-
-
Notifications
You must be signed in to change notification settings - Fork 63
/
ipc.c
233 lines (198 loc) · 5.42 KB
/
ipc.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
/* Daemon IPC API
*
* Copyright (C) 2001-2005 Carsten Schill <carsten@cschill.de>
* Copyright (C) 2006-2009 Julien BLACHE <jb@jblache.org>
* Copyright (C) 2009 Todd Hayton <todd.hayton@gmail.com>
* Copyright (C) 2009-2011 Micha Lenk <micha@debian.org>
* Copyright (C) 2011-2021 Joachim Wiberg <troglobit@gmail.com>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
*/
#include <errno.h>
#include <stddef.h>
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <netinet/in.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <sys/un.h>
#include "ipc.h"
#include "log.h"
#include "msg.h"
#include "util.h"
#include "socket.h"
#include "mroute.h"
extern char *ident;
static struct sockaddr_un sun;
static int ipc_socket = -1;
/* Receive command from the smcroutectl */
static void ipc_read(int sd)
{
char buf[MX_CMDPKT_SZ];
struct ipc_msg *msg;
memset(buf, 0, sizeof(buf));
msg = (struct ipc_msg *)ipc_receive(sd, buf, sizeof(buf));
if (!msg) {
/* Skip logging client disconnects */
if (errno != ECONNRESET)
smclog(LOG_WARNING, "Failed receiving IPC message from client: %s", strerror(errno));
return;
}
if (msg_do(sd, msg)) {
if (EINVAL == errno)
smclog(LOG_WARNING, "Unknown or malformed IPC message '%c' from client.", msg->cmd);
errno = 0;
ipc_send(sd, log_message, strlen(log_message) + 1);
} else {
ipc_send(sd, "", 1);
}
free(msg);
}
static void ipc_accept(int sd, void *arg)
{
int client;
socklen_t socklen = 0;
(void)arg;
client = accept(sd, NULL, &socklen);
if (client < 0)
return;
ipc_read(client);
close(client);
}
/**
* ipc_init - Initialise an IPC server socket
* @path: Path to UNIX domain socket
*
* Returns:
* The socket descriptor, or -1 on error with @errno set.
*/
int ipc_init(char *path)
{
socklen_t len;
int sd;
if (strlen(RUNSTATEDIR) + strlen(ident) + 11 >= sizeof(sun.sun_path)) {
smclog(LOG_ERR, "Too long socket path, max %zd chars", sizeof(sun.sun_path));
return -1;
}
sd = socket_create(AF_UNIX, SOCK_STREAM, 0, ipc_accept, NULL);
if (sd < 0) {
smclog(LOG_WARNING, "Failed creating IPC socket, client disabled: %s", strerror(errno));
return -1;
}
#ifdef HAVE_SOCKADDR_UN_SUN_LEN
sun.sun_len = 0; /* <- correct length is set by the OS */
#endif
sun.sun_family = AF_UNIX;
strlcpy(sun.sun_path, path, sizeof(sun.sun_path));
unlink(sun.sun_path);
smclog(LOG_DEBUG, "Binding IPC socket to %s", sun.sun_path);
len = offsetof(struct sockaddr_un, sun_path) + strlen(sun.sun_path);
if (bind(sd, (struct sockaddr *)&sun, len) < 0 || listen(sd, 1)) {
smclog(LOG_WARNING, "Failed binding IPC socket, client disabled: %s", strerror(errno));
socket_close(sd);
return -1;
}
ipc_socket = sd;
return sd;
}
/**
* ipc_exit - Tear down and cleanup IPC communication.
*/
void ipc_exit(void)
{
if (ipc_socket >= 0)
socket_close(ipc_socket);
unlink(sun.sun_path);
}
/**
* ipc_send - Send message to peer
* @sd: Client socket from ipc_accept()
* @buf: Message to send
* @len: Message length in bytes of @buf
*
* Sends the IPC message in @buf of the size @len to the peer.
*
* Returns:
* Number of bytes successfully sent, or -1 with @errno on failure.
*/
int ipc_send(int sd, char *buf, size_t len)
{
if (write(sd, buf, len) != (ssize_t)len)
return -1;
return len;
}
/**
* ipc_server_read - Read IPC message from client
* @sd: Client socket from ipc_accept()
* @buf: Buffer for message
* @len: Size of @buf in bytes
*
* Reads a message from the IPC socket and stores in @buf, respecting
* the size @len. Connects and resets connection as necessary.
*
* Returns:
* Pointer to a successfuly read command packet in @buf, or %NULL on error.
*/
void *ipc_receive(int sd, char *buf, size_t len)
{
size_t sz;
sz = recv(sd, buf, len - 1, 0);
if (!sz) {
errno = ECONNRESET;
return NULL;
}
/* successful read */
if (sz >= sizeof(struct ipc_msg)) {
struct ipc_msg *msg = (struct ipc_msg *)buf;
/* Make sure to always have at least one NUL, for strlen() */
buf[sz] = 0;
if (sz == msg->len) {
char *ptr;
size_t i, count;
/* Upper bound: smcroutectl add in1 source group out1 out2 .. out32 */
count = msg->count;
if (count > (MAXVIFS + 3)) {
errno = EINVAL;
return NULL;
}
msg = malloc(sizeof(struct ipc_msg) + msg->count * sizeof(char *));
if (!msg)
return NULL;
memcpy(msg, buf, sizeof(struct ipc_msg));
ptr = buf + offsetof(struct ipc_msg, argv);
for (i = 0; i < count; i++) {
/* Verify ptr, attacker may set too large msg->count */
if (ptr >= (buf + len)) {
free(msg);
errno = EBADMSG;
return NULL;
}
msg->argv[i] = ptr;
ptr += strlen(ptr) + 1;
}
msg->count = count;
return msg;
}
}
errno = EAGAIN;
return NULL;
}
/**
* Local Variables:
* indent-tabs-mode: t
* c-file-style: "linux"
* End:
*/