| blob | 9d7ceb1691987b275974bfb26aea5a5b2908a112 |
1 /* Copyright (C) 1996-2017 Free Software Foundation, Inc.
2 This file is part of the GNU C Library.
3 Extended from original form by Ulrich Drepper <drepper@cygnus.com>, 1996.
5 The GNU C Library is free software; you can redistribute it and/or
6 modify it under the terms of the GNU Lesser General Public
7 License as published by the Free Software Foundation; either
8 version 2.1 of the License, or (at your option) any later version.
10 The GNU C Library is distributed in the hope that it will be useful,
11 but WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 Lesser General Public License for more details.
15 You should have received a copy of the GNU Lesser General Public
16 License along with the GNU C Library; if not, see
17 <http://www.gnu.org/licenses/>. */
19 /* Parts of this file are plain copies of the file `gethtnamadr.c' from
20 the bind package and it has the following copyright. */
22 /*
23 * ++Copyright++ 1985, 1988, 1993
24 * -
25 * Copyright (c) 1985, 1988, 1993
26 * The Regents of the University of California. All rights reserved.
27 *
28 * Redistribution and use in source and binary forms, with or without
29 * modification, are permitted provided that the following conditions
30 * are met:
31 * 1. Redistributions of source code must retain the above copyright
32 * notice, this list of conditions and the following disclaimer.
33 * 2. Redistributions in binary form must reproduce the above copyright
34 * notice, this list of conditions and the following disclaimer in the
35 * documentation and/or other materials provided with the distribution.
36 * 4. Neither the name of the University nor the names of its contributors
37 * may be used to endorse or promote products derived from this software
38 * without specific prior written permission.
39 *
40 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
41 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
43 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
44 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
45 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
46 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
48 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50 * SUCH DAMAGE.
51 * -
52 * Portions Copyright (c) 1993 by Digital Equipment Corporation.
53 *
54 * Permission to use, copy, modify, and distribute this software for any
55 * purpose with or without fee is hereby granted, provided that the above
56 * copyright notice and this permission notice appear in all copies, and that
57 * the name of Digital Equipment Corporation not be used in advertising or
58 * publicity pertaining to distribution of the document or software without
59 * specific, written prior permission.
60 *
61 * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
62 * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
63 * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL DIGITAL EQUIPMENT
64 * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
65 * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
66 * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
67 * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
68 * SOFTWARE.
69 * -
70 * --Copyright--
71 */
73 #include <assert.h>
74 #include <ctype.h>
75 #include <errno.h>
76 #include <netdb.h>
77 #include <stdio.h>
78 #include <stdlib.h>
79 #include <stddef.h>
80 #include <string.h>
83 #include <arpa/nameser.h>
85 /* Get implementeation for some internal functions. */
86 #include <resolv/resolv-internal.h>
87 #include <resolv/resolv_context.h>
88 #include <resolv/mapv4v6addr.h>
89 #include <resolv/mapv4v6hostent.h>
91 #define RESOLVSORT
93 #if PACKETSZ > 65536
94 # define MAXPACKET PACKETSZ
95 #else
96 # define MAXPACKET 65536
97 #endif
98 /* As per RFC 1034 and 1035 a host name cannot exceed 255 octets in length. */
99 #ifdef MAXHOSTNAMELEN
100 # undef MAXHOSTNAMELEN
101 #endif
102 #define MAXHOSTNAMELEN 256
104 /* We need this time later. */
106 {
107 HEADER hdr;
133 /* Return the expected RDATA length for an address record type (A or
134 AAAA). */
135 static int
137 {
139 {
146 }
147 }
150 enum nss_status
154 {
157 {
161 }
166 }
168 static enum nss_status
173 {
174 union
175 {
200 }
205 /*
206 * if there aren't any dots, it could be a user-level alias.
207 * this is also done in res_query() since we are not the only
208 * function that looks up host names.
209 */
219 {
221 {
226 /* System has run out of file descriptors. */
230 /* Fall through. */
238 }
242 else
245 /* If we are looking for an IPv6 address and mapping is enabled
246 by having the RES_USE_INET6 bit in _res.options set, we try
247 another lookup. */
255 {
259 }
265 }
272 }
274 enum nss_status
278 {
281 }
284 enum nss_status
288 {
291 {
295 }
305 }
308 enum nss_status
312 {
315 {
319 }
321 /*
322 * if there aren't any dots, it could be a user-level alias.
323 * this is also done in res_query() since we are not the only
324 * function that looks up host names.
325 */
327 {
332 }
334 union
335 {
352 {
356 }
357 else
358 {
360 {
365 /* System has run out of file descriptors. */
369 /* Fall through. */
377 }
382 else
384 }
386 /* Check whether ans2p was separately allocated. */
395 }
406 enum nss_status
410 {
415 struct host_data
416 {
422 union
423 {
438 {
442 }
448 {
452 }
458 {
459 /* Unmap. */
464 }
467 {
479 }
481 {
486 }
491 {
499 {
505 }
509 /* Cannot happen. */
511 }
516 {
523 }
530 {
533 }
543 }
547 enum nss_status
551 {
554 }
558 static void
560 {
570 {
578 }
585 {
595 }
596 else
598 }
600 static enum nss_status
604 {
605 struct host_data
606 {
626 {
627 /* The buffer is too small. */
628 too_small:
632 }
642 {
653 }
655 /*
656 * find first satisfactory answer
657 */
663 {
666 }
675 {
680 }
686 {
690 }
692 {
697 }
701 {
702 /* res_send() has already verified that the query name is the
703 * same as the one we sent; this just gets the expanded name
704 * (i.e., with the succeeding search-domain tacked on).
705 */
708 {
712 }
718 /* The qname can be abbreviated, but h_name is now absolute. */
720 }
732 {
738 {
743 }
746 {
749 }
753 {
756 }
768 {
769 /* RDATA extends beyond the end of the packet. */
772 }
775 {
776 /* XXX - debug? syslog? */
779 }
782 {
783 /* A CNAME could also have a TTL entry. */
791 {
794 }
796 /* Store alias. */
800 {
803 }
806 /* Get canonical name. */
811 {
814 }
819 }
822 {
823 /* A CNAME could also have a TTL entry. */
829 {
832 }
834 /* Get canonical name. */
839 {
842 }
847 }
852 {
855 }
858 {
861 {
864 }
869 {
874 }
877 {
880 }
883 /* bind would put multiple PTR records as aliases, but we don't do
884 that. */
887 {
890 {
893 }
898 }
904 {
907 }
909 /* Stop parsing at a record whose length is incorrect. */
911 {
914 }
916 /* Skip records of the wrong type. */
918 {
921 }
923 {
926 /* We compose a single hostent out of the entire chain of
927 entries, so the TTL of the hostent is essentially the lowest
928 TTL in the chain. */
937 }
950 }
953 }
956 {
959 /*
960 * Note: we sort even if host can take only one address
961 * in its return structures - should give it the "best"
962 * address in that case, not some random one
963 */
968 {
977 }
984 }
985 no_recovery:
988 /* Special case here: if the resolver sent a result but it only
989 contains a CNAME while we are looking for a T_A or T_AAAA record,
990 we fail with NOTFOUND instead of TRYAGAIN. */
993 }
996 static enum nss_status
1001 {
1012 {
1015 }
1020 /* We unpack the name to check it for validity. But we do not need
1021 it later. */
1023 {
1025 {
1026 too_small:
1030 }
1033 }
1036 {
1040 }
1042 {
1047 }
1057 {
1060 }
1063 {
1068 {
1073 }
1075 {
1078 }
1080 {
1084 }
1089 {
1092 }
1104 {
1105 /* RDATA extends beyond the end of the packet. */
1108 }
1111 {
1114 }
1117 {
1120 /* A CNAME could also have a TTL entry. */
1126 {
1129 }
1133 {
1134 /* Reclaim buffer space. */
1136 {
1139 }
1145 {
1148 }
1154 }
1156 }
1158 /* Stop parsing if we encounter a record with incorrect RDATA
1159 length. */
1161 {
1163 {
1166 }
1167 }
1168 else
1169 {
1170 /* Skip unknown records. */
1173 }
1177 {
1189 }
1195 {
1196 /* We compose a single hostent out of the entire chain of
1197 entries, so the TTL of the hostent is essentially the lowest
1198 TTL in the chain. */
1205 }
1215 }
1218 {
1225 }
1227 /* Special case here: if the resolver sent a result but it only
1228 contains a CNAME while we are looking for a T_A or T_AAAA record,
1229 we fail with NOTFOUND instead of TRYAGAIN. */
1231 {
1234 }
1238 }
1241 static enum nss_status
1246 {
1251 /* Combining the NSS status of two distinct queries requires some
1252 compromise and attention to symmetry (A or AAAA queries can be
1253 returned in any order). What follows is a breakdown of how this
1254 code is expected to work and why. We discuss only SUCCESS,
1255 TRYAGAIN, NOTFOUND and UNAVAIL, since they are the only returns
1256 that apply (though RETURN and MERGE exist). We make a distinction
1257 between TRYAGAIN (recoverable) and TRYAGAIN' (not-recoverable).
1258 A recoverable TRYAGAIN is almost always due to buffer size issues
1259 and returns ERANGE in errno and the caller is expected to retry
1260 with a larger buffer.
1262 Lastly, you may be tempted to make significant changes to the
1263 conditions in this code to bring about symmetry between responses.
1264 Please don't change anything without due consideration for
1265 expected application behaviour. Some of the synthesized responses
1266 aren't very well thought out and sometimes appear to imply that
1267 IPv4 responses are always answer 1, and IPv6 responses are always
1268 answer 2, but that's not true (see the implementation of send_dg
1269 and send_vc to see response can arrive in any order, particularly
1270 for UDP). However, we expect it holds roughly enough of the time
1271 that this code works, but certainly needs to be fixed to make this
1272 a more robust implementation.
1274 ----------------------------------------------
1275 | Answer 1 Status / | Synthesized | Reason |
1276 | Answer 2 Status | Status | |
1277 |--------------------------------------------|
1278 | SUCCESS/SUCCESS | SUCCESS | [1] |
1279 | SUCCESS/TRYAGAIN | TRYAGAIN | [5] |
1280 | SUCCESS/TRYAGAIN' | SUCCESS | [1] |
1281 | SUCCESS/NOTFOUND | SUCCESS | [1] |
1282 | SUCCESS/UNAVAIL | SUCCESS | [1] |
1283 | TRYAGAIN/SUCCESS | TRYAGAIN | [2] |
1284 | TRYAGAIN/TRYAGAIN | TRYAGAIN | [2] |
1285 | TRYAGAIN/TRYAGAIN' | TRYAGAIN | [2] |
1286 | TRYAGAIN/NOTFOUND | TRYAGAIN | [2] |
1287 | TRYAGAIN/UNAVAIL | TRYAGAIN | [2] |
1288 | TRYAGAIN'/SUCCESS | SUCCESS | [3] |
1289 | TRYAGAIN'/TRYAGAIN | TRYAGAIN | [3] |
1290 | TRYAGAIN'/TRYAGAIN' | TRYAGAIN' | [3] |
1291 | TRYAGAIN'/NOTFOUND | TRYAGAIN' | [3] |
1292 | TRYAGAIN'/UNAVAIL | UNAVAIL | [3] |
1293 | NOTFOUND/SUCCESS | SUCCESS | [3] |
1294 | NOTFOUND/TRYAGAIN | TRYAGAIN | [3] |
1295 | NOTFOUND/TRYAGAIN' | TRYAGAIN' | [3] |
1296 | NOTFOUND/NOTFOUND | NOTFOUND | [3] |
1297 | NOTFOUND/UNAVAIL | UNAVAIL | [3] |
1298 | UNAVAIL/SUCCESS | UNAVAIL | [4] |
1299 | UNAVAIL/TRYAGAIN | UNAVAIL | [4] |
1300 | UNAVAIL/TRYAGAIN' | UNAVAIL | [4] |
1301 | UNAVAIL/NOTFOUND | UNAVAIL | [4] |
1302 | UNAVAIL/UNAVAIL | UNAVAIL | [4] |
1303 ----------------------------------------------
1305 [1] If the first response is a success we return success.
1306 This ignores the state of the second answer and in fact
1307 incorrectly sets errno and h_errno to that of the second
1308 answer. However because the response is a success we ignore
1309 *errnop and *h_errnop (though that means you touched errno on
1310 success). We are being conservative here and returning the
1311 likely IPv4 response in the first answer as a success.
1313 [2] If the first response is a recoverable TRYAGAIN we return
1314 that instead of looking at the second response. The
1315 expectation here is that we have failed to get an IPv4 response
1316 and should retry both queries.
1318 [3] If the first response was not a SUCCESS and the second
1319 response is not NOTFOUND (had a SUCCESS, need to TRYAGAIN,
1320 or failed entirely e.g. TRYAGAIN' and UNAVAIL) then use the
1321 result from the second response, otherwise the first responses
1322 status is used. Again we have some odd side-effects when the
1323 second response is NOTFOUND because we overwrite *errnop and
1324 *h_errnop that means that a first answer of NOTFOUND might see
1325 its *errnop and *h_errnop values altered. Whether it matters
1326 in practice that a first response NOTFOUND has the wrong
1327 *errnop and *h_errnop is undecided.
1329 [4] If the first response is UNAVAIL we return that instead of
1330 looking at the second response. The expectation here is that
1331 it will have failed similarly e.g. configuration failure.
1333 [5] Testing this code is complicated by the fact that truncated
1334 second response buffers might be returned as SUCCESS if the
1335 first answer is a SUCCESS. To fix this we add symmetry to
1336 TRYAGAIN with the second response. If the second response
1337 is a recoverable error we now return TRYAGIN even if the first
1338 response was SUCCESS. */
1348 /* We want to look at the second answer in case of an
1349 NSS_STATUS_TRYAGAIN only if the error is non-recoverable, i.e.
1350 *h_errnop is NO_RECOVERY. If not, and if the failure was due to
1351 an insufficient buffer (ERANGE), then we need to drop the results
1352 and pass on the NSS_STATUS_TRYAGAIN to the caller so that it can
1353 repeat the query with a larger buffer. */
1356 {
1361 /* Use the second response status in some cases. */
1364 /* Do not return a truncated second response (unless it was
1365 unavoidable e.g. unrecoverable TRYAGAIN). */
1370 }
1373 }