|
|
|
@ -7,6 +7,8 @@ |
|
|
|
#include <stdlib.h> |
|
|
|
#include <string.h> |
|
|
|
#include <fcntl.h> |
|
|
|
#include <unistd.h> |
|
|
|
#include <pthread.h> |
|
|
|
#include "lookup.h" |
|
|
|
#include "stdio_impl.h" |
|
|
|
#include "syscall.h" |
|
|
|
@ -146,6 +148,80 @@ static int name_from_dns(struct address buf[static MAXADDRS], char canon[static |
|
|
|
return EAI_FAIL; |
|
|
|
} |
|
|
|
|
|
|
|
static const struct policy { |
|
|
|
unsigned char addr[16]; |
|
|
|
unsigned char len, mask; |
|
|
|
unsigned char prec, label; |
|
|
|
} defpolicy[] = { |
|
|
|
{ "\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\1", 15, 0xff, 50, 0 }, |
|
|
|
{ "\0\0\0\0\0\0\0\0\0\0\xff\xff", 11, 0xff, 35, 4 }, |
|
|
|
{ "\x20\2", 1, 0xff, 30, 2 }, |
|
|
|
{ "\x20\1", 3, 0xff, 5, 5 }, |
|
|
|
{ "\xfc", 0, 0xfe, 3, 13 }, |
|
|
|
#if 0 |
|
|
|
/* These are deprecated and/or returned to the address
|
|
|
|
* pool, so despite the RFC, treating them as special |
|
|
|
* is probably wrong. */ |
|
|
|
{ "", 11, 0xff, 1, 3 }, |
|
|
|
{ "\xfe\xc0", 1, 0xc0, 1, 11 }, |
|
|
|
{ "\x3f\xfe", 1, 0xff, 1, 12 }, |
|
|
|
#endif |
|
|
|
/* Last rule must match all addresses to stop loop. */ |
|
|
|
{ "", 0, 0, 40, 1 }, |
|
|
|
}; |
|
|
|
|
|
|
|
static const struct policy *policyof(const struct in6_addr *a) |
|
|
|
{ |
|
|
|
int i; |
|
|
|
for (i=0; ; i++) { |
|
|
|
if (memcmp(a->s6_addr, defpolicy[i].addr, defpolicy[i].len)) |
|
|
|
continue; |
|
|
|
if ((a->s6_addr[defpolicy[i].len] & defpolicy[i].mask) |
|
|
|
!= defpolicy[i].addr[defpolicy[i].len]) |
|
|
|
continue; |
|
|
|
return defpolicy+i; |
|
|
|
} |
|
|
|
} |
|
|
|
|
|
|
|
static int labelof(const struct in6_addr *a) |
|
|
|
{ |
|
|
|
return policyof(a)->label; |
|
|
|
} |
|
|
|
|
|
|
|
static int scopeof(const struct in6_addr *a) |
|
|
|
{ |
|
|
|
if (IN6_IS_ADDR_MULTICAST(a)) return a->s6_addr[1] & 15; |
|
|
|
if (IN6_IS_ADDR_LINKLOCAL(a)) return 2; |
|
|
|
if (IN6_IS_ADDR_LOOPBACK(a)) return 2; |
|
|
|
if (IN6_IS_ADDR_SITELOCAL(a)) return 5; |
|
|
|
return 14; |
|
|
|
} |
|
|
|
|
|
|
|
static int prefixmatch(const struct in6_addr *s, const struct in6_addr *d) |
|
|
|
{ |
|
|
|
/* FIXME: The common prefix length should be limited to no greater
|
|
|
|
* than the nominal length of the prefix portion of the source |
|
|
|
* address. However the definition of the source prefix length is |
|
|
|
* not clear and thus this limiting is not yet implemented. */ |
|
|
|
unsigned i; |
|
|
|
for (i=0; i<128 && !((s->s6_addr[i/8]^d->s6_addr[i/8])&(128>>(i%8))); i++); |
|
|
|
return i; |
|
|
|
} |
|
|
|
|
|
|
|
#define DAS_USABLE 0x40000000 |
|
|
|
#define DAS_MATCHINGSCOPE 0x20000000 |
|
|
|
#define DAS_MATCHINGLABEL 0x10000000 |
|
|
|
#define DAS_PREC_SHIFT 20 |
|
|
|
#define DAS_SCOPE_SHIFT 16 |
|
|
|
#define DAS_PREFIX_SHIFT 8 |
|
|
|
#define DAS_ORDER_SHIFT 0 |
|
|
|
|
|
|
|
static int addrcmp(const void *_a, const void *_b) |
|
|
|
{ |
|
|
|
const struct address *a = _a, *b = _b; |
|
|
|
return b->sortkey - a->sortkey; |
|
|
|
} |
|
|
|
|
|
|
|
int __lookup_name(struct address buf[static MAXADDRS], char canon[static 256], const char *name, int family, int flags) |
|
|
|
{ |
|
|
|
int cnt = 0, i, j; |
|
|
|
@ -198,5 +274,64 @@ int __lookup_name(struct address buf[static MAXADDRS], char canon[static 256], c |
|
|
|
} |
|
|
|
} |
|
|
|
|
|
|
|
/* No further processing is needed if there are fewer than 2
|
|
|
|
* results or if there are only IPv4 results. */ |
|
|
|
if (cnt<2 || family==AF_INET) return cnt; |
|
|
|
for (i=0; buf[i].family == AF_INET; i++) |
|
|
|
if (i==cnt) return cnt; |
|
|
|
|
|
|
|
int cs; |
|
|
|
pthread_setcancelstate(PTHREAD_CANCEL_DISABLE, &cs); |
|
|
|
|
|
|
|
/* The following implements a subset of RFC 3484/6724 destination
|
|
|
|
* address selection by generating a single 31-bit sort key for |
|
|
|
* each address. Rules 3, 4, and 7 are omitted for having |
|
|
|
* excessive runtime and code size cost and dubious benefit. |
|
|
|
* So far the label/precedence table cannot be customized. */ |
|
|
|
for (i=0; i<cnt; i++) { |
|
|
|
int key = 0; |
|
|
|
struct sockaddr_in6 sa, da = { |
|
|
|
.sin6_family = AF_INET6, |
|
|
|
.sin6_scope_id = buf[i].scopeid, |
|
|
|
.sin6_port = 65535 |
|
|
|
}; |
|
|
|
if (buf[i].family == AF_INET6) { |
|
|
|
memcpy(da.sin6_addr.s6_addr, buf[i].addr, 16); |
|
|
|
} else { |
|
|
|
memcpy(da.sin6_addr.s6_addr, |
|
|
|
"\0\0\0\0\0\0\0\0\0\0\xff\xff", 12); |
|
|
|
memcpy(da.sin6_addr.s6_addr+12, buf[i].addr, 4); |
|
|
|
} |
|
|
|
const struct policy *dpolicy = policyof(&da.sin6_addr); |
|
|
|
int dscope = scopeof(&da.sin6_addr); |
|
|
|
int dlabel = dpolicy->label; |
|
|
|
int dprec = dpolicy->prec; |
|
|
|
int prefixlen = 0; |
|
|
|
int fd = socket(AF_INET6, SOCK_DGRAM|SOCK_CLOEXEC, IPPROTO_UDP); |
|
|
|
if (fd >= 0) { |
|
|
|
if (!connect(fd, (void *)&da, sizeof da)) { |
|
|
|
key |= DAS_USABLE; |
|
|
|
if (!getsockname(fd, (void *)&sa, |
|
|
|
&(socklen_t){sizeof sa})) { |
|
|
|
if (dscope == scopeof(&sa.sin6_addr)) |
|
|
|
key |= DAS_MATCHINGSCOPE; |
|
|
|
if (dlabel == labelof(&sa.sin6_addr)) |
|
|
|
key |= DAS_MATCHINGLABEL; |
|
|
|
prefixlen = prefixmatch(&sa.sin6_addr, |
|
|
|
&da.sin6_addr); |
|
|
|
} |
|
|
|
} |
|
|
|
close(fd); |
|
|
|
} |
|
|
|
key |= dprec << DAS_PREC_SHIFT; |
|
|
|
key |= (15-dscope) << DAS_SCOPE_SHIFT; |
|
|
|
key |= prefixlen << DAS_PREFIX_SHIFT; |
|
|
|
key |= (MAXADDRS-i) << DAS_ORDER_SHIFT; |
|
|
|
buf[i].sortkey = key; |
|
|
|
} |
|
|
|
qsort(buf, cnt, sizeof *buf, addrcmp); |
|
|
|
|
|
|
|
pthread_setcancelstate(cs, 0); |
|
|
|
|
|
|
|
return cnt; |
|
|
|
} |
|
|
|
|
Rich Felker
12 years ago