aherman
/
boundary
mirror of https://github.com/hashicorp/boundary
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '321953093b'
${ noResults }
boundary/internal/util/net.go

152 lines
6.5 KiB
Raw Blame History

// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: BUSL-1.1
package util
import (
"context"
"errors"
"net"
"regexp"
"strings"
"github.com/hashicorp/go-secure-stdlib/parseutil"
)
const (
// MinAddressLength is the minimum length for an address.
MinAddressLength = 3
// MaxAddressLength is the maximum length for an address.
MaxAddressLength = 255
)
var (
// ErrMissingPort is returned from SplitHostPort when the underlying
// net.SplitHostPort call detects the input did not contain a port. This is
// the case for an input like "127.0.0.1" (but not "127.0.0.1:").
ErrMissingPort = errors.New("missing port in address")
// ErrTooManyColons is returned from SplitHostPort when the underlying
// net.SplitHostPort call detects the input has more colons than it is
// expected to have. This is the case for an input like
// "127.0.0.1:1010:1010".
ErrTooManyColons = errors.New("too many colons in address")
// ErrMissingRBracket is returned from SplitHostPort when the underlying
// net.SplitHostPort call detects an input that starts with '[' but has no
// corresponding ']' closing bracket. This is the case for an input like
// "[::1:9090".
ErrMissingRBracket = errors.New("missing ']' in address")
// ErrUnexpectedLBracket is returned from SplitHostPort when the underlying
// net.SplitHostPort call detects an input that has an unexpected '['
// character where it is not supposed to be. This is the case for an input
// like "127.0.[0.1:9090" or "[[127.0.0.1]:9090" (but not
// "[127.0.0.1]:9090").
ErrUnexpectedLBracket = errors.New("unexpected '[' in address")
// ErrUnexpectedRBracket is returned from SplitHostPort when the underlying
// net.SplitHostPort call detects an input that has an unexpected ']'
// character where it is not supposed to be. This is the case for an input
// like "127.0.]0.1:9090" or "127.0.0.1]:9090" (but not "[127.0.0.1]:9090").
ErrUnexpectedRBracket = errors.New("unexpected ']' in address")
// ErrInvalidAddressLength is returned when an address input is not within
// defined lengths (see MinAddressLength and MaxAddressLength).
ErrInvalidAddressLength = errors.New("invalid address length")
// ErrInvalidAddressContainsPort is returned when an address input contains
// a port.
ErrInvalidAddressContainsPort = errors.New("address contains a port")
)
// This regular expression is used to find all instances of square brackets within a string.
// This regular expression is used to remove the square brackets from an IPv6 address.
var squareBrackets = regexp.MustCompile("\\[|\\]")
// JoinHostPort combines host and port into a network address of the form "host:port".
// If host contains a colon, as found in literal IPv6 addresses, then JoinHostPort returns "[host]:port".
func JoinHostPort(host, port string) string {
host = squareBrackets.ReplaceAllString(host, "")
return net.JoinHostPort(host, port)
}
// SplitHostPort splits a network address of the form "host:port",
// "host%zone:port", "[host]:port" or "[host%zone]:port" into separate "host" or
// "host%zone" and "port". It differs from its standard library counterpart in
// the following ways:
// - If the input is an IP address (with no port), this function will return
// that IP as the `host`, empty `port`, and ErrMissingPort.
// - If the input is just a host (with no port), this function will return
// that host as the `host`, empty `port`, and ErrMissingPort.
//
// These changes enable inputs like "ip_address" or "host" and allows callers to
// detect whether any given `hostport` contains a port or is just a host/IP.
func SplitHostPort(hostport string) (host string, port string, err error) {
// In case `hostport` is just an ip, we can grab that early.
if ip := net.ParseIP(hostport); ip != nil {
// If ParseIP successfully parsed it, it means `hostport` does not have
// a port (or is a malformed IPv6 address like "::1:1234").
host = ip.String()
err = ErrMissingPort
return
}
// At this time, we don't necessarily know that `hostport` is a string
// composed of a host and a port, however net.SplitHostPort will error if
// that is not the case.
host, port, err = net.SplitHostPort(hostport)
if err != nil {
addrErr := new(net.AddrError)
isAddrErr := errors.As(err, &addrErr)
if !isAddrErr {
return
}
// Since net.SplitHostPort does not type the error reason, we'll handle
// that here to simplify logic in callers of this function. Note that
// while this list covers every error state in net.SplitHostPort up to
// Go 1.24.1, error reasons might expand over time.
// See: https://cs.opensource.google/go/go/+/refs/tags/go1.24.1:src/net/ipsock.go;l=165-218
const (
stdlibErrReasonMissingPort = "missing port in address"
stdlibErrReasonTooManyColons = "too many colons in address"
stdlibErrReasonMissingRBracket = "missing ']' in address"
stdlibErrReasonUnexpectedLBracket = "unexpected '[' in address"
stdlibErrReasonUnexpectedRBracket = "unexpected ']' in address"
)
switch {
case strings.Contains(addrErr.Err, stdlibErrReasonMissingPort):
// In case the `hostport` value is an IPv6 address, we must remove
// the brackets (if they exist) to retain the same behavior as
// net.SplitHostPort. This case wouldn't be caught by net.ParseIP
// because "[ipv6_address]" is not a valid input to that function.
host = squareBrackets.ReplaceAllString(hostport, "")
err = ErrMissingPort
case strings.Contains(addrErr.Err, stdlibErrReasonTooManyColons):
err = ErrTooManyColons
case strings.Contains(addrErr.Err, stdlibErrReasonMissingRBracket):
err = ErrMissingRBracket
case strings.Contains(addrErr.Err, stdlibErrReasonUnexpectedLBracket):
err = ErrUnexpectedLBracket
case strings.Contains(addrErr.Err, stdlibErrReasonUnexpectedRBracket):
err = ErrUnexpectedRBracket
}
}
return
}
// ParseAddress trims and validates the input address string. It checks whether
// the address is within the allowed length and attempts to split it into a host and
// port. If the address contains a port, it returns an error. The function supports
// both valid IP addresses (IPv4 or IPv6) and DNS names. If the address is valid
// and does not include a port, it returns the host (either an IP or a DNS name).
func ParseAddress(ctx context.Context, address string) (string, error) {
const op = "util.ParseAddress"
address = strings.TrimSpace(address)
if len(address) < MinAddressLength || len(address) > MaxAddressLength {
return "", ErrInvalidAddressLength
}
_, port, _ := SplitHostPort(address)
if port != "" {
return "", ErrInvalidAddressContainsPort
}
return parseutil.NormalizeAddr(address)
}
Reference in new issue View Git Blame Copy Permalink