ucspi-tcp6/doxygen/a00080_source.html

#include "byte.h"

#include "buffer.h"

#include "logmsg.h"

#include "env.h"

#include "rules.h"

#include "stralloc.h"

#include "ip.h"

#include "exit.h"

#include "open.h"

#include "ip_bit.h"

#include "str.h"


#define WHO "tcprulescheck"


void found(char *data, unsigned int datalen)

{

  unsigned int next0;

  stralloc ipaddress = {0};


  if (rules_name.s[0] == '^')           /* IPv6 CIDR */

    if (!bitstring_ip6(&ipaddress,&rules_name))

      stralloc_copys(&rules_name,ipaddress.s);


  if (rules_name.s[0] == '_')           /* IPv4 CIDR */

    if (!bitstring_ip4(&ipaddress,&rules_name))

      stralloc_copys(&rules_name,ipaddress.s);


  if (rules_name.len) {

    buffer_puts(buffer_1,"rule ");

    buffer_put(buffer_1,rules_name.s,rules_name.len);

  } else

    buffer_puts(buffer_1,"default");

  buffer_puts(buffer_1,":\n");

  while ((next0 = byte_chr(data,datalen,0)) < datalen) {

    switch(data[0]) {

      case 'D':

        buffer_puts(buffer_1,"deny connection\n");

        buffer_flush(buffer_1);

        _exit(0);

      case '+':

        buffer_puts(buffer_1,"set environment variable ");

        buffer_puts(buffer_1,data + 1);

        buffer_puts(buffer_1,"\n");

        break;

    }

    ++next0;

    data += next0; datalen -= next0;

  }

  buffer_puts(buffer_1,"allow connection\n");

  buffer_flush(buffer_1);

  _exit(0);

}


int main(int argc,char * const *argv)

{

  char *fnrules;

  int fd;

  char *ip = 0;

  char *info = 0;

  char *host = 0;


  fnrules = argv[1];

  if (!fnrules) {

    logmsg(WHO,100,USAGE,"rules.cdb");

  }


  ip = env_get("TCPREMOTEIP");

  if (!ip) ip = "0";

  info = env_get("TCPREMOTEINFO");

  host = env_get("TCPREMOTEHOST");


  logmsg(WHO,0,INFO,B("TCPREMOTEIP: ",ip," TCPREMOTEHOST: ",host," TCPREMOTEINFO: ",info));


  fd = open_read(fnrules);

  if ((fd == -1) || (rules(found,fd,ip,host,info) == -1))

    logmsg(WHO,111,FATAL,B("unable to read: ",fnrules));


  buffer_putsflush(buffer_1,"default:\nallow connection\n");

  _exit(0);

}

data
stralloc data
Definition: tcprules.c:28

rules
int rules(void(*callback)(char *, unsigned int), int fd, char *ip, char *host, char *info)
Definition: rules.c:135

rules_name
stralloc rules_name
Definition: rules.c:13

fnrules
char * fnrules
Definition: tcpserver.c:143

main
int main()
Definition: addcr.c:4

bitstring_ip6
int bitstring_ip6(stralloc *ip6addr, stralloc *ip6string)
Definition: ip6_bit.c:102

ip_bit.h

bitstring_ip4
int bitstring_ip4(stralloc *ip4addr, stralloc *ip4string)
Definition: ip4_bit.c:69

found
void found(char *data, unsigned int datalen)
Definition: tcprulescheck.c:15

WHO
#define WHO
Definition: tcprulescheck.c:13

rules.h