1 /******************************************************************************/
2 /* pfixtools: a collection of postfix related tools */
4 /* ________________________________________________________________________ */
6 /* Redistribution and use in source and binary forms, with or without */
7 /* modification, are permitted provided that the following conditions */
10 /* 1. Redistributions of source code must retain the above copyright */
11 /* notice, this list of conditions and the following disclaimer. */
12 /* 2. Redistributions in binary form must reproduce the above copyright */
13 /* notice, this list of conditions and the following disclaimer in the */
14 /* documentation and/or other materials provided with the distribution. */
15 /* 3. The names of its contributors may not be used to endorse or promote */
16 /* products derived from this software without specific prior written */
19 /* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND */
20 /* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE */
21 /* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR */
22 /* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS */
23 /* BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR */
24 /* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF */
25 /* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS */
26 /* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN */
27 /* CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) */
28 /* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF */
29 /* THE POSSIBILITY OF SUCH DAMAGE. */
30 /******************************************************************************/
33 * Copyright © 2005-2007 Pierre Habouzit
44 #define DAEMON_NAME "pfix-srsd"
45 #define DEFAULT_ENCODER_PORT 10001
46 #define DEFAULT_DECODER_PORT 10002
47 #define RUNAS_USER "nobody"
48 #define RUNAS_GROUP "nogroup"
51 #define STR(x) __tostr(x)
53 /* srs encoder/decoder/listener worker {{{ */
55 typedef struct srsd_t {
56 unsigned listener : 1;
63 static srsd_t *srsd_new(void)
65 srsd_t *srsd = p_new(srsd_t, 1);
70 static void srsd_delete(srsd_t **srsd)
75 buffer_wipe(&(*srsd)->ibuf);
76 buffer_wipe(&(*srsd)->obuf);
81 void urldecode(char *s, char *end)
86 if (*p == '%' && end - p >= 3) {
87 int h = (hexval(p[1]) << 4) | hexval(p[2]);
101 int process_srs(srs_t *srs, const char *domain, srsd_t *srsd)
103 int res = buffer_read(&srsd->ibuf, srsd->fd, -1);
105 if ((res < 0 && errno != EINTR && errno != EAGAIN) || res == 0)
108 while (srsd->ibuf.len > 4) {
109 char buf[BUFSIZ], *p, *q, *nl;
112 nl = strchr(srsd->ibuf.data + 4, '\n');
114 if (srsd->ibuf.len > BUFSIZ) {
115 syslog(LOG_ERR, "unreasonnable amount of data without a \\n");
121 if (strncmp("get ", srsd->ibuf.data, 4)) {
122 syslog(LOG_ERR, "bad request, not starting with \"get \"");
126 for (p = srsd->ibuf.data + 4; p < nl && isspace(*p); p++);
127 for (q = nl++; q >= p && isspace(*q); *q-- = '\0');
130 buffer_addstr(&srsd->obuf, "400 empty request ???\n");
131 syslog(LOG_WARNING, "empty request");
138 err = srs_reverse(srs, buf, ssizeof(buf), p);
140 err = srs_forward(srs, buf, ssizeof(buf), p, domain);
144 buffer_addstr(&srsd->obuf, "200 ");
145 buffer_addstr(&srsd->obuf, buf);
147 switch (SRS_ERROR_TYPE(err)) {
148 case SRS_ERRTYPE_SRS:
149 case SRS_ERRTYPE_SYNTAX:
150 buffer_addstr(&srsd->obuf, "500 ");
153 buffer_addstr(&srsd->obuf, "400 ");
156 buffer_addstr(&srsd->obuf, srs_strerror(err));
158 buffer_addch(&srsd->obuf, '\n');
161 buffer_consume(&srsd->ibuf, nl - srsd->ibuf.data);
167 int start_listener(int port, bool decoder)
169 struct sockaddr_in addr = {
170 .sin_family = AF_INET,
171 .sin_addr = { htonl(INADDR_LOOPBACK) },
176 addr.sin_port = htons(port);
177 sock = tcp_listen_nonblock((const struct sockaddr *)&addr, sizeof(addr));
184 tmp->decoder = decoder;
185 tmp->listener = true;
186 epoll_register(sock, EPOLLIN, tmp);
190 void start_client(srsd_t *srsd)
195 sock = accept_nonblock(srsd->fd);
202 tmp->decoder = srsd->decoder;
204 epoll_register(sock, EPOLLIN, tmp);
208 /* administrivia {{{ */
210 static int main_initialize(void)
212 openlog(DAEMON_NAME, LOG_PID, LOG_MAIL);
213 signal(SIGPIPE, SIG_IGN);
214 signal(SIGINT, &common_sighandler);
215 signal(SIGTERM, &common_sighandler);
216 signal(SIGHUP, &common_sighandler);
217 signal(SIGSEGV, &common_sighandler);
218 syslog(LOG_INFO, "Starting...");
222 static void main_shutdown(void)
227 module_init(main_initialize);
228 module_exit(main_shutdown);
232 fputs("usage: "DAEMON_NAME" [options] domain secrets\n"
235 " -e <port> port to listen to for encoding requests\n"
236 " (default: "STR(DEFAULT_ENCODER_PORT)")\n"
237 " -d <port> port to listen to for decoding requests\n"
238 " (default: "STR(DEFAULT_DECODER_PORT)")\n"
239 " -p <pidfile> file to write our pid to\n"
240 " -u unsafe mode: don't drop privilegies\n"
241 " -f stay in foreground\n"
247 int main_loop(srs_t *srs, const char *domain, int port_enc, int port_dec)
249 if (start_listener(port_enc, false) < 0)
251 if (start_listener(port_dec, true) < 0)
255 struct epoll_event evts[1024];
258 n = epoll_select(evts, countof(evts), -1);
260 if (errno != EAGAIN && errno != EINTR) {
261 UNIXERR("epoll_wait");
268 srsd_t *srsd = evts[n].data.ptr;
270 if (srsd->listener) {
275 if (evts[n].events & EPOLLIN) {
276 if (process_srs(srs, domain, srsd) < 0) {
280 if (srsd->obuf.len) {
281 epoll_register(srsd->fd, EPOLLIN | EPOLLOUT, srsd);
285 if ((evts[n].events & EPOLLOUT) && srsd->obuf.len) {
286 if (buffer_write(&srsd->obuf, srsd->fd) < 0) {
290 if (!srsd->obuf.len) {
291 epoll_modify(srsd->fd, EPOLLIN, srsd);
300 static srs_t *srs_read_secrets(const char *sfile)
307 f = fopen(sfile, "r");
315 while (fgets(buf, sizeof(buf), f)) {
319 if (n == sizeof(buf) - 1 && buf[n - 1] != '\n') {
320 syslog(LOG_CRIT, "%s:%d: line too long", sfile, lineno);
324 srs_add_secret(srs, skipspaces(buf));
328 syslog(LOG_CRIT, "%s: empty file, no secrets", sfile);
341 int main(int argc, char *argv[])
344 bool daemonize = true;
345 int port_enc = DEFAULT_ENCODER_PORT;
346 int port_dec = DEFAULT_DECODER_PORT;
347 const char *pidfile = NULL;
352 for (int c = 0; (c = getopt(argc, argv, "hfu" "e:d:p:")) >= 0; ) {
355 port_enc = atoi(optarg);
361 port_dec = atoi(optarg);
375 if (argc - optind != 2) {
380 srs = srs_read_secrets(argv[optind + 1]);
385 if (pidfile_open(pidfile) < 0) {
386 syslog(LOG_CRIT, "unable to write pidfile %s", pidfile);
390 if (!unsafe && drop_privileges(RUNAS_USER, RUNAS_GROUP) < 0) {
391 syslog(LOG_CRIT, "unable to drop privileges");
395 if (daemonize && daemon_detach() < 0) {
396 syslog(LOG_CRIT, "unable to fork");
401 res = main_loop(srs, argv[optind], port_enc, port_dec);
402 syslog(LOG_INFO, "Stopping...");