Fijxu/nginx-quic
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge of r4636, r4637, r4638: config sanity checks.

Browse source 
*) Added syntax checking of the second parameter of the "split_clients"
   directive.

*) Capped the status code that may be returned with "return" and
   "try_files".

*) Zero padded the returned and logged HTTP status code, and fixed possible
   buffer overrun in $status handling.
This commit is contained in:
Maxim Dounin 2012-06-29 17:28:41 +00:00
parent 541f213465
commit fefcbf1738
5 changed files with 17 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
src/http/modules/ngx_http_log_module.c
View file

@ -205,7 +205,7 @@ static ngx_http_log_var_t ngx_http_log_vars[] = {
{ ngx_string("msec"), NGX_TIME_T_LEN + 4, ngx_http_log_msec }, { ngx_string("msec"), NGX_TIME_T_LEN + 4, ngx_http_log_msec },
{ ngx_string("request_time"), NGX_TIME_T_LEN + 4, { ngx_string("request_time"), NGX_TIME_T_LEN + 4,
ngx_http_log_request_time }, ngx_http_log_request_time },
{ ngx_string("status"), 3, ngx_http_log_status }, { ngx_string("status"), NGX_INT_T_LEN, ngx_http_log_status },
{ ngx_string("bytes_sent"), NGX_OFF_T_LEN, ngx_http_log_bytes_sent }, { ngx_string("bytes_sent"), NGX_OFF_T_LEN, ngx_http_log_bytes_sent },
{ ngx_string("body_bytes_sent"), NGX_OFF_T_LEN, { ngx_string("body_bytes_sent"), NGX_OFF_T_LEN,
ngx_http_log_body_bytes_sent }, ngx_http_log_body_bytes_sent },
@ -593,7 +593,7 @@ ngx_http_log_status(ngx_http_request_t *r, u_char *buf, ngx_http_log_op_t *op)
status = 0; status = 0;
} }
return ngx_sprintf(buf, "%ui", status); return ngx_sprintf(buf, "%03ui", status);
} }

6
src/http/modules/ngx_http_rewrite_module.c
View file

@ -485,6 +485,12 @@ ngx_http_rewrite_return(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
} else { } else {
if (ret->status > 999) {
ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
"invalid return code \"%V\"", &value[1]);
return NGX_CONF_ERROR;
}
if (cf->args->nelts == 2) { if (cf->args->nelts == 2) {
return NGX_CONF_OK; return NGX_CONF_OK;
} }

7
src/http/modules/ngx_http_split_clients_module.c
View file

@ -138,6 +138,13 @@ ngx_conf_split_clients_block(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
} }
name = value[2]; name = value[2];
if (name.len < 2 || name.data[0] != '$') {
ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
"invalid variable name \"%V\"", &name);
return NGX_CONF_ERROR;
}
name.len--; name.len--;
name.data++; name.data++;

2
src/http/ngx_http_core_module.c
View file

@ -4662,7 +4662,7 @@ ngx_http_core_try_files(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
code = ngx_atoi(tf[i - 1].name.data + 1, tf[i - 1].name.len - 2); code = ngx_atoi(tf[i - 1].name.data + 1, tf[i - 1].name.len - 2);
if (code == NGX_ERROR) { if (code == NGX_ERROR || code > 999) {
ngx_conf_log_error(NGX_LOG_EMERG, cf, 0, ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
"invalid code \"%*s\"", "invalid code \"%*s\"",
tf[i - 1].name.len - 1, tf[i - 1].name.data); tf[i - 1].name.len - 1, tf[i - 1].name.data);

2
src/http/ngx_http_header_filter_module.c
View file

@ -445,7 +445,7 @@ ngx_http_header_filter(ngx_http_request_t *r)
b->last = ngx_copy(b->last, status_line->data, status_line->len); b->last = ngx_copy(b->last, status_line->data, status_line->len);
} else { } else {
b->last = ngx_sprintf(b->last, "%ui", status); b->last = ngx_sprintf(b->last, "%03ui", status);
} }
*b->last++ = CR; *b->last++ = LF; *b->last++ = CR; *b->last++ = LF;