Home Verkennen Help
Inloggen
8516
/
Test
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Aftakking: master
Aftakkingen Labels
Test
/
EVSE
/
GPL
/
dropbear-2017.75
/
netio.c

netio.c 14 KB
Permalink Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560 
  1. #include "netio.h"
    2. 

  2. #include "list.h"
    3. 

  3. #include "dbutil.h"
    4. 

  4. #include "session.h"
    5. 

  5. #include "debug.h"
    6. 

  6. 

  7. struct dropbear_progress_connection {
    8. 

  8. 	struct addrinfo *res;
    9. 

  9. 	struct addrinfo *res_iter;
    10. 

  10. 

  11. 	char *remotehost, *remoteport; /* For error reporting */
    12. 

  12. 

  13. 	connect_callback cb;
    14. 

  14. 	void *cb_data;
    15. 

  15. 

  16. 	struct Queue *writequeue; /* A queue of encrypted packets to send with TCP fastopen,
    17. 

  17. 								or NULL. */
    18. 

  18. 

  19. 	int sock;
    20. 

  20. 

  21. 	char* errstring;
    22. 

  22. };
    23. 

  23. 

  24. /* Deallocate a progress connection. Removes from the pending list if iter!=NULL.
    25. 

  25. Does not close sockets */
    26. 

  26. static void remove_connect(struct dropbear_progress_connection *c, m_list_elem *iter) {
    27. 

  27. 	if (c->res) {
    28. 

  28. 		freeaddrinfo(c->res);
    29. 

  29. 	}
    30. 

  30. 	m_free(c->remotehost);
    31. 

  31. 	m_free(c->remoteport);
    32. 

  32. 	m_free(c->errstring);
    33. 

  33. 	m_free(c);
    34. 

  34. 

  35. 	if (iter) {
    36. 

  36. 		list_remove(iter);
    37. 

  37. 	}
    38. 

  38. }
    39. 

  39. 

  40. static void cancel_callback(int result, int sock, void* UNUSED(data), const char* UNUSED(errstring)) {
    41. 

  41. 	if (result == DROPBEAR_SUCCESS)
    42. 

  42. 	{
    43. 

  43. 		m_close(sock);
    44. 

  44. 	}
    45. 

  45. }
    46. 

  46. 

  47. void cancel_connect(struct dropbear_progress_connection *c) {
    48. 

  48. 	c->cb = cancel_callback;
    49. 

  49. 	c->cb_data = NULL;
    50. 

  50. }
    51. 

  51. 

  52. static void connect_try_next(struct dropbear_progress_connection *c) {
    53. 

  53. 	struct addrinfo *r;
    54. 

  54. 	int res = 0;
    55. 

  55. 	int fastopen = 0;
    56. 

  56. #ifdef DROPBEAR_CLIENT_TCP_FAST_OPEN
    57. 

  57. 	struct msghdr message;
    58. 

  58. #endif
    59. 

  59. 

  60. 	for (r = c->res_iter; r; r = r->ai_next)
    61. 

  61. 	{
    62. 

  62. 		dropbear_assert(c->sock == -1);
    63. 

  63. 

  64. 		c->sock = socket(r->ai_family, r->ai_socktype, r->ai_protocol);
    65. 

  65. 		if (c->sock < 0) {
    66. 

  66. 			continue;
    67. 

  67. 		}
    68. 

  68. 

  69. 		ses.maxfd = MAX(ses.maxfd, c->sock);
    70. 

  70. 		set_sock_nodelay(c->sock);
    71. 

  71. 		setnonblocking(c->sock);
    72. 

  72. 

  73. #ifdef DROPBEAR_CLIENT_TCP_FAST_OPEN
    74. 

  74. 		fastopen = (c->writequeue != NULL);
    75. 

  75. 

  76. 		if (fastopen) {
    77. 

  77. 			memset(&message, 0x0, sizeof(message));
    78. 

  78. 			message.msg_name = r->ai_addr;
    79. 

  79. 			message.msg_namelen = r->ai_addrlen;
    80. 

  80. 			/* 6 is arbitrary, enough to hold initial packets */
    81. 

  81. 			unsigned int iovlen = 6; /* Linux msg_iovlen is a size_t */
    82. 

  82. 			struct iovec iov[6];
    83. 

  83. 			packet_queue_to_iovec(c->writequeue, iov, &iovlen);
    84. 

  84. 			message.msg_iov = iov;
    85. 

  85. 			message.msg_iovlen = iovlen;
    86. 

  86. 			res = sendmsg(c->sock, &message, MSG_FASTOPEN);
    87. 

  87. 			/* Returns EINPROGRESS if FASTOPEN wasn't available */
    88. 

  88. 			if (res < 0) {
    89. 

  89. 				if (errno != EINPROGRESS) {
    90. 

  90. 					m_free(c->errstring);
    91. 

  91. 					c->errstring = m_strdup(strerror(errno));
    92. 

  92. 					/* Not entirely sure which kind of errors are normal - 2.6.32 seems to 
    93. 

  93. 					return EPIPE for any (nonblocking?) sendmsg(). just fall back */
    94. 

  94. 					TRACE(("sendmsg tcp_fastopen failed, falling back. %s", strerror(errno)));
    95. 

  95. 					/* No kernel MSG_FASTOPEN support. Fall back below */
    96. 

  96. 					fastopen = 0;
    97. 

  97. 					/* Set to NULL to avoid trying again */
    98. 

  98. 					c->writequeue = NULL;
    99. 

  99. 				}
    100. 

  100. 			} else {
    101. 

  101. 				packet_queue_consume(c->writequeue, res);
    102. 

  102. 			}
    103. 

  103. 		}
    104. 

  104. #endif
    105. 

  105. 

  106. 		/* Normal connect(), used as fallback for TCP fastopen too */
    107. 

  107. 		if (!fastopen) {
    108. 

  108. 			res = connect(c->sock, r->ai_addr, r->ai_addrlen);
    109. 

  109. 		}
    110. 

  110. 

  111. 		if (res < 0 && errno != EINPROGRESS) {
    112. 

  112. 			/* failure */
    113. 

  113. 			m_free(c->errstring);
    114. 

  114. 			c->errstring = m_strdup(strerror(errno));
    115. 

  115. 			close(c->sock);
    116. 

  116. 			c->sock = -1;
    117. 

  117. 			continue;
    118. 

  118. 		} else {
    119. 

  119. 			/* new connection was successful, wait for it to complete */
    120. 

  120. 			break;
    121. 

  121. 		}
    122. 

  122. 	}
    123. 

  123. 

  124. 	if (r) {
    125. 

  125. 		c->res_iter = r->ai_next;
    126. 

  126. 	} else {
    127. 

  127. 		c->res_iter = NULL;
    128. 

  128. 	}
    129. 

  129. }
    130. 

  130. 

  131. /* Connect via TCP to a host. */
    132. 

  132. struct dropbear_progress_connection *connect_remote(const char* remotehost, const char* remoteport,
    133. 

  133. 	connect_callback cb, void* cb_data)
    134. 

  134. {
    135. 

  135. 	struct dropbear_progress_connection *c = NULL;
    136. 

  136. 	int err;
    137. 

  137. 	struct addrinfo hints;
    138. 

  138. 

  139. 	c = m_malloc(sizeof(*c));
    140. 

  140. 	c->remotehost = m_strdup(remotehost);
    141. 

  141. 	c->remoteport = m_strdup(remoteport);
    142. 

  142. 	c->sock = -1;
    143. 

  143. 	c->cb = cb;
    144. 

  144. 	c->cb_data = cb_data;
    145. 

  145. 

  146. 	list_append(&ses.conn_pending, c);
    147. 

  147. 

  148. 	memset(&hints, 0, sizeof(hints));
    149. 

  149. 	hints.ai_socktype = SOCK_STREAM;
    150. 

  150. 	hints.ai_family = AF_UNSPEC;
    151. 

  151. 

  152. 	err = getaddrinfo(remotehost, remoteport, &hints, &c->res);
    153. 

  153. 	if (err) {
    154. 

  154. 		int len;
    155. 

  155. 		len = 100 + strlen(gai_strerror(err));
    156. 

  156. 		c->errstring = (char*)m_malloc(len);
    157. 

  157. 		snprintf(c->errstring, len, "Error resolving '%s' port '%s'. %s", 
    158. 

  158. 				remotehost, remoteport, gai_strerror(err));
    159. 

  159. 		TRACE(("Error resolving: %s", gai_strerror(err)))
    160. 

  160. 	} else {
    161. 

  161. 		c->res_iter = c->res;
    162. 

  162. 	}
    163. 

  163. 

  164. 	return c;
    165. 

  165. }
    166. 

  166. 

  167. void remove_connect_pending() {
    168. 

  168. 	while (ses.conn_pending.first) {
    169. 

  169. 		struct dropbear_progress_connection *c = ses.conn_pending.first->item;
    170. 

  170. 		remove_connect(c, ses.conn_pending.first);
    171. 

  171. 	}
    172. 

  172. }
    173. 

  173. 

  174. 

  175. void set_connect_fds(fd_set *writefd) {
    176. 

  176. 	m_list_elem *iter;
    177. 

  177. 	TRACE(("enter set_connect_fds"))
    178. 

  178. 	iter = ses.conn_pending.first;
    179. 

  179. 	while (iter) {
    180. 

  180. 		m_list_elem *next_iter = iter->next;
    181. 

  181. 		struct dropbear_progress_connection *c = iter->item;
    182. 

  182. 		/* Set one going */
    183. 

  183. 		while (c->res_iter && c->sock < 0) {
    184. 

  184. 			connect_try_next(c);
    185. 

  185. 		}
    186. 

  186. 		if (c->sock >= 0) {
    187. 

  187. 			FD_SET(c->sock, writefd);
    188. 

  188. 		} else {
    189. 

  189. 			/* Final failure */
    190. 

  190. 			if (!c->errstring) {
    191. 

  191. 				c->errstring = m_strdup("unexpected failure");
    192. 

  192. 			}
    193. 

  193. 			c->cb(DROPBEAR_FAILURE, -1, c->cb_data, c->errstring);
    194. 

  194. 			remove_connect(c, iter);
    195. 

  195. 		}
    196. 

  196. 		iter = next_iter;
    197. 

  197. 	}
    198. 

  198. }
    199. 

  199. 

  200. void handle_connect_fds(fd_set *writefd) {
    201. 

  201. 	m_list_elem *iter;
    202. 

  202. 	TRACE(("enter handle_connect_fds"))
    203. 

  203. 	for (iter = ses.conn_pending.first; iter; iter = iter->next) {
    204. 

  204. 		int val;
    205. 

  205. 		socklen_t vallen = sizeof(val);
    206. 

  206. 		struct dropbear_progress_connection *c = iter->item;
    207. 

  207. 

  208. 		if (c->sock < 0 || !FD_ISSET(c->sock, writefd)) {
    209. 

  209. 			continue;
    210. 

  210. 		}
    211. 

  211. 

  212. 		TRACE(("handling %s port %s socket %d", c->remotehost, c->remoteport, c->sock));
    213. 

  213. 

  214. 		if (getsockopt(c->sock, SOL_SOCKET, SO_ERROR, &val, &vallen) != 0) {
    215. 

  215. 			TRACE(("handle_connect_fds getsockopt(%d) SO_ERROR failed: %s", c->sock, strerror(errno)))
    216. 

  216. 			/* This isn't expected to happen - Unix has surprises though, continue gracefully. */
    217. 

  217. 			m_close(c->sock);
    218. 

  218. 			c->sock = -1;
    219. 

  219. 		} else if (val != 0) {
    220. 

  220. 			/* Connect failed */
    221. 

  221. 			TRACE(("connect to %s port %s failed.", c->remotehost, c->remoteport))
    222. 

  222. 			m_close(c->sock);
    223. 

  223. 			c->sock = -1;
    224. 

  224. 

  225. 			m_free(c->errstring);
    226. 

  226. 			c->errstring = m_strdup(strerror(val));
    227. 

  227. 		} else {
    228. 

  228. 			/* New connection has been established */
    229. 

  229. 			c->cb(DROPBEAR_SUCCESS, c->sock, c->cb_data, NULL);
    230. 

  230. 			remove_connect(c, iter);
    231. 

  231. 			TRACE(("leave handle_connect_fds - success"))
    232. 

  232. 			/* Must return here - remove_connect() invalidates iter */
    233. 

  233. 			return; 
    234. 

  234. 		}
    235. 

  235. 	}
    236. 

  236. 	TRACE(("leave handle_connect_fds - end iter"))
    237. 

  237. }
    238. 

  238. 

  239. void connect_set_writequeue(struct dropbear_progress_connection *c, struct Queue *writequeue) {
    240. 

  240. 	c->writequeue = writequeue;
    241. 

  241. }
    242. 

  242. 

  243. void packet_queue_to_iovec(struct Queue *queue, struct iovec *iov, unsigned int *iov_count) {
    244. 

  244. 	struct Link *l;
    245. 

  245. 	unsigned int i;
    246. 

  246. 	int len;
    247. 

  247. 	buffer *writebuf;
    248. 

  248. 

  249. 	#ifndef IOV_MAX
    250. 

  250. 	#define IOV_MAX UIO_MAXIOV
    251. 

  251. 	#endif
    252. 

  252. 

  253. 	*iov_count = MIN(MIN(queue->count, IOV_MAX), *iov_count);
    254. 

  254. 

  255. 	for (l = queue->head, i = 0; i < *iov_count; l = l->link, i++)
    256. 

  256. 	{
    257. 

  257. 		writebuf = (buffer*)l->item;
    258. 

  258. 		len = writebuf->len - 1 - writebuf->pos;
    259. 

  259. 		dropbear_assert(len > 0);
    260. 

  260. 		TRACE2(("write_packet writev #%d  type %d len %d/%d", i, writebuf->data[writebuf->len-1],
    261. 

  261. 				len, writebuf->len-1))
    262. 

  262. 		iov[i].iov_base = buf_getptr(writebuf, len);
    263. 

  263. 		iov[i].iov_len = len;
    264. 

  264. 	}
    265. 

  265. }
    266. 

  266. 

  267. void packet_queue_consume(struct Queue *queue, ssize_t written) {
    268. 

  268. 	buffer *writebuf;
    269. 

  269. 	int len;
    270. 

  270. 	while (written > 0) {
    271. 

  271. 		writebuf = (buffer*)examine(queue);
    272. 

  272. 		len = writebuf->len - 1 - writebuf->pos;
    273. 

  273. 		if (len > written) {
    274. 

  274. 			/* partial buffer write */
    275. 

  275. 			buf_incrpos(writebuf, written);
    276. 

  276. 			written = 0;
    277. 

  277. 		} else {
    278. 

  278. 			written -= len;
    279. 

  279. 			dequeue(queue);
    280. 

  280. 			buf_free(writebuf);
    281. 

  281. 		}
    282. 

  282. 	}
    283. 

  283. }
    284. 

  284. 

  285. void set_sock_nodelay(int sock) {
    286. 

  286. 	int val;
    287. 

  287. 

  288. 	/* disable nagle */
    289. 

  289. 	val = 1;
    290. 

  290. 	setsockopt(sock, IPPROTO_TCP, TCP_NODELAY, (void*)&val, sizeof(val));
    291. 

  291. }
    292. 

  292. 

  293. #ifdef DROPBEAR_SERVER_TCP_FAST_OPEN
    294. 

  294. void set_listen_fast_open(int sock) {
    295. 

  295. 	int qlen = MAX(MAX_UNAUTH_PER_IP, 5);
    296. 

  296. 	if (setsockopt(sock, SOL_TCP, TCP_FASTOPEN, &qlen, sizeof(qlen)) != 0) {
    297. 

  297. 		TRACE(("set_listen_fast_open failed for socket %d: %s", sock, strerror(errno)))
    298. 

  298. 	}
    299. 

  299. }
    300. 

  300. 

  301. #endif
    302. 

  302. 

  303. void set_sock_priority(int sock, enum dropbear_prio prio) {
    304. 

  304. 

  305. 	int rc;
    306. 

  306. #ifdef IPTOS_LOWDELAY
    307. 

  307. 	int iptos_val = 0;
    308. 

  308. #endif
    309. 

  309. #ifdef SO_PRIORITY
    310. 

  310. 	int so_prio_val = 0;
    311. 

  311. #endif
    312. 

  312. 

  313. 

  314. 	/* Don't log ENOTSOCK errors so that this can harmlessly be called
    315. 

  315. 	 * on a client '-J' proxy pipe */
    316. 

  316. 

  317. 	/* set the TOS bit for either ipv4 or ipv6 */
    318. 

  318. #ifdef IPTOS_LOWDELAY
    319. 

  319. 	if (prio == DROPBEAR_PRIO_LOWDELAY) {
    320. 

  320. 		iptos_val = IPTOS_LOWDELAY;
    321. 

  321. 	} else if (prio == DROPBEAR_PRIO_BULK) {
    322. 

  322. 		iptos_val = IPTOS_THROUGHPUT;
    323. 

  323. 	}
    324. 

  324. #if defined(IPPROTO_IPV6) && defined(IPV6_TCLASS)
    325. 

  325. 	rc = setsockopt(sock, IPPROTO_IPV6, IPV6_TCLASS, (void*)&iptos_val, sizeof(iptos_val));
    326. 

  326. 	if (rc < 0 && errno != ENOTSOCK) {
    327. 

  327. 		TRACE(("Couldn't set IPV6_TCLASS (%s)", strerror(errno)));
    328. 

  328. 	}
    329. 

  329. #endif
    330. 

  330. 	rc = setsockopt(sock, IPPROTO_IP, IP_TOS, (void*)&iptos_val, sizeof(iptos_val));
    331. 

  331. 	if (rc < 0 && errno != ENOTSOCK) {
    332. 

  332. 		TRACE(("Couldn't set IP_TOS (%s)", strerror(errno)));
    333. 

  333. 	}
    334. 

  334. #endif
    335. 

  335. 

  336. #ifdef SO_PRIORITY
    337. 

  337. 	if (prio == DROPBEAR_PRIO_LOWDELAY) {
    338. 

  338. 		so_prio_val = TC_PRIO_INTERACTIVE;
    339. 

  339. 	} else if (prio == DROPBEAR_PRIO_BULK) {
    340. 

  340. 		so_prio_val = TC_PRIO_BULK;
    341. 

  341. 	}
    342. 

  342. 	/* linux specific, sets QoS class. see tc-prio(8) */
    343. 

  343. 	rc = setsockopt(sock, SOL_SOCKET, SO_PRIORITY, (void*) &so_prio_val, sizeof(so_prio_val));
    344. 

  344. 	if (rc < 0 && errno != ENOTSOCK)
    345. 

  345. 		dropbear_log(LOG_WARNING, "Couldn't set SO_PRIORITY (%s)",
    346. 

  346. 				strerror(errno));
    347. 

  347. #endif
    348. 

  348. 

  349. }
    350. 

  350. 

  351. /* Listen on address:port. 
    352. 

  352.  * Special cases are address of "" listening on everything,
    353. 

  353.  * and address of NULL listening on localhost only.
    354. 

  354.  * Returns the number of sockets bound on success, or -1 on failure. On
    355. 

  355.  * failure, if errstring wasn't NULL, it'll be a newly malloced error
    356. 

  356.  * string.*/
    357. 

  357. int dropbear_listen(const char* address, const char* port,
    358. 

  358. 		int *socks, unsigned int sockcount, char **errstring, int *maxfd) {
    359. 

  359. 

  360. 	struct addrinfo hints, *res = NULL, *res0 = NULL;
    361. 

  361. 	int err;
    362. 

  362. 	unsigned int nsock;
    363. 

  363. 	struct linger linger;
    364. 

  364. 	int val;
    365. 

  365. 	int sock;
    366. 

  366. 

  367. 	TRACE(("enter dropbear_listen"))
    368. 

  368. 	
    369. 

  369. 	memset(&hints, 0, sizeof(hints));
    370. 

  370. 	hints.ai_family = AF_UNSPEC; /* TODO: let them flag v4 only etc */
    371. 

  371. 	hints.ai_socktype = SOCK_STREAM;
    372. 

  372. 

  373. 	/* for calling getaddrinfo:
    374. 

  374. 	 address == NULL and !AI_PASSIVE: local loopback
    375. 

  375. 	 address == NULL and AI_PASSIVE: all interfaces
    376. 

  376. 	 address != NULL: whatever the address says */
    377. 

  377. 	if (!address) {
    378. 

  378. 		TRACE(("dropbear_listen: local loopback"))
    379. 

  379. 	} else {
    380. 

  380. 		if (address[0] == '\0') {
    381. 

  381. 			TRACE(("dropbear_listen: all interfaces"))
    382. 

  382. 			address = NULL;
    383. 

  383. 		}
    384. 

  384. 		hints.ai_flags = AI_PASSIVE;
    385. 

  385. 	}
    386. 

  386. 	err = getaddrinfo(address, port, &hints, &res0);
    387. 

  387. 

  388. 	if (err) {
    389. 

  389. 		if (errstring != NULL && *errstring == NULL) {
    390. 

  390. 			int len;
    391. 

  391. 			len = 20 + strlen(gai_strerror(err));
    392. 

  392. 			*errstring = (char*)m_malloc(len);
    393. 

  393. 			snprintf(*errstring, len, "Error resolving: %s", gai_strerror(err));
    394. 

  394. 		}
    395. 

  395. 		if (res0) {
    396. 

  396. 			freeaddrinfo(res0);
    397. 

  397. 			res0 = NULL;
    398. 

  398. 		}
    399. 

  399. 		TRACE(("leave dropbear_listen: failed resolving"))
    400. 

  400. 		return -1;
    401. 

  401. 	}
    402. 

  402. 

  403. 

  404. 	nsock = 0;
    405. 

  405. 	for (res = res0; res != NULL && nsock < sockcount;
    406. 

  406. 			res = res->ai_next) {
    407. 

  407. 

  408. 		/* Get a socket */
    409. 

  409. 		socks[nsock] = socket(res->ai_family, res->ai_socktype,
    410. 

  410. 				res->ai_protocol);
    411. 

  411. 

  412. 		sock = socks[nsock]; /* For clarity */
    413. 

  413. 

  414. 		if (sock < 0) {
    415. 

  415. 			err = errno;
    416. 

  416. 			TRACE(("socket() failed"))
    417. 

  417. 			continue;
    418. 

  418. 		}
    419. 

  419. 

  420. 		/* Various useful socket options */
    421. 

  421. 		val = 1;
    422. 

  422. 		/* set to reuse, quick timeout */
    423. 

  423. 		setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, (void*) &val, sizeof(val));
    424. 

  424. 		linger.l_onoff = 1;
    425. 

  425. 		linger.l_linger = 5;
    426. 

  426. 		setsockopt(sock, SOL_SOCKET, SO_LINGER, (void*)&linger, sizeof(linger));
    427. 

  427. 

  428. #if defined(IPPROTO_IPV6) && defined(IPV6_V6ONLY)
    429. 

  429. 		if (res->ai_family == AF_INET6) {
    430. 

  430. 			int on = 1;
    431. 

  431. 			if (setsockopt(sock, IPPROTO_IPV6, IPV6_V6ONLY, 
    432. 

  432. 						&on, sizeof(on)) == -1) {
    433. 

  433. 				dropbear_log(LOG_WARNING, "Couldn't set IPV6_V6ONLY");
    434. 

  434. 			}
    435. 

  435. 		}
    436. 

  436. #endif
    437. 

  437. 

  438. 		set_sock_nodelay(sock);
    439. 

  439. 

  440. 		if (bind(sock, res->ai_addr, res->ai_addrlen) < 0) {
    441. 

  441. 			err = errno;
    442. 

  442. 			close(sock);
    443. 

  443. 			TRACE(("bind(%s) failed", port))
    444. 

  444. 			continue;
    445. 

  445. 		}
    446. 

  446. 

  447. 		if (listen(sock, DROPBEAR_LISTEN_BACKLOG) < 0) {
    448. 

  448. 			err = errno;
    449. 

  449. 			close(sock);
    450. 

  450. 			TRACE(("listen() failed"))
    451. 

  451. 			continue;
    452. 

  452. 		}
    453. 

  453. 

  454. 		*maxfd = MAX(*maxfd, sock);
    455. 

  455. 

  456. 		nsock++;
    457. 

  457. 	}
    458. 

  458. 

  459. 	if (res0) {
    460. 

  460. 		freeaddrinfo(res0);
    461. 

  461. 		res0 = NULL;
    462. 

  462. 	}
    463. 

  463. 

  464. 	if (nsock == 0) {
    465. 

  465. 		if (errstring != NULL && *errstring == NULL) {
    466. 

  466. 			int len;
    467. 

  467. 			len = 20 + strlen(strerror(err));
    468. 

  468. 			*errstring = (char*)m_malloc(len);
    469. 

  469. 			snprintf(*errstring, len, "Error listening: %s", strerror(err));
    470. 

  470. 		}
    471. 

  471. 		TRACE(("leave dropbear_listen: failure, %s", strerror(err)))
    472. 

  472. 		return -1;
    473. 

  473. 	}
    474. 

  474. 

  475. 	TRACE(("leave dropbear_listen: success, %d socks bound", nsock))
    476. 

  476. 	return nsock;
    477. 

  477. }
    478. 

  478. 

  479. void get_socket_address(int fd, char **local_host, char **local_port,
    480. 

  480. 						char **remote_host, char **remote_port, int host_lookup)
    481. 

  481. {
    482. 

  482. 	struct sockaddr_storage addr;
    483. 

  483. 	socklen_t addrlen;
    484. 

  484. 	
    485. 

  485. 	if (local_host || local_port) {
    486. 

  486. 		addrlen = sizeof(addr);
    487. 

  487. 		if (getsockname(fd, (struct sockaddr*)&addr, &addrlen) < 0) {
    488. 

  488. 			dropbear_exit("Failed socket address: %s", strerror(errno));
    489. 

  489. 		}
    490. 

  490. 		getaddrstring(&addr, local_host, local_port, host_lookup);		
    491. 

  491. 	}
    492. 

  492. 	if (remote_host || remote_port) {
    493. 

  493. 		addrlen = sizeof(addr);
    494. 

  494. 		if (getpeername(fd, (struct sockaddr*)&addr, &addrlen) < 0) {
    495. 

  495. 			dropbear_exit("Failed socket address: %s", strerror(errno));
    496. 

  496. 		}
    497. 

  497. 		getaddrstring(&addr, remote_host, remote_port, host_lookup);		
    498. 

  498. 	}
    499. 

  499. }
    500. 

  500. 

  501. /* Return a string representation of the socket address passed. The return
    502. 

  502.  * value is allocated with malloc() */
    503. 

  503. void getaddrstring(struct sockaddr_storage* addr, 
    504. 

  504. 			char **ret_host, char **ret_port,
    505. 

  505. 			int host_lookup) {
    506. 

  506. 

  507. 	char host[NI_MAXHOST+1], serv[NI_MAXSERV+1];
    508. 

  508. 	unsigned int len;
    509. 

  509. 	int ret;
    510. 

  510. 	
    511. 

  511. 	int flags = NI_NUMERICSERV | NI_NUMERICHOST;
    512. 

  512. 

  513. #ifndef DO_HOST_LOOKUP
    514. 

  514. 	host_lookup = 0;
    515. 

  515. #endif
    516. 

  516. 	
    517. 

  517. 	if (host_lookup) {
    518. 

  518. 		flags = NI_NUMERICSERV;
    519. 

  519. 	}
    520. 

  520. 

  521. 	len = sizeof(struct sockaddr_storage);
    522. 

  522. 	/* Some platforms such as Solaris 8 require that len is the length
    523. 

  523. 	 * of the specific structure. Some older linux systems (glibc 2.1.3
    524. 

  524. 	 * such as debian potato) have sockaddr_storage.__ss_family instead
    525. 

  525. 	 * but we'll ignore them */
    526. 

  526. #ifdef HAVE_STRUCT_SOCKADDR_STORAGE_SS_FAMILY
    527. 

  527. 	if (addr->ss_family == AF_INET) {
    528. 

  528. 		len = sizeof(struct sockaddr_in);
    529. 

  529. 	}
    530. 

  530. #ifdef AF_INET6
    531. 

  531. 	if (addr->ss_family == AF_INET6) {
    532. 

  532. 		len = sizeof(struct sockaddr_in6);
    533. 

  533. 	}
    534. 

  534. #endif
    535. 

  535. #endif
    536. 

  536. 

  537. 	ret = getnameinfo((struct sockaddr*)addr, len, host, sizeof(host)-1, 
    538. 

  538. 			serv, sizeof(serv)-1, flags);
    539. 

  539. 

  540. 	if (ret != 0) {
    541. 

  541. 		if (host_lookup) {
    542. 

  542. 			/* On some systems (Darwin does it) we get EINTR from getnameinfo
    543. 

  543. 			 * somehow. Eew. So we'll just return the IP, since that doesn't seem
    544. 

  544. 			 * to exhibit that behaviour. */
    545. 

  545. 			getaddrstring(addr, ret_host, ret_port, 0);
    546. 

  546. 			return;
    547. 

  547. 		} else {
    548. 

  548. 			/* if we can't do a numeric lookup, something's gone terribly wrong */
    549. 

  549. 			dropbear_exit("Failed lookup: %s", gai_strerror(ret));
    550. 

  550. 		}
    551. 

  551. 	}
    552. 

  552. 

  553. 	if (ret_host) {
    554. 

  554. 		*ret_host = m_strdup(host);
    555. 

  555. 	}
    556. 

  556. 	if (ret_port) {
    557. 

  557. 		*ret_port = m_strdup(serv);
    558. 

  558. 	}
    559. 

  559. }
    560. 

  560.