在众多的web server中有许多轻量级的web server,如boa , thttp, lighttpd等,但如果要有较高的安全性和能为后期的web开发开发提供便利的嵌入式web服务器,上面提到的几个web server显得太单薄了.公司要求用web来管理开发的嵌入式产品(就像路由器那种),并且要有一定的安全性能.综合比较了大几款轻量级,嵌入式web server.最后推荐都是由Michael O'Brien架构的两个web服务器:goahead (http://webserver./webserver/webserver.htm )和appweb(http://www./downloads/appWeb/download.php). 其中前者是GoAhead公司的Embedded Management Framework产品的一部分,这个软件包主要用于解决未来嵌入式系统开发的相关问题,这款WEB服务器非常小巧,它的WIN CE版本编译后的大小还不到60k,它的输出通常也是面向一些小屏幕设备。GPL & Commercial License.号称要做成未来嵌入式web server的领头羊. 后者是Michael O'Brien创立的Mbedthis公司的第一个产品,GPL & Commercial License.其中MOB本人将其描述为mini-apache.在使用的过程中,确实也感觉到了这点:通过appweb.conf 这个配置文件能支持模块的动态加载.网上讨论说上面两款是大多数路由器等设备web server的首选,下面贴上这两款web server的主要特性: appweb features(懒得翻译): AppWeb is a standards-based embedded HTTP server that has a wealth of features including: 1,Standards compliant HTTP/1.1 web server core 2,Embeddable in applications and devices (supports XIP) 3,Dynamically loadable modules 4,Embedded Server Pages (ESP) for dynamic content (其实是为了支持像goahead上的ASP模块而换的一种称呼) 5,Session state data management 6,Server-side Embedded JavaScript 7,Secure Socket Layer (SSL) : (OpenSSL和MatrixSsl) 8,In-process CGI as well as traditional CGI 9,ROMable web pages and configuration files 10,Digest Authentication ******** 11,HTTP Client program and library 12,Extensive logging 13,Fastest performance in its class 14,Modular source code and documentation provided 15,Apache-style configuration, logging, and single- and multi-threaded apps. 因为公司公司的产品要考虑安全性问题,这里得指出matrixssl这个ssl 3.0实现.Matrixssl是专为嵌入式产品开发的一个SSL,比openssl远远要小,GPL & Commercial License,占用 50K RAM左右。 在性能方面,使用一颗24MH z的68040处理器,它的响应速度为20次/秒,使用266MHz的Pentium处理器可以达到50次/秒的响应速度。其具有以下特性: 1,支持ASP 2,支持嵌入式的JavaScript 3,标准的CGI执行 4,内存中的CGI处理GoFroms 5,扩展的API 6,快速响应,每秒可处理超过50个请求 7,完全和标准兼容 8, 如果不包含SSL,仅要求60K的内存;包含SSL,要求500K内存 9, web页面可以存在ROM或文件系统中 10,支持多种操作系统,包括eCos 、LINUX 、LynxOS 、QNX 、VxWorks 、WinCE、pSOS等 由于goahead要求在使用它时,需在主页注明用的是goahead,觉得这点不是很好,就主要做了appweb的移植.可能是国人用它比较少,只看到一个帖子.参考了一下,还是出现了许多问题,另外也没有支持SSL.之后自己看英文文档,在appweb的论坛上看相关的问题,最后终于解决了一大堆疑惑,成功移植到了at91rm9200dk+linux上.为避免后来人走弯路,难得的一次原作,今天就把它晾在着了.个人觉得应该是比较详细了. 注: 环境为Cent OS 4.4 {kernel version:2.6.9-42.EL ,gcc version: 3.4.6 (Red Hat 3.4.6-3)} Crosstool: arm-softfloat-linux-gnu-gcc gcc-3.4.1-glibc-2.3.3 1,下载appweb源代码: [url=http://www./software/appweb-src-2.4.0-0.tar.gz]http://www./software/appweb-src-2.4.0-0.tar.gz 2,解压: #tar -xvzf appwe-src-2.4.0-0.tar.gz -C /usr/local/src 3,修改环境变量: 修改CCAR LD RANLIB STRIP为交叉编译环工具; 修改CC_FOR_BUILD为PC的gcc: 编写shell脚本export.sh如下: #!/bin/bash exportCC="/opt/crosstool/gcc-3.4.1-glibc-2.3.3/arm-softfloat-linux-gnu/bin/arm-softfloat-linux-gnu-gcc" exportAR="/opt/crosstool/gcc-3.4.1-glibc-2.3.3/arm-softfloat-linux-gnu/bin/arm-softfloat-linux-gnu-ar" exportLD="/opt/crosstool/gcc-3.4.1-glibc-2.3.3/arm-softfloat-linux-gnu/bin/arm-softfloat-linux-gnu-ld" exportRANLIB="/opt/crosstool/gcc-3.4.1-glibc-2.3.3/arm-softfloat-linux-gnu/bin/arm-softfloat-linux-gnu-ranlib" exportSTRIP="/opt/crosstool/gcc-3.4.1-glibc-2.3.3/arm-softfloat-linux-gnu/bin/arm-softfloat-linux-gnu-strip" exportCC_FOR_BUILD="gcc" echo"@ done!" #source export.sh或 . export.sh 运行shell脚本并使它生效. 4,下载matrixssl源代码: [url=http://www./download.html]http://www./download.html 5,解压到/usr/local下: #tar-xvzf matrixssl-1-8-3-open.tar.gz -C /usr/local 6,进入/usr/local/src/matrixssl-1-8-3-open/src下修改Makefile: 修改CC,STRIP,AR,RANLIB为我们的交叉编译器,如: CC = /opt/crosstool/gcc-3.4.1-glibc-2.3.3/arm-softfloat-linux-gnu/bin/arm-softfloat-linux-gnu-gcc 7,make 此时会在当前目录下生成动态链接库libmatrixssl.so和静态链接库libmatrixsslstatic.a这在下面一步配置和编译Appweb时将会用到. 8,对appweb进行./configure: #cd/usr/local/src/appweb-src-2.4.0 #./configure--host=arm-atmel-linux --build=i686-pc-linux --port=80 --type=RELEASE--disable-log --disable-multi-thread --disable-shared--disable-samples --disable-shared-libc --enable-static--disable-test --disable-access-log --enable-ejs --disable-modules--with-cgi=builtin --with-copy=builtin --with-auth=builtin--with-esp=builtin --with-upload=builtin --without-c-api--without-php5 --with-ssl=builtin --with-matrixssl=builtin--with-matrixssl-dir=/usr/local/matrixssl/src--with-matrixssl-libpath=/usr/local/matrixssl/src--with-matrixssl-iflags="-I /usr/local/matrixssl/src "--with-matrixssl-libs=libmatrixsslstatic 可以通过./configure–-help查看相关说明.关于—with-matrixssl-libs需要说明:这个选项是告诉链接器,在生成appweb可执行文件时链接哪matrixssl一个lib库.如果想动态编译的话,那么我们就选择libmatrixssl.so这个库,此时我们应该指定withmatrixssllibs=libmatrixssl; 如果想静态编译的话,我们就应该选择libmatrixsslstatic.a这个静态库文件.此时应该指定 --with-matrixssl-libs=libmatrixsslstatic. 9 make 在此过程中会出现matrixssl源代码下的src/os/linux.c中的3个函数未定义错误,此时我们将相关部分注释掉就OK了. line 123: pthread_mutexattr_init() line 125 pthread_mutexattr_settype(); line 135 pthread_mutexattr_destroy() make成功后,将在当appweb目录下生成appweb和appweb.conf文件.另外,里面还有一些matrixssl运行需要的一些Key. mkdir /usr/local/nfs 建立nfs服务工作目录,并将appweb运行需要的文件放到此目录下: 这些文件有:appweb(bin) ,appweb.conf(配置文件) ,mime.types ,目录web(DocumentRoot),server.key.pem,server.crt,server.key 10 开启NFS服务: 修改/etc/exports文件内容如下: /usr/local/nfs *(rw,sync,root_squash) #service protmap start #service nfs start #showmount -a 查看共享和访问的目录 开发上板上挂载NFS(确定开发的IP地址和主机地址在同一个网段内): #mkdir /tmp/nfs #mount -t nfs hostip:/usr/local/nfs 11 运行appweb,开启web服务 ./appweb -f appweb.conf 如果出现错误,按出错信息修改appweb.conf配置文件. 在PC上访问appweb提供的web服务,在firefox下输入目标板的IP地址和端口号 [url=http://10.78.28.218:80/]http://10.78.28.218:80/ [url=https://10.78.28.218:4443/]https://10.78.28.218:4443/ 如不能成功访问,需要修改appweb.conf配置文件. PS: appweb和goahead首席架构师,Mbedthis公司创始人后来在appweb的论坛上.指出了那被我注释掉的三个函数: 引用: If you build matrixssl with multithreading, then you need to build appweb with multithreading. I would not recommend just commenting out those pthread lines. Regarding linking statically, you are right to use a static version of the matrix ssl library. Michael 所以,我们只需要在配置appweb时选上--with--multi-thread就可以了解决三个函数未定义的问题了. 后来Michael又补充道: 引用: Those APIs are part of pthreads the Linux multithreaded library. They are NOT part of appweb. [ 本帖最后由 dglwx 于 2008-1-24 21:59 编辑 ] phillipls 回复于:2008-03-06 13:41:23 大侠,我用的PC版本是ubuntu7.04,交叉编译器为arm-linux-gcc-3.4.1。我按照你的方法来在appweb上应用matrixssl编译不过去啊!我已经生成了Matrixssl的动态链接库和静态库,但是在./configure之后还是在matrixSslModule.cpp中有许多未定义的错误,在AppWeb的论坛上也逛了一遍,没有发现什么地方有错误,在此贴出我的configure: #./configure --host=arm-s3c2440-linux --build=i686-pc-linux --port=80 --type=RELEASE --disable-log --disable-multi-thread --disable-shared --disable-samples --disable-shared-libc --enable-static --disable-test --disable-access-log --enable-ejs --disable-modules --with-cgi=builtin --with-copy=builtin --with-auth=builtin --with-esp=builtin --with-upload=builtin --without-c-api --without-php5 --with-ssl=builtin --with-matrixssl=builtin --with-matrixssl-dir=/home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl/src --with-matrixssl-libpath=/home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl/src --with-matrixssl-iflags="-I /home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl/src " --with-matrixssl-libs=libmatrixsslstatic 错误信息: n file included from matrixSslModule.cpp:40: matrixSslModule.h:50:24: matrixSsl.h: No such file or directory In file included from matrixSslModule.cpp:40: matrixSslModule.h:91: error: ISO C++ forbids declaration of `sslKeys_t' with no type matrixSslModule.h:91: error: expected `;' before '*' token matrixSslModule.h:108: error: ISO C++ forbids declaration of `ssl_t' with no type matrixSslModule.h:108: error: expected `;' before '*' token matrixSslModule.h:109: error: `sslBuf_t' does not name a type matrixSslModule.h:110: error: `sslBuf_t' does not name a type matrixSslModule.h:111: error: `sslBuf_t' does not name a type matrixSslModule.cpp: In member function `virtual int MaMatrixSslModule::start()': matrixSslModule.cpp:94: error: `matrixSslOpen' undeclared (first use this function) matrixSslModule.cpp:94: error: (Each undeclared identifier is reported only once for each function it appears in.) matrixSslModule.cpp: In member function `virtual void MaMatrixSslModule::stop()': matrixSslModule.cpp:110: error: `matrixSslClose' undeclared (first use this function) matrixSslModule.cpp: In constructor `MaMatrixSslConfig::MaMatrixSslConfig(MaHost*)': matrixSslModule.cpp:147: error: `keys' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual int MaMatrixSslConfig::start()': matrixSslModule.cpp:201: error: `keys' undeclared (first use this function) matrixSslModule.cpp:201: error: `matrixSslReadKeys' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual void MaMatrixSslConfig::stop()': matrixSslModule.cpp:242: error: `keys' undeclared (first use this function) matrixSslModule.cpp:243: error: `matrixSslFreeKeys' undeclared (first use this function) matrixSslModule.cpp: In constructor `MaMatrixSslSocket::MaMatrixSslSocket(MaMatrixSslConfig*)': matrixSslModule.cpp:258: error: `ssl' undeclared (first use this function) matrixSslModule.cpp:259: error: `insock' undeclared (first use this function) matrixSslModule.cpp:260: error: `outsock' undeclared (first use this function) matrixSslModule.cpp:261: error: `inbuf' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual int MaMatrixSslSocket::initConnection()': matrixSslModule.cpp:299: error: `ssl' undeclared (first use this function) matrixSslModule.cpp:308: error: 'class MaMatrixSslConfig' has no member named 'keys' matrixSslModule.cpp:309: error: `SSL_FLAGS_SERVER' undeclared (first use this function) matrixSslModule.cpp:309: error: `matrixSslNewSession' undeclared (first use this function) matrixSslModule.cpp:321: error: `insock' undeclared (first use this function) matrixSslModule.cpp:323: error: `outsock' undeclared (first use this function) matrixSslModule.cpp:325: error: `inbuf' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual bool MaMatrixSslSocket::dispose()': matrixSslModule.cpp:339: error: `ssl' undeclared (first use this function) matrixSslModule.cpp:340: error: `matrixSslDeleteSession' undeclared (first use this function) matrixSslModule.cpp:342: error: `insock' undeclared (first use this function) matrixSslModule.cpp:343: error: `outsock' undeclared (first use this function) matrixSslModule.cpp:344: error: `inbuf' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual void MaMatrixSslSocket::close(int)': matrixSslModule.cpp:359: error: `ssl' undeclared (first use this function) matrixSslModule.cpp:360: error: `outsock' undeclared (first use this function) matrixSslModule.cpp:360: error: `matrixSslEncodeClosureAlert' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual int MaMatrixSslSocket::write(char*, int)': matrixSslModule.cpp:394: error: `SSL_MAX_PLAINTEXT_LEN' undeclared (first use this function) matrixSslModule.cpp:401: error: `outsock' undeclared (first use this function) matrixSslModule.cpp:427: error: `ssl' undeclared (first use this function) matrixSslModule.cpp:427: error: `matrixSslEncode' undeclared (first use this function) matrixSslModule.cpp:429: error: `SSL_ERROR' undeclared (first use this function) matrixSslModule.cpp:431: error: `SSL_FULL' undeclared (first use this function) matrixSslModule.cpp:432: error: `SSL_MAX_BUF_SIZE' undeclared (first use this function) matrixSslModule.cpp: In member function `virtual int MaMatrixSslSocket::read(char*, int)': matrixSslModule.cpp:521: error: `ssl' undeclared (first use this function) matrixSslModule.cpp:532: error: `inbuf' undeclared (first use this function) matrixSslModule.cpp:546: error: `insock' undeclared (first use this function) matrixSslModule.cpp:594: error: `matrixSslDecode' undeclared (first use this function) matrixSslModule.cpp:601: error: `SSL_SUCCESS' undeclared (first use this function) matrixSslModule.cpp:611: error: `SSL_PROCESS_DATA' undeclared (first use this function) matrixSslModule.cpp:629: error: `SSL_SEND_RESPONSE' undeclared (first use this function) matrixSslModule.cpp:660: error: `SSL_ERROR' undeclared (first use this function) matrixSslModule.cpp:673: error: `SSL_ALERT' undeclared (first use this function) matrixSslModule.cpp:674: error: `SSL_ALERT_CLOSE_NOTIFY' undeclared (first use this function) matrixSslModule.cpp:686: error: `SSL_PARTIAL' undeclared (first use this function) matrixSslModule.cpp:689: error: `SSL_MAX_BUF_SIZE' undeclared (first use this function) matrixSslModule.cpp:710: error: `SSL_FULL' undeclared (first use this function) make[4]: *** [../../../obj/arm-s3c2440-linux/matrixSslModule.o] 错误 1 make[3]: *** [compileAdirs] 错误 2 make[2]: *** [compileDirs] 错误 2 make[1]: *** [compileDirs] 错误 2 make: *** [compile] 错误 2 shdnzwy 回复于:2008-03-06 16:16:00 关注中……:em02: :em02: gaocheng 回复于:2008-03-07 04:08:43 学习一下~~:wink: dglwx 回复于:2008-03-08 16:21:58 移植做了两三个月了,现在手头上也没有matrixssl源码。根据上面的错误信息提示是编译的时候找不到matrixSsl.h这个头文件,而这个头文件好像是在matrixssl/src,所以我们通过--with-matrixssl-iflags来告诉它到这里找这个头文件。 --with-matrixssl-iflags="-I/home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl/src " 如果不是这个问题,你可以在matrixssl源码里找找看这个头文件在哪里,然后ln -s 到matrixssl/src Please tell me whether you have make it. Good Luck! [ 本帖最后由 dglwx 于 2008-11-26 08:57 编辑 ] xd0228 回复于:2008-03-12 14:26:10 我们用的goahead觉得比较不错,不过你说的这个我也要学习一下 dglwx 回复于:2008-03-17 17:20:16 今天又做了一次移植,其实只改这一处就行了: --with-matrixssl-iflags="-I/home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl/src -I/home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl" 你所需要两个的头文件就在/home/tequlia/tequlia_paper/appweb+matrixssl/matrixssl目录下,我们只需将这个路径也指定就行了. phillipls 回复于:2008-03-19 14:15:04 呵呵,早就搞定了,不是你的问题,是我在设定路径参数的时候,设置的路径不对,又改了一下,OK了。我用OpenSSL做了一个第三方认证,交换证书的时候好像有点问题。我用firefox做https测试比较快,但是用IE的时候反应就是慢了很多。why? dglwx 回复于:2008-03-22 15:16:51 这个我倒没问题,在处理SSL时,firefox和IE上都很快.只是apweb的Digest Authentication有问题, 那是IE6.0的一个bug,IE7.0解决了的. 有人在站内信理提到如何做底层硬件的接口显示, 其实在appweb中很简单,他有一中机制能够是上层的JavaScript(具体说应该是EJS:Embedded JavaScript)能带参数调用我们的底层C函数,底层的C函数可以返回多个参数,这主要通过MprVar定义的对象返回多个值.具体可以参考文档中的C和C++函数参考,以及samples/C+下的simpleModule.cpp以及samples/C/ESP下的simpleESP.c 这两个文件.以及他的动态模块加载技术. 总的来说,多看他的那个doc. [ 本帖最后由 dglwx 于 2008-3-22 15:23 编辑 ] rw99yy 回复于:2008-03-22 18:42:03 有没有人用mathopd?? bitmilong 回复于:2008-11-25 14:57:28 上次整理版面居然漏掉,真是对不住dglwx兄啊 加精,感谢分享 dglwx 回复于:2008-11-26 08:51:19 今天早上一上CU, 就又是送分,又是帖子被执行管理。兴奋~ bitmilong 回复于:2008-11-26 09:46:23 引用:原帖由 dglwx 于 2008-11-26 08:51 发表 [url=http://linux./bbs/redirect.php?goto=findpost&pid=6828579&ptid=919694] 今天早上一上CU, 就又是送分,又是帖子被执行管理。兴奋~ 漏网之鱼~ 兄弟继续加油啊 wangyi84971224 回复于:2009-05-05 13:12:32 我是新手,今天按上面做完后,移植到板子上,在xp下访问时,板子提示信息 Can't make temp file /tmp/MPR_919_127.tmp, errno 30 Can't create stdio files Can't open CGI output files 502 "Bad Gateway" for "/cgi-bin/Login.cgi", file "/etc/www/cgi-bin/Login.cgi": C ant write to CGI program Segmentation fault 不知道是怎么回事,能教教我吗? xinuaile2003 回复于:2009-05-05 16:50:16 今天编译成功,下到板子上,启动之后,输入板子的ip地址无法浏览,只能在ip地址后加上index.html才能访问,不能默认去搜索index.html的文件。cgi的没有测试,不知道行不行了,还是ssl的怎么测试还不知道。 |
|