Add webui handler for rspamd (skeleton).

Fix url detector.
Add group option for modules options.
Some fixes in controller and rrd code.

diff --git a/CMakeLists.txt b/CMakeLists.txt
index 5f41f56bfa3be9a377adf370afbf2742845d4b44..0432fc3c18fa588ad35223a2837433b66e736848 100644 (file)
--- a/CMakeLists.txt
+++ b/CMakeLists.txt
@@ -935,6 +935,7 @@ SET(RSPAMDSRC       src/modules.c
                                src/map.c
                                src/smtp.c
                                src/smtp_proxy.c
+                               src/webui.c
                                src/worker.c)
 
 SET(PLUGINSSRC src/plugins/surbl.c
@@ -945,7 +946,7 @@ SET(PLUGINSSRC      src/plugins/surbl.c
                                src/plugins/dkim_check.c)
                                
 SET(MODULES_LIST surbl regexp chartable fuzzy_check spf dkim)
-SET(WORKERS_LIST normal controller smtp smtp_proxy lmtp fuzzy keystorage lua)
+SET(WORKERS_LIST normal controller smtp smtp_proxy lmtp fuzzy keystorage lua webui)
 
 AddModules(MODULES_LIST WORKERS_LIST)
 

diff --git a/src/cfg_file.h b/src/cfg_file.h
index 47e22cafdcaeba25c4f89b31944d4a0ca7a8c8a2..c6c8487ce1e23e319e3273850ae0be924a810376 100644 (file)
--- a/src/cfg_file.h
+++ b/src/cfg_file.h
@@ -130,7 +130,9 @@ enum lua_var_type {
  */
 struct module_opt {
        gchar *param;                                                                   /**< parameter name                                                                             */
-       gchar *value;                                                                   /**< paramater value                                                                    */
+       gchar *value;                                                                   /**< parameter value                                                                    */
+       gchar *description;                                                             /**< parameter description                                                              */
+       gchar *group;                                                                   /**< parameter group                                                                    */
        gpointer actual_data;                                                   /**< parsed data                                                                                */
        gboolean is_lua;                                                                /**< actually this is lua variable                                              */
        enum lua_var_type lua_type;                                             /**< type of lua variable                                                               */
@@ -337,6 +339,8 @@ struct config_file {
        gchar* dump_checksum;                                                   /**< dump checksum of config file                                               */ 
        gpointer lua_state;                                                             /**< pointer to lua state                                                               */
 
+       gchar* rrd_file;                                                                /**< rrd file to store statistics                                               */
+
        guint32 dns_timeout;                                                    /**< timeout in milliseconds for waiting for dns reply  */
        guint32 dns_retransmits;                                                /**< maximum retransmits count                                                  */
        guint32 dns_throttling_errors;                                  /**< maximum errors for starting resolver throttling    */

diff --git a/src/cfg_xml.c b/src/cfg_xml.c
index 277172f2b50c81b6d536fac685a97a3cf9b7b616..88650c99028181c03448401b60f5670abb1fc677 100644 (file)
--- a/src/cfg_xml.c
+++ b/src/cfg_xml.c
@@ -324,6 +324,12 @@ static struct xml_parser_rule grammar[] = {
                                G_STRUCT_OFFSET (struct config_file, mlock_statfile_pool),
                                NULL
                        },
+                       {
+                               "rrd",
+                               xml_handle_string,
+                               G_STRUCT_OFFSET (struct config_file, rrd_file),
+                               NULL
+                       },
                        NULL_ATTR
                },
                NULL_DEF_ATTR
@@ -1109,11 +1115,18 @@ handle_module_opt (struct config_file *cfg, struct rspamd_xml_userdata *ctx, con
                name = memory_pool_strdup (cfg->cfg_pool, tag);
        }
 
-       /* Check for lua */
-       if (attrs != NULL && (val = g_hash_table_lookup (attrs, "lua")) != NULL) {
-               if (g_ascii_strcasecmp (val, "yes") == 0) {
+       cur = memory_pool_alloc0 (cfg->cfg_pool, sizeof (struct module_opt));
+       /* Check for options */
+       if (attrs != NULL) {
+               if ((val = g_hash_table_lookup (attrs, "lua")) != NULL && g_ascii_strcasecmp (val, "yes") == 0) {
                        is_lua = TRUE;
                }
+               if ((val = g_hash_table_lookup (attrs, "description")) != NULL) {
+                       cur->description = memory_pool_strdup (cfg->cfg_pool, val);
+               }
+               if ((val = g_hash_table_lookup (attrs, "group")) != NULL) {
+                       cur->group = memory_pool_strdup (cfg->cfg_pool, val);
+               }
        }
        /*
         * XXX: in fact we cannot check for lua modules and need to do it in post-config procedure
@@ -1121,7 +1134,6 @@ handle_module_opt (struct config_file *cfg, struct rspamd_xml_userdata *ctx, con
         */
 
        /* Insert option */
-       cur = memory_pool_alloc0 (cfg->cfg_pool, sizeof (struct module_opt));
        cur->param = (char *)name;
        cur->value = data;
        cur->is_lua = is_lua;

diff --git a/src/controller.c b/src/controller.c
index 47d4443174d60b7f24e8435748995fd8e88afeac..20a733693a446422d8948aa69ae47c38b245b37f 100644 (file)
--- a/src/controller.c
+++ b/src/controller.c
@@ -38,12 +38,17 @@
 #include "statfile_sync.h"
 #include "lua/lua_common.h"
 #include "dynamic_cfg.h"
+#include "rrd.h"
 
 #define END "END" CRLF
 
 /* 120 seconds for controller's IO */
 #define CONTROLLER_IO_TIMEOUT 120
 
+/* RRD macroes */
+/* Write data each minute */
+#define CONTROLLER_RRD_STEP 60
+
 /* Init functions */
 gpointer init_controller (void);
 void start_controller (struct rspamd_worker *worker);
@@ -96,6 +101,9 @@ struct rspamd_controller_ctx {
        guint32                                                 timeout;
        struct rspamd_dns_resolver     *resolver;
        struct event_base              *ev_base;
+       struct event                                rrd_event;
+       struct rspamd_rrd_file         *rrd_file;
+       struct rspamd_main                         *srv;
 };
 
 static struct controller_command commands[] = {
@@ -1709,6 +1717,114 @@ accept_socket (gint fd, short what, void *arg)
 #endif
 }
 
+static gboolean
+create_rrd_file (const gchar *filename, struct rspamd_controller_ctx *ctx)
+{
+       GError                                                          *err = NULL;
+       GArray                                                           ar;
+       struct rrd_rra_def                                       rra[5];
+       struct rrd_ds_def                                        ds[4];
+
+       /*
+        * DS:
+        * 1) reject as spam
+        * 2) mark as spam
+        * 3) greylist
+        * 4) pass
+        */
+       /*
+        * RRA:
+        * 1) per minute AVERAGE
+        * 2) per 5 minutes AVERAGE
+        * 3) per 30 minutes AVERAGE
+        * 4) per 2 hours AVERAGE
+        * 5) per day AVERAGE
+        */
+       ctx->rrd_file = rspamd_rrd_create (filename, 4, 5, CONTROLLER_RRD_STEP, &err);
+       if (ctx->rrd_file == NULL) {
+               msg_err ("cannot create rrd file %s, error: %s", filename, err->message);
+               g_error_free (err);
+               return FALSE;
+       }
+
+       /* Add all ds and rra */
+       rrd_make_default_ds ("spam", CONTROLLER_RRD_STEP, &ds[0]);
+       rrd_make_default_ds ("possible spam", CONTROLLER_RRD_STEP, &ds[1]);
+       rrd_make_default_ds ("greylist", CONTROLLER_RRD_STEP, &ds[2]);
+       rrd_make_default_ds ("ham", CONTROLLER_RRD_STEP, &ds[3]);
+
+       rrd_make_default_rra ("AVERAGE", 1, 600, &rra[0]);
+       rrd_make_default_rra ("AVERAGE", 5, 600, &rra[1]);
+       rrd_make_default_rra ("AVERAGE", 30, 700, &rra[2]);
+       rrd_make_default_rra ("AVERAGE", 120, 775, &rra[3]);
+       rrd_make_default_rra ("AVERAGE", 1440, 797, &rra[4]);
+
+       ar.data = (gchar *)ds;
+       ar.len = sizeof (ds);
+       if (!rspamd_rrd_add_ds (ctx->rrd_file, &ar, &err)) {
+               msg_err ("cannot create rrd file %s, error: %s", filename, err->message);
+               g_error_free (err);
+               rspamd_rrd_close (ctx->rrd_file);
+               return FALSE;
+       }
+
+       ar.data = (gchar *)rra;
+       ar.len = sizeof (rra);
+       if (!rspamd_rrd_add_rra (ctx->rrd_file, &ar, &err)) {
+               msg_err ("cannot create rrd file %s, error: %s", filename, err->message);
+               g_error_free (err);
+               rspamd_rrd_close (ctx->rrd_file);
+               return FALSE;
+       }
+
+       /* Finalize */
+       if (!rspamd_rrd_finalize (ctx->rrd_file, &err)) {
+               msg_err ("cannot create rrd file %s, error: %s", filename, err->message);
+               g_error_free (err);
+               rspamd_rrd_close (ctx->rrd_file);
+               return FALSE;
+       }
+
+       return TRUE;
+}
+
+static void
+controller_update_rrd (gint fd, short what, void *arg)
+{
+       struct rspamd_controller_ctx       *ctx = arg;
+       struct timeval                      tv;
+       GArray                              ar;
+       gdouble                             data[4];
+       GError                             *err = NULL;
+
+       /*
+        * Data:
+        * 1) reject as spam
+        * 2) mark as spam
+        * 3) greylist
+        * 4) pass
+        */
+
+       tv.tv_sec = CONTROLLER_RRD_STEP;
+       tv.tv_usec = 0;
+
+       /* Fill data */
+       data[0] = ctx->srv->stat->actions_stat[METRIC_ACTION_REJECT];
+       data[1] = ctx->srv->stat->actions_stat[METRIC_ACTION_ADD_HEADER] + ctx->srv->stat->actions_stat[METRIC_ACTION_REWRITE_SUBJECT];
+       data[2] = ctx->srv->stat->actions_stat[METRIC_ACTION_GREYLIST];
+       data[3] = ctx->srv->stat->actions_stat[METRIC_ACTION_NOACTION];
+
+       ar.data = (gchar *)data;
+       ar.len = sizeof (data);
+       if (!rspamd_rrd_add_record (ctx->rrd_file, &ar, &err)) {
+               msg_err ("cannot add record to rrd database: %s, stop rrd update", err->message);
+               g_error_free (err);
+       }
+       else {
+               evtimer_add (&ctx->rrd_event, &tv);
+       }
+}
+
 gpointer
 init_controller (void)
 {
@@ -1733,6 +1849,8 @@ start_controller (struct rspamd_worker *worker)
        gchar                          *hostbuf;
        gsize                           hostmax;
        struct rspamd_controller_ctx   *ctx;
+       GError                         *err = NULL;
+       struct timeval                  tv;
 
        worker->srv->pid = getpid ();
        ctx = worker->ctx;
@@ -1761,6 +1879,29 @@ start_controller (struct rspamd_worker *worker)
                msg_info ("cannot start statfile synchronization, statfiles would not be synchronized");
        }
 
+       /* Check for rrd */
+       tv.tv_sec = CONTROLLER_RRD_STEP;
+       tv.tv_usec = 0;
+       ctx->srv = worker->srv;
+       if (worker->srv->cfg->rrd_file) {
+               ctx->rrd_file = rspamd_rrd_open (worker->srv->cfg->rrd_file, &err);
+               if (ctx->rrd_file == NULL) {
+                       msg_info ("cannot open rrd file: %s, error: %s, trying to create", worker->srv->cfg->rrd_file, err->message);
+                       g_error_free (err);
+                       /* Try to create rrd file */
+                       if (create_rrd_file (worker->srv->cfg->rrd_file, ctx)) {
+                               evtimer_set (&ctx->rrd_event, controller_update_rrd, ctx);
+                               event_base_set (ctx->ev_base, &ctx->rrd_event);
+                               evtimer_add (&ctx->rrd_event, &tv);
+                       }
+               }
+               else {
+                       evtimer_set (&ctx->rrd_event, controller_update_rrd, ctx);
+                       event_base_set (ctx->ev_base, &ctx->rrd_event);
+                       evtimer_add (&ctx->rrd_event, &tv);
+               }
+       }
+
        /* Fill hostname buf */
        hostmax = sysconf (_SC_HOST_NAME_MAX) + 1;
        hostbuf = alloca (hostmax);
@@ -1780,6 +1921,9 @@ start_controller (struct rspamd_worker *worker)
        event_base_loop (ctx->ev_base, 0);
 
        close_log (worker->srv->logger);
+       if (ctx->rrd_file) {
+               rspamd_rrd_close (ctx->rrd_file);
+       }
 
        exit (EXIT_SUCCESS);
 }

diff --git a/src/rrd.c b/src/rrd.c
index 857b647c07ef461bba391051edbfbf7ead04a51a..a0e21eaed0fb62f97a8a57899e3a1d9e0cb9cbc2 100644 (file)
--- a/src/rrd.c
+++ b/src/rrd.c
@@ -903,7 +903,7 @@ rspamd_rrd_add_record (struct rspamd_rrd_file* file, GArray *points, GError **er
        pdp_new = g_malloc (sizeof (gdouble) * file->stat_head->ds_cnt);
        pdp_temp = g_malloc (sizeof (gdouble) * file->stat_head->ds_cnt);
        /* How much steps need to be updated in each RRA */
-       rra_steps = g_malloc (sizeof (gulong) * file->stat_head->rra_cnt);
+       rra_steps = g_malloc0 (sizeof (gulong) * file->stat_head->rra_cnt);
 
        if (!rspamd_rrd_update_pdp_prep (file, (gdouble *)points->data, pdp_new, interval)) {
                g_set_error (err, rrd_error_quark (), EINVAL, "rrd update pdp failed: wrong arguments");

diff --git a/src/url.c b/src/url.c
index f2e4954e26d3122ab8c9259f72db0d3c73bd0771..415fd4bf6b0c85e3ea08f2d375f094a4f15e02fb 100644 (file)
--- a/src/url.c
+++ b/src/url.c
@@ -1234,8 +1234,8 @@ url_tld_start (const gchar *begin, const gchar *end, const gchar *pos, url_match
        while (p >= begin) {
                if ((!is_domain (*p) && *p != '.') || g_ascii_isspace (*p)) {
                        p ++;
-                       if (*p == '.') {
-                               /* Urls cannot start with . */
+                       if (!g_ascii_isalnum (*p)) {
+                               /* Urls cannot start with strange symbols */
                                return FALSE;
                        }
                        match->m_begin = p;

diff --git a/src/webui.c b/src/webui.c
new file mode 100644 (file)
index 0000000..36eb47f
--- /dev/null
+++ b/src/webui.c
@@ -0,0 +1,364 @@
+/* Copyright (c) 2010-2012, Vsevolod Stakhov
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are met:
+ *       * Redistributions of source code must retain the above copyright
+ *         notice, this list of conditions and the following disclaimer.
+ *       * Redistributions in binary form must reproduce the above copyright
+ *         notice, this list of conditions and the following disclaimer in the
+ *         documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED ''AS IS'' AND ANY
+ * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+ * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+ * DISCLAIMED. IN NO EVENT SHALL AUTHOR BE LIABLE FOR ANY
+ * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+ * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+ * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+
+#include "config.h"
+#include "util.h"
+#include "main.h"
+#include "message.h"
+#include "protocol.h"
+#include "upstream.h"
+#include "cfg_file.h"
+#include "cfg_xml.h"
+#include "map.h"
+#include "dns.h"
+#include "tokenizers/tokenizers.h"
+#include "classifiers/classifiers.h"
+#include "dynamic_cfg.h"
+#include "rrd.h"
+
+#include <evhttp.h>
+#if (_EVENT_NUMERIC_VERSION > 0x02010000) && defined(HAVE_OPENSSL)
+#define HAVE_WEBUI_SSL
+#include <openssl/ssl.h>
+#include <openssl/rand.h>
+#include <event2/event-config.h>
+#include <event2/bufferevent.h>
+#include <event2/util.h>
+#include <event2/bufferevent_ssl.h>
+#endif
+
+#ifdef WITH_GPERF_TOOLS
+#   include <glib/gprintf.h>
+#endif
+
+/* 60 seconds for worker's IO */
+#define DEFAULT_WORKER_IO_TIMEOUT 60000
+
+/* HTTP paths */
+#define PATH_AUTH "/login"
+
+gpointer init_webui_worker (void);
+void start_webui_worker (struct rspamd_worker *worker);
+
+worker_t webui_worker = {
+       "webui",                                        /* Name */
+       init_webui_worker,              /* Init function */
+       start_webui_worker,             /* Start function */
+       TRUE,                                   /* Has socket */
+       TRUE,                                   /* Non unique */
+       FALSE,                                  /* Non threaded */
+       TRUE                                    /* Killable */
+};
+
+/*
+ * Worker's context
+ */
+struct rspamd_webui_worker_ctx {
+       /* DNS resolver */
+       struct rspamd_dns_resolver     *resolver;
+       /* Events base */
+       struct event_base              *ev_base;
+       /* Whether we use ssl for this server */
+       gboolean use_ssl;
+       /* Webui password */
+       gchar *password;
+       /* HTTP server */
+       struct evhttp *http;
+       /* Server's start time */
+       time_t start_time;
+       /* Main server */
+       struct rspamd_main *srv;
+       /* Configuration */
+       struct config_file *cfg;
+       /* SSL cert */
+       gchar *ssl_cert;
+       /* SSL private key */
+       gchar *ssl_key;
+};
+
+static sig_atomic_t             wanna_die = 0;
+
+/* Signal handlers */
+
+#ifndef HAVE_SA_SIGINFO
+static void
+sig_handler (gint signo)
+#else
+static void
+sig_handler (gint signo, siginfo_t * info, void *unused)
+#endif
+{
+       struct timeval                  tv;
+
+       switch (signo) {
+       case SIGINT:
+       case SIGTERM:
+               if (!wanna_die) {
+                       wanna_die = 1;
+                       tv.tv_sec = 0;
+                       tv.tv_usec = 0;
+                       event_loopexit (&tv);
+
+#ifdef WITH_GPERF_TOOLS
+                       ProfilerStop ();
+#endif
+               }
+               break;
+       }
+}
+
+/*
+ * Config reload is designed by sending sigusr2 to active workers and pending shutdown of them
+ */
+static void
+sigusr2_handler (gint fd, short what, void *arg)
+{
+       struct rspamd_worker           *worker = (struct rspamd_worker *) arg;
+       /* Do not accept new connections, preparing to end worker's process */
+       struct timeval                  tv;
+
+       if (!wanna_die) {
+               tv.tv_sec = SOFT_SHUTDOWN_TIME;
+               tv.tv_usec = 0;
+               event_del (&worker->sig_ev_usr1);
+               event_del (&worker->sig_ev_usr2);
+               event_del (&worker->bind_ev);
+               msg_info ("worker's shutdown is pending in %d sec", SOFT_SHUTDOWN_TIME);
+               event_loopexit (&tv);
+       }
+       return;
+}
+
+/*
+ * Reopen log is designed by sending sigusr1 to active workers and pending shutdown of them
+ */
+static void
+sigusr1_handler (gint fd, short what, void *arg)
+{
+       struct rspamd_worker           *worker = (struct rspamd_worker *) arg;
+
+       reopen_log (worker->srv->logger);
+
+       return;
+}
+
+#ifdef HAVE_WEBUI_SSL
+
+static struct bufferevent*
+webui_ssl_bufferevent_gen (struct event_base *base, void *arg)
+{
+       SSL_CTX                                                                 *server_ctx = arg;
+       SSL                                                                             *client_ctx;
+       struct bufferevent                                              *base_bev, *ssl_bev;
+
+       client_ctx = SSL_new (server_ctx);
+
+       base_bev = bufferevent_socket_new (base, -1, 0);
+       if (base_bev == NULL) {
+               msg_err ("cannot create base bufferevent for ssl connection");
+               return NULL;
+       }
+
+       ssl_bev = bufferevent_openssl_filter_new (base, base_bev, client_ctx, BUFFEREVENT_SSL_ACCEPTING, 0);
+
+       if (ssl_bev == NULL) {
+               msg_err ("cannot create ssl bufferevent for ssl connection");
+       }
+
+       return ssl_bev;
+}
+
+static void
+webui_ssl_init (struct rspamd_webui_worker_ctx *ctx)
+{
+       SSL_CTX                                                                 *server_ctx;
+
+       /* Initialize the OpenSSL library */
+       SSL_load_error_strings ();
+       SSL_library_init ();
+       /* We MUST have entropy, or else there's no point to crypto. */
+       if (!RAND_poll ()) {
+               return NULL;
+       }
+
+       server_ctx = SSL_CTX_new (SSLv23_server_method ());
+
+       if (! SSL_CTX_use_certificate_chain_file (server_ctx, ctx->ssl_cert) ||
+                       ! SSL_CTX_use_PrivateKey_file(server_ctx, ctx->ssl_key, SSL_FILETYPE_PEM)) {
+               msg_err ("cannot load ssl key %s or ssl cert: %s", ctx->ssl_key, ctx->ssl_cert);
+               return;
+       }
+       SSL_CTX_set_options (server_ctx, SSL_OP_NO_SSLv2);
+
+       if (server_ctx) {
+               /* Set generator for ssl events */
+               evhttp_set_bevcb (ctx->http, webui_ssl_bufferevent_gen, server_ctx);
+       }
+}
+#endif
+
+/* Command handlers */
+
+/*
+ * Auth command handler:
+ * request: /auth
+ * headers: Password
+ * reply: json {"auth": "ok", "version": "0.5.2", "uptime": "some uptime", "error": "none"}
+ */
+static void
+http_handle_auth (struct evhttp_request *req, gpointer arg)
+{
+       struct rspamd_webui_worker_ctx                  *ctx = arg;
+       struct evbuffer                                                 *evb;
+       const gchar                                                             *password;
+       gchar                                                                   *auth = "ok", *error = "none", uptime_buf[128];
+       time_t                                                                   uptime, days, hours, minutes;
+
+       evb = evbuffer_new ();
+       if (!evb) {
+               msg_err ("cannot allocate evbuffer for reply");
+               return;
+       }
+
+       if (ctx->password) {
+               password = evhttp_find_header (req->input_headers, "Password");
+               if (password == NULL || strcmp (password, ctx->password) != 0) {
+                       auth = "failed";
+                       error = "unauthorized";
+               }
+       }
+       /* Print uptime */
+       uptime = time (NULL) - ctx->start_time;
+       /* If uptime more than 2 hours, print as a number of days. */
+       if (uptime >= 2 * 3600) {
+               days = uptime / 86400;
+               hours = uptime / 3600 - days * 24;
+               minutes = uptime / 60 - hours * 60 - days * 1440;
+               rspamd_snprintf (uptime_buf, sizeof (uptime_buf), "%d day%s %d hour%s %d minute%s", days, days != 1 ? "s" : " ", hours, hours != 1 ? "s" : " ", minutes, minutes != 1 ? "s" : " ");
+       }
+       /* If uptime is less than 1 minute print only seconds */
+       else if (uptime / 60 == 0) {
+               rspamd_snprintf (uptime_buf, sizeof (uptime_buf), "%d second%s", (gint)uptime, (gint)uptime != 1 ? "s" : " ");
+       }
+       /* Else print the minutes and seconds. */
+       else {
+               hours = uptime / 3600;
+               minutes = uptime / 60 - hours * 60;
+               uptime -= hours * 3600 + minutes * 60;
+               rspamd_snprintf (uptime_buf, sizeof (uptime_buf), "%d hour%s %d minute%s %d second%s", hours, hours > 1 ? "s" : " ", minutes, minutes > 1 ? "s" : " ", (gint)uptime, uptime > 1 ? "s" : " ");
+       }
+
+       evbuffer_add_printf (evb, "{\"auth\": \"%s\", \"version\": \"%s\", \"uptime\": \"%s\", \"error\": \"%s\"}" CRLF,
+                       auth, RVERSION, uptime_buf, error);
+       evhttp_add_header(req->output_headers, "Connection", "close");
+
+       evhttp_send_reply(req, HTTP_OK, "OK", evb);
+       evbuffer_free(evb);
+}
+
+gpointer
+init_webui_worker (void)
+{
+       struct rspamd_webui_worker_ctx     *ctx;
+       GQuark                                                          type;
+
+       type = g_quark_try_string ("webui");
+
+       ctx = g_malloc0 (sizeof (struct rspamd_webui_worker_ctx));
+
+       register_worker_opt (type, "password", xml_handle_string, ctx, G_STRUCT_OFFSET (struct rspamd_webui_worker_ctx, password));
+       register_worker_opt (type, "ssl", xml_handle_boolean, ctx, G_STRUCT_OFFSET (struct rspamd_webui_worker_ctx, use_ssl));
+       register_worker_opt (type, "ssl_cert", xml_handle_string, ctx, G_STRUCT_OFFSET (struct rspamd_webui_worker_ctx, ssl_cert));
+       register_worker_opt (type, "ssl_key", xml_handle_string, ctx, G_STRUCT_OFFSET (struct rspamd_webui_worker_ctx, ssl_key));
+
+       return ctx;
+}
+
+/*
+ * Start worker process
+ */
+void
+start_webui_worker (struct rspamd_worker *worker)
+{
+       struct sigaction                signals;
+       struct rspamd_webui_worker_ctx *ctx = worker->ctx;
+
+#ifdef WITH_PROFILER
+       extern void                     _start (void), etext (void);
+       monstartup ((u_long) & _start, (u_long) & etext);
+#endif
+
+       gperf_profiler_init (worker->srv->cfg, "webui_worker");
+
+       worker->srv->pid = getpid ();
+
+       ctx->ev_base = event_init ();
+
+       ctx->cfg = worker->srv->cfg;
+       ctx->srv = worker->srv;
+
+       init_signals (&signals, sig_handler);
+       sigprocmask (SIG_UNBLOCK, &signals.sa_mask, NULL);
+
+       /* SIGUSR2 handler */
+       signal_set (&worker->sig_ev_usr2, SIGUSR2, sigusr2_handler, (void *) worker);
+       event_base_set (ctx->ev_base, &worker->sig_ev_usr2);
+       signal_add (&worker->sig_ev_usr2, NULL);
+
+       /* SIGUSR1 handler */
+       signal_set (&worker->sig_ev_usr1, SIGUSR1, sigusr1_handler, (void *) worker);
+       event_base_set (ctx->ev_base, &worker->sig_ev_usr1);
+       signal_add (&worker->sig_ev_usr1, NULL);
+
+       ctx->start_time = time (NULL);
+       /* Accept event */
+       ctx->http = evhttp_new (ctx->ev_base);
+       evhttp_accept_socket (ctx->http, worker->cf->listen_sock);
+
+       if (ctx->use_ssl) {
+#ifdef HAVE_WEBUI_SSL
+               if (ctx->ssl_cert && ctx->ssl_key) {
+                       webui_ssl_init (ctx);
+               }
+               else {
+                       msg_err ("ssl cannot be enabled without key and cert for this server");
+               }
+#else
+               msg_err ("http ssl is not supported by this libevent version");
+#endif
+       }
+
+       /* Add callbacks for different methods */
+       evhttp_set_cb (ctx->http, PATH_AUTH, http_handle_auth, ctx);
+
+       ctx->resolver = dns_resolver_init (ctx->ev_base, worker->srv->cfg);
+
+       /* Maps events */
+       start_map_watch (worker->srv->cfg, ctx->ev_base);
+
+       event_base_loop (ctx->ev_base, 0);
+
+       close_log (rspamd_main->logger);
+       exit (EXIT_SUCCESS);
+}