From 8f663d7271b0c34c81df834084b2328b396cded1 Mon Sep 17 00:00:00 2001
From: wessels <>
Date: Tue, 15 Sep 1998 04:27:57 +0000
Subject: [PATCH] integer range support for PORT ACLs

---
 src/acl.cc     | 101 ++++++++++++++++++++++++++++++++++++++++++++++---
 src/structs.h  |   8 +++-
 src/typedefs.h |   3 +-
 3 files changed, 104 insertions(+), 8 deletions(-)

diff --git a/src/acl.cc b/src/acl.cc
index 52d7e1f3c5..761071dd1d 100644
--- a/src/acl.cc
+++ b/src/acl.cc
@@ -1,6 +1,6 @@
 
 /*
- * $Id: acl.cc,v 1.181 1998/08/21 03:15:14 wessels Exp $
+ * $Id: acl.cc,v 1.182 1998/09/14 22:27:57 wessels Exp $
  *
  * DEBUG: section 28    Access Control
  * AUTHOR: Duane Wessels
@@ -47,17 +47,20 @@ static void aclParseProtoList(void *curlist);
 static void aclParseMethodList(void *curlist);
 static void aclParseTimeSpec(void *curlist);
 static void aclParseSnmpComm(void *curlist);
+static void aclParseIntRange(void *curlist);
 static char *strtokFile(void);
 static void aclDestroyAclList(acl_list * list);
 static void aclDestroyTimeList(acl_time_data * data);
 static void aclDestroyProxyAuth(acl_proxy_auth * p);
+static void aclDestroyIntRange(intrange *);
 static FREE aclFreeProxyAuthUser;
 static int aclMatchAcl(struct _acl *, aclCheck_t *);
-static int aclMatchInteger(intlist * data, int i);
+static int aclMatchIntegerRange(intrange * data, int i);
 static int aclMatchTime(acl_time_data * data, time_t when);
 static int aclMatchIdent(wordlist * data, const char *ident);
 static int aclMatchIp(void *dataptr, struct in_addr c);
 static int aclMatchDomainList(void *dataptr, const char *);
+static int aclMatchIntegerRange(intrange * data, int i);
 static squid_acl aclStrToType(const char *s);
 static int decode_addr(const char *, struct in_addr *, struct in_addr *);
 static void aclCheck(aclCheck_t * checklist);
@@ -72,6 +75,7 @@ static wordlist *aclDumpDomainList(void *data);
 static wordlist *aclDumpTimeSpecList(acl_time_data *);
 static wordlist *aclDumpRegexList(relist * data);
 static wordlist *aclDumpIntlistList(intlist * data);
+static wordlist *aclDumpIntRangeList(intrange * data);
 static wordlist *aclDumpProtoList(intlist * data);
 static wordlist *aclDumpMethodList(intlist * data);
 static wordlist *aclDumpProxyAuthList(acl_proxy_auth * data);
@@ -255,6 +259,26 @@ aclParseIntlist(void *curlist)
     }
 }
 
+static void
+aclParseIntRange(void *curlist)
+{
+    intrange **Tail;
+    intrange *q = NULL;
+    char *t = NULL;
+    for (Tail = curlist; *Tail; Tail = &((*Tail)->next));
+    while ((t = strtokFile())) {
+	q = xcalloc(1, sizeof(intrange));
+	q->i = atoi(t);
+	t = strchr(t, '-');
+	if (t && *(++t))
+		q->j = atoi(t);
+	else
+		q->j = q->i;
+	*(Tail) = q;
+	Tail = &q->next;
+    }
+}
+
 static void
 aclParseProtoList(void *curlist)
 {
@@ -697,12 +721,14 @@ aclParseAclLine(acl ** head)
     case ACL_DST_DOM_REGEX:
 	aclParseRegexList(&A->data);
 	break;
-    case ACL_URL_PORT:
     case ACL_SRC_ASN:
     case ACL_DST_ASN:
     case ACL_NETDB_SRC_RTT:
 	aclParseIntlist(&A->data);
 	break;
+    case ACL_URL_PORT:
+	aclParseIntRange(&A->data);
+	break;
     case ACL_USER:
 	Config.onoff.ident_lookup = 1;
 	aclParseWordList(&A->data);
@@ -1077,6 +1103,34 @@ aclMatchInteger(intlist * data, int i)
     return 0;
 }
 
+static int
+aclMatchIntegerRange(intrange * data, int i)
+{
+    intrange *first, *prev;
+    first = data;
+    prev = NULL;
+    while (data) {
+	if (i < data->i) {
+		(void) 0;
+	} else if (i > data->j) {
+		(void) 0;
+	} else {
+	    /* matched */
+	    if (prev != NULL) {
+		/* shift the element just found to the second position
+		 * in the list */
+		prev->next = data->next;
+		data->next = first->next;
+		first->next = data;
+	    }
+	    return 1;
+	}
+	prev = data;
+	data = data->next;
+    }
+    return 0;
+}
+
 static int
 aclMatchTime(acl_time_data * data, time_t when)
 {
@@ -1199,7 +1253,7 @@ aclMatchAcl(acl * acl, aclCheck_t * checklist)
 	return k;
 	/* NOTREACHED */
     case ACL_URL_PORT:
-	return aclMatchInteger(acl->data, r->port);
+	return aclMatchIntegerRange(acl->data, r->port);
 	/* NOTREACHED */
     case ACL_USER:
 	return aclMatchIdent(acl->data, checklist->ident);
@@ -1571,13 +1625,15 @@ aclDestroyAcls(acl ** head)
 	case ACL_BROWSER:
 	    aclDestroyRegexList(a->data);
 	    break;
-	case ACL_URL_PORT:
 	case ACL_PROTO:
 	case ACL_METHOD:
 	case ACL_SRC_ASN:
 	case ACL_DST_ASN:
 	    intlistDestroy((intlist **) & a->data);
 	    break;
+	case ACL_URL_PORT:
+	    aclDestroyIntRange(a->data);
+	    break;
 	case ACL_PROXY_AUTH:
 	    aclDestroyProxyAuth(a->data);
 	    break;
@@ -1641,6 +1697,17 @@ aclDestroyDenyInfoList(acl_deny_info_list ** list)
     *list = NULL;
 }
 
+static void
+aclDestroyIntRange(intrange *list)
+{
+    intrange *w = NULL;
+    intrange *n = NULL;
+    for (w = list; w; w = n) {
+        n = w->next;
+        safe_free(w);
+    }
+}
+
 /* general compare functions, these are used for tree search algorithms
  * so they return <0, 0 or >0 */
 
@@ -1841,6 +1908,26 @@ aclDumpIntlistList(intlist * data)
     return W;
 }
 
+static wordlist *
+aclDumpIntRangeList(intrange * data)
+{
+    wordlist *W = NULL;
+    wordlist **T = &W;
+    char buf[32];
+    while (data != NULL) {
+	wordlist *w = xcalloc(1, sizeof(wordlist));
+	if (data->i == data->j)
+	    snprintf(buf, sizeof(buf), "%d", data->i);
+	else
+	    snprintf(buf, sizeof(buf), "%d-%d", data->i, data->j);
+	w->key = xstrdup(buf);
+	*T = w;
+	T = &w->next;
+	data = data->next;
+    }
+    return W;
+}
+
 static wordlist *
 aclDumpProtoList(intlist * data)
 {
@@ -1909,11 +1996,13 @@ aclDumpGeneric(const acl * a)
     case ACL_BROWSER:
 	return aclDumpRegexList(a->data);
 	break;
-    case ACL_URL_PORT:
     case ACL_SRC_ASN:
     case ACL_DST_ASN:
 	return aclDumpIntlistList(a->data);
 	break;
+    case ACL_URL_PORT:
+	return aclDumpIntRangeList(a->data);
+	break;
     case ACL_PROTO:
 	return aclDumpProtoList(a->data);
 	break;
diff --git a/src/structs.h b/src/structs.h
index 2dab9b6e36..8739996828 100644
--- a/src/structs.h
+++ b/src/structs.h
@@ -1,6 +1,6 @@
 
 /*
- * $Id: structs.h,v 1.224 1998/09/14 22:20:00 wessels Exp $
+ * $Id: structs.h,v 1.225 1998/09/14 22:27:59 wessels Exp $
  *
  *
  * SQUID Internet Object Cache  http://squid.nlanr.net/Squid/
@@ -189,6 +189,12 @@ struct _intlist {
     intlist *next;
 };
 
+struct _intrange {
+    int i;
+    int j;
+    intrange *next;
+};
+
 struct _ushortlist {
     u_short i;
     ushortlist *next;
diff --git a/src/typedefs.h b/src/typedefs.h
index f1f4b1cff5..24cf89f8cb 100644
--- a/src/typedefs.h
+++ b/src/typedefs.h
@@ -1,6 +1,6 @@
 
 /*
- * $Id: typedefs.h,v 1.76 1998/09/14 22:18:03 wessels Exp $
+ * $Id: typedefs.h,v 1.77 1998/09/14 22:28:00 wessels Exp $
  *
  *
  * SQUID Internet Object Cache  http://squid.nlanr.net/Squid/
@@ -67,6 +67,7 @@ typedef struct _aclCheck_t aclCheck_t;
 typedef struct _aio_result_t aio_result_t;
 typedef struct _wordlist wordlist;
 typedef struct _intlist intlist;
+typedef struct _intrange intrange;
 typedef struct _ushortlist ushortlist;
 typedef struct _relist relist;
 typedef struct _SquidConfig SquidConfig;
-- 
2.47.3