mir/isc-dhcp
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/dhcp synced 2025-08-22 09:57:20 +00:00
Code Issues Releases Wiki Activity
isc-dhcp/server/db.c
Wlodek Wencel 49a7fb582d copy rights update
2022-01-25 16:24:16 +01:00

1288 lines
31 KiB
C
Raw Permalink Blame History

/* db.c
Persistent database management routines for DHCPD... */
/*
* Copyright (C) 2004-2022 Internet Systems Consortium, Inc. ("ISC")
* Copyright (c) 1995-2003 by Internet Software Consortium
*
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT
* OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*
* Internet Systems Consortium, Inc.
* PO Box 360
* Newmarket, NH 03857 USA
* <info@isc.org>
* https://www.isc.org/
*
*/
#include "dhcpd.h"
#include <ctype.h>
#include <errno.h>
#define LEASE_REWRITE_PERIOD 3600
static isc_result_t write_binding_scope(FILE *db_file, struct binding *bnd,
char *prepend);
FILE *db_file;
static int counting = 0;
static int count = 0;
TIME write_time;
int lease_file_is_corrupt = 0;
/* Write a single binding scope value in parsable format.
*/
static isc_result_t
write_binding_scope(FILE *db_file, struct binding *bnd, char *prepend) {
char *s;
if ((db_file == NULL) || (bnd == NULL) || (prepend == NULL))
return DHCP_R_INVALIDARG;
if (bnd->value->type == binding_data) {
if (bnd->value->value.data.data != NULL) {
s = quotify_buf(bnd->value->value.data.data,
bnd->value->value.data.len, '"', MDL);
if (s != NULL) {
errno = 0;
fprintf(db_file, "%sset %s = %s;",
prepend, bnd->name, s);
dfree(s, MDL);
if (errno)
return ISC_R_FAILURE;
} else {
return ISC_R_FAILURE;
}
}
} else if (bnd->value->type == binding_numeric) {
errno = 0;
fprintf(db_file, "%sset %s = %%%ld;", prepend,
bnd->name, bnd->value->value.intval);
if (errno)
return ISC_R_FAILURE;
} else if (bnd->value->type == binding_boolean) {
errno = 0;
fprintf(db_file, "%sset %s = %s;", prepend, bnd->name,
bnd->value->value.intval ? "true" : "false");
if (errno)
return ISC_R_FAILURE;
} else if (bnd->value->type == binding_dns) {
log_error("%s: persistent dns values not supported.",
bnd->name);
} else if (bnd->value->type == binding_function) {
log_error("%s: persistent functions not supported.",
bnd->name);
} else {
log_fatal("%s: unknown binding type %d", bnd->name,
bnd->value->type);
}
return ISC_R_SUCCESS;
}
/* Write the specified lease to the current lease database file. */
int write_lease (lease)
struct lease *lease;
{
int errors = 0;
struct binding *b;
char *s;
const char *tval;
/* If the lease file is corrupt, don't try to write any more leases
until we've written a good lease file. */
if (lease_file_is_corrupt)
if (!new_lease_file (0))
return 0;
if (counting)
++count;
errno = 0;
fprintf (db_file, "lease %s {", piaddr (lease -> ip_addr));
if (errno) {
++errors;
}
if (lease->starts &&
((tval = print_time(lease->starts)) == NULL ||
fprintf(db_file, "\n starts %s", tval) < 0))
++errors;
if (lease->ends &&
((tval = print_time(lease->ends)) == NULL ||
fprintf(db_file, "\n ends %s", tval) < 0))
++errors;
if (lease->tstp &&
((tval = print_time(lease->tstp)) == NULL ||
fprintf(db_file, "\n tstp %s", tval) < 0))
++errors;
if (lease->tsfp &&
((tval = print_time(lease->tsfp)) == NULL ||
fprintf(db_file, "\n tsfp %s", tval) < 0))
++errors;
if (lease->atsfp &&
((tval = print_time(lease->atsfp)) == NULL ||
fprintf(db_file, "\n atsfp %s", tval) < 0))
++errors;
if (lease->cltt &&
((tval = print_time(lease->cltt)) == NULL ||
fprintf(db_file, "\n cltt %s", tval) < 0))
++errors;
if (fprintf (db_file, "\n binding state %s;",
((lease -> binding_state > 0 &&
lease -> binding_state <= FTS_LAST)
? binding_state_names [lease -> binding_state - 1]
: "abandoned")) < 0)
++errors;
if (lease -> binding_state != lease -> next_binding_state)
if (fprintf (db_file, "\n next binding state %s;",
((lease -> next_binding_state > 0 &&
lease -> next_binding_state <= FTS_LAST)
? (binding_state_names
[lease -> next_binding_state - 1])
: "abandoned")) < 0)
++errors;
/*
* In this case, if the rewind state is not present in the lease file,
* the reader will use the current binding state as the most
* conservative (safest) state. So if the in-memory rewind state is
* for some reason invalid, the best thing to do is not to write a
* state and let the reader take on a safe state.
*/
if ((lease->binding_state != lease->rewind_binding_state) &&
(lease->rewind_binding_state > 0) &&
(lease->rewind_binding_state <= FTS_LAST) &&
(fprintf(db_file, "\n rewind binding state %s;",
binding_state_names[lease->rewind_binding_state-1])) < 0)
++errors;
if (lease->flags & RESERVED_LEASE)
if (fprintf(db_file, "\n reserved;") < 0)
++errors;
if (lease->flags & BOOTP_LEASE)
if (fprintf(db_file, "\n dynamic-bootp;") < 0)
++errors;
/* If this lease is billed to a class and is still valid,
write it out. */
if (lease -> billing_class && lease -> ends > cur_time) {
if (!write_billing_class (lease -> billing_class)) {
log_error ("unable to write class %s",
lease -> billing_class -> name);
++errors;
}
}
if (lease -> hardware_addr.hlen) {
errno = 0;
fprintf (db_file, "\n hardware %s %s;",
hardware_types [lease -> hardware_addr.hbuf [0]],
print_hw_addr (lease -> hardware_addr.hbuf [0],
lease -> hardware_addr.hlen - 1,
&lease -> hardware_addr.hbuf [1]));
if (errno)
++errors;
}
if (lease -> uid_len) {
s = format_lease_id(lease->uid, lease->uid_len, lease_id_format,
MDL);
if (s) {
errno = 0;
fprintf (db_file, "\n uid %s;", s);
if (errno)
++errors;
dfree (s, MDL);
} else
++errors;
}
if (lease->scope != NULL) {
for (b = lease->scope->bindings; b; b = b->next) {
if (!b->value)
continue;
if (write_binding_scope(db_file, b, "\n ") != ISC_R_SUCCESS)
++errors;
}
}
if (lease -> agent_options) {
struct option_cache *oc;
struct data_string ds;
pair p;
memset (&ds, 0, sizeof ds);
for (p = lease -> agent_options -> first; p; p = p -> cdr) {
oc = (struct option_cache *)p -> car;
if (oc -> data.len) {
errno = 0;
fprintf (db_file, "\n option agent.%s %s;",
oc -> option -> name,
pretty_print_option (oc -> option, oc -> data.data,
oc -> data.len, 1, 1));
if (errno)
++errors;
}
}
}
if (lease -> client_hostname &&
db_printable((unsigned char *)lease->client_hostname)) {
s = quotify_string (lease -> client_hostname, MDL);
if (s) {
errno = 0;
fprintf (db_file, "\n client-hostname \"%s\";", s);
if (errno)
++errors;
dfree (s, MDL);
} else
++errors;
}
if (lease->on_star.on_expiry) {
errno = 0;
fprintf (db_file, "\n on expiry%s {",
lease->on_star.on_expiry == lease->on_star.on_release
? " or release" : "");
write_statements (db_file, lease->on_star.on_expiry, 4);
/* XXX */
fprintf (db_file, "\n }");
if (errno)
++errors;
}
if (lease->on_star.on_release &&
lease->on_star.on_release != lease->on_star.on_expiry) {
errno = 0;
fprintf (db_file, "\n on release {");
write_statements (db_file, lease->on_star.on_release, 4);
/* XXX */
fprintf (db_file, "\n }");
if (errno)
++errors;
}
errno = 0;
fputs ("\n}\n", db_file);
if (errno)
++errors;
if (errors) {
log_info ("write_lease: unable to write lease %s",
piaddr (lease -> ip_addr));
lease_file_is_corrupt = 1;
}
return !errors;
}
int write_host (host)
struct host_decl *host;
{
int errors = 0;
int i;
struct data_string ip_addrs;
/* If the lease file is corrupt, don't try to write any more leases
until we've written a good lease file. */
if (lease_file_is_corrupt)
if (!new_lease_file (0))
return 0;
if (!db_printable((unsigned char *)host->name))
return 0;
if (counting)
++count;
errno = 0;
fprintf (db_file, "host %s {", host -> name);
if (errno)
++errors;
if (host -> flags & HOST_DECL_DYNAMIC) {
errno = 0;
fprintf (db_file, "\n dynamic;");
if (errno)
++errors;
}
if (host -> flags & HOST_DECL_DELETED) {
errno = 0;
fprintf (db_file, "\n deleted;");
if (errno)
++errors;
} else {
if (host -> interface.hlen) {
errno = 0;
fprintf (db_file, "\n hardware %s %s;",
hardware_types [host -> interface.hbuf [0]],
print_hw_addr (host -> interface.hbuf [0],
host -> interface.hlen - 1,
&host -> interface.hbuf [1]));
if (errno)
++errors;
}
if (host -> client_identifier.len) {
int i;
errno = 0;
if (db_printable_len (host -> client_identifier.data,
host -> client_identifier.len)) {
fprintf (db_file, "\n uid \"%.*s\";",
(int)host -> client_identifier.len,
host -> client_identifier.data);
if (errno)
++errors;
} else {
fprintf (db_file,
"\n uid %2.2x",
host -> client_identifier.data [0]);
if (errno)
++errors;
for (i = 1;
i < host -> client_identifier.len; i++) {
errno = 0;
fprintf (db_file, ":%2.2x",
host ->
client_identifier.data [i]);
if (errno)
++errors;
}
errno = 0;
fputc (';', db_file);
if (errno)
++errors;
}
}
memset (&ip_addrs, 0, sizeof ip_addrs);
if (host -> fixed_addr &&
evaluate_option_cache (&ip_addrs, (struct packet *)0,
(struct lease *)0,
(struct client_state *)0,
(struct option_state *)0,
(struct option_state *)0,
&global_scope,
host -> fixed_addr, MDL)) {
errno = 0;
fprintf (db_file, "\n fixed-address ");
if (errno)
++errors;
for (i = 0; i < ip_addrs.len - 3; i += 4) {
errno = 0;
fprintf (db_file, "%u.%u.%u.%u%s",
ip_addrs.data [i] & 0xff,
ip_addrs.data [i + 1] & 0xff,
ip_addrs.data [i + 2] & 0xff,
ip_addrs.data [i + 3] & 0xff,
i + 7 < ip_addrs.len ? "," : "");
if (errno)
++errors;
}
/* We're done with ip_addrs so pitch it */
data_string_forget (&ip_addrs, MDL);
errno = 0;
fputc (';', db_file);
if (errno)
++errors;
}
if (host -> named_group) {
errno = 0;
fprintf (db_file, "\n group \"%s\";",
host -> named_group -> name);
if (errno)
++errors;
}
if (host -> group &&
(!host -> named_group ||
host -> group != host -> named_group -> group) &&
host -> group != root_group) {
errno = 0;
write_statements (db_file,
host -> group -> statements, 8);
if (errno)
++errors;
}
}
errno = 0;
fputs ("\n}\n", db_file);
if (errno)
++errors;
if (errors) {
log_info ("write_host: unable to write host %s",
host -> name);
lease_file_is_corrupt = 1;
}
return !errors;
}
int write_group (group)
struct group_object *group;
{
int errors = 0;
/* If the lease file is corrupt, don't try to write any more leases
until we've written a good lease file. */
if (lease_file_is_corrupt)
if (!new_lease_file (0))
return 0;
if (!db_printable((unsigned char *)group->name))
return 0;
if (counting)
++count;
errno = 0;
fprintf (db_file, "group %s {", group -> name);
if (errno)
++errors;
if (group -> flags & GROUP_OBJECT_DYNAMIC) {
errno = 0;
fprintf (db_file, "\n dynamic;");
if (errno)
++errors;
}
if (group -> flags & GROUP_OBJECT_STATIC) {
errno = 0;
fprintf (db_file, "\n static;");
if (errno)
++errors;
}
if (group -> flags & GROUP_OBJECT_DELETED) {
errno = 0;
fprintf (db_file, "\n deleted;");
if (errno)
++errors;
} else {
if (group -> group) {
errno = 0;
write_statements (db_file,
group -> group -> statements, 8);
if (errno)
++errors;
}
}
errno = 0;
fputs ("\n}\n", db_file);
if (errno)
++errors;
if (errors) {
log_info ("write_group: unable to write group %s",
group -> name);
lease_file_is_corrupt = 1;
}
return !errors;
}
/*
* Write an IA and the options it has.
*/
int
write_ia(const struct ia_xx *ia) {
struct iasubopt *iasubopt;
struct binding *bnd;
int i;
char addr_buf[sizeof("ffff:ffff:ffff:ffff:ffff:ffff.255.255.255.255")];
const char *binding_state;
const char *tval;
char *s;
int fprintf_ret;
#ifdef EUI_64
/* If we're not writing EUI64 leases to the file, then
* we can skip writing this IA provided all of its leases
* are EUI64. (Not sure you can ever have a case where
* they aren't but doesn't hurt to check) */
if (ia->ia_type == D6O_IA_NA && !persist_eui64) {
int i;
for (i=0; i < ia->num_iasubopt; i++) {
if (!ia->iasubopt[i]->ipv6_pool->ipv6_pond->use_eui_64)
{
break;
}
}
if (i == ia->num_iasubopt) {
/* Their all EUI64 so we can skip it */
return(1);
}
}
#endif
/*
* If the lease file is corrupt, don't try to write any more
* leases until we've written a good lease file.
*/
if (lease_file_is_corrupt) {
if (!new_lease_file(0)) {
return 0;
}
}
if (counting) {
++count;
}
s = format_lease_id(ia->iaid_duid.data, ia->iaid_duid.len,
lease_id_format, MDL);
if (s == NULL) {
goto error_exit;
}
switch (ia->ia_type) {
case D6O_IA_NA:
fprintf_ret = fprintf(db_file, "ia-na %s {\n", s);
break;
case D6O_IA_TA:
fprintf_ret = fprintf(db_file, "ia-ta %s {\n", s);
break;
case D6O_IA_PD:
fprintf_ret = fprintf(db_file, "ia-pd %s {\n", s);
break;
default:
log_error("Unknown ia type %u for %s at %s:%d",
(unsigned)ia->ia_type, s, MDL);
fprintf_ret = -1;
}
dfree(s, MDL);
if (fprintf_ret < 0) {
goto error_exit;
}
if (ia->cltt != MIN_TIME) {
tval = print_time(ia->cltt);
if (tval == NULL) {
goto error_exit;
}
if (fprintf(db_file, " cltt %s\n", tval) < 0) {
goto error_exit;
}
}
for (i=0; i<ia->num_iasubopt; i++) {
iasubopt = ia->iasubopt[i];
inet_ntop(AF_INET6, &iasubopt->addr,
addr_buf, sizeof(addr_buf));
if ((ia->ia_type != D6O_IA_PD) &&
(fprintf(db_file, " iaaddr %s {\n", addr_buf) < 0)) {
goto error_exit;
}
if ((ia->ia_type == D6O_IA_PD) &&
(fprintf(db_file, " iaprefix %s/%d {\n",
addr_buf, (int)iasubopt->plen) < 0)) {
goto error_exit;
}
if ((iasubopt->state <= 0) || (iasubopt->state > FTS_LAST)) {
log_fatal("Unknown iasubopt state %d at %s:%d",
iasubopt->state, MDL);
}
binding_state = binding_state_names[iasubopt->state-1];
if (fprintf(db_file, " binding state %s;\n",
binding_state) < 0) {
goto error_exit;
}
if (fprintf(db_file, " preferred-life %u;\n",
(unsigned)iasubopt->prefer) < 0) {
goto error_exit;
}
if (fprintf(db_file, " max-life %u;\n",
(unsigned)iasubopt->valid) < 0) {
goto error_exit;
}
/* Note that from here on out, the \n is prepended to the
* next write, rather than appended to the current write.
*/
if ((iasubopt->state == FTS_ACTIVE) ||
(iasubopt->state == FTS_ABANDONED) ||
(iasubopt->hard_lifetime_end_time != 0)) {
tval = print_time(iasubopt->hard_lifetime_end_time);
} else {
tval = print_time(iasubopt->soft_lifetime_end_time);
}
if (tval == NULL) {
goto error_exit;
}
if (fprintf(db_file, " ends %s", tval) < 0) {
goto error_exit;
}
/* Write out any binding scopes: note that 'ends' above does
* not have \n on the end! We want that.
*/
if (iasubopt->scope != NULL)
bnd = iasubopt->scope->bindings;
else
bnd = NULL;
for (; bnd != NULL ; bnd = bnd->next) {
if (bnd->value == NULL)
continue;
/* We don't do a regular error_exit because the
* lease db is not corrupt in this case.
*/
if (write_binding_scope(db_file, bnd,
"\n ") != ISC_R_SUCCESS)
goto error_exit;
}
if (iasubopt->on_star.on_expiry) {
if (fprintf(db_file, "\n on expiry%s {",
iasubopt->on_star.on_expiry ==
iasubopt->on_star.on_release
? " or release" : "") < 0)
goto error_exit;
write_statements(db_file,
iasubopt->on_star.on_expiry, 6);
if (fprintf(db_file, "\n }") < 0)
goto error_exit;
}
if (iasubopt->on_star.on_release &&
iasubopt->on_star.on_release !=
iasubopt->on_star.on_expiry) {
if (fprintf(db_file, "\n on release {") < 0)
goto error_exit;
write_statements(db_file,
iasubopt->on_star.on_release, 6);
if (fprintf(db_file, "\n }") < 0)
goto error_exit;
}
if (fprintf(db_file, "\n }\n") < 0)
goto error_exit;
}
if (fprintf(db_file, "}\n\n") < 0)
goto error_exit;
fflush(db_file);
return 1;
error_exit:
log_info("write_ia: unable to write ia");
lease_file_is_corrupt = 1;
return 0;
}
#ifdef DHCPv6
/*
* Put a copy of the server DUID in the leases file.
*/
int
write_server_duid(void) {
struct data_string server_duid;
char *s;
int fprintf_ret;
/*
* Only write the DUID if it's been set.
*/
if (!server_duid_isset()) {
return 1;
}
/*
* If the lease file is corrupt, don't try to write any more
* leases until we've written a good lease file.
*/
if (lease_file_is_corrupt) {
if (!new_lease_file(0)) {
return 0;
}
}
/*
* Get a copy of our server DUID and convert to a quoted string.
*/
memset(&server_duid, 0, sizeof(server_duid));
copy_server_duid(&server_duid, MDL);
s = format_lease_id(server_duid.data, server_duid.len, lease_id_format,
MDL);
data_string_forget(&server_duid, MDL);
if (s == NULL) {
goto error_exit;
}
/*
* Write to the leases file.
*/
fprintf_ret = fprintf(db_file, "server-duid %s;\n\n", s);
dfree(s, MDL);
if (fprintf_ret < 0) {
goto error_exit;
}
/*
* Check if we actually managed to write.
*/
fflush(db_file);
return 1;
error_exit:
log_info("write_server_duid: unable to write server-duid");
lease_file_is_corrupt = 1;
return 0;
}
#endif /* DHCPv6 */
#if defined (FAILOVER_PROTOCOL)
int write_failover_state (dhcp_failover_state_t *state)
{
int errors = 0;
const char *tval;
if (lease_file_is_corrupt)
if (!new_lease_file (0))
return 0;
errno = 0;
fprintf (db_file, "\nfailover peer \"%s\" state {", state -> name);
if (errno)
++errors;
tval = print_time(state->me.stos);
if (tval == NULL ||
fprintf(db_file, "\n my state %s at %s",
(state->me.state == startup) ?
dhcp_failover_state_name_print(state->saved_state) :
dhcp_failover_state_name_print(state->me.state),
tval) < 0)
++errors;
tval = print_time(state->partner.stos);
if (tval == NULL ||
fprintf(db_file, "\n partner state %s at %s",
dhcp_failover_state_name_print(state->partner.state),
tval) < 0)
++errors;
if (state -> i_am == secondary) {
errno = 0;
fprintf (db_file, "\n mclt %ld;",
(unsigned long)state -> mclt);
if (errno)
++errors;
}
errno = 0;
fprintf (db_file, "\n}\n");
if (errno)
++errors;
if (errors) {
log_info ("write_failover_state: unable to write state %s",
state -> name);
lease_file_is_corrupt = 1;
return 0;
}
return 1;
}
#endif
int db_printable (s)
const unsigned char *s;
{
int i;
for (i = 0; s [i]; i++)
if (!isascii (s [i]) || !isprint (s [i])
|| s [i] == '"' || s [i] == '\\')
return 0;
return 1;
}
int db_printable_len (s, len)
const unsigned char *s;
unsigned len;
{
int i;
for (i = 0; i < len; i++)
if (!isascii (s [i]) || !isprint (s [i]) ||
s [i] == '"' || s [i] == '\\')
return 0;
return 1;
}
static int print_hash_string(FILE *fp, struct class *class)
{
int i;
for (i = 0 ; i < class->hash_string.len ; i++)
if (!isascii(class->hash_string.data[i]) ||
!isprint(class->hash_string.data[i]))
break;
if (i == class->hash_string.len) {
if (fprintf(fp, " \"%.*s\"", (int)class->hash_string.len,
class->hash_string.data) <= 0) {
log_error("Failure writing hash string: %m");
return 0;
}
} else {
if (fprintf(fp, " %2.2x", class->hash_string.data[0]) <= 0) {
log_error("Failure writing hash string: %m");
return 0;
}
for (i = 1 ; i < class->hash_string.len ; i++) {
if (fprintf(fp, ":%2.2x",
class->hash_string.data[i]) <= 0) {
log_error("Failure writing hash string: %m");
return 0;
}
}
}
return 1;
}
isc_result_t
write_named_billing_class(const void *key, unsigned len, void *object)
{
const unsigned char *name = key;
struct class *class = object;
if (class->flags & CLASS_DECL_DYNAMIC) {
numclasseswritten++;
if (class->superclass == 0) {
if (fprintf(db_file, "class \"%s\" {\n", name) <= 0)
return ISC_R_IOERROR;
} else {
if (fprintf(db_file, "subclass \"%s\"",
class->superclass->name) <= 0)
return ISC_R_IOERROR;
if (!print_hash_string(db_file, class))
return ISC_R_IOERROR;
if (fprintf(db_file, " {\n") <= 0)
return ISC_R_IOERROR;
}
if ((class->flags & CLASS_DECL_DELETED) != 0) {
if (fprintf(db_file, " deleted;\n") <= 0)
return ISC_R_IOERROR;
} else {
if (fprintf(db_file, " dynamic;\n") <= 0)
return ISC_R_IOERROR;
}
if (class->lease_limit > 0) {
if (fprintf(db_file, " lease limit %d;\n",
class->lease_limit) <= 0)
return ISC_R_IOERROR;
}
if (class->expr != 0) {
if (fprintf(db_file, " match if ") <= 0)
return ISC_R_IOERROR;
errno = 0;
write_expression(db_file, class->expr, 5, 5, 0);
if (errno)
return ISC_R_IOERROR;
if (fprintf(db_file, ";\n") <= 0)
return ISC_R_IOERROR;
}
if (class->submatch != 0) {
if (class->spawning) {
if (fprintf(db_file, " spawn ") <= 0)
return ISC_R_IOERROR;
} else {
if (fprintf(db_file, " match ") <= 0)
return ISC_R_IOERROR;
}
errno = 0;
write_expression(db_file, class->submatch, 5, 5, 0);
if (errno)
return ISC_R_IOERROR;
if (fprintf(db_file, ";\n") <= 0)
return ISC_R_IOERROR;
}
if (class->statements != 0) {
errno = 0;
write_statements(db_file, class->statements, 8);
if (errno)
return ISC_R_IOERROR;
}
/* XXXJAB this isn't right, but classes read in off the
leases file don't get the root group assigned to them
(due to clone_group() call). */
if (class->group != 0 && class->group->authoritative != 0) {
errno = 0;
write_statements(db_file, class->group->statements, 8);
if (errno)
return ISC_R_IOERROR;
}
if (fprintf(db_file, "}\n\n") <= 0)
return ISC_R_IOERROR;
}
if (class->hash != NULL) { /* yep. recursive. god help us. */
/* XXX - cannot check error status of this...
* foo_hash_foreach returns a count of operations completed.
*/
class_hash_foreach(class->hash, write_named_billing_class);
}
return ISC_R_SUCCESS;
}
void write_billing_classes ()
{
struct collection *lp;
struct class *cp;
for (lp = collections; lp; lp = lp -> next) {
for (cp = lp -> classes; cp; cp = cp -> nic) {
if (cp -> spawning && cp -> hash) {
class_hash_foreach (cp -> hash, write_named_billing_class);
}
}
}
}
/* Write a spawned class to the database file. */
int write_billing_class (class)
struct class *class;
{
int errors = 0;
if (lease_file_is_corrupt)
if (!new_lease_file (0))
return 0;
if (!class -> superclass) {
errno = 0;
fprintf (db_file, "\n billing class \"%s\";", class -> name);
return !errno;
}
if (fprintf(db_file, "\n billing subclass \"%s\"",
class -> superclass -> name) < 0)
++errors;
if (!print_hash_string(db_file, class))
++errors;
if (fprintf(db_file, ";") < 0)
++errors;
class -> dirty = !errors;
if (errors)
lease_file_is_corrupt = 1;
return !errors;
}
/* Commit leases after a timeout. */
void commit_leases_timeout (void *foo)
{
commit_leases ();
}
/* Commit any leases that have been written out... */
int commit_leases ()
{
/* Commit any outstanding writes to the lease database file.
We need to do this even if we're rewriting the file below,
just in case the rewrite fails. */
if (fflush (db_file) == EOF) {
log_info("commit_leases: unable to commit, fflush(): %m");
return (0);
}
if ((dont_use_fsync == 0) &&
(fsync(fileno (db_file)) < 0)) {
log_info ("commit_leases: unable to commit, fsync(): %m");
return (0);
}
/* If we haven't rewritten the lease database in over an
hour, rewrite it now. (The length of time should probably
be configurable. */
if (count && cur_time - write_time > LEASE_REWRITE_PERIOD) {
count = 0;
write_time = cur_time;
new_lease_file(0);
}
return (1);
}
/*
* rewrite the lease file about once an hour
* This is meant as a quick patch for ticket 24887. It allows
* us to rotate the v6 lease file without adding too many fsync()
* calls. In the future wes should revisit this area and add
* something similar to the delayed ack code for v4.
*/
int commit_leases_timed()
{
if ((count != 0) && (cur_time - write_time > LEASE_REWRITE_PERIOD)) {
return (commit_leases());
}
return (1);
}
void db_startup (int test_mode)
{
const char *current_db_path;
isc_result_t status;
#if defined (TRACING)
if (!trace_playback ()) {
#endif
/* Unset authoring_byte_order so we'll know if it was specified
in the lease file or not. */
authoring_byte_order = 0;
/* Read in the existing lease file... */
status = read_conf_file (path_dhcpd_db,
(struct group *)0, 0, 1);
if (status != ISC_R_SUCCESS) {
/* XXX ignore status? */
;
}
#if defined (TRACING)
}
#endif
#if defined (TRACING)
/* If we're playing back, there is no lease file, so we can't
append it, so we create one immediately (maybe this isn't
the best solution... */
if (trace_playback ()) {
new_lease_file (0);
}
#endif
/* expire_all_pools will cause writes to the "current" lease file.
* Therefore, in test mode we need to point db_file to a disposable
* file to protect the original lease file. */
current_db_path = (test_mode ? "/dev/null" : path_dhcpd_db);
db_file = fopen (current_db_path, "a");
if (!db_file) {
log_fatal ("Can't open %s for append.", current_db_path);
}
expire_all_pools ();
#if defined (TRACING)
if (trace_playback ())
write_time = cur_time;
else
#endif
time(&write_time);
new_lease_file (test_mode);
#if defined(REPORT_HASH_PERFORMANCE)
log_info("Host HW hash: %s", host_hash_report(host_hw_addr_hash));
log_info("Host UID hash: %s", host_hash_report(host_uid_hash));
log_info("Lease IP hash: %s",
lease_ip_hash_report(lease_ip_addr_hash));
log_info("Lease UID hash: %s", lease_id_hash_report(lease_uid_hash));
log_info("Lease HW hash: %s",
lease_id_hash_report(lease_hw_addr_hash));
#endif
}
int new_lease_file (int test_mode)
{
char newfname [512];
char backfname [512];
TIME t;
int db_fd;
int db_validity;
FILE *new_db_file;
/* Make a temporary lease file... */
time(&t);
db_validity = lease_file_is_corrupt;
/* %Audit% Truncated filename causes panic. %2004.06.17,Safe%
* This should never happen since the path is a configuration
* variable from build-time or command-line. But if it should,
* either by malice or ignorance, we panic, since the potential
* for havoc is high.
*/
if (snprintf (newfname, sizeof newfname, "%s.%d",
path_dhcpd_db, (int)t) >= sizeof newfname)
log_fatal("new_lease_file: lease file path too long");
db_fd = open (newfname, O_WRONLY | O_TRUNC | O_CREAT, 0664);
if (db_fd < 0) {
log_error ("Can't create new lease file: %m");
return 0;
}
#if defined (PARANOIA)
/*
* If we are currently root and plan to change the
* uid and gid change the file information so we
* can manipulate it later, after we've changed
* our group and user (that is dropped privileges.)
*/
if ((set_uid != 0) && (geteuid() == 0) &&
(set_gid != 0) && (getegid() == 0)) {
if (fchown(db_fd, set_uid, set_gid)) {
log_fatal ("Can't chown new lease file: %m");
}
}
#endif /* PARANOIA */
if ((new_db_file = fdopen(db_fd, "w")) == NULL) {
log_error("Can't fdopen new lease file: %m");
close(db_fd);
goto fdfail;
}
/* Close previous database, if any. */
if (db_file)
fclose(db_file);
db_file = new_db_file;
errno = 0;
fprintf (db_file, "# The format of this file is documented in the %s",
"dhcpd.leases(5) manual page.\n");
if (errno)
goto fail;
fprintf (db_file, "# This lease file was written by isc-dhcp-%s\n\n",
PACKAGE_VERSION);
if (errno)
goto fail;
fprintf (db_file, "# authoring-byte-order entry is generated,"
" DO NOT DELETE\n");
if (errno)
goto fail;
fprintf (db_file, "authoring-byte-order %s;\n\n",
(DHCP_BYTE_ORDER == LITTLE_ENDIAN ?
"little-endian" : "big-endian"));
if (errno)
goto fail;
/* At this point we have a new lease file that, so far, could not
* be described as either corrupt nor valid.
*/
lease_file_is_corrupt = 0;
/* Write out all the leases that we know of... */
counting = 0;
if (!write_leases ())
goto fail;
if (test_mode) {
log_debug("Lease file test successful,"
" removing temp lease file: %s",
newfname);
(void)unlink (newfname);
return (1);
}
#if defined (TRACING)
if (!trace_playback ()) {
#endif
/* %Audit% Truncated filename causes panic. %2004.06.17,Safe%
* This should never happen since the path is a configuration
* variable from build-time or command-line. But if it should,
* either by malice or ignorance, we panic, since the potential
* for havoc is too high.
*/
if (snprintf (backfname, sizeof backfname, "%s~", path_dhcpd_db)
>= sizeof backfname)
log_fatal("new_lease_file: backup lease file path too long");
/* Get the old database out of the way... */
if (unlink (backfname) < 0 && errno != ENOENT) {
log_error ("Can't remove old lease database backup %s: %m",
backfname);
goto fail;
}
if (link(path_dhcpd_db, backfname) < 0) {
if (errno == ENOENT) {
log_error("%s is missing - no lease db to backup.",
path_dhcpd_db);
} else {
log_error("Can't backup lease database %s to %s: %m",
path_dhcpd_db, backfname);
goto fail;
}
}
#if defined (TRACING)
}
#endif
/* Move in the new file... */
if (rename (newfname, path_dhcpd_db) < 0) {
log_error ("Can't install new lease database %s to %s: %m",
newfname, path_dhcpd_db);
goto fail;
}
counting = 1;
return 1;
fail:
lease_file_is_corrupt = db_validity;
fdfail:
(void)unlink (newfname);
return 0;
}
int group_writer (struct group_object *group)
{
if (!write_group (group))
return 0;
if (!commit_leases ())
return 0;
return 1;
}
Reference in New Issue View Git Blame Copy Permalink