| … | |
… | |
| 38 | #include <errno.h> |
38 | #include <errno.h> |
| 39 | #include <netdb.h> |
39 | #include <netdb.h> |
| 40 | #include <sys/stat.h> |
40 | #include <sys/stat.h> |
| 41 | #include <sys/types.h> |
41 | #include <sys/types.h> |
| 42 | #include <unistd.h> |
42 | #include <unistd.h> |
|
|
43 | #include <pwd.h> |
| 43 | |
44 | |
| 44 | #include "netcompat.h" |
45 | #include "netcompat.h" |
| 45 | |
46 | |
| 46 | #include <openssl/err.h> |
47 | #include <openssl/err.h> |
| 47 | #include <openssl/pem.h> |
48 | #include <openssl/pem.h> |
| … | |
… | |
| 160 | dns_send_interval = DEFAULT_DNS_SEND_INTERVAL; |
161 | dns_send_interval = DEFAULT_DNS_SEND_INTERVAL; |
| 161 | dns_overlap_factor = DEFAULT_DNS_OVERLAP_FACTOR; |
162 | dns_overlap_factor = DEFAULT_DNS_OVERLAP_FACTOR; |
| 162 | dns_max_outstanding = DEFAULT_DNS_MAX_OUTSTANDING; |
163 | dns_max_outstanding = DEFAULT_DNS_MAX_OUTSTANDING; |
| 163 | #endif |
164 | #endif |
| 164 | |
165 | |
| 165 | conf.pidfilename = strdup (LOCALSTATEDIR "/run/gvpe.pid"); |
166 | pidfilename = strdup (LOCALSTATEDIR "/run/gvpe.pid"); |
|
|
167 | seed_dev = strdup ("/dev/urandom"); |
|
|
168 | reseed = DEFAULT_RESEED; |
| 166 | } |
169 | } |
| 167 | |
170 | |
| 168 | void |
171 | void |
| 169 | configuration::cleanup () |
172 | configuration::cleanup () |
| 170 | { |
173 | { |
| 171 | if (rsa_key) |
174 | if (rsa_key) |
| 172 | RSA_free (rsa_key); |
175 | RSA_free (rsa_key); |
| 173 | |
176 | |
| 174 | rsa_key = 0; |
177 | rsa_key = 0; |
| 175 | |
178 | |
|
|
179 | free (seed_dev); seed_dev = 0; |
| 176 | free (pidfilename); pidfilename = 0; |
180 | free (pidfilename); pidfilename = 0; |
| 177 | free (ifname); ifname = 0; |
181 | free (ifname); ifname = 0; |
| 178 | #if ENABLE_HTTP_PROXY |
182 | #if ENABLE_HTTP_PROXY |
| 179 | free (proxy_host); proxy_host = 0; |
183 | free (proxy_host); proxy_host = 0; |
| 180 | free (proxy_auth); proxy_auth = 0; |
184 | free (proxy_auth); proxy_auth = 0; |
| 181 | #endif |
185 | #endif |
| 182 | #if ENABLE_DNS |
186 | #if ENABLE_DNS |
| 183 | free (dns_forw_host); dns_forw_host = 0; |
187 | free (dns_forw_host); dns_forw_host = 0; |
| 184 | #endif |
188 | #endif |
|
|
189 | free (change_root); change_root = 0; |
| 185 | free (script_if_up); script_if_up = 0; |
190 | free (script_if_up); script_if_up = 0; |
| 186 | free (script_node_up); script_node_up = 0; |
191 | free (script_node_up); script_node_up = 0; |
| 187 | free (script_node_change); script_node_change = 0; |
192 | free (script_node_change); script_node_change = 0; |
| 188 | free (script_node_down); script_node_down = 0; |
193 | free (script_node_down); script_node_down = 0; |
| 189 | } |
194 | } |
| … | |
… | |
| 273 | { |
278 | { |
| 274 | #if ENABLE_ICMP |
279 | #if ENABLE_ICMP |
| 275 | conf.icmp_type = atoi (val); |
280 | conf.icmp_type = atoi (val); |
| 276 | #endif |
281 | #endif |
| 277 | } |
282 | } |
|
|
283 | else if (!strcmp (var, "chuser")) |
|
|
284 | { |
|
|
285 | struct passwd *pw = getpwnam (val); |
|
|
286 | if (!pw) |
|
|
287 | return _("user specified for chuser not found"); |
| 278 | |
288 | |
| 279 | // per config |
289 | conf.change_uid = pw->pw_uid; |
|
|
290 | conf.change_gid = pw->pw_gid; |
|
|
291 | } |
|
|
292 | else if (!strcmp (var, "chuid")) |
|
|
293 | conf.change_uid = atoi (val); |
|
|
294 | else if (!strcmp (var, "chgid")) |
|
|
295 | conf.change_gid = atoi (val); |
|
|
296 | else if (!strcmp (var, "chroot")) |
|
|
297 | free (conf.change_root), conf.change_root = strdup (val); |
|
|
298 | |
|
|
299 | // per node |
| 280 | else if (!strcmp (var, "node")) |
300 | else if (!strcmp (var, "node")) |
| 281 | { |
301 | { |
| 282 | parse_argv (); |
302 | parse_argv (); |
| 283 | |
303 | |
| 284 | conf.default_node.id++; |
304 | conf.default_node.id++; |
| … | |
… | |
| 334 | conf.keepalive = atoi (val); |
354 | conf.keepalive = atoi (val); |
| 335 | else if (!strcmp (var, "mtu")) |
355 | else if (!strcmp (var, "mtu")) |
| 336 | conf.mtu = atoi (val); |
356 | conf.mtu = atoi (val); |
| 337 | else if (!strcmp (var, "nfmark")) |
357 | else if (!strcmp (var, "nfmark")) |
| 338 | conf.nfmark = atoi (val); |
358 | conf.nfmark = atoi (val); |
|
|
359 | else if (!strcmp (var, "seed-device")) |
|
|
360 | free (conf.seed_dev), conf.seed_dev = strdup (val); |
|
|
361 | else if (!strcmp (var, "seed-interval")) |
|
|
362 | conf.reseed = atoi (val); |
| 339 | else if (!strcmp (var, "if-up")) |
363 | else if (!strcmp (var, "if-up")) |
| 340 | free (conf.script_if_up), conf.script_if_up = strdup (val); |
364 | free (conf.script_if_up), conf.script_if_up = strdup (val); |
| 341 | else if (!strcmp (var, "node-up")) |
365 | else if (!strcmp (var, "node-up")) |
| 342 | free (conf.script_node_up), conf.script_node_up = strdup (val); |
366 | free (conf.script_node_up), conf.script_node_up = strdup (val); |
| 343 | else if (!strcmp (var, "node-change")) |
367 | else if (!strcmp (var, "node-change")) |
| … | |
… | |
| 612 | |
636 | |
| 613 | fclose (f); |
637 | fclose (f); |
| 614 | } |
638 | } |
| 615 | else |
639 | else |
| 616 | { |
640 | { |
| 617 | slog (need_keys ? L_ERR : L_NOTICE, _("unable to open private rsa key file '%s': %s"), fname, strerror (errno)); |
|
|
| 618 | |
|
|
| 619 | if (need_keys) |
641 | if (need_keys) |
|
|
642 | { |
|
|
643 | slog (need_keys ? L_ERR : L_NOTICE, _("unable to open private rsa key file '%s': %s"), fname, strerror (errno)); |
| 620 | exit (EXIT_FAILURE); |
644 | exit (EXIT_FAILURE); |
|
|
645 | } |
| 621 | } |
646 | } |
| 622 | |
647 | |
| 623 | free (fname); |
648 | free (fname); |
| 624 | |
649 | |
| 625 | if (need_keys && ::thisnode |
650 | if (need_keys && ::thisnode |
| … | |
… | |
| 629 | { |
654 | { |
| 630 | slog (L_NOTICE, _("private hostkey and public node key mismatch: is '%s' the correct node?"), ::thisnode); |
655 | slog (L_NOTICE, _("private hostkey and public node key mismatch: is '%s' the correct node?"), ::thisnode); |
| 631 | exit (EXIT_FAILURE); |
656 | exit (EXIT_FAILURE); |
| 632 | } |
657 | } |
| 633 | |
658 | |
|
|
659 | fname = conf.config_filename (conf.pidfilename); |
|
|
660 | free (conf.pidfilename); conf.pidfilename = fname; |
|
|
661 | |
| 634 | for (configuration::node_vector::iterator i = conf.nodes.begin(); i != conf.nodes.end(); ++i) |
662 | for (configuration::node_vector::iterator i = conf.nodes.begin(); i != conf.nodes.end(); ++i) |
| 635 | (*i)->finalise (); |
663 | (*i)->finalise (); |
| 636 | } |
664 | } |
| 637 | |
665 | |
| 638 | char * |
666 | char * |
| 639 | configuration::config_filename (const char *name, const char *dflt) |
667 | configuration::config_filename (const char *name, const char *dflt) |
| 640 | { |
668 | { |
| 641 | char *fname; |
669 | char *fname; |
| 642 | |
670 | |
| 643 | asprintf (&fname, name ? name : dflt, ::thisnode); |
671 | asprintf (&fname, name ? name : dflt, ::thisnode ? ::thisnode : "<unset>"); |
| 644 | |
672 | |
| 645 | if (!ABSOLUTE_PATH (fname)) |
673 | if (!ABSOLUTE_PATH (fname)) |
| 646 | { |
674 | { |
| 647 | char *rname = fname; |
675 | char *rname = fname; |
| 648 | asprintf (&fname, "%s/%s", confbase, rname); |
676 | asprintf (&fname, "%s/%s", confbase, rname); |
