/* +------------------------------------+ * | Inspire Internet Relay Chat Daemon | * +------------------------------------+ * * InspIRCd is copyright (C) 2002-2006 ChatSpike-Dev. * E-mail: * * * * Written by Craig Edwards, Craig McLure, and others. * This program is free but copyrighted software; see * the file COPYING for details. * * --------------------------------------------------- */ /* dns.cpp - Nonblocking DNS functions. Very very loosely based on the firedns library, Copyright (C) 2002 Ian Gulliver. This file is no longer anything like firedns, there are many major differences between this code and the original. Please do not assume that firedns works like this, looks like this, walks like this or tastes like this. */ using namespace std; #include #include #include #include #include #include #include #include #include #include #include "dns.h" #include "inspircd.h" #include "helperfuncs.h" #include "inspircd_config.h" #include "socketengine.h" #include "configreader.h" extern InspIRCd* ServerInstance; extern ServerConfig* Config; extern time_t TIME; extern userrec* fd_ref_table[MAX_DESCRIPTORS]; enum QueryType { DNS_QRY_A = 1, DNS_QRY_PTR = 12 }; enum QueryInfo { ERROR_MASK = 0x10000 }; enum QueryFlags { FLAGS_MASK_RD = 0x01, FLAGS_MASK_TC = 0x02, FLAGS_MASK_AA = 0x04, FLAGS_MASK_OPCODE = 0x78, FLAGS_MASK_QR = 0x80, FLAGS_MASK_RCODE = 0x0F, FLAGS_MASK_Z = 0x70, FLAGS_MASK_RA = 0x80 }; class DNSRequest; typedef std::map connlist; typedef connlist::iterator connlist_iter; DNS* Res = NULL; connlist connections; int master_socket = -1; Resolver* dns_classes[65536]; insp_inaddr myserver; /* Represents a dns resource record (rr) */ class ResourceRecord { public: QueryType type; unsigned int rr_class; unsigned long ttl; unsigned int rdlength; }; /* Represents a dns request/reply header, * and its payload as opaque data. */ class DNSHeader { public: unsigned char id[2]; unsigned int flags1; unsigned int flags2; unsigned int qdcount; unsigned int ancount; unsigned int nscount; unsigned int arcount; unsigned char payload[512]; }; /* Represents a request 'on the wire' with * routing information relating to where to * call when we get a result */ class DNSRequest { public: unsigned char id[2]; unsigned char* res; unsigned int rr_class; QueryType type; DNSRequest() { res = new unsigned char[512]; *res = 0; } ~DNSRequest() { delete[] res; } /* Called when a result is ready to be processed which matches this id */ DNSInfo ResultIsReady(DNSHeader &h, int length); /* Called when there are requests to be sent out */ int SendRequests(const DNSHeader *header, const int length, QueryType qt); }; /* * Optimized by brain, these were using integer division and modulus. * We can use logic shifts and logic AND to replace these even divisions * and multiplications, it should be a bit faster (probably not noticably, * but of course, more impressive). Also made these inline. */ inline void dns_fill_rr(ResourceRecord* rr, const unsigned char *input) { rr->type = (QueryType)((input[0] << 8) + input[1]); rr->rr_class = (input[2] << 8) + input[3]; rr->ttl = (input[4] << 24) + (input[5] << 16) + (input[6] << 8) + input[7]; rr->rdlength = (input[8] << 8) + input[9]; } inline void dns_fill_header(DNSHeader *header, const unsigned char *input, const int length) { header->id[0] = input[0]; header->id[1] = input[1]; header->flags1 = input[2]; header->flags2 = input[3]; header->qdcount = (input[4] << 8) + input[5]; header->ancount = (input[6] << 8) + input[7]; header->nscount = (input[8] << 8) + input[9]; header->arcount = (input[10] << 8) + input[11]; memcpy(header->payload,&input[12],length); } inline void dns_empty_header(unsigned char *output, const DNSHeader *header, const int length) { output[0] = header->id[0]; output[1] = header->id[1]; output[2] = header->flags1; output[3] = header->flags2; output[4] = header->qdcount >> 8; output[5] = header->qdcount & 0xFF; output[6] = header->ancount >> 8; output[7] = header->ancount & 0xFF; output[8] = header->nscount >> 8; output[9] = header->nscount & 0xFF; output[10] = header->arcount >> 8; output[11] = header->arcount & 0xFF; memcpy(&output[12],header->payload,length); } int DNSRequest::SendRequests(const DNSHeader *header, const int length, QueryType qt) { insp_sockaddr addr; unsigned char payload[sizeof(DNSHeader)]; this->rr_class = 1; this->type = qt; dns_empty_header(payload,header,length); memset(&addr,0,sizeof(addr)); #ifdef IPV6 memcpy(&addr.sin6_addr,&myserver,sizeof(addr.sin6_addr)); addr.sin6_family = AF_FAMILY; addr.sin6_port = htons(53); #else memcpy(&addr.sin_addr.s_addr,&myserver,sizeof(addr.sin_addr)); addr.sin_family = AF_FAMILY; addr.sin_port = htons(53); #endif if (sendto(master_socket, payload, length + 12, 0, (sockaddr *) &addr, sizeof(addr)) == -1) { log(DEBUG,"Error in sendto!"); return -1; } return 0; } DNSRequest* DNSAddQuery(DNSHeader *header, int &id) { id = rand() % 65536; DNSRequest* req = new DNSRequest(); header->id[0] = req->id[0] = id >> 8; header->id[1] = req->id[1] = id & 0xFF; header->flags1 = FLAGS_MASK_RD; header->flags2 = 0; header->qdcount = 1; header->ancount = 0; header->nscount = 0; header->arcount = 0; if (connections.find(id) == connections.end()) connections[id] = req; /* According to the C++ spec, new never returns NULL. */ return req; } void DNSCreateSocket() { log(DEBUG,"---- BEGIN DNS INITIALIZATION, SERVER=%s ---",Config->DNSServer); insp_inaddr addr; srand((unsigned int) TIME); memset(&myserver,0,sizeof(insp_inaddr)); if (insp_aton(Config->DNSServer,&addr) > 0) memcpy(&myserver,&addr,sizeof(insp_inaddr)); master_socket = socket(PF_PROTOCOL, SOCK_DGRAM, 0); if (master_socket != -1) { log(DEBUG,"Set query socket nonblock"); if (fcntl(master_socket, F_SETFL, O_NONBLOCK) != 0) { shutdown(master_socket,2); close(master_socket); master_socket = -1; } } if (master_socket != -1) { #ifdef IPV6 insp_sockaddr addr; memset(&addr,0,sizeof(addr)); addr.sin6_family = AF_FAMILY; addr.sin6_port = 0; memset(&addr.sin6_addr,255,sizeof(in6_addr)); #else insp_sockaddr addr; memset(&addr,0,sizeof(addr)); addr.sin_family = AF_FAMILY; addr.sin_port = 0; addr.sin_addr.s_addr = INADDR_ANY; #endif log(DEBUG,"Binding query port"); if (bind(master_socket,(sockaddr *)&addr,sizeof(addr)) != 0) { log(DEBUG,"Cant bind with source port = 0"); shutdown(master_socket,2); close(master_socket); master_socket = -1; } if (master_socket >= 0) { log(DEBUG,"Attach query port to socket engine"); if (ServerInstance && ServerInstance->SE) ServerInstance->SE->AddFd(master_socket,true,X_ESTAB_DNS); } } } int DNSMakePayload(const char * const name, const unsigned short rr, const unsigned short rr_class, unsigned char * const payload) { short payloadpos; const char * tempchr, * tempchr2; unsigned short l; payloadpos = 0; tempchr2 = name; /* split name up into labels, create query */ while ((tempchr = strchr(tempchr2,'.')) != NULL) { l = tempchr - tempchr2; if (payloadpos + l + 1 > 507) return -1; payload[payloadpos++] = l; memcpy(&payload[payloadpos],tempchr2,l); payloadpos += l; tempchr2 = &tempchr[1]; } l = strlen(tempchr2); if (l) { if (payloadpos + l + 2 > 507) return -1; payload[payloadpos++] = l; memcpy(&payload[payloadpos],tempchr2,l); payloadpos += l; payload[payloadpos++] = '\0'; } if (payloadpos > 508) return -1; l = htons(rr); memcpy(&payload[payloadpos],&l,2); l = htons(rr_class); memcpy(&payload[payloadpos + 2],&l,2); return payloadpos + 4; } int DNS::GetIP(const char *name) { DNSHeader h; int id; int length; DNSRequest* req; if ((length = DNSMakePayload(name,DNS_QRY_A,1,(unsigned char*)&h.payload)) == -1) return -1; req = DNSAddQuery(&h, id); if (req->SendRequests(&h,length,DNS_QRY_A) == -1) return -1; return id; } int DNS::GetName(const insp_inaddr *ip) { #ifdef IPV6 return -1; #else char query[29]; DNSHeader h; int id; int length; DNSRequest* req; unsigned char* c = (unsigned char*)&ip->s_addr; sprintf(query,"%d.%d.%d.%d.in-addr.arpa",c[3],c[2],c[1],c[0]); if ((length = DNSMakePayload(query,DNS_QRY_PTR,1,(unsigned char*)&h.payload)) == -1) return -1; req = DNSAddQuery(&h, id); if (req->SendRequests(&h,length,DNS_QRY_PTR) == -1) return -1; return id; #endif } /* Return the next id which is ready, and the result attached to it */ DNSResult DNS::GetResult() { /* Fetch dns query response and decide where it belongs */ DNSHeader header; DNSRequest *req; int length; unsigned char buffer[sizeof(DNSHeader)]; /* Attempt to read a header */ length = recv(master_socket,buffer,sizeof(DNSHeader),0); /* Did we get the whole header? */ if (length < 12) /* Nope - something screwed up. */ return std::make_pair(-1,""); /* Put the read header info into a header class */ dns_fill_header(&header,buffer,length - 12); /* Get the id of this request. * Its a 16 bit value stored in two char's, * so we use logic shifts to create the value. */ unsigned long this_id = header.id[1] + (header.id[0] << 8); /* Do we have a pending request matching this id? */ connlist_iter n_iter = connections.find(this_id); if (n_iter == connections.end()) { /* Somehow we got a DNS response for a request we never made... */ log(DEBUG,"DNS: got a response for a query we didnt send with fd=%d queryid=%d",master_socket,this_id); return std::make_pair(-1,""); } else { /* Remove the query from the list of pending queries */ req = (DNSRequest*)n_iter->second; connections.erase(n_iter); } /* Inform the DNSRequest class that it has a result to be read. * When its finished it will return a DNSInfo which is a pair of * unsigned char* resource record data, and an error message. */ DNSInfo data = req->ResultIsReady(header, length); std::string resultstr; /* Check if we got a result, if we didnt, its an error */ if (data.first == NULL) { /* An error. * Mask the ID with the value of ERROR_MASK, so that * the dns_deal_with_classes() function knows that its * an error response and needs to be treated uniquely. * Put the error message in the second field. */ delete req; return std::make_pair(this_id | ERROR_MASK, data.second); } else { /* Forward lookups come back as binary data. We must format them into ascii */ if (req->type == DNS_QRY_A) { char formatted[16]; snprintf(formatted,16,"%u.%u.%u.%u",data.first[0],data.first[1],data.first[2],data.first[3]); resultstr = formatted; } else { /* Reverse lookups just come back as char* */ resultstr = std::string((const char*)data.first); } /* Build the reply with the id and hostname/ip in it */ delete req; return std::make_pair(this_id,resultstr); } } /* A result is ready, process it */ DNSInfo DNSRequest::ResultIsReady(DNSHeader &header, int length) { int i = 0; int q = 0; int curanswer, o; ResourceRecord rr; unsigned short p; if (!(header.flags1 & FLAGS_MASK_QR)) return std::make_pair((unsigned char*)NULL,"Not a query result"); if (header.flags1 & FLAGS_MASK_OPCODE) return std::make_pair((unsigned char*)NULL,"Unexpected value in DNS reply packet"); if (header.flags2 & FLAGS_MASK_RCODE) return std::make_pair((unsigned char*)NULL,"Domain name not found"); if (header.ancount < 1) return std::make_pair((unsigned char*)NULL,"No resource records returned"); /* Subtract the length of the header from the length of the packet */ length -= 12; while ((unsigned int)q < header.qdcount && i < length) { if (header.payload[i] > 63) { i += 6; q++; } else { if (header.payload[i] == 0) { q++; i += 5; } else i += header.payload[i] + 1; } } curanswer = 0; while ((unsigned)curanswer < header.ancount) { q = 0; while (q == 0 && i < length) { if (header.payload[i] > 63) { i += 2; q = 1; } else { if (header.payload[i] == 0) { i++; q = 1; } else i += header.payload[i] + 1; /* skip length and label */ } } if (length - i < 10) return std::make_pair((unsigned char*)NULL,"Incorrectly sized DNS reply"); dns_fill_rr(&rr,&header.payload[i]); i += 10; if (rr.type != this->type) { curanswer++; i += rr.rdlength; continue; } if (rr.rr_class != this->rr_class) { curanswer++; i += rr.rdlength; continue; } break; } if ((unsigned int)curanswer == header.ancount) return std::make_pair((unsigned char*)NULL,"No valid answers"); if (i + rr.rdlength > (unsigned int)length) return std::make_pair((unsigned char*)NULL,"Resource record larger than stated"); if (rr.rdlength > 1023) return std::make_pair((unsigned char*)NULL,"Resource record too large"); switch (rr.type) { case DNS_QRY_PTR: o = 0; q = 0; while (q == 0 && i < length && o + 256 < 1023) { if (header.payload[i] > 63) { memcpy(&p,&header.payload[i],2); i = ntohs(p) - 0xC000 - 12; } else { if (header.payload[i] == 0) { q = 1; } else { res[o] = '\0'; if (o != 0) res[o++] = '.'; memcpy(&res[o],&header.payload[i + 1],header.payload[i]); o += header.payload[i]; i += header.payload[i] + 1; } } } res[o] = '\0'; break; case DNS_QRY_A: memcpy(res,&header.payload[i],rr.rdlength); res[rr.rdlength] = '\0'; break; default: memcpy(res,&header.payload[i],rr.rdlength); res[rr.rdlength] = '\0'; break; } return std::make_pair(res,"No error");; } DNS::DNS() { } DNS::~DNS() { } Resolver::Resolver(const std::string &source, bool forward) : input(source), fwd(forward) { if (forward) { log(DEBUG,"Resolver: Forward lookup on %s",source.c_str()); this->myid = Res->GetIP(source.c_str()); } else { log(DEBUG,"Resolver: Reverse lookup on %s",source.c_str()); insp_inaddr binip; if (insp_aton(source.c_str(), &binip) > 0) { /* Valid ip address */ this->myid = Res->GetName(&binip); } else { this->OnError(RESOLVER_BADIP, "Bad IP address for reverse lookup"); throw ModuleException("Resolver: Bad IP address"); return; } } if (this->myid == -1) { log(DEBUG,"Resolver::Resolver: Could not get an id!"); this->OnError(RESOLVER_NSDOWN, "Nameserver is down"); throw ModuleException("Resolver: Couldnt get an id to make a request"); /* We shouldnt get here really */ return; } log(DEBUG,"Resolver::Resolver: this->myid=%d",this->myid); } //void Resolver::OnLookupComplete(const std::string &result) //{ //} void Resolver::OnError(ResolverError e, const std::string &errormessage) { } Resolver::~Resolver() { log(DEBUG,"Resolver::~Resolver"); } int Resolver::GetId() { return this->myid; } void dns_deal_with_classes(int fd) { log(DEBUG,"dns_deal_with_classes(%d)",fd); if (fd == master_socket) { DNSResult res = Res->GetResult(); if (res.first != -1) { if (res.first & ERROR_MASK) { res.first -= ERROR_MASK; log(DEBUG,"Error available, id=%d",res.first); if (dns_classes[res.first]) { dns_classes[res.first]->OnError(RESOLVER_NXDOMAIN, res.second); delete dns_classes[res.first]; dns_classes[res.first] = NULL; } } else { log(DEBUG,"Result available, id=%d",res.first); if (dns_classes[res.first]) { dns_classes[res.first]->OnLookupComplete(res.second); delete dns_classes[res.first]; dns_classes[res.first] = NULL; } } } } } bool dns_add_class(Resolver* r) { log(DEBUG,"dns_add_class"); if ((r) && (r->GetId() > -1)) { if (!dns_classes[r->GetId()]) { log(DEBUG,"dns_add_class: added class"); dns_classes[r->GetId()] = r; return true; } else { log(DEBUG,"Space occupied!"); return false; } } else { log(DEBUG,"Bad class"); delete r; return true; } } void init_dns() { Res = new DNS(); memset(dns_classes,0,sizeof(dns_classes)); DNSCreateSocket(); }