -0
- data/src/nginx/src/os/unix/ngx_pthread_thread.c +278 -0
- data/src/nginx/src/os/unix/ngx_readv_chain.c +258 -0
- data/src/nginx/src/os/unix/ngx_recv.c +180 -0
- data/src/nginx/src/os/unix/ngx_send.c +73 -0
- data/src/nginx/src/os/unix/ngx_setproctitle.c +135 -0
- data/src/nginx/src/os/unix/ngx_setproctitle.h +52 -0
- data/src/nginx/src/os/unix/ngx_shmem.c +126 -0
- data/src/nginx/src/os/unix/ngx_shmem.h +29 -0
- data/src/nginx/src/os/unix/ngx_socket.c +116 -0
- data/src/nginx/src/os/unix/ngx_socket.h +64 -0
- data/src/nginx/src/os/unix/ngx_solaris.h +16 -0
- data/src/nginx/src/os/unix/ngx_solaris_config.h +107 -0
- data/src/nginx/src/os/unix/ngx_solaris_init.c +75 -0
- data/src/nginx/src/os/unix/ngx_solaris_sendfilev_chain.c +251 -0
- data/src/nginx/src/os/unix/ngx_sunpro_amd64.il +43 -0
- data/src/nginx/src/os/unix/ngx_sunpro_atomic_sparc64.h +61 -0
- data/src/nginx/src/os/unix/ngx_sunpro_sparc64.il +36 -0
- data/src/nginx/src/os/unix/ngx_sunpro_x86.il +44 -0
- data/src/nginx/src/os/unix/ngx_thread.h +128 -0
- data/src/nginx/src/os/unix/ngx_time.c +104 -0
- data/src/nginx/src/os/unix/ngx_time.h +66 -0
- data/src/nginx/src/os/unix/ngx_udp_recv.c +115 -0
- data/src/nginx/src/os/unix/ngx_user.c +109 -0
- data/src/nginx/src/os/unix/ngx_user.h +24 -0
- data/src/nginx/src/os/unix/ngx_writev_chain.c +181 -0
- data/src/nginx/src/os/unix/rfork_thread.S +73 -0
- metadata +419 -0
@@ -0,0 +1,308 @@
|
|
1
|
+
|
2
|
+
/*
|
3
|
+
* Copyright (C) Igor Sysoev
|
4
|
+
* Copyright (C) Nginx, Inc.
|
5
|
+
*/
|
6
|
+
|
7
|
+
|
8
|
+
#include <ngx_config.h>
|
9
|
+
#include <ngx_core.h>
|
10
|
+
#include <ngx_event.h>
|
11
|
+
#include <ngx_mail.h>
|
12
|
+
#include <ngx_mail_smtp_module.h>
|
13
|
+
|
14
|
+
|
15
|
+
static void *ngx_mail_smtp_create_srv_conf(ngx_conf_t *cf);
|
16
|
+
static char *ngx_mail_smtp_merge_srv_conf(ngx_conf_t *cf, void *parent,
|
17
|
+
void *child);
|
18
|
+
|
19
|
+
|
20
|
+
static ngx_conf_bitmask_t ngx_mail_smtp_auth_methods[] = {
|
21
|
+
{ ngx_string("plain"), NGX_MAIL_AUTH_PLAIN_ENABLED },
|
22
|
+
{ ngx_string("login"), NGX_MAIL_AUTH_LOGIN_ENABLED },
|
23
|
+
{ ngx_string("cram-md5"), NGX_MAIL_AUTH_CRAM_MD5_ENABLED },
|
24
|
+
{ ngx_string("none"), NGX_MAIL_AUTH_NONE_ENABLED },
|
25
|
+
{ ngx_null_string, 0 }
|
26
|
+
};
|
27
|
+
|
28
|
+
|
29
|
+
static ngx_str_t ngx_mail_smtp_auth_methods_names[] = {
|
30
|
+
ngx_string("PLAIN"),
|
31
|
+
ngx_string("LOGIN"),
|
32
|
+
ngx_null_string, /* APOP */
|
33
|
+
ngx_string("CRAM-MD5"),
|
34
|
+
ngx_null_string /* NONE */
|
35
|
+
};
|
36
|
+
|
37
|
+
|
38
|
+
static ngx_mail_protocol_t ngx_mail_smtp_protocol = {
|
39
|
+
ngx_string("smtp"),
|
40
|
+
{ 25, 465, 587, 0 },
|
41
|
+
NGX_MAIL_SMTP_PROTOCOL,
|
42
|
+
|
43
|
+
ngx_mail_smtp_init_session,
|
44
|
+
ngx_mail_smtp_init_protocol,
|
45
|
+
ngx_mail_smtp_parse_command,
|
46
|
+
ngx_mail_smtp_auth_state,
|
47
|
+
|
48
|
+
ngx_string("451 4.3.2 Internal server error" CRLF)
|
49
|
+
};
|
50
|
+
|
51
|
+
|
52
|
+
static ngx_command_t ngx_mail_smtp_commands[] = {
|
53
|
+
|
54
|
+
{ ngx_string("smtp_client_buffer"),
|
55
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
56
|
+
ngx_conf_set_size_slot,
|
57
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
58
|
+
offsetof(ngx_mail_smtp_srv_conf_t, client_buffer_size),
|
59
|
+
NULL },
|
60
|
+
|
61
|
+
{ ngx_string("smtp_greeting_delay"),
|
62
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
63
|
+
ngx_conf_set_msec_slot,
|
64
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
65
|
+
offsetof(ngx_mail_smtp_srv_conf_t, greeting_delay),
|
66
|
+
NULL },
|
67
|
+
|
68
|
+
{ ngx_string("smtp_capabilities"),
|
69
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_1MORE,
|
70
|
+
ngx_mail_capabilities,
|
71
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
72
|
+
offsetof(ngx_mail_smtp_srv_conf_t, capabilities),
|
73
|
+
NULL },
|
74
|
+
|
75
|
+
{ ngx_string("smtp_auth"),
|
76
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_1MORE,
|
77
|
+
ngx_conf_set_bitmask_slot,
|
78
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
79
|
+
offsetof(ngx_mail_smtp_srv_conf_t, auth_methods),
|
80
|
+
&ngx_mail_smtp_auth_methods },
|
81
|
+
|
82
|
+
ngx_null_command
|
83
|
+
};
|
84
|
+
|
85
|
+
|
86
|
+
static ngx_mail_module_t ngx_mail_smtp_module_ctx = {
|
87
|
+
&ngx_mail_smtp_protocol, /* protocol */
|
88
|
+
|
89
|
+
NULL, /* create main configuration */
|
90
|
+
NULL, /* init main configuration */
|
91
|
+
|
92
|
+
ngx_mail_smtp_create_srv_conf, /* create server configuration */
|
93
|
+
ngx_mail_smtp_merge_srv_conf /* merge server configuration */
|
94
|
+
};
|
95
|
+
|
96
|
+
|
97
|
+
ngx_module_t ngx_mail_smtp_module = {
|
98
|
+
NGX_MODULE_V1,
|
99
|
+
&ngx_mail_smtp_module_ctx, /* module context */
|
100
|
+
ngx_mail_smtp_commands, /* module directives */
|
101
|
+
NGX_MAIL_MODULE, /* module type */
|
102
|
+
NULL, /* init master */
|
103
|
+
NULL, /* init module */
|
104
|
+
NULL, /* init process */
|
105
|
+
NULL, /* init thread */
|
106
|
+
NULL, /* exit thread */
|
107
|
+
NULL, /* exit process */
|
108
|
+
NULL, /* exit master */
|
109
|
+
NGX_MODULE_V1_PADDING
|
110
|
+
};
|
111
|
+
|
112
|
+
|
113
|
+
static void *
|
114
|
+
ngx_mail_smtp_create_srv_conf(ngx_conf_t *cf)
|
115
|
+
{
|
116
|
+
ngx_mail_smtp_srv_conf_t *sscf;
|
117
|
+
|
118
|
+
sscf = ngx_pcalloc(cf->pool, sizeof(ngx_mail_smtp_srv_conf_t));
|
119
|
+
if (sscf == NULL) {
|
120
|
+
return NULL;
|
121
|
+
}
|
122
|
+
|
123
|
+
sscf->client_buffer_size = NGX_CONF_UNSET_SIZE;
|
124
|
+
sscf->greeting_delay = NGX_CONF_UNSET_MSEC;
|
125
|
+
|
126
|
+
if (ngx_array_init(&sscf->capabilities, cf->pool, 4, sizeof(ngx_str_t))
|
127
|
+
!= NGX_OK)
|
128
|
+
{
|
129
|
+
return NULL;
|
130
|
+
}
|
131
|
+
|
132
|
+
return sscf;
|
133
|
+
}
|
134
|
+
|
135
|
+
|
136
|
+
static char *
|
137
|
+
ngx_mail_smtp_merge_srv_conf(ngx_conf_t *cf, void *parent, void *child)
|
138
|
+
{
|
139
|
+
ngx_mail_smtp_srv_conf_t *prev = parent;
|
140
|
+
ngx_mail_smtp_srv_conf_t *conf = child;
|
141
|
+
|
142
|
+
u_char *p, *auth, *last;
|
143
|
+
size_t size;
|
144
|
+
ngx_str_t *c;
|
145
|
+
ngx_uint_t i, m, auth_enabled;
|
146
|
+
ngx_mail_core_srv_conf_t *cscf;
|
147
|
+
|
148
|
+
ngx_conf_merge_size_value(conf->client_buffer_size,
|
149
|
+
prev->client_buffer_size,
|
150
|
+
(size_t) ngx_pagesize);
|
151
|
+
|
152
|
+
ngx_conf_merge_msec_value(conf->greeting_delay,
|
153
|
+
prev->greeting_delay, 0);
|
154
|
+
|
155
|
+
ngx_conf_merge_bitmask_value(conf->auth_methods,
|
156
|
+
prev->auth_methods,
|
157
|
+
(NGX_CONF_BITMASK_SET
|
158
|
+
|NGX_MAIL_AUTH_PLAIN_ENABLED
|
159
|
+
|NGX_MAIL_AUTH_LOGIN_ENABLED));
|
160
|
+
|
161
|
+
|
162
|
+
cscf = ngx_mail_conf_get_module_srv_conf(cf, ngx_mail_core_module);
|
163
|
+
|
164
|
+
size = sizeof("220 ESMTP ready" CRLF) - 1 + cscf->server_name.len;
|
165
|
+
|
166
|
+
p = ngx_pnalloc(cf->pool, size);
|
167
|
+
if (p == NULL) {
|
168
|
+
return NGX_CONF_ERROR;
|
169
|
+
}
|
170
|
+
|
171
|
+
conf->greeting.len = size;
|
172
|
+
conf->greeting.data = p;
|
173
|
+
|
174
|
+
*p++ = '2'; *p++ = '2'; *p++ = '0'; *p++ = ' ';
|
175
|
+
p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len);
|
176
|
+
ngx_memcpy(p, " ESMTP ready" CRLF, sizeof(" ESMTP ready" CRLF) - 1);
|
177
|
+
|
178
|
+
|
179
|
+
size = sizeof("250 " CRLF) - 1 + cscf->server_name.len;
|
180
|
+
|
181
|
+
p = ngx_pnalloc(cf->pool, size);
|
182
|
+
if (p == NULL) {
|
183
|
+
return NGX_CONF_ERROR;
|
184
|
+
}
|
185
|
+
|
186
|
+
conf->server_name.len = size;
|
187
|
+
conf->server_name.data = p;
|
188
|
+
|
189
|
+
*p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = ' ';
|
190
|
+
p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len);
|
191
|
+
*p++ = CR; *p = LF;
|
192
|
+
|
193
|
+
|
194
|
+
if (conf->capabilities.nelts == 0) {
|
195
|
+
conf->capabilities = prev->capabilities;
|
196
|
+
}
|
197
|
+
|
198
|
+
size = sizeof("250-") - 1 + cscf->server_name.len + sizeof(CRLF) - 1;
|
199
|
+
|
200
|
+
c = conf->capabilities.elts;
|
201
|
+
for (i = 0; i < conf->capabilities.nelts; i++) {
|
202
|
+
size += sizeof("250 ") - 1 + c[i].len + sizeof(CRLF) - 1;
|
203
|
+
}
|
204
|
+
|
205
|
+
auth_enabled = 0;
|
206
|
+
|
207
|
+
for (m = NGX_MAIL_AUTH_PLAIN_ENABLED, i = 0;
|
208
|
+
m <= NGX_MAIL_AUTH_CRAM_MD5_ENABLED;
|
209
|
+
m <<= 1, i++)
|
210
|
+
{
|
211
|
+
if (m & conf->auth_methods) {
|
212
|
+
size += 1 + ngx_mail_smtp_auth_methods_names[i].len;
|
213
|
+
auth_enabled = 1;
|
214
|
+
}
|
215
|
+
}
|
216
|
+
|
217
|
+
if (auth_enabled) {
|
218
|
+
size += sizeof("250 AUTH") - 1 + sizeof(CRLF) - 1;
|
219
|
+
}
|
220
|
+
|
221
|
+
p = ngx_pnalloc(cf->pool, size);
|
222
|
+
if (p == NULL) {
|
223
|
+
return NGX_CONF_ERROR;
|
224
|
+
}
|
225
|
+
|
226
|
+
conf->capability.len = size;
|
227
|
+
conf->capability.data = p;
|
228
|
+
|
229
|
+
last = p;
|
230
|
+
|
231
|
+
*p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = '-';
|
232
|
+
p = ngx_cpymem(p, cscf->server_name.data, cscf->server_name.len);
|
233
|
+
*p++ = CR; *p++ = LF;
|
234
|
+
|
235
|
+
for (i = 0; i < conf->capabilities.nelts; i++) {
|
236
|
+
last = p;
|
237
|
+
*p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = '-';
|
238
|
+
p = ngx_cpymem(p, c[i].data, c[i].len);
|
239
|
+
*p++ = CR; *p++ = LF;
|
240
|
+
}
|
241
|
+
|
242
|
+
auth = p;
|
243
|
+
|
244
|
+
if (auth_enabled) {
|
245
|
+
last = p;
|
246
|
+
|
247
|
+
*p++ = '2'; *p++ = '5'; *p++ = '0'; *p++ = ' ';
|
248
|
+
*p++ = 'A'; *p++ = 'U'; *p++ = 'T'; *p++ = 'H';
|
249
|
+
|
250
|
+
for (m = NGX_MAIL_AUTH_PLAIN_ENABLED, i = 0;
|
251
|
+
m <= NGX_MAIL_AUTH_CRAM_MD5_ENABLED;
|
252
|
+
m <<= 1, i++)
|
253
|
+
{
|
254
|
+
if (m & conf->auth_methods) {
|
255
|
+
*p++ = ' ';
|
256
|
+
p = ngx_cpymem(p, ngx_mail_smtp_auth_methods_names[i].data,
|
257
|
+
ngx_mail_smtp_auth_methods_names[i].len);
|
258
|
+
}
|
259
|
+
}
|
260
|
+
|
261
|
+
*p++ = CR; *p = LF;
|
262
|
+
|
263
|
+
} else {
|
264
|
+
last[3] = ' ';
|
265
|
+
}
|
266
|
+
|
267
|
+
size += sizeof("250 STARTTLS" CRLF) - 1;
|
268
|
+
|
269
|
+
p = ngx_pnalloc(cf->pool, size);
|
270
|
+
if (p == NULL) {
|
271
|
+
return NGX_CONF_ERROR;
|
272
|
+
}
|
273
|
+
|
274
|
+
conf->starttls_capability.len = size;
|
275
|
+
conf->starttls_capability.data = p;
|
276
|
+
|
277
|
+
p = ngx_cpymem(p, conf->capability.data, conf->capability.len);
|
278
|
+
|
279
|
+
p = ngx_cpymem(p, "250 STARTTLS" CRLF, sizeof("250 STARTTLS" CRLF) - 1);
|
280
|
+
*p++ = CR; *p = LF;
|
281
|
+
|
282
|
+
p = conf->starttls_capability.data
|
283
|
+
+ (last - conf->capability.data) + 3;
|
284
|
+
*p = '-';
|
285
|
+
|
286
|
+
size = (auth - conf->capability.data)
|
287
|
+
+ sizeof("250 STARTTLS" CRLF) - 1;
|
288
|
+
|
289
|
+
p = ngx_pnalloc(cf->pool, size);
|
290
|
+
if (p == NULL) {
|
291
|
+
return NGX_CONF_ERROR;
|
292
|
+
}
|
293
|
+
|
294
|
+
conf->starttls_only_capability.len = size;
|
295
|
+
conf->starttls_only_capability.data = p;
|
296
|
+
|
297
|
+
p = ngx_cpymem(p, conf->capability.data, auth - conf->capability.data);
|
298
|
+
|
299
|
+
ngx_memcpy(p, "250 STARTTLS" CRLF, sizeof("250 STARTTLS" CRLF) - 1);
|
300
|
+
|
301
|
+
if (last < auth) {
|
302
|
+
p = conf->starttls_only_capability.data
|
303
|
+
+ (last - conf->capability.data) + 3;
|
304
|
+
*p = '-';
|
305
|
+
}
|
306
|
+
|
307
|
+
return NGX_CONF_OK;
|
308
|
+
}
|
@@ -0,0 +1,45 @@
|
|
1
|
+
|
2
|
+
/*
|
3
|
+
* Copyright (C) Igor Sysoev
|
4
|
+
* Copyright (C) Nginx, Inc.
|
5
|
+
*/
|
6
|
+
|
7
|
+
|
8
|
+
#ifndef _NGX_MAIL_SMTP_MODULE_H_INCLUDED_
|
9
|
+
#define _NGX_MAIL_SMTP_MODULE_H_INCLUDED_
|
10
|
+
|
11
|
+
|
12
|
+
#include <ngx_config.h>
|
13
|
+
#include <ngx_core.h>
|
14
|
+
#include <ngx_mail.h>
|
15
|
+
#include <ngx_mail_smtp_module.h>
|
16
|
+
|
17
|
+
|
18
|
+
typedef struct {
|
19
|
+
ngx_msec_t greeting_delay;
|
20
|
+
|
21
|
+
size_t client_buffer_size;
|
22
|
+
|
23
|
+
ngx_str_t capability;
|
24
|
+
ngx_str_t starttls_capability;
|
25
|
+
ngx_str_t starttls_only_capability;
|
26
|
+
|
27
|
+
ngx_str_t server_name;
|
28
|
+
ngx_str_t greeting;
|
29
|
+
|
30
|
+
ngx_uint_t auth_methods;
|
31
|
+
|
32
|
+
ngx_array_t capabilities;
|
33
|
+
} ngx_mail_smtp_srv_conf_t;
|
34
|
+
|
35
|
+
|
36
|
+
void ngx_mail_smtp_init_session(ngx_mail_session_t *s, ngx_connection_t *c);
|
37
|
+
void ngx_mail_smtp_init_protocol(ngx_event_t *rev);
|
38
|
+
void ngx_mail_smtp_auth_state(ngx_event_t *rev);
|
39
|
+
ngx_int_t ngx_mail_smtp_parse_command(ngx_mail_session_t *s);
|
40
|
+
|
41
|
+
|
42
|
+
extern ngx_module_t ngx_mail_smtp_module;
|
43
|
+
|
44
|
+
|
45
|
+
#endif /* _NGX_MAIL_SMTP_MODULE_H_INCLUDED_ */
|
@@ -0,0 +1,491 @@
|
|
1
|
+
|
2
|
+
/*
|
3
|
+
* Copyright (C) Igor Sysoev
|
4
|
+
* Copyright (C) Nginx, Inc.
|
5
|
+
*/
|
6
|
+
|
7
|
+
|
8
|
+
#include <ngx_config.h>
|
9
|
+
#include <ngx_core.h>
|
10
|
+
#include <ngx_mail.h>
|
11
|
+
|
12
|
+
|
13
|
+
#define NGX_DEFAULT_CIPHERS "HIGH:!aNULL:!MD5"
|
14
|
+
#define NGX_DEFAULT_ECDH_CURVE "prime256v1"
|
15
|
+
|
16
|
+
|
17
|
+
static void *ngx_mail_ssl_create_conf(ngx_conf_t *cf);
|
18
|
+
static char *ngx_mail_ssl_merge_conf(ngx_conf_t *cf, void *parent, void *child);
|
19
|
+
|
20
|
+
static char *ngx_mail_ssl_enable(ngx_conf_t *cf, ngx_command_t *cmd,
|
21
|
+
void *conf);
|
22
|
+
static char *ngx_mail_ssl_starttls(ngx_conf_t *cf, ngx_command_t *cmd,
|
23
|
+
void *conf);
|
24
|
+
static char *ngx_mail_ssl_session_cache(ngx_conf_t *cf, ngx_command_t *cmd,
|
25
|
+
void *conf);
|
26
|
+
|
27
|
+
|
28
|
+
static ngx_conf_enum_t ngx_http_starttls_state[] = {
|
29
|
+
{ ngx_string("off"), NGX_MAIL_STARTTLS_OFF },
|
30
|
+
{ ngx_string("on"), NGX_MAIL_STARTTLS_ON },
|
31
|
+
{ ngx_string("only"), NGX_MAIL_STARTTLS_ONLY },
|
32
|
+
{ ngx_null_string, 0 }
|
33
|
+
};
|
34
|
+
|
35
|
+
|
36
|
+
|
37
|
+
static ngx_conf_bitmask_t ngx_mail_ssl_protocols[] = {
|
38
|
+
{ ngx_string("SSLv2"), NGX_SSL_SSLv2 },
|
39
|
+
{ ngx_string("SSLv3"), NGX_SSL_SSLv3 },
|
40
|
+
{ ngx_string("TLSv1"), NGX_SSL_TLSv1 },
|
41
|
+
{ ngx_string("TLSv1.1"), NGX_SSL_TLSv1_1 },
|
42
|
+
{ ngx_string("TLSv1.2"), NGX_SSL_TLSv1_2 },
|
43
|
+
{ ngx_null_string, 0 }
|
44
|
+
};
|
45
|
+
|
46
|
+
|
47
|
+
static ngx_command_t ngx_mail_ssl_commands[] = {
|
48
|
+
|
49
|
+
{ ngx_string("ssl"),
|
50
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_FLAG,
|
51
|
+
ngx_mail_ssl_enable,
|
52
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
53
|
+
offsetof(ngx_mail_ssl_conf_t, enable),
|
54
|
+
NULL },
|
55
|
+
|
56
|
+
{ ngx_string("starttls"),
|
57
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
58
|
+
ngx_mail_ssl_starttls,
|
59
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
60
|
+
offsetof(ngx_mail_ssl_conf_t, starttls),
|
61
|
+
ngx_http_starttls_state },
|
62
|
+
|
63
|
+
{ ngx_string("ssl_certificate"),
|
64
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
65
|
+
ngx_conf_set_str_slot,
|
66
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
67
|
+
offsetof(ngx_mail_ssl_conf_t, certificate),
|
68
|
+
NULL },
|
69
|
+
|
70
|
+
{ ngx_string("ssl_certificate_key"),
|
71
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
72
|
+
ngx_conf_set_str_slot,
|
73
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
74
|
+
offsetof(ngx_mail_ssl_conf_t, certificate_key),
|
75
|
+
NULL },
|
76
|
+
|
77
|
+
{ ngx_string("ssl_dhparam"),
|
78
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
79
|
+
ngx_conf_set_str_slot,
|
80
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
81
|
+
offsetof(ngx_mail_ssl_conf_t, dhparam),
|
82
|
+
NULL },
|
83
|
+
|
84
|
+
{ ngx_string("ssl_ecdh_curve"),
|
85
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
86
|
+
ngx_conf_set_str_slot,
|
87
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
88
|
+
offsetof(ngx_mail_ssl_conf_t, ecdh_curve),
|
89
|
+
NULL },
|
90
|
+
|
91
|
+
{ ngx_string("ssl_protocols"),
|
92
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_1MORE,
|
93
|
+
ngx_conf_set_bitmask_slot,
|
94
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
95
|
+
offsetof(ngx_mail_ssl_conf_t, protocols),
|
96
|
+
&ngx_mail_ssl_protocols },
|
97
|
+
|
98
|
+
{ ngx_string("ssl_ciphers"),
|
99
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
100
|
+
ngx_conf_set_str_slot,
|
101
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
102
|
+
offsetof(ngx_mail_ssl_conf_t, ciphers),
|
103
|
+
NULL },
|
104
|
+
|
105
|
+
{ ngx_string("ssl_prefer_server_ciphers"),
|
106
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_FLAG,
|
107
|
+
ngx_conf_set_flag_slot,
|
108
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
109
|
+
offsetof(ngx_mail_ssl_conf_t, prefer_server_ciphers),
|
110
|
+
NULL },
|
111
|
+
|
112
|
+
{ ngx_string("ssl_session_cache"),
|
113
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE12,
|
114
|
+
ngx_mail_ssl_session_cache,
|
115
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
116
|
+
0,
|
117
|
+
NULL },
|
118
|
+
|
119
|
+
{ ngx_string("ssl_session_timeout"),
|
120
|
+
NGX_MAIL_MAIN_CONF|NGX_MAIL_SRV_CONF|NGX_CONF_TAKE1,
|
121
|
+
ngx_conf_set_sec_slot,
|
122
|
+
NGX_MAIL_SRV_CONF_OFFSET,
|
123
|
+
offsetof(ngx_mail_ssl_conf_t, session_timeout),
|
124
|
+
NULL },
|
125
|
+
|
126
|
+
ngx_null_command
|
127
|
+
};
|
128
|
+
|
129
|
+
|
130
|
+
static ngx_mail_module_t ngx_mail_ssl_module_ctx = {
|
131
|
+
NULL, /* protocol */
|
132
|
+
|
133
|
+
NULL, /* create main configuration */
|
134
|
+
NULL, /* init main configuration */
|
135
|
+
|
136
|
+
ngx_mail_ssl_create_conf, /* create server configuration */
|
137
|
+
ngx_mail_ssl_merge_conf /* merge server configuration */
|
138
|
+
};
|
139
|
+
|
140
|
+
|
141
|
+
ngx_module_t ngx_mail_ssl_module = {
|
142
|
+
NGX_MODULE_V1,
|
143
|
+
&ngx_mail_ssl_module_ctx, /* module context */
|
144
|
+
ngx_mail_ssl_commands, /* module directives */
|
145
|
+
NGX_MAIL_MODULE, /* module type */
|
146
|
+
NULL, /* init master */
|
147
|
+
NULL, /* init module */
|
148
|
+
NULL, /* init process */
|
149
|
+
NULL, /* init thread */
|
150
|
+
NULL, /* exit thread */
|
151
|
+
NULL, /* exit process */
|
152
|
+
NULL, /* exit master */
|
153
|
+
NGX_MODULE_V1_PADDING
|
154
|
+
};
|
155
|
+
|
156
|
+
|
157
|
+
static ngx_str_t ngx_mail_ssl_sess_id_ctx = ngx_string("MAIL");
|
158
|
+
|
159
|
+
|
160
|
+
static void *
|
161
|
+
ngx_mail_ssl_create_conf(ngx_conf_t *cf)
|
162
|
+
{
|
163
|
+
ngx_mail_ssl_conf_t *scf;
|
164
|
+
|
165
|
+
scf = ngx_pcalloc(cf->pool, sizeof(ngx_mail_ssl_conf_t));
|
166
|
+
if (scf == NULL) {
|
167
|
+
return NULL;
|
168
|
+
}
|
169
|
+
|
170
|
+
/*
|
171
|
+
* set by ngx_pcalloc():
|
172
|
+
*
|
173
|
+
* scf->protocols = 0;
|
174
|
+
* scf->certificate = { 0, NULL };
|
175
|
+
* scf->certificate_key = { 0, NULL };
|
176
|
+
* scf->dhparam = { 0, NULL };
|
177
|
+
* scf->ecdh_curve = { 0, NULL };
|
178
|
+
* scf->ciphers = { 0, NULL };
|
179
|
+
* scf->shm_zone = NULL;
|
180
|
+
*/
|
181
|
+
|
182
|
+
scf->enable = NGX_CONF_UNSET;
|
183
|
+
scf->starttls = NGX_CONF_UNSET_UINT;
|
184
|
+
scf->prefer_server_ciphers = NGX_CONF_UNSET;
|
185
|
+
scf->builtin_session_cache = NGX_CONF_UNSET;
|
186
|
+
scf->session_timeout = NGX_CONF_UNSET;
|
187
|
+
|
188
|
+
return scf;
|
189
|
+
}
|
190
|
+
|
191
|
+
|
192
|
+
static char *
|
193
|
+
ngx_mail_ssl_merge_conf(ngx_conf_t *cf, void *parent, void *child)
|
194
|
+
{
|
195
|
+
ngx_mail_ssl_conf_t *prev = parent;
|
196
|
+
ngx_mail_ssl_conf_t *conf = child;
|
197
|
+
|
198
|
+
char *mode;
|
199
|
+
ngx_pool_cleanup_t *cln;
|
200
|
+
|
201
|
+
ngx_conf_merge_value(conf->enable, prev->enable, 0);
|
202
|
+
ngx_conf_merge_uint_value(conf->starttls, prev->starttls,
|
203
|
+
NGX_MAIL_STARTTLS_OFF);
|
204
|
+
|
205
|
+
ngx_conf_merge_value(conf->session_timeout,
|
206
|
+
prev->session_timeout, 300);
|
207
|
+
|
208
|
+
ngx_conf_merge_value(conf->prefer_server_ciphers,
|
209
|
+
prev->prefer_server_ciphers, 0);
|
210
|
+
|
211
|
+
ngx_conf_merge_bitmask_value(conf->protocols, prev->protocols,
|
212
|
+
(NGX_CONF_BITMASK_SET|NGX_SSL_SSLv3|NGX_SSL_TLSv1
|
213
|
+
|NGX_SSL_TLSv1_1|NGX_SSL_TLSv1_2));
|
214
|
+
|
215
|
+
ngx_conf_merge_str_value(conf->certificate, prev->certificate, "");
|
216
|
+
ngx_conf_merge_str_value(conf->certificate_key, prev->certificate_key, "");
|
217
|
+
|
218
|
+
ngx_conf_merge_str_value(conf->dhparam, prev->dhparam, "");
|
219
|
+
|
220
|
+
ngx_conf_merge_str_value(conf->ecdh_curve, prev->ecdh_curve,
|
221
|
+
NGX_DEFAULT_ECDH_CURVE);
|
222
|
+
|
223
|
+
ngx_conf_merge_str_value(conf->ciphers, prev->ciphers, NGX_DEFAULT_CIPHERS);
|
224
|
+
|
225
|
+
|
226
|
+
conf->ssl.log = cf->log;
|
227
|
+
|
228
|
+
if (conf->enable) {
|
229
|
+
mode = "ssl";
|
230
|
+
|
231
|
+
} else if (conf->starttls != NGX_MAIL_STARTTLS_OFF) {
|
232
|
+
mode = "starttls";
|
233
|
+
|
234
|
+
} else {
|
235
|
+
mode = "";
|
236
|
+
}
|
237
|
+
|
238
|
+
if (*mode) {
|
239
|
+
|
240
|
+
if (conf->certificate.len == 0) {
|
241
|
+
ngx_log_error(NGX_LOG_EMERG, cf->log, 0,
|
242
|
+
"no \"ssl_certificate\" is defined for "
|
243
|
+
"the \"%s\" directive in %s:%ui",
|
244
|
+
mode, conf->file, conf->line);
|
245
|
+
return NGX_CONF_ERROR;
|
246
|
+
}
|
247
|
+
|
248
|
+
if (conf->certificate_key.len == 0) {
|
249
|
+
ngx_log_error(NGX_LOG_EMERG, cf->log, 0,
|
250
|
+
"no \"ssl_certificate_key\" is defined for "
|
251
|
+
"the \"%s\" directive in %s:%ui",
|
252
|
+
mode, conf->file, conf->line);
|
253
|
+
return NGX_CONF_ERROR;
|
254
|
+
}
|
255
|
+
|
256
|
+
} else {
|
257
|
+
|
258
|
+
if (conf->certificate.len == 0) {
|
259
|
+
return NGX_CONF_OK;
|
260
|
+
}
|
261
|
+
|
262
|
+
if (conf->certificate_key.len == 0) {
|
263
|
+
ngx_log_error(NGX_LOG_EMERG, cf->log, 0,
|
264
|
+
"no \"ssl_certificate_key\" is defined "
|
265
|
+
"for certificate \"%V\"",
|
266
|
+
&conf->certificate);
|
267
|
+
return NGX_CONF_ERROR;
|
268
|
+
}
|
269
|
+
}
|
270
|
+
|
271
|
+
if (ngx_ssl_create(&conf->ssl, conf->protocols, NULL) != NGX_OK) {
|
272
|
+
return NGX_CONF_ERROR;
|
273
|
+
}
|
274
|
+
|
275
|
+
cln = ngx_pool_cleanup_add(cf->pool, 0);
|
276
|
+
if (cln == NULL) {
|
277
|
+
return NGX_CONF_ERROR;
|
278
|
+
}
|
279
|
+
|
280
|
+
cln->handler = ngx_ssl_cleanup_ctx;
|
281
|
+
cln->data = &conf->ssl;
|
282
|
+
|
283
|
+
if (ngx_ssl_certificate(cf, &conf->ssl, &conf->certificate,
|
284
|
+
&conf->certificate_key)
|
285
|
+
!= NGX_OK)
|
286
|
+
{
|
287
|
+
return NGX_CONF_ERROR;
|
288
|
+
}
|
289
|
+
|
290
|
+
if (conf->ciphers.len) {
|
291
|
+
if (SSL_CTX_set_cipher_list(conf->ssl.ctx,
|
292
|
+
(const char *) conf->ciphers.data)
|
293
|
+
== 0)
|
294
|
+
{
|
295
|
+
ngx_ssl_error(NGX_LOG_EMERG, cf->log, 0,
|
296
|
+
"SSL_CTX_set_cipher_list(\"%V\") failed",
|
297
|
+
&conf->ciphers);
|
298
|
+
}
|
299
|
+
}
|
300
|
+
|
301
|
+
if (conf->prefer_server_ciphers) {
|
302
|
+
SSL_CTX_set_options(conf->ssl.ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
|
303
|
+
}
|
304
|
+
|
305
|
+
SSL_CTX_set_tmp_rsa_callback(conf->ssl.ctx, ngx_ssl_rsa512_key_callback);
|
306
|
+
|
307
|
+
if (ngx_ssl_dhparam(cf, &conf->ssl, &conf->dhparam) != NGX_OK) {
|
308
|
+
return NGX_CONF_ERROR;
|
309
|
+
}
|
310
|
+
|
311
|
+
ngx_conf_merge_value(conf->builtin_session_cache,
|
312
|
+
prev->builtin_session_cache, NGX_SSL_NONE_SCACHE);
|
313
|
+
|
314
|
+
if (conf->shm_zone == NULL) {
|
315
|
+
conf->shm_zone = prev->shm_zone;
|
316
|
+
}
|
317
|
+
|
318
|
+
if (ngx_ssl_session_cache(&conf->ssl, &ngx_mail_ssl_sess_id_ctx,
|
319
|
+
conf->builtin_session_cache,
|
320
|
+
conf->shm_zone, conf->session_timeout)
|
321
|
+
!= NGX_OK)
|
322
|
+
{
|
323
|
+
return NGX_CONF_ERROR;
|
324
|
+
}
|
325
|
+
|
326
|
+
return NGX_CONF_OK;
|
327
|
+
}
|
328
|
+
|
329
|
+
|
330
|
+
static char *
|
331
|
+
ngx_mail_ssl_enable(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
|
332
|
+
{
|
333
|
+
ngx_mail_ssl_conf_t *scf = conf;
|
334
|
+
|
335
|
+
char *rv;
|
336
|
+
|
337
|
+
rv = ngx_conf_set_flag_slot(cf, cmd, conf);
|
338
|
+
|
339
|
+
if (rv != NGX_CONF_OK) {
|
340
|
+
return rv;
|
341
|
+
}
|
342
|
+
|
343
|
+
if (scf->enable && (ngx_int_t) scf->starttls > NGX_MAIL_STARTTLS_OFF) {
|
344
|
+
ngx_conf_log_error(NGX_LOG_WARN, cf, 0,
|
345
|
+
"\"starttls\" directive conflicts with \"ssl on\"");
|
346
|
+
return NGX_CONF_ERROR;
|
347
|
+
}
|
348
|
+
|
349
|
+
scf->file = cf->conf_file->file.name.data;
|
350
|
+
scf->line = cf->conf_file->line;
|
351
|
+
|
352
|
+
return NGX_CONF_OK;
|
353
|
+
}
|
354
|
+
|
355
|
+
|
356
|
+
static char *
|
357
|
+
ngx_mail_ssl_starttls(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
|
358
|
+
{
|
359
|
+
ngx_mail_ssl_conf_t *scf = conf;
|
360
|
+
|
361
|
+
char *rv;
|
362
|
+
|
363
|
+
rv = ngx_conf_set_enum_slot(cf, cmd, conf);
|
364
|
+
|
365
|
+
if (rv != NGX_CONF_OK) {
|
366
|
+
return rv;
|
367
|
+
}
|
368
|
+
|
369
|
+
if (scf->enable == 1 && (ngx_int_t) scf->starttls > NGX_MAIL_STARTTLS_OFF) {
|
370
|
+
ngx_conf_log_error(NGX_LOG_WARN, cf, 0,
|
371
|
+
"\"ssl\" directive conflicts with \"starttls\"");
|
372
|
+
return NGX_CONF_ERROR;
|
373
|
+
}
|
374
|
+
|
375
|
+
scf->file = cf->conf_file->file.name.data;
|
376
|
+
scf->line = cf->conf_file->line;
|
377
|
+
|
378
|
+
return NGX_CONF_OK;
|
379
|
+
}
|
380
|
+
|
381
|
+
|
382
|
+
static char *
|
383
|
+
ngx_mail_ssl_session_cache(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
|
384
|
+
{
|
385
|
+
ngx_mail_ssl_conf_t *scf = conf;
|
386
|
+
|
387
|
+
size_t len;
|
388
|
+
ngx_str_t *value, name, size;
|
389
|
+
ngx_int_t n;
|
390
|
+
ngx_uint_t i, j;
|
391
|
+
|
392
|
+
value = cf->args->elts;
|
393
|
+
|
394
|
+
for (i = 1; i < cf->args->nelts; i++) {
|
395
|
+
|
396
|
+
if (ngx_strcmp(value[i].data, "off") == 0) {
|
397
|
+
scf->builtin_session_cache = NGX_SSL_NO_SCACHE;
|
398
|
+
continue;
|
399
|
+
}
|
400
|
+
|
401
|
+
if (ngx_strcmp(value[i].data, "none") == 0) {
|
402
|
+
scf->builtin_session_cache = NGX_SSL_NONE_SCACHE;
|
403
|
+
continue;
|
404
|
+
}
|
405
|
+
|
406
|
+
if (ngx_strcmp(value[i].data, "builtin") == 0) {
|
407
|
+
scf->builtin_session_cache = NGX_SSL_DFLT_BUILTIN_SCACHE;
|
408
|
+
continue;
|
409
|
+
}
|
410
|
+
|
411
|
+
if (value[i].len > sizeof("builtin:") - 1
|
412
|
+
&& ngx_strncmp(value[i].data, "builtin:", sizeof("builtin:") - 1)
|
413
|
+
== 0)
|
414
|
+
{
|
415
|
+
n = ngx_atoi(value[i].data + sizeof("builtin:") - 1,
|
416
|
+
value[i].len - (sizeof("builtin:") - 1));
|
417
|
+
|
418
|
+
if (n == NGX_ERROR) {
|
419
|
+
goto invalid;
|
420
|
+
}
|
421
|
+
|
422
|
+
scf->builtin_session_cache = n;
|
423
|
+
|
424
|
+
continue;
|
425
|
+
}
|
426
|
+
|
427
|
+
if (value[i].len > sizeof("shared:") - 1
|
428
|
+
&& ngx_strncmp(value[i].data, "shared:", sizeof("shared:") - 1)
|
429
|
+
== 0)
|
430
|
+
{
|
431
|
+
len = 0;
|
432
|
+
|
433
|
+
for (j = sizeof("shared:") - 1; j < value[i].len; j++) {
|
434
|
+
if (value[i].data[j] == ':') {
|
435
|
+
break;
|
436
|
+
}
|
437
|
+
|
438
|
+
len++;
|
439
|
+
}
|
440
|
+
|
441
|
+
if (len == 0) {
|
442
|
+
goto invalid;
|
443
|
+
}
|
444
|
+
|
445
|
+
name.len = len;
|
446
|
+
name.data = value[i].data + sizeof("shared:") - 1;
|
447
|
+
|
448
|
+
size.len = value[i].len - j - 1;
|
449
|
+
size.data = name.data + len + 1;
|
450
|
+
|
451
|
+
n = ngx_parse_size(&size);
|
452
|
+
|
453
|
+
if (n == NGX_ERROR) {
|
454
|
+
goto invalid;
|
455
|
+
}
|
456
|
+
|
457
|
+
if (n < (ngx_int_t) (8 * ngx_pagesize)) {
|
458
|
+
ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
|
459
|
+
"session cache \"%V\" is too small",
|
460
|
+
&value[i]);
|
461
|
+
|
462
|
+
return NGX_CONF_ERROR;
|
463
|
+
}
|
464
|
+
|
465
|
+
scf->shm_zone = ngx_shared_memory_add(cf, &name, n,
|
466
|
+
&ngx_mail_ssl_module);
|
467
|
+
if (scf->shm_zone == NULL) {
|
468
|
+
return NGX_CONF_ERROR;
|
469
|
+
}
|
470
|
+
|
471
|
+
scf->shm_zone->init = ngx_ssl_session_cache_init;
|
472
|
+
|
473
|
+
continue;
|
474
|
+
}
|
475
|
+
|
476
|
+
goto invalid;
|
477
|
+
}
|
478
|
+
|
479
|
+
if (scf->shm_zone && scf->builtin_session_cache == NGX_CONF_UNSET) {
|
480
|
+
scf->builtin_session_cache = NGX_SSL_NO_BUILTIN_SCACHE;
|
481
|
+
}
|
482
|
+
|
483
|
+
return NGX_CONF_OK;
|
484
|
+
|
485
|
+
invalid:
|
486
|
+
|
487
|
+
ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
|
488
|
+
"invalid session cache \"%V\"", &value[i]);
|
489
|
+
|
490
|
+
return NGX_CONF_ERROR;
|
491
|
+
}
|