From 0d0f7a0e7c32842edff533246a1f8523306f9ab0 Mon Sep 17 00:00:00 2001
From: John Denker <jsd@av8n.com>
Date: Fri, 1 Jun 2012 23:07:51 -0700
Subject: as downloaded : ucspi-tcp

---
 ucspi-tcp-0.88/tcprulescheck.c | 57 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 57 insertions(+)
 create mode 100644 ucspi-tcp-0.88/tcprulescheck.c

(limited to 'ucspi-tcp-0.88/tcprulescheck.c')

diff --git a/ucspi-tcp-0.88/tcprulescheck.c b/ucspi-tcp-0.88/tcprulescheck.c
new file mode 100644
index 0000000..a961d50
--- /dev/null
+++ b/ucspi-tcp-0.88/tcprulescheck.c
@@ -0,0 +1,57 @@
+#include "byte.h"
+#include "buffer.h"
+#include "strerr.h"
+#include "env.h"
+#include "rules.h"
+
+void found(char *data,unsigned int datalen)
+{
+  unsigned int next0;
+
+  buffer_puts(buffer_1,"rule ");
+  buffer_put(buffer_1,rules_name.s,rules_name.len);
+  buffer_puts(buffer_1,":\n");
+  while ((next0 = byte_chr(data,datalen,0)) < datalen) {
+    switch(data[0]) {
+      case 'D':
+	buffer_puts(buffer_1,"deny connection\n");
+	buffer_flush(buffer_1);
+	_exit(0);
+      case '+':
+	buffer_puts(buffer_1,"set environment variable ");
+	buffer_puts(buffer_1,data + 1);
+	buffer_puts(buffer_1,"\n");
+	break;
+    }
+    ++next0;
+    data += next0; datalen -= next0;
+  }
+  buffer_puts(buffer_1,"allow connection\n");
+  buffer_flush(buffer_1);
+  _exit(0);
+}
+
+main(int argc,char **argv)
+{
+  char *fnrules;
+  int fd;
+  char *ip;
+  char *info;
+  char *host;
+
+  fnrules = argv[1];
+  if (!fnrules)
+    strerr_die1x(100,"tcprulescheck: usage: tcprulescheck rules.cdb");
+
+  ip = env_get("TCPREMOTEIP");
+  if (!ip) ip = "0.0.0.0";
+  info = env_get("TCPREMOTEINFO");
+  host = env_get("TCPREMOTEHOST");
+
+  fd = open_read(fnrules);
+  if ((fd == -1) || (rules(found,fd,ip,host,info) == -1))
+    strerr_die3sys(111,"tcprulescheck: fatal: unable to read ",fnrules,": ");
+
+  buffer_putsflush(buffer_1,"default:\nallow connection\n");
+  _exit(0);
+}
-- 
cgit v1.2.3