vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-15 00:41:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
ntopng/src/Geolocation.cpp
Luca Deri ce4ac606d4 Compilation fix
2021-03-22 17:28:35 +01:00

405 lines
12 KiB
C++
Raw Blame History

/*
*
* (C) 2013-21 - ntop.org
*
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software Foundation,
* Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
*
*/
/*
This product includes GeoLite data created by MaxMind, available from
<a href="http://www.maxmind.com">http://www.maxmind.com</a>.
http://dev.maxmind.com/geoip/legacy/geolite
*/
#include "ntop_includes.h"
/* *************************************** */
Geolocation::Geolocation() {
#ifdef HAVE_MAXMINDDB
char docs_path[MAX_PATH];
const char *lookup_paths[] = {
#ifndef WIN32
"/var/lib/GeoIP", // `geoipupdate` default install dir on Ubuntu 16,18 and Debian 10,9
"/usr/share/GeoIP", // `geoipupdate` default install dir on Ubuntu 14 and Centos 7,8
#if defined(__FreeBSD__)
"/usr/local/share/ntopng/httpdocs/geoip/", // ntopng-data default install dir
#else
"/usr/share/ntopng/httpdocs/geoip/", // ntopng-data default install dir
#endif
#endif
docs_path
};
mmdbs_ok = false;
snprintf(docs_path, sizeof(docs_path), "%s/geoip", ntop->getPrefs()->get_docs_dir());
ntop->fixPath(docs_path);
for(u_int i = 0; i < sizeof(lookup_paths) / sizeof(lookup_paths[0]) && !mmdbs_ok; i++) {
DIR *dirp;
struct dirent *dp;
bool mmdbs_asn_ok, mmdbs_city_ok;
/* Let's try with MaxMind files DBs: https://dev.maxmind.com/geoip/geoipupdate/ */
mmdbs_asn_ok = loadGeoDB(lookup_paths[i], "GeoLite2-ASN.mmdb", &geo_ip_asn_mmdb);
mmdbs_city_ok = loadGeoDB(lookup_paths[i], "GeoLite2-City.mmdb", &geo_ip_city_mmdb);
if(mmdbs_asn_ok && mmdbs_city_ok) {
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Using geolocation provided by MaxMind (https://maxmind.com)");
mmdbs_ok = true;
break;
}
/*
Let's try https://db-ip.com
Filename format is
- dbip-asn-lite-YYYY-MM.mmdb
- dbip-country-lite-YYYY-MM.mmdb
*/
mmdbs_asn_ok = mmdbs_city_ok = false;
dirp = opendir(lookup_paths[i]);
if(dirp == NULL)
continue;
while((dp = readdir(dirp)) != NULL) {
if(dp->d_name[0] == '.') continue;
if(strncmp(dp->d_name, "dbip-", 5) == 0) {
if((!mmdbs_asn_ok) && (strncmp(dp->d_name, "dbip-asn", 8) == 0)) {
mmdbs_asn_ok = loadGeoDB(lookup_paths[i], dp->d_name, &geo_ip_asn_mmdb);
} else if((!mmdbs_city_ok) && (strncmp(dp->d_name, "dbip-country", 12) == 0)) {
mmdbs_city_ok = loadGeoDB(lookup_paths[i], dp->d_name, &geo_ip_city_mmdb);
}
}
if(mmdbs_asn_ok && mmdbs_city_ok) {
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Using geolocation provided by DB-IP (https://db-ip.com)");
break;
}
}
closedir(dirp);
if(mmdbs_asn_ok && mmdbs_city_ok) {
mmdbs_ok = true;
break;
}
}
#endif
#ifndef WIN32
#ifdef HAVE_MAXMINDDB
if(!mmdbs_ok)
#endif
{
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Running without geolocation support.");
ntop->getTrace()->traceEvent(TRACE_NORMAL, "To enable geolocation follow the instructions at");
ntop->getTrace()->traceEvent(TRACE_NORMAL, "https://github.com/ntop/ntopng/blob/dev/doc/README.geolocation.md");
}
#endif
}
/* *************************************** */
#ifdef HAVE_MAXMINDDB
bool Geolocation::loadGeoDB(const char * const base_path, const char * const db_name, MMDB_s * const mmdb) const {
char path[MAX_PATH];
struct stat buf;
bool found;
snprintf(path, sizeof(path), "%s/%s", base_path, db_name);
ntop->fixPath(path);
found = ((stat(path, &buf) == 0) && (S_ISREG(buf.st_mode))) ? true : false;
if(!found) return false;
int status = MMDB_open(path, MMDB_MODE_MMAP, mmdb);
if(status != MMDB_SUCCESS) {
ntop->getTrace()->traceEvent(TRACE_ERROR, "Unable to open %s [%s]",
path, MMDB_strerror(status));
if(status == MMDB_IO_ERROR)
ntop->getTrace()->traceEvent(TRACE_ERROR, "IO error [%s]", strerror(errno));
return false;
} else {
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Loaded database %s [%s][ip_version: %d]",
db_name, path, mmdb->metadata.ip_version);
return true;
}
}
#endif
/* *************************************** */
Geolocation::~Geolocation() {
#ifdef HAVE_MAXMINDDB
if(mmdbs_ok) {
MMDB_close(&geo_ip_asn_mmdb);
MMDB_close(&geo_ip_city_mmdb);
}
#endif
}
/* *************************************** */
void Geolocation::getAS(IpAddress *addr, u_int32_t *asn, char **asname) {
if(asn) *asn = 0;
if(asname) *asname = NULL;
#ifdef HAVE_MAXMINDDB
sockaddr *sa = NULL;
ssize_t sa_len;
int mmdb_error, status;
MMDB_lookup_result_s result;
MMDB_entry_data_s entry_data;
if(!mmdbs_ok) return;
if(addr && addr->get_sockaddr(&sa, &sa_len)) {
result = MMDB_lookup_sockaddr(&geo_ip_asn_mmdb, sa, &mmdb_error);
if(mmdb_error == MMDB_SUCCESS) {
if(result.found_entry) {
/* Get the ASN */
if(asn && (status = MMDB_get_value(&result.entry, &entry_data, "autonomous_system_number", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UINT32)
*asn = entry_data.uint32;
}
/* Get the AS Organization, that is an utf8 string that is NOT terminated with a null character. */
if(asname && (status = MMDB_get_value(&result.entry, &entry_data, "autonomous_system_organization", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UTF8_STRING) {
char *org;
if((org = (char*)calloc(1, entry_data.data_size + 1))) {
memcpy(org, entry_data.utf8_string, entry_data.data_size);
*asname = org;
}
}
}
}
} else
ntop->getTrace()->traceEvent(TRACE_ERROR, "Lookup failed [%s]", MMDB_strerror(mmdb_error));
free(sa);
}
#endif
return;
}
/* *************************************** */
void Geolocation::getInfo(IpAddress *addr, char **continent_code, char **country_code,
char **city, float *latitude, float *longitude) {
if((!addr) || (addr->getVersion() == 0))
return;
if(continent_code) *continent_code = strdup((char*)UNKNOWN_CONTINENT);
if(country_code) *country_code = strdup((char*)UNKNOWN_COUNTRY);
if(city) *city = strdup((char*)UNKNOWN_CITY);
if(latitude) *latitude = 0;
if(longitude) *longitude = 0;
#ifdef HAVE_MAXMINDDB
sockaddr *sa = NULL;
ssize_t sa_len;
char *cdata;
if(!mmdbs_ok) return;
if(addr && addr->get_sockaddr(&sa, &sa_len)) {
int mmdb_error, status;
MMDB_lookup_result_s result;
MMDB_entry_data_s entry_data;
result = MMDB_lookup_sockaddr(&geo_ip_city_mmdb, sa, &mmdb_error);
if(mmdb_error == MMDB_SUCCESS) {
if(result.found_entry) {
/* Get the continent code */
if(continent_code && (status = MMDB_get_value(&result.entry, &entry_data, "continent", "code", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UTF8_STRING) {
if((cdata = (char*)calloc(1, entry_data.data_size + 1))) {
memcpy(cdata, entry_data.utf8_string, entry_data.data_size);
free(*continent_code);
*continent_code = cdata;
}
}
}
/* Get the country code */
if(country_code && (status = MMDB_get_value(&result.entry, &entry_data, "country", "iso_code", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UTF8_STRING) {
if((cdata = (char*)calloc(1, entry_data.data_size + 1))) {
memcpy(cdata, entry_data.utf8_string, entry_data.data_size);
free(*country_code);
*country_code = cdata;
}
}
}
/* Get the city (seems that there are only localized versions of the city name) */
if(city && (status = MMDB_get_value(&result.entry, &entry_data, "city", "names", "en", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UTF8_STRING) {
if((cdata = (char*)calloc(1, entry_data.data_size + 1))) {
memcpy(cdata, entry_data.utf8_string, entry_data.data_size);
free(*city);
*city = cdata;
}
}
}
/* Get the latitude */
if(latitude && (status = MMDB_get_value(&result.entry, &entry_data, "location", "latitude", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_DOUBLE)
*latitude = (float)entry_data.double_value;
}
/* Get the longitude */
if(longitude && (status = MMDB_get_value(&result.entry, &entry_data, "location", "longitude", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_DOUBLE)
*longitude = (float)entry_data.double_value;
}
}
}
free(sa);
} else {
char buf[64];
ntop->getTrace()->traceEvent(TRACE_ERROR, "Invalid address lookup [addr addr: 0x%X][addr: %s][version: %u]",
addr ? addr : 0,
addr ? addr->print(buf, sizeof(buf)) : "",
addr ? addr->getVersion() : 0);
}
#endif
return;
}
/* *************************************** */
void Geolocation::freeInfo(char **continent_code, char **country_code, char **city) {
if(continent_code) { free(*continent_code); *continent_code = NULL; }
if(country_code) { free(*country_code); *country_code = NULL; }
if(city) { free(*city); *city = NULL; }
}
/* *************************************** */
#if defined(HAVE_MAXMINDDB) && defined(TEST_GEOLOCATION)
void Geolocation::testme() {
sockaddr *sa = NULL;
ssize_t sa_len;
IpAddress test;
int mmdb_error, status;
MMDB_lookup_result_s result;
MMDB_entry_data_list_s *entry_data_list = NULL;
MMDB_entry_data_s entry_data;
static char *ips[] = {(char*)"192.168.1.1",
(char*)"69.89.31.226",
(char*)"8.8.8.8",
(char*)"69.63.181.15",
(char*)"2a03:2880:f10c:83:face:b00c:0:25de"};
for(u_int32_t i = 0; i < sizeof(ips) / sizeof(char*); i++) {
char * ip = ips[i];
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Geolocating [%s]", ip);
test.set(ip);
if(test.get_sockaddr(&sa, &sa_len)) {
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Autonomous System Information", ip);
/* TEST Autonomous Systems database */
result = MMDB_lookup_sockaddr(&geo_ip_asn_mmdb, sa, &mmdb_error);
if(mmdb_error != MMDB_SUCCESS) {
}
if(result.found_entry) {
entry_data_list = NULL;
if((status = MMDB_get_entry_data_list(&result.entry, &entry_data_list)) != MMDB_SUCCESS)
ntop->getTrace()->traceEvent(TRACE_ERROR, "Unable to lookup address [%s]", MMDB_strerror(status));
if(entry_data_list)
MMDB_dump_entry_data_list(stdout, entry_data_list, 2);
if((status = MMDB_get_value(&result.entry, &entry_data, "autonomous_system_number", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UINT32)
ntop->getTrace()->traceEvent(TRACE_NORMAL, "ASN: %d", entry_data.uint32);
} else
ntop->getTrace()->traceEvent(TRACE_ERROR, "Unable to lookup autonomous system number [%s]", MMDB_strerror(status));
if((status = MMDB_get_value(&result.entry, &entry_data, "autonomous_system_organization", NULL)) == MMDB_SUCCESS) {
if(entry_data.has_data && entry_data.type == MMDB_DATA_TYPE_UTF8_STRING) {
char *org;
if((org = (char*)calloc(1, entry_data.data_size + 1))) {
memcpy(org, entry_data.utf8_string, entry_data.data_size);
ntop->getTrace()->traceEvent(TRACE_NORMAL, "Organization: %s", org);
free(org);
}
}
} else
ntop->getTrace()->traceEvent(TRACE_ERROR, "Unable to lookup autonomous system organization [%s]", MMDB_strerror(status));
}
/* TEST City database */
ntop->getTrace()->traceEvent(TRACE_NORMAL, "City Information", ip);
result = MMDB_lookup_sockaddr(&geo_ip_city_mmdb, sa, &mmdb_error);
if (mmdb_error != MMDB_SUCCESS) {
}
if (result.found_entry) {
entry_data_list = NULL;
status = MMDB_get_entry_data_list(&result.entry,
&entry_data_list);
if(status != MMDB_SUCCESS)
ntop->getTrace()->traceEvent(TRACE_ERROR, "Unable to lookup address [%s]", MMDB_strerror(status));
if(entry_data_list) {
MMDB_dump_entry_data_list(stdout, entry_data_list, 2);
}
}
free(sa);
}
}
}
#endif
Reference in a new issue View git blame Copy permalink