1 /*- 2 * SPDX-License-Identifier: BSD-3-Clause 3 * 4 * Copyright (c) 1989, 1993 5 * The Regents of the University of California. All rights reserved. 6 * 7 * This code is derived from software contributed to Berkeley by 8 * Mike Muuss. 9 * 10 * Redistribution and use in source and binary forms, with or without 11 * modification, are permitted provided that the following conditions 12 * are met: 13 * 1. Redistributions of source code must retain the above copyright 14 * notice, this list of conditions and the following disclaimer. 15 * 2. Redistributions in binary form must reproduce the above copyright 16 * notice, this list of conditions and the following disclaimer in the 17 * documentation and/or other materials provided with the distribution. 18 * 3. Neither the name of the University nor the names of its contributors 19 * may be used to endorse or promote products derived from this software 20 * without specific prior written permission. 21 * 22 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 25 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 */ 34 35 #if 0 36 #ifndef lint 37 static const char copyright[] = 38 "@(#) Copyright (c) 1989, 1993\n\ 39 The Regents of the University of California. All rights reserved.\n"; 40 #endif /* not lint */ 41 42 #ifndef lint 43 static char sccsid[] = "@(#)ping.c 8.1 (Berkeley) 6/5/93"; 44 #endif /* not lint */ 45 #endif 46 #include <sys/cdefs.h> 47 __FBSDID("$FreeBSD$"); 48 49 /* 50 * P I N G . C 51 * 52 * Using the Internet Control Message Protocol (ICMP) "ECHO" facility, 53 * measure round-trip-delays and packet loss across network paths. 54 * 55 * Author - 56 * Mike Muuss 57 * U. S. Army Ballistic Research Laboratory 58 * December, 1983 59 * 60 * Status - 61 * Public Domain. Distribution Unlimited. 62 * Bugs - 63 * More statistics could always be gathered. 64 * This program has to run SUID to ROOT to access the ICMP socket. 65 */ 66 67 #include <sys/param.h> /* NB: we rely on this for <sys/types.h> */ 68 #include <sys/capsicum.h> 69 #include <sys/socket.h> 70 #include <sys/sysctl.h> 71 #include <sys/time.h> 72 #include <sys/uio.h> 73 74 #include <netinet/in.h> 75 #include <netinet/in_systm.h> 76 #include <netinet/ip.h> 77 #include <netinet/ip_icmp.h> 78 #include <netinet/ip_var.h> 79 #include <arpa/inet.h> 80 81 #include <libcasper.h> 82 #include <casper/cap_dns.h> 83 84 #ifdef IPSEC 85 #include <netipsec/ipsec.h> 86 #endif /*IPSEC*/ 87 88 #include <capsicum_helpers.h> 89 #include <ctype.h> 90 #include <err.h> 91 #include <errno.h> 92 #include <math.h> 93 #include <netdb.h> 94 #include <stddef.h> 95 #include <signal.h> 96 #include <stdio.h> 97 #include <stdlib.h> 98 #include <string.h> 99 #include <sysexits.h> 100 #include <time.h> 101 #include <unistd.h> 102 103 #include "utils.h" 104 105 #define INADDR_LEN ((int)sizeof(in_addr_t)) 106 #define TIMEVAL_LEN ((int)sizeof(struct tv32)) 107 #define MASK_LEN (ICMP_MASKLEN - ICMP_MINLEN) 108 #define TS_LEN (ICMP_TSLEN - ICMP_MINLEN) 109 #define DEFDATALEN 56 /* default data length */ 110 #define FLOOD_BACKOFF 20000 /* usecs to back off if F_FLOOD mode */ 111 /* runs out of buffer space */ 112 #define MAXIPLEN (sizeof(struct ip) + MAX_IPOPTLEN) 113 #define MAXICMPLEN (ICMP_ADVLENMIN + MAX_IPOPTLEN) 114 #define MAXWAIT 10000 /* max ms to wait for response */ 115 #define MAXALARM (60 * 60) /* max seconds for alarm timeout */ 116 #define MAXTOS 255 117 118 #define A(bit) rcvd_tbl[(bit)>>3] /* identify byte in array */ 119 #define B(bit) (1 << ((bit) & 0x07)) /* identify bit in byte */ 120 #define SET(bit) (A(bit) |= B(bit)) 121 #define CLR(bit) (A(bit) &= (~B(bit))) 122 #define TST(bit) (A(bit) & B(bit)) 123 124 struct tv32 { 125 int32_t tv32_sec; 126 int32_t tv32_nsec; 127 }; 128 129 /* various options */ 130 static int options; 131 #define F_FLOOD 0x0001 132 #define F_INTERVAL 0x0002 133 #define F_NUMERIC 0x0004 134 #define F_PINGFILLED 0x0008 135 #define F_QUIET 0x0010 136 #define F_RROUTE 0x0020 137 #define F_SO_DEBUG 0x0040 138 #define F_SO_DONTROUTE 0x0080 139 #define F_VERBOSE 0x0100 140 #define F_QUIET2 0x0200 141 #define F_NOLOOP 0x0400 142 #define F_MTTL 0x0800 143 #define F_MIF 0x1000 144 #define F_AUDIBLE 0x2000 145 #ifdef IPSEC 146 #ifdef IPSEC_POLICY_IPSEC 147 #define F_POLICY 0x4000 148 #endif /*IPSEC_POLICY_IPSEC*/ 149 #endif /*IPSEC*/ 150 #define F_TTL 0x8000 151 #define F_MISSED 0x10000 152 #define F_ONCE 0x20000 153 #define F_HDRINCL 0x40000 154 #define F_MASK 0x80000 155 #define F_TIME 0x100000 156 #define F_SWEEP 0x200000 157 #define F_WAITTIME 0x400000 158 159 /* 160 * MAX_DUP_CHK is the number of bits in received table, i.e. the maximum 161 * number of received sequence numbers we can keep track of. Change 128 162 * to 8192 for complete accuracy... 163 */ 164 #define MAX_DUP_CHK (8 * 128) 165 static int mx_dup_ck = MAX_DUP_CHK; 166 static char rcvd_tbl[MAX_DUP_CHK / 8]; 167 168 static struct sockaddr_in whereto; /* who to ping */ 169 static int datalen = DEFDATALEN; 170 static int maxpayload; 171 static int ssend; /* send socket file descriptor */ 172 static int srecv; /* receive socket file descriptor */ 173 static u_char outpackhdr[IP_MAXPACKET], *outpack; 174 static char BBELL = '\a'; /* characters written for MISSED and AUDIBLE */ 175 static char BSPACE = '\b'; /* characters written for flood */ 176 static char DOT = '.'; 177 static char *hostname; 178 static char *shostname; 179 static int ident; /* process id to identify our packets */ 180 static int uid; /* cached uid for micro-optimization */ 181 static u_char icmp_type = ICMP_ECHO; 182 static u_char icmp_type_rsp = ICMP_ECHOREPLY; 183 static int phdr_len = 0; 184 static int send_len; 185 186 /* counters */ 187 static long nmissedmax; /* max value of ntransmitted - nreceived - 1 */ 188 static long npackets; /* max packets to transmit */ 189 static long nreceived; /* # of packets we got back */ 190 static long nrepeats; /* number of duplicates */ 191 static long ntransmitted; /* sequence # for outbound packets = #sent */ 192 static long snpackets; /* max packets to transmit in one sweep */ 193 static long sntransmitted; /* # of packets we sent in this sweep */ 194 static int sweepmax; /* max value of payload in sweep */ 195 static int sweepmin = 0; /* start value of payload in sweep */ 196 static int sweepincr = 1; /* payload increment in sweep */ 197 static int interval = 1000; /* interval between packets, ms */ 198 static int waittime = MAXWAIT; /* timeout for each packet */ 199 static long nrcvtimeout = 0; /* # of packets we got back after waittime */ 200 201 /* timing */ 202 static int timing; /* flag to do timing */ 203 static double tmin = 999999999.0; /* minimum round trip time */ 204 static double tmax = 0.0; /* maximum round trip time */ 205 static double tsum = 0.0; /* sum of all times, for doing average */ 206 static double tsumsq = 0.0; /* sum of all times squared, for std. dev. */ 207 208 /* nonzero if we've been told to finish up */ 209 static volatile sig_atomic_t finish_up; 210 static volatile sig_atomic_t siginfo_p; 211 212 static cap_channel_t *capdns; 213 214 static void fill(char *, char *); 215 static cap_channel_t *capdns_setup(void); 216 static void check_status(void); 217 static void finish(void) __dead2; 218 static void pinger(void); 219 static char *pr_addr(struct in_addr); 220 static char *pr_ntime(n_time); 221 static void pr_icmph(struct icmp *, struct ip *, const u_char *const); 222 static void pr_iph(struct ip *); 223 static void pr_pack(char *, ssize_t, struct sockaddr_in *, struct timespec *); 224 static void pr_retip(struct ip *, const u_char *); 225 static void status(int); 226 static void stopit(int); 227 static void usage(void) __dead2; 228 229 int 230 main(int argc, char *const *argv) 231 { 232 struct sockaddr_in from, sock_in; 233 struct in_addr ifaddr; 234 struct timespec last, intvl; 235 struct iovec iov; 236 struct msghdr msg; 237 struct sigaction si_sa; 238 size_t sz; 239 u_char *datap, packet[IP_MAXPACKET] __aligned(4); 240 char *ep, *source, *target, *payload; 241 struct hostent *hp; 242 #ifdef IPSEC_POLICY_IPSEC 243 char *policy_in, *policy_out; 244 #endif 245 struct sockaddr_in *to; 246 double t; 247 u_long alarmtimeout; 248 long ltmp; 249 int almost_done, ch, df, hold, i, icmp_len, mib[4], preload; 250 int ssend_errno, srecv_errno, tos, ttl; 251 char ctrl[CMSG_SPACE(sizeof(struct timespec))]; 252 char hnamebuf[MAXHOSTNAMELEN], snamebuf[MAXHOSTNAMELEN]; 253 #ifdef IP_OPTIONS 254 char rspace[MAX_IPOPTLEN]; /* record route space */ 255 #endif 256 unsigned char loop, mttl; 257 258 payload = source = NULL; 259 #ifdef IPSEC_POLICY_IPSEC 260 policy_in = policy_out = NULL; 261 #endif 262 cap_rights_t rights; 263 264 options |= F_NUMERIC; 265 266 /* 267 * Do the stuff that we need root priv's for *first*, and 268 * then drop our setuid bit. Save error reporting for 269 * after arg parsing. 270 * 271 * Historicaly ping was using one socket 's' for sending and for 272 * receiving. After capsicum(4) related changes we use two 273 * sockets. It was done for special ping use case - when user 274 * issue ping on multicast or broadcast address replies come 275 * from different addresses, not from the address we 276 * connect(2)'ed to, and send socket do not receive those 277 * packets. 278 */ 279 ssend = socket(AF_INET, SOCK_RAW, IPPROTO_ICMP); 280 ssend_errno = errno; 281 srecv = socket(AF_INET, SOCK_RAW, IPPROTO_ICMP); 282 srecv_errno = errno; 283 284 if (setuid(getuid()) != 0) 285 err(EX_NOPERM, "setuid() failed"); 286 uid = getuid(); 287 288 if (ssend < 0) { 289 errno = ssend_errno; 290 err(EX_OSERR, "ssend socket"); 291 } 292 293 if (srecv < 0) { 294 errno = srecv_errno; 295 err(EX_OSERR, "srecv socket"); 296 } 297 298 alarmtimeout = df = preload = tos = 0; 299 300 outpack = outpackhdr + sizeof(struct ip); 301 while ((ch = getopt(argc, argv, 302 "Aac:DdfG:g:Hh:I:i:Ll:M:m:nop:QqRrS:s:T:t:vW:z:" 303 #ifdef IPSEC 304 #ifdef IPSEC_POLICY_IPSEC 305 "P:" 306 #endif /*IPSEC_POLICY_IPSEC*/ 307 #endif /*IPSEC*/ 308 )) != -1) 309 { 310 switch(ch) { 311 case 'A': 312 options |= F_MISSED; 313 break; 314 case 'a': 315 options |= F_AUDIBLE; 316 break; 317 case 'c': 318 ltmp = strtol(optarg, &ep, 0); 319 if (*ep || ep == optarg || ltmp <= 0) 320 errx(EX_USAGE, 321 "invalid count of packets to transmit: `%s'", 322 optarg); 323 npackets = ltmp; 324 break; 325 case 'D': 326 options |= F_HDRINCL; 327 df = 1; 328 break; 329 case 'd': 330 options |= F_SO_DEBUG; 331 break; 332 case 'f': 333 if (uid) { 334 errno = EPERM; 335 err(EX_NOPERM, "-f flag"); 336 } 337 options |= F_FLOOD; 338 setbuf(stdout, (char *)NULL); 339 break; 340 case 'G': /* Maximum packet size for ping sweep */ 341 ltmp = strtol(optarg, &ep, 0); 342 if (*ep || ep == optarg || ltmp <= 0) 343 errx(EX_USAGE, "invalid packet size: `%s'", 344 optarg); 345 if (uid != 0 && ltmp > DEFDATALEN) { 346 errno = EPERM; 347 err(EX_NOPERM, 348 "packet size too large: %ld > %u", 349 ltmp, DEFDATALEN); 350 } 351 options |= F_SWEEP; 352 sweepmax = ltmp; 353 break; 354 case 'g': /* Minimum packet size for ping sweep */ 355 ltmp = strtol(optarg, &ep, 0); 356 if (*ep || ep == optarg || ltmp <= 0) 357 errx(EX_USAGE, "invalid packet size: `%s'", 358 optarg); 359 if (uid != 0 && ltmp > DEFDATALEN) { 360 errno = EPERM; 361 err(EX_NOPERM, 362 "packet size too large: %ld > %u", 363 ltmp, DEFDATALEN); 364 } 365 options |= F_SWEEP; 366 sweepmin = ltmp; 367 break; 368 case 'H': 369 options &= ~F_NUMERIC; 370 break; 371 case 'h': /* Packet size increment for ping sweep */ 372 ltmp = strtol(optarg, &ep, 0); 373 if (*ep || ep == optarg || ltmp < 1) 374 errx(EX_USAGE, "invalid increment size: `%s'", 375 optarg); 376 if (uid != 0 && ltmp > DEFDATALEN) { 377 errno = EPERM; 378 err(EX_NOPERM, 379 "packet size too large: %ld > %u", 380 ltmp, DEFDATALEN); 381 } 382 options |= F_SWEEP; 383 sweepincr = ltmp; 384 break; 385 case 'I': /* multicast interface */ 386 if (inet_aton(optarg, &ifaddr) == 0) 387 errx(EX_USAGE, 388 "invalid multicast interface: `%s'", 389 optarg); 390 options |= F_MIF; 391 break; 392 case 'i': /* wait between sending packets */ 393 t = strtod(optarg, &ep) * 1000.0; 394 if (*ep || ep == optarg || t > (double)INT_MAX) 395 errx(EX_USAGE, "invalid timing interval: `%s'", 396 optarg); 397 options |= F_INTERVAL; 398 interval = (int)t; 399 if (uid && interval < 1000) { 400 errno = EPERM; 401 err(EX_NOPERM, "-i interval too short"); 402 } 403 break; 404 case 'L': 405 options |= F_NOLOOP; 406 loop = 0; 407 break; 408 case 'l': 409 ltmp = strtol(optarg, &ep, 0); 410 if (*ep || ep == optarg || ltmp > INT_MAX || ltmp < 0) 411 errx(EX_USAGE, 412 "invalid preload value: `%s'", optarg); 413 if (uid) { 414 errno = EPERM; 415 err(EX_NOPERM, "-l flag"); 416 } 417 preload = ltmp; 418 break; 419 case 'M': 420 switch(optarg[0]) { 421 case 'M': 422 case 'm': 423 options |= F_MASK; 424 break; 425 case 'T': 426 case 't': 427 options |= F_TIME; 428 break; 429 default: 430 errx(EX_USAGE, "invalid message: `%c'", optarg[0]); 431 break; 432 } 433 break; 434 case 'm': /* TTL */ 435 ltmp = strtol(optarg, &ep, 0); 436 if (*ep || ep == optarg || ltmp > MAXTTL || ltmp < 0) 437 errx(EX_USAGE, "invalid TTL: `%s'", optarg); 438 ttl = ltmp; 439 options |= F_TTL; 440 break; 441 case 'n': 442 options |= F_NUMERIC; 443 break; 444 case 'o': 445 options |= F_ONCE; 446 break; 447 #ifdef IPSEC 448 #ifdef IPSEC_POLICY_IPSEC 449 case 'P': 450 options |= F_POLICY; 451 if (!strncmp("in", optarg, 2)) 452 policy_in = strdup(optarg); 453 else if (!strncmp("out", optarg, 3)) 454 policy_out = strdup(optarg); 455 else 456 errx(1, "invalid security policy"); 457 break; 458 #endif /*IPSEC_POLICY_IPSEC*/ 459 #endif /*IPSEC*/ 460 case 'p': /* fill buffer with user pattern */ 461 options |= F_PINGFILLED; 462 payload = optarg; 463 break; 464 case 'Q': 465 options |= F_QUIET2; 466 break; 467 case 'q': 468 options |= F_QUIET; 469 break; 470 case 'R': 471 options |= F_RROUTE; 472 break; 473 case 'r': 474 options |= F_SO_DONTROUTE; 475 break; 476 case 'S': 477 source = optarg; 478 break; 479 case 's': /* size of packet to send */ 480 ltmp = strtol(optarg, &ep, 0); 481 if (*ep || ep == optarg || ltmp < 0) 482 errx(EX_USAGE, "invalid packet size: `%s'", 483 optarg); 484 if (uid != 0 && ltmp > DEFDATALEN) { 485 errno = EPERM; 486 err(EX_NOPERM, 487 "packet size too large: %ld > %u", 488 ltmp, DEFDATALEN); 489 } 490 datalen = ltmp; 491 break; 492 case 'T': /* multicast TTL */ 493 ltmp = strtol(optarg, &ep, 0); 494 if (*ep || ep == optarg || ltmp > MAXTTL || ltmp < 0) 495 errx(EX_USAGE, "invalid multicast TTL: `%s'", 496 optarg); 497 mttl = ltmp; 498 options |= F_MTTL; 499 break; 500 case 't': 501 alarmtimeout = strtoul(optarg, &ep, 0); 502 if ((alarmtimeout < 1) || (alarmtimeout == ULONG_MAX)) 503 errx(EX_USAGE, "invalid timeout: `%s'", 504 optarg); 505 if (alarmtimeout > MAXALARM) 506 errx(EX_USAGE, "invalid timeout: `%s' > %d", 507 optarg, MAXALARM); 508 { 509 struct itimerval itv; 510 511 timerclear(&itv.it_interval); 512 timerclear(&itv.it_value); 513 itv.it_value.tv_sec = (time_t)alarmtimeout; 514 if (setitimer(ITIMER_REAL, &itv, NULL) != 0) 515 err(1, "setitimer"); 516 } 517 break; 518 case 'v': 519 options |= F_VERBOSE; 520 break; 521 case 'W': /* wait ms for answer */ 522 t = strtod(optarg, &ep); 523 if (*ep || ep == optarg || t > (double)INT_MAX) 524 errx(EX_USAGE, "invalid timing interval: `%s'", 525 optarg); 526 options |= F_WAITTIME; 527 waittime = (int)t; 528 break; 529 case 'z': 530 options |= F_HDRINCL; 531 ltmp = strtol(optarg, &ep, 0); 532 if (*ep || ep == optarg || ltmp > MAXTOS || ltmp < 0) 533 errx(EX_USAGE, "invalid TOS: `%s'", optarg); 534 tos = ltmp; 535 break; 536 default: 537 usage(); 538 } 539 } 540 541 if (argc - optind != 1) 542 usage(); 543 target = argv[optind]; 544 545 switch (options & (F_MASK|F_TIME)) { 546 case 0: break; 547 case F_MASK: 548 icmp_type = ICMP_MASKREQ; 549 icmp_type_rsp = ICMP_MASKREPLY; 550 phdr_len = MASK_LEN; 551 if (!(options & F_QUIET)) 552 (void)printf("ICMP_MASKREQ\n"); 553 break; 554 case F_TIME: 555 icmp_type = ICMP_TSTAMP; 556 icmp_type_rsp = ICMP_TSTAMPREPLY; 557 phdr_len = TS_LEN; 558 if (!(options & F_QUIET)) 559 (void)printf("ICMP_TSTAMP\n"); 560 break; 561 default: 562 errx(EX_USAGE, "ICMP_TSTAMP and ICMP_MASKREQ are exclusive."); 563 break; 564 } 565 icmp_len = sizeof(struct ip) + ICMP_MINLEN + phdr_len; 566 if (options & F_RROUTE) 567 icmp_len += MAX_IPOPTLEN; 568 maxpayload = IP_MAXPACKET - icmp_len; 569 if (datalen > maxpayload) 570 errx(EX_USAGE, "packet size too large: %d > %d", datalen, 571 maxpayload); 572 send_len = icmp_len + datalen; 573 datap = &outpack[ICMP_MINLEN + phdr_len + TIMEVAL_LEN]; 574 if (options & F_PINGFILLED) { 575 fill((char *)datap, payload); 576 } 577 capdns = capdns_setup(); 578 if (source) { 579 bzero((char *)&sock_in, sizeof(sock_in)); 580 sock_in.sin_family = AF_INET; 581 if (inet_aton(source, &sock_in.sin_addr) != 0) { 582 shostname = source; 583 } else { 584 hp = cap_gethostbyname2(capdns, source, AF_INET); 585 if (!hp) 586 errx(EX_NOHOST, "cannot resolve %s: %s", 587 source, hstrerror(h_errno)); 588 589 sock_in.sin_len = sizeof sock_in; 590 if ((unsigned)hp->h_length > sizeof(sock_in.sin_addr) || 591 hp->h_length < 0) 592 errx(1, "gethostbyname2: illegal address"); 593 memcpy(&sock_in.sin_addr, hp->h_addr_list[0], 594 sizeof(sock_in.sin_addr)); 595 (void)strncpy(snamebuf, hp->h_name, 596 sizeof(snamebuf) - 1); 597 snamebuf[sizeof(snamebuf) - 1] = '\0'; 598 shostname = snamebuf; 599 } 600 if (bind(ssend, (struct sockaddr *)&sock_in, sizeof sock_in) == 601 -1) 602 err(1, "bind"); 603 } 604 605 bzero(&whereto, sizeof(whereto)); 606 to = &whereto; 607 to->sin_family = AF_INET; 608 to->sin_len = sizeof *to; 609 if (inet_aton(target, &to->sin_addr) != 0) { 610 hostname = target; 611 } else { 612 hp = cap_gethostbyname2(capdns, target, AF_INET); 613 if (!hp) 614 errx(EX_NOHOST, "cannot resolve %s: %s", 615 target, hstrerror(h_errno)); 616 617 if ((unsigned)hp->h_length > sizeof(to->sin_addr)) 618 errx(1, "gethostbyname2 returned an illegal address"); 619 memcpy(&to->sin_addr, hp->h_addr_list[0], sizeof to->sin_addr); 620 (void)strncpy(hnamebuf, hp->h_name, sizeof(hnamebuf) - 1); 621 hnamebuf[sizeof(hnamebuf) - 1] = '\0'; 622 hostname = hnamebuf; 623 } 624 625 /* From now on we will use only reverse DNS lookups. */ 626 #ifdef WITH_CASPER 627 if (capdns != NULL) { 628 const char *types[1]; 629 630 types[0] = "ADDR2NAME"; 631 if (cap_dns_type_limit(capdns, types, 1) < 0) 632 err(1, "unable to limit access to system.dns service"); 633 } 634 #endif 635 if (connect(ssend, (struct sockaddr *)&whereto, sizeof(whereto)) != 0) 636 err(1, "connect"); 637 638 if (options & F_FLOOD && options & F_INTERVAL) 639 errx(EX_USAGE, "-f and -i: incompatible options"); 640 641 if (options & F_FLOOD && IN_MULTICAST(ntohl(to->sin_addr.s_addr))) 642 errx(EX_USAGE, 643 "-f flag cannot be used with multicast destination"); 644 if (options & (F_MIF | F_NOLOOP | F_MTTL) 645 && !IN_MULTICAST(ntohl(to->sin_addr.s_addr))) 646 errx(EX_USAGE, 647 "-I, -L, -T flags cannot be used with unicast destination"); 648 649 if (datalen >= TIMEVAL_LEN) /* can we time transfer */ 650 timing = 1; 651 652 if (!(options & F_PINGFILLED)) 653 for (i = TIMEVAL_LEN; i < datalen; ++i) 654 *datap++ = i; 655 656 ident = getpid() & 0xFFFF; 657 658 hold = 1; 659 if (options & F_SO_DEBUG) { 660 (void)setsockopt(ssend, SOL_SOCKET, SO_DEBUG, (char *)&hold, 661 sizeof(hold)); 662 (void)setsockopt(srecv, SOL_SOCKET, SO_DEBUG, (char *)&hold, 663 sizeof(hold)); 664 } 665 if (options & F_SO_DONTROUTE) 666 (void)setsockopt(ssend, SOL_SOCKET, SO_DONTROUTE, (char *)&hold, 667 sizeof(hold)); 668 #ifdef IPSEC 669 #ifdef IPSEC_POLICY_IPSEC 670 if (options & F_POLICY) { 671 char *buf; 672 if (policy_in != NULL) { 673 buf = ipsec_set_policy(policy_in, strlen(policy_in)); 674 if (buf == NULL) 675 errx(EX_CONFIG, "%s", ipsec_strerror()); 676 if (setsockopt(srecv, IPPROTO_IP, IP_IPSEC_POLICY, 677 buf, ipsec_get_policylen(buf)) < 0) 678 err(EX_CONFIG, 679 "ipsec policy cannot be configured"); 680 free(buf); 681 } 682 683 if (policy_out != NULL) { 684 buf = ipsec_set_policy(policy_out, strlen(policy_out)); 685 if (buf == NULL) 686 errx(EX_CONFIG, "%s", ipsec_strerror()); 687 if (setsockopt(ssend, IPPROTO_IP, IP_IPSEC_POLICY, 688 buf, ipsec_get_policylen(buf)) < 0) 689 err(EX_CONFIG, 690 "ipsec policy cannot be configured"); 691 free(buf); 692 } 693 } 694 #endif /*IPSEC_POLICY_IPSEC*/ 695 #endif /*IPSEC*/ 696 697 if (options & F_HDRINCL) { 698 struct ip ip; 699 700 memcpy(&ip, outpackhdr, sizeof(ip)); 701 if (!(options & (F_TTL | F_MTTL))) { 702 mib[0] = CTL_NET; 703 mib[1] = PF_INET; 704 mib[2] = IPPROTO_IP; 705 mib[3] = IPCTL_DEFTTL; 706 sz = sizeof(ttl); 707 if (sysctl(mib, 4, &ttl, &sz, NULL, 0) == -1) 708 err(1, "sysctl(net.inet.ip.ttl)"); 709 } 710 setsockopt(ssend, IPPROTO_IP, IP_HDRINCL, &hold, sizeof(hold)); 711 ip.ip_v = IPVERSION; 712 ip.ip_hl = sizeof(struct ip) >> 2; 713 ip.ip_tos = tos; 714 ip.ip_id = 0; 715 ip.ip_off = htons(df ? IP_DF : 0); 716 ip.ip_ttl = ttl; 717 ip.ip_p = IPPROTO_ICMP; 718 ip.ip_src.s_addr = source ? sock_in.sin_addr.s_addr : INADDR_ANY; 719 ip.ip_dst = to->sin_addr; 720 memcpy(outpackhdr, &ip, sizeof(ip)); 721 } 722 723 /* 724 * Here we enter capability mode. Further down access to global 725 * namespaces (e.g filesystem) is restricted (see capsicum(4)). 726 * We must connect(2) our socket before this point. 727 */ 728 caph_cache_catpages(); 729 if (caph_enter_casper() < 0) 730 err(1, "caph_enter_casper"); 731 732 cap_rights_init(&rights, CAP_RECV, CAP_EVENT, CAP_SETSOCKOPT); 733 if (caph_rights_limit(srecv, &rights) < 0) 734 err(1, "cap_rights_limit srecv"); 735 cap_rights_init(&rights, CAP_SEND, CAP_SETSOCKOPT); 736 if (caph_rights_limit(ssend, &rights) < 0) 737 err(1, "cap_rights_limit ssend"); 738 739 /* record route option */ 740 if (options & F_RROUTE) { 741 #ifdef IP_OPTIONS 742 bzero(rspace, sizeof(rspace)); 743 rspace[IPOPT_OPTVAL] = IPOPT_RR; 744 rspace[IPOPT_OLEN] = sizeof(rspace) - 1; 745 rspace[IPOPT_OFFSET] = IPOPT_MINOFF; 746 rspace[sizeof(rspace) - 1] = IPOPT_EOL; 747 if (setsockopt(ssend, IPPROTO_IP, IP_OPTIONS, rspace, 748 sizeof(rspace)) < 0) 749 err(EX_OSERR, "setsockopt IP_OPTIONS"); 750 #else 751 errx(EX_UNAVAILABLE, 752 "record route not available in this implementation"); 753 #endif /* IP_OPTIONS */ 754 } 755 756 if (options & F_TTL) { 757 if (setsockopt(ssend, IPPROTO_IP, IP_TTL, &ttl, 758 sizeof(ttl)) < 0) { 759 err(EX_OSERR, "setsockopt IP_TTL"); 760 } 761 } 762 if (options & F_NOLOOP) { 763 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_LOOP, &loop, 764 sizeof(loop)) < 0) { 765 err(EX_OSERR, "setsockopt IP_MULTICAST_LOOP"); 766 } 767 } 768 if (options & F_MTTL) { 769 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_TTL, &mttl, 770 sizeof(mttl)) < 0) { 771 err(EX_OSERR, "setsockopt IP_MULTICAST_TTL"); 772 } 773 } 774 if (options & F_MIF) { 775 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_IF, &ifaddr, 776 sizeof(ifaddr)) < 0) { 777 err(EX_OSERR, "setsockopt IP_MULTICAST_IF"); 778 } 779 } 780 #ifdef SO_TIMESTAMP 781 { 782 int on = 1; 783 int ts_clock = SO_TS_MONOTONIC; 784 if (setsockopt(srecv, SOL_SOCKET, SO_TIMESTAMP, &on, 785 sizeof(on)) < 0) 786 err(EX_OSERR, "setsockopt SO_TIMESTAMP"); 787 if (setsockopt(srecv, SOL_SOCKET, SO_TS_CLOCK, &ts_clock, 788 sizeof(ts_clock)) < 0) 789 err(EX_OSERR, "setsockopt SO_TS_CLOCK"); 790 } 791 #endif 792 if (sweepmax) { 793 if (sweepmin > sweepmax) 794 errx(EX_USAGE, "Maximum packet size must be no less than the minimum packet size"); 795 796 if (datalen != DEFDATALEN) 797 errx(EX_USAGE, "Packet size and ping sweep are mutually exclusive"); 798 799 if (npackets > 0) { 800 snpackets = npackets; 801 npackets = 0; 802 } else 803 snpackets = 1; 804 datalen = sweepmin; 805 send_len = icmp_len + sweepmin; 806 } 807 if (options & F_SWEEP && !sweepmax) 808 errx(EX_USAGE, "Maximum sweep size must be specified"); 809 810 /* 811 * When pinging the broadcast address, you can get a lot of answers. 812 * Doing something so evil is useful if you are trying to stress the 813 * ethernet, or just want to fill the arp cache to get some stuff for 814 * /etc/ethers. But beware: RFC 1122 allows hosts to ignore broadcast 815 * or multicast pings if they wish. 816 */ 817 818 /* 819 * XXX receive buffer needs undetermined space for mbuf overhead 820 * as well. 821 */ 822 hold = IP_MAXPACKET + 128; 823 (void)setsockopt(srecv, SOL_SOCKET, SO_RCVBUF, (char *)&hold, 824 sizeof(hold)); 825 /* CAP_SETSOCKOPT removed */ 826 cap_rights_init(&rights, CAP_RECV, CAP_EVENT); 827 if (caph_rights_limit(srecv, &rights) < 0) 828 err(1, "cap_rights_limit srecv setsockopt"); 829 if (uid == 0) 830 (void)setsockopt(ssend, SOL_SOCKET, SO_SNDBUF, (char *)&hold, 831 sizeof(hold)); 832 /* CAP_SETSOCKOPT removed */ 833 cap_rights_init(&rights, CAP_SEND); 834 if (caph_rights_limit(ssend, &rights) < 0) 835 err(1, "cap_rights_limit ssend setsockopt"); 836 837 if (to->sin_family == AF_INET) { 838 (void)printf("PING %s (%s)", hostname, 839 inet_ntoa(to->sin_addr)); 840 if (source) 841 (void)printf(" from %s", shostname); 842 if (sweepmax) 843 (void)printf(": (%d ... %d) data bytes\n", 844 sweepmin, sweepmax); 845 else 846 (void)printf(": %d data bytes\n", datalen); 847 848 } else { 849 if (sweepmax) 850 (void)printf("PING %s: (%d ... %d) data bytes\n", 851 hostname, sweepmin, sweepmax); 852 else 853 (void)printf("PING %s: %d data bytes\n", hostname, datalen); 854 } 855 856 /* 857 * Use sigaction() instead of signal() to get unambiguous semantics, 858 * in particular with SA_RESTART not set. 859 */ 860 861 sigemptyset(&si_sa.sa_mask); 862 si_sa.sa_flags = 0; 863 864 si_sa.sa_handler = stopit; 865 if (sigaction(SIGINT, &si_sa, 0) == -1) { 866 err(EX_OSERR, "sigaction SIGINT"); 867 } 868 869 si_sa.sa_handler = status; 870 if (sigaction(SIGINFO, &si_sa, 0) == -1) { 871 err(EX_OSERR, "sigaction"); 872 } 873 874 if (alarmtimeout > 0) { 875 si_sa.sa_handler = stopit; 876 if (sigaction(SIGALRM, &si_sa, 0) == -1) 877 err(EX_OSERR, "sigaction SIGALRM"); 878 } 879 880 bzero(&msg, sizeof(msg)); 881 msg.msg_name = (caddr_t)&from; 882 msg.msg_iov = &iov; 883 msg.msg_iovlen = 1; 884 #ifdef SO_TIMESTAMP 885 msg.msg_control = (caddr_t)ctrl; 886 msg.msg_controllen = sizeof(ctrl); 887 #endif 888 iov.iov_base = packet; 889 iov.iov_len = IP_MAXPACKET; 890 891 if (preload == 0) 892 pinger(); /* send the first ping */ 893 else { 894 if (npackets != 0 && preload > npackets) 895 preload = npackets; 896 while (preload--) /* fire off them quickies */ 897 pinger(); 898 } 899 (void)clock_gettime(CLOCK_MONOTONIC, &last); 900 901 if (options & F_FLOOD) { 902 intvl.tv_sec = 0; 903 intvl.tv_nsec = 10000000; 904 } else { 905 intvl.tv_sec = interval / 1000; 906 intvl.tv_nsec = interval % 1000 * 1000000; 907 } 908 909 almost_done = 0; 910 while (!finish_up) { 911 struct timespec now, timeout; 912 fd_set rfds; 913 int n; 914 ssize_t cc; 915 916 check_status(); 917 if ((unsigned)srecv >= FD_SETSIZE) 918 errx(EX_OSERR, "descriptor too large"); 919 FD_ZERO(&rfds); 920 FD_SET(srecv, &rfds); 921 (void)clock_gettime(CLOCK_MONOTONIC, &now); 922 timespecadd(&last, &intvl, &timeout); 923 timespecsub(&timeout, &now, &timeout); 924 if (timeout.tv_sec < 0) 925 timespecclear(&timeout); 926 n = pselect(srecv + 1, &rfds, NULL, NULL, &timeout, NULL); 927 if (n < 0) 928 continue; /* Must be EINTR. */ 929 if (n == 1) { 930 struct timespec *tv = NULL; 931 #ifdef SO_TIMESTAMP 932 struct cmsghdr *cmsg = CMSG_FIRSTHDR(&msg); 933 #endif 934 msg.msg_namelen = sizeof(from); 935 if ((cc = recvmsg(srecv, &msg, 0)) < 0) { 936 if (errno == EINTR) 937 continue; 938 warn("recvmsg"); 939 continue; 940 } 941 #ifdef SO_TIMESTAMP 942 if (cmsg != NULL && 943 cmsg->cmsg_level == SOL_SOCKET && 944 cmsg->cmsg_type == SCM_TIMESTAMP && 945 cmsg->cmsg_len == CMSG_LEN(sizeof *tv)) { 946 /* Copy to avoid alignment problems: */ 947 memcpy(&now, CMSG_DATA(cmsg), sizeof(now)); 948 tv = &now; 949 } 950 #endif 951 if (tv == NULL) { 952 (void)clock_gettime(CLOCK_MONOTONIC, &now); 953 tv = &now; 954 } 955 pr_pack((char *)packet, cc, &from, tv); 956 if ((options & F_ONCE && nreceived) || 957 (npackets && nreceived >= npackets)) 958 break; 959 } 960 if (n == 0 || options & F_FLOOD) { 961 if (sweepmax && sntransmitted == snpackets) { 962 for (i = 0; i < sweepincr ; ++i) 963 *datap++ = i; 964 datalen += sweepincr; 965 if (datalen > sweepmax) 966 break; 967 send_len = icmp_len + datalen; 968 sntransmitted = 0; 969 } 970 if (!npackets || ntransmitted < npackets) 971 pinger(); 972 else { 973 if (almost_done) 974 break; 975 almost_done = 1; 976 intvl.tv_nsec = 0; 977 if (nreceived) { 978 intvl.tv_sec = 2 * tmax / 1000; 979 if (!intvl.tv_sec) 980 intvl.tv_sec = 1; 981 } else { 982 intvl.tv_sec = waittime / 1000; 983 intvl.tv_nsec = waittime % 1000 * 1000000; 984 } 985 } 986 (void)clock_gettime(CLOCK_MONOTONIC, &last); 987 if (ntransmitted - nreceived - 1 > nmissedmax) { 988 nmissedmax = ntransmitted - nreceived - 1; 989 if (options & F_MISSED) 990 (void)write(STDOUT_FILENO, &BBELL, 1); 991 } 992 } 993 } 994 finish(); 995 /* NOTREACHED */ 996 exit(0); /* Make the compiler happy */ 997 } 998 999 /* 1000 * stopit -- 1001 * Set the global bit that causes the main loop to quit. 1002 * Do NOT call finish() from here, since finish() does far too much 1003 * to be called from a signal handler. 1004 */ 1005 void 1006 stopit(int sig __unused) 1007 { 1008 1009 /* 1010 * When doing reverse DNS lookups, the finish_up flag might not 1011 * be noticed for a while. Just exit if we get a second SIGINT. 1012 */ 1013 if (!(options & F_NUMERIC) && finish_up) 1014 _exit(nreceived ? 0 : 2); 1015 finish_up = 1; 1016 } 1017 1018 /* 1019 * pinger -- 1020 * Compose and transmit an ICMP ECHO REQUEST packet. The IP packet 1021 * will be added on by the kernel. The ID field is our UNIX process ID, 1022 * and the sequence number is an ascending integer. The first TIMEVAL_LEN 1023 * bytes of the data portion are used to hold a UNIX "timespec" struct in 1024 * host byte-order, to compute the round-trip time. 1025 */ 1026 static void 1027 pinger(void) 1028 { 1029 struct timespec now; 1030 struct tv32 tv32; 1031 struct icmp icp; 1032 int cc, i; 1033 u_char *packet; 1034 1035 packet = outpack; 1036 memcpy(&icp, outpack, ICMP_MINLEN + phdr_len); 1037 icp.icmp_type = icmp_type; 1038 icp.icmp_code = 0; 1039 icp.icmp_cksum = 0; 1040 icp.icmp_seq = htons(ntransmitted); 1041 icp.icmp_id = ident; /* ID */ 1042 1043 CLR(ntransmitted % mx_dup_ck); 1044 1045 if ((options & F_TIME) || timing) { 1046 (void)clock_gettime(CLOCK_MONOTONIC, &now); 1047 /* 1048 * Truncate seconds down to 32 bits in order 1049 * to fit the timestamp within 8 bytes of the 1050 * packet. We're only concerned with 1051 * durations, not absolute times. 1052 */ 1053 tv32.tv32_sec = (uint32_t)htonl(now.tv_sec); 1054 tv32.tv32_nsec = (uint32_t)htonl(now.tv_nsec); 1055 if (options & F_TIME) 1056 icp.icmp_otime = htonl((now.tv_sec % (24*60*60)) 1057 * 1000 + now.tv_nsec / 1000000); 1058 if (timing) 1059 bcopy((void *)&tv32, 1060 (void *)&outpack[ICMP_MINLEN + phdr_len], 1061 sizeof(tv32)); 1062 } 1063 1064 memcpy(outpack, &icp, ICMP_MINLEN + phdr_len); 1065 1066 cc = ICMP_MINLEN + phdr_len + datalen; 1067 1068 /* compute ICMP checksum here */ 1069 icp.icmp_cksum = in_cksum(outpack, cc); 1070 /* Update icmp_cksum in the raw packet data buffer. */ 1071 memcpy(outpack + offsetof(struct icmp, icmp_cksum), &icp.icmp_cksum, 1072 sizeof(icp.icmp_cksum)); 1073 1074 if (options & F_HDRINCL) { 1075 struct ip ip; 1076 1077 cc += sizeof(struct ip); 1078 ip.ip_len = htons(cc); 1079 /* Update ip_len in the raw packet data buffer. */ 1080 memcpy(outpackhdr + offsetof(struct ip, ip_len), &ip.ip_len, 1081 sizeof(ip.ip_len)); 1082 ip.ip_sum = in_cksum(outpackhdr, cc); 1083 /* Update ip_sum in the raw packet data buffer. */ 1084 memcpy(outpackhdr + offsetof(struct ip, ip_sum), &ip.ip_sum, 1085 sizeof(ip.ip_sum)); 1086 packet = outpackhdr; 1087 } 1088 i = send(ssend, (char *)packet, cc, 0); 1089 if (i < 0 || i != cc) { 1090 if (i < 0) { 1091 if (options & F_FLOOD && errno == ENOBUFS) { 1092 usleep(FLOOD_BACKOFF); 1093 return; 1094 } 1095 warn("sendto"); 1096 } else { 1097 warn("%s: partial write: %d of %d bytes", 1098 hostname, i, cc); 1099 } 1100 } 1101 ntransmitted++; 1102 sntransmitted++; 1103 if (!(options & F_QUIET) && options & F_FLOOD) 1104 (void)write(STDOUT_FILENO, &DOT, 1); 1105 } 1106 1107 /* 1108 * pr_pack -- 1109 * Print out the packet, if it came from us. This logic is necessary 1110 * because ALL readers of the ICMP socket get a copy of ALL ICMP packets 1111 * which arrive ('tis only fair). This permits multiple copies of this 1112 * program to be run without having intermingled output (or statistics!). 1113 */ 1114 static void 1115 pr_pack(char *buf, ssize_t cc, struct sockaddr_in *from, struct timespec *tv) 1116 { 1117 struct in_addr ina; 1118 u_char *cp, *dp, l; 1119 struct icmp icp; 1120 struct ip ip; 1121 const u_char *icmp_data_raw; 1122 double triptime; 1123 int dupflag, hlen, i, j, recv_len; 1124 uint16_t seq; 1125 static int old_rrlen; 1126 static char old_rr[MAX_IPOPTLEN]; 1127 struct ip oip; 1128 u_char oip_header_len; 1129 struct icmp oicmp; 1130 const u_char *oicmp_raw; 1131 1132 /* 1133 * Get size of IP header of the received packet. The 1134 * information is contained in the lower four bits of the 1135 * first byte. 1136 */ 1137 memcpy(&l, buf, sizeof(l)); 1138 hlen = (l & 0x0f) << 2; 1139 memcpy(&ip, buf, hlen); 1140 1141 /* Check the IP header */ 1142 recv_len = cc; 1143 if (cc < hlen + ICMP_MINLEN) { 1144 if (options & F_VERBOSE) 1145 warn("packet too short (%zd bytes) from %s", cc, 1146 inet_ntoa(from->sin_addr)); 1147 return; 1148 } 1149 1150 #ifndef icmp_data 1151 icmp_data_raw = buf + hlen + offsetof(struct icmp, icmp_ip); 1152 #else 1153 icmp_data_raw = buf + hlen + offsetof(struct icmp, icmp_data); 1154 #endif 1155 1156 /* Now the ICMP part */ 1157 cc -= hlen; 1158 memcpy(&icp, buf + hlen, MIN((ssize_t)sizeof(icp), cc)); 1159 if (icp.icmp_type == icmp_type_rsp) { 1160 if (icp.icmp_id != ident) 1161 return; /* 'Twas not our ECHO */ 1162 ++nreceived; 1163 triptime = 0.0; 1164 if (timing) { 1165 struct timespec tv1; 1166 struct tv32 tv32; 1167 const u_char *tp; 1168 1169 tp = icmp_data_raw + phdr_len; 1170 1171 if ((size_t)(cc - ICMP_MINLEN - phdr_len) >= 1172 sizeof(tv1)) { 1173 /* Copy to avoid alignment problems: */ 1174 memcpy(&tv32, tp, sizeof(tv32)); 1175 tv1.tv_sec = ntohl(tv32.tv32_sec); 1176 tv1.tv_nsec = ntohl(tv32.tv32_nsec); 1177 timespecsub(tv, &tv1, tv); 1178 triptime = ((double)tv->tv_sec) * 1000.0 + 1179 ((double)tv->tv_nsec) / 1000000.0; 1180 tsum += triptime; 1181 tsumsq += triptime * triptime; 1182 if (triptime < tmin) 1183 tmin = triptime; 1184 if (triptime > tmax) 1185 tmax = triptime; 1186 } else 1187 timing = 0; 1188 } 1189 1190 seq = ntohs(icp.icmp_seq); 1191 1192 if (TST(seq % mx_dup_ck)) { 1193 ++nrepeats; 1194 --nreceived; 1195 dupflag = 1; 1196 } else { 1197 SET(seq % mx_dup_ck); 1198 dupflag = 0; 1199 } 1200 1201 if (options & F_QUIET) 1202 return; 1203 1204 if (options & F_WAITTIME && triptime > waittime) { 1205 ++nrcvtimeout; 1206 return; 1207 } 1208 1209 if (options & F_FLOOD) 1210 (void)write(STDOUT_FILENO, &BSPACE, 1); 1211 else { 1212 (void)printf("%zd bytes from %s: icmp_seq=%u", cc, 1213 pr_addr(from->sin_addr), seq); 1214 (void)printf(" ttl=%d", ip.ip_ttl); 1215 if (timing) 1216 (void)printf(" time=%.3f ms", triptime); 1217 if (dupflag) 1218 (void)printf(" (DUP!)"); 1219 if (options & F_AUDIBLE) 1220 (void)write(STDOUT_FILENO, &BBELL, 1); 1221 if (options & F_MASK) { 1222 /* Just prentend this cast isn't ugly */ 1223 (void)printf(" mask=%s", 1224 inet_ntoa(*(struct in_addr *)&(icp.icmp_mask))); 1225 } 1226 if (options & F_TIME) { 1227 (void)printf(" tso=%s", pr_ntime(icp.icmp_otime)); 1228 (void)printf(" tsr=%s", pr_ntime(icp.icmp_rtime)); 1229 (void)printf(" tst=%s", pr_ntime(icp.icmp_ttime)); 1230 } 1231 if (recv_len != send_len) { 1232 (void)printf( 1233 "\nwrong total length %d instead of %d", 1234 recv_len, send_len); 1235 } 1236 /* check the data */ 1237 cp = (u_char*)(buf + hlen + offsetof(struct icmp, 1238 icmp_data) + phdr_len); 1239 dp = &outpack[ICMP_MINLEN + phdr_len]; 1240 cc -= ICMP_MINLEN + phdr_len; 1241 i = 0; 1242 if (timing) { /* don't check variable timestamp */ 1243 cp += TIMEVAL_LEN; 1244 dp += TIMEVAL_LEN; 1245 cc -= TIMEVAL_LEN; 1246 i += TIMEVAL_LEN; 1247 } 1248 for (; i < datalen && cc > 0; ++i, ++cp, ++dp, --cc) { 1249 if (*cp != *dp) { 1250 (void)printf("\nwrong data byte #%d should be 0x%x but was 0x%x", 1251 i, *dp, *cp); 1252 (void)printf("\ncp:"); 1253 cp = (u_char*)(buf + hlen + 1254 offsetof(struct icmp, icmp_data)); 1255 for (i = 0; i < datalen; ++i, ++cp) { 1256 if ((i % 16) == 8) 1257 (void)printf("\n\t"); 1258 (void)printf("%2x ", *cp); 1259 } 1260 (void)printf("\ndp:"); 1261 cp = &outpack[ICMP_MINLEN]; 1262 for (i = 0; i < datalen; ++i, ++cp) { 1263 if ((i % 16) == 8) 1264 (void)printf("\n\t"); 1265 (void)printf("%2x ", *cp); 1266 } 1267 break; 1268 } 1269 } 1270 } 1271 } else { 1272 /* 1273 * We've got something other than an ECHOREPLY. 1274 * See if it's a reply to something that we sent. 1275 * We can compare IP destination, protocol, 1276 * and ICMP type and ID. 1277 * 1278 * Only print all the error messages if we are running 1279 * as root to avoid leaking information not normally 1280 * available to those not running as root. 1281 */ 1282 memcpy(&oip_header_len, icmp_data_raw, sizeof(oip_header_len)); 1283 oip_header_len = (oip_header_len & 0x0f) << 2; 1284 memcpy(&oip, icmp_data_raw, oip_header_len); 1285 oicmp_raw = icmp_data_raw + oip_header_len; 1286 memcpy(&oicmp, oicmp_raw, offsetof(struct icmp, icmp_id) + 1287 sizeof(oicmp.icmp_id)); 1288 1289 if (((options & F_VERBOSE) && uid == 0) || 1290 (!(options & F_QUIET2) && 1291 (oip.ip_dst.s_addr == whereto.sin_addr.s_addr) && 1292 (oip.ip_p == IPPROTO_ICMP) && 1293 (oicmp.icmp_type == ICMP_ECHO) && 1294 (oicmp.icmp_id == ident))) { 1295 (void)printf("%zd bytes from %s: ", cc, 1296 pr_addr(from->sin_addr)); 1297 pr_icmph(&icp, &oip, oicmp_raw); 1298 } else 1299 return; 1300 } 1301 1302 /* Display any IP options */ 1303 cp = (u_char *)buf + sizeof(struct ip); 1304 1305 for (; hlen > (int)sizeof(struct ip); --hlen, ++cp) 1306 switch (*cp) { 1307 case IPOPT_EOL: 1308 hlen = 0; 1309 break; 1310 case IPOPT_LSRR: 1311 case IPOPT_SSRR: 1312 (void)printf(*cp == IPOPT_LSRR ? 1313 "\nLSRR: " : "\nSSRR: "); 1314 j = cp[IPOPT_OLEN] - IPOPT_MINOFF + 1; 1315 hlen -= 2; 1316 cp += 2; 1317 if (j >= INADDR_LEN && 1318 j <= hlen - (int)sizeof(struct ip)) { 1319 for (;;) { 1320 bcopy(++cp, &ina.s_addr, INADDR_LEN); 1321 if (ina.s_addr == 0) 1322 (void)printf("\t0.0.0.0"); 1323 else 1324 (void)printf("\t%s", 1325 pr_addr(ina)); 1326 hlen -= INADDR_LEN; 1327 cp += INADDR_LEN - 1; 1328 j -= INADDR_LEN; 1329 if (j < INADDR_LEN) 1330 break; 1331 (void)putchar('\n'); 1332 } 1333 } else 1334 (void)printf("\t(truncated route)\n"); 1335 break; 1336 case IPOPT_RR: 1337 j = cp[IPOPT_OLEN]; /* get length */ 1338 i = cp[IPOPT_OFFSET]; /* and pointer */ 1339 hlen -= 2; 1340 cp += 2; 1341 if (i > j) 1342 i = j; 1343 i = i - IPOPT_MINOFF + 1; 1344 if (i < 0 || i > (hlen - (int)sizeof(struct ip))) { 1345 old_rrlen = 0; 1346 continue; 1347 } 1348 if (i == old_rrlen 1349 && !bcmp((char *)cp, old_rr, i) 1350 && !(options & F_FLOOD)) { 1351 (void)printf("\t(same route)"); 1352 hlen -= i; 1353 cp += i; 1354 break; 1355 } 1356 old_rrlen = i; 1357 bcopy((char *)cp, old_rr, i); 1358 (void)printf("\nRR: "); 1359 if (i >= INADDR_LEN && 1360 i <= hlen - (int)sizeof(struct ip)) { 1361 for (;;) { 1362 bcopy(++cp, &ina.s_addr, INADDR_LEN); 1363 if (ina.s_addr == 0) 1364 (void)printf("\t0.0.0.0"); 1365 else 1366 (void)printf("\t%s", 1367 pr_addr(ina)); 1368 hlen -= INADDR_LEN; 1369 cp += INADDR_LEN - 1; 1370 i -= INADDR_LEN; 1371 if (i < INADDR_LEN) 1372 break; 1373 (void)putchar('\n'); 1374 } 1375 } else 1376 (void)printf("\t(truncated route)"); 1377 break; 1378 case IPOPT_NOP: 1379 (void)printf("\nNOP"); 1380 break; 1381 default: 1382 (void)printf("\nunknown option %x", *cp); 1383 break; 1384 } 1385 if (!(options & F_FLOOD)) { 1386 (void)putchar('\n'); 1387 (void)fflush(stdout); 1388 } 1389 } 1390 1391 /* 1392 * status -- 1393 * Print out statistics when SIGINFO is received. 1394 */ 1395 1396 static void 1397 status(int sig __unused) 1398 { 1399 1400 siginfo_p = 1; 1401 } 1402 1403 static void 1404 check_status(void) 1405 { 1406 1407 if (siginfo_p) { 1408 siginfo_p = 0; 1409 (void)fprintf(stderr, "\r%ld/%ld packets received (%.1f%%)", 1410 nreceived, ntransmitted, 1411 ntransmitted ? nreceived * 100.0 / ntransmitted : 0.0); 1412 if (nreceived && timing) 1413 (void)fprintf(stderr, " %.3f min / %.3f avg / %.3f max", 1414 tmin, tsum / (nreceived + nrepeats), tmax); 1415 (void)fprintf(stderr, "\n"); 1416 } 1417 } 1418 1419 /* 1420 * finish -- 1421 * Print out statistics, and give up. 1422 */ 1423 static void 1424 finish(void) 1425 { 1426 1427 (void)signal(SIGINT, SIG_IGN); 1428 (void)signal(SIGALRM, SIG_IGN); 1429 (void)putchar('\n'); 1430 (void)fflush(stdout); 1431 (void)printf("--- %s ping statistics ---\n", hostname); 1432 (void)printf("%ld packets transmitted, ", ntransmitted); 1433 (void)printf("%ld packets received, ", nreceived); 1434 if (nrepeats) 1435 (void)printf("+%ld duplicates, ", nrepeats); 1436 if (ntransmitted) { 1437 if (nreceived > ntransmitted) 1438 (void)printf("-- somebody's printing up packets!"); 1439 else 1440 (void)printf("%.1f%% packet loss", 1441 ((ntransmitted - nreceived) * 100.0) / 1442 ntransmitted); 1443 } 1444 if (nrcvtimeout) 1445 (void)printf(", %ld packets out of wait time", nrcvtimeout); 1446 (void)putchar('\n'); 1447 if (nreceived && timing) { 1448 double n = nreceived + nrepeats; 1449 double avg = tsum / n; 1450 double vari = tsumsq / n - avg * avg; 1451 (void)printf( 1452 "round-trip min/avg/max/stddev = %.3f/%.3f/%.3f/%.3f ms\n", 1453 tmin, avg, tmax, sqrt(vari)); 1454 } 1455 1456 if (nreceived) 1457 exit(0); 1458 else 1459 exit(2); 1460 } 1461 1462 #ifdef notdef 1463 static char *ttab[] = { 1464 "Echo Reply", /* ip + seq + udata */ 1465 "Dest Unreachable", /* net, host, proto, port, frag, sr + IP */ 1466 "Source Quench", /* IP */ 1467 "Redirect", /* redirect type, gateway, + IP */ 1468 "Echo", 1469 "Time Exceeded", /* transit, frag reassem + IP */ 1470 "Parameter Problem", /* pointer + IP */ 1471 "Timestamp", /* id + seq + three timestamps */ 1472 "Timestamp Reply", /* " */ 1473 "Info Request", /* id + sq */ 1474 "Info Reply" /* " */ 1475 }; 1476 #endif 1477 1478 /* 1479 * pr_icmph -- 1480 * Print a descriptive string about an ICMP header. 1481 */ 1482 static void 1483 pr_icmph(struct icmp *icp, struct ip *oip, const u_char *const oicmp_raw) 1484 { 1485 1486 switch(icp->icmp_type) { 1487 case ICMP_ECHOREPLY: 1488 (void)printf("Echo Reply\n"); 1489 /* XXX ID + Seq + Data */ 1490 break; 1491 case ICMP_UNREACH: 1492 switch(icp->icmp_code) { 1493 case ICMP_UNREACH_NET: 1494 (void)printf("Destination Net Unreachable\n"); 1495 break; 1496 case ICMP_UNREACH_HOST: 1497 (void)printf("Destination Host Unreachable\n"); 1498 break; 1499 case ICMP_UNREACH_PROTOCOL: 1500 (void)printf("Destination Protocol Unreachable\n"); 1501 break; 1502 case ICMP_UNREACH_PORT: 1503 (void)printf("Destination Port Unreachable\n"); 1504 break; 1505 case ICMP_UNREACH_NEEDFRAG: 1506 (void)printf("frag needed and DF set (MTU %d)\n", 1507 ntohs(icp->icmp_nextmtu)); 1508 break; 1509 case ICMP_UNREACH_SRCFAIL: 1510 (void)printf("Source Route Failed\n"); 1511 break; 1512 case ICMP_UNREACH_FILTER_PROHIB: 1513 (void)printf("Communication prohibited by filter\n"); 1514 break; 1515 default: 1516 (void)printf("Dest Unreachable, Bad Code: %d\n", 1517 icp->icmp_code); 1518 break; 1519 } 1520 /* Print returned IP header information */ 1521 pr_retip(oip, oicmp_raw); 1522 break; 1523 case ICMP_SOURCEQUENCH: 1524 (void)printf("Source Quench\n"); 1525 pr_retip(oip, oicmp_raw); 1526 break; 1527 case ICMP_REDIRECT: 1528 switch(icp->icmp_code) { 1529 case ICMP_REDIRECT_NET: 1530 (void)printf("Redirect Network"); 1531 break; 1532 case ICMP_REDIRECT_HOST: 1533 (void)printf("Redirect Host"); 1534 break; 1535 case ICMP_REDIRECT_TOSNET: 1536 (void)printf("Redirect Type of Service and Network"); 1537 break; 1538 case ICMP_REDIRECT_TOSHOST: 1539 (void)printf("Redirect Type of Service and Host"); 1540 break; 1541 default: 1542 (void)printf("Redirect, Bad Code: %d", icp->icmp_code); 1543 break; 1544 } 1545 (void)printf("(New addr: %s)\n", inet_ntoa(icp->icmp_gwaddr)); 1546 pr_retip(oip, oicmp_raw); 1547 break; 1548 case ICMP_ECHO: 1549 (void)printf("Echo Request\n"); 1550 /* XXX ID + Seq + Data */ 1551 break; 1552 case ICMP_TIMXCEED: 1553 switch(icp->icmp_code) { 1554 case ICMP_TIMXCEED_INTRANS: 1555 (void)printf("Time to live exceeded\n"); 1556 break; 1557 case ICMP_TIMXCEED_REASS: 1558 (void)printf("Frag reassembly time exceeded\n"); 1559 break; 1560 default: 1561 (void)printf("Time exceeded, Bad Code: %d\n", 1562 icp->icmp_code); 1563 break; 1564 } 1565 pr_retip(oip, oicmp_raw); 1566 break; 1567 case ICMP_PARAMPROB: 1568 (void)printf("Parameter problem: pointer = 0x%02x\n", 1569 icp->icmp_hun.ih_pptr); 1570 pr_retip(oip, oicmp_raw); 1571 break; 1572 case ICMP_TSTAMP: 1573 (void)printf("Timestamp\n"); 1574 /* XXX ID + Seq + 3 timestamps */ 1575 break; 1576 case ICMP_TSTAMPREPLY: 1577 (void)printf("Timestamp Reply\n"); 1578 /* XXX ID + Seq + 3 timestamps */ 1579 break; 1580 case ICMP_IREQ: 1581 (void)printf("Information Request\n"); 1582 /* XXX ID + Seq */ 1583 break; 1584 case ICMP_IREQREPLY: 1585 (void)printf("Information Reply\n"); 1586 /* XXX ID + Seq */ 1587 break; 1588 case ICMP_MASKREQ: 1589 (void)printf("Address Mask Request\n"); 1590 break; 1591 case ICMP_MASKREPLY: 1592 (void)printf("Address Mask Reply\n"); 1593 break; 1594 case ICMP_ROUTERADVERT: 1595 (void)printf("Router Advertisement\n"); 1596 break; 1597 case ICMP_ROUTERSOLICIT: 1598 (void)printf("Router Solicitation\n"); 1599 break; 1600 default: 1601 (void)printf("Bad ICMP type: %d\n", icp->icmp_type); 1602 } 1603 } 1604 1605 /* 1606 * pr_iph -- 1607 * Print an IP header with options. 1608 */ 1609 static void 1610 pr_iph(struct ip *ip) 1611 { 1612 struct in_addr ina; 1613 u_char *cp; 1614 int hlen; 1615 1616 hlen = ip->ip_hl << 2; 1617 cp = (u_char *)ip + 20; /* point to options */ 1618 1619 (void)printf("Vr HL TOS Len ID Flg off TTL Pro cks Src Dst\n"); 1620 (void)printf(" %1x %1x %02x %04x %04x", 1621 ip->ip_v, ip->ip_hl, ip->ip_tos, ntohs(ip->ip_len), 1622 ntohs(ip->ip_id)); 1623 (void)printf(" %1lx %04lx", 1624 (u_long) (ntohl(ip->ip_off) & 0xe000) >> 13, 1625 (u_long) ntohl(ip->ip_off) & 0x1fff); 1626 (void)printf(" %02x %02x %04x", ip->ip_ttl, ip->ip_p, 1627 ntohs(ip->ip_sum)); 1628 memcpy(&ina, &ip->ip_src.s_addr, sizeof ina); 1629 (void)printf(" %s ", inet_ntoa(ina)); 1630 memcpy(&ina, &ip->ip_dst.s_addr, sizeof ina); 1631 (void)printf(" %s ", inet_ntoa(ina)); 1632 /* dump any option bytes */ 1633 while (hlen-- > 20) { 1634 (void)printf("%02x", *cp++); 1635 } 1636 (void)putchar('\n'); 1637 } 1638 1639 /* 1640 * pr_addr -- 1641 * Return an ascii host address as a dotted quad and optionally with 1642 * a hostname. 1643 */ 1644 static char * 1645 pr_addr(struct in_addr ina) 1646 { 1647 struct hostent *hp; 1648 static char buf[16 + 3 + MAXHOSTNAMELEN]; 1649 1650 if (options & F_NUMERIC) 1651 return inet_ntoa(ina); 1652 1653 hp = cap_gethostbyaddr(capdns, (char *)&ina, 4, AF_INET); 1654 1655 if (hp == NULL) 1656 return inet_ntoa(ina); 1657 1658 (void)snprintf(buf, sizeof(buf), "%s (%s)", hp->h_name, 1659 inet_ntoa(ina)); 1660 return(buf); 1661 } 1662 1663 /* 1664 * pr_retip -- 1665 * Dump some info on a returned (via ICMP) IP packet. 1666 */ 1667 static void 1668 pr_retip(struct ip *ip, const u_char *cp) 1669 { 1670 pr_iph(ip); 1671 1672 if (ip->ip_p == 6) 1673 (void)printf("TCP: from port %u, to port %u (decimal)\n", 1674 (*cp * 256 + *(cp + 1)), (*(cp + 2) * 256 + *(cp + 3))); 1675 else if (ip->ip_p == 17) 1676 (void)printf("UDP: from port %u, to port %u (decimal)\n", 1677 (*cp * 256 + *(cp + 1)), (*(cp + 2) * 256 + *(cp + 3))); 1678 } 1679 1680 static char * 1681 pr_ntime(n_time timestamp) 1682 { 1683 static char buf[11]; 1684 int hour, min, sec; 1685 1686 sec = ntohl(timestamp) / 1000; 1687 hour = sec / 60 / 60; 1688 min = (sec % (60 * 60)) / 60; 1689 sec = (sec % (60 * 60)) % 60; 1690 1691 (void)snprintf(buf, sizeof(buf), "%02d:%02d:%02d", hour, min, sec); 1692 1693 return (buf); 1694 } 1695 1696 static void 1697 fill(char *bp, char *patp) 1698 { 1699 char *cp; 1700 int pat[16]; 1701 u_int ii, jj, kk; 1702 1703 for (cp = patp; *cp; cp++) { 1704 if (!isxdigit(*cp)) 1705 errx(EX_USAGE, 1706 "patterns must be specified as hex digits"); 1707 1708 } 1709 ii = sscanf(patp, 1710 "%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x", 1711 &pat[0], &pat[1], &pat[2], &pat[3], &pat[4], &pat[5], &pat[6], 1712 &pat[7], &pat[8], &pat[9], &pat[10], &pat[11], &pat[12], 1713 &pat[13], &pat[14], &pat[15]); 1714 1715 if (ii > 0) 1716 for (kk = 0; kk <= maxpayload - (TIMEVAL_LEN + ii); kk += ii) 1717 for (jj = 0; jj < ii; ++jj) 1718 bp[jj + kk] = pat[jj]; 1719 if (!(options & F_QUIET)) { 1720 (void)printf("PATTERN: 0x"); 1721 for (jj = 0; jj < ii; ++jj) 1722 (void)printf("%02x", bp[jj] & 0xFF); 1723 (void)printf("\n"); 1724 } 1725 } 1726 1727 static cap_channel_t * 1728 capdns_setup(void) 1729 { 1730 cap_channel_t *capcas, *capdnsloc; 1731 #ifdef WITH_CASPER 1732 const char *types[2]; 1733 int families[1]; 1734 #endif 1735 capcas = cap_init(); 1736 if (capcas == NULL) 1737 err(1, "unable to create casper process"); 1738 capdnsloc = cap_service_open(capcas, "system.dns"); 1739 /* Casper capability no longer needed. */ 1740 cap_close(capcas); 1741 if (capdnsloc == NULL) 1742 err(1, "unable to open system.dns service"); 1743 #ifdef WITH_CASPER 1744 types[0] = "NAME2ADDR"; 1745 types[1] = "ADDR2NAME"; 1746 if (cap_dns_type_limit(capdnsloc, types, 2) < 0) 1747 err(1, "unable to limit access to system.dns service"); 1748 families[0] = AF_INET; 1749 if (cap_dns_family_limit(capdnsloc, families, 1) < 0) 1750 err(1, "unable to limit access to system.dns service"); 1751 #endif 1752 return (capdnsloc); 1753 } 1754 1755 #if defined(IPSEC) && defined(IPSEC_POLICY_IPSEC) 1756 #define SECOPT " [-P policy]" 1757 #else 1758 #define SECOPT "" 1759 #endif 1760 static void 1761 usage(void) 1762 { 1763 1764 (void)fprintf(stderr, "%s\n%s\n%s\n%s\n%s\n%s\n%s\n%s\n", 1765 "usage: ping [-AaDdfHnoQqRrv] [-c count] [-G sweepmaxsize] [-g sweepminsize]", 1766 " [-h sweepincrsize] [-i wait] [-l preload] [-M mask | time] [-m ttl]", 1767 " " SECOPT " [-p pattern] [-S src_addr] [-s packetsize] [-t timeout]", 1768 " [-W waittime] [-z tos] host", 1769 " ping [-AaDdfHLnoQqRrv] [-c count] [-I iface] [-i wait] [-l preload]", 1770 " [-M mask | time] [-m ttl]" SECOPT " [-p pattern] [-S src_addr]", 1771 " [-s packetsize] [-T ttl] [-t timeout] [-W waittime]", 1772 " [-z tos] mcast-group"); 1773 exit(EX_USAGE); 1774 } 1775