DBS on tertun palvelinohjelma, joka vastaanottaa asiakkaan selaimelta sivupyynt\u00f6j\u00e4, kutsuu sovellusohjelmaa (DBA), joka muotostaa sivupyynn\u00f6n pohjalta vastauksen. Vastaus palautetaan DBS:lle, joka l\u00e4hett\u00e4\u00e4 tuloksen asiakkaalle.<\/p>\n\n\n\n
Edit: muutoksia julkaisun j\u00e4lkeen:<\/p>\n\n\n\n
Palvelimissa on viel\u00e4 ongelmaa Safari-selaimen kanssa, safari menee “luuppiin”, jos haetaan sek\u00e4 portillista ja portitonta URL:\u00e4\u00e4 vuorotellen (moijari.com ja moijari.com:5005).<\/p>\n\n\n\n
.ico (favicon.ico) tiedostopyynt\u00f6jen ohittamista varten lis\u00e4tty muuttuja htmlextension muuttuja, sille hakurutiini dbs_html_parse_extension ja kutsu edelliselle rutiinille. Ei korjannut safari ongelmaa. Seuraavana ressu3 (moijari.com:5005) koodi:<\/p>\n\n\n\n
void dba_loop()\n{\n html_clear_all();\n if(!strcmp(htmlextension,\"ico\")) {\n dbs_html_set(0);\n dbs_html_printf(\"HTTP\/1.0 404 Not Found\\r\\n\");\n dbs_html_printf(\"Location: \\r\\n\"); \n dbs_html_printf(\"Server: %s\\r\\n\", programname); \n } else {\n dbs_html_set(0);\n dbs_html_printf(\"HTTP\/1.0 200 OK\\r\\n\");\n dbs_html_printf(\"Location: \\r\\n\");\n dbs_html_printf(\"Server: %s\\r\\n\", programname);\n dbs_html_printf(\"Date: %s\\r\\n\", htmltime);\n\n dbs_html_set(1);\n\n dbs_html_printf(\"\\n<!doctype html>\\r\\n\");\n dbs_html_printf(\"<html lang=\\\"fi\\\">\");\n\n dbs_html_printf(\"<head>\");\n dbs_html_printf(\"<meta charset=\\\"utf-8\\\">\");\n dbs_html_printf(\"<title>%s<\/title>\",proctitle);\n dbs_html_printf(\"<meta name=\\\"author\\\" content=\\\"Jari Kuivaniemi\\\">\");\n dbs_html_printf(\"<meta name=\\\"copyright\\\" content=\\\"Jari Kuivaniemi\\\">\");\n dbs_html_printf(\"<\/head>\");\n\n dbs_html_printf(\"<body>\");\n\n ressu3_app();\n\n dbs_html_printf(\"<br><br>%s, sha256(%s)<br><br>\", programname,\n htmldigest);\n dbs_html_printf(\"\\t\\toriginal url: <a href=\\\"https:\/\/moijari.com:5001\\\">https:\/\/moijari.com:5005<\/a>\\n\");\n dbs_html_printf(\"\\t\\t or <a href=\\\"https:\/\/moijari.com:5005\\\">https:\/\/moijari.com:5005<\/a><br>\\n\");\n\n dbs_html_printf(\"<\/body>\");\n\n dbs_html_printf(\"<\/html>\");\n\n int len;\n\n dbs_html_set(0);\n\n len=strlen(html_get_string(1)) +\n strlen(html_get_string(2)) +\n strlen(html_get_string(3)) +\n strlen(html_get_string(4));\n dbs_html_printf(\"Content-Length: %d\", len);\n dbs_html_printf(\"\\r\\n\\r\\n\");\n\n }\n}<\/code><\/pre>\n\n\n\nEnd of muutokset.<\/p>\n\n\n\n
Ohjelman k\u00e4ytt\u00e4mi\u00e4 muuttujia:<\/p>\n\n\n\n
unsigned char *htmlin;\nint htmlinlen=2048;\n\nunsigned char htmlmethod[10];\nunsigned char htmlpath[128];\nunsigned char htmlversion[32];\nunsigned char htmlfilename[64];\nunsigned char htmlextension[10];\nunsigned char htmlsessionid[33];\nunsigned char htmltime[32];\nunsigned char htmltimeshort[32];\nunsigned char *htmlparams=NULL;\nunsigned char htmldigest[HashLen*2+1];\nunsigned char htmlmode[10];\nunsigned char htmlip[32];\nunsigned char htmlsslcipher[64];\nunsigned char htmlhostname[33];\nunsigned char htmlport[10];\nunsigned char htmllanguage[10];<\/code><\/pre>\n\n\n\nRutiini muuttaa html-scriptin hexana esitetyn yksi numeroisen luvun int:iksi.<\/p>\n\n\n\n
static int dbs_parse_hex1(unsigned char **str) \/* 20131003 JariK *\/\n{\n unsigned char *p;\n int digit;\n\n p=*str;\n digit=0;\n if(*p>='a'&&*p<='f')\n digit=*p-'a'+10,p++;\n else if(*p>='A'&&*p<='F')\n digit=*p-'A'+10,p++;\n else if(*p>='0'&&*p<='9')\n digit=*p-'0',p++;\n else digit=-1;\n\n *str=p;\n return(digit);\n}<\/code><\/pre>\n\n\n\nT\u00e4m\u00e4 rutiini muodostaa html parametrist\u00e4 UTF8-merkkinonon. <\/p>\n\n\n\n
T\u00e4ss\u00e4 versiossa on lis\u00e4tty satunnaisuuden ker\u00e4ysrutiineja fort:lle (FORT_EVENTS_START ja FORT_EVENT_END), kuten muissakin my\u00f6hemmiss\u00e4 rutiineissa.<\/p>\n\n\n\n
static int dbs_parse_html_string(\n int stringlen, unsigned char *string,\n unsigned char **html)\n{\n int c,d,count,ok;\n unsigned char *s=string;\n unsigned char *h=*html;\n\n FORT_EVENTS_START(300)\n\n ok=0;\n count=0;\n\n while(isalnum(*h)||*h=='%'||*h=='+'||*h=='-'||*h=='_' || *h=='.'|| *h==',' || *h=='*') {\n ok=1;\n if(*h=='%') {\n h++;\n if((c=dbs_parse_hex1(&h))>=0) {\n if((d=dbs_parse_hex1(&h))>=0) {\n c=c*16+d;\n } else\n c=c;\n } else\n c=64;\n if(++count<stringlen)\n *s++=c;\n } else if(*h=='+') {\n if(++count<stringlen)\n *s++=' ';\n h++;\n } else {\n if(++count<stringlen)\n *s++=*h;\n h++;\n }\n }\n *s='\\0';\n *html=h;\n\n FORT_EVENTS_END(301)\n\n return(ok);\n}<\/code><\/pre>\n\n\n\nSeuraavassa rutiinit, joita k\u00e4ytet\u00e4\u00e4n satunnaisuuden ker\u00e4\u00e4miseen edellisess\u00e4 ja seuraavissa funktioissa. Olen lis\u00e4nnyt sen sellaisiin rutiineihin jotka sis\u00e4lt\u00e4v\u00e4t suorituspituutensa puolesta suoritusajan vaihtelua. Jos et halua k\u00e4ytt\u00e4\u00e4 n\u00e4it\u00e4 lis\u00e4\u00e4 pikku-a FORT_EVENTS m\u00e4\u00e4ritykseen. Voit tarkastella tapahtumien satunnaisuutta “grep source=300 fortevents.deb” komennolla, jossa 300 on halutun l\u00e4hteen numero.<\/p>\n\n\n\n
#ifdef FORT_EVENTS\n#define FORT_EVENTS_START(source) \\\n IUTIME micros; \\\n static int \\\n pool=0, pool2=0; \\\n if(fort_events) { \\\n fort_add_random_event_time(&pool, \\\n source, fort_event_mode); \\\n fort_add_random_event_timer_start(µs); \\\n }\n#else\n#define FORT_EVENTS_START(source)\n#endif\n\n#ifdef FORT_EVENTS\n#define FORT_EVENTS_END(source) \\\n if(fort_events) \\\n fort_add_random_event_timer_do(&pool2, \\\n source, fort_event_mode, \\\n µs);\n#else\n#define FORT_EVENTS_END(source)\n#endif<\/code><\/pre>\n\n\n\ndbs_html_get_string muuntaa koko merkkijonon, ei pelk\u00e4st\u00e4\u00e4n parametrej\u00e4 UTF8 muotoon(se sis\u00e4lt\u00e4\u00e4 my\u00f6s parametrierottimen ‘&’).<\/p>\n\n\n\n
#include <stdarg.h>\n\nint dbs_html_get_string(unsigned char *string,unsigned char **str,int len)\n{\n int c,d,ok,count;\n unsigned char *p,*n;\n\n FORT_EVENTS_START(302)\n\n n=string;\n p=*str;\n ok=0;\n\n count=0;\n while(isalnum(*p)||*p=='%'||*p=='+'||\n *p=='-'||*p=='_'||*p=='=' || *p=='&' || \n *p=='.' || *p=='*') {\n ok=1;\n if(*p=='%') {\n p++;\n if((c=dbs_parse_hex1(&p))>=0) {\n if((d=dbs_parse_hex1(&p))>=0) {\n c=c*16+d;\n } else\n c=c;\n } else\n c=64;\n if(count++<len)\n *n++=c;\n } else if(*p=='+') {\n if(count++<len)\n *n++=' ';\n p++;\n } else {\n if(count++<len)\n *n++=*p++;\n else\n p++;\n }\n }\n *n='\\0';\n *str=p;\n\n FORT_EVENTS_END(303)\n\n return(ok);\n}<\/code><\/pre>\n\n\n\nSeuraava rutiini palauttaa seuraavan parametrin nimen ja arvon. Merkkijonon parsiminen aloitetaan s osoitteesta ja suorituksen j\u00e4lkeen uusi merkkijonon kohta talletetaan takaisin s muuttujaan (**):<\/p>\n\n\n\n
int dbs_parse_html_parameter(int namelen, unsigned char *name, \n int valuelen,unsigned char *value,\n unsigned char **s)\n{\n FORT_EVENTS_START(304)\n\n if(dbs_parse_html_string(namelen, name, s)==0)\n return(0);\n if((**s)=='=')\n (*s)++;\n dbs_parse_html_string(valuelen, value, s);\n#ifdef OLD1\n if(dbs_parse_html_string(valuelen, value, s)==0)\n return(0);\n#endif\n if(**s=='&')\n (*s)++;\n\n FORT_EVENTS_END(305)\n\n return(1);\n}<\/code><\/pre>\n\n\n\nSeuraava rutiini palauttaa halutun nimisen parametrin html sivun parametreista: Parametrit alkavat kohdasta htmlparams.<\/p>\n\n\n\n
int dbs_get_parameter(char *name, int valuelen, unsigned char *value)\n{\n int ok;\n unsigned char name2[32];\n unsigned char *h=htmlparams;\n\n FORT_EVENTS_START(306)\n\n value[0]='\\0';\n ok=0;\n\n while(*h!='\\0') {\n dbs_parse_html_parameter(sizeof(name2), name2, valuelen, value, &h);\n if(!strcmp(name,name2)) {\n ok=1;\n break;\n }\n }\n\n FORT_EVENTS_END(307)\n\n return(ok);\n}<\/code><\/pre>\n\n\n\nT\u00e4ss\u00e4 vanha tuttu sekuntien haku:<\/p>\n\n\n\n
static unsigned long dbs_getseconds()\n{\n struct timeval tv;\n\n gettimeofday(&tv, NULL);\n\n return((IUTIME)tv.tv_sec);\n}<\/code><\/pre>\n\n\n\nSeuraavalla rutiinilla palautetaan html-otsakkeen rivi, joka alkaa tietyll\u00e4 merkkijonolla: (t\u00e4ll\u00e4 haetaan ainakin Cookie ja Content-Length -rivit: (sessionid kentt\u00e4\u00e4 (+ ip:t\u00e4) ei viel\u00e4 tarkasteta, ip:t poistettu, sessionid poistettu)<\/p>\n\n\n\n
EET20201211183424, ip=\"x.x.x.x\", callid=\"1826\"\nPOST \/app HTTP\/1.1^M\nHost: x.x.x.x:5004^M\nUser-Agent: Mozilla\/5.0 (X11; Ubuntu; Linux x86_64; rv:83.0) Gecko\/20100101 Firefox\/83.0^M\nAccept: text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/webp,*\/*;q=0.8^M\nAccept-Language: en-US,en;q=0.5^M\nAccept-Encoding: gzip, deflate, br^M\nContent-Type: application\/x-www-form-urlencoded^M\nContent-Length: 230^M\nOrigin: https:\/\/x.x.x.x:5004^M\nConnection: keep-alive^M\nReferer: https:\/\/x.x.x.x:5004\/logon^M\nCookie: sessionid=012345678901234567890123456789012; mode=Display; language=fi^M\nUpgrade-Insecure-Requests: 1^M<\/code><\/pre>\n\n\n\nstatic unsigned char *dbs_html_get_request_line(unsigned char *name)\n{\n unsigned char *p;\n\n FORT_EVENTS_START(308)\n\n p=htmlin;\n while(*p!='\\0') {\n if(!strncmp(p,\"\\r\\n\",2)) {\n p+=2;\n if(!strncmp(p,name,strlen(name))) {\n p+=strlen(name);\n\tif(*p==':') {\n p++;\n while(isblank(*p))\n p++;\n return(p);\n }\n }\n }\n p++;\n }\n FORT_EVENTS_END(309)\n\n return(NULL);\n}<\/code><\/pre>\n\n\n\nT\u00e4ll\u00e4 haetaan numeerinen html-otsakkeen rivi: (k\u00e4ytet\u00e4\u00e4n Content-Length haussa)<\/p>\n\n\n\n
static void dbs_html_get_request_line_num(\n unsigned char *name,\n int lenbuffer, unsigned char *buffer)\n{\n int len;\n unsigned char *n, *p;\n\n FORT_EVENTS_START(310)\n\n if((p=dbs_html_get_request_line(name))==NULL)\n sprintf(buffer,\"0\");\n else {\n len=0;\n n=buffer;\n while(isdigit(*p)) {\n if(++len<lenbuffer)\n *n++=*p;\n p++;\n }\n *n='\\0';\n }\n FORT_EVENTS_END(311)\n}<\/code><\/pre>\n\n\n\nT\u00e4ll\u00e4 haetaan nimetty cookie:<\/p>\n\n\n\n
void dbs_get_cookie(unsigned char *name,\n int valuelen, unsigned char *value)\n{\n int len;\n unsigned char *p,*n;\n\n FORT_EVENTS_START(312)\n\n if((p=dbs_html_get_request_line(\"Cookie\"))==NULL) {\n return;\n }\n\n while(*p!='\\n' && *p!='\\0') {\n while(isblank(*p))\n p++;\n if(!strncmp(p,name,strlen(name))) {\n p+=strlen(name);\n while(isblank(*p))\n p++;\n if(*p=='=')\n p++;\n while(isblank(*p))\n p++;\n n=value;\n len=0;\n while(*p!=';' && isprint(*p)) {\n if(++len<sizeof(htmlsessionid))\n *n++=*p;\n p++;\n }\n *n='\\0';\n return;\n }\n while(*p!=';' && *p!='\\n' && *p!='\\0')\n p++;\n if(*p==';')\n p++;\n while(isblank(*p))\n p++;\n }\n\n FORT_EVENTS_END(313)\n}<\/code><\/pre>\n\n\n\nT\u00e4t\u00e4 k\u00e4ytet\u00e4\u00e4n v\u00e4lily\u00f6nneill\u00e4 erotellun cr-lf loppuisen merkkijonon parsimiseen: Se on l\u00e4hinn\u00e4 k\u00e4yt\u00f6ss\u00e4 html-otsakkeen ensimm\u00e4isell\u00e4 rivill\u00e4 (POST \/app HTTP\/1.1^M)<\/p>\n\n\n\n
static void dbs_html_parse_string(int buflen, char *buf, unsigned char **p2)\n{\n int len;\n unsigned char *p;\n\n FORT_EVENTS_START(314)\n\n p=*p2;\n len=0;\n while(!isblank(*p) && *p!='\\n' && *p!='\\r') {\n if(++len<buflen) {\n *buf++=*p;\n }\n p++;\n }\n *buf='\\0';\n\n while(isblank(*p))\n p++;\n\n *p2=p;\n\n FORT_EVENTS_END(315)\n}<\/code><\/pre>\n\n\n\nT\u00e4t\u00e4 k\u00e4ytet\u00e4\u00e4n v\u00e4lily\u00f6nneill\u00e4 erotellun cr-lf loppuisen merkkijoon parsimiseen. Se parsii tiedostopolun tiedostonimen: Se on k\u00e4yt\u00f6ss\u00e4 html-otsakkeen ensimm\u00e4isell\u00e4 rivill\u00e4 (POST \/app HTTP\/1.1^M). Tiedostonimi on tietenkin tiedostopolun viimeisen kauttaviivan j\u00e4lkeinen osa.<\/p>\n\n\n\n
static void dbs_html_parse_filename(int buflen, char *buf,\n unsigned char *p)\n{\n int len;\n unsigned char *n;\n\n FORT_EVENTS_START(316)\n\n len=0;\n n=buf;\n\n while(*p!='\\0') {\n if(*p=='\/') {\n n=buf;\n len=0;\n } else {\n if(++len<buflen)\n *n++=*p;\n }\n p++;\n }\n *n='\\0';\n\n FORT_EVENTS_END(317)\n}\n<\/code><\/pre>\n\n\n\nT\u00e4m\u00e4 rutiini hakee tiedoston nimen jatkeen (extension) edellisen kappaleen palauttamasta tiedostonimest\u00e4:<\/p>\n\n\n\n
static void dbs_html_parse_extension(int buflen, char *buf, unsigned char *p)\n{\n int len;\n unsigned char *n;\n\n FORT_EVENTS_START(330)\n\n len=0;\n n=buf;\n\n while(*p!='\\0') {\n if(*p=='.') {\n n=buf;\n len=0;\n } else {\n if(++len<buflen)\n *n++=*p;\n }\n p++;\n }\n *n='\\0';\n FORT_EVENTS_END(331)\n}<\/code><\/pre>\n\n\n\nSeuraavaa k\u00e4ytet\u00e4\u00e4n html-otsakkeen “payload” kent\u00e4n hakuun. Se sis\u00e4lt\u00e4\u00e4 pyynn\u00f6st\u00e4 riippuen joko parametrien arvot tai asiakkaalle palautetun html-sivun rivit. Payload kentt\u00e4 l\u00f6ytyy html-otsakkeen ensimm\u00e4isen “\\r\\n\\r\\n”-merkkijonon j\u00e4lkeen.<\/p>\n\n\n\n
static unsigned char *dbs_html_get_params()\n{\n int ok=0;\n unsigned char *p=htmlin;\n\n FORT_EVENTS_START(318)\n\n while(*p!='\\0') {\n if(!strncmp(p,\"\\r\\n\\r\\n\",4)) {\n p+=4;\n ok=1;\n break;\n }\n p++;\n }\n\n FORT_EVENTS_END(319)\n\n if(ok==0)\n return(NULL);\n else\n return(p);\n}<\/code><\/pre>\n\n\n\nAliohjelmaa k\u00e4ytet\u00e4\u00e4n l\u00e4hinn\u00e4 ohjelman lokien talletuksessa.<\/p>\n\n\n\n
static void dbs_add_end_new_str(char *filename, char *string)\n{\n int ok;\n char buffer[256];\n FILE *fp1;\n\n ok=0;\n if((fp1=fopen(filename,\"r\"))!=NULL) {\n while(fgets(buffer,sizeof(buffer),fp1)!=NULL) {\n buffer[strlen(buffer)-1]='\\0';\n if(!strcmp(buffer,string)) {\n ok=1;\n break;\n }\n }\n fclose(fp1);\n }\n if(!ok) {\n if((fp1=fopen(filename,\"a\"))!=NULL) {\n fprintf(fp1,\"%s\\n\",string);\n fclose(fp1);\n }\n }\n}<\/code><\/pre>\n\n\n\nT\u00e4t\u00e4 rutiinia k\u00e4ytet\u00e4\u00e4n https- ja http-palvelimien j\u00e4lkeen ja se hakee yhteyden ja html-otsakkeen tiedot lokien ja asiakasohjelman k\u00e4ytt\u00e4miin kenttiin. Lis\u00e4ksi t\u00e4m\u00e4 ker\u00e4\u00e4 lokitietoja edellisist\u00e4.<\/p>\n\n\n\n
void dba_loop();\n\nstatic void dbs_run_loop()\n{\n unsigned char *p;\n\n FORT_EVENTS_START(320)\n\n p=htmlin;\n dbs_html_parse_string(sizeof(htmlmethod), htmlmethod,&p);\n fprintf(stdout,\"htmlmethod: \\\"%s\\\"\", htmlmethod);\n fflush(stdout);\n\n dbs_html_parse_string(sizeof(htmlpath), htmlpath, &p);\n fprintf(stdout,\", htmlpath: \\\"%s\\\"\", htmlpath);\n fflush(stdout);\n\n dbs_html_parse_string(sizeof(htmlversion), htmlversion, &p);\n fprintf(stdout,\", htmlversion: \\\"%s\\\"\", htmlversion);\n fflush(stdout);\n\n dbs_html_parse_filename(sizeof(htmlfilename), htmlfilename, htmlpath);\n fprintf(stdout,\", htmlfilename: \\\"%s\\\"\", htmlfilename);\n fflush(stdout);\n\n dbs_html_parse_extension(sizeof(htmlextension), htmlextension, htmlfilename);\n fprintf(stdout,\", htmlextension: \\\"%s\\\"\", htmlextension);\n fflush(stdout);\n\n htmlparams=dbs_html_get_params();\n if(htmlparams==NULL)\n htmlparams=\"\";\n fprintf(stdout,\", htmlparamslen: \\\"%ld\\\"\", strlen(htmlparams));\n\n html_clear_all();\n\n dba_loop();\n\n FILE *fp1;\n char filename[64];\n\n sprintf(filename,\"%stimelog.deb\",filenamehead);\n if((fp1=fopen(filename,\"a\"))!=NULL) {\n fprintf(fp1,\"%s, ip=\\\"%s\\\"\\n\",htmltime, htmlip);\n fclose(fp1);\n }\n\n sprintf(filename,\"%sips.deb\",filenamehead);\n dbs_add_end_new_str(filename, htmlip);\n\n sprintf(filename,\"%shostname.deb\",filenamehead);\n dbs_add_end_new_str(filename, htmlhostname);\n\n if(htmlsslcipher[0]!='\\0') {\n sprintf(filename,\"%sciphers.deb\",filenamehead);\n dbs_add_end_new_str(filename,htmlsslcipher);\n }\n sprintf(filename,\"%shtml.deb\",filenamehead);\n if((fp1 = fopen(filename,\"a\")) != NULL) {\n fprintf(fp1,\"%s, ip=\\\"%s\\\", callid=\\\"%d\\\"\\n\",htmltime, htmlip, callid);\n fprintf(fp1,\"%s\\n\",htmlin);\n for(int c=0;c<HTML_BUFFERS;c++) {\n if(strlen(html_get_string(c))>0) {\n fprintf(fp1,\"%d: %s\\n\",c,html_get_string(c));\n }\n }\n fclose(fp1);\n }\n fprintf(stdout,\"\\ncallid: %d\\n\", callid++);\n sprintf(filename,\"%scallid.deb\",filenamehead);\n if((fp1 = fopen(filename,\"w\")) != NULL) {\n fprintf(fp1,\"%d\\n\", callid);\n fclose(fp1);\n }\n FORT_EVENTS_END(321)\n}<\/code><\/pre>\n\n\n\nSeuraavana lopun palvelinohjelmien osat, joita k\u00e4ytet\u00e4\u00e4n sek\u00e4 https- ett\u00e4 http-palvelimissa.<\/p>\n\n\n\n
#include <errno.h>\n#include <openssl\/ssl.h>\n#include <openssl\/err.h>\n#include <sys\/types.h>\n#include <sys\/socket.h>\n#include <signal.h>\n#include <netinet\/in.h>\n#include <arpa\/inet.h>\n\/* See: http:\/\/h41379.www4.hpe.com\/doc\/83final\/ba554_90007\/ch04s03.html *\/\n\n#include <netdb.h>\n\n#define backlog 5\n\nint s,news;\nchar *cert_file = \"cert.pem\";\nchar *privatekey_file = \"key.pem\";\n\nextern char *myport;\n\nstatic int server_getaddrinfo(unsigned char *myport, struct addrinfo **res)\n{\n int status;\n struct addrinfo hints;\n\n memset(&hints, 0, sizeof(hints));\n hints.ai_family = AF_UNSPEC;\n hints.ai_socktype = SOCK_STREAM;\n hints.ai_flags = AI_PASSIVE;\n\n if ((status = getaddrinfo(NULL, myport, &hints, res)) != 0) {\n fprintf(stderr, \"\\n%s: getaddrinfo error: %s\",\n procname, gai_strerror(status));\n fprintf(stderr, \", error code %d\\n\", status);\n fflush(stderr);\n }\n return(status);\n}\n\nstatic int server_socket(struct addrinfo *res)\n{\n int s;\n\n if((s = socket(res->ai_family, res->ai_socktype, res->ai_protocol))==-1) {\n fprintf(stderr, \"%s: socket(), error: %d\\n\", procname, errno);\n perror(\"socket\");\n fflush(stderr);\n }\n return(s);\n}\n\nstatic void server_bind(int s, struct addrinfo *res)\n{\n if(bind(s, res->ai_addr, res->ai_addrlen)==-1) {\n if(errno == 98) {\n fprintf(stdout,\"%s cannot bind, waiting to bind\", procname);\n fflush(stdout);\n while(errno == 98) {\n sleep(10);\n fprintf(stdout,\".\");\n fflush(stdout);\n bind(s, res->ai_addr, res->ai_addrlen);\n }\n fprintf(stdout,\"bind done!\\n\");\n fflush(stdout);\n } else {\n fprintf(stderr,\"\\n%s: cannot bind(), error: %d\\n\", procname, errno);\n perror(\"bind\");\n fflush(stderr);\n }\n }\n}\n\nstatic int server_listen(int s)\n{\n int listenfd;\n\n if((listenfd=listen(s,backlog))==-1) {\n fprintf(stderr,\"\\n%s: cannot listen()\\n\", procname);\n perror(\"listen\");\n fflush(stderr);\n }\n\n return(listenfd);\n}\n\nstatic void server_close(int s)\n{\n if(close(s)==-1) {\n fprintf(stderr,\"\\n%s: cannot close()\\n\", procname);\n perror(\"close\");\n fflush(stderr);\n }\n}\n<\/code><\/pre>\n\n\n\nPalvelimiin on lis\u00e4tty metodilla GET ehto, jolloin GET pyynn\u00f6t voivat olla yksi blokkisia.<\/p>\n\n\n\n
Seuraavassa http-osuus palvelimesta:<\/p>\n\n\n\n
#include <sys\/socket.h>\n\n#define TIMEFORMAT \"%Z%Y%m%d%H%M%S\"\n#define HTMLTIMEFORMAT \"%a, %d %b %Y %H:%M:%S %Z\"\n\nstatic void http_server()\n{\n int addr_size;\n\n struct sockaddr_in sa_cli;\n struct addrinfo *res;\n\n unsigned char buffer10[10];\n\n FORT_EVENTS_START(322)\n\n \/\/ plus space for '\\0' \n htmlin = malloc(htmlinlen+1);\n\n signal(SIGPIPE, SIG_IGN);\n\n server_getaddrinfo(myport,&res);\n s = server_socket(res);\n server_bind(s,res);\n freeaddrinfo(res);\n server_listen(s); \/\/listenfd=server_listen(s); \n\n\n for(;;) {\n FORT_EVENTS_START(323)\n\n addr_size = sizeof(sa_cli);\n news = accept(s, (struct sockaddr *)&sa_cli, &addr_size);\n\n strcpy(htmlip, inet_ntoa(sa_cli.sin_addr));\n sprintf(htmlport,\"%d\", sa_cli.sin_port);\n htmlsslcipher[0] = '\\0';\n\n char host[32], serv[32];\n\n getnameinfo((struct sockaddr *)&sa_cli,addr_size,host,sizeof(host),serv,sizeof(serv),NI_NUMERICHOST|NI_NUMERICSERV);\n fprintf(stdout,\" numeric hostname:%s\",host);\n fprintf(stdout,\" numeric service:%s\",serv);\n\n getnameinfo((struct sockaddr *)&sa_cli,addr_size,host,sizeof(host),serv,sizeof(serv),NI_NUMERICSERV);\n fprintf(stdout,\" name hostname:%s\",host);\n fprintf(stdout,\" service:%s\",serv);\n\n htmlhostname[0]='\\0';\n\n unsigned long seconds = dbs_getseconds();\n strftime(htmltimeshort, sizeof(htmltimeshort), TIMEFORMAT,\n localtime((time_t *)&seconds));\n strftime(htmltime, sizeof(htmltime), HTMLTIMEFORMAT,\n localtime((time_t *)&seconds));\n\n fprintf(stdout,\"\\nConnection(http) from %x\", sa_cli.sin_addr.s_addr);\n fprintf(stdout,\", ip %s\", htmlip);\n fprintf(stdout,\", port %s\", htmlport);\n fprintf(stdout,\", at %s\\n\", htmltime);\n\n int clen = 0;\n int reads = 0;\n int first = 1;\n int bytes, totalbytes=0;\n\n htmlparams = NULL;\n htmlin[0]='\\0';\n\n while(htmlparams == NULL ||\n clen-strlen(htmlparams) > 0) {\n if(!first) {\n fprintf(stdout,\", \");\n }\n fprintf(stdout,\"read %d\", reads);\n fflush(stdout);\n if((bytes=read(news, htmlin+totalbytes, htmlinlen-totalbytes))<0) {\n fprintf(stderr,\"\\n%s: cannot read()\\n\", procname);\n perror(\"read\");\n fflush(stderr);\n }\n fprintf(stdout,\"(%d bytes)\", bytes);\n if(bytes==0)\n break;\n if(bytes>3 &&\n !isprint(htmlin[0]) &&\n !isprint(htmlin[1]) &&\n !isprint(htmlin[2])) {\n fprintf(stdout,\"https packet?\\n\");\n htmlin[0]='\\0';\n totalbytes=0;\n bytes=0;\n break;\n }\n *(htmlin+totalbytes+bytes) = '\\0';\n fprintf(stdout,\"%s\\n\",htmlin);\n totalbytes+=bytes;\n if(totalbytes>=htmlinlen) {\n \/\/ plus space for '\\0' \n htmlin=realloc(htmlin, htmlinlen*2+1);\n htmlinlen*=2;\n }\n\n htmlparams = dbs_html_get_params();\n unsigned char *p=htmlin;\n dbs_html_parse_string(sizeof(htmlmethod), htmlmethod,&p);\n if(!strcmp(htmlmethod,\"GET\"))\n break;\n dbs_html_get_request_line_num(\"Content-Length\", sizeof(buffer10), buffer10);\n clen = atoi(buffer10);\n reads++;\n first = 0;\n }\n if(totalbytes==0)\n continue;\n fprintf(stdout,\"\\n%d reads\", reads);\n fprintf(stdout,\", received %d chars\", totalbytes);\n fprintf(stdout,\", read %d total bytes\", totalbytes);\n fprintf(stdout,\", input buffer size %d chars\", htmlinlen);\n fprintf(stdout,\", data=\\\"%s\\\"\\n\", htmlin);\n\n dbs_run_loop();\n\n for(int c=0;c<HTML_BUFFERS;c++) {\n if(strlen(html_get_string(c))>0) {\n if((bytes=write(news, html_get_string(c), strlen(html_get_string(c))))==-1) {\n fprintf(stderr,\"\\n%s: cannot write() dbs_html[%d]\\n\", procname, c);\n perror(\"write\");\n fflush(stderr);\n }\n }\n }\n server_close(news);\n fflush(stdout);\n\n FORT_EVENTS_END(324)\n }\n FORT_EVENTS_END(325)\n}\n<\/code><\/pre>\n\n\n\nSeuraavaksi https-palvelin:<\/p>\n\n\n\n
static void https_server()\n{\n int status, addr_size;\n\n SSL_METHOD *method=NULL;\n SSL_CTX *ctx=NULL;\n SSL *ssl;\n X509 *peer_cert;\n\n struct sockaddr_in sa_cli;\n struct addrinfo *res;\n\n unsigned char buffer10[10];\n\n FORT_EVENTS_START(326)\n\n \/\/ plus space for '\\0' \n htmlin = malloc(htmlinlen+1);\n\n signal(SIGPIPE, SIG_IGN);\n\n SSL_library_init();\n\n OpenSSL_add_ssl_algorithms();\n OpenSSL_add_all_ciphers();\n\n SSL_load_error_strings();\n\n\n if((method = (SSL_METHOD *)\n SSLv23_server_method()) == NULL) {\n fprintf(stderr,\"\\n%s: cannot SSLv3_server_method()\", procname);\n fflush(stderr);\n }\n\n if((ctx=SSL_CTX_new(method)) == NULL) {\n fprintf(stderr,\"\\n%s: cannot SSL_CTX_new()\", procname);\n fflush(stderr);\n }\n\n if(SSL_CTX_use_certificate_file(ctx,\n cert_file, SSL_FILETYPE_PEM) <= 0) {\n fprintf(stderr,\"\\n%s: cannot SSL_CTX_use_certificate()\", procname);\n fflush(stderr);\n }\n\n if(SSL_CTX_use_PrivateKey_file(ctx,\n privatekey_file, SSL_FILETYPE_PEM)<=0) {\n fprintf(stderr,\"\\n%s: cannot SSL_CTX_use_certificate()\", procname);\n fflush(stderr);\n }\n\n if(!SSL_CTX_load_verify_locations(ctx,\n cert_file, NULL)) {\n fprintf(stderr,\"\\n%s: cannot SSL_CTX_verify_locations()\", procname);\n fflush(stderr);\n }\n\n server_getaddrinfo(myport, &res);\n s=server_socket(res);\n server_bind(s, res);\n freeaddrinfo(res);\n server_listen(s); \/\/ listenfd = server_listen(s); \n\n for(;;) {\n FORT_EVENTS_START(327)\n addr_size = sizeof(sa_cli);\n if((news=accept(s, (struct sockaddr *)&sa_cli, &addr_size))==-1) {\n fprintf(stderr,\"\\n%s: cannot accept()\\n\", procname);\n perror(\"accept\");\n fflush(stderr);\n }\n\n strcpy(htmlip, inet_ntoa(sa_cli.sin_addr));\n sprintf(htmlport,\"%d\", sa_cli.sin_port);\n\n char host[32], serv[32];\n\n getnameinfo((struct sockaddr *)&sa_cli,addr_size,host,sizeof(host),serv,sizeof(serv),NI_NUMERICHOST|NI_NUMERICSERV);\n fprintf(stdout,\" numeric hostname:%s\",host);\n fprintf(stdout,\" numeric service:%s\",serv);\n\n getnameinfo((struct sockaddr *)&sa_cli,addr_size,host,sizeof(host),serv,sizeof(serv),NI_NUMERICSERV);\n fprintf(stdout,\" name hostname:%s\",host);\n fprintf(stdout,\" service:%s\",serv);\n\n unsigned long seconds = dbs_getseconds();\n strftime(htmltimeshort, sizeof(htmltimeshort), TIMEFORMAT,\n localtime((time_t *)&seconds));\n strftime(htmltime, sizeof(htmltime), HTMLTIMEFORMAT,\n localtime((time_t *)&seconds));\n\n\n fprintf(stdout,\"\\nConnection(https) from %x\", sa_cli.sin_addr.s_addr);\n fprintf(stdout,\", ip %s\", htmlip);\n fprintf(stdout,\", port %s\", htmlport);\n fprintf(stdout,\", at %s\\n\", htmltime);\n\n if((ssl=SSL_new(ctx)) == NULL) {\n fprintf(stderr,\"\\n%s: cannot SSL_new()\", procname);\n fflush(stderr);\n }\n\n if(SSL_set_fd(ssl,news) != 1) {\n fprintf(stderr,\"\\n%s: cannot SSL_set_fd()\", procname);\n fflush(stderr);\n }\n\n int doreadwrite=1,tries=0;\n\n for(;;) {\n tries++;\n\n if(tries>4) {\n doreadwrite=0;\n break;\n }\n\n status=SSL_accept(ssl);\n if(status==-1) {\n int sslerr=SSL_get_error(ssl,status);\n int saveerrno=errno;\n fprintf(stderr,\"\\n%s: cannot SSL_accept(), status: %d, SSL error: %d, errno: %d\",\n procname, status, sslerr, saveerrno);\n fflush(stderr);\n\n switch(sslerr) {\n case SSL_ERROR_WANT_READ:\n fprintf(stderr,\", sslerr: SSL_ERROR_WANT_READ, retrying\");\n continue;\n case SSL_ERROR_WANT_WRITE:\n fprintf(stderr,\", sslerr: SSL_ERROR_WANT_WRITE, retrying\");\n continue;\n case SSL_ERROR_SYSCALL:\n fprintf(stderr,\", sslerr: SSL_ERROR_SYSCALL(5), errno: %d, retrying\\n\",saveerrno);\n ERR_print_errors_fp(stderr);\n continue;\n }\n } else\n break;\n }\n\n if(doreadwrite) {\n peer_cert = SSL_get_peer_certificate(ssl);\n if(peer_cert == NULL) {\n fprintf(stdout,\", No peer certificate\");\n fflush(stdout);\n }\n\n fprintf(stdout,\"\\n\");\n\n int clen = 0;\n int reads = 0;\n int first = 1;\n htmlparams = NULL;\n int bytes, totalbytes = 0;\n while(htmlparams==NULL || clen-strlen(htmlparams) > 0) {\n if(!first) {\n fprintf(stdout,\", \");\n }\n fprintf(stdout,\"read %d\", reads);\n fflush(stdout);\n if((bytes = SSL_read(ssl, htmlin+totalbytes, htmlinlen-totalbytes))<0) {\n fprintf(stderr,\"\\n%s: cannot SSL_read()\\n\", procname);\n perror(\"SSL_read\");\n fflush(stderr);\n }\n fprintf(stdout,\"(%d bytes)\", bytes);\n if(bytes==0)\n break;\n *(htmlin+totalbytes+bytes) = '\\0';\n\n totalbytes+=bytes;\n if(totalbytes >= htmlinlen) {\n \/\/ plus space for '\\0' \n htmlin=realloc(htmlin, htmlinlen*2+1);\n htmlinlen *= 2;\n }\n\n htmlparams = dbs_html_get_params();\n unsigned char *p=htmlin;\n dbs_html_parse_string(sizeof(htmlmethod), htmlmethod,&p);\n if(!strcmp(htmlmethod,\"GET\"))\n break;\n dbs_html_get_request_line_num(\"Content-Length\",\n sizeof(buffer10), buffer10);\n clen = atoi(buffer10);\n reads++;\n first = 0;\n }\n\n fprintf(stdout,\"\\n%d reads\", reads);\n fprintf(stdout,\", received %d chars\", totalbytes);\n fprintf(stdout,\", read %d total bytes\", totalbytes);\n fprintf(stdout,\", input buffer size %d chars\", htmlinlen);\n fprintf(stdout,\", data=\\\"%s\\\"\\n\", htmlin);\n\n strncpy(htmlsslcipher, SSL_get_cipher(ssl), sizeof(htmlsslcipher));\n\n dbs_run_loop();\n\n for(int c=0;c<HTML_BUFFERS;c++) {\n if(strlen(html_get_string(c))>0) {\n if((status=SSL_write(ssl, html_get_string(c), strlen(html_get_string(c))))<1) {\n fprintf(stderr,\"\\n%s: cannot SSL_write(), buffer %d, status: %d, SSL error: %d\",\n procname, c, status, SSL_get_error(ssl,status));\n fflush(stderr);\n }\n }\n }\n }\n fprintf(stdout,\"\\nSSL connection using %s\", htmlsslcipher);\n fflush(stderr);\n SSL_free(ssl);\n server_close(news);\n\n fflush(stdout);\n FORT_EVENTS_END(328)\n } \/\/ for(;;) \n SSL_CTX_free(ctx);\n FORT_EVENTS_END(329)\n}<\/code><\/pre>\n\n\n\nT\u00e4ss\u00e4 rutiini merkkijonon tallettamiseen. K\u00e4ytet\u00e4\u00e4n l\u00e4hinn\u00e4 ohjelman parametreissa.<\/p>\n\n\n\n
static unsigned char *dbs_save_string(unsigned char *string)\n{\n unsigned char *temp = malloc(strlen(string)+1);\n strcpy(temp, string);\n return(temp);\n}<\/code><\/pre>\n\n\n\nT\u00e4ll\u00e4 lasketaan tiedoston eli t\u00e4ss\u00e4 ajettavan ohjelman “sormenj\u00e4lki”.<\/p>\n\n\n\n
static void dbs_file_digest(char *filename,unsigned char *hash)\n{\n int c;\n unsigned char buffer[1024];\n FILE *fp1;\n HashCtx ctx;\n\n HashInit(&ctx);\n if((fp1 = fopen(filename, \"rb\"))!=NULL) {\n while((c=fread(buffer, 1, sizeof(buffer), fp1)) > 0)\n HashUpdate(&ctx, buffer, c);\n fclose(fp1);\n }\n HashFinal(hash, &ctx);\n}<\/code><\/pre>\n\n\n\nJa varsin p\u00e4\u00e4ohjelma:<\/p>\n\n\n\n
int dba_main(int argc,char *argv[]);\n\nstatic void dbs_version()\n{\n fprintf(stdout,\"%s, \", programname);\n fprintf(stdout,\"%s\\n\", copyright);\n fflush(stdout);\n}\n\nint https=1;\n\nint dbs_main(int argc,char *argv[])\n{\n int c;\n for(c = 1; c < argc; c++) {\n if(!strncmp(argv[c], \"--https\",7))\n https = 1;\n else if(!strncmp(argv[c], \"--http\",6))\n https = 0;\n else if(!strncmp(argv[c], \"--port\",6)) {\n if(argv[c][6] != '\\0')\n myport = dbs_save_string(&argv[c][6]);\n else\n myport = dbs_save_string(argv[++c]);\n } else if(!strncmp(argv[c], \"-p\",2)) {\n if(argv[c][2] != '\\0')\n myport = dbs_save_string(&argv[c][2]);\n else\n myport = dbs_save_string(argv[++c]);\n } else if(!strncmp(argv[c], \"--version\",9)) {\n dbs_version();\n } else if(!strncmp(argv[c], \"-v\",2)) {\n dbs_version();\n }\n }\n return(0);\n}\n\nint main(int argc,char *argv[])\n{\n unsigned char filedigest[HashLen],buffer10[10];\n\n procname=argv[0];\n\n dbs_file_digest(\"\/proc\/self\/exe\", filedigest);\n htmldigest[0]='\\0';\n for(int c = 0;c < HashLen; c++) {\n char twodigits[3];\n sprintf(twodigits,\"%02x\", filedigest[c]);\n strcat(htmldigest, twodigits);\n }\n\n fprintf(stdout,\"%s\", programname);\n fflush(stdout);\n if(https)\n fprintf(stdout,\", https\");\n else\n fprintf(stdout,\", http\");\n\n fprintf(stdout,\", port %s\", myport);\n\n fprintf(stdout,\", sha256(%s)\\n\", htmldigest);\n fprintf(stdout,\"%s\\n\\n\", copyright);\n fflush(stdout);\n\n dbs_main(argc,argv);\n dba_main(argc,argv);\n\n FILE *fp1;\n unsigned char filename[64];\n\n callid = 0;\n\n sprintf(filename,\"%scallid.deb\",filenamehead);\n if((fp1 = fopen(filename,\"r\")) != NULL) {\n fgets(buffer10, sizeof(buffer10), fp1);\n callid = atoi(buffer10);\n fclose(fp1);\n }\n\n sprintf(filename,\"%spid.deb\",filenamehead);\n if((fp1 = fopen(filename,\"w\")) != NULL) {\n fprintf(fp1,\"%d\\n\", getpid());\n fclose(fp1);\n }\n\n if(https)\n https_server();\n else\n http_server();\n\n exit(0);\n}<\/code><\/pre>\n\n\n\n<\/p>\n","protected":false},"excerpt":{"rendered":"
DBS on tertun palvelinohjelma, joka vastaanottaa asiakkaan selaimelta sivupyynt\u00f6j\u00e4, kutsuu sovellusohjelmaa (DBA), joka muotostaa sivupyynn\u00f6n pohjalta vastauksen. Vastaus palautetaan DBS:lle, joka l\u00e4hett\u00e4\u00e4 tuloksen asiakkaalle. Edit: muutoksia julkaisun j\u00e4lkeen: Palvelimissa on viel\u00e4 ongelmaa Safari-selaimen kanssa, safari menee “luuppiin”, jos haetaan sek\u00e4 portillista ja portitonta URL:\u00e4\u00e4 vuorotellen (moijari.com ja moijari.com:5005). .ico (favicon.ico) tiedostopyynt\u00f6jen ohittamista varten lis\u00e4tty muuttuja… Continue reading DBS versio 0.08<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6,5],"tags":[],"_links":{"self":[{"href":"https:\/\/moijari.com\/index.php?rest_route=\/wp\/v2\/posts\/1522"}],"collection":[{"href":"https:\/\/moijari.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/moijari.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/moijari.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/moijari.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1522"}],"version-history":[{"count":16,"href":"https:\/\/moijari.com\/index.php?rest_route=\/wp\/v2\/posts\/1522\/revisions"}],"predecessor-version":[{"id":1541,"href":"https:\/\/moijari.com\/index.php?rest_route=\/wp\/v2\/posts\/1522\/revisions\/1541"}],"wp:attachment":[{"href":"https:\/\/moijari.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1522"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/moijari.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1522"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/moijari.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1522"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}