xref: /illumos-gate/usr/src/cmd/cmd-inet/usr.sbin/route.c (revision 1e56f352c1c208679012bca47d552e127f5b1072)
1 /*
2  * Copyright (c) 1989, 2010, Oracle and/or its affiliates. All rights reserved.
3  */
4 
5 /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T	*/
6 /* All Rights Reserved	*/
7 
8 /* Copyright (c) 1990  Mentat Inc. */
9 
10 /*
11  *
12  * Copyright (c) 1983, 1989, 1991, 1993
13  *	The Regents of the University of California.  All rights reserved.
14  *
15  * Redistribution and use in source and binary forms, with or without
16  * modification, are permitted provided that the following conditions
17  * are met:
18  * 1. Redistributions of source code must retain the above copyright
19  *    notice, this list of conditions and the following disclaimer.
20  * 2. Redistributions in binary form must reproduce the above copyright
21  *    notice, this list of conditions and the following disclaimer in the
22  *    documentation and/or other materials provided with the distribution.
23  * 3. All advertising materials mentioning features or use of this software
24  *    must display the following acknowledgement:
25  *	This product includes software developed by the University of
26  *	California, Berkeley and its contributors.
27  * 4. Neither the name of the University nor the names of its contributors
28  *    may be used to endorse or promote products derived from this software
29  *    without specific prior written permission.
30  *
31  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
32  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
33  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
34  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
35  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
36  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
37  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
38  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
39  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
40  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
41  * SUCH DAMAGE.
42  *
43  *	@(#)route.c	8.6 (Berkeley) 4/28/95
44  *	@(#)linkaddr.c	8.1 (Berkeley) 6/4/93
45  */
46 
47 #include <sys/param.h>
48 #include <sys/file.h>
49 #include <sys/socket.h>
50 #include <sys/ioctl.h>
51 #include <sys/stat.h>
52 #include <sys/stream.h>
53 #include <sys/sysmacros.h>
54 #include <sys/tihdr.h>
55 #include <sys/types.h>
56 #include <sys/ccompile.h>
57 
58 #include <net/if.h>
59 #include <net/route.h>
60 #include <net/if_dl.h>
61 #include <netinet/in.h>
62 #include <arpa/inet.h>
63 #include <netdb.h>
64 #include <inet/mib2.h>
65 #include <inet/ip.h>
66 
67 #include <limits.h>
68 #include <locale.h>
69 
70 #include <errno.h>
71 #include <unistd.h>
72 #include <stdio.h>
73 #include <stdlib.h>
74 #include <stddef.h>
75 #include <string.h>
76 #include <stropts.h>
77 #include <fcntl.h>
78 #include <stdarg.h>
79 #include <assert.h>
80 #include <strings.h>
81 
82 #include <libtsnet.h>
83 #include <tsol/label.h>
84 
85 static struct keytab {
86 	char	*kt_cp;
87 	int	kt_i;
88 } keywords[] = {
89 #define	K_ADD		1
90 	{"add",		K_ADD},
91 #define	K_BLACKHOLE	2
92 	{"blackhole",	K_BLACKHOLE},
93 #define	K_CHANGE	3
94 	{"change",	K_CHANGE},
95 #define	K_CLONING	4
96 	{"cloning",	K_CLONING},
97 #define	K_DELETE	5
98 	{"delete",	K_DELETE},
99 #define	K_DST		6
100 	{"dst",		K_DST},
101 #define	K_EXPIRE	7
102 	{"expire",	K_EXPIRE},
103 #define	K_FLUSH		8
104 	{"flush",	K_FLUSH},
105 #define	K_GATEWAY	9
106 	{"gateway",	K_GATEWAY},
107 #define	K_GET		11
108 	{"get",		K_GET},
109 #define	K_HOPCOUNT	12
110 	{"hopcount",	K_HOPCOUNT},
111 #define	K_HOST		13
112 	{"host",	K_HOST},
113 #define	K_IFA		14
114 	{"ifa",		K_IFA},
115 #define	K_IFACE		15
116 	{"iface",	K_IFACE},
117 #define	K_IFP		16
118 	{"ifp",		K_IFP},
119 #define	K_INET		17
120 	{"inet",	K_INET},
121 #define	K_INET6		18
122 	{"inet6",	K_INET6},
123 #define	K_INTERFACE	19
124 	{"interface",	K_INTERFACE},
125 #define	K_LINK		20
126 	{"link",	K_LINK},
127 #define	K_LOCK		21
128 	{"lock",	K_LOCK},
129 #define	K_LOCKREST	22
130 	{"lockrest",	K_LOCKREST},
131 #define	K_MASK		23
132 	{"mask",	K_MASK},
133 #define	K_MONITOR	24
134 	{"monitor",	K_MONITOR},
135 #define	K_MTU		25
136 	{"mtu",		K_MTU},
137 #define	K_NET		26
138 	{"net",		K_NET},
139 #define	K_NETMASK	27
140 	{"netmask",	K_NETMASK},
141 #define	K_NOSTATIC	28
142 	{"nostatic",	K_NOSTATIC},
143 #define	K_PRIVATE	29
144 	{"private",	K_PRIVATE},
145 #define	K_PROTO1	30
146 	{"proto1",	K_PROTO1},
147 #define	K_PROTO2	31
148 	{"proto2",	K_PROTO2},
149 #define	K_RECVPIPE	32
150 	{"recvpipe",	K_RECVPIPE},
151 #define	K_REJECT	33
152 	{"reject",	K_REJECT},
153 #define	K_RTT		34
154 	{"rtt",		K_RTT},
155 #define	K_RTTVAR	35
156 	{"rttvar",	K_RTTVAR},
157 #define	K_SA		36
158 	{"sa",		K_SA},
159 #define	K_SENDPIPE	37
160 	{"sendpipe",	K_SENDPIPE},
161 #define	K_SSTHRESH	38
162 	{"ssthresh",	K_SSTHRESH},
163 #define	K_STATIC	39
164 	{"static",	K_STATIC},
165 #define	K_XRESOLVE	40
166 	{"xresolve",	K_XRESOLVE},
167 #define	K_MULTIRT	41
168 	{"multirt",	K_MULTIRT},
169 #define	K_SETSRC	42
170 	{"setsrc",	K_SETSRC},
171 #define	K_SHOW		43
172 	{"show",	K_SHOW},
173 #define	K_SECATTR	43
174 	{"secattr",	K_SECATTR},
175 #define	K_INDIRECT	44
176 	{"indirect",	K_INDIRECT},
177 	{0, 0}
178 };
179 
180 /*
181  * Size of buffers used to hold command lines from the saved route file as
182  * well as error strings.
183  */
184 #define	BUF_SIZE 2048
185 
186 typedef union sockunion {
187 	struct	sockaddr sa;
188 	struct	sockaddr_in sin;
189 	struct	sockaddr_dl sdl;
190 	struct	sockaddr_in6 sin6;
191 } su_t;
192 
193 /*
194  * This structure represents the digested information from parsing arguments
195  * to route add, change, delete, and get.
196  *
197  */
198 typedef struct rtcmd_irep {
199 	int ri_cmd;
200 	int ri_flags;
201 	int ri_af;
202 	ulong_t	ri_inits;
203 	struct rt_metrics ri_metrics;
204 	int ri_addrs;
205 	su_t ri_dst;
206 	char *ri_dest_str;
207 	su_t ri_src;
208 	su_t ri_gate;
209 	struct hostent *ri_gate_hp;
210 	char *ri_gate_str;
211 	su_t ri_mask;
212 	su_t ri_ifa;
213 	su_t ri_ifp;
214 	char *ri_ifp_str;
215 	int ri_rtsa_cnt;	/* number of gateway security attributes */
216 	struct rtsa_s ri_rtsa;	/* enough space for one attribute */
217 } rtcmd_irep_t;
218 
219 typedef struct	mib_item_s {
220 	struct mib_item_s *next_item;
221 	long group;
222 	long mib_id;
223 	long length;
224 	intmax_t *valp;
225 } mib_item_t;
226 
227 typedef enum {
228 	ADDR_TYPE_ANY,
229 	ADDR_TYPE_HOST,
230 	ADDR_TYPE_NET
231 } addr_type_t;
232 
233 typedef enum {
234 	SEARCH_MODE_NULL,
235 	SEARCH_MODE_PRINT,
236 	SEARCH_MODE_DEL
237 } search_mode_t;
238 
239 static boolean_t	args_to_rtcmd(rtcmd_irep_t *rcip, char **argv,
240     char *cmd_string);
241 static void		bprintf(FILE *fp, int b, char *s);
242 static boolean_t	compare_rtcmd(rtcmd_irep_t *srch_rt,
243     rtcmd_irep_t *file_rt);
244 static void		delRouteEntry(mib2_ipRouteEntry_t *rp,
245     mib2_ipv6RouteEntry_t *rp6, int seqno);
246 static void		del_rtcmd_irep(rtcmd_irep_t *rcip);
247 static void		flushroutes(int argc, char *argv[]);
248 static boolean_t	getaddr(rtcmd_irep_t *rcip, int which, char *s,
249     addr_type_t atype);
250 static boolean_t	in6_getaddr(char *s, struct sockaddr_in6 *sin6,
251     int *plenp, struct hostent **hpp);
252 static boolean_t	in_getaddr(char *s, struct sockaddr_in *sin,
253     int *plenp, int which, struct hostent **hpp, addr_type_t atype,
254     rtcmd_irep_t *rcip);
255 static int		in_getprefixlen(char *addr, int max_plen);
256 static boolean_t	in_prefixlentomask(int prefixlen, int maxlen,
257     uchar_t *mask);
258 static void		inet_makenetandmask(rtcmd_irep_t *rcip, in_addr_t net,
259     struct sockaddr_in *sin);
260 static in_addr_t	inet_makesubnetmask(in_addr_t addr, in_addr_t mask);
261 static int		keyword(const char *cp);
262 static void		link_addr(const char *addr, struct sockaddr_dl *sdl);
263 static char		*link_ntoa(const struct sockaddr_dl *sdl);
264 static mib_item_t	*mibget(int sd);
265 static char		*netname(struct sockaddr *sa);
266 static int		newroute(char **argv);
267 static rtcmd_irep_t	*new_rtcmd_irep(void);
268 static void		pmsg_addrs(const char *cp, size_t len, uint_t addrs);
269 static void		pmsg_common(const struct rt_msghdr *rtm, size_t len);
270 static void		print_getmsg(rtcmd_irep_t *req_rt,
271     struct rt_msghdr *rtm, int msglen);
272 static void		print_rtcmd_short(FILE *to, rtcmd_irep_t *rcip,
273     boolean_t gw_good, boolean_t to_saved);
274 static void		print_rtmsg(struct rt_msghdr *rtm, int msglen);
275 static void		quit(char *s, int err) __NORETURN;
276 static char		*routename(const struct sockaddr *sa);
277 static void		rtmonitor(int argc, char *argv[]);
278 static int		rtmsg(rtcmd_irep_t *rcip);
279 static int		salen(const struct sockaddr *sa);
280 static void		save_route(int argc, char **argv, int do_flush);
281 static void		save_string(char **dst, char *src);
282 static int		search_rtfile(FILE *fp, FILE *temp_fp, rtcmd_irep_t *rt,
283     search_mode_t mode);
284 static void		set_metric(rtcmd_irep_t *rcip, char *value, int key,
285     boolean_t lock);
286 static int		show_saved_routes(int argc);
287 static void		sockaddr(char *addr, struct sockaddr *sa);
288 static void		sodump(su_t *su, char *which);
289 static void		syntax_arg_missing(char *keyword);
290 static void		syntax_bad_keyword(char *keyword);
291 static void		syntax_error(char *err, ...);
292 static void		usage(char *cp);
293 static void		write_to_rtfile(FILE *fp, int argc, char **argv);
294 static void		pmsg_secattr(const char *, size_t, const char *);
295 
296 static pid_t		pid;
297 static int		s;
298 static boolean_t	nflag;
299 static int		af = AF_INET;
300 static boolean_t	qflag, tflag;
301 static boolean_t	verbose;
302 static boolean_t	debugonly;
303 static boolean_t	fflag;
304 static boolean_t	update_table;
305 static boolean_t	perm_flag;
306 static boolean_t	early_v6_keyword;
307 static char		perm_file_sfx[] = "/etc/inet/static_routes";
308 static char		*perm_file;
309 static char		temp_file_sfx[] = "/etc/inet/static_routes.tmp";
310 static char		*temp_file;
311 static struct in6_addr	in6_host_mask = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
312     0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
313 /*
314  * WARNING:
315  * This next variable indicates whether certain functions exit when an error
316  * is detected in the user input.  Currently, exit_on_error is only set false
317  * in search_rtfile(), when argument are being parsed.  Only those functions
318  * used by search_rtfile() to parse its arguments are designed to work in
319  * both modes.  Take particular care in setting this false to ensure that any
320  * functions you call that might act on this flag properly return errors when
321  * exit_on_error is false.
322  */
323 static int		exit_on_error = B_TRUE;
324 
325 static struct {
326 	struct	rt_msghdr m_rtm;
327 	char	m_space[BUF_SIZE];
328 } m_rtmsg;
329 
330 /*
331  * Sizes of data structures extracted from the base mib.
332  * This allows the size of the tables entries to grow while preserving
333  * binary compatibility.
334  */
335 static int ipRouteEntrySize;
336 static int ipv6RouteEntrySize;
337 
338 #define	ROUNDUP_LONG(a) \
339 	((a) > 0 ? (1 + (((a) - 1) | (sizeof (long) - 1))) : sizeof (long))
340 #define	ADVANCE(x, n) ((x) += ROUNDUP_LONG(salen(n)))
341 #define	C(x)	((x) & 0xff)
342 
343 /*
344  * return values from in_getprefixlen()
345  */
346 #define	BAD_ADDR	-1	/* prefix is invalid */
347 #define	NO_PREFIX	-2	/* no prefix was found */
348 
349 void
350 usage(char *cp)
351 {
352 	if (cp != NULL) {
353 		(void) fprintf(stderr, gettext("route: botched keyword: %s\n"),
354 		    cp);
355 	}
356 	(void) fprintf(stderr, gettext("usage: route [ -fnpqv ] "
357 	    "[ -R <root-dir> ] cmd [[ -<qualifers> ] args ]\n"));
358 	exit(1);
359 	/* NOTREACHED */
360 }
361 
362 /*PRINTFLIKE1*/
363 void
364 syntax_error(char *err, ...)
365 {
366 	va_list args;
367 
368 	if (exit_on_error) {
369 		va_start(args, err);
370 		(void) vfprintf(stderr, err, args);
371 		va_end(args);
372 		exit(1);
373 	}
374 	/* NOTREACHED */
375 }
376 
377 void
378 syntax_bad_keyword(char *keyword)
379 {
380 	syntax_error(gettext("route: botched keyword: %s\n"), keyword);
381 }
382 
383 void
384 syntax_arg_missing(char *keyword)
385 {
386 	syntax_error(gettext("route: argument required following keyword %s\n"),
387 	    keyword);
388 }
389 
390 void
391 quit(char *s, int sverrno)
392 {
393 	(void) fprintf(stderr, "route: ");
394 	if (s != NULL)
395 		(void) fprintf(stderr, "%s: ", s);
396 	(void) fprintf(stderr, "%s\n", strerror(sverrno));
397 	exit(sverrno);
398 	/* NOTREACHED */
399 }
400 
401 int
402 main(int argc, char **argv)
403 {
404 	extern int optind;
405 	extern char *optarg;
406 	int ch;
407 	int rval;
408 	size_t size;
409 	const char *root_dir = NULL;
410 
411 	(void) setlocale(LC_ALL, "");
412 
413 #if !defined(TEXT_DOMAIN)
414 #define	TEXT_DOMAIN "SYS_TEST"
415 #endif
416 	(void) textdomain(TEXT_DOMAIN);
417 
418 	if (argc < 2)
419 		usage(NULL);
420 
421 	while ((ch = getopt(argc, argv, "R:nqdtvfp")) != EOF) {
422 		switch (ch) {
423 		case 'n':
424 			nflag = B_TRUE;
425 			break;
426 		case 'q':
427 			qflag = B_TRUE;
428 			break;
429 		case 'v':
430 			verbose = B_TRUE;
431 			break;
432 		case 't':
433 			tflag = B_TRUE;
434 			break;
435 		case 'd':
436 			debugonly = B_TRUE;
437 			break;
438 		case 'f':
439 			fflag = B_TRUE;
440 			break;
441 		case 'p':
442 			perm_flag = B_TRUE;
443 			break;
444 		case 'R':
445 			root_dir = optarg;
446 			break;
447 		case '?':
448 		default:
449 			usage(NULL);
450 			/* NOTREACHED */
451 		}
452 	}
453 	argc -= optind;
454 	argv += optind;
455 
456 	pid = getpid();
457 	if (tflag)
458 		s = open("/dev/null", O_WRONLY);
459 	else
460 		s = socket(PF_ROUTE, SOCK_RAW, 0);
461 	if (s < 0)
462 		quit("socket", errno);
463 
464 	/*
465 	 * Handle the -p and -R flags.  The -R flag only applies
466 	 * when the -p flag is set.
467 	 */
468 	if (root_dir == NULL) {
469 		perm_file = perm_file_sfx;
470 		temp_file = temp_file_sfx;
471 	} else {
472 		size = strlen(root_dir) + sizeof (perm_file_sfx);
473 		perm_file = malloc(size);
474 		if (perm_file == NULL)
475 			quit("malloc", errno);
476 		(void) snprintf(perm_file, size, "%s%s", root_dir,
477 		    perm_file_sfx);
478 		size = strlen(root_dir) + sizeof (temp_file_sfx);
479 		temp_file = malloc(size);
480 		if (temp_file == NULL)
481 			quit("malloc", errno);
482 		(void) snprintf(temp_file, size, "%s%s", root_dir,
483 		    temp_file_sfx);
484 	}
485 	/*
486 	 * Whether or not to act on the routing table.  The only time the
487 	 * routing table is not modified is when both -p and -R are present.
488 	 */
489 	update_table = (!perm_flag || root_dir == NULL);
490 	if (tflag)
491 		perm_flag = 0;
492 
493 	if (fflag) {
494 		/*
495 		 * Accept an address family keyword after the -f.  Since the
496 		 * default address family is AF_INET, reassign af only for the
497 		 * other valid address families.
498 		 */
499 		if (*argv != NULL) {
500 			switch (keyword(*argv)) {
501 			case K_INET6:
502 				af = AF_INET6;
503 				early_v6_keyword = B_TRUE;
504 				/* fallthrough */
505 			case K_INET:
506 				/* Skip over the address family parameter. */
507 				argc--;
508 				argv++;
509 				break;
510 			}
511 		}
512 		flushroutes(0, NULL);
513 	}
514 
515 	if (*argv != NULL) {
516 		switch (keyword(*argv)) {
517 		case K_GET:
518 		case K_CHANGE:
519 		case K_ADD:
520 		case K_DELETE:
521 			rval = 0;
522 			if (update_table) {
523 				rval = newroute(argv);
524 			}
525 			if (perm_flag && (rval == 0 || rval == EEXIST ||
526 			    rval == ESRCH)) {
527 				save_route(argc, argv, B_FALSE);
528 				return (0);
529 			}
530 			return (rval);
531 		case K_SHOW:
532 			if (perm_flag) {
533 				return (show_saved_routes(argc));
534 			} else {
535 				syntax_error(gettext(
536 				    "route: show command requires -p\n"));
537 			}
538 			/* NOTREACHED */
539 		case K_MONITOR:
540 			rtmonitor(argc, argv);
541 			/* NOTREACHED */
542 
543 		case K_FLUSH:
544 			flushroutes(argc, argv);
545 			return (0);
546 		}
547 	}
548 	if (!fflag)
549 		usage(*argv);
550 	return (0);
551 }
552 
553 /*
554  * Purge all entries in the routing tables not
555  * associated with network interfaces.
556  */
557 void
558 flushroutes(int argc, char *argv[])
559 {
560 	int seqno;
561 	int sd;	/* mib stream */
562 	mib_item_t	*item;
563 	mib2_ipRouteEntry_t *rp;
564 	mib2_ipv6RouteEntry_t *rp6;
565 	int oerrno;
566 	int off = 0;
567 	int on = 1;
568 
569 	if (argc > 1) {
570 		argv++;
571 		if (argc == 2 && **argv == '-') {
572 			/*
573 			 * The address family (preceded by a dash) may be used
574 			 * to flush the routes of that particular family.
575 			 */
576 			switch (keyword(*argv + 1)) {
577 			case K_INET:
578 				af = AF_INET;
579 				break;
580 			case K_LINK:
581 				af = AF_LINK;
582 				break;
583 			case K_INET6:
584 				af = AF_INET6;
585 				break;
586 			default:
587 				usage(*argv);
588 				/* NOTREACHED */
589 			}
590 		} else {
591 			usage(*argv);
592 		}
593 	}
594 	if (perm_flag) {
595 		/* This flushes the persistent route file */
596 		save_route(0, NULL, B_TRUE);
597 	}
598 	if (!update_table) {
599 		return;
600 	}
601 
602 	if (setsockopt(s, SOL_SOCKET, SO_USELOOPBACK, (char *)&off,
603 	    sizeof (off)) < 0)
604 		quit("setsockopt", errno);
605 
606 	sd = open("/dev/ip", O_RDWR);
607 	oerrno = errno;
608 	if (sd < 0) {
609 		switch (errno) {
610 		case EACCES:
611 			(void) fprintf(stderr,
612 			    gettext("route: flush: insufficient privileges\n"));
613 			exit(oerrno);
614 			/* NOTREACHED */
615 		default:
616 			quit(gettext("can't open mib stream"), oerrno);
617 			/* NOTREACHED */
618 		}
619 	}
620 	if ((item = mibget(sd)) == NULL)
621 		quit("mibget", errno);
622 	if (verbose) {
623 		(void) printf("Examining routing table from "
624 		    "T_SVR4_OPTMGMT_REQ\n");
625 	}
626 	seqno = 0;		/* ??? */
627 	switch (af) {
628 	case AF_INET:
629 		/* Extract ipRouteEntrySize */
630 		for (; item != NULL; item = item->next_item) {
631 			if (item->mib_id != 0)
632 				continue;
633 			if (item->group == MIB2_IP) {
634 				ipRouteEntrySize =
635 				    ((mib2_ip_t *)item->valp)->ipRouteEntrySize;
636 				assert(IS_P2ALIGNED(ipRouteEntrySize,
637 				    sizeof (mib2_ipRouteEntry_t *)));
638 				break;
639 			}
640 		}
641 		if (ipRouteEntrySize == 0) {
642 			(void) fprintf(stderr,
643 			    gettext("ipRouteEntrySize can't be determined.\n"));
644 			exit(1);
645 		}
646 		for (; item != NULL; item = item->next_item) {
647 			/*
648 			 * skip all the other trash that comes up the mib stream
649 			 */
650 			if (item->group != MIB2_IP ||
651 			    item->mib_id != MIB2_IP_ROUTE)
652 				continue;
653 			for (rp = (mib2_ipRouteEntry_t *)item->valp;
654 			    (char *)rp < (char *)item->valp + item->length;
655 			    /* LINTED */
656 			    rp = (mib2_ipRouteEntry_t *)
657 			    ((char *)rp + ipRouteEntrySize)) {
658 				delRouteEntry(rp, NULL, seqno);
659 				seqno++;
660 			}
661 			break;
662 		}
663 		break;
664 	case AF_INET6:
665 		/* Extract ipv6RouteEntrySize */
666 		for (; item != NULL; item = item->next_item) {
667 			if (item->mib_id != 0)
668 				continue;
669 			if (item->group == MIB2_IP6) {
670 				ipv6RouteEntrySize =
671 				    ((mib2_ipv6IfStatsEntry_t *)item->valp)->
672 				    ipv6RouteEntrySize;
673 				assert(IS_P2ALIGNED(ipv6RouteEntrySize,
674 				    sizeof (mib2_ipv6RouteEntry_t *)));
675 				break;
676 			}
677 		}
678 		if (ipv6RouteEntrySize == 0) {
679 			(void) fprintf(stderr, gettext(
680 			    "ipv6RouteEntrySize cannot be determined.\n"));
681 			exit(1);
682 		}
683 		for (; item != NULL; item = item->next_item) {
684 			/*
685 			 * skip all the other trash that comes up the mib stream
686 			 */
687 			if (item->group != MIB2_IP6 ||
688 			    item->mib_id != MIB2_IP6_ROUTE)
689 				continue;
690 			for (rp6 = (mib2_ipv6RouteEntry_t *)item->valp;
691 			    (char *)rp6 < (char *)item->valp + item->length;
692 			    /* LINTED */
693 			    rp6 = (mib2_ipv6RouteEntry_t *)
694 			    ((char *)rp6 + ipv6RouteEntrySize)) {
695 				delRouteEntry(NULL, rp6, seqno);
696 				seqno++;
697 			}
698 			break;
699 		}
700 		break;
701 	}
702 
703 	if (setsockopt(s, SOL_SOCKET, SO_USELOOPBACK, (char *)&on,
704 	    sizeof (on)) < 0)
705 		quit("setsockopt", errno);
706 }
707 
708 /*
709  * Given the contents of a mib_item_t of id type MIB2_IP_ROUTE or
710  * MIB2_IP6_ROUTE, construct and send an RTM_DELETE routing socket message in
711  * order to facilitate the flushing of RTF_GATEWAY routes.
712  */
713 static void
714 delRouteEntry(mib2_ipRouteEntry_t *rp, mib2_ipv6RouteEntry_t *rp6, int seqno)
715 {
716 	char *cp;
717 	int ire_type;
718 	int rlen;
719 	struct rt_msghdr *rtm;
720 	struct sockaddr_in sin;
721 	struct sockaddr_in6 sin6;
722 	int slen;
723 
724 	if (rp != NULL)
725 		ire_type = rp->ipRouteInfo.re_ire_type;
726 	else
727 		ire_type = rp6->ipv6RouteInfo.re_ire_type;
728 	if (ire_type != IRE_DEFAULT &&
729 	    ire_type != IRE_PREFIX &&
730 	    ire_type != IRE_HOST &&
731 	    ire_type != IRE_HOST_REDIRECT)
732 		return;
733 
734 	rtm = &m_rtmsg.m_rtm;
735 	(void) memset(rtm, 0, sizeof (m_rtmsg));
736 	rtm->rtm_type = RTM_DELETE;
737 	rtm->rtm_seq = seqno;
738 	rtm->rtm_flags |= RTF_GATEWAY;
739 	rtm->rtm_version = RTM_VERSION;
740 	rtm->rtm_addrs = RTA_DST | RTA_GATEWAY | RTA_NETMASK;
741 	cp = m_rtmsg.m_space;
742 	if (rp != NULL) {
743 		slen = sizeof (struct sockaddr_in);
744 		if (rp->ipRouteMask == IP_HOST_MASK)
745 			rtm->rtm_flags |= RTF_HOST;
746 		(void) memset(&sin, 0, slen);
747 		sin.sin_family = AF_INET;
748 		sin.sin_addr.s_addr = rp->ipRouteDest;
749 		(void) memmove(cp, &sin, slen);
750 		cp += slen;
751 		sin.sin_addr.s_addr = rp->ipRouteNextHop;
752 		(void) memmove(cp, &sin, slen);
753 		cp += slen;
754 		sin.sin_addr.s_addr = rp->ipRouteMask;
755 		(void) memmove(cp, &sin, slen);
756 		cp += slen;
757 	} else {
758 		slen = sizeof (struct sockaddr_in6);
759 		if (rp6->ipv6RoutePfxLength == IPV6_ABITS)
760 			rtm->rtm_flags |= RTF_HOST;
761 		(void) memset(&sin6, 0, slen);
762 		sin6.sin6_family = AF_INET6;
763 		sin6.sin6_addr = rp6->ipv6RouteDest;
764 		(void) memmove(cp, &sin6, slen);
765 		cp += slen;
766 		sin6.sin6_addr = rp6->ipv6RouteNextHop;
767 		(void) memmove(cp, &sin6, slen);
768 		cp += slen;
769 		(void) memset(&sin6.sin6_addr, 0, sizeof (sin6.sin6_addr));
770 		(void) in_prefixlentomask(rp6->ipv6RoutePfxLength, IPV6_ABITS,
771 		    (uchar_t *)&sin6.sin6_addr.s6_addr);
772 		(void) memmove(cp, &sin6, slen);
773 		cp += slen;
774 	}
775 	rtm->rtm_msglen = cp - (char *)&m_rtmsg;
776 	if (debugonly) {
777 		/*
778 		 * In debugonly mode, the routing socket message to delete the
779 		 * current entry is not actually sent.  However if verbose is
780 		 * also set, the routing socket message that would have been
781 		 * is printed.
782 		 */
783 		if (verbose)
784 			print_rtmsg(rtm, rtm->rtm_msglen);
785 		return;
786 	}
787 
788 	rlen = write(s, (char *)&m_rtmsg, rtm->rtm_msglen);
789 	if (rlen < (int)rtm->rtm_msglen) {
790 		if (rlen < 0) {
791 			(void) fprintf(stderr,
792 			    gettext("route: write to routing socket: %s\n"),
793 			    strerror(errno));
794 		} else {
795 			(void) fprintf(stderr, gettext("route: write to "
796 			    "routing socket got only %d for rlen\n"), rlen);
797 		}
798 		return;
799 	}
800 	if (qflag) {
801 		/*
802 		 * In quiet mode, nothing is printed at all (unless the write()
803 		 * itself failed.
804 		 */
805 		return;
806 	}
807 	if (verbose) {
808 		print_rtmsg(rtm, rlen);
809 	} else {
810 		struct sockaddr *sa = (struct sockaddr *)(rtm + 1);
811 
812 		(void) printf("%-20.20s ",
813 		    rtm->rtm_flags & RTF_HOST ? routename(sa) :
814 		    netname(sa));
815 		/* LINTED */
816 		sa = (struct sockaddr *)(salen(sa) + (char *)sa);
817 		(void) printf("%-20.20s ", routename(sa));
818 		(void) printf("done\n");
819 	}
820 }
821 
822 /*
823  * Return the name of the host whose address is given.
824  */
825 char *
826 routename(const struct sockaddr *sa)
827 {
828 	char *cp;
829 	static char line[MAXHOSTNAMELEN + 1];
830 	struct hostent *hp = NULL;
831 	static char domain[MAXHOSTNAMELEN + 1];
832 	static boolean_t first = B_TRUE;
833 	struct in_addr in;
834 	struct in6_addr in6;
835 	int error_num;
836 	ushort_t *s;
837 	ushort_t *slim;
838 
839 	if (first) {
840 		first = B_FALSE;
841 		if (gethostname(domain, MAXHOSTNAMELEN) == 0 &&
842 		    (cp = strchr(domain, '.')))
843 			(void) strcpy(domain, cp + 1);
844 		else
845 			domain[0] = 0;
846 	}
847 
848 	if (salen(sa) == 0) {
849 		(void) strcpy(line, "default");
850 		return (line);
851 	}
852 	switch (sa->sa_family) {
853 
854 	case AF_INET:
855 		/* LINTED */
856 		in = ((struct sockaddr_in *)sa)->sin_addr;
857 
858 		cp = NULL;
859 		if (in.s_addr == INADDR_ANY)
860 			cp = "default";
861 		if (cp == NULL && !nflag) {
862 			hp = gethostbyaddr((char *)&in, sizeof (struct in_addr),
863 			    AF_INET);
864 			if (hp != NULL) {
865 				if (((cp = strchr(hp->h_name, '.')) != NULL) &&
866 				    (strcmp(cp + 1, domain) == 0))
867 					*cp = 0;
868 				cp = hp->h_name;
869 			}
870 		}
871 		if (cp != NULL) {
872 			(void) strncpy(line, cp, MAXHOSTNAMELEN);
873 			line[MAXHOSTNAMELEN] = '\0';
874 		} else {
875 			in.s_addr = ntohl(in.s_addr);
876 			(void) sprintf(line, "%u.%u.%u.%u", C(in.s_addr >> 24),
877 			    C(in.s_addr >> 16), C(in.s_addr >> 8),
878 			    C(in.s_addr));
879 		}
880 		break;
881 
882 	case AF_LINK:
883 		return (link_ntoa((struct sockaddr_dl *)sa));
884 
885 	case AF_INET6:
886 		/* LINTED */
887 		in6 = ((struct sockaddr_in6 *)sa)->sin6_addr;
888 
889 		cp = NULL;
890 		if (IN6_IS_ADDR_UNSPECIFIED(&in6))
891 			cp = "default";
892 		if (cp == NULL && !nflag) {
893 			hp = getipnodebyaddr((char *)&in6,
894 			    sizeof (struct in6_addr), AF_INET6, &error_num);
895 			if (hp != NULL) {
896 				if (((cp = strchr(hp->h_name, '.')) != NULL) &&
897 				    (strcmp(cp + 1, domain) == 0))
898 					*cp = 0;
899 				cp = hp->h_name;
900 			}
901 		}
902 		if (cp != NULL) {
903 			(void) strncpy(line, cp, MAXHOSTNAMELEN);
904 			line[MAXHOSTNAMELEN] = '\0';
905 		} else {
906 			(void) inet_ntop(AF_INET6, (void *)&in6, line,
907 			    INET6_ADDRSTRLEN);
908 		}
909 		if (hp != NULL)
910 			freehostent(hp);
911 
912 		break;
913 
914 	default:
915 		s = (ushort_t *)sa;
916 
917 		slim = s + ((salen(sa) + 1) >> 1);
918 		cp = line + sprintf(line, "(%d)", sa->sa_family);
919 
920 		while (++s < slim) /* start with sa->sa_data */
921 			cp += sprintf(cp, " %x", *s);
922 		break;
923 	}
924 	return (line);
925 }
926 
927 /*
928  * Return the name of the network whose address is given.
929  * The address is assumed to be that of a net or subnet, not a host.
930  */
931 static char *
932 netname(struct sockaddr *sa)
933 {
934 	char *cp = NULL;
935 	static char line[MAXHOSTNAMELEN + 1];
936 	struct netent *np;
937 	in_addr_t net, mask;
938 	int subnetshift;
939 	struct in_addr in;
940 	ushort_t *s;
941 	ushort_t *slim;
942 
943 	switch (sa->sa_family) {
944 
945 	case AF_INET:
946 		/* LINTED */
947 		in = ((struct sockaddr_in *)sa)->sin_addr;
948 
949 		in.s_addr = ntohl(in.s_addr);
950 		if (in.s_addr == INADDR_ANY) {
951 			cp = "default";
952 		} else if (!nflag) {
953 			if (IN_CLASSA(in.s_addr)) {
954 				mask = IN_CLASSA_NET;
955 				subnetshift = 8;
956 			} else if (IN_CLASSB(in.s_addr)) {
957 				mask = IN_CLASSB_NET;
958 				subnetshift = 8;
959 			} else {
960 				mask = IN_CLASSC_NET;
961 				subnetshift = 4;
962 			}
963 			/*
964 			 * If there are more bits than the standard mask
965 			 * would suggest, subnets must be in use.
966 			 * Guess at the subnet mask, assuming reasonable
967 			 * width subnet fields.
968 			 */
969 			while (in.s_addr &~ mask)
970 				mask = (long)mask >> subnetshift;
971 			net = in.s_addr & mask;
972 			while ((mask & 1) == 0)
973 				mask >>= 1, net >>= 1;
974 			np = getnetbyaddr(net, AF_INET);
975 			if (np != NULL)
976 				cp = np->n_name;
977 		}
978 		if (cp != NULL) {
979 			(void) strncpy(line, cp, MAXHOSTNAMELEN);
980 			line[MAXHOSTNAMELEN] = '\0';
981 		} else if ((in.s_addr & 0xffffff) == 0) {
982 			(void) sprintf(line, "%u", C(in.s_addr >> 24));
983 		} else if ((in.s_addr & 0xffff) == 0) {
984 			(void) sprintf(line, "%u.%u", C(in.s_addr >> 24),
985 			    C(in.s_addr >> 16));
986 		} else if ((in.s_addr & 0xff) == 0) {
987 			(void) sprintf(line, "%u.%u.%u", C(in.s_addr >> 24),
988 			    C(in.s_addr >> 16), C(in.s_addr >> 8));
989 		} else {
990 			(void) sprintf(line, "%u.%u.%u.%u", C(in.s_addr >> 24),
991 			    C(in.s_addr >> 16), C(in.s_addr >> 8),
992 			    C(in.s_addr));
993 		}
994 		break;
995 
996 	case AF_LINK:
997 		return (link_ntoa((struct sockaddr_dl *)sa));
998 
999 	case AF_INET6:
1000 		return (routename(sa));
1001 
1002 	default:
1003 		/* LINTED */
1004 		s = (ushort_t *)sa->sa_data;
1005 
1006 		slim = s + ((salen(sa) + 1) >> 1);
1007 		cp = line + sprintf(line, "af %d:", sa->sa_family);
1008 
1009 		while (s < slim)
1010 			cp += sprintf(cp, " %x", *s++);
1011 		break;
1012 	}
1013 	return (line);
1014 }
1015 
1016 /*
1017  * Initialize a new structure.  Keep in mind that ri_dst_str, ri_gate_str and
1018  * ri_ifp_str will be freed by det_rtcmd_irep, so they should either be NULL
1019  * or point to dynamically allocated memory.
1020  */
1021 rtcmd_irep_t *
1022 new_rtcmd_irep(void)
1023 {
1024 	rtcmd_irep_t *rcip;
1025 
1026 	rcip = calloc(1, sizeof (rtcmd_irep_t));
1027 	if (rcip == NULL) {
1028 		quit("calloc", errno);
1029 	}
1030 	rcip->ri_af = af;
1031 	rcip->ri_flags = RTF_STATIC;
1032 	return (rcip);
1033 }
1034 
1035 void
1036 del_rtcmd_irep(rtcmd_irep_t *rcip)
1037 {
1038 	free(rcip->ri_dest_str);
1039 	free(rcip->ri_gate_str);
1040 	free(rcip->ri_ifp_str);
1041 	/*
1042 	 * IPv6 host entries come from getipnodebyname, which dynamically
1043 	 * allocates memory.  IPv4 host entries come from gethostbyname, which
1044 	 * returns static memory and cannot be freed with freehostent.
1045 	 */
1046 	if (rcip->ri_gate_hp != NULL &&
1047 	    rcip->ri_gate_hp->h_addrtype == AF_INET6)
1048 		freehostent(rcip->ri_gate_hp);
1049 	free(rcip);
1050 }
1051 
1052 void
1053 save_string(char **dst, char *src)
1054 {
1055 	free(*dst);
1056 	*dst = strdup(src);
1057 	if (*dst == NULL) {
1058 		quit("malloc", errno);
1059 	}
1060 }
1061 
1062 /*
1063  * Print the short form summary of a route command.
1064  * Eg. "add net default: gateway 10.0.0.1"
1065  * The final newline is not added, allowing the caller to append additional
1066  * information.
1067  */
1068 void
1069 print_rtcmd_short(FILE *to, rtcmd_irep_t *rcip, boolean_t gw_good,
1070     boolean_t to_saved)
1071 {
1072 	char *cmd;
1073 	char obuf[INET6_ADDRSTRLEN];
1074 
1075 	switch (rcip->ri_cmd) {
1076 	case RTM_ADD:
1077 		cmd = "add";
1078 		break;
1079 	case RTM_CHANGE:
1080 		cmd = "change";
1081 		break;
1082 	case RTM_DELETE:
1083 		cmd = "delete";
1084 		break;
1085 	case RTM_GET:
1086 		cmd = "get";
1087 		break;
1088 	default:
1089 		assert(0);
1090 	}
1091 
1092 	(void) fprintf(to, "%s%s %s %s", cmd,
1093 	    (to_saved) ? " persistent" : "",
1094 	    (rcip->ri_flags & RTF_HOST) ? "host" : "net",
1095 	    (rcip->ri_dest_str == NULL) ? "NULL" : rcip->ri_dest_str);
1096 
1097 	if (rcip->ri_gate_str != NULL) {
1098 		switch (rcip->ri_af) {
1099 		case AF_INET:
1100 			if (nflag) {
1101 				(void) fprintf(to, ": gateway %s",
1102 				    inet_ntoa(rcip->ri_gate.sin.sin_addr));
1103 			} else if (gw_good &&
1104 			    rcip->ri_gate_hp != NULL &&
1105 			    rcip->ri_gate_hp->h_addr_list[1] != NULL) {
1106 				/*
1107 				 * Print the actual address used in the case
1108 				 * where there was more than one address
1109 				 * available for the name, and one was used
1110 				 * successfully.
1111 				 */
1112 				(void) fprintf(to, ": gateway %s (%s)",
1113 				    rcip->ri_gate_str,
1114 				    inet_ntoa(rcip->ri_gate.sin.sin_addr));
1115 			} else {
1116 				(void) fprintf(to, ": gateway %s",
1117 				    rcip->ri_gate_str);
1118 			}
1119 			break;
1120 		case AF_INET6:
1121 			if (inet_ntop(AF_INET6,
1122 			    &rcip->ri_gate.sin6.sin6_addr, obuf,
1123 			    INET6_ADDRSTRLEN) != NULL) {
1124 				if (nflag) {
1125 					(void) fprintf(to, ": gateway %s",
1126 					    obuf);
1127 					break;
1128 				}
1129 				if (gw_good &&
1130 				    rcip->ri_gate_hp->h_addr_list[1] != NULL) {
1131 					(void) fprintf(to, ": gateway %s (%s)",
1132 					    rcip->ri_gate_str, obuf);
1133 					break;
1134 				}
1135 			}
1136 			/* FALLTHROUGH */
1137 		default:
1138 			(void) fprintf(to, ": gateway %s",
1139 			    rcip->ri_gate_str);
1140 			break;
1141 		}
1142 	}
1143 }
1144 
1145 void
1146 set_metric(rtcmd_irep_t *rcip, char *value, int key, boolean_t lock)
1147 {
1148 	int flag = 0;
1149 	uint_t noval, *valp = &noval;
1150 
1151 	switch (key) {
1152 #define	caseof(x, y, z)	\
1153 	case (x): valp = &(rcip->ri_metrics.z); flag = (y); break
1154 
1155 	caseof(K_MTU, RTV_MTU, rmx_mtu);
1156 	caseof(K_HOPCOUNT, RTV_HOPCOUNT, rmx_hopcount);
1157 	caseof(K_EXPIRE, RTV_EXPIRE, rmx_expire);
1158 	caseof(K_RECVPIPE, RTV_RPIPE, rmx_recvpipe);
1159 	caseof(K_SENDPIPE, RTV_SPIPE, rmx_sendpipe);
1160 	caseof(K_SSTHRESH, RTV_SSTHRESH, rmx_ssthresh);
1161 	caseof(K_RTT, RTV_RTT, rmx_rtt);
1162 	caseof(K_RTTVAR, RTV_RTTVAR, rmx_rttvar);
1163 #undef	caseof
1164 	}
1165 	rcip->ri_inits |= flag;
1166 	if (lock)
1167 		rcip->ri_metrics.rmx_locks |= flag;
1168 	*valp = atoi(value);
1169 }
1170 
1171 /*
1172  * Parse the options give in argv[], filling in rcip with the results.
1173  * If cmd_string is non-null, argc and argv are ignored, and cmd_string is
1174  * tokenized to produce the command line.  Cmd_string is tokenized using
1175  * strtok, which will overwrite whitespace in the string with nulls.
1176  *
1177  * Returns B_TRUE on success and B_FALSE on failure.
1178  */
1179 boolean_t
1180 args_to_rtcmd(rtcmd_irep_t *rcip, char **argv, char *cmd_string)
1181 {
1182 	const char *ws = "\f\n\r\t\v ";
1183 	char *tok = cmd_string;
1184 	char *keyword_str;
1185 	addr_type_t atype = ADDR_TYPE_ANY;
1186 	boolean_t iflag = B_FALSE;
1187 	boolean_t locknext = B_FALSE;
1188 	boolean_t lockrest = B_FALSE;
1189 	boolean_t dash_keyword;
1190 	int key;
1191 	char *err;
1192 
1193 	if (cmd_string == NULL) {
1194 		tok = argv[0];
1195 	} else {
1196 		tok = strtok(cmd_string, ws);
1197 	}
1198 
1199 	/*
1200 	 * The command keywords are already fully checked by main() or
1201 	 * search_rtfile().
1202 	 */
1203 	switch (*tok) {
1204 	case 'a':
1205 		rcip->ri_cmd = RTM_ADD;
1206 		break;
1207 	case 'c':
1208 		rcip->ri_cmd = RTM_CHANGE;
1209 		break;
1210 	case 'd':
1211 		rcip->ri_cmd = RTM_DELETE;
1212 		break;
1213 	case 'g':
1214 		rcip->ri_cmd = RTM_GET;
1215 		break;
1216 	default:
1217 		/* NOTREACHED */
1218 		quit(gettext("Internal Error"), EINVAL);
1219 		/* NOTREACHED */
1220 	}
1221 
1222 #define	NEXTTOKEN \
1223 	((tok = (cmd_string == NULL ? *++argv : strtok(NULL, ws))) != NULL)
1224 
1225 	while (NEXTTOKEN) {
1226 		keyword_str = tok;
1227 		if (*tok == '-') {
1228 			dash_keyword = B_TRUE;
1229 			key = keyword(tok + 1);
1230 		} else {
1231 			dash_keyword = B_FALSE;
1232 			key = keyword(tok);
1233 			if (key != K_HOST && key != K_NET) {
1234 				/* All others must be preceded by '-' */
1235 				key = 0;
1236 			}
1237 		}
1238 		switch (key) {
1239 		case K_HOST:
1240 			if (atype == ADDR_TYPE_NET) {
1241 				syntax_error(gettext("route: -host and -net "
1242 				    "are mutually exclusive\n"));
1243 				return (B_FALSE);
1244 			}
1245 			atype = ADDR_TYPE_HOST;
1246 			break;
1247 		case K_NET:
1248 			if (atype == ADDR_TYPE_HOST) {
1249 				syntax_error(gettext("route: -host and -net "
1250 				    "are mutually exclusive\n"));
1251 				return (B_FALSE);
1252 			}
1253 			atype = ADDR_TYPE_NET;
1254 			break;
1255 		case K_LINK:
1256 			rcip->ri_af = AF_LINK;
1257 			break;
1258 		case K_INET:
1259 			rcip->ri_af = AF_INET;
1260 			break;
1261 		case K_SA:
1262 			rcip->ri_af = PF_ROUTE;
1263 			break;
1264 		case K_INET6:
1265 			rcip->ri_af = AF_INET6;
1266 			break;
1267 		case K_IFACE:
1268 		case K_INTERFACE:
1269 			iflag = B_TRUE;
1270 			/* fallthrough */
1271 		case K_NOSTATIC:
1272 			rcip->ri_flags &= ~RTF_STATIC;
1273 			break;
1274 		case K_LOCK:
1275 			locknext = B_TRUE;
1276 			break;
1277 		case K_LOCKREST:
1278 			lockrest = B_TRUE;
1279 			break;
1280 		case K_REJECT:
1281 			rcip->ri_flags |= RTF_REJECT;
1282 			break;
1283 		case K_BLACKHOLE:
1284 			rcip->ri_flags |= RTF_BLACKHOLE;
1285 			break;
1286 		case K_PROTO1:
1287 			rcip->ri_flags |= RTF_PROTO1;
1288 			break;
1289 		case K_PROTO2:
1290 			rcip->ri_flags |= RTF_PROTO2;
1291 			break;
1292 		case K_CLONING:
1293 			rcip->ri_flags |= RTF_CLONING;
1294 			break;
1295 		case K_XRESOLVE:
1296 			rcip->ri_flags |= RTF_XRESOLVE;
1297 			break;
1298 		case K_STATIC:
1299 			rcip->ri_flags |= RTF_STATIC;
1300 			break;
1301 		case K_IFA:
1302 			if (!NEXTTOKEN) {
1303 				syntax_arg_missing(keyword_str);
1304 				return (B_FALSE);
1305 			}
1306 			if (!getaddr(rcip, RTA_IFA, tok, atype)) {
1307 				return (B_FALSE);
1308 			}
1309 			break;
1310 		case K_IFP:
1311 			if (!NEXTTOKEN) {
1312 				syntax_arg_missing(keyword_str);
1313 				return (B_FALSE);
1314 			}
1315 			if (!getaddr(rcip, RTA_IFP, tok, atype)) {
1316 				return (B_FALSE);
1317 			}
1318 			break;
1319 		case K_GATEWAY:
1320 			if (!NEXTTOKEN) {
1321 				syntax_arg_missing(keyword_str);
1322 				return (B_FALSE);
1323 			}
1324 			if (!getaddr(rcip, RTA_GATEWAY, tok, atype)) {
1325 				return (B_FALSE);
1326 			}
1327 			break;
1328 		case K_DST:
1329 			if (!NEXTTOKEN) {
1330 				syntax_arg_missing(keyword_str);
1331 				return (B_FALSE);
1332 			}
1333 			if (!getaddr(rcip, RTA_DST, tok, atype)) {
1334 				return (B_FALSE);
1335 			}
1336 			break;
1337 		case K_NETMASK:
1338 			if (!NEXTTOKEN) {
1339 				syntax_arg_missing(keyword_str);
1340 				return (B_FALSE);
1341 			}
1342 			if (!getaddr(rcip, RTA_NETMASK, tok, atype)) {
1343 				return (B_FALSE);
1344 			}
1345 			atype = ADDR_TYPE_NET;
1346 			break;
1347 		case K_MTU:
1348 		case K_HOPCOUNT:
1349 		case K_EXPIRE:
1350 		case K_RECVPIPE:
1351 		case K_SENDPIPE:
1352 		case K_SSTHRESH:
1353 		case K_RTT:
1354 		case K_RTTVAR:
1355 			if (!NEXTTOKEN) {
1356 				syntax_arg_missing(keyword_str);
1357 				return (B_FALSE);
1358 			}
1359 			set_metric(rcip, tok, key, locknext || lockrest);
1360 			locknext = B_FALSE;
1361 			break;
1362 		case K_PRIVATE:
1363 			rcip->ri_flags |= RTF_PRIVATE;
1364 			break;
1365 		case K_MULTIRT:
1366 			rcip->ri_flags |= RTF_MULTIRT;
1367 			break;
1368 		case K_SETSRC:
1369 			if (!NEXTTOKEN) {
1370 				syntax_arg_missing(keyword_str);
1371 				return (B_FALSE);
1372 			}
1373 			if (!getaddr(rcip, RTA_SRC, tok, atype)) {
1374 				return (B_FALSE);
1375 			}
1376 			rcip->ri_flags |= RTF_SETSRC;
1377 			break;
1378 		case K_SECATTR:
1379 			if (!NEXTTOKEN) {
1380 				syntax_arg_missing(keyword_str);
1381 				return (B_FALSE);
1382 			}
1383 			if (is_system_labeled()) {
1384 				int err;
1385 
1386 				if (rcip->ri_rtsa_cnt >= 1) {
1387 					syntax_error(gettext("route: can't "
1388 					    "specify more than one security "
1389 					    "attribute\n"));
1390 					return (B_FALSE);
1391 				}
1392 				if (!rtsa_keyword(tok, &rcip->ri_rtsa, &err,
1393 				    NULL)) {
1394 					syntax_error(gettext("route: "
1395 					    "bad security attribute: %s\n"),
1396 					    tsol_strerror(err, errno));
1397 					return (B_FALSE);
1398 				}
1399 				rcip->ri_rtsa_cnt++;
1400 			} else {
1401 				syntax_error(gettext("route: "
1402 				    "system is not labeled; cannot specify "
1403 				    "security attributes.\n"));
1404 				return (B_FALSE);
1405 			}
1406 			break;
1407 		case K_INDIRECT:
1408 			rcip->ri_flags |= RTF_INDIRECT;
1409 			break;
1410 		default:
1411 			if (dash_keyword) {
1412 				syntax_bad_keyword(tok + 1);
1413 				return (B_FALSE);
1414 			}
1415 			if ((rcip->ri_addrs & RTA_DST) == 0) {
1416 				if (!getaddr(rcip, RTA_DST, tok, atype)) {
1417 					return (B_FALSE);
1418 				}
1419 			} else if ((rcip->ri_addrs & RTA_GATEWAY) == 0) {
1420 				/*
1421 				 * For the gateway parameter, retrieve the
1422 				 * pointer to the struct hostent so that all
1423 				 * possible addresses can be tried until one
1424 				 * is successful.
1425 				 */
1426 				if (!getaddr(rcip, RTA_GATEWAY, tok, atype)) {
1427 					return (B_FALSE);
1428 				}
1429 			} else {
1430 				ulong_t metric;
1431 				/*
1432 				 * Assume that a regular number is a metric.
1433 				 * Needed for compatibility with old route
1434 				 * command syntax.
1435 				 */
1436 				errno = 0;
1437 				metric = strtoul(tok, &err, 10);
1438 				if (errno == 0 && *err == '\0' &&
1439 				    metric < 0x80000000ul) {
1440 					iflag = (metric == 0);
1441 					if (verbose) {
1442 						(void) printf("old usage of "
1443 						    "trailing number, assuming "
1444 						    "route %s\n", iflag ?
1445 						    "to if" : "via gateway");
1446 					}
1447 					continue;
1448 				}
1449 				if (!getaddr(rcip, RTA_NETMASK, tok, atype)) {
1450 					return (B_FALSE);
1451 				}
1452 			}
1453 		}
1454 	}
1455 #undef NEXTTOKEN
1456 
1457 	if ((rcip->ri_addrs & RTA_DST) == 0) {
1458 		syntax_error(gettext("route: destination required\n"));
1459 		return (B_FALSE);
1460 	} else if ((rcip->ri_cmd == RTM_ADD || rcip->ri_cmd == RTM_DELETE) &&
1461 	    (rcip->ri_addrs & RTA_GATEWAY) == 0) {
1462 		syntax_error(gettext(
1463 		    "route: gateway required for add or delete command\n"));
1464 		return (B_FALSE);
1465 	}
1466 
1467 	if (!iflag) {
1468 		rcip->ri_flags |= RTF_GATEWAY;
1469 	}
1470 
1471 	if (atype != ADDR_TYPE_NET) {
1472 		if (rcip->ri_addrs & RTA_NETMASK) {
1473 			/*
1474 			 * We know the netmask, so we can set the host flag
1475 			 * based on whether the netmask is the host netmask.
1476 			 */
1477 			if (rcip->ri_af == AF_INET &&
1478 			    rcip->ri_mask.sin.sin_addr.s_addr ==
1479 			    IP_HOST_MASK) {
1480 				rcip->ri_flags |= RTF_HOST;
1481 			}
1482 			if (rcip->ri_af == AF_INET6 &&
1483 			    memcmp(&rcip->ri_mask.sin6.sin6_addr,
1484 			    &in6_host_mask,
1485 			    sizeof (struct in6_addr)) == 0) {
1486 				rcip->ri_flags |= RTF_HOST;
1487 			}
1488 		} else {
1489 			/*
1490 			 * If no prefix mask has been saved at this point, it
1491 			 * only makes sense to treat the destination address
1492 			 * as a host address.
1493 			 */
1494 			rcip->ri_flags |= RTF_HOST;
1495 		}
1496 	}
1497 	return (B_TRUE);
1498 }
1499 
1500 /*
1501  * This command always seeks to the end of the file prior to writing.
1502  */
1503 void
1504 write_to_rtfile(FILE *fp, int argc, char **argv)
1505 {
1506 	char file_line[BUF_SIZE];
1507 	int len;
1508 	int i;
1509 
1510 	len = 0;
1511 	if (early_v6_keyword) {
1512 		/*
1513 		 * This flag is set when "inet6" was seen as an
1514 		 * argument to the -f flag.  Normally, when writing
1515 		 * routes to the persistent route file, everything on
1516 		 * the command line after "add" is saved verbatim.
1517 		 * In this case, the arguments after "add" may not be
1518 		 * sufficient, as the ipv6 keyword came before "add",
1519 		 * yet must be present in the persistent route file.
1520 		 */
1521 		len += snprintf(file_line, BUF_SIZE, "-inet6 ");
1522 	}
1523 	for (i = 0; argc > 0 && len < BUF_SIZE; i++, argc--) {
1524 		len += snprintf(&file_line[len], BUF_SIZE - len, "%s ",
1525 		    argv[i]);
1526 	}
1527 	if (len >= BUF_SIZE)
1528 		quit(gettext("Internal Error"), EINVAL);
1529 	file_line[len - 1] = '\n';
1530 	if (fseek(fp, 0, SEEK_END) != 0 ||
1531 	    fputs(file_line, fp) == EOF) {
1532 		quit(gettext("failed to write to route file"),
1533 		    errno);
1534 	}
1535 }
1536 
1537 boolean_t
1538 compare_rtcmd(rtcmd_irep_t *srch_rt, rtcmd_irep_t *file_rt)
1539 {
1540 	if (strcmp(srch_rt->ri_dest_str, file_rt->ri_dest_str) != 0 ||
1541 	    memcmp(&srch_rt->ri_mask, &file_rt->ri_mask, sizeof (su_t)) != 0) {
1542 		return (B_FALSE);
1543 	}
1544 	return (srch_rt->ri_gate_str == NULL ||
1545 	    strcmp(srch_rt->ri_gate_str, file_rt->ri_gate_str) == 0);
1546 }
1547 
1548 /*
1549  * Search the route file for routes matching the supplied route.  There are 3
1550  * modes of operation:
1551  *    SEARCH_MODE_RET - no side effects.
1552  *    SEARCH_MODE_PRINT - prints each matching line.
1553  *    SEARCH_MODE_DEL - copies all valid, non-matching lines to tmp_fp.
1554  *
1555  * In all cases, the number of matches is returned.  If rt is NULL, all routes
1556  * matching the global af value are considered matching.
1557  */
1558 int
1559 search_rtfile(FILE *fp, FILE *temp_fp, rtcmd_irep_t *rt, search_mode_t mode)
1560 {
1561 	char *tmp_buf;
1562 	int match_cnt;
1563 	boolean_t match;
1564 	char file_line[BUF_SIZE + 4] = "add ";
1565 	rtcmd_irep_t *thisrt;
1566 
1567 	match_cnt = 0;
1568 
1569 	/*
1570 	 * Leave space at the beginning of file_line for "add ".
1571 	 */
1572 	while (fgets(file_line + 4, BUF_SIZE, fp) != NULL) {
1573 
1574 		if (file_line[4] == '#' || file_line[4] == '\n') {
1575 			/* Handle comments and blank lines */
1576 			if (mode == SEARCH_MODE_DEL &&
1577 			    fputs(file_line + 4, temp_fp) == EOF) {
1578 				quit(gettext(
1579 				    "route: failed to write to temp file"),
1580 				    errno);
1581 			}
1582 			continue;
1583 		}
1584 		thisrt = new_rtcmd_irep();
1585 		/*
1586 		 * thisrt->ri_af defaults to whatever address family happens
1587 		 * to be set in the global af, but routes in the persistent
1588 		 * route file must be treated as AF_INET by default.
1589 		 */
1590 		thisrt->ri_af = AF_INET;
1591 
1592 		exit_on_error = B_FALSE;
1593 		tmp_buf = strdup(file_line);
1594 		/* args_to_rtcmd() will mangle the string passed. */
1595 		if (!args_to_rtcmd(thisrt, NULL, tmp_buf)) {
1596 			/* There was an error in args_to_rtcmd() or helpers */
1597 			del_rtcmd_irep(thisrt);
1598 			free(tmp_buf);
1599 			continue;
1600 		}
1601 		exit_on_error = B_TRUE;
1602 		free(tmp_buf);
1603 
1604 		if (thisrt->ri_gate_str == NULL) {
1605 			del_rtcmd_irep(thisrt);
1606 			continue;
1607 		}
1608 		match = (rt == NULL) ? (thisrt->ri_af == af) :
1609 		    compare_rtcmd(rt, thisrt);
1610 
1611 		if (match) match_cnt++;
1612 		if (match && mode == SEARCH_MODE_PRINT) {
1613 			(void) printf("persistent: route %s", file_line);
1614 		}
1615 		if (match && mode == SEARCH_MODE_DEL) {
1616 			thisrt->ri_cmd = RTM_DELETE;
1617 			print_rtcmd_short(stdout, thisrt, B_FALSE, B_TRUE);
1618 			(void) printf("\n");
1619 		}
1620 		del_rtcmd_irep(thisrt);
1621 
1622 		if (!match && mode == SEARCH_MODE_DEL &&
1623 		    fputs(file_line + 4, temp_fp) == EOF) {
1624 			quit(gettext("failed to write to temp file"),
1625 			    errno);
1626 		}
1627 	}
1628 	return (match_cnt);
1629 }
1630 
1631 /*
1632  * Perform the route operation given in argv on the persistent route file.
1633  * If do_flush is set, the persistent route file is flushed of all routes
1634  * matching the global family, and the arguments are ignored.
1635  */
1636 void
1637 save_route(int argc, char **argv, int do_flush)
1638 {
1639 	rtcmd_irep_t *rt;
1640 	int perm_fd;
1641 	FILE *perm_fp;
1642 	FILE *temp_fp;
1643 	mode_t fmode = S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH;
1644 	struct flock lock;
1645 	struct stat st;
1646 	const char commentstr[] =
1647 	    "# File generated by route(8) - do not edit.\n";
1648 
1649 	perm_fd = open(perm_file, O_RDWR | O_CREAT, fmode);
1650 	if (perm_fd == -1 || fstat(perm_fd, &st) == -1)
1651 		quit("failed to open route file", errno);
1652 
1653 	lock.l_type = F_WRLCK;
1654 	lock.l_whence = SEEK_SET;
1655 	lock.l_start = 0;
1656 	lock.l_len = 0;
1657 	if (fcntl(perm_fd, F_SETLK, &lock) != 0) {
1658 		quit(gettext("failed to lock route file"), errno);
1659 		/* NOTREACHED */
1660 	}
1661 	if (st.st_size == 0 &&
1662 	    write(perm_fd, commentstr, sizeof (commentstr) - 1) !=
1663 	    sizeof (commentstr) - 1)
1664 		quit(gettext("failed to open route file"), errno);
1665 
1666 	if ((perm_fp = fdopen(perm_fd, "r+")) == NULL) {
1667 		quit(gettext("failed to open route file"), errno);
1668 		/* NOTREACHED */
1669 	}
1670 
1671 	if (!do_flush) {
1672 		rt = new_rtcmd_irep();
1673 		(void) args_to_rtcmd(rt, argv, NULL);
1674 	}
1675 	if (do_flush || rt->ri_cmd == RTM_DELETE) {
1676 		if ((temp_fp = fopen(temp_file, "w")) == NULL) {
1677 			quit(gettext("failed to open temp file"), errno);
1678 			/* NOTREACHED */
1679 		}
1680 	}
1681 	if (do_flush) {
1682 		(void) search_rtfile(perm_fp, temp_fp, NULL, SEARCH_MODE_DEL);
1683 		if (fclose(temp_fp) != 0 || rename(temp_file, perm_file) != 0) {
1684 			quit(gettext("failed to update route file"), errno);
1685 			/* NOTREACHED */
1686 		}
1687 		(void) fclose(perm_fp);
1688 		return;
1689 	}
1690 
1691 	switch (rt->ri_cmd) {
1692 	case RTM_ADD:
1693 		if (search_rtfile(perm_fp, NULL, rt, SEARCH_MODE_NULL) > 0) {
1694 			/* Route is already in the file */
1695 			print_rtcmd_short(stderr, rt, B_FALSE, B_TRUE);
1696 			(void) fprintf(stderr, ": entry exists\n");
1697 			exit(1);
1698 		}
1699 		write_to_rtfile(perm_fp, argc - 1, argv + 1);
1700 		print_rtcmd_short(stdout, rt, B_FALSE, B_TRUE);
1701 		(void) printf("\n");
1702 		break;
1703 
1704 	case RTM_CHANGE:
1705 		syntax_error(
1706 		    gettext("route: change command not supported with -p\n"));
1707 		/* NOTREACHED */
1708 
1709 	case RTM_DELETE:
1710 		if (search_rtfile(perm_fp, temp_fp, rt, SEARCH_MODE_DEL) <= 0) {
1711 			/* Route not found */
1712 			print_rtcmd_short(stderr, rt, B_FALSE, B_TRUE);
1713 			(void) fprintf(stderr, gettext(": not in file\n"));
1714 			exit(1);
1715 		}
1716 		if (fclose(temp_fp) != 0 || rename(temp_file, perm_file) != 0) {
1717 			quit(gettext("failed to update route file"), errno);
1718 			/* NOTREACHED */
1719 		}
1720 		break;
1721 
1722 	case RTM_GET:
1723 		if (search_rtfile(perm_fp, temp_fp, rt, SEARCH_MODE_PRINT) <=
1724 		    0) {
1725 			print_rtcmd_short(stdout, rt, B_FALSE, B_TRUE);
1726 			(void) printf(gettext(": not in file\n"));
1727 		}
1728 		break;
1729 
1730 	default:
1731 		quit(gettext("Internal Error"), EINVAL);
1732 		/* NOTREACHED */
1733 	}
1734 
1735 	/*
1736 	 * Closing the file unlocks it.
1737 	 */
1738 	(void) fclose(perm_fp);
1739 }
1740 
1741 int
1742 show_saved_routes(int argc)
1743 {
1744 	int perm_fd;
1745 	FILE *perm_fp;
1746 	struct flock lock;
1747 	int count = 0;
1748 
1749 	if (argc != 1) {
1750 		syntax_error(gettext("route: invalid arguments for show\n"));
1751 	}
1752 
1753 	perm_fd = open(perm_file, O_RDONLY, 0);
1754 
1755 	if (perm_fd == -1) {
1756 		if (errno == ENOENT) {
1757 			(void) printf("No persistent routes are defined\n");
1758 			return (0);
1759 		} else {
1760 			quit(gettext("failed to open route file"), errno);
1761 		}
1762 	}
1763 	lock.l_type = F_RDLCK;
1764 	lock.l_whence = SEEK_SET;
1765 	lock.l_start = 0;
1766 	lock.l_len = 0;
1767 	if (fcntl(perm_fd, F_SETLK, &lock) != 0) {
1768 		quit(gettext("failed to lock route file"),
1769 		    errno);
1770 		/* NOTREACHED */
1771 	}
1772 	if ((perm_fp = fdopen(perm_fd, "r")) == NULL) {
1773 		quit(gettext("failed to open route file"), errno);
1774 		/* NOTREACHED */
1775 	}
1776 	count += search_rtfile(perm_fp, NULL, NULL, SEARCH_MODE_PRINT);
1777 	(void) fseek(perm_fp, 0, SEEK_SET);
1778 	af = AF_INET6;
1779 	count += search_rtfile(perm_fp, NULL, NULL, SEARCH_MODE_PRINT);
1780 
1781 	if (count == 0)
1782 		(void) printf("No persistent routes are defined\n");
1783 
1784 	(void) fclose(perm_fp);
1785 	return (0);
1786 }
1787 
1788 int
1789 newroute(char **argv)
1790 {
1791 	rtcmd_irep_t *newrt;
1792 	int ret, attempts, oerrno;
1793 	char *err;
1794 	char obuf[INET6_ADDRSTRLEN];
1795 #define	hp (newrt->ri_gate_hp)
1796 
1797 	newrt = new_rtcmd_irep();
1798 	(void) args_to_rtcmd(newrt, argv, NULL);
1799 
1800 	if (newrt->ri_cmd != RTM_GET && !tflag) {
1801 		/* Don't want to read back our messages */
1802 		(void) shutdown(s, 0);
1803 	}
1804 	if (newrt->ri_addrs & RTA_IFP) {
1805 		newrt->ri_ifp.sdl.sdl_index = if_nametoindex(newrt->ri_ifp_str);
1806 		if (newrt->ri_ifp.sdl.sdl_index == 0) {
1807 			if (errno != ENXIO) {
1808 				quit("if_nametoindex", errno);
1809 			} else {
1810 				(void) fprintf(stderr,
1811 				    gettext("route: %s: no such interface\n"),
1812 				    newrt->ri_ifp_str);
1813 				exit(1);
1814 			}
1815 		}
1816 		newrt->ri_ifp.sdl.sdl_family = AF_LINK;
1817 	}
1818 	for (attempts = 1; ; attempts++) {
1819 		errno = 0;
1820 		if ((ret = rtmsg(newrt)) == 0)
1821 			break;
1822 		if (errno != ENETUNREACH && errno != ESRCH)
1823 			break;
1824 		if ((newrt->ri_addrs & RTA_GATEWAY) && hp != NULL &&
1825 		    hp->h_addr_list[attempts] != NULL) {
1826 			switch (af) {
1827 			case AF_INET:
1828 				(void) memmove(&newrt->ri_gate.sin.sin_addr,
1829 				    hp->h_addr_list[attempts], hp->h_length);
1830 				continue;
1831 			case AF_INET6:
1832 				(void) memmove(&newrt->ri_gate.sin6.sin6_addr,
1833 				    hp->h_addr_list[attempts], hp->h_length);
1834 				continue;
1835 			}
1836 		}
1837 		break;
1838 	}
1839 	oerrno = errno;
1840 
1841 	if (newrt->ri_cmd != RTM_GET) {
1842 		print_rtcmd_short(stdout, newrt, (ret == 0), B_FALSE);
1843 		if (ret == 0)
1844 			(void) printf("\n");
1845 	} else if (ret != 0) {
1846 		/*
1847 		 * Note: there is nothing additional to print for get
1848 		 * if ret == 0.
1849 		 */
1850 		if (nflag) {
1851 			switch (newrt->ri_af) {
1852 			case AF_INET:
1853 				(void) printf(" %s",
1854 				    inet_ntoa(newrt->ri_dst.sin.sin_addr));
1855 				break;
1856 			case AF_INET6:
1857 				if (inet_ntop(AF_INET6,
1858 				    (void *)&newrt->ri_dst.sin6.sin6_addr,
1859 				    obuf, INET6_ADDRSTRLEN) != NULL) {
1860 					(void) printf(" %s", obuf);
1861 					break;
1862 				}
1863 				/* FALLTHROUGH */
1864 			default:
1865 				(void) printf("%s", newrt->ri_dest_str);
1866 				break;
1867 			}
1868 		} else {
1869 			(void) printf("%s", newrt->ri_dest_str);
1870 		}
1871 	}
1872 
1873 	if (ret != 0) {
1874 		switch (oerrno) {
1875 		case ESRCH:
1876 			err = "not in table";
1877 			break;
1878 		case EBUSY:
1879 			err = "entry in use";
1880 			break;
1881 		case ENOBUFS:
1882 			err = "routing table overflow";
1883 			break;
1884 		case EEXIST:
1885 			err = "entry exists";
1886 			break;
1887 		case EPERM:
1888 			err = "insufficient privileges";
1889 			break;
1890 		default:
1891 			err = strerror(oerrno);
1892 			break;
1893 		}
1894 		(void) printf(": %s\n", err);
1895 	}
1896 
1897 	del_rtcmd_irep(newrt);
1898 
1899 	return (oerrno);
1900 #undef hp
1901 }
1902 
1903 
1904 /*
1905  * Convert a network number to the corresponding IP address.
1906  * If the RTA_NETMASK hasn't been specified yet set it based
1907  * on the class of address.
1908  */
1909 static void
1910 inet_makenetandmask(rtcmd_irep_t *rcip, in_addr_t net, struct sockaddr_in *sin)
1911 {
1912 	in_addr_t addr, mask;
1913 
1914 	if (net == 0) {
1915 		mask = addr = 0;
1916 	} else if (net < 128) {
1917 		addr = net << IN_CLASSA_NSHIFT;
1918 		mask = IN_CLASSA_NET;
1919 	} else if (net < 65536) {
1920 		addr = net << IN_CLASSB_NSHIFT;
1921 		mask = IN_CLASSB_NET;
1922 	} else if (net < 16777216L) {
1923 		addr = net << IN_CLASSC_NSHIFT;
1924 		mask = IN_CLASSC_NET;
1925 	} else {
1926 		addr = net;
1927 		if ((addr & IN_CLASSA_HOST) == 0)
1928 			mask =  IN_CLASSA_NET;
1929 		else if ((addr & IN_CLASSB_HOST) == 0)
1930 			mask =  IN_CLASSB_NET;
1931 		else if ((addr & IN_CLASSC_HOST) == 0)
1932 			mask =  IN_CLASSC_NET;
1933 		else {
1934 			if (IN_CLASSA(addr))
1935 				mask =  IN_CLASSA_NET;
1936 			else if (IN_CLASSB(addr))
1937 				mask =  IN_CLASSB_NET;
1938 			else if (IN_CLASSC(addr))
1939 				mask =  IN_CLASSC_NET;
1940 			else
1941 				mask = IP_HOST_MASK;
1942 			mask = inet_makesubnetmask(addr, mask);
1943 		}
1944 	}
1945 	sin->sin_addr.s_addr = htonl(addr);
1946 
1947 	/* Class E default mask is 32 */
1948 	if (IN_CLASSE(addr))
1949 		mask = IN_CLASSE_NET;
1950 
1951 	if (!(rcip->ri_addrs & RTA_NETMASK)) {
1952 		rcip->ri_addrs |= RTA_NETMASK;
1953 		sin = &rcip->ri_mask.sin;
1954 		sin->sin_addr.s_addr = htonl(mask);
1955 		sin->sin_family = AF_INET;
1956 	}
1957 }
1958 
1959 static in_addr_t
1960 inet_makesubnetmask(in_addr_t addr, in_addr_t mask)
1961 {
1962 	int n;
1963 	struct ifconf ifc;
1964 	struct ifreq ifreq;
1965 	struct ifreq *ifr;
1966 	struct sockaddr_in *sin;
1967 	char *buf;
1968 	int numifs;
1969 	size_t bufsize;
1970 	int iosoc;
1971 	in_addr_t if_addr, if_mask;
1972 	in_addr_t if_subnetmask = 0;
1973 	short if_flags;
1974 
1975 	if (mask == 0)
1976 		return (0);
1977 	if ((iosoc = socket(AF_INET, SOCK_DGRAM, 0)) < 0)
1978 		quit("socket", errno);
1979 	if (ioctl(iosoc, SIOCGIFNUM, (char *)&numifs) < 0)
1980 		quit("ioctl", errno);
1981 	bufsize = numifs * sizeof (struct ifreq);
1982 	buf = malloc(bufsize);
1983 	if (buf == NULL)
1984 		quit("malloc", errno);
1985 	(void) memset(&ifc, 0, sizeof (ifc));
1986 	ifc.ifc_len = bufsize;
1987 	ifc.ifc_buf = buf;
1988 	if (ioctl(iosoc, SIOCGIFCONF, (char *)&ifc) < 0)
1989 		quit("ioctl (get interface configuration)", errno);
1990 	/* Let's check to see if this is maybe a local subnet route. */
1991 	ifr = ifc.ifc_req;
1992 	for (n = ifc.ifc_len / sizeof (struct ifreq); n > 0; n--, ifr++) {
1993 		ifreq = *ifr;
1994 		/* LINTED */
1995 		sin = (struct sockaddr_in *)&ifr->ifr_addr;
1996 		if_addr = ntohl(sin->sin_addr.s_addr);
1997 
1998 		if (ioctl(iosoc, SIOCGIFFLAGS, (char *)&ifreq) < 0)
1999 			quit("ioctl (get interface flags)", errno);
2000 		if ((ifreq.ifr_flags & IFF_UP) == 0)
2001 			continue;
2002 		if_flags = ifreq.ifr_flags;
2003 
2004 		if (ioctl(iosoc, SIOCGIFNETMASK, (char *)&ifreq) < 0)
2005 			quit("ioctl (get netmask)", errno);
2006 		/* LINTED */
2007 		sin = (struct sockaddr_in *)&ifreq.ifr_addr;
2008 		if_mask = ntohl(sin->sin_addr.s_addr);
2009 		if ((if_addr & mask) == (addr & mask)) {
2010 			/*
2011 			 * Don't trust pt-pt interfaces if there are
2012 			 * other interfaces.
2013 			 */
2014 			if (if_flags & IFF_POINTOPOINT) {
2015 				if_subnetmask = if_mask;
2016 				continue;
2017 			}
2018 			/*
2019 			 * Fine.  Just assume the same net mask as the
2020 			 * directly attached subnet interface is using.
2021 			 */
2022 			return (if_mask);
2023 		}
2024 	}
2025 	if (if_subnetmask != 0)
2026 		return (if_subnetmask);
2027 	return (mask);
2028 }
2029 
2030 /*
2031  * Interpret an argument as a network address of some kind.
2032  *
2033  * If the address family is one looked up in getaddr() using one of the
2034  * getipnodebyX() functions (currently only AF_INET6), then callers should
2035  * freehostent() the returned "struct hostent" pointer if one was passed in.
2036  *
2037  * If exit_on_error is true, this function will cause route to exit on error by
2038  * calling syntax_error().  Otherwise, it returns B_TRUE on success or B_FALSE
2039  * on failure.
2040  */
2041 static boolean_t
2042 getaddr(rtcmd_irep_t *rcip, int which, char *s, addr_type_t atype)
2043 {
2044 	su_t *su;
2045 	struct hostent **hpp;
2046 	struct hostent *hp;
2047 	int masklen;
2048 
2049 	if (which == RTA_GATEWAY) {
2050 		hpp = &(rcip->ri_gate_hp);
2051 	} else {
2052 		hpp = &hp;
2053 	}
2054 	*hpp = NULL;
2055 
2056 	rcip->ri_addrs |= which;
2057 	switch (which) {
2058 	case RTA_DST:
2059 		save_string(&rcip->ri_dest_str, s);
2060 		su = &rcip->ri_dst;
2061 		su->sa.sa_family = rcip->ri_af;
2062 		break;
2063 	case RTA_GATEWAY:
2064 		save_string(&rcip->ri_gate_str, s);
2065 		su = &rcip->ri_gate;
2066 		su->sa.sa_family = rcip->ri_af;
2067 		break;
2068 	case RTA_NETMASK:
2069 		su = &rcip->ri_mask;
2070 		su->sa.sa_family = rcip->ri_af;
2071 		break;
2072 	case RTA_IFP:
2073 		save_string(&rcip->ri_ifp_str, s);
2074 		return (B_TRUE);
2075 		/*
2076 		 * RTA_SRC has overloaded meaning. It can represent the
2077 		 * src address of incoming or outgoing packets.
2078 		 */
2079 	case RTA_IFA:
2080 		su = &rcip->ri_ifa;
2081 		su->sa.sa_family = rcip->ri_af;
2082 		break;
2083 	case RTA_SRC:
2084 		su = &rcip->ri_src;
2085 		su->sa.sa_family = rcip->ri_af;
2086 		break;
2087 	default:
2088 		/* NOTREACHED */
2089 		quit(gettext("Internal Error"), EINVAL);
2090 		/* NOTREACHED */
2091 	}
2092 	if (strcmp(s, "default") == 0) {
2093 		if (which == RTA_DST) {
2094 			return (getaddr(rcip, RTA_NETMASK, s, ADDR_TYPE_NET));
2095 		}
2096 		if (which == RTA_SRC) {
2097 			return (B_TRUE);
2098 		}
2099 		return (B_TRUE);
2100 	}
2101 	switch (rcip->ri_af) {
2102 	case AF_LINK:
2103 		link_addr(s, &su->sdl);
2104 		return (B_TRUE);
2105 	case PF_ROUTE:
2106 		sockaddr(s, &su->sa);
2107 		return (B_TRUE);
2108 	case AF_INET6:
2109 		switch (which) {
2110 		case RTA_DST:
2111 			if (!in6_getaddr(s, &su->sin6, &masklen, hpp)) {
2112 				return (B_FALSE);
2113 			}
2114 			if (masklen != NO_PREFIX) {
2115 				(void) memset(&rcip->ri_mask.sin6.sin6_addr, 0,
2116 				    sizeof (rcip->ri_mask.sin6.sin6_addr));
2117 				if (!in_prefixlentomask(masklen, IPV6_ABITS,
2118 				    (uchar_t *)&rcip->ri_mask.sin6.sin6_addr)) {
2119 					syntax_error(gettext(
2120 					    "route: bad prefix length: %d\n"),
2121 					    masklen);
2122 					return (B_FALSE);
2123 				}
2124 				rcip->ri_mask.sin6.sin6_family = rcip->ri_af;
2125 				rcip->ri_addrs |= RTA_NETMASK;
2126 			}
2127 			return (B_TRUE);
2128 		case RTA_GATEWAY:
2129 		case RTA_IFA:
2130 		case RTA_SRC:
2131 			return (in6_getaddr(s, &su->sin6, NULL, hpp));
2132 		case RTA_NETMASK:
2133 			syntax_error(
2134 			    gettext("route: -netmask not supported for IPv6: "
2135 			    "use <prefix>/<prefix-length> instead\n"));
2136 			return (B_FALSE);
2137 		default:
2138 			quit(gettext("Internal Error"), EINVAL);
2139 			/* NOTREACHED */
2140 		}
2141 	case AF_INET:
2142 		switch (which) {
2143 		case RTA_DST:
2144 			if (!in_getaddr(s, &su->sin, &masklen, which, hpp,
2145 			    atype, rcip)) {
2146 				return (B_FALSE);
2147 			}
2148 			if (masklen != NO_PREFIX) {
2149 				(void) memset(&rcip->ri_mask.sin.sin_addr, 0,
2150 				    sizeof (rcip->ri_mask.sin.sin_addr));
2151 				if (!in_prefixlentomask(masklen, IP_ABITS,
2152 				    (uchar_t *)&rcip->ri_mask.sin.sin_addr)) {
2153 					syntax_error(gettext(
2154 					    "route: bad prefix length: %d\n"),
2155 					    masklen);
2156 					return (B_FALSE);
2157 				}
2158 				rcip->ri_mask.sin.sin_family = rcip->ri_af;
2159 				rcip->ri_addrs |= RTA_NETMASK;
2160 			}
2161 			return (B_TRUE);
2162 		case RTA_GATEWAY:
2163 		case RTA_IFA:
2164 		case RTA_NETMASK:
2165 		case RTA_SRC:
2166 			return (in_getaddr(s, &su->sin, NULL, which, hpp, atype,
2167 			    rcip));
2168 		default:
2169 			quit(gettext("Internal Error"), EINVAL);
2170 			/* NOTREACHED */
2171 		}
2172 	default:
2173 		quit(gettext("Internal Error"), EINVAL);
2174 		/* NOTREACHED */
2175 	}
2176 	return (B_TRUE);
2177 }
2178 
2179 /*
2180  * Interpret an argument as an IPv4 network address of some kind,
2181  * returning B_TRUE on success or B_FALSE on failure.
2182  * This function will cause an exit() on failure if exit_on_failure is set.
2183  *
2184  * Note that this tries host interpretation before network interpretation,
2185  * except when -net has been given and the destination address is being parsed.
2186  *
2187  * If the plenp argument is non-NULL, allow <addr>/<n> syntax and
2188  * pass out <n> in *plenp.
2189  * If <n> doesn't parse return BAD_ADDR as *plenp.
2190  * If no /<n> is present return NO_PREFIX as *plenp.
2191  */
2192 static boolean_t
2193 in_getaddr(char *s, struct sockaddr_in *sin, int *plenp, int which,
2194     struct hostent **hpp, addr_type_t atype, rtcmd_irep_t *rcip)
2195 {
2196 	struct hostent *hp;
2197 	struct netent *np;
2198 	in_addr_t val;
2199 	char str[BUFSIZ];
2200 
2201 	(void) strlcpy(str, s, sizeof (str));
2202 
2203 	/*
2204 	 * If plenp is non-NULL, /<n> syntax for netmask is allowed.
2205 	 */
2206 	if (plenp != NULL) {
2207 		char *cp;
2208 
2209 		*plenp = in_getprefixlen(str, IP_ABITS);
2210 		if (*plenp == BAD_ADDR)
2211 			return (B_FALSE);
2212 		cp = strchr(str, '/');
2213 		if (cp != NULL)
2214 			*cp = '\0';
2215 	} else if (strchr(str, '/') != NULL) {
2216 		syntax_error(gettext("route: %s: unexpected '/'\n"), str);
2217 		return (B_FALSE);
2218 	}
2219 
2220 	(void) memset(sin, 0, sizeof (*sin));
2221 	sin->sin_family = AF_INET;
2222 
2223 	/*
2224 	 * Handle 255.255.255.255 as a special case first.
2225 	 */
2226 	if (strcmp(str, "255.255.255.255") == 0) {
2227 		sin->sin_addr.s_addr = INADDR_BROADCAST;
2228 		return (B_TRUE);
2229 	}
2230 
2231 	val = inet_addr(str);
2232 	if (val != (in_addr_t)-1) {
2233 		/* Numeric address */
2234 		sin->sin_addr.s_addr = val;
2235 		if (which == RTA_DST) {
2236 			if (atype == ADDR_TYPE_NET ||
2237 			    (atype == ADDR_TYPE_ANY &&
2238 			    inet_lnaof(sin->sin_addr) == INADDR_ANY)) {
2239 				/* This looks like a network address. */
2240 				inet_makenetandmask(rcip, ntohl(val),
2241 				    sin);
2242 			}
2243 		}
2244 		return (B_TRUE);
2245 	}
2246 	/* Host or net name */
2247 	if (which != RTA_DST || atype != ADDR_TYPE_NET) {
2248 		/* A host name is allowed. */
2249 		if ((hp = gethostbyname(str)) != NULL) {
2250 			*hpp = hp;
2251 			(void) memmove(&sin->sin_addr, hp->h_addr,
2252 			    hp->h_length);
2253 			return (B_TRUE);
2254 		}
2255 	}
2256 	if (atype != ADDR_TYPE_HOST) {
2257 		/* A network name is allowed */
2258 		if ((np = getnetbyname(str)) != NULL &&
2259 		    (val = np->n_net) != 0) {
2260 			if (which == RTA_DST) {
2261 				inet_makenetandmask(rcip, val, sin);
2262 			}
2263 			return (B_TRUE);
2264 		}
2265 	}
2266 	syntax_error(gettext("%s: bad value\n"), s);
2267 	return (B_FALSE);
2268 }
2269 
2270 /*
2271  * Interpret an argument as an IPv6 network address of some kind,
2272  * returning B_TRUE on success or B_FALSE on failure.
2273  * This function will cause an exit() on failure if exit_on_failure is set.
2274  *
2275  * If the last argument is non-NULL allow a <addr>/<n> syntax and
2276  * pass out <n> in *plenp.
2277  * If <n> doesn't parse return BAD_ADDR as *plenp.
2278  * If no /<n> is present return NO_PREFIX as *plenp.
2279  */
2280 static boolean_t
2281 in6_getaddr(char *s, struct sockaddr_in6 *sin6, int *plenp,
2282     struct hostent **hpp)
2283 {
2284 	struct hostent *hp;
2285 	char str[BUFSIZ];
2286 	int error_num;
2287 
2288 	(void) strlcpy(str, s, sizeof (str));
2289 
2290 	/*
2291 	 * If plenp is non-NULL, /<n> syntax for netmask is allowed.
2292 	 */
2293 	if (plenp != NULL) {
2294 		char *cp;
2295 
2296 		*plenp = in_getprefixlen(str, IPV6_ABITS);
2297 		if (*plenp == BAD_ADDR)
2298 			return (B_FALSE);
2299 		cp = strchr(str, '/');
2300 		if (cp != NULL)
2301 			*cp = '\0';
2302 	} else if (strchr(str, '/') != NULL) {
2303 		syntax_error(gettext("route: %s: unexpected '/'\n"), str);
2304 		return (B_FALSE);
2305 	}
2306 
2307 	(void) memset(sin6, 0, sizeof (struct sockaddr_in6));
2308 	sin6->sin6_family = AF_INET6;
2309 
2310 	hp = getipnodebyname(str, AF_INET6, 0, &error_num);
2311 	if (hp != NULL) {
2312 		*hpp = hp;
2313 		(void) memmove(&sin6->sin6_addr, hp->h_addr, hp->h_length);
2314 		return (B_TRUE);
2315 	}
2316 	if (error_num == TRY_AGAIN) {
2317 		/*
2318 		 * This isn't a problem if we aren't going to use the address
2319 		 * right away.
2320 		 */
2321 		if (!exit_on_error) {
2322 			return (B_TRUE);
2323 		}
2324 		syntax_error(gettext("route: %s: bad address (try "
2325 		    "again later)\n"), s);
2326 		return (B_FALSE);
2327 	}
2328 	syntax_error(gettext("route: %s: bad address\n"), s);
2329 	return (B_FALSE);
2330 }
2331 
2332 /*
2333  * Parse <addr>/<n> syntax and return the integer n.
2334  * If <addr> is missing or <n> is not a valid integer, this function calls
2335  * syntax_error() and returns BAD_ADDR.
2336  * if n is not between 0 and max_plen inclusive, this functions calls
2337  * syntax_error() and returns BAD_ADDR.
2338  * If /<n> is not present, this function returns NO_PREFIX.
2339  * The string addr is not modified.
2340  */
2341 int
2342 in_getprefixlen(char *addr, int max_plen)
2343 {
2344 	int prefixlen;
2345 	char *str, *end;
2346 
2347 	str = strchr(addr, '/');
2348 	if (str == addr) {
2349 		syntax_error(gettext("route: %s: unexpected '/'\n"), addr);
2350 		return (BAD_ADDR);
2351 	}
2352 	if (str == NULL)
2353 		return (NO_PREFIX);
2354 	str++;
2355 
2356 	errno = 0;
2357 	prefixlen = strtoul(str, &end, 10);
2358 	if (errno != 0 || str == end) {
2359 		syntax_error(gettext("route: bad prefix length %s\n"), str);
2360 		return (BAD_ADDR);
2361 	}
2362 	if (prefixlen > max_plen) {
2363 		syntax_error(gettext("route: prefix length %s out of range\n"),
2364 		    str);
2365 		return (BAD_ADDR);
2366 	}
2367 	return (prefixlen);
2368 }
2369 
2370 /*
2371  * Convert a prefix length to a mask.
2372  * Returns B_TRUE if ok. B_FALSE otherwise.
2373  * Assumes the mask array is zeroed by the caller.
2374  */
2375 boolean_t
2376 in_prefixlentomask(int prefixlen, int maxlen, uchar_t *mask)
2377 {
2378 	if (prefixlen < 0 || prefixlen > maxlen)
2379 		return (B_FALSE);
2380 
2381 	while (prefixlen > 0) {
2382 		if (prefixlen >= 8) {
2383 			*mask++ = 0xFF;
2384 			prefixlen -= 8;
2385 			continue;
2386 		}
2387 		*mask |= 1 << (8 - prefixlen);
2388 		prefixlen--;
2389 	}
2390 	return (B_TRUE);
2391 }
2392 
2393 void
2394 rtmonitor(int argc, char *argv[])
2395 {
2396 	int n;
2397 	intmax_t msg[2048 / sizeof (intmax_t)];
2398 
2399 	if (tflag)
2400 		exit(0);
2401 	verbose = B_TRUE;
2402 	if (argc > 1) {
2403 		argv++;
2404 		if (argc == 2 && **argv == '-') {
2405 			switch (keyword(*argv + 1)) {
2406 			case K_INET:
2407 				af = AF_INET;
2408 				break;
2409 			case K_LINK:
2410 				af = AF_LINK;
2411 				break;
2412 			case K_INET6:
2413 				af = AF_INET6;
2414 				break;
2415 			default:
2416 				usage(*argv);
2417 				/* NOTREACHED */
2418 			}
2419 		} else {
2420 			usage(*argv);
2421 		}
2422 		(void) close(s);
2423 		s = socket(PF_ROUTE, SOCK_RAW, af);
2424 		if (s < 0)
2425 			quit("socket", errno);
2426 	}
2427 	for (;;) {
2428 		n = read(s, msg, sizeof (msg));
2429 		if (n <= 0)
2430 			quit("read", errno);
2431 		(void) printf("got message of size %d\n", n);
2432 		print_rtmsg((struct rt_msghdr *)msg, n);
2433 	}
2434 }
2435 
2436 int
2437 rtmsg(rtcmd_irep_t *newrt)
2438 {
2439 	static int seq;
2440 	int rlen;
2441 	char *cp = m_rtmsg.m_space;
2442 	int l;
2443 
2444 	errno = 0;
2445 	(void) memset(&m_rtmsg, 0, sizeof (m_rtmsg));
2446 
2447 	if (newrt->ri_cmd == RTM_GET) {
2448 		newrt->ri_ifp.sa.sa_family = AF_LINK;
2449 		newrt->ri_addrs |= RTA_IFP;
2450 	}
2451 
2452 #define	rtm m_rtmsg.m_rtm
2453 	rtm.rtm_type = newrt->ri_cmd;
2454 	rtm.rtm_flags = newrt->ri_flags;
2455 	rtm.rtm_version = RTM_VERSION;
2456 	rtm.rtm_seq = ++seq;
2457 	rtm.rtm_addrs = newrt->ri_addrs;
2458 	rtm.rtm_rmx = newrt->ri_metrics;
2459 	rtm.rtm_inits = newrt->ri_inits;
2460 
2461 #define	NEXTADDR(w, u) \
2462 	if (newrt->ri_addrs & (w)) { \
2463 		l = ROUNDUP_LONG(salen(&u.sa)); \
2464 		(void) memmove(cp, &(u), l); \
2465 		cp += l; \
2466 		if (verbose) \
2467 			sodump(&(u), #u); \
2468 	}
2469 	NEXTADDR(RTA_DST, newrt->ri_dst);
2470 	NEXTADDR(RTA_GATEWAY, newrt->ri_gate);
2471 	NEXTADDR(RTA_NETMASK, newrt->ri_mask);
2472 	NEXTADDR(RTA_IFP, newrt->ri_ifp);
2473 	NEXTADDR(RTA_IFA, newrt->ri_ifa);
2474 	/*
2475 	 * RTA_SRC has overloaded meaning. It can represent the
2476 	 * src address of incoming or outgoing packets.
2477 	 */
2478 	NEXTADDR(RTA_SRC, newrt->ri_src);
2479 #undef	NEXTADDR
2480 
2481 	if (newrt->ri_rtsa_cnt > 0) {
2482 		/* LINTED: aligned */
2483 		rtm_ext_t *rtm_ext = (rtm_ext_t *)cp;
2484 		tsol_rtsecattr_t *rtsecattr;
2485 
2486 		rtm_ext->rtmex_type = RTMEX_GATEWAY_SECATTR;
2487 		rtm_ext->rtmex_len = TSOL_RTSECATTR_SIZE(1);
2488 
2489 		rtsecattr = (tsol_rtsecattr_t *)(rtm_ext + 1);
2490 		rtsecattr->rtsa_cnt = 1;
2491 
2492 		bcopy(&newrt->ri_rtsa, rtsecattr->rtsa_attr,
2493 		    sizeof (newrt->ri_rtsa));
2494 		cp = (char *)(rtsecattr->rtsa_attr + 1);
2495 	}
2496 
2497 	rtm.rtm_msglen = l = cp - (char *)&m_rtmsg;
2498 
2499 	if (verbose)
2500 		print_rtmsg(&rtm, l);
2501 	if (debugonly)
2502 		return (0);
2503 	if ((rlen = write(s, (char *)&m_rtmsg, l)) < 0) {
2504 		switch (errno) {
2505 		case ESRCH:
2506 		case EBUSY:
2507 		case ENOBUFS:
2508 		case EEXIST:
2509 		case ENETUNREACH:
2510 		case EHOSTUNREACH:
2511 		case EPERM:
2512 			break;
2513 		default:
2514 			perror(gettext("writing to routing socket"));
2515 			break;
2516 		}
2517 		return (-1);
2518 	} else if (rlen < (int)rtm.rtm_msglen) {
2519 		(void) fprintf(stderr,
2520 		    gettext("route: write to routing socket got only %d for "
2521 		    "len\n"), rlen);
2522 		return (-1);
2523 	}
2524 	if (newrt->ri_cmd == RTM_GET) {
2525 		do {
2526 			l = read(s, (char *)&m_rtmsg, sizeof (m_rtmsg));
2527 		} while (l > 0 && (rtm.rtm_seq != seq || rtm.rtm_pid != pid));
2528 		if (l < 0) {
2529 			(void) fprintf(stderr,
2530 			    gettext("route: read from routing socket: %s\n"),
2531 			    strerror(errno));
2532 		} else {
2533 			print_getmsg(newrt, &rtm, l);
2534 		}
2535 	}
2536 #undef rtm
2537 	return (0);
2538 }
2539 
2540 static char *msgtypes[] = {
2541 	"",
2542 	"RTM_ADD: Add Route",
2543 	"RTM_DELETE: Delete Route",
2544 	"RTM_CHANGE: Change Metrics or flags",
2545 	"RTM_GET: Report Metrics",
2546 	"RTM_LOSING: Kernel Suspects Partitioning",
2547 	"RTM_REDIRECT: Told to use different route",
2548 	"RTM_MISS: Lookup failed on this address",
2549 	"RTM_LOCK: fix specified metrics",
2550 	"RTM_OLDADD: caused by SIOCADDRT",
2551 	"RTM_OLDDEL: caused by SIOCDELRT",
2552 	"RTM_RESOLVE: Route created by cloning",
2553 	"RTM_NEWADDR: address being brought up on iface",
2554 	"RTM_DELADDR: address being brought down on iface",
2555 	"RTM_IFINFO: iface status change",
2556 	"RTM_CHGADDR: address being changed on iface",
2557 	"RTM_FREEADDR: address being removed from iface",
2558 	0,
2559 };
2560 
2561 #define	NMSGTYPES (sizeof (msgtypes) / sizeof (msgtypes[0]))
2562 
2563 static char metricnames[] =
2564 "\011pksent\010rttvar\7rtt\6ssthresh\5sendpipe\4recvpipe\3expire\2hopcount"
2565 	"\1mtu";
2566 static char routeflags[] =
2567 "\1UP\2GATEWAY\3HOST\4REJECT\5DYNAMIC\6MODIFIED\7DONE\010MASK_PRESENT"
2568 	"\011CLONING\012XRESOLVE\013LLINFO\014STATIC\015BLACKHOLE"
2569 	"\016PRIVATE\017PROTO2\020PROTO1\021MULTIRT\022SETSRC\023INDIRECT"
2570 	"\024KERNEL\025ZONE";
2571 static char ifnetflags[] =
2572 "\1UP\2BROADCAST\3DEBUG\4LOOPBACK\5PTP\6NOTRAILERS\7RUNNING\010NOARP"
2573 	"\011PPROMISC\012ALLMULTI\013INTELLIGENT\014MULTICAST"
2574 	"\015MULTI_BCAST\016UNNUMBERED\017DHCP\020PRIVATE"
2575 	"\021NOXMIT\022NOLOCAL\023DEPRECATED\024ADDRCONF"
2576 	"\025ROUTER\026NONUD\027ANYCAST\030NORTEXCH\031IPv4\032IPv6"
2577 	"\034NOFAILOVER\035FAILED\036STANDBY\037INACTIVE\040OFFLINE"
2578 	"\041XRESOLV\042COS\043PREFERRED\044TEMPORARY\045FIXEDMTU\046VIRTUAL"
2579 	"\047DUPLICATE";
2580 static char addrnames[] =
2581 "\1DST\2GATEWAY\3NETMASK\4GENMASK\5IFP\6IFA\7AUTHOR\010BRD\011SRC";
2582 
2583 void
2584 print_rtmsg(struct rt_msghdr *rtm, int msglen)
2585 {
2586 	struct if_msghdr *ifm;
2587 	struct ifa_msghdr *ifam;
2588 
2589 	if (!verbose)
2590 		return;
2591 	if (rtm->rtm_version != RTM_VERSION) {
2592 		(void) printf("routing message version %d not understood\n",
2593 		    rtm->rtm_version);
2594 		return;
2595 	}
2596 	if (rtm->rtm_msglen != msglen) {
2597 		(void) printf("message length mismatch, in packet %d, "
2598 		    "returned %d\n",
2599 		    rtm->rtm_msglen, msglen);
2600 		if (msglen > rtm->rtm_msglen)
2601 			msglen = rtm->rtm_msglen;
2602 	}
2603 	/*
2604 	 * Since rtm->rtm_type is unsigned, we'll just check the case of zero
2605 	 * and the upper-bound of (NMSGTYPES - 1).
2606 	 */
2607 	if (rtm->rtm_type == 0 || rtm->rtm_type >= (NMSGTYPES - 1)) {
2608 		(void) printf("routing message type %d not understood\n",
2609 		    rtm->rtm_type);
2610 		return;
2611 	}
2612 	(void) printf("%s: len %d, ", msgtypes[rtm->rtm_type], msglen);
2613 	switch (rtm->rtm_type) {
2614 	case RTM_IFINFO:
2615 		ifm = (struct if_msghdr *)rtm;
2616 		(void) printf("if# %d, flags:", ifm->ifm_index);
2617 		bprintf(stdout, ifm->ifm_flags, ifnetflags);
2618 		pmsg_addrs((const char *)(ifm + 1), msglen - sizeof (*ifm),
2619 		    ifm->ifm_addrs);
2620 		break;
2621 	case RTM_NEWADDR:
2622 	case RTM_DELADDR:
2623 	case RTM_CHGADDR:
2624 	case RTM_FREEADDR:
2625 		ifam = (struct ifa_msghdr *)rtm;
2626 		(void) printf("metric %d, flags:", ifam->ifam_metric);
2627 		bprintf(stdout, ifam->ifam_flags, routeflags);
2628 		pmsg_addrs((const char *)(ifam + 1), msglen - sizeof (*ifam),
2629 		    ifam->ifam_addrs);
2630 		break;
2631 	default:
2632 		(void) printf("pid: %ld, seq %d, errno %d, flags:",
2633 		    rtm->rtm_pid, rtm->rtm_seq, rtm->rtm_errno);
2634 		bprintf(stdout, rtm->rtm_flags, routeflags);
2635 		pmsg_common(rtm, msglen);
2636 		break;
2637 	}
2638 }
2639 
2640 void
2641 print_getmsg(rtcmd_irep_t *req_rt, struct rt_msghdr *rtm, int msglen)
2642 {
2643 	struct sockaddr *dst = NULL, *gate = NULL, *mask = NULL, *src = NULL;
2644 	struct sockaddr_dl *ifp = NULL;
2645 	struct sockaddr *sa;
2646 	char *cp;
2647 	int i;
2648 
2649 	(void) printf("   route to: %s\n", routename(&req_rt->ri_dst.sa));
2650 	if (rtm->rtm_version != RTM_VERSION) {
2651 		(void) fprintf(stderr,
2652 		    gettext("routing message version %d not understood\n"),
2653 		    rtm->rtm_version);
2654 		return;
2655 	}
2656 	if (rtm->rtm_msglen > (ushort_t)msglen) {
2657 		(void) fprintf(stderr,
2658 		    gettext("message length mismatch, in packet %d, "
2659 		    "returned %d\n"), rtm->rtm_msglen, msglen);
2660 	}
2661 	if (rtm->rtm_errno)  {
2662 		(void) fprintf(stderr, "RTM_GET: %s (errno %d)\n",
2663 		    strerror(rtm->rtm_errno), rtm->rtm_errno);
2664 		return;
2665 	}
2666 	cp = ((char *)(rtm + 1));
2667 	if (rtm->rtm_addrs != 0) {
2668 		for (i = 1; i != 0; i <<= 1) {
2669 			if (i & rtm->rtm_addrs) {
2670 				/* LINTED */
2671 				sa = (struct sockaddr *)cp;
2672 				switch (i) {
2673 				case RTA_DST:
2674 					dst = sa;
2675 					break;
2676 				case RTA_GATEWAY:
2677 					gate = sa;
2678 					break;
2679 				case RTA_NETMASK:
2680 					mask = sa;
2681 					break;
2682 				case RTA_IFP:
2683 					if (sa->sa_family == AF_LINK &&
2684 					    ((struct sockaddr_dl *)sa)->
2685 					    sdl_nlen != 0)
2686 						ifp = (struct sockaddr_dl *)sa;
2687 					break;
2688 				case RTA_SRC:
2689 					src = sa;
2690 					break;
2691 				}
2692 				ADVANCE(cp, sa);
2693 			}
2694 		}
2695 	}
2696 	if (dst != NULL && mask != NULL)
2697 		mask->sa_family = dst->sa_family;	/* XXX */
2698 	if (dst != NULL)
2699 		(void) printf("destination: %s\n", routename(dst));
2700 	if (mask != NULL) {
2701 		boolean_t savenflag = nflag;
2702 
2703 		nflag = B_TRUE;
2704 		(void) printf("       mask: %s\n", routename(mask));
2705 		nflag = savenflag;
2706 	}
2707 	if (gate != NULL && rtm->rtm_flags & RTF_GATEWAY)
2708 		(void) printf("    gateway: %s\n", routename(gate));
2709 	if (src != NULL && rtm->rtm_flags & RTF_SETSRC)
2710 		(void) printf("     setsrc: %s\n", routename(src));
2711 	if (ifp != NULL) {
2712 		if (verbose) {
2713 			int i;
2714 
2715 			(void) printf("  interface: %.*s index %d address ",
2716 			    ifp->sdl_nlen, ifp->sdl_data, ifp->sdl_index);
2717 			for (i = ifp->sdl_nlen;
2718 			    i < ifp->sdl_nlen + ifp->sdl_alen;
2719 			    i++) {
2720 				(void) printf("%02x ",
2721 				    ifp->sdl_data[i] & 0xFF);
2722 			}
2723 			(void) printf("\n");
2724 		} else {
2725 			(void) printf("  interface: %.*s\n",
2726 			    ifp->sdl_nlen, ifp->sdl_data);
2727 		}
2728 	}
2729 	(void) printf("      flags: ");
2730 	bprintf(stdout, rtm->rtm_flags, routeflags);
2731 
2732 #define	lock(f)	((rtm->rtm_rmx.rmx_locks & RTV_ ## f) ? 'L' : ' ')
2733 #define	msec(u)	(((u) + 500) / 1000)		/* usec to msec */
2734 
2735 	(void) printf("\n%s\n", " recvpipe  sendpipe  ssthresh    rtt,ms "
2736 	    "rttvar,ms  hopcount      mtu     expire");
2737 	(void) printf("%8d%c ", rtm->rtm_rmx.rmx_recvpipe, lock(RPIPE));
2738 	(void) printf("%8d%c ", rtm->rtm_rmx.rmx_sendpipe, lock(SPIPE));
2739 	(void) printf("%8d%c ", rtm->rtm_rmx.rmx_ssthresh, lock(SSTHRESH));
2740 	(void) printf("%8d%c ", msec(rtm->rtm_rmx.rmx_rtt), lock(RTT));
2741 	(void) printf("%8d%c ", msec(rtm->rtm_rmx.rmx_rttvar), lock(RTTVAR));
2742 	(void) printf("%8d%c ", rtm->rtm_rmx.rmx_hopcount, lock(HOPCOUNT));
2743 	(void) printf("%8d%c ", rtm->rtm_rmx.rmx_mtu, lock(MTU));
2744 	if (rtm->rtm_rmx.rmx_expire)
2745 		rtm->rtm_rmx.rmx_expire -= time(0);
2746 	(void) printf("%8d%c", rtm->rtm_rmx.rmx_expire, lock(EXPIRE));
2747 #undef lock
2748 #undef msec
2749 #define	RTA_IGN	\
2750 	(RTA_DST|RTA_GATEWAY|RTA_NETMASK|RTA_IFP|RTA_IFA|RTA_BRD|RTA_SRC)
2751 	if (verbose) {
2752 		pmsg_common(rtm, msglen);
2753 	} else {
2754 		const char *sptr, *endptr;
2755 		const struct sockaddr *sa;
2756 		uint_t addrs;
2757 
2758 		/* Not verbose; just print out the exceptional cases */
2759 		if (rtm->rtm_addrs &~ RTA_IGN) {
2760 			(void) printf("\nsockaddrs: ");
2761 			bprintf(stdout, rtm->rtm_addrs, addrnames);
2762 		}
2763 		sptr = (const char *)(rtm + 1);
2764 		endptr = (const char *)rtm + msglen;
2765 		addrs = rtm->rtm_addrs;
2766 		while (addrs != 0 && sptr + sizeof (*sa) <= endptr) {
2767 			addrs &= addrs - 1;
2768 			/* LINTED */
2769 			sa = (const struct sockaddr *)sptr;
2770 			ADVANCE(sptr, sa);
2771 		}
2772 		if (addrs == 0)
2773 			pmsg_secattr(sptr, endptr - sptr, "    secattr: ");
2774 		(void) putchar('\n');
2775 	}
2776 #undef	RTA_IGN
2777 }
2778 
2779 static void
2780 pmsg_common(const struct rt_msghdr *rtm, size_t msglen)
2781 {
2782 	(void) printf("\nlocks: ");
2783 	bprintf(stdout, (int)rtm->rtm_rmx.rmx_locks, metricnames);
2784 	(void) printf(" inits: ");
2785 	bprintf(stdout, (int)rtm->rtm_inits, metricnames);
2786 	pmsg_addrs((const char *)(rtm + 1), msglen - sizeof (*rtm),
2787 	    rtm->rtm_addrs);
2788 }
2789 
2790 static void
2791 pmsg_addrs(const char *cp, size_t msglen, uint_t addrs)
2792 {
2793 	const struct sockaddr *sa;
2794 	const char *maxptr;
2795 	int i;
2796 
2797 	if (addrs != 0) {
2798 		(void) printf("\nsockaddrs: ");
2799 		bprintf(stdout, addrs, addrnames);
2800 		(void) putchar('\n');
2801 		maxptr = cp + msglen;
2802 		for (i = 1; i != 0 && cp + sizeof (*sa) <= maxptr; i <<= 1) {
2803 			if (i & addrs) {
2804 				/* LINTED */
2805 				sa = (const struct sockaddr *)cp;
2806 				(void) printf(" %s", routename(sa));
2807 				ADVANCE(cp, sa);
2808 			}
2809 		}
2810 		if (i != 0)
2811 			msglen = 0;
2812 		else
2813 			msglen = maxptr - cp;
2814 	}
2815 	pmsg_secattr(cp, msglen, "secattr: ");
2816 	(void) putchar('\n');
2817 	(void) fflush(stdout);
2818 }
2819 
2820 void
2821 bprintf(FILE *fp, int b, char *s)
2822 {
2823 	int i;
2824 	boolean_t gotsome = B_FALSE;
2825 
2826 	if (b == 0)
2827 		return;
2828 	while ((i = *s++) != 0) {
2829 		if (b & (1 << (i - 1))) {
2830 			if (!gotsome)
2831 				i = '<';
2832 			else
2833 				i = ',';
2834 			(void) putc(i, fp);
2835 			gotsome = B_TRUE;
2836 			for (; (i = *s) > ' '; s++)
2837 				(void) putc(i, fp);
2838 		} else {
2839 			while (*s > ' ')
2840 				s++;
2841 		}
2842 	}
2843 	if (gotsome)
2844 		(void) putc('>', fp);
2845 }
2846 
2847 int
2848 keyword(const char *cp)
2849 {
2850 	struct keytab *kt = keywords;
2851 
2852 	while (kt->kt_cp && strcmp(kt->kt_cp, cp))
2853 		kt++;
2854 	return (kt->kt_i);
2855 }
2856 
2857 void
2858 sodump(su_t *su, char *which)
2859 {
2860 	static char obuf[INET6_ADDRSTRLEN];
2861 
2862 	switch (su->sa.sa_family) {
2863 	case AF_LINK:
2864 		(void) printf("%s: link %s; ",
2865 		    which, link_ntoa(&su->sdl));
2866 		break;
2867 	case AF_INET:
2868 		(void) printf("%s: inet %s; ",
2869 		    which, inet_ntoa(su->sin.sin_addr));
2870 		break;
2871 	case AF_INET6:
2872 		if (inet_ntop(AF_INET6, (void *)&su->sin6.sin6_addr, obuf,
2873 		    INET6_ADDRSTRLEN) != NULL) {
2874 			(void) printf("%s: inet6 %s; ", which, obuf);
2875 			break;
2876 		}
2877 		/* FALLTHROUGH */
2878 	default:
2879 		quit(gettext("Internal Error"), EINVAL);
2880 		/* NOTREACHED */
2881 	}
2882 	(void) fflush(stdout);
2883 }
2884 
2885 /* States */
2886 #define	VIRGIN	0
2887 #define	GOTONE	1
2888 #define	GOTTWO	2
2889 #define	RESET	3
2890 /* Inputs */
2891 #define	DIGIT	(4*0)
2892 #define	END	(4*1)
2893 #define	DELIM	(4*2)
2894 #define	LETTER	(4*3)
2895 
2896 void
2897 sockaddr(char *addr, struct sockaddr *sa)
2898 {
2899 	char *cp = (char *)sa;
2900 	int size = salen(sa);
2901 	char *cplim = cp + size;
2902 	int byte = 0, state = VIRGIN, new;
2903 
2904 	(void) memset(cp, 0, size);
2905 	cp++;
2906 	do {
2907 		if ((*addr >= '0') && (*addr <= '9')) {
2908 			new = *addr - '0';
2909 		} else if ((*addr >= 'a') && (*addr <= 'f')) {
2910 			new = *addr - 'a' + 10;
2911 		} else if ((*addr >= 'A') && (*addr <= 'F')) {
2912 			new = *addr - 'A' + 10;
2913 		} else if (*addr == 0) {
2914 			state |= END;
2915 		} else {
2916 			state |= DELIM;
2917 		}
2918 		addr++;
2919 		switch (state /* | INPUT */) {
2920 		case GOTTWO | DIGIT:
2921 			*cp++ = byte;
2922 			/* FALLTHROUGH */
2923 		case VIRGIN | DIGIT:
2924 			state = GOTONE; byte = new; continue;
2925 		case GOTONE | DIGIT:
2926 			state = GOTTWO; byte = new + (byte << 4); continue;
2927 		default: /* | DELIM */
2928 			state = VIRGIN; *cp++ = byte; byte = 0; continue;
2929 		case GOTONE | END:
2930 		case GOTTWO | END:
2931 			*cp++ = byte;
2932 			/* FALLTHROUGH */
2933 		case VIRGIN | END:
2934 			break;
2935 		}
2936 		break;
2937 	} while (cp < cplim);
2938 }
2939 
2940 int
2941 salen(const struct sockaddr *sa)
2942 {
2943 	switch (sa->sa_family) {
2944 	case AF_INET:
2945 		return (sizeof (struct sockaddr_in));
2946 	case AF_LINK:
2947 		return (sizeof (struct sockaddr_dl));
2948 	case AF_INET6:
2949 		return (sizeof (struct sockaddr_in6));
2950 	default:
2951 		return (sizeof (struct sockaddr));
2952 	}
2953 }
2954 
2955 void
2956 link_addr(const char *addr, struct sockaddr_dl *sdl)
2957 {
2958 	char *cp = sdl->sdl_data;
2959 	char *cplim = sizeof (struct sockaddr_dl) + (char *)sdl;
2960 	int byte = 0, state = VIRGIN, new;
2961 
2962 	(void) memset(sdl, 0, sizeof (struct sockaddr_dl));
2963 	sdl->sdl_family = AF_LINK;
2964 	do {
2965 		state &= ~LETTER;
2966 		if ((*addr >= '0') && (*addr <= '9')) {
2967 			new = *addr - '0';
2968 		} else if ((*addr >= 'a') && (*addr <= 'f')) {
2969 			new = *addr - 'a' + 10;
2970 		} else if ((*addr >= 'A') && (*addr <= 'F')) {
2971 			new = *addr - 'A' + 10;
2972 		} else if (*addr == 0) {
2973 			state |= END;
2974 		} else if (state == VIRGIN &&
2975 		    (((*addr >= 'A') && (*addr <= 'Z')) ||
2976 		    ((*addr >= 'a') && (*addr <= 'z')))) {
2977 			state |= LETTER;
2978 		} else {
2979 			state |= DELIM;
2980 		}
2981 		addr++;
2982 		switch (state /* | INPUT */) {
2983 		case VIRGIN | DIGIT:
2984 		case VIRGIN | LETTER:
2985 			*cp++ = addr[-1];
2986 			continue;
2987 		case VIRGIN | DELIM:
2988 			state = RESET;
2989 			sdl->sdl_nlen = cp - sdl->sdl_data;
2990 			continue;
2991 		case GOTTWO | DIGIT:
2992 			*cp++ = byte;
2993 			/* FALLTHROUGH */
2994 		case RESET | DIGIT:
2995 			state = GOTONE;
2996 			byte = new;
2997 			continue;
2998 		case GOTONE | DIGIT:
2999 			state = GOTTWO;
3000 			byte = new + (byte << 4);
3001 			continue;
3002 		default: /* | DELIM */
3003 			state = RESET;
3004 			*cp++ = byte;
3005 			byte = 0;
3006 			continue;
3007 		case GOTONE | END:
3008 		case GOTTWO | END:
3009 			*cp++ = byte;
3010 			/* FALLTHROUGH */
3011 		case RESET | END:
3012 			break;
3013 		}
3014 		break;
3015 	} while (cp < cplim);
3016 	sdl->sdl_alen = cp - LLADDR(sdl);
3017 }
3018 
3019 static char hexlist[] = "0123456789abcdef";
3020 
3021 char *
3022 link_ntoa(const struct sockaddr_dl *sdl)
3023 {
3024 	static char obuf[64];
3025 	char *out = obuf;
3026 	int i;
3027 	uchar_t *in = (uchar_t *)LLADDR(sdl);
3028 	uchar_t *inlim = in + sdl->sdl_alen;
3029 	boolean_t firsttime = B_TRUE;
3030 
3031 	if (sdl->sdl_nlen) {
3032 		(void) memcpy(obuf, sdl->sdl_data, sdl->sdl_nlen);
3033 		out += sdl->sdl_nlen;
3034 		if (sdl->sdl_alen)
3035 			*out++ = ':';
3036 	}
3037 	while (in < inlim) {
3038 		if (firsttime)
3039 			firsttime = B_FALSE;
3040 		else
3041 			*out++ = '.';
3042 		i = *in++;
3043 		if (i > 0xf) {
3044 			out[1] = hexlist[i & 0xf];
3045 			i >>= 4;
3046 			out[0] = hexlist[i];
3047 			out += 2;
3048 		} else {
3049 			*out++ = hexlist[i];
3050 		}
3051 	}
3052 	*out = 0;
3053 	return (obuf);
3054 }
3055 
3056 static mib_item_t *
3057 mibget(int sd)
3058 {
3059 	intmax_t		buf[512 / sizeof (intmax_t)];
3060 	int			flags;
3061 	int			i, j, getcode;
3062 	struct strbuf		ctlbuf, databuf;
3063 	struct T_optmgmt_req	*tor = (struct T_optmgmt_req *)buf;
3064 	struct T_optmgmt_ack	*toa = (struct T_optmgmt_ack *)buf;
3065 	struct T_error_ack	*tea = (struct T_error_ack *)buf;
3066 	struct opthdr		*req;
3067 	mib_item_t		*first_item = NULL;
3068 	mib_item_t		*last_item  = NULL;
3069 	mib_item_t		*temp;
3070 
3071 	tor->PRIM_type = T_SVR4_OPTMGMT_REQ;
3072 	tor->OPT_offset = sizeof (struct T_optmgmt_req);
3073 	tor->OPT_length = sizeof (struct opthdr);
3074 	tor->MGMT_flags = T_CURRENT;
3075 	req = (struct opthdr *)&tor[1];
3076 	req->level = MIB2_IP;		/* any MIB2_xxx value ok here */
3077 	req->name  = 0;
3078 	req->len   = 0;
3079 
3080 	ctlbuf.buf = (char *)buf;
3081 	ctlbuf.len = tor->OPT_length + tor->OPT_offset;
3082 	flags = 0;
3083 	if (putmsg(sd, &ctlbuf, NULL, flags) < 0) {
3084 		perror("mibget: putmsg (ctl)");
3085 		return (NULL);
3086 	}
3087 	/*
3088 	 * each reply consists of a ctl part for one fixed structure
3089 	 * or table, as defined in mib2.h.  The format is a T_OPTMGMT_ACK,
3090 	 * containing an opthdr structure.  level/name identify the entry,
3091 	 * len is the size of the data part of the message.
3092 	 */
3093 	req = (struct opthdr *)&toa[1];
3094 	ctlbuf.maxlen = sizeof (buf);
3095 	for (j = 1; ; j++) {
3096 		flags = 0;
3097 		getcode = getmsg(sd, &ctlbuf, NULL, &flags);
3098 		if (getcode < 0) {
3099 			perror("mibget: getmsg (ctl)");
3100 			if (verbose) {
3101 				(void) fprintf(stderr,
3102 				    "#   level   name    len\n");
3103 				i = 0;
3104 				for (last_item = first_item; last_item != NULL;
3105 				    last_item = last_item->next_item) {
3106 					(void) printf("%d  %4ld   %5ld   %ld\n",
3107 					    ++i, last_item->group,
3108 					    last_item->mib_id,
3109 					    last_item->length);
3110 				}
3111 			}
3112 			break;
3113 		}
3114 		if (getcode == 0 &&
3115 		    ctlbuf.len >= sizeof (struct T_optmgmt_ack) &&
3116 		    toa->PRIM_type == T_OPTMGMT_ACK &&
3117 		    toa->MGMT_flags == T_SUCCESS &&
3118 		    req->len == 0) {
3119 			if (verbose) {
3120 				(void) printf("mibget getmsg() %d returned EOD "
3121 				    "(level %lu, name %lu)\n", j, req->level,
3122 				    req->name);
3123 			}
3124 			return (first_item);		/* this is EOD msg */
3125 		}
3126 
3127 		if (ctlbuf.len >= sizeof (struct T_error_ack) &&
3128 		    tea->PRIM_type == T_ERROR_ACK) {
3129 			(void) fprintf(stderr, gettext("mibget %d gives "
3130 			    "T_ERROR_ACK: TLI_error = 0x%lx, UNIX_error = "
3131 			    "0x%lx\n"), j, tea->TLI_error, tea->UNIX_error);
3132 			errno = (tea->TLI_error == TSYSERR) ?
3133 			    tea->UNIX_error : EPROTO;
3134 			break;
3135 		}
3136 
3137 		if (getcode != MOREDATA ||
3138 		    ctlbuf.len < sizeof (struct T_optmgmt_ack) ||
3139 		    toa->PRIM_type != T_OPTMGMT_ACK ||
3140 		    toa->MGMT_flags != T_SUCCESS) {
3141 			(void) printf("mibget getmsg(ctl) %d returned %d, "
3142 			    "ctlbuf.len = %d, PRIM_type = %ld\n",
3143 			    j, getcode, ctlbuf.len, toa->PRIM_type);
3144 			if (toa->PRIM_type == T_OPTMGMT_ACK) {
3145 				(void) printf("T_OPTMGMT_ACK: "
3146 				    "MGMT_flags = 0x%lx, req->len = %ld\n",
3147 				    toa->MGMT_flags, req->len);
3148 			}
3149 			errno = ENOMSG;
3150 			break;
3151 		}
3152 
3153 		temp = malloc(sizeof (mib_item_t));
3154 		if (temp == NULL) {
3155 			perror("mibget: malloc");
3156 			break;
3157 		}
3158 		if (last_item != NULL)
3159 			last_item->next_item = temp;
3160 		else
3161 			first_item = temp;
3162 		last_item = temp;
3163 		last_item->next_item = NULL;
3164 		last_item->group = req->level;
3165 		last_item->mib_id = req->name;
3166 		last_item->length = req->len;
3167 		last_item->valp = malloc(req->len);
3168 		if (verbose) {
3169 			(void) printf("msg %d:  group = %4ld   mib_id = %5ld   "
3170 			    "length = %ld\n",
3171 			    j, last_item->group, last_item->mib_id,
3172 			    last_item->length);
3173 		}
3174 
3175 		databuf.maxlen = last_item->length;
3176 		databuf.buf    = (char *)last_item->valp;
3177 		databuf.len    = 0;
3178 		flags = 0;
3179 		getcode = getmsg(sd, NULL, &databuf, &flags);
3180 		if (getcode < 0) {
3181 			perror("mibget: getmsg (data)");
3182 			break;
3183 		} else if (getcode != 0) {
3184 			(void) printf("mibget getmsg(data) returned %d, "
3185 			    "databuf.maxlen = %d, databuf.len = %d\n",
3186 			    getcode, databuf.maxlen, databuf.len);
3187 			break;
3188 		}
3189 	}
3190 
3191 	/*
3192 	 * On error, free all the allocated mib_item_t objects.
3193 	 */
3194 	while (first_item != NULL) {
3195 		last_item = first_item;
3196 		first_item = first_item->next_item;
3197 		free(last_item);
3198 	}
3199 	return (NULL);
3200 }
3201 
3202 /*
3203  * print label security attributes for gateways.
3204  */
3205 static void
3206 pmsg_secattr(const char *sptr, size_t msglen, const char *labelstr)
3207 {
3208 	rtm_ext_t rtm_ext;
3209 	tsol_rtsecattr_t sp;
3210 	struct rtsa_s *rtsa = &sp.rtsa_attr[0];
3211 	const char *endptr;
3212 	char buf[256];
3213 	int i;
3214 
3215 	if (!is_system_labeled())
3216 		return;
3217 
3218 	endptr = sptr + msglen;
3219 
3220 	for (;;) {
3221 		if (sptr + sizeof (rtm_ext_t) + sizeof (sp) > endptr)
3222 			return;
3223 
3224 		bcopy(sptr, &rtm_ext, sizeof (rtm_ext));
3225 		sptr += sizeof (rtm_ext);
3226 		if (rtm_ext.rtmex_type == RTMEX_GATEWAY_SECATTR)
3227 			break;
3228 		sptr += rtm_ext.rtmex_len;
3229 	}
3230 
3231 	/* bail if this entry is corrupt or overruns buffer length */
3232 	if (rtm_ext.rtmex_len < sizeof (sp) ||
3233 	    sptr + rtm_ext.rtmex_len > endptr)
3234 		return;
3235 
3236 	/* run up just to the end of this extension */
3237 	endptr = sptr + rtm_ext.rtmex_len;
3238 
3239 	bcopy(sptr, &sp, sizeof (sp));
3240 	sptr += sizeof (sp);
3241 
3242 	if (sptr + (sp.rtsa_cnt - 1) * sizeof (*rtsa) != endptr)
3243 		return;
3244 
3245 	for (i = 0; i < sp.rtsa_cnt; i++) {
3246 		if (i > 0) {
3247 			/* first element is part of sp initalized above */
3248 			bcopy(sptr, rtsa, sizeof (*rtsa));
3249 			sptr += sizeof (*rtsa);
3250 		}
3251 		(void) printf("\n%s%s", labelstr, rtsa_to_str(rtsa, buf,
3252 		    sizeof (buf)));
3253 	}
3254 }
3255