xref: /freebsd/crypto/openssh/canohost.c (revision 535af610) 
1535af610SEd Maste /* $OpenBSD: canohost.c,v 1.77 2023/03/31 04:42:29 dtucker Exp $ */
2511b41d2SMark Murray /*
3511b41d2SMark Murray  * Author: Tatu Ylonen <ylo@cs.hut.fi>
4511b41d2SMark Murray  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5511b41d2SMark Murray  *                    All rights reserved
6511b41d2SMark Murray  * Functions for returning the canonical host name of the remote site.
7511b41d2SMark Murray  *
8c2d3a559SKris Kennaway  * As far as I am concerned, the code I have written for this software
9c2d3a559SKris Kennaway  * can be used freely for any purpose.  Any derived versions of this
10c2d3a559SKris Kennaway  * software must be clearly marked as such, and if the derived work is
11c2d3a559SKris Kennaway  * incompatible with the protocol description in the RFC file, it must be
12c2d3a559SKris Kennaway  * called by a name other than "ssh" or "Secure Shell".
13511b41d2SMark Murray  */
14511b41d2SMark Murray 
15511b41d2SMark Murray #include "includes.h"
16511b41d2SMark Murray 
17333ee039SDag-Erling Smørgrav #include <sys/types.h>
18333ee039SDag-Erling Smørgrav #include <sys/socket.h>
19a0ee8cc6SDag-Erling Smørgrav #include <sys/un.h>
20333ee039SDag-Erling Smørgrav 
21333ee039SDag-Erling Smørgrav #include <netinet/in.h>
22333ee039SDag-Erling Smørgrav #include <arpa/inet.h>
23333ee039SDag-Erling Smørgrav 
24333ee039SDag-Erling Smørgrav #include <errno.h>
25333ee039SDag-Erling Smørgrav #include <netdb.h>
26333ee039SDag-Erling Smørgrav #include <stdio.h>
27333ee039SDag-Erling Smørgrav #include <stdlib.h>
28333ee039SDag-Erling Smørgrav #include <string.h>
29333ee039SDag-Erling Smørgrav #include <stdarg.h>
30b15c8340SDag-Erling Smørgrav #include <unistd.h>
31333ee039SDag-Erling Smørgrav 
32511b41d2SMark Murray #include "xmalloc.h"
33333ee039SDag-Erling Smørgrav #include "packet.h"
34ca3176e7SBrian Feldman #include "log.h"
35ca3176e7SBrian Feldman #include "canohost.h"
36d4af9e69SDag-Erling Smørgrav #include "misc.h"
37ca3176e7SBrian Feldman 
38aa49c926SDag-Erling Smørgrav void
ipv64_normalise_mapped(struct sockaddr_storage * addr,socklen_t * len)391ec0d754SDag-Erling Smørgrav ipv64_normalise_mapped(struct sockaddr_storage *addr, socklen_t *len)
401ec0d754SDag-Erling Smørgrav {
411ec0d754SDag-Erling Smørgrav 	struct sockaddr_in6 *a6 = (struct sockaddr_in6 *)addr;
421ec0d754SDag-Erling Smørgrav 	struct sockaddr_in *a4 = (struct sockaddr_in *)addr;
431ec0d754SDag-Erling Smørgrav 	struct in_addr inaddr;
441ec0d754SDag-Erling Smørgrav 	u_int16_t port;
451ec0d754SDag-Erling Smørgrav 
461ec0d754SDag-Erling Smørgrav 	if (addr->ss_family != AF_INET6 ||
471ec0d754SDag-Erling Smørgrav 	    !IN6_IS_ADDR_V4MAPPED(&a6->sin6_addr))
481ec0d754SDag-Erling Smørgrav 		return;
491ec0d754SDag-Erling Smørgrav 
501ec0d754SDag-Erling Smørgrav 	debug3("Normalising mapped IPv4 in IPv6 address");
511ec0d754SDag-Erling Smørgrav 
521ec0d754SDag-Erling Smørgrav 	memcpy(&inaddr, ((char *)&a6->sin6_addr) + 12, sizeof(inaddr));
531ec0d754SDag-Erling Smørgrav 	port = a6->sin6_port;
541ec0d754SDag-Erling Smørgrav 
55b83788ffSDag-Erling Smørgrav 	memset(a4, 0, sizeof(*a4));
561ec0d754SDag-Erling Smørgrav 
571ec0d754SDag-Erling Smørgrav 	a4->sin_family = AF_INET;
581ec0d754SDag-Erling Smørgrav 	*len = sizeof(*a4);
591ec0d754SDag-Erling Smørgrav 	memcpy(&a4->sin_addr, &inaddr, sizeof(inaddr));
601ec0d754SDag-Erling Smørgrav 	a4->sin_port = port;
611ec0d754SDag-Erling Smørgrav }
621ec0d754SDag-Erling Smørgrav 
63511b41d2SMark Murray /*
64e73e9afaSDag-Erling Smørgrav  * Returns the local/remote IP-address/hostname of socket as a string.
65e73e9afaSDag-Erling Smørgrav  * The returned string must be freed.
66ca3176e7SBrian Feldman  */
67af12a3e7SDag-Erling Smørgrav static char *
get_socket_address(int sock,int remote,int flags)6821e764dfSDag-Erling Smørgrav get_socket_address(int sock, int remote, int flags)
69ca3176e7SBrian Feldman {
70ca3176e7SBrian Feldman 	struct sockaddr_storage addr;
71ca3176e7SBrian Feldman 	socklen_t addrlen;
72ca3176e7SBrian Feldman 	char ntop[NI_MAXHOST];
73aa49c926SDag-Erling Smørgrav 	int r;
74ca3176e7SBrian Feldman 
754d3fc8b0SEd Maste 	if (sock < 0)
764d3fc8b0SEd Maste 		return NULL;
774d3fc8b0SEd Maste 
78ca3176e7SBrian Feldman 	/* Get IP address of client. */
79ca3176e7SBrian Feldman 	addrlen = sizeof(addr);
80ca3176e7SBrian Feldman 	memset(&addr, 0, sizeof(addr));
81ca3176e7SBrian Feldman 
82ca3176e7SBrian Feldman 	if (remote) {
83076ad2f8SDag-Erling Smørgrav 		if (getpeername(sock, (struct sockaddr *)&addr, &addrlen) != 0)
84ca3176e7SBrian Feldman 			return NULL;
85ca3176e7SBrian Feldman 	} else {
86076ad2f8SDag-Erling Smørgrav 		if (getsockname(sock, (struct sockaddr *)&addr, &addrlen) != 0)
87ca3176e7SBrian Feldman 			return NULL;
88ca3176e7SBrian Feldman 	}
89e73e9afaSDag-Erling Smørgrav 
90e73e9afaSDag-Erling Smørgrav 	/* Work around Linux IPv6 weirdness */
91bc5531deSDag-Erling Smørgrav 	if (addr.ss_family == AF_INET6) {
92e73e9afaSDag-Erling Smørgrav 		addrlen = sizeof(struct sockaddr_in6);
93bc5531deSDag-Erling Smørgrav 		ipv64_normalise_mapped(&addr, &addrlen);
94a0ee8cc6SDag-Erling Smørgrav 	}
95a0ee8cc6SDag-Erling Smørgrav 
96bc5531deSDag-Erling Smørgrav 	switch (addr.ss_family) {
97bc5531deSDag-Erling Smørgrav 	case AF_INET:
98bc5531deSDag-Erling Smørgrav 	case AF_INET6:
99ca3176e7SBrian Feldman 		/* Get the address in ascii. */
100aa49c926SDag-Erling Smørgrav 		if ((r = getnameinfo((struct sockaddr *)&addr, addrlen, ntop,
101aa49c926SDag-Erling Smørgrav 		    sizeof(ntop), NULL, 0, flags)) != 0) {
10219261079SEd Maste 			error_f("getnameinfo %d failed: %s",
103bc5531deSDag-Erling Smørgrav 			    flags, ssh_gai_strerror(r));
104ca3176e7SBrian Feldman 			return NULL;
105ca3176e7SBrian Feldman 		}
106ca3176e7SBrian Feldman 		return xstrdup(ntop);
107bc5531deSDag-Erling Smørgrav 	case AF_UNIX:
108bc5531deSDag-Erling Smørgrav 		/* Get the Unix domain socket path. */
109bc5531deSDag-Erling Smørgrav 		return xstrdup(((struct sockaddr_un *)&addr)->sun_path);
110bc5531deSDag-Erling Smørgrav 	default:
111bc5531deSDag-Erling Smørgrav 		/* We can't look up remote Unix domain sockets. */
112bc5531deSDag-Erling Smørgrav 		return NULL;
113bc5531deSDag-Erling Smørgrav 	}
114ca3176e7SBrian Feldman }
115ca3176e7SBrian Feldman 
116ca3176e7SBrian Feldman char *
get_peer_ipaddr(int sock)11721e764dfSDag-Erling Smørgrav get_peer_ipaddr(int sock)
118ca3176e7SBrian Feldman {
119f388f5efSDag-Erling Smørgrav 	char *p;
120f388f5efSDag-Erling Smørgrav 
12121e764dfSDag-Erling Smørgrav 	if ((p = get_socket_address(sock, 1, NI_NUMERICHOST)) != NULL)
122f388f5efSDag-Erling Smørgrav 		return p;
123f388f5efSDag-Erling Smørgrav 	return xstrdup("UNKNOWN");
124ca3176e7SBrian Feldman }
125ca3176e7SBrian Feldman 
126ca3176e7SBrian Feldman char *
get_local_ipaddr(int sock)12721e764dfSDag-Erling Smørgrav get_local_ipaddr(int sock)
128ca3176e7SBrian Feldman {
129f388f5efSDag-Erling Smørgrav 	char *p;
130f388f5efSDag-Erling Smørgrav 
13121e764dfSDag-Erling Smørgrav 	if ((p = get_socket_address(sock, 0, NI_NUMERICHOST)) != NULL)
132f388f5efSDag-Erling Smørgrav 		return p;
133f388f5efSDag-Erling Smørgrav 	return xstrdup("UNKNOWN");
134ca3176e7SBrian Feldman }
135ca3176e7SBrian Feldman 
136ca3176e7SBrian Feldman char *
get_local_name(int fd)137b15c8340SDag-Erling Smørgrav get_local_name(int fd)
138ca3176e7SBrian Feldman {
139b15c8340SDag-Erling Smørgrav 	char *host, myname[NI_MAXHOST];
140b15c8340SDag-Erling Smørgrav 
141b15c8340SDag-Erling Smørgrav 	/* Assume we were passed a socket */
142b15c8340SDag-Erling Smørgrav 	if ((host = get_socket_address(fd, 0, NI_NAMEREQD)) != NULL)
143b15c8340SDag-Erling Smørgrav 		return host;
144b15c8340SDag-Erling Smørgrav 
145b15c8340SDag-Erling Smørgrav 	/* Handle the case where we were passed a pipe */
146b15c8340SDag-Erling Smørgrav 	if (gethostname(myname, sizeof(myname)) == -1) {
14719261079SEd Maste 		verbose_f("gethostname: %s", strerror(errno));
148076ad2f8SDag-Erling Smørgrav 		host = xstrdup("UNKNOWN");
149b15c8340SDag-Erling Smørgrav 	} else {
150b15c8340SDag-Erling Smørgrav 		host = xstrdup(myname);
151b15c8340SDag-Erling Smørgrav 	}
152b15c8340SDag-Erling Smørgrav 
153b15c8340SDag-Erling Smørgrav 	return host;
154ca3176e7SBrian Feldman }
155ca3176e7SBrian Feldman 
156511b41d2SMark Murray /* Returns the local/remote port for the socket. */
157511b41d2SMark Murray 
158076ad2f8SDag-Erling Smørgrav static int
get_sock_port(int sock,int local)159511b41d2SMark Murray get_sock_port(int sock, int local)
160511b41d2SMark Murray {
161511b41d2SMark Murray 	struct sockaddr_storage from;
162511b41d2SMark Murray 	socklen_t fromlen;
163511b41d2SMark Murray 	char strport[NI_MAXSERV];
164aa49c926SDag-Erling Smørgrav 	int r;
165511b41d2SMark Murray 
166535af610SEd Maste 	if (sock < 0)
167535af610SEd Maste 		return -1;
168511b41d2SMark Murray 	/* Get IP address of client. */
169511b41d2SMark Murray 	fromlen = sizeof(from);
170511b41d2SMark Murray 	memset(&from, 0, sizeof(from));
171511b41d2SMark Murray 	if (local) {
17219261079SEd Maste 		if (getsockname(sock, (struct sockaddr *)&from, &fromlen) == -1) {
173511b41d2SMark Murray 			error("getsockname failed: %.100s", strerror(errno));
174511b41d2SMark Murray 			return 0;
175511b41d2SMark Murray 		}
176511b41d2SMark Murray 	} else {
17719261079SEd Maste 		if (getpeername(sock, (struct sockaddr *)&from, &fromlen) == -1) {
178511b41d2SMark Murray 			debug("getpeername failed: %.100s", strerror(errno));
179d4ecd108SDag-Erling Smørgrav 			return -1;
180511b41d2SMark Murray 		}
181511b41d2SMark Murray 	}
182e73e9afaSDag-Erling Smørgrav 
183e73e9afaSDag-Erling Smørgrav 	/* Work around Linux IPv6 weirdness */
184e73e9afaSDag-Erling Smørgrav 	if (from.ss_family == AF_INET6)
185e73e9afaSDag-Erling Smørgrav 		fromlen = sizeof(struct sockaddr_in6);
186e73e9afaSDag-Erling Smørgrav 
187bc5531deSDag-Erling Smørgrav 	/* Non-inet sockets don't have a port number. */
188bc5531deSDag-Erling Smørgrav 	if (from.ss_family != AF_INET && from.ss_family != AF_INET6)
189a0ee8cc6SDag-Erling Smørgrav 		return 0;
190a0ee8cc6SDag-Erling Smørgrav 
191511b41d2SMark Murray 	/* Return port number. */
192aa49c926SDag-Erling Smørgrav 	if ((r = getnameinfo((struct sockaddr *)&from, fromlen, NULL, 0,
193aa49c926SDag-Erling Smørgrav 	    strport, sizeof(strport), NI_NUMERICSERV)) != 0)
19419261079SEd Maste 		fatal_f("getnameinfo NI_NUMERICSERV failed: %s",
195d4af9e69SDag-Erling Smørgrav 		    ssh_gai_strerror(r));
196511b41d2SMark Murray 	return atoi(strport);
197511b41d2SMark Murray }
198511b41d2SMark Murray 
199511b41d2SMark Murray int
get_peer_port(int sock)200511b41d2SMark Murray get_peer_port(int sock)
201511b41d2SMark Murray {
202511b41d2SMark Murray 	return get_sock_port(sock, 0);
203511b41d2SMark Murray }
204511b41d2SMark Murray 
205511b41d2SMark Murray int
get_local_port(int sock)206076ad2f8SDag-Erling Smørgrav get_local_port(int sock)
207511b41d2SMark Murray {
208076ad2f8SDag-Erling Smørgrav 	return get_sock_port(sock, 1);
209511b41d2SMark Murray }
210