1 /* $OpenBSD: sasyncd.c,v 1.20 2010/06/16 17:39:05 reyk Exp $ */ 2 3 /* 4 * Copyright (c) 2005 H�kan Olsson. All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 17 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 18 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 19 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 21 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 22 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 23 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 24 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 25 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 26 */ 27 28 /* 29 * This code was written under funding by Multicom Security AB. 30 */ 31 32 33 #include <sys/types.h> 34 #include <sys/time.h> 35 #include <errno.h> 36 #include <fcntl.h> 37 #include <pwd.h> 38 #include <signal.h> 39 #include <stdio.h> 40 #include <string.h> 41 #include <stdlib.h> 42 #include <unistd.h> 43 44 #include "sasyncd.h" 45 46 volatile sig_atomic_t daemon_shutdown = 0; 47 48 /* Called by signal handler for controlled daemon shutdown. */ 49 static void 50 sasyncd_stop(int s) 51 { 52 daemon_shutdown++; 53 } 54 55 static int 56 sasyncd_run(pid_t ppid) 57 { 58 struct timeval *timeout, tv; 59 fd_set *rfds, *wfds; 60 size_t fdsetsize; 61 int maxfd, n; 62 63 n = getdtablesize(); 64 fdsetsize = howmany(n, NFDBITS) * sizeof(fd_mask); 65 66 rfds = (fd_set *)malloc(fdsetsize); 67 if (!rfds) { 68 log_err("malloc(%lu) failed", (unsigned long)fdsetsize); 69 return -1; 70 } 71 72 wfds = (fd_set *)malloc(fdsetsize); 73 if (!wfds) { 74 log_err("malloc(%lu) failed", (unsigned long)fdsetsize); 75 free(rfds); 76 return -1; 77 } 78 79 control_setrun(); 80 81 signal(SIGINT, sasyncd_stop); 82 signal(SIGTERM, sasyncd_stop); 83 84 timer_add("carp_undemote", CARP_DEMOTE_MAXTIME, 85 monitor_carpundemote, NULL); 86 87 while (!daemon_shutdown) { 88 memset(rfds, 0, fdsetsize); 89 memset(wfds, 0, fdsetsize); 90 maxfd = net_set_rfds(rfds); 91 n = net_set_pending_wfds(wfds); 92 if (n > maxfd) 93 maxfd = n; 94 95 pfkey_set_rfd(rfds); 96 pfkey_set_pending_wfd(wfds); 97 if (cfgstate.pfkey_socket + 1 > maxfd) 98 maxfd = cfgstate.pfkey_socket + 1; 99 100 carp_set_rfd(rfds); 101 if (cfgstate.route_socket + 1 > maxfd) 102 maxfd = cfgstate.route_socket + 1; 103 104 timeout = &tv; 105 timer_next_event(&tv); 106 107 n = select(maxfd, rfds, wfds, 0, timeout); 108 if (n == -1) { 109 if (errno != EINTR) { 110 log_err("select()"); 111 sleep(1); 112 } 113 } else if (n) { 114 net_handle_messages(rfds); 115 net_send_messages(wfds); 116 pfkey_read_message(rfds); 117 pfkey_send_message(wfds); 118 carp_read_message(rfds); 119 } 120 timer_run(); 121 122 /* Mostly for debugging. */ 123 if (getppid() != ppid) { 124 log_msg(0, "sasyncd: parent died"); 125 daemon_shutdown++; 126 } 127 } 128 free(rfds); 129 free(wfds); 130 return 0; 131 } 132 133 __dead static void 134 usage(void) 135 { 136 extern char *__progname; 137 138 fprintf(stderr, "usage: %s [-dv] [-c config-file]\n", __progname); 139 exit(1); 140 } 141 142 int 143 main(int argc, char **argv) 144 { 145 extern char *__progname; 146 char *cfgfile = 0; 147 int ch; 148 149 if (geteuid() != 0) { 150 /* No point in continuing. */ 151 fprintf(stderr, "%s: This daemon needs to be run as root.\n", 152 __progname); 153 return 1; 154 } 155 156 memset(&cfgstate, 0, sizeof cfgstate); 157 158 while ((ch = getopt(argc, argv, "c:dv")) != -1) { 159 switch (ch) { 160 case 'c': 161 if (cfgfile) 162 return 2; 163 cfgfile = optarg; 164 break; 165 case 'd': 166 cfgstate.debug++; 167 break; 168 case 'v': 169 cfgstate.verboselevel++; 170 break; 171 default: 172 usage(); 173 } 174 } 175 argc -= optind; 176 argv += optind; 177 178 if (argc > 0) 179 usage(); 180 181 log_init(__progname); 182 timer_init(); 183 184 cfgstate.runstate = INIT; 185 LIST_INIT(&cfgstate.peerlist); 186 187 cfgstate.listen_port = SASYNCD_DEFAULT_PORT; 188 cfgstate.flags |= CTL_DEFAULT; 189 190 if (!cfgfile) 191 cfgfile = SASYNCD_CFGFILE; 192 193 if (conf_parse_file(cfgfile) == 0 ) { 194 if (!cfgstate.sharedkey) { 195 fprintf(stderr, "config: " 196 "no shared key specified, cannot continue"); 197 exit(1); 198 } 199 } else { 200 exit(1); 201 } 202 203 carp_demote(CARP_INC, 0); 204 205 if (carp_init()) 206 return 1; 207 if (pfkey_init(0)) 208 return 1; 209 if (net_init()) 210 return 1; 211 212 if (!cfgstate.debug) 213 if (daemon(1, 0)) { 214 perror("daemon()"); 215 exit(1); 216 } 217 218 if (monitor_init()) { 219 /* Parent, with privileges. */ 220 monitor_loop(); 221 exit(0); 222 } 223 224 /* Child, no privileges left. Run main loop. */ 225 sasyncd_run(getppid()); 226 227 /* Shutdown. */ 228 log_msg(0, "shutting down..."); 229 230 net_shutdown(); 231 pfkey_shutdown(); 232 return 0; 233 } 234 235 /* Special for compiling with Boehms GC. See Makefile and sasyncd.h */ 236 #if defined (GC_DEBUG) 237 char * 238 gc_strdup(const char *x) 239 { 240 char *strcpy(char *,const char *); 241 char *y = malloc(strlen(x) + 1); 242 return strcpy(y,x); 243 } 244 #endif 245