summaryrefslogtreecommitdiff
path: root/ucspi-tcp-0.88/tcprulescheck.c
diff options
context:
space:
mode:
Diffstat (limited to 'ucspi-tcp-0.88/tcprulescheck.c')
-rw-r--r--ucspi-tcp-0.88/tcprulescheck.c57
1 files changed, 57 insertions, 0 deletions
diff --git a/ucspi-tcp-0.88/tcprulescheck.c b/ucspi-tcp-0.88/tcprulescheck.c
new file mode 100644
index 0000000..a961d50
--- /dev/null
+++ b/ucspi-tcp-0.88/tcprulescheck.c
@@ -0,0 +1,57 @@
+#include "byte.h"
+#include "buffer.h"
+#include "strerr.h"
+#include "env.h"
+#include "rules.h"
+
+void found(char *data,unsigned int datalen)
+{
+ unsigned int next0;
+
+ buffer_puts(buffer_1,"rule ");
+ buffer_put(buffer_1,rules_name.s,rules_name.len);
+ buffer_puts(buffer_1,":\n");
+ while ((next0 = byte_chr(data,datalen,0)) < datalen) {
+ switch(data[0]) {
+ case 'D':
+ buffer_puts(buffer_1,"deny connection\n");
+ buffer_flush(buffer_1);
+ _exit(0);
+ case '+':
+ buffer_puts(buffer_1,"set environment variable ");
+ buffer_puts(buffer_1,data + 1);
+ buffer_puts(buffer_1,"\n");
+ break;
+ }
+ ++next0;
+ data += next0; datalen -= next0;
+ }
+ buffer_puts(buffer_1,"allow connection\n");
+ buffer_flush(buffer_1);
+ _exit(0);
+}
+
+main(int argc,char **argv)
+{
+ char *fnrules;
+ int fd;
+ char *ip;
+ char *info;
+ char *host;
+
+ fnrules = argv[1];
+ if (!fnrules)
+ strerr_die1x(100,"tcprulescheck: usage: tcprulescheck rules.cdb");
+
+ ip = env_get("TCPREMOTEIP");
+ if (!ip) ip = "0.0.0.0";
+ info = env_get("TCPREMOTEINFO");
+ host = env_get("TCPREMOTEHOST");
+
+ fd = open_read(fnrules);
+ if ((fd == -1) || (rules(found,fd,ip,host,info) == -1))
+ strerr_die3sys(111,"tcprulescheck: fatal: unable to read ",fnrules,": ");
+
+ buffer_putsflush(buffer_1,"default:\nallow connection\n");
+ _exit(0);
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-29 08:52:03 +0000