trunk/src/res.c

/*
 *  ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
 *
 *  Copyright (c) 1997-2014 ircd-hybrid development team
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307
 *  USA
 */

/*! \file res.c
 * \brief ircd resolver functions
 * \version $Id$
 */

/*
 * A rewrite of Darren Reed's original res.c As there is nothing
 * left of Darren's original code, this is now licensed by the hybrid group.
 * (Well, some of the function names are the same, and bits of the structs..)
 * You can use it where it is useful, free even. Buy us a beer and stuff.
 *
 * The authors takes no responsibility for any damage or loss
 * of property which results from the use of this software.
 *
 * July 1999 - Rewrote a bunch of stuff here. Change hostent builder code,
 *     added callbacks and reference counting of returned hostents.
 *     --Bleep (Thomas Helvey <tomh@inxpress.net>)
 *
 * This was all needlessly complicated for irc. Simplified. No more hostent
 * All we really care about is the IP -> hostname mappings. That's all.
 *
 * Apr 28, 2003 --cryogen and Dianora
 */

#include "stdinc.h"
#include "list.h"
#include "client.h"
#include "event.h"
#include "irc_string.h"
#include "ircd.h"
#include "numeric.h"
#include "rng_mt.h"
#include "fdlist.h"
#include "s_bsd.h"
#include "log.h"
#include "misc.h"
#include "send.h"
#include "memory.h"
#include "mempool.h"
#include "res.h"
#include "reslib.h"

#if (CHAR_BIT != 8)
#error this code needs to be able to address individual octets
#endif

static PF res_readreply;

#define MAXPACKET      1024  /**< rfc says 512 but we expand names so ... */
#define AR_TTL         600   /**< TTL in seconds for dns cache entries */

/*
 * RFC 1104/1105 wasn't very helpful about what these fields
 * should be named, so for now, we'll just name them this way.
 * We probably should look at what named calls them or something.
 */
#define TYPE_SIZE         (size_t)2
#define CLASS_SIZE        (size_t)2
#define TTL_SIZE          (size_t)4
#define RDLENGTH_SIZE     (size_t)2
#define ANSWER_FIXED_SIZE (TYPE_SIZE + CLASS_SIZE + TTL_SIZE + RDLENGTH_SIZE)

struct reslist
{
  dlink_node node;                           /**< Doubly linked list node. */
  int id;                                    /**< Request ID (from request header). */
  int sent;                                  /**< Number of requests sent */
  char type;                                 /**< Current request type. */
  char retries;                              /**< Retry counter */
  unsigned int sends;                        /**< Number of sends (>1 means resent). */
  time_t sentat;                             /**< Timestamp we last sent this request. */
  time_t timeout;                            /**< When this request times out. */
  struct irc_ssaddr addr;                    /**< Address for this request. */
  char name[RFC1035_MAX_DOMAIN_LENGTH + 1];  /**< Hostname for this request. */
  size_t namelength;                         /**< Actual hostname length. */
  dns_callback_fnc callback;                 /**< Callback function on completion. */
  void *callback_ctx;                        /**< Context pointer for callback. */
};

static fde_t ResolverFileDescriptor;
static dlink_list request_list;
static mp_pool_t *dns_pool;


/*
 * rem_request - remove a request from the list.
 * This must also free any memory that has been allocated for
 * temporary storage of DNS results.
 */
static void
rem_request(struct reslist *request)
{
  dlinkDelete(&request->node, &request_list);
  mp_pool_release(request);
}

/*
 * make_request - Create a DNS request record for the server.
 */
static struct reslist *
make_request(dns_callback_fnc callback, void *ctx)
{
  struct reslist *request = mp_pool_get(dns_pool);

  request->sentat       = CurrentTime;
  request->retries      = 2;
  request->timeout      = 4;  /* Start at 4 and exponential inc. */
  request->callback     = callback;
  request->callback_ctx = ctx;

  dlinkAdd(request, &request->node, &request_list);
  return request;
}

/*
 * int
 * res_ourserver(inp)
 *      looks up "inp" in irc_nsaddr_list[]
 * returns:
 *      0  : not found
 *      >0 : found
 * author:
 *      paul vixie, 29may94
 *      revised for ircd, cryogen(stu) may03
 */
static int
res_ourserver(const struct irc_ssaddr *inp)
{
  const struct sockaddr_in6 *v6;
  const struct sockaddr_in6 *v6in = (const struct sockaddr_in6 *)inp;
  const struct sockaddr_in *v4;
  const struct sockaddr_in *v4in = (const struct sockaddr_in *)inp;

  for (unsigned int i = 0; i < irc_nscount; ++i)
  {
    const struct irc_ssaddr *srv = &irc_nsaddr_list[i];
    v6 = (const struct sockaddr_in6 *)srv;
    v4 = (const struct sockaddr_in *)srv;

    /*
     * Could probably just memcmp(srv, inp, srv.ss_len) here
     * but we'll air on the side of caution - stu
     */
    switch (srv->ss.ss_family)
    {
      case AF_INET6:
        if (srv->ss.ss_family == inp->ss.ss_family)
          if (v6->sin6_port == v6in->sin6_port)
            if (!memcmp(&v6->sin6_addr.s6_addr, &v6in->sin6_addr.s6_addr,
                        sizeof(struct in6_addr)))
              return 1;
        break;
      case AF_INET:
        if (srv->ss.ss_family == inp->ss.ss_family)
          if (v4->sin_port == v4in->sin_port)
            if (v4->sin_addr.s_addr == v4in->sin_addr.s_addr)
              return 1;
        break;
      default:
        break;
    }
  }

  return 0;
}

/*
 * start_resolver - do everything we need to read the resolv.conf file
 * and initialize the resolver file descriptor if needed
 */
static void
start_resolver(void)
{
  irc_res_init();

  if (!ResolverFileDescriptor.flags.open)
  {
    if (comm_open(&ResolverFileDescriptor, irc_nsaddr_list[0].ss.ss_family,
                  SOCK_DGRAM, 0, "UDP resolver socket") == -1)
      return;

    /* At the moment, the resolver FD data is global .. */
    comm_setselect(&ResolverFileDescriptor, COMM_SELECT_READ, res_readreply, NULL, 0);
  }
}

/*
 * restart_resolver - reread resolv.conf, reopen socket
 */
void
restart_resolver(void)
{
  fd_close(&ResolverFileDescriptor);
  start_resolver();
}

/*
 * delete_resolver_queries - cleanup outstanding queries
 * for which there no longer exist clients or conf lines.
 */
void
delete_resolver_queries(const void *vptr)
{
  dlink_node *ptr = NULL, *ptr_next = NULL;

  DLINK_FOREACH_SAFE(ptr, ptr_next, request_list.head)
  {
    struct reslist *request = ptr->data;

    if (request->callback_ctx == vptr)
      rem_request(request);
  }
}

/*
 * send_res_msg - sends msg to all nameservers found in the "_res" structure.
 * This should reflect /etc/resolv.conf. We will get responses
 * which arent needed but is easier than checking to see if nameserver
 * isn't present. Returns number of messages successfully sent to
 * nameservers or -1 if no successful sends.
 */
static int
send_res_msg(const char *msg, int len, unsigned int rcount)
{
  int sent = 0;
  unsigned int max_queries = IRCD_MIN(irc_nscount, rcount);

  /* RES_PRIMARY option is not implemented
   * if (res.options & RES_PRIMARY || 0 == max_queries)
   */
  if (max_queries == 0)
    max_queries = 1;

  for (unsigned int i = 0; i < max_queries; ++i)
  {
    if (sendto(ResolverFileDescriptor.fd, msg, len, 0,
        (struct sockaddr*)&(irc_nsaddr_list[i]),
        irc_nsaddr_list[i].ss_len) == len)
      ++sent;
  }

  return sent;
}

/*
 * find_id - find a dns request id (id is determined by dn_mkquery)
 */
static struct reslist *
find_id(int id)
{
  dlink_node *ptr = NULL;

  DLINK_FOREACH(ptr, request_list.head)
  {
    struct reslist *request = ptr->data;

    if (request->id == id)
      return request;
  }

  return NULL;
}

/*
 * query_name - generate a query based on class, type and name.
 */
static void
query_name(const char *name, int query_class, int type,
           struct reslist *request)
{
  char buf[MAXPACKET];
  int request_len = 0;

  memset(buf, 0, sizeof(buf));

  if ((request_len = irc_res_mkquery(name, query_class, type,
      (unsigned char *)buf, sizeof(buf))) > 0)
  {
    HEADER *header = (HEADER *)buf;

    /*
     * Generate an unique id.
     * NOTE: we don't have to worry about converting this to and from
     * network byte order, the nameserver does not interpret this value
     * and returns it unchanged.
     */
    do
      header->id = (header->id + genrand_int32()) & 0xFFFF;
    while (find_id(header->id));

    request->id = header->id;
    ++request->sends;

    request->sent += send_res_msg(buf, request_len, request->sends);
  }
}

/*
 * do_query_name - nameserver lookup name
 */
static void
do_query_name(dns_callback_fnc callback, void *ctx, const char *name,
              struct reslist *request, int type)
{
  char host_name[RFC1035_MAX_DOMAIN_LENGTH + 1];

  strlcpy(host_name, name, sizeof(host_name));

  if (request == NULL)
  {
    request             = make_request(callback, ctx);
    request->type       = type;
    request->namelength = strlcpy(request->name, host_name, sizeof(request->name));
  }

  request->type = type;
  query_name(host_name, C_IN, type, request);
}

/*
 * do_query_number - Use this to do reverse IP# lookups.
 */
static void
do_query_number(dns_callback_fnc callback, void *ctx,
                const struct irc_ssaddr *addr,
                struct reslist *request)
{
  char ipbuf[128] = "";

  if (addr->ss.ss_family == AF_INET)
  {
    const struct sockaddr_in *v4 = (const struct sockaddr_in *)addr;
    const unsigned char *cp = (const unsigned char *)&v4->sin_addr.s_addr;

    snprintf(ipbuf, sizeof(ipbuf), "%u.%u.%u.%u.in-addr.arpa.",
             (unsigned int)(cp[3]), (unsigned int)(cp[2]),
             (unsigned int)(cp[1]), (unsigned int)(cp[0]));
  }
  else if (addr->ss.ss_family == AF_INET6)
  {
    const struct sockaddr_in6 *v6 = (const struct sockaddr_in6 *)addr;
    const unsigned char *cp = (const unsigned char *)&v6->sin6_addr.s6_addr;

    snprintf(ipbuf, sizeof(ipbuf),
             "%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x."
             "%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.ip6.arpa.",
             (unsigned int)(cp[15] & 0xf), (unsigned int)(cp[15] >> 4),
             (unsigned int)(cp[14] & 0xf), (unsigned int)(cp[14] >> 4),
             (unsigned int)(cp[13] & 0xf), (unsigned int)(cp[13] >> 4),
             (unsigned int)(cp[12] & 0xf), (unsigned int)(cp[12] >> 4),
             (unsigned int)(cp[11] & 0xf), (unsigned int)(cp[11] >> 4),
             (unsigned int)(cp[10] & 0xf), (unsigned int)(cp[10] >> 4),
             (unsigned int)(cp[9] & 0xf), (unsigned int)(cp[9] >> 4),
             (unsigned int)(cp[8] & 0xf), (unsigned int)(cp[8] >> 4),
             (unsigned int)(cp[7] & 0xf), (unsigned int)(cp[7] >> 4),
             (unsigned int)(cp[6] & 0xf), (unsigned int)(cp[6] >> 4),
             (unsigned int)(cp[5] & 0xf), (unsigned int)(cp[5] >> 4),
             (unsigned int)(cp[4] & 0xf), (unsigned int)(cp[4] >> 4),
             (unsigned int)(cp[3] & 0xf), (unsigned int)(cp[3] >> 4),
             (unsigned int)(cp[2] & 0xf), (unsigned int)(cp[2] >> 4),
             (unsigned int)(cp[1] & 0xf), (unsigned int)(cp[1] >> 4),
             (unsigned int)(cp[0] & 0xf), (unsigned int)(cp[0] >> 4));
  }

  if (request == NULL)
  {
    request       = make_request(callback, ctx);
    request->type = T_PTR;
    memcpy(&request->addr, addr, sizeof(struct irc_ssaddr));
  }

  query_name(ipbuf, C_IN, T_PTR, request);
}

/*
 * gethost_byname_type - get host address from name
 *
 */
void
gethost_byname_type(dns_callback_fnc callback, void *ctx, const char *name, int type)
{
  assert(name);
  do_query_name(callback, ctx, name, NULL, type);
}

/*
 * gethost_byname - wrapper for _type - send T_AAAA first if IPV6 supported
 */
void
gethost_byname(dns_callback_fnc callback, void *ctx, const char *name)
{
  gethost_byname_type(callback, ctx, name, T_AAAA);
}

/*
 * gethost_byaddr - get host name from address
 */
void
gethost_byaddr(dns_callback_fnc callback, void *ctx, const struct irc_ssaddr *addr)
{
  do_query_number(callback, ctx, addr, NULL);
}

static void
resend_query(struct reslist *request)
{
  switch (request->type)
  {
    case T_PTR:
      do_query_number(NULL, NULL, &request->addr, request);
      break;
    case T_A:
    case T_AAAA:
      do_query_name(NULL, NULL, request->name, request, request->type);
      break;
    default:
      break;
  }
}

/*
 * proc_answer - process name server reply
 */
static int
proc_answer(struct reslist *request, HEADER *header, unsigned char *buf, unsigned char *eob)
{
  char hostbuf[RFC1035_MAX_DOMAIN_LENGTH + 100]; /* working buffer */
  unsigned char *current = buf + sizeof(HEADER); /* current position in buf */
  unsigned int type = 0;       /* answer type */
  unsigned int rd_length = 0;
  int n;                       /* temp count */
  struct sockaddr_in *v4;      /* conversion */
  struct sockaddr_in6 *v6;

  for (; header->qdcount > 0; --header->qdcount)
  {
    if ((n = irc_dn_skipname(current, eob)) < 0)
      break;

    current += (size_t)n + QFIXEDSZ;
  }

  /*
   * Process each answer sent to us blech.
   */
  while (header->ancount > 0 && current < eob)
  {
    header->ancount--;

    n = irc_dn_expand(buf, eob, current, hostbuf, sizeof(hostbuf));

    if (n < 0  /* Broken message */ || n == 0  /* No more answers left */)
      return 0;

    hostbuf[RFC1035_MAX_DOMAIN_LENGTH] = '\0';

    /*
     * With Address arithmetic you have to be very anal
     * this code was not working on alpha due to that
     * (spotted by rodder/jailbird/dianora)
     */
    current += (size_t)n;

    if (!((current + ANSWER_FIXED_SIZE) < eob))
      break;

    type = irc_ns_get16(current);
    current += TYPE_SIZE;
    current += CLASS_SIZE;
    current += TTL_SIZE;
    rd_length = irc_ns_get16(current);
    current += RDLENGTH_SIZE;

    /*
     * Wait to set request->type until we verify this structure
     */
    switch (type)
    {
      case T_A:
        if (request->type != T_A)
          return 0;

        /*
         * Check for invalid rd_length or too many addresses
         */
        if (rd_length != sizeof(struct in_addr))
          return 0;

        v4 = (struct sockaddr_in *)&request->addr;
        request->addr.ss_len = sizeof(struct sockaddr_in);
        v4->sin_family = AF_INET;
        memcpy(&v4->sin_addr, current, sizeof(struct in_addr));
        return 1;
        break;
      case T_AAAA:
        if (request->type != T_AAAA)
          return 0;

        if (rd_length != sizeof(struct in6_addr))
          return 0;

        request->addr.ss_len = sizeof(struct sockaddr_in6);
        v6 = (struct sockaddr_in6 *)&request->addr;
        v6->sin6_family = AF_INET6;
        memcpy(&v6->sin6_addr, current, sizeof(struct in6_addr));
        return 1;
        break;
      case T_PTR:
        if (request->type != T_PTR)
          return 0;

        n = irc_dn_expand(buf, eob, current, hostbuf, sizeof(hostbuf));
        if (n < 0  /* Broken message */ || n == 0  /* No more answers left */)
          return 0;

        request->namelength = strlcpy(request->name, hostbuf, sizeof(request->name));
        return 1;
        break;
      case T_CNAME:
        current += rd_length;
        break;

      default:
        /* XXX I'd rather just throw away the entire bogus thing
         * but its possible its just a broken nameserver with still
         * valid answers. But lets do some rudimentary logging for now...
         */
        ilog(LOG_TYPE_IRCD, "irc_res.c bogus type %d", type);
        break;
    }
  }

  return 1;
}

/*
 * res_readreply - read a dns reply from the nameserver and process it.
 */
static void
res_readreply(fde_t *fd, void *data)
{
  unsigned char buf[sizeof(HEADER) + MAXPACKET];
  HEADER *header;
  struct reslist *request = NULL;
  ssize_t rc = 0;
  socklen_t len = sizeof(struct irc_ssaddr);
  struct irc_ssaddr lsin;

  while ((rc = recvfrom(fd->fd, buf, sizeof(buf), 0, (struct sockaddr *)&lsin, &len)) != -1)
  {
    if (rc <= (ssize_t)sizeof(HEADER))
      continue;

    /*
     * Check against possibly fake replies
     */
    if (!res_ourserver(&lsin))
      continue;

    /*
     * Convert DNS reply reader from Network byte order to CPU byte order.
     */
    header = (HEADER *)buf;
    header->ancount = ntohs(header->ancount);
    header->qdcount = ntohs(header->qdcount);
    header->nscount = ntohs(header->nscount);
    header->arcount = ntohs(header->arcount);

    /*
     * Response for an id which we have already received an answer for
     * just ignore this response.
     */
    if ((request = find_id(header->id)) == NULL)
      continue;

    if (header->rcode != NO_ERRORS || header->ancount == 0)
    {
      /*
       * If a bad error was returned, stop here and don't
       * send any more (no retries granted).
       */
      (*request->callback)(request->callback_ctx, NULL, NULL, 0);
      rem_request(request);
      continue;
    }

    /*
     * If this fails there was an error decoding the received packet.
     * We only give it one shot. If it fails, just leave the client
     * unresolved.
     */
    if (!proc_answer(request, header, buf, buf + rc))
    {
      (*request->callback)(request->callback_ctx, NULL, NULL, 0);
      rem_request(request);
      continue;
    }

    if (request->type == T_PTR)
    {
      if (request->namelength == 0)
      {
        /*
         * Got a PTR response with no name, something bogus is happening
         * don't bother trying again, the client address doesn't resolve
         */
        (*request->callback)(request->callback_ctx, NULL, NULL, 0);
        rem_request(request);
        continue;
      }

      /*
       * Lookup the 'authoritative' name that we were given for the ip#.
       */
      if (request->addr.ss.ss_family == AF_INET6)
        gethost_byname_type(request->callback, request->callback_ctx, request->name, T_AAAA);
      else
        gethost_byname_type(request->callback, request->callback_ctx, request->name, T_A);
      rem_request(request);
    }
    else
    {
      /*
       * Got a name and address response, client resolved
       */
      (*request->callback)(request->callback_ctx, &request->addr, request->name, request->namelength);
      rem_request(request);
    }

    continue;
  }

  comm_setselect(fd, COMM_SELECT_READ, res_readreply, NULL, 0);
}

void
report_dns_servers(struct Client *source_p)
{
  char ipaddr[HOSTIPLEN + 1] = "";

  for (unsigned int i = 0; i < irc_nscount; ++i)
  {
    getnameinfo((struct sockaddr *)&(irc_nsaddr_list[i]),
                irc_nsaddr_list[i].ss_len, ipaddr,
                sizeof(ipaddr), NULL, 0, NI_NUMERICHOST);
    sendto_one_numeric(source_p, &me, RPL_STATSALINE, ipaddr);
  }
}

/*
 * timeout_query_list - Remove queries from the list which have been
 * there too long without being resolved.
 */
static time_t
timeout_query_list(void)
{
  dlink_node *ptr = NULL, *ptr_next = NULL;
  struct reslist *request = NULL;
  time_t next_time = 0;
  time_t timeout   = 0;

  DLINK_FOREACH_SAFE(ptr, ptr_next, request_list.head)
  {
    request = ptr->data;
    timeout = request->sentat + request->timeout;

    if (CurrentTime >= timeout)
    {
      if (--request->retries <= 0)
      {
        (*request->callback)(request->callback_ctx, NULL, NULL, 0);
        rem_request(request);
        continue;
      }
      else
      {
        request->sentat = CurrentTime;
        request->timeout += request->timeout;
        resend_query(request);
      }
    }

    if (next_time == 0 || timeout < next_time)
      next_time = timeout;
  }

  return (next_time > CurrentTime) ? next_time : (CurrentTime + AR_TTL);
}

/*
 * timeout_resolver - check request list
 */
static void
timeout_resolver(void *unused)
{
  timeout_query_list();
}

/*
 * init_resolver - initialize resolver and resolver library
 */
void
init_resolver(void)
{
  static struct event event_timeout_resolver =
  {
    .name = "timeout_resolver",
    .handler = timeout_resolver,
    .when = 1
  };

  dns_pool = mp_pool_new(sizeof(struct reslist), MP_CHUNK_SIZE_DNS);

  start_resolver();
  event_add(&event_timeout_resolver, NULL);
}
Revision:	4457
Committed:	Mon Aug 11 16:28:23 2014 UTC (11 years ago) by michael
Content type:	text/x-csrc
File size:	20824 byte(s)
Log Message:	- res.c:proc_answer(): delete useless castings
#	Content
1	/*
2	* ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
3	*
4	* Copyright (c) 1997-2014 ircd-hybrid development team
5	*
6	* This program is free software; you can redistribute it and/or modify
7	* it under the terms of the GNU General Public License as published by
8	* the Free Software Foundation; either version 2 of the License, or
9	* (at your option) any later version.
10	*
11	* This program is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14	* GNU General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License
17	* along with this program; if not, write to the Free Software
18	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
19	* USA
20	*/
21
22	/*! \file res.c
23	* \brief ircd resolver functions
24	* \version $Id$
25	*/
26
27	/*
28	* A rewrite of Darren Reed's original res.c As there is nothing
29	* left of Darren's original code, this is now licensed by the hybrid group.
30	* (Well, some of the function names are the same, and bits of the structs..)
31	* You can use it where it is useful, free even. Buy us a beer and stuff.
32	*
33	* The authors takes no responsibility for any damage or loss
34	* of property which results from the use of this software.
35	*
36	* July 1999 - Rewrote a bunch of stuff here. Change hostent builder code,
37	* added callbacks and reference counting of returned hostents.
38	* --Bleep (Thomas Helvey <tomh@inxpress.net>)
39	*
40	* This was all needlessly complicated for irc. Simplified. No more hostent
41	* All we really care about is the IP -> hostname mappings. That's all.
42	*
43	* Apr 28, 2003 --cryogen and Dianora
44	*/
45
46	#include "stdinc.h"
47	#include "list.h"
48	#include "client.h"
49	#include "event.h"
50	#include "irc_string.h"
51	#include "ircd.h"
52	#include "numeric.h"
53	#include "rng_mt.h"
54	#include "fdlist.h"
55	#include "s_bsd.h"
56	#include "log.h"
57	#include "misc.h"
58	#include "send.h"
59	#include "memory.h"
60	#include "mempool.h"
61	#include "res.h"
62	#include "reslib.h"
63
64	#if (CHAR_BIT != 8)
65	#error this code needs to be able to address individual octets
66	#endif
67
68	static PF res_readreply;
69
70	#define MAXPACKET 1024 /*< rfc says 512 but we expand names so ... /
71	#define AR_TTL 600 /*< TTL in seconds for dns cache entries /
72
73	/*
74	* RFC 1104/1105 wasn't very helpful about what these fields
75	* should be named, so for now, we'll just name them this way.
76	* We probably should look at what named calls them or something.
77	*/
78	#define TYPE_SIZE (size_t)2
79	#define CLASS_SIZE (size_t)2
80	#define TTL_SIZE (size_t)4
81	#define RDLENGTH_SIZE (size_t)2
82	#define ANSWER_FIXED_SIZE (TYPE_SIZE + CLASS_SIZE + TTL_SIZE + RDLENGTH_SIZE)
83
84	struct reslist
85	{
86	dlink_node node; /*< Doubly linked list node. /
87	int id; /*< Request ID (from request header). /
88	int sent; /*< Number of requests sent /
89	char type; /*< Current request type. /
90	char retries; /*< Retry counter /
91	unsigned int sends; /*< Number of sends (>1 means resent). /
92	time_t sentat; /*< Timestamp we last sent this request. /
93	time_t timeout; /*< When this request times out. /
94	struct irc_ssaddr addr; /*< Address for this request. /
95	char name[RFC1035_MAX_DOMAIN_LENGTH + 1]; /*< Hostname for this request. /
96	size_t namelength; /*< Actual hostname length. /
97	dns_callback_fnc callback; /*< Callback function on completion. /
98	void callback_ctx; /< Context pointer for callback. /
99	};
100
101	static fde_t ResolverFileDescriptor;
102	static dlink_list request_list;
103	static mp_pool_t *dns_pool;
104
105
106	/*
107	* rem_request - remove a request from the list.
108	* This must also free any memory that has been allocated for
109	* temporary storage of DNS results.
110	*/
111	static void
112	rem_request(struct reslist *request)
113	{
114	dlinkDelete(&request->node, &request_list);
115	mp_pool_release(request);
116	}
117
118	/*
119	* make_request - Create a DNS request record for the server.
120	*/
121	static struct reslist *
122	make_request(dns_callback_fnc callback, void *ctx)
123	{
124	struct reslist *request = mp_pool_get(dns_pool);
125
126	request->sentat = CurrentTime;
127	request->retries = 2;
128	request->timeout = 4; /* Start at 4 and exponential inc. */
129	request->callback = callback;
130	request->callback_ctx = ctx;
131
132	dlinkAdd(request, &request->node, &request_list);
133	return request;
134	}
135
136	/*
137	* int
138	* res_ourserver(inp)
139	* looks up "inp" in irc_nsaddr_list[]
140	* returns:
141	* 0 : not found
142	* >0 : found
143	* author:
144	* paul vixie, 29may94
145	* revised for ircd, cryogen(stu) may03
146	*/
147	static int
148	res_ourserver(const struct irc_ssaddr *inp)
149	{
150	const struct sockaddr_in6 *v6;
151	const struct sockaddr_in6 v6in = (const struct sockaddr_in6 )inp;
152	const struct sockaddr_in *v4;
153	const struct sockaddr_in v4in = (const struct sockaddr_in )inp;
154
155	for (unsigned int i = 0; i < irc_nscount; ++i)
156	{
157	const struct irc_ssaddr *srv = &irc_nsaddr_list[i];
158	v6 = (const struct sockaddr_in6 *)srv;
159	v4 = (const struct sockaddr_in *)srv;
160
161	/*
162	* Could probably just memcmp(srv, inp, srv.ss_len) here
163	* but we'll air on the side of caution - stu
164	*/
165	switch (srv->ss.ss_family)
166	{
167	case AF_INET6:
168	if (srv->ss.ss_family == inp->ss.ss_family)
169	if (v6->sin6_port == v6in->sin6_port)
170	if (!memcmp(&v6->sin6_addr.s6_addr, &v6in->sin6_addr.s6_addr,
171	sizeof(struct in6_addr)))
172	return 1;
173	break;
174	case AF_INET:
175	if (srv->ss.ss_family == inp->ss.ss_family)
176	if (v4->sin_port == v4in->sin_port)
177	if (v4->sin_addr.s_addr == v4in->sin_addr.s_addr)
178	return 1;
179	break;
180	default:
181	break;
182	}
183	}
184
185	return 0;
186	}
187
188	/*
189	* start_resolver - do everything we need to read the resolv.conf file
190	* and initialize the resolver file descriptor if needed
191	*/
192	static void
193	start_resolver(void)
194	{
195	irc_res_init();
196
197	if (!ResolverFileDescriptor.flags.open)
198	{
199	if (comm_open(&ResolverFileDescriptor, irc_nsaddr_list[0].ss.ss_family,
200	SOCK_DGRAM, 0, "UDP resolver socket") == -1)
201	return;
202
203	/* At the moment, the resolver FD data is global .. */
204	comm_setselect(&ResolverFileDescriptor, COMM_SELECT_READ, res_readreply, NULL, 0);
205	}
206	}
207
208	/*
209	* restart_resolver - reread resolv.conf, reopen socket
210	*/
211	void
212	restart_resolver(void)
213	{
214	fd_close(&ResolverFileDescriptor);
215	start_resolver();
216	}
217
218	/*
219	* delete_resolver_queries - cleanup outstanding queries
220	* for which there no longer exist clients or conf lines.
221	*/
222	void
223	delete_resolver_queries(const void *vptr)
224	{
225	dlink_node ptr = NULL, ptr_next = NULL;
226
227	DLINK_FOREACH_SAFE(ptr, ptr_next, request_list.head)
228	{
229	struct reslist *request = ptr->data;
230
231	if (request->callback_ctx == vptr)
232	rem_request(request);
233	}
234	}
235
236	/*
237	* send_res_msg - sends msg to all nameservers found in the "_res" structure.
238	* This should reflect /etc/resolv.conf. We will get responses
239	* which arent needed but is easier than checking to see if nameserver
240	* isn't present. Returns number of messages successfully sent to
241	* nameservers or -1 if no successful sends.
242	*/
243	static int
244	send_res_msg(const char *msg, int len, unsigned int rcount)
245	{
246	int sent = 0;
247	unsigned int max_queries = IRCD_MIN(irc_nscount, rcount);
248
249	/* RES_PRIMARY option is not implemented
250	* if (res.options & RES_PRIMARY \|\| 0 == max_queries)
251	*/
252	if (max_queries == 0)
253	max_queries = 1;
254
255	for (unsigned int i = 0; i < max_queries; ++i)
256	{
257	if (sendto(ResolverFileDescriptor.fd, msg, len, 0,
258	(struct sockaddr*)&(irc_nsaddr_list[i]),
259	irc_nsaddr_list[i].ss_len) == len)
260	++sent;
261	}
262
263	return sent;
264	}
265
266	/*
267	* find_id - find a dns request id (id is determined by dn_mkquery)
268	*/
269	static struct reslist *
270	find_id(int id)
271	{
272	dlink_node *ptr = NULL;
273
274	DLINK_FOREACH(ptr, request_list.head)
275	{
276	struct reslist *request = ptr->data;
277
278	if (request->id == id)
279	return request;
280	}
281
282	return NULL;
283	}
284
285	/*
286	* query_name - generate a query based on class, type and name.
287	*/
288	static void
289	query_name(const char *name, int query_class, int type,
290	struct reslist *request)
291	{
292	char buf[MAXPACKET];
293	int request_len = 0;
294
295	memset(buf, 0, sizeof(buf));
296
297	if ((request_len = irc_res_mkquery(name, query_class, type,
298	(unsigned char *)buf, sizeof(buf))) > 0)
299	{
300	HEADER header = (HEADER )buf;
301
302	/*
303	* Generate an unique id.
304	* NOTE: we don't have to worry about converting this to and from
305	* network byte order, the nameserver does not interpret this value
306	* and returns it unchanged.
307	*/
308	do
309	header->id = (header->id + genrand_int32()) & 0xFFFF;
310	while (find_id(header->id));
311
312	request->id = header->id;
313	++request->sends;
314
315	request->sent += send_res_msg(buf, request_len, request->sends);
316	}
317	}
318
319	/*
320	* do_query_name - nameserver lookup name
321	*/
322	static void
323	do_query_name(dns_callback_fnc callback, void ctx, const char name,
324	struct reslist *request, int type)
325	{
326	char host_name[RFC1035_MAX_DOMAIN_LENGTH + 1];
327
328	strlcpy(host_name, name, sizeof(host_name));
329
330	if (request == NULL)
331	{
332	request = make_request(callback, ctx);
333	request->type = type;
334	request->namelength = strlcpy(request->name, host_name, sizeof(request->name));
335	}
336
337	request->type = type;
338	query_name(host_name, C_IN, type, request);
339	}
340
341	/*
342	* do_query_number - Use this to do reverse IP# lookups.
343	*/
344	static void
345	do_query_number(dns_callback_fnc callback, void *ctx,
346	const struct irc_ssaddr *addr,
347	struct reslist *request)
348	{
349	char ipbuf[128] = "";
350
351	if (addr->ss.ss_family == AF_INET)
352	{
353	const struct sockaddr_in v4 = (const struct sockaddr_in )addr;
354	const unsigned char cp = (const unsigned char )&v4->sin_addr.s_addr;
355
356	snprintf(ipbuf, sizeof(ipbuf), "%u.%u.%u.%u.in-addr.arpa.",
357	(unsigned int)(cp[3]), (unsigned int)(cp[2]),
358	(unsigned int)(cp[1]), (unsigned int)(cp[0]));
359	}
360	else if (addr->ss.ss_family == AF_INET6)
361	{
362	const struct sockaddr_in6 v6 = (const struct sockaddr_in6 )addr;
363	const unsigned char cp = (const unsigned char )&v6->sin6_addr.s6_addr;
364
365	snprintf(ipbuf, sizeof(ipbuf),
366	"%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x."
367	"%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.ip6.arpa.",
368	(unsigned int)(cp[15] & 0xf), (unsigned int)(cp[15] >> 4),
369	(unsigned int)(cp[14] & 0xf), (unsigned int)(cp[14] >> 4),
370	(unsigned int)(cp[13] & 0xf), (unsigned int)(cp[13] >> 4),
371	(unsigned int)(cp[12] & 0xf), (unsigned int)(cp[12] >> 4),
372	(unsigned int)(cp[11] & 0xf), (unsigned int)(cp[11] >> 4),
373	(unsigned int)(cp[10] & 0xf), (unsigned int)(cp[10] >> 4),
374	(unsigned int)(cp[9] & 0xf), (unsigned int)(cp[9] >> 4),
375	(unsigned int)(cp[8] & 0xf), (unsigned int)(cp[8] >> 4),
376	(unsigned int)(cp[7] & 0xf), (unsigned int)(cp[7] >> 4),
377	(unsigned int)(cp[6] & 0xf), (unsigned int)(cp[6] >> 4),
378	(unsigned int)(cp[5] & 0xf), (unsigned int)(cp[5] >> 4),
379	(unsigned int)(cp[4] & 0xf), (unsigned int)(cp[4] >> 4),
380	(unsigned int)(cp[3] & 0xf), (unsigned int)(cp[3] >> 4),
381	(unsigned int)(cp[2] & 0xf), (unsigned int)(cp[2] >> 4),
382	(unsigned int)(cp[1] & 0xf), (unsigned int)(cp[1] >> 4),
383	(unsigned int)(cp[0] & 0xf), (unsigned int)(cp[0] >> 4));
384	}
385
386	if (request == NULL)
387	{
388	request = make_request(callback, ctx);
389	request->type = T_PTR;
390	memcpy(&request->addr, addr, sizeof(struct irc_ssaddr));
391	}
392
393	query_name(ipbuf, C_IN, T_PTR, request);
394	}
395
396	/*
397	* gethost_byname_type - get host address from name
398	*
399	*/
400	void
401	gethost_byname_type(dns_callback_fnc callback, void ctx, const char name, int type)
402	{
403	assert(name);
404	do_query_name(callback, ctx, name, NULL, type);
405	}
406
407	/*
408	* gethost_byname - wrapper for _type - send T_AAAA first if IPV6 supported
409	*/
410	void
411	gethost_byname(dns_callback_fnc callback, void ctx, const char name)
412	{
413	gethost_byname_type(callback, ctx, name, T_AAAA);
414	}
415
416	/*
417	* gethost_byaddr - get host name from address
418	*/
419	void
420	gethost_byaddr(dns_callback_fnc callback, void ctx, const struct irc_ssaddr addr)
421	{
422	do_query_number(callback, ctx, addr, NULL);
423	}
424
425	static void
426	resend_query(struct reslist *request)
427	{
428	switch (request->type)
429	{
430	case T_PTR:
431	do_query_number(NULL, NULL, &request->addr, request);
432	break;
433	case T_A:
434	case T_AAAA:
435	do_query_name(NULL, NULL, request->name, request, request->type);
436	break;
437	default:
438	break;
439	}
440	}
441
442	/*
443	* proc_answer - process name server reply
444	*/
445	static int
446	proc_answer(struct reslist request, HEADER header, unsigned char buf, unsigned char eob)
447	{
448	char hostbuf[RFC1035_MAX_DOMAIN_LENGTH + 100]; /* working buffer */
449	unsigned char current = buf + sizeof(HEADER); / current position in buf */
450	unsigned int type = 0; /* answer type */
451	unsigned int rd_length = 0;
452	int n; /* temp count */
453	struct sockaddr_in v4; / conversion */
454	struct sockaddr_in6 *v6;
455
456	for (; header->qdcount > 0; --header->qdcount)
457	{
458	if ((n = irc_dn_skipname(current, eob)) < 0)
459	break;
460
461	current += (size_t)n + QFIXEDSZ;
462	}
463
464	/*
465	* Process each answer sent to us blech.
466	*/
467	while (header->ancount > 0 && current < eob)
468	{
469	header->ancount--;
470
471	n = irc_dn_expand(buf, eob, current, hostbuf, sizeof(hostbuf));
472
473	if (n < 0 /* Broken message / \|\| n == 0 / No more answers left */)
474	return 0;
475
476	hostbuf[RFC1035_MAX_DOMAIN_LENGTH] = '\0';
477
478	/*
479	* With Address arithmetic you have to be very anal
480	* this code was not working on alpha due to that
481	* (spotted by rodder/jailbird/dianora)
482	*/
483	current += (size_t)n;
484
485	if (!((current + ANSWER_FIXED_SIZE) < eob))
486	break;
487
488	type = irc_ns_get16(current);
489	current += TYPE_SIZE;
490	current += CLASS_SIZE;
491	current += TTL_SIZE;
492	rd_length = irc_ns_get16(current);
493	current += RDLENGTH_SIZE;
494
495	/*
496	* Wait to set request->type until we verify this structure
497	*/
498	switch (type)
499	{
500	case T_A:
501	if (request->type != T_A)
502	return 0;
503
504	/*
505	* Check for invalid rd_length or too many addresses
506	*/
507	if (rd_length != sizeof(struct in_addr))
508	return 0;
509
510	v4 = (struct sockaddr_in *)&request->addr;
511	request->addr.ss_len = sizeof(struct sockaddr_in);
512	v4->sin_family = AF_INET;
513	memcpy(&v4->sin_addr, current, sizeof(struct in_addr));
514	return 1;
515	break;
516	case T_AAAA:
517	if (request->type != T_AAAA)
518	return 0;
519
520	if (rd_length != sizeof(struct in6_addr))
521	return 0;
522
523	request->addr.ss_len = sizeof(struct sockaddr_in6);
524	v6 = (struct sockaddr_in6 *)&request->addr;
525	v6->sin6_family = AF_INET6;
526	memcpy(&v6->sin6_addr, current, sizeof(struct in6_addr));
527	return 1;
528	break;
529	case T_PTR:
530	if (request->type != T_PTR)
531	return 0;
532
533	n = irc_dn_expand(buf, eob, current, hostbuf, sizeof(hostbuf));
534	if (n < 0 /* Broken message / \|\| n == 0 / No more answers left */)
535	return 0;
536
537	request->namelength = strlcpy(request->name, hostbuf, sizeof(request->name));
538	return 1;
539	break;
540	case T_CNAME:
541	current += rd_length;
542	break;
543
544	default:
545	/* XXX I'd rather just throw away the entire bogus thing
546	* but its possible its just a broken nameserver with still
547	* valid answers. But lets do some rudimentary logging for now...
548	*/
549	ilog(LOG_TYPE_IRCD, "irc_res.c bogus type %d", type);
550	break;
551	}
552	}
553
554	return 1;
555	}
556
557	/*
558	* res_readreply - read a dns reply from the nameserver and process it.
559	*/
560	static void
561	res_readreply(fde_t fd, void data)
562	{
563	unsigned char buf[sizeof(HEADER) + MAXPACKET];
564	HEADER *header;
565	struct reslist *request = NULL;
566	ssize_t rc = 0;
567	socklen_t len = sizeof(struct irc_ssaddr);
568	struct irc_ssaddr lsin;
569
570	while ((rc = recvfrom(fd->fd, buf, sizeof(buf), 0, (struct sockaddr *)&lsin, &len)) != -1)
571	{
572	if (rc <= (ssize_t)sizeof(HEADER))
573	continue;
574
575	/*
576	* Check against possibly fake replies
577	*/
578	if (!res_ourserver(&lsin))
579	continue;
580
581	/*
582	* Convert DNS reply reader from Network byte order to CPU byte order.
583	*/
584	header = (HEADER *)buf;
585	header->ancount = ntohs(header->ancount);
586	header->qdcount = ntohs(header->qdcount);
587	header->nscount = ntohs(header->nscount);
588	header->arcount = ntohs(header->arcount);
589
590	/*
591	* Response for an id which we have already received an answer for
592	* just ignore this response.
593	*/
594	if ((request = find_id(header->id)) == NULL)
595	continue;
596
597	if (header->rcode != NO_ERRORS \|\| header->ancount == 0)
598	{
599	/*
600	* If a bad error was returned, stop here and don't
601	* send any more (no retries granted).
602	*/
603	(*request->callback)(request->callback_ctx, NULL, NULL, 0);
604	rem_request(request);
605	continue;
606	}
607
608	/*
609	* If this fails there was an error decoding the received packet.
610	* We only give it one shot. If it fails, just leave the client
611	* unresolved.
612	*/
613	if (!proc_answer(request, header, buf, buf + rc))
614	{
615	(*request->callback)(request->callback_ctx, NULL, NULL, 0);
616	rem_request(request);
617	continue;
618	}
619
620	if (request->type == T_PTR)
621	{
622	if (request->namelength == 0)
623	{
624	/*
625	* Got a PTR response with no name, something bogus is happening
626	* don't bother trying again, the client address doesn't resolve
627	*/
628	(*request->callback)(request->callback_ctx, NULL, NULL, 0);
629	rem_request(request);
630	continue;
631	}
632
633	/*
634	* Lookup the 'authoritative' name that we were given for the ip#.
635	*/
636	if (request->addr.ss.ss_family == AF_INET6)
637	gethost_byname_type(request->callback, request->callback_ctx, request->name, T_AAAA);
638	else
639	gethost_byname_type(request->callback, request->callback_ctx, request->name, T_A);
640	rem_request(request);
641	}
642	else
643	{
644	/*
645	* Got a name and address response, client resolved
646	*/
647	(*request->callback)(request->callback_ctx, &request->addr, request->name, request->namelength);
648	rem_request(request);
649	}
650
651	continue;
652	}
653
654	comm_setselect(fd, COMM_SELECT_READ, res_readreply, NULL, 0);
655	}
656
657	void
658	report_dns_servers(struct Client *source_p)
659	{
660	char ipaddr[HOSTIPLEN + 1] = "";
661
662	for (unsigned int i = 0; i < irc_nscount; ++i)
663	{
664	getnameinfo((struct sockaddr *)&(irc_nsaddr_list[i]),
665	irc_nsaddr_list[i].ss_len, ipaddr,
666	sizeof(ipaddr), NULL, 0, NI_NUMERICHOST);
667	sendto_one_numeric(source_p, &me, RPL_STATSALINE, ipaddr);
668	}
669	}
670
671	/*
672	* timeout_query_list - Remove queries from the list which have been
673	* there too long without being resolved.
674	*/
675	static time_t
676	timeout_query_list(void)
677	{
678	dlink_node ptr = NULL, ptr_next = NULL;
679	struct reslist *request = NULL;
680	time_t next_time = 0;
681	time_t timeout = 0;
682
683	DLINK_FOREACH_SAFE(ptr, ptr_next, request_list.head)
684	{
685	request = ptr->data;
686	timeout = request->sentat + request->timeout;
687
688	if (CurrentTime >= timeout)
689	{
690	if (--request->retries <= 0)
691	{
692	(*request->callback)(request->callback_ctx, NULL, NULL, 0);
693	rem_request(request);
694	continue;
695	}
696	else
697	{
698	request->sentat = CurrentTime;
699	request->timeout += request->timeout;
700	resend_query(request);
701	}
702	}
703
704	if (next_time == 0 \|\| timeout < next_time)
705	next_time = timeout;
706	}
707
708	return (next_time > CurrentTime) ? next_time : (CurrentTime + AR_TTL);
709	}
710
711	/*
712	* timeout_resolver - check request list
713	*/
714	static void
715	timeout_resolver(void *unused)
716	{
717	timeout_query_list();
718	}
719
720	/*
721	* init_resolver - initialize resolver and resolver library
722	*/
723	void
724	init_resolver(void)
725	{
726	static struct event event_timeout_resolver =
727	{
728	.name = "timeout_resolver",
729	.handler = timeout_resolver,
730	.when = 1
731	};
732
733	dns_pool = mp_pool_new(sizeof(struct reslist), MP_CHUNK_SIZE_DNS);
734
735	start_resolver();
736	event_add(&event_timeout_resolver, NULL);
737	}