diff options
author | Davide Camurri <jussx0@gmail.com> | 2010-01-20 21:04:07 +0100 |
---|---|---|
committer | Max Kellermann <max@duempel.org> | 2010-01-20 21:04:07 +0100 |
commit | 7a62818ffdfbdef76784acb8b2e90e7cc14333f0 (patch) | |
tree | 514a95f1bccf2c4f169b0f08f0eaaff00627f28f /src | |
parent | acb0ff1ea869ceb5d7561cf840f3252ae9fd02cb (diff) | |
download | mpd-7a62818ffdfbdef76784acb8b2e90e7cc14333f0.tar.gz mpd-7a62818ffdfbdef76784acb8b2e90e7cc14333f0.tar.xz mpd-7a62818ffdfbdef76784acb8b2e90e7cc14333f0.zip |
client: optionally use libwrap
Diffstat (limited to 'src')
-rw-r--r-- | src/client_new.c | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/src/client_new.c b/src/client_new.c index fd406506f..beb8e14b7 100644 --- a/src/client_new.c +++ b/src/client_new.c @@ -26,6 +26,11 @@ #include <assert.h> #include <unistd.h> +#ifdef HAVE_LIBWRAP +#include <tcpd.h> +#endif + + #define LOG_LEVEL_SECURE G_LOG_LEVEL_INFO static const char GREETING[] = "OK MPD " PROTOCOL_VERSION "\n"; @@ -38,6 +43,31 @@ void client_new(int fd, const struct sockaddr *sa, size_t sa_length, int uid) assert(fd >= 0); +#ifdef HAVE_LIBWRAP + if (sa->sa_family != AF_UNIX) { + char *hostaddr = sockaddr_to_string(sa, sa_length, NULL); + const char *progname = g_get_prgname(); + + struct request_info req; + request_init(&req, RQ_FILE, fd, RQ_DAEMON, progname, 0); + + fromhost(&req); + + if (!hosts_access(&req)) { + /* tcp wrappers says no */ + g_log(G_LOG_DOMAIN, LOG_LEVEL_SECURE, + "libwrap refused connection (libwrap=%s) from %s", + progname, hostaddr); + + g_free(hostaddr); + close(fd); + return; + } + + g_free(hostaddr); + } +#endif /* HAVE_WRAP */ + if (client_list_is_full()) { g_warning("Max Connections Reached!"); close(fd); |