altarch-user / rpms / httpd

Forked from rpms/httpd 2 years ago
Clone

Blame SOURCES/httpd-2.4.4-mod_unique_id.patch

008793
--- trunk/modules/metadata/mod_unique_id.c	2011/12/02 23:02:04	1209766
008793
+++ trunk/modules/metadata/mod_unique_id.c	2013/07/10 16:20:31	1501827
008793
@@ -31,14 +31,11 @@
008793
 #include "http_log.h"
008793
 #include "http_protocol.h"  /* for ap_hook_post_read_request */
008793
 
008793
-#if APR_HAVE_UNISTD_H
008793
-#include <unistd.h>         /* for getpid() */
008793
-#endif
008793
+#define ROOT_SIZE 10
008793
 
008793
 typedef struct {
008793
     unsigned int stamp;
008793
-    unsigned int in_addr;
008793
-    unsigned int pid;
008793
+    char root[ROOT_SIZE];
008793
     unsigned short counter;
008793
     unsigned int thread_index;
008793
 } unique_id_rec;
008793
@@ -64,20 +61,15 @@
008793
  * gethostbyname (gethostname()) is unique across all the machines at the
008793
  * "site".
008793
  *
008793
- * We also further assume that pids fit in 32-bits.  If something uses more
008793
- * than 32-bits, the fix is trivial, but it requires the unrolled uuencoding
008793
- * loop to be extended.  * A similar fix is needed to support multithreaded
008793
- * servers, using a pid/tid combo.
008793
- *
008793
- * Together, the in_addr and pid are assumed to absolutely uniquely identify
008793
- * this one child from all other currently running children on all servers
008793
- * (including this physical server if it is running multiple httpds) from each
008793
+ * The root is assumed to absolutely uniquely identify this one child
008793
+ * from all other currently running children on all servers (including
008793
+ * this physical server if it is running multiple httpds) from each
008793
  * other.
008793
  *
008793
- * The stamp and counter are used to distinguish all hits for a particular
008793
- * (in_addr,pid) pair.  The stamp is updated using r->request_time,
008793
- * saving cpu cycles.  The counter is never reset, and is used to permit up to
008793
- * 64k requests in a single second by a single child.
008793
+ * The stamp and counter are used to distinguish all hits for a
008793
+ * particular root.  The stamp is updated using r->request_time,
008793
+ * saving cpu cycles.  The counter is never reset, and is used to
008793
+ * permit up to 64k requests in a single second by a single child.
008793
  *
008793
  * The 144-bits of unique_id_rec are encoded using the alphabet
008793
  * [A-Za-z0-9@-], resulting in 24 bytes of printable characters.  That is then
008793
@@ -92,7 +84,7 @@
008793
  * module change.
008793
  *
008793
  * It is highly desirable that identifiers exist for "eternity".  But future
008793
- * needs (such as much faster webservers, moving to 64-bit pids, or moving to a
008793
+ * needs (such as much faster webservers, or moving to a
008793
  * multithreaded server) may dictate a need to change the contents of
008793
  * unique_id_rec.  Such a future implementation should ensure that the first
008793
  * field is still a time_t stamp.  By doing that, it is possible for a site to
008793
@@ -100,7 +92,15 @@
008793
  * wait one entire second, and then start all of their new-servers.  This
008793
  * procedure will ensure that the new space of identifiers is completely unique
008793
  * from the old space.  (Since the first four unencoded bytes always differ.)
008793
+ *
008793
+ * Note: previous implementations used 32-bits of IP address plus pid
008793
+ * in place of the PRNG output in the "root" field.  This was
008793
+ * insufficient for IPv6-only hosts, required working DNS to determine
008793
+ * a unique IP address (fragile), and needed a [0, 1) second sleep
008793
+ * call at startup to avoid pid reuse.  Use of the PRNG avoids all
008793
+ * these issues.
008793
  */
008793
+
008793
 /*
008793
  * Sun Jun  7 05:43:49 CEST 1998 -- Alvaro
008793
  * More comments:
008793
@@ -116,8 +116,6 @@
008793
  * htonl/ntohl. Well, this shouldn't be a problem till year 2106.
008793
  */
008793
 
008793
-static unsigned global_in_addr;
008793
-
008793
 /*
008793
  * XXX: We should have a per-thread counter and not use cur_unique_id.counter
008793
  * XXX: in all threads, because this is bad for performance on multi-processor
008793
@@ -129,7 +127,7 @@
008793
 /*
008793
  * Number of elements in the structure unique_id_rec.
008793
  */
008793
-#define UNIQUE_ID_REC_MAX 5
008793
+#define UNIQUE_ID_REC_MAX 4
008793
 
008793
 static unsigned short unique_id_rec_offset[UNIQUE_ID_REC_MAX],
008793
                       unique_id_rec_size[UNIQUE_ID_REC_MAX],
008793
@@ -138,113 +136,32 @@
008793
 
008793
 static int unique_id_global_init(apr_pool_t *p, apr_pool_t *plog, apr_pool_t *ptemp, server_rec *main_server)
008793
 {
008793
-    char str[APRMAXHOSTLEN + 1];
008793
-    apr_status_t rv;
008793
-    char *ipaddrstr;
008793
-    apr_sockaddr_t *sockaddr;
008793
-
008793
     /*
008793
      * Calculate the sizes and offsets in cur_unique_id.
008793
      */
008793
     unique_id_rec_offset[0] = APR_OFFSETOF(unique_id_rec, stamp);
008793
     unique_id_rec_size[0] = sizeof(cur_unique_id.stamp);
008793
-    unique_id_rec_offset[1] = APR_OFFSETOF(unique_id_rec, in_addr);
008793
-    unique_id_rec_size[1] = sizeof(cur_unique_id.in_addr);
008793
-    unique_id_rec_offset[2] = APR_OFFSETOF(unique_id_rec, pid);
008793
-    unique_id_rec_size[2] = sizeof(cur_unique_id.pid);
008793
-    unique_id_rec_offset[3] = APR_OFFSETOF(unique_id_rec, counter);
008793
-    unique_id_rec_size[3] = sizeof(cur_unique_id.counter);
008793
-    unique_id_rec_offset[4] = APR_OFFSETOF(unique_id_rec, thread_index);
008793
-    unique_id_rec_size[4] = sizeof(cur_unique_id.thread_index);
008793
+    unique_id_rec_offset[1] = APR_OFFSETOF(unique_id_rec, root);
008793
+    unique_id_rec_size[1] = sizeof(cur_unique_id.root);
008793
+    unique_id_rec_offset[2] = APR_OFFSETOF(unique_id_rec, counter);
008793
+    unique_id_rec_size[2] = sizeof(cur_unique_id.counter);
008793
+    unique_id_rec_offset[3] = APR_OFFSETOF(unique_id_rec, thread_index);
008793
+    unique_id_rec_size[3] = sizeof(cur_unique_id.thread_index);
008793
     unique_id_rec_total_size = unique_id_rec_size[0] + unique_id_rec_size[1] +
008793
-                               unique_id_rec_size[2] + unique_id_rec_size[3] +
008793
-                               unique_id_rec_size[4];
008793
+                               unique_id_rec_size[2] + unique_id_rec_size[3];
008793
 
008793
     /*
008793
      * Calculate the size of the structure when encoded.
008793
      */
008793
     unique_id_rec_size_uu = (unique_id_rec_total_size*8+5)/6;
008793
 
008793
-    /*
008793
-     * Now get the global in_addr.  Note that it is not sufficient to use one
008793
-     * of the addresses from the main_server, since those aren't as likely to
008793
-     * be unique as the physical address of the machine
008793
-     */
008793
-    if ((rv = apr_gethostname(str, sizeof(str) - 1, p)) != APR_SUCCESS) {
008793
-        ap_log_error(APLOG_MARK, APLOG_ALERT, rv, main_server, APLOGNO(01563)
008793
-          "unable to find hostname of the server");
008793
-        return HTTP_INTERNAL_SERVER_ERROR;
008793
-    }
008793
-
008793
-    if ((rv = apr_sockaddr_info_get(&sockaddr, str, AF_INET, 0, 0, p)) == APR_SUCCESS) {
008793
-        global_in_addr = sockaddr->sa.sin.sin_addr.s_addr;
008793
-    }
008793
-    else {
008793
-        ap_log_error(APLOG_MARK, APLOG_ALERT, rv, main_server, APLOGNO(01564)
008793
-                    "unable to find IPv4 address of \"%s\"", str);
008793
-#if APR_HAVE_IPV6
008793
-        if ((rv = apr_sockaddr_info_get(&sockaddr, str, AF_INET6, 0, 0, p)) == APR_SUCCESS) {
008793
-            memcpy(&global_in_addr,
008793
-                   (char *)sockaddr->ipaddr_ptr + sockaddr->ipaddr_len - sizeof(global_in_addr),
008793
-                   sizeof(global_in_addr));
008793
-            ap_log_error(APLOG_MARK, APLOG_ALERT, rv, main_server, APLOGNO(01565)
008793
-                         "using low-order bits of IPv6 address "
008793
-                         "as if they were unique");
008793
-        }
008793
-        else
008793
-#endif
008793
-        return HTTP_INTERNAL_SERVER_ERROR;
008793
-    }
008793
-
008793
-    apr_sockaddr_ip_get(&ipaddrstr, sockaddr);
008793
-    ap_log_error(APLOG_MARK, APLOG_INFO, 0, main_server, APLOGNO(01566) "using ip addr %s",
008793
-                 ipaddrstr);
008793
-
008793
-    /*
008793
-     * If the server is pummelled with restart requests we could possibly end
008793
-     * up in a situation where we're starting again during the same second
008793
-     * that has been used in previous identifiers.  Avoid that situation.
008793
-     *
008793
-     * In truth, for this to actually happen not only would it have to restart
008793
-     * in the same second, but it would have to somehow get the same pids as
008793
-     * one of the other servers that was running in that second. Which would
008793
-     * mean a 64k wraparound on pids ... not very likely at all.
008793
-     *
008793
-     * But protecting against it is relatively cheap.  We just sleep into the
008793
-     * next second.
008793
-     */
008793
-    apr_sleep(apr_time_from_sec(1) - apr_time_usec(apr_time_now()));
008793
     return OK;
008793
 }
008793
 
008793
 static void unique_id_child_init(apr_pool_t *p, server_rec *s)
008793
 {
008793
-    pid_t pid;
008793
-
008793
-    /*
008793
-     * Note that we use the pid because it's possible that on the same
008793
-     * physical machine there are multiple servers (i.e. using Listen). But
008793
-     * it's guaranteed that none of them will share the same pids between
008793
-     * children.
008793
-     *
008793
-     * XXX: for multithread this needs to use a pid/tid combo and probably
008793
-     * needs to be expanded to 32 bits
008793
-     */
008793
-    pid = getpid();
008793
-    cur_unique_id.pid = pid;
008793
-
008793
-    /*
008793
-     * Test our assumption that the pid is 32-bits.  It's possible that
008793
-     * 64-bit machines will declare pid_t to be 64 bits but only use 32
008793
-     * of them.  It would have been really nice to test this during
008793
-     * global_init ... but oh well.
008793
-     */
008793
-    if ((pid_t)cur_unique_id.pid != pid) {
008793
-        ap_log_error(APLOG_MARK, APLOG_CRIT, 0, s, APLOGNO(01567)
008793
-                    "oh no! pids are greater than 32-bits!  I'm broken!");
008793
-    }
008793
-
008793
-    cur_unique_id.in_addr = global_in_addr;
008793
+    ap_random_insecure_bytes(&cur_unique_id.root,
008793
+                             sizeof(cur_unique_id.root));
008793
 
008793
     /*
008793
      * If we use 0 as the initial counter we have a little less protection
008793
@@ -253,13 +170,6 @@
008793
      */
008793
     ap_random_insecure_bytes(&cur_unique_id.counter,
008793
                              sizeof(cur_unique_id.counter));
008793
-
008793
-    /*
008793
-     * We must always use network ordering for these bytes, so that
008793
-     * identifiers are comparable between machines of different byte
008793
-     * orderings.  Note in_addr is already in network order.
008793
-     */
008793
-    cur_unique_id.pid = htonl(cur_unique_id.pid);
008793
 }
008793
 
008793
 /* NOTE: This is *NOT* the same encoding used by base64encode ... the last two
008793
@@ -291,10 +201,8 @@
008793
     unsigned short counter;
008793
     int i,j,k;
008793
 
008793
-    new_unique_id.in_addr = cur_unique_id.in_addr;
008793
-    new_unique_id.pid = cur_unique_id.pid;
008793
+    memcpy(&new_unique_id.root, &cur_unique_id.root, ROOT_SIZE);
008793
     new_unique_id.counter = cur_unique_id.counter;
008793
-
008793
     new_unique_id.stamp = htonl((unsigned int)apr_time_sec(r->request_time));
008793
     new_unique_id.thread_index = htonl((unsigned int)r->connection->id);
008793