/src/openssl31/crypto/bio/bio_addr.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | * Copyright 2016-2025 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * |
4 | | * Licensed under the Apache License 2.0 (the "License"). You may not use |
5 | | * this file except in compliance with the License. You can obtain a copy |
6 | | * in the file LICENSE in the source distribution or at |
7 | | * https://www.openssl.org/source/license.html |
8 | | */ |
9 | | |
10 | | #ifndef _GNU_SOURCE |
11 | | # define _GNU_SOURCE |
12 | | #endif |
13 | | |
14 | | /* |
15 | | * VC configurations may define UNICODE, to indicate to the C RTL that |
16 | | * WCHAR functions are preferred. |
17 | | * This affects functions like gai_strerror(), which is implemented as |
18 | | * an alias macro for gai_strerrorA() (which returns a const char *) or |
19 | | * gai_strerrorW() (which returns a const WCHAR *). This source file |
20 | | * assumes POSIX declarations, so prefer the non-UNICODE definitions. |
21 | | */ |
22 | | #undef UNICODE |
23 | | |
24 | | #include <assert.h> |
25 | | #include <string.h> |
26 | | |
27 | | #include "bio_local.h" |
28 | | #include <openssl/crypto.h> |
29 | | |
30 | | #ifndef OPENSSL_NO_SOCK |
31 | | #include <openssl/err.h> |
32 | | #include <openssl/buffer.h> |
33 | | #include "internal/thread_once.h" |
34 | | |
35 | | CRYPTO_RWLOCK *bio_lookup_lock; |
36 | | static CRYPTO_ONCE bio_lookup_init = CRYPTO_ONCE_STATIC_INIT; |
37 | | |
38 | | /* |
39 | | * Throughout this file and bio_local.h, the existence of the macro |
40 | | * AI_PASSIVE is used to detect the availability of struct addrinfo, |
41 | | * getnameinfo() and getaddrinfo(). If that macro doesn't exist, |
42 | | * we use our own implementation instead, using gethostbyname, |
43 | | * getservbyname and a few other. |
44 | | */ |
45 | | |
46 | | /********************************************************************** |
47 | | * |
48 | | * Address structure |
49 | | * |
50 | | */ |
51 | | |
52 | | BIO_ADDR *BIO_ADDR_new(void) |
53 | 22.0k | { |
54 | 22.0k | BIO_ADDR *ret = OPENSSL_zalloc(sizeof(*ret)); |
55 | | |
56 | 22.0k | if (ret == NULL) { |
57 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
58 | 0 | return NULL; |
59 | 0 | } |
60 | | |
61 | 22.0k | ret->sa.sa_family = AF_UNSPEC; |
62 | 22.0k | return ret; |
63 | 22.0k | } |
64 | | |
65 | | void BIO_ADDR_free(BIO_ADDR *ap) |
66 | 67.9k | { |
67 | 67.9k | OPENSSL_free(ap); |
68 | 67.9k | } |
69 | | |
70 | | void BIO_ADDR_clear(BIO_ADDR *ap) |
71 | 1.86G | { |
72 | 1.86G | memset(ap, 0, sizeof(*ap)); |
73 | 1.86G | ap->sa.sa_family = AF_UNSPEC; |
74 | 1.86G | } |
75 | | |
76 | | /* |
77 | | * BIO_ADDR_make - non-public routine to fill a BIO_ADDR with the contents |
78 | | * of a struct sockaddr. |
79 | | */ |
80 | | int BIO_ADDR_make(BIO_ADDR *ap, const struct sockaddr *sa) |
81 | 862k | { |
82 | 862k | if (sa->sa_family == AF_INET) { |
83 | 862k | memcpy(&(ap->s_in), sa, sizeof(struct sockaddr_in)); |
84 | 862k | return 1; |
85 | 862k | } |
86 | 0 | #if OPENSSL_USE_IPV6 |
87 | 0 | if (sa->sa_family == AF_INET6) { |
88 | 0 | memcpy(&(ap->s_in6), sa, sizeof(struct sockaddr_in6)); |
89 | 0 | return 1; |
90 | 0 | } |
91 | 0 | #endif |
92 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
93 | 0 | if (sa->sa_family == AF_UNIX) { |
94 | 0 | memcpy(&(ap->s_un), sa, sizeof(struct sockaddr_un)); |
95 | 0 | return 1; |
96 | 0 | } |
97 | 0 | #endif |
98 | | |
99 | 0 | return 0; |
100 | 0 | } |
101 | | |
102 | | int BIO_ADDR_rawmake(BIO_ADDR *ap, int family, |
103 | | const void *where, size_t wherelen, |
104 | | unsigned short port) |
105 | 22.0k | { |
106 | 22.0k | #ifndef OPENSSL_NO_UNIX_SOCK |
107 | 22.0k | if (family == AF_UNIX) { |
108 | 0 | if (wherelen + 1 > sizeof(ap->s_un.sun_path)) |
109 | 0 | return 0; |
110 | 0 | memset(&ap->s_un, 0, sizeof(ap->s_un)); |
111 | 0 | ap->s_un.sun_family = family; |
112 | 0 | strncpy(ap->s_un.sun_path, where, sizeof(ap->s_un.sun_path) - 1); |
113 | 0 | return 1; |
114 | 0 | } |
115 | 22.0k | #endif |
116 | 22.0k | if (family == AF_INET) { |
117 | 22.0k | if (wherelen != sizeof(struct in_addr)) |
118 | 0 | return 0; |
119 | 22.0k | memset(&ap->s_in, 0, sizeof(ap->s_in)); |
120 | 22.0k | ap->s_in.sin_family = family; |
121 | 22.0k | ap->s_in.sin_port = port; |
122 | 22.0k | ap->s_in.sin_addr = *(struct in_addr *)where; |
123 | 22.0k | return 1; |
124 | 22.0k | } |
125 | 0 | #if OPENSSL_USE_IPV6 |
126 | 0 | if (family == AF_INET6) { |
127 | 0 | if (wherelen != sizeof(struct in6_addr)) |
128 | 0 | return 0; |
129 | 0 | memset(&ap->s_in6, 0, sizeof(ap->s_in6)); |
130 | 0 | ap->s_in6.sin6_family = family; |
131 | 0 | ap->s_in6.sin6_port = port; |
132 | 0 | ap->s_in6.sin6_addr = *(struct in6_addr *)where; |
133 | 0 | return 1; |
134 | 0 | } |
135 | 0 | #endif |
136 | | |
137 | 0 | return 0; |
138 | 0 | } |
139 | | |
140 | | int BIO_ADDR_family(const BIO_ADDR *ap) |
141 | 6.07M | { |
142 | 6.07M | return ap->sa.sa_family; |
143 | 6.07M | } |
144 | | |
145 | | int BIO_ADDR_rawaddress(const BIO_ADDR *ap, void *p, size_t *l) |
146 | 23.3k | { |
147 | 23.3k | size_t len = 0; |
148 | 23.3k | const void *addrptr = NULL; |
149 | | |
150 | 23.3k | if (ap->sa.sa_family == AF_INET) { |
151 | 23.3k | len = sizeof(ap->s_in.sin_addr); |
152 | 23.3k | addrptr = &ap->s_in.sin_addr; |
153 | 23.3k | } |
154 | 0 | #if OPENSSL_USE_IPV6 |
155 | 0 | else if (ap->sa.sa_family == AF_INET6) { |
156 | 0 | len = sizeof(ap->s_in6.sin6_addr); |
157 | 0 | addrptr = &ap->s_in6.sin6_addr; |
158 | 0 | } |
159 | 0 | #endif |
160 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
161 | 0 | else if (ap->sa.sa_family == AF_UNIX) { |
162 | 0 | len = strlen(ap->s_un.sun_path); |
163 | 0 | addrptr = &ap->s_un.sun_path; |
164 | 0 | } |
165 | 23.3k | #endif |
166 | | |
167 | 23.3k | if (addrptr == NULL) |
168 | 0 | return 0; |
169 | | |
170 | 23.3k | if (p != NULL) { |
171 | 11.6k | memcpy(p, addrptr, len); |
172 | 11.6k | } |
173 | 23.3k | if (l != NULL) |
174 | 11.6k | *l = len; |
175 | | |
176 | 23.3k | return 1; |
177 | 23.3k | } |
178 | | |
179 | | unsigned short BIO_ADDR_rawport(const BIO_ADDR *ap) |
180 | 11.6k | { |
181 | 11.6k | if (ap->sa.sa_family == AF_INET) |
182 | 11.6k | return ap->s_in.sin_port; |
183 | 0 | #if OPENSSL_USE_IPV6 |
184 | 0 | if (ap->sa.sa_family == AF_INET6) |
185 | 0 | return ap->s_in6.sin6_port; |
186 | 0 | #endif |
187 | 0 | return 0; |
188 | 0 | } |
189 | | |
190 | | /*- |
191 | | * addr_strings - helper function to get host and service names |
192 | | * @ap: the BIO_ADDR that has the input info |
193 | | * @numeric: 0 if actual names should be returned, 1 if the numeric |
194 | | * representation should be returned. |
195 | | * @hostname: a pointer to a pointer to a memory area to store the |
196 | | * hostname or numeric representation. Unused if NULL. |
197 | | * @service: a pointer to a pointer to a memory area to store the |
198 | | * service name or numeric representation. Unused if NULL. |
199 | | * |
200 | | * The return value is 0 on failure, with the error code in the error |
201 | | * stack, and 1 on success. |
202 | | */ |
203 | | static int addr_strings(const BIO_ADDR *ap, int numeric, |
204 | | char **hostname, char **service) |
205 | 0 | { |
206 | 0 | if (BIO_sock_init() != 1) |
207 | 0 | return 0; |
208 | | |
209 | 0 | if (1) { |
210 | 0 | #ifdef AI_PASSIVE |
211 | 0 | int ret = 0; |
212 | 0 | char host[NI_MAXHOST] = "", serv[NI_MAXSERV] = ""; |
213 | 0 | int flags = 0; |
214 | |
|
215 | 0 | if (numeric) |
216 | 0 | flags |= NI_NUMERICHOST | NI_NUMERICSERV; |
217 | |
|
218 | 0 | if ((ret = getnameinfo(BIO_ADDR_sockaddr(ap), |
219 | 0 | BIO_ADDR_sockaddr_size(ap), |
220 | 0 | host, sizeof(host), serv, sizeof(serv), |
221 | 0 | flags)) != 0) { |
222 | 0 | # ifdef EAI_SYSTEM |
223 | 0 | if (ret == EAI_SYSTEM) { |
224 | 0 | ERR_raise_data(ERR_LIB_SYS, get_last_socket_error(), |
225 | 0 | "calling getnameinfo()"); |
226 | 0 | } else |
227 | 0 | # endif |
228 | 0 | { |
229 | 0 | ERR_raise_data(ERR_LIB_BIO, ERR_R_SYS_LIB, gai_strerror(ret)); |
230 | 0 | } |
231 | 0 | return 0; |
232 | 0 | } |
233 | | |
234 | | /* VMS getnameinfo() has a bug, it doesn't fill in serv, which |
235 | | * leaves it with whatever garbage that happens to be there. |
236 | | * However, we initialise serv with the empty string (serv[0] |
237 | | * is therefore NUL), so it gets real easy to detect when things |
238 | | * didn't go the way one might expect. |
239 | | */ |
240 | 0 | if (serv[0] == '\0') { |
241 | 0 | BIO_snprintf(serv, sizeof(serv), "%d", |
242 | 0 | ntohs(BIO_ADDR_rawport(ap))); |
243 | 0 | } |
244 | |
|
245 | 0 | if (hostname != NULL) |
246 | 0 | *hostname = OPENSSL_strdup(host); |
247 | 0 | if (service != NULL) |
248 | 0 | *service = OPENSSL_strdup(serv); |
249 | 0 | } else { |
250 | 0 | #endif |
251 | 0 | if (hostname != NULL) |
252 | 0 | *hostname = OPENSSL_strdup(inet_ntoa(ap->s_in.sin_addr)); |
253 | 0 | if (service != NULL) { |
254 | 0 | char serv[6]; /* port is 16 bits => max 5 decimal digits */ |
255 | 0 | BIO_snprintf(serv, sizeof(serv), "%d", ntohs(ap->s_in.sin_port)); |
256 | 0 | *service = OPENSSL_strdup(serv); |
257 | 0 | } |
258 | 0 | } |
259 | | |
260 | 0 | if ((hostname != NULL && *hostname == NULL) |
261 | 0 | || (service != NULL && *service == NULL)) { |
262 | 0 | if (hostname != NULL) { |
263 | 0 | OPENSSL_free(*hostname); |
264 | 0 | *hostname = NULL; |
265 | 0 | } |
266 | 0 | if (service != NULL) { |
267 | 0 | OPENSSL_free(*service); |
268 | 0 | *service = NULL; |
269 | 0 | } |
270 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
271 | 0 | return 0; |
272 | 0 | } |
273 | | |
274 | 0 | return 1; |
275 | 0 | } |
276 | | |
277 | | char *BIO_ADDR_hostname_string(const BIO_ADDR *ap, int numeric) |
278 | 0 | { |
279 | 0 | char *hostname = NULL; |
280 | |
|
281 | 0 | if (addr_strings(ap, numeric, &hostname, NULL)) |
282 | 0 | return hostname; |
283 | | |
284 | 0 | return NULL; |
285 | 0 | } |
286 | | |
287 | | char *BIO_ADDR_service_string(const BIO_ADDR *ap, int numeric) |
288 | 0 | { |
289 | 0 | char *service = NULL; |
290 | |
|
291 | 0 | if (addr_strings(ap, numeric, NULL, &service)) |
292 | 0 | return service; |
293 | | |
294 | 0 | return NULL; |
295 | 0 | } |
296 | | |
297 | | char *BIO_ADDR_path_string(const BIO_ADDR *ap) |
298 | 0 | { |
299 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
300 | 0 | if (ap->sa.sa_family == AF_UNIX) |
301 | 0 | return OPENSSL_strdup(ap->s_un.sun_path); |
302 | 0 | #endif |
303 | 0 | return NULL; |
304 | 0 | } |
305 | | |
306 | | /* |
307 | | * BIO_ADDR_sockaddr - non-public routine to return the struct sockaddr |
308 | | * for a given BIO_ADDR. In reality, this is simply a type safe cast. |
309 | | * The returned struct sockaddr is const, so it can't be tampered with. |
310 | | */ |
311 | | const struct sockaddr *BIO_ADDR_sockaddr(const BIO_ADDR *ap) |
312 | 0 | { |
313 | 0 | return &(ap->sa); |
314 | 0 | } |
315 | | |
316 | | /* |
317 | | * BIO_ADDR_sockaddr_noconst - non-public function that does the same |
318 | | * as BIO_ADDR_sockaddr, but returns a non-const. USE WITH CARE, as |
319 | | * it allows you to tamper with the data (and thereby the contents |
320 | | * of the input BIO_ADDR). |
321 | | */ |
322 | | struct sockaddr *BIO_ADDR_sockaddr_noconst(BIO_ADDR *ap) |
323 | 0 | { |
324 | 0 | return &(ap->sa); |
325 | 0 | } |
326 | | |
327 | | /* |
328 | | * BIO_ADDR_sockaddr_size - non-public function that returns the size |
329 | | * of the struct sockaddr the BIO_ADDR is using. If the protocol family |
330 | | * isn't set or is something other than AF_INET, AF_INET6 or AF_UNIX, |
331 | | * the size of the BIO_ADDR type is returned. |
332 | | */ |
333 | | socklen_t BIO_ADDR_sockaddr_size(const BIO_ADDR *ap) |
334 | 0 | { |
335 | 0 | if (ap->sa.sa_family == AF_INET) |
336 | 0 | return sizeof(ap->s_in); |
337 | 0 | #if OPENSSL_USE_IPV6 |
338 | 0 | if (ap->sa.sa_family == AF_INET6) |
339 | 0 | return sizeof(ap->s_in6); |
340 | 0 | #endif |
341 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
342 | 0 | if (ap->sa.sa_family == AF_UNIX) |
343 | 0 | return sizeof(ap->s_un); |
344 | 0 | #endif |
345 | 0 | return sizeof(*ap); |
346 | 0 | } |
347 | | |
348 | | /********************************************************************** |
349 | | * |
350 | | * Address info database |
351 | | * |
352 | | */ |
353 | | |
354 | | const BIO_ADDRINFO *BIO_ADDRINFO_next(const BIO_ADDRINFO *bai) |
355 | 0 | { |
356 | 0 | if (bai != NULL) |
357 | 0 | return bai->bai_next; |
358 | 0 | return NULL; |
359 | 0 | } |
360 | | |
361 | | int BIO_ADDRINFO_family(const BIO_ADDRINFO *bai) |
362 | 0 | { |
363 | 0 | if (bai != NULL) |
364 | 0 | return bai->bai_family; |
365 | 0 | return 0; |
366 | 0 | } |
367 | | |
368 | | int BIO_ADDRINFO_socktype(const BIO_ADDRINFO *bai) |
369 | 0 | { |
370 | 0 | if (bai != NULL) |
371 | 0 | return bai->bai_socktype; |
372 | 0 | return 0; |
373 | 0 | } |
374 | | |
375 | | int BIO_ADDRINFO_protocol(const BIO_ADDRINFO *bai) |
376 | 0 | { |
377 | 0 | if (bai != NULL) { |
378 | 0 | if (bai->bai_protocol != 0) |
379 | 0 | return bai->bai_protocol; |
380 | | |
381 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
382 | 0 | if (bai->bai_family == AF_UNIX) |
383 | 0 | return 0; |
384 | 0 | #endif |
385 | | |
386 | 0 | switch (bai->bai_socktype) { |
387 | 0 | case SOCK_STREAM: |
388 | 0 | return IPPROTO_TCP; |
389 | 0 | case SOCK_DGRAM: |
390 | 0 | return IPPROTO_UDP; |
391 | 0 | default: |
392 | 0 | break; |
393 | 0 | } |
394 | 0 | } |
395 | 0 | return 0; |
396 | 0 | } |
397 | | |
398 | | /* |
399 | | * BIO_ADDRINFO_sockaddr_size - non-public function that returns the size |
400 | | * of the struct sockaddr inside the BIO_ADDRINFO. |
401 | | */ |
402 | | socklen_t BIO_ADDRINFO_sockaddr_size(const BIO_ADDRINFO *bai) |
403 | 0 | { |
404 | 0 | if (bai != NULL) |
405 | 0 | return bai->bai_addrlen; |
406 | 0 | return 0; |
407 | 0 | } |
408 | | |
409 | | /* |
410 | | * BIO_ADDRINFO_sockaddr - non-public function that returns bai_addr |
411 | | * as the struct sockaddr it is. |
412 | | */ |
413 | | const struct sockaddr *BIO_ADDRINFO_sockaddr(const BIO_ADDRINFO *bai) |
414 | 0 | { |
415 | 0 | if (bai != NULL) |
416 | 0 | return bai->bai_addr; |
417 | 0 | return NULL; |
418 | 0 | } |
419 | | |
420 | | const BIO_ADDR *BIO_ADDRINFO_address(const BIO_ADDRINFO *bai) |
421 | 0 | { |
422 | 0 | if (bai != NULL) |
423 | 0 | return (BIO_ADDR *)bai->bai_addr; |
424 | 0 | return NULL; |
425 | 0 | } |
426 | | |
427 | | void BIO_ADDRINFO_free(BIO_ADDRINFO *bai) |
428 | 0 | { |
429 | 0 | if (bai == NULL) |
430 | 0 | return; |
431 | | |
432 | 0 | #ifdef AI_PASSIVE |
433 | 0 | # ifndef OPENSSL_NO_UNIX_SOCK |
434 | 0 | # define _cond bai->bai_family != AF_UNIX |
435 | | # else |
436 | | # define _cond 1 |
437 | | # endif |
438 | 0 | if (_cond) { |
439 | 0 | freeaddrinfo(bai); |
440 | 0 | return; |
441 | 0 | } |
442 | 0 | #endif |
443 | | |
444 | | /* Free manually when we know that addrinfo_wrap() was used. |
445 | | * See further comment above addrinfo_wrap() |
446 | | */ |
447 | 0 | while (bai != NULL) { |
448 | 0 | BIO_ADDRINFO *next = bai->bai_next; |
449 | 0 | OPENSSL_free(bai->bai_addr); |
450 | 0 | OPENSSL_free(bai); |
451 | 0 | bai = next; |
452 | 0 | } |
453 | 0 | } |
454 | | |
455 | | /********************************************************************** |
456 | | * |
457 | | * Service functions |
458 | | * |
459 | | */ |
460 | | |
461 | | /*- |
462 | | * The specs in hostserv can take these forms: |
463 | | * |
464 | | * host:service => *host = "host", *service = "service" |
465 | | * host:* => *host = "host", *service = NULL |
466 | | * host: => *host = "host", *service = NULL |
467 | | * :service => *host = NULL, *service = "service" |
468 | | * *:service => *host = NULL, *service = "service" |
469 | | * |
470 | | * in case no : is present in the string, the result depends on |
471 | | * hostserv_prio, as follows: |
472 | | * |
473 | | * when hostserv_prio == BIO_PARSE_PRIO_HOST |
474 | | * host => *host = "host", *service untouched |
475 | | * |
476 | | * when hostserv_prio == BIO_PARSE_PRIO_SERV |
477 | | * service => *host untouched, *service = "service" |
478 | | * |
479 | | */ |
480 | | int BIO_parse_hostserv(const char *hostserv, char **host, char **service, |
481 | | enum BIO_hostserv_priorities hostserv_prio) |
482 | 0 | { |
483 | 0 | const char *h = NULL; size_t hl = 0; |
484 | 0 | const char *p = NULL; size_t pl = 0; |
485 | |
|
486 | 0 | if (*hostserv == '[') { |
487 | 0 | if ((p = strchr(hostserv, ']')) == NULL) |
488 | 0 | goto spec_err; |
489 | 0 | h = hostserv + 1; |
490 | 0 | hl = p - h; |
491 | 0 | p++; |
492 | 0 | if (*p == '\0') |
493 | 0 | p = NULL; |
494 | 0 | else if (*p != ':') |
495 | 0 | goto spec_err; |
496 | 0 | else { |
497 | 0 | p++; |
498 | 0 | pl = strlen(p); |
499 | 0 | } |
500 | 0 | } else { |
501 | 0 | const char *p2 = strrchr(hostserv, ':'); |
502 | 0 | p = strchr(hostserv, ':'); |
503 | | |
504 | | /*- |
505 | | * Check for more than one colon. There are three possible |
506 | | * interpretations: |
507 | | * 1. IPv6 address with port number, last colon being separator. |
508 | | * 2. IPv6 address only. |
509 | | * 3. IPv6 address only if hostserv_prio == BIO_PARSE_PRIO_HOST, |
510 | | * IPv6 address and port number if hostserv_prio == BIO_PARSE_PRIO_SERV |
511 | | * Because of this ambiguity, we currently choose to make it an |
512 | | * error. |
513 | | */ |
514 | 0 | if (p != p2) |
515 | 0 | goto amb_err; |
516 | | |
517 | 0 | if (p != NULL) { |
518 | 0 | h = hostserv; |
519 | 0 | hl = p - h; |
520 | 0 | p++; |
521 | 0 | pl = strlen(p); |
522 | 0 | } else if (hostserv_prio == BIO_PARSE_PRIO_HOST) { |
523 | 0 | h = hostserv; |
524 | 0 | hl = strlen(h); |
525 | 0 | } else { |
526 | 0 | p = hostserv; |
527 | 0 | pl = strlen(p); |
528 | 0 | } |
529 | 0 | } |
530 | | |
531 | 0 | if (p != NULL && strchr(p, ':')) |
532 | 0 | goto spec_err; |
533 | | |
534 | 0 | if (h != NULL && host != NULL) { |
535 | 0 | if (hl == 0 |
536 | 0 | || (hl == 1 && h[0] == '*')) { |
537 | 0 | *host = NULL; |
538 | 0 | } else { |
539 | 0 | *host = OPENSSL_strndup(h, hl); |
540 | 0 | if (*host == NULL) |
541 | 0 | goto memerr; |
542 | 0 | } |
543 | 0 | } |
544 | 0 | if (p != NULL && service != NULL) { |
545 | 0 | if (pl == 0 |
546 | 0 | || (pl == 1 && p[0] == '*')) { |
547 | 0 | *service = NULL; |
548 | 0 | } else { |
549 | 0 | *service = OPENSSL_strndup(p, pl); |
550 | 0 | if (*service == NULL) { |
551 | 0 | if (h != NULL && host != NULL) { |
552 | 0 | OPENSSL_free(*host); |
553 | 0 | *host = NULL; |
554 | 0 | } |
555 | 0 | goto memerr; |
556 | 0 | } |
557 | 0 | } |
558 | 0 | } |
559 | | |
560 | 0 | return 1; |
561 | 0 | amb_err: |
562 | 0 | ERR_raise(ERR_LIB_BIO, BIO_R_AMBIGUOUS_HOST_OR_SERVICE); |
563 | 0 | return 0; |
564 | 0 | spec_err: |
565 | 0 | ERR_raise(ERR_LIB_BIO, BIO_R_MALFORMED_HOST_OR_SERVICE); |
566 | 0 | return 0; |
567 | 0 | memerr: |
568 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
569 | 0 | return 0; |
570 | 0 | } |
571 | | |
572 | | /* addrinfo_wrap is used to build our own addrinfo "chain". |
573 | | * (it has only one entry, so calling it a chain may be a stretch) |
574 | | * It should ONLY be called when getaddrinfo() and friends |
575 | | * aren't available, OR when dealing with a non IP protocol |
576 | | * family, such as AF_UNIX |
577 | | * |
578 | | * the return value is 1 on success, or 0 on failure, which |
579 | | * only happens if a memory allocation error occurred. |
580 | | */ |
581 | | static int addrinfo_wrap(int family, int socktype, |
582 | | const void *where, size_t wherelen, |
583 | | unsigned short port, |
584 | | BIO_ADDRINFO **bai) |
585 | 0 | { |
586 | 0 | if ((*bai = OPENSSL_zalloc(sizeof(**bai))) == NULL) { |
587 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
588 | 0 | return 0; |
589 | 0 | } |
590 | | |
591 | 0 | (*bai)->bai_family = family; |
592 | 0 | (*bai)->bai_socktype = socktype; |
593 | 0 | if (socktype == SOCK_STREAM) |
594 | 0 | (*bai)->bai_protocol = IPPROTO_TCP; |
595 | 0 | if (socktype == SOCK_DGRAM) |
596 | 0 | (*bai)->bai_protocol = IPPROTO_UDP; |
597 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
598 | 0 | if (family == AF_UNIX) |
599 | 0 | (*bai)->bai_protocol = 0; |
600 | 0 | #endif |
601 | 0 | { |
602 | | /* Magic: We know that BIO_ADDR_sockaddr_noconst is really |
603 | | just an advanced cast of BIO_ADDR* to struct sockaddr * |
604 | | by the power of union, so while it may seem that we're |
605 | | creating a memory leak here, we are not. It will be |
606 | | all right. */ |
607 | 0 | BIO_ADDR *addr = BIO_ADDR_new(); |
608 | 0 | if (addr != NULL) { |
609 | 0 | BIO_ADDR_rawmake(addr, family, where, wherelen, port); |
610 | 0 | (*bai)->bai_addr = BIO_ADDR_sockaddr_noconst(addr); |
611 | 0 | } |
612 | 0 | } |
613 | 0 | (*bai)->bai_next = NULL; |
614 | 0 | if ((*bai)->bai_addr == NULL) { |
615 | 0 | BIO_ADDRINFO_free(*bai); |
616 | 0 | *bai = NULL; |
617 | 0 | return 0; |
618 | 0 | } |
619 | 0 | return 1; |
620 | 0 | } |
621 | | |
622 | | DEFINE_RUN_ONCE_STATIC(do_bio_lookup_init) |
623 | 0 | { |
624 | 0 | bio_lookup_lock = CRYPTO_THREAD_lock_new(); |
625 | 0 | return bio_lookup_lock != NULL; |
626 | 0 | } |
627 | | |
628 | | int BIO_lookup(const char *host, const char *service, |
629 | | enum BIO_lookup_type lookup_type, |
630 | | int family, int socktype, BIO_ADDRINFO **res) |
631 | 0 | { |
632 | 0 | return BIO_lookup_ex(host, service, lookup_type, family, socktype, 0, res); |
633 | 0 | } |
634 | | |
635 | | /*- |
636 | | * BIO_lookup_ex - look up the host and service you want to connect to. |
637 | | * @host: the host (or node, in case family == AF_UNIX) you want to connect to. |
638 | | * @service: the service you want to connect to. |
639 | | * @lookup_type: declare intent with the result, client or server. |
640 | | * @family: the address family you want to use. Use AF_UNSPEC for any, or |
641 | | * AF_INET, AF_INET6 or AF_UNIX. |
642 | | * @socktype: The socket type you want to use. Can be SOCK_STREAM, SOCK_DGRAM |
643 | | * or 0 for all. |
644 | | * @protocol: The protocol to use, e.g. IPPROTO_TCP or IPPROTO_UDP or 0 for all. |
645 | | * Note that some platforms may not return IPPROTO_SCTP without |
646 | | * explicitly requesting it (i.e. IPPROTO_SCTP may not be returned |
647 | | * with 0 for the protocol) |
648 | | * @res: Storage place for the resulting list of returned addresses |
649 | | * |
650 | | * This will do a lookup of the host and service that you want to connect to. |
651 | | * It returns a linked list of different addresses you can try to connect to. |
652 | | * |
653 | | * When no longer needed you should call BIO_ADDRINFO_free() to free the result. |
654 | | * |
655 | | * The return value is 1 on success or 0 in case of error. |
656 | | */ |
657 | | int BIO_lookup_ex(const char *host, const char *service, int lookup_type, |
658 | | int family, int socktype, int protocol, BIO_ADDRINFO **res) |
659 | 0 | { |
660 | 0 | int ret = 0; /* Assume failure */ |
661 | |
|
662 | 0 | switch(family) { |
663 | 0 | case AF_INET: |
664 | 0 | #if OPENSSL_USE_IPV6 |
665 | 0 | case AF_INET6: |
666 | 0 | #endif |
667 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
668 | 0 | case AF_UNIX: |
669 | 0 | #endif |
670 | 0 | #ifdef AF_UNSPEC |
671 | 0 | case AF_UNSPEC: |
672 | 0 | #endif |
673 | 0 | break; |
674 | 0 | default: |
675 | 0 | ERR_raise(ERR_LIB_BIO, BIO_R_UNSUPPORTED_PROTOCOL_FAMILY); |
676 | 0 | return 0; |
677 | 0 | } |
678 | | |
679 | 0 | #ifndef OPENSSL_NO_UNIX_SOCK |
680 | 0 | if (family == AF_UNIX) { |
681 | 0 | if (addrinfo_wrap(family, socktype, host, strlen(host), 0, res)) |
682 | 0 | return 1; |
683 | 0 | else |
684 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
685 | 0 | return 0; |
686 | 0 | } |
687 | 0 | #endif |
688 | | |
689 | 0 | if (BIO_sock_init() != 1) |
690 | 0 | return 0; |
691 | | |
692 | 0 | if (1) { |
693 | 0 | #ifdef AI_PASSIVE |
694 | 0 | int gai_ret = 0, old_ret = 0; |
695 | 0 | struct addrinfo hints; |
696 | |
|
697 | 0 | memset(&hints, 0, sizeof(hints)); |
698 | |
|
699 | 0 | hints.ai_family = family; |
700 | 0 | hints.ai_socktype = socktype; |
701 | 0 | hints.ai_protocol = protocol; |
702 | 0 | # ifdef AI_ADDRCONFIG |
703 | 0 | # ifdef AF_UNSPEC |
704 | 0 | if (host != NULL && family == AF_UNSPEC) |
705 | 0 | # endif |
706 | 0 | hints.ai_flags |= AI_ADDRCONFIG; |
707 | 0 | # endif |
708 | |
|
709 | 0 | if (lookup_type == BIO_LOOKUP_SERVER) |
710 | 0 | hints.ai_flags |= AI_PASSIVE; |
711 | | |
712 | | /* Note that |res| SHOULD be a 'struct addrinfo **' thanks to |
713 | | * macro magic in bio_local.h |
714 | | */ |
715 | 0 | # if defined(AI_ADDRCONFIG) && defined(AI_NUMERICHOST) |
716 | 0 | retry: |
717 | 0 | # endif |
718 | 0 | switch ((gai_ret = getaddrinfo(host, service, &hints, res))) { |
719 | 0 | # ifdef EAI_SYSTEM |
720 | 0 | case EAI_SYSTEM: |
721 | 0 | ERR_raise_data(ERR_LIB_SYS, get_last_socket_error(), |
722 | 0 | "calling getaddrinfo()"); |
723 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_SYS_LIB); |
724 | 0 | break; |
725 | 0 | # endif |
726 | 0 | # ifdef EAI_MEMORY |
727 | 0 | case EAI_MEMORY: |
728 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
729 | 0 | break; |
730 | 0 | # endif |
731 | 0 | case 0: |
732 | 0 | ret = 1; /* Success */ |
733 | 0 | break; |
734 | 0 | default: |
735 | 0 | # if defined(AI_ADDRCONFIG) && defined(AI_NUMERICHOST) |
736 | 0 | if (hints.ai_flags & AI_ADDRCONFIG) { |
737 | 0 | hints.ai_flags &= ~AI_ADDRCONFIG; |
738 | 0 | hints.ai_flags |= AI_NUMERICHOST; |
739 | 0 | old_ret = gai_ret; |
740 | 0 | goto retry; |
741 | 0 | } |
742 | 0 | # endif |
743 | 0 | ERR_raise_data(ERR_LIB_BIO, ERR_R_SYS_LIB, |
744 | 0 | gai_strerror(old_ret ? old_ret : gai_ret)); |
745 | 0 | break; |
746 | 0 | } |
747 | 0 | } else { |
748 | 0 | #endif |
749 | 0 | const struct hostent *he; |
750 | | /* |
751 | | * Because struct hostent is defined for 32-bit pointers only with |
752 | | * VMS C, we need to make sure that '&he_fallback_address' and |
753 | | * '&he_fallback_addresses' are 32-bit pointers |
754 | | */ |
755 | | #if defined(OPENSSL_SYS_VMS) && defined(__DECC) |
756 | | # pragma pointer_size save |
757 | | # pragma pointer_size 32 |
758 | | #endif |
759 | | /* Windows doesn't seem to have in_addr_t */ |
760 | | #if defined(OPENSSL_SYS_WINDOWS) || defined(OPENSSL_SYS_MSDOS) |
761 | | static uint32_t he_fallback_address; |
762 | | static const char *he_fallback_addresses[] = |
763 | | { (char *)&he_fallback_address, NULL }; |
764 | | #else |
765 | 0 | static in_addr_t he_fallback_address; |
766 | 0 | static const char *he_fallback_addresses[] = |
767 | 0 | { (char *)&he_fallback_address, NULL }; |
768 | 0 | #endif |
769 | 0 | static const struct hostent he_fallback = |
770 | 0 | { NULL, NULL, AF_INET, sizeof(he_fallback_address), |
771 | 0 | (char **)&he_fallback_addresses }; |
772 | | #if defined(OPENSSL_SYS_VMS) && defined(__DECC) |
773 | | # pragma pointer_size restore |
774 | | #endif |
775 | |
|
776 | 0 | struct servent *se; |
777 | | /* Apparently, on WIN64, s_proto and s_port have traded places... */ |
778 | | #ifdef _WIN64 |
779 | | struct servent se_fallback = { NULL, NULL, NULL, 0 }; |
780 | | #else |
781 | 0 | struct servent se_fallback = { NULL, NULL, 0, NULL }; |
782 | 0 | #endif |
783 | |
|
784 | 0 | if (!RUN_ONCE(&bio_lookup_init, do_bio_lookup_init)) { |
785 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
786 | 0 | return 0; |
787 | 0 | } |
788 | | |
789 | 0 | if (!CRYPTO_THREAD_write_lock(bio_lookup_lock)) |
790 | 0 | return 0; |
791 | | |
792 | 0 | he_fallback_address = INADDR_ANY; |
793 | 0 | if (host == NULL) { |
794 | 0 | he = &he_fallback; |
795 | 0 | switch(lookup_type) { |
796 | 0 | case BIO_LOOKUP_CLIENT: |
797 | 0 | he_fallback_address = INADDR_LOOPBACK; |
798 | 0 | break; |
799 | 0 | case BIO_LOOKUP_SERVER: |
800 | 0 | he_fallback_address = INADDR_ANY; |
801 | 0 | break; |
802 | 0 | default: |
803 | | /* We forgot to handle a lookup type! */ |
804 | 0 | assert("We forgot to handle a lookup type!" == NULL); |
805 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_INTERNAL_ERROR); |
806 | 0 | ret = 0; |
807 | 0 | goto err; |
808 | 0 | } |
809 | 0 | } else { |
810 | 0 | he = gethostbyname(host); |
811 | |
|
812 | 0 | if (he == NULL) { |
813 | 0 | #ifndef OPENSSL_SYS_WINDOWS |
814 | | /* |
815 | | * This might be misleading, because h_errno is used as if |
816 | | * it was errno. To minimize mixup add 1000. Underlying |
817 | | * reason for this is that hstrerror is declared obsolete, |
818 | | * not to mention that a) h_errno is not always guaranteed |
819 | | * to be meaningless; b) hstrerror can reside in yet another |
820 | | * library, linking for sake of hstrerror is an overkill; |
821 | | * c) this path is not executed on contemporary systems |
822 | | * anyway [above getaddrinfo/gai_strerror is]. We just let |
823 | | * system administrator figure this out... |
824 | | */ |
825 | | # if defined(OPENSSL_SYS_VXWORKS) |
826 | | /* h_errno doesn't exist on VxWorks */ |
827 | | ERR_raise_data(ERR_LIB_SYS, 1000, |
828 | | "calling gethostbyname()"); |
829 | | # else |
830 | 0 | ERR_raise_data(ERR_LIB_SYS, 1000 + h_errno, |
831 | 0 | "calling gethostbyname()"); |
832 | 0 | # endif |
833 | | #else |
834 | | ERR_raise_data(ERR_LIB_SYS, get_last_socket_error(), |
835 | | "calling gethostbyname()"); |
836 | | #endif |
837 | 0 | ret = 0; |
838 | 0 | goto err; |
839 | 0 | } |
840 | 0 | } |
841 | | |
842 | 0 | if (service == NULL) { |
843 | 0 | se_fallback.s_port = 0; |
844 | 0 | se_fallback.s_proto = NULL; |
845 | 0 | se = &se_fallback; |
846 | 0 | } else { |
847 | 0 | char *endp = NULL; |
848 | 0 | long portnum = strtol(service, &endp, 10); |
849 | | |
850 | | /* |
851 | | * Because struct servent is defined for 32-bit pointers only with |
852 | | * VMS C, we need to make sure that 'proto' is a 32-bit pointer. |
853 | | */ |
854 | | #if defined(OPENSSL_SYS_VMS) && defined(__DECC) |
855 | | # pragma pointer_size save |
856 | | # pragma pointer_size 32 |
857 | | #endif |
858 | 0 | char *proto = NULL; |
859 | | #if defined(OPENSSL_SYS_VMS) && defined(__DECC) |
860 | | # pragma pointer_size restore |
861 | | #endif |
862 | |
|
863 | 0 | switch (socktype) { |
864 | 0 | case SOCK_STREAM: |
865 | 0 | proto = "tcp"; |
866 | 0 | break; |
867 | 0 | case SOCK_DGRAM: |
868 | 0 | proto = "udp"; |
869 | 0 | break; |
870 | 0 | } |
871 | | |
872 | 0 | if (endp != service && *endp == '\0' |
873 | 0 | && portnum > 0 && portnum < 65536) { |
874 | 0 | se_fallback.s_port = htons((unsigned short)portnum); |
875 | 0 | se_fallback.s_proto = proto; |
876 | 0 | se = &se_fallback; |
877 | 0 | } else if (endp == service) { |
878 | 0 | se = getservbyname(service, proto); |
879 | |
|
880 | 0 | if (se == NULL) { |
881 | 0 | ERR_raise_data(ERR_LIB_SYS, get_last_socket_error(), |
882 | 0 | "calling getservbyname()"); |
883 | 0 | goto err; |
884 | 0 | } |
885 | 0 | } else { |
886 | 0 | ERR_raise(ERR_LIB_BIO, BIO_R_MALFORMED_HOST_OR_SERVICE); |
887 | 0 | goto err; |
888 | 0 | } |
889 | 0 | } |
890 | | |
891 | 0 | *res = NULL; |
892 | |
|
893 | 0 | { |
894 | | /* |
895 | | * Because hostent::h_addr_list is an array of 32-bit pointers with VMS C, |
896 | | * we must make sure our iterator designates the same element type, hence |
897 | | * the pointer size dance. |
898 | | */ |
899 | | #if defined(OPENSSL_SYS_VMS) && defined(__DECC) |
900 | | # pragma pointer_size save |
901 | | # pragma pointer_size 32 |
902 | | #endif |
903 | 0 | char **addrlistp; |
904 | | #if defined(OPENSSL_SYS_VMS) && defined(__DECC) |
905 | | # pragma pointer_size restore |
906 | | #endif |
907 | 0 | size_t addresses; |
908 | 0 | BIO_ADDRINFO *tmp_bai = NULL; |
909 | | |
910 | | /* The easiest way to create a linked list from an |
911 | | array is to start from the back */ |
912 | 0 | for(addrlistp = he->h_addr_list; *addrlistp != NULL; |
913 | 0 | addrlistp++) |
914 | 0 | ; |
915 | |
|
916 | 0 | for(addresses = addrlistp - he->h_addr_list; |
917 | 0 | addrlistp--, addresses-- > 0; ) { |
918 | 0 | if (!addrinfo_wrap(he->h_addrtype, socktype, |
919 | 0 | *addrlistp, he->h_length, |
920 | 0 | se->s_port, &tmp_bai)) |
921 | 0 | goto addrinfo_malloc_err; |
922 | 0 | tmp_bai->bai_next = *res; |
923 | 0 | *res = tmp_bai; |
924 | 0 | continue; |
925 | 0 | addrinfo_malloc_err: |
926 | 0 | BIO_ADDRINFO_free(*res); |
927 | 0 | *res = NULL; |
928 | 0 | ERR_raise(ERR_LIB_BIO, ERR_R_MALLOC_FAILURE); |
929 | 0 | ret = 0; |
930 | 0 | goto err; |
931 | 0 | } |
932 | | |
933 | 0 | ret = 1; |
934 | 0 | } |
935 | 0 | err: |
936 | 0 | CRYPTO_THREAD_unlock(bio_lookup_lock); |
937 | 0 | } |
938 | | |
939 | 0 | return ret; |
940 | 0 | } |
941 | | |
942 | | #endif /* OPENSSL_NO_SOCK */ |