2 * Copyright (c) 1997-2005 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "krb5_locl.h"
36 RCSID("$Id: addr_families.c,v 1.53 2006/10/22 06:54:00 lha Exp $");
38 struct addr_operations {
40 krb5_address_type atype;
41 size_t max_sockaddr_size;
42 krb5_error_code (*sockaddr2addr)(const struct sockaddr *, krb5_address *);
43 krb5_error_code (*sockaddr2port)(const struct sockaddr *, int16_t *);
44 void (*addr2sockaddr)(const krb5_address *, struct sockaddr *,
45 krb5_socklen_t *sa_size, int port);
46 void (*h_addr2sockaddr)(const char *, struct sockaddr *, krb5_socklen_t *, int);
47 krb5_error_code (*h_addr2addr)(const char *, krb5_address *);
48 krb5_boolean (*uninteresting)(const struct sockaddr *);
49 void (*anyaddr)(struct sockaddr *, krb5_socklen_t *, int);
50 int (*print_addr)(const krb5_address *, char *, size_t);
51 int (*parse_addr)(krb5_context, const char*, krb5_address *);
52 int (*order_addr)(krb5_context, const krb5_address*, const krb5_address*);
53 int (*free_addr)(krb5_context, krb5_address*);
54 int (*copy_addr)(krb5_context, const krb5_address*, krb5_address*);
55 int (*mask_boundary)(krb5_context, const krb5_address*, unsigned long,
56 krb5_address*, krb5_address*);
60 * AF_INET - aka IPv4 implementation
63 static krb5_error_code
64 ipv4_sockaddr2addr (const struct sockaddr *sa, krb5_address *a)
66 const struct sockaddr_in *sin4 = (const struct sockaddr_in *)sa;
69 a->addr_type = KRB5_ADDRESS_INET;
70 memcpy (buf, &sin4->sin_addr, 4);
71 return krb5_data_copy(&a->address, buf, 4);
74 static krb5_error_code
75 ipv4_sockaddr2port (const struct sockaddr *sa, int16_t *port)
77 const struct sockaddr_in *sin4 = (const struct sockaddr_in *)sa;
79 *port = sin4->sin_port;
84 ipv4_addr2sockaddr (const krb5_address *a,
86 krb5_socklen_t *sa_size,
89 struct sockaddr_in tmp;
91 memset (&tmp, 0, sizeof(tmp));
92 tmp.sin_family = AF_INET;
93 memcpy (&tmp.sin_addr, a->address.data, 4);
95 memcpy(sa, &tmp, min(sizeof(tmp), *sa_size));
96 *sa_size = sizeof(tmp);
100 ipv4_h_addr2sockaddr(const char *addr,
102 krb5_socklen_t *sa_size,
105 struct sockaddr_in tmp;
107 memset (&tmp, 0, sizeof(tmp));
108 tmp.sin_family = AF_INET;
110 tmp.sin_addr = *((const struct in_addr *)addr);
111 memcpy(sa, &tmp, min(sizeof(tmp), *sa_size));
112 *sa_size = sizeof(tmp);
115 static krb5_error_code
116 ipv4_h_addr2addr (const char *addr,
119 unsigned char buf[4];
121 a->addr_type = KRB5_ADDRESS_INET;
122 memcpy(buf, addr, 4);
123 return krb5_data_copy(&a->address, buf, 4);
127 * Are there any addresses that should be considered `uninteresting'?
131 ipv4_uninteresting (const struct sockaddr *sa)
133 const struct sockaddr_in *sin4 = (const struct sockaddr_in *)sa;
135 if (sin4->sin_addr.s_addr == INADDR_ANY)
142 ipv4_anyaddr (struct sockaddr *sa, krb5_socklen_t *sa_size, int port)
144 struct sockaddr_in tmp;
146 memset (&tmp, 0, sizeof(tmp));
147 tmp.sin_family = AF_INET;
149 tmp.sin_addr.s_addr = INADDR_ANY;
150 memcpy(sa, &tmp, min(sizeof(tmp), *sa_size));
151 *sa_size = sizeof(tmp);
155 ipv4_print_addr (const krb5_address *addr, char *str, size_t len)
159 memcpy (&ia, addr->address.data, 4);
161 return snprintf (str, len, "IPv4:%s", inet_ntoa(ia));
165 ipv4_parse_addr (krb5_context context, const char *address, krb5_address *addr)
170 p = strchr(address, ':');
173 if(strncasecmp(address, "ip:", p - address) != 0 &&
174 strncasecmp(address, "ip4:", p - address) != 0 &&
175 strncasecmp(address, "ipv4:", p - address) != 0 &&
176 strncasecmp(address, "inet:", p - address) != 0)
180 #ifdef HAVE_INET_ATON
181 if(inet_aton(p, &a) == 0)
183 #elif defined(HAVE_INET_ADDR)
184 a.s_addr = inet_addr(p);
185 if(a.s_addr == INADDR_NONE)
190 addr->addr_type = KRB5_ADDRESS_INET;
191 if(krb5_data_alloc(&addr->address, 4) != 0)
193 _krb5_put_int(addr->address.data, ntohl(a.s_addr), addr->address.length);
198 ipv4_mask_boundary(krb5_context context, const krb5_address *inaddr,
199 unsigned long len, krb5_address *low, krb5_address *high)
202 uint32_t l, h, m = 0xffffffff;
205 krb5_set_error_string(context, "IPv4 prefix too large (%ld)", len);
206 return KRB5_PROG_ATYPE_NOSUPP;
210 _krb5_get_int(inaddr->address.data, &ia, inaddr->address.length);
215 low->addr_type = KRB5_ADDRESS_INET;
216 if(krb5_data_alloc(&low->address, 4) != 0)
218 _krb5_put_int(low->address.data, l, low->address.length);
220 high->addr_type = KRB5_ADDRESS_INET;
221 if(krb5_data_alloc(&high->address, 4) != 0) {
222 krb5_free_address(context, low);
225 _krb5_put_int(high->address.data, h, high->address.length);
232 * AF_INET6 - aka IPv6 implementation
237 static krb5_error_code
238 ipv6_sockaddr2addr (const struct sockaddr *sa, krb5_address *a)
240 const struct sockaddr_in6 *sin6 = (const struct sockaddr_in6 *)sa;
242 if (IN6_IS_ADDR_V4MAPPED(&sin6->sin6_addr)) {
243 unsigned char buf[4];
245 a->addr_type = KRB5_ADDRESS_INET;
246 #ifndef IN6_ADDR_V6_TO_V4
247 #ifdef IN6_EXTRACT_V4ADDR
248 #define IN6_ADDR_V6_TO_V4(x) (&IN6_EXTRACT_V4ADDR(x))
250 #define IN6_ADDR_V6_TO_V4(x) ((const struct in_addr *)&(x)->s6_addr[12])
253 memcpy (buf, IN6_ADDR_V6_TO_V4(&sin6->sin6_addr), 4);
254 return krb5_data_copy(&a->address, buf, 4);
256 a->addr_type = KRB5_ADDRESS_INET6;
257 return krb5_data_copy(&a->address,
259 sizeof(sin6->sin6_addr));
263 static krb5_error_code
264 ipv6_sockaddr2port (const struct sockaddr *sa, int16_t *port)
266 const struct sockaddr_in6 *sin6 = (const struct sockaddr_in6 *)sa;
268 *port = sin6->sin6_port;
273 ipv6_addr2sockaddr (const krb5_address *a,
275 krb5_socklen_t *sa_size,
278 struct sockaddr_in6 tmp;
280 memset (&tmp, 0, sizeof(tmp));
281 tmp.sin6_family = AF_INET6;
282 memcpy (&tmp.sin6_addr, a->address.data, sizeof(tmp.sin6_addr));
283 tmp.sin6_port = port;
284 memcpy(sa, &tmp, min(sizeof(tmp), *sa_size));
285 *sa_size = sizeof(tmp);
289 ipv6_h_addr2sockaddr(const char *addr,
291 krb5_socklen_t *sa_size,
294 struct sockaddr_in6 tmp;
296 memset (&tmp, 0, sizeof(tmp));
297 tmp.sin6_family = AF_INET6;
298 tmp.sin6_port = port;
299 tmp.sin6_addr = *((const struct in6_addr *)addr);
300 memcpy(sa, &tmp, min(sizeof(tmp), *sa_size));
301 *sa_size = sizeof(tmp);
304 static krb5_error_code
305 ipv6_h_addr2addr (const char *addr,
308 a->addr_type = KRB5_ADDRESS_INET6;
309 return krb5_data_copy(&a->address, addr, sizeof(struct in6_addr));
317 ipv6_uninteresting (const struct sockaddr *sa)
319 const struct sockaddr_in6 *sin6 = (const struct sockaddr_in6 *)sa;
320 const struct in6_addr *in6 = (const struct in6_addr *)&sin6->sin6_addr;
323 IN6_IS_ADDR_LINKLOCAL(in6)
324 || IN6_IS_ADDR_V4COMPAT(in6);
328 ipv6_anyaddr (struct sockaddr *sa, krb5_socklen_t *sa_size, int port)
330 struct sockaddr_in6 tmp;
332 memset (&tmp, 0, sizeof(tmp));
333 tmp.sin6_family = AF_INET6;
334 tmp.sin6_port = port;
335 tmp.sin6_addr = in6addr_any;
336 *sa_size = sizeof(tmp);
340 ipv6_print_addr (const krb5_address *addr, char *str, size_t len)
342 char buf[128], buf2[3];
343 #ifdef HAVE_INET_NTOP
344 if(inet_ntop(AF_INET6, addr->address.data, buf, sizeof(buf)) == NULL)
347 /* XXX this is pretty ugly, but better than abort() */
349 unsigned char *p = addr->address.data;
351 for(i = 0; i < addr->address.length; i++) {
352 snprintf(buf2, sizeof(buf2), "%02x", p[i]);
353 if(i > 0 && (i & 1) == 0)
354 strlcat(buf, ":", sizeof(buf));
355 strlcat(buf, buf2, sizeof(buf));
358 return snprintf(str, len, "IPv6:%s", buf);
362 ipv6_parse_addr (krb5_context context, const char *address, krb5_address *addr)
368 p = strchr(address, ':');
371 if(strncasecmp(address, "ip6:", p - address) == 0 ||
372 strncasecmp(address, "ipv6:", p - address) == 0 ||
373 strncasecmp(address, "inet6:", p - address) == 0)
377 ret = inet_pton(AF_INET6, address, &in6.s6_addr);
379 addr->addr_type = KRB5_ADDRESS_INET6;
380 ret = krb5_data_alloc(&addr->address, sizeof(in6.s6_addr));
383 memcpy(addr->address.data, in6.s6_addr, sizeof(in6.s6_addr));
390 ipv6_mask_boundary(krb5_context context, const krb5_address *inaddr,
391 unsigned long len, krb5_address *low, krb5_address *high)
393 struct in6_addr addr, laddr, haddr;
398 krb5_set_error_string(context, "IPv6 prefix too large (%ld)", len);
399 return KRB5_PROG_ATYPE_NOSUPP;
402 if (inaddr->address.length != sizeof(addr)) {
403 krb5_set_error_string(context, "IPv6 addr bad length");
404 return KRB5_PROG_ATYPE_NOSUPP;
407 memcpy(&addr, inaddr->address.data, inaddr->address.length);
409 for (i = 0; i < 16; i++) {
410 sub_len = min(8, len);
412 m = 0xff << (8 - sub_len);
414 laddr.s6_addr[i] = addr.s6_addr[i] & m;
415 haddr.s6_addr[i] = (addr.s6_addr[i] & m) | ~m;
423 low->addr_type = KRB5_ADDRESS_INET6;
424 if (krb5_data_alloc(&low->address, sizeof(laddr.s6_addr)) != 0)
426 memcpy(low->address.data, laddr.s6_addr, sizeof(laddr.s6_addr));
428 high->addr_type = KRB5_ADDRESS_INET6;
429 if (krb5_data_alloc(&high->address, sizeof(haddr.s6_addr)) != 0) {
430 krb5_free_address(context, low);
433 memcpy(high->address.data, haddr.s6_addr, sizeof(haddr.s6_addr));
444 #define KRB5_ADDRESS_ARANGE (-100)
452 arange_parse_addr (krb5_context context,
453 const char *address, krb5_address *addr)
456 krb5_address low0, high0;
460 if(strncasecmp(address, "RANGE:", 6) != 0)
465 p = strrchr(address, '/');
467 krb5_addresses addrmask;
471 if (strlcpy(buf, address, sizeof(buf)) > sizeof(buf))
473 buf[p - address] = '\0';
474 ret = krb5_parse_address(context, buf, &addrmask);
477 if(addrmask.len != 1) {
478 krb5_free_addresses(context, &addrmask);
482 address += p - address + 1;
484 num = strtol(address, &q, 10);
485 if (q == address || *q != '\0' || num < 0) {
486 krb5_free_addresses(context, &addrmask);
490 ret = krb5_address_prefixlen_boundary(context, &addrmask.val[0], num,
492 krb5_free_addresses(context, &addrmask);
497 krb5_addresses low, high;
499 strsep_copy(&address, "-", buf, sizeof(buf));
500 ret = krb5_parse_address(context, buf, &low);
504 krb5_free_addresses(context, &low);
508 strsep_copy(&address, "-", buf, sizeof(buf));
509 ret = krb5_parse_address(context, buf, &high);
511 krb5_free_addresses(context, &low);
515 if(high.len != 1 && high.val[0].addr_type != low.val[0].addr_type) {
516 krb5_free_addresses(context, &low);
517 krb5_free_addresses(context, &high);
521 ret = krb5_copy_address(context, &high.val[0], &high0);
523 ret = krb5_copy_address(context, &low.val[0], &low0);
525 krb5_free_address(context, &high0);
527 krb5_free_addresses(context, &low);
528 krb5_free_addresses(context, &high);
533 krb5_data_alloc(&addr->address, sizeof(*a));
534 addr->addr_type = KRB5_ADDRESS_ARANGE;
535 a = addr->address.data;
537 if(krb5_address_order(context, &low0, &high0) < 0) {
548 arange_free (krb5_context context, krb5_address *addr)
551 a = addr->address.data;
552 krb5_free_address(context, &a->low);
553 krb5_free_address(context, &a->high);
554 krb5_data_free(&addr->address);
560 arange_copy (krb5_context context, const krb5_address *inaddr,
561 krb5_address *outaddr)
564 struct arange *i, *o;
566 outaddr->addr_type = KRB5_ADDRESS_ARANGE;
567 ret = krb5_data_alloc(&outaddr->address, sizeof(*o));
570 i = inaddr->address.data;
571 o = outaddr->address.data;
572 ret = krb5_copy_address(context, &i->low, &o->low);
574 krb5_data_free(&outaddr->address);
577 ret = krb5_copy_address(context, &i->high, &o->high);
579 krb5_free_address(context, &o->low);
580 krb5_data_free(&outaddr->address);
587 arange_print_addr (const krb5_address *addr, char *str, size_t len)
591 size_t l, size, ret_len;
593 a = addr->address.data;
595 l = strlcpy(str, "RANGE:", len);
601 ret = krb5_print_address (&a->low, str + size, len - size, &l);
610 l = strlcat(str + size, "-", len - size);
617 ret = krb5_print_address (&a->high, str + size, len - size, &l);
626 arange_order_addr(krb5_context context,
627 const krb5_address *addr1,
628 const krb5_address *addr2)
630 int tmp1, tmp2, sign;
632 const krb5_address *a2;
634 if(addr1->addr_type == KRB5_ADDRESS_ARANGE) {
635 a = addr1->address.data;
638 } else if(addr2->addr_type == KRB5_ADDRESS_ARANGE) {
639 a = addr2->address.data;
645 if(a2->addr_type == KRB5_ADDRESS_ARANGE) {
646 struct arange *b = a2->address.data;
647 tmp1 = krb5_address_order(context, &a->low, &b->low);
650 return sign * krb5_address_order(context, &a->high, &b->high);
651 } else if(a2->addr_type == a->low.addr_type) {
652 tmp1 = krb5_address_order(context, &a->low, a2);
655 tmp2 = krb5_address_order(context, &a->high, a2);
660 return sign * (addr1->addr_type - addr2->addr_type);
665 addrport_print_addr (const krb5_address *addr, char *str, size_t len)
668 krb5_address addr1, addr2;
670 size_t ret_len = 0, l, size = 0;
673 sp = krb5_storage_from_data((krb5_data*)rk_UNCONST(&addr->address));
674 /* for totally obscure reasons, these are not in network byteorder */
675 krb5_storage_set_byteorder(sp, KRB5_STORAGE_BYTEORDER_LE);
677 krb5_storage_seek(sp, 2, SEEK_CUR); /* skip first two bytes */
678 krb5_ret_address(sp, &addr1);
680 krb5_storage_seek(sp, 2, SEEK_CUR); /* skip two bytes */
681 krb5_ret_address(sp, &addr2);
682 krb5_storage_free(sp);
683 if(addr2.addr_type == KRB5_ADDRESS_IPPORT && addr2.address.length == 2) {
685 _krb5_get_int(addr2.address.data, &value, 2);
688 l = strlcpy(str, "ADDRPORT:", len);
695 ret = krb5_print_address(&addr1, str + size, len - size, &l);
704 ret = snprintf(str + size, len - size, ",PORT=%u", port);
711 static struct addr_operations at[] = {
712 {AF_INET, KRB5_ADDRESS_INET, sizeof(struct sockaddr_in),
716 ipv4_h_addr2sockaddr,
718 ipv4_uninteresting, ipv4_anyaddr, ipv4_print_addr, ipv4_parse_addr,
719 NULL, NULL, NULL, ipv4_mask_boundary },
721 {AF_INET6, KRB5_ADDRESS_INET6, sizeof(struct sockaddr_in6),
725 ipv6_h_addr2sockaddr,
727 ipv6_uninteresting, ipv6_anyaddr, ipv6_print_addr, ipv6_parse_addr,
728 NULL, NULL, NULL, ipv6_mask_boundary } ,
730 {KRB5_ADDRESS_ADDRPORT, KRB5_ADDRESS_ADDRPORT, 0,
731 NULL, NULL, NULL, NULL, NULL,
732 NULL, NULL, addrport_print_addr, NULL, NULL, NULL, NULL },
733 /* fake address type */
734 {KRB5_ADDRESS_ARANGE, KRB5_ADDRESS_ARANGE, sizeof(struct arange),
735 NULL, NULL, NULL, NULL, NULL, NULL, NULL,
736 arange_print_addr, arange_parse_addr,
737 arange_order_addr, arange_free, arange_copy }
740 static int num_addrs = sizeof(at) / sizeof(at[0]);
742 static size_t max_sockaddr_size = 0;
748 static struct addr_operations *
751 struct addr_operations *a;
753 for (a = at; a < at + num_addrs; ++a)
759 static struct addr_operations *
760 find_atype(int atype)
762 struct addr_operations *a;
764 for (a = at; a < at + num_addrs; ++a)
765 if (atype == a->atype)
770 krb5_error_code KRB5_LIB_FUNCTION
771 krb5_sockaddr2address (krb5_context context,
772 const struct sockaddr *sa, krb5_address *addr)
774 struct addr_operations *a = find_af(sa->sa_family);
776 krb5_set_error_string (context, "Address family %d not supported",
778 return KRB5_PROG_ATYPE_NOSUPP;
780 return (*a->sockaddr2addr)(sa, addr);
783 krb5_error_code KRB5_LIB_FUNCTION
784 krb5_sockaddr2port (krb5_context context,
785 const struct sockaddr *sa, int16_t *port)
787 struct addr_operations *a = find_af(sa->sa_family);
789 krb5_set_error_string (context, "Address family %d not supported",
791 return KRB5_PROG_ATYPE_NOSUPP;
793 return (*a->sockaddr2port)(sa, port);
796 krb5_error_code KRB5_LIB_FUNCTION
797 krb5_addr2sockaddr (krb5_context context,
798 const krb5_address *addr,
800 krb5_socklen_t *sa_size,
803 struct addr_operations *a = find_atype(addr->addr_type);
806 krb5_set_error_string (context, "Address type %d not supported",
808 return KRB5_PROG_ATYPE_NOSUPP;
810 if (a->addr2sockaddr == NULL) {
811 krb5_set_error_string (context, "Can't convert address type %d to sockaddr",
813 return KRB5_PROG_ATYPE_NOSUPP;
815 (*a->addr2sockaddr)(addr, sa, sa_size, port);
819 size_t KRB5_LIB_FUNCTION
820 krb5_max_sockaddr_size (void)
822 if (max_sockaddr_size == 0) {
823 struct addr_operations *a;
825 for(a = at; a < at + num_addrs; ++a)
826 max_sockaddr_size = max(max_sockaddr_size, a->max_sockaddr_size);
828 return max_sockaddr_size;
831 krb5_boolean KRB5_LIB_FUNCTION
832 krb5_sockaddr_uninteresting(const struct sockaddr *sa)
834 struct addr_operations *a = find_af(sa->sa_family);
835 if (a == NULL || a->uninteresting == NULL)
837 return (*a->uninteresting)(sa);
840 krb5_error_code KRB5_LIB_FUNCTION
841 krb5_h_addr2sockaddr (krb5_context context,
843 const char *addr, struct sockaddr *sa,
844 krb5_socklen_t *sa_size,
847 struct addr_operations *a = find_af(af);
849 krb5_set_error_string (context, "Address family %d not supported", af);
850 return KRB5_PROG_ATYPE_NOSUPP;
852 (*a->h_addr2sockaddr)(addr, sa, sa_size, port);
856 krb5_error_code KRB5_LIB_FUNCTION
857 krb5_h_addr2addr (krb5_context context,
859 const char *haddr, krb5_address *addr)
861 struct addr_operations *a = find_af(af);
863 krb5_set_error_string (context, "Address family %d not supported", af);
864 return KRB5_PROG_ATYPE_NOSUPP;
866 return (*a->h_addr2addr)(haddr, addr);
869 krb5_error_code KRB5_LIB_FUNCTION
870 krb5_anyaddr (krb5_context context,
873 krb5_socklen_t *sa_size,
876 struct addr_operations *a = find_af (af);
879 krb5_set_error_string (context, "Address family %d not supported", af);
880 return KRB5_PROG_ATYPE_NOSUPP;
883 (*a->anyaddr)(sa, sa_size, port);
887 krb5_error_code KRB5_LIB_FUNCTION
888 krb5_print_address (const krb5_address *addr,
889 char *str, size_t len, size_t *ret_len)
891 struct addr_operations *a = find_atype(addr->addr_type);
894 if (a == NULL || a->print_addr == NULL) {
900 l = snprintf(s, len, "TYPE_%d:", addr->addr_type);
901 if (l < 0 || l >= len)
905 for(i = 0; i < addr->address.length; i++) {
906 l = snprintf(s, len, "%02x", ((char*)addr->address.data)[i]);
907 if (l < 0 || l >= len)
916 ret = (*a->print_addr)(addr, str, len);
924 krb5_error_code KRB5_LIB_FUNCTION
925 krb5_parse_address(krb5_context context,
927 krb5_addresses *addresses)
930 struct addrinfo *ai, *a;
935 addresses->val = NULL;
937 for(i = 0; i < num_addrs; i++) {
938 if(at[i].parse_addr) {
940 if((*at[i].parse_addr)(context, string, &addr) == 0) {
941 ALLOC_SEQ(addresses, 1);
942 if (addresses->val == NULL) {
943 krb5_set_error_string(context, "malloc: out of memory");
946 addresses->val[0] = addr;
952 error = getaddrinfo (string, NULL, NULL, &ai);
955 krb5_set_error_string (context, "%s: %s", string, gai_strerror(error));
956 return krb5_eai_to_heim_errno(error, save_errno);
960 for (a = ai; a != NULL; a = a->ai_next)
963 ALLOC_SEQ(addresses, n);
964 if (addresses->val == NULL) {
965 krb5_set_error_string(context, "malloc: out of memory");
971 for (a = ai, i = 0; a != NULL; a = a->ai_next) {
972 if (krb5_sockaddr2address (context, ai->ai_addr, &addresses->val[i]))
974 if(krb5_address_search(context, &addresses->val[i], addresses))
983 int KRB5_LIB_FUNCTION
984 krb5_address_order(krb5_context context,
985 const krb5_address *addr1,
986 const krb5_address *addr2)
988 /* this sucks; what if both addresses have order functions, which
989 should we call? this works for now, though */
990 struct addr_operations *a;
991 a = find_atype(addr1->addr_type);
993 krb5_set_error_string (context, "Address family %d not supported",
995 return KRB5_PROG_ATYPE_NOSUPP;
997 if(a->order_addr != NULL)
998 return (*a->order_addr)(context, addr1, addr2);
999 a = find_atype(addr2->addr_type);
1001 krb5_set_error_string (context, "Address family %d not supported",
1003 return KRB5_PROG_ATYPE_NOSUPP;
1005 if(a->order_addr != NULL)
1006 return (*a->order_addr)(context, addr1, addr2);
1008 if(addr1->addr_type != addr2->addr_type)
1009 return addr1->addr_type - addr2->addr_type;
1010 if(addr1->address.length != addr2->address.length)
1011 return addr1->address.length - addr2->address.length;
1012 return memcmp (addr1->address.data,
1013 addr2->address.data,
1014 addr1->address.length);
1017 krb5_boolean KRB5_LIB_FUNCTION
1018 krb5_address_compare(krb5_context context,
1019 const krb5_address *addr1,
1020 const krb5_address *addr2)
1022 return krb5_address_order (context, addr1, addr2) == 0;
1025 krb5_boolean KRB5_LIB_FUNCTION
1026 krb5_address_search(krb5_context context,
1027 const krb5_address *addr,
1028 const krb5_addresses *addrlist)
1032 for (i = 0; i < addrlist->len; ++i)
1033 if (krb5_address_compare (context, addr, &addrlist->val[i]))
1038 krb5_error_code KRB5_LIB_FUNCTION
1039 krb5_free_address(krb5_context context,
1040 krb5_address *address)
1042 struct addr_operations *a = find_atype (address->addr_type);
1043 if(a != NULL && a->free_addr != NULL)
1044 return (*a->free_addr)(context, address);
1045 krb5_data_free (&address->address);
1046 memset(address, 0, sizeof(*address));
1050 krb5_error_code KRB5_LIB_FUNCTION
1051 krb5_free_addresses(krb5_context context,
1052 krb5_addresses *addresses)
1055 for(i = 0; i < addresses->len; i++)
1056 krb5_free_address(context, &addresses->val[i]);
1057 free(addresses->val);
1059 addresses->val = NULL;
1063 krb5_error_code KRB5_LIB_FUNCTION
1064 krb5_copy_address(krb5_context context,
1065 const krb5_address *inaddr,
1066 krb5_address *outaddr)
1068 struct addr_operations *a = find_af (inaddr->addr_type);
1069 if(a != NULL && a->copy_addr != NULL)
1070 return (*a->copy_addr)(context, inaddr, outaddr);
1071 return copy_HostAddress(inaddr, outaddr);
1074 krb5_error_code KRB5_LIB_FUNCTION
1075 krb5_copy_addresses(krb5_context context,
1076 const krb5_addresses *inaddr,
1077 krb5_addresses *outaddr)
1080 ALLOC_SEQ(outaddr, inaddr->len);
1081 if(inaddr->len > 0 && outaddr->val == NULL)
1083 for(i = 0; i < inaddr->len; i++)
1084 krb5_copy_address(context, &inaddr->val[i], &outaddr->val[i]);
1088 krb5_error_code KRB5_LIB_FUNCTION
1089 krb5_append_addresses(krb5_context context,
1090 krb5_addresses *dest,
1091 const krb5_addresses *source)
1094 krb5_error_code ret;
1096 if(source->len > 0) {
1097 tmp = realloc(dest->val, (dest->len + source->len) * sizeof(*tmp));
1099 krb5_set_error_string(context, "realloc: out of memory");
1103 for(i = 0; i < source->len; i++) {
1104 /* skip duplicates */
1105 if(krb5_address_search(context, &source->val[i], dest))
1107 ret = krb5_copy_address(context,
1109 &dest->val[dest->len]);
1119 * Create an address of type KRB5_ADDRESS_ADDRPORT from (addr, port)
1122 krb5_error_code KRB5_LIB_FUNCTION
1123 krb5_make_addrport (krb5_context context,
1124 krb5_address **res, const krb5_address *addr, int16_t port)
1126 krb5_error_code ret;
1127 size_t len = addr->address.length + 2 + 4 * 4;
1130 *res = malloc (sizeof(**res));
1132 krb5_set_error_string(context, "malloc: out of memory");
1135 (*res)->addr_type = KRB5_ADDRESS_ADDRPORT;
1136 ret = krb5_data_alloc (&(*res)->address, len);
1138 krb5_set_error_string(context, "malloc: out of memory");
1143 p = (*res)->address.data;
1146 *p++ = (addr->addr_type ) & 0xFF;
1147 *p++ = (addr->addr_type >> 8) & 0xFF;
1149 *p++ = (addr->address.length ) & 0xFF;
1150 *p++ = (addr->address.length >> 8) & 0xFF;
1151 *p++ = (addr->address.length >> 16) & 0xFF;
1152 *p++ = (addr->address.length >> 24) & 0xFF;
1154 memcpy (p, addr->address.data, addr->address.length);
1155 p += addr->address.length;
1159 *p++ = (KRB5_ADDRESS_IPPORT ) & 0xFF;
1160 *p++ = (KRB5_ADDRESS_IPPORT >> 8) & 0xFF;
1163 *p++ = (2 >> 8) & 0xFF;
1164 *p++ = (2 >> 16) & 0xFF;
1165 *p++ = (2 >> 24) & 0xFF;
1167 memcpy (p, &port, 2);
1174 * Calculate the boundary addresses of `inaddr'/`prefixlen' and store
1175 * them in `low' and `high'.
1178 krb5_error_code KRB5_LIB_FUNCTION
1179 krb5_address_prefixlen_boundary(krb5_context context,
1180 const krb5_address *inaddr,
1181 unsigned long prefixlen,
1185 struct addr_operations *a = find_atype (inaddr->addr_type);
1186 if(a != NULL && a->mask_boundary != NULL)
1187 return (*a->mask_boundary)(context, inaddr, prefixlen, low, high);
1188 krb5_set_error_string(context, "Address family %d doesn't support "
1189 "address mask operation", inaddr->addr_type);
1190 return KRB5_PROG_ATYPE_NOSUPP;