-/*
- Copyright (C) Andrew Tridgell 1998
+/* -*- c-file-style: "linux" -*-
+
+ Copyright (C) 1998-2001 by Andrew Tridgell
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
#include "rsync.h"
+
+/* Establish a proxy connection on an open socket to a web roxy by
+ * using the CONNECT method. */
+static int establish_proxy_connection(int fd, char *host, int port)
+{
+ char buffer[1024];
+ char *cp;
+
+ slprintf(buffer, sizeof(buffer), "CONNECT %s:%d HTTP/1.0\r\n\r\n", host, port);
+ if (write(fd, buffer, strlen(buffer)) != strlen(buffer)) {
+ rprintf(FERROR, "failed to write to proxy: %s\n",
+ strerror(errno));
+ return -1;
+ }
+
+ for (cp = buffer; cp < &buffer[sizeof(buffer) - 1]; cp++) {
+ if (read(fd, cp, 1) != 1) {
+ rprintf(FERROR, "failed to read from proxy: %s\n",
+ strerror(errno));
+ return -1;
+ }
+ if (*cp == '\n')
+ break;
+ }
+
+ if (*cp != '\n')
+ cp++;
+ *cp-- = '\0';
+ if (*cp == '\r')
+ *cp = '\0';
+ if (strncmp(buffer, "HTTP/", 5) != 0) {
+ rprintf(FERROR, "bad response from proxy - %s\n",
+ buffer);
+ return -1;
+ }
+ for (cp = &buffer[5]; isdigit(*cp) || (*cp == '.'); cp++)
+ ;
+ while (*cp == ' ')
+ cp++;
+ if (*cp != '2') {
+ rprintf(FERROR, "bad response from proxy - %s\n",
+ buffer);
+ return -1;
+ }
+ /* throw away the rest of the HTTP header */
+ while (1) {
+ for (cp = buffer; cp < &buffer[sizeof(buffer) - 1];
+ cp++) {
+ if (read(fd, cp, 1) != 1) {
+ rprintf(FERROR, "failed to read from proxy: %s\n",
+ strerror(errno));
+ return -1;
+ }
+ if (*cp == '\n')
+ break;
+ }
+ if ((cp > buffer) && (*cp == '\n'))
+ cp--;
+ if ((cp == buffer) && ((*cp == '\n') || (*cp == '\r')))
+ break;
+ }
+ return 0;
+}
+
+
/* open a socket to a tcp remote host with the specified port
- based on code from Warren */
-int open_socket_out(char *host, int port)
+ based on code from Warren
+ proxy support by Stephen Rothwell */
+int open_socket_out(char *host, int port, struct in_addr *address)
{
int type = SOCK_STREAM;
struct sockaddr_in sock_out;
+ struct sockaddr_in sock;
int res;
struct hostent *hp;
-
+ char *h;
+ unsigned p;
+ int proxied = 0;
+ char buffer[1024];
+ char *cp;
+
+ /* if we have a RSYNC_PROXY env variable then redirect our
+ * connetcion via a web proxy at the given address. The format
+ * is hostname:port */
+ h = getenv("RSYNC_PROXY");
+ proxied = (h != NULL) && (*h != '\0');
+
+ if (proxied) {
+ strlcpy(buffer, h, sizeof(buffer));
+ cp = strchr(buffer, ':');
+ if (cp == NULL) {
+ rprintf(FERROR,
+ "invalid proxy specification: should be HOST:PORT\n");
+ return -1;
+ }
+ *cp++ = '\0';
+ p = atoi(cp);
+ h = buffer;
+ } else {
+ h = host;
+ p = port;
+ }
res = socket(PF_INET, type, 0);
if (res == -1) {
return -1;
}
- hp = gethostbyname(host);
+ hp = gethostbyname(h);
if (!hp) {
- rprintf(FERROR,"unknown host: %s\n", host);
+ rprintf(FERROR,"unknown host: %s\n", h);
+ close(res);
return -1;
}
memcpy(&sock_out.sin_addr, hp->h_addr, hp->h_length);
- sock_out.sin_port = htons(port);
+ sock_out.sin_port = htons(p);
sock_out.sin_family = PF_INET;
+ if (address) {
+ sock.sin_addr = *address;
+ sock.sin_port = 0;
+ sock.sin_family = hp->h_addrtype;
+ bind(res, (struct sockaddr * ) &sock,sizeof(sock));
+ }
+
if (connect(res,(struct sockaddr *)&sock_out,sizeof(sock_out))) {
+ rprintf(FERROR,"failed to connect to %s - %s\n", h, strerror(errno));
+ close(res);
+ return -1;
+ }
+
+ if (proxied && establish_proxy_connection(res, host, port) != 0) {
close(res);
- rprintf(FERROR,"failed to connect to %s - %s\n", host, strerror(errno));
return -1;
}
/****************************************************************************
open a socket of the specified type, port and address for incoming data
****************************************************************************/
-static int open_socket_in(int type, int port)
+static int open_socket_in(int type, int port, struct in_addr *address)
{
struct hostent *hp;
struct sockaddr_in sock;
- char host_name[200];
+ char host_name[MAXHOSTNAMELEN];
int res;
int one=1;
return -1;
}
- bzero((char *)&sock,sizeof(sock));
+ memset((char *)&sock,0,sizeof(sock));
memcpy((char *)&sock.sin_addr,(char *)hp->h_addr, hp->h_length);
sock.sin_port = htons(port);
sock.sin_family = hp->h_addrtype;
- sock.sin_addr.s_addr = INADDR_ANY;
+ if (address) {
+ sock.sin_addr = *address;
+ } else {
+ sock.sin_addr.s_addr = INADDR_ANY;
+ }
res = socket(hp->h_addrtype, type, 0);
if (res == -1) {
- rprintf(FERROR,"socket failed\n");
+ rprintf(FERROR,"socket failed: %s\n",
+ strerror(errno));
return -1;
}
/* now we've got a socket - we need to bind it */
if (bind(res, (struct sockaddr * ) &sock,sizeof(sock)) == -1) {
- rprintf(FERROR,"bind failed on port %d\n", port);
+ rprintf(FERROR,"bind failed on port %d: %s\n", port,
+ strerror(errno));
close(res);
return -1;
}
}
-/****************************************************************************
-determine if a file descriptor is in fact a socket
-****************************************************************************/
+/*
+ * Determine if a file descriptor is in fact a socket
+ */
int is_a_socket(int fd)
{
- int v,l;
- l = sizeof(int);
- return(getsockopt(fd, SOL_SOCKET, SO_TYPE, (char *)&v, &l) == 0);
+ int v, l;
+ l = sizeof(int);
+
+ /* Parameters to getsockopt, setsockopt etc are very
+ * unstandardized across platforms, so don't be surprised if
+ * there are compiler warnings on e.g. SCO OpenSwerver. It
+ * seems they all eventually get the right idea.
+ *
+ * Debian says: ``The fifth argument of getsockopt and
+ * setsockopt is in reality an int [*] (and this is what BSD
+ * 4.* and libc4 and libc5 have). Some POSIX confusion
+ * resulted in the present socklen_t. The draft standard has
+ * not been adopted yet, but glibc2 already follows it and
+ * also has socklen_t [*]. See also accept(2).''
+ *
+ * We now return to your regularly scheduled programming. */
+ return(getsockopt(fd, SOL_SOCKET, SO_TYPE, (char *)&v, &l) == 0);
}
void start_accept_loop(int port, int (*fn)(int ))
{
int s;
-
- signal(SIGCHLD, SIG_IGN);
+ extern struct in_addr socket_address;
/* open an incoming socket */
- s = open_socket_in(SOCK_STREAM, port);
+ s = open_socket_in(SOCK_STREAM, port, &socket_address);
if (s == -1)
- exit(1);
+ exit_cleanup(RERR_SOCKETIO);
/* ready to listen */
if (listen(s, 5) == -1) {
close(s);
- exit(1);
+ exit_cleanup(RERR_SOCKETIO);
}
struct sockaddr addr;
int in_addrlen = sizeof(addr);
+ /* close log file before the potentially very long select so
+ file can be trimmed by another process instead of growing
+ forever */
+ log_close();
+
FD_ZERO(&fds);
FD_SET(s, &fds);
if(!FD_ISSET(s, &fds)) continue;
+ /* See note above prototypes. */
fd = accept(s,&addr,&in_addrlen);
if (fd == -1) continue;
+ signal(SIGCHLD, SIG_IGN);
+
+ /* we shouldn't have any children left hanging around
+ but I have had reports that on Digital Unix zombies
+ are produced, so this ensures that they are reaped */
+#ifdef WNOHANG
+ while (waitpid(-1, NULL, WNOHANG) > 0);
+#endif
+
if (fork()==0) {
close(s);
+ /* open log file in child before possibly giving
+ up privileges */
+ log_open();
+
_exit(fn(fd));
}
}
if (ret != 0)
- rprintf(FERROR,"Failed to set socket option %s\n",tok);
+ rprintf(FERROR, "failed to set socket option %s: %s\n", tok,
+ strerror(errno));
}
free(options);
****************************************************************************/
void become_daemon(void)
{
- if (fork())
+ int i;
+
+ if (fork()) {
_exit(0);
+ }
/* detach from the terminal */
#ifdef HAVE_SETSID
setsid();
#else
#ifdef TIOCNOTTY
- {
- int i = open("/dev/tty", O_RDWR);
- if (i >= 0)
- {
- ioctl(i, (int) TIOCNOTTY, (char *)0);
- close(i);
- }
+ i = open("/dev/tty", O_RDWR);
+ if (i >= 0) {
+ ioctl(i, (int) TIOCNOTTY, (char *)0);
+ close(i);
}
#endif /* TIOCNOTTY */
#endif
- close(0);
- close(1);
- close(2);
+ /* make sure that stdin, stdout an stderr don't stuff things
+ up (library functions, for example) */
+ for (i=0;i<3;i++) {
+ close(i);
+ open("/dev/null", O_RDWR);
+ }
}
/*******************************************************************
struct sockaddr_in *sockin = (struct sockaddr_in *) (&sa);
int length = sizeof(sa);
static char addr_buf[100];
+ static int initialised;
- if (getpeername(fd, &sa, &length)) {
- exit(1);
- }
+ if (initialised) return addr_buf;
- strlcpy(addr_buf,(char *)inet_ntoa(sockin->sin_addr), sizeof(addr_buf)-1);
+ initialised = 1;
+ if (getpeername(fd, &sa, &length)) {
+ exit_cleanup(RERR_SOCKETIO);
+ }
+
+ strlcpy(addr_buf,(char *)inet_ntoa(sockin->sin_addr), sizeof(addr_buf));
return addr_buf;
}
int length = sizeof(sa);
static char name_buf[100];
struct hostent *hp;
+ char **p;
+ char *def = "UNKNOWN";
+ static int initialised;
- strcpy(name_buf,"UNKNOWN");
+ if (initialised) return name_buf;
+
+ initialised = 1;
+
+ strcpy(name_buf,def);
if (getpeername(fd, &sa, &length)) {
- exit(1);
+ exit_cleanup(RERR_SOCKETIO);
}
/* Look up the remote host name. */
if ((hp = gethostbyaddr((char *) &sockin->sin_addr,
sizeof(sockin->sin_addr),
AF_INET))) {
- strlcpy(name_buf,(char *)hp->h_name,sizeof(name_buf) - 1);
+ strlcpy(name_buf,(char *)hp->h_name,sizeof(name_buf));
+ }
+
+
+ /* do a forward lookup as well to prevent spoofing */
+ hp = gethostbyname(name_buf);
+ if (!hp) {
+ strcpy(name_buf,def);
+ rprintf(FERROR,"reverse name lookup failed\n");
+ } else {
+ for (p=hp->h_addr_list;*p;p++) {
+ if (memcmp(*p, &sockin->sin_addr, hp->h_length) == 0) {
+ break;
+ }
+ }
+ if (!*p) {
+ strcpy(name_buf,def);
+ rprintf(FERROR,"reverse name lookup mismatch - spoofed address?\n");
+ }
}
return name_buf;
}
+
+/*******************************************************************
+convert a string to an IP address. The string can be a name or
+dotted decimal number
+ ******************************************************************/
+struct in_addr *ip_address(const char *str)
+{
+ static struct in_addr ret;
+ struct hostent *hp;
+
+ /* try as an IP address */
+ if (inet_aton(str, &ret) != 0) {
+ return &ret;
+ }
+
+ /* otherwise assume it's a network name of some sort and use
+ gethostbyname */
+ if ((hp = gethostbyname(str)) == 0) {
+ rprintf(FERROR, "gethostbyname: Unknown host. %s\n",str);
+ return NULL;
+ }
+
+ if (hp->h_addr == NULL) {
+ rprintf(FERROR, "gethostbyname: host address is invalid for host %s\n",str);
+ return NULL;
+ }
+
+ if (hp->h_length > sizeof(ret)) {
+ rprintf(FERROR, "gethostbyname: host address is too large\n");
+ return NULL;
+ }
+
+ memcpy(&ret.s_addr, hp->h_addr, hp->h_length);
+
+ return(&ret);
+}