2 * checkalias.c -- check to see if two hostnames or IP addresses are equivalent
4 * Copyright 1997 by Eric S. Raymond
5 * For license terms, see the file COPYING in this directory.
11 #include <sys/types.h>
12 #ifdef HAVE_NET_SOCKET_H
13 #include <net/socket.h>
15 #include <sys/socket.h>
17 #include <netinet/in.h>
18 #ifdef HAVE_ARPA_INET_H
19 #include <arpa/inet.h>
24 #include "fetchmail.h"
25 #include "getaddrinfo.h"
29 typedef unsigned char address_t[sizeof (struct in_addr)];
31 #ifdef HAVE_RES_SEARCH
32 static int getaddresses(struct addrinfo **result, const char *name)
34 struct addrinfo hints;
36 memset(&hints, 0, sizeof(hints));
37 hints.ai_socktype=SOCK_STREAM;
38 hints.ai_protocol=PF_UNSPEC;
39 hints.ai_family=AF_UNSPEC;
40 return fm_getaddrinfo(name, NULL, &hints, result);
43 /* XXX FIXME: doesn't detect if an IPv6-mapped IPv4 address
44 * matches a real IPv4 address */
45 static int compareaddr(const struct addrinfo *a1, const struct addrinfo *a2)
47 if (a1->ai_family != a2->ai_family) return FALSE;
48 if (a1->ai_addrlen != a2->ai_addrlen) return FALSE;
49 return (!memcmp(a1->ai_addr, a2->ai_addr, a1->ai_addrlen));
52 static int is_ip_alias(const char *name1,const char *name2)
54 * Given two hostnames as arguments, returns TRUE if they
55 * have at least one IP address in common.
56 * No check is done on errors returned by gethostbyname,
57 * the calling function does them.
62 struct addrinfo *res1 = NULL, *res2 = NULL, *ii, *ij;
64 if (getaddresses(&res1, name1))
67 if (getaddresses(&res2, name2))
70 for (ii = res1 ; ii ; ii = ii -> ai_next) {
71 for (ij = res2 ; ij ; ij = ij -> ai_next) {
72 if (compareaddr(ii, ij)) {
81 fm_freeaddrinfo(res2);
83 fm_freeaddrinfo(res1);
88 int is_host_alias(const char *name, struct query *ctl, struct addrinfo **res)
89 /* determine whether name is a DNS alias of the mailserver for this query */
91 #ifdef HAVE_RES_SEARCH
92 struct mxentry *mxp, *mxrecords;
94 struct addrinfo hints, *res_st;
99 struct hostdata *lead_server =
100 ctl->server.lead_server ? ctl->server.lead_server : &ctl->server;
103 * The first two checks are optimizations that will catch a good
106 * (1) check against the `true name' deduced from the poll label
107 * and the via option (if present) at the beginning of the poll cycle.
108 * Odds are good this will either be the mailserver's FQDN or a suffix of
109 * it with the mailserver's domain's default host name omitted.
111 * (2) Then check the rest of the `also known as'
112 * cache accumulated by previous DNS checks. This cache is primed
113 * by the aka list option.
115 * Any of these on a mail address is definitive. Only if the
116 * name doesn't match any is it time to call the bind library.
117 * If this happens odds are good we're looking at an MX name.
119 if (strcasecmp(lead_server->truename, name) == 0)
121 else if (str_in_list(&lead_server->akalist, name, TRUE))
125 * Now check for a suffix match on the akalist. The theory here is
126 * that if the user says `aka netaxs.com', we actually want to match
127 * foo.netaxs.com and bar.netaxs.com.
129 namelen = strlen(name);
130 for (idl = lead_server->akalist; idl; idl = idl->next)
135 * Test is >= here because str_in_list() should have caught the
136 * equal-length case above. Doing it this way guarantees that
137 * ep[-1] is a valid reference.
139 if (strlen(idl->id) >= namelen)
141 ep = name + (namelen - strlen(idl->id));
142 /* a suffix led by . must match */
143 if (ep[-1] == '.' && !strcasecmp(ep, idl->id))
147 if (!ctl->server.dns)
149 #ifndef HAVE_RES_SEARCH
154 * The only code that calls the BIND library is here and in the
155 * start-of-run probe with gethostbyname(3) under ETRN/Kerberos.
157 * We know DNS service was up at the beginning of the run.
158 * If it's down, our nameserver has crashed. We don't want to try
159 * delivering the current message or anything else from the
160 * current server until it's back up.
162 memset(&hints, 0, sizeof hints);
163 hints.ai_family=AF_UNSPEC;
164 hints.ai_protocol=PF_UNSPEC;
165 hints.ai_socktype=SOCK_STREAM;
166 hints.ai_flags=AI_CANONNAME;
168 e = fm_getaddrinfo(name, NULL, &hints, res);
171 int rr = (strcasecmp(ctl->server.truename, (*res)->ai_canonname) == 0);
172 fm_freeaddrinfo(*res); *res = NULL;
175 else if (ctl->server.checkalias && 0 == fm_getaddrinfo(ctl->server.truename, NULL, &hints, &res_st))
177 fm_freeaddrinfo(res_st);
178 if (outlevel >= O_DEBUG)
179 report(stdout, GT_("Checking if %s is really the same node as %s\n"),ctl->server.truename,name);
180 if (is_ip_alias(ctl->server.truename,name) == TRUE)
182 if (outlevel >= O_DEBUG)
183 report(stdout, GT_("Yes, their IP addresses match\n"));
186 if (outlevel >= O_DEBUG)
187 report(stdout, GT_("No, their IP addresses don't match\n"));
196 case EAI_NONAME: /* specified host is unknown */
200 if (outlevel != O_SILENT)
201 report_complete(stdout, "\n"); /* terminate the progress message */
203 GT_("nameserver failure while looking for '%s' during poll of %s: %s\n"),
204 name, ctl->server.pollname, gai_strerror(e));
210 * We're only here if DNS was OK but the gethostbyname() failed
211 * with a HOST_NOT_FOUND or NO_ADDRESS error.
212 * Search for a name match on MX records pointing to the server.
215 if ((mxrecords = getmxrecords(name)) == (struct mxentry *)NULL)
219 case HOST_NOT_FOUND: /* specified host is unknown */
221 case NO_ADDRESS: /* valid, but does not have an IP address */
224 case NO_RECOVERY: /* non-recoverable name server error */
225 case TRY_AGAIN: /* temporary error on authoritative server */
228 GT_("nameserver failure while looking for `%s' during poll of %s.\n"),
229 name, ctl->server.pollname);
234 for (mxp = mxrecords; mxp->name; mxp++)
235 if (strcasecmp(ctl->server.truename, mxp->name) == 0
236 || is_ip_alias(ctl->server.truename, mxp->name) == TRUE)
242 /* add this name to relevant server's `also known as' list */
243 save_str(&lead_server->akalist, name, 0);
245 #endif /* HAVE_RES_SEARCH */
248 /* checkalias.c ends here */