Annotation of src/usr.bin/netstat/route.c, Revision 1.74
1.74 ! itojun 1: /* $OpenBSD: route.c,v 1.73 2006/08/29 21:51:13 claudio Exp $ */
1.2 deraadt 2: /* $NetBSD: route.c,v 1.15 1996/05/07 02:55:06 thorpej Exp $ */
1.1 deraadt 3:
4: /*
5: * Copyright (c) 1983, 1988, 1993
6: * The Regents of the University of California. All rights reserved.
7: *
8: * Redistribution and use in source and binary forms, with or without
9: * modification, are permitted provided that the following conditions
10: * are met:
11: * 1. Redistributions of source code must retain the above copyright
12: * notice, this list of conditions and the following disclaimer.
13: * 2. Redistributions in binary form must reproduce the above copyright
14: * notice, this list of conditions and the following disclaimer in the
15: * documentation and/or other materials provided with the distribution.
1.53 millert 16: * 3. Neither the name of the University nor the names of its contributors
1.1 deraadt 17: * may be used to endorse or promote products derived from this software
18: * without specific prior written permission.
19: *
20: * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
21: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23: * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
24: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30: * SUCH DAMAGE.
31: */
32:
33: #ifndef lint
34: #if 0
35: static char sccsid[] = "from: @(#)route.c 8.3 (Berkeley) 3/9/94";
36: #else
1.74 ! itojun 37: static char *rcsid = "$OpenBSD: route.c,v 1.73 2006/08/29 21:51:13 claudio Exp $";
1.1 deraadt 38: #endif
39: #endif /* not lint */
40:
41: #include <sys/param.h>
42: #include <sys/protosw.h>
43: #include <sys/socket.h>
44: #include <sys/mbuf.h>
45:
46: #include <net/if.h>
47: #include <net/if_dl.h>
48: #include <net/if_types.h>
49: #define _KERNEL
50: #include <net/route.h>
51: #undef _KERNEL
52: #include <netinet/in.h>
1.13 millert 53: #include <arpa/inet.h>
1.1 deraadt 54:
55: #include <sys/sysctl.h>
56:
1.61 otto 57: #include <err.h>
1.15 millert 58: #include <limits.h>
1.1 deraadt 59: #include <netdb.h>
60: #include <stdio.h>
61: #include <stdlib.h>
62: #include <string.h>
63: #include <unistd.h>
1.9 angelos 64:
65: #ifndef INET
66: #define INET
67: #endif
68:
1.26 angelos 69: #include <netinet/ip_ipsp.h>
1.1 deraadt 70: #include "netstat.h"
71:
1.67 jaredy 72: #define kget(p, d) (kread((u_long)(p), &(d), sizeof (d)))
1.1 deraadt 73:
1.29 deraadt 74: /* alignment constraint for routing socket */
75: #define ROUNDUP(a) \
76: ((a) > 0 ? (1 + (((a) - 1) | (sizeof(long) - 1))) : sizeof(long))
77: #define ADVANCE(x, n) (x += ROUNDUP((n)->sa_len))
1.51 jason 78:
1.73 claudio 79: struct radix_node_head ***rt_head;
80: struct radix_node_head ***rnt; /* provides enough space */
81: struct radix_node_head *rt_tables[AF_MAX+1]; /* provides enough space */
82: u_int8_t af2rtafidx[AF_MAX+1];
1.29 deraadt 83:
1.1 deraadt 84: static union {
1.6 deraadt 85: struct sockaddr u_sa;
86: u_int32_t u_data[64];
1.29 deraadt 87: int u_dummy; /* force word-alignment */
1.1 deraadt 88: } pt_u;
89:
90: int do_rtent = 0;
91: struct rtentry rtentry;
92: struct radix_node rnode;
93: struct radix_mask rmask;
94:
1.45 millert 95: static struct sockaddr *kgetsa(struct sockaddr *);
96: static void p_tree(struct radix_node *);
1.54 deraadt 97: static void p_rtnode(void);
1.49 deraadt 98: static void p_rtflags(u_char);
1.72 claudio 99: static void p_krtentry(struct rtentry *);
1.45 millert 100: static void encap_print(struct rtentry *);
1.1 deraadt 101:
102: /*
103: * Print routing tables.
104: */
105: void
1.73 claudio 106: routepr(u_long rtree, u_long mtree, u_long af2idx, u_long rtbl_id_max)
1.1 deraadt 107: {
108: struct radix_node_head *rnh, head;
1.73 claudio 109: int i, idxmax = 0;
110: u_int rtidxmax;
1.1 deraadt 111:
112: printf("Routing tables\n");
113:
1.73 claudio 114: if (rtree == 0 || af2idx == 0) {
1.72 claudio 115: printf("rt_tables: symbol not in namelist\n");
116: return;
117: }
1.1 deraadt 118:
1.73 claudio 119: kget(rtree, rt_head);
120: kget(rtbl_id_max, rtidxmax);
121: kget(af2idx, af2rtafidx);
122:
123: for (i = 0; i <= AF_MAX; i++) {
124: if (af2rtafidx[i] > idxmax)
125: idxmax = af2rtafidx[i];
126: }
127:
128: if ((rnt = calloc(rtidxmax + 1, sizeof(struct radix_node_head **))) ==
129: NULL)
130: err(1, NULL);
131:
132: kread((u_long)rt_head, rnt, (rtidxmax + 1) *
133: sizeof(struct radix_node_head **));
134: kread((u_long)rnt[0], rt_tables, (idxmax + 1) * sizeof(rnh));
135:
1.72 claudio 136: for (i = 0; i <= AF_MAX; i++) {
137: if (i == AF_UNSPEC) {
1.73 claudio 138: if (Aflag && (af == AF_UNSPEC || af == 0xff)) {
139: kget(mtree, rnh);
140: kget(rnh, head);
1.72 claudio 141: printf("Netmasks:\n");
1.1 deraadt 142: p_tree(head.rnh_treetop);
143: }
1.73 claudio 144: continue;
145: }
146: if (af2rtafidx[i] == 0)
147: /* no table for this AF */
148: continue;
149: if ((rnh = rt_tables[af2rtafidx[i]]) == 0)
150: continue;
151: kget(rnh, head);
152: if (af == AF_UNSPEC || af == i) {
1.72 claudio 153: pr_family(i);
154: do_rtent = 1;
155: pr_rthdr(i, Aflag);
156: p_tree(head.rnh_treetop);
1.1 deraadt 157: }
158: }
159: }
160:
161: static struct sockaddr *
1.50 deraadt 162: kgetsa(struct sockaddr *dst)
1.1 deraadt 163: {
164:
165: kget(dst, pt_u.u_sa);
166: if (pt_u.u_sa.sa_len > sizeof (pt_u.u_sa))
1.67 jaredy 167: kread((u_long)dst, pt_u.u_data, pt_u.u_sa.sa_len);
1.1 deraadt 168: return (&pt_u.u_sa);
169: }
170:
171: static void
1.50 deraadt 172: p_tree(struct radix_node *rn)
1.1 deraadt 173: {
174:
175: again:
176: kget(rn, rnode);
177: if (rnode.rn_b < 0) {
178: if (Aflag)
1.14 millert 179: printf("%-16p ", rn);
1.1 deraadt 180: if (rnode.rn_flags & RNF_ROOT) {
181: if (Aflag)
182: printf("(root node)%s",
183: rnode.rn_dupedkey ? " =>\n" : "\n");
184: } else if (do_rtent) {
185: kget(rn, rtentry);
1.72 claudio 186: p_krtentry(&rtentry);
1.1 deraadt 187: if (Aflag)
188: p_rtnode();
189: } else {
190: p_sockaddr(kgetsa((struct sockaddr *)rnode.rn_key),
1.21 peter 191: 0, 0, 44);
1.1 deraadt 192: putchar('\n');
193: }
1.13 millert 194: if ((rn = rnode.rn_dupedkey))
1.1 deraadt 195: goto again;
196: } else {
197: if (Aflag && do_rtent) {
1.14 millert 198: printf("%-16p ", rn);
1.1 deraadt 199: p_rtnode();
200: }
201: rn = rnode.rn_r;
202: p_tree(rnode.rn_l);
203: p_tree(rn);
204: }
205: }
206:
1.49 deraadt 207: static void
208: p_rtflags(u_char flags)
209: {
210: putchar('<');
211: if (flags & RNF_NORMAL)
212: putchar('N');
213: if (flags & RNF_ROOT)
214: putchar('R');
215: if (flags & RNF_ACTIVE)
216: putchar('A');
1.56 henric 217: if (flags & ~(RNF_NORMAL | RNF_ROOT | RNF_ACTIVE))
1.49 deraadt 218: printf("/0x%02x", flags);
219: putchar('>');
220: }
221:
1.23 deraadt 222: char nbuf[25];
1.1 deraadt 223:
224: static void
1.50 deraadt 225: p_rtnode(void)
1.1 deraadt 226: {
227: struct radix_mask *rm = rnode.rn_mklist;
228:
229: if (rnode.rn_b < 0) {
230: if (rnode.rn_mask) {
231: printf("\t mask ");
232: p_sockaddr(kgetsa((struct sockaddr *)rnode.rn_mask),
1.21 peter 233: 0, 0, -1);
1.1 deraadt 234: } else if (rm == 0)
235: return;
236: } else {
1.23 deraadt 237: snprintf(nbuf, sizeof nbuf, "(%d)", rnode.rn_b);
1.14 millert 238: printf("%6.6s %16p : %16p", nbuf, rnode.rn_l,
239: rnode.rn_r);
1.1 deraadt 240: }
1.49 deraadt 241:
242: putchar(' ');
243: p_rtflags(rnode.rn_flags);
244:
1.1 deraadt 245: while (rm) {
246: kget(rm, rmask);
1.23 deraadt 247: snprintf(nbuf, sizeof nbuf, " %d refs, ", rmask.rm_refs);
1.14 millert 248: printf(" mk = %16p {(%d),%s",
1.46 deraadt 249: rm, -1 - rmask.rm_b, rmask.rm_refs ? nbuf : " ");
1.49 deraadt 250: p_rtflags(rmask.rm_flags);
251: printf(", ");
252: if (rmask.rm_flags & RNF_NORMAL) {
253: struct radix_node rnode_aux;
254:
255: printf("leaf = %p ", rmask.rm_leaf);
256: kget(rmask.rm_leaf, rnode_aux);
257: p_sockaddr(kgetsa((struct sockaddr *)rnode_aux.rn_mask),
258: 0, 0, -1);
259: } else
260: p_sockaddr(kgetsa((struct sockaddr *)rmask.rm_mask),
261: 0, 0, -1);
1.1 deraadt 262: putchar('}');
1.13 millert 263: if ((rm = rmask.rm_mklist))
1.1 deraadt 264: printf(" ->");
265: }
266: putchar('\n');
267: }
268:
269: static void
1.72 claudio 270: p_krtentry(struct rtentry *rt)
1.1 deraadt 271: {
272: static struct ifnet ifnet, *lastif;
1.30 itojun 273: struct sockaddr_storage sock1, sock2;
274: struct sockaddr *sa = (struct sockaddr *)&sock1;
275: struct sockaddr *mask = (struct sockaddr *)&sock2;
1.46 deraadt 276:
1.21 peter 277: bcopy(kgetsa(rt_key(rt)), sa, sizeof(struct sockaddr));
1.30 itojun 278: if (sa->sa_len > sizeof(struct sockaddr))
279: bcopy(kgetsa(rt_key(rt)), sa, sa->sa_len);
1.21 peter 280:
1.26 angelos 281: if (sa->sa_family == PF_KEY) {
1.10 deraadt 282: encap_print(rt);
283: return;
1.9 angelos 284: }
1.21 peter 285:
1.30 itojun 286: if (rt_mask(rt)) {
1.21 peter 287: bcopy(kgetsa(rt_mask(rt)), mask, sizeof(struct sockaddr));
1.30 itojun 288: if (sa->sa_len > sizeof(struct sockaddr))
289: bcopy(kgetsa(rt_mask(rt)), mask, sa->sa_len);
290: } else
1.21 peter 291: mask = 0;
1.46 deraadt 292:
1.72 claudio 293: p_addr(sa, mask, rt->rt_flags);
294: p_gwaddr(kgetsa(rt->rt_gateway), sa->sa_family);
1.1 deraadt 295: p_flags(rt->rt_flags, "%-6.6s ");
1.13 millert 296: printf("%6d %8ld ", rt->rt_refcnt, rt->rt_use);
1.1 deraadt 297: if (rt->rt_rmx.rmx_mtu)
1.13 millert 298: printf("%6ld ", rt->rt_rmx.rmx_mtu);
1.1 deraadt 299: else
300: printf("%6s ", "-");
1.39 provos 301: putchar((rt->rt_rmx.rmx_locks & RTV_MTU) ? 'L' : ' ');
1.72 claudio 302:
1.1 deraadt 303: if (rt->rt_ifp) {
304: if (rt->rt_ifp != lastif) {
305: kget(rt->rt_ifp, ifnet);
306: lastif = rt->rt_ifp;
307: }
1.2 deraadt 308: printf(" %.16s%s", ifnet.if_xname,
1.50 deraadt 309: rt->rt_nodes[0].rn_dupedkey ? " =>" : "");
1.1 deraadt 310: }
311: putchar('\n');
1.63 claudio 312: if (vflag)
313: printf("\texpire %10lu%c\n",
1.46 deraadt 314: rt->rt_rmx.rmx_expire,
1.63 claudio 315: (rt->rt_rmx.rmx_locks & RTV_EXPIRE) ? 'L' : ' ');
1.1 deraadt 316: }
317:
318: /*
319: * Print routing statistics
320: */
321: void
1.72 claudio 322: rt_stats(int usesysctl, u_long off)
1.1 deraadt 323: {
324: struct rtstat rtstat;
1.72 claudio 325: int mib[6];
326: size_t size;
327:
328: if (usesysctl) {
329: mib[0] = CTL_NET;
330: mib[1] = PF_ROUTE;
331: mib[2] = 0;
332: mib[3] = 0;
333: mib[4] = NET_RT_STATS;
334: mib[5] = 0;
335: size = sizeof (rtstat);
336:
337: if (sysctl(mib, 6, &rtstat, &size, NULL, 0) < 0) {
338: perror("sysctl of routing table statistics");
339: exit(1);
340: }
341: } else if (off == 0) {
1.1 deraadt 342: printf("rtstat: symbol not in namelist\n");
343: return;
1.72 claudio 344: } else
345: kread(off, &rtstat, sizeof (rtstat));
346:
1.1 deraadt 347: printf("routing:\n");
348: printf("\t%u bad routing redirect%s\n",
1.46 deraadt 349: rtstat.rts_badredirect, plural(rtstat.rts_badredirect));
1.1 deraadt 350: printf("\t%u dynamically created route%s\n",
1.46 deraadt 351: rtstat.rts_dynamic, plural(rtstat.rts_dynamic));
1.1 deraadt 352: printf("\t%u new gateway%s due to redirects\n",
1.46 deraadt 353: rtstat.rts_newgateway, plural(rtstat.rts_newgateway));
1.1 deraadt 354: printf("\t%u destination%s found unreachable\n",
1.46 deraadt 355: rtstat.rts_unreach, plural(rtstat.rts_unreach));
1.1 deraadt 356: printf("\t%u use%s of a wildcard route\n",
1.46 deraadt 357: rtstat.rts_wildcard, plural(rtstat.rts_wildcard));
1.5 mickey 358: }
359:
1.9 angelos 360: static void
1.50 deraadt 361: encap_print(struct rtentry *rt)
1.9 angelos 362: {
1.10 deraadt 363: struct sockaddr_encap sen1, sen2, sen3;
1.44 mickey 364: struct ipsec_policy ipo;
1.38 angelos 365:
1.31 angelos 366: #ifdef INET6
367: struct sockaddr_in6 s61, s62;
368: #endif /* INET6 */
1.9 angelos 369:
370: bcopy(kgetsa(rt_key(rt)), &sen1, sizeof(sen1));
371: bcopy(kgetsa(rt_mask(rt)), &sen2, sizeof(sen2));
372: bcopy(kgetsa(rt->rt_gateway), &sen3, sizeof(sen3));
373:
1.46 deraadt 374: if (sen1.sen_type == SENT_IP4) {
1.72 claudio 375: printf("%-18s %-5u ", netname4(sen1.sen_ip_src.s_addr,
1.46 deraadt 376: sen2.sen_ip_src.s_addr), ntohs(sen1.sen_sport));
1.72 claudio 377: printf("%-18s %-5u %-5u ", netname4(sen1.sen_ip_dst.s_addr,
1.46 deraadt 378: sen2.sen_ip_dst.s_addr),
379: ntohs(sen1.sen_dport), sen1.sen_proto);
1.31 angelos 380: }
381:
382: #ifdef INET6
1.46 deraadt 383: if (sen1.sen_type == SENT_IP6) {
384: bzero(&s61, sizeof(s61));
385: bzero(&s62, sizeof(s62));
386: s61.sin6_family = s62.sin6_family = AF_INET6;
387: s61.sin6_len = s62.sin6_len = sizeof(s61);
388: bcopy(&sen1.sen_ip6_src, &s61.sin6_addr, sizeof(struct in6_addr));
1.57 itojun 389: #ifdef __KAME__
390: if (IN6_IS_ADDR_LINKLOCAL(&s61.sin6_addr) ||
1.74 ! itojun 391: IN6_IS_ADDR_MC_LINKLOCAL(&s61.sin6_addr) ||
! 392: IN6_IS_ADDR_MC_INTFACELOCAL(&s61.sin6_addr)) {
1.57 itojun 393: s61.sin6_scope_id =
394: ((u_int16_t)s61.sin6_addr.s6_addr[2] << 8) |
395: s61.sin6_addr.s6_addr[3];
396: s61.sin6_addr.s6_addr[2] = s61.sin6_addr.s6_addr[3] = 0;
397: }
398: #endif
1.46 deraadt 399: bcopy(&sen2.sen_ip6_src, &s62.sin6_addr, sizeof(struct in6_addr));
1.57 itojun 400: #ifdef __KAME__
401: if (IN6_IS_ADDR_LINKLOCAL(&s62.sin6_addr) ||
1.74 ! itojun 402: IN6_IS_ADDR_MC_LINKLOCAL(&s62.sin6_addr) ||
! 403: IN6_IS_ADDR_MC_INTFACELOCAL(&s62.sin6_addr)) {
1.57 itojun 404: s62.sin6_scope_id =
405: ((u_int16_t)s62.sin6_addr.s6_addr[2] << 8) |
406: s62.sin6_addr.s6_addr[3];
407: s62.sin6_addr.s6_addr[2] = s62.sin6_addr.s6_addr[3] = 0;
408: }
409: #endif
1.46 deraadt 410:
1.72 claudio 411: printf("%-42s %-5u ", netname6(&s61, &s62),
1.46 deraadt 412: ntohs(sen1.sen_ip6_sport));
413:
414: bzero(&s61, sizeof(s61));
415: bzero(&s62, sizeof(s62));
416: s61.sin6_family = s62.sin6_family = AF_INET6;
417: s61.sin6_len = s62.sin6_len = sizeof(s61);
418: bcopy(&sen1.sen_ip6_dst, &s61.sin6_addr, sizeof(struct in6_addr));
1.57 itojun 419: #ifdef __KAME__
420: if (IN6_IS_ADDR_LINKLOCAL(&s61.sin6_addr) ||
1.74 ! itojun 421: IN6_IS_ADDR_MC_LINKLOCAL(&s61.sin6_addr) ||
! 422: IN6_IS_ADDR_MC_INTFACELOCAL(&s61.sin6_addr)) {
1.57 itojun 423: s61.sin6_scope_id =
424: ((u_int16_t)s61.sin6_addr.s6_addr[2] << 8) |
425: s61.sin6_addr.s6_addr[3];
426: s61.sin6_addr.s6_addr[2] = s61.sin6_addr.s6_addr[3] = 0;
427: }
428: #endif
1.46 deraadt 429: bcopy(&sen2.sen_ip6_dst, &s62.sin6_addr, sizeof(struct in6_addr));
1.57 itojun 430: #ifdef __KAME__
431: if (IN6_IS_ADDR_LINKLOCAL(&s62.sin6_addr) ||
1.74 ! itojun 432: IN6_IS_ADDR_MC_LINKLOCAL(&s62.sin6_addr) ||
! 433: IN6_IS_ADDR_MC_INTFACELOCAL(&s62.sin6_addr)) {
1.57 itojun 434: s62.sin6_scope_id =
435: ((u_int16_t)s62.sin6_addr.s6_addr[2] << 8) |
436: s62.sin6_addr.s6_addr[3];
437: s62.sin6_addr.s6_addr[2] = s62.sin6_addr.s6_addr[3] = 0;
438: }
439: #endif
1.31 angelos 440:
1.72 claudio 441: printf("%-42s %-5u %-5u ", netname6(&s61, &s62),
1.46 deraadt 442: ntohs(sen1.sen_ip6_dport), sen1.sen_ip6_proto);
1.31 angelos 443: }
444: #endif /* INET6 */
445:
1.46 deraadt 446: if (sen3.sen_type == SENT_IPSP) {
447: char hostn[NI_MAXHOST];
1.31 angelos 448:
1.46 deraadt 449: kget(sen3.sen_ipsp, ipo);
1.38 angelos 450:
1.48 ho 451: if (getnameinfo(&ipo.ipo_dst.sa, ipo.ipo_dst.sa.sa_len,
452: hostn, NI_MAXHOST, NULL, 0, NI_NUMERICHOST) != 0)
453: strlcpy (hostn, "none", NI_MAXHOST);
454:
1.46 deraadt 455: printf("%s", hostn);
456: printf("/%-u", ipo.ipo_sproto);
1.44 mickey 457:
1.46 deraadt 458: switch (ipo.ipo_type) {
1.44 mickey 459: case IPSP_IPSEC_REQUIRE:
1.46 deraadt 460: printf("/require");
461: break;
1.44 mickey 462: case IPSP_IPSEC_ACQUIRE:
1.46 deraadt 463: printf("/acquire");
464: break;
1.44 mickey 465: case IPSP_IPSEC_USE:
1.46 deraadt 466: printf("/use");
467: break;
1.44 mickey 468: case IPSP_IPSEC_DONTACQ:
1.46 deraadt 469: printf("/dontacq");
470: break;
1.44 mickey 471: case IPSP_PERMIT:
1.71 hshoexer 472: printf("/bypass");
1.46 deraadt 473: break;
1.44 mickey 474: case IPSP_DENY:
1.46 deraadt 475: printf("/deny");
476: break;
1.44 mickey 477: default:
1.46 deraadt 478: printf("/<unknown type!>");
479: break;
480: }
1.44 mickey 481:
1.46 deraadt 482: if ((ipo.ipo_addr.sen_type == SENT_IP4 &&
483: ipo.ipo_addr.sen_direction == IPSP_DIRECTION_IN) ||
484: (ipo.ipo_addr.sen_type == SENT_IP6 &&
485: ipo.ipo_addr.sen_ip6_direction == IPSP_DIRECTION_IN))
486: printf("/in\n");
487: else if ((ipo.ipo_addr.sen_type == SENT_IP4 &&
488: ipo.ipo_addr.sen_direction == IPSP_DIRECTION_OUT) ||
489: (ipo.ipo_addr.sen_type == SENT_IP6 &&
490: ipo.ipo_addr.sen_ip6_direction == IPSP_DIRECTION_OUT))
491: printf("/out\n");
492: else
493: printf("/<unknown>\n");
1.1 deraadt 494: }
495: }