Simon Kelley | c49778d | 2016-01-06 18:52:33 +0000 | [diff] [blame] | 1 | /* dnsmasq is Copyright (c) 2000-2016 Simon Kelley |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 2 | |
| 3 | This program is free software; you can redistribute it and/or modify |
| 4 | it under the terms of the GNU General Public License as published by |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 5 | the Free Software Foundation; version 2 dated June, 1991, or |
| 6 | (at your option) version 3 dated 29 June, 2007. |
| 7 | |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 8 | This program is distributed in the hope that it will be useful, |
| 9 | but WITHOUT ANY WARRANTY; without even the implied warranty of |
| 10 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| 11 | GNU General Public License for more details. |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 12 | |
Simon Kelley | 73a08a2 | 2009-02-05 20:28:08 +0000 | [diff] [blame] | 13 | You should have received a copy of the GNU General Public License |
| 14 | along with this program. If not, see <http://www.gnu.org/licenses/>. |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 15 | */ |
| 16 | |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 17 | /* Declare static char *compiler_opts in config.h */ |
| 18 | #define DNSMASQ_COMPILE_OPTS |
| 19 | |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 20 | #include "dnsmasq.h" |
| 21 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 22 | struct daemon *daemon; |
| 23 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 24 | static volatile pid_t pid = 0; |
| 25 | static volatile int pipewrite; |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 26 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 27 | static int set_dns_listeners(time_t now); |
| 28 | static void check_dns_listeners(time_t now); |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 29 | static void sig_handler(int sig); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 30 | static void async_event(int pipe, time_t now); |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 31 | static void fatal_event(struct event_desc *ev, char *msg); |
| 32 | static int read_event(int fd, struct event_desc *evp, char **msg); |
Simon Kelley | 47a9516 | 2014-07-08 22:22:02 +0100 | [diff] [blame] | 33 | static void poll_resolv(int force, int do_reload, time_t now); |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 34 | |
| 35 | int main (int argc, char **argv) |
| 36 | { |
Simon Kelley | de37951 | 2004-06-22 20:23:33 +0100 | [diff] [blame] | 37 | int bind_fallback = 0; |
Simon Kelley | 9009d74 | 2008-11-14 20:04:27 +0000 | [diff] [blame] | 38 | time_t now; |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 39 | struct sigaction sigact; |
Simon Kelley | 26128d2 | 2004-11-14 16:43:54 +0000 | [diff] [blame] | 40 | struct iname *if_tmp; |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 41 | int piperead, pipefd[2], err_pipe[2]; |
| 42 | struct passwd *ent_pw = NULL; |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 43 | #if defined(HAVE_SCRIPT) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 44 | uid_t script_uid = 0; |
| 45 | gid_t script_gid = 0; |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 46 | #endif |
| 47 | struct group *gp = NULL; |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 48 | long i, max_fd = sysconf(_SC_OPEN_MAX); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 49 | char *baduser = NULL; |
| 50 | int log_err; |
| 51 | #if defined(HAVE_LINUX_NETWORK) |
| 52 | cap_user_header_t hdr = NULL; |
| 53 | cap_user_data_t data = NULL; |
Simon Kelley | 3b3f441 | 2013-10-11 16:33:28 +0100 | [diff] [blame] | 54 | char *bound_device = NULL; |
| 55 | int did_bind = 0; |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 56 | #endif |
Vladislav Grishenko | 408c368 | 2013-09-24 16:18:49 +0100 | [diff] [blame] | 57 | #if defined(HAVE_DHCP) || defined(HAVE_DHCP6) |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 58 | struct dhcp_context *context; |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 59 | struct dhcp_relay *relay; |
Vladislav Grishenko | 408c368 | 2013-09-24 16:18:49 +0100 | [diff] [blame] | 60 | #endif |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 61 | #ifdef HAVE_TFTP |
| 62 | int tftp_prefix_missing = 0; |
| 63 | #endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 64 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 65 | #ifdef LOCALEDIR |
Simon Kelley | b8187c8 | 2005-11-26 21:46:27 +0000 | [diff] [blame] | 66 | setlocale(LC_ALL, ""); |
| 67 | bindtextdomain("dnsmasq", LOCALEDIR); |
| 68 | textdomain("dnsmasq"); |
| 69 | #endif |
| 70 | |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 71 | sigact.sa_handler = sig_handler; |
| 72 | sigact.sa_flags = 0; |
| 73 | sigemptyset(&sigact.sa_mask); |
| 74 | sigaction(SIGUSR1, &sigact, NULL); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 75 | sigaction(SIGUSR2, &sigact, NULL); |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 76 | sigaction(SIGHUP, &sigact, NULL); |
| 77 | sigaction(SIGTERM, &sigact, NULL); |
Simon Kelley | 44a2a31 | 2004-03-10 20:04:35 +0000 | [diff] [blame] | 78 | sigaction(SIGALRM, &sigact, NULL); |
Simon Kelley | feba5c1 | 2004-07-27 20:28:58 +0100 | [diff] [blame] | 79 | sigaction(SIGCHLD, &sigact, NULL); |
| 80 | |
| 81 | /* ignore SIGPIPE */ |
| 82 | sigact.sa_handler = SIG_IGN; |
| 83 | sigaction(SIGPIPE, &sigact, NULL); |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 84 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 85 | umask(022); /* known umask, create leases and pid files as 0644 */ |
Simon Kelley | b5ea1cc | 2014-07-29 16:34:14 +0100 | [diff] [blame] | 86 | |
| 87 | rand_init(); /* Must precede read_opts() */ |
| 88 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 89 | read_opts(argc, argv, compile_opts); |
Simon Kelley | c3e0b9b | 2013-12-31 13:50:39 +0000 | [diff] [blame] | 90 | |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 91 | if (daemon->edns_pktsz < PACKETSZ) |
Simon Kelley | 60b6806 | 2014-01-08 12:10:28 +0000 | [diff] [blame] | 92 | daemon->edns_pktsz = PACKETSZ; |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 93 | |
Simon Kelley | d3a8b39 | 2015-12-23 12:27:37 +0000 | [diff] [blame] | 94 | /* Min buffer size: we check after adding each record, so there must be |
| 95 | memory for the largest packet, and the largest record so the |
| 96 | min for DNS is PACKETSZ+MAXDNAME+RRFIXEDSZ which is < 1000. |
| 97 | This might be increased is EDNS packet size if greater than the minimum. */ |
| 98 | daemon->packet_buff_sz = daemon->edns_pktsz + MAXDNAME + RRFIXEDSZ; |
Simon Kelley | 0a85254 | 2005-03-23 20:28:59 +0000 | [diff] [blame] | 99 | daemon->packet = safe_malloc(daemon->packet_buff_sz); |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 100 | |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 101 | daemon->addrbuff = safe_malloc(ADDRSTRLEN); |
Simon Kelley | 25cf5e3 | 2015-01-09 15:53:03 +0000 | [diff] [blame] | 102 | if (option_bool(OPT_EXTRALOG)) |
| 103 | daemon->addrbuff2 = safe_malloc(ADDRSTRLEN); |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 104 | |
| 105 | #ifdef HAVE_DNSSEC |
| 106 | if (option_bool(OPT_DNSSEC_VALID)) |
Simon Kelley | 5107ace | 2014-02-23 10:48:32 +0000 | [diff] [blame] | 107 | { |
Simon Kelley | cbe379a | 2015-04-21 22:57:06 +0100 | [diff] [blame] | 108 | /* Note that both /000 and '.' are allowed within labels. These get |
| 109 | represented in presentation format using NAME_ESCAPE as an escape |
| 110 | character when in DNSSEC mode. |
| 111 | In theory, if all the characters in a name were /000 or |
| 112 | '.' or NAME_ESCAPE then all would have to be escaped, so the |
| 113 | presentation format would be twice as long as the spec. |
| 114 | |
| 115 | daemon->namebuff was previously allocated by the option-reading |
| 116 | code before we knew if we're in DNSSEC mode, so reallocate here. */ |
| 117 | free(daemon->namebuff); |
| 118 | daemon->namebuff = safe_malloc(MAXDNAME * 2); |
| 119 | daemon->keyname = safe_malloc(MAXDNAME * 2); |
| 120 | daemon->workspacename = safe_malloc(MAXDNAME * 2); |
Simon Kelley | 5107ace | 2014-02-23 10:48:32 +0000 | [diff] [blame] | 121 | } |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 122 | #endif |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 123 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 124 | #ifdef HAVE_DHCP |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 125 | if (!daemon->lease_file) |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 126 | { |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 127 | if (daemon->dhcp || daemon->dhcp6) |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 128 | daemon->lease_file = LEASEFILE; |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 129 | } |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 130 | #endif |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 131 | |
Simon Kelley | a276175 | 2012-01-18 16:07:21 +0000 | [diff] [blame] | 132 | /* Close any file descriptors we inherited apart from std{in|out|err} |
| 133 | |
| 134 | Ensure that at least stdin, stdout and stderr (fd 0, 1, 2) exist, |
| 135 | otherwise file descriptors we create can end up being 0, 1, or 2 |
| 136 | and then get accidentally closed later when we make 0, 1, and 2 |
| 137 | open to /dev/null. Normally we'll be started with 0, 1 and 2 open, |
| 138 | but it's not guaranteed. By opening /dev/null three times, we |
| 139 | ensure that we're not using those fds for real stuff. */ |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 140 | for (i = 0; i < max_fd; i++) |
| 141 | if (i != STDOUT_FILENO && i != STDERR_FILENO && i != STDIN_FILENO) |
| 142 | close(i); |
Simon Kelley | a276175 | 2012-01-18 16:07:21 +0000 | [diff] [blame] | 143 | else |
| 144 | open("/dev/null", O_RDWR); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 145 | |
Simon Kelley | 801ca9a | 2012-03-06 19:30:17 +0000 | [diff] [blame] | 146 | #ifndef HAVE_LINUX_NETWORK |
| 147 | # if !(defined(IP_RECVDSTADDR) && defined(IP_RECVIF) && defined(IP_SENDSRCADDR)) |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 148 | if (!option_bool(OPT_NOWILD)) |
Simon Kelley | de37951 | 2004-06-22 20:23:33 +0100 | [diff] [blame] | 149 | { |
| 150 | bind_fallback = 1; |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 151 | set_option_bool(OPT_NOWILD); |
Simon Kelley | de37951 | 2004-06-22 20:23:33 +0100 | [diff] [blame] | 152 | } |
Simon Kelley | 801ca9a | 2012-03-06 19:30:17 +0000 | [diff] [blame] | 153 | # endif |
Simon Kelley | 2b5bae9 | 2012-06-26 16:55:23 +0100 | [diff] [blame] | 154 | |
| 155 | /* -- bind-dynamic not supported on !Linux, fall back to --bind-interfaces */ |
Simon Kelley | 54dd393 | 2012-06-20 11:23:38 +0100 | [diff] [blame] | 156 | if (option_bool(OPT_CLEVERBIND)) |
Simon Kelley | 2b5bae9 | 2012-06-26 16:55:23 +0100 | [diff] [blame] | 157 | { |
| 158 | bind_fallback = 1; |
| 159 | set_option_bool(OPT_NOWILD); |
Simon Kelley | 236e072 | 2012-06-26 21:33:01 +0100 | [diff] [blame] | 160 | reset_option_bool(OPT_CLEVERBIND); |
Simon Kelley | 2b5bae9 | 2012-06-26 16:55:23 +0100 | [diff] [blame] | 161 | } |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 162 | #endif |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 163 | |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 164 | #ifndef HAVE_INOTIFY |
Simon Kelley | 70d1873 | 2015-01-31 19:59:29 +0000 | [diff] [blame] | 165 | if (daemon->dynamic_dirs) |
| 166 | die(_("dhcp-hostsdir, dhcp-optsdir and hostsdir are not supported on this platform"), NULL, EC_BADCONF); |
Simon Kelley | 309331f | 2006-04-22 15:05:01 +0100 | [diff] [blame] | 167 | #endif |
Simon Kelley | 2b5bae9 | 2012-06-26 16:55:23 +0100 | [diff] [blame] | 168 | |
Simon Kelley | 0744ca6 | 2014-01-25 16:40:15 +0000 | [diff] [blame] | 169 | if (option_bool(OPT_DNSSEC_VALID)) |
| 170 | { |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 171 | #ifdef HAVE_DNSSEC |
Simon Kelley | a63b8b8 | 2016-01-12 11:28:58 +0000 | [diff] [blame] | 172 | struct ds_config *ds; |
| 173 | |
| 174 | /* Must have at least a root trust anchor, or the DNSSEC code |
| 175 | can loop forever. */ |
| 176 | for (ds = daemon->ds; ds; ds = ds->next) |
| 177 | if (ds->name[0] == 0) |
| 178 | break; |
| 179 | |
| 180 | if (!ds) |
| 181 | die(_("no root trust anchor provided for DNSSEC"), NULL, EC_BADCONF); |
Simon Kelley | 0744ca6 | 2014-01-25 16:40:15 +0000 | [diff] [blame] | 182 | |
| 183 | if (daemon->cachesize < CACHESIZ) |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 184 | die(_("cannot reduce cache size from default when DNSSEC enabled"), NULL, EC_BADCONF); |
Simon Kelley | 0744ca6 | 2014-01-25 16:40:15 +0000 | [diff] [blame] | 185 | #else |
| 186 | die(_("DNSSEC not available: set HAVE_DNSSEC in src/config.h"), NULL, EC_BADCONF); |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 187 | #endif |
Simon Kelley | 0744ca6 | 2014-01-25 16:40:15 +0000 | [diff] [blame] | 188 | } |
Simon Kelley | 3ddacb8 | 2014-01-08 14:32:03 +0000 | [diff] [blame] | 189 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 190 | #ifndef HAVE_TFTP |
Simon Kelley | 9b40cbf | 2012-07-13 19:58:26 +0100 | [diff] [blame] | 191 | if (option_bool(OPT_TFTP)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 192 | die(_("TFTP server not available: set HAVE_TFTP in src/config.h"), NULL, EC_BADCONF); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 193 | #endif |
| 194 | |
Simon Kelley | 7de060b | 2011-08-26 17:24:52 +0100 | [diff] [blame] | 195 | #ifdef HAVE_CONNTRACK |
| 196 | if (option_bool(OPT_CONNTRACK) && (daemon->query_port != 0 || daemon->osport)) |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 197 | die (_("cannot use --conntrack AND --query-port"), NULL, EC_BADCONF); |
Simon Kelley | 7de060b | 2011-08-26 17:24:52 +0100 | [diff] [blame] | 198 | #else |
| 199 | if (option_bool(OPT_CONNTRACK)) |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 200 | die(_("conntrack support not available: set HAVE_CONNTRACK in src/config.h"), NULL, EC_BADCONF); |
Simon Kelley | 7de060b | 2011-08-26 17:24:52 +0100 | [diff] [blame] | 201 | #endif |
| 202 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 203 | #ifdef HAVE_SOLARIS_NETWORK |
| 204 | if (daemon->max_logs != 0) |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 205 | die(_("asynchronous logging is not available under Solaris"), NULL, EC_BADCONF); |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 206 | #endif |
| 207 | |
Simon Kelley | 572b41e | 2011-02-18 18:11:18 +0000 | [diff] [blame] | 208 | #ifdef __ANDROID__ |
| 209 | if (daemon->max_logs != 0) |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 210 | die(_("asynchronous logging is not available under Android"), NULL, EC_BADCONF); |
Simon Kelley | 572b41e | 2011-02-18 18:11:18 +0000 | [diff] [blame] | 211 | #endif |
| 212 | |
Simon Kelley | 4820dce | 2012-12-18 18:30:30 +0000 | [diff] [blame] | 213 | #ifndef HAVE_AUTH |
| 214 | if (daemon->authserver) |
| 215 | die(_("authoritative DNS not available: set HAVE_AUTH in src/config.h"), NULL, EC_BADCONF); |
| 216 | #endif |
| 217 | |
Simon Kelley | b5ea1cc | 2014-07-29 16:34:14 +0100 | [diff] [blame] | 218 | #ifndef HAVE_LOOP |
| 219 | if (option_bool(OPT_LOOP_DETECT)) |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 220 | die(_("loop detection not available: set HAVE_LOOP in src/config.h"), NULL, EC_BADCONF); |
Simon Kelley | b5ea1cc | 2014-07-29 16:34:14 +0100 | [diff] [blame] | 221 | #endif |
Hans Dedecker | 926332a | 2016-01-23 10:48:12 +0000 | [diff] [blame] | 222 | |
| 223 | if (daemon->max_port != MAX_PORT && daemon->min_port == 0) |
| 224 | daemon->min_port = 1024u; |
| 225 | |
| 226 | if (daemon->max_port < daemon->min_port) |
| 227 | die(_("max_port cannot be smaller than min_port"), NULL, EC_BADCONF); |
| 228 | |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 229 | now = dnsmasq_time(); |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 230 | |
Simon Kelley | b0ff858 | 2013-02-06 09:57:47 +0000 | [diff] [blame] | 231 | /* Create a serial at startup if not configured. */ |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 232 | if (daemon->authinterface && daemon->soa_sn == 0) |
| 233 | #ifdef HAVE_BROKEN_RTC |
Simon Kelley | b0ff858 | 2013-02-06 09:57:47 +0000 | [diff] [blame] | 234 | die(_("zone serial must be configured in --auth-soa"), NULL, EC_BADCONF); |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 235 | #else |
| 236 | daemon->soa_sn = now; |
| 237 | #endif |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 238 | |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 239 | #ifdef HAVE_DHCP6 |
| 240 | if (daemon->dhcp6) |
| 241 | { |
| 242 | daemon->doing_ra = option_bool(OPT_RA); |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 243 | |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 244 | for (context = daemon->dhcp6; context; context = context->next) |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 245 | { |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 246 | if (context->flags & CONTEXT_DHCP) |
| 247 | daemon->doing_dhcp6 = 1; |
| 248 | if (context->flags & CONTEXT_RA) |
| 249 | daemon->doing_ra = 1; |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 250 | #if !defined(HAVE_LINUX_NETWORK) && !defined(HAVE_BSD_NETWORK) |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 251 | if (context->flags & CONTEXT_TEMPLATE) |
| 252 | die (_("dhcp-range constructor not available on this platform"), NULL, EC_BADCONF); |
Simon Kelley | bb86e85 | 2012-12-17 22:00:53 +0000 | [diff] [blame] | 253 | #endif |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 254 | } |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 255 | } |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 256 | #endif |
| 257 | |
| 258 | #ifdef HAVE_DHCP |
| 259 | /* Note that order matters here, we must call lease_init before |
| 260 | creating any file descriptors which shouldn't be leaked |
| 261 | to the lease-script init process. We need to call common_init |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 262 | before lease_init to allocate buffers it uses. |
Simon Kelley | 1e50512 | 2016-01-25 21:29:23 +0000 | [diff] [blame] | 263 | The script subsystem relies on DHCP buffers, hence the last two |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 264 | conditions below. */ |
| 265 | if (daemon->dhcp || daemon->doing_dhcp6 || daemon->relay4 || |
Simon Kelley | 1e50512 | 2016-01-25 21:29:23 +0000 | [diff] [blame] | 266 | daemon->relay6 || option_bool(OPT_TFTP) || option_bool(OPT_SCRIPT_ARP)) |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 267 | { |
| 268 | dhcp_common_init(); |
| 269 | if (daemon->dhcp || daemon->doing_dhcp6) |
| 270 | lease_init(now); |
| 271 | } |
| 272 | |
| 273 | if (daemon->dhcp || daemon->relay4) |
| 274 | dhcp_init(); |
| 275 | |
| 276 | # ifdef HAVE_DHCP6 |
Simon Kelley | 89500e3 | 2013-09-20 16:29:20 +0100 | [diff] [blame] | 277 | if (daemon->doing_ra || daemon->doing_dhcp6 || daemon->relay6) |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 278 | ra_init(now); |
| 279 | |
| 280 | if (daemon->doing_dhcp6 || daemon->relay6) |
| 281 | dhcp6_init(); |
| 282 | # endif |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 283 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 284 | #endif |
Simon Kelley | feba5c1 | 2004-07-27 20:28:58 +0100 | [diff] [blame] | 285 | |
Jason A. Donenfeld | 13d86c7 | 2013-02-22 18:20:53 +0000 | [diff] [blame] | 286 | #ifdef HAVE_IPSET |
| 287 | if (daemon->ipsets) |
| 288 | ipset_init(); |
| 289 | #endif |
| 290 | |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 291 | #if defined(HAVE_LINUX_NETWORK) |
Simon Kelley | 801ca9a | 2012-03-06 19:30:17 +0000 | [diff] [blame] | 292 | netlink_init(); |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 293 | #elif defined(HAVE_BSD_NETWORK) |
| 294 | route_init(); |
Simon Kelley | 801ca9a | 2012-03-06 19:30:17 +0000 | [diff] [blame] | 295 | #endif |
| 296 | |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 297 | if (option_bool(OPT_NOWILD) && option_bool(OPT_CLEVERBIND)) |
| 298 | die(_("cannot set --bind-interfaces and --bind-dynamic"), NULL, EC_BADCONF); |
| 299 | |
Simon Kelley | 115ac3e | 2013-05-20 11:28:32 +0100 | [diff] [blame] | 300 | if (!enumerate_interfaces(1) || !enumerate_interfaces(0)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 301 | die(_("failed to find list of interfaces: %s"), NULL, EC_MISC); |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 302 | |
Simon Kelley | 54dd393 | 2012-06-20 11:23:38 +0100 | [diff] [blame] | 303 | if (option_bool(OPT_NOWILD) || option_bool(OPT_CLEVERBIND)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 304 | { |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 305 | create_bound_listeners(1); |
Simon Kelley | 54dd393 | 2012-06-20 11:23:38 +0100 | [diff] [blame] | 306 | |
| 307 | if (!option_bool(OPT_CLEVERBIND)) |
| 308 | for (if_tmp = daemon->if_names; if_tmp; if_tmp = if_tmp->next) |
| 309 | if (if_tmp->name && !if_tmp->used) |
| 310 | die(_("unknown interface %s"), if_tmp->name, EC_BADNET); |
Simon Kelley | 9380ba7 | 2012-04-16 14:41:56 +0100 | [diff] [blame] | 311 | |
| 312 | #if defined(HAVE_LINUX_NETWORK) && defined(HAVE_DHCP) |
| 313 | /* after enumerate_interfaces() */ |
Simon Kelley | 3b3f441 | 2013-10-11 16:33:28 +0100 | [diff] [blame] | 314 | bound_device = whichdevice(); |
| 315 | |
Simon Kelley | 9380ba7 | 2012-04-16 14:41:56 +0100 | [diff] [blame] | 316 | if (daemon->dhcp) |
| 317 | { |
Simon Kelley | 3b3f441 | 2013-10-11 16:33:28 +0100 | [diff] [blame] | 318 | if (!daemon->relay4 && bound_device) |
| 319 | { |
| 320 | bindtodevice(bound_device, daemon->dhcpfd); |
| 321 | did_bind = 1; |
| 322 | } |
| 323 | if (daemon->enable_pxe && bound_device) |
| 324 | { |
| 325 | bindtodevice(bound_device, daemon->pxefd); |
| 326 | did_bind = 1; |
| 327 | } |
Simon Kelley | 9380ba7 | 2012-04-16 14:41:56 +0100 | [diff] [blame] | 328 | } |
| 329 | #endif |
| 330 | |
| 331 | #if defined(HAVE_LINUX_NETWORK) && defined(HAVE_DHCP6) |
Simon Kelley | 3b3f441 | 2013-10-11 16:33:28 +0100 | [diff] [blame] | 332 | if (daemon->doing_dhcp6 && !daemon->relay6 && bound_device) |
| 333 | { |
| 334 | bindtodevice(bound_device, daemon->dhcp6fd); |
| 335 | did_bind = 1; |
| 336 | } |
Simon Kelley | 9380ba7 | 2012-04-16 14:41:56 +0100 | [diff] [blame] | 337 | #endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 338 | } |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 339 | else |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 340 | create_wildcard_listeners(); |
Simon Kelley | 5d162f2 | 2012-12-20 14:55:46 +0000 | [diff] [blame] | 341 | |
| 342 | #ifdef HAVE_DHCP6 |
| 343 | /* after enumerate_interfaces() */ |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 344 | if (daemon->doing_dhcp6 || daemon->relay6 || daemon->doing_ra) |
Simon Kelley | 5d162f2 | 2012-12-20 14:55:46 +0000 | [diff] [blame] | 345 | join_multicast(1); |
Simon Kelley | 3511a92 | 2013-11-07 10:28:11 +0000 | [diff] [blame] | 346 | |
| 347 | /* After netlink_init() and before create_helper() */ |
| 348 | lease_make_duid(now); |
Simon Kelley | 5d162f2 | 2012-12-20 14:55:46 +0000 | [diff] [blame] | 349 | #endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 350 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 351 | if (daemon->port != 0) |
Simon Kelley | 82e3f45 | 2014-01-31 21:05:48 +0000 | [diff] [blame] | 352 | { |
| 353 | cache_init(); |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 354 | |
Simon Kelley | 82e3f45 | 2014-01-31 21:05:48 +0000 | [diff] [blame] | 355 | #ifdef HAVE_DNSSEC |
| 356 | blockdata_init(); |
| 357 | #endif |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 358 | } |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 359 | |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 360 | #ifdef HAVE_INOTIFY |
Simon Kelley | 70d1873 | 2015-01-31 19:59:29 +0000 | [diff] [blame] | 361 | if (daemon->port != 0 || daemon->dhcp || daemon->doing_dhcp6) |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 362 | inotify_dnsmasq_init(); |
| 363 | else |
| 364 | daemon->inotifyfd = -1; |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 365 | #endif |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 366 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 367 | if (option_bool(OPT_DBUS)) |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 368 | #ifdef HAVE_DBUS |
| 369 | { |
| 370 | char *err; |
| 371 | daemon->dbus = NULL; |
| 372 | daemon->watches = NULL; |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 373 | if ((err = dbus_init())) |
| 374 | die(_("DBus error: %s"), err, EC_MISC); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 375 | } |
| 376 | #else |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 377 | die(_("DBus not available: set HAVE_DBUS in src/config.h"), NULL, EC_BADCONF); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 378 | #endif |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 379 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 380 | if (daemon->port != 0) |
| 381 | pre_allocate_sfds(); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 382 | |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 383 | #if defined(HAVE_SCRIPT) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 384 | /* Note getpwnam returns static storage */ |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 385 | if ((daemon->dhcp || daemon->dhcp6) && |
| 386 | daemon->scriptuser && |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 387 | (daemon->lease_change_command || daemon->luascript)) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 388 | { |
| 389 | if ((ent_pw = getpwnam(daemon->scriptuser))) |
| 390 | { |
| 391 | script_uid = ent_pw->pw_uid; |
| 392 | script_gid = ent_pw->pw_gid; |
| 393 | } |
| 394 | else |
| 395 | baduser = daemon->scriptuser; |
| 396 | } |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 397 | #endif |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 398 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 399 | if (daemon->username && !(ent_pw = getpwnam(daemon->username))) |
| 400 | baduser = daemon->username; |
| 401 | else if (daemon->groupname && !(gp = getgrnam(daemon->groupname))) |
| 402 | baduser = daemon->groupname; |
| 403 | |
| 404 | if (baduser) |
| 405 | die(_("unknown user or group: %s"), baduser, EC_BADCONF); |
Simon Kelley | f6e62e2 | 2015-03-01 18:17:54 +0000 | [diff] [blame] | 406 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 407 | /* implement group defaults, "dip" if available, or group associated with uid */ |
| 408 | if (!daemon->group_set && !gp) |
| 409 | { |
| 410 | if (!(gp = getgrnam(CHGRP)) && ent_pw) |
| 411 | gp = getgrgid(ent_pw->pw_gid); |
| 412 | |
| 413 | /* for error message */ |
| 414 | if (gp) |
| 415 | daemon->groupname = gp->gr_name; |
| 416 | } |
| 417 | |
| 418 | #if defined(HAVE_LINUX_NETWORK) |
| 419 | /* determine capability API version here, while we can still |
| 420 | call safe_malloc */ |
| 421 | if (ent_pw && ent_pw->pw_uid != 0) |
| 422 | { |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 423 | int capsize = 1; /* for header version 1 */ |
Simon Kelley | 3927da4 | 2008-07-20 15:10:39 +0100 | [diff] [blame] | 424 | hdr = safe_malloc(sizeof(*hdr)); |
| 425 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 426 | /* find version supported by kernel */ |
| 427 | memset(hdr, 0, sizeof(*hdr)); |
| 428 | capget(hdr, NULL); |
| 429 | |
| 430 | if (hdr->version != LINUX_CAPABILITY_VERSION_1) |
| 431 | { |
| 432 | /* if unknown version, use largest supported version (3) */ |
| 433 | if (hdr->version != LINUX_CAPABILITY_VERSION_2) |
| 434 | hdr->version = LINUX_CAPABILITY_VERSION_3; |
| 435 | capsize = 2; |
| 436 | } |
| 437 | |
| 438 | data = safe_malloc(sizeof(*data) * capsize); |
| 439 | memset(data, 0, sizeof(*data) * capsize); |
| 440 | } |
| 441 | #endif |
| 442 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 443 | /* Use a pipe to carry signals and other events back to the event loop |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 444 | in a race-free manner and another to carry errors to daemon-invoking process */ |
| 445 | safe_pipe(pipefd, 1); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 446 | |
| 447 | piperead = pipefd[0]; |
| 448 | pipewrite = pipefd[1]; |
| 449 | /* prime the pipe to load stuff first time. */ |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 450 | send_event(pipewrite, EVENT_INIT, 0, NULL); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 451 | |
| 452 | err_pipe[1] = -1; |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 453 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 454 | if (!option_bool(OPT_DEBUG)) |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 455 | { |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 456 | /* The following code "daemonizes" the process. |
| 457 | See Stevens section 12.4 */ |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 458 | |
Simon Kelley | 9e03894 | 2008-05-30 20:06:34 +0100 | [diff] [blame] | 459 | if (chdir("/") != 0) |
| 460 | die(_("cannot chdir to filesystem root: %s"), NULL, EC_MISC); |
| 461 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 462 | #ifndef NO_FORK |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 463 | if (!option_bool(OPT_NO_FORK)) |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 464 | { |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 465 | pid_t pid; |
| 466 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 467 | /* pipe to carry errors back to original process. |
| 468 | When startup is complete we close this and the process terminates. */ |
| 469 | safe_pipe(err_pipe, 0); |
| 470 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 471 | if ((pid = fork()) == -1) |
| 472 | /* fd == -1 since we've not forked, never returns. */ |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 473 | send_event(-1, EVENT_FORK_ERR, errno, NULL); |
Simon Kelley | 9e03894 | 2008-05-30 20:06:34 +0100 | [diff] [blame] | 474 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 475 | if (pid != 0) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 476 | { |
| 477 | struct event_desc ev; |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 478 | char *msg; |
| 479 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 480 | /* close our copy of write-end */ |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 481 | while (retry_send(close(err_pipe[1]))); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 482 | |
| 483 | /* check for errors after the fork */ |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 484 | if (read_event(err_pipe[0], &ev, &msg)) |
| 485 | fatal_event(&ev, msg); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 486 | |
| 487 | _exit(EC_GOOD); |
| 488 | } |
| 489 | |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 490 | while (retry_send(close(err_pipe[0]))); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 491 | |
| 492 | /* NO calls to die() from here on. */ |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 493 | |
| 494 | setsid(); |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 495 | |
| 496 | if ((pid = fork()) == -1) |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 497 | send_event(err_pipe[1], EVENT_FORK_ERR, errno, NULL); |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 498 | |
| 499 | if (pid != 0) |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 500 | _exit(0); |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 501 | } |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 502 | #endif |
Simon Kelley | 9e03894 | 2008-05-30 20:06:34 +0100 | [diff] [blame] | 503 | |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 504 | /* write pidfile _after_ forking ! */ |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 505 | if (daemon->runfile) |
| 506 | { |
Simon Kelley | 79cfefd | 2012-09-02 13:29:51 +0100 | [diff] [blame] | 507 | int fd, err = 0; |
| 508 | |
| 509 | sprintf(daemon->namebuff, "%d\n", (int) getpid()); |
| 510 | |
| 511 | /* Explanation: Some installations of dnsmasq (eg Debian/Ubuntu) locate the pid-file |
| 512 | in a directory which is writable by the non-privileged user that dnsmasq runs as. This |
| 513 | allows the daemon to delete the file as part of its shutdown. This is a security hole to the |
| 514 | extent that an attacker running as the unprivileged user could replace the pidfile with a |
| 515 | symlink, and have the target of that symlink overwritten as root next time dnsmasq starts. |
| 516 | |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 517 | The following code first deletes any existing file, and then opens it with the O_EXCL flag, |
Simon Kelley | 79cfefd | 2012-09-02 13:29:51 +0100 | [diff] [blame] | 518 | ensuring that the open() fails should there be any existing file (because the unlink() failed, |
| 519 | or an attacker exploited the race between unlink() and open()). This ensures that no symlink |
| 520 | attack can succeed. |
| 521 | |
| 522 | Any compromise of the non-privileged user still theoretically allows the pid-file to be |
| 523 | replaced whilst dnsmasq is running. The worst that could allow is that the usual |
| 524 | "shutdown dnsmasq" shell command could be tricked into stopping any other process. |
| 525 | |
| 526 | Note that if dnsmasq is started as non-root (eg for testing) it silently ignores |
| 527 | failure to write the pid-file. |
| 528 | */ |
| 529 | |
| 530 | unlink(daemon->runfile); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 531 | |
Simon Kelley | 79cfefd | 2012-09-02 13:29:51 +0100 | [diff] [blame] | 532 | if ((fd = open(daemon->runfile, O_WRONLY|O_CREAT|O_TRUNC|O_EXCL, S_IWUSR|S_IRUSR|S_IRGRP|S_IROTH)) == -1) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 533 | { |
Simon Kelley | 79cfefd | 2012-09-02 13:29:51 +0100 | [diff] [blame] | 534 | /* only complain if started as root */ |
| 535 | if (getuid() == 0) |
| 536 | err = 1; |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 537 | } |
Simon Kelley | 79cfefd | 2012-09-02 13:29:51 +0100 | [diff] [blame] | 538 | else |
| 539 | { |
| 540 | if (!read_write(fd, (unsigned char *)daemon->namebuff, strlen(daemon->namebuff), 0)) |
| 541 | err = 1; |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 542 | else |
| 543 | { |
| 544 | while (retry_send(close(fd))); |
| 545 | if (errno != 0) |
| 546 | err = 1; |
| 547 | } |
Simon Kelley | 79cfefd | 2012-09-02 13:29:51 +0100 | [diff] [blame] | 548 | } |
| 549 | |
| 550 | if (err) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 551 | { |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 552 | send_event(err_pipe[1], EVENT_PIDFILE, errno, daemon->runfile); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 553 | _exit(0); |
| 554 | } |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 555 | } |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 556 | } |
| 557 | |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 558 | log_err = log_start(ent_pw, err_pipe[1]); |
| 559 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 560 | if (!option_bool(OPT_DEBUG)) |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 561 | { |
| 562 | /* open stdout etc to /dev/null */ |
| 563 | int nullfd = open("/dev/null", O_RDWR); |
Simon Kelley | f7cf749 | 2016-03-01 16:19:23 +0000 | [diff] [blame] | 564 | if (nullfd != -1) |
| 565 | { |
| 566 | dup2(nullfd, STDOUT_FILENO); |
| 567 | dup2(nullfd, STDERR_FILENO); |
| 568 | dup2(nullfd, STDIN_FILENO); |
| 569 | close(nullfd); |
| 570 | } |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 571 | } |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 572 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 573 | /* if we are to run scripts, we need to fork a helper before dropping root. */ |
| 574 | daemon->helperfd = -1; |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 575 | #ifdef HAVE_SCRIPT |
Simon Kelley | 1e50512 | 2016-01-25 21:29:23 +0000 | [diff] [blame] | 576 | if ((daemon->dhcp || daemon->dhcp6 || option_bool(OPT_TFTP) || option_bool(OPT_SCRIPT_ARP)) && |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 577 | (daemon->lease_change_command || daemon->luascript)) |
| 578 | daemon->helperfd = create_helper(pipewrite, err_pipe[1], script_uid, script_gid, max_fd); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 579 | #endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 580 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 581 | if (!option_bool(OPT_DEBUG) && getuid() == 0) |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 582 | { |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 583 | int bad_capabilities = 0; |
| 584 | gid_t dummy; |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 585 | |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 586 | /* remove all supplementary groups */ |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 587 | if (gp && |
| 588 | (setgroups(0, &dummy) == -1 || |
| 589 | setgid(gp->gr_gid) == -1)) |
| 590 | { |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 591 | send_event(err_pipe[1], EVENT_GROUP_ERR, errno, daemon->groupname); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 592 | _exit(0); |
| 593 | } |
| 594 | |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 595 | if (ent_pw && ent_pw->pw_uid != 0) |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 596 | { |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 597 | #if defined(HAVE_LINUX_NETWORK) |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 598 | /* On linux, we keep CAP_NETADMIN (for ARP-injection) and |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 599 | CAP_NET_RAW (for icmp) if we're doing dhcp. If we have yet to bind |
Simon Kelley | 54dd393 | 2012-06-20 11:23:38 +0100 | [diff] [blame] | 600 | ports because of DAD, or we're doing it dynamically, |
| 601 | we need CAP_NET_BIND_SERVICE too. */ |
| 602 | if (is_dad_listeners() || option_bool(OPT_CLEVERBIND)) |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 603 | data->effective = data->permitted = data->inheritable = |
| 604 | (1 << CAP_NET_ADMIN) | (1 << CAP_NET_RAW) | |
| 605 | (1 << CAP_SETUID) | (1 << CAP_NET_BIND_SERVICE); |
| 606 | else |
| 607 | data->effective = data->permitted = data->inheritable = |
| 608 | (1 << CAP_NET_ADMIN) | (1 << CAP_NET_RAW) | (1 << CAP_SETUID); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 609 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 610 | /* Tell kernel to not clear capabilities when dropping root */ |
Simon Kelley | 572b41e | 2011-02-18 18:11:18 +0000 | [diff] [blame] | 611 | if (capset(hdr, data) == -1 || prctl(PR_SET_KEEPCAPS, 1, 0, 0, 0) == -1) |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 612 | bad_capabilities = errno; |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 613 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 614 | #elif defined(HAVE_SOLARIS_NETWORK) |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 615 | /* http://developers.sun.com/solaris/articles/program_privileges.html */ |
| 616 | priv_set_t *priv_set; |
| 617 | |
| 618 | if (!(priv_set = priv_str_to_set("basic", ",", NULL)) || |
| 619 | priv_addset(priv_set, PRIV_NET_ICMPACCESS) == -1 || |
| 620 | priv_addset(priv_set, PRIV_SYS_NET_CONFIG) == -1) |
| 621 | bad_capabilities = errno; |
| 622 | |
| 623 | if (priv_set && bad_capabilities == 0) |
| 624 | { |
| 625 | priv_inverse(priv_set); |
| 626 | |
| 627 | if (setppriv(PRIV_OFF, PRIV_LIMIT, priv_set) == -1) |
| 628 | bad_capabilities = errno; |
| 629 | } |
| 630 | |
| 631 | if (priv_set) |
| 632 | priv_freeset(priv_set); |
| 633 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 634 | #endif |
| 635 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 636 | if (bad_capabilities != 0) |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 637 | { |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 638 | send_event(err_pipe[1], EVENT_CAP_ERR, bad_capabilities, NULL); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 639 | _exit(0); |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 640 | } |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 641 | |
| 642 | /* finally drop root */ |
| 643 | if (setuid(ent_pw->pw_uid) == -1) |
| 644 | { |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 645 | send_event(err_pipe[1], EVENT_USER_ERR, errno, daemon->username); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 646 | _exit(0); |
| 647 | } |
| 648 | |
| 649 | #ifdef HAVE_LINUX_NETWORK |
Simon Kelley | 54dd393 | 2012-06-20 11:23:38 +0100 | [diff] [blame] | 650 | if (is_dad_listeners() || option_bool(OPT_CLEVERBIND)) |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 651 | data->effective = data->permitted = |
| 652 | (1 << CAP_NET_ADMIN) | (1 << CAP_NET_RAW) | (1 << CAP_NET_BIND_SERVICE); |
| 653 | else |
| 654 | data->effective = data->permitted = |
| 655 | (1 << CAP_NET_ADMIN) | (1 << CAP_NET_RAW); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 656 | data->inheritable = 0; |
| 657 | |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 658 | /* lose the setuid and setgid capabilities */ |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 659 | if (capset(hdr, data) == -1) |
| 660 | { |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 661 | send_event(err_pipe[1], EVENT_CAP_ERR, errno, NULL); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 662 | _exit(0); |
| 663 | } |
| 664 | #endif |
| 665 | |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 666 | } |
Simon Kelley | 849a835 | 2006-06-09 21:02:31 +0100 | [diff] [blame] | 667 | } |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 668 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 669 | #ifdef HAVE_LINUX_NETWORK |
Chen Wei | 28b879a | 2015-02-17 22:07:35 +0000 | [diff] [blame] | 670 | free(hdr); |
| 671 | free(data); |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 672 | if (option_bool(OPT_DEBUG)) |
Simon Kelley | 572b41e | 2011-02-18 18:11:18 +0000 | [diff] [blame] | 673 | prctl(PR_SET_DUMPABLE, 1, 0, 0, 0); |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 674 | #endif |
Simon Kelley | 849a835 | 2006-06-09 21:02:31 +0100 | [diff] [blame] | 675 | |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 676 | #ifdef HAVE_TFTP |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 677 | if (option_bool(OPT_TFTP)) |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 678 | { |
| 679 | DIR *dir; |
| 680 | struct tftp_prefix *p; |
| 681 | |
| 682 | if (daemon->tftp_prefix) |
| 683 | { |
| 684 | if (!((dir = opendir(daemon->tftp_prefix)))) |
| 685 | { |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 686 | tftp_prefix_missing = 1; |
| 687 | if (!option_bool(OPT_TFTP_NO_FAIL)) |
| 688 | { |
| 689 | send_event(err_pipe[1], EVENT_TFTP_ERR, errno, daemon->tftp_prefix); |
| 690 | _exit(0); |
| 691 | } |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 692 | } |
Stefan Tomanek | b4c0f09 | 2015-04-16 15:20:59 +0100 | [diff] [blame] | 693 | else |
| 694 | closedir(dir); |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 695 | } |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 696 | |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 697 | for (p = daemon->if_prefix; p; p = p->next) |
| 698 | { |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 699 | p->missing = 0; |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 700 | if (!((dir = opendir(p->prefix)))) |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 701 | { |
| 702 | p->missing = 1; |
| 703 | if (!option_bool(OPT_TFTP_NO_FAIL)) |
| 704 | { |
| 705 | send_event(err_pipe[1], EVENT_TFTP_ERR, errno, p->prefix); |
| 706 | _exit(0); |
| 707 | } |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 708 | } |
Stefan Tomanek | b4c0f09 | 2015-04-16 15:20:59 +0100 | [diff] [blame] | 709 | else |
| 710 | closedir(dir); |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 711 | } |
| 712 | } |
| 713 | #endif |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 714 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 715 | if (daemon->port == 0) |
| 716 | my_syslog(LOG_INFO, _("started, version %s DNS disabled"), VERSION); |
Simon Kelley | 0ef1334 | 2017-01-15 16:42:39 +0000 | [diff] [blame] | 717 | else |
| 718 | { |
| 719 | if (daemon->cachesize != 0) |
| 720 | my_syslog(LOG_INFO, _("started, version %s cachesize %d"), VERSION, daemon->cachesize); |
| 721 | else |
| 722 | my_syslog(LOG_INFO, _("started, version %s cache disabled"), VERSION); |
| 723 | |
| 724 | if (option_bool(OPT_LOCAL_SERVICE)) |
| 725 | my_syslog(LOG_INFO, _("DNS service limited to local subnets")); |
| 726 | } |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 727 | |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 728 | my_syslog(LOG_INFO, _("compile time options: %s"), compile_opts); |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 729 | |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 730 | #ifdef HAVE_DBUS |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 731 | if (option_bool(OPT_DBUS)) |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 732 | { |
| 733 | if (daemon->dbus) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 734 | my_syslog(LOG_INFO, _("DBus support enabled: connected to system bus")); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 735 | else |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 736 | my_syslog(LOG_INFO, _("DBus support enabled: bus connection pending")); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 737 | } |
| 738 | #endif |
Simon Kelley | 1a9a348 | 2014-03-05 15:01:08 +0000 | [diff] [blame] | 739 | |
Simon Kelley | 1d97ac4 | 2014-01-31 11:12:27 +0000 | [diff] [blame] | 740 | #ifdef HAVE_DNSSEC |
Simon Kelley | db73746 | 2014-01-31 10:32:45 +0000 | [diff] [blame] | 741 | if (option_bool(OPT_DNSSEC_VALID)) |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 742 | { |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 743 | int rc; |
| 744 | |
| 745 | /* Delay creating the timestamp file until here, after we've changed user, so that |
| 746 | it has the correct owner to allow updating the mtime later. |
| 747 | This means we have to report fatal errors via the pipe. */ |
| 748 | if ((rc = setup_timestamp()) == -1) |
| 749 | { |
| 750 | send_event(err_pipe[1], EVENT_TIME_ERR, errno, daemon->timestamp_file); |
| 751 | _exit(0); |
| 752 | } |
| 753 | |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 754 | my_syslog(LOG_INFO, _("DNSSEC validation enabled")); |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 755 | |
Kevin Darbyshire-Bryant | 06093a9 | 2016-07-11 21:03:27 +0100 | [diff] [blame] | 756 | daemon->dnssec_no_time_check = option_bool(OPT_DNSSEC_TIME); |
| 757 | if (option_bool(OPT_DNSSEC_TIME) && !daemon->back_to_the_future) |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 758 | my_syslog(LOG_INFO, _("DNSSEC signature timestamps not checked until first cache reload")); |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 759 | |
| 760 | if (rc == 1) |
Simon Kelley | f6e62e2 | 2015-03-01 18:17:54 +0000 | [diff] [blame] | 761 | my_syslog(LOG_INFO, _("DNSSEC signature timestamps not checked until system time valid")); |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 762 | } |
Simon Kelley | db73746 | 2014-01-31 10:32:45 +0000 | [diff] [blame] | 763 | #endif |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 764 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 765 | if (log_err != 0) |
| 766 | my_syslog(LOG_WARNING, _("warning: failed to change owner of %s: %s"), |
| 767 | daemon->log_file, strerror(log_err)); |
Simon Kelley | db73746 | 2014-01-31 10:32:45 +0000 | [diff] [blame] | 768 | |
Simon Kelley | de37951 | 2004-06-22 20:23:33 +0100 | [diff] [blame] | 769 | if (bind_fallback) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 770 | my_syslog(LOG_WARNING, _("setting --bind-interfaces option because of OS limitations")); |
Simon Kelley | dc27e14 | 2013-10-16 13:09:53 +0100 | [diff] [blame] | 771 | |
Simon Kelley | f7029f5 | 2013-11-21 15:09:09 +0000 | [diff] [blame] | 772 | if (option_bool(OPT_NOWILD)) |
| 773 | warn_bound_listeners(); |
Petr MenÅ¡Ãk | ad59f27 | 2017-03-17 17:22:19 +0000 | [diff] [blame] | 774 | else if (!option_bool(OPT_CLEVERBIND)) |
| 775 | warn_wild_labels(); |
Simon Kelley | f7029f5 | 2013-11-21 15:09:09 +0000 | [diff] [blame] | 776 | |
| 777 | warn_int_names(); |
Simon Kelley | de37951 | 2004-06-22 20:23:33 +0100 | [diff] [blame] | 778 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 779 | if (!option_bool(OPT_NOWILD)) |
Simon Kelley | 26128d2 | 2004-11-14 16:43:54 +0000 | [diff] [blame] | 780 | for (if_tmp = daemon->if_names; if_tmp; if_tmp = if_tmp->next) |
| 781 | if (if_tmp->name && !if_tmp->used) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 782 | my_syslog(LOG_WARNING, _("warning: interface %s does not currently exist"), if_tmp->name); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 783 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 784 | if (daemon->port != 0 && option_bool(OPT_NO_RESOLV)) |
Simon Kelley | 208b65c | 2006-08-05 21:41:37 +0100 | [diff] [blame] | 785 | { |
| 786 | if (daemon->resolv_files && !daemon->resolv_files->is_default) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 787 | my_syslog(LOG_WARNING, _("warning: ignoring resolv-file flag because no-resolv is set")); |
Simon Kelley | 208b65c | 2006-08-05 21:41:37 +0100 | [diff] [blame] | 788 | daemon->resolv_files = NULL; |
Simon Kelley | 1b7ecd1 | 2007-02-05 14:57:57 +0000 | [diff] [blame] | 789 | if (!daemon->servers) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 790 | my_syslog(LOG_WARNING, _("warning: no upstream servers configured")); |
Simon Kelley | 208b65c | 2006-08-05 21:41:37 +0100 | [diff] [blame] | 791 | } |
| 792 | |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 793 | if (daemon->max_logs != 0) |
| 794 | my_syslog(LOG_INFO, _("asynchronous logging enabled, queue limit is %d messages"), daemon->max_logs); |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 795 | |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 796 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 797 | #ifdef HAVE_DHCP |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 798 | for (context = daemon->dhcp; context; context = context->next) |
| 799 | log_context(AF_INET, context); |
Simon Kelley | c825754 | 2012-03-28 21:15:41 +0100 | [diff] [blame] | 800 | |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 801 | for (relay = daemon->relay4; relay; relay = relay->next) |
| 802 | log_relay(AF_INET, relay); |
| 803 | |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 804 | # ifdef HAVE_DHCP6 |
| 805 | for (context = daemon->dhcp6; context; context = context->next) |
| 806 | log_context(AF_INET6, context); |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 807 | |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 808 | for (relay = daemon->relay6; relay; relay = relay->next) |
| 809 | log_relay(AF_INET6, relay); |
| 810 | |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 811 | if (daemon->doing_dhcp6 || daemon->doing_ra) |
| 812 | dhcp_construct_contexts(now); |
| 813 | |
| 814 | if (option_bool(OPT_RA)) |
| 815 | my_syslog(MS_DHCP | LOG_INFO, _("IPv6 router advertisement enabled")); |
| 816 | # endif |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 817 | |
Simon Kelley | 3b3f441 | 2013-10-11 16:33:28 +0100 | [diff] [blame] | 818 | # ifdef HAVE_LINUX_NETWORK |
| 819 | if (did_bind) |
| 820 | my_syslog(MS_DHCP | LOG_INFO, _("DHCP, sockets bound exclusively to interface %s"), bound_device); |
| 821 | # endif |
| 822 | |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 823 | /* after dhcp_construct_contexts */ |
Simon Kelley | 8445f5d | 2012-12-17 21:54:08 +0000 | [diff] [blame] | 824 | if (daemon->dhcp || daemon->doing_dhcp6) |
| 825 | lease_find_interfaces(now); |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 826 | #endif |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 827 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 828 | #ifdef HAVE_TFTP |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 829 | if (option_bool(OPT_TFTP)) |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 830 | { |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 831 | struct tftp_prefix *p; |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 832 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 833 | my_syslog(MS_TFTP | LOG_INFO, "TFTP %s%s %s", |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 834 | daemon->tftp_prefix ? _("root is ") : _("enabled"), |
| 835 | daemon->tftp_prefix ? daemon->tftp_prefix: "", |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 836 | option_bool(OPT_TFTP_SECURE) ? _("secure mode") : ""); |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 837 | |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 838 | if (tftp_prefix_missing) |
| 839 | my_syslog(MS_TFTP | LOG_WARNING, _("warning: %s inaccessible"), daemon->tftp_prefix); |
Stefan Tomanek | 7aa970e | 2015-04-01 17:55:07 +0100 | [diff] [blame] | 840 | |
Stefan Tomanek | 30d0879 | 2015-03-31 22:32:11 +0100 | [diff] [blame] | 841 | for (p = daemon->if_prefix; p; p = p->next) |
| 842 | if (p->missing) |
| 843 | my_syslog(MS_TFTP | LOG_WARNING, _("warning: TFTP directory %s inaccessible"), p->prefix); |
| 844 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 845 | /* This is a guess, it assumes that for small limits, |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 846 | disjoint files might be served, but for large limits, |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 847 | a single file will be sent to may clients (the file only needs |
| 848 | one fd). */ |
| 849 | |
| 850 | max_fd -= 30; /* use other than TFTP */ |
| 851 | |
| 852 | if (max_fd < 0) |
| 853 | max_fd = 5; |
| 854 | else if (max_fd < 100) |
| 855 | max_fd = max_fd/2; |
| 856 | else |
| 857 | max_fd = max_fd - 20; |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 858 | |
| 859 | /* if we have to use a limited range of ports, |
| 860 | that will limit the number of transfers */ |
| 861 | if (daemon->start_tftp_port != 0 && |
| 862 | daemon->end_tftp_port - daemon->start_tftp_port + 1 < max_fd) |
| 863 | max_fd = daemon->end_tftp_port - daemon->start_tftp_port + 1; |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 864 | |
| 865 | if (daemon->tftp_max > max_fd) |
| 866 | { |
| 867 | daemon->tftp_max = max_fd; |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 868 | my_syslog(MS_TFTP | LOG_WARNING, |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 869 | _("restricting maximum simultaneous TFTP transfers to %d"), |
| 870 | daemon->tftp_max); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 871 | } |
| 872 | } |
| 873 | #endif |
| 874 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 875 | /* finished start-up - release original process */ |
| 876 | if (err_pipe[1] != -1) |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 877 | while (retry_send(close(err_pipe[1]))); |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 878 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 879 | if (daemon->port != 0) |
| 880 | check_servers(); |
| 881 | |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 882 | pid = getpid(); |
| 883 | |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 884 | #ifdef HAVE_INOTIFY |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 885 | /* Using inotify, have to select a resolv file at startup */ |
| 886 | poll_resolv(1, 0, now); |
| 887 | #endif |
| 888 | |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 889 | while (1) |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 890 | { |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 891 | int t, timeout = -1; |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 892 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 893 | poll_reset(); |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 894 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 895 | /* if we are out of resources, find how long we have to wait |
| 896 | for some to come free, we'll loop around then and restart |
| 897 | listening for queries */ |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 898 | if ((t = set_dns_listeners(now)) != 0) |
| 899 | timeout = t * 1000; |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 900 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 901 | /* Whilst polling for the dbus, or doing a tftp transfer, wake every quarter second */ |
| 902 | if (daemon->tftp_trans || |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 903 | (option_bool(OPT_DBUS) && !daemon->dbus)) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 904 | timeout = 250; |
| 905 | |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 906 | /* Wake every second whilst waiting for DAD to complete */ |
| 907 | else if (is_dad_listeners()) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 908 | timeout = 1000; |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 909 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 910 | #ifdef HAVE_DBUS |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 911 | set_dbus_listeners(); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 912 | #endif |
| 913 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 914 | #ifdef HAVE_DHCP |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 915 | if (daemon->dhcp || daemon->relay4) |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 916 | { |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 917 | poll_listen(daemon->dhcpfd, POLLIN); |
Simon Kelley | 316e273 | 2010-01-22 20:16:09 +0000 | [diff] [blame] | 918 | if (daemon->pxefd != -1) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 919 | poll_listen(daemon->pxefd, POLLIN); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 920 | } |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 921 | #endif |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 922 | |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 923 | #ifdef HAVE_DHCP6 |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 924 | if (daemon->doing_dhcp6 || daemon->relay6) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 925 | poll_listen(daemon->dhcp6fd, POLLIN); |
Simon Kelley | f6d6956 | 2015-07-08 22:38:13 +0100 | [diff] [blame] | 926 | |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 927 | if (daemon->doing_ra) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 928 | poll_listen(daemon->icmp6fd, POLLIN); |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 929 | #endif |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 930 | |
| 931 | #ifdef HAVE_INOTIFY |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 932 | if (daemon->inotifyfd != -1) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 933 | poll_listen(daemon->inotifyfd, POLLIN); |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 934 | #endif |
| 935 | |
| 936 | #if defined(HAVE_LINUX_NETWORK) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 937 | poll_listen(daemon->netlinkfd, POLLIN); |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 938 | #elif defined(HAVE_BSD_NETWORK) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 939 | poll_listen(daemon->routefd, POLLIN); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 940 | #endif |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 941 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 942 | poll_listen(piperead, POLLIN); |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 943 | |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 944 | #ifdef HAVE_SCRIPT |
Simon Kelley | 53a9173 | 2016-01-06 17:59:13 +0000 | [diff] [blame] | 945 | # ifdef HAVE_DHCP |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 946 | while (helper_buf_empty() && do_script_run(now)); |
Simon Kelley | 53a9173 | 2016-01-06 17:59:13 +0000 | [diff] [blame] | 947 | # endif |
| 948 | |
Simon Kelley | 1e50512 | 2016-01-25 21:29:23 +0000 | [diff] [blame] | 949 | /* Refresh cache */ |
| 950 | if (option_bool(OPT_SCRIPT_ARP)) |
| 951 | find_mac(NULL, NULL, 0, now); |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 952 | while (helper_buf_empty() && do_arp_script_run()); |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 953 | |
Simon Kelley | a953096 | 2012-03-20 22:07:35 +0000 | [diff] [blame] | 954 | # ifdef HAVE_TFTP |
| 955 | while (helper_buf_empty() && do_tftp_script_run()); |
| 956 | # endif |
| 957 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 958 | if (!helper_buf_empty()) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 959 | poll_listen(daemon->helperfd, POLLOUT); |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 960 | #else |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 961 | /* need this for other side-effects */ |
Simon Kelley | 53a9173 | 2016-01-06 17:59:13 +0000 | [diff] [blame] | 962 | # ifdef HAVE_DHCP |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 963 | while (do_script_run(now)); |
Simon Kelley | 53a9173 | 2016-01-06 17:59:13 +0000 | [diff] [blame] | 964 | # endif |
| 965 | |
Simon Kelley | b633de9 | 2016-01-06 22:51:17 +0000 | [diff] [blame] | 966 | while (do_arp_script_run()); |
Simon Kelley | a953096 | 2012-03-20 22:07:35 +0000 | [diff] [blame] | 967 | |
| 968 | # ifdef HAVE_TFTP |
| 969 | while (do_tftp_script_run()); |
| 970 | # endif |
| 971 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 972 | #endif |
Simon Kelley | 33702ab | 2015-12-28 23:17:15 +0000 | [diff] [blame] | 973 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 974 | |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 975 | /* must do this just before select(), when we know no |
| 976 | more calls to my_syslog() can occur */ |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 977 | set_log_writer(); |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 978 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 979 | if (do_poll(timeout) < 0) |
| 980 | continue; |
| 981 | |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 982 | now = dnsmasq_time(); |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 983 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 984 | check_log_writer(0); |
Simon Kelley | 115ac3e | 2013-05-20 11:28:32 +0100 | [diff] [blame] | 985 | |
| 986 | /* prime. */ |
| 987 | enumerate_interfaces(1); |
| 988 | |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 989 | /* Check the interfaces to see if any have exited DAD state |
| 990 | and if so, bind the address. */ |
| 991 | if (is_dad_listeners()) |
| 992 | { |
Simon Kelley | 115ac3e | 2013-05-20 11:28:32 +0100 | [diff] [blame] | 993 | enumerate_interfaces(0); |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 994 | /* NB, is_dad_listeners() == 1 --> we're binding interfaces */ |
| 995 | create_bound_listeners(0); |
Simon Kelley | dc27e14 | 2013-10-16 13:09:53 +0100 | [diff] [blame] | 996 | warn_bound_listeners(); |
Simon Kelley | 74c95c2 | 2011-10-19 09:33:39 +0100 | [diff] [blame] | 997 | } |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 998 | |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 999 | #if defined(HAVE_LINUX_NETWORK) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1000 | if (poll_check(daemon->netlinkfd, POLLIN)) |
Simon Kelley | a0358e5 | 2014-06-07 13:38:48 +0100 | [diff] [blame] | 1001 | netlink_multicast(); |
Simon Kelley | 1ee9be4 | 2013-12-09 16:50:19 +0000 | [diff] [blame] | 1002 | #elif defined(HAVE_BSD_NETWORK) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1003 | if (poll_check(daemon->routefd, POLLIN)) |
Simon Kelley | a0358e5 | 2014-06-07 13:38:48 +0100 | [diff] [blame] | 1004 | route_sock(); |
Simon Kelley | c52e189 | 2010-06-07 22:01:39 +0100 | [diff] [blame] | 1005 | #endif |
| 1006 | |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 1007 | #ifdef HAVE_INOTIFY |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1008 | if (daemon->inotifyfd != -1 && poll_check(daemon->inotifyfd, POLLIN) && inotify_check(now)) |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 1009 | { |
| 1010 | if (daemon->port != 0 && !option_bool(OPT_NO_POLL)) |
| 1011 | poll_resolv(1, 1, now); |
| 1012 | } |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 1013 | #else |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1014 | /* Check for changes to resolv files once per second max. */ |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1015 | /* Don't go silent for long periods if the clock goes backwards. */ |
Simon Kelley | 9009d74 | 2008-11-14 20:04:27 +0000 | [diff] [blame] | 1016 | if (daemon->last_resolv == 0 || |
| 1017 | difftime(now, daemon->last_resolv) > 1.0 || |
| 1018 | difftime(now, daemon->last_resolv) < -1.0) |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1019 | { |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1020 | /* poll_resolv doesn't need to reload first time through, since |
| 1021 | that's queued anyway. */ |
Simon Kelley | 33820b7 | 2004-04-03 21:10:00 +0100 | [diff] [blame] | 1022 | |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1023 | poll_resolv(0, daemon->last_resolv != 0, now); |
| 1024 | daemon->last_resolv = now; |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1025 | } |
Simon Kelley | 193de4a | 2014-12-10 17:32:16 +0000 | [diff] [blame] | 1026 | #endif |
| 1027 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1028 | if (poll_check(piperead, POLLIN)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1029 | async_event(piperead, now); |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1030 | |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1031 | #ifdef HAVE_DBUS |
| 1032 | /* if we didn't create a DBus connection, retry now. */ |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1033 | if (option_bool(OPT_DBUS) && !daemon->dbus) |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1034 | { |
| 1035 | char *err; |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1036 | if ((err = dbus_init())) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 1037 | my_syslog(LOG_WARNING, _("DBus error: %s"), err); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1038 | if (daemon->dbus) |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 1039 | my_syslog(LOG_INFO, _("connected to system DBus")); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1040 | } |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1041 | check_dbus_listeners(); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1042 | #endif |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1043 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1044 | check_dns_listeners(now); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1045 | |
| 1046 | #ifdef HAVE_TFTP |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1047 | check_tftp_listeners(now); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1048 | #endif |
| 1049 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1050 | #ifdef HAVE_DHCP |
Simon Kelley | ff7eea2 | 2013-09-04 18:01:38 +0100 | [diff] [blame] | 1051 | if (daemon->dhcp || daemon->relay4) |
Simon Kelley | 316e273 | 2010-01-22 20:16:09 +0000 | [diff] [blame] | 1052 | { |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1053 | if (poll_check(daemon->dhcpfd, POLLIN)) |
Simon Kelley | 316e273 | 2010-01-22 20:16:09 +0000 | [diff] [blame] | 1054 | dhcp_packet(now, 0); |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1055 | if (daemon->pxefd != -1 && poll_check(daemon->pxefd, POLLIN)) |
Simon Kelley | 316e273 | 2010-01-22 20:16:09 +0000 | [diff] [blame] | 1056 | dhcp_packet(now, 1); |
| 1057 | } |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1058 | |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 1059 | #ifdef HAVE_DHCP6 |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1060 | if ((daemon->doing_dhcp6 || daemon->relay6) && poll_check(daemon->dhcp6fd, POLLIN)) |
Simon Kelley | 18c63ef | 2012-05-21 14:34:15 +0100 | [diff] [blame] | 1061 | dhcp6_packet(now); |
Simon Kelley | c5ad4e7 | 2012-02-24 16:06:20 +0000 | [diff] [blame] | 1062 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1063 | if (daemon->doing_ra && poll_check(daemon->icmp6fd, POLLIN)) |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1064 | icmp6_packet(now); |
Simon Kelley | 52b92f4 | 2012-01-22 16:05:15 +0000 | [diff] [blame] | 1065 | #endif |
| 1066 | |
Simon Kelley | 1f15b81 | 2009-10-13 17:49:32 +0100 | [diff] [blame] | 1067 | # ifdef HAVE_SCRIPT |
Simon Kelley | 63ec5d1 | 2015-07-30 20:59:07 +0100 | [diff] [blame] | 1068 | if (daemon->helperfd != -1 && poll_check(daemon->helperfd, POLLOUT)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1069 | helper_write(); |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1070 | # endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1071 | #endif |
| 1072 | |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1073 | } |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1074 | } |
| 1075 | |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1076 | static void sig_handler(int sig) |
| 1077 | { |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1078 | if (pid == 0) |
| 1079 | { |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1080 | /* ignore anything other than TERM during startup |
| 1081 | and in helper proc. (helper ignore TERM too) */ |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1082 | if (sig == SIGTERM) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1083 | exit(EC_MISC); |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1084 | } |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1085 | else if (pid != getpid()) |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1086 | { |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1087 | /* alarm is used to kill TCP children after a fixed time. */ |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1088 | if (sig == SIGALRM) |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1089 | _exit(0); |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1090 | } |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1091 | else |
| 1092 | { |
| 1093 | /* master process */ |
| 1094 | int event, errsave = errno; |
| 1095 | |
| 1096 | if (sig == SIGHUP) |
| 1097 | event = EVENT_RELOAD; |
| 1098 | else if (sig == SIGCHLD) |
| 1099 | event = EVENT_CHILD; |
| 1100 | else if (sig == SIGALRM) |
| 1101 | event = EVENT_ALARM; |
| 1102 | else if (sig == SIGTERM) |
| 1103 | event = EVENT_TERM; |
| 1104 | else if (sig == SIGUSR1) |
| 1105 | event = EVENT_DUMP; |
| 1106 | else if (sig == SIGUSR2) |
| 1107 | event = EVENT_REOPEN; |
| 1108 | else |
| 1109 | return; |
| 1110 | |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1111 | send_event(pipewrite, event, 0, NULL); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1112 | errno = errsave; |
| 1113 | } |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1114 | } |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1115 | |
Simon Kelley | 353ae4d | 2012-03-19 20:07:51 +0000 | [diff] [blame] | 1116 | /* now == 0 -> queue immediate callback */ |
| 1117 | void send_alarm(time_t event, time_t now) |
Simon Kelley | 741c295 | 2012-02-25 13:09:18 +0000 | [diff] [blame] | 1118 | { |
Simon Kelley | 884a6df | 2012-03-20 16:20:22 +0000 | [diff] [blame] | 1119 | if (now == 0 || event != 0) |
Simon Kelley | 353ae4d | 2012-03-19 20:07:51 +0000 | [diff] [blame] | 1120 | { |
Simon Kelley | 884a6df | 2012-03-20 16:20:22 +0000 | [diff] [blame] | 1121 | /* alarm(0) or alarm(-ve) doesn't do what we want.... */ |
| 1122 | if ((now == 0 || difftime(event, now) <= 0.0)) |
| 1123 | send_event(pipewrite, EVENT_ALARM, 0, NULL); |
| 1124 | else |
| 1125 | alarm((unsigned)difftime(event, now)); |
Simon Kelley | 353ae4d | 2012-03-19 20:07:51 +0000 | [diff] [blame] | 1126 | } |
Simon Kelley | 741c295 | 2012-02-25 13:09:18 +0000 | [diff] [blame] | 1127 | } |
| 1128 | |
Simon Kelley | 47a9516 | 2014-07-08 22:22:02 +0100 | [diff] [blame] | 1129 | void queue_event(int event) |
Simon Kelley | a0358e5 | 2014-06-07 13:38:48 +0100 | [diff] [blame] | 1130 | { |
Simon Kelley | 47a9516 | 2014-07-08 22:22:02 +0100 | [diff] [blame] | 1131 | send_event(pipewrite, event, 0, NULL); |
Simon Kelley | a0358e5 | 2014-06-07 13:38:48 +0100 | [diff] [blame] | 1132 | } |
| 1133 | |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1134 | void send_event(int fd, int event, int data, char *msg) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1135 | { |
| 1136 | struct event_desc ev; |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1137 | struct iovec iov[2]; |
| 1138 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1139 | ev.event = event; |
| 1140 | ev.data = data; |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1141 | ev.msg_sz = msg ? strlen(msg) : 0; |
| 1142 | |
| 1143 | iov[0].iov_base = &ev; |
| 1144 | iov[0].iov_len = sizeof(ev); |
| 1145 | iov[1].iov_base = msg; |
| 1146 | iov[1].iov_len = ev.msg_sz; |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1147 | |
| 1148 | /* error pipe, debug mode. */ |
| 1149 | if (fd == -1) |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1150 | fatal_event(&ev, msg); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1151 | else |
| 1152 | /* pipe is non-blocking and struct event_desc is smaller than |
| 1153 | PIPE_BUF, so this either fails or writes everything */ |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1154 | while (writev(fd, iov, msg ? 2 : 1) == -1 && errno == EINTR); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1155 | } |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1156 | |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1157 | /* NOTE: the memory used to return msg is leaked: use msgs in events only |
| 1158 | to describe fatal errors. */ |
| 1159 | static int read_event(int fd, struct event_desc *evp, char **msg) |
| 1160 | { |
| 1161 | char *buf; |
| 1162 | |
| 1163 | if (!read_write(fd, (unsigned char *)evp, sizeof(struct event_desc), 1)) |
| 1164 | return 0; |
| 1165 | |
| 1166 | *msg = NULL; |
| 1167 | |
| 1168 | if (evp->msg_sz != 0 && |
| 1169 | (buf = malloc(evp->msg_sz + 1)) && |
| 1170 | read_write(fd, (unsigned char *)buf, evp->msg_sz, 1)) |
| 1171 | { |
| 1172 | buf[evp->msg_sz] = 0; |
| 1173 | *msg = buf; |
| 1174 | } |
| 1175 | |
| 1176 | return 1; |
| 1177 | } |
| 1178 | |
| 1179 | static void fatal_event(struct event_desc *ev, char *msg) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1180 | { |
| 1181 | errno = ev->data; |
| 1182 | |
| 1183 | switch (ev->event) |
| 1184 | { |
| 1185 | case EVENT_DIE: |
| 1186 | exit(0); |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1187 | |
| 1188 | case EVENT_FORK_ERR: |
| 1189 | die(_("cannot fork into background: %s"), NULL, EC_MISC); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1190 | |
| 1191 | case EVENT_PIPE_ERR: |
| 1192 | die(_("failed to create helper: %s"), NULL, EC_MISC); |
| 1193 | |
| 1194 | case EVENT_CAP_ERR: |
| 1195 | die(_("setting capabilities failed: %s"), NULL, EC_MISC); |
| 1196 | |
| 1197 | case EVENT_USER_ERR: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1198 | die(_("failed to change user-id to %s: %s"), msg, EC_MISC); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1199 | |
| 1200 | case EVENT_GROUP_ERR: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1201 | die(_("failed to change group-id to %s: %s"), msg, EC_MISC); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1202 | |
| 1203 | case EVENT_PIDFILE: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1204 | die(_("failed to open pidfile %s: %s"), msg, EC_FILE); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1205 | |
| 1206 | case EVENT_LOG_ERR: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1207 | die(_("cannot open log %s: %s"), msg, EC_FILE); |
| 1208 | |
| 1209 | case EVENT_LUA_ERR: |
| 1210 | die(_("failed to load Lua script: %s"), msg, EC_MISC); |
Simon Kelley | 8b3ae2f | 2012-06-13 13:43:49 +0100 | [diff] [blame] | 1211 | |
| 1212 | case EVENT_TFTP_ERR: |
| 1213 | die(_("TFTP directory %s inaccessible: %s"), msg, EC_FILE); |
Simon Kelley | 360f251 | 2015-03-07 18:28:06 +0000 | [diff] [blame] | 1214 | |
| 1215 | case EVENT_TIME_ERR: |
| 1216 | die(_("cannot create timestamp file %s: %s" ), msg, EC_BADCONF); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1217 | } |
| 1218 | } |
| 1219 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1220 | static void async_event(int pipe, time_t now) |
| 1221 | { |
| 1222 | pid_t p; |
| 1223 | struct event_desc ev; |
Simon Kelley | 7b1eae4 | 2014-02-20 13:43:28 +0000 | [diff] [blame] | 1224 | int i, check = 0; |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1225 | char *msg; |
| 1226 | |
| 1227 | /* NOTE: the memory used to return msg is leaked: use msgs in events only |
| 1228 | to describe fatal errors. */ |
| 1229 | |
| 1230 | if (read_event(pipe, &ev, &msg)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1231 | switch (ev.event) |
| 1232 | { |
| 1233 | case EVENT_RELOAD: |
Simon Kelley | c8328ec | 2016-08-05 16:54:58 +0100 | [diff] [blame] | 1234 | daemon->soa_sn++; /* Bump zone serial, as it may have changed. */ |
| 1235 | |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 1236 | #ifdef HAVE_DNSSEC |
Kevin Darbyshire-Bryant | 06093a9 | 2016-07-11 21:03:27 +0100 | [diff] [blame] | 1237 | if (daemon->dnssec_no_time_check && option_bool(OPT_DNSSEC_VALID) && option_bool(OPT_DNSSEC_TIME)) |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 1238 | { |
| 1239 | my_syslog(LOG_INFO, _("now checking DNSSEC signature timestamps")); |
Kevin Darbyshire-Bryant | 06093a9 | 2016-07-11 21:03:27 +0100 | [diff] [blame] | 1240 | daemon->dnssec_no_time_check = 0; |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 1241 | } |
| 1242 | #endif |
| 1243 | /* fall through */ |
| 1244 | |
| 1245 | case EVENT_INIT: |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1246 | clear_cache_and_reload(now); |
Simon Kelley | e98bd52 | 2014-03-28 20:41:23 +0000 | [diff] [blame] | 1247 | |
Simon Kelley | 7b1eae4 | 2014-02-20 13:43:28 +0000 | [diff] [blame] | 1248 | if (daemon->port != 0) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1249 | { |
Simon Kelley | 7b1eae4 | 2014-02-20 13:43:28 +0000 | [diff] [blame] | 1250 | if (daemon->resolv_files && option_bool(OPT_NO_POLL)) |
| 1251 | { |
| 1252 | reload_servers(daemon->resolv_files->name); |
| 1253 | check = 1; |
| 1254 | } |
| 1255 | |
| 1256 | if (daemon->servers_file) |
| 1257 | { |
| 1258 | read_servers_file(); |
| 1259 | check = 1; |
| 1260 | } |
| 1261 | |
| 1262 | if (check) |
| 1263 | check_servers(); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1264 | } |
Simon Kelley | 7b1eae4 | 2014-02-20 13:43:28 +0000 | [diff] [blame] | 1265 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1266 | #ifdef HAVE_DHCP |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1267 | rerun_scripts(); |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1268 | #endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1269 | break; |
| 1270 | |
| 1271 | case EVENT_DUMP: |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1272 | if (daemon->port != 0) |
| 1273 | dump_cache(now); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1274 | break; |
| 1275 | |
| 1276 | case EVENT_ALARM: |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1277 | #ifdef HAVE_DHCP |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1278 | if (daemon->dhcp || daemon->doing_dhcp6) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1279 | { |
| 1280 | lease_prune(NULL, now); |
| 1281 | lease_update_file(now); |
| 1282 | } |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 1283 | #ifdef HAVE_DHCP6 |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1284 | else if (daemon->doing_ra) |
Simon Kelley | 353ae4d | 2012-03-19 20:07:51 +0000 | [diff] [blame] | 1285 | /* Not doing DHCP, so no lease system, manage alarms for ra only */ |
| 1286 | send_alarm(periodic_ra(now), now); |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 1287 | #endif |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1288 | #endif |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1289 | break; |
| 1290 | |
| 1291 | case EVENT_CHILD: |
| 1292 | /* See Stevens 5.10 */ |
| 1293 | while ((p = waitpid(-1, NULL, WNOHANG)) != 0) |
| 1294 | if (p == -1) |
| 1295 | { |
| 1296 | if (errno != EINTR) |
| 1297 | break; |
| 1298 | } |
| 1299 | else |
| 1300 | for (i = 0 ; i < MAX_PROCS; i++) |
| 1301 | if (daemon->tcp_pids[i] == p) |
| 1302 | daemon->tcp_pids[i] = 0; |
| 1303 | break; |
| 1304 | |
Petr MenÅ¡Ãk | c77fb9d | 2017-04-16 20:20:08 +0100 | [diff] [blame^] | 1305 | #if defined(HAVE_SCRIPT) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1306 | case EVENT_KILLED: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1307 | my_syslog(LOG_WARNING, _("script process killed by signal %d"), ev.data); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1308 | break; |
| 1309 | |
| 1310 | case EVENT_EXITED: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1311 | my_syslog(LOG_WARNING, _("script process exited with status %d"), ev.data); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1312 | break; |
| 1313 | |
| 1314 | case EVENT_EXEC_ERR: |
Simon Kelley | 9e03894 | 2008-05-30 20:06:34 +0100 | [diff] [blame] | 1315 | my_syslog(LOG_ERR, _("failed to execute %s: %s"), |
| 1316 | daemon->lease_change_command, strerror(ev.data)); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1317 | break; |
| 1318 | |
Petr MenÅ¡Ãk | c77fb9d | 2017-04-16 20:20:08 +0100 | [diff] [blame^] | 1319 | case EVENT_SCRIPT_LOG: |
| 1320 | my_syslog(MS_SCRIPT | LOG_DEBUG, "%s", msg ? msg : ""); |
| 1321 | free(msg); |
| 1322 | msg = NULL; |
| 1323 | break; |
| 1324 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1325 | /* necessary for fatal errors in helper */ |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1326 | case EVENT_USER_ERR: |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1327 | case EVENT_DIE: |
Simon Kelley | c72daea | 2012-01-05 21:33:27 +0000 | [diff] [blame] | 1328 | case EVENT_LUA_ERR: |
| 1329 | fatal_event(&ev, msg); |
Simon Kelley | 9e03894 | 2008-05-30 20:06:34 +0100 | [diff] [blame] | 1330 | break; |
Petr MenÅ¡Ãk | c77fb9d | 2017-04-16 20:20:08 +0100 | [diff] [blame^] | 1331 | #endif |
Simon Kelley | 9e03894 | 2008-05-30 20:06:34 +0100 | [diff] [blame] | 1332 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1333 | case EVENT_REOPEN: |
| 1334 | /* Note: this may leave TCP-handling processes with the old file still open. |
| 1335 | Since any such process will die in CHILD_LIFETIME or probably much sooner, |
| 1336 | we leave them logging to the old file. */ |
| 1337 | if (daemon->log_file != NULL) |
| 1338 | log_reopen(daemon->log_file); |
| 1339 | break; |
Simon Kelley | a0358e5 | 2014-06-07 13:38:48 +0100 | [diff] [blame] | 1340 | |
| 1341 | case EVENT_NEWADDR: |
| 1342 | newaddress(now); |
| 1343 | break; |
Simon Kelley | 47a9516 | 2014-07-08 22:22:02 +0100 | [diff] [blame] | 1344 | |
| 1345 | case EVENT_NEWROUTE: |
| 1346 | resend_query(); |
| 1347 | /* Force re-reading resolv file right now, for luck. */ |
| 1348 | poll_resolv(0, 1, now); |
| 1349 | break; |
| 1350 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1351 | case EVENT_TERM: |
| 1352 | /* Knock all our children on the head. */ |
| 1353 | for (i = 0; i < MAX_PROCS; i++) |
| 1354 | if (daemon->tcp_pids[i] != 0) |
| 1355 | kill(daemon->tcp_pids[i], SIGALRM); |
| 1356 | |
Simon Kelley | 53a9173 | 2016-01-06 17:59:13 +0000 | [diff] [blame] | 1357 | #if defined(HAVE_SCRIPT) && defined(HAVE_DHCP) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1358 | /* handle pending lease transitions */ |
| 1359 | if (daemon->helperfd != -1) |
| 1360 | { |
| 1361 | /* block in writes until all done */ |
| 1362 | if ((i = fcntl(daemon->helperfd, F_GETFL)) != -1) |
| 1363 | fcntl(daemon->helperfd, F_SETFL, i & ~O_NONBLOCK); |
| 1364 | do { |
| 1365 | helper_write(); |
| 1366 | } while (!helper_buf_empty() || do_script_run(now)); |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1367 | while (retry_send(close(daemon->helperfd))); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1368 | } |
| 1369 | #endif |
| 1370 | |
| 1371 | if (daemon->lease_stream) |
| 1372 | fclose(daemon->lease_stream); |
Simon Kelley | 73a08a2 | 2009-02-05 20:28:08 +0000 | [diff] [blame] | 1373 | |
Kevin Darbyshire-Bryant | 34b5d19 | 2015-07-27 19:34:23 +0100 | [diff] [blame] | 1374 | #ifdef HAVE_DNSSEC |
| 1375 | /* update timestamp file on TERM if time is considered valid */ |
| 1376 | if (daemon->back_to_the_future) |
| 1377 | { |
| 1378 | if (utime(daemon->timestamp_file, NULL) == -1) |
| 1379 | my_syslog(LOG_ERR, _("failed to update mtime on %s: %s"), daemon->timestamp_file, strerror(errno)); |
| 1380 | } |
| 1381 | #endif |
| 1382 | |
Simon Kelley | 73a08a2 | 2009-02-05 20:28:08 +0000 | [diff] [blame] | 1383 | if (daemon->runfile) |
| 1384 | unlink(daemon->runfile); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1385 | |
| 1386 | my_syslog(LOG_INFO, _("exiting on receipt of SIGTERM")); |
| 1387 | flush_log(); |
| 1388 | exit(EC_GOOD); |
| 1389 | } |
| 1390 | } |
| 1391 | |
Simon Kelley | 47a9516 | 2014-07-08 22:22:02 +0100 | [diff] [blame] | 1392 | static void poll_resolv(int force, int do_reload, time_t now) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1393 | { |
| 1394 | struct resolvc *res, *latest; |
| 1395 | struct stat statbuf; |
| 1396 | time_t last_change = 0; |
| 1397 | /* There may be more than one possible file. |
| 1398 | Go through and find the one which changed _last_. |
| 1399 | Warn of any which can't be read. */ |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1400 | |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1401 | if (daemon->port == 0 || option_bool(OPT_NO_POLL)) |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1402 | return; |
| 1403 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1404 | for (latest = NULL, res = daemon->resolv_files; res; res = res->next) |
| 1405 | if (stat(res->name, &statbuf) == -1) |
| 1406 | { |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1407 | if (force) |
| 1408 | { |
| 1409 | res->mtime = 0; |
| 1410 | continue; |
| 1411 | } |
| 1412 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1413 | if (!res->logged) |
| 1414 | my_syslog(LOG_WARNING, _("failed to access %s: %s"), res->name, strerror(errno)); |
| 1415 | res->logged = 1; |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1416 | |
| 1417 | if (res->mtime != 0) |
| 1418 | { |
| 1419 | /* existing file evaporated, force selection of the latest |
| 1420 | file even if its mtime hasn't changed since we last looked */ |
| 1421 | poll_resolv(1, do_reload, now); |
| 1422 | return; |
| 1423 | } |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1424 | } |
| 1425 | else |
| 1426 | { |
| 1427 | res->logged = 0; |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1428 | if (force || (statbuf.st_mtime != res->mtime)) |
| 1429 | { |
| 1430 | res->mtime = statbuf.st_mtime; |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1431 | if (difftime(statbuf.st_mtime, last_change) > 0.0) |
| 1432 | { |
| 1433 | last_change = statbuf.st_mtime; |
| 1434 | latest = res; |
| 1435 | } |
| 1436 | } |
| 1437 | } |
| 1438 | |
| 1439 | if (latest) |
| 1440 | { |
| 1441 | static int warned = 0; |
| 1442 | if (reload_servers(latest->name)) |
| 1443 | { |
| 1444 | my_syslog(LOG_INFO, _("reading %s"), latest->name); |
| 1445 | warned = 0; |
| 1446 | check_servers(); |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1447 | if (option_bool(OPT_RELOAD) && do_reload) |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1448 | clear_cache_and_reload(now); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1449 | } |
| 1450 | else |
| 1451 | { |
| 1452 | latest->mtime = 0; |
| 1453 | if (!warned) |
| 1454 | { |
| 1455 | my_syslog(LOG_WARNING, _("no servers found in %s, will retry"), latest->name); |
| 1456 | warned = 1; |
| 1457 | } |
| 1458 | } |
| 1459 | } |
| 1460 | } |
| 1461 | |
| 1462 | void clear_cache_and_reload(time_t now) |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1463 | { |
Vladislav Grishenko | 408c368 | 2013-09-24 16:18:49 +0100 | [diff] [blame] | 1464 | (void)now; |
| 1465 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1466 | if (daemon->port != 0) |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1467 | cache_reload(); |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1468 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1469 | #ifdef HAVE_DHCP |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1470 | if (daemon->dhcp || daemon->doing_dhcp6) |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1471 | { |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1472 | if (option_bool(OPT_ETHERS)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1473 | dhcp_read_ethers(); |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1474 | reread_dhcp(); |
Simon Kelley | 0491805 | 2015-01-26 11:23:43 +0000 | [diff] [blame] | 1475 | #ifdef HAVE_INOTIFY |
Simon Kelley | 70d1873 | 2015-01-31 19:59:29 +0000 | [diff] [blame] | 1476 | set_dynamic_inotify(AH_DHCP_HST | AH_DHCP_OPT, 0, NULL, 0); |
Simon Kelley | 5f4dc5c | 2015-01-20 20:51:02 +0000 | [diff] [blame] | 1477 | #endif |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1478 | dhcp_update_configs(daemon->dhcp_conf); |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1479 | lease_update_from_configs(); |
| 1480 | lease_update_file(now); |
Simon Kelley | 353ae4d | 2012-03-19 20:07:51 +0000 | [diff] [blame] | 1481 | lease_update_dns(1); |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1482 | } |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 1483 | #ifdef HAVE_DHCP6 |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1484 | else if (daemon->doing_ra) |
Simon Kelley | 2021c66 | 2012-05-07 16:43:21 +0100 | [diff] [blame] | 1485 | /* Not doing DHCP, so no lease system, manage |
| 1486 | alarms for ra only */ |
| 1487 | send_alarm(periodic_ra(now), now); |
Simon Kelley | 843c96b | 2012-02-27 17:42:38 +0000 | [diff] [blame] | 1488 | #endif |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1489 | #endif |
Simon Kelley | 3d8df26 | 2005-08-29 12:19:27 +0100 | [diff] [blame] | 1490 | } |
| 1491 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1492 | static int set_dns_listeners(time_t now) |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1493 | { |
| 1494 | struct serverfd *serverfdp; |
| 1495 | struct listener *listener; |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1496 | int wait = 0, i; |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1497 | |
| 1498 | #ifdef HAVE_TFTP |
| 1499 | int tftp = 0; |
| 1500 | struct tftp_transfer *transfer; |
| 1501 | for (transfer = daemon->tftp_trans; transfer; transfer = transfer->next) |
| 1502 | { |
| 1503 | tftp++; |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1504 | poll_listen(transfer->sockfd, POLLIN); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1505 | } |
| 1506 | #endif |
| 1507 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1508 | /* will we be able to get memory? */ |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1509 | if (daemon->port != 0) |
Simon Kelley | 3a23715 | 2013-12-12 12:15:50 +0000 | [diff] [blame] | 1510 | get_new_frec(now, &wait, 0); |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1511 | |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1512 | for (serverfdp = daemon->sfds; serverfdp; serverfdp = serverfdp->next) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1513 | poll_listen(serverfdp->fd, POLLIN); |
Simon Kelley | f6d6956 | 2015-07-08 22:38:13 +0100 | [diff] [blame] | 1514 | |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1515 | if (daemon->port != 0 && !daemon->osport) |
| 1516 | for (i = 0; i < RANDOM_SOCKS; i++) |
| 1517 | if (daemon->randomsocks[i].refcount != 0) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1518 | poll_listen(daemon->randomsocks[i].fd, POLLIN); |
Simon Kelley | f6d6956 | 2015-07-08 22:38:13 +0100 | [diff] [blame] | 1519 | |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1520 | for (listener = daemon->listeners; listener; listener = listener->next) |
| 1521 | { |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1522 | /* only listen for queries if we have resources */ |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1523 | if (listener->fd != -1 && wait == 0) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1524 | poll_listen(listener->fd, POLLIN); |
Simon Kelley | f6d6956 | 2015-07-08 22:38:13 +0100 | [diff] [blame] | 1525 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1526 | /* death of a child goes through the select loop, so |
| 1527 | we don't need to explicitly arrange to wake up here */ |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1528 | if (listener->tcpfd != -1) |
| 1529 | for (i = 0; i < MAX_PROCS; i++) |
| 1530 | if (daemon->tcp_pids[i] == 0) |
| 1531 | { |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1532 | poll_listen(listener->tcpfd, POLLIN); |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1533 | break; |
| 1534 | } |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1535 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1536 | #ifdef HAVE_TFTP |
| 1537 | if (tftp <= daemon->tftp_max && listener->tftpfd != -1) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1538 | poll_listen(listener->tftpfd, POLLIN); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1539 | #endif |
| 1540 | |
| 1541 | } |
| 1542 | |
Simon Kelley | 1697269 | 2006-10-16 20:04:18 +0100 | [diff] [blame] | 1543 | return wait; |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1544 | } |
Simon Kelley | 9e4abcb | 2004-01-22 19:47:41 +0000 | [diff] [blame] | 1545 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1546 | static void check_dns_listeners(time_t now) |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1547 | { |
| 1548 | struct serverfd *serverfdp; |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1549 | struct listener *listener; |
| 1550 | int i; |
| 1551 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1552 | for (serverfdp = daemon->sfds; serverfdp; serverfdp = serverfdp->next) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1553 | if (poll_check(serverfdp->fd, POLLIN)) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1554 | reply_query(serverfdp->fd, serverfdp->source_addr.sa.sa_family, now); |
| 1555 | |
| 1556 | if (daemon->port != 0 && !daemon->osport) |
| 1557 | for (i = 0; i < RANDOM_SOCKS; i++) |
| 1558 | if (daemon->randomsocks[i].refcount != 0 && |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1559 | poll_check(daemon->randomsocks[i].fd, POLLIN)) |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1560 | reply_query(daemon->randomsocks[i].fd, daemon->randomsocks[i].family, now); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1561 | |
| 1562 | for (listener = daemon->listeners; listener; listener = listener->next) |
| 1563 | { |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1564 | if (listener->fd != -1 && poll_check(listener->fd, POLLIN)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1565 | receive_query(listener, now); |
Simon Kelley | 1a6bca8 | 2008-07-11 11:11:42 +0100 | [diff] [blame] | 1566 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1567 | #ifdef HAVE_TFTP |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1568 | if (listener->tftpfd != -1 && poll_check(listener->tftpfd, POLLIN)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1569 | tftp_request(listener, now); |
Simon Kelley | 59353a6 | 2004-11-21 19:34:28 +0000 | [diff] [blame] | 1570 | #endif |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1571 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1572 | if (listener->tcpfd != -1 && poll_check(listener->tcpfd, POLLIN)) |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1573 | { |
Simon Kelley | 22ce550 | 2013-01-22 13:53:04 +0000 | [diff] [blame] | 1574 | int confd, client_ok = 1; |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1575 | struct irec *iface = NULL; |
| 1576 | pid_t p; |
Simon Kelley | 52d4abf | 2012-03-21 21:39:48 +0000 | [diff] [blame] | 1577 | union mysockaddr tcp_addr; |
| 1578 | socklen_t tcp_len = sizeof(union mysockaddr); |
| 1579 | |
| 1580 | while ((confd = accept(listener->tcpfd, NULL, NULL)) == -1 && errno == EINTR); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1581 | |
Simon Kelley | 46b0665 | 2013-02-04 21:47:59 +0000 | [diff] [blame] | 1582 | if (confd == -1) |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1583 | continue; |
Simon Kelley | 76dd75d | 2013-05-23 10:04:25 +0100 | [diff] [blame] | 1584 | |
Simon Kelley | 46b0665 | 2013-02-04 21:47:59 +0000 | [diff] [blame] | 1585 | if (getsockname(confd, (struct sockaddr *)&tcp_addr, &tcp_len) == -1) |
| 1586 | { |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1587 | while (retry_send(close(confd))); |
Simon Kelley | 46b0665 | 2013-02-04 21:47:59 +0000 | [diff] [blame] | 1588 | continue; |
| 1589 | } |
Simon Kelley | 76dd75d | 2013-05-23 10:04:25 +0100 | [diff] [blame] | 1590 | |
| 1591 | /* Make sure that the interface list is up-to-date. |
| 1592 | |
| 1593 | We do this here as we may need the results below, and |
| 1594 | the DNS code needs them for --interface-name stuff. |
Simon Kelley | 46b0665 | 2013-02-04 21:47:59 +0000 | [diff] [blame] | 1595 | |
Simon Kelley | 76dd75d | 2013-05-23 10:04:25 +0100 | [diff] [blame] | 1596 | Multiple calls to enumerate_interfaces() per select loop are |
| 1597 | inhibited, so calls to it in the child process (which doesn't select()) |
| 1598 | have no effect. This avoids two processes reading from the same |
| 1599 | netlink fd and screwing the pooch entirely. |
| 1600 | */ |
Simon Kelley | e25db1f | 2013-01-29 22:10:26 +0000 | [diff] [blame] | 1601 | |
Simon Kelley | 76dd75d | 2013-05-23 10:04:25 +0100 | [diff] [blame] | 1602 | enumerate_interfaces(0); |
| 1603 | |
| 1604 | if (option_bool(OPT_NOWILD)) |
| 1605 | iface = listener->iface; /* May be NULL */ |
| 1606 | else |
| 1607 | { |
| 1608 | int if_index; |
| 1609 | char intr_name[IF_NAMESIZE]; |
| 1610 | |
| 1611 | /* if we can find the arrival interface, check it's one that's allowed */ |
| 1612 | if ((if_index = tcp_interface(confd, tcp_addr.sa.sa_family)) != 0 && |
| 1613 | indextoname(listener->tcpfd, if_index, intr_name)) |
| 1614 | { |
| 1615 | struct all_addr addr; |
| 1616 | addr.addr.addr4 = tcp_addr.in.sin_addr; |
Simon Kelley | e25db1f | 2013-01-29 22:10:26 +0000 | [diff] [blame] | 1617 | #ifdef HAVE_IPV6 |
Simon Kelley | 76dd75d | 2013-05-23 10:04:25 +0100 | [diff] [blame] | 1618 | if (tcp_addr.sa.sa_family == AF_INET6) |
| 1619 | addr.addr.addr6 = tcp_addr.in6.sin6_addr; |
Simon Kelley | e25db1f | 2013-01-29 22:10:26 +0000 | [diff] [blame] | 1620 | #endif |
Simon Kelley | 76dd75d | 2013-05-23 10:04:25 +0100 | [diff] [blame] | 1621 | |
| 1622 | for (iface = daemon->interfaces; iface; iface = iface->next) |
| 1623 | if (iface->index == if_index) |
| 1624 | break; |
| 1625 | |
| 1626 | if (!iface && !loopback_exception(listener->tcpfd, tcp_addr.sa.sa_family, &addr, intr_name)) |
| 1627 | client_ok = 0; |
| 1628 | } |
| 1629 | |
| 1630 | if (option_bool(OPT_CLEVERBIND)) |
| 1631 | iface = listener->iface; /* May be NULL */ |
| 1632 | else |
| 1633 | { |
| 1634 | /* Check for allowed interfaces when binding the wildcard address: |
| 1635 | we do this by looking for an interface with the same address as |
| 1636 | the local address of the TCP connection, then looking to see if that's |
| 1637 | an allowed interface. As a side effect, we get the netmask of the |
| 1638 | interface too, for localisation. */ |
| 1639 | |
| 1640 | for (iface = daemon->interfaces; iface; iface = iface->next) |
| 1641 | if (sockaddr_isequal(&iface->addr, &tcp_addr)) |
| 1642 | break; |
| 1643 | |
| 1644 | if (!iface) |
| 1645 | client_ok = 0; |
| 1646 | } |
| 1647 | } |
| 1648 | |
Simon Kelley | 22ce550 | 2013-01-22 13:53:04 +0000 | [diff] [blame] | 1649 | if (!client_ok) |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1650 | { |
| 1651 | shutdown(confd, SHUT_RDWR); |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1652 | while (retry_send(close(confd))); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1653 | } |
| 1654 | #ifndef NO_FORK |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1655 | else if (!option_bool(OPT_DEBUG) && (p = fork()) != 0) |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1656 | { |
| 1657 | if (p != -1) |
| 1658 | { |
| 1659 | int i; |
| 1660 | for (i = 0; i < MAX_PROCS; i++) |
| 1661 | if (daemon->tcp_pids[i] == 0) |
| 1662 | { |
| 1663 | daemon->tcp_pids[i] = p; |
| 1664 | break; |
| 1665 | } |
| 1666 | } |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1667 | while (retry_send(close(confd))); |
Simon Kelley | 25cf5e3 | 2015-01-09 15:53:03 +0000 | [diff] [blame] | 1668 | |
| 1669 | /* The child can use up to TCP_MAX_QUERIES ids, so skip that many. */ |
| 1670 | daemon->log_id += TCP_MAX_QUERIES; |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1671 | } |
| 1672 | #endif |
| 1673 | else |
| 1674 | { |
| 1675 | unsigned char *buff; |
| 1676 | struct server *s; |
| 1677 | int flags; |
Simon Kelley | 52d4abf | 2012-03-21 21:39:48 +0000 | [diff] [blame] | 1678 | struct in_addr netmask; |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 1679 | int auth_dns; |
Simon Kelley | 52d4abf | 2012-03-21 21:39:48 +0000 | [diff] [blame] | 1680 | |
| 1681 | if (iface) |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 1682 | { |
| 1683 | netmask = iface->netmask; |
| 1684 | auth_dns = iface->dns_auth; |
| 1685 | } |
Simon Kelley | 52d4abf | 2012-03-21 21:39:48 +0000 | [diff] [blame] | 1686 | else |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 1687 | { |
| 1688 | netmask.s_addr = 0; |
| 1689 | auth_dns = 0; |
| 1690 | } |
Simon Kelley | 52d4abf | 2012-03-21 21:39:48 +0000 | [diff] [blame] | 1691 | |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1692 | #ifndef NO_FORK |
Josh Soref | 730c674 | 2017-02-06 16:14:04 +0000 | [diff] [blame] | 1693 | /* Arrange for SIGALRM after CHILD_LIFETIME seconds to |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1694 | terminate the process. */ |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1695 | if (!option_bool(OPT_DEBUG)) |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1696 | alarm(CHILD_LIFETIME); |
Simon Kelley | 8ef5ada | 2010-06-03 19:42:45 +0100 | [diff] [blame] | 1697 | #endif |
| 1698 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1699 | /* start with no upstream connections. */ |
| 1700 | for (s = daemon->servers; s; s = s->next) |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1701 | s->tcpfd = -1; |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1702 | |
| 1703 | /* The connected socket inherits non-blocking |
| 1704 | attribute from the listening socket. |
| 1705 | Reset that here. */ |
| 1706 | if ((flags = fcntl(confd, F_GETFL, 0)) != -1) |
| 1707 | fcntl(confd, F_SETFL, flags & ~O_NONBLOCK); |
| 1708 | |
Simon Kelley | 4f7b304 | 2012-11-28 21:27:02 +0000 | [diff] [blame] | 1709 | buff = tcp_request(confd, now, &tcp_addr, netmask, auth_dns); |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1710 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1711 | shutdown(confd, SHUT_RDWR); |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1712 | while (retry_send(close(confd))); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1713 | |
| 1714 | if (buff) |
| 1715 | free(buff); |
| 1716 | |
| 1717 | for (s = daemon->servers; s; s = s->next) |
| 1718 | if (s->tcpfd != -1) |
| 1719 | { |
| 1720 | shutdown(s->tcpfd, SHUT_RDWR); |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1721 | while (retry_send(close(s->tcpfd))); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1722 | } |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1723 | #ifndef NO_FORK |
Simon Kelley | 28866e9 | 2011-02-14 20:19:14 +0000 | [diff] [blame] | 1724 | if (!option_bool(OPT_DEBUG)) |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1725 | { |
| 1726 | flush_log(); |
| 1727 | _exit(0); |
| 1728 | } |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1729 | #endif |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1730 | } |
| 1731 | } |
| 1732 | } |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1733 | } |
| 1734 | |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1735 | #ifdef HAVE_DHCP |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1736 | int make_icmp_sock(void) |
| 1737 | { |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1738 | int fd; |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1739 | int zeroopt = 0; |
| 1740 | |
| 1741 | if ((fd = socket (AF_INET, SOCK_RAW, IPPROTO_ICMP)) != -1) |
| 1742 | { |
Simon Kelley | 7cebd20 | 2006-05-06 14:13:33 +0100 | [diff] [blame] | 1743 | if (!fix_fd(fd) || |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1744 | setsockopt(fd, SOL_SOCKET, SO_DONTROUTE, &zeroopt, sizeof(zeroopt)) == -1) |
| 1745 | { |
| 1746 | close(fd); |
| 1747 | fd = -1; |
| 1748 | } |
| 1749 | } |
| 1750 | |
| 1751 | return fd; |
| 1752 | } |
| 1753 | |
Simon Kelley | 5aabfc7 | 2007-08-29 11:24:47 +0100 | [diff] [blame] | 1754 | int icmp_ping(struct in_addr addr) |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1755 | { |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1756 | /* Try and get an ICMP echo from a machine. */ |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1757 | |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1758 | int fd; |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1759 | struct sockaddr_in saddr; |
| 1760 | struct { |
| 1761 | struct ip ip; |
| 1762 | struct icmp icmp; |
| 1763 | } packet; |
| 1764 | unsigned short id = rand16(); |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1765 | unsigned int i, j; |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1766 | int gotreply = 0; |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1767 | |
Simon Kelley | 824af85 | 2008-02-12 20:43:05 +0000 | [diff] [blame] | 1768 | #if defined(HAVE_LINUX_NETWORK) || defined (HAVE_SOLARIS_NETWORK) |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1769 | if ((fd = make_icmp_sock()) == -1) |
| 1770 | return 0; |
| 1771 | #else |
| 1772 | int opt = 2000; |
| 1773 | fd = daemon->dhcp_icmp_fd; |
| 1774 | setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &opt, sizeof(opt)); |
| 1775 | #endif |
| 1776 | |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1777 | saddr.sin_family = AF_INET; |
| 1778 | saddr.sin_port = 0; |
| 1779 | saddr.sin_addr = addr; |
| 1780 | #ifdef HAVE_SOCKADDR_SA_LEN |
| 1781 | saddr.sin_len = sizeof(struct sockaddr_in); |
| 1782 | #endif |
| 1783 | |
| 1784 | memset(&packet.icmp, 0, sizeof(packet.icmp)); |
| 1785 | packet.icmp.icmp_type = ICMP_ECHO; |
| 1786 | packet.icmp.icmp_id = id; |
| 1787 | for (j = 0, i = 0; i < sizeof(struct icmp) / 2; i++) |
| 1788 | j += ((u16 *)&packet.icmp)[i]; |
| 1789 | while (j>>16) |
| 1790 | j = (j & 0xffff) + (j >> 16); |
| 1791 | packet.icmp.icmp_cksum = (j == 0xffff) ? j : ~j; |
| 1792 | |
Simon Kelley | ff841eb | 2015-03-11 21:36:30 +0000 | [diff] [blame] | 1793 | while (retry_send(sendto(fd, (char *)&packet.icmp, sizeof(struct icmp), 0, |
| 1794 | (struct sockaddr *)&saddr, sizeof(saddr)))); |
Simon Kelley | fd9fa48 | 2004-10-21 20:24:00 +0100 | [diff] [blame] | 1795 | |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1796 | gotreply = delay_dhcp(dnsmasq_time(), PING_WAIT, fd, addr.s_addr, id); |
| 1797 | |
| 1798 | #if defined(HAVE_LINUX_NETWORK) || defined(HAVE_SOLARIS_NETWORK) |
| 1799 | while (retry_send(close(fd))); |
| 1800 | #else |
| 1801 | opt = 1; |
| 1802 | setsockopt(fd, SOL_SOCKET, SO_RCVBUF, &opt, sizeof(opt)); |
| 1803 | #endif |
| 1804 | |
| 1805 | return gotreply; |
| 1806 | } |
| 1807 | |
| 1808 | int delay_dhcp(time_t start, int sec, int fd, uint32_t addr, unsigned short id) |
| 1809 | { |
| 1810 | /* Delay processing DHCP packets for "sec" seconds counting from "start". |
| 1811 | If "fd" is not -1 it will stop waiting if an ICMP echo reply is received |
| 1812 | from "addr" with ICMP ID "id" and return 1 */ |
| 1813 | |
| 1814 | /* Note that whilst waiting, we check for |
| 1815 | (and service) events on the DNS and TFTP sockets, (so doing that |
| 1816 | better not use any resources our caller has in use...) |
| 1817 | but we remain deaf to signals or further DHCP packets. */ |
| 1818 | |
| 1819 | /* There can be a problem using dnsmasq_time() to end the loop, since |
| 1820 | it's not monotonic, and can go backwards if the system clock is |
| 1821 | tweaked, leading to the code getting stuck in this loop and |
| 1822 | ignoring DHCP requests. To fix this, we check to see if select returned |
| 1823 | as a result of a timeout rather than a socket becoming available. We |
| 1824 | only allow this to happen as many times as it takes to get to the wait time |
| 1825 | in quarter-second chunks. This provides a fallback way to end loop. */ |
| 1826 | |
| 1827 | int rc, timeout_count; |
| 1828 | time_t now; |
| 1829 | |
| 1830 | for (now = dnsmasq_time(), timeout_count = 0; |
| 1831 | (difftime(now, start) <= (float)sec) && (timeout_count < sec * 4);) |
Simon Kelley | fd9fa48 | 2004-10-21 20:24:00 +0100 | [diff] [blame] | 1832 | { |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1833 | poll_reset(); |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1834 | if (fd != -1) |
| 1835 | poll_listen(fd, POLLIN); |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1836 | set_dns_listeners(now); |
| 1837 | set_log_writer(); |
Simon Kelley | c5ad4e7 | 2012-02-24 16:06:20 +0000 | [diff] [blame] | 1838 | |
| 1839 | #ifdef HAVE_DHCP6 |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1840 | if (daemon->doing_ra) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1841 | poll_listen(daemon->icmp6fd, POLLIN); |
Simon Kelley | c5ad4e7 | 2012-02-24 16:06:20 +0000 | [diff] [blame] | 1842 | #endif |
| 1843 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1844 | rc = do_poll(250); |
Simon Kelley | 5e95a55 | 2015-07-05 22:31:30 +0100 | [diff] [blame] | 1845 | |
| 1846 | if (rc < 0) |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1847 | continue; |
Simon Kelley | 5e95a55 | 2015-07-05 22:31:30 +0100 | [diff] [blame] | 1848 | else if (rc == 0) |
| 1849 | timeout_count++; |
Simon Kelley | f2621c7 | 2007-04-29 19:47:21 +0100 | [diff] [blame] | 1850 | |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1851 | now = dnsmasq_time(); |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1852 | |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1853 | check_log_writer(0); |
| 1854 | check_dns_listeners(now); |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1855 | |
Simon Kelley | c5ad4e7 | 2012-02-24 16:06:20 +0000 | [diff] [blame] | 1856 | #ifdef HAVE_DHCP6 |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1857 | if (daemon->doing_ra && poll_check(daemon->icmp6fd, POLLIN)) |
Simon Kelley | 1f77693 | 2012-12-16 19:46:08 +0000 | [diff] [blame] | 1858 | icmp6_packet(now); |
Simon Kelley | c5ad4e7 | 2012-02-24 16:06:20 +0000 | [diff] [blame] | 1859 | #endif |
| 1860 | |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1861 | #ifdef HAVE_TFTP |
Simon Kelley | b842bc9 | 2015-07-12 21:09:11 +0100 | [diff] [blame] | 1862 | check_tftp_listeners(now); |
Simon Kelley | 832af0b | 2007-01-21 20:01:28 +0000 | [diff] [blame] | 1863 | #endif |
| 1864 | |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1865 | if (fd != -1) |
| 1866 | { |
| 1867 | struct { |
| 1868 | struct ip ip; |
| 1869 | struct icmp icmp; |
| 1870 | } packet; |
| 1871 | struct sockaddr_in faddr; |
| 1872 | socklen_t len = sizeof(faddr); |
| 1873 | |
| 1874 | if (poll_check(fd, POLLIN) && |
| 1875 | recvfrom(fd, &packet, sizeof(packet), 0, (struct sockaddr *)&faddr, &len) == sizeof(packet) && |
| 1876 | addr == faddr.sin_addr.s_addr && |
| 1877 | packet.icmp.icmp_type == ICMP_ECHOREPLY && |
| 1878 | packet.icmp.icmp_seq == 0 && |
| 1879 | packet.icmp.icmp_id == id) |
| 1880 | return 1; |
Simon Kelley | fd9fa48 | 2004-10-21 20:24:00 +0100 | [diff] [blame] | 1881 | } |
| 1882 | } |
Simon Kelley | 5e9e0ef | 2006-04-17 14:24:29 +0100 | [diff] [blame] | 1883 | |
Floris Bos | 503c609 | 2017-04-09 23:07:13 +0100 | [diff] [blame] | 1884 | return 0; |
Simon Kelley | 3be3454 | 2004-09-11 19:12:13 +0100 | [diff] [blame] | 1885 | } |
Simon Kelley | 7622fc0 | 2009-06-04 20:32:05 +0100 | [diff] [blame] | 1886 | #endif |
Simon Kelley | 0a85254 | 2005-03-23 20:28:59 +0000 | [diff] [blame] | 1887 | |
| 1888 | |