| /* ==================================================================== |
| * The Apache Software License, Version 1.1 |
| * |
| * Copyright (c) 2000-2001 The Apache Software Foundation. All rights |
| * reserved. |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions |
| * are met: |
| * |
| * 1. Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * |
| * 2. Redistributions in binary form must reproduce the above copyright |
| * notice, this list of conditions and the following disclaimer in |
| * the documentation and/or other materials provided with the |
| * distribution. |
| * |
| * 3. The end-user documentation included with the redistribution, |
| * if any, must include the following acknowledgment: |
| * "This product includes software developed by the |
| * Apache Software Foundation (http://www.apache.org/)." |
| * Alternately, this acknowledgment may appear in the software itself, |
| * if and wherever such third-party acknowledgments normally appear. |
| * |
| * 4. The names "Apache" and "Apache Software Foundation" must |
| * not be used to endorse or promote products derived from this |
| * software without prior written permission. For written |
| * permission, please contact apache@apache.org. |
| * |
| * 5. Products derived from this software may not be called "Apache", |
| * nor may "Apache" appear in their name, without prior written |
| * permission of the Apache Software Foundation. |
| * |
| * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED |
| * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES |
| * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE |
| * DISCLAIMED. IN NO EVENT SHALL THE APACHE SOFTWARE FOUNDATION OR |
| * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT |
| * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF |
| * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND |
| * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, |
| * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT |
| * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
| * SUCH DAMAGE. |
| * ==================================================================== |
| * |
| * This software consists of voluntary contributions made by many |
| * individuals on behalf of the Apache Software Foundation. For more |
| * information on the Apache Software Foundation, please see |
| * <http://www.apache.org/>. |
| * |
| * Portions of this software are based upon public domain software |
| * originally written at the National Center for Supercomputing Applications, |
| * University of Illinois, Urbana-Champaign. |
| */ |
| |
| /* |
| * mod_setenvif.c |
| * Set environment variables based on matching request headers or |
| * attributes against regex strings |
| * |
| * Paul Sutton <paul@ukweb.com> 27 Oct 1996 |
| * Based on mod_browser by Alexei Kosut <akosut@organic.com> |
| */ |
| |
| /* |
| * Used to set environment variables based on the incoming request headers, |
| * or some selected other attributes of the request (e.g., the remote host |
| * name). |
| * |
| * Usage: |
| * |
| * SetEnvIf name regex var ... |
| * |
| * where name is either a HTTP request header name, or one of the |
| * special values (see below). The 'value' of the header (or the |
| * value of the special value from below) are compared against the |
| * regex argument. If this is a simple string, a simple sub-string |
| * match is performed. Otherwise, a request expression match is |
| * done. If the value matches the string or regular expression, the |
| * environment variables listed as var ... are set. Each var can |
| * be in one of three formats: var, which sets the named variable |
| * (the value value "1"); var=value, which sets the variable to |
| * the given value; or !var, which unsets the variable is it has |
| * been previously set. |
| * |
| * Normally the strings are compared with regard to case. To ignore |
| * case, use the directive SetEnvIfNoCase instead. |
| * |
| * Special values for 'name' are: |
| * |
| * remote_host Remote host name (if available) |
| * remote_addr Remote IP address |
| * remote_user Remote authenticated user (if any) |
| * request_method Request method (GET, POST, etc) |
| * request_uri Requested URI |
| * |
| * Examples: |
| * |
| * To set the enviroment variable LOCALHOST if the client is the local |
| * machine: |
| * |
| * SetEnvIf remote_addr 127.0.0.1 LOCALHOST |
| * |
| * To set LOCAL if the client is the local host, or within our company's |
| * domain (192.168.10): |
| * |
| * SetEnvIf remote_addr 192.168.10. LOCAL |
| * SetEnvIf remote_addr 127.0.0.1 LOCALHOST |
| * |
| * This could be written as: |
| * |
| * SetEnvIf remote_addr (127.0.0.1|192.168.10.) LOCAL |
| */ |
| |
| #include "apr.h" |
| #include "apr_strings.h" |
| |
| #define APR_WANT_STRFUNC |
| #include "apr_want.h" |
| |
| #include "ap_config.h" |
| #include "httpd.h" |
| #include "http_config.h" |
| #include "http_core.h" |
| #include "http_log.h" |
| #include "http_protocol.h" |
| |
| |
| enum special { |
| SPECIAL_NOT, |
| SPECIAL_REMOTE_ADDR, |
| SPECIAL_REMOTE_HOST, |
| SPECIAL_REMOTE_USER, |
| SPECIAL_REQUEST_URI, |
| SPECIAL_REQUEST_METHOD, |
| SPECIAL_REQUEST_PROTOCOL |
| }; |
| typedef struct { |
| char *name; /* header name */ |
| char *regex; /* regex to match against */ |
| regex_t *preg; /* compiled regex */ |
| apr_table_t *features; /* env vars to set (or unset) */ |
| enum special special_type; /* is it a "special" header ? */ |
| int icase; /* ignoring case? */ |
| } sei_entry; |
| |
| typedef struct { |
| apr_array_header_t *conditionals; |
| } sei_cfg_rec; |
| |
| module AP_MODULE_DECLARE_DATA setenvif_module; |
| |
| /* |
| * These routines, the create- and merge-config functions, are called |
| * for both the server-wide and the per-directory contexts. This is |
| * because the different definitions are used at different times; the |
| * server-wide ones are used in the post-read-request phase, and the |
| * per-directory ones are used during the header-parse phase (after |
| * the URI has been mapped to a file and we have anything from the |
| * .htaccess file and <Directory> and <Files> containers). |
| */ |
| static void *create_setenvif_config(apr_pool_t *p) |
| { |
| sei_cfg_rec *new = (sei_cfg_rec *) apr_palloc(p, sizeof(sei_cfg_rec)); |
| |
| new->conditionals = apr_array_make(p, 20, sizeof(sei_entry)); |
| return (void *) new; |
| } |
| |
| static void *create_setenvif_config_svr(apr_pool_t *p, server_rec *dummy) |
| { |
| return create_setenvif_config(p); |
| } |
| |
| static void *create_setenvif_config_dir(apr_pool_t *p, char *dummy) |
| { |
| return create_setenvif_config(p); |
| } |
| |
| static void *merge_setenvif_config(apr_pool_t *p, void *basev, void *overridesv) |
| { |
| sei_cfg_rec *a = apr_pcalloc(p, sizeof(sei_cfg_rec)); |
| sei_cfg_rec *base = basev, *overrides = overridesv; |
| |
| a->conditionals = apr_array_append(p, base->conditionals, |
| overrides->conditionals); |
| return a; |
| } |
| |
| /* |
| * any non-NULL magic constant will do... used to indicate if REG_ICASE should |
| * be used |
| */ |
| #define ICASE_MAGIC ((void *)(&setenvif_module)) |
| #define SEI_MAGIC_HEIRLOOM "setenvif-phase-flag" |
| |
| static const char *add_setenvif_core(cmd_parms *cmd, void *mconfig, |
| char *fname, const char *args) |
| { |
| char *regex; |
| const char *feature; |
| sei_cfg_rec *sconf; |
| sei_entry *new; |
| sei_entry *entries; |
| char *var; |
| int i; |
| int beenhere = 0; |
| int icase; |
| |
| /* |
| * Determine from our context into which record to put the entry. |
| * cmd->path == NULL means we're in server-wide context; otherwise, |
| * we're dealing with a per-directory setting. |
| */ |
| sconf = (cmd->path != NULL) |
| ? (sei_cfg_rec *) mconfig |
| : (sei_cfg_rec *) ap_get_module_config(cmd->server->module_config, |
| &setenvif_module); |
| entries = (sei_entry *) sconf->conditionals->elts; |
| /* get regex */ |
| regex = ap_getword_conf(cmd->pool, &args); |
| if (!*regex) { |
| return apr_pstrcat(cmd->pool, "Missing regular expression for ", |
| cmd->cmd->name, NULL); |
| } |
| |
| /* |
| * If we've already got a sei_entry with the same name we want to |
| * just copy the name pointer... so that later on we can compare |
| * two header names just by comparing the pointers. |
| */ |
| |
| for (i = 0; i < sconf->conditionals->nelts; ++i) { |
| new = &entries[i]; |
| if (!strcasecmp(new->name, fname)) { |
| fname = new->name; |
| break; |
| } |
| } |
| |
| /* if the last entry has an identical headername and regex then |
| * merge with it |
| */ |
| i = sconf->conditionals->nelts - 1; |
| icase = cmd->info == ICASE_MAGIC; |
| if (i < 0 |
| || entries[i].name != fname |
| || entries[i].icase != icase |
| || strcmp(entries[i].regex, regex)) { |
| |
| /* no match, create a new entry */ |
| |
| new = apr_array_push(sconf->conditionals); |
| new->name = fname; |
| new->regex = regex; |
| new->icase = icase; |
| new->preg = ap_pregcomp(cmd->pool, regex, |
| (REG_EXTENDED | REG_NOSUB |
| | (icase ? REG_ICASE : 0))); |
| if (new->preg == NULL) { |
| return apr_pstrcat(cmd->pool, cmd->cmd->name, |
| " regex could not be compiled.", NULL); |
| } |
| new->features = apr_table_make(cmd->pool, 2); |
| |
| if (!strcasecmp(fname, "remote_addr")) { |
| new->special_type = SPECIAL_REMOTE_ADDR; |
| } |
| else if (!strcasecmp(fname, "remote_host")) { |
| new->special_type = SPECIAL_REMOTE_HOST; |
| } |
| else if (!strcasecmp(fname, "remote_user")) { |
| new->special_type = SPECIAL_REMOTE_USER; |
| } |
| else if (!strcasecmp(fname, "request_uri")) { |
| new->special_type = SPECIAL_REQUEST_URI; |
| } |
| else if (!strcasecmp(fname, "request_method")) { |
| new->special_type = SPECIAL_REQUEST_METHOD; |
| } |
| else if (!strcasecmp(fname, "request_protocol")) { |
| new->special_type = SPECIAL_REQUEST_PROTOCOL; |
| } |
| else { |
| new->special_type = SPECIAL_NOT; |
| } |
| } |
| else { |
| new = &entries[i]; |
| } |
| |
| for ( ; ; ) { |
| feature = ap_getword_conf(cmd->pool, &args); |
| if (!*feature) { |
| break; |
| } |
| beenhere++; |
| |
| var = ap_getword(cmd->pool, &feature, '='); |
| if (*feature) { |
| apr_table_setn(new->features, var, feature); |
| } |
| else if (*var == '!') { |
| apr_table_setn(new->features, var + 1, "!"); |
| } |
| else { |
| apr_table_setn(new->features, var, "1"); |
| } |
| } |
| |
| if (!beenhere) { |
| return apr_pstrcat(cmd->pool, "Missing envariable expression for ", |
| cmd->cmd->name, NULL); |
| } |
| |
| return NULL; |
| } |
| |
| static const char *add_setenvif(cmd_parms *cmd, void *mconfig, |
| const char *args) |
| { |
| char *fname; |
| |
| /* get header name */ |
| fname = ap_getword_conf(cmd->pool, &args); |
| if (!*fname) { |
| return apr_pstrcat(cmd->pool, "Missing header-field name for ", |
| cmd->cmd->name, NULL); |
| } |
| return add_setenvif_core(cmd, mconfig, fname, args); |
| } |
| |
| /* |
| * This routine handles the BrowserMatch* directives. It simply turns around |
| * and feeds them, with the appropriate embellishments, to the general-purpose |
| * command handler. |
| */ |
| static const char *add_browser(cmd_parms *cmd, void *mconfig, const char *args) |
| { |
| return add_setenvif_core(cmd, mconfig, "User-Agent", args); |
| } |
| |
| static const command_rec setenvif_module_cmds[] = |
| { |
| AP_INIT_RAW_ARGS("SetEnvIf", add_setenvif, NULL, |
| OR_FILEINFO, "A header-name, regex and a list of variables."), |
| AP_INIT_RAW_ARGS("SetEnvIfNoCase", add_setenvif, ICASE_MAGIC, |
| OR_FILEINFO, "a header-name, regex and a list of variables."), |
| AP_INIT_RAW_ARGS("BrowserMatch", add_browser, NULL, |
| OR_FILEINFO, "A browser regex and a list of variables."), |
| AP_INIT_RAW_ARGS("BrowserMatchNoCase", add_browser, ICASE_MAGIC, |
| OR_FILEINFO, "A browser regex and a list of variables."), |
| { NULL }, |
| }; |
| |
| /* |
| * This routine gets called at two different points in request processing: |
| * once before the URI has been translated (during the post-read-request |
| * phase) and once after (during the header-parse phase). We use different |
| * config records for the two different calls to reduce overhead (by not |
| * re-doing the server-wide settings during directory processing), and |
| * signal which call it is by having the earlier one pass a flag to the |
| * later one. |
| */ |
| static int match_headers(request_rec *r) |
| { |
| sei_cfg_rec *sconf; |
| sei_entry *entries; |
| apr_table_entry_t *elts; |
| const char *val; |
| int i, j; |
| char *last_name; |
| |
| if (apr_table_get(r->notes, SEI_MAGIC_HEIRLOOM) == NULL) { |
| apr_table_set(r->notes, SEI_MAGIC_HEIRLOOM, "post-read done"); |
| sconf = (sei_cfg_rec *) ap_get_module_config(r->server->module_config, |
| &setenvif_module); |
| } |
| else { |
| sconf = (sei_cfg_rec *) ap_get_module_config(r->per_dir_config, |
| &setenvif_module); |
| } |
| entries = (sei_entry *) sconf->conditionals->elts; |
| last_name = NULL; |
| val = NULL; |
| for (i = 0; i < sconf->conditionals->nelts; ++i) { |
| sei_entry *b = &entries[i]; |
| |
| /* Optimize the case where a bunch of directives in a row use the |
| * same header. Remember we don't need to strcmp the two header |
| * names because we made sure the pointers were equal during |
| * configuration. |
| */ |
| if (b->name != last_name) { |
| last_name = b->name; |
| switch (b->special_type) { |
| case SPECIAL_REMOTE_ADDR: |
| val = r->connection->remote_ip; |
| break; |
| case SPECIAL_REMOTE_HOST: |
| val = ap_get_remote_host(r->connection, r->per_dir_config, |
| REMOTE_NAME, NULL); |
| break; |
| case SPECIAL_REMOTE_USER: |
| val = r->user; |
| break; |
| case SPECIAL_REQUEST_URI: |
| val = r->uri; |
| break; |
| case SPECIAL_REQUEST_METHOD: |
| val = r->method; |
| break; |
| case SPECIAL_REQUEST_PROTOCOL: |
| val = r->protocol; |
| break; |
| case SPECIAL_NOT: |
| val = apr_table_get(r->headers_in, b->name); |
| if (val == NULL) { |
| val = apr_table_get(r->subprocess_env, b->name); |
| } |
| break; |
| } |
| } |
| |
| /* |
| * A NULL value indicates that the header field or special entity |
| * wasn't present or is undefined. Represent that as an empty string |
| * so that REs like "^$" will work and allow envariable setting |
| * based on missing or empty field. |
| */ |
| if (val == NULL) { |
| val = ""; |
| } |
| |
| if (!ap_regexec(b->preg, val, 0, NULL, 0)) { |
| apr_array_header_t *arr = apr_table_elts(b->features); |
| elts = (apr_table_entry_t *) arr->elts; |
| |
| for (j = 0; j < arr->nelts; ++j) { |
| if (!strcmp(elts[j].val, "!")) { |
| apr_table_unset(r->subprocess_env, elts[j].key); |
| } |
| else { |
| apr_table_setn(r->subprocess_env, elts[j].key, elts[j].val); |
| } |
| } |
| } |
| } |
| |
| return DECLINED; |
| } |
| |
| static void register_hooks(apr_pool_t *p) |
| { |
| ap_hook_header_parser(match_headers, NULL, NULL, APR_HOOK_MIDDLE); |
| ap_hook_post_read_request(match_headers, NULL, NULL, APR_HOOK_MIDDLE); |
| } |
| |
| module AP_MODULE_DECLARE_DATA setenvif_module = |
| { |
| STANDARD20_MODULE_STUFF, |
| create_setenvif_config_dir, /* dir config creater */ |
| merge_setenvif_config, /* dir merger --- default is to override */ |
| create_setenvif_config_svr, /* server config */ |
| merge_setenvif_config, /* merge server configs */ |
| setenvif_module_cmds, /* command apr_table_t */ |
| register_hooks /* register hooks */ |
| }; |