acl.c 9.59 KB
Newer Older
1
2
3
/*****************************************************************************
 * acl.c:
 *****************************************************************************
4
 * Copyright © 2005-2007 Rémi Denis-Courmont
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
 * $Id$
 *
 * Authors: Rémi Denis-Courmont <rem # videolan.org>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
dionoea's avatar
dionoea committed
21
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston MA 02110-1301, USA.
22
23
24
25
26
 *****************************************************************************/

/*****************************************************************************
 * Preamble
 *****************************************************************************/
27
28
29
30
#ifdef HAVE_CONFIG_H
# include "config.h"
#endif

31
#include <vlc_common.h>
32

33
#include <ctype.h>
zorglub's avatar
zorglub committed
34
#include <vlc_acl.h>
35

zorglub's avatar
zorglub committed
36
37
#include <vlc_network.h>
#include <vlc_charset.h>
38
39
40
41
42
43
44

/* FIXME: rwlock on acl, but libvlc doesn't implement rwlock */
typedef struct vlc_acl_entry_t
{
    uint8_t    host[17];
    uint8_t    i_bytes_match;
    uint8_t    i_bits_mask;
45
    bool b_allow;
46
47
48
49
50
51
52
} vlc_acl_entry_t;

struct vlc_acl_t
{
    vlc_object_t    *p_owner;
    unsigned         i_size;
    vlc_acl_entry_t *p_entries;
53
    bool       b_allow_default;
54
55
56
57
58
};

static int ACL_Resolve( vlc_object_t *p_this, uint8_t *p_bytes,
                        const char *psz_ip )
{
Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
59
    struct addrinfo hints, *res;
60
61
    int i_family;

Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
62
    memset (&hints, 0, sizeof (hints));
63
64
65
66
67
68
69
70
    hints.ai_socktype = SOCK_STREAM; /* doesn't matter */
    hints.ai_flags = AI_NUMERICHOST;

    if( vlc_getaddrinfo( p_this, psz_ip, 0, &hints, &res ) )
    {
        msg_Err( p_this, "invalid IP address %s", psz_ip );
        return -1;
    }
71

72
73
74
75
76
77
78
79
    p_bytes[16] = 0; /* avoids overflowing when i_bytes_match = 16 */

    i_family = res->ai_addr->sa_family;
    switch( i_family )
    {
        case AF_INET:
        {
            struct sockaddr_in *addr;
80

81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
            addr = (struct sockaddr_in *)res->ai_addr;
            memset( p_bytes, 0, 12 );
            memcpy( p_bytes + 12, &addr->sin_addr, 4 );
            break;
        }

#if defined (HAVE_GETADDRINFO) || defined (WIN32)
        /* unfortunately many people define AF_INET6
           though they don't have struct sockaddr_in6 */
        case AF_INET6:
        {
            struct sockaddr_in6 *addr;

            addr = (struct sockaddr_in6 *)res->ai_addr;
            memcpy( p_bytes, &addr->sin6_addr, 16 );
            break;
        }
#endif

        default:
zorglub's avatar
zorglub committed
101
            msg_Err( p_this, "unknown address family" );
102
103
104
105
106
107
108
109
110
            vlc_freeaddrinfo( res );
            return -1;
    }

    vlc_freeaddrinfo( res );
    return i_family;
}


Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
111
112
113
114
115
116
117
118
119
/**
 * Check if a given address passes an access control list.
 *
 * @param p_acl pre-existing ACL to match the address against
 * @param psz_ip numeric IPv4/IPv6 address
 *
 * @return 0 if the first matching ACL entry is an access grant,
 * 1 if the first matching ACL entry is a denial of access,
 * -1 on error.
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
 */
int ACL_Check( vlc_acl_t *p_acl, const char *psz_ip )
{
    const vlc_acl_entry_t *p_cur, *p_end;
    uint8_t host[17];

    if( p_acl == NULL )
        return -1;

    p_cur = p_acl->p_entries;
    p_end = p_cur + p_acl->i_size;

    if( ACL_Resolve( p_acl->p_owner, host, psz_ip ) < 0 )
        return -1;

    while (p_cur < p_end)
    {
        unsigned i;

        i = p_cur->i_bytes_match;
        if( (memcmp( p_cur->host, host, i ) == 0)
         && (((p_cur->host[i] ^ host[i]) & p_cur->i_bits_mask) == 0) )
            return !p_cur->b_allow;

        p_cur++;
    }

    return !p_acl->b_allow_default;
}

Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
150
151
152
153
/**
 * Adds an item to an ACL.
 * Items are always matched in the same order as they are added.
 */
154
int ACL_AddNet( vlc_acl_t *p_acl, const char *psz_ip, int i_len,
155
                bool b_allow )
156
157
158
159
160
161
162
163
164
165
166
167
168
{
    vlc_acl_entry_t *p_ent;
    unsigned i_size;
    div_t d;
    int i_family;

    i_size = p_acl->i_size;
    p_ent = (vlc_acl_entry_t *)realloc( p_acl->p_entries,
                                        ++p_acl->i_size * sizeof( *p_ent ) );

    if( p_ent == NULL )
        return -1;

169
170
171
    p_acl->p_entries = p_ent;
    p_ent += i_size;

172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
    i_family = ACL_Resolve( p_acl->p_owner, p_ent->host, psz_ip );
    if( i_family < 0 )
    {
        /*
         * I'm lazy : memory space will be re-used in the next ACL_Add call...
         * or not.
         */
        p_acl->i_size--;
        return -1;
    }

    if( i_len >= 0 )
    {
        if( i_family == AF_INET )
            i_len += 96;

        if( i_len > 128 )
            i_len = 128;
    }
    else
        i_len = 128; /* ACL_AddHost */

    d = div( i_len, 8 );
    p_ent->i_bytes_match = d.quot;
    p_ent->i_bits_mask = 0xff << (8 - d.rem);

    p_ent->b_allow = b_allow;
    return 0;
}

202
#undef ACL_Create
Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
203
204
205
/**
 * Creates an empty ACL.
 *
206
 * @param b_allow whether to grant (true) or deny (false) access
Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
207
208
209
210
 * by default (ie if none of the ACL entries matched).
 *
 * @return an ACL object. NULL in case of error.
 */
211
vlc_acl_t *ACL_Create( vlc_object_t *p_this, bool b_allow )
212
213
214
215
216
217
218
{
    vlc_acl_t *p_acl;

    p_acl = (vlc_acl_t *)malloc( sizeof( *p_acl ) );
    if( p_acl == NULL )
        return NULL;

219
    vlc_object_hold( p_this );
220
221
222
223
    p_acl->p_owner = p_this;
    p_acl->i_size = 0;
    p_acl->p_entries = NULL;
    p_acl->b_allow_default = b_allow;
224

225
226
227
    return p_acl;
}

228
#undef ACL_Duplicate
Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
229
230
231
232
233
234
235
236
/**
 * Perform a deep copy of an existing ACL.
 *
 * @param p_this object to attach the copy to.
 * @param p_acl ACL object to be copied.
 *
 * @return a new ACL object, or NULL on error.
 */
237
vlc_acl_t *ACL_Duplicate( vlc_object_t *p_this, const vlc_acl_t *p_acl )
238
239
240
241
242
243
244
245
246
247
{
    vlc_acl_t *p_dupacl;

    if( p_acl == NULL )
        return NULL;

    p_dupacl = (vlc_acl_t *)malloc( sizeof( *p_dupacl ) );
    if( p_dupacl == NULL )
        return NULL;

248
    if( p_acl->i_size )
249
    {
250
251
252
253
254
255
256
257
258
259
260
261
262
263
        p_dupacl->p_entries = (vlc_acl_entry_t *)
            malloc( p_acl->i_size * sizeof( vlc_acl_entry_t ) );

        if( p_dupacl->p_entries == NULL )
        {
            free( p_dupacl );
            return NULL;
        }

        memcpy( p_dupacl->p_entries, p_acl->p_entries,
                p_acl->i_size * sizeof( vlc_acl_entry_t ) );
    }
    else
        p_dupacl->p_entries = NULL;
264

265
    vlc_object_hold( p_this );
266
267
    p_dupacl->p_owner = p_this;
    p_dupacl->i_size = p_acl->i_size;
268
269
    p_dupacl->b_allow_default = p_acl->b_allow_default;

270
271
272
273
    return p_dupacl;
}


Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
274
275
276
/**
 * Releases all resources associated with an ACL object.
 */
277
278
279
280
void ACL_Destroy( vlc_acl_t *p_acl )
{
    if( p_acl != NULL )
    {
ivoire's avatar
ivoire committed
281
        free( p_acl->p_entries );
282
283
284
285
286
287
        vlc_object_release( p_acl->p_owner );
        free( p_acl );
    }
}


Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
288
289
290
291
292
293
294
295
/**
 * Reads ACL entries from a file.
 *
 * @param p_acl ACL object in which to insert parsed entries.
 * @param psz_patch filename from which to parse entries.
 *
 * @return 0 on success, -1 on error.
 */
296
297
298
int ACL_LoadFile( vlc_acl_t *p_acl, const char *psz_path )
{
    FILE *file;
299

300
301
302
    if( p_acl == NULL )
        return -1;

303
    file = utf8_fopen( psz_path, "r" );
304
305
306
307
308
309
310
311
312
    if( file == NULL )
        return -1;

    msg_Dbg( p_acl->p_owner, "find .hosts in dir=%s", psz_path );

    while( !feof( file ) )
    {
        char line[1024], *psz_ip, *ptr;

Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
313
        if( fgets( line, sizeof( line ), file ) == NULL )
314
315
316
        {
            if( ferror( file ) )
            {
317
                msg_Err( p_acl->p_owner, "error reading %s : %m", psz_path );
318
319
320
321
322
                goto error;
            }
            continue;
        }

Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
323
        /* fgets() is cool : never overflow, always nul-terminate */
324
325
        psz_ip = line;

Rémi Denis-Courmont's avatar
Rémi Denis-Courmont committed
326
        /* skips blanks - cannot overflow given '\0' is not space */
327
        while( isspace( *psz_ip ) )
328
329
            psz_ip++;

330
331
332
        if( *psz_ip == '\0' ) /* empty/blank line */
            continue;

333
        ptr = strchr( psz_ip, '\n' );
334
        if( ptr == NULL && !feof(file) )
335
        {
336
            msg_Warn( p_acl->p_owner, "skipping overly long line in %s",
337
338
339
                      psz_path);
            do
            {
340
                if( fgets( line, sizeof( line ), file ) == NULL )
341
                {
342
343
                     if( ferror( file ) )
                     {
344
345
                         msg_Err( p_acl->p_owner, "error reading %s : %m",
                                  psz_path );
346
347
                     }
                     goto error;
348
349
350
351
352
353
354
                }
            }
            while( strchr( line, '\n' ) == NULL);

            continue; /* skip unusable line */
        }

355
356
        /* look for first space, CR, LF, etc. or comment character */
        for( ptr = psz_ip; ( *ptr!='#' ) && !isspace( *ptr ) && *ptr; ++ptr );
357
358
359

        *ptr = '\0';

360
361
362
363
        /* skip lines without usable information */
        if( ptr == psz_ip )
            continue;

364
365
366
367
368
369
370
        msg_Dbg( p_acl->p_owner, "restricted to %s", psz_ip );

        ptr = strchr( psz_ip, '/' );
        if( ptr != NULL )
            *ptr++ = '\0'; /* separate address from mask length */

        if( (ptr != NULL)
371
372
            ? ACL_AddNet( p_acl, psz_ip, atoi( ptr ), true )
            : ACL_AddHost( p_acl, psz_ip, true ) )
373
374
        {
            msg_Err( p_acl->p_owner, "cannot add ACL from %s", psz_path );
375
            continue;
376
377
378
379
380
381
382
383
384
385
386
        }
    }

    fclose( file );
    return 0;

error:
    fclose( file );
    return -1;
}