dighost.c revision b5f6271f4daf1e54501af2cb7dd278d7e8003d65
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Copyright (C) 2004-2014 Internet Systems Consortium, Inc. ("ISC")
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Copyright (C) 2000-2003 Internet Software Consortium.
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Permission to use, copy, modify, and/or distribute this software for any
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * purpose with or without fee is hereby granted, provided that the above
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * copyright notice and this permission notice appear in all copies.
8cf870d281dc8c242f083d14dfef05f24aa5fceeJnRouvignac * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
8cf870d281dc8c242f083d14dfef05f24aa5fceeJnRouvignac * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
8cf870d281dc8c242f083d14dfef05f24aa5fceeJnRouvignac * PERFORMANCE OF THIS SOFTWARE.
8cf870d281dc8c242f083d14dfef05f24aa5fceeJnRouvignac/* $Id: dighost.c,v 1.345 2011/12/07 17:23:28 each Exp $ */
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Notice to programmers: Do not use this code as an example of how to
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * use the ISC library to perform DNS lookups. Dig and Host both operate
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * on the request level, since they allow fine-tuning of output and are
4323400c50c6c6f278c473544883e91ac4c0e781ludo * intended as debugging tools. As a result, they perform many of the
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * functions which could be better handled using the dns_resolver
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * functions in most applications.
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff#if ! defined(NS_IN6ADDRSZ)
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swiftunsigned int timeout = 0;
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffunsigned int extrabytes;
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffstatic void initialize_idn(void);
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swiftstatic isc_result_t output_filter(isc_buffer_t *buffer,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff unsigned int used_org,
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swiftstatic idn_result_t append_textname(char *name, const char *origin,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffstatic void idn_check_result(idn_result_t r, const char *msg);
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Exit Codes:
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swift *\li 0 Everything went well, including things like NXDOMAIN
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swift *\li 1 Usage error
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swift *\li 7 Got too many RR's or Names
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swift *\li 8 Couldn't open batch file
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swift *\li 9 No reply from server
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff *\li 10 Internal error
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffunsigned int digestbits = 0;
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffdns_rdataset_t * sigchase_scanname(dns_rdatatype_t type,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffdns_rdataset_t * chase_scanname_section(dns_message_t *msg,
4323400c50c6c6f278c473544883e91ac4c0e781ludoisc_result_t advanced_rrsearch(dns_rdataset_t **rdataset,
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swiftisc_result_t sigchase_verify_sig_key(dns_name_t *name,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffvoid print_rdata(dns_rdata_t *rdata, isc_mem_t *mctx);
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffvoid dump_database_section(dns_message_t *msg, int section);
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swiftdns_rdataset_t * search_type(dns_name_t *name, dns_rdatatype_t type,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffisc_result_t prove_nx_type(dns_message_t * msg, dns_name_t *name,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffisc_result_t prove_nx(dns_message_t * msg, dns_name_t * name,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffstatic void nameFromString(const char *str, dns_name_t *p_ret);
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffisc_result_t removetmpkey(isc_mem_t *mctx, const char *file);
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffisc_result_t insert_trustedkey(void *arg, dns_name_t *name,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffisc_result_t grandfather_pb_test(dns_name_t * zone_name,
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * the current name is the parent name when we follow delegation
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * the child name is used for delegation (NS DS responses in AUTHORITY section)
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swiftisc_boolean_t chase_sigkeylookedup = ISC_FALSE;
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoffstruct_tk_list tk_list = { {NULL, NULL, NULL, NULL, NULL}, 0};
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Apply and clear locks at the event level in global task.
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff * Can I get rid of these using shutdown events? XXX
7185b49f58c4cdb16d035ecc45e38ec9b1cd9bd0matthew_swift debug("lock_lookup %s:%d", __FILE__, __LINE__);\
9448ac32f12d59ed3d29eaf65703f4abe866c3eblutoff check_result(isc_mutex_lock((&lookup_lock)), "isc_mutex_lock");\
#define UNLOCK_LOOKUP {\
char *res;
return (res);
s = string;
unsigned int len, i;
isc_region_t r;
isc_buffer_usedregion(b, &r);
static isc_result_t
return (ISC_R_NOSPACE);
*p += len;
return (ISC_R_SUCCESS);
static isc_result_t
int len;
return (result);
return (result);
unsigned int options = 0;
if (ip6_int)
return (result);
return (ISC_R_SUCCESS);
char *p = reverse;
return (DNS_R_BADDOTTEDQUAD);
return (result);
return (result);
return (ISC_R_SUCCESS);
if (fatalexit != 0)
isc_time_t t;
if (debugging) {
if (debugtiming) {
TIME_NOW(&t);
return (srv);
int af = 0;
switch (lwresaddrtype) {
case LWRES_ADDRTYPE_V4:
case LWRES_ADDRTYPE_V6:
return (af);
int af;
flush_server_list(void) {
while (s != NULL) {
ps = s;
int count, i;
for (i = 0; i < count; i++) {
static isc_result_t
return (ISC_R_FAILURE);
switch (af) {
case AF_INET:
case AF_INET6:
return (ISC_R_FAILURE);
return (ISC_R_SUCCESS);
return (ISC_R_FAILURE);
make_empty_lookup(void) {
#ifdef ISC_PLATFORM_USESIT
#ifdef DIG_SIGCHASE
#if DIG_SIGCHASE_TD
#ifdef ISC_PLATFORM_USESIT
return (looknew);
#if DIG_SIGCHASE_TD
#ifdef ISC_PLATFORM_USESIT
#ifdef DIG_SIGCHASE
#if DIG_SIGCHASE_TD
if (servers)
return (looknew);
return (looknew);
setup_text_key(void) {
int secretsize;
unsigned char *secretstore;
goto failure;
goto failure;
goto failure;
const char *desc) {
isc_uint32_t n;
return (result);
*uip = n;
return (ISC_R_SUCCESS);
static isc_uint32_t
return (tmp);
int len;
digestbits = 0;
digestbits = 0;
* Get a key from a named.conf format keyfile
static isc_result_t
read_confkey(void) {
const char *keyname;
const char *secretstr;
const char *algorithm;
return (ISC_R_FILENOTFOUND);
goto cleanup;
&file);
goto cleanup;
goto cleanup;
return (result);
setup_file_key(void) {
&dstkey);
goto failure;
case DST_ALG_HMACMD5:
case DST_ALG_HMACSHA1:
case DST_ALG_HMACSHA224:
case DST_ALG_HMACSHA256:
case DST_ALG_HMACSHA384:
case DST_ALG_HMACSHA512:
goto failure;
goto failure;
static dig_searchlist_t *
return (search);
clear_searchlist(void) {
* Setup the system as a whole, reading key information and resolv.conf
setup_system(void) {
unsigned int lwresflags;
if (have_ipv4)
if (have_ipv6)
/* If user doesn't specify server use nameservers from resolv.conf. */
if (have_ipv4) {
if (have_ipv6) {
#ifdef WITH_IDN
if (keyfile[0] != 0)
else if (keysecret[0] != 0)
#ifdef DIG_SIGCHASE
#if DIG_SIGCHASE_TD
#if DIG_SIGCHASE_BU
* Override the search list derived from resolv.conf by 'domain'.
setup_libs(void) {
unsigned int flags = 0;
if (dnssec)
* part of dig.c, host.c, or nslookup.c) to either shutdown the system as
check_if_done(void) {
sendcount == 0) {
link);
link);
sockcount--;
static isc_boolean_t
dig_query_t *q;
if (debugging) {
while (q != NULL) {
while (q != NULL) {
q->servname);
return (ISC_FALSE);
return (ISC_TRUE);
dig_server_t *s;
void *ptr;
while (s != NULL) {
ptr = s;
start_lookup(void) {
if (cancel_now)
#if DIG_SIGCHASE_TD
isc_region_t r;
goto novalidation;
goto novalidation;
ISC_FALSE, b);
isc_buffer_usedregion(b, &r);
MXNAME);
isc_buffer_free(&b);
&chase_name);
start_lookup();
int numLookups = 0;
int num;
0, &rdataset);
&rdataset);
unsigned int nlabels;
int order;
if (!horizontal)
if (!bad)
if (!success) {
isc_uint32_t i, j;
i = numLookups;
INSIST(i > 0);
isc_random_get(&j);
return (numLookups);
static isc_boolean_t
if (!usesearch)
return (ISC_FALSE);
0, NULL);
return (ISC_FALSE);
return (ISC_FALSE);
return (ISC_FALSE);
return (ISC_TRUE);
#ifdef ISC_PLATFORM_USESIT
int len;
isc_buffer_t b;
#ifdef WITH_IDN
#ifdef WITH_IDN
lookup_counter = 0;
#ifdef WITH_IDN
* is TRUE or we got a domain line in the resolv.conf file.
#ifdef WITH_IDN
#ifdef WITH_IDN
sizeof(utf8_origin));
sizeof(utf8_textname));
#ifdef WITH_IDN
dns_rootname, 0,
dns_rootname, 0,
#ifdef ISC_PLATFORM_USESIT
isc_buffer_t b;
DNS_SECTION_QUESTION, 0);
extrabytes = 0;
ISC_TRUE);
dig_lookup_t *l;
sendcount--;
b != NULL;
dig_lookup_t *l;
unsigned int local_timeout;
if (timeout == 0)
l, &l->timer);
connect_timeout, l,
sizeof(isc_event_t));
dig_lookup_t *l;
if (specified_source &&
sockcount++;
goto search;
sockcount++;
if (specified_source)
static isc_buffer_t *
return (buffer);
sockcount++;
if (specified_source) {
link);
recvcount++;
sendcount++;
if (!l->tcp_mode)
if (!l->tcp_mode) {
l->retries--;
l->retries);
l->retries--;
cancel_lookup(l);
cancel_lookup(l);
dig_lookup_t *l;
recvcount--;
sizeof(sockstr));
sockcount--;
if (length == 0) {
recvcount++;
dig_lookup_t *l;
sockcount--;
if (include_question) {
recvcount++;
sendcount++;
dig_lookup_t *l;
sockcount--;
sockcount--;
if (keep_open) {
static isc_boolean_t
if (ixfr)
return (ISC_TRUE);
&name);
return (ISC_TRUE);
goto next_rdata;
goto next_rdata;
serial);
serial)) {
goto doexit;
goto next_rdata;
if (axfr) {
goto doexit;
goto doexit;
serial);
goto next_rdata;
goto next_rdata;
goto doexit;
return (ISC_FALSE);
return (ISC_TRUE);
#ifdef ISC_PLATFORM_USESIT
const unsigned char *sit;
if (l->comments)
switch (optcode) {
case DNS_OPT_SIT:
#ifdef DIG_SIGCHASE
dig_lookup_t *n, *l;
unsigned int parseflags;
unsigned int msgflags;
#ifdef DIG_SIGCHASE
isc_region_t r;
recvcount--;
sockcount--;
if (!l->tcp_mode &&
sizeof(buf1));
sizeof(buf2));
if (l->tcp_mode) {
if (fail) {
if (!match)
goto udp_mismatch;
&l->querysig);
if (l->msgcounter != 0)
l->msgcounter++;
#ifdef DIG_SIGCHASE
if (!l->sigchase) {
parseflags = 0;
if (l->besteffort) {
hex_dump(b);
cancel_lookup(l);
&name);
sizeof(namestr));
sizeof(typebuf));
sizeof(classbuf));
if (!match) {
if (l->tcp_mode) {
goto udp_mismatch;
if (l->comments)
cancel_lookup(l);
if (l->tcp_mode)
if (l->comments)
unsigned int local_timeout;
if (timeout == 0) {
if (l->tcp_mode)
NULL,
&l->interval,
#ifdef ISC_PLATFORM_USESIT
#ifdef DIG_SIGCHASE
if (!do_sigchase)
} else if (l->trace) {
if (!l->ns_search_only)
if (!l->trace_root)
} else if (count == 0)
if (l->trace_root) {
#ifdef DIG_SIGCHASE
if (!do_sigchase)
#ifdef DIG_SIGCHASE
if (do_sigchase) {
sizeof(dig_message_t));
link);
isc_buffer_usedregion(b, &r);
sizeof(dig_message_t));
link);
#ifdef DIG_SIGCHASE
if (l->pending)
if (l->doing_xfr) {
if (!docancel)
if (docancel) {
cancel_lookup(l);
#ifdef DIG_SIGCHASE
if (!l->sigchase)
#ifdef DIG_SIGCHASE
if (!do_sigchase)
cancel_lookup(l);
#ifdef DIG_SIGCHASE
if (do_sigchase)
recvcount++;
int count;
return (result);
return (ISC_R_SUCCESS);
int count, i;
for (i = 0; i < count; i++) {
return count;
start_lookup();
cancel_all(void) {
dig_lookup_t *l, *n;
if (free_now) {
q != NULL;
q = nq)
q, current_lookup);
clear_query(q);
q != NULL;
q = nq)
q, current_lookup);
clear_query(q);
while (l != NULL) {
try_clear_lookup(l);
destroy_libs(void) {
#ifdef DIG_SIGCHASE
void * ptr;
#ifdef WITH_IDN
#ifdef WITH_IDN
if (is_dst_up) {
#ifdef DIG_SIGCHASE
#if DIG_SIGCHASE_TD
#if DIG_SIGCHASE_BU
if (memdebugging != 0)
#ifdef WITH_IDN
initialize_idn(void) {
idn_result_t r;
#ifdef HAVE_SETLOCALE
if (r != idn_success)
idn_result_tostring(r));
static isc_result_t
return (ISC_R_SUCCESS);
fromlen++;
return (ISC_R_SUCCESS);
return (ISC_R_SUCCESS);
tolen--;
return (ISC_R_NOSPACE);
return (ISC_R_SUCCESS);
static idn_result_t
return idn_success;
return idn_buffer_overflow;
return idn_success;
if (r != idn_success) {
#ifdef DIG_SIGCHASE
isc_region_t r;
isc_buffer_usedregion(b, &r);
isc_buffer_free(&b);
dump_database(void) {
== ISC_R_SUCCESS)
== ISC_R_SUCCESS)
== ISC_R_SUCCESS)
return (rdataset);
return (rdataset);
return (rdataset);
return (NULL);
int section)
return (rdataset);
return (NULL);
== ISC_R_SUCCESS)
return (rdataset);
== ISC_R_SUCCESS)
rdataset =
return (rdataset);
== ISC_R_SUCCESS)
rdataset =
return (rdataset);
return (NULL);
isc_region_t r;
return (temp);
return (NULL);
isc_buffer_usedregion(b, &r);
isc_buffer_free(&b);
return (NULL);
return (NULL);
return (ISC_R_SUCCESS);
isc_buffer_t b;
return (ISC_R_SUCCESS);
return (ISC_R_SUCCESS);
for (i= 0; i < MAX_TRUSTED_KEY; i++) {
char alphnum[] =
int tempnamekeylen;
return (ISC_R_NOMEMORY);
return (result);
return (ISC_R_FAILURE);
return (ISC_R_FAILURE);
mctx));
#if DIG_SIGCHASE_TD
dig_server_t *s;
void *ptr;
while (s != NULL) {
s, lookup);
ptr = s;
#define __FOLLOW_GLUE__
#ifdef __FOLLOW_GLUE__
isc_region_t r;
#ifdef __FOLLOW_GLUE__
dns_rdatatype_any, &true);
isc_buffer_usedregion(b, &r);
isc_buffer_free(&b);
dns_rdatatype_any, &true);
isc_buffer_usedregion(b, &r);
isc_buffer_free(&b);
dns_rdata_reset(&a);
return (ISC_R_SUCCESS);
int orderp;
unsigned int nlabelsp;
return (ISC_R_FAILURE);
return (ISC_R_SUCCESS);
return (ISC_R_SUCCESS);
return (ISC_R_FAILURE);
dns_rdatatype_any, &true);
return (ISC_R_FAILURE);
return (ISC_R_SUCCESS);
isc_region_t r;
isc_buffer_usedregion(b, &r);
isc_buffer_free(&b);
return (ISC_R_FAILURE);
== ISC_TRUE) {
mctx)
== ISC_R_SUCCESS) {
return (ISC_R_SUCCESS);
return (ISC_R_NOTFOUND);
return (ISC_R_SUCCESS);
return (ISC_R_NOTFOUND);
return (result);
return (ISC_R_NOTFOUND);
return (result);
&newdsrdata) == 0) {
mctx);
return (result);
return (ISC_R_NOTFOUND);
return (ISC_R_SUCCESS);
if (tmplookedup)
return (ISC_R_FAILURE);
return (ISC_R_NOTFOUND);
return (ISC_R_SUCCESS);
#if DIG_SIGCHASE_TD
== ISC_R_SUCCESS) {
have_answer = true;
&name);
if (have_answer) {
goto cleanandgo;
goto cleanandgo;
if (!delegation_follow) {
mctx);
mctx);
goto cleanandgo;
if (have_response) {
goto cleanandgo;
goto cleanandgo;
&tmp_name);
if (have_response)
goto finalstep;
if (have_delegation_ns) {
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
goto cleanandgo;
#if DIG_SIGCHASE_BU
!= ISC_R_SUCCESS) {
return (ISC_R_ADDRNOTAVAIL);
dns_rdatatype_any, &true);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
return (ISC_R_NOTFOUND);
dns_rdatatype_ds, &true);
mctx);
int ret;
#if DIG_SIGCHASE_TD
#if DIG_SIGCHASE_BU
unsigned int nblabel1;
unsigned int nblabel2;
int min_lum_label;
if (ret < 0)
else if (ret > 0)
!= ISC_R_SUCCESS) {
return (ISC_R_FAILURE);
return (ISC_R_FAILURE);
return (ISC_R_SUCCESS);
== ISC_R_SUCCESS);
return (ISC_R_FAILURE);
return (ISC_R_FAILURE);
return (ret);
!= ISC_R_SUCCESS) {
return (ISC_R_FAILURE);
return (ret);
return (ISC_R_SUCCESS);
return (ret);