Blame - canohost.c - platform/external/openssh

blob: 00c499ca041fb96cdcc9d3cdece2e90865196ef7 [file] [log] [blame]

Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	1	/*
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	2	* Author: Tatu Ylonen <ylo@cs.hut.fi>
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	3	* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
				4	* All rights reserved
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	5	* Functions for returning the canonical host name of the remote site.
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	6	*
Damien Miller	e4340be	2000-09-16 13:29:08 +1100	[diff] [blame]	7	* As far as I am concerned, the code I have written for this software
				8	* can be used freely for any purpose. Any derived versions of this
				9	* software must be clearly marked as such, and if the derived work is
				10	* incompatible with the protocol description in the RFC file, it must be
				11	* called by a name other than "ssh" or "Secure Shell".
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	12	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	13
				14	#include "includes.h"
Ben Lindstrom	9a17c9a	2002-06-11 16:47:22 +0000	[diff] [blame]	15	RCSID("$OpenBSD: canohost.c,v 1.32 2002/06/11 08:11:45 itojun Exp $");
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	16
				17	#include "packet.h"
				18	#include "xmalloc.h"
Ben Lindstrom	226cfa0	2001-01-22 05:34:40 +0000	[diff] [blame]	19	#include "log.h"
Ben Lindstrom	31ca54a	2001-02-09 02:11:24 +0000	[diff] [blame]	20	#include "canohost.h"
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	21
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	22	static void check_ip_options(int, char *);
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	23
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	24	/*
				25	* Return the canonical name of the host at the other end of the socket. The
				26	* caller should free the returned string with xfree.
				27	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	28
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	29	static char *
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	30	get_remote_hostname(int socket, int verify_reverse_mapping)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	31	{
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	32	struct sockaddr_storage from;
				33	int i;
				34	socklen_t fromlen;
				35	struct addrinfo hints, ai, aitop;
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	36	char name[NI_MAXHOST], ntop[NI_MAXHOST], ntop2[NI_MAXHOST];
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	37
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	38	/* Get IP address of client. */
				39	fromlen = sizeof(from);
				40	memset(&from, 0, sizeof(from));
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	41	if (getpeername(socket, (struct sockaddr *) &from, &fromlen) < 0) {
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	42	debug("getpeername failed: %.100s", strerror(errno));
				43	fatal_cleanup();
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	44	}
Damien Miller	7bcb089	2000-03-11 20:45:40 +1100	[diff] [blame]	45	#ifdef IPV4_IN_IPV6
				46	if (from.ss_family == AF_INET6) {
				47	struct sockaddr_in6 from6 = (struct sockaddr_in6 )&from;
				48
				49	/* Detect IPv4 in IPv6 mapped address and convert it to */
				50	/* plain (AF_INET) IPv4 address */
				51	if (IN6_IS_ADDR_V4MAPPED(&from6->sin6_addr)) {
				52	struct sockaddr_in from4 = (struct sockaddr_in )&from;
				53	struct in_addr addr;
				54	u_int16_t port;
				55
				56	memcpy(&addr, ((char *)&from6->sin6_addr) + 12, sizeof(addr));
				57	port = from6->sin6_port;
				58
				59	memset(&from, 0, sizeof(from));
Kevin Steves	ef4eea9	2001-02-05 12:42:17 +0000	[diff] [blame]	60
Damien Miller	7bcb089	2000-03-11 20:45:40 +1100	[diff] [blame]	61	from4->sin_family = AF_INET;
				62	memcpy(&from4->sin_addr, &addr, sizeof(addr));
				63	from4->sin_port = port;
				64	}
				65	}
				66	#endif
				67
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	68	if (getnameinfo((struct sockaddr *)&from, fromlen, ntop, sizeof(ntop),
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	69	NULL, 0, NI_NUMERICHOST) != 0)
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	70	fatal("get_remote_hostname: getnameinfo NI_NUMERICHOST failed");
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	71
Ben Lindstrom	9a17c9a	2002-06-11 16:47:22 +0000	[diff] [blame]	72	if (from.ss_family == AF_INET)
				73	check_ip_options(socket, ntop);
				74
Ben Lindstrom	121c785	2001-04-18 15:32:44 +0000	[diff] [blame]	75	debug3("Trying to reverse map address %.100s.", ntop);
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	76	/* Map the IP address to a host name. */
				77	if (getnameinfo((struct sockaddr *)&from, fromlen, name, sizeof(name),
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	78	NULL, 0, NI_NAMEREQD) != 0) {
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	79	/* Host name not found. Use ip address. */
				80	log("Could not reverse map address %.100s.", ntop);
				81	return xstrdup(ntop);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	82	}
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	83
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	84	/* Got host name. */
				85	name[sizeof(name) - 1] = '\0';
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	86	/*
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	87	* Convert it to all lowercase (which is expected by the rest
				88	* of this software).
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	89	*/
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	90	for (i = 0; name[i]; i++)
				91	if (isupper(name[i]))
				92	name[i] = tolower(name[i]);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	93
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	94	if (!verify_reverse_mapping)
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	95	return xstrdup(name);
				96	/*
				97	* Map it back to an IP address and check that the given
				98	* address actually is an address of this host. This is
				99	* necessary because anyone with access to a name server can
				100	* define arbitrary names for an IP address. Mapping from
				101	* name to IP address can be trusted better (but can still be
				102	* fooled if the intruder has access to the name server of
				103	* the domain).
				104	*/
				105	memset(&hints, 0, sizeof(hints));
				106	hints.ai_family = from.ss_family;
				107	hints.ai_socktype = SOCK_STREAM;
				108	if (getaddrinfo(name, NULL, &hints, &aitop) != 0) {
				109	log("reverse mapping checking getaddrinfo for %.700s "
				110	"failed - POSSIBLE BREAKIN ATTEMPT!", name);
				111	return xstrdup(ntop);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	112	}
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	113	/* Look for the address from the list of addresses. */
				114	for (ai = aitop; ai; ai = ai->ai_next) {
				115	if (getnameinfo(ai->ai_addr, ai->ai_addrlen, ntop2,
				116	sizeof(ntop2), NULL, 0, NI_NUMERICHOST) == 0 &&
				117	(strcmp(ntop, ntop2) == 0))
				118	break;
				119	}
				120	freeaddrinfo(aitop);
				121	/* If we reached the end of the list, the address was not there. */
				122	if (!ai) {
				123	/* Address not found for the host name. */
				124	log("Address %.100s maps to %.600s, but this does not "
				125	"map back to the address - POSSIBLE BREAKIN ATTEMPT!",
				126	ntop, name);
				127	return xstrdup(ntop);
				128	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	129	return xstrdup(name);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	130	}
				131
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	132	/*
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	133	* If IP options are supported, make sure there are none (log and
				134	* disconnect them if any are found). Basically we are worried about
				135	* source routing; it can be used to pretend you are somebody
				136	* (ip-address) you are not. That itself may be "almost acceptable"
				137	* under certain circumstances, but rhosts autentication is useless
				138	* if source routing is accepted. Notice also that if we just dropped
				139	* source routing here, the other side could use IP spoofing to do
				140	* rest of the interaction and could still bypass security. So we
				141	* exit here if we detect any IP options.
				142	*/
				143	/* IPv4 only */
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	144	static void
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	145	check_ip_options(int socket, char *ipaddr)
				146	{
Ben Lindstrom	075390a	2001-02-10 21:34:46 +0000	[diff] [blame]	147	u_char options[200];
				148	char text[sizeof(options) * 3 + 1];
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	149	socklen_t option_size;
Ben Lindstrom	075390a	2001-02-10 21:34:46 +0000	[diff] [blame]	150	int i, ipproto;
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	151	struct protoent *ip;
				152
				153	if ((ip = getprotobyname("ip")) != NULL)
				154	ipproto = ip->p_proto;
				155	else
				156	ipproto = IPPROTO_IP;
				157	option_size = sizeof(options);
Ben Lindstrom	733a235	2002-03-05 01:31:28 +0000	[diff] [blame]	158	if (getsockopt(socket, ipproto, IP_OPTIONS, options,
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	159	&option_size) >= 0 && option_size != 0) {
Ben Lindstrom	075390a	2001-02-10 21:34:46 +0000	[diff] [blame]	160	text[0] = '\0';
				161	for (i = 0; i < option_size; i++)
				162	snprintf(text + i3, sizeof(text) - i3,
				163	" %2.2x", options[i]);
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	164	log("Connection from %.100s with IP options:%.800s",
				165	ipaddr, text);
				166	packet_disconnect("Connection from %.100s with IP options:%.800s",
				167	ipaddr, text);
				168	}
				169	}
				170
				171	/*
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	172	* Return the canonical name of the host in the other side of the current
				173	* connection. The host name is cached, so it is efficient to call this
				174	* several times.
				175	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	176
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	177	const char *
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	178	get_canonical_hostname(int verify_reverse_mapping)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	179	{
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	180	static char *canonical_host_name = NULL;
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	181	static int verify_reverse_mapping_done = 0;
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	182
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	183	/* Check if we have previously retrieved name with same option. */
				184	if (canonical_host_name != NULL) {
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	185	if (verify_reverse_mapping_done != verify_reverse_mapping)
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	186	xfree(canonical_host_name);
				187	else
				188	return canonical_host_name;
				189	}
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	190
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	191	/* Get the real hostname if socket; otherwise return UNKNOWN. */
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	192	if (packet_connection_is_on_socket())
Damien Miller	3380426	2001-02-04 23:20:18 +1100	[diff] [blame]	193	canonical_host_name = get_remote_hostname(
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	194	packet_get_connection_in(), verify_reverse_mapping);
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	195	else
				196	canonical_host_name = xstrdup("UNKNOWN");
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	197
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	198	verify_reverse_mapping_done = verify_reverse_mapping;
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	199	return canonical_host_name;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	200	}
				201
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	202	/*
Damien Miller	d83ff35	2001-01-30 09:19:34 +1100	[diff] [blame]	203	* Returns the remote IP-address of socket as a string. The returned
				204	* string must be freed.
				205	*/
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	206	static char *
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	207	get_socket_address(int socket, int remote, int flags)
				208	{
				209	struct sockaddr_storage addr;
				210	socklen_t addrlen;
				211	char ntop[NI_MAXHOST];
				212
				213	/* Get IP address of client. */
				214	addrlen = sizeof(addr);
				215	memset(&addr, 0, sizeof(addr));
				216
				217	if (remote) {
				218	if (getpeername(socket, (struct sockaddr *)&addr, &addrlen)
				219	< 0) {
				220	debug("get_socket_ipaddr: getpeername failed: %.100s",
				221	strerror(errno));
				222	return NULL;
				223	}
				224	} else {
				225	if (getsockname(socket, (struct sockaddr *)&addr, &addrlen)
				226	< 0) {
				227	debug("get_socket_ipaddr: getsockname failed: %.100s",
				228	strerror(errno));
				229	return NULL;
				230	}
				231	}
				232	/* Get the address in ascii. */
				233	if (getnameinfo((struct sockaddr *)&addr, addrlen, ntop, sizeof(ntop),
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	234	NULL, 0, flags) != 0) {
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	235	error("get_socket_ipaddr: getnameinfo %d failed", flags);
				236	return NULL;
				237	}
				238	return xstrdup(ntop);
				239	}
Damien Miller	d83ff35	2001-01-30 09:19:34 +1100	[diff] [blame]	240
				241	char *
				242	get_peer_ipaddr(int socket)
				243	{
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	244	return get_socket_address(socket, 1, NI_NUMERICHOST);
				245	}
Damien Miller	d83ff35	2001-01-30 09:19:34 +1100	[diff] [blame]	246
Ben Lindstrom	5eabda3	2001-04-12 23:34:34 +0000	[diff] [blame]	247	char *
				248	get_local_ipaddr(int socket)
				249	{
				250	return get_socket_address(socket, 0, NI_NUMERICHOST);
				251	}
				252
				253	char *
				254	get_local_name(int socket)
				255	{
				256	return get_socket_address(socket, 0, NI_NAMEREQD);
Damien Miller	d83ff35	2001-01-30 09:19:34 +1100	[diff] [blame]	257	}
				258
				259	/*
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	260	* Returns the IP-address of the remote host as a string. The returned
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	261	* string must not be freed.
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	262	*/
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	263
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	264	const char *
Ben Lindstrom	3c36bb2	2001-12-06 17:55:26 +0000	[diff] [blame]	265	get_remote_ipaddr(void)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	266	{
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	267	static char *canonical_host_ip = NULL;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	268
Damien Miller	d83ff35	2001-01-30 09:19:34 +1100	[diff] [blame]	269	/* Check whether we have cached the ipaddr. */
				270	if (canonical_host_ip == NULL) {
				271	if (packet_connection_is_on_socket()) {
				272	canonical_host_ip =
				273	get_peer_ipaddr(packet_get_connection_in());
				274	if (canonical_host_ip == NULL)
				275	fatal_cleanup();
				276	} else {
				277	/* If not on socket, return UNKNOWN. */
				278	canonical_host_ip = xstrdup("UNKNOWN");
				279	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	280	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	281	return canonical_host_ip;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	282	}
				283
Ben Lindstrom	f15a386	2001-04-05 23:32:17 +0000	[diff] [blame]	284	const char *
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	285	get_remote_name_or_ip(u_int utmp_len, int verify_reverse_mapping)
Ben Lindstrom	f15a386	2001-04-05 23:32:17 +0000	[diff] [blame]	286	{
				287	static const char *remote = "";
				288	if (utmp_len > 0)
Damien Miller	c5d8635	2002-02-05 12:13:41 +1100	[diff] [blame]	289	remote = get_canonical_hostname(verify_reverse_mapping);
Ben Lindstrom	f15a386	2001-04-05 23:32:17 +0000	[diff] [blame]	290	if (utmp_len == 0 \|\| strlen(remote) > utmp_len)
				291	remote = get_remote_ipaddr();
				292	return remote;
				293	}
				294
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	295	/* Returns the local/remote port for the socket. */
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	296
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	297	static int
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	298	get_sock_port(int sock, int local)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	299	{
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	300	struct sockaddr_storage from;
				301	socklen_t fromlen;
				302	char strport[NI_MAXSERV];
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	303
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	304	/* Get IP address of client. */
				305	fromlen = sizeof(from);
				306	memset(&from, 0, sizeof(from));
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	307	if (local) {
				308	if (getsockname(sock, (struct sockaddr *)&from, &fromlen) < 0) {
				309	error("getsockname failed: %.100s", strerror(errno));
				310	return 0;
				311	}
				312	} else {
				313	if (getpeername(sock, (struct sockaddr *) & from, &fromlen) < 0) {
				314	debug("getpeername failed: %.100s", strerror(errno));
				315	fatal_cleanup();
				316	}
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	317	}
				318	/* Return port number. */
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	319	if (getnameinfo((struct sockaddr *)&from, fromlen, NULL, 0,
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	320	strport, sizeof(strport), NI_NUMERICSERV) != 0)
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	321	fatal("get_sock_port: getnameinfo NI_NUMERICSERV failed");
				322	return atoi(strport);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	323	}
				324
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	325	/* Returns remote/local port number for the current connection. */
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	326
Ben Lindstrom	bba8121	2001-06-25 05:01:22 +0000	[diff] [blame]	327	static int
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	328	get_port(int local)
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	329	{
Damien Miller	5428f64	1999-11-25 11:54:57 +1100	[diff] [blame]	330	/*
				331	* If the connection is not a socket, return 65535. This is
				332	* intentionally chosen to be an unprivileged port number.
				333	*/
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	334	if (!packet_connection_is_on_socket())
Damien Miller	95def09	1999-11-25 00:26:21 +1100	[diff] [blame]	335	return 65535;
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	336
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	337	/* Get socket and return the port number. */
				338	return get_sock_port(packet_get_connection_in(), local);
				339	}
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	340
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	341	int
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	342	get_peer_port(int sock)
				343	{
				344	return get_sock_port(sock, 0);
				345	}
				346
Damien Miller	4af5130	2000-04-16 11:18:38 +1000	[diff] [blame]	347	int
Ben Lindstrom	3c36bb2	2001-12-06 17:55:26 +0000	[diff] [blame]	348	get_remote_port(void)
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	349	{
				350	return get_port(0);
				351	}
				352
				353	int
Ben Lindstrom	3c36bb2	2001-12-06 17:55:26 +0000	[diff] [blame]	354	get_local_port(void)
Damien Miller	34132e5	2000-01-14 15:45:46 +1100	[diff] [blame]	355	{
				356	return get_port(1);
Damien Miller	d4a8b7e	1999-10-27 13:42:43 +1000	[diff] [blame]	357	}