[secnet] / resolver.c

/* Name resolution using adns */

#include <errno.h>
#include "secnet.h"
#include "util.h"
#ifndef HAVE_LIBADNS
#error secnet requires ADNS version 1.0 or above
#endif
#include <adns.h>
#include <arpa/inet.h>
#include <string.h>


struct adns {
    closure_t cl;
    struct resolver_if ops;
    struct cloc loc;
    adns_state ast;
};

struct query {
    void *cst;
    int port;
    struct comm_if *comm;
    resolve_answer_fn *answer;
    adns_query query;
};

static resolve_request_fn resolve_request;
static bool_t resolve_request(void *sst, cstring_t name,
			      int port, struct comm_if *comm,
			      resolve_answer_fn *cb, void *cst)
{
    struct adns *st=sst;
    struct query *q;
    int rv;
    const int maxlitlen=
#ifdef CONFIG_IPV6
	ADNS_ADDR2TEXT_BUFLEN*2
#else
	50
#endif
	;
    ssize_t l=strlen(name);
    if (name[0]=='[' && l<maxlitlen && l>2 && name[l-1]==']') {
	char trimmed[maxlitlen+1];
	memcpy(trimmed,name+1,l-2);
	trimmed[l-2]=0;
	struct comm_addr ca;
	ca.comm=comm;
	ca.ix=-1;
#ifdef CONFIG_IPV6
	socklen_t salen=sizeof(ca.ia);
	rv=adns_text2addr(trimmed, port, adns_qf_addrlit_ipv4_quadonly,
			  &ca.ia.sa, &salen);
	assert(rv!=ENOSPC);
	if (rv) {
	    char msg[250];
	    snprintf(msg,sizeof(msg),"invalid address literal: %s",
		     strerror(rv));
	    msg[sizeof(msg)-1]=0;
	    cb(cst,0,0,0,msg);
	} else {
	    cb(cst,&ca,1,1,0);
	}
#else
	ca.ia.sin.sin_family=AF_INET;
	ca.ia.sin.sin_port=htons(port);
	if (inet_aton(trimmed,&ca.ia.sin.sin_addr))
	    cb(cst,&ca,1,1,0);
	else
	    cb(cst,0,0,0,"invalid IP address");
#endif
	return True;
    }

    q=safe_malloc(sizeof *q,"resolve_request");
    q->cst=cst;
    q->comm=comm;
    q->port=port;
    q->answer=cb;

    rv=adns_submit(st->ast, name, adns_r_addr, 0, q, &q->query);
    if (rv) {
        Message(M_WARNING,
		"resolver: failed to submit lookup for %s: %s",name,
		adns_strerror(rv));
	free(q);
	return False;
    }

    return True;
}

static int resolver_beforepoll(void *sst, struct pollfd *fds, int *nfds_io,
			       int *timeout_io)
{
    struct adns *st=sst;
    return adns_beforepoll(st->ast, fds, nfds_io, timeout_io, tv_now);
}

static void resolver_afterpoll(void *sst, struct pollfd *fds, int nfds)
{
    struct adns *st=sst;
    adns_query aq;
    adns_answer *ans;
    void *qp;
    struct query *q;
    int rv;

    adns_afterpoll(st->ast, fds, nfds, tv_now);

    while (True) {
	aq=NULL;
	rv=adns_check(st->ast, &aq, &ans, &qp);
	if (rv==0) {
	    q=qp;
	    if (ans->status!=adns_s_ok) {
		q->answer(q->cst,NULL,0,0,adns_strerror(ans->status));
		free(q);
		free(ans);
	    } else {
		int rslot, wslot, total;
		int ca_len=MIN(ans->nrrs,MAX_PEER_ADDRS);
		struct comm_addr ca_buf[ca_len];
		for (rslot=0, wslot=0, total=0;
		     rslot<ans->nrrs;
		     rslot++) {
		    total++;
		    if (!(wslot<ca_len)) continue;
		    adns_rr_addr *ra=&ans->rrs.addr[rslot];
		    struct comm_addr *ca=&ca_buf[wslot];
		    ca->comm=q->comm;
		    ca->ix=-1;
		    switch (ra->addr.sa.sa_family) {
		    case AF_INET:
			assert(ra->len == sizeof(ca->ia.sin));
			break;
#ifdef CONFIG_IPV6
		    case AF_INET6:
			assert(ra->len == sizeof(ca->ia.sin6));
			break;
#endif /*CONFIG_IPV6*/
		    default:
			/* silently skip unexpected AFs from adns */
			continue;
		    }
		    memcpy(&ca->ia,&ra->addr,ra->len);
		    wslot++;
		}
		q->answer(q->cst,ca_buf,wslot,total,0);
		free(q);
		free(ans);
	    }
	} else if (rv==EAGAIN || rv==ESRCH) {
	    break;
	} else {
	    fatal("resolver_afterpoll: adns_check() returned %d",rv);
	}
    }

    return;
}

/* Initialise adns, using parameters supplied */
static list_t *adnsresolver_apply(closure_t *self, struct cloc loc,
				  dict_t *context, list_t *args)
{
    struct adns *st;
    dict_t *d;
    item_t *i;
    string_t conf;

    st=safe_malloc(sizeof(*st),"adnsresolver_apply");
    st->cl.description="adns";
    st->cl.type=CL_RESOLVER;
    st->cl.apply=NULL;
    st->cl.interface=&st->ops;
    st->loc=loc;
    st->ops.st=st;
    st->ops.request=resolve_request;

    i=list_elem(args,0);
    if (!i || i->type!=t_dict) {
	cfgfatal(st->loc,"adns","first argument must be a dictionary\n");
    }
    d=i->data.dict;
    conf=dict_read_string(d,"config",False,"adns",loc);

    if (conf) {
	if (adns_init_strcfg(&st->ast, 0, 0, conf)) {
	    fatal_perror("Failed to initialise ADNS");
	}
    } else {
	if (adns_init(&st->ast, 0, 0)) {
	    fatal_perror("Failed to initialise ADNS");
	}
    }

    register_for_poll(st, resolver_beforepoll, resolver_afterpoll,
		      ADNS_POLLFDS_RECOMMENDED+5,"resolver");

    return new_closure(&st->cl);
}

void resolver_module(dict_t *dict)
{
    add_closure(dict,"adns",adnsresolver_apply);
}
Commit	Line	Data
2fe58dfd SE	1	/* Name resolution using adns */
	2
	3	#include <errno.h>
	4	#include "secnet.h"
cc420616	5	#include "util.h"
d3fe100d SE	6	#ifndef HAVE_LIBADNS
	7	#error secnet requires ADNS version 1.0 or above
	8	#endif
2fe58dfd	9	#include <adns.h>
d1e8fd82 IJ	10	#include <arpa/inet.h>
d1e8fd82 IJ	11	#include <string.h>
2fe58dfd	12
d3fe100d	13
2fe58dfd SE	14	struct adns {
	15	closure_t cl;
	16	struct resolver_if ops;
	17	struct cloc loc;
	18	adns_state ast;
	19	};
	20
	21	struct query {
	22	void *cst;
cc420616 IJ	23	int port;
cc420616 IJ	24	struct comm_if *comm;
2fe58dfd SE	25	resolve_answer_fn *answer;
	26	adns_query query;
	27	};
	28
fe5e9cc4 SE	29	static resolve_request_fn resolve_request;
fe5e9cc4 SE	30	static bool_t resolve_request(void *sst, cstring_t name,
cc420616	31	int port, struct comm_if *comm,
2fe58dfd SE	32	resolve_answer_fn cb, void cst)
	33	{
	34	struct adns *st=sst;
	35	struct query *q;
	36	int rv;
3f2c70f6 IJ	37	const int maxlitlen=
	38	#ifdef CONFIG_IPV6
	39	ADNS_ADDR2TEXT_BUFLEN*2
	40	#else
	41	50
	42	#endif
	43	;
d1e8fd82 IJ	44	ssize_t l=strlen(name);
	45	if (name[0]=='[' && l<maxlitlen && l>2 && name[l-1]==']') {
	46	char trimmed[maxlitlen+1];
	47	memcpy(trimmed,name+1,l-2);
	48	trimmed[l-2]=0;
cc420616	49	struct comm_addr ca;
cc420616	50	ca.comm=comm;
08b62a6c	51	ca.ix=-1;
3f2c70f6 IJ	52	#ifdef CONFIG_IPV6
	53	socklen_t salen=sizeof(ca.ia);
	54	rv=adns_text2addr(trimmed, port, adns_qf_addrlit_ipv4_quadonly,
	55	&ca.ia.sa, &salen);
	56	assert(rv!=ENOSPC);
	57	if (rv) {
	58	char msg[250];
	59	snprintf(msg,sizeof(msg),"invalid address literal: %s",
	60	strerror(rv));
	61	msg[sizeof(msg)-1]=0;
	62	cb(cst,0,0,0,msg);
	63	} else {
	64	cb(cst,&ca,1,1,0);
	65	}
	66	#else
a32d56fb IJ	67	ca.ia.sin.sin_family=AF_INET;
	68	ca.ia.sin.sin_port=htons(port);
	69	if (inet_aton(trimmed,&ca.ia.sin.sin_addr))
ec2ae5fa	70	cb(cst,&ca,1,1,0);
d1e8fd82	71	else
ec2ae5fa	72	cb(cst,0,0,0,"invalid IP address");
3f2c70f6	73	#endif
d1e8fd82 IJ	74	return True;
d1e8fd82 IJ	75	}
2fe58dfd SE	76
	77	q=safe_malloc(sizeof *q,"resolve_request");
	78	q->cst=cst;
cc420616 IJ	79	q->comm=comm;
cc420616 IJ	80	q->port=port;
2fe58dfd SE	81	q->answer=cb;
2fe58dfd SE	82
cc420616	83	rv=adns_submit(st->ast, name, adns_r_addr, 0, q, &q->query);
75829536 IJ	84	if (rv) {
	85	Message(M_WARNING,
	86	"resolver: failed to submit lookup for %s: %s",name,
	87	adns_strerror(rv));
	88	free(q);
	89	return False;
	90	}
2fe58dfd	91
75829536	92	return True;
2fe58dfd SE	93	}
	94
	95	static int resolver_beforepoll(void sst, struct pollfd fds, int *nfds_io,
90a39563	96	int *timeout_io)
2fe58dfd SE	97	{
	98	struct adns *st=sst;
	99	return adns_beforepoll(st->ast, fds, nfds_io, timeout_io, tv_now);
	100	}
	101
90a39563	102	static void resolver_afterpoll(void sst, struct pollfd fds, int nfds)
2fe58dfd SE	103	{
	104	struct adns *st=sst;
	105	adns_query aq;
	106	adns_answer *ans;
	107	void *qp;
	108	struct query *q;
	109	int rv;
	110
	111	adns_afterpoll(st->ast, fds, nfds, tv_now);
	112
	113	while (True) {
	114	aq=NULL;
	115	rv=adns_check(st->ast, &aq, &ans, &qp);
	116	if (rv==0) {
	117	q=qp;
	118	if (ans->status!=adns_s_ok) {
ec2ae5fa	119	q->answer(q->cst,NULL,0,0,adns_strerror(ans->status));
2fe58dfd SE	120	free(q);
	121	free(ans);
	122	} else {
cc420616 IJ	123	int rslot, wslot, total;
	124	int ca_len=MIN(ans->nrrs,MAX_PEER_ADDRS);
	125	struct comm_addr ca_buf[ca_len];
cc420616 IJ	126	for (rslot=0, wslot=0, total=0;
	127	rslot<ans->nrrs;
	128	rslot++) {
	129	total++;
	130	if (!(wslot<ca_len)) continue;
	131	adns_rr_addr *ra=&ans->rrs.addr[rslot];
	132	struct comm_addr *ca=&ca_buf[wslot];
	133	ca->comm=q->comm;
08b62a6c	134	ca->ix=-1;
cc420616 IJ	135	switch (ra->addr.sa.sa_family) {
cc420616 IJ	136	case AF_INET:
a32d56fb	137	assert(ra->len == sizeof(ca->ia.sin));
cc420616	138	break;
0e646750 IJ	139	#ifdef CONFIG_IPV6
	140	case AF_INET6:
	141	assert(ra->len == sizeof(ca->ia.sin6));
	142	break;
	143	#endif /CONFIG_IPV6/
cc420616	144	default:
2093fb5c IJ	145	/* silently skip unexpected AFs from adns */
2093fb5c IJ	146	continue;
cc420616	147	}
2093fb5c IJ	148	memcpy(&ca->ia,&ra->addr,ra->len);
2093fb5c IJ	149	wslot++;
cc420616	150	}
ec2ae5fa	151	q->answer(q->cst,ca_buf,wslot,total,0);
2fe58dfd SE	152	free(q);
	153	free(ans);
	154	}
	155	} else if (rv==EAGAIN \|\| rv==ESRCH) {
	156	break;
	157	} else {
4f5e39ec	158	fatal("resolver_afterpoll: adns_check() returned %d",rv);
2fe58dfd SE	159	}
	160	}
	161
	162	return;
	163	}
	164
	165	/* Initialise adns, using parameters supplied */
	166	static list_t adnsresolver_apply(closure_t self, struct cloc loc,
	167	dict_t context, list_t args)
	168	{
	169	struct adns *st;
	170	dict_t *d;
	171	item_t *i;
	172	string_t conf;
	173
	174	st=safe_malloc(sizeof(*st),"adnsresolver_apply");
	175	st->cl.description="adns";
	176	st->cl.type=CL_RESOLVER;
	177	st->cl.apply=NULL;
	178	st->cl.interface=&st->ops;
	179	st->loc=loc;
	180	st->ops.st=st;
	181	st->ops.request=resolve_request;
	182
	183	i=list_elem(args,0);
	184	if (!i \|\| i->type!=t_dict) {
	185	cfgfatal(st->loc,"adns","first argument must be a dictionary\n");
	186	}
	187	d=i->data.dict;
	188	conf=dict_read_string(d,"config",False,"adns",loc);
	189
	190	if (conf) {
	191	if (adns_init_strcfg(&st->ast, 0, 0, conf)) {
	192	fatal_perror("Failed to initialise ADNS");
	193	}
	194	} else {
	195	if (adns_init(&st->ast, 0, 0)) {
	196	fatal_perror("Failed to initialise ADNS");
	197	}
	198	}
	199
	200	register_for_poll(st, resolver_beforepoll, resolver_afterpoll,
	201	ADNS_POLLFDS_RECOMMENDED+5,"resolver");
	202
	203	return new_closure(&st->cl);
	204	}
	205
2fe58dfd SE	206	void resolver_module(dict_t *dict)
	207	{
	208	add_closure(dict,"adns",adnsresolver_apply);
	209	}