aboutsummaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
authorDavide Camurri <jussx0@gmail.com>2010-01-20 21:04:07 +0100
committerMax Kellermann <max@duempel.org>2010-01-20 21:04:07 +0100
commit7a62818ffdfbdef76784acb8b2e90e7cc14333f0 (patch)
tree514a95f1bccf2c4f169b0f08f0eaaff00627f28f /src
parentacb0ff1ea869ceb5d7561cf840f3252ae9fd02cb (diff)
downloadmpd-7a62818ffdfbdef76784acb8b2e90e7cc14333f0.tar.gz
mpd-7a62818ffdfbdef76784acb8b2e90e7cc14333f0.tar.xz
mpd-7a62818ffdfbdef76784acb8b2e90e7cc14333f0.zip
client: optionally use libwrap
Diffstat (limited to 'src')
-rw-r--r--src/client_new.c30
1 files changed, 30 insertions, 0 deletions
diff --git a/src/client_new.c b/src/client_new.c
index fd406506f..beb8e14b7 100644
--- a/src/client_new.c
+++ b/src/client_new.c
@@ -26,6 +26,11 @@
#include <assert.h>
#include <unistd.h>
+#ifdef HAVE_LIBWRAP
+#include <tcpd.h>
+#endif
+
+
#define LOG_LEVEL_SECURE G_LOG_LEVEL_INFO
static const char GREETING[] = "OK MPD " PROTOCOL_VERSION "\n";
@@ -38,6 +43,31 @@ void client_new(int fd, const struct sockaddr *sa, size_t sa_length, int uid)
assert(fd >= 0);
+#ifdef HAVE_LIBWRAP
+ if (sa->sa_family != AF_UNIX) {
+ char *hostaddr = sockaddr_to_string(sa, sa_length, NULL);
+ const char *progname = g_get_prgname();
+
+ struct request_info req;
+ request_init(&req, RQ_FILE, fd, RQ_DAEMON, progname, 0);
+
+ fromhost(&req);
+
+ if (!hosts_access(&req)) {
+ /* tcp wrappers says no */
+ g_log(G_LOG_DOMAIN, LOG_LEVEL_SECURE,
+ "libwrap refused connection (libwrap=%s) from %s",
+ progname, hostaddr);
+
+ g_free(hostaddr);
+ close(fd);
+ return;
+ }
+
+ g_free(hostaddr);
+ }
+#endif /* HAVE_WRAP */
+
if (client_list_is_full()) {
g_warning("Max Connections Reached!");
close(fd);