static void show_cert(struct tls_cert *cert, char *buf, size_t buflen) { if (!cert) { snprintf(buf, buflen, "no cert"); return; } show_append(buf, buflen, "Subject: ", ""); show_dname(buf, buflen, &cert->subject); show_append(buf, buflen, " Issuer: ", ""); show_dname(buf, buflen, &cert->issuer); show_append(buf, buflen, " Serial: ", cert->serial); show_append(buf, buflen, " NotBefore: ", isotime(NULL, 0, cert->not_before)); show_append(buf, buflen, " NotAfter: ", isotime(NULL, 0, cert->not_after)); }
static void *on_srv_answer(ruli_res_query_t *qry, void *arg) { ruli_srv_t *srv_qry = (ruli_srv_t *) arg; int result; assert(qry->answer_code != RULI_SRV_CODE_VOID); /* * Underlying query failed? */ if (qry->answer_code == RULI_CODE_TIMEOUT) return query_done(srv_qry, RULI_SRV_CODE_ALARM); if (qry->answer_code) return query_done(srv_qry, RULI_SRV_CODE_QUERY_FAILED); #ifdef RULI_SRV_DEBUG { ruli_msg_header_t msg_hdr; msg_hdr = qry->answer_header; fprintf(stderr, "DEBUG: on_srv_answer(): underlying query succeded: " "id=%d rcode=%d qd=%d an=%d ns=%d ar=%d " "answer_buf_size=%d answer_msg_len=%d\n", msg_hdr.id, msg_hdr.rcode, msg_hdr.qdcount, msg_hdr.ancount, msg_hdr.nscount, msg_hdr.arcount, qry->answer_buf_size, qry->answer_msg_len); } #endif /* * Parse answer for SRV records */ assert(sizeof(ruli_uint8_t) == sizeof(char)); result = ruli_parse_message(&srv_qry->parse, &qry->answer_header, (ruli_uint8_t *) qry->answer_buf, qry->answer_msg_len); if (result) return query_done(srv_qry, RULI_SRV_CODE_PARSE_FAILED); /* * Check reply code and answer count */ if ((qry->answer_header.rcode != RULI_RCODE_NOERROR) || (qry->answer_header.ancount < 1)) { #ifdef RULI_SRV_DEBUG fprintf(stderr, "DEBUG: on_srv_answer(): SRV query failed\n"); #endif /* Fallback query */ return srv_qry->fallback(srv_qry); } /* * NOERROR && (ancount > 0) */ assert(qry->answer_header.rcode == RULI_RCODE_NOERROR); assert(qry->answer_header.ancount > 0); /* * Processing of SRV answer: * * Step 1/6: One SRV RR with target == '.' ? * Step 2/6: Parse rdata portion of all SRV RRs * Step 3/6: Sort SRV RRs by priority * Step 4/6: Select SRV RRs by random weighted order * Step 5/6: Build list of srv answers by inspecting additional section * Step 6/6: Launch queries to fill missing addresses, if any */ /* * Step 1/6: One SRV RR with target == '.' ? */ if (qry->answer_header.ancount == 1) { ruli_list_t *an_list = &srv_qry->parse.answer_list; if (ruli_list_size(an_list) == 1) { ruli_rr_t *rr = (ruli_rr_t *) ruli_list_top(an_list); if (rr->qclass == RULI_RR_CLASS_IN) { if (rr->type == RULI_RR_TYPE_SRV) { ruli_srv_rdata_t srv_rdata; if (ruli_parse_rr_srv(&srv_rdata, rr->rdata, rr->rdlength)) return query_done(srv_qry, RULI_SRV_CODE_PARSE_FAILED); /* target == '.' ? */ if (*srv_rdata.target == '\0') { /* Sanity test */ if (srv_rdata.target_len != 1) return query_done(srv_qry, RULI_SRV_CODE_PARSE_FAILED); /* * ruli_srv.c: target=='.': Owner match? */ assert(sizeof(ruli_uint8_t) == sizeof(char)); #ifdef RULI_SRV_DEBUG show_dname("on_srv_answer(): target=='.': qdomain", (const char *) qry->full_dname, qry->full_dname_len); #endif if (ruli_dname_compare(rr->owner, (ruli_uint8_t *) qry->answer_buf, qry->answer_msg_len, (ruli_uint8_t *) qry->full_dname, qry->full_dname_len)) return query_done(srv_qry, RULI_SRV_CODE_PARSE_FAILED); return query_done(srv_qry, RULI_SRV_CODE_UNAVAILABLE); } } } } } /* One SRV RR with target == '.' ? */ /* * Step 2/6: Parse rdata portion of all SRV RRs */ { ruli_list_t *an_list = &srv_qry->parse.answer_list; int an_list_size = ruli_list_size(an_list); int i; for (i = 0; i < an_list_size; ++i) { ruli_rr_t *rr = (ruli_rr_t *) ruli_list_get(an_list, i); ruli_srv_rdata_t *srv_rdata; if (rr->qclass != RULI_RR_CLASS_IN) continue; if (rr->type != RULI_RR_TYPE_SRV) continue; #ifdef RULI_SRV_DEBUG fprintf(stderr, "DEBUG: on_srv_answer(): considering SRV-RR owner: %d of %d\n", (i + 1), an_list_size); #endif if (ruli_dname_compare(rr->owner, (ruli_uint8_t *) qry->answer_buf, qry->answer_msg_len, (ruli_uint8_t *) qry->full_dname, qry->full_dname_len)) return query_done(srv_qry, RULI_SRV_CODE_PARSE_FAILED); #ifdef RULI_SRV_DEBUG fprintf(stderr, "DEBUG: on_srv_answer(): SRV-RR owner OK: %d of %d\n", (i + 1), an_list_size); #endif srv_rdata = (ruli_srv_rdata_t *) ruli_malloc(sizeof(ruli_srv_rdata_t)); if (!srv_rdata) return query_done(srv_qry, RULI_SRV_CODE_MALLOC); if (ruli_list_push(&srv_qry->rr_srv_list, srv_rdata)) { ruli_free(srv_rdata); return query_done(srv_qry, RULI_SRV_CODE_LIST); } if (ruli_parse_rr_srv(srv_rdata, rr->rdata, rr->rdlength)) return query_done(srv_qry, RULI_SRV_CODE_PARSE_FAILED); } } #ifdef RULI_SRV_DEBUG { int i; ruli_list_t *list = &srv_qry->rr_srv_list; fflush(stdout); for (i = 0; i < ruli_list_size(list); ++i) { ruli_srv_rdata_t *srv_rdata = \ (ruli_srv_rdata_t *) ruli_list_get(list, i); fflush(stderr); fprintf(stderr, "DEBUG: on_srv_answer(): SRV RR: " "priority=%d weight=%d port=%d\n", srv_rdata->priority, srv_rdata->weight, srv_rdata->port); fflush(stderr); } } #endif /* * Step 3/6: Sort SRV RRs by priority */ { ruli_list_t *src_list = &srv_qry->rr_srv_list; int src_list_size = ruli_list_size(src_list); int j; /* * Handle every RR based on priority (higher priority first) */ for (j = 0; j < src_list_size; ++j) { ruli_srv_rdata_t *srv_rdata = \ (ruli_srv_rdata_t *) ruli_list_get(src_list, j); ruli_list_t *dst_list = &srv_qry->pri_srv_list; int dst_list_size = ruli_list_size(dst_list); int i; assert(srv_rdata); /* * Find a lower-or-equal priority */ for (i = 0; i < dst_list_size; ++i) { ruli_srv_rdata_t *rd = (ruli_srv_rdata_t *) ruli_list_get(dst_list, i); if (srv_rdata->priority < rd->priority) continue; /* * For this priority, put 0-weight-elements at tail */ if (srv_rdata->weight == 0) { /* * Find begin of next priority and insert there */ for (; i < dst_list_size; ++i) { ruli_srv_rdata_t *s_rd = \ (ruli_srv_rdata_t *) ruli_list_get(dst_list, i); if (srv_rdata->priority != s_rd->priority) break; } /* for */ if (i == dst_list_size) break; /* Insert at tail (of this priority) */ } if (ruli_list_insert_at(dst_list, i, srv_rdata)) return query_done(srv_qry, RULI_SRV_CODE_LIST); srv_rdata = 0; /* mark as handled */ break; } /* for */ /* If not handled yet, insert at tail */ if (srv_rdata) if (ruli_list_push(dst_list, srv_rdata)) return query_done(srv_qry, RULI_SRV_CODE_LIST); } /* while */ } #ifdef RULI_SRV_DEBUG { int i; ruli_list_t *list = &srv_qry->pri_srv_list; fflush(stdout); for (i = 0; i < ruli_list_size(list); ++i) { ruli_srv_rdata_t *srv_rdata = \ (ruli_srv_rdata_t *) ruli_list_get(list, i); fflush(stderr); fprintf(stderr, "DEBUG: on_srv_answer(): priority SRV RR: " "priority=%d weight=%d port=%d\n", srv_rdata->priority, srv_rdata->weight, srv_rdata->port); fflush(stderr); } } #endif /* * Step 4/6: Select SRV RRs by random weighted order */ { ruli_list_t *src_list = &srv_qry->pri_srv_list; ruli_list_t *dst_list = &srv_qry->wei_srv_list; /* * Iterate over every priority */ for (;;) { int src_list_size = ruli_list_size(src_list); ruli_uint16_t curr_priority; int priority_weight_sum; int curr; int i; int rnd; int run_sum; ruli_srv_rdata_t *srv_rd; if (src_list_size < 1) break; /* * Get current priority */ curr = src_list_size - 1; srv_rd = (ruli_srv_rdata_t *) ruli_list_get(src_list, curr); curr_priority = srv_rd->priority; /* * Accumulate weight sum for priority */ priority_weight_sum = 0; for (i = curr; i >= 0; --i) { ruli_srv_rdata_t *rd = (ruli_srv_rdata_t *) ruli_list_get(src_list, i); if (curr_priority != rd->priority) break; priority_weight_sum += rd->weight; } /* for */ /* * Pick random number: 0..priority_weight_sum */ rnd = ruli_rand_next(&srv_qry->srv_resolver->rand_ctx, 0, priority_weight_sum); /* * Select least running sum */ run_sum = 0; for (i = curr; ; --i) { ruli_srv_rdata_t *rd; assert(i >= 0); rd = (ruli_srv_rdata_t *) ruli_list_get(src_list, i); run_sum += rd->weight; if (run_sum < rnd) continue; /* * Move from src_list to dst_list * (Both lists are only referential) */ ruli_list_shift_at(src_list, i); if (ruli_list_push(dst_list, rd)) return query_done(srv_qry, RULI_SRV_CODE_LIST); break; } /* for */ } /* for */ } #ifdef RULI_SRV_DEBUG { int i; ruli_list_t *list = &srv_qry->wei_srv_list; fflush(stdout); for (i = 0; i < ruli_list_size(list); ++i) { ruli_srv_rdata_t *srv_rdata = \ (ruli_srv_rdata_t *) ruli_list_get(list, i); fflush(stderr); fprintf(stderr, "DEBUG: on_srv_answer(): weight SRV RR: " "priority=%d weight=%d port=%d\n", srv_rdata->priority, srv_rdata->weight, srv_rdata->port); fflush(stderr); } } #endif /* * Step 5/6: Build list of srv answers by inspecting additional section */ { ruli_list_t *src_list = &srv_qry->wei_srv_list; ruli_list_t *dst_list = &srv_qry->answer_srv_list; int src_list_size = ruli_list_size(src_list); int i; assert(ruli_list_size(dst_list) == 0); #ifdef RULI_SRV_DEBUG { fflush(stdout); fprintf(stderr, "DEBUG: %s: %s(): %d: " "BEFORE addit inspection: " "srv_rr_list_size=%d srv_answer_list_size=%d\n", __FILE__, __PRETTY_FUNCTION__, __LINE__, src_list_size, ruli_list_size(&srv_qry->answer_srv_list)); fflush(stderr); } #endif /* * Build answer records inspecting additional section */ /* Scan all targets */ for (i = 0; i < src_list_size; ++i) { ruli_srv_rdata_t *rd = (ruli_srv_rdata_t *) ruli_list_get(src_list, i); ruli_srv_entry_t *srv_entry; /* Create SRV entry and append it to list */ srv_entry =_ruli_srv_list_new_entry(dst_list, (const char *) rd->target, rd->target_len, rd->priority, rd->weight, rd->port); if (!srv_entry) return query_done(srv_qry, RULI_SRV_CODE_MALLOC); /* * Look up target address(es) in additional section */ { ruli_list_t *ad_list = &srv_qry->parse.additional_list; int ad_list_size = ruli_list_size(ad_list); int j; /* Scan additional section */ for (j = 0; j < ad_list_size; ++j) { ruli_rr_t *rr = (ruli_rr_t *) ruli_list_get(ad_list, j); ruli_addr_t *addr; if (rr->qclass != RULI_RR_CLASS_IN) continue; if (!ruli_rr_type_is_address(srv_qry->srv_options, rr->type)) continue; /* Compare SRV target against additional record owner */ if (ruli_dname_compare(rr->owner, (ruli_uint8_t *) qry->answer_buf, qry->answer_msg_len, (ruli_uint8_t *) srv_entry->target, srv_entry->target_len)) continue; /* Allocate space for address */ addr = (ruli_addr_t *) ruli_malloc(sizeof(*addr)); if (!addr) return query_done(srv_qry, RULI_SRV_CODE_MALLOC); /* Save space */ if (ruli_list_push(&srv_entry->addr_list, addr)) { ruli_free(addr); return query_done(srv_qry, RULI_SRV_CODE_LIST); } /* Write address into space */ ruli_parse_addr_rr(addr, rr, srv_qry->srv_options); } /* for */ } } /* for */ #ifdef RULI_SRV_DEBUG { fflush(stdout); fprintf(stderr, "DEBUG: %s: %s(): %d: " "AFTER addit inspection: " "srv_rr_list_size=%d srv_answer_list_size=%d\n", __FILE__, __PRETTY_FUNCTION__, __LINE__, src_list_size, ruli_list_size(&srv_qry->answer_srv_list)); fflush(stderr); } #endif assert(ruli_list_size(dst_list) == src_list_size); } /* Build list of srv answers by inspecting additional section */ #ifdef RULI_SRV_DEBUG { int i; ruli_list_t *list = &srv_qry->answer_srv_list; fflush(stdout); for (i = 0; i < ruli_list_size(list); ++i) { ruli_srv_entry_t *srv_entry = \ (ruli_srv_entry_t *) ruli_list_get(list, i); fprintf(stderr, "DEBUG: on_srv_answer(): answer SRV RR: " "priority=%d weight=%d port=%d\n", srv_entry->priority, srv_entry->weight, srv_entry->port); } fflush(stderr); } #endif /* * Step 6/6: Launch queries to fill missing addresses, if any */ assert(srv_qry->under.walk_index == -1); srv_qry->under.walk_index = 0; return _ruli_srv_answer_walk(srv_qry); }
int _ruli_srv_query_submit(ruli_srv_t *srv_qry, void *(*fallback_call)(ruli_srv_t *)) { ruli_res_query_t *qry = &srv_qry->query; int result; char *qdomain; int qdomain_len; assert(srv_qry); assert(fallback_call); /* can't disable all address families */ assert( !((srv_qry->srv_options & RULI_RES_OPT_SRV_NOINET) && (srv_qry->srv_options & RULI_RES_OPT_SRV_NOINET6)) ); srv_qry->fallback = fallback_call; /* * Concat srv_service + srv_domain into qdomain */ { int service_len = srv_qry->srv_service_len; int concat_len; --service_len; assert(srv_qry->srv_service[service_len] == '\0'); qdomain_len = service_len + srv_qry->srv_domain_len; qdomain = (char *) ruli_malloc(qdomain_len); if (!qdomain) return RULI_SRV_MALLOC; if (ruli_dname_concat((ruli_uint8_t *) qdomain, qdomain_len, &concat_len, (ruli_uint8_t *) srv_qry->srv_service, srv_qry->srv_service_len, (ruli_uint8_t *) srv_qry->srv_domain, srv_qry->srv_domain_len)) { ruli_free(qdomain); return RULI_SRV_CONCAT; } assert(qdomain_len == concat_len); srv_qry->qdomain = qdomain; srv_qry->qdomain_len = qdomain_len; #ifdef RULI_SRV_DEBUG { show_dname("ruli_srv_query_submit(): service", srv_qry->srv_service, srv_qry->srv_service_len); show_dname("ruli_srv_query_submit(): domain", srv_qry->srv_domain, srv_qry->srv_domain_len); show_dname("ruli_srv_query_submit(): qdomain", qdomain, qdomain_len); } #endif } /* * Initialize members */ /* stores data */ if (ruli_list_new(&srv_qry->rr_srv_list)) { ruli_free(srv_qry->qdomain); return RULI_SRV_CODE_LIST; } /* stores only references */ if (ruli_list_new(&srv_qry->pri_srv_list)) { ruli_free(srv_qry->qdomain); ruli_list_delete(&srv_qry->rr_srv_list); return RULI_SRV_CODE_LIST; } /* stores only references */ if (ruli_list_new(&srv_qry->wei_srv_list)) { ruli_free(srv_qry->qdomain); ruli_list_delete(&srv_qry->rr_srv_list); ruli_list_delete(&srv_qry->pri_srv_list); return RULI_SRV_CODE_LIST; } if (ruli_list_new(&srv_qry->answer_srv_list)) { ruli_free(srv_qry->qdomain); ruli_list_delete(&srv_qry->rr_srv_list); ruli_list_delete(&srv_qry->pri_srv_list); ruli_list_delete(&srv_qry->wei_srv_list); return RULI_SRV_CODE_LIST; } if (ruli_parse_new(&srv_qry->parse)) { ruli_free(srv_qry->qdomain); ruli_list_delete(&srv_qry->rr_srv_list); ruli_list_delete(&srv_qry->pri_srv_list); ruli_list_delete(&srv_qry->wei_srv_list); ruli_list_delete(&srv_qry->answer_srv_list); return RULI_SRV_CODE_LIST; } srv_qry->answer_code = RULI_SRV_CODE_VOID; srv_qry->last_rcode = RULI_RCODE_VOID; srv_qry->under.walk_index = -1; /* * Define callback parameters */ qry->q_on_answer = on_srv_answer; qry->q_on_answer_arg = srv_qry; /* * Pass on query parameters */ qry->q_domain = qdomain; qry->q_domain_len = qdomain_len; qry->q_class = RULI_RR_CLASS_IN; qry->q_type = RULI_RR_TYPE_SRV; qry->q_options = srv_qry->srv_options; /* * If the RULI port is explicitely defined in the URI, * the user wants only address records. * * Skip SRV query and fetch addresses instead. */ if (srv_qry->srv_options & RULI_RES_OPT_SRV_URI_PORT) { srv_qry->query.resolver = 0; { void *oop_result = _ruli_srv_answer_fallback_addr(srv_qry); if (oop_result != OOP_CONTINUE) return RULI_SRV_CODE_QUERY_FAILED; } return RULI_SRV_OK; } /* * Submit plain query to underlying resolver */ result = ruli_res_query_submit(srv_qry->srv_resolver, qry); if (result) { ruli_srv_query_delete(srv_qry); return RULI_SRV_QRY_SUBMIT; } return RULI_SRV_OK; }