ip_tftp_pxy.c revision 1.3
1 1.3 darrenr /* $NetBSD: ip_tftp_pxy.c,v 1.3 2012/07/22 14:27:51 darrenr Exp $ */ 2 1.1 christos 3 1.1 christos /* 4 1.3 darrenr * Copyright (C) 2012 by Darren Reed. 5 1.1 christos * 6 1.1 christos * See the IPFILTER.LICENCE file for details on licencing. 7 1.1 christos * 8 1.3 darrenr * Id: ip_tftp_pxy.c,v 1.1.1.2 2012/07/22 13:45:38 darrenr Exp 9 1.1 christos */ 10 1.1 christos 11 1.1 christos #define IPF_TFTP_PROXY 12 1.1 christos 13 1.3 darrenr typedef struct ipf_tftp_softc_s { 14 1.3 darrenr int ipf_p_tftp_readonly; 15 1.3 darrenr ipftuneable_t *ipf_p_tftp_tune; 16 1.3 darrenr } ipf_tftp_softc_t; 17 1.3 darrenr 18 1.3 darrenr int ipf_p_tftp_backchannel(fr_info_t *, ap_session_t *, nat_t *); 19 1.3 darrenr int ipf_p_tftp_client(ipf_tftp_softc_t *, fr_info_t *, ap_session_t *, 20 1.3 darrenr nat_t *); 21 1.3 darrenr int ipf_p_tftp_in(void *, fr_info_t *, ap_session_t *, nat_t *); 22 1.2 christos void ipf_p_tftp_main_load(void); 23 1.2 christos void ipf_p_tftp_main_unload(void); 24 1.2 christos int ipf_p_tftp_new(void *, fr_info_t *, ap_session_t *, nat_t *); 25 1.3 darrenr void ipf_p_tftp_del(ipf_main_softc_t *, ap_session_t *); 26 1.2 christos int ipf_p_tftp_out(void *, fr_info_t *, ap_session_t *, nat_t *); 27 1.3 darrenr int ipf_p_tftp_server(ipf_tftp_softc_t *, fr_info_t *, ap_session_t *, 28 1.3 darrenr nat_t *); 29 1.3 darrenr void *ipf_p_tftp_soft_create(ipf_main_softc_t *); 30 1.3 darrenr void ipf_p_tftp_soft_destroy(ipf_main_softc_t *, void *); 31 1.1 christos 32 1.1 christos static frentry_t tftpfr; 33 1.3 darrenr static int tftp_proxy_init = 0; 34 1.1 christos 35 1.3 darrenr typedef enum tftp_cmd_e { 36 1.3 darrenr TFTP_CMD_READ = 1, 37 1.3 darrenr TFTP_CMD_WRITE = 2, 38 1.3 darrenr TFTP_CMD_DATA = 3, 39 1.3 darrenr TFTP_CMD_ACK = 4, 40 1.3 darrenr TFTP_CMD_ERROR = 5 41 1.3 darrenr } tftp_cmd_t; 42 1.1 christos 43 1.1 christos typedef struct tftpinfo { 44 1.3 darrenr tftp_cmd_t ti_lastcmd; 45 1.3 darrenr int ti_nextblk; 46 1.3 darrenr int ti_lastblk; 47 1.3 darrenr int ti_lasterror; 48 1.3 darrenr char ti_filename[80]; 49 1.3 darrenr ipnat_t *ti_rule; 50 1.1 christos } tftpinfo_t; 51 1.1 christos 52 1.3 darrenr static ipftuneable_t ipf_tftp_tuneables[] = { 53 1.3 darrenr { { (void *)offsetof(ipf_tftp_softc_t, ipf_p_tftp_readonly) }, 54 1.3 darrenr "tftp_read_only", 0, 1, 55 1.3 darrenr stsizeof(ipf_tftp_softc_t, ipf_p_tftp_readonly), 56 1.3 darrenr 0, NULL, NULL }, 57 1.3 darrenr { { NULL }, NULL, 0, 0, 0, 0, NULL, NULL } 58 1.3 darrenr }; 59 1.1 christos 60 1.1 christos 61 1.1 christos /* 62 1.1 christos * TFTP application proxy initialization. 63 1.1 christos */ 64 1.1 christos void 65 1.2 christos ipf_p_tftp_main_load(void) 66 1.1 christos { 67 1.1 christos 68 1.1 christos bzero((char *)&tftpfr, sizeof(tftpfr)); 69 1.1 christos tftpfr.fr_ref = 1; 70 1.1 christos tftpfr.fr_flags = FR_INQUE|FR_PASS|FR_QUICK|FR_KEEPSTATE; 71 1.1 christos MUTEX_INIT(&tftpfr.fr_lock, "TFTP proxy rule lock"); 72 1.1 christos tftp_proxy_init = 1; 73 1.1 christos } 74 1.1 christos 75 1.1 christos 76 1.1 christos void 77 1.2 christos ipf_p_tftp_main_unload(void) 78 1.1 christos { 79 1.1 christos 80 1.1 christos if (tftp_proxy_init == 1) { 81 1.1 christos MUTEX_DESTROY(&tftpfr.fr_lock); 82 1.1 christos tftp_proxy_init = 0; 83 1.1 christos } 84 1.1 christos } 85 1.1 christos 86 1.1 christos 87 1.3 darrenr void * 88 1.3 darrenr ipf_p_tftp_soft_create(softc) 89 1.3 darrenr ipf_main_softc_t *softc; 90 1.3 darrenr { 91 1.3 darrenr ipf_tftp_softc_t *softt; 92 1.3 darrenr 93 1.3 darrenr KMALLOC(softt, ipf_tftp_softc_t *); 94 1.3 darrenr if (softt == NULL) 95 1.3 darrenr return NULL; 96 1.3 darrenr 97 1.3 darrenr bzero((char *)softt, sizeof(*softt)); 98 1.3 darrenr 99 1.3 darrenr softt->ipf_p_tftp_tune = ipf_tune_array_copy(softt, 100 1.3 darrenr sizeof(ipf_tftp_tuneables), 101 1.3 darrenr ipf_tftp_tuneables); 102 1.3 darrenr if (softt->ipf_p_tftp_tune == NULL) { 103 1.3 darrenr ipf_p_tftp_soft_destroy(softc, softt); 104 1.3 darrenr return NULL; 105 1.3 darrenr } 106 1.3 darrenr if (ipf_tune_array_link(softc, softt->ipf_p_tftp_tune) == -1) { 107 1.3 darrenr ipf_p_tftp_soft_destroy(softc, softt); 108 1.3 darrenr return NULL; 109 1.3 darrenr } 110 1.3 darrenr 111 1.3 darrenr softt->ipf_p_tftp_readonly = 1; 112 1.3 darrenr 113 1.3 darrenr return softt; 114 1.3 darrenr } 115 1.3 darrenr 116 1.3 darrenr 117 1.3 darrenr void 118 1.3 darrenr ipf_p_tftp_soft_destroy(softc, arg) 119 1.3 darrenr ipf_main_softc_t *softc; 120 1.3 darrenr void *arg; 121 1.3 darrenr { 122 1.3 darrenr ipf_tftp_softc_t *softt = arg; 123 1.3 darrenr 124 1.3 darrenr if (softt->ipf_p_tftp_tune != NULL) { 125 1.3 darrenr ipf_tune_array_unlink(softc, softt->ipf_p_tftp_tune); 126 1.3 darrenr KFREES(softt->ipf_p_tftp_tune, sizeof(ipf_tftp_tuneables)); 127 1.3 darrenr softt->ipf_p_tftp_tune = NULL; 128 1.3 darrenr } 129 1.3 darrenr 130 1.3 darrenr KFREE(softt); 131 1.3 darrenr } 132 1.3 darrenr 133 1.3 darrenr 134 1.1 christos int 135 1.2 christos ipf_p_tftp_out(void *arg, fr_info_t *fin, ap_session_t *aps, nat_t *nat) 136 1.1 christos { 137 1.3 darrenr ipf_tftp_softc_t *softt = arg; 138 1.1 christos 139 1.3 darrenr fin->fin_flx |= FI_NOWILD; 140 1.1 christos if (nat->nat_dir == NAT_OUTBOUND) 141 1.3 darrenr return ipf_p_tftp_client(softt, fin, aps, nat); 142 1.3 darrenr return ipf_p_tftp_server(softt, fin, aps, nat); 143 1.1 christos } 144 1.1 christos 145 1.1 christos 146 1.1 christos int 147 1.2 christos ipf_p_tftp_in(void *arg, fr_info_t *fin, ap_session_t *aps, nat_t *nat) 148 1.1 christos { 149 1.3 darrenr ipf_tftp_softc_t *softt = arg; 150 1.1 christos 151 1.3 darrenr fin->fin_flx |= FI_NOWILD; 152 1.1 christos if (nat->nat_dir == NAT_INBOUND) 153 1.3 darrenr return ipf_p_tftp_client(softt, fin, aps, nat); 154 1.3 darrenr return ipf_p_tftp_server(softt, fin, aps, nat); 155 1.1 christos } 156 1.1 christos 157 1.1 christos 158 1.1 christos int 159 1.2 christos ipf_p_tftp_new(void *arg, fr_info_t *fin, ap_session_t *aps, nat_t *nat) 160 1.1 christos { 161 1.1 christos udphdr_t *udp; 162 1.1 christos tftpinfo_t *ti; 163 1.3 darrenr ipnat_t *ipn; 164 1.3 darrenr ipnat_t *np; 165 1.3 darrenr int size; 166 1.3 darrenr 167 1.3 darrenr fin = fin; /* LINT */ 168 1.3 darrenr 169 1.3 darrenr np = nat->nat_ptr; 170 1.3 darrenr size = np->in_size; 171 1.1 christos 172 1.1 christos KMALLOC(ti, tftpinfo_t *); 173 1.1 christos if (ti == NULL) 174 1.1 christos return -1; 175 1.3 darrenr KMALLOCS(ipn, ipnat_t *, size); 176 1.3 darrenr if (ipn == NULL) { 177 1.3 darrenr KFREE(ti); 178 1.3 darrenr return -1; 179 1.3 darrenr } 180 1.1 christos 181 1.1 christos aps->aps_data = ti; 182 1.1 christos aps->aps_psiz = sizeof(*ti); 183 1.3 darrenr bzero((char *)ti, sizeof(*ti)); 184 1.3 darrenr bzero((char *)ipn, size); 185 1.3 darrenr ti->ti_rule = ipn; 186 1.1 christos 187 1.1 christos udp = (udphdr_t *)fin->fin_dp; 188 1.1 christos aps->aps_sport = udp->uh_sport; 189 1.1 christos aps->aps_dport = udp->uh_dport; 190 1.3 darrenr 191 1.3 darrenr ipn->in_size = size; 192 1.3 darrenr ipn->in_apr = NULL; 193 1.3 darrenr ipn->in_use = 1; 194 1.3 darrenr ipn->in_hits = 1; 195 1.3 darrenr ipn->in_ippip = 1; 196 1.3 darrenr ipn->in_pr[0] = IPPROTO_UDP; 197 1.3 darrenr ipn->in_pr[1] = IPPROTO_UDP; 198 1.3 darrenr ipn->in_ifps[0] = nat->nat_ifps[0]; 199 1.3 darrenr ipn->in_ifps[1] = nat->nat_ifps[1]; 200 1.3 darrenr ipn->in_v[0] = nat->nat_ptr->in_v[1]; 201 1.3 darrenr ipn->in_v[1] = nat->nat_ptr->in_v[0]; 202 1.3 darrenr ipn->in_flags = IPN_UDP|IPN_FIXEDDPORT|IPN_PROXYRULE; 203 1.3 darrenr 204 1.3 darrenr ipn->in_nsrcip6 = nat->nat_odst6; 205 1.3 darrenr ipn->in_osrcip6 = nat->nat_ndst6; 206 1.3 darrenr 207 1.3 darrenr if ((np->in_redir & NAT_REDIRECT) != 0) { 208 1.3 darrenr ipn->in_redir = NAT_MAP; 209 1.3 darrenr if (ipn->in_v[0] == 4) { 210 1.3 darrenr ipn->in_snip = ntohl(nat->nat_odstaddr); 211 1.3 darrenr ipn->in_dnip = ntohl(nat->nat_nsrcaddr); 212 1.3 darrenr } else { 213 1.3 darrenr #ifdef USE_INET6 214 1.3 darrenr ipn->in_snip6 = nat->nat_odst6; 215 1.3 darrenr ipn->in_dnip6 = nat->nat_nsrc6; 216 1.3 darrenr #endif 217 1.3 darrenr } 218 1.3 darrenr ipn->in_ndstip6 = nat->nat_nsrc6; 219 1.3 darrenr ipn->in_odstip6 = nat->nat_osrc6; 220 1.3 darrenr } else { 221 1.3 darrenr ipn->in_redir = NAT_REDIRECT; 222 1.3 darrenr if (ipn->in_v[0] == 4) { 223 1.3 darrenr ipn->in_snip = ntohl(nat->nat_odstaddr); 224 1.3 darrenr ipn->in_dnip = ntohl(nat->nat_osrcaddr); 225 1.3 darrenr } else { 226 1.3 darrenr #ifdef USE_INET6 227 1.3 darrenr ipn->in_snip6 = nat->nat_odst6; 228 1.3 darrenr ipn->in_dnip6 = nat->nat_osrc6; 229 1.3 darrenr #endif 230 1.3 darrenr } 231 1.3 darrenr ipn->in_ndstip6 = nat->nat_osrc6; 232 1.3 darrenr ipn->in_odstip6 = nat->nat_nsrc6; 233 1.3 darrenr } 234 1.3 darrenr ipn->in_odport = htons(fin->fin_sport); 235 1.3 darrenr ipn->in_ndport = htons(fin->fin_sport); 236 1.3 darrenr 237 1.3 darrenr IP6_SETONES(&ipn->in_osrcmsk6); 238 1.3 darrenr IP6_SETONES(&ipn->in_nsrcmsk6); 239 1.3 darrenr IP6_SETONES(&ipn->in_odstmsk6); 240 1.3 darrenr IP6_SETONES(&ipn->in_ndstmsk6); 241 1.3 darrenr MUTEX_INIT(&ipn->in_lock, "tftp proxy NAT rule"); 242 1.3 darrenr 243 1.3 darrenr ipn->in_namelen = np->in_namelen; 244 1.3 darrenr bcopy(np->in_names, ipn->in_ifnames, ipn->in_namelen); 245 1.3 darrenr ipn->in_ifnames[0] = np->in_ifnames[0]; 246 1.3 darrenr ipn->in_ifnames[1] = np->in_ifnames[1]; 247 1.3 darrenr 248 1.3 darrenr ti->ti_lastcmd = 0; 249 1.3 darrenr 250 1.1 christos return 0; 251 1.1 christos } 252 1.1 christos 253 1.1 christos 254 1.3 darrenr void 255 1.3 darrenr ipf_p_tftp_del(softc, aps) 256 1.3 darrenr ipf_main_softc_t *softc; 257 1.3 darrenr ap_session_t *aps; 258 1.3 darrenr { 259 1.3 darrenr tftpinfo_t *tftp; 260 1.3 darrenr 261 1.3 darrenr tftp = aps->aps_data; 262 1.3 darrenr if (tftp != NULL) { 263 1.3 darrenr tftp->ti_rule->in_flags |= IPN_DELETE; 264 1.3 darrenr ipf_nat_rule_deref(softc, &tftp->ti_rule); 265 1.3 darrenr } 266 1.3 darrenr } 267 1.3 darrenr 268 1.3 darrenr 269 1.1 christos /* 270 1.1 christos * Setup for a new TFTP proxy. 271 1.1 christos */ 272 1.1 christos int 273 1.2 christos ipf_p_tftp_backchannel(fr_info_t *fin, ap_session_t *aps, nat_t *nat) 274 1.1 christos { 275 1.1 christos ipf_main_softc_t *softc = fin->fin_main_soft; 276 1.1 christos #ifdef USE_MUTEXES 277 1.1 christos ipf_nat_softc_t *softn = softc->ipf_nat_soft; 278 1.1 christos #endif 279 1.3 darrenr #ifdef USE_INET6 280 1.3 darrenr i6addr_t swip6, sw2ip6; 281 1.3 darrenr ip6_t *ip6; 282 1.3 darrenr #endif 283 1.3 darrenr struct in_addr swip, sw2ip; 284 1.1 christos tftpinfo_t *ti; 285 1.3 darrenr udphdr_t udp; 286 1.1 christos fr_info_t fi; 287 1.3 darrenr u_short slen; 288 1.1 christos nat_t *nat2; 289 1.3 darrenr int nflags; 290 1.3 darrenr ip_t *ip; 291 1.3 darrenr int dir; 292 1.1 christos 293 1.1 christos ti = aps->aps_data; 294 1.1 christos /* 295 1.1 christos * Add skeleton NAT entry for connection which will come back the 296 1.1 christos * other way. 297 1.1 christos */ 298 1.1 christos bcopy((char *)fin, (char *)&fi, sizeof(fi)); 299 1.1 christos fi.fin_flx |= FI_IGNORE; 300 1.1 christos fi.fin_data[1] = 0; 301 1.1 christos 302 1.3 darrenr bzero((char *)&udp, sizeof(udp)); 303 1.3 darrenr udp.uh_sport = 0; /* XXX - don't specify remote port */ 304 1.3 darrenr udp.uh_dport = ti->ti_rule->in_ndport; 305 1.3 darrenr udp.uh_ulen = htons(sizeof(udp)); 306 1.3 darrenr udp.uh_sum = 0; 307 1.3 darrenr 308 1.3 darrenr fi.fin_fr = &tftpfr; 309 1.3 darrenr fi.fin_dp = (char *)&udp; 310 1.3 darrenr fi.fin_sport = 0; 311 1.3 darrenr fi.fin_dport = ntohs(ti->ti_rule->in_ndport); 312 1.3 darrenr fi.fin_dlen = sizeof(udp); 313 1.3 darrenr fi.fin_plen = fi.fin_hlen + sizeof(udp); 314 1.3 darrenr fi.fin_flx &= FI_LOWTTL|FI_FRAG|FI_TCPUDP|FI_OPTIONS|FI_IGNORE; 315 1.3 darrenr nflags = NAT_SLAVE|IPN_UDP|SI_W_SPORT; 316 1.3 darrenr #ifdef USE_INET6 317 1.3 darrenr ip6 = (ip6_t *)fin->fin_ip; 318 1.3 darrenr #endif 319 1.3 darrenr ip = fin->fin_ip; 320 1.3 darrenr sw2ip.s_addr = 0; 321 1.3 darrenr swip.s_addr = 0; 322 1.3 darrenr 323 1.3 darrenr fi.fin_src6 = nat->nat_ndst6; 324 1.3 darrenr fi.fin_dst6 = nat->nat_nsrc6; 325 1.3 darrenr if (nat->nat_v[0] == 4) { 326 1.1 christos slen = ip->ip_len; 327 1.3 darrenr ip->ip_len = htons(fin->fin_hlen + sizeof(udp)); 328 1.3 darrenr swip = ip->ip_src; 329 1.3 darrenr sw2ip = ip->ip_dst; 330 1.3 darrenr ip->ip_src = nat->nat_ndstip; 331 1.3 darrenr ip->ip_dst = nat->nat_nsrcip; 332 1.3 darrenr } else { 333 1.3 darrenr #ifdef USE_INET6 334 1.3 darrenr slen = ip6->ip6_plen; 335 1.3 darrenr ip6->ip6_plen = htons(sizeof(udp)); 336 1.3 darrenr swip6.in6 = ip6->ip6_src; 337 1.3 darrenr sw2ip6.in6 = ip6->ip6_dst; 338 1.3 darrenr ip6->ip6_src = nat->nat_ndst6.in6; 339 1.3 darrenr ip6->ip6_dst = nat->nat_nsrc6.in6; 340 1.3 darrenr #endif 341 1.3 darrenr } 342 1.1 christos 343 1.3 darrenr if (nat->nat_dir == NAT_INBOUND) { 344 1.3 darrenr dir = NAT_OUTBOUND; 345 1.3 darrenr fi.fin_out = 1; 346 1.3 darrenr } else { 347 1.3 darrenr dir = NAT_INBOUND; 348 1.3 darrenr fi.fin_out = 0; 349 1.3 darrenr } 350 1.3 darrenr nflags |= NAT_NOTRULEPORT; 351 1.3 darrenr 352 1.3 darrenr MUTEX_ENTER(&softn->ipf_nat_new); 353 1.3 darrenr if (nat->nat_v[0] == 4) 354 1.3 darrenr nat2 = ipf_nat_add(&fi, ti->ti_rule, NULL, nflags, dir); 355 1.3 darrenr else 356 1.3 darrenr nat2 = ipf_nat6_add(&fi, ti->ti_rule, NULL, nflags, dir); 357 1.3 darrenr MUTEX_EXIT(&softn->ipf_nat_new); 358 1.3 darrenr if (nat2 != NULL) { 359 1.3 darrenr (void) ipf_nat_proto(&fi, nat2, IPN_UDP); 360 1.3 darrenr ipf_nat_update(&fi, nat2); 361 1.3 darrenr fi.fin_ifp = NULL; 362 1.3 darrenr if (ti->ti_rule->in_redir == NAT_MAP) { 363 1.3 darrenr fi.fin_src6 = nat->nat_ndst6; 364 1.3 darrenr fi.fin_dst6 = nat->nat_nsrc6; 365 1.3 darrenr if (nat->nat_v[0] == 4) { 366 1.3 darrenr ip->ip_src = nat->nat_ndstip; 367 1.3 darrenr ip->ip_dst = nat->nat_nsrcip; 368 1.3 darrenr } else { 369 1.3 darrenr #ifdef USE_INET6 370 1.3 darrenr ip6->ip6_src = nat->nat_ndst6.in6; 371 1.3 darrenr ip6->ip6_dst = nat->nat_nsrc6.in6; 372 1.3 darrenr #endif 373 1.3 darrenr } 374 1.3 darrenr } else { 375 1.3 darrenr fi.fin_src6 = nat->nat_odst6; 376 1.3 darrenr fi.fin_dst6 = nat->nat_osrc6; 377 1.3 darrenr if (fin->fin_v == 4) { 378 1.3 darrenr ip->ip_src = nat->nat_odstip; 379 1.3 darrenr ip->ip_dst = nat->nat_osrcip; 380 1.3 darrenr } else { 381 1.3 darrenr #ifdef USE_INET6 382 1.3 darrenr ip6->ip6_src = nat->nat_odst6.in6; 383 1.3 darrenr ip6->ip6_dst = nat->nat_osrc6.in6; 384 1.3 darrenr #endif 385 1.1 christos } 386 1.1 christos } 387 1.3 darrenr if (ipf_state_add(softc, &fi, NULL, SI_W_SPORT) != 0) { 388 1.3 darrenr ipf_nat_setpending(softc, nat2); 389 1.3 darrenr } 390 1.3 darrenr } 391 1.3 darrenr if (nat->nat_v[0] == 4) { 392 1.1 christos ip->ip_len = slen; 393 1.1 christos ip->ip_src = swip; 394 1.3 darrenr ip->ip_dst = sw2ip; 395 1.3 darrenr } else { 396 1.3 darrenr #ifdef USE_INET6 397 1.3 darrenr ip6->ip6_plen = slen; 398 1.3 darrenr ip6->ip6_src = swip6.in6; 399 1.3 darrenr ip6->ip6_dst = sw2ip6.in6; 400 1.3 darrenr #endif 401 1.1 christos } 402 1.3 darrenr return 0; 403 1.1 christos } 404 1.1 christos 405 1.1 christos 406 1.1 christos int 407 1.3 darrenr ipf_p_tftp_client(ipf_tftp_softc_t *softt, fr_info_t *fin, ap_session_t *aps, 408 1.3 darrenr nat_t *nat) 409 1.1 christos { 410 1.1 christos u_char *msg, *s, *t; 411 1.1 christos tftpinfo_t *ti; 412 1.1 christos u_short opcode; 413 1.1 christos udphdr_t *udp; 414 1.1 christos int len; 415 1.1 christos 416 1.1 christos if (fin->fin_dlen < 4) 417 1.1 christos return 0; 418 1.1 christos 419 1.1 christos ti = aps->aps_data; 420 1.1 christos msg = fin->fin_dp; 421 1.1 christos msg += sizeof(udphdr_t); 422 1.1 christos opcode = (msg[0] << 8) | msg[1]; 423 1.3 darrenr DT3(tftp_cmd, fr_info_t *, fin, int, opcode, nat_t *, nat); 424 1.1 christos 425 1.1 christos switch (opcode) 426 1.1 christos { 427 1.3 darrenr case TFTP_CMD_WRITE : 428 1.3 darrenr if (softt->ipf_p_tftp_readonly != 0) 429 1.3 darrenr break; 430 1.3 darrenr /* FALLTHROUGH */ 431 1.1 christos case TFTP_CMD_READ : 432 1.1 christos len = fin->fin_dlen - sizeof(*udp) - 2; 433 1.1 christos if (len > sizeof(ti->ti_filename) - 1) 434 1.1 christos len = sizeof(ti->ti_filename) - 1; 435 1.1 christos s = msg + 2; 436 1.1 christos for (t = (u_char *)ti->ti_filename; (len > 0); len--, s++) { 437 1.1 christos *t++ = *s; 438 1.1 christos if (*s == '\0') 439 1.1 christos break; 440 1.1 christos } 441 1.3 darrenr ipf_p_tftp_backchannel(fin, aps, nat); 442 1.1 christos break; 443 1.1 christos default : 444 1.1 christos return -1; 445 1.1 christos } 446 1.1 christos 447 1.1 christos ti = aps->aps_data; 448 1.1 christos ti->ti_lastcmd = opcode; 449 1.1 christos return 0; 450 1.1 christos } 451 1.1 christos 452 1.1 christos 453 1.1 christos int 454 1.3 darrenr ipf_p_tftp_server(ipf_tftp_softc_t *softt, fr_info_t *fin, ap_session_t *aps, 455 1.3 darrenr nat_t *nat) 456 1.1 christos { 457 1.1 christos tftpinfo_t *ti; 458 1.1 christos u_short opcode; 459 1.1 christos u_short arg; 460 1.1 christos u_char *msg; 461 1.1 christos 462 1.1 christos if (fin->fin_dlen < 4) 463 1.1 christos return 0; 464 1.1 christos 465 1.1 christos ti = aps->aps_data; 466 1.1 christos msg = fin->fin_dp; 467 1.1 christos msg += sizeof(udphdr_t); 468 1.1 christos arg = (msg[2] << 8) | msg[3]; 469 1.1 christos opcode = (msg[0] << 8) | msg[1]; 470 1.1 christos 471 1.1 christos switch (opcode) 472 1.1 christos { 473 1.1 christos case TFTP_CMD_ACK : 474 1.1 christos ti->ti_lastblk = arg; 475 1.1 christos break; 476 1.3 darrenr 477 1.1 christos case TFTP_CMD_ERROR : 478 1.1 christos ti->ti_lasterror = arg; 479 1.1 christos break; 480 1.3 darrenr 481 1.1 christos default : 482 1.1 christos return -1; 483 1.1 christos } 484 1.1 christos 485 1.1 christos ti->ti_lastcmd = opcode; 486 1.1 christos return 0; 487 1.1 christos } 488
Indexes created Fri Sep 26 08:10:20 GMT 2025