]>
Commit | Line | Data |
---|---|---|
3841dd46 | 1 | /* |
d295d770 | 2 | * $Id: ACLDomainData.cc,v 1.12 2006/04/23 11:10:31 robertc Exp $ |
3841dd46 | 3 | * |
4 | * DEBUG: section 28 Access Control | |
5 | * AUTHOR: Duane Wessels | |
6 | * | |
7 | * SQUID Web Proxy Cache http://www.squid-cache.org/ | |
8 | * ---------------------------------------------------------- | |
9 | * | |
10 | * Squid is the result of efforts by numerous individuals from | |
11 | * the Internet community; see the CONTRIBUTORS file for full | |
12 | * details. Many organizations have provided support for Squid's | |
13 | * development; see the SPONSORS file for full details. Squid is | |
14 | * Copyrighted (C) 2001 by the Regents of the University of | |
15 | * California; see the COPYRIGHT file for full details. Squid | |
16 | * incorporates software developed and/or copyrighted by other | |
17 | * sources; see the CREDITS file for full details. | |
18 | * | |
19 | * This program is free software; you can redistribute it and/or modify | |
20 | * it under the terms of the GNU General Public License as published by | |
21 | * the Free Software Foundation; either version 2 of the License, or | |
22 | * (at your option) any later version. | |
23 | * | |
24 | * This program is distributed in the hope that it will be useful, | |
25 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
26 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
27 | * GNU General Public License for more details. | |
28 | * | |
29 | * You should have received a copy of the GNU General Public License | |
30 | * along with this program; if not, write to the Free Software | |
31 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111, USA. | |
32 | * | |
33 | * | |
34 | * Copyright (c) 2003, Robert Collins <robertc@squid-cache.org> | |
35 | */ | |
36 | ||
37 | #include "squid.h" | |
38 | #include "ACLDomainData.h" | |
39 | #include "authenticate.h" | |
40 | #include "ACLChecklist.h" | |
d295d770 | 41 | #include "wordlist.h" |
3841dd46 | 42 | |
3841dd46 | 43 | template<class T> |
44 | inline void | |
45 | xRefFree(T &thing) | |
46 | { | |
47 | xfree (thing); | |
48 | } | |
49 | ||
50 | ACLDomainData::~ACLDomainData() | |
51 | { | |
52 | if (domains) | |
62e76326 | 53 | domains->destroy(xRefFree); |
54 | } | |
3841dd46 | 55 | |
56 | template<class T> | |
57 | inline int | |
58 | splaystrcasecmp (T&l, T&r) | |
59 | { | |
60 | return strcasecmp ((char *)l,(char *)r); | |
61 | } | |
62 | ||
63 | template<class T> | |
64 | inline int | |
65 | splaystrcmp (T&l, T&r) | |
66 | { | |
67 | return strcmp ((char *)l,(char *)r); | |
68 | } | |
69 | ||
70 | /* general compare functions, these are used for tree search algorithms | |
71 | * so they return <0, 0 or >0 */ | |
72 | ||
7e6b941f | 73 | /* compare a host and a domain */ |
74 | ||
75 | static int | |
76 | aclHostDomainCompare( char *const &a, char * const &b) | |
77 | { | |
78 | const char *h = (const char *)a; | |
79 | const char *d = (const char *)b; | |
80 | return matchDomainName(h, d); | |
81 | } | |
82 | ||
83 | ||
3841dd46 | 84 | /* compare two domains */ |
85 | ||
86 | template<class T> | |
87 | int | |
88 | aclDomainCompare(T const &a, T const &b) | |
89 | { | |
90 | char * const d1 = (char *const)b; | |
91 | char * const d2 = (char *const )a; | |
92 | int ret; | |
93 | ret = aclHostDomainCompare(d1, d2); | |
62e76326 | 94 | |
3841dd46 | 95 | if (ret != 0) { |
62e76326 | 96 | char *const d3 = d2; |
97 | char *const d4 = d1; | |
98 | ret = aclHostDomainCompare(d3, d4); | |
3841dd46 | 99 | } |
62e76326 | 100 | |
3841dd46 | 101 | /* FIXME this warning may display d1 and d2 when it should display d3 and d4 */ |
102 | if (ret == 0) { | |
62e76326 | 103 | debug(28, 0) ("WARNING: '%s' is a subdomain of '%s'\n", d1, d2); |
104 | debug(28, 0) ("WARNING: because of this '%s' is ignored to keep splay tree searching predictable\n", (char *) a); | |
105 | debug(28, 0) ("WARNING: You should probably remove '%s' from the ACL named '%s'\n", d1, AclMatchedName); | |
3841dd46 | 106 | } |
62e76326 | 107 | |
3841dd46 | 108 | return ret; |
109 | } | |
110 | ||
3841dd46 | 111 | bool |
112 | ACLDomainData::match(char const *host) | |
113 | { | |
114 | if (host == NULL) | |
62e76326 | 115 | return 0; |
116 | ||
3841dd46 | 117 | debug(28, 3) ("aclMatchDomainList: checking '%s'\n", host); |
62e76326 | 118 | |
3841dd46 | 119 | domains = domains->splay((char *)host, aclHostDomainCompare); |
62e76326 | 120 | |
3841dd46 | 121 | debug(28, 3) ("aclMatchDomainList: '%s' %s\n", |
62e76326 | 122 | host, splayLastResult ? "NOT found" : "found"); |
123 | ||
3841dd46 | 124 | return !splayLastResult; |
125 | } | |
126 | ||
127 | static void | |
128 | aclDumpDomainListWalkee(char * const & node_data, void *outlist) | |
129 | { | |
130 | /* outlist is really a wordlist ** */ | |
131 | wordlistAdd((wordlist **)outlist, (char const *)node_data); | |
132 | } | |
133 | ||
134 | wordlist * | |
135 | ACLDomainData::dump() | |
136 | { | |
137 | wordlist *wl = NULL; | |
138 | /* damn this is VERY inefficient for long ACL lists... filling | |
139 | * a wordlist this way costs Sum(1,N) iterations. For instance | |
140 | * a 1000-elements list will be filled in 499500 iterations. | |
141 | */ | |
142 | domains->walk(aclDumpDomainListWalkee, &wl); | |
143 | return wl; | |
144 | } | |
145 | ||
146 | void | |
147 | ACLDomainData::parse() | |
148 | { | |
149 | char *t = NULL; | |
62e76326 | 150 | |
3841dd46 | 151 | while ((t = strtokFile())) { |
62e76326 | 152 | Tolower(t); |
153 | domains = domains->insert(xstrdup(t), aclDomainCompare); | |
3841dd46 | 154 | } |
155 | } | |
156 | ||
65092baf | 157 | bool |
158 | ACLDomainData::empty() const | |
159 | { | |
290eb6b9 | 160 | return domains->empty(); |
65092baf | 161 | } |
162 | ||
3841dd46 | 163 | |
5dee515e | 164 | ACLData<char const *> * |
3841dd46 | 165 | ACLDomainData::clone() const |
166 | { | |
167 | /* Splay trees don't clone yet. */ | |
168 | assert (!domains); | |
169 | return new ACLDomainData; | |
170 | } |