1 /* 2 * Copyright (c) 1989, 1993 3 * The Regents of the University of California. All rights reserved. 4 * 5 * This code is derived from software contributed to Berkeley by 6 * Mike Muuss. 7 * 8 * Redistribution and use in source and binary forms, with or without 9 * modification, are permitted provided that the following conditions 10 * are met: 11 * 1. Redistributions of source code must retain the above copyright 12 * notice, this list of conditions and the following disclaimer. 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 4. Neither the name of the University nor the names of its contributors 17 * may be used to endorse or promote products derived from this software 18 * without specific prior written permission. 19 * 20 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 23 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 30 * SUCH DAMAGE. 31 */ 32 33 #if 0 34 #ifndef lint 35 static const char copyright[] = 36 "@(#) Copyright (c) 1989, 1993\n\ 37 The Regents of the University of California. All rights reserved.\n"; 38 #endif /* not lint */ 39 40 #ifndef lint 41 static char sccsid[] = "@(#)ping.c 8.1 (Berkeley) 6/5/93"; 42 #endif /* not lint */ 43 #endif 44 #include <sys/cdefs.h> 45 __FBSDID("$FreeBSD$"); 46 47 /* 48 * P I N G . C 49 * 50 * Using the Internet Control Message Protocol (ICMP) "ECHO" facility, 51 * measure round-trip-delays and packet loss across network paths. 52 * 53 * Author - 54 * Mike Muuss 55 * U. S. Army Ballistic Research Laboratory 56 * December, 1983 57 * 58 * Status - 59 * Public Domain. Distribution Unlimited. 60 * Bugs - 61 * More statistics could always be gathered. 62 * This program has to run SUID to ROOT to access the ICMP socket. 63 */ 64 65 #include <sys/param.h> /* NB: we rely on this for <sys/types.h> */ 66 #include <sys/capsicum.h> 67 #include <sys/socket.h> 68 #include <sys/sysctl.h> 69 #include <sys/time.h> 70 #include <sys/uio.h> 71 72 #include <netinet/in.h> 73 #include <netinet/in_systm.h> 74 #include <netinet/ip.h> 75 #include <netinet/ip_icmp.h> 76 #include <netinet/ip_var.h> 77 #include <arpa/inet.h> 78 #ifdef HAVE_LIBCAPSICUM 79 #include <libcapsicum.h> 80 #include <libcapsicum_dns.h> 81 #include <libcapsicum_service.h> 82 #endif 83 84 #ifdef IPSEC 85 #include <netipsec/ipsec.h> 86 #endif /*IPSEC*/ 87 88 #include <ctype.h> 89 #include <err.h> 90 #include <errno.h> 91 #include <math.h> 92 #include <netdb.h> 93 #include <signal.h> 94 #include <stdio.h> 95 #include <stdlib.h> 96 #include <string.h> 97 #include <sysexits.h> 98 #include <unistd.h> 99 100 #define INADDR_LEN ((int)sizeof(in_addr_t)) 101 #define TIMEVAL_LEN ((int)sizeof(struct tv32)) 102 #define MASK_LEN (ICMP_MASKLEN - ICMP_MINLEN) 103 #define TS_LEN (ICMP_TSLEN - ICMP_MINLEN) 104 #define DEFDATALEN 56 /* default data length */ 105 #define FLOOD_BACKOFF 20000 /* usecs to back off if F_FLOOD mode */ 106 /* runs out of buffer space */ 107 #define MAXIPLEN (sizeof(struct ip) + MAX_IPOPTLEN) 108 #define MAXICMPLEN (ICMP_ADVLENMIN + MAX_IPOPTLEN) 109 #define MAXWAIT 10000 /* max ms to wait for response */ 110 #define MAXALARM (60 * 60) /* max seconds for alarm timeout */ 111 #define MAXTOS 255 112 113 #define A(bit) rcvd_tbl[(bit)>>3] /* identify byte in array */ 114 #define B(bit) (1 << ((bit) & 0x07)) /* identify bit in byte */ 115 #define SET(bit) (A(bit) |= B(bit)) 116 #define CLR(bit) (A(bit) &= (~B(bit))) 117 #define TST(bit) (A(bit) & B(bit)) 118 119 struct tv32 { 120 int32_t tv32_sec; 121 int32_t tv32_usec; 122 }; 123 124 /* various options */ 125 static int options; 126 #define F_FLOOD 0x0001 127 #define F_INTERVAL 0x0002 128 #define F_NUMERIC 0x0004 129 #define F_PINGFILLED 0x0008 130 #define F_QUIET 0x0010 131 #define F_RROUTE 0x0020 132 #define F_SO_DEBUG 0x0040 133 #define F_SO_DONTROUTE 0x0080 134 #define F_VERBOSE 0x0100 135 #define F_QUIET2 0x0200 136 #define F_NOLOOP 0x0400 137 #define F_MTTL 0x0800 138 #define F_MIF 0x1000 139 #define F_AUDIBLE 0x2000 140 #ifdef IPSEC 141 #ifdef IPSEC_POLICY_IPSEC 142 #define F_POLICY 0x4000 143 #endif /*IPSEC_POLICY_IPSEC*/ 144 #endif /*IPSEC*/ 145 #define F_TTL 0x8000 146 #define F_MISSED 0x10000 147 #define F_ONCE 0x20000 148 #define F_HDRINCL 0x40000 149 #define F_MASK 0x80000 150 #define F_TIME 0x100000 151 #define F_SWEEP 0x200000 152 #define F_WAITTIME 0x400000 153 154 /* 155 * MAX_DUP_CHK is the number of bits in received table, i.e. the maximum 156 * number of received sequence numbers we can keep track of. Change 128 157 * to 8192 for complete accuracy... 158 */ 159 #define MAX_DUP_CHK (8 * 128) 160 static int mx_dup_ck = MAX_DUP_CHK; 161 static char rcvd_tbl[MAX_DUP_CHK / 8]; 162 163 static struct sockaddr_in whereto; /* who to ping */ 164 static int datalen = DEFDATALEN; 165 static int maxpayload; 166 static int ssend; /* send socket file descriptor */ 167 static int srecv; /* receive socket file descriptor */ 168 static u_char outpackhdr[IP_MAXPACKET], *outpack; 169 static char BBELL = '\a'; /* characters written for MISSED and AUDIBLE */ 170 static char BSPACE = '\b'; /* characters written for flood */ 171 static char DOT = '.'; 172 static char *hostname; 173 static char *shostname; 174 static int ident; /* process id to identify our packets */ 175 static int uid; /* cached uid for micro-optimization */ 176 static u_char icmp_type = ICMP_ECHO; 177 static u_char icmp_type_rsp = ICMP_ECHOREPLY; 178 static int phdr_len = 0; 179 static int send_len; 180 181 /* counters */ 182 static long nmissedmax; /* max value of ntransmitted - nreceived - 1 */ 183 static long npackets; /* max packets to transmit */ 184 static long nreceived; /* # of packets we got back */ 185 static long nrepeats; /* number of duplicates */ 186 static long ntransmitted; /* sequence # for outbound packets = #sent */ 187 static long snpackets; /* max packets to transmit in one sweep */ 188 static long sntransmitted; /* # of packets we sent in this sweep */ 189 static int sweepmax; /* max value of payload in sweep */ 190 static int sweepmin = 0; /* start value of payload in sweep */ 191 static int sweepincr = 1; /* payload increment in sweep */ 192 static int interval = 1000; /* interval between packets, ms */ 193 static int waittime = MAXWAIT; /* timeout for each packet */ 194 static long nrcvtimeout = 0; /* # of packets we got back after waittime */ 195 196 /* timing */ 197 static int timing; /* flag to do timing */ 198 static double tmin = 999999999.0; /* minimum round trip time */ 199 static double tmax = 0.0; /* maximum round trip time */ 200 static double tsum = 0.0; /* sum of all times, for doing average */ 201 static double tsumsq = 0.0; /* sum of all times squared, for std. dev. */ 202 203 /* nonzero if we've been told to finish up */ 204 static volatile sig_atomic_t finish_up; 205 static volatile sig_atomic_t siginfo_p; 206 207 #ifdef HAVE_LIBCAPSICUM 208 static cap_channel_t *capdns; 209 #endif 210 211 static void fill(char *, char *); 212 static u_short in_cksum(u_short *, int); 213 #ifdef HAVE_LIBCAPSICUM 214 static cap_channel_t *capdns_setup(void); 215 #endif 216 static void check_status(void); 217 static void finish(void) __dead2; 218 static void pinger(void); 219 static char *pr_addr(struct in_addr); 220 static char *pr_ntime(n_time); 221 static void pr_icmph(struct icmp *); 222 static void pr_iph(struct ip *); 223 static void pr_pack(char *, int, struct sockaddr_in *, struct timeval *); 224 static void pr_retip(struct ip *); 225 static void status(int); 226 static void stopit(int); 227 static void tvsub(struct timeval *, const struct timeval *); 228 static void usage(void) __dead2; 229 230 int 231 main(int argc, char *const *argv) 232 { 233 struct sockaddr_in from, sock_in; 234 struct in_addr ifaddr; 235 struct timeval last, intvl; 236 struct iovec iov; 237 struct ip *ip; 238 struct msghdr msg; 239 struct sigaction si_sa; 240 size_t sz; 241 u_char *datap, packet[IP_MAXPACKET] __aligned(4); 242 char *ep, *source, *target, *payload; 243 struct hostent *hp; 244 #ifdef IPSEC_POLICY_IPSEC 245 char *policy_in, *policy_out; 246 #endif 247 struct sockaddr_in *to; 248 double t; 249 u_long alarmtimeout, ultmp; 250 int almost_done, ch, df, hold, i, icmp_len, mib[4], preload; 251 int ssend_errno, srecv_errno, tos, ttl; 252 char ctrl[CMSG_SPACE(sizeof(struct timeval))]; 253 char hnamebuf[MAXHOSTNAMELEN], snamebuf[MAXHOSTNAMELEN]; 254 #ifdef IP_OPTIONS 255 char rspace[MAX_IPOPTLEN]; /* record route space */ 256 #endif 257 unsigned char loop, mttl; 258 259 payload = source = NULL; 260 #ifdef IPSEC_POLICY_IPSEC 261 policy_in = policy_out = NULL; 262 #endif 263 cap_rights_t rights; 264 bool cansandbox; 265 266 /* 267 * Do the stuff that we need root priv's for *first*, and 268 * then drop our setuid bit. Save error reporting for 269 * after arg parsing. 270 * 271 * Historicaly ping was using one socket 's' for sending and for 272 * receiving. After capsicum(4) related changes we use two 273 * sockets. It was done for special ping use case - when user 274 * issue ping on multicast or broadcast address replies come 275 * from different addresses, not from the address we 276 * connect(2)'ed to, and send socket do not receive those 277 * packets. 278 */ 279 ssend = socket(AF_INET, SOCK_RAW, IPPROTO_ICMP); 280 ssend_errno = errno; 281 srecv = socket(AF_INET, SOCK_RAW, IPPROTO_ICMP); 282 srecv_errno = errno; 283 284 if (setuid(getuid()) != 0) 285 err(EX_NOPERM, "setuid() failed"); 286 uid = getuid(); 287 288 alarmtimeout = df = preload = tos = 0; 289 290 outpack = outpackhdr + sizeof(struct ip); 291 while ((ch = getopt(argc, argv, 292 "Aac:DdfG:g:h:I:i:Ll:M:m:nop:QqRrS:s:T:t:vW:z:" 293 #ifdef IPSEC 294 #ifdef IPSEC_POLICY_IPSEC 295 "P:" 296 #endif /*IPSEC_POLICY_IPSEC*/ 297 #endif /*IPSEC*/ 298 )) != -1) 299 { 300 switch(ch) { 301 case 'A': 302 options |= F_MISSED; 303 break; 304 case 'a': 305 options |= F_AUDIBLE; 306 break; 307 case 'c': 308 ultmp = strtoul(optarg, &ep, 0); 309 if (*ep || ep == optarg || ultmp > LONG_MAX || !ultmp) 310 errx(EX_USAGE, 311 "invalid count of packets to transmit: `%s'", 312 optarg); 313 npackets = ultmp; 314 break; 315 case 'D': 316 options |= F_HDRINCL; 317 df = 1; 318 break; 319 case 'd': 320 options |= F_SO_DEBUG; 321 break; 322 case 'f': 323 if (uid) { 324 errno = EPERM; 325 err(EX_NOPERM, "-f flag"); 326 } 327 options |= F_FLOOD; 328 setbuf(stdout, (char *)NULL); 329 break; 330 case 'G': /* Maximum packet size for ping sweep */ 331 ultmp = strtoul(optarg, &ep, 0); 332 if (*ep || ep == optarg) 333 errx(EX_USAGE, "invalid packet size: `%s'", 334 optarg); 335 if (uid != 0 && ultmp > DEFDATALEN) { 336 errno = EPERM; 337 err(EX_NOPERM, 338 "packet size too large: %lu > %u", 339 ultmp, DEFDATALEN); 340 } 341 options |= F_SWEEP; 342 sweepmax = ultmp; 343 break; 344 case 'g': /* Minimum packet size for ping sweep */ 345 ultmp = strtoul(optarg, &ep, 0); 346 if (*ep || ep == optarg) 347 errx(EX_USAGE, "invalid packet size: `%s'", 348 optarg); 349 if (uid != 0 && ultmp > DEFDATALEN) { 350 errno = EPERM; 351 err(EX_NOPERM, 352 "packet size too large: %lu > %u", 353 ultmp, DEFDATALEN); 354 } 355 options |= F_SWEEP; 356 sweepmin = ultmp; 357 break; 358 case 'h': /* Packet size increment for ping sweep */ 359 ultmp = strtoul(optarg, &ep, 0); 360 if (*ep || ep == optarg || ultmp < 1) 361 errx(EX_USAGE, "invalid increment size: `%s'", 362 optarg); 363 if (uid != 0 && ultmp > DEFDATALEN) { 364 errno = EPERM; 365 err(EX_NOPERM, 366 "packet size too large: %lu > %u", 367 ultmp, DEFDATALEN); 368 } 369 options |= F_SWEEP; 370 sweepincr = ultmp; 371 break; 372 case 'I': /* multicast interface */ 373 if (inet_aton(optarg, &ifaddr) == 0) 374 errx(EX_USAGE, 375 "invalid multicast interface: `%s'", 376 optarg); 377 options |= F_MIF; 378 break; 379 case 'i': /* wait between sending packets */ 380 t = strtod(optarg, &ep) * 1000.0; 381 if (*ep || ep == optarg || t > (double)INT_MAX) 382 errx(EX_USAGE, "invalid timing interval: `%s'", 383 optarg); 384 options |= F_INTERVAL; 385 interval = (int)t; 386 if (uid && interval < 1000) { 387 errno = EPERM; 388 err(EX_NOPERM, "-i interval too short"); 389 } 390 break; 391 case 'L': 392 options |= F_NOLOOP; 393 loop = 0; 394 break; 395 case 'l': 396 ultmp = strtoul(optarg, &ep, 0); 397 if (*ep || ep == optarg || ultmp > INT_MAX) 398 errx(EX_USAGE, 399 "invalid preload value: `%s'", optarg); 400 if (uid) { 401 errno = EPERM; 402 err(EX_NOPERM, "-l flag"); 403 } 404 preload = ultmp; 405 break; 406 case 'M': 407 switch(optarg[0]) { 408 case 'M': 409 case 'm': 410 options |= F_MASK; 411 break; 412 case 'T': 413 case 't': 414 options |= F_TIME; 415 break; 416 default: 417 errx(EX_USAGE, "invalid message: `%c'", optarg[0]); 418 break; 419 } 420 break; 421 case 'm': /* TTL */ 422 ultmp = strtoul(optarg, &ep, 0); 423 if (*ep || ep == optarg || ultmp > MAXTTL) 424 errx(EX_USAGE, "invalid TTL: `%s'", optarg); 425 ttl = ultmp; 426 options |= F_TTL; 427 break; 428 case 'n': 429 options |= F_NUMERIC; 430 break; 431 case 'o': 432 options |= F_ONCE; 433 break; 434 #ifdef IPSEC 435 #ifdef IPSEC_POLICY_IPSEC 436 case 'P': 437 options |= F_POLICY; 438 if (!strncmp("in", optarg, 2)) 439 policy_in = strdup(optarg); 440 else if (!strncmp("out", optarg, 3)) 441 policy_out = strdup(optarg); 442 else 443 errx(1, "invalid security policy"); 444 break; 445 #endif /*IPSEC_POLICY_IPSEC*/ 446 #endif /*IPSEC*/ 447 case 'p': /* fill buffer with user pattern */ 448 options |= F_PINGFILLED; 449 payload = optarg; 450 break; 451 case 'Q': 452 options |= F_QUIET2; 453 break; 454 case 'q': 455 options |= F_QUIET; 456 break; 457 case 'R': 458 options |= F_RROUTE; 459 break; 460 case 'r': 461 options |= F_SO_DONTROUTE; 462 break; 463 case 'S': 464 source = optarg; 465 break; 466 case 's': /* size of packet to send */ 467 ultmp = strtoul(optarg, &ep, 0); 468 if (*ep || ep == optarg) 469 errx(EX_USAGE, "invalid packet size: `%s'", 470 optarg); 471 if (uid != 0 && ultmp > DEFDATALEN) { 472 errno = EPERM; 473 err(EX_NOPERM, 474 "packet size too large: %lu > %u", 475 ultmp, DEFDATALEN); 476 } 477 datalen = ultmp; 478 break; 479 case 'T': /* multicast TTL */ 480 ultmp = strtoul(optarg, &ep, 0); 481 if (*ep || ep == optarg || ultmp > MAXTTL) 482 errx(EX_USAGE, "invalid multicast TTL: `%s'", 483 optarg); 484 mttl = ultmp; 485 options |= F_MTTL; 486 break; 487 case 't': 488 alarmtimeout = strtoul(optarg, &ep, 0); 489 if ((alarmtimeout < 1) || (alarmtimeout == ULONG_MAX)) 490 errx(EX_USAGE, "invalid timeout: `%s'", 491 optarg); 492 if (alarmtimeout > MAXALARM) 493 errx(EX_USAGE, "invalid timeout: `%s' > %d", 494 optarg, MAXALARM); 495 alarm((int)alarmtimeout); 496 break; 497 case 'v': 498 options |= F_VERBOSE; 499 break; 500 case 'W': /* wait ms for answer */ 501 t = strtod(optarg, &ep); 502 if (*ep || ep == optarg || t > (double)INT_MAX) 503 errx(EX_USAGE, "invalid timing interval: `%s'", 504 optarg); 505 options |= F_WAITTIME; 506 waittime = (int)t; 507 break; 508 case 'z': 509 options |= F_HDRINCL; 510 ultmp = strtoul(optarg, &ep, 0); 511 if (*ep || ep == optarg || ultmp > MAXTOS) 512 errx(EX_USAGE, "invalid TOS: `%s'", optarg); 513 tos = ultmp; 514 break; 515 default: 516 usage(); 517 } 518 } 519 520 if (argc - optind != 1) 521 usage(); 522 target = argv[optind]; 523 524 switch (options & (F_MASK|F_TIME)) { 525 case 0: break; 526 case F_MASK: 527 icmp_type = ICMP_MASKREQ; 528 icmp_type_rsp = ICMP_MASKREPLY; 529 phdr_len = MASK_LEN; 530 if (!(options & F_QUIET)) 531 (void)printf("ICMP_MASKREQ\n"); 532 break; 533 case F_TIME: 534 icmp_type = ICMP_TSTAMP; 535 icmp_type_rsp = ICMP_TSTAMPREPLY; 536 phdr_len = TS_LEN; 537 if (!(options & F_QUIET)) 538 (void)printf("ICMP_TSTAMP\n"); 539 break; 540 default: 541 errx(EX_USAGE, "ICMP_TSTAMP and ICMP_MASKREQ are exclusive."); 542 break; 543 } 544 icmp_len = sizeof(struct ip) + ICMP_MINLEN + phdr_len; 545 if (options & F_RROUTE) 546 icmp_len += MAX_IPOPTLEN; 547 maxpayload = IP_MAXPACKET - icmp_len; 548 if (datalen > maxpayload) 549 errx(EX_USAGE, "packet size too large: %d > %d", datalen, 550 maxpayload); 551 send_len = icmp_len + datalen; 552 datap = &outpack[ICMP_MINLEN + phdr_len + TIMEVAL_LEN]; 553 if (options & F_PINGFILLED) { 554 fill((char *)datap, payload); 555 } 556 #ifdef HAVE_LIBCAPSICUM 557 capdns = capdns_setup(); 558 #endif 559 if (source) { 560 bzero((char *)&sock_in, sizeof(sock_in)); 561 sock_in.sin_family = AF_INET; 562 if (inet_aton(source, &sock_in.sin_addr) != 0) { 563 shostname = source; 564 } else { 565 #ifdef HAVE_LIBCAPSICUM 566 if (capdns != NULL) 567 hp = cap_gethostbyname2(capdns, source, 568 AF_INET); 569 else 570 #endif 571 hp = gethostbyname2(source, AF_INET); 572 if (!hp) 573 errx(EX_NOHOST, "cannot resolve %s: %s", 574 source, hstrerror(h_errno)); 575 576 sock_in.sin_len = sizeof sock_in; 577 if ((unsigned)hp->h_length > sizeof(sock_in.sin_addr) || 578 hp->h_length < 0) 579 errx(1, "gethostbyname2: illegal address"); 580 memcpy(&sock_in.sin_addr, hp->h_addr_list[0], 581 sizeof(sock_in.sin_addr)); 582 (void)strncpy(snamebuf, hp->h_name, 583 sizeof(snamebuf) - 1); 584 snamebuf[sizeof(snamebuf) - 1] = '\0'; 585 shostname = snamebuf; 586 } 587 if (bind(ssend, (struct sockaddr *)&sock_in, sizeof sock_in) == 588 -1) 589 err(1, "bind"); 590 } 591 592 bzero(&whereto, sizeof(whereto)); 593 to = &whereto; 594 to->sin_family = AF_INET; 595 to->sin_len = sizeof *to; 596 if (inet_aton(target, &to->sin_addr) != 0) { 597 hostname = target; 598 } else { 599 #ifdef HAVE_LIBCAPSICUM 600 if (capdns != NULL) 601 hp = cap_gethostbyname2(capdns, target, AF_INET); 602 else 603 #endif 604 hp = gethostbyname2(target, AF_INET); 605 if (!hp) 606 errx(EX_NOHOST, "cannot resolve %s: %s", 607 target, hstrerror(h_errno)); 608 609 if ((unsigned)hp->h_length > sizeof(to->sin_addr)) 610 errx(1, "gethostbyname2 returned an illegal address"); 611 memcpy(&to->sin_addr, hp->h_addr_list[0], sizeof to->sin_addr); 612 (void)strncpy(hnamebuf, hp->h_name, sizeof(hnamebuf) - 1); 613 hnamebuf[sizeof(hnamebuf) - 1] = '\0'; 614 hostname = hnamebuf; 615 } 616 617 #ifdef HAVE_LIBCAPSICUM 618 /* From now on we will use only reverse DNS lookups. */ 619 if (capdns != NULL) { 620 const char *types[1]; 621 622 types[0] = "ADDR"; 623 if (cap_dns_type_limit(capdns, types, 1) < 0) 624 err(1, "unable to limit access to system.dns service"); 625 } 626 #endif 627 628 if (ssend < 0) { 629 errno = ssend_errno; 630 err(EX_OSERR, "ssend socket"); 631 } 632 633 if (srecv < 0) { 634 errno = srecv_errno; 635 err(EX_OSERR, "srecv socket"); 636 } 637 638 if (connect(ssend, (struct sockaddr *)&whereto, sizeof(whereto)) != 0) 639 err(1, "connect"); 640 641 if (options & F_FLOOD && options & F_INTERVAL) 642 errx(EX_USAGE, "-f and -i: incompatible options"); 643 644 if (options & F_FLOOD && IN_MULTICAST(ntohl(to->sin_addr.s_addr))) 645 errx(EX_USAGE, 646 "-f flag cannot be used with multicast destination"); 647 if (options & (F_MIF | F_NOLOOP | F_MTTL) 648 && !IN_MULTICAST(ntohl(to->sin_addr.s_addr))) 649 errx(EX_USAGE, 650 "-I, -L, -T flags cannot be used with unicast destination"); 651 652 if (datalen >= TIMEVAL_LEN) /* can we time transfer */ 653 timing = 1; 654 655 if (!(options & F_PINGFILLED)) 656 for (i = TIMEVAL_LEN; i < datalen; ++i) 657 *datap++ = i; 658 659 ident = getpid() & 0xFFFF; 660 661 hold = 1; 662 if (options & F_SO_DEBUG) { 663 (void)setsockopt(ssend, SOL_SOCKET, SO_DEBUG, (char *)&hold, 664 sizeof(hold)); 665 (void)setsockopt(srecv, SOL_SOCKET, SO_DEBUG, (char *)&hold, 666 sizeof(hold)); 667 } 668 if (options & F_SO_DONTROUTE) 669 (void)setsockopt(ssend, SOL_SOCKET, SO_DONTROUTE, (char *)&hold, 670 sizeof(hold)); 671 #ifdef IPSEC 672 #ifdef IPSEC_POLICY_IPSEC 673 if (options & F_POLICY) { 674 char *buf; 675 if (policy_in != NULL) { 676 buf = ipsec_set_policy(policy_in, strlen(policy_in)); 677 if (buf == NULL) 678 errx(EX_CONFIG, "%s", ipsec_strerror()); 679 if (setsockopt(srecv, IPPROTO_IP, IP_IPSEC_POLICY, 680 buf, ipsec_get_policylen(buf)) < 0) 681 err(EX_CONFIG, 682 "ipsec policy cannot be configured"); 683 free(buf); 684 } 685 686 if (policy_out != NULL) { 687 buf = ipsec_set_policy(policy_out, strlen(policy_out)); 688 if (buf == NULL) 689 errx(EX_CONFIG, "%s", ipsec_strerror()); 690 if (setsockopt(ssend, IPPROTO_IP, IP_IPSEC_POLICY, 691 buf, ipsec_get_policylen(buf)) < 0) 692 err(EX_CONFIG, 693 "ipsec policy cannot be configured"); 694 free(buf); 695 } 696 } 697 #endif /*IPSEC_POLICY_IPSEC*/ 698 #endif /*IPSEC*/ 699 700 if (options & F_HDRINCL) { 701 ip = (struct ip*)outpackhdr; 702 if (!(options & (F_TTL | F_MTTL))) { 703 mib[0] = CTL_NET; 704 mib[1] = PF_INET; 705 mib[2] = IPPROTO_IP; 706 mib[3] = IPCTL_DEFTTL; 707 sz = sizeof(ttl); 708 if (sysctl(mib, 4, &ttl, &sz, NULL, 0) == -1) 709 err(1, "sysctl(net.inet.ip.ttl)"); 710 } 711 setsockopt(ssend, IPPROTO_IP, IP_HDRINCL, &hold, sizeof(hold)); 712 ip->ip_v = IPVERSION; 713 ip->ip_hl = sizeof(struct ip) >> 2; 714 ip->ip_tos = tos; 715 ip->ip_id = 0; 716 ip->ip_off = df ? IP_DF : 0; 717 ip->ip_ttl = ttl; 718 ip->ip_p = IPPROTO_ICMP; 719 ip->ip_src.s_addr = source ? sock_in.sin_addr.s_addr : INADDR_ANY; 720 ip->ip_dst = to->sin_addr; 721 } 722 723 if (options & F_NUMERIC) 724 cansandbox = true; 725 #ifdef HAVE_LIBCAPSICUM 726 else if (capdns != NULL) 727 cansandbox = true; 728 #endif 729 else 730 cansandbox = false; 731 732 /* 733 * Here we enter capability mode. Further down access to global 734 * namespaces (e.g filesystem) is restricted (see capsicum(4)). 735 * We must connect(2) our socket before this point. 736 */ 737 if (cansandbox && cap_enter() < 0 && errno != ENOSYS) 738 err(1, "cap_enter"); 739 740 if (cap_sandboxed()) 741 fprintf(stderr, "capability mode sandbox enabled\n"); 742 743 cap_rights_init(&rights, CAP_RECV, CAP_EVENT, CAP_SETSOCKOPT); 744 if (cap_rights_limit(srecv, &rights) < 0 && errno != ENOSYS) 745 err(1, "cap_rights_limit srecv"); 746 747 cap_rights_init(&rights, CAP_SEND, CAP_SETSOCKOPT); 748 if (cap_rights_limit(ssend, &rights) < 0 && errno != ENOSYS) 749 err(1, "cap_rights_limit ssend"); 750 751 /* record route option */ 752 if (options & F_RROUTE) { 753 #ifdef IP_OPTIONS 754 bzero(rspace, sizeof(rspace)); 755 rspace[IPOPT_OPTVAL] = IPOPT_RR; 756 rspace[IPOPT_OLEN] = sizeof(rspace) - 1; 757 rspace[IPOPT_OFFSET] = IPOPT_MINOFF; 758 rspace[sizeof(rspace) - 1] = IPOPT_EOL; 759 if (setsockopt(ssend, IPPROTO_IP, IP_OPTIONS, rspace, 760 sizeof(rspace)) < 0) 761 err(EX_OSERR, "setsockopt IP_OPTIONS"); 762 #else 763 errx(EX_UNAVAILABLE, 764 "record route not available in this implementation"); 765 #endif /* IP_OPTIONS */ 766 } 767 768 if (options & F_TTL) { 769 if (setsockopt(ssend, IPPROTO_IP, IP_TTL, &ttl, 770 sizeof(ttl)) < 0) { 771 err(EX_OSERR, "setsockopt IP_TTL"); 772 } 773 } 774 if (options & F_NOLOOP) { 775 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_LOOP, &loop, 776 sizeof(loop)) < 0) { 777 err(EX_OSERR, "setsockopt IP_MULTICAST_LOOP"); 778 } 779 } 780 if (options & F_MTTL) { 781 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_TTL, &mttl, 782 sizeof(mttl)) < 0) { 783 err(EX_OSERR, "setsockopt IP_MULTICAST_TTL"); 784 } 785 } 786 if (options & F_MIF) { 787 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_IF, &ifaddr, 788 sizeof(ifaddr)) < 0) { 789 err(EX_OSERR, "setsockopt IP_MULTICAST_IF"); 790 } 791 } 792 #ifdef SO_TIMESTAMP 793 { int on = 1; 794 if (setsockopt(srecv, SOL_SOCKET, SO_TIMESTAMP, &on, sizeof(on)) < 0) 795 err(EX_OSERR, "setsockopt SO_TIMESTAMP"); 796 } 797 #endif 798 if (sweepmax) { 799 if (sweepmin >= sweepmax) 800 errx(EX_USAGE, "Maximum packet size must be greater than the minimum packet size"); 801 802 if (datalen != DEFDATALEN) 803 errx(EX_USAGE, "Packet size and ping sweep are mutually exclusive"); 804 805 if (npackets > 0) { 806 snpackets = npackets; 807 npackets = 0; 808 } else 809 snpackets = 1; 810 datalen = sweepmin; 811 send_len = icmp_len + sweepmin; 812 } 813 if (options & F_SWEEP && !sweepmax) 814 errx(EX_USAGE, "Maximum sweep size must be specified"); 815 816 /* 817 * When pinging the broadcast address, you can get a lot of answers. 818 * Doing something so evil is useful if you are trying to stress the 819 * ethernet, or just want to fill the arp cache to get some stuff for 820 * /etc/ethers. But beware: RFC 1122 allows hosts to ignore broadcast 821 * or multicast pings if they wish. 822 */ 823 824 /* 825 * XXX receive buffer needs undetermined space for mbuf overhead 826 * as well. 827 */ 828 hold = IP_MAXPACKET + 128; 829 (void)setsockopt(srecv, SOL_SOCKET, SO_RCVBUF, (char *)&hold, 830 sizeof(hold)); 831 /* CAP_SETSOCKOPT removed */ 832 cap_rights_init(&rights, CAP_RECV, CAP_EVENT); 833 if (cap_rights_limit(srecv, &rights) < 0 && errno != ENOSYS) 834 err(1, "cap_rights_limit srecv setsockopt"); 835 if (uid == 0) 836 (void)setsockopt(ssend, SOL_SOCKET, SO_SNDBUF, (char *)&hold, 837 sizeof(hold)); 838 /* CAP_SETSOCKOPT removed */ 839 cap_rights_init(&rights, CAP_SEND); 840 if (cap_rights_limit(ssend, &rights) < 0 && errno != ENOSYS) 841 err(1, "cap_rights_limit ssend setsockopt"); 842 843 if (to->sin_family == AF_INET) { 844 (void)printf("PING %s (%s)", hostname, 845 inet_ntoa(to->sin_addr)); 846 if (source) 847 (void)printf(" from %s", shostname); 848 if (sweepmax) 849 (void)printf(": (%d ... %d) data bytes\n", 850 sweepmin, sweepmax); 851 else 852 (void)printf(": %d data bytes\n", datalen); 853 854 } else { 855 if (sweepmax) 856 (void)printf("PING %s: (%d ... %d) data bytes\n", 857 hostname, sweepmin, sweepmax); 858 else 859 (void)printf("PING %s: %d data bytes\n", hostname, datalen); 860 } 861 862 /* 863 * Use sigaction() instead of signal() to get unambiguous semantics, 864 * in particular with SA_RESTART not set. 865 */ 866 867 sigemptyset(&si_sa.sa_mask); 868 si_sa.sa_flags = 0; 869 870 si_sa.sa_handler = stopit; 871 if (sigaction(SIGINT, &si_sa, 0) == -1) { 872 err(EX_OSERR, "sigaction SIGINT"); 873 } 874 875 si_sa.sa_handler = status; 876 if (sigaction(SIGINFO, &si_sa, 0) == -1) { 877 err(EX_OSERR, "sigaction"); 878 } 879 880 if (alarmtimeout > 0) { 881 si_sa.sa_handler = stopit; 882 if (sigaction(SIGALRM, &si_sa, 0) == -1) 883 err(EX_OSERR, "sigaction SIGALRM"); 884 } 885 886 bzero(&msg, sizeof(msg)); 887 msg.msg_name = (caddr_t)&from; 888 msg.msg_iov = &iov; 889 msg.msg_iovlen = 1; 890 #ifdef SO_TIMESTAMP 891 msg.msg_control = (caddr_t)ctrl; 892 #endif 893 iov.iov_base = packet; 894 iov.iov_len = IP_MAXPACKET; 895 896 if (preload == 0) 897 pinger(); /* send the first ping */ 898 else { 899 if (npackets != 0 && preload > npackets) 900 preload = npackets; 901 while (preload--) /* fire off them quickies */ 902 pinger(); 903 } 904 (void)gettimeofday(&last, NULL); 905 906 if (options & F_FLOOD) { 907 intvl.tv_sec = 0; 908 intvl.tv_usec = 10000; 909 } else { 910 intvl.tv_sec = interval / 1000; 911 intvl.tv_usec = interval % 1000 * 1000; 912 } 913 914 almost_done = 0; 915 while (!finish_up) { 916 struct timeval now, timeout; 917 fd_set rfds; 918 int cc, n; 919 920 check_status(); 921 if ((unsigned)srecv >= FD_SETSIZE) 922 errx(EX_OSERR, "descriptor too large"); 923 FD_ZERO(&rfds); 924 FD_SET(srecv, &rfds); 925 (void)gettimeofday(&now, NULL); 926 timeout.tv_sec = last.tv_sec + intvl.tv_sec - now.tv_sec; 927 timeout.tv_usec = last.tv_usec + intvl.tv_usec - now.tv_usec; 928 while (timeout.tv_usec < 0) { 929 timeout.tv_usec += 1000000; 930 timeout.tv_sec--; 931 } 932 while (timeout.tv_usec >= 1000000) { 933 timeout.tv_usec -= 1000000; 934 timeout.tv_sec++; 935 } 936 if (timeout.tv_sec < 0) 937 timerclear(&timeout); 938 n = select(srecv + 1, &rfds, NULL, NULL, &timeout); 939 if (n < 0) 940 continue; /* Must be EINTR. */ 941 if (n == 1) { 942 struct timeval *tv = NULL; 943 #ifdef SO_TIMESTAMP 944 struct cmsghdr *cmsg = (struct cmsghdr *)&ctrl; 945 946 msg.msg_controllen = sizeof(ctrl); 947 #endif 948 msg.msg_namelen = sizeof(from); 949 if ((cc = recvmsg(srecv, &msg, 0)) < 0) { 950 if (errno == EINTR) 951 continue; 952 warn("recvmsg"); 953 continue; 954 } 955 #ifdef SO_TIMESTAMP 956 if (cmsg->cmsg_level == SOL_SOCKET && 957 cmsg->cmsg_type == SCM_TIMESTAMP && 958 cmsg->cmsg_len == CMSG_LEN(sizeof *tv)) { 959 /* Copy to avoid alignment problems: */ 960 memcpy(&now, CMSG_DATA(cmsg), sizeof(now)); 961 tv = &now; 962 } 963 #endif 964 if (tv == NULL) { 965 (void)gettimeofday(&now, NULL); 966 tv = &now; 967 } 968 pr_pack((char *)packet, cc, &from, tv); 969 if ((options & F_ONCE && nreceived) || 970 (npackets && nreceived >= npackets)) 971 break; 972 } 973 if (n == 0 || options & F_FLOOD) { 974 if (sweepmax && sntransmitted == snpackets) { 975 for (i = 0; i < sweepincr ; ++i) 976 *datap++ = i; 977 datalen += sweepincr; 978 if (datalen > sweepmax) 979 break; 980 send_len = icmp_len + datalen; 981 sntransmitted = 0; 982 } 983 if (!npackets || ntransmitted < npackets) 984 pinger(); 985 else { 986 if (almost_done) 987 break; 988 almost_done = 1; 989 intvl.tv_usec = 0; 990 if (nreceived) { 991 intvl.tv_sec = 2 * tmax / 1000; 992 if (!intvl.tv_sec) 993 intvl.tv_sec = 1; 994 } else { 995 intvl.tv_sec = waittime / 1000; 996 intvl.tv_usec = waittime % 1000 * 1000; 997 } 998 } 999 (void)gettimeofday(&last, NULL); 1000 if (ntransmitted - nreceived - 1 > nmissedmax) { 1001 nmissedmax = ntransmitted - nreceived - 1; 1002 if (options & F_MISSED) 1003 (void)write(STDOUT_FILENO, &BBELL, 1); 1004 } 1005 } 1006 } 1007 finish(); 1008 /* NOTREACHED */ 1009 exit(0); /* Make the compiler happy */ 1010 } 1011 1012 /* 1013 * stopit -- 1014 * Set the global bit that causes the main loop to quit. 1015 * Do NOT call finish() from here, since finish() does far too much 1016 * to be called from a signal handler. 1017 */ 1018 void 1019 stopit(int sig __unused) 1020 { 1021 1022 /* 1023 * When doing reverse DNS lookups, the finish_up flag might not 1024 * be noticed for a while. Just exit if we get a second SIGINT. 1025 */ 1026 if (!(options & F_NUMERIC) && finish_up) 1027 _exit(nreceived ? 0 : 2); 1028 finish_up = 1; 1029 } 1030 1031 /* 1032 * pinger -- 1033 * Compose and transmit an ICMP ECHO REQUEST packet. The IP packet 1034 * will be added on by the kernel. The ID field is our UNIX process ID, 1035 * and the sequence number is an ascending integer. The first TIMEVAL_LEN 1036 * bytes of the data portion are used to hold a UNIX "timeval" struct in 1037 * host byte-order, to compute the round-trip time. 1038 */ 1039 static void 1040 pinger(void) 1041 { 1042 struct timeval now; 1043 struct tv32 tv32; 1044 struct ip *ip; 1045 struct icmp *icp; 1046 int cc, i; 1047 u_char *packet; 1048 1049 packet = outpack; 1050 icp = (struct icmp *)outpack; 1051 icp->icmp_type = icmp_type; 1052 icp->icmp_code = 0; 1053 icp->icmp_cksum = 0; 1054 icp->icmp_seq = htons(ntransmitted); 1055 icp->icmp_id = ident; /* ID */ 1056 1057 CLR(ntransmitted % mx_dup_ck); 1058 1059 if ((options & F_TIME) || timing) { 1060 (void)gettimeofday(&now, NULL); 1061 1062 tv32.tv32_sec = htonl(now.tv_sec); 1063 tv32.tv32_usec = htonl(now.tv_usec); 1064 if (options & F_TIME) 1065 icp->icmp_otime = htonl((now.tv_sec % (24*60*60)) 1066 * 1000 + now.tv_usec / 1000); 1067 if (timing) 1068 bcopy((void *)&tv32, 1069 (void *)&outpack[ICMP_MINLEN + phdr_len], 1070 sizeof(tv32)); 1071 } 1072 1073 cc = ICMP_MINLEN + phdr_len + datalen; 1074 1075 /* compute ICMP checksum here */ 1076 icp->icmp_cksum = in_cksum((u_short *)icp, cc); 1077 1078 if (options & F_HDRINCL) { 1079 cc += sizeof(struct ip); 1080 ip = (struct ip *)outpackhdr; 1081 ip->ip_len = cc; 1082 ip->ip_sum = in_cksum((u_short *)outpackhdr, cc); 1083 packet = outpackhdr; 1084 } 1085 i = send(ssend, (char *)packet, cc, 0); 1086 if (i < 0 || i != cc) { 1087 if (i < 0) { 1088 if (options & F_FLOOD && errno == ENOBUFS) { 1089 usleep(FLOOD_BACKOFF); 1090 return; 1091 } 1092 warn("sendto"); 1093 } else { 1094 warn("%s: partial write: %d of %d bytes", 1095 hostname, i, cc); 1096 } 1097 } 1098 ntransmitted++; 1099 sntransmitted++; 1100 if (!(options & F_QUIET) && options & F_FLOOD) 1101 (void)write(STDOUT_FILENO, &DOT, 1); 1102 } 1103 1104 /* 1105 * pr_pack -- 1106 * Print out the packet, if it came from us. This logic is necessary 1107 * because ALL readers of the ICMP socket get a copy of ALL ICMP packets 1108 * which arrive ('tis only fair). This permits multiple copies of this 1109 * program to be run without having intermingled output (or statistics!). 1110 */ 1111 static void 1112 pr_pack(char *buf, int cc, struct sockaddr_in *from, struct timeval *tv) 1113 { 1114 struct in_addr ina; 1115 u_char *cp, *dp; 1116 struct icmp *icp; 1117 struct ip *ip; 1118 const void *tp; 1119 double triptime; 1120 int dupflag, hlen, i, j, recv_len, seq; 1121 static int old_rrlen; 1122 static char old_rr[MAX_IPOPTLEN]; 1123 1124 /* Check the IP header */ 1125 ip = (struct ip *)buf; 1126 hlen = ip->ip_hl << 2; 1127 recv_len = cc; 1128 if (cc < hlen + ICMP_MINLEN) { 1129 if (options & F_VERBOSE) 1130 warn("packet too short (%d bytes) from %s", cc, 1131 inet_ntoa(from->sin_addr)); 1132 return; 1133 } 1134 1135 /* Now the ICMP part */ 1136 cc -= hlen; 1137 icp = (struct icmp *)(buf + hlen); 1138 if (icp->icmp_type == icmp_type_rsp) { 1139 if (icp->icmp_id != ident) 1140 return; /* 'Twas not our ECHO */ 1141 ++nreceived; 1142 triptime = 0.0; 1143 if (timing) { 1144 struct timeval tv1; 1145 struct tv32 tv32; 1146 #ifndef icmp_data 1147 tp = &icp->icmp_ip; 1148 #else 1149 tp = icp->icmp_data; 1150 #endif 1151 tp = (const char *)tp + phdr_len; 1152 1153 if ((size_t)(cc - ICMP_MINLEN - phdr_len) >= 1154 sizeof(tv1)) { 1155 /* Copy to avoid alignment problems: */ 1156 memcpy(&tv32, tp, sizeof(tv32)); 1157 tv1.tv_sec = ntohl(tv32.tv32_sec); 1158 tv1.tv_usec = ntohl(tv32.tv32_usec); 1159 tvsub(tv, &tv1); 1160 triptime = ((double)tv->tv_sec) * 1000.0 + 1161 ((double)tv->tv_usec) / 1000.0; 1162 tsum += triptime; 1163 tsumsq += triptime * triptime; 1164 if (triptime < tmin) 1165 tmin = triptime; 1166 if (triptime > tmax) 1167 tmax = triptime; 1168 } else 1169 timing = 0; 1170 } 1171 1172 seq = ntohs(icp->icmp_seq); 1173 1174 if (TST(seq % mx_dup_ck)) { 1175 ++nrepeats; 1176 --nreceived; 1177 dupflag = 1; 1178 } else { 1179 SET(seq % mx_dup_ck); 1180 dupflag = 0; 1181 } 1182 1183 if (options & F_QUIET) 1184 return; 1185 1186 if (options & F_WAITTIME && triptime > waittime) { 1187 ++nrcvtimeout; 1188 return; 1189 } 1190 1191 if (options & F_FLOOD) 1192 (void)write(STDOUT_FILENO, &BSPACE, 1); 1193 else { 1194 (void)printf("%d bytes from %s: icmp_seq=%u", cc, 1195 inet_ntoa(*(struct in_addr *)&from->sin_addr.s_addr), 1196 seq); 1197 (void)printf(" ttl=%d", ip->ip_ttl); 1198 if (timing) 1199 (void)printf(" time=%.3f ms", triptime); 1200 if (dupflag) 1201 (void)printf(" (DUP!)"); 1202 if (options & F_AUDIBLE) 1203 (void)write(STDOUT_FILENO, &BBELL, 1); 1204 if (options & F_MASK) { 1205 /* Just prentend this cast isn't ugly */ 1206 (void)printf(" mask=%s", 1207 pr_addr(*(struct in_addr *)&(icp->icmp_mask))); 1208 } 1209 if (options & F_TIME) { 1210 (void)printf(" tso=%s", pr_ntime(icp->icmp_otime)); 1211 (void)printf(" tsr=%s", pr_ntime(icp->icmp_rtime)); 1212 (void)printf(" tst=%s", pr_ntime(icp->icmp_ttime)); 1213 } 1214 if (recv_len != send_len) { 1215 (void)printf( 1216 "\nwrong total length %d instead of %d", 1217 recv_len, send_len); 1218 } 1219 /* check the data */ 1220 cp = (u_char*)&icp->icmp_data[phdr_len]; 1221 dp = &outpack[ICMP_MINLEN + phdr_len]; 1222 cc -= ICMP_MINLEN + phdr_len; 1223 i = 0; 1224 if (timing) { /* don't check variable timestamp */ 1225 cp += TIMEVAL_LEN; 1226 dp += TIMEVAL_LEN; 1227 cc -= TIMEVAL_LEN; 1228 i += TIMEVAL_LEN; 1229 } 1230 for (; i < datalen && cc > 0; ++i, ++cp, ++dp, --cc) { 1231 if (*cp != *dp) { 1232 (void)printf("\nwrong data byte #%d should be 0x%x but was 0x%x", 1233 i, *dp, *cp); 1234 (void)printf("\ncp:"); 1235 cp = (u_char*)&icp->icmp_data[0]; 1236 for (i = 0; i < datalen; ++i, ++cp) { 1237 if ((i % 16) == 8) 1238 (void)printf("\n\t"); 1239 (void)printf("%2x ", *cp); 1240 } 1241 (void)printf("\ndp:"); 1242 cp = &outpack[ICMP_MINLEN]; 1243 for (i = 0; i < datalen; ++i, ++cp) { 1244 if ((i % 16) == 8) 1245 (void)printf("\n\t"); 1246 (void)printf("%2x ", *cp); 1247 } 1248 break; 1249 } 1250 } 1251 } 1252 } else { 1253 /* 1254 * We've got something other than an ECHOREPLY. 1255 * See if it's a reply to something that we sent. 1256 * We can compare IP destination, protocol, 1257 * and ICMP type and ID. 1258 * 1259 * Only print all the error messages if we are running 1260 * as root to avoid leaking information not normally 1261 * available to those not running as root. 1262 */ 1263 #ifndef icmp_data 1264 struct ip *oip = &icp->icmp_ip; 1265 #else 1266 struct ip *oip = (struct ip *)icp->icmp_data; 1267 #endif 1268 struct icmp *oicmp = (struct icmp *)(oip + 1); 1269 1270 if (((options & F_VERBOSE) && uid == 0) || 1271 (!(options & F_QUIET2) && 1272 (oip->ip_dst.s_addr == whereto.sin_addr.s_addr) && 1273 (oip->ip_p == IPPROTO_ICMP) && 1274 (oicmp->icmp_type == ICMP_ECHO) && 1275 (oicmp->icmp_id == ident))) { 1276 (void)printf("%d bytes from %s: ", cc, 1277 pr_addr(from->sin_addr)); 1278 pr_icmph(icp); 1279 } else 1280 return; 1281 } 1282 1283 /* Display any IP options */ 1284 cp = (u_char *)buf + sizeof(struct ip); 1285 1286 for (; hlen > (int)sizeof(struct ip); --hlen, ++cp) 1287 switch (*cp) { 1288 case IPOPT_EOL: 1289 hlen = 0; 1290 break; 1291 case IPOPT_LSRR: 1292 case IPOPT_SSRR: 1293 (void)printf(*cp == IPOPT_LSRR ? 1294 "\nLSRR: " : "\nSSRR: "); 1295 j = cp[IPOPT_OLEN] - IPOPT_MINOFF + 1; 1296 hlen -= 2; 1297 cp += 2; 1298 if (j >= INADDR_LEN && 1299 j <= hlen - (int)sizeof(struct ip)) { 1300 for (;;) { 1301 bcopy(++cp, &ina.s_addr, INADDR_LEN); 1302 if (ina.s_addr == 0) 1303 (void)printf("\t0.0.0.0"); 1304 else 1305 (void)printf("\t%s", 1306 pr_addr(ina)); 1307 hlen -= INADDR_LEN; 1308 cp += INADDR_LEN - 1; 1309 j -= INADDR_LEN; 1310 if (j < INADDR_LEN) 1311 break; 1312 (void)putchar('\n'); 1313 } 1314 } else 1315 (void)printf("\t(truncated route)\n"); 1316 break; 1317 case IPOPT_RR: 1318 j = cp[IPOPT_OLEN]; /* get length */ 1319 i = cp[IPOPT_OFFSET]; /* and pointer */ 1320 hlen -= 2; 1321 cp += 2; 1322 if (i > j) 1323 i = j; 1324 i = i - IPOPT_MINOFF + 1; 1325 if (i < 0 || i > (hlen - (int)sizeof(struct ip))) { 1326 old_rrlen = 0; 1327 continue; 1328 } 1329 if (i == old_rrlen 1330 && !bcmp((char *)cp, old_rr, i) 1331 && !(options & F_FLOOD)) { 1332 (void)printf("\t(same route)"); 1333 hlen -= i; 1334 cp += i; 1335 break; 1336 } 1337 old_rrlen = i; 1338 bcopy((char *)cp, old_rr, i); 1339 (void)printf("\nRR: "); 1340 if (i >= INADDR_LEN && 1341 i <= hlen - (int)sizeof(struct ip)) { 1342 for (;;) { 1343 bcopy(++cp, &ina.s_addr, INADDR_LEN); 1344 if (ina.s_addr == 0) 1345 (void)printf("\t0.0.0.0"); 1346 else 1347 (void)printf("\t%s", 1348 pr_addr(ina)); 1349 hlen -= INADDR_LEN; 1350 cp += INADDR_LEN - 1; 1351 i -= INADDR_LEN; 1352 if (i < INADDR_LEN) 1353 break; 1354 (void)putchar('\n'); 1355 } 1356 } else 1357 (void)printf("\t(truncated route)"); 1358 break; 1359 case IPOPT_NOP: 1360 (void)printf("\nNOP"); 1361 break; 1362 default: 1363 (void)printf("\nunknown option %x", *cp); 1364 break; 1365 } 1366 if (!(options & F_FLOOD)) { 1367 (void)putchar('\n'); 1368 (void)fflush(stdout); 1369 } 1370 } 1371 1372 /* 1373 * in_cksum -- 1374 * Checksum routine for Internet Protocol family headers (C Version) 1375 */ 1376 u_short 1377 in_cksum(u_short *addr, int len) 1378 { 1379 int nleft, sum; 1380 u_short *w; 1381 union { 1382 u_short us; 1383 u_char uc[2]; 1384 } last; 1385 u_short answer; 1386 1387 nleft = len; 1388 sum = 0; 1389 w = addr; 1390 1391 /* 1392 * Our algorithm is simple, using a 32 bit accumulator (sum), we add 1393 * sequential 16 bit words to it, and at the end, fold back all the 1394 * carry bits from the top 16 bits into the lower 16 bits. 1395 */ 1396 while (nleft > 1) { 1397 sum += *w++; 1398 nleft -= 2; 1399 } 1400 1401 /* mop up an odd byte, if necessary */ 1402 if (nleft == 1) { 1403 last.uc[0] = *(u_char *)w; 1404 last.uc[1] = 0; 1405 sum += last.us; 1406 } 1407 1408 /* add back carry outs from top 16 bits to low 16 bits */ 1409 sum = (sum >> 16) + (sum & 0xffff); /* add hi 16 to low 16 */ 1410 sum += (sum >> 16); /* add carry */ 1411 answer = ~sum; /* truncate to 16 bits */ 1412 return(answer); 1413 } 1414 1415 /* 1416 * tvsub -- 1417 * Subtract 2 timeval structs: out = out - in. Out is assumed to 1418 * be >= in. 1419 */ 1420 static void 1421 tvsub(struct timeval *out, const struct timeval *in) 1422 { 1423 1424 if ((out->tv_usec -= in->tv_usec) < 0) { 1425 --out->tv_sec; 1426 out->tv_usec += 1000000; 1427 } 1428 out->tv_sec -= in->tv_sec; 1429 } 1430 1431 /* 1432 * status -- 1433 * Print out statistics when SIGINFO is received. 1434 */ 1435 1436 static void 1437 status(int sig __unused) 1438 { 1439 1440 siginfo_p = 1; 1441 } 1442 1443 static void 1444 check_status(void) 1445 { 1446 1447 if (siginfo_p) { 1448 siginfo_p = 0; 1449 (void)fprintf(stderr, "\r%ld/%ld packets received (%.1f%%)", 1450 nreceived, ntransmitted, 1451 ntransmitted ? nreceived * 100.0 / ntransmitted : 0.0); 1452 if (nreceived && timing) 1453 (void)fprintf(stderr, " %.3f min / %.3f avg / %.3f max", 1454 tmin, tsum / (nreceived + nrepeats), tmax); 1455 (void)fprintf(stderr, "\n"); 1456 } 1457 } 1458 1459 /* 1460 * finish -- 1461 * Print out statistics, and give up. 1462 */ 1463 static void 1464 finish(void) 1465 { 1466 1467 (void)signal(SIGINT, SIG_IGN); 1468 (void)signal(SIGALRM, SIG_IGN); 1469 (void)putchar('\n'); 1470 (void)fflush(stdout); 1471 (void)printf("--- %s ping statistics ---\n", hostname); 1472 (void)printf("%ld packets transmitted, ", ntransmitted); 1473 (void)printf("%ld packets received, ", nreceived); 1474 if (nrepeats) 1475 (void)printf("+%ld duplicates, ", nrepeats); 1476 if (ntransmitted) { 1477 if (nreceived > ntransmitted) 1478 (void)printf("-- somebody's printing up packets!"); 1479 else 1480 (void)printf("%.1f%% packet loss", 1481 ((ntransmitted - nreceived) * 100.0) / 1482 ntransmitted); 1483 } 1484 if (nrcvtimeout) 1485 (void)printf(", %ld packets out of wait time", nrcvtimeout); 1486 (void)putchar('\n'); 1487 if (nreceived && timing) { 1488 double n = nreceived + nrepeats; 1489 double avg = tsum / n; 1490 double vari = tsumsq / n - avg * avg; 1491 (void)printf( 1492 "round-trip min/avg/max/stddev = %.3f/%.3f/%.3f/%.3f ms\n", 1493 tmin, avg, tmax, sqrt(vari)); 1494 } 1495 1496 if (nreceived) 1497 exit(0); 1498 else 1499 exit(2); 1500 } 1501 1502 #ifdef notdef 1503 static char *ttab[] = { 1504 "Echo Reply", /* ip + seq + udata */ 1505 "Dest Unreachable", /* net, host, proto, port, frag, sr + IP */ 1506 "Source Quench", /* IP */ 1507 "Redirect", /* redirect type, gateway, + IP */ 1508 "Echo", 1509 "Time Exceeded", /* transit, frag reassem + IP */ 1510 "Parameter Problem", /* pointer + IP */ 1511 "Timestamp", /* id + seq + three timestamps */ 1512 "Timestamp Reply", /* " */ 1513 "Info Request", /* id + sq */ 1514 "Info Reply" /* " */ 1515 }; 1516 #endif 1517 1518 /* 1519 * pr_icmph -- 1520 * Print a descriptive string about an ICMP header. 1521 */ 1522 static void 1523 pr_icmph(struct icmp *icp) 1524 { 1525 1526 switch(icp->icmp_type) { 1527 case ICMP_ECHOREPLY: 1528 (void)printf("Echo Reply\n"); 1529 /* XXX ID + Seq + Data */ 1530 break; 1531 case ICMP_UNREACH: 1532 switch(icp->icmp_code) { 1533 case ICMP_UNREACH_NET: 1534 (void)printf("Destination Net Unreachable\n"); 1535 break; 1536 case ICMP_UNREACH_HOST: 1537 (void)printf("Destination Host Unreachable\n"); 1538 break; 1539 case ICMP_UNREACH_PROTOCOL: 1540 (void)printf("Destination Protocol Unreachable\n"); 1541 break; 1542 case ICMP_UNREACH_PORT: 1543 (void)printf("Destination Port Unreachable\n"); 1544 break; 1545 case ICMP_UNREACH_NEEDFRAG: 1546 (void)printf("frag needed and DF set (MTU %d)\n", 1547 ntohs(icp->icmp_nextmtu)); 1548 break; 1549 case ICMP_UNREACH_SRCFAIL: 1550 (void)printf("Source Route Failed\n"); 1551 break; 1552 case ICMP_UNREACH_FILTER_PROHIB: 1553 (void)printf("Communication prohibited by filter\n"); 1554 break; 1555 default: 1556 (void)printf("Dest Unreachable, Bad Code: %d\n", 1557 icp->icmp_code); 1558 break; 1559 } 1560 /* Print returned IP header information */ 1561 #ifndef icmp_data 1562 pr_retip(&icp->icmp_ip); 1563 #else 1564 pr_retip((struct ip *)icp->icmp_data); 1565 #endif 1566 break; 1567 case ICMP_SOURCEQUENCH: 1568 (void)printf("Source Quench\n"); 1569 #ifndef icmp_data 1570 pr_retip(&icp->icmp_ip); 1571 #else 1572 pr_retip((struct ip *)icp->icmp_data); 1573 #endif 1574 break; 1575 case ICMP_REDIRECT: 1576 switch(icp->icmp_code) { 1577 case ICMP_REDIRECT_NET: 1578 (void)printf("Redirect Network"); 1579 break; 1580 case ICMP_REDIRECT_HOST: 1581 (void)printf("Redirect Host"); 1582 break; 1583 case ICMP_REDIRECT_TOSNET: 1584 (void)printf("Redirect Type of Service and Network"); 1585 break; 1586 case ICMP_REDIRECT_TOSHOST: 1587 (void)printf("Redirect Type of Service and Host"); 1588 break; 1589 default: 1590 (void)printf("Redirect, Bad Code: %d", icp->icmp_code); 1591 break; 1592 } 1593 (void)printf("(New addr: %s)\n", inet_ntoa(icp->icmp_gwaddr)); 1594 #ifndef icmp_data 1595 pr_retip(&icp->icmp_ip); 1596 #else 1597 pr_retip((struct ip *)icp->icmp_data); 1598 #endif 1599 break; 1600 case ICMP_ECHO: 1601 (void)printf("Echo Request\n"); 1602 /* XXX ID + Seq + Data */ 1603 break; 1604 case ICMP_TIMXCEED: 1605 switch(icp->icmp_code) { 1606 case ICMP_TIMXCEED_INTRANS: 1607 (void)printf("Time to live exceeded\n"); 1608 break; 1609 case ICMP_TIMXCEED_REASS: 1610 (void)printf("Frag reassembly time exceeded\n"); 1611 break; 1612 default: 1613 (void)printf("Time exceeded, Bad Code: %d\n", 1614 icp->icmp_code); 1615 break; 1616 } 1617 #ifndef icmp_data 1618 pr_retip(&icp->icmp_ip); 1619 #else 1620 pr_retip((struct ip *)icp->icmp_data); 1621 #endif 1622 break; 1623 case ICMP_PARAMPROB: 1624 (void)printf("Parameter problem: pointer = 0x%02x\n", 1625 icp->icmp_hun.ih_pptr); 1626 #ifndef icmp_data 1627 pr_retip(&icp->icmp_ip); 1628 #else 1629 pr_retip((struct ip *)icp->icmp_data); 1630 #endif 1631 break; 1632 case ICMP_TSTAMP: 1633 (void)printf("Timestamp\n"); 1634 /* XXX ID + Seq + 3 timestamps */ 1635 break; 1636 case ICMP_TSTAMPREPLY: 1637 (void)printf("Timestamp Reply\n"); 1638 /* XXX ID + Seq + 3 timestamps */ 1639 break; 1640 case ICMP_IREQ: 1641 (void)printf("Information Request\n"); 1642 /* XXX ID + Seq */ 1643 break; 1644 case ICMP_IREQREPLY: 1645 (void)printf("Information Reply\n"); 1646 /* XXX ID + Seq */ 1647 break; 1648 case ICMP_MASKREQ: 1649 (void)printf("Address Mask Request\n"); 1650 break; 1651 case ICMP_MASKREPLY: 1652 (void)printf("Address Mask Reply\n"); 1653 break; 1654 case ICMP_ROUTERADVERT: 1655 (void)printf("Router Advertisement\n"); 1656 break; 1657 case ICMP_ROUTERSOLICIT: 1658 (void)printf("Router Solicitation\n"); 1659 break; 1660 default: 1661 (void)printf("Bad ICMP type: %d\n", icp->icmp_type); 1662 } 1663 } 1664 1665 /* 1666 * pr_iph -- 1667 * Print an IP header with options. 1668 */ 1669 static void 1670 pr_iph(struct ip *ip) 1671 { 1672 u_char *cp; 1673 int hlen; 1674 1675 hlen = ip->ip_hl << 2; 1676 cp = (u_char *)ip + 20; /* point to options */ 1677 1678 (void)printf("Vr HL TOS Len ID Flg off TTL Pro cks Src Dst\n"); 1679 (void)printf(" %1x %1x %02x %04x %04x", 1680 ip->ip_v, ip->ip_hl, ip->ip_tos, ntohs(ip->ip_len), 1681 ntohs(ip->ip_id)); 1682 (void)printf(" %1lx %04lx", 1683 (u_long) (ntohl(ip->ip_off) & 0xe000) >> 13, 1684 (u_long) ntohl(ip->ip_off) & 0x1fff); 1685 (void)printf(" %02x %02x %04x", ip->ip_ttl, ip->ip_p, 1686 ntohs(ip->ip_sum)); 1687 (void)printf(" %s ", inet_ntoa(*(struct in_addr *)&ip->ip_src.s_addr)); 1688 (void)printf(" %s ", inet_ntoa(*(struct in_addr *)&ip->ip_dst.s_addr)); 1689 /* dump any option bytes */ 1690 while (hlen-- > 20) { 1691 (void)printf("%02x", *cp++); 1692 } 1693 (void)putchar('\n'); 1694 } 1695 1696 /* 1697 * pr_addr -- 1698 * Return an ascii host address as a dotted quad and optionally with 1699 * a hostname. 1700 */ 1701 static char * 1702 pr_addr(struct in_addr ina) 1703 { 1704 struct hostent *hp; 1705 static char buf[16 + 3 + MAXHOSTNAMELEN]; 1706 1707 if (options & F_NUMERIC) 1708 return inet_ntoa(ina); 1709 1710 #ifdef HAVE_LIBCAPSICUM 1711 if (capdns != NULL) 1712 hp = cap_gethostbyaddr(capdns, (char *)&ina, 4, AF_INET); 1713 else 1714 #endif 1715 hp = gethostbyaddr((char *)&ina, 4, AF_INET); 1716 1717 if (hp == NULL) 1718 return inet_ntoa(ina); 1719 1720 (void)snprintf(buf, sizeof(buf), "%s (%s)", hp->h_name, 1721 inet_ntoa(ina)); 1722 return(buf); 1723 } 1724 1725 /* 1726 * pr_retip -- 1727 * Dump some info on a returned (via ICMP) IP packet. 1728 */ 1729 static void 1730 pr_retip(struct ip *ip) 1731 { 1732 u_char *cp; 1733 int hlen; 1734 1735 pr_iph(ip); 1736 hlen = ip->ip_hl << 2; 1737 cp = (u_char *)ip + hlen; 1738 1739 if (ip->ip_p == 6) 1740 (void)printf("TCP: from port %u, to port %u (decimal)\n", 1741 (*cp * 256 + *(cp + 1)), (*(cp + 2) * 256 + *(cp + 3))); 1742 else if (ip->ip_p == 17) 1743 (void)printf("UDP: from port %u, to port %u (decimal)\n", 1744 (*cp * 256 + *(cp + 1)), (*(cp + 2) * 256 + *(cp + 3))); 1745 } 1746 1747 static char * 1748 pr_ntime(n_time timestamp) 1749 { 1750 static char buf[10]; 1751 int hour, min, sec; 1752 1753 sec = ntohl(timestamp) / 1000; 1754 hour = sec / 60 / 60; 1755 min = (sec % (60 * 60)) / 60; 1756 sec = (sec % (60 * 60)) % 60; 1757 1758 (void)snprintf(buf, sizeof(buf), "%02d:%02d:%02d", hour, min, sec); 1759 1760 return (buf); 1761 } 1762 1763 static void 1764 fill(char *bp, char *patp) 1765 { 1766 char *cp; 1767 int pat[16]; 1768 u_int ii, jj, kk; 1769 1770 for (cp = patp; *cp; cp++) { 1771 if (!isxdigit(*cp)) 1772 errx(EX_USAGE, 1773 "patterns must be specified as hex digits"); 1774 1775 } 1776 ii = sscanf(patp, 1777 "%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x", 1778 &pat[0], &pat[1], &pat[2], &pat[3], &pat[4], &pat[5], &pat[6], 1779 &pat[7], &pat[8], &pat[9], &pat[10], &pat[11], &pat[12], 1780 &pat[13], &pat[14], &pat[15]); 1781 1782 if (ii > 0) 1783 for (kk = 0; kk <= maxpayload - (TIMEVAL_LEN + ii); kk += ii) 1784 for (jj = 0; jj < ii; ++jj) 1785 bp[jj + kk] = pat[jj]; 1786 if (!(options & F_QUIET)) { 1787 (void)printf("PATTERN: 0x"); 1788 for (jj = 0; jj < ii; ++jj) 1789 (void)printf("%02x", bp[jj] & 0xFF); 1790 (void)printf("\n"); 1791 } 1792 } 1793 1794 #ifdef HAVE_LIBCAPSICUM 1795 static cap_channel_t * 1796 capdns_setup(void) 1797 { 1798 cap_channel_t *capcas, *capdnsloc; 1799 const char *types[2]; 1800 int families[1]; 1801 1802 capcas = cap_init(); 1803 if (capcas == NULL) { 1804 warn("unable to contact casperd"); 1805 return (NULL); 1806 } 1807 capdnsloc = cap_service_open(capcas, "system.dns"); 1808 /* Casper capability no longer needed. */ 1809 cap_close(capcas); 1810 if (capdnsloc == NULL) 1811 err(1, "unable to open system.dns service"); 1812 types[0] = "NAME"; 1813 types[1] = "ADDR"; 1814 if (cap_dns_type_limit(capdnsloc, types, 2) < 0) 1815 err(1, "unable to limit access to system.dns service"); 1816 families[0] = AF_INET; 1817 if (cap_dns_family_limit(capdnsloc, families, 1) < 0) 1818 err(1, "unable to limit access to system.dns service"); 1819 1820 return (capdnsloc); 1821 } 1822 #endif /* HAVE_LIBCAPSICUM */ 1823 1824 #if defined(IPSEC) && defined(IPSEC_POLICY_IPSEC) 1825 #define SECOPT " [-P policy]" 1826 #else 1827 #define SECOPT "" 1828 #endif 1829 static void 1830 usage(void) 1831 { 1832 1833 (void)fprintf(stderr, "%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n", 1834 "usage: ping [-AaDdfnoQqRrv] [-c count] [-G sweepmaxsize] [-g sweepminsize]", 1835 " [-h sweepincrsize] [-i wait] [-l preload] [-M mask | time] [-m ttl]", 1836 " " SECOPT " [-p pattern] [-S src_addr] [-s packetsize] [-t timeout]", 1837 " [-W waittime] [-z tos] host", 1838 " ping [-AaDdfLnoQqRrv] [-c count] [-I iface] [-i wait] [-l preload]", 1839 " [-M mask | time] [-m ttl]" SECOPT " [-p pattern] [-S src_addr]", 1840 " [-s packetsize] [-T ttl] [-t timeout] [-W waittime]", 1841 " [-z tos] mcast-group"); 1842 exit(EX_USAGE); 1843 } 1844