1 /*- 2 * SPDX-License-Identifier: BSD-3-Clause 3 * 4 * Copyright (c) 1989, 1993 5 * The Regents of the University of California. All rights reserved. 6 * 7 * This code is derived from software contributed to Berkeley by 8 * Mike Muuss. 9 * 10 * Redistribution and use in source and binary forms, with or without 11 * modification, are permitted provided that the following conditions 12 * are met: 13 * 1. Redistributions of source code must retain the above copyright 14 * notice, this list of conditions and the following disclaimer. 15 * 2. Redistributions in binary form must reproduce the above copyright 16 * notice, this list of conditions and the following disclaimer in the 17 * documentation and/or other materials provided with the distribution. 18 * 3. Neither the name of the University nor the names of its contributors 19 * may be used to endorse or promote products derived from this software 20 * without specific prior written permission. 21 * 22 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 25 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 */ 34 35 #if 0 36 #ifndef lint 37 static const char copyright[] = 38 "@(#) Copyright (c) 1989, 1993\n\ 39 The Regents of the University of California. All rights reserved.\n"; 40 #endif /* not lint */ 41 42 #ifndef lint 43 static char sccsid[] = "@(#)ping.c 8.1 (Berkeley) 6/5/93"; 44 #endif /* not lint */ 45 #endif 46 #include <sys/cdefs.h> 47 __FBSDID("$FreeBSD$"); 48 49 /* 50 * P I N G . C 51 * 52 * Using the Internet Control Message Protocol (ICMP) "ECHO" facility, 53 * measure round-trip-delays and packet loss across network paths. 54 * 55 * Author - 56 * Mike Muuss 57 * U. S. Army Ballistic Research Laboratory 58 * December, 1983 59 * 60 * Status - 61 * Public Domain. Distribution Unlimited. 62 * Bugs - 63 * More statistics could always be gathered. 64 * This program has to run SUID to ROOT to access the ICMP socket. 65 */ 66 67 #include <sys/param.h> /* NB: we rely on this for <sys/types.h> */ 68 #include <sys/capsicum.h> 69 #include <sys/socket.h> 70 #include <sys/sysctl.h> 71 #include <sys/time.h> 72 #include <sys/uio.h> 73 74 #include <netinet/in.h> 75 #include <netinet/in_systm.h> 76 #include <netinet/ip.h> 77 #include <netinet/ip_icmp.h> 78 #include <netinet/ip_var.h> 79 #include <arpa/inet.h> 80 81 #include <libcasper.h> 82 #include <casper/cap_dns.h> 83 84 #ifdef IPSEC 85 #include <netipsec/ipsec.h> 86 #endif /*IPSEC*/ 87 88 #include <capsicum_helpers.h> 89 #include <ctype.h> 90 #include <err.h> 91 #include <errno.h> 92 #include <math.h> 93 #include <netdb.h> 94 #include <stddef.h> 95 #include <signal.h> 96 #include <stdio.h> 97 #include <stdlib.h> 98 #include <string.h> 99 #include <sysexits.h> 100 #include <time.h> 101 #include <unistd.h> 102 103 #include "main.h" 104 #include "ping.h" 105 #include "utils.h" 106 107 #define INADDR_LEN ((int)sizeof(in_addr_t)) 108 #define TIMEVAL_LEN ((int)sizeof(struct tv32)) 109 #define MASK_LEN (ICMP_MASKLEN - ICMP_MINLEN) 110 #define TS_LEN (ICMP_TSLEN - ICMP_MINLEN) 111 #define DEFDATALEN 56 /* default data length */ 112 #define FLOOD_BACKOFF 20000 /* usecs to back off if F_FLOOD mode */ 113 /* runs out of buffer space */ 114 #define MAXIPLEN (sizeof(struct ip) + MAX_IPOPTLEN) 115 #define MAXICMPLEN (ICMP_ADVLENMIN + MAX_IPOPTLEN) 116 #define MAXWAIT 10000 /* max ms to wait for response */ 117 #define MAXALARM (60 * 60) /* max seconds for alarm timeout */ 118 #define MAXTOS 255 119 120 #define A(bit) rcvd_tbl[(bit)>>3] /* identify byte in array */ 121 #define B(bit) (1 << ((bit) & 0x07)) /* identify bit in byte */ 122 #define SET(bit) (A(bit) |= B(bit)) 123 #define CLR(bit) (A(bit) &= (~B(bit))) 124 #define TST(bit) (A(bit) & B(bit)) 125 126 struct tv32 { 127 int32_t tv32_sec; 128 int32_t tv32_nsec; 129 }; 130 131 /* various options */ 132 static int options; 133 #define F_FLOOD 0x0001 134 #define F_INTERVAL 0x0002 135 #define F_NUMERIC 0x0004 136 #define F_PINGFILLED 0x0008 137 #define F_QUIET 0x0010 138 #define F_RROUTE 0x0020 139 #define F_SO_DEBUG 0x0040 140 #define F_SO_DONTROUTE 0x0080 141 #define F_VERBOSE 0x0100 142 #define F_QUIET2 0x0200 143 #define F_NOLOOP 0x0400 144 #define F_MTTL 0x0800 145 #define F_MIF 0x1000 146 #define F_AUDIBLE 0x2000 147 #ifdef IPSEC 148 #ifdef IPSEC_POLICY_IPSEC 149 #define F_POLICY 0x4000 150 #endif /*IPSEC_POLICY_IPSEC*/ 151 #endif /*IPSEC*/ 152 #define F_TTL 0x8000 153 #define F_MISSED 0x10000 154 #define F_ONCE 0x20000 155 #define F_HDRINCL 0x40000 156 #define F_MASK 0x80000 157 #define F_TIME 0x100000 158 #define F_SWEEP 0x200000 159 #define F_WAITTIME 0x400000 160 #define F_IP_VLAN_PCP 0x800000 161 162 /* 163 * MAX_DUP_CHK is the number of bits in received table, i.e. the maximum 164 * number of received sequence numbers we can keep track of. Change 128 165 * to 8192 for complete accuracy... 166 */ 167 #define MAX_DUP_CHK (8 * 128) 168 static int mx_dup_ck = MAX_DUP_CHK; 169 static char rcvd_tbl[MAX_DUP_CHK / 8]; 170 171 static struct sockaddr_in whereto; /* who to ping */ 172 static int datalen = DEFDATALEN; 173 static int maxpayload; 174 static int ssend; /* send socket file descriptor */ 175 static int srecv; /* receive socket file descriptor */ 176 static u_char outpackhdr[IP_MAXPACKET], *outpack; 177 static char BBELL = '\a'; /* characters written for MISSED and AUDIBLE */ 178 static char BSPACE = '\b'; /* characters written for flood */ 179 static char DOT = '.'; 180 static char *hostname; 181 static char *shostname; 182 static int ident; /* process id to identify our packets */ 183 static int uid; /* cached uid for micro-optimization */ 184 static u_char icmp_type = ICMP_ECHO; 185 static u_char icmp_type_rsp = ICMP_ECHOREPLY; 186 static int phdr_len = 0; 187 static int send_len; 188 189 /* counters */ 190 static long nmissedmax; /* max value of ntransmitted - nreceived - 1 */ 191 static long npackets; /* max packets to transmit */ 192 static long nreceived; /* # of packets we got back */ 193 static long nrepeats; /* number of duplicates */ 194 static long ntransmitted; /* sequence # for outbound packets = #sent */ 195 static long snpackets; /* max packets to transmit in one sweep */ 196 static long sntransmitted; /* # of packets we sent in this sweep */ 197 static int sweepmax; /* max value of payload in sweep */ 198 static int sweepmin = 0; /* start value of payload in sweep */ 199 static int sweepincr = 1; /* payload increment in sweep */ 200 static int interval = 1000; /* interval between packets, ms */ 201 static int waittime = MAXWAIT; /* timeout for each packet */ 202 static long nrcvtimeout = 0; /* # of packets we got back after waittime */ 203 204 /* timing */ 205 static int timing; /* flag to do timing */ 206 static double tmin = 999999999.0; /* minimum round trip time */ 207 static double tmax = 0.0; /* maximum round trip time */ 208 static double tsum = 0.0; /* sum of all times, for doing average */ 209 static double tsumsq = 0.0; /* sum of all times squared, for std. dev. */ 210 211 /* nonzero if we've been told to finish up */ 212 static volatile sig_atomic_t finish_up; 213 static volatile sig_atomic_t siginfo_p; 214 215 static cap_channel_t *capdns; 216 217 static void fill(char *, char *); 218 static cap_channel_t *capdns_setup(void); 219 static void check_status(void); 220 static void finish(void) __dead2; 221 static void pinger(void); 222 static char *pr_addr(struct in_addr); 223 static char *pr_ntime(n_time); 224 static void pr_icmph(struct icmp *, struct ip *, const u_char *const); 225 static void pr_iph(struct ip *); 226 static void pr_pack(char *, ssize_t, struct sockaddr_in *, struct timespec *); 227 static void pr_retip(struct ip *, const u_char *); 228 static void status(int); 229 static void stopit(int); 230 231 int 232 ping(int argc, char *const *argv) 233 { 234 struct sockaddr_in from, sock_in; 235 struct in_addr ifaddr; 236 struct timespec last, intvl; 237 struct iovec iov; 238 struct msghdr msg; 239 struct sigaction si_sa; 240 size_t sz; 241 u_char *datap, packet[IP_MAXPACKET] __aligned(4); 242 const char *errstr; 243 char *ep, *source, *target, *payload; 244 struct hostent *hp; 245 #ifdef IPSEC_POLICY_IPSEC 246 char *policy_in, *policy_out; 247 #endif 248 struct sockaddr_in *to; 249 double t; 250 u_long alarmtimeout; 251 long long ltmp; 252 int almost_done, ch, df, hold, i, icmp_len, mib[4], preload; 253 int ssend_errno, srecv_errno, tos, ttl, pcp; 254 char ctrl[CMSG_SPACE(sizeof(struct timespec))]; 255 char hnamebuf[MAXHOSTNAMELEN], snamebuf[MAXHOSTNAMELEN]; 256 #ifdef IP_OPTIONS 257 char rspace[MAX_IPOPTLEN]; /* record route space */ 258 #endif 259 unsigned char loop, mttl; 260 261 payload = source = NULL; 262 #ifdef IPSEC_POLICY_IPSEC 263 policy_in = policy_out = NULL; 264 #endif 265 cap_rights_t rights; 266 267 options |= F_NUMERIC; 268 269 /* 270 * Do the stuff that we need root priv's for *first*, and 271 * then drop our setuid bit. Save error reporting for 272 * after arg parsing. 273 * 274 * Historicaly ping was using one socket 's' for sending and for 275 * receiving. After capsicum(4) related changes we use two 276 * sockets. It was done for special ping use case - when user 277 * issue ping on multicast or broadcast address replies come 278 * from different addresses, not from the address we 279 * connect(2)'ed to, and send socket do not receive those 280 * packets. 281 */ 282 ssend = socket(AF_INET, SOCK_RAW, IPPROTO_ICMP); 283 ssend_errno = errno; 284 srecv = socket(AF_INET, SOCK_RAW, IPPROTO_ICMP); 285 srecv_errno = errno; 286 287 if (setuid(getuid()) != 0) 288 err(EX_NOPERM, "setuid() failed"); 289 uid = getuid(); 290 291 if (ssend < 0) { 292 errno = ssend_errno; 293 err(EX_OSERR, "ssend socket"); 294 } 295 296 if (srecv < 0) { 297 errno = srecv_errno; 298 err(EX_OSERR, "srecv socket"); 299 } 300 301 alarmtimeout = df = preload = tos = pcp = 0; 302 303 outpack = outpackhdr + sizeof(struct ip); 304 while ((ch = getopt(argc, argv, PING4OPTS)) != -1) { 305 switch(ch) { 306 case '4': 307 /* This option is processed in main(). */ 308 break; 309 case 'A': 310 options |= F_MISSED; 311 break; 312 case 'a': 313 options |= F_AUDIBLE; 314 break; 315 case 'C': 316 options |= F_IP_VLAN_PCP; 317 ltmp = strtonum(optarg, -1, 7, &errstr); 318 if (errstr != NULL) 319 errx(EX_USAGE, "invalid PCP: `%s'", optarg); 320 pcp = ltmp; 321 break; 322 case 'c': 323 ltmp = strtonum(optarg, 1, LONG_MAX, &errstr); 324 if (errstr != NULL) 325 errx(EX_USAGE, 326 "invalid count of packets to transmit: `%s'", 327 optarg); 328 npackets = (long)ltmp; 329 break; 330 case 'D': 331 options |= F_HDRINCL; 332 df = 1; 333 break; 334 case 'd': 335 options |= F_SO_DEBUG; 336 break; 337 case 'f': 338 if (uid) { 339 errno = EPERM; 340 err(EX_NOPERM, "-f flag"); 341 } 342 options |= F_FLOOD; 343 setbuf(stdout, (char *)NULL); 344 break; 345 case 'G': /* Maximum packet size for ping sweep */ 346 ltmp = strtonum(optarg, 1, INT_MAX, &errstr); 347 if (errstr != NULL) { 348 errx(EX_USAGE, "invalid packet size: `%s'", 349 optarg); 350 } 351 sweepmax = (int)ltmp; 352 if (uid != 0 && sweepmax > DEFDATALEN) { 353 errc(EX_NOPERM, EPERM, 354 "packet size too large: %d > %u", 355 sweepmax, DEFDATALEN); 356 } 357 options |= F_SWEEP; 358 break; 359 case 'g': /* Minimum packet size for ping sweep */ 360 ltmp = strtonum(optarg, 1, INT_MAX, &errstr); 361 if (errstr != NULL) { 362 errx(EX_USAGE, "invalid packet size: `%s'", 363 optarg); 364 } 365 sweepmin = (int)ltmp; 366 if (uid != 0 && sweepmin > DEFDATALEN) { 367 errc(EX_NOPERM, EPERM, 368 "packet size too large: %d > %u", 369 sweepmin, DEFDATALEN); 370 } 371 options |= F_SWEEP; 372 break; 373 case 'H': 374 options &= ~F_NUMERIC; 375 break; 376 case 'h': /* Packet size increment for ping sweep */ 377 ltmp = strtonum(optarg, 1, INT_MAX, &errstr); 378 if (errstr != NULL) { 379 errx(EX_USAGE, "invalid packet size: `%s'", 380 optarg); 381 } 382 sweepincr = (int)ltmp; 383 if (uid != 0 && sweepincr > DEFDATALEN) { 384 errc(EX_NOPERM, EPERM, 385 "packet size too large: %d > %u", 386 sweepincr, DEFDATALEN); 387 } 388 options |= F_SWEEP; 389 break; 390 case 'I': /* multicast interface */ 391 if (inet_aton(optarg, &ifaddr) == 0) 392 errx(EX_USAGE, 393 "invalid multicast interface: `%s'", 394 optarg); 395 options |= F_MIF; 396 break; 397 case 'i': /* wait between sending packets */ 398 t = strtod(optarg, &ep) * 1000.0; 399 if (*ep || ep == optarg || t > (double)INT_MAX) 400 errx(EX_USAGE, "invalid timing interval: `%s'", 401 optarg); 402 options |= F_INTERVAL; 403 interval = (int)t; 404 if (uid && interval < 1000) { 405 errno = EPERM; 406 err(EX_NOPERM, "-i interval too short"); 407 } 408 break; 409 case 'L': 410 options |= F_NOLOOP; 411 loop = 0; 412 break; 413 case 'l': 414 ltmp = strtonum(optarg, 0, INT_MAX, &errstr); 415 if (errstr != NULL) 416 errx(EX_USAGE, 417 "invalid preload value: `%s'", optarg); 418 if (uid) { 419 errno = EPERM; 420 err(EX_NOPERM, "-l flag"); 421 } 422 preload = (int)ltmp; 423 break; 424 case 'M': 425 switch(optarg[0]) { 426 case 'M': 427 case 'm': 428 options |= F_MASK; 429 break; 430 case 'T': 431 case 't': 432 options |= F_TIME; 433 break; 434 default: 435 errx(EX_USAGE, "invalid message: `%c'", optarg[0]); 436 break; 437 } 438 break; 439 case 'm': /* TTL */ 440 ltmp = strtonum(optarg, 0, MAXTTL, &errstr); 441 if (errstr != NULL) 442 errx(EX_USAGE, "invalid TTL: `%s'", optarg); 443 ttl = (int)ltmp; 444 options |= F_TTL; 445 break; 446 case 'n': 447 options |= F_NUMERIC; 448 break; 449 case 'o': 450 options |= F_ONCE; 451 break; 452 #ifdef IPSEC 453 #ifdef IPSEC_POLICY_IPSEC 454 case 'P': 455 options |= F_POLICY; 456 if (!strncmp("in", optarg, 2)) 457 policy_in = strdup(optarg); 458 else if (!strncmp("out", optarg, 3)) 459 policy_out = strdup(optarg); 460 else 461 errx(1, "invalid security policy"); 462 break; 463 #endif /*IPSEC_POLICY_IPSEC*/ 464 #endif /*IPSEC*/ 465 case 'p': /* fill buffer with user pattern */ 466 options |= F_PINGFILLED; 467 payload = optarg; 468 break; 469 case 'Q': 470 options |= F_QUIET2; 471 break; 472 case 'q': 473 options |= F_QUIET; 474 break; 475 case 'R': 476 options |= F_RROUTE; 477 break; 478 case 'r': 479 options |= F_SO_DONTROUTE; 480 break; 481 case 'S': 482 source = optarg; 483 break; 484 case 's': /* size of packet to send */ 485 ltmp = strtonum(optarg, 0, INT_MAX, &errstr); 486 if (errstr != NULL) 487 errx(EX_USAGE, "invalid packet size: `%s'", 488 optarg); 489 datalen = (int)ltmp; 490 if (uid != 0 && datalen > DEFDATALEN) { 491 errno = EPERM; 492 err(EX_NOPERM, 493 "packet size too large: %d > %u", 494 datalen, DEFDATALEN); 495 } 496 break; 497 case 'T': /* multicast TTL */ 498 ltmp = strtonum(optarg, 0, MAXTTL, &errstr); 499 if (errstr != NULL) 500 errx(EX_USAGE, "invalid multicast TTL: `%s'", 501 optarg); 502 mttl = (unsigned char)ltmp; 503 options |= F_MTTL; 504 break; 505 case 't': 506 alarmtimeout = strtoul(optarg, &ep, 0); 507 if ((alarmtimeout < 1) || (alarmtimeout == ULONG_MAX)) 508 errx(EX_USAGE, "invalid timeout: `%s'", 509 optarg); 510 if (alarmtimeout > MAXALARM) 511 errx(EX_USAGE, "invalid timeout: `%s' > %d", 512 optarg, MAXALARM); 513 { 514 struct itimerval itv; 515 516 timerclear(&itv.it_interval); 517 timerclear(&itv.it_value); 518 itv.it_value.tv_sec = (time_t)alarmtimeout; 519 if (setitimer(ITIMER_REAL, &itv, NULL) != 0) 520 err(1, "setitimer"); 521 } 522 break; 523 case 'v': 524 options |= F_VERBOSE; 525 break; 526 case 'W': /* wait ms for answer */ 527 t = strtod(optarg, &ep); 528 if (*ep || ep == optarg || t > (double)INT_MAX) 529 errx(EX_USAGE, "invalid timing interval: `%s'", 530 optarg); 531 options |= F_WAITTIME; 532 waittime = (int)t; 533 break; 534 case 'z': 535 options |= F_HDRINCL; 536 ltmp = strtol(optarg, &ep, 0); 537 if (*ep || ep == optarg || ltmp > MAXTOS || ltmp < 0) 538 errx(EX_USAGE, "invalid TOS: `%s'", optarg); 539 tos = ltmp; 540 break; 541 default: 542 usage(); 543 } 544 } 545 546 if (argc - optind != 1) 547 usage(); 548 target = argv[optind]; 549 550 switch (options & (F_MASK|F_TIME)) { 551 case 0: break; 552 case F_MASK: 553 icmp_type = ICMP_MASKREQ; 554 icmp_type_rsp = ICMP_MASKREPLY; 555 phdr_len = MASK_LEN; 556 if (!(options & F_QUIET)) 557 (void)printf("ICMP_MASKREQ\n"); 558 break; 559 case F_TIME: 560 icmp_type = ICMP_TSTAMP; 561 icmp_type_rsp = ICMP_TSTAMPREPLY; 562 phdr_len = TS_LEN; 563 if (!(options & F_QUIET)) 564 (void)printf("ICMP_TSTAMP\n"); 565 break; 566 default: 567 errx(EX_USAGE, "ICMP_TSTAMP and ICMP_MASKREQ are exclusive."); 568 break; 569 } 570 icmp_len = sizeof(struct ip) + ICMP_MINLEN + phdr_len; 571 if (options & F_RROUTE) 572 icmp_len += MAX_IPOPTLEN; 573 maxpayload = IP_MAXPACKET - icmp_len; 574 if (datalen > maxpayload) 575 errx(EX_USAGE, "packet size too large: %d > %d", datalen, 576 maxpayload); 577 send_len = icmp_len + datalen; 578 datap = &outpack[ICMP_MINLEN + phdr_len + TIMEVAL_LEN]; 579 if (options & F_PINGFILLED) { 580 fill((char *)datap, payload); 581 } 582 capdns = capdns_setup(); 583 if (source) { 584 bzero((char *)&sock_in, sizeof(sock_in)); 585 sock_in.sin_family = AF_INET; 586 if (inet_aton(source, &sock_in.sin_addr) != 0) { 587 shostname = source; 588 } else { 589 hp = cap_gethostbyname2(capdns, source, AF_INET); 590 if (!hp) 591 errx(EX_NOHOST, "cannot resolve %s: %s", 592 source, hstrerror(h_errno)); 593 594 sock_in.sin_len = sizeof sock_in; 595 if ((unsigned)hp->h_length > sizeof(sock_in.sin_addr) || 596 hp->h_length < 0) 597 errx(1, "gethostbyname2: illegal address"); 598 memcpy(&sock_in.sin_addr, hp->h_addr_list[0], 599 sizeof(sock_in.sin_addr)); 600 (void)strncpy(snamebuf, hp->h_name, 601 sizeof(snamebuf) - 1); 602 snamebuf[sizeof(snamebuf) - 1] = '\0'; 603 shostname = snamebuf; 604 } 605 if (bind(ssend, (struct sockaddr *)&sock_in, sizeof sock_in) == 606 -1) 607 err(1, "bind"); 608 } 609 610 bzero(&whereto, sizeof(whereto)); 611 to = &whereto; 612 to->sin_family = AF_INET; 613 to->sin_len = sizeof *to; 614 if (inet_aton(target, &to->sin_addr) != 0) { 615 hostname = target; 616 } else { 617 hp = cap_gethostbyname2(capdns, target, AF_INET); 618 if (!hp) 619 errx(EX_NOHOST, "cannot resolve %s: %s", 620 target, hstrerror(h_errno)); 621 622 if ((unsigned)hp->h_length > sizeof(to->sin_addr)) 623 errx(1, "gethostbyname2 returned an illegal address"); 624 memcpy(&to->sin_addr, hp->h_addr_list[0], sizeof to->sin_addr); 625 (void)strncpy(hnamebuf, hp->h_name, sizeof(hnamebuf) - 1); 626 hnamebuf[sizeof(hnamebuf) - 1] = '\0'; 627 hostname = hnamebuf; 628 } 629 630 /* From now on we will use only reverse DNS lookups. */ 631 #ifdef WITH_CASPER 632 if (capdns != NULL) { 633 const char *types[1]; 634 635 types[0] = "ADDR2NAME"; 636 if (cap_dns_type_limit(capdns, types, 1) < 0) 637 err(1, "unable to limit access to system.dns service"); 638 } 639 #endif 640 if (connect(ssend, (struct sockaddr *)&whereto, sizeof(whereto)) != 0) 641 err(1, "connect"); 642 643 if (options & F_FLOOD && options & F_INTERVAL) 644 errx(EX_USAGE, "-f and -i: incompatible options"); 645 646 if (options & F_FLOOD && IN_MULTICAST(ntohl(to->sin_addr.s_addr))) 647 errx(EX_USAGE, 648 "-f flag cannot be used with multicast destination"); 649 if (options & (F_MIF | F_NOLOOP | F_MTTL) 650 && !IN_MULTICAST(ntohl(to->sin_addr.s_addr))) 651 errx(EX_USAGE, 652 "-I, -L, -T flags cannot be used with unicast destination"); 653 654 if (datalen >= TIMEVAL_LEN) /* can we time transfer */ 655 timing = 1; 656 657 if ((options & (F_PINGFILLED | F_SWEEP)) == 0) 658 for (i = TIMEVAL_LEN; i < datalen; ++i) 659 *datap++ = i; 660 661 ident = getpid() & 0xFFFF; 662 663 hold = 1; 664 if (options & F_SO_DEBUG) { 665 (void)setsockopt(ssend, SOL_SOCKET, SO_DEBUG, (char *)&hold, 666 sizeof(hold)); 667 (void)setsockopt(srecv, SOL_SOCKET, SO_DEBUG, (char *)&hold, 668 sizeof(hold)); 669 } 670 if (options & F_SO_DONTROUTE) 671 (void)setsockopt(ssend, SOL_SOCKET, SO_DONTROUTE, (char *)&hold, 672 sizeof(hold)); 673 if (options & F_IP_VLAN_PCP) { 674 (void)setsockopt(ssend, IPPROTO_IP, IP_VLAN_PCP, (char *)&pcp, 675 sizeof(pcp)); 676 } 677 #ifdef IPSEC 678 #ifdef IPSEC_POLICY_IPSEC 679 if (options & F_POLICY) { 680 char *buf; 681 if (policy_in != NULL) { 682 buf = ipsec_set_policy(policy_in, strlen(policy_in)); 683 if (buf == NULL) 684 errx(EX_CONFIG, "%s", ipsec_strerror()); 685 if (setsockopt(srecv, IPPROTO_IP, IP_IPSEC_POLICY, 686 buf, ipsec_get_policylen(buf)) < 0) 687 err(EX_CONFIG, 688 "ipsec policy cannot be configured"); 689 free(buf); 690 } 691 692 if (policy_out != NULL) { 693 buf = ipsec_set_policy(policy_out, strlen(policy_out)); 694 if (buf == NULL) 695 errx(EX_CONFIG, "%s", ipsec_strerror()); 696 if (setsockopt(ssend, IPPROTO_IP, IP_IPSEC_POLICY, 697 buf, ipsec_get_policylen(buf)) < 0) 698 err(EX_CONFIG, 699 "ipsec policy cannot be configured"); 700 free(buf); 701 } 702 } 703 #endif /*IPSEC_POLICY_IPSEC*/ 704 #endif /*IPSEC*/ 705 706 if (options & F_HDRINCL) { 707 struct ip ip; 708 709 memcpy(&ip, outpackhdr, sizeof(ip)); 710 if (!(options & (F_TTL | F_MTTL))) { 711 mib[0] = CTL_NET; 712 mib[1] = PF_INET; 713 mib[2] = IPPROTO_IP; 714 mib[3] = IPCTL_DEFTTL; 715 sz = sizeof(ttl); 716 if (sysctl(mib, 4, &ttl, &sz, NULL, 0) == -1) 717 err(1, "sysctl(net.inet.ip.ttl)"); 718 } 719 setsockopt(ssend, IPPROTO_IP, IP_HDRINCL, &hold, sizeof(hold)); 720 ip.ip_v = IPVERSION; 721 ip.ip_hl = sizeof(struct ip) >> 2; 722 ip.ip_tos = tos; 723 ip.ip_id = 0; 724 ip.ip_off = htons(df ? IP_DF : 0); 725 ip.ip_ttl = ttl; 726 ip.ip_p = IPPROTO_ICMP; 727 ip.ip_src.s_addr = source ? sock_in.sin_addr.s_addr : INADDR_ANY; 728 ip.ip_dst = to->sin_addr; 729 memcpy(outpackhdr, &ip, sizeof(ip)); 730 } 731 732 /* 733 * Here we enter capability mode. Further down access to global 734 * namespaces (e.g filesystem) is restricted (see capsicum(4)). 735 * We must connect(2) our socket before this point. 736 */ 737 caph_cache_catpages(); 738 if (caph_enter_casper() < 0) 739 err(1, "caph_enter_casper"); 740 741 cap_rights_init(&rights, CAP_RECV, CAP_EVENT, CAP_SETSOCKOPT); 742 if (caph_rights_limit(srecv, &rights) < 0) 743 err(1, "cap_rights_limit srecv"); 744 cap_rights_init(&rights, CAP_SEND, CAP_SETSOCKOPT); 745 if (caph_rights_limit(ssend, &rights) < 0) 746 err(1, "cap_rights_limit ssend"); 747 748 /* record route option */ 749 if (options & F_RROUTE) { 750 #ifdef IP_OPTIONS 751 bzero(rspace, sizeof(rspace)); 752 rspace[IPOPT_OPTVAL] = IPOPT_RR; 753 rspace[IPOPT_OLEN] = sizeof(rspace) - 1; 754 rspace[IPOPT_OFFSET] = IPOPT_MINOFF; 755 rspace[sizeof(rspace) - 1] = IPOPT_EOL; 756 if (setsockopt(ssend, IPPROTO_IP, IP_OPTIONS, rspace, 757 sizeof(rspace)) < 0) 758 err(EX_OSERR, "setsockopt IP_OPTIONS"); 759 #else 760 errx(EX_UNAVAILABLE, 761 "record route not available in this implementation"); 762 #endif /* IP_OPTIONS */ 763 } 764 765 if (options & F_TTL) { 766 if (setsockopt(ssend, IPPROTO_IP, IP_TTL, &ttl, 767 sizeof(ttl)) < 0) { 768 err(EX_OSERR, "setsockopt IP_TTL"); 769 } 770 } 771 if (options & F_NOLOOP) { 772 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_LOOP, &loop, 773 sizeof(loop)) < 0) { 774 err(EX_OSERR, "setsockopt IP_MULTICAST_LOOP"); 775 } 776 } 777 if (options & F_MTTL) { 778 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_TTL, &mttl, 779 sizeof(mttl)) < 0) { 780 err(EX_OSERR, "setsockopt IP_MULTICAST_TTL"); 781 } 782 } 783 if (options & F_MIF) { 784 if (setsockopt(ssend, IPPROTO_IP, IP_MULTICAST_IF, &ifaddr, 785 sizeof(ifaddr)) < 0) { 786 err(EX_OSERR, "setsockopt IP_MULTICAST_IF"); 787 } 788 } 789 #ifdef SO_TIMESTAMP 790 { 791 int on = 1; 792 int ts_clock = SO_TS_MONOTONIC; 793 if (setsockopt(srecv, SOL_SOCKET, SO_TIMESTAMP, &on, 794 sizeof(on)) < 0) 795 err(EX_OSERR, "setsockopt SO_TIMESTAMP"); 796 if (setsockopt(srecv, SOL_SOCKET, SO_TS_CLOCK, &ts_clock, 797 sizeof(ts_clock)) < 0) 798 err(EX_OSERR, "setsockopt SO_TS_CLOCK"); 799 } 800 #endif 801 if (sweepmax) { 802 if (sweepmin > sweepmax) 803 errx(EX_USAGE, 804 "Maximum packet size must be no less than the minimum packet size"); 805 806 if (sweepmax > maxpayload - TIMEVAL_LEN) 807 errx(EX_USAGE, "Invalid sweep maximum"); 808 809 if (datalen != DEFDATALEN) 810 errx(EX_USAGE, 811 "Packet size and ping sweep are mutually exclusive"); 812 813 if (npackets > 0) { 814 snpackets = npackets; 815 npackets = 0; 816 } else 817 snpackets = 1; 818 datalen = sweepmin; 819 send_len = icmp_len + sweepmin; 820 } 821 if (options & F_SWEEP && !sweepmax) 822 errx(EX_USAGE, "Maximum sweep size must be specified"); 823 824 /* 825 * When pinging the broadcast address, you can get a lot of answers. 826 * Doing something so evil is useful if you are trying to stress the 827 * ethernet, or just want to fill the arp cache to get some stuff for 828 * /etc/ethers. But beware: RFC 1122 allows hosts to ignore broadcast 829 * or multicast pings if they wish. 830 */ 831 832 /* 833 * XXX receive buffer needs undetermined space for mbuf overhead 834 * as well. 835 */ 836 hold = IP_MAXPACKET + 128; 837 (void)setsockopt(srecv, SOL_SOCKET, SO_RCVBUF, (char *)&hold, 838 sizeof(hold)); 839 /* CAP_SETSOCKOPT removed */ 840 cap_rights_init(&rights, CAP_RECV, CAP_EVENT); 841 if (caph_rights_limit(srecv, &rights) < 0) 842 err(1, "cap_rights_limit srecv setsockopt"); 843 if (uid == 0) 844 (void)setsockopt(ssend, SOL_SOCKET, SO_SNDBUF, (char *)&hold, 845 sizeof(hold)); 846 /* CAP_SETSOCKOPT removed */ 847 cap_rights_init(&rights, CAP_SEND); 848 if (caph_rights_limit(ssend, &rights) < 0) 849 err(1, "cap_rights_limit ssend setsockopt"); 850 851 if (to->sin_family == AF_INET) { 852 (void)printf("PING %s (%s)", hostname, 853 inet_ntoa(to->sin_addr)); 854 if (source) 855 (void)printf(" from %s", shostname); 856 if (sweepmax) 857 (void)printf(": (%d ... %d) data bytes\n", 858 sweepmin, sweepmax); 859 else 860 (void)printf(": %d data bytes\n", datalen); 861 862 } else { 863 if (sweepmax) 864 (void)printf("PING %s: (%d ... %d) data bytes\n", 865 hostname, sweepmin, sweepmax); 866 else 867 (void)printf("PING %s: %d data bytes\n", hostname, datalen); 868 } 869 870 /* 871 * Use sigaction() instead of signal() to get unambiguous semantics, 872 * in particular with SA_RESTART not set. 873 */ 874 875 sigemptyset(&si_sa.sa_mask); 876 si_sa.sa_flags = 0; 877 878 si_sa.sa_handler = stopit; 879 if (sigaction(SIGINT, &si_sa, 0) == -1) { 880 err(EX_OSERR, "sigaction SIGINT"); 881 } 882 883 si_sa.sa_handler = status; 884 if (sigaction(SIGINFO, &si_sa, 0) == -1) { 885 err(EX_OSERR, "sigaction"); 886 } 887 888 if (alarmtimeout > 0) { 889 si_sa.sa_handler = stopit; 890 if (sigaction(SIGALRM, &si_sa, 0) == -1) 891 err(EX_OSERR, "sigaction SIGALRM"); 892 } 893 894 bzero(&msg, sizeof(msg)); 895 msg.msg_name = (caddr_t)&from; 896 msg.msg_iov = &iov; 897 msg.msg_iovlen = 1; 898 #ifdef SO_TIMESTAMP 899 msg.msg_control = (caddr_t)ctrl; 900 msg.msg_controllen = sizeof(ctrl); 901 #endif 902 iov.iov_base = packet; 903 iov.iov_len = IP_MAXPACKET; 904 905 if (preload == 0) 906 pinger(); /* send the first ping */ 907 else { 908 if (npackets != 0 && preload > npackets) 909 preload = npackets; 910 while (preload--) /* fire off them quickies */ 911 pinger(); 912 } 913 (void)clock_gettime(CLOCK_MONOTONIC, &last); 914 915 if (options & F_FLOOD) { 916 intvl.tv_sec = 0; 917 intvl.tv_nsec = 10000000; 918 } else { 919 intvl.tv_sec = interval / 1000; 920 intvl.tv_nsec = interval % 1000 * 1000000; 921 } 922 923 almost_done = 0; 924 while (!finish_up) { 925 struct timespec now, timeout; 926 fd_set rfds; 927 int n; 928 ssize_t cc; 929 930 check_status(); 931 if ((unsigned)srecv >= FD_SETSIZE) 932 errx(EX_OSERR, "descriptor too large"); 933 FD_ZERO(&rfds); 934 FD_SET(srecv, &rfds); 935 (void)clock_gettime(CLOCK_MONOTONIC, &now); 936 timespecadd(&last, &intvl, &timeout); 937 timespecsub(&timeout, &now, &timeout); 938 if (timeout.tv_sec < 0) 939 timespecclear(&timeout); 940 n = pselect(srecv + 1, &rfds, NULL, NULL, &timeout, NULL); 941 if (n < 0) 942 continue; /* Must be EINTR. */ 943 if (n == 1) { 944 struct timespec *tv = NULL; 945 #ifdef SO_TIMESTAMP 946 struct cmsghdr *cmsg = CMSG_FIRSTHDR(&msg); 947 #endif 948 msg.msg_namelen = sizeof(from); 949 if ((cc = recvmsg(srecv, &msg, 0)) < 0) { 950 if (errno == EINTR) 951 continue; 952 warn("recvmsg"); 953 continue; 954 } 955 #ifdef SO_TIMESTAMP 956 if (cmsg != NULL && 957 cmsg->cmsg_level == SOL_SOCKET && 958 cmsg->cmsg_type == SCM_TIMESTAMP && 959 cmsg->cmsg_len == CMSG_LEN(sizeof *tv)) { 960 /* Copy to avoid alignment problems: */ 961 memcpy(&now, CMSG_DATA(cmsg), sizeof(now)); 962 tv = &now; 963 } 964 #endif 965 if (tv == NULL) { 966 (void)clock_gettime(CLOCK_MONOTONIC, &now); 967 tv = &now; 968 } 969 pr_pack((char *)packet, cc, &from, tv); 970 if ((options & F_ONCE && nreceived) || 971 (npackets && nreceived >= npackets)) 972 break; 973 } 974 if (n == 0 || options & F_FLOOD) { 975 if (sweepmax && sntransmitted == snpackets) { 976 if (datalen + sweepincr > sweepmax) 977 break; 978 for (i = 0; i < sweepincr; i++) 979 *datap++ = i; 980 datalen += sweepincr; 981 send_len = icmp_len + datalen; 982 sntransmitted = 0; 983 } 984 if (!npackets || ntransmitted < npackets) 985 pinger(); 986 else { 987 if (almost_done) 988 break; 989 almost_done = 1; 990 intvl.tv_nsec = 0; 991 if (nreceived) { 992 intvl.tv_sec = 2 * tmax / 1000; 993 if (!intvl.tv_sec) 994 intvl.tv_sec = 1; 995 } else { 996 intvl.tv_sec = waittime / 1000; 997 intvl.tv_nsec = waittime % 1000 * 1000000; 998 } 999 } 1000 (void)clock_gettime(CLOCK_MONOTONIC, &last); 1001 if (ntransmitted - nreceived - 1 > nmissedmax) { 1002 nmissedmax = ntransmitted - nreceived - 1; 1003 if (options & F_MISSED) 1004 (void)write(STDOUT_FILENO, &BBELL, 1); 1005 } 1006 } 1007 } 1008 finish(); 1009 /* NOTREACHED */ 1010 exit(0); /* Make the compiler happy */ 1011 } 1012 1013 /* 1014 * stopit -- 1015 * Set the global bit that causes the main loop to quit. 1016 * Do NOT call finish() from here, since finish() does far too much 1017 * to be called from a signal handler. 1018 */ 1019 void 1020 stopit(int sig __unused) 1021 { 1022 1023 /* 1024 * When doing reverse DNS lookups, the finish_up flag might not 1025 * be noticed for a while. Just exit if we get a second SIGINT. 1026 */ 1027 if (!(options & F_NUMERIC) && finish_up) 1028 _exit(nreceived ? 0 : 2); 1029 finish_up = 1; 1030 } 1031 1032 /* 1033 * pinger -- 1034 * Compose and transmit an ICMP ECHO REQUEST packet. The IP packet 1035 * will be added on by the kernel. The ID field is our UNIX process ID, 1036 * and the sequence number is an ascending integer. The first TIMEVAL_LEN 1037 * bytes of the data portion are used to hold a UNIX "timespec" struct in 1038 * host byte-order, to compute the round-trip time. 1039 */ 1040 static void 1041 pinger(void) 1042 { 1043 struct timespec now; 1044 struct tv32 tv32; 1045 struct icmp icp; 1046 int cc, i; 1047 u_char *packet; 1048 1049 packet = outpack; 1050 memcpy(&icp, outpack, ICMP_MINLEN + phdr_len); 1051 icp.icmp_type = icmp_type; 1052 icp.icmp_code = 0; 1053 icp.icmp_cksum = 0; 1054 icp.icmp_seq = htons(ntransmitted); 1055 icp.icmp_id = ident; /* ID */ 1056 1057 CLR(ntransmitted % mx_dup_ck); 1058 1059 if ((options & F_TIME) || timing) { 1060 (void)clock_gettime(CLOCK_MONOTONIC, &now); 1061 /* 1062 * Truncate seconds down to 32 bits in order 1063 * to fit the timestamp within 8 bytes of the 1064 * packet. We're only concerned with 1065 * durations, not absolute times. 1066 */ 1067 tv32.tv32_sec = (uint32_t)htonl(now.tv_sec); 1068 tv32.tv32_nsec = (uint32_t)htonl(now.tv_nsec); 1069 if (options & F_TIME) 1070 icp.icmp_otime = htonl((now.tv_sec % (24*60*60)) 1071 * 1000 + now.tv_nsec / 1000000); 1072 if (timing) 1073 bcopy((void *)&tv32, 1074 (void *)&outpack[ICMP_MINLEN + phdr_len], 1075 sizeof(tv32)); 1076 } 1077 1078 memcpy(outpack, &icp, ICMP_MINLEN + phdr_len); 1079 1080 cc = ICMP_MINLEN + phdr_len + datalen; 1081 1082 /* compute ICMP checksum here */ 1083 icp.icmp_cksum = in_cksum(outpack, cc); 1084 /* Update icmp_cksum in the raw packet data buffer. */ 1085 memcpy(outpack + offsetof(struct icmp, icmp_cksum), &icp.icmp_cksum, 1086 sizeof(icp.icmp_cksum)); 1087 1088 if (options & F_HDRINCL) { 1089 struct ip ip; 1090 1091 cc += sizeof(struct ip); 1092 ip.ip_len = htons(cc); 1093 /* Update ip_len in the raw packet data buffer. */ 1094 memcpy(outpackhdr + offsetof(struct ip, ip_len), &ip.ip_len, 1095 sizeof(ip.ip_len)); 1096 ip.ip_sum = in_cksum(outpackhdr, cc); 1097 /* Update ip_sum in the raw packet data buffer. */ 1098 memcpy(outpackhdr + offsetof(struct ip, ip_sum), &ip.ip_sum, 1099 sizeof(ip.ip_sum)); 1100 packet = outpackhdr; 1101 } 1102 i = send(ssend, (char *)packet, cc, 0); 1103 if (i < 0 || i != cc) { 1104 if (i < 0) { 1105 if (options & F_FLOOD && errno == ENOBUFS) { 1106 usleep(FLOOD_BACKOFF); 1107 return; 1108 } 1109 warn("sendto"); 1110 } else { 1111 warn("%s: partial write: %d of %d bytes", 1112 hostname, i, cc); 1113 } 1114 } 1115 ntransmitted++; 1116 sntransmitted++; 1117 if (!(options & F_QUIET) && options & F_FLOOD) 1118 (void)write(STDOUT_FILENO, &DOT, 1); 1119 } 1120 1121 /* 1122 * pr_pack -- 1123 * Print out the packet, if it came from us. This logic is necessary 1124 * because ALL readers of the ICMP socket get a copy of ALL ICMP packets 1125 * which arrive ('tis only fair). This permits multiple copies of this 1126 * program to be run without having intermingled output (or statistics!). 1127 */ 1128 static void 1129 pr_pack(char *buf, ssize_t cc, struct sockaddr_in *from, struct timespec *tv) 1130 { 1131 struct in_addr ina; 1132 u_char *cp, *dp, l; 1133 struct icmp icp; 1134 struct ip ip; 1135 const u_char *icmp_data_raw; 1136 double triptime; 1137 int dupflag, hlen, i, j, recv_len; 1138 uint16_t seq; 1139 static int old_rrlen; 1140 static char old_rr[MAX_IPOPTLEN]; 1141 struct ip oip; 1142 u_char oip_header_len; 1143 struct icmp oicmp; 1144 const u_char *oicmp_raw; 1145 1146 /* 1147 * Get size of IP header of the received packet. The 1148 * information is contained in the lower four bits of the 1149 * first byte. 1150 */ 1151 memcpy(&l, buf, sizeof(l)); 1152 hlen = (l & 0x0f) << 2; 1153 memcpy(&ip, buf, hlen); 1154 1155 /* Check the IP header */ 1156 recv_len = cc; 1157 if (cc < hlen + ICMP_MINLEN) { 1158 if (options & F_VERBOSE) 1159 warn("packet too short (%zd bytes) from %s", cc, 1160 inet_ntoa(from->sin_addr)); 1161 return; 1162 } 1163 1164 #ifndef icmp_data 1165 icmp_data_raw = buf + hlen + offsetof(struct icmp, icmp_ip); 1166 #else 1167 icmp_data_raw = buf + hlen + offsetof(struct icmp, icmp_data); 1168 #endif 1169 1170 /* Now the ICMP part */ 1171 cc -= hlen; 1172 memcpy(&icp, buf + hlen, MIN((ssize_t)sizeof(icp), cc)); 1173 if (icp.icmp_type == icmp_type_rsp) { 1174 if (icp.icmp_id != ident) 1175 return; /* 'Twas not our ECHO */ 1176 ++nreceived; 1177 triptime = 0.0; 1178 if (timing) { 1179 struct timespec tv1; 1180 struct tv32 tv32; 1181 const u_char *tp; 1182 1183 tp = icmp_data_raw + phdr_len; 1184 1185 if ((size_t)(cc - ICMP_MINLEN - phdr_len) >= 1186 sizeof(tv1)) { 1187 /* Copy to avoid alignment problems: */ 1188 memcpy(&tv32, tp, sizeof(tv32)); 1189 tv1.tv_sec = ntohl(tv32.tv32_sec); 1190 tv1.tv_nsec = ntohl(tv32.tv32_nsec); 1191 timespecsub(tv, &tv1, tv); 1192 triptime = ((double)tv->tv_sec) * 1000.0 + 1193 ((double)tv->tv_nsec) / 1000000.0; 1194 tsum += triptime; 1195 tsumsq += triptime * triptime; 1196 if (triptime < tmin) 1197 tmin = triptime; 1198 if (triptime > tmax) 1199 tmax = triptime; 1200 } else 1201 timing = 0; 1202 } 1203 1204 seq = ntohs(icp.icmp_seq); 1205 1206 if (TST(seq % mx_dup_ck)) { 1207 ++nrepeats; 1208 --nreceived; 1209 dupflag = 1; 1210 } else { 1211 SET(seq % mx_dup_ck); 1212 dupflag = 0; 1213 } 1214 1215 if (options & F_QUIET) 1216 return; 1217 1218 if (options & F_WAITTIME && triptime > waittime) { 1219 ++nrcvtimeout; 1220 return; 1221 } 1222 1223 if (options & F_FLOOD) 1224 (void)write(STDOUT_FILENO, &BSPACE, 1); 1225 else { 1226 (void)printf("%zd bytes from %s: icmp_seq=%u", cc, 1227 pr_addr(from->sin_addr), seq); 1228 (void)printf(" ttl=%d", ip.ip_ttl); 1229 if (timing) 1230 (void)printf(" time=%.3f ms", triptime); 1231 if (dupflag) 1232 (void)printf(" (DUP!)"); 1233 if (options & F_AUDIBLE) 1234 (void)write(STDOUT_FILENO, &BBELL, 1); 1235 if (options & F_MASK) { 1236 /* Just prentend this cast isn't ugly */ 1237 (void)printf(" mask=%s", 1238 inet_ntoa(*(struct in_addr *)&(icp.icmp_mask))); 1239 } 1240 if (options & F_TIME) { 1241 (void)printf(" tso=%s", pr_ntime(icp.icmp_otime)); 1242 (void)printf(" tsr=%s", pr_ntime(icp.icmp_rtime)); 1243 (void)printf(" tst=%s", pr_ntime(icp.icmp_ttime)); 1244 } 1245 if (recv_len != send_len) { 1246 (void)printf( 1247 "\nwrong total length %d instead of %d", 1248 recv_len, send_len); 1249 } 1250 /* check the data */ 1251 cp = (u_char*)(buf + hlen + offsetof(struct icmp, 1252 icmp_data) + phdr_len); 1253 dp = &outpack[ICMP_MINLEN + phdr_len]; 1254 cc -= ICMP_MINLEN + phdr_len; 1255 i = 0; 1256 if (timing) { /* don't check variable timestamp */ 1257 cp += TIMEVAL_LEN; 1258 dp += TIMEVAL_LEN; 1259 cc -= TIMEVAL_LEN; 1260 i += TIMEVAL_LEN; 1261 } 1262 for (; i < datalen && cc > 0; ++i, ++cp, ++dp, --cc) { 1263 if (*cp != *dp) { 1264 (void)printf("\nwrong data byte #%d should be 0x%x but was 0x%x", 1265 i, *dp, *cp); 1266 (void)printf("\ncp:"); 1267 cp = (u_char*)(buf + hlen + 1268 offsetof(struct icmp, icmp_data)); 1269 for (i = 0; i < datalen; ++i, ++cp) { 1270 if ((i % 16) == 8) 1271 (void)printf("\n\t"); 1272 (void)printf("%2x ", *cp); 1273 } 1274 (void)printf("\ndp:"); 1275 cp = &outpack[ICMP_MINLEN]; 1276 for (i = 0; i < datalen; ++i, ++cp) { 1277 if ((i % 16) == 8) 1278 (void)printf("\n\t"); 1279 (void)printf("%2x ", *cp); 1280 } 1281 break; 1282 } 1283 } 1284 } 1285 } else { 1286 /* 1287 * We've got something other than an ECHOREPLY. 1288 * See if it's a reply to something that we sent. 1289 * We can compare IP destination, protocol, 1290 * and ICMP type and ID. 1291 * 1292 * Only print all the error messages if we are running 1293 * as root to avoid leaking information not normally 1294 * available to those not running as root. 1295 */ 1296 memcpy(&oip_header_len, icmp_data_raw, sizeof(oip_header_len)); 1297 oip_header_len = (oip_header_len & 0x0f) << 2; 1298 memcpy(&oip, icmp_data_raw, oip_header_len); 1299 oicmp_raw = icmp_data_raw + oip_header_len; 1300 memcpy(&oicmp, oicmp_raw, offsetof(struct icmp, icmp_id) + 1301 sizeof(oicmp.icmp_id)); 1302 1303 if (((options & F_VERBOSE) && uid == 0) || 1304 (!(options & F_QUIET2) && 1305 (oip.ip_dst.s_addr == whereto.sin_addr.s_addr) && 1306 (oip.ip_p == IPPROTO_ICMP) && 1307 (oicmp.icmp_type == ICMP_ECHO) && 1308 (oicmp.icmp_id == ident))) { 1309 (void)printf("%zd bytes from %s: ", cc, 1310 pr_addr(from->sin_addr)); 1311 pr_icmph(&icp, &oip, oicmp_raw); 1312 } else 1313 return; 1314 } 1315 1316 /* Display any IP options */ 1317 cp = (u_char *)buf + sizeof(struct ip); 1318 1319 for (; hlen > (int)sizeof(struct ip); --hlen, ++cp) 1320 switch (*cp) { 1321 case IPOPT_EOL: 1322 hlen = 0; 1323 break; 1324 case IPOPT_LSRR: 1325 case IPOPT_SSRR: 1326 (void)printf(*cp == IPOPT_LSRR ? 1327 "\nLSRR: " : "\nSSRR: "); 1328 j = cp[IPOPT_OLEN] - IPOPT_MINOFF + 1; 1329 hlen -= 2; 1330 cp += 2; 1331 if (j >= INADDR_LEN && 1332 j <= hlen - (int)sizeof(struct ip)) { 1333 for (;;) { 1334 bcopy(++cp, &ina.s_addr, INADDR_LEN); 1335 if (ina.s_addr == 0) 1336 (void)printf("\t0.0.0.0"); 1337 else 1338 (void)printf("\t%s", 1339 pr_addr(ina)); 1340 hlen -= INADDR_LEN; 1341 cp += INADDR_LEN - 1; 1342 j -= INADDR_LEN; 1343 if (j < INADDR_LEN) 1344 break; 1345 (void)putchar('\n'); 1346 } 1347 } else 1348 (void)printf("\t(truncated route)\n"); 1349 break; 1350 case IPOPT_RR: 1351 j = cp[IPOPT_OLEN]; /* get length */ 1352 i = cp[IPOPT_OFFSET]; /* and pointer */ 1353 hlen -= 2; 1354 cp += 2; 1355 if (i > j) 1356 i = j; 1357 i = i - IPOPT_MINOFF + 1; 1358 if (i < 0 || i > (hlen - (int)sizeof(struct ip))) { 1359 old_rrlen = 0; 1360 continue; 1361 } 1362 if (i == old_rrlen 1363 && !bcmp((char *)cp, old_rr, i) 1364 && !(options & F_FLOOD)) { 1365 (void)printf("\t(same route)"); 1366 hlen -= i; 1367 cp += i; 1368 break; 1369 } 1370 old_rrlen = i; 1371 bcopy((char *)cp, old_rr, i); 1372 (void)printf("\nRR: "); 1373 if (i >= INADDR_LEN && 1374 i <= hlen - (int)sizeof(struct ip)) { 1375 for (;;) { 1376 bcopy(++cp, &ina.s_addr, INADDR_LEN); 1377 if (ina.s_addr == 0) 1378 (void)printf("\t0.0.0.0"); 1379 else 1380 (void)printf("\t%s", 1381 pr_addr(ina)); 1382 hlen -= INADDR_LEN; 1383 cp += INADDR_LEN - 1; 1384 i -= INADDR_LEN; 1385 if (i < INADDR_LEN) 1386 break; 1387 (void)putchar('\n'); 1388 } 1389 } else 1390 (void)printf("\t(truncated route)"); 1391 break; 1392 case IPOPT_NOP: 1393 (void)printf("\nNOP"); 1394 break; 1395 default: 1396 (void)printf("\nunknown option %x", *cp); 1397 break; 1398 } 1399 if (!(options & F_FLOOD)) { 1400 (void)putchar('\n'); 1401 (void)fflush(stdout); 1402 } 1403 } 1404 1405 /* 1406 * status -- 1407 * Print out statistics when SIGINFO is received. 1408 */ 1409 1410 static void 1411 status(int sig __unused) 1412 { 1413 1414 siginfo_p = 1; 1415 } 1416 1417 static void 1418 check_status(void) 1419 { 1420 1421 if (siginfo_p) { 1422 siginfo_p = 0; 1423 (void)fprintf(stderr, "\r%ld/%ld packets received (%.1f%%)", 1424 nreceived, ntransmitted, 1425 ntransmitted ? nreceived * 100.0 / ntransmitted : 0.0); 1426 if (nreceived && timing) 1427 (void)fprintf(stderr, " %.3f min / %.3f avg / %.3f max", 1428 tmin, tsum / (nreceived + nrepeats), tmax); 1429 (void)fprintf(stderr, "\n"); 1430 } 1431 } 1432 1433 /* 1434 * finish -- 1435 * Print out statistics, and give up. 1436 */ 1437 static void 1438 finish(void) 1439 { 1440 1441 (void)signal(SIGINT, SIG_IGN); 1442 (void)signal(SIGALRM, SIG_IGN); 1443 (void)putchar('\n'); 1444 (void)fflush(stdout); 1445 (void)printf("--- %s ping statistics ---\n", hostname); 1446 (void)printf("%ld packets transmitted, ", ntransmitted); 1447 (void)printf("%ld packets received, ", nreceived); 1448 if (nrepeats) 1449 (void)printf("+%ld duplicates, ", nrepeats); 1450 if (ntransmitted) { 1451 if (nreceived > ntransmitted) 1452 (void)printf("-- somebody's printing up packets!"); 1453 else 1454 (void)printf("%.1f%% packet loss", 1455 ((ntransmitted - nreceived) * 100.0) / 1456 ntransmitted); 1457 } 1458 if (nrcvtimeout) 1459 (void)printf(", %ld packets out of wait time", nrcvtimeout); 1460 (void)putchar('\n'); 1461 if (nreceived && timing) { 1462 double n = nreceived + nrepeats; 1463 double avg = tsum / n; 1464 double vari = tsumsq / n - avg * avg; 1465 (void)printf( 1466 "round-trip min/avg/max/stddev = %.3f/%.3f/%.3f/%.3f ms\n", 1467 tmin, avg, tmax, sqrt(vari)); 1468 } 1469 1470 if (nreceived) 1471 exit(0); 1472 else 1473 exit(2); 1474 } 1475 1476 #ifdef notdef 1477 static char *ttab[] = { 1478 "Echo Reply", /* ip + seq + udata */ 1479 "Dest Unreachable", /* net, host, proto, port, frag, sr + IP */ 1480 "Source Quench", /* IP */ 1481 "Redirect", /* redirect type, gateway, + IP */ 1482 "Echo", 1483 "Time Exceeded", /* transit, frag reassem + IP */ 1484 "Parameter Problem", /* pointer + IP */ 1485 "Timestamp", /* id + seq + three timestamps */ 1486 "Timestamp Reply", /* " */ 1487 "Info Request", /* id + sq */ 1488 "Info Reply" /* " */ 1489 }; 1490 #endif 1491 1492 /* 1493 * pr_icmph -- 1494 * Print a descriptive string about an ICMP header. 1495 */ 1496 static void 1497 pr_icmph(struct icmp *icp, struct ip *oip, const u_char *const oicmp_raw) 1498 { 1499 1500 switch(icp->icmp_type) { 1501 case ICMP_ECHOREPLY: 1502 (void)printf("Echo Reply\n"); 1503 /* XXX ID + Seq + Data */ 1504 break; 1505 case ICMP_UNREACH: 1506 switch(icp->icmp_code) { 1507 case ICMP_UNREACH_NET: 1508 (void)printf("Destination Net Unreachable\n"); 1509 break; 1510 case ICMP_UNREACH_HOST: 1511 (void)printf("Destination Host Unreachable\n"); 1512 break; 1513 case ICMP_UNREACH_PROTOCOL: 1514 (void)printf("Destination Protocol Unreachable\n"); 1515 break; 1516 case ICMP_UNREACH_PORT: 1517 (void)printf("Destination Port Unreachable\n"); 1518 break; 1519 case ICMP_UNREACH_NEEDFRAG: 1520 (void)printf("frag needed and DF set (MTU %d)\n", 1521 ntohs(icp->icmp_nextmtu)); 1522 break; 1523 case ICMP_UNREACH_SRCFAIL: 1524 (void)printf("Source Route Failed\n"); 1525 break; 1526 case ICMP_UNREACH_FILTER_PROHIB: 1527 (void)printf("Communication prohibited by filter\n"); 1528 break; 1529 default: 1530 (void)printf("Dest Unreachable, Bad Code: %d\n", 1531 icp->icmp_code); 1532 break; 1533 } 1534 /* Print returned IP header information */ 1535 pr_retip(oip, oicmp_raw); 1536 break; 1537 case ICMP_SOURCEQUENCH: 1538 (void)printf("Source Quench\n"); 1539 pr_retip(oip, oicmp_raw); 1540 break; 1541 case ICMP_REDIRECT: 1542 switch(icp->icmp_code) { 1543 case ICMP_REDIRECT_NET: 1544 (void)printf("Redirect Network"); 1545 break; 1546 case ICMP_REDIRECT_HOST: 1547 (void)printf("Redirect Host"); 1548 break; 1549 case ICMP_REDIRECT_TOSNET: 1550 (void)printf("Redirect Type of Service and Network"); 1551 break; 1552 case ICMP_REDIRECT_TOSHOST: 1553 (void)printf("Redirect Type of Service and Host"); 1554 break; 1555 default: 1556 (void)printf("Redirect, Bad Code: %d", icp->icmp_code); 1557 break; 1558 } 1559 (void)printf("(New addr: %s)\n", inet_ntoa(icp->icmp_gwaddr)); 1560 pr_retip(oip, oicmp_raw); 1561 break; 1562 case ICMP_ECHO: 1563 (void)printf("Echo Request\n"); 1564 /* XXX ID + Seq + Data */ 1565 break; 1566 case ICMP_TIMXCEED: 1567 switch(icp->icmp_code) { 1568 case ICMP_TIMXCEED_INTRANS: 1569 (void)printf("Time to live exceeded\n"); 1570 break; 1571 case ICMP_TIMXCEED_REASS: 1572 (void)printf("Frag reassembly time exceeded\n"); 1573 break; 1574 default: 1575 (void)printf("Time exceeded, Bad Code: %d\n", 1576 icp->icmp_code); 1577 break; 1578 } 1579 pr_retip(oip, oicmp_raw); 1580 break; 1581 case ICMP_PARAMPROB: 1582 (void)printf("Parameter problem: pointer = 0x%02x\n", 1583 icp->icmp_hun.ih_pptr); 1584 pr_retip(oip, oicmp_raw); 1585 break; 1586 case ICMP_TSTAMP: 1587 (void)printf("Timestamp\n"); 1588 /* XXX ID + Seq + 3 timestamps */ 1589 break; 1590 case ICMP_TSTAMPREPLY: 1591 (void)printf("Timestamp Reply\n"); 1592 /* XXX ID + Seq + 3 timestamps */ 1593 break; 1594 case ICMP_IREQ: 1595 (void)printf("Information Request\n"); 1596 /* XXX ID + Seq */ 1597 break; 1598 case ICMP_IREQREPLY: 1599 (void)printf("Information Reply\n"); 1600 /* XXX ID + Seq */ 1601 break; 1602 case ICMP_MASKREQ: 1603 (void)printf("Address Mask Request\n"); 1604 break; 1605 case ICMP_MASKREPLY: 1606 (void)printf("Address Mask Reply\n"); 1607 break; 1608 case ICMP_ROUTERADVERT: 1609 (void)printf("Router Advertisement\n"); 1610 break; 1611 case ICMP_ROUTERSOLICIT: 1612 (void)printf("Router Solicitation\n"); 1613 break; 1614 default: 1615 (void)printf("Bad ICMP type: %d\n", icp->icmp_type); 1616 } 1617 } 1618 1619 /* 1620 * pr_iph -- 1621 * Print an IP header with options. 1622 */ 1623 static void 1624 pr_iph(struct ip *ip) 1625 { 1626 struct in_addr ina; 1627 u_char *cp; 1628 int hlen; 1629 1630 hlen = ip->ip_hl << 2; 1631 cp = (u_char *)ip + 20; /* point to options */ 1632 1633 (void)printf("Vr HL TOS Len ID Flg off TTL Pro cks Src Dst\n"); 1634 (void)printf(" %1x %1x %02x %04x %04x", 1635 ip->ip_v, ip->ip_hl, ip->ip_tos, ntohs(ip->ip_len), 1636 ntohs(ip->ip_id)); 1637 (void)printf(" %1lx %04lx", 1638 (u_long) (ntohl(ip->ip_off) & 0xe000) >> 13, 1639 (u_long) ntohl(ip->ip_off) & 0x1fff); 1640 (void)printf(" %02x %02x %04x", ip->ip_ttl, ip->ip_p, 1641 ntohs(ip->ip_sum)); 1642 memcpy(&ina, &ip->ip_src.s_addr, sizeof ina); 1643 (void)printf(" %s ", inet_ntoa(ina)); 1644 memcpy(&ina, &ip->ip_dst.s_addr, sizeof ina); 1645 (void)printf(" %s ", inet_ntoa(ina)); 1646 /* dump any option bytes */ 1647 while (hlen-- > 20) { 1648 (void)printf("%02x", *cp++); 1649 } 1650 (void)putchar('\n'); 1651 } 1652 1653 /* 1654 * pr_addr -- 1655 * Return an ascii host address as a dotted quad and optionally with 1656 * a hostname. 1657 */ 1658 static char * 1659 pr_addr(struct in_addr ina) 1660 { 1661 struct hostent *hp; 1662 static char buf[16 + 3 + MAXHOSTNAMELEN]; 1663 1664 if (options & F_NUMERIC) 1665 return inet_ntoa(ina); 1666 1667 hp = cap_gethostbyaddr(capdns, (char *)&ina, 4, AF_INET); 1668 1669 if (hp == NULL) 1670 return inet_ntoa(ina); 1671 1672 (void)snprintf(buf, sizeof(buf), "%s (%s)", hp->h_name, 1673 inet_ntoa(ina)); 1674 return(buf); 1675 } 1676 1677 /* 1678 * pr_retip -- 1679 * Dump some info on a returned (via ICMP) IP packet. 1680 */ 1681 static void 1682 pr_retip(struct ip *ip, const u_char *cp) 1683 { 1684 pr_iph(ip); 1685 1686 if (ip->ip_p == 6) 1687 (void)printf("TCP: from port %u, to port %u (decimal)\n", 1688 (*cp * 256 + *(cp + 1)), (*(cp + 2) * 256 + *(cp + 3))); 1689 else if (ip->ip_p == 17) 1690 (void)printf("UDP: from port %u, to port %u (decimal)\n", 1691 (*cp * 256 + *(cp + 1)), (*(cp + 2) * 256 + *(cp + 3))); 1692 } 1693 1694 static char * 1695 pr_ntime(n_time timestamp) 1696 { 1697 static char buf[11]; 1698 int hour, min, sec; 1699 1700 sec = ntohl(timestamp) / 1000; 1701 hour = sec / 60 / 60; 1702 min = (sec % (60 * 60)) / 60; 1703 sec = (sec % (60 * 60)) % 60; 1704 1705 (void)snprintf(buf, sizeof(buf), "%02d:%02d:%02d", hour, min, sec); 1706 1707 return (buf); 1708 } 1709 1710 static void 1711 fill(char *bp, char *patp) 1712 { 1713 char *cp; 1714 int pat[16]; 1715 u_int ii, jj, kk; 1716 1717 for (cp = patp; *cp; cp++) { 1718 if (!isxdigit(*cp)) 1719 errx(EX_USAGE, 1720 "patterns must be specified as hex digits"); 1721 1722 } 1723 ii = sscanf(patp, 1724 "%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x%2x", 1725 &pat[0], &pat[1], &pat[2], &pat[3], &pat[4], &pat[5], &pat[6], 1726 &pat[7], &pat[8], &pat[9], &pat[10], &pat[11], &pat[12], 1727 &pat[13], &pat[14], &pat[15]); 1728 1729 if (ii > 0) 1730 for (kk = 0; kk <= maxpayload - (TIMEVAL_LEN + ii); kk += ii) 1731 for (jj = 0; jj < ii; ++jj) 1732 bp[jj + kk] = pat[jj]; 1733 if (!(options & F_QUIET)) { 1734 (void)printf("PATTERN: 0x"); 1735 for (jj = 0; jj < ii; ++jj) 1736 (void)printf("%02x", bp[jj] & 0xFF); 1737 (void)printf("\n"); 1738 } 1739 } 1740 1741 static cap_channel_t * 1742 capdns_setup(void) 1743 { 1744 cap_channel_t *capcas, *capdnsloc; 1745 #ifdef WITH_CASPER 1746 const char *types[2]; 1747 int families[1]; 1748 #endif 1749 capcas = cap_init(); 1750 if (capcas == NULL) 1751 err(1, "unable to create casper process"); 1752 capdnsloc = cap_service_open(capcas, "system.dns"); 1753 /* Casper capability no longer needed. */ 1754 cap_close(capcas); 1755 if (capdnsloc == NULL) 1756 err(1, "unable to open system.dns service"); 1757 #ifdef WITH_CASPER 1758 types[0] = "NAME2ADDR"; 1759 types[1] = "ADDR2NAME"; 1760 if (cap_dns_type_limit(capdnsloc, types, 2) < 0) 1761 err(1, "unable to limit access to system.dns service"); 1762 families[0] = AF_INET; 1763 if (cap_dns_family_limit(capdnsloc, families, 1) < 0) 1764 err(1, "unable to limit access to system.dns service"); 1765 #endif 1766 return (capdnsloc); 1767 } 1768