/*
- * Copyright (c) 1996, 1998-2005, 2007-2010
- * Todd C. Miller <Todd.Miller@courtesan.com>
+ * Copyright (c) 2010 Todd C. Miller <Todd.Miller@courtesan.com>
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- *
- * Sponsored in part by the Defense Advanced Research Projects
- * Agency (DARPA) and Air Force Research Laboratory, Air Force
- * Materiel Command, USAF, under agreement number F39502-99-1-0512.
*/
-/*
- * Suppress a warning w/ gcc on Digital UN*X.
- * The system headers should really do this....
- */
-#if defined(__osf__) && !defined(__cplusplus)
-struct mbuf;
-struct rtentry;
-#endif
-
#include <config.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <sys/param.h>
-#include <sys/time.h>
-#include <sys/ioctl.h>
-#if defined(HAVE_SYS_SOCKIO_H) && !defined(SIOCGIFCONF)
-# include <sys/sockio.h>
-#endif
#include <stdio.h>
#ifdef STDC_HEADERS
# include <stdlib.h>
#ifdef HAVE_UNISTD_H
# include <unistd.h>
#endif /* HAVE_UNISTD_H */
+#include <netinet/in.h>
+#include <arpa/inet.h>
#include <netdb.h>
#include <errno.h>
-#ifdef _ISC
-# include <sys/stream.h>
-# include <sys/sioctl.h>
-# include <sys/stropts.h>
-# define STRSET(cmd, param, len) {strioctl.ic_cmd=(cmd);\
- strioctl.ic_dp=(param);\
- strioctl.ic_timout=0;\
- strioctl.ic_len=(len);}
-#endif /* _ISC */
-#ifdef _MIPS
-# include <net/soioctl.h>
-#endif /* _MIPS */
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <net/if.h>
-#ifdef HAVE_GETIFADDRS
-# include <ifaddrs.h>
-#endif
#include "sudoers.h"
#include "interfaces.h"
-/* Minix apparently lacks IFF_LOOPBACK */
-#ifndef IFF_LOOPBACK
-# define IFF_LOOPBACK 0
-#endif
-
-#ifdef HAVE_GETIFADDRS
-
/*
- * Allocate and fill in the interfaces global variable with the
- * machine's ip addresses and netmasks.
+ * Parse a space-delimited list of IP address/netmask pairs and
+ * store in a list of interface structures.
*/
void
-load_interfaces(void)
+set_interfaces(const char *ai)
{
- struct ifaddrs *ifa, *ifaddrs;
- struct sockaddr_in *sin;
-#ifdef HAVE_IN6_ADDR
- struct sockaddr_in6 *sin6;
-#endif
- int i;
+ char *addrinfo, *addr, *mask;
+ struct interface *ifp;
- if (getifaddrs(&ifaddrs))
- return;
-
- /* Allocate space for the interfaces list. */
- for (ifa = ifaddrs; ifa != NULL; ifa = ifa -> ifa_next) {
- /* Skip interfaces marked "down" and "loopback". */
- if (ifa->ifa_addr == NULL || !ISSET(ifa->ifa_flags, IFF_UP) ||
- ISSET(ifa->ifa_flags, IFF_LOOPBACK))
+ addrinfo = estrdup(ai);
+ for (addr = strtok(addrinfo, " \t"); addr != NULL; addr = strtok(NULL, " \t")) {
+ /* Separate addr and mask. */
+ if ((mask = strchr(addr, '/')) == NULL)
continue;
+ *mask++ = '\0';
- switch(ifa->ifa_addr->sa_family) {
- case AF_INET:
+ /* Parse addr and store in list. */
+ ifp = emalloc(sizeof(*ifp));
+ if (strchr(addr, ':')) {
+ /* IPv6 */
#ifdef HAVE_IN6_ADDR
- case AF_INET6:
+ ifp->family = AF_INET6;
+ if (inet_pton(AF_INET6, addr, &ifp->addr.ip6) != 1 ||
+ inet_pton(AF_INET6, mask, &ifp->netmask.ip6) != 1)
#endif
- num_interfaces++;
- break;
- }
- }
- if (num_interfaces == 0)
- return;
- interfaces =
- (struct interface *) emalloc2(num_interfaces, sizeof(struct interface));
-
- /* Store the ip addr / netmask pairs. */
- for (ifa = ifaddrs, i = 0; ifa != NULL; ifa = ifa -> ifa_next) {
- /* Skip interfaces marked "down" and "loopback". */
- if (ifa->ifa_addr == NULL || !ISSET(ifa->ifa_flags, IFF_UP) ||
- ISSET(ifa->ifa_flags, IFF_LOOPBACK))
+ {
+ efree(ifp);
continue;
-
- switch(ifa->ifa_addr->sa_family) {
- case AF_INET:
- sin = (struct sockaddr_in *)ifa->ifa_addr;
- if (sin == NULL)
- continue;
- memcpy(&interfaces[i].addr, &sin->sin_addr,
- sizeof(struct in_addr));
- sin = (struct sockaddr_in *)ifa->ifa_netmask;
- if (sin == NULL)
- continue;
- memcpy(&interfaces[i].netmask, &sin->sin_addr,
- sizeof(struct in_addr));
- interfaces[i].family = AF_INET;
- i++;
- break;
-#ifdef HAVE_IN6_ADDR
- case AF_INET6:
- sin6 = (struct sockaddr_in6 *)ifa->ifa_addr;
- if (sin6 == NULL)
- continue;
- memcpy(&interfaces[i].addr, &sin6->sin6_addr,
- sizeof(struct in6_addr));
- sin6 = (struct sockaddr_in6 *)ifa->ifa_netmask;
- if (sin6 == NULL)
- continue;
- memcpy(&interfaces[i].netmask, &sin6->sin6_addr,
- sizeof(struct in6_addr));
- interfaces[i].family = AF_INET6;
- i++;
- break;
-#endif /* HAVE_IN6_ADDR */
- }
- }
-#ifdef HAVE_FREEIFADDRS
- freeifaddrs(ifaddrs);
-#else
- efree(ifaddrs);
-#endif
-}
-
-#elif defined(SIOCGIFCONF) && !defined(STUB_LOAD_INTERFACES)
-
-/*
- * Allocate and fill in the interfaces global variable with the
- * machine's ip addresses and netmasks.
- */
-void
-load_interfaces(void)
-{
- struct ifconf *ifconf;
- struct ifreq *ifr, ifr_tmp;
- struct sockaddr_in *sin;
- int sock, n, i;
- size_t len = sizeof(struct ifconf) + BUFSIZ;
- char *previfname = "", *ifconf_buf = NULL;
-#ifdef _ISC
- struct strioctl strioctl;
-#endif /* _ISC */
-
- sock = socket(AF_INET, SOCK_DGRAM, 0);
- if (sock < 0)
- error(1, "cannot open socket");
-
- /*
- * Get interface configuration or return (leaving num_interfaces == 0)
- */
- for (;;) {
- ifconf_buf = erealloc(ifconf_buf, len);
- ifconf = (struct ifconf *) ifconf_buf;
- ifconf->ifc_len = len - sizeof(struct ifconf);
- ifconf->ifc_buf = (caddr_t) (ifconf_buf + sizeof(struct ifconf));
-
-#ifdef _ISC
- STRSET(SIOCGIFCONF, (caddr_t) ifconf, len);
- if (ioctl(sock, I_STR, (caddr_t) &strioctl) < 0) {
-#else
- /* Note that some kernels return EINVAL if the buffer is too small */
- if (ioctl(sock, SIOCGIFCONF, (caddr_t) ifconf) < 0 && errno != EINVAL) {
-#endif /* _ISC */
- efree(ifconf_buf);
- (void) close(sock);
- return;
- }
-
- /* Break out of loop if we have a big enough buffer. */
- if (ifconf->ifc_len + sizeof(struct ifreq) < len)
- break;
- len += BUFSIZ;
- }
-
- /* Allocate space for the maximum number of interfaces that could exist. */
- if ((n = ifconf->ifc_len / sizeof(struct ifreq)) == 0)
- return;
- interfaces = (struct interface *) emalloc2(n, sizeof(struct interface));
-
- /* For each interface, store the ip address and netmask. */
- for (i = 0; i < ifconf->ifc_len; ) {
- /* Get a pointer to the current interface. */
- ifr = (struct ifreq *) &ifconf->ifc_buf[i];
-
- /* Set i to the subscript of the next interface. */
- i += sizeof(struct ifreq);
-#ifdef HAVE_SA_LEN
- if (ifr->ifr_addr.sa_len > sizeof(ifr->ifr_addr))
- i += ifr->ifr_addr.sa_len - sizeof(struct sockaddr);
-#endif /* HAVE_SA_LEN */
-
- /* Skip duplicates and interfaces with NULL addresses. */
- sin = (struct sockaddr_in *) &ifr->ifr_addr;
- if (sin->sin_addr.s_addr == 0 ||
- strncmp(previfname, ifr->ifr_name, sizeof(ifr->ifr_name) - 1) == 0)
- continue;
-
- if (ifr->ifr_addr.sa_family != AF_INET)
- continue;
-
-#ifdef SIOCGIFFLAGS
- zero_bytes(&ifr_tmp, sizeof(ifr_tmp));
- strncpy(ifr_tmp.ifr_name, ifr->ifr_name, sizeof(ifr_tmp.ifr_name) - 1);
- if (ioctl(sock, SIOCGIFFLAGS, (caddr_t) &ifr_tmp) < 0)
-#endif
- ifr_tmp = *ifr;
-
- /* Skip interfaces marked "down" and "loopback". */
- if (!ISSET(ifr_tmp.ifr_flags, IFF_UP) ||
- ISSET(ifr_tmp.ifr_flags, IFF_LOOPBACK))
- continue;
-
- sin = (struct sockaddr_in *) &ifr->ifr_addr;
- interfaces[num_interfaces].addr.ip4.s_addr = sin->sin_addr.s_addr;
-
- /* Stash the name of the interface we saved. */
- previfname = ifr->ifr_name;
-
- /* Get the netmask. */
- zero_bytes(&ifr_tmp, sizeof(ifr_tmp));
- strncpy(ifr_tmp.ifr_name, ifr->ifr_name, sizeof(ifr_tmp.ifr_name) - 1);
-#ifdef SIOCGIFNETMASK
-#ifdef _ISC
- STRSET(SIOCGIFNETMASK, (caddr_t) &ifr_tmp, sizeof(ifr_tmp));
- if (ioctl(sock, I_STR, (caddr_t) &strioctl) == 0) {
-#else
- if (ioctl(sock, SIOCGIFNETMASK, (caddr_t) &ifr_tmp) == 0) {
-#endif /* _ISC */
- sin = (struct sockaddr_in *) &ifr_tmp.ifr_addr;
-
- interfaces[num_interfaces].netmask.ip4.s_addr = sin->sin_addr.s_addr;
+ }
} else {
-#else
- {
-#endif /* SIOCGIFNETMASK */
- if (IN_CLASSC(interfaces[num_interfaces].addr.ip4.s_addr))
- interfaces[num_interfaces].netmask.ip4.s_addr = htonl(IN_CLASSC_NET);
- else if (IN_CLASSB(interfaces[num_interfaces].addr.ip4.s_addr))
- interfaces[num_interfaces].netmask.ip4.s_addr = htonl(IN_CLASSB_NET);
- else
- interfaces[num_interfaces].netmask.ip4.s_addr = htonl(IN_CLASSA_NET);
+ /* IPv4 */
+ ifp->family = AF_INET6;
+ ifp->addr.ip4.s_addr = inet_addr(addr);
+ ifp->netmask.ip4.s_addr = inet_addr(mask);
+ if (ifp->addr.ip4.s_addr == (in_addr_t)-1 ||
+ ifp->netmask.ip4.s_addr == (in_addr_t)-1) {
+ efree(ifp);
+ continue;
+ }
}
-
- /* Only now can we be sure it was a good/interesting interface. */
- interfaces[num_interfaces].family = AF_INET;
- num_interfaces++;
+ ifp->next = interfaces;
+ interfaces = ifp;
}
-
- /* If the expected size < real size, realloc the array. */
- if (n != num_interfaces) {
- if (num_interfaces != 0)
- interfaces = (struct interface *) erealloc3(interfaces,
- num_interfaces, sizeof(struct interface));
- else
- efree(interfaces);
- }
- efree(ifconf_buf);
- (void) close(sock);
+ efree(addrinfo);
}
-#else /* !SIOCGIFCONF || STUB_LOAD_INTERFACES */
-
-/*
- * Stub function for those without SIOCGIFCONF
- */
void
-load_interfaces(void)
+dump_interfaces(const char *ai)
{
- return;
-}
+ char *cp, *addrinfo;
-#endif /* SIOCGIFCONF && !STUB_LOAD_INTERFACES */
-
-void
-dump_interfaces(void)
-{
- int i;
-#ifdef HAVE_IN6_ADDR
- char addrbuf[INET6_ADDRSTRLEN], maskbuf[INET6_ADDRSTRLEN];
-#endif
+ addrinfo = estrdup(ai);
sudo_printf(SUDO_CONV_INFO_MSG, "Local IP address and netmask pairs:\n");
- for (i = 0; i < num_interfaces; i++) {
- switch(interfaces[i].family) {
- case AF_INET:
- sudo_printf(SUDO_CONV_INFO_MSG,
- "\t%s / ", inet_ntoa(interfaces[i].addr.ip4));
- sudo_printf(SUDO_CONV_INFO_MSG, "%s\n",
- inet_ntoa(interfaces[i].netmask.ip4));
- break;
-#ifdef HAVE_IN6_ADDR
- case AF_INET6:
- inet_ntop(AF_INET6, &interfaces[i].addr.ip6,
- addrbuf, sizeof(addrbuf));
- inet_ntop(AF_INET6, &interfaces[i].netmask.ip6,
- maskbuf, sizeof(maskbuf));
- sudo_printf(SUDO_CONV_INFO_MSG,
- "\t%s / %s\n", addrbuf, maskbuf);
- break;
-#endif /* HAVE_IN6_ADDR */
- }
- }
+ for (cp = strtok(addrinfo, " \t"); cp != NULL; cp = strtok(NULL, " \t"))
+ sudo_printf(SUDO_CONV_INFO_MSG, "\t%s\n", cp);
+
+ efree(addrinfo);
}
projects / sudo / commitdiff