misc: avoided warnings with old gcc versions due to incorrect inline definition and renamed functions for clarity.

Author: thibaultcha

src/ngx_http_lua_control.c

@@ -239,7 +239,7 @@ ngx_http_lua_ngx_redirect(lua_State *L)
                           "the headers");
     }
 
-    if (ngx_http_lua_check_header_safe(r, p, len) != NGX_OK) {
+    if (ngx_http_lua_check_unsafe_header(r, p, len) != NGX_OK) {
         return luaL_error(L, "attempt to use unsafe uri");
     }
 

src/ngx_http_lua_headers_in.c

@@ -658,8 +658,8 @@ ngx_http_lua_set_input_header(ngx_http_request_t *r, ngx_str_t key,
 
     dd("set header value: %.*s", (int) value.len, value.data);
 
-    if (ngx_http_lua_check_header_safe(r, key.data, key.len) != NGX_OK
-        || ngx_http_lua_check_header_safe(r, value.data, value.len) != NGX_OK)
+    if (ngx_http_lua_check_unsafe_header(r, key.data, key.len) != NGX_OK
+        || ngx_http_lua_check_unsafe_header(r, value.data, value.len) != NGX_OK)
     {
         return NGX_ERROR;
     }

src/ngx_http_lua_headers_out.c

@@ -491,8 +491,8 @@ ngx_http_lua_set_output_header(ngx_http_request_t *r, ngx_http_lua_ctx_t *ctx,
 
     dd("set header value: %.*s", (int) value.len, value.data);
 
-    if (ngx_http_lua_check_header_safe(r, key.data, key.len) != NGX_OK
-        || ngx_http_lua_check_header_safe(r, value.data, value.len) != NGX_OK)
+    if (ngx_http_lua_check_unsafe_header(r, key.data, key.len) != NGX_OK
+        || ngx_http_lua_check_unsafe_header(r, value.data, value.len) != NGX_OK)
     {
         return NGX_ERROR;
     }

src/ngx_http_lua_uri.c

@@ -16,7 +16,7 @@
 
 
 static int ngx_http_lua_ngx_req_set_uri(lua_State *L);
-static ngx_int_t ngx_http_lua_check_uri_safe(ngx_http_request_t *r,
+static ngx_inline ngx_int_t ngx_http_lua_check_unsafe_uri(ngx_http_request_t *r,
     u_char *str, size_t len);
 
 
@@ -57,7 +57,7 @@ ngx_http_lua_ngx_req_set_uri(lua_State *L)
         return luaL_error(L, "attempt to use zero-length uri");
     }
 
-    if (ngx_http_lua_check_uri_safe(r, p, len) != NGX_OK) {
+    if (ngx_http_lua_check_unsafe_uri(r, p, len) != NGX_OK) {
         return luaL_error(L, "attempt to use unsafe uri");
     }
 
@@ -115,7 +115,7 @@ ngx_http_lua_ngx_req_set_uri(lua_State *L)
 
 
 static ngx_inline ngx_int_t
-ngx_http_lua_check_uri_safe(ngx_http_request_t *r, u_char *str, size_t len)
+ngx_http_lua_check_unsafe_uri(ngx_http_request_t *r, u_char *str, size_t len)
 {
     size_t           i, buf_len;
     u_char           c;

src/ngx_http_lua_util.c

@@ -4328,56 +4328,4 @@ ngx_http_lua_escape_log(u_char *dst, u_char *src, size_t size)
 }
 
 
-ngx_inline ngx_int_t
-ngx_http_lua_check_header_safe(ngx_http_request_t *r, u_char *str, size_t len)
-{
-    size_t           i, buf_len;
-    u_char           c;
-    u_char          *buf, *src = str;
-
-                     /* %00-%1F, %7F */
-
-    static uint32_t  unsafe[] = {
-        0xffffffff, /* 1111 1111 1111 1111  1111 1111 1111 1111 */
-
-                    /* ?>=< ;:98 7654 3210  /.-, +*)( '&%$ #"!  */
-        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
-
-                    /* _^]\ [ZYX WVUT SRQP  ONML KJIH GFED CBA@ */
-        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
-
-                    /*  ~}| {zyx wvut srqp  onml kjih gfed cba` */
-        0x80000000, /* 1000 0000 0000 0000  0000 0000 0000 0000 */
-
-        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
-        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
-        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
-        0x00000000  /* 0000 0000 0000 0000  0000 0000 0000 0000 */
-    };
-
-    for (i = 0; i < len; i++, str++) {
-        c = *str;
-        if (unsafe[c >> 5] & (1 << (c & 0x1f))) {
-            buf_len = ngx_http_lua_escape_log(NULL, src, len);
-            buf = ngx_palloc(r->pool, buf_len);
-            if (buf == NULL) {
-                return NGX_ERROR;
-            }
-
-            ngx_http_lua_escape_log(buf, src, len);
-
-            ngx_log_error(NGX_LOG_ERR, r->connection->log, 0,
-                          "unsafe byte \"0x%uxd\" in header \"%*s\"",
-                          (unsigned) c, buf_len, buf);
-
-            ngx_pfree(r->pool, buf);
-
-            return NGX_ERROR;
-        }
-    }
-
-    return NGX_OK;
-}
-
-
 /* vi:set ft=c ts=4 sw=4 et fdm=marker: */

src/ngx_http_lua_util.h

@@ -242,8 +242,6 @@ void ngx_http_lua_set_sa_restart(ngx_log_t *log);
 #endif
 
 size_t ngx_http_lua_escape_log(u_char *dst, u_char *src, size_t size);
-ngx_int_t ngx_http_lua_check_header_safe(ngx_http_request_t *r, u_char *str,
-    size_t len);
 
 
 static ngx_inline void
@@ -491,6 +489,58 @@ ngx_inet_get_port(struct sockaddr *sa)
 #endif
 
 
+static ngx_inline ngx_int_t
+ngx_http_lua_check_unsafe_header(ngx_http_request_t *r, u_char *str, size_t len)
+{
+    size_t           i, buf_len;
+    u_char           c;
+    u_char          *buf, *src = str;
+
+                     /* %00-%1F, %7F */
+
+    static uint32_t  unsafe[] = {
+        0xffffffff, /* 1111 1111 1111 1111  1111 1111 1111 1111 */
+
+                    /* ?>=< ;:98 7654 3210  /.-, +*)( '&%$ #"!  */
+        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
+
+                    /* _^]\ [ZYX WVUT SRQP  ONML KJIH GFED CBA@ */
+        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
+
+                    /*  ~}| {zyx wvut srqp  onml kjih gfed cba` */
+        0x80000000, /* 1000 0000 0000 0000  0000 0000 0000 0000 */
+
+        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
+        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
+        0x00000000, /* 0000 0000 0000 0000  0000 0000 0000 0000 */
+        0x00000000  /* 0000 0000 0000 0000  0000 0000 0000 0000 */
+    };
+
+    for (i = 0; i < len; i++, str++) {
+        c = *str;
+        if (unsafe[c >> 5] & (1 << (c & 0x1f))) {
+            buf_len = ngx_http_lua_escape_log(NULL, src, len);
+            buf = ngx_palloc(r->pool, buf_len);
+            if (buf == NULL) {
+                return NGX_ERROR;
+            }
+
+            ngx_http_lua_escape_log(buf, src, len);
+
+            ngx_log_error(NGX_LOG_ERR, r->connection->log, 0,
+                          "unsafe byte \"0x%uxd\" in header \"%*s\"",
+                          (unsigned) c, buf_len, buf);
+
+            ngx_pfree(r->pool, buf);
+
+            return NGX_ERROR;
+        }
+    }
+
+    return NGX_OK;
+}
+
+
 extern ngx_uint_t  ngx_http_lua_location_hash;
 extern ngx_uint_t  ngx_http_lua_content_length_hash;
 

t/016-resp-header.t

@@ -1966,7 +1966,7 @@ Content-Type: application/json
 
 
 
-=== TEST 87: value contains '\r'
+=== TEST 87: unsafe header value (with '\r')
 --- config
     location = /t {
         content_by_lua_block {
@@ -1987,7 +1987,7 @@ failed to set header
 
 
 
-=== TEST 88: value contains '\n'
+=== TEST 88: unsafe header value (with '\n')
 --- config
     location = /t {
         content_by_lua_block {
@@ -2008,7 +2008,7 @@ failed to set header
 
 
 
-=== TEST 89: header name contains '\r'
+=== TEST 89: unsafe header name (with '\r')
 --- config
     location = /t {
         content_by_lua_block {
@@ -2029,7 +2029,7 @@ failed to set header
 
 
 
-=== TEST 90: truncates key after '\n'
+=== TEST 90: unsafe header name (with '\n')
 --- config
     location = /t {
         content_by_lua_block {
@@ -2050,7 +2050,7 @@ failed to set header
 
 
 
-=== TEST 91: header name: '\r' as the first character
+=== TEST 91: unsafe header name (with prefix '\r')
 --- config
     location = /t {
         content_by_lua_block {
@@ -2071,7 +2071,7 @@ failed to set header
 
 
 
-=== TEST 92: header name: '\n' as the first character
+=== TEST 92: unsafe header name (with prefix '\n')
 --- config
     location = /t {
         content_by_lua_block {
@@ -2092,7 +2092,7 @@ failed to set header
 
 
 
-=== TEST 93: truncates multiple values if they contain '\r' or '\n'
+=== TEST 93: multiple unsafe header values (with '\n' and '\r')
 --- config
     location = /t {
         content_by_lua_block {

t/022-redirect.t

@@ -323,7 +323,7 @@ Location: http://agentzh.org/foo?a=b&c=d
 
 
 
-=== TEST 18: uri contains '\r'
+=== TEST 18: unsafe uri (with '\r')
 --- config
     location = /t {
         content_by_lua_block {
@@ -344,7 +344,7 @@ attempt to use unsafe uri
 
 
 
-=== TEST 19: uri contains '\n'
+=== TEST 19: unsafe uri (with '\n')
 --- config
     location = /t {
         content_by_lua_block {
@@ -365,7 +365,7 @@ attempt to use unsafe uri
 
 
 
-=== TEST 20: uri prefix '\n'
+=== TEST 20: unsafe uri (with prefix '\n')
 --- config
     location = /t {
         content_by_lua_block {
@@ -385,7 +385,7 @@ attempt to use unsafe uri
 
 
 
-=== TEST 21: uri prefix '\r'
+=== TEST 21: unsafe uri (with prefix '\r')
 --- config
     location = /t {
         content_by_lua_block {
@@ -405,7 +405,7 @@ attempt to use unsafe uri
 
 
 
-=== TEST 22: uri with invalid characters escapes '"' and '\' characters
+=== TEST 22: unsafe uri logging escapes '"' and '\' characters
 --- config
     location = /t {
         content_by_lua_block {

t/028-req-header.t

@@ -2033,7 +2033,7 @@ new
 
 
 
-=== TEST 62: set input header with unsafe key
+=== TEST 62: unsafe header name (with '\r')
 --- config
     location /req-header {
         rewrite_by_lua_block {
@@ -2051,7 +2051,7 @@ failed to set header
 
 
 
-=== TEST 63: set input header with unsafe value
+=== TEST 63: unsafe header value (with '\n')
 --- config
     location /req-header {
         rewrite_by_lua_block {
@@ -2069,7 +2069,7 @@ failed to set header
 
 
 
-=== TEST 64: set input header with multiple unsafe values
+=== TEST 64: multiple unsafe header values (with '\n' and '\t')
 --- config
     location /req-header {
         rewrite_by_lua_block {
@@ -2089,7 +2089,7 @@ failed to set header
 
 
 
-=== TEST 65: unsafe value errors escape '"' and '\' characters
+=== TEST 65: unsafe names/values logging escapes '"' and '\' characters
 --- config
     location /req-header {
         rewrite_by_lua_block {

t/030-uri-args.t

@@ -1557,7 +1557,7 @@ args: foo=%2C%24%40%7C%60&bar=-_.!~*'()
 
 
 
-=== TEST 58: set_uri with unsafe uri (with \t)
+=== TEST 58: set_uri with unsafe uri (with '\t')
 --- config
     location /t {
         content_by_lua_block {
@@ -1575,7 +1575,7 @@ attempt to use unsafe uri
 
 
 
-=== TEST 59: set_uri with unsafe uri (with " ")
+=== TEST 59: set_uri with unsafe uri (with ' ')
 --- config
     location /t {
         content_by_lua_block {

t/113-req-header-cookie.t

@@ -250,7 +250,7 @@ Cookie: boo=123; foo=bar
 
 
 
-=== TEST 7: set multiple custom cookies (with unsafe values)
+=== TEST 7: set multiple custom cookies with unsafe values (with '\n' and 'r')
 --- config
     location /t {
         rewrite_by_lua_block {