1 --- lighttpd-1.4.19/src/mod_evasive.c 2008-09-19 17:50:24.307245276 +0300
2 +++ lighttpd-1.4.22/src/mod_evasive.c 2009-05-12 02:21:58.524447939 +0300
5 unsigned short max_conns;
7 + unsigned short http_status_code;
8 + unsigned int retry_after;
14 + buffer *evasive_rftmp;
16 plugin_config **config_storage;
21 p = calloc(1, sizeof(*p));
23 + p->evasive_rftmp = buffer_init();
25 + buffer_prepare_copy(p->evasive_rftmp, 255);
32 if (!p) return HANDLER_GO_ON;
34 + buffer_free(p->evasive_rftmp);
36 if (p->config_storage) {
38 for (i = 0; i < srv->config_context->used; i++) {
42 config_values_t cv[] = {
43 - { "evasive.max-conns-per-ip", NULL, T_CONFIG_SHORT, T_CONFIG_SCOPE_CONNECTION }, /* 1 */
44 - { "evasive.silent", NULL, T_CONFIG_BOOLEAN, T_CONFIG_SCOPE_CONNECTION }, /* 2 */
45 + { "evasive.max-conns-per-ip", NULL, T_CONFIG_SHORT, T_CONFIG_SCOPE_CONNECTION }, /* 0 */
46 + { "evasive.silent", NULL, T_CONFIG_BOOLEAN, T_CONFIG_SCOPE_CONNECTION }, /* 1 */
47 + { "evasive.http-status-code", NULL, T_CONFIG_SHORT, T_CONFIG_SCOPE_CONNECTION }, /* 2 */
48 + { "evasive.retry-after", NULL, T_CONFIG_SHORT, T_CONFIG_SCOPE_CONNECTION }, /* 3 */
49 { NULL, NULL, T_CONFIG_UNSET, T_CONFIG_SCOPE_UNSET }
55 s = calloc(1, sizeof(plugin_config));
60 + s->http_status_code = 503;
63 cv[0].destination = &(s->max_conns);
64 + cv[2].destination = &(s->http_status_code);
65 + cv[3].destination = &(s->retry_after);
67 p->config_storage[i] = s;
73 + PATCH(http_status_code);
76 /* skip the first, the global context */
77 for (i = 1; i < srv->config_context->used; i++) {
80 } else if (buffer_is_equal_string(du->key, CONST_STR_LEN("evasive.silent"))) {
82 + } else if (buffer_is_equal_string(du->key, CONST_STR_LEN("evasive.http-status-code"))) {
83 + PATCH(http_status_code);
84 + } else if (buffer_is_equal_string(du->key, CONST_STR_LEN("evasive.retry-after"))) {
90 inet_ntop_cache_get_ip(srv, &(con->dst_addr)),
91 "turned away. Too many connections.");
93 - con->http_status = 403;
95 + con->http_status = p->conf.http_status_code;
96 + buffer_copy_long(p->evasive_rftmp, p->conf.retry_after);
97 + response_header_overwrite(srv, con, CONST_STR_LEN("Retry-After"), CONST_BUF_LEN(p->evasive_rftmp));
98 return HANDLER_FINISHED;