This file helps the server keep out queries from outside sources, that should not be answered. More...
#include "config.h"#include "daemon/acl_list.h"#include "util/regional.h"#include "util/log.h"#include "util/config_file.h"#include "util/net_help.h"#include "services/localzone.h"#include "services/listen_dnsport.h"#include "sldns/str2wire.h"Functions | |
| struct acl_list * | acl_list_create (void) |
| Create acl structure. More... | |
| void | acl_list_delete (struct acl_list *acl) |
| Delete acl structure. More... | |
| static struct acl_addr * | acl_list_insert (struct acl_list *acl, struct sockaddr_storage *addr, socklen_t addrlen, int net, enum acl_access control, int complain_duplicates) |
| insert new address into acl_list structure | |
| static int | parse_acl_access (const char *str, enum acl_access *control) |
| parse str to acl_access enum | |
| static int | acl_list_str_cfg (struct acl_list *acl, const char *str, const char *s2, int complain_duplicates) |
| apply acl_list string | |
| static struct acl_addr * | acl_find_or_create_str2addr (struct acl_list *acl, const char *str, int is_interface, int port) |
| find or create node (NULL on parse or error) | |
| static struct acl_addr * | acl_find_or_create (struct acl_list *acl, struct sockaddr_storage *addr, socklen_t addrlen, enum acl_access control) |
| find or create node (NULL on error) | |
| static int | acl_interface_str_cfg (struct acl_list *acl_interface, const char *iface, const char *s2, int port) |
| apply acl_interface string | |
| struct acl_addr * | acl_interface_insert (struct acl_list *acl_interface, struct sockaddr_storage *addr, socklen_t addrlen, enum acl_access control) |
| Insert interface in the acl_list. More... | |
| static int | acl_list_tags_cfg (struct acl_list *acl, const char *str, uint8_t *bitmap, size_t bitmaplen, int is_interface, int port) |
| apply acl_tag string | |
| static int | acl_list_view_cfg (struct acl_list *acl, const char *str, const char *str2, struct views *vs, int is_interface, int port) |
| apply acl_view string | |
| static int | acl_list_tag_action_cfg (struct acl_list *acl, struct config_file *cfg, const char *str, const char *tag, const char *action, int is_interface, int port) |
| apply acl_tag_action string | |
| static int | check_data (const char *data, const struct config_strlist *head) |
| check wire data parse | |
| static int | acl_list_tag_data_cfg (struct acl_list *acl, struct config_file *cfg, const char *str, const char *tag, const char *data, int is_interface, int port) |
| apply acl_tag_data string | |
| static int | read_acl_list (struct acl_list *acl, struct config_str2list *acls) |
| read acl_list config | |
| static int | read_acl_view (struct acl_list *acl, struct config_str2list **acl_view, struct views *v) |
| read acl view config | |
| static int | read_acl_tags (struct acl_list *acl, struct config_strbytelist **acl_tags) |
| read acl tags config | |
| static int | read_acl_tag_actions (struct acl_list *acl, struct config_file *cfg, struct config_str3list **acl_tag_actions) |
| read acl tag actions config | |
| static int | read_acl_tag_datas (struct acl_list *acl, struct config_file *cfg, struct config_str3list **acl_tag_datas) |
| read acl tag datas config | |
| int | acl_list_apply_cfg (struct acl_list *acl, struct config_file *cfg, struct views *v) |
| Process access control config. More... | |
| int | acl_interface_compare (const void *k1, const void *k2) |
| compare ACL interface "addr_tree" nodes (+port) | |
| void | acl_interface_init (struct acl_list *acl_interface) |
| Initialise (also clean) the acl_interface struct. More... | |
| static int | read_acl_interface_action (struct acl_list *acl_interface, struct config_str2list *acls, int port) |
| static int | read_acl_interface_view (struct acl_list *acl_interface, struct config_str2list **acl_view, struct views *v, int port) |
| read acl view config for interface | |
| static int | read_acl_interface_tags (struct acl_list *acl_interface, struct config_strbytelist **acl_tags, int port) |
| read acl tags config for interface | |
| static int | read_acl_interface_tag_actions (struct acl_list *acl_interface, struct config_file *cfg, struct config_str3list **acl_tag_actions, int port) |
| read acl tag actions config for interface | |
| static int | read_acl_interface_tag_datas (struct acl_list *acl_interface, struct config_file *cfg, struct config_str3list **acl_tag_datas, int port) |
| read acl tag datas config for interface | |
| int | acl_interface_apply_cfg (struct acl_list *acl_interface, struct config_file *cfg, struct views *v) |
| Process interface control config. More... | |
| enum acl_access | acl_get_control (struct acl_addr *acl) |
| Lookup access control status for acl structure. More... | |
| struct acl_addr * | acl_addr_lookup (struct acl_list *acl, struct sockaddr_storage *addr, socklen_t addrlen) |
| Lookup address to see its acl structure. More... | |
| size_t | acl_list_get_mem (struct acl_list *acl) |
| Get memory used by acl structure. More... | |
| const char * | acl_access_to_str (enum acl_access acl) |
| void | log_acl_action (const char *action, struct sockaddr_storage *addr, socklen_t addrlen, enum acl_access acl, struct acl_addr *acladdr) |
This file helps the server keep out queries from outside sources, that should not be answered.
| struct acl_list* acl_list_create | ( | void | ) |
Create acl structure.
References acl_list_delete(), acl_list::region, and regional_create().
| void acl_list_delete | ( | struct acl_list * | acl | ) |
Delete acl structure.
| acl | to delete. |
References acl_list::region, and regional_destroy().
Referenced by acl_list_create(), and daemon_delete().
| struct acl_addr* acl_interface_insert | ( | struct acl_list * | acl_interface, |
| struct sockaddr_storage * | addr, | ||
| socklen_t | addrlen, | ||
| enum acl_access | control | ||
| ) |
Insert interface in the acl_list.
This should happen when the listening interface is setup.
| acl_interface | acl_list to insert to. |
| addr | interface IP. |
| addrlen | length of the interface IP. |
| control | acl_access. |
References acl_find_or_create(), and acl_addr::control.
| int acl_list_apply_cfg | ( | struct acl_list * | acl, |
| struct config_file * | cfg, | ||
| struct views * | v | ||
| ) |
Process access control config.
| acl | where to store. |
| cfg | config options. |
| v | views structure |
References acl_list_str_cfg(), config_file::acl_tag_actions, config_file::acl_tag_datas, config_file::acl_tags, config_file::acl_view, config_file::acls, addr_tree_init(), addr_tree_init_parents(), config_file::do_ip6, read_acl_list(), read_acl_tag_actions(), read_acl_tag_datas(), read_acl_tags(), read_acl_view(), acl_list::region, regional_free_all(), and acl_list::tree.
| void acl_interface_init | ( | struct acl_list * | acl_interface | ) |
Initialise (also clean) the acl_interface struct.
| acl_interface | where to store. |
References addr_tree_addrport_init(), acl_list::region, regional_free_all(), and acl_list::tree.
Referenced by daemon_open_shared_ports().
| int acl_interface_apply_cfg | ( | struct acl_list * | acl_interface, |
| struct config_file * | cfg, | ||
| struct views * | v | ||
| ) |
Process interface control config.
| acl_interface | where to store. |
| cfg | config options. |
| v | views structure |
| enum acl_access acl_get_control | ( | struct acl_addr * | acl | ) |
Lookup access control status for acl structure.
| acl | structure for acl storage. |
| struct acl_addr* acl_addr_lookup | ( | struct acl_list * | acl, |
| struct sockaddr_storage * | addr, | ||
| socklen_t | addrlen | ||
| ) |
Lookup address to see its acl structure.
| acl | structure for address storage. |
| addr | address to check |
| addrlen | length of addr. |
References addr_tree_lookup(), and acl_list::tree.
| size_t acl_list_get_mem | ( | struct acl_list * | acl | ) |
Get memory used by acl structure.
| acl | structure for address storage. |
References acl_list::region, and regional_get_mem().