2000-01-03 10:33:22 +08:00
|
|
|
/* $OpenLDAP$ */
|
|
|
|
/*
|
2003-01-04 04:20:47 +08:00
|
|
|
* Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
|
2000-01-03 10:33:22 +08:00
|
|
|
* COPYING RESTRICTIONS APPLY, see COPYRIGHT file
|
|
|
|
*/
|
|
|
|
|
|
|
|
/*
|
2000-04-25 18:38:03 +08:00
|
|
|
* locate LDAP servers using DNS SRV records.
|
|
|
|
* Location code based on MIT Kerberos KDC location code.
|
2000-01-03 10:33:22 +08:00
|
|
|
*/
|
|
|
|
#include "portable.h"
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
|
|
|
#include <ac/stdlib.h>
|
|
|
|
|
|
|
|
#include <ac/param.h>
|
|
|
|
#include <ac/socket.h>
|
|
|
|
#include <ac/string.h>
|
|
|
|
#include <ac/time.h>
|
|
|
|
|
|
|
|
#include "ldap-int.h"
|
|
|
|
|
|
|
|
#ifdef HAVE_ARPA_NAMESER_H
|
|
|
|
#include <arpa/nameser.h>
|
|
|
|
#endif
|
|
|
|
#ifdef HAVE_RESOLV_H
|
|
|
|
#include <resolv.h>
|
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Sometimes this is not defined. */
|
|
|
|
#ifndef T_SRV
|
|
|
|
#define T_SRV 33
|
|
|
|
#endif /* T_SRV */
|
|
|
|
|
2000-04-25 18:38:03 +08:00
|
|
|
int ldap_dn2domain(
|
|
|
|
LDAP_CONST char *dn_in,
|
|
|
|
char **domainp)
|
|
|
|
{
|
2002-08-18 03:42:59 +08:00
|
|
|
int i, j;
|
|
|
|
char *ndomain;
|
|
|
|
LDAPDN *dn = NULL;
|
|
|
|
LDAPRDN *rdn = NULL;
|
|
|
|
LDAPAVA *ava = NULL;
|
|
|
|
struct berval domain = { 0, NULL };
|
2003-01-19 21:35:53 +08:00
|
|
|
static const struct berval DC = BER_BVC("DC");
|
|
|
|
static const struct berval DCOID = BER_BVC("0.9.2342.19200300.100.1.25");
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-06-06 08:26:50 +08:00
|
|
|
assert( dn_in != NULL );
|
|
|
|
assert( domainp != NULL );
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
if ( ldap_str2dn( dn_in, &dn, LDAP_DN_FORMAT_LDAP ) != LDAP_SUCCESS ) {
|
2000-05-11 05:48:18 +08:00
|
|
|
return -2;
|
|
|
|
}
|
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
if( dn ) for( i=0; (*dn)[i] != NULL; i++ ) {
|
|
|
|
rdn = (*dn)[i];
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
for( j=0; (*rdn)[j] != NULL; j++ ) {
|
|
|
|
ava = (*rdn)[j];
|
2000-05-27 02:05:27 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
if( (*dn)[i][j][1] == NULL &&
|
|
|
|
!ava->la_flags && ava->la_value.bv_len &&
|
|
|
|
( ber_bvstrcasecmp( &ava->la_attr, &DC ) == 0
|
|
|
|
|| ber_bvstrcasecmp( &ava->la_attr, &DCOID ) == 0 ) )
|
2000-05-11 05:48:18 +08:00
|
|
|
{
|
2002-08-18 03:42:59 +08:00
|
|
|
if( domain.bv_len == 0 ) {
|
|
|
|
ndomain = LDAP_REALLOC( domain.bv_val,
|
|
|
|
ava->la_value.bv_len + 1);
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
if( ndomain == NULL ) {
|
|
|
|
goto return_error;
|
|
|
|
}
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
domain.bv_val = ndomain;
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
AC_MEMCPY( domain.bv_val, ava->la_value.bv_val,
|
|
|
|
ava->la_value.bv_len );
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
domain.bv_len = ava->la_value.bv_len;
|
|
|
|
domain.bv_val[domain.bv_len] = '\0';
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2000-06-06 07:56:26 +08:00
|
|
|
} else {
|
2002-08-18 03:42:59 +08:00
|
|
|
ndomain = LDAP_REALLOC( domain.bv_val,
|
|
|
|
ava->la_value.bv_len + sizeof(".") + domain.bv_len );
|
|
|
|
|
|
|
|
if( ndomain == NULL ) {
|
|
|
|
goto return_error;
|
|
|
|
}
|
|
|
|
|
|
|
|
domain.bv_val = ndomain;
|
|
|
|
domain.bv_val[domain.bv_len++] = '.';
|
|
|
|
AC_MEMCPY( &domain.bv_val[domain.bv_len],
|
|
|
|
ava->la_value.bv_val, ava->la_value.bv_len );
|
|
|
|
domain.bv_len += ava->la_value.bv_len;
|
|
|
|
domain.bv_val[domain.bv_len] = '\0';
|
2000-06-06 07:56:26 +08:00
|
|
|
}
|
2002-08-18 03:42:59 +08:00
|
|
|
} else {
|
|
|
|
domain.bv_len = 0;
|
2000-05-11 05:48:18 +08:00
|
|
|
}
|
2002-08-18 03:42:59 +08:00
|
|
|
}
|
|
|
|
}
|
2000-05-27 02:05:27 +08:00
|
|
|
|
2000-05-11 05:48:18 +08:00
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
if( domain.bv_len == 0 && domain.bv_val != NULL ) {
|
|
|
|
LDAP_FREE( domain.bv_val );
|
|
|
|
domain.bv_val = NULL;
|
2000-05-27 02:05:27 +08:00
|
|
|
}
|
|
|
|
|
2002-08-18 03:42:59 +08:00
|
|
|
ldap_dnfree( dn );
|
|
|
|
*domainp = domain.bv_val;
|
2000-05-11 05:48:18 +08:00
|
|
|
return 0;
|
2002-08-18 03:42:59 +08:00
|
|
|
|
|
|
|
return_error:
|
|
|
|
ldap_dnfree( dn );
|
|
|
|
LDAP_FREE( domain.bv_val );
|
|
|
|
return -1;
|
2000-04-25 18:38:03 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
int ldap_domain2dn(
|
|
|
|
LDAP_CONST char *domain_in,
|
|
|
|
char **dnp)
|
2000-01-03 10:33:22 +08:00
|
|
|
{
|
2002-10-09 04:37:30 +08:00
|
|
|
char *domain, *s, *tok_r, *dn, *dntmp;
|
|
|
|
size_t loc;
|
2000-01-03 10:33:22 +08:00
|
|
|
|
2002-06-06 08:26:50 +08:00
|
|
|
assert( domain_in != NULL );
|
|
|
|
assert( dnp != NULL );
|
|
|
|
|
2002-10-09 04:37:30 +08:00
|
|
|
domain = LDAP_STRDUP(domain_in);
|
|
|
|
if (domain == NULL) {
|
2002-06-06 08:26:50 +08:00
|
|
|
return LDAP_NO_MEMORY;
|
2000-01-03 10:33:22 +08:00
|
|
|
}
|
2002-10-09 04:37:30 +08:00
|
|
|
dn = NULL;
|
|
|
|
loc = 0;
|
|
|
|
|
|
|
|
for (s = ldap_pvt_strtok(domain, ".", &tok_r);
|
|
|
|
s != NULL;
|
|
|
|
s = ldap_pvt_strtok(NULL, ".", &tok_r))
|
|
|
|
{
|
|
|
|
size_t len = strlen(s);
|
|
|
|
|
|
|
|
dntmp = (char *) LDAP_REALLOC(dn, loc + sizeof(",dc=") + len );
|
2002-10-10 16:59:19 +08:00
|
|
|
if (dntmp == NULL) {
|
|
|
|
if (dn != NULL)
|
2002-10-09 04:37:30 +08:00
|
|
|
LDAP_FREE(dn);
|
|
|
|
LDAP_FREE(domain);
|
|
|
|
return LDAP_NO_MEMORY;
|
|
|
|
}
|
|
|
|
|
|
|
|
dn = dntmp;
|
|
|
|
|
|
|
|
if (loc > 0) {
|
|
|
|
/* not first time. */
|
|
|
|
strcpy(dn + loc, ",");
|
|
|
|
loc++;
|
|
|
|
}
|
|
|
|
strcpy(dn + loc, "dc=");
|
|
|
|
loc += sizeof("dc=")-1;
|
|
|
|
|
|
|
|
strcpy(dn + loc, s);
|
|
|
|
loc += len;
|
2000-01-03 10:33:22 +08:00
|
|
|
}
|
|
|
|
|
2002-10-09 04:37:30 +08:00
|
|
|
LDAP_FREE(domain);
|
|
|
|
*dnp = dn;
|
|
|
|
return LDAP_SUCCESS;
|
2000-01-03 10:33:22 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
2000-04-25 18:38:03 +08:00
|
|
|
* Lookup and return LDAP servers for domain (using the DNS
|
|
|
|
* SRV record _ldap._tcp.domain).
|
2000-01-03 10:33:22 +08:00
|
|
|
*/
|
2000-04-25 18:38:03 +08:00
|
|
|
int ldap_domain2hostlist(
|
|
|
|
LDAP_CONST char *domain,
|
|
|
|
char **list )
|
2000-01-03 10:33:22 +08:00
|
|
|
{
|
2000-06-06 07:56:26 +08:00
|
|
|
#ifdef HAVE_RES_QUERY
|
2002-08-25 01:03:24 +08:00
|
|
|
#define DNSBUFSIZ (64*1024)
|
2000-01-03 10:33:22 +08:00
|
|
|
char *request;
|
|
|
|
char *hostlist = NULL;
|
|
|
|
int rc, len, cur = 0;
|
2002-08-25 01:03:24 +08:00
|
|
|
unsigned char reply[DNSBUFSIZ];
|
2000-01-03 10:33:22 +08:00
|
|
|
|
2002-06-05 23:46:26 +08:00
|
|
|
assert( domain != NULL );
|
|
|
|
assert( list != NULL );
|
2000-04-25 18:38:03 +08:00
|
|
|
|
2002-06-05 23:46:26 +08:00
|
|
|
if( *domain == '\0' ) {
|
2000-04-25 18:38:03 +08:00
|
|
|
return LDAP_PARAM_ERROR;
|
|
|
|
}
|
|
|
|
|
2000-01-03 10:33:22 +08:00
|
|
|
request = LDAP_MALLOC(strlen(domain) + sizeof("_ldap._tcp."));
|
|
|
|
if (request == NULL) {
|
2002-01-08 04:18:38 +08:00
|
|
|
return LDAP_NO_MEMORY;
|
2000-01-03 10:33:22 +08:00
|
|
|
}
|
|
|
|
sprintf(request, "_ldap._tcp.%s", domain);
|
|
|
|
|
|
|
|
#ifdef LDAP_R_COMPILE
|
|
|
|
ldap_pvt_thread_mutex_lock(&ldap_int_resolv_mutex);
|
|
|
|
#endif
|
|
|
|
|
2000-05-30 03:47:48 +08:00
|
|
|
rc = LDAP_UNAVAILABLE;
|
2000-06-06 07:56:26 +08:00
|
|
|
len = res_query(request, C_IN, T_SRV, reply, sizeof(reply));
|
2000-01-03 10:33:22 +08:00
|
|
|
if (len >= 0) {
|
|
|
|
unsigned char *p;
|
2002-08-25 01:03:24 +08:00
|
|
|
char host[DNSBUFSIZ];
|
2000-01-03 10:33:22 +08:00
|
|
|
int status;
|
|
|
|
u_short port;
|
2000-04-25 18:38:03 +08:00
|
|
|
/* int priority, weight; */
|
2000-01-03 10:33:22 +08:00
|
|
|
|
|
|
|
/* Parse out query */
|
|
|
|
p = reply;
|
|
|
|
p += sizeof(HEADER);
|
|
|
|
status = dn_expand(reply, reply + len, p, host, sizeof(host));
|
|
|
|
if (status < 0) {
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
p += status;
|
|
|
|
p += 4;
|
|
|
|
|
|
|
|
while (p < reply + len) {
|
|
|
|
int type, class, ttl, size;
|
|
|
|
status = dn_expand(reply, reply + len, p, host, sizeof(host));
|
|
|
|
if (status < 0) {
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
p += status;
|
|
|
|
type = (p[0] << 8) | p[1];
|
|
|
|
p += 2;
|
|
|
|
class = (p[0] << 8) | p[1];
|
|
|
|
p += 2;
|
|
|
|
ttl = (p[0] << 24) | (p[1] << 16) | (p[2] << 8) | p[3];
|
|
|
|
p += 4;
|
|
|
|
size = (p[0] << 8) | p[1];
|
|
|
|
p += 2;
|
|
|
|
if (type == T_SRV) {
|
|
|
|
int buflen;
|
|
|
|
status = dn_expand(reply, reply + len, p + 6, host, sizeof(host));
|
|
|
|
if (status < 0) {
|
|
|
|
goto out;
|
|
|
|
}
|
2000-04-25 18:38:03 +08:00
|
|
|
/* ignore priority and weight for now */
|
|
|
|
/* priority = (p[0] << 8) | p[1]; */
|
|
|
|
/* weight = (p[2] << 8) | p[3]; */
|
2000-01-03 10:33:22 +08:00
|
|
|
port = (p[4] << 8) | p[5];
|
|
|
|
|
2002-07-09 02:45:53 +08:00
|
|
|
buflen = strlen(host) + sizeof(":65355 ");
|
2000-01-03 10:33:22 +08:00
|
|
|
hostlist = (char *) LDAP_REALLOC(hostlist, cur + buflen);
|
|
|
|
if (hostlist == NULL) {
|
|
|
|
rc = LDAP_NO_MEMORY;
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
if (cur > 0) {
|
|
|
|
/* not first time around */
|
|
|
|
hostlist[cur++] = ' ';
|
|
|
|
}
|
|
|
|
cur += sprintf(&hostlist[cur], "%s:%hd", host, port);
|
|
|
|
}
|
|
|
|
p += size;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if (hostlist == NULL) {
|
|
|
|
/* No LDAP servers found in DNS. */
|
|
|
|
rc = LDAP_UNAVAILABLE;
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
rc = LDAP_SUCCESS;
|
2000-04-25 18:38:03 +08:00
|
|
|
*list = hostlist;
|
2000-01-03 10:33:22 +08:00
|
|
|
|
|
|
|
out:
|
|
|
|
#ifdef LDAP_R_COMPILE
|
|
|
|
ldap_pvt_thread_mutex_unlock(&ldap_int_resolv_mutex);
|
|
|
|
#endif
|
|
|
|
|
|
|
|
if (request != NULL) {
|
|
|
|
LDAP_FREE(request);
|
|
|
|
}
|
2000-04-25 18:38:03 +08:00
|
|
|
if (rc != LDAP_SUCCESS && hostlist != NULL) {
|
2000-01-03 10:33:22 +08:00
|
|
|
LDAP_FREE(hostlist);
|
|
|
|
}
|
|
|
|
return rc;
|
|
|
|
#else
|
|
|
|
return LDAP_NOT_SUPPORTED;
|
2000-06-06 07:56:26 +08:00
|
|
|
#endif /* HAVE_RES_QUERY */
|
2000-01-03 10:33:22 +08:00
|
|
|
}
|