FilledChecklist.h

Go to the documentation of this file.

/*
 * Copyright (C) 1996-2023 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */
 
#ifndef SQUID_ACLFILLED_CHECKLIST_H
#define SQUID_ACLFILLED_CHECKLIST_H
 
#include "AccessLogEntry.h"
#include "acl/Checklist.h"
#include "acl/forward.h"
#include "base/CbcPointer.h"
#include "error/forward.h"
#include "HttpRequest.h"
#include "ip/Address.h"
#if USE_AUTH
#include "auth/UserRequest.h"
#endif
#include "security/CertError.h"
 
class CachePeer;
class ConnStateData;
 
class ACLFilledChecklist: public ACLChecklist
{
    CBDATA_CLASS(ACLFilledChecklist);
 
public:
    ACLFilledChecklist();
    ACLFilledChecklist(const acl_access *, HttpRequest *, const char *ident = nullptr);
    ~ACLFilledChecklist() override;
 
    void setRequest(HttpRequest *);
    void setIdent(const char *userIdentity);
 
public:
    ConnStateData * conn() const;
 
    int fd() const;
 
    void setConn(ConnStateData *);
    void fd(int aDescriptor);
 
    //int authenticated();
 
    bool destinationDomainChecked() const;
    void markDestinationDomainChecked();
    bool sourceDomainChecked() const;
    void markSourceDomainChecked();
 
    // ACLChecklist API
    bool hasRequest() const override { return request != nullptr; }
    bool hasReply() const override { return reply != nullptr; }
    bool hasAle() const override { return al != nullptr; }
    void syncAle(HttpRequest *adaptedRequest, const char *logUri) const override;
    void verifyAle() const override;
 
public:
    Ip::Address src_addr;
    Ip::Address dst_addr;
    Ip::Address my_addr;
    SBuf dst_peer_name;
    char *dst_rdns;
 
    HttpRequest::Pointer request;
    HttpReply *reply;
 
    char rfc931[USER_IDENT_SZ];
#if USE_AUTH
    Auth::UserRequest::Pointer auth_user_request;
#endif
#if SQUID_SNMP
    char *snmp_community;
#endif
 
    // TODO: RefCount errors; do not ignore them because their "owner" is gone!
    CbcPointer<Security::CertErrors> sslErrors;
 
    Security::CertPointer serverCert;
 
    AccessLogEntry::Pointer al; 
 
    ExternalACLEntryPointer extacl_entry;
 
    err_type requestErrorType;
 
private:
    ConnStateData * conn_;          
    int fd_;                        
    bool destinationDomainChecked_;
    bool sourceDomainChecked_;
    ACLFilledChecklist(const ACLFilledChecklist &);
    ACLFilledChecklist &operator=(const ACLFilledChecklist &);
};
 
inline
ACLFilledChecklist *Filled(ACLChecklist *checklist)
{
    // this should always be safe because ACLChecklist is an abstract class
    // and ACLFilledChecklist is its only [concrete] child
    return dynamic_cast<ACLFilledChecklist*>(checklist);
}
 
#endif /* SQUID_ACLFILLED_CHECKLIST_H */