Mercurial > pidgin
view src/protocols/rendezvous/mdns.c @ 8636:005c96dab551
[gaim-migrate @ 9388]
I finished all my overflow checking and what not. If anyone else
wants to look over it feel free... Null resource records (buddy
icons) should be getting sent now, too. I'm not really sure why
I'm not showing up in my iChat buddy list. Gaim rendezvous people
show up in gaim rendezvous buddy lists, I think.
Eh, I still have to deal with caching and handling queries.
And then messaging.
committer: Tailor Script <tailor@pidgin.im>
| author | Mark Doliner <mark@kingant.net> |
|---|---|
| date | Mon, 12 Apr 2004 01:17:10 +0000 |
| parents | bcb09cc97b63 |
| children | f39884263db0 |
line wrap: on
line source
/** * @file mdns.c Multicast DNS connection code used by rendezvous. * * gaim * * Gaim is the legal property of its developers, whose names are too numerous * to list here. Please refer to the COPYRIGHT file distributed with this * source distribution. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * */ /* * If you want to understand this, read RFC1035 and * draft-cheshire-dnsext-multicastdns.txt, and buy * me a doughnut. thx k bye. */ /* * XXX - This entire file could use another pair of eyes to audit for * any possible buffer overflow exploits. */ #include "internal.h" #include "debug.h" #include "mdns.h" #include "util.h" /******************************************/ /* Functions for freeing a DNS structure */ /******************************************/ /** * Free the rdata associated with a given resource record. */ static void mdns_free_rr_rdata(unsigned short type, void *rdata) { if (rdata == NULL) return; switch (type) { case RENDEZVOUS_RRTYPE_NULL: case RENDEZVOUS_RRTYPE_PTR: g_free(rdata); break; case RENDEZVOUS_RRTYPE_TXT: g_hash_table_destroy(rdata); break; case RENDEZVOUS_RRTYPE_SRV: g_free(((ResourceRecordRDataSRV *)rdata)->target); g_free(rdata); break; } } /** * Free a given question */ static void mdns_free_q(Question *q) { g_free(q->name); } /** * Free a given resource record. */ static void mdns_free_rr(ResourceRecord *rr) { g_free(rr->name); mdns_free_rr_rdata(rr->type, rr->rdata); } void mdns_free(DNSPacket *dns) { int i; for (i = 0; i < dns->header.numquestions; i++) mdns_free_q(&dns->questions[i]); for (i = 0; i < dns->header.numanswers; i++) mdns_free_rr(&dns->answers[i]); for (i = 0; i < dns->header.numauthority; i++) mdns_free_rr(&dns->authority[i]); for (i = 0; i < dns->header.numadditional; i++) mdns_free_rr(&dns->additional[i]); g_free(dns->questions); g_free(dns->answers); g_free(dns->authority); g_free(dns->additional); g_free(dns); } /******************************************/ /* Functions for connection establishment */ /******************************************/ int mdns_establish_socket() { int fd = -1; struct sockaddr_in addr; struct ip_mreq mreq; unsigned char loop; unsigned char ttl; int reuseaddr; gaim_debug_info("mdns", "Establishing multicast socket\n"); /* What's the difference between AF_INET and PF_INET? */ if ((fd = socket(AF_INET, SOCK_DGRAM, 0)) < 0) { gaim_debug_error("mdns", "Unable to create socket: %s\n", strerror(errno)); return -1; } /* Make the socket non-blocking (although it shouldn't matter) */ fcntl(fd, F_SETFL, O_NONBLOCK); /* Bind the socket to a local IP and port */ addr.sin_family = AF_INET; addr.sin_port = htons(5353); addr.sin_addr.s_addr = INADDR_ANY; if (bind(fd, (struct sockaddr *)&addr, sizeof(struct sockaddr_in)) < 0) { gaim_debug_error("mdns", "Unable to bind socket to interface.\n"); close(fd); return -1; } /* Ensure loopback is enabled (it should be enabled by default, but let's be sure) */ loop = 1; if (setsockopt(fd, IPPROTO_IP, IP_MULTICAST_LOOP, &loop, sizeof(unsigned char)) == -1) { gaim_debug_error("mdns", "Error calling setsockopt for IP_MULTICAST_LOOP\n"); } /* Set TTL to 255--required by mDNS */ ttl = 255; if (setsockopt(fd, IPPROTO_IP, IP_MULTICAST_TTL, &ttl, sizeof(unsigned char)) == -1) { gaim_debug_error("mdns", "Error calling setsockopt for IP_MULTICAST_TTL\n"); close(fd); return -1; } /* Join the .local multicast group */ mreq.imr_multiaddr.s_addr = inet_addr("224.0.0.251"); mreq.imr_interface.s_addr = htonl(INADDR_ANY); if (setsockopt(fd, IPPROTO_IP, IP_ADD_MEMBERSHIP, &mreq, sizeof(struct ip_mreq)) == -1) { gaim_debug_error("mdns", "Error calling setsockopt for IP_ADD_MEMBERSHIP\n"); close(fd); return -1; } /* Make the local IP re-usable */ reuseaddr = 1; if (setsockopt(fd, SOL_SOCKET, SO_REUSEADDR, &reuseaddr, sizeof(int)) == -1) { gaim_debug_error("mdns", "Error calling setsockopt for SO_REUSEADDR: %s\n", strerror(errno)); } return fd; } /** * Multicast raw data over a file descriptor. * * @param fd A file descriptor that is a socket bound to a UDP port. * @param datalen The length of the data you wish to send. * @param data The data you wish to send. * @return 0 on success, otherwise return -1. */ static int mdns_send_raw(int fd, unsigned int datalen, unsigned char *data) { struct sockaddr_in addr; int n; addr.sin_family = AF_INET; addr.sin_port = htons(5353); addr.sin_addr.s_addr = inet_addr("224.0.0.251"); n = sendto(fd, data, datalen, 0, (struct sockaddr *)&addr, sizeof(struct sockaddr_in)); if (n == -1) { gaim_debug_error("mdns", "Error sending packet: %d\n", errno); return -1; } else if (n != datalen) { gaim_debug_error("mdns", "Only sent %d of %d bytes of data.\n", n, datalen); return -1; } return 0; } /***************************************/ /* Functions for sending mDNS messages */ /***************************************/ static int mdns_getlength_name(const void *name) { return strlen((const char *)name) + 2; } static int mdns_getlength_RR_rdata(unsigned short type, const void *rdata) { int rdlength = 0; switch (type) { case RENDEZVOUS_RRTYPE_PTR: rdlength = mdns_getlength_name(rdata); break; case RENDEZVOUS_RRTYPE_TXT: { GSList *cur; ResourceRecordRDataTXTNode *node; for (cur = (GSList *)rdata; cur != NULL; cur = cur->next) { node = (ResourceRecordRDataTXTNode *)cur->data; rdlength += 1 + strlen(node->name); if (node->value != NULL) rdlength += 1 + strlen(node->value); } } break; case RENDEZVOUS_RRTYPE_SRV: rdlength = 6 + mdns_getlength_name(((const ResourceRecordRDataSRV *)rdata)->target); break; } return rdlength; } static int mdns_getlength_RR(ResourceRecord *rr) { return mdns_getlength_name(rr->name) + 10 + rr->rdlength; } static int mdns_put_name(char *data, unsigned int datalen, unsigned int offset, const char *name) { int i = 0; char *b, *c; b = (char *)name; while ((c = strchr(b, '.'))) { i += util_put8(&data[offset + i], c - b); /* Length of domain-name segment */ memcpy(&data[offset + i], b, c - b); /* Domain-name segment */ i += c - b; /* Increment the destination pointer */ b = c + 1; } i += util_put8(&data[offset + i], strlen(b)); /* Length of domain-name segment */ strcpy(&data[offset + i], b); /* Domain-name segment */ i += strlen(b) + 1; /* Increment the destination pointer */ return i; } static int mdns_put_RR(char *data, unsigned int datalen, unsigned int offset, const ResourceRecord *rr) { int i = 0; i += mdns_put_name(data, datalen, offset + i, rr->name); i += util_put16(&data[offset + i], rr->type); i += util_put16(&data[offset + i], rr->class); i += util_put32(&data[offset + i], rr->ttl); i += util_put16(&data[offset + i], rr->rdlength); switch (rr->type) { case RENDEZVOUS_RRTYPE_NULL: memcpy(&data[offset + i], rr->rdata, rr->rdlength); i += rr->rdlength; break; case RENDEZVOUS_RRTYPE_PTR: i += mdns_put_name(data, datalen, offset + i, (const char *)rr->rdata); break; case RENDEZVOUS_RRTYPE_TXT: { GSList *cur; ResourceRecordRDataTXTNode *node; int mylength; for (cur = (GSList *)rr->rdata; cur != NULL; cur = cur->next) { node = (ResourceRecordRDataTXTNode *)cur->data; mylength = 1 + strlen(node->name); if (node->value) mylength += 1 + strlen(node->value); i += util_put8(&data[offset + i], mylength - 1); memcpy(&data[offset + i], node->name, strlen(node->name)); i += strlen(node->name); if (node->value) { data[offset + i] = '='; i++; memcpy(&data[offset + i], node->value, strlen(node->value)); i += strlen(node->value); } } } break; case RENDEZVOUS_RRTYPE_SRV: { ResourceRecordRDataSRV *srv = rr->rdata; i += util_put16(&data[offset + i], 0); i += util_put16(&data[offset + i], 0); i += util_put16(&data[offset + i], srv->port); i += mdns_put_name(data, datalen, offset + i, srv->target); } break; } return i; } int mdns_send_dns(int fd, const DNSPacket *dns) { int ret; unsigned int datalen; unsigned char *data; unsigned int offset; int i; /* Calculate the length of the buffer we'll need to hold the DNS packet */ datalen = 0; /* Header */ datalen += 12; /* Questions */ for (i = 0; i < dns->header.numquestions; i++) datalen += mdns_getlength_name(dns->questions[i].name) + 4; /* Resource records */ for (i = 0; i < dns->header.numanswers; i++) datalen += mdns_getlength_RR(&dns->answers[i]); for (i = 0; i < dns->header.numauthority; i++) datalen += mdns_getlength_RR(&dns->authority[i]); for (i = 0; i < dns->header.numadditional; i++) datalen += mdns_getlength_RR(&dns->additional[i]); /* Allocate a buffer */ if (!(data = (unsigned char *)g_malloc(datalen))) { return -ENOMEM; } /* Construct the datagram */ /* Header */ offset = 0; offset += util_put16(&data[offset], dns->header.id); /* ID */ offset += util_put16(&data[offset], dns->header.flags); offset += util_put16(&data[offset], dns->header.numquestions); /* QDCOUNT */ offset += util_put16(&data[offset], dns->header.numanswers); /* ANCOUNT */ offset += util_put16(&data[offset], dns->header.numauthority); /* NSCOUNT */ offset += util_put16(&data[offset], dns->header.numadditional); /* ARCOUNT */ /* Questions */ for (i = 0; i < dns->header.numquestions; i++) { offset += mdns_put_name(data, datalen, offset, dns->questions[i].name); /* QNAME */ offset += util_put16(&data[offset], dns->questions[i].type); /* QTYPE */ offset += util_put16(&data[offset], dns->questions[i].class); /* QCLASS */ } /* Resource records */ for (i = 0; i < dns->header.numanswers; i++) offset += mdns_put_RR(data, datalen, offset, &dns->answers[i]); for (i = 0; i < dns->header.numauthority; i++) offset += mdns_put_RR(data, datalen, offset, &dns->authority[i]); for (i = 0; i < dns->header.numadditional; i++) offset += mdns_put_RR(data, datalen, offset, &dns->additional[i]); /* Send the datagram */ /* Offset can be shorter than datalen because of name compression */ ret = mdns_send_raw(fd, offset, data); g_free(data); return ret; } int mdns_query(int fd, const char *domain, unsigned short type) { int ret; DNSPacket *dns; if (strlen(domain) > 255) { return -EINVAL; } dns = (DNSPacket *)g_malloc(sizeof(DNSPacket)); dns->header.id = 0x0000; dns->header.flags = 0x0000; dns->header.numquestions = 0x0001; dns->header.numanswers = 0x0000; dns->header.numauthority = 0x0000; dns->header.numadditional = 0x0000; dns->questions = (Question *)g_malloc(1 * sizeof(Question)); dns->questions[0].name = g_strdup(domain); dns->questions[0].type = type; dns->questions[0].class = 0x0001; dns->answers = NULL; dns->authority = NULL; dns->additional = NULL; mdns_send_dns(fd, dns); mdns_free(dns); return ret; } int mdns_advertise_null(int fd, const char *name, const char *rdata, unsigned short rdlength) { int ret; DNSPacket *dns; if ((strlen(name) > 255)) { return -EINVAL; } dns = (DNSPacket *)g_malloc(sizeof(DNSPacket)); dns->header.id = 0x0000; dns->header.flags = 0x8400; dns->header.numquestions = 0x0000; dns->header.numanswers = 0x0001; dns->header.numauthority = 0x0000; dns->header.numadditional = 0x0000; dns->questions = NULL; dns->answers = (ResourceRecord *)g_malloc(1 * sizeof(ResourceRecord)); dns->answers[0].name = g_strdup(name); dns->answers[0].type = RENDEZVOUS_RRTYPE_NULL; dns->answers[0].class = 0x0001; dns->answers[0].ttl = 0x00001c20; dns->answers[0].rdlength = rdlength; dns->answers[0].rdata = (void *)rdata; dns->authority = NULL; dns->additional = NULL; mdns_send_dns(fd, dns); /* The rdata should be freed by the caller of this function */ dns->answers[0].rdata = NULL; mdns_free(dns); return ret; } int mdns_advertise_ptr(int fd, const char *name, const char *domain) { int ret; DNSPacket *dns; if ((strlen(name) > 255) || (strlen(domain) > 255)) { return -EINVAL; } dns = (DNSPacket *)g_malloc(sizeof(DNSPacket)); dns->header.id = 0x0000; dns->header.flags = 0x8400; dns->header.numquestions = 0x0000; dns->header.numanswers = 0x0001; dns->header.numauthority = 0x0000; dns->header.numadditional = 0x0000; dns->questions = NULL; dns->answers = (ResourceRecord *)g_malloc(1 * sizeof(ResourceRecord)); dns->answers[0].name = g_strdup(name); dns->answers[0].type = RENDEZVOUS_RRTYPE_PTR; dns->answers[0].class = 0x8001; dns->answers[0].ttl = 0x00001c20; dns->answers[0].rdata = (void *)g_strdup(domain); dns->answers[0].rdlength = mdns_getlength_RR_rdata(dns->answers[0].type, dns->answers[0].rdata); dns->authority = NULL; dns->additional = NULL; mdns_send_dns(fd, dns); mdns_free(dns); return ret; } int mdns_advertise_txt(int fd, const char *name, const GSList *rdata) { int ret; DNSPacket *dns; if ((strlen(name) > 255)) { return -EINVAL; } dns = (DNSPacket *)g_malloc(sizeof(DNSPacket)); dns->header.id = 0x0000; dns->header.flags = 0x8400; dns->header.numquestions = 0x0000; dns->header.numanswers = 0x0001; dns->header.numauthority = 0x0000; dns->header.numadditional = 0x0000; dns->questions = NULL; dns->answers = (ResourceRecord *)g_malloc(1 * sizeof(ResourceRecord)); dns->answers[0].name = g_strdup(name); dns->answers[0].type = RENDEZVOUS_RRTYPE_TXT; dns->answers[0].class = 0x8001; dns->answers[0].ttl = 0x00001c20; dns->answers[0].rdata = (void *)rdata; dns->answers[0].rdlength = mdns_getlength_RR_rdata(dns->answers[0].type, dns->answers[0].rdata); dns->authority = NULL; dns->additional = NULL; mdns_send_dns(fd, dns); /* The rdata should be freed by the caller of this function */ dns->answers[0].rdata = NULL; mdns_free(dns); return ret; } int mdns_advertise_srv(int fd, const char *name, unsigned short port, const char *target) { int ret; DNSPacket *dns; ResourceRecordRDataSRV *rdata; if ((strlen(target) > 255)) { return -EINVAL; } rdata = g_malloc(sizeof(ResourceRecordRDataSRV)); rdata->port = port; rdata->target = g_strdup(target); dns = (DNSPacket *)g_malloc(sizeof(DNSPacket)); dns->header.id = 0x0000; dns->header.flags = 0x8400; dns->header.numquestions = 0x0000; dns->header.numanswers = 0x0000; dns->header.numauthority = 0x0001; dns->header.numadditional = 0x0000; dns->questions = NULL; dns->answers = NULL; dns->authority = (ResourceRecord *)g_malloc(1 * sizeof(ResourceRecord)); dns->authority[0].name = g_strdup(name); dns->authority[0].type = RENDEZVOUS_RRTYPE_SRV; dns->authority[0].class = 0x8001; dns->authority[0].ttl = 0x00001c20; dns->authority[0].rdata = rdata; dns->authority[0].rdlength = mdns_getlength_RR_rdata(dns->authority[0].type, dns->authority[0].rdata); dns->additional = NULL; mdns_send_dns(fd, dns); mdns_free(dns); return ret; } /***************************************/ /* Functions for parsing mDNS messages */ /***************************************/ /* * Read in a domain name from the given buffer starting at the given * offset. This handles using domain name compression to jump around * the data buffer, if needed. * * @return A null-terminated string representation of the domain name. * This should be g_free'd when no longer needed. */ static gchar * mdns_read_name(const char *data, int datalen, unsigned int offset) { GString *ret = g_string_new(""); unsigned char tmp, newoffset; while ((offset <= datalen) && ((tmp = util_get8(&data[offset])) != 0)) { offset++; if ((tmp & 0xc0) == 0) { /* First two bits are 00 */ if (offset + tmp > datalen) /* Attempt to read past end of data! Bailing! */ return g_string_free(ret, TRUE); if (*ret->str != '\0') g_string_append_c(ret, '.'); g_string_append_len(ret, &data[offset], tmp); offset += tmp; } else if ((tmp & 0x40) == 0) { /* First two bits are 10 */ /* Reserved for future use */ } else if ((tmp & 0x80) == 1) { /* First two bits are 01 */ /* Reserved for future use */ } else { /* First two bits are 11 */ /* Jump to another position in the data */ newoffset = util_get8(&data[offset]); if (newoffset >= offset) /* Invalid pointer! Could lead to infinite recursion! Bailing! */ return g_string_free(ret, TRUE); offset = newoffset; } } if (offset > datalen) return g_string_free(ret, TRUE); return g_string_free(ret, FALSE); } /* * Determine how many bytes long a portion of the domain name is * at the given offset. This does NOT jump around the data array * in the case of domain name compression. * * @return The length of the portion of the domain name. */ static int mdns_read_name_len(const char *data, unsigned int datalen, unsigned int offset) { int startoffset = offset; unsigned char tmp; while ((offset <= datalen) && ((tmp = util_get8(&data[offset])) != 0)) { offset++; if ((tmp & 0xc0) == 0) { /* First two bits are 00 */ if (offset + tmp > datalen) /* Attempt to read past end of data! Bailing! */ return 0; offset += tmp; } else if ((tmp & 0x40) == 0) { /* First two bits are 10 */ /* Reserved for future use */ } else if ((tmp & 0x80) == 1) { /* First two bits are 01 */ /* Reserved for future use */ } else { /* First two bits are 11 */ /* End of this portion of the domain name */ break; } } return offset - startoffset + 1; } /* * * */ static Question * mdns_read_questions(int numquestions, const char *data, unsigned int datalen, int *offset) { Question *ret; int i; ret = (Question *)g_malloc0(numquestions * sizeof(Question)); for (i = 0; i < numquestions; i++) { ret[i].name = mdns_read_name(data, datalen, *offset); *offset += mdns_read_name_len(data, datalen, *offset); if (*offset + 4 > datalen) break; ret[i].type = util_get16(&data[*offset]); /* QTYPE */ *offset += 2; ret[i].class = util_get16(&data[*offset]); /* QCLASS */ *offset += 2; if (*offset > datalen) break; } /* Malformed packet check */ if (i < numquestions) { for (i = 0; i < numquestions; i++) g_free(ret[i].name); g_free(ret); return NULL; } return ret; } /* * Read in a chunk of data, probably a buddy icon. * */ static unsigned char * mdns_read_rr_rdata_null(const char *data, unsigned int datalen, unsigned int offset, unsigned short rdlength) { unsigned char *ret = NULL; if (offset + rdlength > datalen) return NULL; ret = (unsigned char *)g_malloc(rdlength); memcpy(ret, &data[offset], rdlength); return ret; } /* * Read in a compressed name. * */ static char * mdns_read_rr_rdata_ptr(const char *data, unsigned int datalen, unsigned int offset) { return mdns_read_name(data, datalen, offset); } /* * Read in a list of name=value pairs into a GHashTable. * */ static GHashTable * mdns_read_rr_rdata_txt(const char *data, unsigned int datalen, unsigned int offset, unsigned short rdlength) { GHashTable *ret = g_hash_table_new_full(g_str_hash, g_str_equal, g_free, g_free); int endoffset = offset + rdlength; unsigned char tmp; char buf[256], *key, *value; while (offset < endoffset) { /* Read in the length of the next name/value pair */ tmp = util_get8(&data[offset]); offset++; /* Malformed packet check */ if (offset + tmp > endoffset) break; /* Read in the next name/value pair */ strncpy(buf, &data[offset], tmp); offset += tmp; if (buf[0] == '=') { /* Name/value pairs beginning with = are silently ignored */ continue; } /* The value is a substring of buf, starting just after the = */ buf[tmp] = '\0'; value = strchr(buf, '='); if (value != NULL) { value[0] = '\0'; value++; } /* Make the key all lowercase */ key = g_utf8_strdown(buf, -1); if (!g_hash_table_lookup(ret, key)) g_hash_table_insert(ret, key, g_strdup(value)); else g_free(key); } /* Malformed packet check */ if ((offset > datalen) || (offset != endoffset)) { g_hash_table_destroy(ret); return NULL; } return ret; } /* * * */ static ResourceRecordSRV * mdns_read_rr_rdata_srv(const char *data, unsigned int datalen, unsigned int offset, unsigned short rdlength) { ResourceRecordSRV *ret = NULL; int endoffset = offset + rdlength; /* Malformed packet check */ if (offset + 7 > endoffset) return NULL; ret = g_malloc(sizeof(ResourceRecordSRV)); /* Read in the priority */ ret->priority = util_get16(&data[offset]); offset += 2; /* Read in the weight */ ret->weight = util_get16(&data[offset]); offset += 2; /* Read in the port */ ret->port = util_get16(&data[offset]); offset += 2; /* Read in the target name */ /* * XXX - RFC2782 says it's not supposed to be an alias... * but it was in the packet capture I looked at from iChat. */ ret->target = mdns_read_name(data, datalen, offset); offset += mdns_read_name_len(data, datalen, offset); /* Malformed packet check */ if ((offset > endoffset) || (ret->target == NULL)) { g_free(ret->target); g_free(ret); return NULL; } return ret; } /* * * */ static ResourceRecord * mdns_read_rr(int numrecords, const char *data, unsigned int datalen, int *offset) { ResourceRecord *ret; int i; ret = (ResourceRecord *)g_malloc0(numrecords * sizeof(ResourceRecord)); for (i = 0; i < numrecords; i++) { /* NAME */ ret[i].name = mdns_read_name(data, datalen, *offset); *offset += mdns_read_name_len(data, datalen, *offset); /* Malformed packet check */ if (*offset + 10 > datalen) break; /* TYPE */ ret[i].type = util_get16(&data[*offset]); *offset += 2; /* CLASS */ ret[i].class = util_get16(&data[*offset]); *offset += 2; /* TTL */ ret[i].ttl = util_get32(&data[*offset]); *offset += 4; /* RDLENGTH */ ret[i].rdlength = util_get16(&data[*offset]); *offset += 2; /* RDATA */ if (ret[i].type == RENDEZVOUS_RRTYPE_NULL) { ret[i].rdata = mdns_read_rr_rdata_null(data, datalen, *offset, ret[i].rdlength); if (ret[i].rdata == NULL) break; } else if (ret[i].type == RENDEZVOUS_RRTYPE_PTR) { ret[i].rdata = mdns_read_rr_rdata_ptr(data, datalen, *offset); if (ret[i].rdata == NULL) break; } else if (ret[i].type == RENDEZVOUS_RRTYPE_TXT) { ret[i].rdata = mdns_read_rr_rdata_txt(data, datalen, *offset, ret[i].rdlength); if (ret[i].rdata == NULL) break; } else if (ret[i].type == RENDEZVOUS_RRTYPE_SRV) { ret[i].rdata = mdns_read_rr_rdata_srv(data, datalen, *offset, ret[i].rdlength); if (ret[i].rdata == NULL) break; } /* Malformed packet check */ *offset += ret[i].rdlength; if (*offset > datalen) break; } /* Malformed packet check */ if (i < numrecords) { for (i = 0; i < numrecords; i++) { g_free(ret[i].name); mdns_free_rr_rdata(ret[i].type, ret[i].rdata); } g_free(ret); return NULL; } return ret; } /* * * */ DNSPacket * mdns_read(int fd) { DNSPacket *ret = NULL; int offset; /* Current position in datagram */ /* XXX - Find out what to use as a maximum incoming UDP packet size */ /* char data[512]; */ char data[10096]; unsigned int datalen; struct sockaddr_in addr; socklen_t addrlen; /* Read in an mDNS packet */ addrlen = sizeof(struct sockaddr_in); if ((datalen = recvfrom(fd, data, sizeof(data), 0, (struct sockaddr *)&addr, &addrlen)) == -1) { gaim_debug_error("mdns", "Error reading packet: %d\n", errno); return NULL; } ret = (DNSPacket *)g_malloc0(sizeof(DNSPacket)); /* Parse the incoming packet, starting from 0 */ offset = 0; if (offset + 12 > datalen) { g_free(ret); return NULL; } /* The header section */ ret->header.id = util_get16(&data[offset]); /* ID */ offset += 2; /* For the flags, some bits must be 0 and some must be 1, the rest are ignored */ ret->header.flags = util_get16(&data[offset]); /* Flags (QR, OPCODE, AA, TC, RD, RA, Z, AD, CD, and RCODE */ offset += 2; if ((ret->header.flags & 0x8000) == 0) { /* QR should be 1 */ g_free(ret); return NULL; } if ((ret->header.flags & 0x7800) != 0) { /* OPCODE should be all 0's */ g_free(ret); return NULL; } /* Read in the number of other things in the packet */ ret->header.numquestions = util_get16(&data[offset]); offset += 2; ret->header.numanswers = util_get16(&data[offset]); offset += 2; ret->header.numauthority = util_get16(&data[offset]); offset += 2; ret->header.numadditional = util_get16(&data[offset]); offset += 2; /* Read in all the questions */ ret->questions = mdns_read_questions(ret->header.numquestions, data, datalen, &offset); /* Read in all resource records */ ret->answers = mdns_read_rr(ret->header.numanswers, data, datalen, &offset); /* Read in all authority records */ ret->authority = mdns_read_rr(ret->header.numauthority, data, datalen, &offset); /* Read in all additional records */ ret->additional = mdns_read_rr(ret->header.numadditional, data, datalen, &offset); /* Malformed packet check */ if ((ret->header.numquestions > 0 && ret->questions == NULL) || (ret->header.numanswers > 0 && ret->answers == NULL) || (ret->header.numauthority > 0 && ret->authority == NULL) || (ret->header.numadditional > 0 && ret->additional == NULL)) { gaim_debug_error("mdns", "Received an invalid DNS packet.\n"); return NULL; } /* We should be at the end of the packet */ if (offset != datalen) { gaim_debug_error("mdns", "Finished parsing before end of DNS packet! Only parsed %d of %d bytes.", offset, datalen); g_free(ret); return NULL; } return ret; }