| 1 | /* |
1 | /* |
| 2 | util.C -- process management and other utility functions |
2 | util.C -- process management and other utility functions |
|
|
3 | Copyright (C) 2003-2005 Marc Lehmann <gvpe@schmorp.de> |
| 3 | |
4 | |
| 4 | Most of these are taken from tinc, see the AUTHORS file. |
5 | Some of these are taken from tinc, see the AUTHORS file. |
| 5 | |
6 | |
|
|
7 | This file is part of GVPE. |
|
|
8 | |
| 6 | This program is free software; you can redistribute it and/or modify |
9 | GVPE is free software; you can redistribute it and/or modify |
| 7 | it under the terms of the GNU General Public License as published by |
10 | it under the terms of the GNU General Public License as published by |
| 8 | the Free Software Foundation; either version 2 of the License, or |
11 | the Free Software Foundation; either version 2 of the License, or |
| 9 | (at your option) any later version. |
12 | (at your option) any later version. |
| 10 | |
13 | |
| 11 | This program is distributed in the hope that it will be useful, |
14 | This program is distributed in the hope that it will be useful, |
| 12 | but WITHOUT ANY WARRANTY; without even the implied warranty of |
15 | but WITHOUT ANY WARRANTY; without even the implied warranty of |
| 13 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
16 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| 14 | GNU General Public License for more details. |
17 | GNU General Public License for more details. |
| 15 | |
18 | |
| 16 | You should have received a copy of the GNU General Public License |
19 | You should have received a copy of the GNU General Public License |
| 17 | along with this program; if not, write to the Free Software |
20 | along with gvpe; if not, write to the Free Software |
| 18 | Foundation, Inc. 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA |
21 | Foundation, Inc. 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA |
| 19 | */ |
22 | */ |
| 20 | |
23 | |
| 21 | #include "config.h" |
24 | #include "config.h" |
| 22 | |
25 | |
| 23 | #include <cstdio> |
26 | #include <cstdio> |
|
|
27 | #include <cstdlib> |
| 24 | #include <cstring> |
28 | #include <cstring> |
| 25 | |
29 | |
| 26 | #include <errno.h> |
30 | #include <errno.h> |
| 27 | #include <signal.h> |
31 | #include <signal.h> |
| 28 | #include <sys/types.h> |
32 | #include <sys/types.h> |
|
|
33 | #include <sys/wait.h> |
| 29 | #include <unistd.h> |
34 | #include <unistd.h> |
| 30 | #include <time.h> |
35 | #include <time.h> |
| 31 | #include <sys/socket.h> |
|
|
| 32 | #include <netinet/in.h> |
|
|
| 33 | #include <arpa/inet.h> |
|
|
| 34 | |
36 | |
| 35 | #include <sys/mman.h> |
37 | #include "netcompat.h" |
| 36 | |
|
|
| 37 | #include <openssl/rand.h> |
|
|
| 38 | #include <openssl/rsa.h> |
|
|
| 39 | #include <openssl/pem.h> |
|
|
| 40 | #include <openssl/evp.h> |
|
|
| 41 | |
38 | |
| 42 | #include "gettext.h" |
39 | #include "gettext.h" |
| 43 | #include "pidfile.h" |
40 | #include "pidfile.h" |
| 44 | #include "dropin.h" |
41 | #include "dropin.h" |
| 45 | |
42 | |
| 46 | #include "global.h" |
43 | #include "global.h" |
| 47 | #include "conf.h" |
44 | #include "conf.h" |
|
|
45 | #include "util.h" |
| 48 | #include "slog.h" |
46 | #include "slog.h" |
| 49 | #include "protocol.h" |
|
|
| 50 | |
|
|
| 51 | time_t now; |
|
|
| 52 | |
47 | |
| 53 | int |
48 | int |
| 54 | write_pidfile (void) |
49 | write_pidfile (void) |
| 55 | { |
50 | { |
| 56 | int pid; |
51 | int pid; |
| 57 | |
52 | |
| 58 | pid = check_pid (pidfilename); |
53 | pid = check_pid (conf.pidfilename); |
| 59 | |
54 | |
| 60 | if (pid) |
55 | if (pid) |
| 61 | { |
56 | { |
| 62 | fprintf (stderr, _("A vped is already running with pid %d.\n"), pid); |
57 | fprintf (stderr, _("A gvpe daemon is already running with pid %d.\n"), pid); |
| 63 | return 1; |
58 | return 1; |
| 64 | } |
59 | } |
| 65 | |
60 | |
| 66 | /* if it's locked, write-protected, or whatever */ |
61 | /* if it's locked, write-protected, or whatever */ |
| 67 | if (!write_pid (pidfilename)) |
62 | if (!write_pid (conf.pidfilename)) |
| 68 | return 1; |
63 | return 1; |
| 69 | |
64 | |
| 70 | return 0; |
65 | return 0; |
| 71 | } |
66 | } |
| 72 | |
67 | |
| 73 | int |
68 | int |
| 74 | kill_other (int signal) |
69 | kill_other (int signal) |
| 75 | { |
70 | { |
| 76 | int pid; |
71 | int pid; |
| 77 | |
72 | |
| 78 | pid = read_pid (pidfilename); |
73 | pid = read_pid (conf.pidfilename); |
| 79 | |
74 | |
| 80 | if (!pid) |
75 | if (!pid) |
| 81 | { |
76 | { |
| 82 | fprintf (stderr, _("No other vped is running.\n")); |
77 | fprintf (stderr, _("No other gvpe daemon is running.\n")); |
| 83 | return 1; |
78 | return 1; |
| 84 | } |
79 | } |
| 85 | |
80 | |
| 86 | errno = 0; /* No error, sometimes errno is only changed on error */ |
81 | errno = 0; /* No error, sometimes errno is only changed on error */ |
| 87 | |
82 | |
| 88 | /* ESRCH is returned when no process with that pid is found */ |
83 | /* ESRCH is returned when no process with that pid is found */ |
| 89 | if (kill (pid, signal) && errno == ESRCH) |
84 | if (kill (pid, signal) && errno == ESRCH) |
| 90 | { |
85 | { |
| 91 | fprintf (stderr, _("The vped is no longer running. ")); |
86 | fprintf (stderr, _("The gvpe daemon is no longer running. ")); |
| 92 | |
87 | |
| 93 | fprintf (stderr, _("Removing stale lock file.\n")); |
88 | fprintf (stderr, _("Removing stale lock file.\n")); |
| 94 | remove_pid (pidfilename); |
89 | remove_pid (conf.pidfilename); |
| 95 | } |
90 | } |
| 96 | |
91 | |
| 97 | return 0; |
92 | return 0; |
| 98 | } |
93 | } |
| 99 | |
94 | |
| … | |
… | |
| 119 | return -1; |
114 | return -1; |
| 120 | } |
115 | } |
| 121 | |
116 | |
| 122 | /* Now UPDATE the pid in the pidfile, because we changed it... */ |
117 | /* Now UPDATE the pid in the pidfile, because we changed it... */ |
| 123 | |
118 | |
| 124 | if (!write_pid (pidfilename)) |
119 | if (!write_pid (conf.pidfilename)) |
| 125 | return -1; |
120 | return -1; |
| 126 | |
121 | |
| 127 | log_to (LOGTO_SYSLOG); |
122 | log_to (LOGTO_SYSLOG); |
| 128 | } |
123 | } |
| 129 | else |
124 | else |
| 130 | log_to (LOGTO_SYSLOG | LOGTO_STDERR); |
125 | log_to (LOGTO_SYSLOG | LOGTO_STDERR); |
| 131 | |
126 | |
| 132 | slog (L_INFO, _("vped %s (%s %s) starting"), VERSION, __DATE__, __TIME__); |
127 | slog (L_INFO, _("gvpe daemon %s (%s %s) starting"), VERSION, __DATE__, __TIME__); |
| 133 | |
128 | |
| 134 | return 0; |
129 | return 0; |
| 135 | } |
130 | } |
| 136 | |
131 | |
|
|
132 | bool run_script (const run_script_cb &cb, bool wait) |
|
|
133 | { |
|
|
134 | if (wait) |
|
|
135 | signal (SIGCHLD, SIG_DFL); // this is extremely ugly, but I did not feel like implementing a complete wait() event logic. It's easier to write this long comment to make your editor happy. |
|
|
136 | |
|
|
137 | int pid = fork (); |
|
|
138 | |
|
|
139 | if (pid == 0) |
|
|
140 | { |
|
|
141 | execl ("/bin/sh", "/bin/sh", "-c", cb (), (char *) 0); |
|
|
142 | exit (EXIT_FAILURE); |
|
|
143 | } |
|
|
144 | else if (pid > 0) |
|
|
145 | { |
|
|
146 | if (wait) |
|
|
147 | { |
|
|
148 | int status; |
|
|
149 | int res = waitpid (pid, &status, 0); |
|
|
150 | |
|
|
151 | signal (SIGCHLD, SIG_IGN); |
|
|
152 | |
|
|
153 | if (res < 0) |
|
|
154 | { |
|
|
155 | slog (L_WARN, _("waiting for an external command failed: %s."), |
|
|
156 | strerror (errno)); |
|
|
157 | return false; |
|
|
158 | } |
|
|
159 | else if (!WIFEXITED (status) || WEXITSTATUS (status) != EXIT_SUCCESS) |
|
|
160 | { |
|
|
161 | slog (L_WARN, _("external command returned with exit status %d (%04x)."), |
|
|
162 | WEXITSTATUS (status), status); |
|
|
163 | return false; |
|
|
164 | } |
|
|
165 | } |
|
|
166 | } |
|
|
167 | else |
|
|
168 | { |
|
|
169 | slog (L_ERR, _("unable to fork, exiting: %s"), strerror (errno)); |
|
|
170 | exit (EXIT_FAILURE); |
|
|
171 | } |
|
|
172 | |
|
|
173 | return true; |
|
|
174 | } |
|
|
175 | |
|
|
176 | #if ENABLE_HTTP_PROXY |
|
|
177 | // works like strdup |
|
|
178 | u8 * |
|
|
179 | base64_encode (const u8 *data, unsigned int len) |
|
|
180 | { |
|
|
181 | const static char base64[65] = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"; |
|
|
182 | |
|
|
183 | unsigned int t, i; |
|
|
184 | const u8 *end = data + len; |
|
|
185 | u8 *res = new u8 [4 * ((len + 2) / 3) + 1]; |
|
|
186 | u8 *out = res; |
|
|
187 | |
|
|
188 | while (data <= end - 3) |
|
|
189 | { |
|
|
190 | t = (((data[0] << 8) | data[1]) << 8) | data[2]; |
|
|
191 | data += 3; |
|
|
192 | |
|
|
193 | *out++ = base64[(t >> 18) & 0x3f]; |
|
|
194 | *out++ = base64[(t >> 12) & 0x3f]; |
|
|
195 | *out++ = base64[(t >> 6) & 0x3f]; |
|
|
196 | *out++ = base64[(t ) & 0x3f]; |
|
|
197 | } |
|
|
198 | |
|
|
199 | for (t = 0, i = 0; data < end; i++) |
|
|
200 | t = (t << 8) | *data++; |
|
|
201 | |
|
|
202 | switch (i) |
|
|
203 | { |
|
|
204 | case 2: |
|
|
205 | *out++ = base64[(t >> 10) & 0x3f]; |
|
|
206 | *out++ = base64[(t >> 4) & 0x3f]; |
|
|
207 | *out++ = base64[(t << 2) & 0x3f]; |
|
|
208 | *out++ = '='; |
|
|
209 | break; |
|
|
210 | case 1: |
|
|
211 | *out++ = base64[(t >> 2) & 0x3f]; |
|
|
212 | *out++ = base64[(t << 4) & 0x3f]; |
|
|
213 | *out++ = '='; |
|
|
214 | *out++ = '='; |
|
|
215 | break; |
|
|
216 | } |
|
|
217 | |
|
|
218 | *out++ = 0; |
|
|
219 | |
|
|
220 | return res; |
|
|
221 | } |
|
|
222 | #endif |
|
|
223 | |
| 137 | void |
224 | void |
| 138 | make_names (void) |
225 | id2mac (unsigned int id, void *m) |
| 139 | { |
226 | { |
| 140 | if (!pidfilename) |
227 | mac &p = *(mac *)m; |
| 141 | pidfilename = LOCALSTATEDIR "/run/vped.pid"; |
|
|
| 142 | |
228 | |
| 143 | if (!confbase) |
|
|
| 144 | asprintf (&confbase, "%s/vpe", CONFDIR); |
|
|
| 145 | } |
|
|
| 146 | |
|
|
| 147 | void pkt_queue::put (tap_packet *p) |
|
|
| 148 | { |
|
|
| 149 | if (queue[i]) |
|
|
| 150 | { |
|
|
| 151 | delete queue[i]; |
|
|
| 152 | j = (j + 1) % QUEUEDEPTH; |
|
|
| 153 | } |
|
|
| 154 | |
|
|
| 155 | queue[i] = p; |
|
|
| 156 | |
|
|
| 157 | i = (i + 1) % QUEUEDEPTH; |
|
|
| 158 | } |
|
|
| 159 | |
|
|
| 160 | tap_packet *pkt_queue::get () |
|
|
| 161 | { |
|
|
| 162 | tap_packet *p = queue[j]; |
|
|
| 163 | |
|
|
| 164 | if (p) |
229 | if (id) |
| 165 | { |
|
|
| 166 | queue[j] = 0; |
|
|
| 167 | j = (j + 1) % QUEUEDEPTH; |
|
|
| 168 | } |
|
|
| 169 | |
|
|
| 170 | return p; |
|
|
| 171 | } |
|
|
| 172 | |
|
|
| 173 | pkt_queue::pkt_queue () |
|
|
| 174 | { |
|
|
| 175 | memset (queue, 0, sizeof (queue)); |
|
|
| 176 | i = 0; |
|
|
| 177 | j = 0; |
|
|
| 178 | } |
|
|
| 179 | |
|
|
| 180 | pkt_queue::~pkt_queue () |
|
|
| 181 | { |
|
|
| 182 | for (i = QUEUEDEPTH; --i > 0; ) |
|
|
| 183 | delete queue[i]; |
|
|
| 184 | } |
|
|
| 185 | |
|
|
| 186 | sockinfo::operator const char *() |
|
|
| 187 | { |
|
|
| 188 | static char hostport[15 + 1 + 5 + 1]; |
|
|
| 189 | in_addr ia = { host }; |
|
|
| 190 | |
|
|
| 191 | sprintf (hostport, "%.15s:%d", inet_ntoa (ia), ntohs (port) & 0xffff); |
|
|
| 192 | |
|
|
| 193 | return hostport; |
|
|
| 194 | } |
|
|
| 195 | |
|
|
| 196 | bool u32_rate_limiter::can (u32 host) |
|
|
| 197 | { |
|
|
| 198 | iterator i; |
|
|
| 199 | |
|
|
| 200 | for (i = begin (); i != end (); ) |
|
|
| 201 | if (i->second <= now) |
|
|
| 202 | { |
230 | { |
| 203 | erase (i); |
231 | p[0] = 0xfe; |
| 204 | i = begin (); |
232 | p[1] = 0xfd; |
|
|
233 | p[2] = 0x80; |
|
|
234 | p[3] = 0x00; |
|
|
235 | p[4] = id >> 8; |
|
|
236 | p[5] = id; |
| 205 | } |
237 | } |
| 206 | else |
238 | else |
| 207 | ++i; |
239 | { |
| 208 | |
240 | p[0] = 0xff; |
| 209 | i = find (host); |
241 | p[1] = 0xff; |
| 210 | |
242 | p[2] = 0xff; |
| 211 | if (i != end ()) |
243 | p[3] = 0xff; |
| 212 | return false; |
244 | p[4] = 0xff; |
| 213 | |
245 | p[5] = 0xff; |
| 214 | insert (value_type (host, now + every)); |
246 | } |
| 215 | |
|
|
| 216 | return true; |
|
|
| 217 | } |
247 | } |
| 218 | |
248 | |
