SourceDomain_8cc_source.html

/*

 * Copyright (C) 1996-2025 The Squid Software Foundation and contributors

 *

 * Squid software is distributed under GPLv2+ license and includes

 * contributions from numerous individuals and organizations.

 * Please see the COPYING and CONTRIBUTORS files for details.

 */


/* DEBUG: section 28    Access Control */


#include "squid.h"

#include "acl/Checklist.h"

#include "acl/DomainData.h"

#include "acl/FilledChecklist.h"

#include "acl/RegexData.h"

#include "acl/SourceDomain.h"

#include "fqdncache.h"

#include "HttpRequest.h"


static void LookupDone(const char *, const Dns::LookupDetails &, void *data);


static void


StartLookup(ACLFilledChecklist &checklist, const Acl::Node &)

{

    fqdncache_nbgethostbyaddr(checklist.src_addr, LookupDone, &checklist);

}


static void


LookupDone(const char *, const Dns::LookupDetails &details, void *data)

{

    ACLFilledChecklist *checklist = Filled((ACLChecklist*)data);

    checklist->markSourceDomainChecked();

    if (checklist->request)

        checklist->request->recordLookup(details);

    else

        debugs(28, 3, "no request to recordLookup()");


    checklist->resumeNonBlockingCheck();

}


int


Acl::SourceDomainCheck::match(ACLChecklist * const ch)

{

    const auto checklist = Filled(ch);


    const char *fqdn = nullptr;

    fqdn = fqdncache_gethostbyaddr(checklist->src_addr, FQDN_LOOKUP_IF_MISS);


    if (fqdn) {

        return data->match(fqdn);

    } else if (!checklist->sourceDomainChecked()) {

        debugs(28, 3, "aclMatchAcl: Can't yet compare '" << name << "' ACL for '" << checklist->src_addr << "'");

        if (checklist->goAsync(StartLookup, *this))

            return -1;

        // else fall through to "none" match, hiding the lookup failure (XXX)

    }


    return data->match("none");

}


Checklist.h

StartLookup
static void StartLookup(ACLFilledChecklist &cl, const Acl::Node &)
Definition DestinationDomain.cc:22

DomainData.h

FilledChecklist.h

Filled
ACLFilledChecklist * Filled(ACLChecklist *checklist)
convenience and safety wrapper for dynamic_cast<ACLFilledChecklist*>
Definition FilledChecklist.h:146

HttpRequest.h

RegexData.h

StartLookup
static void StartLookup(ACLFilledChecklist &checklist, const Acl::Node &)
Definition SourceDomain.cc:23

LookupDone
static void LookupDone(const char *, const Dns::LookupDetails &, void *data)
Definition SourceDomain.cc:29

SourceDomain.h

ACLChecklist
Definition Checklist.h:31

ACLChecklist::resumeNonBlockingCheck
void resumeNonBlockingCheck()
Definition Checklist.cc:230

ACLFilledChecklist
Definition FilledChecklist.h:34

ACLFilledChecklist::markSourceDomainChecked
void markSourceDomainChecked()
Definition FilledChecklist.cc:163

ACLFilledChecklist::src_addr
Ip::Address src_addr
Definition FilledChecklist.h:97

ACLFilledChecklist::request
HttpRequest::Pointer request
Definition FilledChecklist.h:103

Acl::Node
Definition Node.h:26

Acl::Node::name
SBuf name
Definition Node.h:81

Acl::ParameterizedNode< ACLData< const char * > >::data
std::unique_ptr< Parameters > data
Definition ParameterizedNode.h:43

Acl::SourceDomainCheck::match
int match(ACLChecklist *) override
Matches the actual data in checklist against this Acl::Node.
Definition SourceDomain.cc:42

Dns::LookupDetails
encapsulates DNS lookup results
Definition LookupDetails.h:23

HttpRequest::recordLookup
void recordLookup(const Dns::LookupDetails &detail)
Definition HttpRequest.cc:577

debugs
#define debugs(SECTION, LEVEL, CONTENT)
Definition Stream.h:192

FQDN_LOOKUP_IF_MISS
#define FQDN_LOOKUP_IF_MISS
Definition defines.h:34

fqdncache.h

fqdncache_gethostbyaddr
const char * fqdncache_gethostbyaddr(const Ip::Address &addr, int flags)
Definition fqdncache.cc:481

fqdncache_nbgethostbyaddr
void fqdncache_nbgethostbyaddr(const Ip::Address &addr, FQDNH *handler, void *handlerData)
Definition fqdncache.cc:414

squid.h