1*a629fefcSchristos /* $NetBSD: canohost.c,v 1.16 2023/10/25 20:19:57 christos Exp $ */
2*a629fefcSchristos /* $OpenBSD: canohost.c,v 1.77 2023/03/31 04:42:29 dtucker Exp $ */
3*a629fefcSchristos
4ca32bd8dSchristos /*
5ca32bd8dSchristos * Author: Tatu Ylonen <ylo@cs.hut.fi>
6ca32bd8dSchristos * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
7ca32bd8dSchristos * All rights reserved
8ca32bd8dSchristos * Functions for returning the canonical host name of the remote site.
9ca32bd8dSchristos *
10ca32bd8dSchristos * As far as I am concerned, the code I have written for this software
11ca32bd8dSchristos * can be used freely for any purpose. Any derived versions of this
12ca32bd8dSchristos * software must be clearly marked as such, and if the derived work is
13ca32bd8dSchristos * incompatible with the protocol description in the RFC file, it must be
14ca32bd8dSchristos * called by a name other than "ssh" or "Secure Shell".
15ca32bd8dSchristos */
16ca32bd8dSchristos
17313c6c94Schristos #include "includes.h"
18*a629fefcSchristos __RCSID("$NetBSD: canohost.c,v 1.16 2023/10/25 20:19:57 christos Exp $");
19ca32bd8dSchristos #include <sys/types.h>
20ca32bd8dSchristos #include <sys/socket.h>
218a4530f9Schristos #include <sys/un.h>
22ca32bd8dSchristos
23ca32bd8dSchristos #include <netinet/in.h>
24ca32bd8dSchristos
25ca32bd8dSchristos #include <errno.h>
26ca32bd8dSchristos #include <netdb.h>
27ca32bd8dSchristos #include <stdio.h>
28ca32bd8dSchristos #include <stdlib.h>
29ca32bd8dSchristos #include <string.h>
30ca32bd8dSchristos #include <stdarg.h>
31313c6c94Schristos #include <time.h>
3234b27b53Sadam #include <unistd.h>
33ca32bd8dSchristos
34ca32bd8dSchristos #include "xmalloc.h"
35ca32bd8dSchristos #include "packet.h"
36ca32bd8dSchristos #include "log.h"
37ca32bd8dSchristos #include "canohost.h"
38ca32bd8dSchristos #include "misc.h"
39ca32bd8dSchristos
40ca32bd8dSchristos /*
41ca32bd8dSchristos * Returns the local/remote IP-address/hostname of socket as a string.
42ca32bd8dSchristos * The returned string must be freed.
43ca32bd8dSchristos */
44ca32bd8dSchristos static char *
get_socket_address(int sock,int remote,int flags)45ca32bd8dSchristos get_socket_address(int sock, int remote, int flags)
46ca32bd8dSchristos {
47ca32bd8dSchristos struct sockaddr_storage addr;
48ca32bd8dSchristos socklen_t addrlen;
49ca32bd8dSchristos char ntop[NI_MAXHOST];
50ca32bd8dSchristos int r;
51ca32bd8dSchristos
52b1066cf3Schristos if (sock < 0)
53b1066cf3Schristos return NULL;
54b1066cf3Schristos
55ca32bd8dSchristos /* Get IP address of client. */
56ca32bd8dSchristos addrlen = sizeof(addr);
57ca32bd8dSchristos memset(&addr, 0, sizeof(addr));
58ca32bd8dSchristos
59ca32bd8dSchristos if (remote) {
605101d403Schristos if (getpeername(sock, (struct sockaddr *)&addr, &addrlen) != 0)
61ca32bd8dSchristos return NULL;
62ca32bd8dSchristos } else {
635101d403Schristos if (getsockname(sock, (struct sockaddr *)&addr, &addrlen) != 0)
64ca32bd8dSchristos return NULL;
65ca32bd8dSchristos }
668a4530f9Schristos
67e4d43b82Schristos switch (addr.ss_family) {
68e4d43b82Schristos case AF_INET:
69e4d43b82Schristos case AF_INET6:
70ca32bd8dSchristos /* Get the address in ascii. */
71ca32bd8dSchristos if ((r = getnameinfo((struct sockaddr *)&addr, addrlen, ntop,
72ca32bd8dSchristos sizeof(ntop), NULL, 0, flags)) != 0) {
7317418e98Schristos error_f("getnameinfo %d failed: %s",
74e4d43b82Schristos flags, ssh_gai_strerror(r));
75ca32bd8dSchristos return NULL;
76ca32bd8dSchristos }
77ca32bd8dSchristos return xstrdup(ntop);
78e4d43b82Schristos case AF_UNIX:
79e4d43b82Schristos /* Get the Unix domain socket path. */
80e4d43b82Schristos return xstrdup(((struct sockaddr_un *)&addr)->sun_path);
81e4d43b82Schristos default:
82e4d43b82Schristos /* We can't look up remote Unix domain sockets. */
83e4d43b82Schristos return NULL;
84e4d43b82Schristos }
85ca32bd8dSchristos }
86ca32bd8dSchristos
87ca32bd8dSchristos char *
get_peer_ipaddr(int sock)88ca32bd8dSchristos get_peer_ipaddr(int sock)
89ca32bd8dSchristos {
90ca32bd8dSchristos char *p;
91ca32bd8dSchristos
92ca32bd8dSchristos if ((p = get_socket_address(sock, 1, NI_NUMERICHOST)) != NULL)
93ca32bd8dSchristos return p;
94ca32bd8dSchristos return xstrdup("UNKNOWN");
95ca32bd8dSchristos }
96ca32bd8dSchristos
97ca32bd8dSchristos char *
get_local_ipaddr(int sock)98ca32bd8dSchristos get_local_ipaddr(int sock)
99ca32bd8dSchristos {
100ca32bd8dSchristos char *p;
101ca32bd8dSchristos
102ca32bd8dSchristos if ((p = get_socket_address(sock, 0, NI_NUMERICHOST)) != NULL)
103ca32bd8dSchristos return p;
104ca32bd8dSchristos return xstrdup("UNKNOWN");
105ca32bd8dSchristos }
106ca32bd8dSchristos
107ca32bd8dSchristos char *
get_local_name(int fd)10834b27b53Sadam get_local_name(int fd)
109ca32bd8dSchristos {
11034b27b53Sadam char *host, myname[NI_MAXHOST];
11134b27b53Sadam
11234b27b53Sadam /* Assume we were passed a socket */
11334b27b53Sadam if ((host = get_socket_address(fd, 0, NI_NAMEREQD)) != NULL)
11434b27b53Sadam return host;
11534b27b53Sadam
11634b27b53Sadam /* Handle the case where we were passed a pipe */
11734b27b53Sadam if (gethostname(myname, sizeof(myname)) == -1) {
11817418e98Schristos verbose_f("gethostname: %s", strerror(errno));
1195101d403Schristos host = xstrdup("UNKNOWN");
12034b27b53Sadam } else {
12134b27b53Sadam host = xstrdup(myname);
12234b27b53Sadam }
12334b27b53Sadam
12434b27b53Sadam return host;
125ca32bd8dSchristos }
126ca32bd8dSchristos
127ca32bd8dSchristos /* Returns the local/remote port for the socket. */
128ca32bd8dSchristos
1295101d403Schristos static int
get_sock_port(int sock,int local)130ca32bd8dSchristos get_sock_port(int sock, int local)
131ca32bd8dSchristos {
132ca32bd8dSchristos struct sockaddr_storage from;
133ca32bd8dSchristos socklen_t fromlen;
134ca32bd8dSchristos char strport[NI_MAXSERV];
135ca32bd8dSchristos int r;
136ca32bd8dSchristos
137*a629fefcSchristos if (sock < 0)
138*a629fefcSchristos return -1;
139ca32bd8dSchristos /* Get IP address of client. */
140ca32bd8dSchristos fromlen = sizeof(from);
141ca32bd8dSchristos memset(&from, 0, sizeof(from));
142ca32bd8dSchristos if (local) {
143cd4ada6aSchristos if (getsockname(sock, (struct sockaddr *)&from, &fromlen) == -1) {
144ca32bd8dSchristos error("getsockname failed: %.100s", strerror(errno));
145ca32bd8dSchristos return 0;
146ca32bd8dSchristos }
147ca32bd8dSchristos } else {
148cd4ada6aSchristos if (getpeername(sock, (struct sockaddr *)&from, &fromlen) == -1) {
149ca32bd8dSchristos debug("getpeername failed: %.100s", strerror(errno));
150ca32bd8dSchristos return -1;
151ca32bd8dSchristos }
152ca32bd8dSchristos }
1538a4530f9Schristos
154e4d43b82Schristos /* Non-inet sockets don't have a port number. */
155e4d43b82Schristos if (from.ss_family != AF_INET && from.ss_family != AF_INET6)
1568a4530f9Schristos return 0;
1578a4530f9Schristos
158ca32bd8dSchristos /* Return port number. */
159ca32bd8dSchristos if ((r = getnameinfo((struct sockaddr *)&from, fromlen, NULL, 0,
160ca32bd8dSchristos strport, sizeof(strport), NI_NUMERICSERV)) != 0)
16117418e98Schristos fatal_f("getnameinfo NI_NUMERICSERV failed: %s",
162ca32bd8dSchristos ssh_gai_strerror(r));
163ca32bd8dSchristos return atoi(strport);
164ca32bd8dSchristos }
165ca32bd8dSchristos
166ca32bd8dSchristos int
get_peer_port(int sock)167ca32bd8dSchristos get_peer_port(int sock)
168ca32bd8dSchristos {
169ca32bd8dSchristos return get_sock_port(sock, 0);
170ca32bd8dSchristos }
171ca32bd8dSchristos
172ca32bd8dSchristos int
get_local_port(int sock)1735101d403Schristos get_local_port(int sock)
174ca32bd8dSchristos {
1755101d403Schristos return get_sock_port(sock, 1);
176ca32bd8dSchristos }
177