1ca007d91SDag-Erling Smørgrav /*-
24d846d26SWarner Losh * SPDX-License-Identifier: BSD-2-Clause
31de7b4b8SPedro F. Giffuni *
4e738085bSDag-Erling Smørgrav * Copyright (c) 2002 Dag-Erling Smørgrav
5ca007d91SDag-Erling Smørgrav * All rights reserved.
6ca007d91SDag-Erling Smørgrav *
7ca007d91SDag-Erling Smørgrav * Redistribution and use in source and binary forms, with or without
8ca007d91SDag-Erling Smørgrav * modification, are permitted provided that the following conditions
9ca007d91SDag-Erling Smørgrav * are met:
10ca007d91SDag-Erling Smørgrav * 1. Redistributions of source code must retain the above copyright
11ca007d91SDag-Erling Smørgrav * notice, this list of conditions and the following disclaimer
12ca007d91SDag-Erling Smørgrav * in this position and unchanged.
13ca007d91SDag-Erling Smørgrav * 2. Redistributions in binary form must reproduce the above copyright
14ca007d91SDag-Erling Smørgrav * notice, this list of conditions and the following disclaimer in the
15ca007d91SDag-Erling Smørgrav * documentation and/or other materials provided with the distribution.
16ca007d91SDag-Erling Smørgrav * 3. The name of the author may not be used to endorse or promote products
17ca007d91SDag-Erling Smørgrav * derived from this software without specific prior written permission.
18ca007d91SDag-Erling Smørgrav *
19ca007d91SDag-Erling Smørgrav * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
20ca007d91SDag-Erling Smørgrav * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
21ca007d91SDag-Erling Smørgrav * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
22ca007d91SDag-Erling Smørgrav * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
23ca007d91SDag-Erling Smørgrav * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
24ca007d91SDag-Erling Smørgrav * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
25ca007d91SDag-Erling Smørgrav * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
26ca007d91SDag-Erling Smørgrav * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27ca007d91SDag-Erling Smørgrav * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
28ca007d91SDag-Erling Smørgrav * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29ca007d91SDag-Erling Smørgrav */
30ca007d91SDag-Erling Smørgrav
31ca007d91SDag-Erling Smørgrav #include <sys/param.h>
32f1cd4902SRyan Moeller #include <sys/file.h>
33ca007d91SDag-Erling Smørgrav #include <sys/socket.h>
34ca007d91SDag-Erling Smørgrav #include <sys/socketvar.h>
35ca007d91SDag-Erling Smørgrav #include <sys/sysctl.h>
36f1cd4902SRyan Moeller #include <sys/jail.h>
37ca007d91SDag-Erling Smørgrav #include <sys/user.h>
38a83d596fSGleb Smirnoff #include <sys/queue.h>
39a83d596fSGleb Smirnoff #include <sys/tree.h>
40ca007d91SDag-Erling Smørgrav
41ca007d91SDag-Erling Smørgrav #include <sys/un.h>
42ca007d91SDag-Erling Smørgrav #include <sys/unpcb.h>
43ca007d91SDag-Erling Smørgrav
4402bd9db0SDag-Erling Smørgrav #include <net/route.h>
4502bd9db0SDag-Erling Smørgrav
46ca007d91SDag-Erling Smørgrav #include <netinet/in.h>
47ca007d91SDag-Erling Smørgrav #include <netinet/in_pcb.h>
48d5b4aa90SMichael Tuexen #include <netinet/sctp.h>
49ca007d91SDag-Erling Smørgrav #include <netinet/tcp.h>
507a5642b3SDag-Erling Smørgrav #define TCPSTATES /* load state names */
517a5642b3SDag-Erling Smørgrav #include <netinet/tcp_fsm.h>
52ca007d91SDag-Erling Smørgrav #include <netinet/tcp_seq.h>
53ca007d91SDag-Erling Smørgrav #include <netinet/tcp_var.h>
54ca007d91SDag-Erling Smørgrav #include <arpa/inet.h>
55ca007d91SDag-Erling Smørgrav
56c5a2d8c5SRyan Moeller #include <capsicum_helpers.h>
57ca007d91SDag-Erling Smørgrav #include <ctype.h>
58ca007d91SDag-Erling Smørgrav #include <err.h>
59ca007d91SDag-Erling Smørgrav #include <errno.h>
605f64777aSMichael Tuexen #include <inttypes.h>
61de68a320SJamie Gritton #include <jail.h>
62ca007d91SDag-Erling Smørgrav #include <netdb.h>
63ca007d91SDag-Erling Smørgrav #include <pwd.h>
64ca007d91SDag-Erling Smørgrav #include <stdarg.h>
6501a46c7dSGleb Smirnoff #include <stdbool.h>
66ca007d91SDag-Erling Smørgrav #include <stdio.h>
67ca007d91SDag-Erling Smørgrav #include <stdlib.h>
68ca007d91SDag-Erling Smørgrav #include <string.h>
69ca007d91SDag-Erling Smørgrav #include <unistd.h>
70ca007d91SDag-Erling Smørgrav
71c5a2d8c5SRyan Moeller #include <libcasper.h>
72c5a2d8c5SRyan Moeller #include <casper/cap_net.h>
73c5a2d8c5SRyan Moeller #include <casper/cap_netdb.h>
747ad30f58SMariusz Zaborski #include <casper/cap_pwd.h>
75c5a2d8c5SRyan Moeller #include <casper/cap_sysctl.h>
76c5a2d8c5SRyan Moeller
77b8e20e2dSHiroki Sato #define sstosin(ss) ((struct sockaddr_in *)(ss))
78b8e20e2dSHiroki Sato #define sstosin6(ss) ((struct sockaddr_in6 *)(ss))
79b8e20e2dSHiroki Sato #define sstosun(ss) ((struct sockaddr_un *)(ss))
80b8e20e2dSHiroki Sato #define sstosa(ss) ((struct sockaddr *)(ss))
81b8e20e2dSHiroki Sato
8201a46c7dSGleb Smirnoff static bool opt_4; /* Show IPv4 sockets */
8301a46c7dSGleb Smirnoff static bool opt_6; /* Show IPv6 sockets */
84*9f55128fSGleb Smirnoff static bool opt_A; /* Show kernel address of pcb */
8501a46c7dSGleb Smirnoff static bool opt_C; /* Show congestion control */
8601a46c7dSGleb Smirnoff static bool opt_c; /* Show connected sockets */
8701a46c7dSGleb Smirnoff static bool opt_f; /* Show FIB numbers */
8801a46c7dSGleb Smirnoff static bool opt_I; /* Show spliced socket addresses */
8901a46c7dSGleb Smirnoff static bool opt_i; /* Show inp_gencnt */
9000feaafdSAndrew Thompson static int opt_j; /* Show specified jail */
9101a46c7dSGleb Smirnoff static bool opt_L; /* Don't show IPv4 or IPv6 loopback sockets */
9201a46c7dSGleb Smirnoff static bool opt_l; /* Show listening sockets */
9301a46c7dSGleb Smirnoff static bool opt_n; /* Don't resolve UIDs to user names */
9401a46c7dSGleb Smirnoff static bool opt_q; /* Don't show header */
9501a46c7dSGleb Smirnoff static bool opt_S; /* Show protocol stack if applicable */
9601a46c7dSGleb Smirnoff static bool opt_s; /* Show protocol state if applicable */
9701a46c7dSGleb Smirnoff static bool opt_U; /* Show remote UDP encapsulation port number */
9801a46c7dSGleb Smirnoff static bool opt_u; /* Show Unix domain sockets */
9901a46c7dSGleb Smirnoff static u_int opt_v; /* Verbose mode */
10001a46c7dSGleb Smirnoff static bool opt_w; /* Wide print area for addresses */
101ca007d91SDag-Erling Smørgrav
1021f3d67aaSGiorgos Keramidas /*
1031f3d67aaSGiorgos Keramidas * Default protocols to use if no -P was defined.
1041f3d67aaSGiorgos Keramidas */
105d5b4aa90SMichael Tuexen static const char *default_protos[] = {"sctp", "tcp", "udp", "divert" };
106b8e20e2dSHiroki Sato static size_t default_numprotos = nitems(default_protos);
1071f3d67aaSGiorgos Keramidas
1081f3d67aaSGiorgos Keramidas static int *protos; /* protocols to use */
1091f3d67aaSGiorgos Keramidas static size_t numprotos; /* allocated size of protos[] */
1101f3d67aaSGiorgos Keramidas
111ca007d91SDag-Erling Smørgrav static int *ports;
112ca007d91SDag-Erling Smørgrav
113ca007d91SDag-Erling Smørgrav #define INT_BIT (sizeof(int)*CHAR_BIT)
114ca007d91SDag-Erling Smørgrav #define SET_PORT(p) do { ports[p / INT_BIT] |= 1 << (p % INT_BIT); } while (0)
115ca007d91SDag-Erling Smørgrav #define CHK_PORT(p) (ports[p / INT_BIT] & (1 << (p % INT_BIT)))
116ca007d91SDag-Erling Smørgrav
117e6f718c7SMichael Tuexen struct addr {
1182c436d48SGleb Smirnoff union {
119e6f718c7SMichael Tuexen struct sockaddr_storage address;
1202c436d48SGleb Smirnoff struct { /* unix(4) faddr */
1212c436d48SGleb Smirnoff kvaddr_t conn;
1222c436d48SGleb Smirnoff kvaddr_t firstref;
1232c436d48SGleb Smirnoff kvaddr_t nextref;
1242c436d48SGleb Smirnoff };
1252c436d48SGleb Smirnoff };
12649b836f2SMichael Tuexen unsigned int encaps_port;
127e389705eSMichael Tuexen int state;
128e6f718c7SMichael Tuexen struct addr *next;
129e6f718c7SMichael Tuexen };
130e6f718c7SMichael Tuexen
131ca007d91SDag-Erling Smørgrav struct sock {
132a83d596fSGleb Smirnoff union {
133a83d596fSGleb Smirnoff RB_ENTRY(sock) socket_tree; /* tree of pcbs with socket */
134a83d596fSGleb Smirnoff SLIST_ENTRY(sock) socket_list; /* list of pcbs w/o socket */
135a83d596fSGleb Smirnoff };
136a83d596fSGleb Smirnoff RB_ENTRY(sock) pcb_tree;
137f38b68aeSBrooks Davis kvaddr_t socket;
138f38b68aeSBrooks Davis kvaddr_t pcb;
139051a2132SMark Johnston kvaddr_t splice_socket;
1405f64777aSMichael Tuexen uint64_t inp_gencnt;
14161149f8dSJilles Tjoelker int shown;
142ca007d91SDag-Erling Smørgrav int vflag;
143ca007d91SDag-Erling Smørgrav int family;
144ca007d91SDag-Erling Smørgrav int proto;
1457a5642b3SDag-Erling Smørgrav int state;
146a471d2b4SMark Johnston int fibnum;
147ca007d91SDag-Erling Smørgrav const char *protoname;
148e5cccc35SMichael Tuexen char stack[TCP_FUNCTION_NAME_LEN_MAX];
1492ac089d0SMichael Tuexen char cc[TCP_CA_NAME_MAX];
150e6f718c7SMichael Tuexen struct addr *laddr;
151e6f718c7SMichael Tuexen struct addr *faddr;
152ca007d91SDag-Erling Smørgrav };
153ca007d91SDag-Erling Smørgrav
154a83d596fSGleb Smirnoff static RB_HEAD(socks_t, sock) socks = RB_INITIALIZER(&socks);
155a83d596fSGleb Smirnoff static int64_t
socket_compare(const struct sock * a,const struct sock * b)156a83d596fSGleb Smirnoff socket_compare(const struct sock *a, const struct sock *b)
157a83d596fSGleb Smirnoff {
158a83d596fSGleb Smirnoff return ((int64_t)(a->socket/2 - b->socket/2));
159a83d596fSGleb Smirnoff }
160a83d596fSGleb Smirnoff RB_GENERATE_STATIC(socks_t, sock, socket_tree, socket_compare);
161a83d596fSGleb Smirnoff
162a83d596fSGleb Smirnoff static RB_HEAD(pcbs_t, sock) pcbs = RB_INITIALIZER(&pcbs);
163a83d596fSGleb Smirnoff static int64_t
pcb_compare(const struct sock * a,const struct sock * b)164a83d596fSGleb Smirnoff pcb_compare(const struct sock *a, const struct sock *b)
165a83d596fSGleb Smirnoff {
166a83d596fSGleb Smirnoff return ((int64_t)(a->pcb/2 - b->pcb/2));
167a83d596fSGleb Smirnoff }
168a83d596fSGleb Smirnoff RB_GENERATE_STATIC(pcbs_t, sock, pcb_tree, pcb_compare);
169a83d596fSGleb Smirnoff
170a83d596fSGleb Smirnoff static SLIST_HEAD(, sock) nosocks = SLIST_HEAD_INITIALIZER(&nosocks);
171ca007d91SDag-Erling Smørgrav
1722c436d48SGleb Smirnoff struct file {
1732c436d48SGleb Smirnoff RB_ENTRY(file) file_tree;
1742c436d48SGleb Smirnoff kvaddr_t xf_data;
1752c436d48SGleb Smirnoff pid_t xf_pid;
1762c436d48SGleb Smirnoff uid_t xf_uid;
1772c436d48SGleb Smirnoff int xf_fd;
1782c436d48SGleb Smirnoff };
1792c436d48SGleb Smirnoff
1802c436d48SGleb Smirnoff static RB_HEAD(files_t, file) ftree = RB_INITIALIZER(&ftree);
1812c436d48SGleb Smirnoff static int64_t
file_compare(const struct file * a,const struct file * b)1822c436d48SGleb Smirnoff file_compare(const struct file *a, const struct file *b)
1832c436d48SGleb Smirnoff {
1842c436d48SGleb Smirnoff return ((int64_t)(a->xf_data/2 - b->xf_data/2));
1852c436d48SGleb Smirnoff }
1862c436d48SGleb Smirnoff RB_GENERATE_STATIC(files_t, file, file_tree, file_compare);
1872c436d48SGleb Smirnoff
1882c436d48SGleb Smirnoff static struct file *files;
1892c436d48SGleb Smirnoff static int nfiles;
190ca007d91SDag-Erling Smørgrav
191c5a2d8c5SRyan Moeller static cap_channel_t *capnet;
192c5a2d8c5SRyan Moeller static cap_channel_t *capnetdb;
193c5a2d8c5SRyan Moeller static cap_channel_t *capsysctl;
1947ad30f58SMariusz Zaborski static cap_channel_t *cappwd;
195c5a2d8c5SRyan Moeller
196ca007d91SDag-Erling Smørgrav static int
xprintf(const char * fmt,...)197ca007d91SDag-Erling Smørgrav xprintf(const char *fmt, ...)
198ca007d91SDag-Erling Smørgrav {
199ca007d91SDag-Erling Smørgrav va_list ap;
200ca007d91SDag-Erling Smørgrav int len;
201ca007d91SDag-Erling Smørgrav
202ca007d91SDag-Erling Smørgrav va_start(ap, fmt);
203ca007d91SDag-Erling Smørgrav len = vprintf(fmt, ap);
204ca007d91SDag-Erling Smørgrav va_end(ap);
205ca007d91SDag-Erling Smørgrav if (len < 0)
206ca007d91SDag-Erling Smørgrav err(1, "printf()");
207ca007d91SDag-Erling Smørgrav return (len);
208ca007d91SDag-Erling Smørgrav }
209ca007d91SDag-Erling Smørgrav
21008e77283SAlexander V. Chernikov static bool
_check_ksize(size_t received_size,size_t expected_size,const char * struct_name)21108e77283SAlexander V. Chernikov _check_ksize(size_t received_size, size_t expected_size, const char *struct_name)
21208e77283SAlexander V. Chernikov {
21308e77283SAlexander V. Chernikov if (received_size != expected_size) {
21408e77283SAlexander V. Chernikov warnx("%s size mismatch: expected %zd, received %zd",
21508e77283SAlexander V. Chernikov struct_name, expected_size, received_size);
21608e77283SAlexander V. Chernikov return false;
21708e77283SAlexander V. Chernikov }
21808e77283SAlexander V. Chernikov return true;
21908e77283SAlexander V. Chernikov }
22008e77283SAlexander V. Chernikov #define check_ksize(_sz, _struct) (_check_ksize(_sz, sizeof(_struct), #_struct))
22108e77283SAlexander V. Chernikov
22208e77283SAlexander V. Chernikov static void
_enforce_ksize(size_t received_size,size_t expected_size,const char * struct_name)22308e77283SAlexander V. Chernikov _enforce_ksize(size_t received_size, size_t expected_size, const char *struct_name)
22408e77283SAlexander V. Chernikov {
22508e77283SAlexander V. Chernikov if (received_size != expected_size) {
22608e77283SAlexander V. Chernikov errx(1, "fatal: struct %s size mismatch: expected %zd, received %zd",
22708e77283SAlexander V. Chernikov struct_name, expected_size, received_size);
22808e77283SAlexander V. Chernikov }
22908e77283SAlexander V. Chernikov }
23008e77283SAlexander V. Chernikov #define enforce_ksize(_sz, _struct) (_enforce_ksize(_sz, sizeof(_struct), #_struct))
23108e77283SAlexander V. Chernikov
2321f3d67aaSGiorgos Keramidas static int
get_proto_type(const char * proto)2331f3d67aaSGiorgos Keramidas get_proto_type(const char *proto)
2341f3d67aaSGiorgos Keramidas {
2351f3d67aaSGiorgos Keramidas struct protoent *pent;
2361f3d67aaSGiorgos Keramidas
2371f3d67aaSGiorgos Keramidas if (strlen(proto) == 0)
2381f3d67aaSGiorgos Keramidas return (0);
239bfb5947bSMariusz Zaborski if (capnetdb != NULL)
240c5a2d8c5SRyan Moeller pent = cap_getprotobyname(capnetdb, proto);
241bfb5947bSMariusz Zaborski else
242bfb5947bSMariusz Zaborski pent = getprotobyname(proto);
2431f3d67aaSGiorgos Keramidas if (pent == NULL) {
244c5a2d8c5SRyan Moeller warn("cap_getprotobyname");
2451f3d67aaSGiorgos Keramidas return (-1);
2461f3d67aaSGiorgos Keramidas }
2471f3d67aaSGiorgos Keramidas return (pent->p_proto);
2481f3d67aaSGiorgos Keramidas }
2491f3d67aaSGiorgos Keramidas
250b8e20e2dSHiroki Sato static void
init_protos(int num)251b8e20e2dSHiroki Sato init_protos(int num)
2521f3d67aaSGiorgos Keramidas {
2531f3d67aaSGiorgos Keramidas int proto_count = 0;
2541f3d67aaSGiorgos Keramidas
2551f3d67aaSGiorgos Keramidas if (num > 0) {
2561f3d67aaSGiorgos Keramidas proto_count = num;
2571f3d67aaSGiorgos Keramidas } else {
2581f3d67aaSGiorgos Keramidas /* Find the maximum number of possible protocols. */
2591f3d67aaSGiorgos Keramidas while (getprotoent() != NULL)
2601f3d67aaSGiorgos Keramidas proto_count++;
2611f3d67aaSGiorgos Keramidas endprotoent();
2621f3d67aaSGiorgos Keramidas }
2631f3d67aaSGiorgos Keramidas
2641f3d67aaSGiorgos Keramidas if ((protos = malloc(sizeof(int) * proto_count)) == NULL)
2651f3d67aaSGiorgos Keramidas err(1, "malloc");
2661f3d67aaSGiorgos Keramidas numprotos = proto_count;
2671f3d67aaSGiorgos Keramidas }
2681f3d67aaSGiorgos Keramidas
2691f3d67aaSGiorgos Keramidas static int
parse_protos(char * protospec)2701f3d67aaSGiorgos Keramidas parse_protos(char *protospec)
2711f3d67aaSGiorgos Keramidas {
2721f3d67aaSGiorgos Keramidas char *prot;
2731f3d67aaSGiorgos Keramidas int proto_type, proto_index;
2741f3d67aaSGiorgos Keramidas
2751f3d67aaSGiorgos Keramidas if (protospec == NULL)
2761f3d67aaSGiorgos Keramidas return (-1);
2771f3d67aaSGiorgos Keramidas
2781f3d67aaSGiorgos Keramidas init_protos(0);
2791f3d67aaSGiorgos Keramidas proto_index = 0;
280b8e20e2dSHiroki Sato while ((prot = strsep(&protospec, ",")) != NULL) {
2811f3d67aaSGiorgos Keramidas if (strlen(prot) == 0)
2821f3d67aaSGiorgos Keramidas continue;
2831f3d67aaSGiorgos Keramidas proto_type = get_proto_type(prot);
2841f3d67aaSGiorgos Keramidas if (proto_type != -1)
2851f3d67aaSGiorgos Keramidas protos[proto_index++] = proto_type;
2861f3d67aaSGiorgos Keramidas }
2871f3d67aaSGiorgos Keramidas numprotos = proto_index;
2881f3d67aaSGiorgos Keramidas return (proto_index);
2891f3d67aaSGiorgos Keramidas }
2901f3d67aaSGiorgos Keramidas
291ca007d91SDag-Erling Smørgrav static void
parse_ports(const char * portspec)292ca007d91SDag-Erling Smørgrav parse_ports(const char *portspec)
293ca007d91SDag-Erling Smørgrav {
294ca007d91SDag-Erling Smørgrav const char *p, *q;
295ca007d91SDag-Erling Smørgrav int port, end;
296ca007d91SDag-Erling Smørgrav
297ca007d91SDag-Erling Smørgrav if (ports == NULL)
2989efed1e6SRobert Drehmel if ((ports = calloc(65536 / INT_BIT, sizeof(int))) == NULL)
299ca007d91SDag-Erling Smørgrav err(1, "calloc()");
300ca007d91SDag-Erling Smørgrav p = portspec;
301ca007d91SDag-Erling Smørgrav while (*p != '\0') {
302ca007d91SDag-Erling Smørgrav if (!isdigit(*p))
303ca007d91SDag-Erling Smørgrav errx(1, "syntax error in port range");
304ca007d91SDag-Erling Smørgrav for (q = p; *q != '\0' && isdigit(*q); ++q)
305ca007d91SDag-Erling Smørgrav /* nothing */ ;
306ca007d91SDag-Erling Smørgrav for (port = 0; p < q; ++p)
307ca007d91SDag-Erling Smørgrav port = port * 10 + digittoint(*p);
308ca007d91SDag-Erling Smørgrav if (port < 0 || port > 65535)
309ca007d91SDag-Erling Smørgrav errx(1, "invalid port number");
310ca007d91SDag-Erling Smørgrav SET_PORT(port);
311ca007d91SDag-Erling Smørgrav switch (*p) {
312ca007d91SDag-Erling Smørgrav case '-':
313ca007d91SDag-Erling Smørgrav ++p;
314ca007d91SDag-Erling Smørgrav break;
315ca007d91SDag-Erling Smørgrav case ',':
316ca007d91SDag-Erling Smørgrav ++p;
317ca007d91SDag-Erling Smørgrav /* fall through */
318ca007d91SDag-Erling Smørgrav case '\0':
319ca007d91SDag-Erling Smørgrav default:
320ca007d91SDag-Erling Smørgrav continue;
321ca007d91SDag-Erling Smørgrav }
322ca007d91SDag-Erling Smørgrav for (q = p; *q != '\0' && isdigit(*q); ++q)
323ca007d91SDag-Erling Smørgrav /* nothing */ ;
324ca007d91SDag-Erling Smørgrav for (end = 0; p < q; ++p)
325ca007d91SDag-Erling Smørgrav end = end * 10 + digittoint(*p);
326ca007d91SDag-Erling Smørgrav if (end < port || end > 65535)
327ca007d91SDag-Erling Smørgrav errx(1, "invalid port number");
328ca007d91SDag-Erling Smørgrav while (port++ < end)
329ca007d91SDag-Erling Smørgrav SET_PORT(port);
330ca007d91SDag-Erling Smørgrav if (*p == ',')
331ca007d91SDag-Erling Smørgrav ++p;
332ca007d91SDag-Erling Smørgrav }
333ca007d91SDag-Erling Smørgrav }
334ca007d91SDag-Erling Smørgrav
335ca007d91SDag-Erling Smørgrav static void
sockaddr(struct sockaddr_storage * ss,int af,void * addr,int port)336b8e20e2dSHiroki Sato sockaddr(struct sockaddr_storage *ss, int af, void *addr, int port)
337ca007d91SDag-Erling Smørgrav {
338ca007d91SDag-Erling Smørgrav struct sockaddr_in *sin4;
339ca007d91SDag-Erling Smørgrav struct sockaddr_in6 *sin6;
340ca007d91SDag-Erling Smørgrav
341b8e20e2dSHiroki Sato bzero(ss, sizeof(*ss));
342ca007d91SDag-Erling Smørgrav switch (af) {
343ca007d91SDag-Erling Smørgrav case AF_INET:
344b8e20e2dSHiroki Sato sin4 = sstosin(ss);
345b8e20e2dSHiroki Sato sin4->sin_len = sizeof(*sin4);
346ca007d91SDag-Erling Smørgrav sin4->sin_family = af;
347ca007d91SDag-Erling Smørgrav sin4->sin_port = port;
348ca007d91SDag-Erling Smørgrav sin4->sin_addr = *(struct in_addr *)addr;
349ca007d91SDag-Erling Smørgrav break;
350ca007d91SDag-Erling Smørgrav case AF_INET6:
351b8e20e2dSHiroki Sato sin6 = sstosin6(ss);
352b8e20e2dSHiroki Sato sin6->sin6_len = sizeof(*sin6);
353ca007d91SDag-Erling Smørgrav sin6->sin6_family = af;
354ca007d91SDag-Erling Smørgrav sin6->sin6_port = port;
355ca007d91SDag-Erling Smørgrav sin6->sin6_addr = *(struct in6_addr *)addr;
356b8e20e2dSHiroki Sato #define s6_addr16 __u6_addr.__u6_addr16
357b8e20e2dSHiroki Sato if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr)) {
358b8e20e2dSHiroki Sato sin6->sin6_scope_id =
359b8e20e2dSHiroki Sato ntohs(sin6->sin6_addr.s6_addr16[1]);
360b8e20e2dSHiroki Sato sin6->sin6_addr.s6_addr16[1] = 0;
361b8e20e2dSHiroki Sato }
362ca007d91SDag-Erling Smørgrav break;
363ca007d91SDag-Erling Smørgrav default:
364ca007d91SDag-Erling Smørgrav abort();
365ca007d91SDag-Erling Smørgrav }
366ca007d91SDag-Erling Smørgrav }
367ca007d91SDag-Erling Smørgrav
368ca007d91SDag-Erling Smørgrav static void
free_socket(struct sock * sock)369bedcf91dSMichael Tuexen free_socket(struct sock *sock)
370bedcf91dSMichael Tuexen {
371bedcf91dSMichael Tuexen struct addr *cur, *next;
372bedcf91dSMichael Tuexen
373bedcf91dSMichael Tuexen cur = sock->laddr;
374bedcf91dSMichael Tuexen while (cur != NULL) {
375bedcf91dSMichael Tuexen next = cur->next;
376bedcf91dSMichael Tuexen free(cur);
377bedcf91dSMichael Tuexen cur = next;
378bedcf91dSMichael Tuexen }
379bedcf91dSMichael Tuexen cur = sock->faddr;
380bedcf91dSMichael Tuexen while (cur != NULL) {
381bedcf91dSMichael Tuexen next = cur->next;
382bedcf91dSMichael Tuexen free(cur);
383bedcf91dSMichael Tuexen cur = next;
384bedcf91dSMichael Tuexen }
385bedcf91dSMichael Tuexen free(sock);
386bedcf91dSMichael Tuexen }
387bedcf91dSMichael Tuexen
388bedcf91dSMichael Tuexen static void
gather_sctp(void)389d5b4aa90SMichael Tuexen gather_sctp(void)
390d5b4aa90SMichael Tuexen {
391d5b4aa90SMichael Tuexen struct sock *sock;
392d5b4aa90SMichael Tuexen struct addr *laddr, *prev_laddr, *faddr, *prev_faddr;
393d5b4aa90SMichael Tuexen struct xsctp_inpcb *xinpcb;
394d5b4aa90SMichael Tuexen struct xsctp_tcb *xstcb;
395d5b4aa90SMichael Tuexen struct xsctp_raddr *xraddr;
396d5b4aa90SMichael Tuexen struct xsctp_laddr *xladdr;
397d5b4aa90SMichael Tuexen const char *varname;
398d5b4aa90SMichael Tuexen size_t len, offset;
399d5b4aa90SMichael Tuexen char *buf;
400a83d596fSGleb Smirnoff int vflag;
401d5b4aa90SMichael Tuexen int no_stcb, local_all_loopback, foreign_all_loopback;
402d5b4aa90SMichael Tuexen
403d5b4aa90SMichael Tuexen vflag = 0;
404d5b4aa90SMichael Tuexen if (opt_4)
405d5b4aa90SMichael Tuexen vflag |= INP_IPV4;
406d5b4aa90SMichael Tuexen if (opt_6)
407d5b4aa90SMichael Tuexen vflag |= INP_IPV6;
408d5b4aa90SMichael Tuexen
409d5b4aa90SMichael Tuexen varname = "net.inet.sctp.assoclist";
410c5a2d8c5SRyan Moeller if (cap_sysctlbyname(capsysctl, varname, 0, &len, 0, 0) < 0) {
411d5b4aa90SMichael Tuexen if (errno != ENOENT)
412c5a2d8c5SRyan Moeller err(1, "cap_sysctlbyname()");
413d5b4aa90SMichael Tuexen return;
414d5b4aa90SMichael Tuexen }
415d5b4aa90SMichael Tuexen if ((buf = (char *)malloc(len)) == NULL) {
416d5b4aa90SMichael Tuexen err(1, "malloc()");
417d5b4aa90SMichael Tuexen return;
418d5b4aa90SMichael Tuexen }
419c5a2d8c5SRyan Moeller if (cap_sysctlbyname(capsysctl, varname, buf, &len, 0, 0) < 0) {
420c5a2d8c5SRyan Moeller err(1, "cap_sysctlbyname()");
421d5b4aa90SMichael Tuexen free(buf);
422d5b4aa90SMichael Tuexen return;
423d5b4aa90SMichael Tuexen }
424d5b4aa90SMichael Tuexen xinpcb = (struct xsctp_inpcb *)(void *)buf;
425d5b4aa90SMichael Tuexen offset = sizeof(struct xsctp_inpcb);
426d5b4aa90SMichael Tuexen while ((offset < len) && (xinpcb->last == 0)) {
427d5b4aa90SMichael Tuexen if ((sock = calloc(1, sizeof *sock)) == NULL)
428d5b4aa90SMichael Tuexen err(1, "malloc()");
429d5b4aa90SMichael Tuexen sock->socket = xinpcb->socket;
430d5b4aa90SMichael Tuexen sock->proto = IPPROTO_SCTP;
431d5b4aa90SMichael Tuexen sock->protoname = "sctp";
432c1eb13c7SMichael Tuexen if (xinpcb->maxqlen == 0)
4336414db1bSMichael Tuexen sock->state = SCTP_CLOSED;
4346414db1bSMichael Tuexen else
4356414db1bSMichael Tuexen sock->state = SCTP_LISTEN;
436d5b4aa90SMichael Tuexen if (xinpcb->flags & SCTP_PCB_FLAGS_BOUND_V6) {
437d5b4aa90SMichael Tuexen sock->family = AF_INET6;
438edc9c7fcSMichael Tuexen /*
439edc9c7fcSMichael Tuexen * Currently there is no way to distinguish between
440edc9c7fcSMichael Tuexen * IPv6 only sockets or dual family sockets.
441edc9c7fcSMichael Tuexen * So mark it as dual socket.
442edc9c7fcSMichael Tuexen */
443edc9c7fcSMichael Tuexen sock->vflag = INP_IPV6 | INP_IPV4;
444d5b4aa90SMichael Tuexen } else {
445d5b4aa90SMichael Tuexen sock->family = AF_INET;
446d5b4aa90SMichael Tuexen sock->vflag = INP_IPV4;
447d5b4aa90SMichael Tuexen }
448d5b4aa90SMichael Tuexen prev_laddr = NULL;
449d5b4aa90SMichael Tuexen local_all_loopback = 1;
450d5b4aa90SMichael Tuexen while (offset < len) {
451d5b4aa90SMichael Tuexen xladdr = (struct xsctp_laddr *)(void *)(buf + offset);
452d5b4aa90SMichael Tuexen offset += sizeof(struct xsctp_laddr);
453d5b4aa90SMichael Tuexen if (xladdr->last == 1)
454d5b4aa90SMichael Tuexen break;
455d5b4aa90SMichael Tuexen if ((laddr = calloc(1, sizeof(struct addr))) == NULL)
456d5b4aa90SMichael Tuexen err(1, "malloc()");
457d5b4aa90SMichael Tuexen switch (xladdr->address.sa.sa_family) {
458d5b4aa90SMichael Tuexen case AF_INET:
459d5b4aa90SMichael Tuexen #define __IN_IS_ADDR_LOOPBACK(pina) \
460d5b4aa90SMichael Tuexen ((ntohl((pina)->s_addr) >> IN_CLASSA_NSHIFT) == IN_LOOPBACKNET)
46127569d01SRenato Botelho if (!__IN_IS_ADDR_LOOPBACK(
46227569d01SRenato Botelho &xladdr->address.sin.sin_addr))
463d5b4aa90SMichael Tuexen local_all_loopback = 0;
464d5b4aa90SMichael Tuexen #undef __IN_IS_ADDR_LOOPBACK
46527569d01SRenato Botelho sockaddr(&laddr->address, AF_INET,
466d5b4aa90SMichael Tuexen &xladdr->address.sin.sin_addr,
467d5b4aa90SMichael Tuexen htons(xinpcb->local_port));
468d5b4aa90SMichael Tuexen break;
469d5b4aa90SMichael Tuexen case AF_INET6:
47027569d01SRenato Botelho if (!IN6_IS_ADDR_LOOPBACK(
47127569d01SRenato Botelho &xladdr->address.sin6.sin6_addr))
472d5b4aa90SMichael Tuexen local_all_loopback = 0;
47327569d01SRenato Botelho sockaddr(&laddr->address, AF_INET6,
474d5b4aa90SMichael Tuexen &xladdr->address.sin6.sin6_addr,
475d5b4aa90SMichael Tuexen htons(xinpcb->local_port));
476d5b4aa90SMichael Tuexen break;
477d5b4aa90SMichael Tuexen default:
478463a577bSEitan Adler errx(1, "address family %d not supported",
479d5b4aa90SMichael Tuexen xladdr->address.sa.sa_family);
480d5b4aa90SMichael Tuexen }
481d5b4aa90SMichael Tuexen laddr->next = NULL;
482d5b4aa90SMichael Tuexen if (prev_laddr == NULL)
483d5b4aa90SMichael Tuexen sock->laddr = laddr;
484d5b4aa90SMichael Tuexen else
485d5b4aa90SMichael Tuexen prev_laddr->next = laddr;
486d5b4aa90SMichael Tuexen prev_laddr = laddr;
487d5b4aa90SMichael Tuexen }
488d5b4aa90SMichael Tuexen if (sock->laddr == NULL) {
48927569d01SRenato Botelho if ((sock->laddr =
49027569d01SRenato Botelho calloc(1, sizeof(struct addr))) == NULL)
491d5b4aa90SMichael Tuexen err(1, "malloc()");
492d5b4aa90SMichael Tuexen sock->laddr->address.ss_family = sock->family;
493d5b4aa90SMichael Tuexen if (sock->family == AF_INET)
49427569d01SRenato Botelho sock->laddr->address.ss_len =
49527569d01SRenato Botelho sizeof(struct sockaddr_in);
496d5b4aa90SMichael Tuexen else
49727569d01SRenato Botelho sock->laddr->address.ss_len =
49827569d01SRenato Botelho sizeof(struct sockaddr_in6);
499d5b4aa90SMichael Tuexen local_all_loopback = 0;
500d5b4aa90SMichael Tuexen }
501d5b4aa90SMichael Tuexen if ((sock->faddr = calloc(1, sizeof(struct addr))) == NULL)
502d5b4aa90SMichael Tuexen err(1, "malloc()");
503d5b4aa90SMichael Tuexen sock->faddr->address.ss_family = sock->family;
504d5b4aa90SMichael Tuexen if (sock->family == AF_INET)
50527569d01SRenato Botelho sock->faddr->address.ss_len =
50627569d01SRenato Botelho sizeof(struct sockaddr_in);
507d5b4aa90SMichael Tuexen else
50827569d01SRenato Botelho sock->faddr->address.ss_len =
50927569d01SRenato Botelho sizeof(struct sockaddr_in6);
510d5b4aa90SMichael Tuexen no_stcb = 1;
511d5b4aa90SMichael Tuexen while (offset < len) {
512d5b4aa90SMichael Tuexen xstcb = (struct xsctp_tcb *)(void *)(buf + offset);
513d5b4aa90SMichael Tuexen offset += sizeof(struct xsctp_tcb);
514bedcf91dSMichael Tuexen if (no_stcb) {
51527569d01SRenato Botelho if (opt_l && (sock->vflag & vflag) &&
516d5b4aa90SMichael Tuexen (!opt_L || !local_all_loopback) &&
517d5b4aa90SMichael Tuexen ((xinpcb->flags & SCTP_PCB_FLAGS_UDPTYPE) ||
518d5b4aa90SMichael Tuexen (xstcb->last == 1))) {
519a83d596fSGleb Smirnoff RB_INSERT(socks_t, &socks, sock);
520bedcf91dSMichael Tuexen } else {
521bedcf91dSMichael Tuexen free_socket(sock);
522bedcf91dSMichael Tuexen }
523d5b4aa90SMichael Tuexen }
524d5b4aa90SMichael Tuexen if (xstcb->last == 1)
525d5b4aa90SMichael Tuexen break;
526d5b4aa90SMichael Tuexen no_stcb = 0;
527d5b4aa90SMichael Tuexen if (opt_c) {
528d5b4aa90SMichael Tuexen if ((sock = calloc(1, sizeof *sock)) == NULL)
529d5b4aa90SMichael Tuexen err(1, "malloc()");
530d5b4aa90SMichael Tuexen sock->socket = xinpcb->socket;
531d5b4aa90SMichael Tuexen sock->proto = IPPROTO_SCTP;
532d5b4aa90SMichael Tuexen sock->protoname = "sctp";
5336414db1bSMichael Tuexen sock->state = (int)xstcb->state;
534d5b4aa90SMichael Tuexen if (xinpcb->flags & SCTP_PCB_FLAGS_BOUND_V6) {
535d5b4aa90SMichael Tuexen sock->family = AF_INET6;
536edc9c7fcSMichael Tuexen /*
537edc9c7fcSMichael Tuexen * Currently there is no way to distinguish
538edc9c7fcSMichael Tuexen * between IPv6 only sockets or dual family
539edc9c7fcSMichael Tuexen * sockets. So mark it as dual socket.
540edc9c7fcSMichael Tuexen */
541edc9c7fcSMichael Tuexen sock->vflag = INP_IPV6 | INP_IPV4;
542d5b4aa90SMichael Tuexen } else {
543d5b4aa90SMichael Tuexen sock->family = AF_INET;
544d5b4aa90SMichael Tuexen sock->vflag = INP_IPV4;
545d5b4aa90SMichael Tuexen }
546d5b4aa90SMichael Tuexen }
547d5b4aa90SMichael Tuexen prev_laddr = NULL;
548d5b4aa90SMichael Tuexen local_all_loopback = 1;
549d5b4aa90SMichael Tuexen while (offset < len) {
55027569d01SRenato Botelho xladdr = (struct xsctp_laddr *)(void *)(buf +
55127569d01SRenato Botelho offset);
552d5b4aa90SMichael Tuexen offset += sizeof(struct xsctp_laddr);
553d5b4aa90SMichael Tuexen if (xladdr->last == 1)
554d5b4aa90SMichael Tuexen break;
555d5b4aa90SMichael Tuexen if (!opt_c)
556d5b4aa90SMichael Tuexen continue;
55727569d01SRenato Botelho laddr = calloc(1, sizeof(struct addr));
55827569d01SRenato Botelho if (laddr == NULL)
559d5b4aa90SMichael Tuexen err(1, "malloc()");
560d5b4aa90SMichael Tuexen switch (xladdr->address.sa.sa_family) {
561d5b4aa90SMichael Tuexen case AF_INET:
562d5b4aa90SMichael Tuexen #define __IN_IS_ADDR_LOOPBACK(pina) \
563d5b4aa90SMichael Tuexen ((ntohl((pina)->s_addr) >> IN_CLASSA_NSHIFT) == IN_LOOPBACKNET)
56427569d01SRenato Botelho if (!__IN_IS_ADDR_LOOPBACK(
56527569d01SRenato Botelho &xladdr->address.sin.sin_addr))
566d5b4aa90SMichael Tuexen local_all_loopback = 0;
567d5b4aa90SMichael Tuexen #undef __IN_IS_ADDR_LOOPBACK
56827569d01SRenato Botelho sockaddr(&laddr->address, AF_INET,
569d5b4aa90SMichael Tuexen &xladdr->address.sin.sin_addr,
570d5b4aa90SMichael Tuexen htons(xstcb->local_port));
571d5b4aa90SMichael Tuexen break;
572d5b4aa90SMichael Tuexen case AF_INET6:
57327569d01SRenato Botelho if (!IN6_IS_ADDR_LOOPBACK(
57427569d01SRenato Botelho &xladdr->address.sin6.sin6_addr))
575d5b4aa90SMichael Tuexen local_all_loopback = 0;
57627569d01SRenato Botelho sockaddr(&laddr->address, AF_INET6,
577d5b4aa90SMichael Tuexen &xladdr->address.sin6.sin6_addr,
578d5b4aa90SMichael Tuexen htons(xstcb->local_port));
579d5b4aa90SMichael Tuexen break;
580d5b4aa90SMichael Tuexen default:
58127569d01SRenato Botelho errx(1,
58227569d01SRenato Botelho "address family %d not supported",
583d5b4aa90SMichael Tuexen xladdr->address.sa.sa_family);
584d5b4aa90SMichael Tuexen }
585d5b4aa90SMichael Tuexen laddr->next = NULL;
586d5b4aa90SMichael Tuexen if (prev_laddr == NULL)
587d5b4aa90SMichael Tuexen sock->laddr = laddr;
588d5b4aa90SMichael Tuexen else
589d5b4aa90SMichael Tuexen prev_laddr->next = laddr;
590d5b4aa90SMichael Tuexen prev_laddr = laddr;
591d5b4aa90SMichael Tuexen }
592d5b4aa90SMichael Tuexen prev_faddr = NULL;
593d5b4aa90SMichael Tuexen foreign_all_loopback = 1;
594d5b4aa90SMichael Tuexen while (offset < len) {
59527569d01SRenato Botelho xraddr = (struct xsctp_raddr *)(void *)(buf +
59627569d01SRenato Botelho offset);
597d5b4aa90SMichael Tuexen offset += sizeof(struct xsctp_raddr);
598d5b4aa90SMichael Tuexen if (xraddr->last == 1)
599d5b4aa90SMichael Tuexen break;
600d5b4aa90SMichael Tuexen if (!opt_c)
601d5b4aa90SMichael Tuexen continue;
60227569d01SRenato Botelho faddr = calloc(1, sizeof(struct addr));
60327569d01SRenato Botelho if (faddr == NULL)
604d5b4aa90SMichael Tuexen err(1, "malloc()");
605d5b4aa90SMichael Tuexen switch (xraddr->address.sa.sa_family) {
606d5b4aa90SMichael Tuexen case AF_INET:
607d5b4aa90SMichael Tuexen #define __IN_IS_ADDR_LOOPBACK(pina) \
608d5b4aa90SMichael Tuexen ((ntohl((pina)->s_addr) >> IN_CLASSA_NSHIFT) == IN_LOOPBACKNET)
60927569d01SRenato Botelho if (!__IN_IS_ADDR_LOOPBACK(
61027569d01SRenato Botelho &xraddr->address.sin.sin_addr))
611d5b4aa90SMichael Tuexen foreign_all_loopback = 0;
612d5b4aa90SMichael Tuexen #undef __IN_IS_ADDR_LOOPBACK
61327569d01SRenato Botelho sockaddr(&faddr->address, AF_INET,
614d5b4aa90SMichael Tuexen &xraddr->address.sin.sin_addr,
615d5b4aa90SMichael Tuexen htons(xstcb->remote_port));
616d5b4aa90SMichael Tuexen break;
617d5b4aa90SMichael Tuexen case AF_INET6:
61827569d01SRenato Botelho if (!IN6_IS_ADDR_LOOPBACK(
61927569d01SRenato Botelho &xraddr->address.sin6.sin6_addr))
620d5b4aa90SMichael Tuexen foreign_all_loopback = 0;
62127569d01SRenato Botelho sockaddr(&faddr->address, AF_INET6,
622d5b4aa90SMichael Tuexen &xraddr->address.sin6.sin6_addr,
623d5b4aa90SMichael Tuexen htons(xstcb->remote_port));
624d5b4aa90SMichael Tuexen break;
625d5b4aa90SMichael Tuexen default:
62627569d01SRenato Botelho errx(1,
62727569d01SRenato Botelho "address family %d not supported",
628d5b4aa90SMichael Tuexen xraddr->address.sa.sa_family);
629d5b4aa90SMichael Tuexen }
63049b836f2SMichael Tuexen faddr->encaps_port = xraddr->encaps_port;
631e389705eSMichael Tuexen faddr->state = xraddr->state;
632d5b4aa90SMichael Tuexen faddr->next = NULL;
633d5b4aa90SMichael Tuexen if (prev_faddr == NULL)
634d5b4aa90SMichael Tuexen sock->faddr = faddr;
635d5b4aa90SMichael Tuexen else
636d5b4aa90SMichael Tuexen prev_faddr->next = faddr;
637d5b4aa90SMichael Tuexen prev_faddr = faddr;
638d5b4aa90SMichael Tuexen }
639bedcf91dSMichael Tuexen if (opt_c) {
640edc9c7fcSMichael Tuexen if ((sock->vflag & vflag) &&
641edc9c7fcSMichael Tuexen (!opt_L ||
64227569d01SRenato Botelho !(local_all_loopback ||
64327569d01SRenato Botelho foreign_all_loopback))) {
644a83d596fSGleb Smirnoff RB_INSERT(socks_t, &socks, sock);
645bedcf91dSMichael Tuexen } else {
646bedcf91dSMichael Tuexen free_socket(sock);
647bedcf91dSMichael Tuexen }
648d5b4aa90SMichael Tuexen }
649d5b4aa90SMichael Tuexen }
650d5b4aa90SMichael Tuexen xinpcb = (struct xsctp_inpcb *)(void *)(buf + offset);
651d5b4aa90SMichael Tuexen offset += sizeof(struct xsctp_inpcb);
652d5b4aa90SMichael Tuexen }
653d5b4aa90SMichael Tuexen free(buf);
654d5b4aa90SMichael Tuexen }
655d5b4aa90SMichael Tuexen
656d5b4aa90SMichael Tuexen static void
gather_inet(int proto)657ca007d91SDag-Erling Smørgrav gather_inet(int proto)
658ca007d91SDag-Erling Smørgrav {
659ca007d91SDag-Erling Smørgrav struct xinpgen *xig, *exig;
660ca007d91SDag-Erling Smørgrav struct xinpcb *xip;
661bf40d2caSGleb Smirnoff struct xtcpcb *xtp = NULL;
662ca007d91SDag-Erling Smørgrav struct xsocket *so;
663ca007d91SDag-Erling Smørgrav struct sock *sock;
664e6f718c7SMichael Tuexen struct addr *laddr, *faddr;
665ca007d91SDag-Erling Smørgrav const char *varname, *protoname;
666ca007d91SDag-Erling Smørgrav size_t len, bufsize;
667ca007d91SDag-Erling Smørgrav void *buf;
668a83d596fSGleb Smirnoff int retry, vflag;
669ca007d91SDag-Erling Smørgrav
6706eb1d5baSMichael Tuexen vflag = 0;
671ca007d91SDag-Erling Smørgrav if (opt_4)
672ca007d91SDag-Erling Smørgrav vflag |= INP_IPV4;
673ca007d91SDag-Erling Smørgrav if (opt_6)
674ca007d91SDag-Erling Smørgrav vflag |= INP_IPV6;
675ca007d91SDag-Erling Smørgrav
676ca007d91SDag-Erling Smørgrav switch (proto) {
677ca007d91SDag-Erling Smørgrav case IPPROTO_TCP:
678ca007d91SDag-Erling Smørgrav varname = "net.inet.tcp.pcblist";
679ca007d91SDag-Erling Smørgrav protoname = "tcp";
680ca007d91SDag-Erling Smørgrav break;
681ca007d91SDag-Erling Smørgrav case IPPROTO_UDP:
682ca007d91SDag-Erling Smørgrav varname = "net.inet.udp.pcblist";
683ca007d91SDag-Erling Smørgrav protoname = "udp";
684ca007d91SDag-Erling Smørgrav break;
6852cfbdf89SRuslan Ermilov case IPPROTO_DIVERT:
6862cfbdf89SRuslan Ermilov varname = "net.inet.divert.pcblist";
6872cfbdf89SRuslan Ermilov protoname = "div";
6882cfbdf89SRuslan Ermilov break;
689ca007d91SDag-Erling Smørgrav default:
6901f3d67aaSGiorgos Keramidas errx(1, "protocol %d not supported", proto);
691ca007d91SDag-Erling Smørgrav }
692ca007d91SDag-Erling Smørgrav
693ca007d91SDag-Erling Smørgrav buf = NULL;
694ca007d91SDag-Erling Smørgrav bufsize = 8192;
695ca007d91SDag-Erling Smørgrav retry = 5;
696ca007d91SDag-Erling Smørgrav do {
697ca007d91SDag-Erling Smørgrav for (;;) {
698ca007d91SDag-Erling Smørgrav if ((buf = realloc(buf, bufsize)) == NULL)
699ca007d91SDag-Erling Smørgrav err(1, "realloc()");
700ca007d91SDag-Erling Smørgrav len = bufsize;
701c5a2d8c5SRyan Moeller if (cap_sysctlbyname(capsysctl, varname, buf, &len,
702c5a2d8c5SRyan Moeller NULL, 0) == 0)
703ca007d91SDag-Erling Smørgrav break;
7044b2a3d41SRuslan Ermilov if (errno == ENOENT)
7054b2a3d41SRuslan Ermilov goto out;
706003e7e49SMikolaj Golub if (errno != ENOMEM || len != bufsize)
707c5a2d8c5SRyan Moeller err(1, "cap_sysctlbyname()");
708ca007d91SDag-Erling Smørgrav bufsize *= 2;
709ca007d91SDag-Erling Smørgrav }
710ca007d91SDag-Erling Smørgrav xig = (struct xinpgen *)buf;
7116dbe8d53SRobert Drehmel exig = (struct xinpgen *)(void *)
7126dbe8d53SRobert Drehmel ((char *)buf + len - sizeof *exig);
71308e77283SAlexander V. Chernikov enforce_ksize(xig->xig_len, struct xinpgen);
71408e77283SAlexander V. Chernikov enforce_ksize(exig->xig_len, struct xinpgen);
715ca007d91SDag-Erling Smørgrav } while (xig->xig_gen != exig->xig_gen && retry--);
716ca007d91SDag-Erling Smørgrav
717ca007d91SDag-Erling Smørgrav if (xig->xig_gen != exig->xig_gen && opt_v)
718ca007d91SDag-Erling Smørgrav warnx("warning: data may be inconsistent");
719ca007d91SDag-Erling Smørgrav
720ca007d91SDag-Erling Smørgrav for (;;) {
7216dbe8d53SRobert Drehmel xig = (struct xinpgen *)(void *)((char *)xig + xig->xig_len);
722ca007d91SDag-Erling Smørgrav if (xig >= exig)
723ca007d91SDag-Erling Smørgrav break;
724ca007d91SDag-Erling Smørgrav switch (proto) {
725ca007d91SDag-Erling Smørgrav case IPPROTO_TCP:
726cc65eb4eSGleb Smirnoff xtp = (struct xtcpcb *)xig;
727cc65eb4eSGleb Smirnoff xip = &xtp->xt_inp;
72808e77283SAlexander V. Chernikov if (!check_ksize(xtp->xt_len, struct xtcpcb))
729ca007d91SDag-Erling Smørgrav goto out;
730cc65eb4eSGleb Smirnoff protoname = xtp->t_flags & TF_TOE ? "toe" : "tcp";
731ca007d91SDag-Erling Smørgrav break;
732ca007d91SDag-Erling Smørgrav case IPPROTO_UDP:
7332cfbdf89SRuslan Ermilov case IPPROTO_DIVERT:
734cc65eb4eSGleb Smirnoff xip = (struct xinpcb *)xig;
73508e77283SAlexander V. Chernikov if (!check_ksize(xip->xi_len, struct xinpcb))
736ca007d91SDag-Erling Smørgrav goto out;
737ca007d91SDag-Erling Smørgrav break;
738ca007d91SDag-Erling Smørgrav default:
7391f3d67aaSGiorgos Keramidas errx(1, "protocol %d not supported", proto);
740ca007d91SDag-Erling Smørgrav }
741cc65eb4eSGleb Smirnoff so = &xip->xi_socket;
742cc65eb4eSGleb Smirnoff if ((xip->inp_vflag & vflag) == 0)
743ca007d91SDag-Erling Smørgrav continue;
744cc65eb4eSGleb Smirnoff if (xip->inp_vflag & INP_IPV4) {
745cc65eb4eSGleb Smirnoff if ((xip->inp_fport == 0 && !opt_l) ||
746cc65eb4eSGleb Smirnoff (xip->inp_fport != 0 && !opt_c))
7471e6690e5SDag-Erling Smørgrav continue;
7489b6ca892SBruce M Simpson #define __IN_IS_ADDR_LOOPBACK(pina) \
7499b6ca892SBruce M Simpson ((ntohl((pina)->s_addr) >> IN_CLASSA_NSHIFT) == IN_LOOPBACKNET)
7509b6ca892SBruce M Simpson if (opt_L &&
751cc65eb4eSGleb Smirnoff (__IN_IS_ADDR_LOOPBACK(&xip->inp_faddr) ||
752cc65eb4eSGleb Smirnoff __IN_IS_ADDR_LOOPBACK(&xip->inp_laddr)))
7539b6ca892SBruce M Simpson continue;
7549b6ca892SBruce M Simpson #undef __IN_IS_ADDR_LOOPBACK
755cc65eb4eSGleb Smirnoff } else if (xip->inp_vflag & INP_IPV6) {
756cc65eb4eSGleb Smirnoff if ((xip->inp_fport == 0 && !opt_l) ||
757cc65eb4eSGleb Smirnoff (xip->inp_fport != 0 && !opt_c))
7581e6690e5SDag-Erling Smørgrav continue;
7599b6ca892SBruce M Simpson if (opt_L &&
760cc65eb4eSGleb Smirnoff (IN6_IS_ADDR_LOOPBACK(&xip->in6p_faddr) ||
761cc65eb4eSGleb Smirnoff IN6_IS_ADDR_LOOPBACK(&xip->in6p_laddr)))
7629b6ca892SBruce M Simpson continue;
7631e6690e5SDag-Erling Smørgrav } else {
7641e6690e5SDag-Erling Smørgrav if (opt_v)
765cc65eb4eSGleb Smirnoff warnx("invalid vflag 0x%x", xip->inp_vflag);
7661e6690e5SDag-Erling Smørgrav continue;
7671e6690e5SDag-Erling Smørgrav }
768b8e20e2dSHiroki Sato if ((sock = calloc(1, sizeof(*sock))) == NULL)
769ca007d91SDag-Erling Smørgrav err(1, "malloc()");
770e6f718c7SMichael Tuexen if ((laddr = calloc(1, sizeof *laddr)) == NULL)
771e6f718c7SMichael Tuexen err(1, "malloc()");
772e6f718c7SMichael Tuexen if ((faddr = calloc(1, sizeof *faddr)) == NULL)
773e6f718c7SMichael Tuexen err(1, "malloc()");
774ca007d91SDag-Erling Smørgrav sock->socket = so->xso_so;
775*9f55128fSGleb Smirnoff sock->pcb = so->so_pcb;
776051a2132SMark Johnston sock->splice_socket = so->so_splice_so;
777ca007d91SDag-Erling Smørgrav sock->proto = proto;
7785f64777aSMichael Tuexen sock->inp_gencnt = xip->inp_gencnt;
779a471d2b4SMark Johnston sock->fibnum = so->so_fibnum;
780cc65eb4eSGleb Smirnoff if (xip->inp_vflag & INP_IPV4) {
781ca007d91SDag-Erling Smørgrav sock->family = AF_INET;
782e6f718c7SMichael Tuexen sockaddr(&laddr->address, sock->family,
783cc65eb4eSGleb Smirnoff &xip->inp_laddr, xip->inp_lport);
784e6f718c7SMichael Tuexen sockaddr(&faddr->address, sock->family,
785cc65eb4eSGleb Smirnoff &xip->inp_faddr, xip->inp_fport);
786cc65eb4eSGleb Smirnoff } else if (xip->inp_vflag & INP_IPV6) {
787ca007d91SDag-Erling Smørgrav sock->family = AF_INET6;
788e6f718c7SMichael Tuexen sockaddr(&laddr->address, sock->family,
789cc65eb4eSGleb Smirnoff &xip->in6p_laddr, xip->inp_lport);
790e6f718c7SMichael Tuexen sockaddr(&faddr->address, sock->family,
791cc65eb4eSGleb Smirnoff &xip->in6p_faddr, xip->inp_fport);
792ca007d91SDag-Erling Smørgrav }
7939e644c23SMichael Tuexen if (proto == IPPROTO_TCP)
7949e644c23SMichael Tuexen faddr->encaps_port = xtp->xt_encaps_port;
795e6f718c7SMichael Tuexen laddr->next = NULL;
796e6f718c7SMichael Tuexen faddr->next = NULL;
797e6f718c7SMichael Tuexen sock->laddr = laddr;
798e6f718c7SMichael Tuexen sock->faddr = faddr;
799cc65eb4eSGleb Smirnoff sock->vflag = xip->inp_vflag;
800e5cccc35SMichael Tuexen if (proto == IPPROTO_TCP) {
801cc65eb4eSGleb Smirnoff sock->state = xtp->t_state;
802e5cccc35SMichael Tuexen memcpy(sock->stack, xtp->xt_stack,
803e5cccc35SMichael Tuexen TCP_FUNCTION_NAME_LEN_MAX);
8042ac089d0SMichael Tuexen memcpy(sock->cc, xtp->xt_cc, TCP_CA_NAME_MAX);
805e5cccc35SMichael Tuexen }
806ca007d91SDag-Erling Smørgrav sock->protoname = protoname;
807a83d596fSGleb Smirnoff if (sock->socket != 0)
808a83d596fSGleb Smirnoff RB_INSERT(socks_t, &socks, sock);
809a83d596fSGleb Smirnoff else
810a83d596fSGleb Smirnoff SLIST_INSERT_HEAD(&nosocks, sock, socket_list);
811ca007d91SDag-Erling Smørgrav }
812ca007d91SDag-Erling Smørgrav out:
813ca007d91SDag-Erling Smørgrav free(buf);
814ca007d91SDag-Erling Smørgrav }
815ca007d91SDag-Erling Smørgrav
816ca007d91SDag-Erling Smørgrav static void
gather_unix(int proto)817ca007d91SDag-Erling Smørgrav gather_unix(int proto)
818ca007d91SDag-Erling Smørgrav {
819ca007d91SDag-Erling Smørgrav struct xunpgen *xug, *exug;
820ca007d91SDag-Erling Smørgrav struct xunpcb *xup;
821ca007d91SDag-Erling Smørgrav struct sock *sock;
822e6f718c7SMichael Tuexen struct addr *laddr, *faddr;
823ca007d91SDag-Erling Smørgrav const char *varname, *protoname;
824ca007d91SDag-Erling Smørgrav size_t len, bufsize;
825ca007d91SDag-Erling Smørgrav void *buf;
826a83d596fSGleb Smirnoff int retry;
827ca007d91SDag-Erling Smørgrav
828ca007d91SDag-Erling Smørgrav switch (proto) {
829ca007d91SDag-Erling Smørgrav case SOCK_STREAM:
830ca007d91SDag-Erling Smørgrav varname = "net.local.stream.pcblist";
831ca007d91SDag-Erling Smørgrav protoname = "stream";
832ca007d91SDag-Erling Smørgrav break;
833ca007d91SDag-Erling Smørgrav case SOCK_DGRAM:
834ca007d91SDag-Erling Smørgrav varname = "net.local.dgram.pcblist";
835ca007d91SDag-Erling Smørgrav protoname = "dgram";
836ca007d91SDag-Erling Smørgrav break;
837b8e20e2dSHiroki Sato case SOCK_SEQPACKET:
838b8e20e2dSHiroki Sato varname = "net.local.seqpacket.pcblist";
839b8e20e2dSHiroki Sato protoname = "seqpac";
840b8e20e2dSHiroki Sato break;
841ca007d91SDag-Erling Smørgrav default:
842ca007d91SDag-Erling Smørgrav abort();
843ca007d91SDag-Erling Smørgrav }
844ca007d91SDag-Erling Smørgrav buf = NULL;
845ca007d91SDag-Erling Smørgrav bufsize = 8192;
846ca007d91SDag-Erling Smørgrav retry = 5;
847ca007d91SDag-Erling Smørgrav do {
848ca007d91SDag-Erling Smørgrav for (;;) {
849ca007d91SDag-Erling Smørgrav if ((buf = realloc(buf, bufsize)) == NULL)
850ca007d91SDag-Erling Smørgrav err(1, "realloc()");
851ca007d91SDag-Erling Smørgrav len = bufsize;
852c5a2d8c5SRyan Moeller if (cap_sysctlbyname(capsysctl, varname, buf, &len,
853c5a2d8c5SRyan Moeller NULL, 0) == 0)
854ca007d91SDag-Erling Smørgrav break;
855003e7e49SMikolaj Golub if (errno != ENOMEM || len != bufsize)
856c5a2d8c5SRyan Moeller err(1, "cap_sysctlbyname()");
857ca007d91SDag-Erling Smørgrav bufsize *= 2;
858ca007d91SDag-Erling Smørgrav }
859ca007d91SDag-Erling Smørgrav xug = (struct xunpgen *)buf;
8606dbe8d53SRobert Drehmel exug = (struct xunpgen *)(void *)
861b8e20e2dSHiroki Sato ((char *)buf + len - sizeof(*exug));
86208e77283SAlexander V. Chernikov if (!check_ksize(xug->xug_len, struct xunpgen) ||
86308e77283SAlexander V. Chernikov !check_ksize(exug->xug_len, struct xunpgen))
864ca007d91SDag-Erling Smørgrav goto out;
865ca007d91SDag-Erling Smørgrav } while (xug->xug_gen != exug->xug_gen && retry--);
866ca007d91SDag-Erling Smørgrav
867ca007d91SDag-Erling Smørgrav if (xug->xug_gen != exug->xug_gen && opt_v)
868ca007d91SDag-Erling Smørgrav warnx("warning: data may be inconsistent");
869ca007d91SDag-Erling Smørgrav
870ca007d91SDag-Erling Smørgrav for (;;) {
8716dbe8d53SRobert Drehmel xug = (struct xunpgen *)(void *)((char *)xug + xug->xug_len);
872ca007d91SDag-Erling Smørgrav if (xug >= exug)
873ca007d91SDag-Erling Smørgrav break;
874ca007d91SDag-Erling Smørgrav xup = (struct xunpcb *)xug;
87508e77283SAlexander V. Chernikov if (!check_ksize(xup->xu_len, struct xunpcb))
876ca007d91SDag-Erling Smørgrav goto out;
877f38b68aeSBrooks Davis if ((xup->unp_conn == 0 && !opt_l) ||
878f38b68aeSBrooks Davis (xup->unp_conn != 0 && !opt_c))
8791e6690e5SDag-Erling Smørgrav continue;
880b8e20e2dSHiroki Sato if ((sock = calloc(1, sizeof(*sock))) == NULL)
881ca007d91SDag-Erling Smørgrav err(1, "malloc()");
882e6f718c7SMichael Tuexen if ((laddr = calloc(1, sizeof *laddr)) == NULL)
883e6f718c7SMichael Tuexen err(1, "malloc()");
884e6f718c7SMichael Tuexen if ((faddr = calloc(1, sizeof *faddr)) == NULL)
885e6f718c7SMichael Tuexen err(1, "malloc()");
886ca007d91SDag-Erling Smørgrav sock->socket = xup->xu_socket.xso_so;
887ca007d91SDag-Erling Smørgrav sock->pcb = xup->xu_unpp;
888ca007d91SDag-Erling Smørgrav sock->proto = proto;
889ca007d91SDag-Erling Smørgrav sock->family = AF_UNIX;
890ca007d91SDag-Erling Smørgrav sock->protoname = protoname;
8910e229f34SGleb Smirnoff if (xup->xu_addr.sun_family == AF_UNIX)
892e6f718c7SMichael Tuexen laddr->address =
8936dbe8d53SRobert Drehmel *(struct sockaddr_storage *)(void *)&xup->xu_addr;
8942c436d48SGleb Smirnoff faddr->conn = xup->unp_conn;
8952c436d48SGleb Smirnoff faddr->firstref = xup->xu_firstref;
8962c436d48SGleb Smirnoff faddr->nextref = xup->xu_nextref;
897e6f718c7SMichael Tuexen laddr->next = NULL;
898e6f718c7SMichael Tuexen faddr->next = NULL;
899e6f718c7SMichael Tuexen sock->laddr = laddr;
900e6f718c7SMichael Tuexen sock->faddr = faddr;
901a83d596fSGleb Smirnoff RB_INSERT(socks_t, &socks, sock);
902a83d596fSGleb Smirnoff RB_INSERT(pcbs_t, &pcbs, sock);
903ca007d91SDag-Erling Smørgrav }
904ca007d91SDag-Erling Smørgrav out:
905ca007d91SDag-Erling Smørgrav free(buf);
906ca007d91SDag-Erling Smørgrav }
907ca007d91SDag-Erling Smørgrav
908ca007d91SDag-Erling Smørgrav static void
getfiles(void)909ca007d91SDag-Erling Smørgrav getfiles(void)
910ca007d91SDag-Erling Smørgrav {
9112c436d48SGleb Smirnoff struct xfile *xfiles;
912003e7e49SMikolaj Golub size_t len, olen;
913ca007d91SDag-Erling Smørgrav
914b8e20e2dSHiroki Sato olen = len = sizeof(*xfiles);
915003e7e49SMikolaj Golub if ((xfiles = malloc(len)) == NULL)
916ca007d91SDag-Erling Smørgrav err(1, "malloc()");
917c5a2d8c5SRyan Moeller while (cap_sysctlbyname(capsysctl, "kern.file", xfiles, &len, 0, 0)
918c5a2d8c5SRyan Moeller == -1) {
919003e7e49SMikolaj Golub if (errno != ENOMEM || len != olen)
920c5a2d8c5SRyan Moeller err(1, "cap_sysctlbyname()");
921003e7e49SMikolaj Golub olen = len *= 2;
922ca007d91SDag-Erling Smørgrav if ((xfiles = realloc(xfiles, len)) == NULL)
923ca007d91SDag-Erling Smørgrav err(1, "realloc()");
924ca007d91SDag-Erling Smørgrav }
92508e77283SAlexander V. Chernikov if (len > 0)
92608e77283SAlexander V. Chernikov enforce_ksize(xfiles->xf_size, struct xfile);
9272c436d48SGleb Smirnoff nfiles = len / sizeof(*xfiles);
9282c436d48SGleb Smirnoff
9292c436d48SGleb Smirnoff if ((files = malloc(nfiles * sizeof(struct file))) == NULL)
9302c436d48SGleb Smirnoff err(1, "malloc()");
9312c436d48SGleb Smirnoff
9322c436d48SGleb Smirnoff for (int i = 0; i < nfiles; i++) {
9332c436d48SGleb Smirnoff files[i].xf_data = xfiles[i].xf_data;
9342c436d48SGleb Smirnoff files[i].xf_pid = xfiles[i].xf_pid;
9352c436d48SGleb Smirnoff files[i].xf_uid = xfiles[i].xf_uid;
9362c436d48SGleb Smirnoff files[i].xf_fd = xfiles[i].xf_fd;
9372c436d48SGleb Smirnoff RB_INSERT(files_t, &ftree, &files[i]);
9382c436d48SGleb Smirnoff }
9392c436d48SGleb Smirnoff
9402c436d48SGleb Smirnoff free(xfiles);
941ca007d91SDag-Erling Smørgrav }
942ca007d91SDag-Erling Smørgrav
943ca007d91SDag-Erling Smørgrav static int
printaddr(struct sockaddr_storage * ss)944baa7f281SMichael Tuexen printaddr(struct sockaddr_storage *ss)
945ca007d91SDag-Erling Smørgrav {
946ca007d91SDag-Erling Smørgrav struct sockaddr_un *sun;
947b8e20e2dSHiroki Sato char addrstr[NI_MAXHOST] = { '\0', '\0' };
948b8e20e2dSHiroki Sato int error, off, port = 0;
949ca007d91SDag-Erling Smørgrav
950baa7f281SMichael Tuexen switch (ss->ss_family) {
951ca007d91SDag-Erling Smørgrav case AF_INET:
95264acb29bSMike Karels if (sstosin(ss)->sin_addr.s_addr == INADDR_ANY)
953ca007d91SDag-Erling Smørgrav addrstr[0] = '*';
954b8e20e2dSHiroki Sato port = ntohs(sstosin(ss)->sin_port);
955ca007d91SDag-Erling Smørgrav break;
956ca007d91SDag-Erling Smørgrav case AF_INET6:
957b8e20e2dSHiroki Sato if (IN6_IS_ADDR_UNSPECIFIED(&sstosin6(ss)->sin6_addr))
958ca007d91SDag-Erling Smørgrav addrstr[0] = '*';
959b8e20e2dSHiroki Sato port = ntohs(sstosin6(ss)->sin6_port);
960ca007d91SDag-Erling Smørgrav break;
961ca007d91SDag-Erling Smørgrav case AF_UNIX:
962b8e20e2dSHiroki Sato sun = sstosun(ss);
963ca007d91SDag-Erling Smørgrav off = (int)((char *)&sun->sun_path - (char *)sun);
964ca007d91SDag-Erling Smørgrav return (xprintf("%.*s", sun->sun_len - off, sun->sun_path));
965ca007d91SDag-Erling Smørgrav }
966b8e20e2dSHiroki Sato if (addrstr[0] == '\0') {
967c5a2d8c5SRyan Moeller error = cap_getnameinfo(capnet, sstosa(ss), ss->ss_len,
968c5a2d8c5SRyan Moeller addrstr, sizeof(addrstr), NULL, 0, NI_NUMERICHOST);
969b8e20e2dSHiroki Sato if (error)
970c5a2d8c5SRyan Moeller errx(1, "cap_getnameinfo()");
971b8e20e2dSHiroki Sato }
972ca007d91SDag-Erling Smørgrav if (port == 0)
973ca007d91SDag-Erling Smørgrav return xprintf("%s:*", addrstr);
974ca007d91SDag-Erling Smørgrav else
975ca007d91SDag-Erling Smørgrav return xprintf("%s:%d", addrstr, port);
976ca007d91SDag-Erling Smørgrav }
977ca007d91SDag-Erling Smørgrav
978ca007d91SDag-Erling Smørgrav static const char *
getprocname(pid_t pid)979ca007d91SDag-Erling Smørgrav getprocname(pid_t pid)
980ca007d91SDag-Erling Smørgrav {
981ca007d91SDag-Erling Smørgrav static struct kinfo_proc proc;
982ca007d91SDag-Erling Smørgrav size_t len;
983ca007d91SDag-Erling Smørgrav int mib[4];
984ca007d91SDag-Erling Smørgrav
985ca007d91SDag-Erling Smørgrav mib[0] = CTL_KERN;
986ca007d91SDag-Erling Smørgrav mib[1] = KERN_PROC;
987ca007d91SDag-Erling Smørgrav mib[2] = KERN_PROC_PID;
988ca007d91SDag-Erling Smørgrav mib[3] = (int)pid;
989b8e20e2dSHiroki Sato len = sizeof(proc);
990c5a2d8c5SRyan Moeller if (cap_sysctl(capsysctl, mib, nitems(mib), &proc, &len, NULL, 0)
991c5a2d8c5SRyan Moeller == -1) {
99248c513e0SMaxim Konovalov /* Do not warn if the process exits before we get its name. */
99348c513e0SMaxim Konovalov if (errno != ESRCH)
994c5a2d8c5SRyan Moeller warn("cap_sysctl()");
995ca007d91SDag-Erling Smørgrav return ("??");
996ca007d91SDag-Erling Smørgrav }
997f487a6a8SEd Maste return (proc.ki_comm);
998ca007d91SDag-Erling Smørgrav }
999ca007d91SDag-Erling Smørgrav
1000ae94787dSMaxime Henrion static int
getprocjid(pid_t pid)100100feaafdSAndrew Thompson getprocjid(pid_t pid)
100200feaafdSAndrew Thompson {
100300feaafdSAndrew Thompson static struct kinfo_proc proc;
100400feaafdSAndrew Thompson size_t len;
100500feaafdSAndrew Thompson int mib[4];
100600feaafdSAndrew Thompson
100700feaafdSAndrew Thompson mib[0] = CTL_KERN;
100800feaafdSAndrew Thompson mib[1] = KERN_PROC;
100900feaafdSAndrew Thompson mib[2] = KERN_PROC_PID;
101000feaafdSAndrew Thompson mib[3] = (int)pid;
1011b8e20e2dSHiroki Sato len = sizeof(proc);
1012c5a2d8c5SRyan Moeller if (cap_sysctl(capsysctl, mib, nitems(mib), &proc, &len, NULL, 0)
1013c5a2d8c5SRyan Moeller == -1) {
101400feaafdSAndrew Thompson /* Do not warn if the process exits before we get its jid. */
101500feaafdSAndrew Thompson if (errno != ESRCH)
1016c5a2d8c5SRyan Moeller warn("cap_sysctl()");
101700feaafdSAndrew Thompson return (-1);
101800feaafdSAndrew Thompson }
101900feaafdSAndrew Thompson return (proc.ki_jid);
102000feaafdSAndrew Thompson }
102100feaafdSAndrew Thompson
102200feaafdSAndrew Thompson static int
check_ports(struct sock * s)1023ae94787dSMaxime Henrion check_ports(struct sock *s)
1024ae94787dSMaxime Henrion {
1025ae94787dSMaxime Henrion int port;
1026e6f718c7SMichael Tuexen struct addr *addr;
1027ae94787dSMaxime Henrion
1028ae94787dSMaxime Henrion if (ports == NULL)
1029ae94787dSMaxime Henrion return (1);
1030ae94787dSMaxime Henrion if ((s->family != AF_INET) && (s->family != AF_INET6))
1031ae94787dSMaxime Henrion return (1);
1032e6f718c7SMichael Tuexen for (addr = s->laddr; addr != NULL; addr = addr->next) {
1033b8e20e2dSHiroki Sato if (s->family == AF_INET)
1034b8e20e2dSHiroki Sato port = ntohs(sstosin(&addr->address)->sin_port);
1035ae94787dSMaxime Henrion else
1036b8e20e2dSHiroki Sato port = ntohs(sstosin6(&addr->address)->sin6_port);
1037ae94787dSMaxime Henrion if (CHK_PORT(port))
1038ae94787dSMaxime Henrion return (1);
1039e6f718c7SMichael Tuexen }
1040e6f718c7SMichael Tuexen for (addr = s->faddr; addr != NULL; addr = addr->next) {
1041b8e20e2dSHiroki Sato if (s->family == AF_INET)
1042b8e20e2dSHiroki Sato port = ntohs(sstosin(&addr->address)->sin_port);
1043ae94787dSMaxime Henrion else
1044b8e20e2dSHiroki Sato port = ntohs(sstosin6(&addr->address)->sin6_port);
1045ae94787dSMaxime Henrion if (CHK_PORT(port))
1046ae94787dSMaxime Henrion return (1);
1047e6f718c7SMichael Tuexen }
1048ae94787dSMaxime Henrion return (0);
1049ae94787dSMaxime Henrion }
1050ae94787dSMaxime Henrion
10516414db1bSMichael Tuexen static const char *
sctp_conn_state(int state)1052e389705eSMichael Tuexen sctp_conn_state(int state)
10536414db1bSMichael Tuexen {
10546414db1bSMichael Tuexen switch (state) {
10556414db1bSMichael Tuexen case SCTP_CLOSED:
10566414db1bSMichael Tuexen return "CLOSED";
10576414db1bSMichael Tuexen break;
10586414db1bSMichael Tuexen case SCTP_BOUND:
10596414db1bSMichael Tuexen return "BOUND";
10606414db1bSMichael Tuexen break;
10616414db1bSMichael Tuexen case SCTP_LISTEN:
10626414db1bSMichael Tuexen return "LISTEN";
10636414db1bSMichael Tuexen break;
10646414db1bSMichael Tuexen case SCTP_COOKIE_WAIT:
10656414db1bSMichael Tuexen return "COOKIE_WAIT";
10666414db1bSMichael Tuexen break;
10676414db1bSMichael Tuexen case SCTP_COOKIE_ECHOED:
10686414db1bSMichael Tuexen return "COOKIE_ECHOED";
10696414db1bSMichael Tuexen break;
10706414db1bSMichael Tuexen case SCTP_ESTABLISHED:
10716414db1bSMichael Tuexen return "ESTABLISHED";
10726414db1bSMichael Tuexen break;
10736414db1bSMichael Tuexen case SCTP_SHUTDOWN_SENT:
10746414db1bSMichael Tuexen return "SHUTDOWN_SENT";
10756414db1bSMichael Tuexen break;
10766414db1bSMichael Tuexen case SCTP_SHUTDOWN_RECEIVED:
10776414db1bSMichael Tuexen return "SHUTDOWN_RECEIVED";
10786414db1bSMichael Tuexen break;
10796414db1bSMichael Tuexen case SCTP_SHUTDOWN_ACK_SENT:
10806414db1bSMichael Tuexen return "SHUTDOWN_ACK_SENT";
10816414db1bSMichael Tuexen break;
10826414db1bSMichael Tuexen case SCTP_SHUTDOWN_PENDING:
10836414db1bSMichael Tuexen return "SHUTDOWN_PENDING";
10846414db1bSMichael Tuexen break;
10856414db1bSMichael Tuexen default:
10866414db1bSMichael Tuexen return "UNKNOWN";
10876414db1bSMichael Tuexen break;
10886414db1bSMichael Tuexen }
10896414db1bSMichael Tuexen }
10906414db1bSMichael Tuexen
1091e389705eSMichael Tuexen static const char *
sctp_path_state(int state)1092e389705eSMichael Tuexen sctp_path_state(int state)
1093e389705eSMichael Tuexen {
1094e389705eSMichael Tuexen switch (state) {
1095e389705eSMichael Tuexen case SCTP_UNCONFIRMED:
1096e389705eSMichael Tuexen return "UNCONFIRMED";
1097e389705eSMichael Tuexen break;
1098e389705eSMichael Tuexen case SCTP_ACTIVE:
1099e389705eSMichael Tuexen return "ACTIVE";
1100e389705eSMichael Tuexen break;
1101e389705eSMichael Tuexen case SCTP_INACTIVE:
1102e389705eSMichael Tuexen return "INACTIVE";
1103e389705eSMichael Tuexen break;
1104e389705eSMichael Tuexen default:
1105e389705eSMichael Tuexen return "UNKNOWN";
1106e389705eSMichael Tuexen break;
1107e389705eSMichael Tuexen }
1108e389705eSMichael Tuexen }
1109e389705eSMichael Tuexen
1110ca007d91SDag-Erling Smørgrav static void
displaysock(struct sock * s,int pos)111161149f8dSJilles Tjoelker displaysock(struct sock *s, int pos)
1112ca007d91SDag-Erling Smørgrav {
1113a83d596fSGleb Smirnoff int first, offset;
1114e6f718c7SMichael Tuexen struct addr *laddr, *faddr;
1115ca007d91SDag-Erling Smørgrav
1116c5bdcd1fSGleb Smirnoff while (pos < 30)
1117ca007d91SDag-Erling Smørgrav pos += xprintf(" ");
1118ca007d91SDag-Erling Smørgrav pos += xprintf("%s", s->protoname);
1119ca007d91SDag-Erling Smørgrav if (s->vflag & INP_IPV4)
1120ca007d91SDag-Erling Smørgrav pos += xprintf("4");
1121ca007d91SDag-Erling Smørgrav if (s->vflag & INP_IPV6)
1122ca007d91SDag-Erling Smørgrav pos += xprintf("6");
1123edc9c7fcSMichael Tuexen if (s->vflag & (INP_IPV4 | INP_IPV6))
1124edc9c7fcSMichael Tuexen pos += xprintf(" ");
1125e6f718c7SMichael Tuexen laddr = s->laddr;
1126e6f718c7SMichael Tuexen faddr = s->faddr;
11274e13a5b0SMichael Tuexen first = 1;
1128e6f718c7SMichael Tuexen while (laddr != NULL || faddr != NULL) {
1129c5bdcd1fSGleb Smirnoff offset = 37;
113083f60cb2SMichael Tuexen while (pos < offset)
1131ca007d91SDag-Erling Smørgrav pos += xprintf(" ");
1132ca007d91SDag-Erling Smørgrav switch (s->family) {
1133ca007d91SDag-Erling Smørgrav case AF_INET:
1134ca007d91SDag-Erling Smørgrav case AF_INET6:
1135fbd34486SMark Johnston if (laddr != NULL)
1136e6f718c7SMichael Tuexen pos += printaddr(&laddr->address);
113783f60cb2SMichael Tuexen offset += opt_w ? 46 : 22;
1138fbd34486SMark Johnston do
1139ca007d91SDag-Erling Smørgrav pos += xprintf(" ");
1140fbd34486SMark Johnston while (pos < offset);
1141e6f718c7SMichael Tuexen if (faddr != NULL)
1142e6f718c7SMichael Tuexen pos += printaddr(&faddr->address);
114383f60cb2SMichael Tuexen offset += opt_w ? 46 : 22;
1144ca007d91SDag-Erling Smørgrav break;
1145ca007d91SDag-Erling Smørgrav case AF_UNIX:
1146e6f718c7SMichael Tuexen if ((laddr == NULL) || (faddr == NULL))
1147e6f718c7SMichael Tuexen errx(1, "laddr = %p or faddr = %p is NULL",
1148e6f718c7SMichael Tuexen (void *)laddr, (void *)faddr);
11492c436d48SGleb Smirnoff if (laddr->address.ss_len == 0 && faddr->conn == 0) {
1150b4eb37c6SJohn-Mark Gurney pos += xprintf("(not connected)");
115183f60cb2SMichael Tuexen offset += opt_w ? 92 : 44;
1152b4eb37c6SJohn-Mark Gurney break;
1153b4eb37c6SJohn-Mark Gurney }
11542c436d48SGleb Smirnoff /* Local bind(2) address, if any. */
11552c436d48SGleb Smirnoff if (laddr->address.ss_len > 0)
11562c436d48SGleb Smirnoff pos += printaddr(&laddr->address);
11572c436d48SGleb Smirnoff /* Remote peer we connect(2) to, if any. */
11582c436d48SGleb Smirnoff if (faddr->conn != 0) {
11592c436d48SGleb Smirnoff struct sock *p;
11602c436d48SGleb Smirnoff
11612c436d48SGleb Smirnoff pos += xprintf("%s-> ",
11622c436d48SGleb Smirnoff laddr->address.ss_len > 0 ? " " : "");
11632c436d48SGleb Smirnoff p = RB_FIND(pcbs_t, &pcbs,
11642c436d48SGleb Smirnoff &(struct sock){ .pcb = faddr->conn });
11652c436d48SGleb Smirnoff if (__predict_false(p == NULL)) {
11662c436d48SGleb Smirnoff /* XXGL: can this happen at all? */
1167ca007d91SDag-Erling Smørgrav pos += xprintf("??");
11682c436d48SGleb Smirnoff } else if (p->laddr->address.ss_len == 0) {
11692c436d48SGleb Smirnoff struct file *f;
11702c436d48SGleb Smirnoff
11712c436d48SGleb Smirnoff f = RB_FIND(files_t, &ftree,
11722c436d48SGleb Smirnoff &(struct file){ .xf_data =
11732c436d48SGleb Smirnoff p->socket });
117435f49843SKonstantin Belousov if (f != NULL) {
11752c436d48SGleb Smirnoff pos += xprintf("[%lu %d]",
117635f49843SKonstantin Belousov (u_long)f->xf_pid,
117735f49843SKonstantin Belousov f->xf_fd);
117835f49843SKonstantin Belousov }
11792c436d48SGleb Smirnoff } else
11802c436d48SGleb Smirnoff pos += printaddr(&p->laddr->address);
11812c436d48SGleb Smirnoff }
11822c436d48SGleb Smirnoff /* Remote peer(s) connect(2)ed to us, if any. */
11832c436d48SGleb Smirnoff if (faddr->firstref != 0) {
11842c436d48SGleb Smirnoff struct sock *p;
11852c436d48SGleb Smirnoff struct file *f;
11862c436d48SGleb Smirnoff kvaddr_t ref = faddr->firstref;
11872c436d48SGleb Smirnoff bool fref = true;
11882c436d48SGleb Smirnoff
11892c436d48SGleb Smirnoff pos += xprintf(" <- ");
11902c436d48SGleb Smirnoff
11912c436d48SGleb Smirnoff while ((p = RB_FIND(pcbs_t, &pcbs,
11922c436d48SGleb Smirnoff &(struct sock){ .pcb = ref })) != 0) {
11932c436d48SGleb Smirnoff f = RB_FIND(files_t, &ftree,
11942c436d48SGleb Smirnoff &(struct file){ .xf_data =
11952c436d48SGleb Smirnoff p->socket });
119635f49843SKonstantin Belousov if (f != NULL) {
11972c436d48SGleb Smirnoff pos += xprintf("%s[%lu %d]",
11982c436d48SGleb Smirnoff fref ? "" : ",",
119935f49843SKonstantin Belousov (u_long)f->xf_pid,
120035f49843SKonstantin Belousov f->xf_fd);
120135f49843SKonstantin Belousov }
12022c436d48SGleb Smirnoff ref = p->faddr->nextref;
12032c436d48SGleb Smirnoff fref = false;
12042c436d48SGleb Smirnoff }
12052c436d48SGleb Smirnoff }
120683f60cb2SMichael Tuexen offset += opt_w ? 92 : 44;
1207ca007d91SDag-Erling Smørgrav break;
1208ca007d91SDag-Erling Smørgrav default:
1209ca007d91SDag-Erling Smørgrav abort();
1210ca007d91SDag-Erling Smørgrav }
1211*9f55128fSGleb Smirnoff while (pos < offset)
1212a471d2b4SMark Johnston pos += xprintf(" ");
1213*9f55128fSGleb Smirnoff if (opt_A) {
1214*9f55128fSGleb Smirnoff pos += xprintf("0x%16lx", s->pcb);
1215*9f55128fSGleb Smirnoff offset += 18;
1216*9f55128fSGleb Smirnoff }
1217*9f55128fSGleb Smirnoff if (opt_f) {
1218a471d2b4SMark Johnston pos += xprintf("%d", s->fibnum);
1219a471d2b4SMark Johnston offset += 7;
1220a471d2b4SMark Johnston }
1221051a2132SMark Johnston if (opt_I) {
1222051a2132SMark Johnston if (s->splice_socket != 0) {
1223051a2132SMark Johnston struct sock *sp;
1224051a2132SMark Johnston
1225051a2132SMark Johnston sp = RB_FIND(socks_t, &socks, &(struct sock)
1226051a2132SMark Johnston { .socket = s->splice_socket });
1227051a2132SMark Johnston if (sp != NULL) {
1228fbd34486SMark Johnston do
1229051a2132SMark Johnston pos += xprintf(" ");
1230fbd34486SMark Johnston while (pos < offset);
1231051a2132SMark Johnston pos += printaddr(&sp->laddr->address);
1232051a2132SMark Johnston } else {
1233fbd34486SMark Johnston do
1234051a2132SMark Johnston pos += xprintf(" ");
1235fbd34486SMark Johnston while (pos < offset);
1236051a2132SMark Johnston pos += xprintf("??");
1237051a2132SMark Johnston offset += opt_w ? 46 : 22;
1238051a2132SMark Johnston }
1239051a2132SMark Johnston }
1240051a2132SMark Johnston offset += opt_w ? 46 : 22;
1241051a2132SMark Johnston }
12425f64777aSMichael Tuexen if (opt_i) {
12435f64777aSMichael Tuexen if (s->proto == IPPROTO_TCP ||
12445f64777aSMichael Tuexen s->proto == IPPROTO_UDP) {
1245fbd34486SMark Johnston do
12465f64777aSMichael Tuexen pos += xprintf(" ");
1247fbd34486SMark Johnston while (pos < offset);
12485f64777aSMichael Tuexen pos += xprintf("%" PRIu64, s->inp_gencnt);
12495f64777aSMichael Tuexen }
12505f64777aSMichael Tuexen offset += 9;
12515f64777aSMichael Tuexen }
125249b836f2SMichael Tuexen if (opt_U) {
125349b836f2SMichael Tuexen if (faddr != NULL &&
12549e644c23SMichael Tuexen ((s->proto == IPPROTO_SCTP &&
125549b836f2SMichael Tuexen s->state != SCTP_CLOSED &&
125649b836f2SMichael Tuexen s->state != SCTP_BOUND &&
12579e644c23SMichael Tuexen s->state != SCTP_LISTEN) ||
12589e644c23SMichael Tuexen (s->proto == IPPROTO_TCP &&
12599e644c23SMichael Tuexen s->state != TCPS_CLOSED &&
12609e644c23SMichael Tuexen s->state != TCPS_LISTEN))) {
1261fbd34486SMark Johnston do
126249b836f2SMichael Tuexen pos += xprintf(" ");
1263fbd34486SMark Johnston while (pos < offset);
126449b836f2SMichael Tuexen pos += xprintf("%u",
126549b836f2SMichael Tuexen ntohs(faddr->encaps_port));
126649b836f2SMichael Tuexen }
126749b836f2SMichael Tuexen offset += 7;
126849b836f2SMichael Tuexen }
1269e389705eSMichael Tuexen if (opt_s) {
1270e389705eSMichael Tuexen if (faddr != NULL &&
1271e389705eSMichael Tuexen s->proto == IPPROTO_SCTP &&
1272e389705eSMichael Tuexen s->state != SCTP_CLOSED &&
1273e389705eSMichael Tuexen s->state != SCTP_BOUND &&
1274e389705eSMichael Tuexen s->state != SCTP_LISTEN) {
1275fbd34486SMark Johnston do
1276e389705eSMichael Tuexen pos += xprintf(" ");
1277fbd34486SMark Johnston while (pos < offset);
1278e389705eSMichael Tuexen pos += xprintf("%s",
1279e389705eSMichael Tuexen sctp_path_state(faddr->state));
1280e389705eSMichael Tuexen }
1281e389705eSMichael Tuexen offset += 13;
1282e389705eSMichael Tuexen }
1283e5cccc35SMichael Tuexen if (first) {
128449b836f2SMichael Tuexen if (opt_s) {
128549b836f2SMichael Tuexen if (s->proto == IPPROTO_SCTP ||
128649b836f2SMichael Tuexen s->proto == IPPROTO_TCP) {
1287fbd34486SMark Johnston do
12884e13a5b0SMichael Tuexen pos += xprintf(" ");
1289fbd34486SMark Johnston while (pos < offset);
12906414db1bSMichael Tuexen switch (s->proto) {
12916414db1bSMichael Tuexen case IPPROTO_SCTP:
1292e5cccc35SMichael Tuexen pos += xprintf("%s",
1293e389705eSMichael Tuexen sctp_conn_state(s->state));
12946414db1bSMichael Tuexen break;
12956414db1bSMichael Tuexen case IPPROTO_TCP:
1296e5cccc35SMichael Tuexen if (s->state >= 0 &&
1297e5cccc35SMichael Tuexen s->state < TCP_NSTATES)
129849b836f2SMichael Tuexen pos += xprintf("%s",
1299e5cccc35SMichael Tuexen tcpstates[s->state]);
13004e13a5b0SMichael Tuexen else
13014e13a5b0SMichael Tuexen pos += xprintf("?");
13026414db1bSMichael Tuexen break;
13036414db1bSMichael Tuexen }
13044e13a5b0SMichael Tuexen }
130549b836f2SMichael Tuexen offset += 13;
130649b836f2SMichael Tuexen }
13072ac089d0SMichael Tuexen if (opt_S) {
13082ac089d0SMichael Tuexen if (s->proto == IPPROTO_TCP) {
1309fbd34486SMark Johnston do
1310e5cccc35SMichael Tuexen pos += xprintf(" ");
1311fbd34486SMark Johnston while (pos < offset);
13122ac089d0SMichael Tuexen pos += xprintf("%.*s",
13132ac089d0SMichael Tuexen TCP_FUNCTION_NAME_LEN_MAX,
1314e5cccc35SMichael Tuexen s->stack);
1315e5cccc35SMichael Tuexen }
13162ac089d0SMichael Tuexen offset += TCP_FUNCTION_NAME_LEN_MAX + 1;
13172ac089d0SMichael Tuexen }
13182ac089d0SMichael Tuexen if (opt_C) {
13192ac089d0SMichael Tuexen if (s->proto == IPPROTO_TCP) {
1320fbd34486SMark Johnston do
13212ac089d0SMichael Tuexen pos += xprintf(" ");
1322fbd34486SMark Johnston while (pos < offset);
13232ac089d0SMichael Tuexen xprintf("%.*s", TCP_CA_NAME_MAX, s->cc);
13242ac089d0SMichael Tuexen }
13252ac089d0SMichael Tuexen offset += TCP_CA_NAME_MAX + 1;
13262ac089d0SMichael Tuexen }
1327e5cccc35SMichael Tuexen }
1328e6f718c7SMichael Tuexen if (laddr != NULL)
1329e6f718c7SMichael Tuexen laddr = laddr->next;
1330e6f718c7SMichael Tuexen if (faddr != NULL)
1331e6f718c7SMichael Tuexen faddr = faddr->next;
1332e6f718c7SMichael Tuexen if ((laddr != NULL) || (faddr != NULL)) {
1333e6f718c7SMichael Tuexen xprintf("\n");
1334e6f718c7SMichael Tuexen pos = 0;
1335e6f718c7SMichael Tuexen }
13364e13a5b0SMichael Tuexen first = 0;
1337e6f718c7SMichael Tuexen }
13384e13a5b0SMichael Tuexen xprintf("\n");
1339ca007d91SDag-Erling Smørgrav }
134061149f8dSJilles Tjoelker
134161149f8dSJilles Tjoelker static void
display(void)134261149f8dSJilles Tjoelker display(void)
134361149f8dSJilles Tjoelker {
134461149f8dSJilles Tjoelker struct passwd *pwd;
13452c436d48SGleb Smirnoff struct file *xf;
134661149f8dSJilles Tjoelker struct sock *s;
1347a83d596fSGleb Smirnoff int n, pos;
134861149f8dSJilles Tjoelker
134901a46c7dSGleb Smirnoff if (!opt_q) {
1350c5bdcd1fSGleb Smirnoff printf("%-8s %-10s %-5s %-3s %-6s %-*s %-*s",
135161149f8dSJilles Tjoelker "USER", "COMMAND", "PID", "FD", "PROTO",
135283f60cb2SMichael Tuexen opt_w ? 45 : 21, "LOCAL ADDRESS",
135383f60cb2SMichael Tuexen opt_w ? 45 : 21, "FOREIGN ADDRESS");
1354*9f55128fSGleb Smirnoff if (opt_A)
1355*9f55128fSGleb Smirnoff printf(" %-18s", "PCB KVA");
1356a471d2b4SMark Johnston if (opt_f)
1357a471d2b4SMark Johnston /* RT_MAXFIBS is 65535. */
1358a471d2b4SMark Johnston printf(" %-6s", "FIB");
1359051a2132SMark Johnston if (opt_I)
1360051a2132SMark Johnston printf(" %-*s", opt_w ? 45 : 21, "SPLICE ADDRESS");
13615f64777aSMichael Tuexen if (opt_i)
13625f64777aSMichael Tuexen printf(" %-8s", "ID");
136349b836f2SMichael Tuexen if (opt_U)
136449b836f2SMichael Tuexen printf(" %-6s", "ENCAPS");
1365e389705eSMichael Tuexen if (opt_s) {
1366e389705eSMichael Tuexen printf(" %-12s", "PATH STATE");
1367e389705eSMichael Tuexen printf(" %-12s", "CONN STATE");
1368e389705eSMichael Tuexen }
1369e5cccc35SMichael Tuexen if (opt_S)
13702ac089d0SMichael Tuexen printf(" %-*.*s", TCP_FUNCTION_NAME_LEN_MAX,
13712ac089d0SMichael Tuexen TCP_FUNCTION_NAME_LEN_MAX, "STACK");
13722ac089d0SMichael Tuexen if (opt_C)
13732ac089d0SMichael Tuexen printf(" %-.*s", TCP_CA_NAME_MAX, "CC");
13747a5642b3SDag-Erling Smørgrav printf("\n");
1375ee0afaa9SEmmanuel Vadot }
13767ad30f58SMariusz Zaborski cap_setpassent(cappwd, 1);
13772c436d48SGleb Smirnoff for (xf = files, n = 0; n < nfiles; ++n, ++xf) {
1378f38b68aeSBrooks Davis if (xf->xf_data == 0)
137961149f8dSJilles Tjoelker continue;
138000feaafdSAndrew Thompson if (opt_j >= 0 && opt_j != getprocjid(xf->xf_pid))
138100feaafdSAndrew Thompson continue;
1382a83d596fSGleb Smirnoff s = RB_FIND(socks_t, &socks,
1383a83d596fSGleb Smirnoff &(struct sock){ .socket = xf->xf_data});
1384a83d596fSGleb Smirnoff if (s != NULL && check_ports(s)) {
138561149f8dSJilles Tjoelker s->shown = 1;
138661149f8dSJilles Tjoelker pos = 0;
13877ad30f58SMariusz Zaborski if (opt_n ||
13887ad30f58SMariusz Zaborski (pwd = cap_getpwuid(cappwd, xf->xf_uid)) == NULL)
138961149f8dSJilles Tjoelker pos += xprintf("%lu", (u_long)xf->xf_uid);
139061149f8dSJilles Tjoelker else
139161149f8dSJilles Tjoelker pos += xprintf("%s", pwd->pw_name);
1392fbd34486SMark Johnston do
139361149f8dSJilles Tjoelker pos += xprintf(" ");
1394fbd34486SMark Johnston while (pos < 9);
139561149f8dSJilles Tjoelker pos += xprintf("%.10s", getprocname(xf->xf_pid));
1396fbd34486SMark Johnston do
139761149f8dSJilles Tjoelker pos += xprintf(" ");
1398fbd34486SMark Johnston while (pos < 20);
1399d961ccd3SGleb Smirnoff pos += xprintf("%5lu", (u_long)xf->xf_pid);
1400fbd34486SMark Johnston do
140161149f8dSJilles Tjoelker pos += xprintf(" ");
1402fbd34486SMark Johnston while (pos < 26);
1403c5bdcd1fSGleb Smirnoff pos += xprintf("%-3d", xf->xf_fd);
140461149f8dSJilles Tjoelker displaysock(s, pos);
140561149f8dSJilles Tjoelker }
14067e80c6b0SMichael Tuexen }
140700feaafdSAndrew Thompson if (opt_j >= 0)
140800feaafdSAndrew Thompson return;
1409a83d596fSGleb Smirnoff SLIST_FOREACH(s, &nosocks, socket_list) {
1410a83d596fSGleb Smirnoff if (!check_ports(s))
1411a83d596fSGleb Smirnoff continue;
1412fbd34486SMark Johnston pos = xprintf("%-8s %-10s %-5s %-3s",
1413a83d596fSGleb Smirnoff "?", "?", "?", "?");
1414a83d596fSGleb Smirnoff displaysock(s, pos);
1415a83d596fSGleb Smirnoff }
1416a83d596fSGleb Smirnoff RB_FOREACH(s, socks_t, &socks) {
141761149f8dSJilles Tjoelker if (s->shown)
141861149f8dSJilles Tjoelker continue;
141961149f8dSJilles Tjoelker if (!check_ports(s))
142061149f8dSJilles Tjoelker continue;
1421fbd34486SMark Johnston pos = xprintf("%-8s %-10s %-5s %-3s",
142261149f8dSJilles Tjoelker "?", "?", "?", "?");
142361149f8dSJilles Tjoelker displaysock(s, pos);
142461149f8dSJilles Tjoelker }
142561149f8dSJilles Tjoelker }
1426ca007d91SDag-Erling Smørgrav
1427f1cd4902SRyan Moeller static int
set_default_protos(void)1428f1cd4902SRyan Moeller set_default_protos(void)
14291f3d67aaSGiorgos Keramidas {
14301f3d67aaSGiorgos Keramidas struct protoent *prot;
14311f3d67aaSGiorgos Keramidas const char *pname;
14321f3d67aaSGiorgos Keramidas size_t pindex;
14331f3d67aaSGiorgos Keramidas
14341f3d67aaSGiorgos Keramidas init_protos(default_numprotos);
14351f3d67aaSGiorgos Keramidas
14361f3d67aaSGiorgos Keramidas for (pindex = 0; pindex < default_numprotos; pindex++) {
14371f3d67aaSGiorgos Keramidas pname = default_protos[pindex];
1438c5a2d8c5SRyan Moeller prot = cap_getprotobyname(capnetdb, pname);
14391f3d67aaSGiorgos Keramidas if (prot == NULL)
1440c5a2d8c5SRyan Moeller err(1, "cap_getprotobyname: %s", pname);
14411f3d67aaSGiorgos Keramidas protos[pindex] = prot->p_proto;
14421f3d67aaSGiorgos Keramidas }
14431f3d67aaSGiorgos Keramidas numprotos = pindex;
14441f3d67aaSGiorgos Keramidas return (pindex);
14451f3d67aaSGiorgos Keramidas }
14461f3d67aaSGiorgos Keramidas
1447f1cd4902SRyan Moeller /*
1448f1cd4902SRyan Moeller * Return the vnet property of the jail, or -1 on error.
1449f1cd4902SRyan Moeller */
1450f1cd4902SRyan Moeller static int
jail_getvnet(int jid)1451f1cd4902SRyan Moeller jail_getvnet(int jid)
1452f1cd4902SRyan Moeller {
1453f1cd4902SRyan Moeller struct iovec jiov[6];
1454f1cd4902SRyan Moeller int vnet;
14551fec1fa8SGleb Smirnoff size_t len = sizeof(vnet);
14561fec1fa8SGleb Smirnoff
14571fec1fa8SGleb Smirnoff if (sysctlbyname("kern.features.vimage", &vnet, &len, NULL, 0) != 0)
14581fec1fa8SGleb Smirnoff return (0);
1459f1cd4902SRyan Moeller
1460f1cd4902SRyan Moeller vnet = -1;
1461f1cd4902SRyan Moeller jiov[0].iov_base = __DECONST(char *, "jid");
1462f1cd4902SRyan Moeller jiov[0].iov_len = sizeof("jid");
1463f1cd4902SRyan Moeller jiov[1].iov_base = &jid;
1464f1cd4902SRyan Moeller jiov[1].iov_len = sizeof(jid);
1465f1cd4902SRyan Moeller jiov[2].iov_base = __DECONST(char *, "vnet");
1466f1cd4902SRyan Moeller jiov[2].iov_len = sizeof("vnet");
1467f1cd4902SRyan Moeller jiov[3].iov_base = &vnet;
1468f1cd4902SRyan Moeller jiov[3].iov_len = sizeof(vnet);
1469f1cd4902SRyan Moeller jiov[4].iov_base = __DECONST(char *, "errmsg");
1470f1cd4902SRyan Moeller jiov[4].iov_len = sizeof("errmsg");
1471f1cd4902SRyan Moeller jiov[5].iov_base = jail_errmsg;
1472f1cd4902SRyan Moeller jiov[5].iov_len = JAIL_ERRMSGLEN;
1473f1cd4902SRyan Moeller jail_errmsg[0] = '\0';
1474f1cd4902SRyan Moeller if (jail_get(jiov, nitems(jiov), 0) < 0) {
1475f1cd4902SRyan Moeller if (!jail_errmsg[0])
1476f1cd4902SRyan Moeller snprintf(jail_errmsg, JAIL_ERRMSGLEN,
1477f1cd4902SRyan Moeller "jail_get: %s", strerror(errno));
1478f1cd4902SRyan Moeller return (-1);
1479f1cd4902SRyan Moeller }
1480f1cd4902SRyan Moeller return (vnet);
1481f1cd4902SRyan Moeller }
1482f1cd4902SRyan Moeller
1483ca007d91SDag-Erling Smørgrav static void
usage(void)1484ca007d91SDag-Erling Smørgrav usage(void)
1485ca007d91SDag-Erling Smørgrav {
1486a471d2b4SMark Johnston errx(1,
1487*9f55128fSGleb Smirnoff "usage: sockstat [-46ACcfIiLlnqSsUuvw] [-j jid] [-p ports] [-P protocols]");
1488ca007d91SDag-Erling Smørgrav }
1489ca007d91SDag-Erling Smørgrav
1490ca007d91SDag-Erling Smørgrav int
main(int argc,char * argv[])1491ca007d91SDag-Erling Smørgrav main(int argc, char *argv[])
1492ca007d91SDag-Erling Smørgrav {
1493c5a2d8c5SRyan Moeller cap_channel_t *capcas;
1494c5a2d8c5SRyan Moeller cap_net_limit_t *limit;
14957ad30f58SMariusz Zaborski const char *pwdcmds[] = { "setpassent", "getpwuid" };
14967ad30f58SMariusz Zaborski const char *pwdfields[] = { "pw_name" };
14971f3d67aaSGiorgos Keramidas int protos_defined = -1;
14981f3d67aaSGiorgos Keramidas int o, i;
1499ca007d91SDag-Erling Smørgrav
150000feaafdSAndrew Thompson opt_j = -1;
1501*9f55128fSGleb Smirnoff while ((o = getopt(argc, argv, "46ACcfIij:Llnp:P:qSsUuvw")) != -1)
1502ca007d91SDag-Erling Smørgrav switch (o) {
1503ca007d91SDag-Erling Smørgrav case '4':
150401a46c7dSGleb Smirnoff opt_4 = true;
1505ca007d91SDag-Erling Smørgrav break;
1506ca007d91SDag-Erling Smørgrav case '6':
150701a46c7dSGleb Smirnoff opt_6 = true;
1508ca007d91SDag-Erling Smørgrav break;
1509*9f55128fSGleb Smirnoff case 'A':
1510*9f55128fSGleb Smirnoff opt_A = true;
1511*9f55128fSGleb Smirnoff break;
15122ac089d0SMichael Tuexen case 'C':
151301a46c7dSGleb Smirnoff opt_C = true;
15142ac089d0SMichael Tuexen break;
1515ca007d91SDag-Erling Smørgrav case 'c':
151601a46c7dSGleb Smirnoff opt_c = true;
1517ca007d91SDag-Erling Smørgrav break;
1518a471d2b4SMark Johnston case 'f':
151901a46c7dSGleb Smirnoff opt_f = true;
1520a471d2b4SMark Johnston break;
1521051a2132SMark Johnston case 'I':
152201a46c7dSGleb Smirnoff opt_I = true;
1523051a2132SMark Johnston break;
15245f64777aSMichael Tuexen case 'i':
152501a46c7dSGleb Smirnoff opt_i = true;
15265f64777aSMichael Tuexen break;
152700feaafdSAndrew Thompson case 'j':
1528de68a320SJamie Gritton opt_j = jail_getid(optarg);
1529de68a320SJamie Gritton if (opt_j < 0)
153032723a3bSGleb Smirnoff errx(1, "jail_getid: %s", jail_errmsg);
153100feaafdSAndrew Thompson break;
15329b6ca892SBruce M Simpson case 'L':
153301a46c7dSGleb Smirnoff opt_L = true;
15349b6ca892SBruce M Simpson break;
1535ca007d91SDag-Erling Smørgrav case 'l':
153601a46c7dSGleb Smirnoff opt_l = true;
1537ca007d91SDag-Erling Smørgrav break;
1538ccdd2b2bSAlexander Motin case 'n':
153901a46c7dSGleb Smirnoff opt_n = true;
1540ccdd2b2bSAlexander Motin break;
1541ca007d91SDag-Erling Smørgrav case 'p':
1542ca007d91SDag-Erling Smørgrav parse_ports(optarg);
1543ca007d91SDag-Erling Smørgrav break;
15441f3d67aaSGiorgos Keramidas case 'P':
15451f3d67aaSGiorgos Keramidas protos_defined = parse_protos(optarg);
15461f3d67aaSGiorgos Keramidas break;
1547ee0afaa9SEmmanuel Vadot case 'q':
154801a46c7dSGleb Smirnoff opt_q = true;
154962de7037SEmmanuel Vadot break;
1550e5cccc35SMichael Tuexen case 'S':
155101a46c7dSGleb Smirnoff opt_S = true;
1552e5cccc35SMichael Tuexen break;
15537a5642b3SDag-Erling Smørgrav case 's':
155401a46c7dSGleb Smirnoff opt_s = true;
15557a5642b3SDag-Erling Smørgrav break;
155649b836f2SMichael Tuexen case 'U':
155701a46c7dSGleb Smirnoff opt_U = true;
155849b836f2SMichael Tuexen break;
1559ca007d91SDag-Erling Smørgrav case 'u':
156001a46c7dSGleb Smirnoff opt_u = true;
1561ca007d91SDag-Erling Smørgrav break;
1562ca007d91SDag-Erling Smørgrav case 'v':
1563ca007d91SDag-Erling Smørgrav ++opt_v;
1564ca007d91SDag-Erling Smørgrav break;
156583f60cb2SMichael Tuexen case 'w':
156601a46c7dSGleb Smirnoff opt_w = true;
156783f60cb2SMichael Tuexen break;
1568ca007d91SDag-Erling Smørgrav default:
1569ca007d91SDag-Erling Smørgrav usage();
1570ca007d91SDag-Erling Smørgrav }
1571ca007d91SDag-Erling Smørgrav
1572ca007d91SDag-Erling Smørgrav argc -= optind;
1573ca007d91SDag-Erling Smørgrav argv += optind;
1574ca007d91SDag-Erling Smørgrav
1575ca007d91SDag-Erling Smørgrav if (argc > 0)
1576ca007d91SDag-Erling Smørgrav usage();
1577ca007d91SDag-Erling Smørgrav
1578f1cd4902SRyan Moeller if (opt_j > 0) {
1579f1cd4902SRyan Moeller switch (jail_getvnet(opt_j)) {
1580f1cd4902SRyan Moeller case -1:
158132723a3bSGleb Smirnoff errx(2, "jail_getvnet: %s", jail_errmsg);
1582f1cd4902SRyan Moeller case JAIL_SYS_NEW:
1583f1cd4902SRyan Moeller if (jail_attach(opt_j) < 0)
1584ae37905bSRyan Moeller err(3, "jail_attach()");
1585f1cd4902SRyan Moeller /* Set back to -1 for normal output in vnet jail. */
1586f1cd4902SRyan Moeller opt_j = -1;
1587f1cd4902SRyan Moeller break;
1588f1cd4902SRyan Moeller default:
1589f1cd4902SRyan Moeller break;
1590f1cd4902SRyan Moeller }
1591f1cd4902SRyan Moeller }
1592f1cd4902SRyan Moeller
1593c5a2d8c5SRyan Moeller capcas = cap_init();
1594c5a2d8c5SRyan Moeller if (capcas == NULL)
1595c5a2d8c5SRyan Moeller err(1, "Unable to contact Casper");
1596c5a2d8c5SRyan Moeller if (caph_enter_casper() < 0)
1597c5a2d8c5SRyan Moeller err(1, "Unable to enter capability mode");
1598c5a2d8c5SRyan Moeller capnet = cap_service_open(capcas, "system.net");
1599c5a2d8c5SRyan Moeller if (capnet == NULL)
1600c5a2d8c5SRyan Moeller err(1, "Unable to open system.net service");
1601c5a2d8c5SRyan Moeller capnetdb = cap_service_open(capcas, "system.netdb");
1602c5a2d8c5SRyan Moeller if (capnetdb == NULL)
1603c5a2d8c5SRyan Moeller err(1, "Unable to open system.netdb service");
1604c5a2d8c5SRyan Moeller capsysctl = cap_service_open(capcas, "system.sysctl");
1605c5a2d8c5SRyan Moeller if (capsysctl == NULL)
1606c5a2d8c5SRyan Moeller err(1, "Unable to open system.sysctl service");
16077ad30f58SMariusz Zaborski cappwd = cap_service_open(capcas, "system.pwd");
16087ad30f58SMariusz Zaborski if (cappwd == NULL)
16097ad30f58SMariusz Zaborski err(1, "Unable to open system.pwd service");
1610c5a2d8c5SRyan Moeller cap_close(capcas);
1611c5a2d8c5SRyan Moeller limit = cap_net_limit_init(capnet, CAPNET_ADDR2NAME);
1612c5a2d8c5SRyan Moeller if (limit == NULL)
1613c5a2d8c5SRyan Moeller err(1, "Unable to init cap_net limits");
1614c5a2d8c5SRyan Moeller if (cap_net_limit(limit) < 0)
1615c5a2d8c5SRyan Moeller err(1, "Unable to apply limits");
16167ad30f58SMariusz Zaborski if (cap_pwd_limit_cmds(cappwd, pwdcmds, nitems(pwdcmds)) < 0)
16177ad30f58SMariusz Zaborski err(1, "Unable to apply pwd commands limits");
16187ad30f58SMariusz Zaborski if (cap_pwd_limit_fields(cappwd, pwdfields, nitems(pwdfields)) < 0)
16197ad30f58SMariusz Zaborski err(1, "Unable to apply pwd commands limits");
1620c5a2d8c5SRyan Moeller
1621d2d77d2aSGiorgos Keramidas if ((!opt_4 && !opt_6) && protos_defined != -1)
162201a46c7dSGleb Smirnoff opt_4 = opt_6 = true;
1623d2d77d2aSGiorgos Keramidas if (!opt_4 && !opt_6 && !opt_u)
162401a46c7dSGleb Smirnoff opt_4 = opt_6 = opt_u = true;
1625d2d77d2aSGiorgos Keramidas if ((opt_4 || opt_6) && protos_defined == -1)
1626d2d77d2aSGiorgos Keramidas protos_defined = set_default_protos();
1627ca007d91SDag-Erling Smørgrav if (!opt_c && !opt_l)
162801a46c7dSGleb Smirnoff opt_c = opt_l = true;
1629ca007d91SDag-Erling Smørgrav
1630ca007d91SDag-Erling Smørgrav if (opt_4 || opt_6) {
16311f3d67aaSGiorgos Keramidas for (i = 0; i < protos_defined; i++)
1632d5b4aa90SMichael Tuexen if (protos[i] == IPPROTO_SCTP)
1633d5b4aa90SMichael Tuexen gather_sctp();
1634d5b4aa90SMichael Tuexen else
16351f3d67aaSGiorgos Keramidas gather_inet(protos[i]);
1636ca007d91SDag-Erling Smørgrav }
16371f3d67aaSGiorgos Keramidas
16381f3d67aaSGiorgos Keramidas if (opt_u || (protos_defined == -1 && !opt_4 && !opt_6)) {
1639ca007d91SDag-Erling Smørgrav gather_unix(SOCK_STREAM);
1640ca007d91SDag-Erling Smørgrav gather_unix(SOCK_DGRAM);
1641b8e20e2dSHiroki Sato gather_unix(SOCK_SEQPACKET);
1642ca007d91SDag-Erling Smørgrav }
1643ca007d91SDag-Erling Smørgrav getfiles();
1644ca007d91SDag-Erling Smørgrav display();
1645ca007d91SDag-Erling Smørgrav exit(0);
1646ca007d91SDag-Erling Smørgrav }
1647