PageRenderTime 56ms CodeModel.GetById 22ms RepoModel.GetById 0ms app.codeStats 0ms

/Client/psiclient/3rdParty/polipo/io.c

https://bitbucket.org/psiphon/psiphon-circumvention-system/
C | 1170 lines | 1007 code | 120 blank | 43 comment | 307 complexity | dd015e010cd43c52592c2233127325a8 MD5 | raw file
Possible License(s): GPL-3.0 
    

  1. /*
    2. 

  2. Copyright (c) 2003-2006 by Juliusz Chroboczek
    3. 

    4. 

  4. Permission is hereby granted, free of charge, to any person obtaining a copy
    5. 

  5. of this software and associated documentation files (the "Software"), to deal
    6. 

  6. in the Software without restriction, including without limitation the rights
    7. 

  7. to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
    8. 

  8. copies of the Software, and to permit persons to whom the Software is
    9. 

  9. furnished to do so, subject to the following conditions:
    10. 

    11. 

  11. The above copyright notice and this permission notice shall be included in
    12. 

  12. all copies or substantial portions of the Software.
    13. 

    14. 

  14. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    15. 

  15. IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    16. 

  16. FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.  IN NO EVENT SHALL THE
    17. 

  17. AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    18. 

  18. LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    19. 

  19. OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
    20. 

  20. THE SOFTWARE.
    21. 

  21. */
    22. 

  22. 

  23. #include "polipo.h"
    24. 

  24. extern int psiphonStats;
    25. 

  25. 

  26. #ifdef HAVE_IPv6
    27. 

  27. #ifdef IPV6_PREFER_TEMPADDR
    28. 

  28. #define HAVE_IPV6_PREFER_TEMPADDR 1
    29. 

  29. #endif
    30. 

  30. #endif
    31. 

  31. 

  32. #ifdef HAVE_IPV6_PREFER_TEMPADDR
    33. 

  33. int useTemporarySourceAddress = 1;
    34. 

  34. #endif
    35. 

  35. 

  36. void
    37. 

  37. preinitIo()
    38. 

  38. {
    39. 

  39. #ifdef HAVE_IPV6_PREFER_TEMPADDR
    40. 

  40.     CONFIG_VARIABLE_SETTABLE(useTemporarySourceAddress, CONFIG_TRISTATE,
    41. 

  41.                              configIntSetter,
    42. 

  42.                              "Prefer IPv6 temporary source address.");
    43. 

  43. #endif
    44. 

  44. 

  45. #ifdef HAVE_WINSOCK
    46. 

  46.     /* Load the winsock dll */
    47. 

  47.     WSADATA wsaData;
    48. 

  48.     WORD wVersionRequested = MAKEWORD(2, 2);
    49. 

  49.     int err = WSAStartup( wVersionRequested, &wsaData );
    50. 

  50.     if (err != 0) {
    51. 

  51.         do_log_error(L_ERROR, err, "Couldn't load winsock dll");
    52. 

  52.         exit(-1);
    53. 

  53.     }
    54. 

  54. #endif
    55. 

  55.     return;
    56. 

  56. }
    57. 

  57. 

  58. void
    59. 

  59. initIo()
    60. 

  60. {
    61. 

  61.     return;
    62. 

  62. }
    63. 

  63. 

  64. FdEventHandlerPtr
    65. 

  65. do_stream(int operation, int fd, int offset, char *buf, int len,
    66. 

  66.           int (*handler)(int, FdEventHandlerPtr, StreamRequestPtr),
    67. 

  67.           void *data)
    68. 

  68. {
    69. 

  69.     assert(len > offset || (operation & (IO_END | IO_IMMEDIATE)));
    70. 

  70.     return schedule_stream(operation, fd, offset, 
    71. 

  71.                            NULL, 0, buf, len, NULL, 0, NULL, 0, NULL,
    72. 

  72.                            handler, data);
    73. 

  73. }
    74. 

  74. 

  75. FdEventHandlerPtr
    76. 

  76. do_stream_2(int operation, int fd, int offset, 
    77. 

  77.             char *buf, int len, char *buf2, int len2,
    78. 

  78.             int (*handler)(int, FdEventHandlerPtr, StreamRequestPtr),
    79. 

  79.             void *data)
    80. 

  80. {
    81. 

  81.     assert(len + len2 > offset || (operation & (IO_END | IO_IMMEDIATE)));
    82. 

  82.     return schedule_stream(operation, fd, offset,
    83. 

  83.                            NULL, 0, buf, len, buf2, len2, NULL, 0, NULL,
    84. 

  84.                            handler, data);
    85. 

  85. }
    86. 

  86. 

  87. FdEventHandlerPtr
    88. 

  88. do_stream_3(int operation, int fd, int offset, 
    89. 

  89.             char *buf, int len, char *buf2, int len2, char *buf3, int len3,
    90. 

  90.             int (*handler)(int, FdEventHandlerPtr, StreamRequestPtr),
    91. 

  91.             void *data)
    92. 

  92. {
    93. 

  93.     assert(len + len2 > offset || (operation & (IO_END | IO_IMMEDIATE)));
    94. 

  94.     return schedule_stream(operation, fd, offset,
    95. 

  95.                            NULL, 0, buf, len, buf2, len2, buf3, len3, NULL,
    96. 

  96.                            handler, data);
    97. 

  97. }
    98. 

  98. 

  99. FdEventHandlerPtr
    100. 

  100. do_stream_h(int operation, int fd, int offset,
    101. 

  101.             char *header, int hlen, char *buf, int len,
    102. 

  102.             int (*handler)(int, FdEventHandlerPtr, StreamRequestPtr),
    103. 

  103.             void *data)
    104. 

  104. {
    105. 

  105.     assert(hlen + len > offset || (operation & (IO_END | IO_IMMEDIATE)));
    106. 

  106.     return schedule_stream(operation, fd, offset, 
    107. 

  107.                            header, hlen, buf, len, NULL, 0, NULL, 0, NULL,
    108. 

  108.                            handler, data);
    109. 

  109. }
    110. 

  110. 

  111. FdEventHandlerPtr
    112. 

  112. do_stream_buf(int operation, int fd, int offset, char **buf_location, int len,
    113. 

  113.               int (*handler)(int, FdEventHandlerPtr, StreamRequestPtr),
    114. 

  114.               void *data)
    115. 

  115. {
    116. 

  116.     assert((len > offset || (operation & (IO_END | IO_IMMEDIATE)))
    117. 

  117.            && len <= CHUNK_SIZE);
    118. 

  118.     return schedule_stream(operation, fd, offset,
    119. 

  119.                            NULL, 0, *buf_location, len, 
    120. 

  120.                            NULL, 0, NULL, 0, buf_location,
    121. 

  121.                            handler, data);
    122. 

  122. }
    123. 

  123. 

  124. static int
    125. 

  125. chunkHeaderLen(int i)
    126. 

  126. {
    127. 

  127.     if(i <= 0)
    128. 

  128.         return 0;
    129. 

  129.     if(i < 0x10)
    130. 

  130.         return 3;
    131. 

  131.     else if(i < 0x100)
    132. 

  132.         return 4;
    133. 

  133.     else if(i < 0x1000)
    134. 

  134.         return 5;
    135. 

  135.     else if(i < 0x10000)
    136. 

  136.         return 6;
    137. 

  137.     else
    138. 

  138.         abort();
    139. 

  139. }
    140. 

  140. 

  141. static int
    142. 

  142. chunkHeader(char *buf, int buflen, int i)
    143. 

  143. {
    144. 

  144.     int n;
    145. 

  145.     if(i <= 0)
    146. 

  146.         return 0;
    147. 

  147.     n = snprintf(buf, buflen, "%x\r\n", i);
    148. 

  148.     return n;
    149. 

  149. }
    150. 

  150. 

  151. 

  152. FdEventHandlerPtr
    153. 

  153. schedule_stream(int operation, int fd, int offset,
    154. 

  154.                 char *header, int hlen,
    155. 

  155.                 char *buf, int len, char *buf2, int len2, char *buf3, int len3,
    156. 

  156.                 char **buf_location,
    157. 

  157.                 int (*handler)(int, FdEventHandlerPtr, StreamRequestPtr),
    158. 

  158.                 void *data)
    159. 

  159. {
    160. 

  160.     StreamRequestRec request;
    161. 

  161.     FdEventHandlerPtr event;
    162. 

  162.     int done;
    163. 

  163. 

  164.     request.operation = operation;
    165. 

  165.     request.fd = fd;
    166. 

  166.     if(len3) {
    167. 

  167.         assert(hlen == 0 && buf_location == NULL);
    168. 

  168.         request.u.b.len3 = len3;
    169. 

  169.         request.u.b.buf3 = buf3;
    170. 

  170.         request.operation |= IO_BUF3;
    171. 

  171.     } else if(buf_location) {
    172. 

  172.         assert(hlen == 0);
    173. 

  173.         request.u.l.buf_location = buf_location;
    174. 

  174.         request.operation |= IO_BUF_LOCATION;
    175. 

  175.     } else {
    176. 

  176.         request.u.h.hlen = hlen;
    177. 

  177.         request.u.h.header = header;
    178. 

  178.     }
    179. 

  179.     request.buf = buf;
    180. 

  180.     request.len = len;
    181. 

  181.     request.buf2 = buf2;
    182. 

  182.     request.len2 = len2;
    183. 

  183.     if((operation & IO_CHUNKED) || 
    184. 

  184.        (!(request.operation & (IO_BUF3 | IO_BUF_LOCATION)) && hlen > 0)) {
    185. 

  185.         assert(offset == 0);
    186. 

  186.         request.offset = -hlen;
    187. 

  187.         if(operation & IO_CHUNKED)
    188. 

  188.             request.offset += -chunkHeaderLen(len + len2);
    189. 

  189.     } else {
    190. 

  190.         request.offset = offset;
    191. 

  191.     }
    192. 

  192.     request.handler = handler;
    193. 

  193.     request.data = data;
    194. 

  194.     event = makeFdEvent(fd, 
    195. 

  195.                         (operation & IO_MASK) == IO_WRITE ?
    196. 

  196.                         POLLOUT : POLLIN, 
    197. 

  197.                         do_scheduled_stream, 
    198. 

  198.                         sizeof(StreamRequestRec), &request);
    199. 

  199.     if(!event) {
    200. 

  200.         done = (*handler)(-ENOMEM, NULL, &request);
    201. 

  201.         assert(done);
    202. 

  202.         return NULL;
    203. 

  203.     }
    204. 

  204. 

  205.     if(!(operation & IO_NOTNOW)) {
    206. 

  206.         done = event->handler(0, event);
    207. 

  207.         if(done) {
    208. 

  208.             free(event);
    209. 

  209.             return NULL;
    210. 

  210.         }
    211. 

  211.     } 
    212. 

  212. 

  213.     if(operation & IO_IMMEDIATE) {
    214. 

  214.         assert(hlen == 0 && !(operation & IO_CHUNKED));
    215. 

  215.         done = (*handler)(0, event, &request);
    216. 

  216.         if(done) {
    217. 

  217.             free(event);
    218. 

  218.             return NULL;
    219. 

  219.         }
    220. 

  220.     }
    221. 

  221.     event = registerFdEventHelper(event);
    222. 

  222.     return event;
    223. 

  223. }
    224. 

  224. 

  225. static const char *endChunkTrailer = "\r\n0\r\n\r\n";
    226. 

  226. 

  227. /* PSIPHON */
    228. 

  228. #include <time.h>
    229. 

  229. int bytes_read = 0;
    230. 

  230. time_t last_send_time = 0;
    231. 

  231. 

  232. int
    233. 

  233. do_scheduled_stream(int status, FdEventHandlerPtr event)
    234. 

  234. {
    235. 

  235.     StreamRequestPtr request = (StreamRequestPtr)&event->data;
    236. 

  236.     int rc, done, i;
    237. 

  237.     struct iovec iov[6];
    238. 

  238.     int chunk_header_len, chunk_trailer_len;
    239. 

  239.     char chunk_header[10];
    240. 

  240.     int len12 = request->len + request->len2;
    241. 

  241.     int len123 = 
    242. 

  242.         request->len + request->len2 + 
    243. 

  243.         ((request->operation & IO_BUF3) ? request->u.b.len3 : 0);
    244. 

  244. 

  245.     if(status) {
    246. 

  246.         done = request->handler(status, event, request);
    247. 

  247.         return done;
    248. 

  248.     }
    249. 

  249. 

  250.     i = 0;
    251. 

  251. 

  252.     if(request->offset < 0) {
    253. 

  253.         assert((request->operation & (IO_MASK | IO_BUF3 | IO_BUF_LOCATION)) == 
    254. 

  254.                IO_WRITE);
    255. 

  255.         if(request->operation & IO_CHUNKED) {
    256. 

  256.             chunk_header_len = chunkHeaderLen(len123);
    257. 

  257.             chunk_trailer_len = 2;
    258. 

  258.         } else {
    259. 

  259.             chunk_header_len = 0;
    260. 

  260.             chunk_trailer_len = 0;
    261. 

  261.         }
    262. 

  262. 

  263.         if(request->offset < -chunk_header_len) {
    264. 

  264.             assert(request->offset >= -(request->u.h.hlen + chunk_header_len));
    265. 

  265.             iov[i].iov_base = request->u.h.header;
    266. 

  266.             iov[i].iov_len = -request->offset - chunk_header_len;
    267. 

  267.             i++;
    268. 

  268.         }
    269. 

  269. 

  270.         if(chunk_header_len > 0) {
    271. 

  271.             chunkHeader(chunk_header, 10, len123);
    272. 

  272.             if(request->offset < -chunk_header_len) {
    273. 

  273.                 iov[i].iov_base = chunk_header;
    274. 

  274.                 iov[i].iov_len = chunk_header_len;
    275. 

  275.             } else {
    276. 

  276.                 iov[i].iov_base = chunk_header + 
    277. 

  277.                     chunk_header_len + request->offset;
    278. 

  278.                 iov[i].iov_len = -request->offset;
    279. 

  279.             }
    280. 

  280.             i++;
    281. 

  281.         }
    282. 

  282.     }
    283. 

  283. 

  284.     if(request->len > 0) {
    285. 

  285.         if(request->buf == NULL && 
    286. 

  286.            (request->operation & IO_BUF_LOCATION)) {
    287. 

  287.             assert(*request->u.l.buf_location == NULL);
    288. 

  288.             request->buf = *request->u.l.buf_location = get_chunk();
    289. 

  289.             if(request->buf == NULL) {
    290. 

  290.                 done = request->handler(-ENOMEM, event, request);
    291. 

  291.                 return done;
    292. 

  292.             }
    293. 

  293.         }
    294. 

  294.         if(request->offset <= 0) {
    295. 

  295.             iov[i].iov_base = request->buf;
    296. 

  296.             iov[i].iov_len = request->len;
    297. 

  297.             i++;
    298. 

  298.         } else if(request->offset < request->len) {
    299. 

  299.             iov[i].iov_base = request->buf + request->offset;
    300. 

  300.             iov[i].iov_len = request->len - request->offset;
    301. 

  301.             i++;
    302. 

  302.         }
    303. 

  303.     }
    304. 

  304. 

  305.     if(request->len2 > 0) {
    306. 

  306.         if(request->offset <= request->len) {
    307. 

  307.             iov[i].iov_base = request->buf2;
    308. 

  308.             iov[i].iov_len = request->len2;
    309. 

  309.             i++;
    310. 

  310.         } else if(request->offset < request->len + request->len2) {
    311. 

  311.             iov[i].iov_base = request->buf2 + request->offset - request->len;
    312. 

  312.             iov[i].iov_len = request->len2 - request->offset + request->len;
    313. 

  313.             i++;
    314. 

  314.         }
    315. 

  315.     }
    316. 

  316. 

  317.     if((request->operation & IO_BUF3) && request->u.b.len3 > 0) {
    318. 

  318.         if(request->offset <= len12) {
    319. 

  319.             iov[i].iov_base = request->u.b.buf3;
    320. 

  320.             iov[i].iov_len = request->u.b.len3;
    321. 

  321.             i++;
    322. 

  322.         } else if(request->offset < len12 + request->u.b.len3) {
    323. 

  323.             iov[i].iov_base = request->u.b.buf3 + request->offset - len12;
    324. 

  324.             iov[i].iov_len = request->u.b.len3 - request->offset + len12;
    325. 

  325.             i++;
    326. 

  326.         }
    327. 

  327.     }
    328. 

  328. 

  329.     if((request->operation & IO_CHUNKED)) {
    330. 

  330.         int l;
    331. 

  331.         const char *trailer;
    332. 

  332.         if(request->operation & IO_END) {
    333. 

  333.             if(len123 == 0) {
    334. 

  334.                 trailer = endChunkTrailer + 2;
    335. 

  335.                 l = 5;
    336. 

  336.             } else {
    337. 

  337.                 trailer = endChunkTrailer;
    338. 

  338.                 l = 7;
    339. 

  339.             }
    340. 

  340.         } else {
    341. 

  341.             trailer = endChunkTrailer;
    342. 

  342.             l = 2;
    343. 

  343.         }
    344. 

  344. 

  345.         if(request->offset <= len123) {
    346. 

  346.             iov[i].iov_base = (char*)trailer;
    347. 

  347.             iov[i].iov_len = l;
    348. 

  348.             i++;
    349. 

  349.         } else if(request->offset < len123 + l) {
    350. 

  350.             iov[i].iov_base = 
    351. 

  351.                 (char*)endChunkTrailer + request->offset - len123;
    352. 

  352.             iov[i].iov_len = l - request->offset + len123;
    353. 

  353.             i++;
    354. 

  354.         }
    355. 

  355.     }
    356. 

  356. 

  357.     assert(i > 0);
    358. 

  358. 

  359.     if((request->operation & IO_MASK) == IO_WRITE) {
    360. 

  360.         if(i > 1) 
    361. 

  361.             rc = WRITEV(request->fd, iov, i);
    362. 

  362.         else
    363. 

  363.             rc = WRITE(request->fd, iov[0].iov_base, iov[0].iov_len);
    364. 

  364.     } else {
    365. 

  365.         if(i > 1) 
    366. 

  366.             rc = READV(request->fd, iov, i);
    367. 

  367.         else
    368. 

  368.             rc = READ(request->fd, iov[0].iov_base, iov[0].iov_len);
    369. 

  369. 

  370.         /* PSIPHON
    371. 

  371.            All proxied traffic gets read and written by the above calls, so
    372. 

  372.            counting one of them will give us a "total bytes proxied" value.
    373. 

  373.            Every so often we'll tell the Psiphon client this number so that 
    374. 

  374.            it can update the stats. */
    375. 

  375.         if(psiphonStats && rc > 0)
    376. 

  376.         {
    377. 

  377.             const time_t SEND_INTERVAL_SECS = 5;
    378. 

  378.             //TODO: check for int overflow in the future
    379. 

  379.             bytes_read += rc;
    380. 

  380.             if (last_send_time+SEND_INTERVAL_SECS < time(NULL))
    381. 

  381.             {
    382. 

  382.                 if(bytes_read > 0)
    383. 

  383.                 {
    384. 

  384.                     printf("PSIPHON-BYTES-TRANSFERRED:>>%d<<", bytes_read);
    385. 

  385.                     fflush(NULL);
    386. 

  386.                 }
    387. 

  387.                 bytes_read = 0;
    388. 

  388.                 last_send_time = time(NULL);
    389. 

  389.             }
    390. 

  390.         }
    391. 

  391.     }
    392. 

  392. 

  393.     if(rc > 0) {
    394. 

  394.         request->offset += rc;
    395. 

  395.         if(request->offset < 0) return 0;
    396. 

  396.         done = request->handler(0, event, request);
    397. 

  397.         return done;
    398. 

  398.     } else if(rc == 0 || errno == EPIPE) {
    399. 

  399.         done = request->handler(1, event, request);
    400. 

  400.     } else if(errno == EAGAIN || errno == EINTR) {
    401. 

  401.         return 0;
    402. 

  402.     } else if(errno == EFAULT || errno == EBADF) {
    403. 

  403.         abort();
    404. 

  404.     } else {
    405. 

  405.         done = request->handler(-errno, event, request);
    406. 

  406.     }
    407. 

  407.     assert(done);
    408. 

  408.     return done;
    409. 

  409. }
    410. 

  410. 

  411. int
    412. 

  412. streamRequestDone(StreamRequestPtr request)
    413. 

  413. {
    414. 

  414.     int len123 = 
    415. 

  415.         request->len + request->len2 +
    416. 

  416.         ((request->operation & IO_BUF3) ? request->u.b.len3 : 0);
    417. 

  417. 

  418.     if(request->offset < 0)
    419. 

  419.         return 0;
    420. 

  420.     else if(request->offset < len123)
    421. 

  421.         return 0;
    422. 

  422.     else if(request->operation & IO_CHUNKED) {
    423. 

  423.         if(request->operation & IO_END) {
    424. 

  424.             if(request->offset < len123 + (len123 ? 7 : 5))
    425. 

  425.                 return 0;
    426. 

  426.         } else {
    427. 

  427.             if(request->offset < len123 + 2)
    428. 

  428.                 return 0;
    429. 

  429.         }
    430. 

  430.     }
    431. 

  431. 

  432.     return 1;
    433. 

  433. }
    434. 

  434. 

  435. static int
    436. 

  436. serverSocket(int af)
    437. 

  437. {
    438. 

  438.     int fd, rc;
    439. 

  439.     if(af == 4) {
    440. 

  440.         fd = socket(PF_INET, SOCK_STREAM, 0);
    441. 

  441.     } else if(af == 6) {
    442. 

  442. #ifdef HAVE_IPv6
    443. 

  443.         fd = socket(PF_INET6, SOCK_STREAM, 0);
    444. 

  444. #else
    445. 

  445.         fd = -1;
    446. 

  446.         errno = EAFNOSUPPORT;
    447. 

  447. #endif
    448. 

  448.     } else {
    449. 

  449.         abort();
    450. 

  450.     }
    451. 

  451. 

  452.     if(fd >= 0) {
    453. 

  453.         rc = setNonblocking(fd, 1);
    454. 

  454.         if(rc < 0) {
    455. 

  455.             int errno_save = errno;
    456. 

  456.             CLOSE(fd);
    457. 

  457.             errno = errno_save;
    458. 

  458.             return -1;
    459. 

  459.         }
    460. 

  460. #ifdef HAVE_IPV6_PREFER_TEMPADDR
    461. 

  461. 	if (af == 6 && useTemporarySourceAddress != 1) {
    462. 

  462.             int value;
    463. 

  463.             value = (useTemporarySourceAddress == 2) ? 1 : 0;
    464. 

  464.             rc = setsockopt(fd, IPPROTO_IPV6, IPV6_PREFER_TEMPADDR,
    465. 

  465.                             &value, sizeof(value));
    466. 

  466.             if (rc < 0) {
    467. 

  467.                 /* no error, warning only */
    468. 

  468.                 do_log_error(L_WARN, errno, "Couldn't set IPV6CTL_USETEMPADDR");
    469. 

  469.             }
    470. 

  470. 	}
    471. 

  471. 

  472. #endif
    473. 

  473.     }
    474. 

  474.     return fd;
    475. 

  475. }
    476. 

  476. 

  477. FdEventHandlerPtr
    478. 

  478. do_connect(AtomPtr addr, int index, int port,
    479. 

  479.            int (*handler)(int, FdEventHandlerPtr, ConnectRequestPtr),
    480. 

  480.            void *data)
    481. 

  481. {
    482. 

  482.     ConnectRequestRec request;
    483. 

  483.     FdEventHandlerPtr event;
    484. 

  484.     int done, fd, af;
    485. 

  485. 

  486.     assert(addr->length > 0 && addr->string[0] == DNS_A);
    487. 

  487.     assert(addr->length % sizeof(HostAddressRec) == 1);
    488. 

  488. 

  489.     if(index >= (addr->length - 1)/ sizeof(HostAddressRec))
    490. 

  490.         index = 0;
    491. 

  491. 

  492.     request.firstindex = index;
    493. 

  493.     request.port = port;
    494. 

  494.     request.handler = handler;
    495. 

  495.     request.data = data;
    496. 

  496.  again:
    497. 

  497.     af = addr->string[1 + index * sizeof(HostAddressRec)];
    498. 

  498.     fd = serverSocket(af);
    499. 

  499. 

  500.     request.fd = fd;
    501. 

  501.     request.af = af;
    502. 

  502.     request.addr = addr;
    503. 

  503.     request.index = index;
    504. 

  504. 

  505.     if(fd < 0) {
    506. 

  506.         int n = (addr->length - 1) / sizeof(HostAddressRec);
    507. 

  507.         if(errno == EAFNOSUPPORT || errno == EPROTONOSUPPORT) {
    508. 

  508.             if((index + 1) % n != request.firstindex) {
    509. 

  509.                 index = (index + 1) % n;
    510. 

  510.                 goto again;
    511. 

  511.             }
    512. 

  512.         }
    513. 

  513.         do_log_error(L_ERROR, errno, "Couldn't create socket");
    514. 

  514.         done = (*handler)(-errno, NULL, &request);
    515. 

  515.         assert(done);
    516. 

  516.         return NULL;
    517. 

  517.     }
    518. 

  518. 

  519.     /* POLLIN is apparently needed on Windows */
    520. 

  520.     event = registerFdEvent(fd, POLLIN | POLLOUT,
    521. 

  521.                             do_scheduled_connect,
    522. 

  522.                             sizeof(ConnectRequestRec), &request);
    523. 

  523.     if(event == NULL) {
    524. 

  524.         done = (*handler)(-ENOMEM, NULL, &request);
    525. 

  525.         assert(done);
    526. 

  526.         return NULL;
    527. 

  527.     }
    528. 

  528. 

  529.     done = event->handler(0, event);
    530. 

  530.     if(done) {
    531. 

  531.         unregisterFdEvent(event);
    532. 

  532.         return NULL;
    533. 

  533.     }
    534. 

  534.     return event;
    535. 

  535. }
    536. 

  536. 

  537. int
    538. 

  538. do_scheduled_connect(int status, FdEventHandlerPtr event)
    539. 

  539. {
    540. 

  540.     ConnectRequestPtr request = (ConnectRequestPtr)&event->data;
    541. 

  541.     AtomPtr addr = request->addr;
    542. 

  542.     int done;
    543. 

  543.     int rc;
    544. 

  544.     HostAddressPtr host;
    545. 

  545.     struct sockaddr_in servaddr;
    546. 

  546. #ifdef HAVE_IPv6
    547. 

  547.     struct sockaddr_in6 servaddr6;
    548. 

  548. #endif
    549. 

  549. 

  550.     assert(addr->length > 0 && addr->string[0] == DNS_A);
    551. 

  551.     assert(addr->length % sizeof(HostAddressRec) == 1);
    552. 

  552.     assert(request->index < (addr->length - 1) / sizeof(HostAddressRec));
    553. 

  553. 

  554.     if(status) {
    555. 

  555.         done = request->handler(status, event, request);
    556. 

  556.         if(done) {
    557. 

  557.             releaseAtom(addr);
    558. 

  558.             request->addr = NULL;
    559. 

  559.             return 1;
    560. 

  560.         }
    561. 

  561.         return 0;
    562. 

  562.     }
    563. 

  563. 

  564.  again:
    565. 

  565.     host = (HostAddressPtr)&addr->string[1 + 
    566. 

  566.                                          request->index * 
    567. 

  567.                                          sizeof(HostAddressRec)];
    568. 

  568.     if(host->af != request->af) {
    569. 

  569.         int newfd;
    570. 

  570.         /* Ouch.  Our socket has a different protocol than the host
    571. 

  571.            address. */
    572. 

  572.         CLOSE(request->fd);
    573. 

  573.         newfd = serverSocket(host->af);
    574. 

  574.         if(newfd < 0) {
    575. 

  575.             if(errno == EAFNOSUPPORT || errno == EPROTONOSUPPORT) {
    576. 

  576.                 int n = request->addr->length / sizeof(HostAddressRec);
    577. 

  577.                 if((request->index + 1) % n != request->firstindex) {
    578. 

  578.                     request->index = (request->index + 1) % n;
    579. 

  579.                     goto again;
    580. 

  580.                 }
    581. 

  581.             }
    582. 

  582.             request->fd = -1;
    583. 

  583.             done = request->handler(-errno, event, request);
    584. 

  584.             assert(done);
    585. 

  585.             return 1;
    586. 

  586.         }
    587. 

  587.         if(newfd != request->fd) {
    588. 

  588.             request->fd = dup2(newfd, request->fd);
    589. 

  589.             CLOSE(newfd);
    590. 

  590.             if(request->fd < 0) {
    591. 

  591.                 done = request->handler(-errno, event, request);
    592. 

  592.                 assert(done);
    593. 

  593.                 return 1;
    594. 

  594.             }
    595. 

  595.         }
    596. 

  596.         request->af = host->af;
    597. 

  597.     }
    598. 

  598.     switch(host->af) {
    599. 

  599.     case 4:
    600. 

  600.         memset(&servaddr, 0, sizeof(servaddr));
    601. 

  601.         servaddr.sin_family = AF_INET;
    602. 

  602.         servaddr.sin_port = htons(request->port);
    603. 

  603.         memcpy(&servaddr.sin_addr, &host->data, sizeof(struct in_addr));
    604. 

  604.         rc = connect(request->fd,
    605. 

  605.                      (struct sockaddr*)&servaddr, sizeof(servaddr));
    606. 

  606.         break;
    607. 

  607.     case 6:
    608. 

  608. #ifdef HAVE_IPv6
    609. 

  609.         memset(&servaddr6, 0, sizeof(servaddr6));
    610. 

  610.         servaddr6.sin6_family = AF_INET6;
    611. 

  611.         servaddr6.sin6_port = htons(request->port);
    612. 

  612.         memcpy(&servaddr6.sin6_addr, &host->data, sizeof(struct in6_addr));
    613. 

  613.         rc = connect(request->fd,
    614. 

  614.                      (struct sockaddr*)&servaddr6, sizeof(servaddr6));
    615. 

  615. #else
    616. 

  616.         rc = -1;
    617. 

  617.         errno = EAFNOSUPPORT;
    618. 

  618. #endif
    619. 

  619.         break;
    620. 

  620.     default:
    621. 

  621.         abort();
    622. 

  622.     }
    623. 

  623.         
    624. 

  624.     if(rc >= 0 || errno == EISCONN) {
    625. 

  625.         done = request->handler(1, event, request);
    626. 

  626.         assert(done);
    627. 

  627.         releaseAtom(request->addr);
    628. 

  628.         request->addr = NULL;
    629. 

  629.         return 1;
    630. 

  630.     }
    631. 

  631. 

  632.     if(errno == EINPROGRESS || errno == EINTR) {
    633. 

  633.         return 0;
    634. 

  634.     } else if(errno == EFAULT || errno == EBADF) {
    635. 

  635.         abort();
    636. 

  636.     } else {
    637. 

  637.         int n = request->addr->length / sizeof(HostAddressRec);
    638. 

  638.         if((request->index + 1) % n != request->firstindex) {
    639. 

  639.             request->index = (request->index + 1) % n;
    640. 

  640.             goto again;
    641. 

  641.         }
    642. 

  642.         done = request->handler(-errno, event, request);
    643. 

  643.         assert(done);
    644. 

  644.         releaseAtom(request->addr);
    645. 

  645.         request->addr = NULL;
    646. 

  646.         return 1;
    647. 

  647.     }
    648. 

  648. }
    649. 

  649. 

  650. FdEventHandlerPtr
    651. 

  651. do_accept(int fd,
    652. 

  652.           int (*handler)(int, FdEventHandlerPtr, AcceptRequestPtr),
    653. 

  653.           void *data)
    654. 

  654. {
    655. 

  655.     FdEventHandlerPtr event;
    656. 

  656.     int done;
    657. 

  657. 

  658.     event = schedule_accept(fd, handler, data);
    659. 

  659.     if(event == NULL) {
    660. 

  660.         done = (*handler)(-ENOMEM, NULL, NULL);
    661. 

  661.         assert(done);
    662. 

  662.     }
    663. 

  663. 

  664.     /* But don't invoke it now - this will delay accept if under load. */
    665. 

  665.     return event;
    666. 

  666. }
    667. 

  667. 

  668. FdEventHandlerPtr
    669. 

  669. schedule_accept(int fd,
    670. 

  670.                 int (*handler)(int, FdEventHandlerPtr, AcceptRequestPtr),
    671. 

  671.                 void *data)
    672. 

  672. {
    673. 

  673.     FdEventHandlerPtr event;
    674. 

  674.     AcceptRequestRec request;
    675. 

  675.     int done;
    676. 

  676. 

  677.     request.fd = fd;
    678. 

  678.     request.handler = handler;
    679. 

  679.     request.data = data;
    680. 

  680.     event = registerFdEvent(fd, POLLOUT|POLLIN, 
    681. 

  681.                             do_scheduled_accept, sizeof(request), &request);
    682. 

  682.     if(!event) {
    683. 

  683.         done = (*handler)(-ENOMEM, NULL, NULL);
    684. 

  684.         assert(done);
    685. 

  685.     }
    686. 

  686.     return event;
    687. 

  687. }
    688. 

  688. 

  689. int
    690. 

  690. do_scheduled_accept(int status, FdEventHandlerPtr event)
    691. 

  691. {
    692. 

  692.     AcceptRequestPtr request = (AcceptRequestPtr)&event->data;
    693. 

  693.     int rc, done;
    694. 

  694.     unsigned len;
    695. 

  695.     struct sockaddr_in addr;
    696. 

  696. 

  697.     if(status) {
    698. 

  698.         done = request->handler(status, event, request);
    699. 

  699.         if(done) return done;
    700. 

  700.     }
    701. 

  701. 

  702.     len = sizeof(struct sockaddr_in);
    703. 

  703. 

  704.     rc = accept(request->fd, (struct sockaddr*)&addr, &len);
    705. 

  705. 

  706.     if(rc >= 0)
    707. 

  707.         done = request->handler(rc, event, request);
    708. 

  708.     else
    709. 

  709.         done = request->handler(-errno, event, request);
    710. 

  710.     return done;
    711. 

  711. }
    712. 

  712. 

  713. FdEventHandlerPtr
    714. 

  714. create_listener(char *address, int port,
    715. 

  715.                 int (*handler)(int, FdEventHandlerPtr, AcceptRequestPtr),
    716. 

  716.                 void *data)
    717. 

  717. {
    718. 

  718.     int fd, rc;
    719. 

  719.     int one = 1;
    720. 

  720.     int done;
    721. 

  721.     struct sockaddr_in addr;
    722. 

  722. #ifdef HAVE_IPv6
    723. 

  723.     int inet6 = 1;
    724. 

  724.     struct sockaddr_in6 addr6;
    725. 

  725. #else
    726. 

  726.     int inet6 = 0;
    727. 

  727. #endif
    728. 

  728. 

  729.     if(inet6 && address) {
    730. 

  730.         struct in_addr buf;
    731. 

  731.         rc = inet_aton(address, &buf);
    732. 

  732.         if(rc == 1)
    733. 

  733.             inet6 = 0;
    734. 

  734.     }
    735. 

  735.     fd = -1;
    736. 

  736.     errno = EAFNOSUPPORT;
    737. 

  737. 

  738. #ifdef HAVE_IPv6
    739. 

  739.     if(inet6) {
    740. 

  740.         fd = socket(PF_INET6, SOCK_STREAM, 0);
    741. 

  741.     }
    742. 

  742. #endif
    743. 

  743. 

  744.     if(fd < 0 && (errno == EPROTONOSUPPORT || errno == EAFNOSUPPORT)) {
    745. 

  745.         inet6 = 0;
    746. 

  746.         fd = socket(PF_INET, SOCK_STREAM, 0);
    747. 

  747.     }
    748. 

  748. 

  749.     if(fd < 0) {
    750. 

  750.         done = (*handler)(-errno, NULL, NULL);
    751. 

  751.         assert(done);
    752. 

  752.         return NULL;
    753. 

  753.     }
    754. 

  754. 

  755.     rc = setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, (char *)&one, sizeof(one));
    756. 

  756.     if(rc < 0) do_log_error(L_WARN, errno, "Couldn't set SO_REUSEADDR");
    757. 

  757. 

  758.     if(inet6) {
    759. 

  759. #ifdef HAVE_IPv6
    760. 

  760.         rc = setV6only(fd, 0);
    761. 

  761.         if(rc < 0)
    762. 

  762.             /* Reportedly OpenBSD returns an error for that.  So only
    763. 

  763.                log it as a debugging message. */
    764. 

  764.             do_log_error(D_CLIENT_CONN, errno, "Couldn't reset IPV6_V6ONLY");
    765. 

  765. 

  766.         memset(&addr6, 0, sizeof(addr6));
    767. 

  767.         rc = inet_pton(AF_INET6, address, &addr6.sin6_addr);
    768. 

  768.         if(rc != 1) {
    769. 

  769.             done = (*handler)(rc == 0 ? -ESYNTAX : -errno, NULL, NULL);
    770. 

  770.             assert(done);
    771. 

  771.             return NULL;
    772. 

  772.         }
    773. 

  773.         addr6.sin6_family = AF_INET6;
    774. 

  774.         addr6.sin6_port = htons(port);
    775. 

  775.         rc = bind(fd, (struct sockaddr*)&addr6, sizeof(addr6));
    776. 

  776. #else
    777. 

  777.         rc = -1;
    778. 

  778.         errno = EAFNOSUPPORT;
    779. 

  779. #endif
    780. 

  780.     } else {
    781. 

  781.         memset(&addr, 0, sizeof(addr));
    782. 

  782.         rc = inet_aton(address, &addr.sin_addr);
    783. 

  783.         if(rc != 1) {
    784. 

  784.             done = (*handler)(rc == 0 ? -ESYNTAX : -errno, NULL, NULL);
    785. 

  785.             assert(done);
    786. 

  786.             return NULL;
    787. 

  787.         }
    788. 

  788.         addr.sin_family = AF_INET;
    789. 

  789.         addr.sin_port = htons(port);
    790. 

  790.         rc = bind(fd, (struct sockaddr*)&addr, sizeof(addr));
    791. 

  791.     }
    792. 

  792. 

  793.     if(rc < 0) {
    794. 

  794.         do_log_error(L_ERROR, errno, "Couldn't bind");
    795. 

  795.         CLOSE(fd);
    796. 

  796.         done = (*handler)(-errno, NULL, NULL);
    797. 

  797.         assert(done);
    798. 

  798.         return NULL;
    799. 

  799.     }
    800. 

  800. 

  801.     rc = setNonblocking(fd, 1);
    802. 

  802.     if(rc < 0) {
    803. 

  803.         do_log_error(L_ERROR, errno, "Couldn't set non blocking mode");
    804. 

  804.         CLOSE(fd);
    805. 

  805.         done = (*handler)(-errno, NULL, NULL);
    806. 

  806.         assert(done);
    807. 

  807.         return NULL;
    808. 

  808.     }
    809. 

  809.         
    810. 

  810.     rc = listen(fd, 32);
    811. 

  811.     if(rc < 0) {
    812. 

  812.         do_log_error(L_ERROR, errno, "Couldn't listen");
    813. 

  813.         CLOSE(fd);
    814. 

  814.         done = (*handler)(-errno, NULL, NULL);
    815. 

  815.         assert(done);
    816. 

  816.         return NULL;
    817. 

  817.     }
    818. 

  818. 

  819.     do_log(L_INFO, "Established listening socket on port %d.\n", port);
    820. 

  820. 

  821.     return schedule_accept(fd, handler, data);
    822. 

  822. }
    823. 

  823. 

  824. #ifndef SOL_TCP
    825. 

  825. /* BSD */
    826. 

  826. #define SOL_TCP IPPROTO_TCP
    827. 

  827. #endif
    828. 

  828. 

  829. int
    830. 

  830. setNonblocking(int fd, int nonblocking)
    831. 

  831. {
    832. 

  832. #ifdef MINGW
    833. 

  833.     return mingw_setnonblocking(fd, nonblocking);
    834. 

  834. #else
    835. 

  835.     int rc;
    836. 

  836.     rc = fcntl(fd, F_GETFL, 0);
    837. 

  837.     if(rc < 0)
    838. 

  838.         return -1;
    839. 

  839. 

  840.     rc = fcntl(fd, F_SETFL, nonblocking?(rc | O_NONBLOCK):(rc & ~O_NONBLOCK));
    841. 

  841.     if(rc < 0)
    842. 

  842.         return -1;
    843. 

  843. 

  844.     return 0;
    845. 

  845. #endif
    846. 

  846. }
    847. 

  847. 

  848. int
    849. 

  849. setNodelay(int fd, int nodelay)
    850. 

  850. {
    851. 

  851.     int val = nodelay ? 1 : 0;
    852. 

  852.     int rc;
    853. 

  853.     rc = setsockopt(fd, SOL_TCP, TCP_NODELAY, (char *)&val, sizeof(val));
    854. 

  854.     if(rc < 0)
    855. 

  855.         return -1;
    856. 

  856.     return 0;
    857. 

  857. }
    858. 

  858. 

  859. #ifdef IPV6_V6ONLY
    860. 

  860. int
    861. 

  861. setV6only(int fd, int v6only)
    862. 

  862. {
    863. 

  863.     int val = v6only ? 1 : 0;
    864. 

  864.     int rc;
    865. 

  865.     rc = setsockopt(fd, IPPROTO_IPV6, IPV6_V6ONLY, (char *)&val, sizeof(val));
    866. 

  866.     if(rc < 0)
    867. 

  867.         return -1;
    868. 

  868.     return 0;
    869. 

  869. }
    870. 

  870. #else
    871. 

  871. int
    872. 

  872. setV6only(int fd, int v6only)
    873. 

  873. {
    874. 

  874.     return 0;
    875. 

  875. }
    876. 

  876. #endif
    877. 

  877. 

  878. typedef struct _LingeringClose {
    879. 

  879.     int fd;
    880. 

  880.     FdEventHandlerPtr handler;
    881. 

  881.     TimeEventHandlerPtr timeout;
    882. 

  882. } LingeringCloseRec, *LingeringClosePtr;
    883. 

  883. 

  884. static int
    885. 

  885. lingeringCloseTimeoutHandler(TimeEventHandlerPtr event)
    886. 

  886. {
    887. 

  887.     LingeringClosePtr l = *(LingeringClosePtr*)event->data;
    888. 

  888.     assert(l->timeout == event);
    889. 

  889.     l->timeout = NULL;
    890. 

  890.     if(l->handler)
    891. 

  891.         pokeFdEvent(l->fd, -ESHUTDOWN, POLLIN | POLLOUT);
    892. 

  892.     else {
    893. 

  893.         CLOSE(l->fd);
    894. 

  894.         free(l);
    895. 

  895.     }
    896. 

  896.     return 1;
    897. 

  897. }
    898. 

  898. 

  899. static int
    900. 

  900. lingeringCloseHandler(int status, FdEventHandlerPtr event)
    901. 

  901. {
    902. 

  902.     LingeringClosePtr l = *(LingeringClosePtr*)event->data;
    903. 

  903.     char buf[17];
    904. 

  904.     int rc;
    905. 

  905. 

  906.     assert(l->handler == event);
    907. 

  907. 

  908.     l->handler = NULL;
    909. 

  909.     if(status && status != -EDOGRACEFUL)
    910. 

  910.         goto done;
    911. 

  911. 

  912.     rc = READ(l->fd, &buf, 17);
    913. 

  913.     if(rc == 0 || (rc < 0 && errno != EAGAIN && errno != EINTR))
    914. 

  914.         goto done;
    915. 

  915. 

  916.     /* The client is still sending data.  Ignore it in order to let
    917. 

  917.        TCP's flow control do its work.  The timeout will close the
    918. 

  918.        connection. */
    919. 

  919.     return 1;
    920. 

  920. 

  921.  done:
    922. 

  922.     if(l->timeout) {
    923. 

  923.         cancelTimeEvent(l->timeout);
    924. 

  924.         l->timeout = NULL;
    925. 

  925.     }
    926. 

  926.     CLOSE(l->fd);
    927. 

  927.     free(l);
    928. 

  928.     return 1;
    929. 

  929. }
    930. 

  930. 

  931. int
    932. 

  932. lingeringClose(int fd)
    933. 

  933. {
    934. 

  934.     int rc;
    935. 

  935.     LingeringClosePtr l;
    936. 

  936. 

  937.     rc = shutdown(fd, 1);
    938. 

  938.     if(rc < 0) {
    939. 

  939.         if(errno != ENOTCONN) {
    940. 

  940.             do_log_error(L_ERROR, errno, "Shutdown failed");
    941. 

  941.         } else if(errno == EFAULT || errno == EBADF) {
    942. 

  942.             abort();
    943. 

  943.         }
    944. 

  944.         CLOSE(fd);
    945. 

  945.         return 1;
    946. 

  946.     }
    947. 

  947. 

  948.     l = malloc(sizeof(LingeringCloseRec));
    949. 

  949.     if(l == NULL)
    950. 

  950.         goto fail;
    951. 

  951.     l->fd = fd;
    952. 

  952.     l->handler = NULL;
    953. 

  953.     l->timeout = NULL;
    954. 

  954. 

  955.     l->timeout = scheduleTimeEvent(10, lingeringCloseTimeoutHandler,
    956. 

  956.                                    sizeof(LingeringClosePtr), &l);
    957. 

  957.     if(l->timeout == NULL) {
    958. 

  958.         free(l);
    959. 

  959.         goto fail;
    960. 

  960.     }
    961. 

  961. 

  962.     l->handler = registerFdEvent(fd, POLLIN,
    963. 

  963.                                  lingeringCloseHandler,
    964. 

  964.                                  sizeof(LingeringClosePtr), &l);
    965. 

  965.     if(l->handler == NULL) {
    966. 

  966.         do_log(L_ERROR, "Couldn't schedule lingering close handler.\n");
    967. 

  967.         /* But don't close -- the timeout will do its work. */
    968. 

  968.     }
    969. 

  969.     return 1;
    970. 

  970. 

  971.  fail:
    972. 

  972.     do_log(L_ERROR, "Couldn't schedule lingering close.\n");
    973. 

  973.     CLOSE(fd);
    974. 

  974.     return 1;
    975. 

  975. }
    976. 

  976. 

  977. NetAddressPtr
    978. 

  978. parseNetAddress(AtomListPtr list)
    979. 

  979. {
    980. 

  980.     NetAddressPtr nl;
    981. 

  981.     int i, rc, rc6;
    982. 

  982.     char buf[100];
    983. 

  983.     struct in_addr ina;
    984. 

  984. #ifdef HAVE_IPv6
    985. 

  985.     struct in6_addr ina6;
    986. 

  986. #endif
    987. 

  987. 

  988.     nl = malloc((list->length + 1) * sizeof(NetAddressRec));
    989. 

  989.     if(nl == NULL) {
    990. 

  990.         do_log(L_ERROR, "Couldn't allocate network list.\n");
    991. 

  991.         return NULL;
    992. 

  992.     }
    993. 

  993. 

  994.     for(i = 0; i < list->length; i++) {
    995. 

  995.         int prefix;
    996. 

  996.         char *s = list->list[i]->string, *p;
    997. 

  997.         int n = list->list[i]->length;
    998. 

  998.         char *suffix;
    999. 

  999. 

  1000.         while(*s == ' ' || *s == '\t') {
    1001. 

  1001.             s++;
    1002. 

  1002.             n--;
    1003. 

  1003.         }
    1004. 

  1004. 

  1005.         if(n >= 100) {
    1006. 

  1006.             do_log(L_ERROR, "Network name too long.\n");
    1007. 

  1007.             goto fail;
    1008. 

  1008.         }
    1009. 

  1009.         p = memchr(s, '/', n);
    1010. 

  1010.         if(p) {
    1011. 

  1011.             memcpy(buf, s, p - s);
    1012. 

  1012.             buf[p - s] = '\0';
    1013. 

  1013.             prefix = strtol(p + 1, &suffix, 10);
    1014. 

  1014.         } else {
    1015. 

  1015.             char *s1, *s2;
    1016. 

  1016.             prefix = -1;
    1017. 

  1017.             strcpy(buf, s);
    1018. 

  1018.             s1 = strchr(s, ' ');
    1019. 

  1019.             s2 = strchr(s, '\t');
    1020. 

  1020.             if(s1 == NULL) suffix = s2;
    1021. 

  1021.             else if(s2 == NULL) suffix = s1;
    1022. 

  1022.             else if(s1 < s2) suffix = s1;
    1023. 

  1023.             else suffix = s2;
    1024. 

  1024.             if(suffix == NULL)
    1025. 

  1025.                 suffix = s + n;
    1026. 

  1026.         }
    1027. 

  1027. 

  1028.         if(!isWhitespace(suffix)) {
    1029. 

  1029.             do_log(L_ERROR, "Couldn't parse network %s.\n", buf);
    1030. 

  1030.             goto fail;
    1031. 

  1031.         }
    1032. 

  1032. 

  1033.         rc = 0; rc6 = 0;
    1034. 

  1034.         rc = inet_aton(buf, &ina);
    1035. 

  1035. #ifdef HAVE_IPv6
    1036. 

  1036.         if(rc == 0) {
    1037. 

  1037.             rc6 = inet_pton(AF_INET6, buf, &ina6);
    1038. 

  1038.         }
    1039. 

  1039. #endif
    1040. 

  1040.         if(rc == 0 && rc6 == 0) {
    1041. 

  1041.             do_log(L_ERROR, "Couldn't parse network %s.\n", buf);
    1042. 

  1042.             goto fail;
    1043. 

  1043.         }
    1044. 

  1044.         nl[i].prefix = prefix;
    1045. 

  1045.         if(rc) {
    1046. 

  1046.             nl[i].af = 4;
    1047. 

  1047.             memcpy(nl[i].data, &ina, 4);
    1048. 

  1048.         } else {
    1049. 

  1049. #ifdef HAVE_IPv6
    1050. 

  1050.             nl[i].af = 6;
    1051. 

  1051.             memcpy(nl[i].data, &ina6, 16);
    1052. 

  1052. #else
    1053. 

  1053.             abort();
    1054. 

  1054. #endif
    1055. 

  1055.         }
    1056. 

  1056.     }
    1057. 

  1057.     nl[i].af = 0;
    1058. 

  1058.     return nl;
    1059. 

  1059. 

  1060.  fail:
    1061. 

  1061.     free(nl);
    1062. 

  1062.     return NULL;
    1063. 

  1063. }
    1064. 

  1064. 

  1065. /* Returns 1 if the first n bits of a and b are equal */
    1066. 

  1066. static int
    1067. 

  1067. bitmatch(const unsigned char *a, const unsigned char *b, int n)
    1068. 

  1068. {
    1069. 

  1069.     if(n >= 8) {
    1070. 

  1070.         if(memcmp(a, b, n / 8) != 0)
    1071. 

  1071.             return 0;
    1072. 

  1072.     }
    1073. 

  1073. 

  1074.     if(n % 8 != 0) {
    1075. 

  1075.         int mask = (~0) << (8 - n % 8);
    1076. 

  1076.         if((a[n / 8] & mask) != (b[n / 8] & mask))
    1077. 

  1077.             return 0;
    1078. 

  1078.     }
    1079. 

  1079. 

  1080.     return 1;
    1081. 

  1081. }
    1082. 

  1082. 

  1083. /* Returns 1 if the address in data is in list */
    1084. 

  1084. static int
    1085. 

  1085. match(int af, unsigned char *data, NetAddressPtr list)
    1086. 

  1086. {
    1087. 

  1087.     int i;
    1088. 

  1088. #ifdef HAVE_IPv6
    1089. 

  1089.     static const unsigned char v6mapped[] =
    1090. 

  1090.         { 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0xFF, 0xFF };
    1091. 

  1091. #endif
    1092. 

  1092. 

  1093.     i = 0;
    1094. 

  1094.     while(list[i].af != 0) {
    1095. 

  1095.         if(af == 4 && list[i].af == 4) {
    1096. 

  1096.             if(bitmatch(data, list[i].data,
    1097. 

  1097.                         list[i].prefix >= 0 ? list[i].prefix : 32))
    1098. 

  1098.                 return 1;
    1099. 

  1099. #ifdef HAVE_IPv6
    1100. 

  1100.         } else if(af == 6 && list[i].af == 6) {
    1101. 

  1101.             if(bitmatch(data, list[i].data,
    1102. 

  1102.                         list[i].prefix >= 0 ? list[i].prefix : 128))
    1103. 

  1103.                 return 1;
    1104. 

  1104.         } else if(af == 6 && list[i].af == 4) {
    1105. 

  1105.             if(bitmatch(data, v6mapped, 96)) {
    1106. 

  1106.                 if(bitmatch(data + 12, list[i].data,
    1107. 

  1107.                             list[i].prefix >= 0 ? list[i].prefix : 32))
    1108. 

  1108.                     return 1;
    1109. 

  1109.             }
    1110. 

  1110.         } else if(af == 4 && list[i].af == 6) {
    1111. 

  1111.             if(bitmatch(list[i].data, v6mapped, 96)) {
    1112. 

  1112.                 if(bitmatch(data, list[i].data + 12,
    1113. 

  1113.                             list[i].prefix >= 96 ?
    1114. 

  1114.                             list[i].prefix - 96 : 32))
    1115. 

  1115.                     return 1;
    1116. 

  1116.             }
    1117. 

  1117. #endif
    1118. 

  1118.         } else {
    1119. 

  1119.             abort();
    1120. 

  1120.         }
    1121. 

  1121.         i++;
    1122. 

  1122.     }
    1123. 

  1123.     return 0;
    1124. 

  1124. }
    1125. 

  1125. 

  1126. int
    1127. 

  1127. netAddressMatch(int fd, NetAddressPtr list)
    1128. 

  1128. {
    1129. 

  1129.     int rc;
    1130. 

  1130.     unsigned int len;
    1131. 

  1131.     struct sockaddr_in sain;
    1132. 

  1132. #ifdef HAVE_IPv6
    1133. 

  1133.     struct sockaddr_in6 sain6;
    1134. 

  1134. #endif
    1135. 

  1135. 

  1136.     len = sizeof(sain);
    1137. 

  1137.     rc = getpeername(fd, (struct sockaddr*)&sain, &len);
    1138. 

  1138.     if(rc < 0) {
    1139. 

  1139.         do_log_error(L_ERROR, errno, "Couldn't get peer name");
    1140. 

  1140.         return -1;
    1141. 

  1141.     }
    1142. 

  1142. 

  1143.     if(sain.sin_family == AF_INET) {
    1144. 

  1144.         return match(4, (unsigned char*)&sain.sin_addr, list);
    1145. 

  1145. #ifdef HAVE_IPv6
    1146. 

  1146.     } else if(sain.sin_family == AF_INET6) {
    1147. 

  1147.         len = sizeof(sain6);
    1148. 

  1148.         rc = getpeername(fd, (struct sockaddr*)&sain6, &len);
    1149. 

  1149.         if(rc < 0) {
    1150. 

  1150.             do_log_error(L_ERROR, errno, "Couldn't get peer name");
    1151. 

  1151.             return -1;
    1152. 

  1152.         }
    1153. 

  1153.         if(sain6.sin6_family != AF_INET6) {
    1154. 

  1154.             do_log(L_ERROR, "Inconsistent peer name");
    1155. 

  1155.             return -1;
    1156. 

  1156.         }
    1157. 

  1157.         return match(6, (unsigned char*)&sain6.sin6_addr, list);
    1158. 

  1158. #endif
    1159. 

  1159.     } else {
    1160. 

  1160.         do_log(L_ERROR, "Unknown address family %d\n", sain.sin_family);
    1161. 

  1161.         return -1;
    1162. 

  1162.     }
    1163. 

  1163.     return 0;
    1164. 

  1164. }
    1165. 

  1165. 

  1166. 

  1167.         
    1168. 

  1168.         
    1169. 

  1169. 

  1170.     
    1171. 

  1171.