| e3aaff8e |
/* |
| d7c59961 |
* Copyright (C) 2002 - 2006 Tomasz Kojm <tkojm@clamav.net> |
| 7e5f05e0 |
* HTTP/1.1 compliance by Arkadiusz Miskiewicz <misiek@pld.org.pl> |
| e3aaff8e |
* Proxy support by Nigel Horne <njh@bandsman.co.uk>
* Proxy authorization support by Gernot Tenchio <g.tenchio@telco-tech.de>
* (uses fmt_base64() from libowfat (http://www.fefe.de)) |
| bb34cb31 |
* CDIFF code (C) 2006 Sensory Networks, Inc. |
| e3aaff8e |
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software |
| 48b7b4a7 |
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
* MA 02110-1301, USA. |
| e3aaff8e |
*/ |
| 17ad1c5b |
#ifdef _MSC_VER
#include <winsock.h> /* only needed in CL_EXPERIMENTAL */
#endif |
| 6d6e8271 |
#if HAVE_CONFIG_H
#include "clamav-config.h"
#endif
|
| 0a0ae0b4 |
/* for strptime, it is POSIX, but defining _XOPEN_SOURCE to 600
* fails on Solaris because it would require a c99 compiler,
* 500 fails completely on Solaris, and FreeBSD, and w/o _XOPEN_SOURCE
* strptime is not defined on Linux */
#define _GNU_SOURCE
#define __EXTENSIONS
|
| e3aaff8e |
#include <stdio.h>
#include <stdlib.h> |
| a9d3aa14 |
#ifdef HAVE_UNISTD_H |
| e3aaff8e |
#include <unistd.h> |
| 17ad1c5b |
#endif |
| e3aaff8e |
#include <string.h> |
| 048e43bd |
#ifdef HAVE_STRINGS_H |
| 64fd0bfc |
#include <strings.h> |
| 048e43bd |
#endif |
| e3aaff8e |
#include <ctype.h> |
| a9d3aa14 |
#ifndef C_WINDOWS |
| e3aaff8e |
#include <netinet/in.h>
#include <netdb.h> |
| b54eb319 |
#include <arpa/inet.h> |
| 17ad1c5b |
#endif |
| e3aaff8e |
#include <sys/types.h> |
| a9d3aa14 |
#ifndef C_WINDOWS |
| e3aaff8e |
#include <sys/socket.h>
#include <sys/time.h> |
| 17ad1c5b |
#endif |
| e3aaff8e |
#include <time.h>
#include <fcntl.h>
#include <sys/stat.h> |
| a9d3aa14 |
#ifndef C_WINDOWS |
| 9d193ff2 |
#include <dirent.h> |
| a9d3aa14 |
#endif |
| fc918fb5 |
#include <errno.h> |
| d8b95725 |
#include <zlib.h> |
| e3aaff8e |
|
| c8cdb82f |
#include "target.h"
|
| e3aaff8e |
#include "manager.h"
#include "notify.h" |
| 3e92581e |
#include "dns.h" |
| 7bbd5f7f |
#include "execute.h" |
| 7d1c492d |
#include "nonblock.h" |
| 376307a0 |
#include "mirman.h" |
| 7bbd5f7f |
|
| 3f7802c9 |
#include "shared/optparser.h" |
| d7c59961 |
#include "shared/output.h"
#include "shared/misc.h"
#include "shared/cdiff.h" |
| 9d193ff2 |
#include "shared/tar.h" |
| 3e92581e |
|
| e48dcea9 |
#include "libclamav/clamav.h" |
| d7c59961 |
#include "libclamav/others.h"
#include "libclamav/str.h"
#include "libclamav/cvd.h" |
| e3aaff8e |
|
| d7c59961 |
#ifndef O_BINARY
#define O_BINARY 0 |
| e4ae7726 |
#endif
|
| a9d3aa14 |
#ifndef C_WINDOWS |
| 17ad1c5b |
#define closesocket(s) close(s)
#endif |
| e4ae7726 |
|
| e8b94525 |
#define CHDIR_ERR(x) \
if(chdir(x) == -1) \
logg("!Can't chdir to %s\n", x);
|
| 3027857c |
#ifndef HAVE_GETADDRINFO |
| b54eb319 |
static const char *ghbn_err(int err) /* hstrerror() */
{
switch(err) {
case HOST_NOT_FOUND:
return "Host not found";
case NO_DATA:
return "No IP address";
case NO_RECOVERY:
return "Unrecoverable DNS error";
case TRY_AGAIN:
return "Temporary DNS error";
default:
return "Unknown error";
}
}
#endif
static int getclientsock(const char *localip, int prot) |
| e3aaff8e |
{ |
| 926d80f0 |
int socketfd = -1; |
| e3aaff8e |
|
| d7c9ac1f |
#ifdef SUPPORT_IPv6 |
| eb4300ad |
if(prot == AF_INET6)
socketfd = socket(AF_INET6, SOCK_STREAM, 0); |
| b54eb319 |
else |
| d7c9ac1f |
#endif |
| eb4300ad |
socketfd = socket(AF_INET, SOCK_STREAM, 0); |
| c427ea09 |
if(socketfd < 0) {
logg("!Can't create new socket\n");
return -1;
}
|
| d7c59961 |
if(localip) { |
| 3027857c |
#ifdef HAVE_GETADDRINFO |
| b54eb319 |
struct addrinfo *res;
int ret; |
| 926d80f0 |
|
| b54eb319 |
ret = getaddrinfo(localip, NULL, NULL, &res);
if(ret) {
logg("!Could not resolve local ip address '%s': %s\n", localip, gai_strerror(ret));
logg("^Using standard local ip address and port for fetching.\n");
} else {
char ipaddr[46]; |
| fc918fb5 |
|
| b54eb319 |
if(bind(socketfd, res->ai_addr, res->ai_addrlen) != 0) {
logg("!Could not bind to local ip address '%s': %s\n", localip, strerror(errno));
logg("^Using default client ip.\n");
} else {
void *addr; |
| fc918fb5 |
|
| d7c9ac1f |
#ifdef SUPPORT_IPv6 |
| b54eb319 |
if(res->ai_family == AF_INET6)
addr = &((struct sockaddr_in6 *) res->ai_addr)->sin6_addr;
else |
| d7c9ac1f |
#endif |
| b54eb319 |
addr = &((struct sockaddr_in *) res->ai_addr)->sin_addr; |
| fc918fb5 |
|
| b54eb319 |
if(inet_ntop(res->ai_family, addr, ipaddr, sizeof(ipaddr)))
logg("*Using ip '%s' for fetching.\n", ipaddr); |
| fc918fb5 |
} |
| b54eb319 |
freeaddrinfo(res);
}
#else /* IPv4 */
struct hostent *he;
if(!(he = gethostbyname(localip))) {
logg("!Could not resolve local ip address '%s': %s\n", localip, ghbn_err(h_errno)); |
| 0ae41a2d |
logg("^Using standard local ip address and port for fetching.\n"); |
| fc918fb5 |
} else { |
| b54eb319 |
struct sockaddr_in client;
unsigned char *ia;
char ipaddr[16]; |
| 926d80f0 |
|
| b54eb319 |
memset((char *) &client, 0, sizeof(client)); |
| fc918fb5 |
client.sin_family = AF_INET;
client.sin_addr = *(struct in_addr *) he->h_addr_list[0]; |
| b54eb319 |
if(bind(socketfd, (struct sockaddr *) &client, sizeof(struct sockaddr_in)) != 0) { |
| 0ae41a2d |
logg("!Could not bind to local ip address '%s': %s\n", localip, strerror(errno));
logg("^Using default client ip.\n"); |
| fc918fb5 |
} else {
ia = (unsigned char *) he->h_addr_list[0];
sprintf(ipaddr, "%u.%u.%u.%u", ia[0], ia[1], ia[2], ia[3]); |
| 0ae41a2d |
logg("*Using ip '%s' for fetching.\n", ipaddr); |
| fc918fb5 |
}
} |
| b54eb319 |
#endif |
| fc918fb5 |
} |
| 926d80f0 |
return socketfd;
}
|
| a68aa31f |
static int wwwconnect(const char *server, const char *proxy, int pport, char *ip, const char *localip, int ctimeout, struct mirdat *mdat, int logerr, unsigned int can_whitelist) |
| 926d80f0 |
{ |
| b54eb319 |
int socketfd, port, ret; |
| a68aa31f |
unsigned int ips = 0, ignored = 0; |
| 3027857c |
#ifdef HAVE_GETADDRINFO |
| 510da7b7 |
struct addrinfo hints, *res = NULL, *rp, *loadbal_rp = NULL;
char port_s[6], loadbal_ipaddr[46];
uint32_t loadbal = 1, minsucc = 0xffffffff, minfail = 0xffffffff;
struct mirdat_ip *md; |
| b54eb319 |
#else |
| 926d80f0 |
struct sockaddr_in name;
struct hostent *host;
unsigned char *ia; |
| b54eb319 |
int i;
#endif
char ipaddr[46]; |
| 926d80f0 |
const char *hostpt;
if(ip)
strcpy(ip, "???");
|
| e3aaff8e |
if(proxy) { |
| 95d401c4 |
hostpt = proxy;
if(!(port = pport)) { |
| e3aaff8e |
const struct servent *webcache = getservbyname("webcache", "TCP");
if(webcache)
port = ntohs(webcache->s_port);
else
port = 8080;
|
| 17ad1c5b |
#ifndef C_WINDOWS |
| e3aaff8e |
endservent(); |
| 17ad1c5b |
#endif |
| e3aaff8e |
} |
| 95d401c4 |
|
| e3aaff8e |
} else {
hostpt = server;
port = 80;
}
|
| 3027857c |
#ifdef HAVE_GETADDRINFO |
| b54eb319 |
memset(&hints, 0, sizeof(hints)); |
| 3027857c |
#ifdef SUPPORT_IPv6 |
| b54eb319 |
hints.ai_family = AF_UNSPEC; |
| 3027857c |
#else
hints.ai_family = AF_INET;
#endif |
| b54eb319 |
hints.ai_socktype = SOCK_STREAM; |
| 7edaa8a5 |
snprintf(port_s, sizeof(port_s), "%d", port);
port_s[sizeof(port_s) - 1] = 0;
ret = getaddrinfo(hostpt, port_s, &hints, &res); |
| b54eb319 |
if(ret) {
logg("%cCan't get information about %s: %s\n", logerr ? '!' : '^', hostpt, gai_strerror(ret));
return -1;
} |
| fc918fb5 |
|
| b54eb319 |
for(rp = res; rp; rp = rp->ai_next) {
void *addr; |
| fc918fb5 |
|
| a68aa31f |
ips++; |
| d7c9ac1f |
#ifdef SUPPORT_IPv6 |
| b54eb319 |
if(rp->ai_family == AF_INET6)
addr = &((struct sockaddr_in6 *) rp->ai_addr)->sin6_addr;
else |
| d7c9ac1f |
#endif |
| b54eb319 |
addr = &((struct sockaddr_in *) rp->ai_addr)->sin_addr; |
| fc918fb5 |
|
| b54eb319 |
if(!inet_ntop(rp->ai_family, addr, ipaddr, sizeof(ipaddr))) {
logg("%cinet_ntop() failed\n", logerr ? '!' : '^');
freeaddrinfo(res);
return -1;
} |
| fc918fb5 |
|
| 64fd0bfc |
if(mdat && (ret = mirman_check(addr, rp->ai_family, mdat, &md))) { |
| b54eb319 |
if(ret == 1) |
| 43dee84b |
logg("*Ignoring mirror %s (due to previous errors)\n", ipaddr); |
| b54eb319 |
else |
| 43dee84b |
logg("*Ignoring mirror %s (has connected too many times with an outdated version)\n", ipaddr); |
| 510da7b7 |
|
| a68aa31f |
ignored++; |
| 510da7b7 |
if(!loadbal || rp->ai_next)
continue;
}
|
| 64fd0bfc |
if(mdat && loadbal) { |
| 510da7b7 |
if(!ret) {
if(!md) {
loadbal_rp = rp;
strncpy(loadbal_ipaddr, ipaddr, sizeof(loadbal_ipaddr));
} else {
if(md->succ < minsucc && md->fail <= minfail) {
minsucc = md->succ;
minfail = md->fail;
loadbal_rp = rp;
strncpy(loadbal_ipaddr, ipaddr, sizeof(loadbal_ipaddr));
}
if(rp->ai_next)
continue;
}
}
if(!loadbal_rp) {
if(!rp->ai_next) {
loadbal = 0;
rp = res;
}
continue;
}
rp = loadbal_rp;
strncpy(ipaddr, loadbal_ipaddr, sizeof(ipaddr));
} else if(loadbal_rp == rp) { |
| b54eb319 |
continue; |
| fc918fb5 |
} |
| b54eb319 |
if(ip)
strcpy(ip, ipaddr);
if(rp != res)
logg("Trying host %s (%s)...\n", hostpt, ipaddr);
socketfd = getclientsock(localip, rp->ai_family);
if(socketfd < 0) {
freeaddrinfo(res);
return -1;
}
#ifdef SO_ERROR
if(wait_connect(socketfd, rp->ai_addr, rp->ai_addrlen, ctimeout) == -1) {
#else
if(connect(socketfd, rp->ai_addr, rp->ai_addrlen) == -1) {
#endif
logg("Can't connect to port %d of host %s (IP: %s)\n", port, hostpt, ipaddr);
closesocket(socketfd); |
| 510da7b7 |
if(loadbal) {
loadbal = 0;
rp = res;
} |
| b54eb319 |
continue;
} else { |
| 64fd0bfc |
if(mdat) {
if(rp->ai_family == AF_INET)
mdat->currip[0] = *((uint32_t *) addr);
else
memcpy(mdat->currip, addr, 4 * sizeof(uint32_t));
mdat->af = rp->ai_family;
} |
| b54eb319 |
freeaddrinfo(res);
return socketfd;
}
}
freeaddrinfo(res);
#else /* IPv4 */
if((host = gethostbyname(hostpt)) == NULL) {
logg("%cCan't get information about %s: %s\n", logerr ? '!' : '^', hostpt, ghbn_err(h_errno)); |
| e3aaff8e |
return -1;
}
|
| 5c80179f |
for(i = 0; host->h_addr_list[i] != 0; i++) {
/* this dirty hack comes from pink - Nosuid TCP/IP ping 1.6 */
ia = (unsigned char *) host->h_addr_list[i];
sprintf(ipaddr, "%u.%u.%u.%u", ia[0], ia[1], ia[2], ia[3]); |
| 0ee809e8 |
|
| a68aa31f |
ips++; |
| 64fd0bfc |
if(mdat && (ret = mirman_check(&((struct in_addr *) ia)->s_addr, AF_INET, mdat, NULL))) { |
| 376307a0 |
if(ret == 1) |
| 43dee84b |
logg("*Ignoring mirror %s (due to previous errors)\n", ipaddr); |
| 376307a0 |
else |
| 43dee84b |
logg("*Ignoring mirror %s (has connected too many times with an outdated version)\n", ipaddr); |
| a68aa31f |
ignored++; |
| 376307a0 |
continue;
}
|
| 5c80179f |
if(ip)
strcpy(ip, ipaddr);
if(i > 0) |
| 0ae41a2d |
logg("Trying host %s (%s)...\n", hostpt, ipaddr); |
| 0ee809e8 |
|
| b54eb319 |
memset ((char *) &name, 0, sizeof(name));
name.sin_family = AF_INET; |
| 5c80179f |
name.sin_addr = *((struct in_addr *) host->h_addr_list[i]);
name.sin_port = htons(port);
|
| b54eb319 |
socketfd = getclientsock(localip, AF_INET);
if(socketfd < 0)
return -1;
|
| 22b802b6 |
#ifdef SO_ERROR |
| 7d1c492d |
if(wait_connect(socketfd, (struct sockaddr *) &name, sizeof(struct sockaddr_in), ctimeout) == -1) { |
| 22b802b6 |
#else
if(connect(socketfd, (struct sockaddr *) &name, sizeof(struct sockaddr_in)) == -1) {
#endif |
| 0ae41a2d |
logg("Can't connect to port %d of host %s (IP: %s)\n", port, hostpt, ipaddr); |
| a9d3aa14 |
closesocket(socketfd); |
| 5c80179f |
continue; |
| e05a72bb |
} else { |
| 64fd0bfc |
if(mdat) {
mdat->currip[0] = ((struct in_addr *) ia)->s_addr;
mdat->af = AF_INET;
} |
| e05a72bb |
return socketfd; |
| 5c80179f |
} |
| e3aaff8e |
} |
| b54eb319 |
#endif |
| e3aaff8e |
|
| 64fd0bfc |
if(mdat && can_whitelist && ips && (ips == ignored)) |
| 43dee84b |
mirman_whitelist(mdat, 1); |
| a68aa31f |
|
| 5c80179f |
return -2; |
| e3aaff8e |
}
|
| 64fd0bfc |
static const char *readbline(int fd, char *buf, int bufsize, int filesize, int *bread)
{
char *pt;
int ret, end;
if(!*bread) {
if(bufsize < filesize)
lseek(fd, -bufsize, SEEK_END);
*bread = read(fd, buf, bufsize - 1);
if(!*bread || *bread == -1)
return NULL;
buf[*bread] = 0;
}
pt = strrchr(buf, '\n');
if(!pt)
return NULL;
*pt = 0;
pt = strrchr(buf, '\n');
if(pt) {
return ++pt;
} else if(*bread == filesize) {
return buf;
} else {
*bread -= strlen(buf) + 1;
end = filesize - *bread;
if(end < bufsize) {
if((ret = lseek(fd, 0, SEEK_SET)) != -1)
ret = read(fd, buf, end);
} else {
if((ret = lseek(fd, end - bufsize, SEEK_SET)) != -1)
ret = read(fd, buf, bufsize - 1);
}
if(!ret || ret == -1)
return NULL;
buf[ret] = 0;
*bread += ret;
pt = strrchr(buf, '\n');
if(!pt)
return buf;
*pt = 0;
pt = strrchr(buf, '\n');
if(pt)
return ++pt;
else if(strlen(buf))
return buf;
else
return NULL;
}
}
|
| fe3f5f8c |
static unsigned int fmt_base64(char *dest, const char *src, unsigned int len)
{
unsigned short bits = 0,temp = 0;
unsigned long written = 0;
unsigned int i;
const char base64[]="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
for(i = 0; i < len; i++) {
temp <<= 8;
temp += src[i];
bits += 8;
while(bits > 6) {
dest[written] = base64[((temp >> (bits - 6)) & 63)];
written++;
bits -= 6;
}
}
if(bits) {
temp <<= (6 - bits);
dest[written] = base64[temp & 63];
written++;
}
while(written & 3) {
dest[written] = '=';
written++;
}
return written;
}
static char *proxyauth(const char *user, const char *pass)
{
int len;
char *buf, *userpass, *auth;
userpass = malloc(strlen(user) + strlen(pass) + 2);
if(!userpass) {
logg("!proxyauth: Can't allocate memory for 'userpass'\n");
return NULL;
}
sprintf(userpass, "%s:%s", user, pass);
buf = malloc((strlen(pass) + strlen(user)) * 2 + 4);
if(!buf) {
logg("!proxyauth: Can't allocate memory for 'buf'\n");
free(userpass);
return NULL;
}
len = fmt_base64(buf, userpass, strlen(userpass));
free(userpass);
buf[len] = '\0';
auth = malloc(strlen(buf) + 30);
if(!auth) {
free(buf);
logg("!proxyauth: Can't allocate memory for 'authorization'\n");
return NULL;
}
sprintf(auth, "Proxy-Authorization: Basic %s\r\n", buf);
free(buf);
return auth;
}
|
| 64fd0bfc |
/*
* TODO:
* - strptime() is most likely not portable enough
*/ |
| 3f7802c9 |
int submitstats(const char *clamdcfg, const struct optstruct *opts) |
| 64fd0bfc |
{
int fd, sd, bread, lread = 0, cnt, ret;
char post[SUBMIT_MIN_ENTRIES * 256 + 512];
char query[SUBMIT_MIN_ENTRIES * 256];
char buff[512], statsdat[512], newstatsdat[512], uastr[128];
char logfile[256], fbuff[FILEBUFF]; |
| fe3f5f8c |
char *pt, *pt2, *auth = NULL;
const char *line, *country = NULL, *user, *proxy = NULL; |
| 3f7802c9 |
struct optstruct *clamdopt;
const struct optstruct *opt; |
| 64fd0bfc |
struct stat sb;
struct tm tms;
time_t epoch; |
| fe3f5f8c |
unsigned int qcnt, entries, submitted = 0, permfail = 0, port = 0; |
| 64fd0bfc |
|
| 3f7802c9 |
if((opt = optget(opts, "DetectionStatsCountry"))->enabled) {
if(strlen(opt->strarg) != 2 || !isalpha(opt->strarg[0]) || !isalpha(opt->strarg[1])) { |
| 285d0b33 |
logg("!SubmitDetectionStats: DetectionStatsCountry requires a two-letter country code\n");
return 56;
} |
| 3f7802c9 |
country = opt->strarg; |
| 285d0b33 |
}
|
| a68d5e2f |
if(!(clamdopt = optparse(clamdcfg, 0, NULL, 1, OPT_CLAMD, 0, NULL))) { |
| 64fd0bfc |
logg("!SubmitDetectionStats: Can't open or parse configuration file %s\n", clamdcfg);
return 56;
}
|
| 3f7802c9 |
if(!(opt = optget(clamdopt, "LogFile"))->enabled) { |
| 64fd0bfc |
logg("!SubmitDetectionStats: LogFile needs to be enabled in %s\n", clamdcfg); |
| 3f7802c9 |
optfree(clamdopt); |
| 64fd0bfc |
return 56;
} |
| 3f7802c9 |
strncpy(logfile, opt->strarg, sizeof(logfile)); |
| 64fd0bfc |
logfile[sizeof(logfile) - 1] = 0;
|
| 3f7802c9 |
if(!optget(clamdopt, "LogTime")->enabled) { |
| 64fd0bfc |
logg("!SubmitDetectionStats: LogTime needs to be enabled in %s\n", clamdcfg); |
| 3f7802c9 |
optfree(clamdopt); |
| 64fd0bfc |
return 56;
} |
| 3f7802c9 |
optfree(clamdopt); |
| 64fd0bfc |
if((fd = open("stats.dat", O_RDONLY)) != -1) {
if((bread = read(fd, statsdat, sizeof(statsdat) - 1)) == -1) {
logg("^SubmitDetectionStats: Can't read stats.dat\n");
bread = 0;
}
statsdat[bread] = 0;
close(fd);
} else {
*statsdat = 0;
}
if((fd = open(logfile, O_RDONLY)) == -1) {
logg("!SubmitDetectionStats: Can't open %s for reading\n", logfile);
return 56;
}
if(fstat(fd, &sb) == -1) {
logg("!SubmitDetectionStats: fstat() failed\n");
close(fd);
return 56;
}
while((line = readbline(fd, fbuff, FILEBUFF, sb.st_size, &lread))) |
| 86f1daa0 |
if(strlen(line) >= 32 && !strcmp(&line[strlen(line) - 6], " FOUND")) |
| 64fd0bfc |
break;
if(!line) {
logg("SubmitDetectionStats: No detection records found\n");
close(fd);
return 1;
}
if(*statsdat && !strcmp(line, statsdat)) {
logg("SubmitDetectionStats: No new detection records found\n");
close(fd);
return 1;
} else {
strncpy(newstatsdat, line, sizeof(newstatsdat));
}
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPUserAgent"))->enabled)
strncpy(uastr, opt->strarg, sizeof(uastr)); |
| 64fd0bfc |
else |
| 285d0b33 |
snprintf(uastr, sizeof(uastr), PACKAGE"/%s (OS: "TARGET_OS_TYPE", ARCH: "TARGET_ARCH_TYPE", CPU: "TARGET_CPU_TYPE")%s%s", get_version(), country ? ":" : "", country ? country : ""); |
| 64fd0bfc |
uastr[sizeof(uastr) - 1] = 0;
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPProxyServer"))->enabled) {
proxy = opt->strarg; |
| fe3f5f8c |
if(!strncasecmp(proxy, "http://", 7))
proxy += 7;
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPProxyUsername"))->enabled) {
user = opt->strarg;
if(!(opt = optget(opts, "HTTPProxyPassword"))->enabled) { |
| fe3f5f8c |
logg("!SubmitDetectionStats: HTTPProxyUsername requires HTTPProxyPassword\n");
close(fd);
return 56;
} |
| 3f7802c9 |
auth = proxyauth(user, opt->strarg); |
| fe3f5f8c |
if(!auth) {
close(fd);
return 56;
}
}
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPProxyPort"))->enabled)
port = opt->numarg; |
| fe3f5f8c |
logg("*Connecting via %s\n", proxy);
}
|
| 64fd0bfc |
ret = 0;
memset(query, 0, sizeof(query));
qcnt = 0;
entries = 0;
do { |
| 86f1daa0 |
if(strlen(line) < 32 || strcmp(&line[strlen(line) - 6], " FOUND")) |
| 64fd0bfc |
continue;
if(*statsdat && !strcmp(line, statsdat))
break;
strncpy(buff, line, sizeof(buff));
buff[sizeof(buff) - 1] = 0;
if(!(pt = strstr(buff, " -> "))) {
logg("*SubmitDetectionStats: Skipping detection entry logged without time\b");
continue;
}
*pt = 0;
pt += 4;
if(!strptime(buff, "%a %b %d %H:%M:%S %Y", &tms) || (epoch = mktime(&tms)) == -1) {
logg("!SubmitDetectionStats: Failed to convert date string\n");
ret = 1;
break;
}
|
| 86f1daa0 |
pt2 = &pt[strlen(pt) - 6]; |
| 64fd0bfc |
*pt2 = 0;
if(!(pt2 = strrchr(pt, ':'))) {
logg("!SubmitDetectionStats: Incorrect format of the log file (1)\n");
ret = 1;
break;
}
*pt2 = 0;
pt2 += 2;
#ifdef C_WINDOWS |
| bf8f2a1b |
if((pt = strrchr(pt, '\\'))) |
| 64fd0bfc |
#else |
| bf8f2a1b |
if((pt = strrchr(pt, '/'))) |
| 64fd0bfc |
#endif |
| bf8f2a1b |
*pt++ = 0;
if(!pt) |
| 0a0ae0b4 |
pt = (char*) "NOFNAME"; |
| 64fd0bfc |
qcnt += snprintf(&query[qcnt], sizeof(query) - qcnt, "ts[]=%u&fname[]=%s&virus[]=%s&", (unsigned int) epoch, pt, pt2);
entries++;
if(entries == SUBMIT_MIN_ENTRIES) { |
| 3f7802c9 |
sd = wwwconnect("stats.clamav.net", proxy, port, NULL, optget(opts, "LocalIPAddress")->strarg, optget(opts, "ConnectTimeout")->numarg, NULL, 0, 0); |
| 64fd0bfc |
if(sd == -1) {
logg("!SubmitDetectionStats: Can't connect to server\n");
ret = 52;
break;
}
query[sizeof(query) - 1] = 0;
snprintf(post, sizeof(post), |
| fe3f5f8c |
"POST http://stats.clamav.net/submit.php HTTP/1.0\r\n"
"Host: stats.clamav.net\r\n%s" |
| 64fd0bfc |
"Content-Type: application/x-www-form-urlencoded\r\n"
"User-Agent: %s\r\n"
"Content-Length: %u\r\n\n"
"%s", |
| fe3f5f8c |
auth ? auth : "", uastr, (unsigned int) strlen(query), query); |
| 64fd0bfc |
if(send(sd, post, strlen(post), 0) < 0) {
logg("!SubmitDetectionStats: Can't write to socket\n");
ret = 52;
closesocket(sd);
break;
}
pt = post;
cnt = sizeof(post) - 1;
#ifdef SO_ERROR |
| 3f7802c9 |
while((bread = wait_recv(sd, pt, cnt, 0, optget(opts, "ReceiveTimeout")->numarg)) > 0) { |
| 64fd0bfc |
#else
while((bread = recv(sd, pt, cnt, 0)) > 0) {
#endif
pt += bread;
cnt -= bread;
if(cnt <= 0)
break;
}
*pt = 0;
closesocket(sd);
if(bread < 0) {
logg("!SubmitDetectionStats: Can't read from socket\n");
ret = 52;
break;
}
if(strstr(post, "SUBMIT_OK")) {
submitted += entries;
if(submitted + SUBMIT_MIN_ENTRIES > SUBMIT_MAX_ENTRIES)
break;
qcnt = 0;
entries = 0;
memset(query, 0, sizeof(query));
continue;
}
ret = 52; |
| 3be2288f |
if((pt = strstr(post, "SUBMIT_PERMANENT_FAILURE"))) { |
| 64fd0bfc |
if(!submitted) {
permfail = 1; |
| 3be2288f |
if((pt + 32 <= post + sizeof(post)) && pt[24] == ':')
logg("!SubmitDetectionStats: Remote server reported permanent failure: %s\n", &pt[25]);
else
logg("!SubmitDetectionStats: Remote server reported permanent failure\n");
}
} else if((pt = strstr(post, "SUBMIT_TEMPORARY_FAILURE"))) {
if(!submitted) {
if((pt + 32 <= post + sizeof(post)) && pt[24] == ':')
logg("!SubmitDetectionStats: Remote server reported temporary failure: %s\n", &pt[25]);
else
logg("!SubmitDetectionStats: Remote server reported temporary failure\n"); |
| 64fd0bfc |
}
} else {
if(!submitted)
logg("!SubmitDetectionStats: Incorrect answer from server\n");
}
break;
}
} while((line = readbline(fd, fbuff, FILEBUFF, sb.st_size, &lread)));
close(fd); |
| fe3f5f8c |
if(auth)
free(auth); |
| 64fd0bfc |
if(submitted || permfail) { |
| d689f44a |
if((fd = open("stats.dat", O_WRONLY | O_CREAT | O_TRUNC, 0600)) == -1) { |
| 64fd0bfc |
logg("^SubmitDetectionStats: Can't open stats.dat for writing\n");
} else {
if((bread = write(fd, newstatsdat, sizeof(newstatsdat))) != sizeof(newstatsdat))
logg("^SubmitDetectionStats: Can't write to stats.dat\n");
close(fd);
}
}
if(ret == 0) {
if(!submitted)
logg("SubmitDetectionStats: Not enough recent data for submission\n");
else
logg("SubmitDetectionStats: Submitted %u records\n", submitted);
}
return ret;
}
|
| 079229d6 |
static int Rfc2822DateTime(char *buf, time_t mtime) |
| e780fcb4 |
{ |
| c8e620d2 |
struct tm *gmt; |
| e780fcb4 |
|
| c8e620d2 |
gmt = gmtime(&mtime);
return strftime(buf, 36, "%a, %d %b %Y %X GMT", gmt); |
| e780fcb4 |
}
|
| 06be0521 |
static struct cl_cvd *remote_cvdhead(const char *cvdfile, const char *localfile, const char *hostname, char *ip, const char *localip, const char *proxy, int port, const char *user, const char *pass, const char *uas, int *ims, int ctimeout, int rtimeout, struct mirdat *mdat, int logerr, unsigned int can_whitelist) |
| d7c59961 |
{ |
| b54eb319 |
char cmd[512], head[513], buffer[FILEBUFF], ipaddr[46], *ch, *tmp; |
| d7c59961 |
int bread, cnt, sd;
unsigned int i, j; |
| e3aaff8e |
char *remotename = NULL, *authorization = NULL; |
| e4ae7726 |
struct cl_cvd *cvd; |
| c8cdb82f |
char last_modified[36], uastr[128]; |
| e780fcb4 |
|
| e3aaff8e |
if(proxy) { |
| 8ca8a18e |
remotename = malloc(strlen(hostname) + 8); |
| d7c59961 |
if(!remotename) {
logg("!remote_cvdhead: Can't allocate memory for 'remotename'\n");
return NULL;
} |
| e3aaff8e |
sprintf(remotename, "http://%s", hostname);
|
| d7c59961 |
if(user) {
authorization = proxyauth(user, pass); |
| 12460549 |
if(!authorization) {
free(remotename); |
| d7c59961 |
return NULL; |
| 12460549 |
} |
| d7c59961 |
} |
| e3aaff8e |
}
|
| 06be0521 |
if(!access(localfile, R_OK)) {
cvd = cl_cvdhead(localfile);
if(!cvd) {
logg("!remote_cvdhead: Can't parse file %s\n", localfile);
free(remotename);
free(authorization);
return NULL;
}
Rfc2822DateTime(last_modified, (time_t) cvd->stime);
cl_cvdfree(cvd); |
| e780fcb4 |
} else {
time_t mtime = 1104119530; |
| d7c59961 |
|
| e780fcb4 |
Rfc2822DateTime(last_modified, mtime); |
| 0ae41a2d |
logg("*Assuming modification time in the past\n"); |
| e780fcb4 |
} |
| e3aaff8e |
|
| 0ae41a2d |
logg("*If-Modified-Since: %s\n", last_modified); |
| e780fcb4 |
|
| 06be0521 |
logg("Reading CVD header (%s): ", cvdfile); |
| 8246f576 |
|
| c8cdb82f |
if(uas)
strncpy(uastr, uas, sizeof(uastr));
else
snprintf(uastr, sizeof(uastr), PACKAGE"/%s (OS: "TARGET_OS_TYPE", ARCH: "TARGET_ARCH_TYPE", CPU: "TARGET_CPU_TYPE")", get_version());
uastr[sizeof(uastr) - 1] = 0;
|
| d7c59961 |
snprintf(cmd, sizeof(cmd), |
| 49fb1de4 |
"GET %s/%s HTTP/1.0\r\n" |
| 12aa8746 |
"Host: %s\r\n%s" |
| c8cdb82f |
"User-Agent: %s\r\n" |
| 12aa8746 |
"Connection: close\r\n"
"Range: bytes=0-511\r\n" |
| e780fcb4 |
"If-Modified-Since: %s\r\n" |
| 06be0521 |
"\r\n", (remotename != NULL) ? remotename : "", cvdfile, hostname, (authorization != NULL) ? authorization : "", uastr, last_modified); |
| e3aaff8e |
free(remotename);
free(authorization);
|
| d7c59961 |
memset(ipaddr, 0, sizeof(ipaddr));
if(ip[0]) /* use ip to connect */ |
| a68aa31f |
sd = wwwconnect(ip, proxy, port, ipaddr, localip, ctimeout, mdat, logerr, can_whitelist); |
| d7c59961 |
else |
| a68aa31f |
sd = wwwconnect(hostname, proxy, port, ipaddr, localip, ctimeout, mdat, logerr, can_whitelist); |
| d7c59961 |
if(sd < 0) {
return NULL;
} else {
logg("*Connected to %s (IP: %s).\n", hostname, ipaddr); |
| 06be0521 |
logg("*Trying to retrieve CVD header of http://%s/%s\n", hostname, cvdfile); |
| d7c59961 |
}
if(!ip[0])
strcpy(ip, ipaddr);
|
| 17ad1c5b |
if(send(sd, cmd, strlen(cmd), 0) < 0) { |
| bcbe6ad7 |
logg("%cremote_cvdhead: write failed\n", logerr ? '!' : '^'); |
| 17ad1c5b |
closesocket(sd); |
| d7c59961 |
return NULL;
}
|
| e3aaff8e |
tmp = buffer; |
| f7148839 |
cnt = FILEBUFF; |
| 22b802b6 |
#ifdef SO_ERROR |
| 7d1c492d |
while((bread = wait_recv(sd, tmp, cnt, 0, rtimeout)) > 0) { |
| 22b802b6 |
#else
while((bread = recv(sd, tmp, cnt, 0)) > 0) {
#endif |
| d7c59961 |
tmp += bread;
cnt -= bread;
if(cnt <= 0)
break; |
| e3aaff8e |
} |
| 17ad1c5b |
closesocket(sd); |
| e3aaff8e |
if(bread == -1) { |
| bcbe6ad7 |
logg("%cremote_cvdhead: Error while reading CVD header from %s\n", logerr ? '!' : '^', hostname); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| e3aaff8e |
return NULL;
}
|
| bafa192b |
if((strstr(buffer, "HTTP/1.1 404")) != NULL || (strstr(buffer, "HTTP/1.0 404")) != NULL) { |
| bcbe6ad7 |
logg("%cCVD file not found on remote server\n", logerr ? '!' : '^'); |
| 43dee84b |
mirman_update(mdat->currip, mdat->af, mdat, 2); |
| e780fcb4 |
return NULL;
}
/* check whether the resource is up-to-date */ |
| bafa192b |
if((strstr(buffer, "HTTP/1.1 304")) != NULL || (strstr(buffer, "HTTP/1.0 304")) != NULL) { |
| e780fcb4 |
*ims = 0; |
| 0ae41a2d |
logg("OK (IMS)\n"); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 0); |
| e780fcb4 |
return NULL;
} else {
*ims = 1; |
| e3aaff8e |
}
|
| bafa192b |
if(!strstr(buffer, "HTTP/1.1 200") && !strstr(buffer, "HTTP/1.0 200") &&
!strstr(buffer, "HTTP/1.1 206") && !strstr(buffer, "HTTP/1.0 206")) { |
| bcbe6ad7 |
logg("%cUnknown response from remote server\n", logerr ? '!' : '^'); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| 59e52b2c |
return NULL;
}
|
| fe3c5385 |
i = 3;
ch = buffer + i;
while(i < sizeof(buffer)) { |
| d7c59961 |
if (*ch == '\n' && *(ch - 1) == '\r' && *(ch - 2) == '\n' && *(ch - 3) == '\r') {
ch++;
i++;
break;
} |
| e3aaff8e |
ch++;
i++; |
| fe3c5385 |
}
if(sizeof(buffer) - i < 512) { |
| bcbe6ad7 |
logg("%cremote_cvdhead: Malformed CVD header (too short)\n", logerr ? '!' : '^'); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| fe3c5385 |
return NULL;
} |
| e3aaff8e |
|
| e4ae7726 |
memset(head, 0, sizeof(head));
|
| d7c59961 |
for(j = 0; j < 512; j++) {
if(!ch || (ch && !*ch) || (ch && !isprint(ch[j]))) { |
| bcbe6ad7 |
logg("%cremote_cvdhead: Malformed CVD header (bad chars)\n", logerr ? '!' : '^'); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| d7c59961 |
return NULL;
}
head[j] = ch[j]; |
| e3aaff8e |
}
|
| 376307a0 |
if(!(cvd = cl_cvdparse(head))) { |
| bcbe6ad7 |
logg("%cremote_cvdhead: Malformed CVD header (can't parse)\n", logerr ? '!' : '^'); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| 376307a0 |
} else { |
| 0ae41a2d |
logg("OK\n"); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 0); |
| 376307a0 |
} |
| e4ae7726 |
return cvd; |
| e3aaff8e |
}
|
| a68aa31f |
static int getfile(const char *srcfile, const char *destfile, const char *hostname, char *ip, const char *localip, const char *proxy, int port, const char *user, const char *pass, const char *uas, int ctimeout, int rtimeout, struct mirdat *mdat, int logerr, unsigned int can_whitelist) |
| e3aaff8e |
{ |
| c8cdb82f |
char cmd[512], uastr[128], buffer[FILEBUFF], *ch; |
| d7c59961 |
int bread, fd, totalsize = 0, rot = 0, totaldownloaded = 0,
percentage = 0, sd;
unsigned int i; |
| 5874339e |
char *remotename = NULL, *authorization = NULL, *headerline, ipaddr[46]; |
| add738d2 |
const char *rotation = "|/-\\"; |
| e3aaff8e |
if(proxy) { |
| 8ca8a18e |
remotename = malloc(strlen(hostname) + 8); |
| d7c59961 |
if(!remotename) {
logg("!getfile: Can't allocate memory for 'remotename'\n");
return 75; /* FIXME */
} |
| e3aaff8e |
sprintf(remotename, "http://%s", hostname);
|
| d7c59961 |
if(user) {
authorization = proxyauth(user, pass); |
| 12460549 |
if(!authorization) {
free(remotename); |
| d7c59961 |
return 75; /* FIXME */ |
| 12460549 |
} |
| d7c59961 |
} |
| e3aaff8e |
}
|
| c8cdb82f |
if(uas)
strncpy(uastr, uas, sizeof(uastr));
else
snprintf(uastr, sizeof(uastr), PACKAGE"/%s (OS: "TARGET_OS_TYPE", ARCH: "TARGET_ARCH_TYPE", CPU: "TARGET_CPU_TYPE")", get_version());
uastr[sizeof(uastr) - 1] = 0;
|
| d7c59961 |
snprintf(cmd, sizeof(cmd), |
| 49fb1de4 |
"GET %s/%s HTTP/1.0\r\n" |
| d7c59961 |
"Host: %s\r\n%s" |
| c8cdb82f |
"User-Agent: %s\r\n" |
| 69dfd3de |
#ifdef FRESHCLAM_NO_CACHE |
| d7c59961 |
"Cache-Control: no-cache\r\n" |
| 69dfd3de |
#endif |
| d7c59961 |
"Connection: close\r\n" |
| c8cdb82f |
"\r\n", (remotename != NULL) ? remotename : "", srcfile, hostname, (authorization != NULL) ? authorization : "", uastr); |
| e3aaff8e |
|
| 12460549 |
if(remotename)
free(remotename);
if(authorization)
free(authorization);
|
| d7c59961 |
memset(ipaddr, 0, sizeof(ipaddr));
if(ip[0]) /* use ip to connect */ |
| a68aa31f |
sd = wwwconnect(ip, proxy, port, ipaddr, localip, ctimeout, mdat, logerr, can_whitelist); |
| d7c59961 |
else |
| a68aa31f |
sd = wwwconnect(hostname, proxy, port, ipaddr, localip, ctimeout, mdat, logerr, can_whitelist); |
| e3aaff8e |
|
| d7c59961 |
if(sd < 0) {
return 52;
} else {
logg("*Trying to download http://%s/%s (IP: %s)\n", hostname, srcfile, ipaddr);
}
if(!ip[0])
strcpy(ip, ipaddr);
|
| 17ad1c5b |
if(send(sd, cmd, strlen(cmd), 0) < 0) { |
| bcbe6ad7 |
logg("%cgetfile: Can't write to socket\n", logerr ? '!' : '^'); |
| 29d8b7de |
closesocket(sd); |
| d7c59961 |
return 52;
} |
| e3aaff8e |
|
| d7c59961 |
/* read http headers */ |
| e3aaff8e |
ch = buffer;
i = 0; |
| d7c59961 |
while(1) {
/* recv one byte at a time, until we reach \r\n\r\n */ |
| 22b802b6 |
#ifdef SO_ERROR |
| 7d1c492d |
if((i >= sizeof(buffer) - 1) || wait_recv(sd, buffer + i, 1, 0, rtimeout) == -1) { |
| 22b802b6 |
#else
if((i >= sizeof(buffer) - 1) || recv(sd, buffer + i, 1, 0) == -1) {
#endif |
| bcbe6ad7 |
logg("%cgetfile: Error while reading database from %s (IP: %s)\n", logerr ? '!' : '^', hostname, ipaddr); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| 29d8b7de |
closesocket(sd); |
| d7c59961 |
return 52;
} |
| f9da20cc |
|
| d7c59961 |
if(i > 2 && *ch == '\n' && *(ch - 1) == '\r' && *(ch - 2) == '\n' && *(ch - 3) == '\r') {
i++;
break;
}
ch++; |
| e3aaff8e |
i++; |
| d6a56e70 |
} |
| e3aaff8e |
|
| 3755dd3f |
buffer[i] = 0;
|
| f9da20cc |
/* check whether the resource actually existed or not */ |
| 9b191ef1 |
if((strstr(buffer, "HTTP/1.1 404")) != NULL || (strstr(buffer, "HTTP/1.0 404")) != NULL) { |
| 1deda3bb |
logg("^getfile: %s not found on remote server (IP: %s)\n", srcfile, ipaddr); |
| 43dee84b |
mirman_update(mdat->currip, mdat->af, mdat, 2); |
| 17ad1c5b |
closesocket(sd); |
| d7c59961 |
return 58; |
| f9da20cc |
}
|
| 9b191ef1 |
if(!strstr(buffer, "HTTP/1.1 200") && !strstr(buffer, "HTTP/1.0 200") &&
!strstr(buffer, "HTTP/1.1 206") && !strstr(buffer, "HTTP/1.0 206")) { |
| bcbe6ad7 |
logg("%cgetfile: Unknown response from remote server (IP: %s)\n", logerr ? '!' : '^', ipaddr); |
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 1); |
| 17ad1c5b |
closesocket(sd); |
| a889f40e |
return 58; |
| 59e52b2c |
}
|
| b12491c6 |
/* get size of resource */
for(i = 0; (headerline = cli_strtok(buffer, i, "\n")); i++){
if(strstr(headerline, "Content-Length:")) { |
| d7c59961 |
if((ch = cli_strtok(headerline, 1, ": "))) {
totalsize = atoi(ch);
free(ch);
} else {
totalsize = 0;
} |
| b12491c6 |
} |
| d7c59961 |
free(headerline);
}
if((fd = open(destfile, O_WRONLY|O_CREAT|O_EXCL|O_BINARY, 0644)) == -1) {
char currdir[512];
|
| e8b94525 |
if(getcwd(currdir, sizeof(currdir)))
logg("!getfile: Can't create new file %s in %s\n", destfile, currdir);
else
logg("!getfile: Can't create new file %s in the current directory\n", destfile);
|
| d7c59961 |
logg("Hint: The database directory must be writable for UID %d or GID %d\n", getuid(), getgid()); |
| 17ad1c5b |
closesocket(sd); |
| d7c59961 |
return 57; |
| b12491c6 |
}
|
| 22b802b6 |
#ifdef SO_ERROR |
| 7d1c492d |
while((bread = wait_recv(sd, buffer, FILEBUFF, 0, rtimeout)) > 0) { |
| 22b802b6 |
#else
while((bread = recv(sd, buffer, FILEBUFF, 0)) > 0) {
#endif |
| d7c59961 |
if(write(fd, buffer, bread) != bread) {
logg("getfile: Can't write %d bytes to %s\n", bread, destfile);
unlink(destfile);
close(fd); |
| 17ad1c5b |
closesocket(sd); |
| d7c59961 |
return 57; /* FIXME */
} |
| f9da20cc |
|
| 25a9fc52 |
if(totalsize > 0) {
totaldownloaded += bread;
percentage = (int) (100 * (float) totaldownloaded / totalsize);
}
|
| b12491c6 |
if(!mprintf_quiet) {
if(totalsize > 0) { |
| d7c59961 |
mprintf("Downloading %s [%3i%%]\r", srcfile, percentage); |
| b12491c6 |
} else { |
| d7c59961 |
mprintf("Downloading %s [%c]\r", srcfile, rotation[rot]); |
| b12491c6 |
rot++;
rot %= 4;
}
fflush(stdout);
} |
| e3aaff8e |
} |
| 17ad1c5b |
closesocket(sd); |
| d7c59961 |
close(fd); |
| e3aaff8e |
|
| b12491c6 |
if(totalsize > 0) |
| c8e620d2 |
logg("Downloading %s [%i%%]\n", srcfile, percentage); |
| b12491c6 |
else |
| d7c59961 |
logg("Downloading %s [*]\n", srcfile);
|
| b54eb319 |
mirman_update(mdat->currip, mdat->af, mdat, 0); |
| d7c59961 |
return 0;
}
|
| 653c129c |
static int getcvd(const char *cvdfile, const char *newfile, const char *hostname, char *ip, const char *localip, const char *proxy, int port, const char *user, const char *pass, const char *uas, unsigned int newver, int ctimeout, int rtimeout, struct mirdat *mdat, int logerr, unsigned int can_whitelist) |
| d7c59961 |
{
struct cl_cvd *cvd;
int ret;
|
| 9d193ff2 |
logg("*Retrieving http://%s/%s\n", hostname, cvdfile); |
| a68aa31f |
if((ret = getfile(cvdfile, newfile, hostname, ip, localip, proxy, port, user, pass, uas, ctimeout, rtimeout, mdat, logerr, can_whitelist))) { |
| bcbe6ad7 |
logg("%cCan't download %s from %s\n", logerr ? '!' : '^', cvdfile, hostname); |
| 9d193ff2 |
unlink(newfile); |
| d7c59961 |
return ret;
}
|
| 9d193ff2 |
if((ret = cl_cvdverify(newfile))) { |
| d7c59961 |
logg("!Verification: %s\n", cl_strerror(ret)); |
| 9d193ff2 |
unlink(newfile); |
| d7c59961 |
return 54;
}
|
| 9d193ff2 |
if(!(cvd = cl_cvdhead(newfile))) {
logg("!Can't read CVD header of new %s database.\n", cvdfile);
unlink(newfile); |
| d7c59961 |
return 54;
}
if(cvd->version < newver) { |
| 9e8b6be6 |
logg("^Mirror %s is not synchronized.\n", ip); |
| 43dee84b |
mirman_update(mdat->currip, mdat->af, mdat, 2); |
| d7c59961 |
cl_cvdfree(cvd); |
| 9d193ff2 |
unlink(newfile); |
| d7c59961 |
return 59;
}
|
| 9d193ff2 |
cl_cvdfree(cvd); |
| e3aaff8e |
return 0;
}
|
| 9d193ff2 |
static int chdir_tmp(const char *dbname, const char *tmpdir) |
| d7c59961 |
{ |
| 9d193ff2 |
char cvdfile[32]; |
| d7c59961 |
|
| 9d193ff2 |
if(access(tmpdir, R_OK|W_OK) == -1) {
sprintf(cvdfile, "%s.cvd", dbname);
if(access(cvdfile, R_OK) == -1) {
sprintf(cvdfile, "%s.cld", dbname);
if(access(cvdfile, R_OK) == -1) {
logg("!chdir_tmp: Can't access local %s database\n", dbname);
return -1;
}
} |
| d7c59961 |
|
| 9d193ff2 |
if(mkdir(tmpdir, 0755) == -1) {
logg("!chdir_tmp: Can't create directory %s\n", tmpdir); |
| d7c59961 |
return -1;
}
|
| afff80ef |
if(cli_cvdunpack(cvdfile, tmpdir) == -1) { |
| 9d193ff2 |
logg("!chdir_tmp: Can't unpack %s into %s\n", cvdfile, tmpdir);
cli_rmdirs(tmpdir); |
| d7c59961 |
return -1; |
| e3aaff8e |
}
} |
| d7c59961 |
|
| 9d193ff2 |
if(chdir(tmpdir) == -1) {
logg("!chdir_tmp: Can't change directory to %s\n", tmpdir); |
| d7c59961 |
return -1; |
| e3aaff8e |
} |
| d7c59961 |
return 0;
}
|
| a68aa31f |
static int getpatch(const char *dbname, const char *tmpdir, int version, const char *hostname, char *ip, const char *localip, const char *proxy, int port, const char *user, const char *pass, const char *uas, int ctimeout, int rtimeout, struct mirdat *mdat, int logerr, unsigned int can_whitelist) |
| d7c59961 |
{
char *tempname, patch[32], olddir[512];
int ret, fd;
if(!getcwd(olddir, sizeof(olddir))) {
logg("!getpatch: Can't get path of current working directory\n");
return 50; /* FIXME */
}
|
| 9d193ff2 |
if(chdir_tmp(dbname, tmpdir) == -1) |
| d7c59961 |
return 50;
tempname = cli_gentemp(".");
snprintf(patch, sizeof(patch), "%s-%d.cdiff", dbname, version);
logg("*Retrieving http://%s/%s\n", hostname, patch); |
| a68aa31f |
if((ret = getfile(patch, tempname, hostname, ip, localip, proxy, port, user, pass, uas, ctimeout, rtimeout, mdat, logerr, can_whitelist))) { |
| bcbe6ad7 |
logg("%cgetpatch: Can't download %s from %s\n", logerr ? '!' : '^', patch, hostname); |
| d7c59961 |
unlink(tempname);
free(tempname); |
| e8b94525 |
CHDIR_ERR(olddir); |
| d7c59961 |
return ret;
}
|
| 12f21945 |
if((fd = open(tempname, O_RDONLY|O_BINARY)) == -1) { |
| d7c59961 |
logg("!getpatch: Can't open %s for reading\n", tempname);
unlink(tempname);
free(tempname); |
| e8b94525 |
CHDIR_ERR(olddir); |
| d7c59961 |
return 55;
}
|
| 5b68299b |
if(cdiff_apply(fd, 1) == -1) { |
| d7c59961 |
logg("!getpatch: Can't apply patch\n"); |
| 7a1c7b4e |
close(fd); |
| d7c59961 |
unlink(tempname);
free(tempname); |
| e8b94525 |
CHDIR_ERR(olddir); |
| d7c59961 |
return 70; /* FIXME */
}
|
| 7a1c7b4e |
close(fd); |
| f9467801 |
unlink(tempname);
free(tempname); |
| e8b94525 |
if(chdir(olddir) == -1) {
logg("!getpatch: Can't chdir to %s\n", olddir);
return 50; /* FIXME */
} |
| d7c59961 |
return 0;
}
|
| 9d193ff2 |
static struct cl_cvd *currentdb(const char *dbname, char *localname) |
| d7c59961 |
{ |
| 9d193ff2 |
char db[32]; |
| 7291868a |
struct cl_cvd *cvd = NULL; |
| d7c59961 |
|
| 9d193ff2 |
snprintf(db, sizeof(db), "%s.cvd", dbname);
if(localname)
strcpy(localname, db);
if(access(db, R_OK) == -1) {
snprintf(db, sizeof(db), "%s.cld", dbname);
if(localname)
strcpy(localname, db); |
| 6ba48775 |
} |
| d7c59961 |
|
| 9d193ff2 |
if(!access(db, R_OK))
cvd = cl_cvdhead(db); |
| d7c59961 |
return cvd;
}
|
| d8b95725 |
static int buildcld(const char *tmpdir, const char *dbname, const char *newfile, unsigned int compr) |
| 9d193ff2 |
{
DIR *dir; |
| 45623e7c |
char cwd[512], info[32], buff[513], *pt; |
| 9d193ff2 |
struct dirent *dent; |
| c1908ce7 |
int fd, err = 0; |
| d8b95725 |
gzFile *gzs = NULL; |
| 9d193ff2 |
|
| e8b94525 |
if(!getcwd(cwd, sizeof(cwd))) {
logg("!buildcld: Can't get path of current working directory\n");
return -1;
} |
| 9d193ff2 |
if(chdir(tmpdir) == -1) {
logg("!buildcld: Can't access directory %s\n", tmpdir);
return -1;
}
snprintf(info, sizeof(info), "%s.info", dbname);
if((fd = open(info, O_RDONLY|O_BINARY)) == -1) {
logg("!buildcld: Can't open %s\n", info); |
| e8b94525 |
CHDIR_ERR(cwd); |
| 9d193ff2 |
return -1;
}
if(read(fd, buff, 512) == -1) {
logg("!buildcld: Can't read %s\n", info); |
| e8b94525 |
CHDIR_ERR(cwd); |
| 9d193ff2 |
close(fd);
return -1;
} |
| 45623e7c |
buff[512] = 0; |
| 9d193ff2 |
close(fd);
if(!(pt = strchr(buff, '\n'))) {
logg("!buildcld: Bad format of %s\n", info); |
| e8b94525 |
CHDIR_ERR(cwd); |
| 9d193ff2 |
return -1;
}
memset(pt, ' ', 512 + buff - pt);
if((fd = open(newfile, O_WRONLY|O_CREAT|O_EXCL|O_BINARY, 0644)) == -1) {
logg("!buildcld: Can't open %s for writing\n", newfile); |
| e8b94525 |
CHDIR_ERR(cwd); |
| 9d193ff2 |
return -1;
}
if(write(fd, buff, 512) != 512) {
logg("!buildcld: Can't write to %s\n", newfile); |
| e8b94525 |
CHDIR_ERR(cwd); |
| 9d193ff2 |
unlink(newfile);
close(fd);
return -1;
}
if((dir = opendir(".")) == NULL) {
logg("!buildcld: Can't open directory %s\n", tmpdir); |
| e8b94525 |
CHDIR_ERR(cwd); |
| 9d193ff2 |
unlink(newfile); |
| d8b95725 |
close(fd); |
| 9d193ff2 |
return -1;
}
|
| d8b95725 |
if(compr) {
close(fd);
if(!(gzs = gzopen(newfile, "ab"))) {
logg("!buildcld: gzopen() failed for %s\n", newfile); |
| e8b94525 |
CHDIR_ERR(cwd); |
| d8b95725 |
unlink(newfile);
closedir(dir);
return -1;
}
}
|
| c1908ce7 |
if(access("COPYING", R_OK)) {
logg("!buildcld: COPYING file not found\n");
err = 1;
} else {
if(tar_addfile(fd, gzs, "COPYING") == -1) {
logg("!buildcld: Can't add COPYING to .cld file\n");
err = 1;
}
}
if(!err && !access("daily.cfg", R_OK)) {
if(tar_addfile(fd, gzs, "daily.cfg") == -1) {
logg("!buildcld: Can't add daily.cfg to .cld file\n");
err = 1;
}
}
if(err) { |
| e8b94525 |
CHDIR_ERR(cwd); |
| c1908ce7 |
if(gzs)
gzclose(gzs);
else
close(fd);
unlink(newfile);
return -1;
}
|
| 9d193ff2 |
while((dent = readdir(dir))) { |
| a9d3aa14 |
#if !defined(C_INTERIX) && !defined(C_WINDOWS) |
| 9d193ff2 |
if(dent->d_ino)
#endif
{ |
| c1908ce7 |
if(!strcmp(dent->d_name, ".") || !strcmp(dent->d_name, "..") || !strcmp(dent->d_name, "COPYING") || !strcmp(dent->d_name, "daily.cfg")) |
| 9d193ff2 |
continue;
|
| d8b95725 |
if(tar_addfile(fd, gzs, dent->d_name) == -1) { |
| 9d193ff2 |
logg("!buildcld: Can't add %s to .cld file\n", dent->d_name); |
| e8b94525 |
CHDIR_ERR(cwd); |
| d8b95725 |
if(gzs)
gzclose(gzs);
else
close(fd); |
| 9d193ff2 |
unlink(newfile);
closedir(dir);
return -1;
}
}
}
closedir(dir);
|
| d8b95725 |
if(gzs) {
if(gzclose(gzs)) {
logg("!buildcld: gzclose() failed for %s\n", newfile);
unlink(newfile);
return -1;
}
} else {
if(close(fd) == -1) {
logg("!buildcld: close() failed for %s\n", newfile);
unlink(newfile);
return -1;
}
}
|
| 9d193ff2 |
if(chdir(cwd) == -1) {
logg("!buildcld: Can't return to previous directory %s\n", cwd);
return -1;
}
return 0;
}
|
| 3f7802c9 |
static int updatedb(const char *dbname, const char *hostname, char *ip, int *signo, const struct optstruct *opts, const char *dnsreply, char *localip, int outdated, struct mirdat *mdat, int logerr) |
| d7c59961 |
{
struct cl_cvd *current, *remote; |
| 3f7802c9 |
const struct optstruct *opt; |
| f73b211b |
unsigned int nodb = 0, currver = 0, newver = 0, port = 0, i, j;
int ret, ims = -1; |
| 8834ac9b |
char *pt, cvdfile[32], localname[32], *tmpdir = NULL, *newfile, newdb[32], cwd[512]; |
| d7c59961 |
const char *proxy = NULL, *user = NULL, *pass = NULL, *uas = NULL; |
| a68aa31f |
unsigned int flevel = cl_retflevel(), remote_flevel = 0, maxattempts;
unsigned int can_whitelist = 0; |
| 7d1c492d |
int ctimeout, rtimeout; |
| d7c59961 |
|
| 9d193ff2 |
snprintf(cvdfile, sizeof(cvdfile), "%s.cvd", dbname); |
| d7c59961 |
|
| 9d193ff2 |
if(!(current = currentdb(dbname, localname))) { |
| d7c59961 |
nodb = 1; |
| 376307a0 |
} else {
mdat->dbflevel = current->fl; |
| d7c59961 |
}
if(!nodb && dnsreply) {
int field = 0;
if(!strcmp(dbname, "main")) {
field = 1;
} else if(!strcmp(dbname, "daily")) {
field = 2; |
| 03527bee |
} else if(!strcmp(dbname, "safebrowsing")) {
field = 6; |
| d7c59961 |
} else {
logg("!updatedb: Unknown database name (%s) passed.\n", dbname);
cl_cvdfree(current);
return 70;
}
if(field && (pt = cli_strtok(dnsreply, field, ":"))) { |
| a3fe2c5b |
if(!cli_isnumber(pt)) { |
| d7c59961 |
logg("^Broken database version in TXT record.\n");
} else {
newver = atoi(pt); |
| 9d193ff2 |
logg("*%s version from DNS: %d\n", cvdfile, newver); |
| d7c59961 |
}
free(pt);
} else {
logg("^Invalid DNS reply. Falling back to HTTP mode.\n");
}
}
|
| a68aa31f |
if(dnsreply) {
if((pt = cli_strtok(dnsreply, 5, ":"))) {
remote_flevel = atoi(pt);
free(pt); |
| ea89339f |
if(remote_flevel && (remote_flevel - flevel < 4)) |
| a68aa31f |
can_whitelist = 1;
}
}
|
| d7c59961 |
/* Initialize proxy settings */ |
| 3f7802c9 |
if((opt = optget(opts, "HTTPProxyServer"))->enabled) {
proxy = opt->strarg; |
| d7c59961 |
if(strncasecmp(proxy, "http://", 7) == 0)
proxy += 7;
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPProxyUsername"))->enabled) {
user = opt->strarg;
if((opt = optget(opts, "HTTPProxyPassword"))->enabled) {
pass = opt->strarg; |
| d7c59961 |
} else {
logg("HTTPProxyUsername requires HTTPProxyPassword\n");
if(current)
cl_cvdfree(current);
return 56;
}
}
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPProxyPort"))->enabled)
port = opt->numarg; |
| d7c59961 |
logg("Connecting via %s\n", proxy);
}
|
| 3f7802c9 |
if((opt = optget(opts, "HTTPUserAgent"))->enabled)
uas = opt->strarg; |
| d7c59961 |
|
| 3f7802c9 |
ctimeout = optget(opts, "ConnectTimeout")->numarg;
rtimeout = optget(opts, "ReceiveTimeout")->numarg; |
| d7c59961 |
|
| 14c1c467 |
if(!nodb && !newver) { |
| d7c59961 |
|
| 06be0521 |
remote = remote_cvdhead(cvdfile, localname, hostname, ip, localip, proxy, port, user, pass, uas, &ims, ctimeout, rtimeout, mdat, logerr, can_whitelist); |
| d7c59961 |
if(!nodb && !ims) { |
| 9d193ff2 |
logg("%s is up to date (version: %d, sigs: %d, f-level: %d, builder: %s)\n", localname, current->version, current->sigs, current->fl, current->builder); |
| d7c59961 |
*signo += current->sigs;
cl_cvdfree(current);
return 1;
}
if(!remote) { |
| 9d193ff2 |
logg("^Can't read %s header from %s (IP: %s)\n", cvdfile, hostname, ip); |
| d7c59961 |
cl_cvdfree(current);
return 58;
}
newver = remote->version;
cl_cvdfree(remote);
}
if(!nodb && (current->version >= newver)) { |
| 9d193ff2 |
logg("%s is up to date (version: %d, sigs: %d, f-level: %d, builder: %s)\n", localname, current->version, current->sigs, current->fl, current->builder); |
| d7c59961 |
if(!outdated && flevel < current->fl) {
/* display warning even for already installed database */
logg("^Current functionality level = %d, recommended = %d\n", flevel, current->fl); |
| f6e4ba63 |
logg("Please check if ClamAV tools are linked against the proper version of libclamav\n"); |
| 61409916 |
logg("DON'T PANIC! Read http://www.clamav.net/support/faq\n"); |
| d7c59961 |
}
*signo += current->sigs;
cl_cvdfree(current);
return 1;
}
|
| 28861d8a |
if(current) {
currver = current->version; |
| d7c59961 |
cl_cvdfree(current); |
| 28861d8a |
} |
| d7c59961 |
/*
if(ipaddr[0]) {
hostfd = wwwconnect(ipaddr, proxy, port, NULL, localip);
} else {
hostfd = wwwconnect(hostname, proxy, port, ipaddr, localip);
if(!ip[0])
strcpy(ip, ipaddr);
}
if(hostfd < 0) {
if(ipaddr[0])
logg("Connection with %s (IP: %s) failed.\n", hostname, ipaddr);
else
logg("Connection with %s failed.\n", hostname);
return 52;
};
*/
|
| 3f7802c9 |
if(!optget(opts, "ScriptedUpdates")->enabled) |
| 011b4f29 |
nodb = 1;
|
| e8b94525 |
if(!getcwd(cwd, sizeof(cwd))) {
logg("!updatedb: Can't get path of current working directory\n");
return 50; /* FIXME */
} |
| 9d193ff2 |
newfile = cli_gentemp(cwd);
|
| d7c59961 |
if(nodb) { |
| 653c129c |
ret = getcvd(cvdfile, newfile, hostname, ip, localip, proxy, port, user, pass, uas, newver, ctimeout, rtimeout, mdat, logerr, can_whitelist); |
| 78ad4eff |
if(ret) {
memset(ip, 0, 16); |
| 9d193ff2 |
free(newfile); |
| d7c59961 |
return ret; |
| 78ad4eff |
} |
| 8834ac9b |
snprintf(newdb, sizeof(newdb), "%s.cvd", dbname); |
| d7c59961 |
} else {
ret = 0;
|
| 9d193ff2 |
tmpdir = cli_gentemp("."); |
| 3f7802c9 |
maxattempts = optget(opts, "MaxAttempts")->numarg; |
| d7c59961 |
for(i = currver + 1; i <= newver; i++) { |
| c8e620d2 |
for(j = 0; j < maxattempts; j++) { |
| bcbe6ad7 |
int llogerr = logerr;
if(logerr)
llogerr = (j == maxattempts - 1); |
| a68aa31f |
ret = getpatch(dbname, tmpdir, i, hostname, ip, localip, proxy, port, user, pass, uas, ctimeout, rtimeout, mdat, llogerr, can_whitelist); |
| 80731e47 |
if(ret == 52 || ret == 58) {
memset(ip, 0, 16);
continue;
} else {
break;
} |
| d7c59961 |
} |
| 80731e47 |
if(ret)
break; |
| d7c59961 |
}
if(ret) { |
| 9d193ff2 |
cli_rmdirs(tmpdir);
free(tmpdir);
logg("^Incremental update failed, trying to download %s\n", cvdfile); |
| 43dee84b |
mirman_whitelist(mdat, 2); |
| 653c129c |
ret = getcvd(cvdfile, newfile, hostname, ip, localip, proxy, port, user, pass, uas, newver, ctimeout, rtimeout, mdat, logerr, can_whitelist); |
| 80731e47 |
if(ret) { |
| 9d193ff2 |
free(newfile); |
| d7c59961 |
return ret; |
| 80731e47 |
} |
| 8834ac9b |
snprintf(newdb, sizeof(newdb), "%s.cvd", dbname); |
| 7a1c7b4e |
} else { |
| 3f7802c9 |
if(buildcld(tmpdir, dbname, newfile, optget(opts, "CompressLocalDatabase")->enabled) == -1) { |
| 9d193ff2 |
logg("!Can't create local database\n");
cli_rmdirs(tmpdir);
free(tmpdir);
free(newfile);
return 70; /* FIXME */
} |
| 8834ac9b |
snprintf(newdb, sizeof(newdb), "%s.cld", dbname); |
| 9d193ff2 |
cli_rmdirs(tmpdir);
free(tmpdir); |
| d7c59961 |
} |
| 9d193ff2 |
} |
| 80731e47 |
|
| ba85c02e |
if(!(current = cl_cvdhead(newfile))) { |
| 8834ac9b |
logg("!Can't parse new database %s\n", newfile); |
| 9d193ff2 |
unlink(newfile);
free(newfile); |
| ba85c02e |
return 55; /* FIXME */ |
| d7c59961 |
}
|
| 8834ac9b |
if(!nodb && !access(localname, R_OK) && unlink(localname)) {
logg("!Can't unlink %s. Please fix it and try again.\n", localname); |
| 9d193ff2 |
unlink(newfile);
free(newfile); |
| 8834ac9b |
return 53; |
| d7c59961 |
}
|
| 195be7d4 |
#ifdef C_WINDOWS
if(!access(newdb, R_OK) && unlink(newdb)) {
logg("!Can't unlink %s. Please fix the problem manually and try again.\n", newdb);
unlink(newfile);
free(newfile);
return 53;
}
#endif
|
| ba85c02e |
if(rename(newfile, newdb) == -1) { |
| 0c54213b |
logg("!Can't rename %s to %s: %s\n", newfile, newdb, strerror(errno)); |
| 9d193ff2 |
unlink(newfile);
free(newfile);
return 57;
}
free(newfile); |
| 011b4f29 |
|
| 8834ac9b |
logg("%s updated (version: %d, sigs: %d, f-level: %d, builder: %s)\n", newdb, current->version, current->sigs, current->fl, current->builder); |
| d7c59961 |
if(flevel < current->fl) {
logg("^Your ClamAV installation is OUTDATED!\n");
logg("^Current functionality level = %d, recommended = %d\n", flevel, current->fl); |
| 61409916 |
logg("DON'T PANIC! Read http://www.clamav.net/support/faq\n"); |
| d7c59961 |
}
*signo += current->sigs;
cl_cvdfree(current);
return 0; |
| e3aaff8e |
} |
| d7c59961 |
|
| 3f7802c9 |
int downloadmanager(const struct optstruct *opts, const char *hostname, const char *dbdir, int logerr) |
| d7c59961 |
{
time_t currtime;
int ret, updated = 0, outdated = 0, signo = 0; |
| 9d193ff2 |
unsigned int ttl; |
| b54eb319 |
char ipaddr[46], *dnsreply = NULL, *pt, *localip = NULL, *newver = NULL; |
| 3f7802c9 |
const struct optstruct *opt; |
| 376307a0 |
struct mirdat mdat; |
| d7c59961 |
#ifdef HAVE_RESOLV_H
const char *dnsdbinfo;
#endif
time(&currtime);
logg("ClamAV update process started at %s", ctime(&currtime)); |
| 3027857c |
#ifdef HAVE_GETADDRINFO |
| b54eb319 |
logg("*Using IPv6 aware code\n");
#endif |
| d7c59961 |
#ifdef HAVE_RESOLV_H |
| 3f7802c9 |
dnsdbinfo = optget(opts, "DNSDatabaseInfo")->strarg; |
| d7c59961 |
|
| 3f7802c9 |
if(optget(opts, "no-dns")->enabled) { |
| d7c59961 |
dnsreply = NULL;
} else {
if((dnsreply = txtquery(dnsdbinfo, &ttl))) {
logg("*TTL: %d\n", ttl);
if((pt = cli_strtok(dnsreply, 3, ":"))) {
int rt;
time_t ct;
rt = atoi(pt);
free(pt);
time(&ct);
if((int) ct - rt > 10800) {
logg("^DNS record is older than 3 hours.\n");
free(dnsreply);
dnsreply = NULL;
}
} else {
free(dnsreply);
dnsreply = NULL;
}
if(dnsreply) {
int vwarning = 1;
if((pt = cli_strtok(dnsreply, 4, ":"))) {
if(*pt == '0')
vwarning = 0;
free(pt);
}
if((newver = cli_strtok(dnsreply, 0, ":"))) { |
| 8e70b4db |
char vstr[32]; |
| d7c59961 |
logg("*Software version from DNS: %s\n", newver); |
| 8e70b4db |
strncpy(vstr, get_version(), 32);
vstr[31] = 0; |
| b105842c |
if((pt = strstr(vstr, "-exp")) || (pt = strstr(vstr,"-broken"))) |
| 8e70b4db |
*pt = 0; |
| d7c59961 |
|
| 8e70b4db |
if(vwarning && !strstr(vstr, "devel") && !strstr(vstr, "rc")) {
if(strcmp(vstr, newver)) { |
| d7c59961 |
logg("^Your ClamAV installation is OUTDATED!\n"); |
| 8e70b4db |
logg("^Local version: %s Recommended version: %s\n", vstr, newver); |
| 61409916 |
logg("DON'T PANIC! Read http://www.clamav.net/support/faq\n"); |
| d7c59961 |
outdated = 1;
}
}
}
}
}
if(!dnsreply) {
logg("^Invalid DNS reply. Falling back to HTTP mode.\n");
}
}
#endif /* HAVE_RESOLV_H */
|
| 3f7802c9 |
if((opt = optget(opts, "LocalIPAddress"))->enabled)
localip = opt->strarg; |
| d7c59961 |
|
| 3f7802c9 |
if(optget(opts, "HTTPProxyServer")->enabled) |
| a7db63d1 |
mirman_read("mirrors.dat", &mdat, 0);
else
mirman_read("mirrors.dat", &mdat, 1); |
| 376307a0 |
|
| d7c59961 |
memset(ipaddr, 0, sizeof(ipaddr));
|
| 3f7802c9 |
if((ret = updatedb("main", hostname, ipaddr, &signo, opts, dnsreply, localip, outdated, &mdat, logerr)) > 50) { |
| d7c59961 |
if(dnsreply)
free(dnsreply);
if(newver)
free(newver);
|
| 376307a0 |
mirman_write("mirrors.dat", &mdat); |
| d7c59961 |
return ret;
} else if(ret == 0)
updated = 1;
/* if ipaddr[0] != 0 it will use it to connect to the web host */ |
| 3f7802c9 |
if((ret = updatedb("daily", hostname, ipaddr, &signo, opts, dnsreply, localip, outdated, &mdat, logerr)) > 50) { |
| d7c59961 |
if(dnsreply)
free(dnsreply);
if(newver)
free(newver);
|
| 376307a0 |
mirman_write("mirrors.dat", &mdat); |
| d7c59961 |
return ret;
} else if(ret == 0)
updated = 1;
|
| 03527bee |
/* if ipaddr[0] != 0 it will use it to connect to the web host */ |
| 10221372 |
if(!optget(opts, "SafeBrowsing")->enabled) { |
| ad0b410c |
const char *safedb = NULL;
if(!access("safebrowsing.cvd", R_OK))
safedb = "safebrowsing.cvd";
else if(!access("safebrowsing.cld", R_OK))
safedb = "safebrowsing.cld";
if(safedb) {
if(unlink(safedb))
logg("^SafeBrowsing is disabled but can't remove old %s\n", safedb); |
| 10221372 |
else |
| ad0b410c |
logg("*%s removed\n", safedb); |
| 10221372 |
}
} else if((ret = updatedb("safebrowsing", hostname, ipaddr, &signo, opts, dnsreply, localip, outdated, &mdat, logerr)) > 50) { |
| 03527bee |
if(dnsreply)
free(dnsreply);
if(newver)
free(newver);
mirman_write("mirrors.dat", &mdat);
return ret;
} else if(ret == 0)
updated = 1;
|
| d7c59961 |
if(dnsreply)
free(dnsreply);
|
| 376307a0 |
mirman_write("mirrors.dat", &mdat);
|
| d7c59961 |
if(updated) { |
| 3f7802c9 |
if(optget(opts, "HTTPProxyServer")->enabled) { |
| d7c59961 |
logg("Database updated (%d signatures) from %s\n", signo, hostname);
} else {
logg("Database updated (%d signatures) from %s (IP: %s)\n", signo, hostname, ipaddr);
}
#ifdef BUILD_CLAMD |
| 3f7802c9 |
if((opt = optget(opts, "NotifyClamd"))->active)
notify(opt->strarg); |
| d7c59961 |
#endif
|
| 3f7802c9 |
if((opt = optget(opts, "OnUpdateExecute"))->enabled)
execute("OnUpdateExecute", opt->strarg, opts); |
| d7c59961 |
}
if(outdated) { |
| 3f7802c9 |
if((opt = optget(opts, "OnOutdatedExecute"))->enabled) {
char *cmd = strdup(opt->strarg); |
| d7c59961 |
|
| dd952d65 |
if((pt = newver)) {
while(*pt) {
if(!strchr("0123456789.", *pt)) {
logg("!downloadmanager: OnOutdatedExecute: Incorrect version number string\n");
free(newver);
newver = NULL;
break;
}
pt++;
}
}
if(newver && (pt = strstr(cmd, "%v"))) { |
| 8ca8a18e |
char *buffer = (char *) malloc(strlen(cmd) + strlen(newver) + 10); |
| d7c59961 |
if(!buffer) {
logg("!downloadmanager: Can't allocate memory for buffer\n");
free(cmd);
if(newver)
free(newver); |
| 6bada442 |
return 75; |
| d7c59961 |
}
*pt = 0; pt += 2;
strcpy(buffer, cmd);
strcat(buffer, newver);
strcat(buffer, pt);
free(cmd);
cmd = strdup(buffer);
free(buffer);
}
|
| 770fb166 |
if(newver) |
| 6d682a0f |
execute("OnOutdatedExecute", cmd, opts); |
| 770fb166 |
|
| d7c59961 |
free(cmd);
}
}
if(newver)
free(newver);
return updated ? 0 : 1;
} |