search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
6769230 ifconfig gives tunnel security warnings when it shouldn't
[unleashed.git] / usr / src / cmd / cmd-inet / usr.sbin / route.c
blobb4b16d67557447167f2f871d7abbdbff7b4b6827
1 /*
2 * Copyright 2007 Sun Microsystems, Inc. All rights reserved.
3 * Use is subject to license terms.
4 */
5
6 /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */
7 /* All Rights Reserved */
8
9 /* Copyright (c) 1990 Mentat Inc. */
10
11 /*
12 *
13 * Copyright (c) 1983, 1989, 1991, 1993
14 * The Regents of the University of California. All rights reserved.
15 *
16 * Redistribution and use in source and binary forms, with or without
17 * modification, are permitted provided that the following conditions
18 * are met:
19 * 1. Redistributions of source code must retain the above copyright
20 * notice, this list of conditions and the following disclaimer.
21 * 2. Redistributions in binary form must reproduce the above copyright
22 * notice, this list of conditions and the following disclaimer in the
23 * documentation and/or other materials provided with the distribution.
24 * 3. All advertising materials mentioning features or use of this software
25 * must display the following acknowledgement:
26 * This product includes software developed by the University of
27 * California, Berkeley and its contributors.
28 * 4. Neither the name of the University nor the names of its contributors
29 * may be used to endorse or promote products derived from this software
30 * without specific prior written permission.
31 *
32 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
33 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
34 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
35 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
36 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
37 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
38 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
39 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
40 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
41 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
42 * SUCH DAMAGE.
43 *
44 * @(#)route.c 8.6 (Berkeley) 4/28/95
45 * @(#)linkaddr.c 8.1 (Berkeley) 6/4/93
46 */
47
48 #pragma ident "%Z%%M% %I% %E% SMI"
49
50 #include <sys/param.h>
51 #include <sys/file.h>
52 #include <sys/socket.h>
53 #include <sys/ioctl.h>
54 #include <sys/stat.h>
55 #include <sys/stream.h>
56 #include <sys/sysmacros.h>
57 #include <sys/tihdr.h>
58 #include <sys/types.h>
59 #include <sys/ccompile.h>
60
61 #include <net/if.h>
62 #include <net/route.h>
63 #include <net/if_dl.h>
64 #include <netinet/in.h>
65 #include <arpa/inet.h>
66 #include <netdb.h>
67 #include <inet/mib2.h>
68 #include <inet/ip.h>
69
70 #include <limits.h>
71 #include <locale.h>
72
73 #include <errno.h>
74 #include <unistd.h>
75 #include <stdio.h>
76 #include <stdlib.h>
77 #include <stddef.h>
78 #include <string.h>
79 #include <stropts.h>
80 #include <fcntl.h>
81 #include <stdarg.h>
82 #include <assert.h>
83 #include <strings.h>
84
85 #include <libtsnet.h>
86 #include <tsol/label.h>
87
88 static struct keytab {
89 char *kt_cp;
90 int kt_i;
91 } keywords[] = {
92 #define K_ADD 1
93 {"add", K_ADD},
94 #define K_BLACKHOLE 2
95 {"blackhole", K_BLACKHOLE},
96 #define K_CHANGE 3
97 {"change", K_CHANGE},
98 #define K_CLONING 4
99 {"cloning", K_CLONING},
100 #define K_DELETE 5
101 {"delete", K_DELETE},
102 #define K_DST 6
103 {"dst", K_DST},
104 #define K_EXPIRE 7
105 {"expire", K_EXPIRE},
106 #define K_FLUSH 8
107 {"flush", K_FLUSH},
108 #define K_GATEWAY 9
109 {"gateway", K_GATEWAY},
110 #define K_GET 11
111 {"get", K_GET},
112 #define K_HOPCOUNT 12
113 {"hopcount", K_HOPCOUNT},
114 #define K_HOST 13
115 {"host", K_HOST},
116 #define K_IFA 14
117 {"ifa", K_IFA},
118 #define K_IFACE 15
119 {"iface", K_IFACE},
120 #define K_IFP 16
121 {"ifp", K_IFP},
122 #define K_INET 17
123 {"inet", K_INET},
124 #define K_INET6 18
125 {"inet6", K_INET6},
126 #define K_INTERFACE 19
127 {"interface", K_INTERFACE},
128 #define K_LINK 20
129 {"link", K_LINK},
130 #define K_LOCK 21
131 {"lock", K_LOCK},
132 #define K_LOCKREST 22
133 {"lockrest", K_LOCKREST},
134 #define K_MASK 23
135 {"mask", K_MASK},
136 #define K_MONITOR 24
137 {"monitor", K_MONITOR},
138 #define K_MTU 25
139 {"mtu", K_MTU},
140 #define K_NET 26
141 {"net", K_NET},
142 #define K_NETMASK 27
143 {"netmask", K_NETMASK},
144 #define K_NOSTATIC 28
145 {"nostatic", K_NOSTATIC},
146 #define K_PRIVATE 29
147 {"private", K_PRIVATE},
148 #define K_PROTO1 30
149 {"proto1", K_PROTO1},
150 #define K_PROTO2 31
151 {"proto2", K_PROTO2},
152 #define K_RECVPIPE 32
153 {"recvpipe", K_RECVPIPE},
154 #define K_REJECT 33
155 {"reject", K_REJECT},
156 #define K_RTT 34
157 {"rtt", K_RTT},
158 #define K_RTTVAR 35
159 {"rttvar", K_RTTVAR},
160 #define K_SA 36
161 {"sa", K_SA},
162 #define K_SENDPIPE 37
163 {"sendpipe", K_SENDPIPE},
164 #define K_SSTHRESH 38
165 {"ssthresh", K_SSTHRESH},
166 #define K_STATIC 39
167 {"static", K_STATIC},
168 #define K_XRESOLVE 40
169 {"xresolve", K_XRESOLVE},
170 #define K_MULTIRT 41
171 {"multirt", K_MULTIRT},
172 #define K_SETSRC 42
173 {"setsrc", K_SETSRC},
174 #define K_SHOW 43
175 {"show", K_SHOW},
176 #define K_SECATTR 43
177 {"secattr", K_SECATTR},
178 {0, 0}
179 };
180
181 /*
182 * Size of buffers used to hold command lines from the saved route file as
183 * well as error strings.
184 */
185 #define BUF_SIZE 2048
186
187 typedef union sockunion {
188 struct sockaddr sa;
189 struct sockaddr_in sin;
190 struct sockaddr_dl sdl;
191 struct sockaddr_in6 sin6;
192 } su_t;
193
194 /*
195 * This structure represents the digested information from parsing arguments
196 * to route add, change, delete, and get.
197 *
198 */
199 typedef struct rtcmd_irep {
200 int ri_cmd;
201 int ri_flags;
202 int ri_af;
203 ulong_t ri_inits;
204 struct rt_metrics ri_metrics;
205 int ri_addrs;
206 su_t ri_dst;
207 char *ri_dest_str;
208 su_t ri_src;
209 su_t ri_gate;
210 struct hostent *ri_gate_hp;
211 char *ri_gate_str;
212 su_t ri_mask;
213 su_t ri_ifa;
214 su_t ri_ifp;
215 char *ri_ifp_str;
216 int ri_rtsa_cnt; /* number of gateway security attributes */
217 struct rtsa_s ri_rtsa; /* enough space for one attribute */
218 } rtcmd_irep_t;
219
220 typedef struct mib_item_s {
221 struct mib_item_s *next_item;
222 long group;
223 long mib_id;
224 long length;
225 intmax_t *valp;
226 } mib_item_t;
227
228 typedef enum {
229 ADDR_TYPE_ANY,
230 ADDR_TYPE_HOST,
231 ADDR_TYPE_NET
232 } addr_type_t;
233
234 typedef enum {
235 SEARCH_MODE_NULL,
236 SEARCH_MODE_PRINT,
237 SEARCH_MODE_DEL
238 } search_mode_t;
239
240 static boolean_t args_to_rtcmd(rtcmd_irep_t *rcip, char **argv,
241 char *cmd_string);
242 static void bprintf(FILE *fp, int b, char *s);
243 static boolean_t compare_rtcmd(rtcmd_irep_t *srch_rt,
244 rtcmd_irep_t *file_rt);
245 static void delRouteEntry(mib2_ipRouteEntry_t *rp,
246 mib2_ipv6RouteEntry_t *rp6, int seqno);
247 static void del_rtcmd_irep(rtcmd_irep_t *rcip);
248 static void flushroutes(int argc, char *argv[]);
249 static boolean_t getaddr(rtcmd_irep_t *rcip, int which, char *s,
250 addr_type_t atype);
251 static boolean_t in6_getaddr(char *s, struct sockaddr_in6 *sin6,
252 int *plenp, struct hostent **hpp);
253 static boolean_t in_getaddr(char *s, struct sockaddr_in *sin,
254 int *plenp, int which, struct hostent **hpp, addr_type_t atype,
255 rtcmd_irep_t *rcip);
256 static int in_getprefixlen(char *addr, int max_plen);
257 static boolean_t in_prefixlentomask(int prefixlen, int maxlen,
258 uchar_t *mask);
259 static void inet_makenetandmask(rtcmd_irep_t *rcip, in_addr_t net,
260 struct sockaddr_in *sin);
261 static in_addr_t inet_makesubnetmask(in_addr_t addr, in_addr_t mask);
262 static int keyword(const char *cp);
263 static void link_addr(const char *addr, struct sockaddr_dl *sdl);
264 static char *link_ntoa(const struct sockaddr_dl *sdl);
265 static mib_item_t *mibget(int sd);
266 static char *netname(struct sockaddr *sa);
267 static int newroute(char **argv);
268 static rtcmd_irep_t *new_rtcmd_irep(void);
269 static void pmsg_addrs(const char *cp, size_t len, uint_t addrs);
270 static void pmsg_common(const struct rt_msghdr *rtm, size_t len);
271 static void print_getmsg(rtcmd_irep_t *req_rt,
272 struct rt_msghdr *rtm, int msglen);
273 static void print_rtcmd_short(FILE *to, rtcmd_irep_t *rcip,
274 boolean_t gw_good, boolean_t to_saved);
275 static void print_rtmsg(struct rt_msghdr *rtm, int msglen);
276 static void quit(char *s, int err) __NORETURN;
277 static char *routename(const struct sockaddr *sa);
278 static void rtmonitor(int argc, char *argv[]);
279 static int rtmsg(rtcmd_irep_t *rcip);
280 static int salen(const struct sockaddr *sa);
281 static void save_route(int argc, char **argv, int do_flush);
282 static void save_string(char **dst, char *src);
283 static int search_rtfile(FILE *fp, FILE *temp_fp, rtcmd_irep_t *rt,
284 search_mode_t mode);
285 static void set_metric(rtcmd_irep_t *rcip, char *value, int key,
286 boolean_t lock);
287 static int show_saved_routes(int argc);
288 static void sockaddr(char *addr, struct sockaddr *sa);
289 static void sodump(su_t *su, char *which);
290 static void syntax_arg_missing(char *keyword);
291 static void syntax_bad_keyword(char *keyword);
292 static void syntax_error(char *err, ...);
293 static void usage(char *cp);
294 static void write_to_rtfile(FILE *fp, int argc, char **argv);
295 static void pmsg_secattr(const char *, size_t, const char *);
296
297 static pid_t pid;
298 static int s;
299 static boolean_t nflag;
300 static int af = AF_INET;
301 static boolean_t qflag, tflag;
302 static boolean_t verbose;
303 static boolean_t debugonly;
304 static boolean_t fflag;
305 static boolean_t update_table;
306 static boolean_t perm_flag;
307 static boolean_t early_v6_keyword;
308 static char perm_file_sfx[] = "/etc/inet/static_routes";
309 static char *perm_file;
310 static char temp_file_sfx[] = "/etc/inet/static_routes.tmp";
311 static char *temp_file;
312 static struct in6_addr in6_host_mask = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
313 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
314 /*
315 * WARNING:
316 * This next variable indicates whether certain functions exit when an error
317 * is detected in the user input. Currently, exit_on_error is only set false
318 * in search_rtfile(), when argument are being parsed. Only those functions
319 * used by search_rtfile() to parse its arguments are designed to work in
320 * both modes. Take particular care in setting this false to ensure that any
321 * functions you call that might act on this flag properly return errors when
322 * exit_on_error is false.
323 */
324 static int exit_on_error = B_TRUE;
325
326 static struct {
327 struct rt_msghdr m_rtm;
328 char m_space[BUF_SIZE];
329 } m_rtmsg;
330
331 /*
332 * Sizes of data structures extracted from the base mib.
333 * This allows the size of the tables entries to grow while preserving
334 * binary compatibility.
335 */
336 static int ipRouteEntrySize;
337 static int ipv6RouteEntrySize;
338
339 #define ROUNDUP_LONG(a) \
340 ((a) > 0 ? (1 + (((a) - 1) | (sizeof (long) - 1))) : sizeof (long))
341 #define ADVANCE(x, n) ((x) += ROUNDUP_LONG(salen(n)))
342 #define C(x) ((x) & 0xff)
343
344 /*
345 * return values from in_getprefixlen()
346 */
347 #define BAD_ADDR -1 /* prefix is invalid */
348 #define NO_PREFIX -2 /* no prefix was found */
349
350 void
351 usage(char *cp)
352 {
353 if (cp != NULL) {
354 (void) fprintf(stderr, gettext("route: botched keyword: %s\n"),
355 cp);
356 }
357 (void) fprintf(stderr, gettext("usage: route [ -fnpqv ] "
358 "[ -R <root-dir> ] cmd [[ -<qualifers> ] args ]\n"));
359 exit(1);
360 /* NOTREACHED */
361 }
362
363 /*PRINTFLIKE1*/
364 void
365 syntax_error(char *err, ...)
366 {
367 va_list args;
368
369 if (exit_on_error) {
370 va_start(args, err);
371 (void) vfprintf(stderr, err, args);
372 va_end(args);
373 exit(1);
374 }
375 /* NOTREACHED */
376 }
377
378 void
379 syntax_bad_keyword(char *keyword)
380 {
381 syntax_error(gettext("route: botched keyword: %s\n"), keyword);
382 }
383
384 void
385 syntax_arg_missing(char *keyword)
386 {
387 syntax_error(gettext("route: argument required following keyword %s\n"),
388 keyword);
389 }
390
391 void
392 quit(char *s, int sverrno)
393 {
394 (void) fprintf(stderr, "route: ");
395 if (s != NULL)
396 (void) fprintf(stderr, "%s: ", s);
397 (void) fprintf(stderr, "%s\n", strerror(sverrno));
398 exit(sverrno);
399 /* NOTREACHED */
400 }
401
402 int
403 main(int argc, char **argv)
404 {
405 extern int optind;
406 extern char *optarg;
407 int ch;
408 int rval;
409 size_t size;
410 const char *root_dir = NULL;
411
412 (void) setlocale(LC_ALL, "");
413
414 #if !defined(TEXT_DOMAIN)
415 #define TEXT_DOMAIN "SYS_TEST"
416 #endif
417 (void) textdomain(TEXT_DOMAIN);
418
419 if (argc < 2)
420 usage(NULL);
421
422 while ((ch = getopt(argc, argv, "R:nqdtvfp")) != EOF) {
423 switch (ch) {
424 case 'n':
425 nflag = B_TRUE;
426 break;
427 case 'q':
428 qflag = B_TRUE;
429 break;
430 case 'v':
431 verbose = B_TRUE;
432 break;
433 case 't':
434 tflag = B_TRUE;
435 break;
436 case 'd':
437 debugonly = B_TRUE;
438 break;
439 case 'f':
440 fflag = B_TRUE;
441 break;
442 case 'p':
443 perm_flag = B_TRUE;
444 break;
445 case 'R':
446 root_dir = optarg;
447 break;
448 case '?':
449 default:
450 usage(NULL);
451 /* NOTREACHED */
452 }
453 }
454 argc -= optind;
455 argv += optind;
456
457 pid = getpid();
458 if (tflag)
459 s = open("/dev/null", O_WRONLY);
460 else
461 s = socket(PF_ROUTE, SOCK_RAW, 0);
462 if (s < 0)
463 quit("socket", errno);
464
465 /*
466 * Handle the -p and -R flags. The -R flag only applies
467 * when the -p flag is set.
468 */
469 if (root_dir == NULL) {
470 perm_file = perm_file_sfx;
471 temp_file = temp_file_sfx;
472 } else {
473 size = strlen(root_dir) + sizeof (perm_file_sfx);
474 perm_file = malloc(size);
475 if (perm_file == NULL)
476 quit("malloc", errno);
477 (void) snprintf(perm_file, size, "%s%s", root_dir,
478 perm_file_sfx);
479 size = strlen(root_dir) + sizeof (temp_file_sfx);
480 temp_file = malloc(size);
481 if (temp_file == NULL)
482 quit("malloc", errno);
483 (void) snprintf(temp_file, size, "%s%s", root_dir,
484 temp_file_sfx);
485 }
486 /*
487 * Whether or not to act on the routing table. The only time the
488 * routing table is not modified is when both -p and -R are present.
489 */
490 update_table = (!perm_flag || root_dir == NULL);
491 if (tflag)
492 perm_flag = 0;
493
494 if (fflag) {
495 /*
496 * Accept an address family keyword after the -f. Since the
497 * default address family is AF_INET, reassign af only for the
498 * other valid address families.
499 */
500 if (*argv != NULL) {
501 switch (keyword(*argv)) {
502 case K_INET6:
503 af = AF_INET6;
504 early_v6_keyword = B_TRUE;
505 /* fallthrough */
506 case K_INET:
507 /* Skip over the address family parameter. */
508 argc--;
509 argv++;
510 break;
511 }
512 }
513 flushroutes(0, NULL);
514 }
515
516 if (*argv != NULL) {
517 switch (keyword(*argv)) {
518 case K_GET:
519 case K_CHANGE:
520 case K_ADD:
521 case K_DELETE:
522 rval = 0;
523 if (update_table) {
524 rval = newroute(argv);
525 }
526 if (perm_flag && (rval == 0 || rval == EEXIST ||
527 rval == ESRCH)) {
528 save_route(argc, argv, B_FALSE);
529 return (0);
530 }
531 return (rval);
532 case K_SHOW:
533 if (perm_flag) {
534 return (show_saved_routes(argc));
535 } else {
536 syntax_error(gettext(
537 "route: show command requires -p\n"));
538 }
539 /* NOTREACHED */
540 case K_MONITOR:
541 rtmonitor(argc, argv);
542 /* NOTREACHED */
543
544 case K_FLUSH:
545 flushroutes(argc, argv);
546 return (0);
547 }
548 }
549 if (!fflag)
550 usage(*argv);
551 return (0);
552 }
553
554 /*
555 * Purge all entries in the routing tables not
556 * associated with network interfaces.
557 */
558 void
559 flushroutes(int argc, char *argv[])
560 {
561 int seqno;
562 int sd; /* mib stream */
563 mib_item_t *item;
564 mib2_ipRouteEntry_t *rp;
565 mib2_ipv6RouteEntry_t *rp6;
566 int oerrno;
567 int off = 0;
568 int on = 1;
569
570 if (argc > 1) {
571 argv++;
572 if (argc == 2 && **argv == '-') {
573 /*
574 * The address family (preceded by a dash) may be used
575 * to flush the routes of that particular family.
576 */
577 switch (keyword(*argv + 1)) {
578 case K_INET:
579 af = AF_INET;
580 break;
581 case K_LINK:
582 af = AF_LINK;
583 break;
584 case K_INET6:
585 af = AF_INET6;
586 break;
587 default:
588 usage(*argv);
589 /* NOTREACHED */
590 }
591 } else {
592 usage(*argv);
593 }
594 }
595 if (perm_flag) {
596 /* This flushes the persistent route file */
597 save_route(0, NULL, B_TRUE);
598 }
599 if (!update_table) {
600 return;
601 }
602
603 if (setsockopt(s, SOL_SOCKET, SO_USELOOPBACK, (char *)&off,
604 sizeof (off)) < 0)
605 quit("setsockopt", errno);
606
607 sd = open("/dev/ip", O_RDWR);
608 oerrno = errno;
609 if (sd < 0) {
610 switch (errno) {
611 case EACCES:
612 (void) fprintf(stderr,
613 gettext("route: flush: insufficient privileges\n"));
614 exit(oerrno);
615 /* NOTREACHED */
616 default:
617 quit(gettext("can't open mib stream"), oerrno);
618 /* NOTREACHED */
619 }
620 }
621 if ((item = mibget(sd)) == NULL)
622 quit("mibget", errno);
623 if (verbose) {
624 (void) printf("Examining routing table from "
625 "T_SVR4_OPTMGMT_REQ\n");
626 }
627 seqno = 0; /* ??? */
628 switch (af) {
629 case AF_INET:
630 /* Extract ipRouteEntrySize */
631 for (; item != NULL; item = item->next_item) {
632 if (item->mib_id != 0)
633 continue;
634 if (item->group == MIB2_IP) {
635 ipRouteEntrySize =
636 ((mib2_ip_t *)item->valp)->ipRouteEntrySize;
637 assert(IS_P2ALIGNED(ipRouteEntrySize,
638 sizeof (mib2_ipRouteEntry_t *)));
639 break;
640 }
641 }
642 if (ipRouteEntrySize == 0) {
643 (void) fprintf(stderr,
644 gettext("ipRouteEntrySize can't be determined.\n"));
645 exit(1);
646 }
647 for (; item != NULL; item = item->next_item) {
648 /*
649 * skip all the other trash that comes up the mib stream
650 */
651 if (item->group != MIB2_IP ||
652 item->mib_id != MIB2_IP_ROUTE)
653 continue;
654 for (rp = (mib2_ipRouteEntry_t *)item->valp;
655 (char *)rp < (char *)item->valp + item->length;
656 /* LINTED */
657 rp = (mib2_ipRouteEntry_t *)
658 ((char *)rp + ipRouteEntrySize)) {
659 delRouteEntry(rp, NULL, seqno);
660 seqno++;
661 }
662 break;
663 }
664 break;
665 case AF_INET6:
666 /* Extract ipv6RouteEntrySize */
667 for (; item != NULL; item = item->next_item) {
668 if (item->mib_id != 0)
669 continue;
670 if (item->group == MIB2_IP6) {
671 ipv6RouteEntrySize =
672 ((mib2_ipv6IfStatsEntry_t *)item->valp)->
673 ipv6RouteEntrySize;
674 assert(IS_P2ALIGNED(ipv6RouteEntrySize,
675 sizeof (mib2_ipv6RouteEntry_t *)));
676 break;
677 }
678 }
679 if (ipv6RouteEntrySize == 0) {
680 (void) fprintf(stderr, gettext(
681 "ipv6RouteEntrySize cannot be determined.\n"));
682 exit(1);
683 }
684 for (; item != NULL; item = item->next_item) {
685 /*
686 * skip all the other trash that comes up the mib stream
687 */
688 if (item->group != MIB2_IP6 ||
689 item->mib_id != MIB2_IP6_ROUTE)
690 continue;
691 for (rp6 = (mib2_ipv6RouteEntry_t *)item->valp;
692 (char *)rp6 < (char *)item->valp + item->length;
693 /* LINTED */
694 rp6 = (mib2_ipv6RouteEntry_t *)
695 ((char *)rp6 + ipv6RouteEntrySize)) {
696 delRouteEntry(NULL, rp6, seqno);
697 seqno++;
698 }
699 break;
700 }
701 break;
702 }
703
704 if (setsockopt(s, SOL_SOCKET, SO_USELOOPBACK, (char *)&on,
705 sizeof (on)) < 0)
706 quit("setsockopt", errno);
707 }
708
709 /*
710 * Given the contents of a mib_item_t of id type MIB2_IP_ROUTE or
711 * MIB2_IP6_ROUTE, construct and send an RTM_DELETE routing socket message in
712 * order to facilitate the flushing of RTF_GATEWAY routes.
713 */
714 static void
715 delRouteEntry(mib2_ipRouteEntry_t *rp, mib2_ipv6RouteEntry_t *rp6, int seqno)
716 {
717 char *cp;
718 int ire_type;
719 int rlen;
720 struct rt_msghdr *rtm;
721 struct sockaddr_in sin;
722 struct sockaddr_in6 sin6;
723 int slen;
724
725 if (rp != NULL)
726 ire_type = rp->ipRouteInfo.re_ire_type;
727 else
728 ire_type = rp6->ipv6RouteInfo.re_ire_type;
729 if (ire_type != IRE_DEFAULT &&
730 ire_type != IRE_PREFIX &&
731 ire_type != IRE_HOST &&
732 ire_type != IRE_HOST_REDIRECT)
733 return;
734
735 rtm = &m_rtmsg.m_rtm;
736 (void) memset(rtm, 0, sizeof (m_rtmsg));
737 rtm->rtm_type = RTM_DELETE;
738 rtm->rtm_seq = seqno;
739 rtm->rtm_flags |= RTF_GATEWAY;
740 rtm->rtm_version = RTM_VERSION;
741 rtm->rtm_addrs = RTA_DST | RTA_GATEWAY | RTA_NETMASK;
742 cp = m_rtmsg.m_space;
743 if (rp != NULL) {
744 slen = sizeof (struct sockaddr_in);
745 if (rp->ipRouteMask == IP_HOST_MASK)
746 rtm->rtm_flags |= RTF_HOST;
747 (void) memset(&sin, 0, slen);
748 sin.sin_family = AF_INET;
749 sin.sin_addr.s_addr = rp->ipRouteDest;
750 (void) memmove(cp, &sin, slen);
751 cp += slen;
752 sin.sin_addr.s_addr = rp->ipRouteNextHop;
753 (void) memmove(cp, &sin, slen);
754 cp += slen;
755 sin.sin_addr.s_addr = rp->ipRouteMask;
756 (void) memmove(cp, &sin, slen);
757 cp += slen;
758 } else {
759 slen = sizeof (struct sockaddr_in6);
760 if (rp6->ipv6RoutePfxLength == IPV6_ABITS)
761 rtm->rtm_flags |= RTF_HOST;
762 (void) memset(&sin6, 0, slen);
763 sin6.sin6_family = AF_INET6;
764 sin6.sin6_addr = rp6->ipv6RouteDest;
765 (void) memmove(cp, &sin6, slen);
766 cp += slen;
767 sin6.sin6_addr = rp6->ipv6RouteNextHop;
768 (void) memmove(cp, &sin6, slen);
769 cp += slen;
770 (void) memset(&sin6.sin6_addr, 0, sizeof (sin6.sin6_addr));
771 (void) in_prefixlentomask(rp6->ipv6RoutePfxLength, IPV6_ABITS,
772 (uchar_t *)&sin6.sin6_addr.s6_addr);
773 (void) memmove(cp, &sin6, slen);
774 cp += slen;
775 }
776 rtm->rtm_msglen = cp - (char *)&m_rtmsg;
777 if (debugonly) {
778 /*
779 * In debugonly mode, the routing socket message to delete the
780 * current entry is not actually sent. However if verbose is
781 * also set, the routing socket message that would have been
782 * is printed.
783 */
784 if (verbose)
785 print_rtmsg(rtm, rtm->rtm_msglen);
786 return;
787 }
788
789 rlen = write(s, (char *)&m_rtmsg, rtm->rtm_msglen);
790 if (rlen < (int)rtm->rtm_msglen) {
791 if (rlen < 0) {
792 (void) fprintf(stderr,
793 gettext("route: write to routing socket: %s\n"),
794 strerror(errno));
795 } else {
796 (void) fprintf(stderr, gettext("route: write to "
797 "routing socket got only %d for rlen\n"), rlen);
798 }
799 return;
800 }
801 if (qflag) {
802 /*
803 * In quiet mode, nothing is printed at all (unless the write()
804 * itself failed.
805 */
806 return;
807 }
808 if (verbose) {
809 print_rtmsg(rtm, rlen);
810 } else {
811 struct sockaddr *sa = (struct sockaddr *)(rtm + 1);
812
813 (void) printf("%-20.20s ",
814 rtm->rtm_flags & RTF_HOST ? routename(sa) :
815 netname(sa));
816 /* LINTED */
817 sa = (struct sockaddr *)(salen(sa) + (char *)sa);
818 (void) printf("%-20.20s ", routename(sa));
819 (void) printf("done\n");
820 }
821 }
822
823 /*
824 * Return the name of the host whose address is given.
825 */
826 char *
827 routename(const struct sockaddr *sa)
828 {
829 char *cp;
830 static char line[MAXHOSTNAMELEN + 1];
831 struct hostent *hp = NULL;
832 static char domain[MAXHOSTNAMELEN + 1];
833 static boolean_t first = B_TRUE;
834 struct in_addr in;
835 struct in6_addr in6;
836 int error_num;
837 ushort_t *s;
838 ushort_t *slim;
839
840 if (first) {
841 first = B_FALSE;
842 if (gethostname(domain, MAXHOSTNAMELEN) == 0 &&
843 (cp = strchr(domain, '.')))
844 (void) strcpy(domain, cp + 1);
845 else
846 domain[0] = 0;
847 }
848
849 if (salen(sa) == 0) {
850 (void) strcpy(line, "default");
851 return (line);
852 }
853 switch (sa->sa_family) {
854
855 case AF_INET:
856 /* LINTED */
857 in = ((struct sockaddr_in *)sa)->sin_addr;
858
859 cp = NULL;
860 if (in.s_addr == INADDR_ANY)
861 cp = "default";
862 if (cp == NULL && !nflag) {
863 hp = gethostbyaddr((char *)&in, sizeof (struct in_addr),
864 AF_INET);
865 if (hp != NULL) {
866 if (((cp = strchr(hp->h_name, '.')) != NULL) &&
867 (strcmp(cp + 1, domain) == 0))
868 *cp = 0;
869 cp = hp->h_name;
870 }
871 }
872 if (cp != NULL) {
873 (void) strncpy(line, cp, MAXHOSTNAMELEN);
874 line[MAXHOSTNAMELEN] = '\0';
875 } else {
876 in.s_addr = ntohl(in.s_addr);
877 (void) sprintf(line, "%u.%u.%u.%u", C(in.s_addr >> 24),
878 C(in.s_addr >> 16), C(in.s_addr >> 8),
879 C(in.s_addr));
880 }
881 break;
882
883 case AF_LINK:
884 return (link_ntoa((struct sockaddr_dl *)sa));
885
886 case AF_INET6:
887 /* LINTED */
888 in6 = ((struct sockaddr_in6 *)sa)->sin6_addr;
889
890 cp = NULL;
891 if (IN6_IS_ADDR_UNSPECIFIED(&in6))
892 cp = "default";
893 if (cp == NULL && !nflag) {
894 hp = getipnodebyaddr((char *)&in6,
895 sizeof (struct in6_addr), AF_INET6, &error_num);
896 if (hp != NULL) {
897 if (((cp = strchr(hp->h_name, '.')) != NULL) &&
898 (strcmp(cp + 1, domain) == 0))
899 *cp = 0;
900 cp = hp->h_name;
901 }
902 }
903 if (cp != NULL) {
904 (void) strncpy(line, cp, MAXHOSTNAMELEN);
905 line[MAXHOSTNAMELEN] = '\0';
906 } else {
907 (void) inet_ntop(AF_INET6, (void *)&in6, line,
908 INET6_ADDRSTRLEN);
909 }
910 if (hp != NULL)
911 freehostent(hp);
912
913 break;
914
915 default:
916 s = (ushort_t *)sa;
917
918 slim = s + ((salen(sa) + 1) >> 1);
919 cp = line + sprintf(line, "(%d)", sa->sa_family);
920
921 while (++s < slim) /* start with sa->sa_data */
922 cp += sprintf(cp, " %x", *s);
923 break;
924 }
925 return (line);
926 }
927
928 /*
929 * Return the name of the network whose address is given.
930 * The address is assumed to be that of a net or subnet, not a host.
931 */
932 static char *
933 netname(struct sockaddr *sa)
934 {
935 char *cp = NULL;
936 static char line[MAXHOSTNAMELEN + 1];
937 struct netent *np;
938 in_addr_t net, mask;
939 int subnetshift;
940 struct in_addr in;
941 ushort_t *s;
942 ushort_t *slim;
943
944 switch (sa->sa_family) {
945
946 case AF_INET:
947 /* LINTED */
948 in = ((struct sockaddr_in *)sa)->sin_addr;
949
950 in.s_addr = ntohl(in.s_addr);
951 if (in.s_addr == INADDR_ANY) {
952 cp = "default";
953 } else if (!nflag) {
954 if (IN_CLASSA(in.s_addr)) {
955 mask = IN_CLASSA_NET;
956 subnetshift = 8;
957 } else if (IN_CLASSB(in.s_addr)) {
958 mask = IN_CLASSB_NET;
959 subnetshift = 8;
960 } else {
961 mask = IN_CLASSC_NET;
962 subnetshift = 4;
963 }
964 /*
965 * If there are more bits than the standard mask
966 * would suggest, subnets must be in use.
967 * Guess at the subnet mask, assuming reasonable
968 * width subnet fields.
969 */
970 while (in.s_addr &~ mask)
971 mask = (long)mask >> subnetshift;
972 net = in.s_addr & mask;
973 while ((mask & 1) == 0)
974 mask >>= 1, net >>= 1;
975 np = getnetbyaddr(net, AF_INET);
976 if (np != NULL)
977 cp = np->n_name;
978 }
979 if (cp != NULL) {
980 (void) strncpy(line, cp, MAXHOSTNAMELEN);
981 line[MAXHOSTNAMELEN] = '\0';
982 } else if ((in.s_addr & 0xffffff) == 0) {
983 (void) sprintf(line, "%u", C(in.s_addr >> 24));
984 } else if ((in.s_addr & 0xffff) == 0) {
985 (void) sprintf(line, "%u.%u", C(in.s_addr >> 24),
986 C(in.s_addr >> 16));
987 } else if ((in.s_addr & 0xff) == 0) {
988 (void) sprintf(line, "%u.%u.%u", C(in.s_addr >> 24),
989 C(in.s_addr >> 16), C(in.s_addr >> 8));
990 } else {
991 (void) sprintf(line, "%u.%u.%u.%u", C(in.s_addr >> 24),
992 C(in.s_addr >> 16), C(in.s_addr >> 8),
993 C(in.s_addr));
994 }
995 break;
996
997 case AF_LINK:
998 return (link_ntoa((struct sockaddr_dl *)sa));
999
1000 case AF_INET6:
1001 return (routename(sa));
1002
1003 default:
1004 /* LINTED */
1005 s = (ushort_t *)sa->sa_data;
1006
1007 slim = s + ((salen(sa) + 1) >> 1);
1008 cp = line + sprintf(line, "af %d:", sa->sa_family);
1009
1010 while (s < slim)
1011 cp += sprintf(cp, " %x", *s++);
1012 break;
1013 }
1014 return (line);
1015 }
1016
1017 /*
1018 * Initialize a new structure. Keep in mind that ri_dst_str, ri_gate_str and
1019 * ri_ifp_str will be freed by det_rtcmd_irep, so they should either be NULL
1020 * or point to dynamically allocated memory.
1021 */
1022 rtcmd_irep_t *
1023 new_rtcmd_irep(void)
1024 {
1025 rtcmd_irep_t *rcip;
1026
1027 rcip = calloc(1, sizeof (rtcmd_irep_t));
1028 if (rcip == NULL) {
1029 quit("calloc", errno);
1030 }
1031 rcip->ri_af = af;
1032 rcip->ri_flags = RTF_STATIC;
1033 return (rcip);
1034 }
1035
1036 void
1037 del_rtcmd_irep(rtcmd_irep_t *rcip)
1038 {
1039 free(rcip->ri_dest_str);
1040 free(rcip->ri_gate_str);
1041 free(rcip->ri_ifp_str);
1042 /*
1043 * IPv6 host entries come from getipnodebyname, which dynamically
1044 * allocates memory. IPv4 host entries come from gethostbyname, which
1045 * returns static memory and cannot be freed with freehostent.
1046 */
1047 if (rcip->ri_gate_hp != NULL &&
1048 rcip->ri_gate_hp->h_addrtype == AF_INET6)
1049 freehostent(rcip->ri_gate_hp);
1050 free(rcip);
1051 }
1052
1053 void
1054 save_string(char **dst, char *src)
1055 {
1056 free(*dst);
1057 *dst = strdup(src);
1058 if (*dst == NULL) {
1059 quit("malloc", errno);
1060 }
1061 }
1062
1063 /*
1064 * Print the short form summary of a route command.
1065 * Eg. "add net default: gateway 10.0.0.1"
1066 * The final newline is not added, allowing the caller to append additional
1067 * information.
1068 */
1069 void
1070 print_rtcmd_short(FILE *to, rtcmd_irep_t *rcip, boolean_t gw_good,
1071 boolean_t to_saved)
1072 {
1073 char *cmd;
1074 char obuf[INET6_ADDRSTRLEN];
1075
1076 switch (rcip->ri_cmd) {
1077 case RTM_ADD:
1078 cmd = "add";
1079 break;
1080 case RTM_CHANGE:
1081 cmd = "change";
1082 break;
1083 case RTM_DELETE:
1084 cmd = "delete";
1085 break;
1086 case RTM_GET:
1087 cmd = "get";
1088 break;
1089 default:
1090 assert(0);
1091 }
1092
1093 (void) fprintf(to, "%s%s %s %s", cmd,
1094 (to_saved) ? " persistent" : "",
1095 (rcip->ri_flags & RTF_HOST) ? "host" : "net",
1096 (rcip->ri_dest_str == NULL) ? "NULL" : rcip->ri_dest_str);
1097
1098 if (rcip->ri_gate_str != NULL) {
1099 switch (rcip->ri_af) {
1100 case AF_INET:
1101 if (nflag) {
1102 (void) fprintf(to, ": gateway %s",
1103 inet_ntoa(rcip->ri_gate.sin.sin_addr));
1104 } else if (gw_good &&
1105 rcip->ri_gate_hp != NULL &&
1106 rcip->ri_gate_hp->h_addr_list[1] != NULL) {
1107 /*
1108 * Print the actual address used in the case
1109 * where there was more than one address
1110 * available for the name, and one was used
1111 * successfully.
1112 */
1113 (void) fprintf(to, ": gateway %s (%s)",
1114 rcip->ri_gate_str,
1115 inet_ntoa(rcip->ri_gate.sin.sin_addr));
1116 } else {
1117 (void) fprintf(to, ": gateway %s",
1118 rcip->ri_gate_str);
1119 }
1120 break;
1121 case AF_INET6:
1122 if (inet_ntop(AF_INET6,
1123 &rcip->ri_gate.sin6.sin6_addr, obuf,
1124 INET6_ADDRSTRLEN) != NULL) {
1125 if (nflag) {
1126 (void) fprintf(to, ": gateway %s",
1127 obuf);
1128 break;
1129 }
1130 if (gw_good &&
1131 rcip->ri_gate_hp->h_addr_list[1] != NULL) {
1132 (void) fprintf(to, ": gateway %s (%s)",
1133 rcip->ri_gate_str, obuf);
1134 break;
1135 }
1136 }
1137 /* FALLTHROUGH */
1138 default:
1139 (void) fprintf(to, ": gateway %s",
1140 rcip->ri_gate_str);
1141 break;
1142 }
1143 }
1144 }
1145
1146 void
1147 set_metric(rtcmd_irep_t *rcip, char *value, int key, boolean_t lock)
1148 {
1149 int flag = 0;
1150 uint_t noval, *valp = &noval;
1151
1152 switch (key) {
1153 #define caseof(x, y, z) \
1154 case (x): valp = &(rcip->ri_metrics.z); flag = (y); break
1155
1156 caseof(K_MTU, RTV_MTU, rmx_mtu);
1157 caseof(K_HOPCOUNT, RTV_HOPCOUNT, rmx_hopcount);
1158 caseof(K_EXPIRE, RTV_EXPIRE, rmx_expire);
1159 caseof(K_RECVPIPE, RTV_RPIPE, rmx_recvpipe);
1160 caseof(K_SENDPIPE, RTV_SPIPE, rmx_sendpipe);
1161 caseof(K_SSTHRESH, RTV_SSTHRESH, rmx_ssthresh);
1162 caseof(K_RTT, RTV_RTT, rmx_rtt);
1163 caseof(K_RTTVAR, RTV_RTTVAR, rmx_rttvar);
1164 #undef caseof
1165 }
1166 rcip->ri_inits |= flag;
1167 if (lock)
1168 rcip->ri_metrics.rmx_locks |= flag;
1169 *valp = atoi(value);
1170 }
1171
1172 /*
1173 * Parse the options give in argv[], filling in rcip with the results.
1174 * If cmd_string is non-null, argc and argv are ignored, and cmd_string is
1175 * tokenized to produce the command line. Cmd_string is tokenized using
1176 * strtok, which will overwrite whitespace in the string with nulls.
1177 *
1178 * Returns B_TRUE on success and B_FALSE on failure.
1179 */
1180 boolean_t
1181 args_to_rtcmd(rtcmd_irep_t *rcip, char **argv, char *cmd_string)
1182 {
1183 const char *ws = "\f\n\r\t\v ";
1184 char *tok = cmd_string;
1185 char *keyword_str;
1186 addr_type_t atype = ADDR_TYPE_ANY;
1187 boolean_t iflag = B_FALSE;
1188 boolean_t locknext = B_FALSE;
1189 boolean_t lockrest = B_FALSE;
1190 boolean_t dash_keyword;
1191 int key;
1192 char *err;
1193
1194 if (cmd_string == NULL) {
1195 tok = argv[0];
1196 } else {
1197 tok = strtok(cmd_string, ws);
1198 }
1199
1200 /*
1201 * The command keywords are already fully checked by main() or
1202 * search_rtfile().
1203 */
1204 switch (*tok) {
1205 case 'a':
1206 rcip->ri_cmd = RTM_ADD;
1207 break;
1208 case 'c':
1209 rcip->ri_cmd = RTM_CHANGE;
1210 break;
1211 case 'd':
1212 rcip->ri_cmd = RTM_DELETE;
1213 break;
1214 case 'g':
1215 rcip->ri_cmd = RTM_GET;
1216 break;
1217 default:
1218 /* NOTREACHED */
1219 quit(gettext("Internal Error"), EINVAL);
1220 /* NOTREACHED */
1221 }
1222
1223 #define NEXTTOKEN \
1224 ((tok = (cmd_string == NULL ? *++argv : strtok(NULL, ws))) != NULL)
1225
1226 while (NEXTTOKEN) {
1227 keyword_str = tok;
1228 if (*tok == '-') {
1229 dash_keyword = B_TRUE;
1230 key = keyword(tok + 1);
1231 } else {
1232 dash_keyword = B_FALSE;
1233 key = keyword(tok);
1234 if (key != K_HOST && key != K_NET) {
1235 /* All others must be preceded by '-' */
1236 key = 0;
1237 }
1238 }
1239 switch (key) {
1240 case K_HOST:
1241 if (atype == ADDR_TYPE_NET) {
1242 syntax_error(gettext("route: -host and -net "
1243 "are mutually exclusive\n"));
1244 return (B_FALSE);
1245 }
1246 atype = ADDR_TYPE_HOST;
1247 break;
1248 case K_NET:
1249 if (atype == ADDR_TYPE_HOST) {
1250 syntax_error(gettext("route: -host and -net "
1251 "are mutually exclusive\n"));
1252 return (B_FALSE);
1253 }
1254 atype = ADDR_TYPE_NET;
1255 break;
1256 case K_LINK:
1257 rcip->ri_af = AF_LINK;
1258 break;
1259 case K_INET:
1260 rcip->ri_af = AF_INET;
1261 break;
1262 case K_SA:
1263 rcip->ri_af = PF_ROUTE;
1264 break;
1265 case K_INET6:
1266 rcip->ri_af = AF_INET6;
1267 break;
1268 case K_IFACE:
1269 case K_INTERFACE:
1270 iflag = B_TRUE;
1271 /* fallthrough */
1272 case K_NOSTATIC:
1273 rcip->ri_flags &= ~RTF_STATIC;
1274 break;
1275 case K_LOCK:
1276 locknext = B_TRUE;
1277 break;
1278 case K_LOCKREST:
1279 lockrest = B_TRUE;
1280 break;
1281 case K_REJECT:
1282 rcip->ri_flags |= RTF_REJECT;
1283 break;
1284 case K_BLACKHOLE:
1285 rcip->ri_flags |= RTF_BLACKHOLE;
1286 break;
1287 case K_PROTO1:
1288 rcip->ri_flags |= RTF_PROTO1;
1289 break;
1290 case K_PROTO2:
1291 rcip->ri_flags |= RTF_PROTO2;
1292 break;
1293 case K_CLONING:
1294 rcip->ri_flags |= RTF_CLONING;
1295 break;
1296 case K_XRESOLVE:
1297 rcip->ri_flags |= RTF_XRESOLVE;
1298 break;
1299 case K_STATIC:
1300 rcip->ri_flags |= RTF_STATIC;
1301 break;
1302 case K_IFA:
1303 if (!NEXTTOKEN) {
1304 syntax_arg_missing(keyword_str);
1305 return (B_FALSE);
1306 }
1307 if (!getaddr(rcip, RTA_IFA, tok, atype)) {
1308 return (B_FALSE);
1309 }
1310 break;
1311 case K_IFP:
1312 if (!NEXTTOKEN) {
1313 syntax_arg_missing(keyword_str);
1314 return (B_FALSE);
1315 }
1316 if (!getaddr(rcip, RTA_IFP, tok, atype)) {
1317 return (B_FALSE);
1318 }
1319 break;
1320 case K_GATEWAY:
1321 if (!NEXTTOKEN) {
1322 syntax_arg_missing(keyword_str);
1323 return (B_FALSE);
1324 }
1325 if (!getaddr(rcip, RTA_GATEWAY, tok, atype)) {
1326 return (B_FALSE);
1327 }
1328 break;
1329 case K_DST:
1330 if (!NEXTTOKEN) {
1331 syntax_arg_missing(keyword_str);
1332 return (B_FALSE);
1333 }
1334 if (!getaddr(rcip, RTA_DST, tok, atype)) {
1335 return (B_FALSE);
1336 }
1337 break;
1338 case K_NETMASK:
1339 if (!NEXTTOKEN) {
1340 syntax_arg_missing(keyword_str);
1341 return (B_FALSE);
1342 }
1343 if (!getaddr(rcip, RTA_NETMASK, tok, atype)) {
1344 return (B_FALSE);
1345 }
1346 atype = ADDR_TYPE_NET;
1347 break;
1348 case K_MTU:
1349 case K_HOPCOUNT:
1350 case K_EXPIRE:
1351 case K_RECVPIPE:
1352 case K_SENDPIPE:
1353 case K_SSTHRESH:
1354 case K_RTT:
1355 case K_RTTVAR:
1356 if (!NEXTTOKEN) {
1357 syntax_arg_missing(keyword_str);
1358 return (B_FALSE);
1359 }
1360 set_metric(rcip, tok, key, locknext || lockrest);
1361 locknext = B_FALSE;
1362 break;
1363 case K_PRIVATE:
1364 rcip->ri_flags |= RTF_PRIVATE;
1365 break;
1366 case K_MULTIRT:
1367 rcip->ri_flags |= RTF_MULTIRT;
1368 break;
1369 case K_SETSRC:
1370 if (!NEXTTOKEN) {
1371 syntax_arg_missing(keyword_str);
1372 return (B_FALSE);
1373 }
1374 if (!getaddr(rcip, RTA_SRC, tok, atype)) {
1375 return (B_FALSE);
1376 }
1377 rcip->ri_flags |= RTF_SETSRC;
1378 break;
1379 case K_SECATTR:
1380 if (!NEXTTOKEN) {
1381 syntax_arg_missing(keyword_str);
1382 return (B_FALSE);
1383 }
1384 if (is_system_labeled()) {
1385 int err;
1386
1387 if (rcip->ri_rtsa_cnt >= 1) {
1388 syntax_error(gettext("route: can't "
1389 "specify more than one security "
1390 "attribute\n"));
1391 return (B_FALSE);
1392 }
1393 if (!rtsa_keyword(tok, &rcip->ri_rtsa, &err,
1394 NULL)) {
1395 syntax_error(gettext("route: "
1396 "bad security attribute: %s\n"),
1397 tsol_strerror(err, errno));
1398 return (B_FALSE);
1399 }
1400 rcip->ri_rtsa_cnt++;
1401 } else {
1402 syntax_error(gettext("route: "
1403 "system is not labeled; cannot specify "
1404 "security attributes.\n"));
1405 return (B_FALSE);
1406 }
1407 break;
1408 default:
1409 if (dash_keyword) {
1410 syntax_bad_keyword(tok + 1);
1411 return (B_FALSE);
1412 }
1413 if ((rcip->ri_addrs & RTA_DST) == 0) {
1414 if (!getaddr(rcip, RTA_DST, tok, atype)) {
1415 return (B_FALSE);
1416 }
1417 } else if ((rcip->ri_addrs & RTA_GATEWAY) == 0) {
1418 /*
1419 * For the gateway parameter, retrieve the
1420 * pointer to the struct hostent so that all
1421 * possible addresses can be tried until one
1422 * is successful.
1423 */
1424 if (!getaddr(rcip, RTA_GATEWAY, tok, atype)) {
1425 return (B_FALSE);
1426 }
1427 } else {
1428 ulong_t metric;
1429 /*
1430 * Assume that a regular number is a metric.
1431 * Needed for compatibility with old route
1432 * command syntax.
1433 */
1434 errno = 0;
1435 metric = strtoul(tok, &err, 10);
1436 if (errno == 0 && *err == '\0' &&
1437 metric < 0x80000000ul) {
1438 iflag = (metric == 0);
1439 if (verbose) {
1440 (void) printf("old usage of "
1441 "trailing number, assuming "
1442 "route %s\n", iflag ?
1443 "to if" : "via gateway");
1444 }
1445 continue;
1446 }
1447 if (!getaddr(rcip, RTA_NETMASK, tok, atype)) {
1448 return (B_FALSE);
1449 }
1450 }
1451 }
1452 }
1453 #undef NEXTTOKEN
1454
1455 if ((rcip->ri_addrs & RTA_DST) == 0) {
1456 syntax_error(gettext("route: destination required\n"));
1457 return (B_FALSE);
1458 } else if ((rcip->ri_cmd == RTM_ADD || rcip->ri_cmd == RTM_DELETE) &&
1459 (rcip->ri_addrs & RTA_GATEWAY) == 0) {
1460 syntax_error(gettext(
1461 "route: gateway required for add or delete command\n"));
1462 return (B_FALSE);
1463 }
1464
1465 if (!iflag) {
1466 rcip->ri_flags |= RTF_GATEWAY;
1467 }
1468
1469 if (atype != ADDR_TYPE_NET) {
1470 if (rcip->ri_addrs & RTA_NETMASK) {
1471 /*
1472 * We know the netmask, so we can set the host flag
1473 * based on whether the netmask is the host netmask.
1474 */
1475 if (rcip->ri_af == AF_INET &&
1476 rcip->ri_mask.sin.sin_addr.s_addr ==
1477 IP_HOST_MASK) {
1478 rcip->ri_flags |= RTF_HOST;
1479 }
1480 if (rcip->ri_af == AF_INET6 &&
1481 memcmp(&rcip->ri_mask.sin6.sin6_addr,
1482 &in6_host_mask,
1483 sizeof (struct in6_addr)) == 0) {
1484 rcip->ri_flags |= RTF_HOST;
1485 }
1486 } else {
1487 /*
1488 * If no prefix mask has been saved at this point, it
1489 * only makes sense to treat the destination address
1490 * as a host address.
1491 */
1492 rcip->ri_flags |= RTF_HOST;
1493 }
1494 }
1495 return (B_TRUE);
1496 }
1497
1498 /*
1499 * This command always seeks to the end of the file prior to writing.
1500 */
1501 void
1502 write_to_rtfile(FILE *fp, int argc, char **argv)
1503 {
1504 char file_line[BUF_SIZE];
1505 int len;
1506 int i;
1507
1508 len = 0;
1509 if (early_v6_keyword) {
1510 /*
1511 * This flag is set when "inet6" was seen as an
1512 * argument to the -f flag. Normally, when writing
1513 * routes to the persistent route file, everything on
1514 * the command line after "add" is saved verbatim.
1515 * In this case, the arguments after "add" may not be
1516 * sufficient, as the ipv6 keyword came before "add",
1517 * yet must be present in the persistent route file.
1518 */
1519 len += snprintf(file_line, BUF_SIZE, "-inet6 ");
1520 }
1521 for (i = 0; argc > 0 && len < BUF_SIZE; i++, argc--) {
1522 len += snprintf(&file_line[len], BUF_SIZE - len, "%s ",
1523 argv[i]);
1524 }
1525 if (len >= BUF_SIZE)
1526 quit(gettext("Internal Error"), EINVAL);
1527 file_line[len - 1] = '\n';
1528 if (fseek(fp, 0, SEEK_END) != 0 ||
1529 fputs(file_line, fp) == EOF) {
1530 quit(gettext("failed to write to route file"),
1531 errno);
1532 }
1533 }
1534
1535 boolean_t
1536 compare_rtcmd(rtcmd_irep_t *srch_rt, rtcmd_irep_t *file_rt)
1537 {
1538 if (strcmp(srch_rt->ri_dest_str, file_rt->ri_dest_str) != 0 ||
1539 memcmp(&srch_rt->ri_mask, &file_rt->ri_mask, sizeof (su_t)) != 0) {
1540 return (B_FALSE);
1541 }
1542 return (srch_rt->ri_gate_str == NULL ||
1543 strcmp(srch_rt->ri_gate_str, file_rt->ri_gate_str) == 0);
1544 }
1545
1546 /*
1547 * Search the route file for routes matching the supplied route. There are 3
1548 * modes of operation:
1549 * SEARCH_MODE_RET - no side effects.
1550 * SEARCH_MODE_PRINT - prints each matching line.
1551 * SEARCH_MODE_DEL - copies all valid, non-matching lines to tmp_fp.
1552 *
1553 * In all cases, the number of matches is returned. If rt is NULL, all routes
1554 * matching the global af value are considered matching.
1555 */
1556 int
1557 search_rtfile(FILE *fp, FILE *temp_fp, rtcmd_irep_t *rt, search_mode_t mode)
1558 {
1559 char *tmp_buf;
1560 int match_cnt;
1561 boolean_t match;
1562 char file_line[BUF_SIZE + 4] = "add ";
1563 rtcmd_irep_t *thisrt;
1564
1565 match_cnt = 0;
1566
1567 /*
1568 * Leave space at the beginning of file_line for "add ".
1569 */
1570 while (fgets(file_line + 4, BUF_SIZE, fp) != NULL) {
1571
1572 if (file_line[4] == '#' || file_line[4] == '\n') {
1573 /* Handle comments and blank lines */
1574 if (mode == SEARCH_MODE_DEL &&
1575 fputs(file_line + 4, temp_fp) == EOF) {
1576 quit(gettext(
1577 "route: failed to write to temp file"),
1578 errno);
1579 }
1580 continue;
1581 }
1582 thisrt = new_rtcmd_irep();
1583 /*
1584 * thisrt->ri_af defaults to whatever address family happens
1585 * to be set in the global af, but routes in the persistent
1586 * route file must be treated as AF_INET by default.
1587 */
1588 thisrt->ri_af = AF_INET;
1589
1590 exit_on_error = B_FALSE;
1591 tmp_buf = strdup(file_line);
1592 /* args_to_rtcmd() will mangle the string passed. */
1593 if (!args_to_rtcmd(thisrt, NULL, tmp_buf)) {
1594 /* There was an error in args_to_rtcmd() or helpers */
1595 del_rtcmd_irep(thisrt);
1596 free(tmp_buf);
1597 continue;
1598 }
1599 exit_on_error = B_TRUE;
1600 free(tmp_buf);
1601
1602 if (thisrt->ri_gate_str == NULL) {
1603 del_rtcmd_irep(thisrt);
1604 continue;
1605 }
1606 match = (rt == NULL) ? (thisrt->ri_af == af) :
1607 compare_rtcmd(rt, thisrt);
1608
1609 if (match) match_cnt++;
1610 if (match && mode == SEARCH_MODE_PRINT) {
1611 (void) printf("persistent: route %s", file_line);
1612 }
1613 if (match && mode == SEARCH_MODE_DEL) {
1614 thisrt->ri_cmd = RTM_DELETE;
1615 print_rtcmd_short(stdout, thisrt, B_FALSE, B_TRUE);
1616 (void) printf("\n");
1617 }
1618 del_rtcmd_irep(thisrt);
1619
1620 if (!match && mode == SEARCH_MODE_DEL &&
1621 fputs(file_line + 4, temp_fp) == EOF) {
1622 quit(gettext("failed to write to temp file"),
1623 errno);
1624 }
1625 }
1626 return (match_cnt);
1627 }
1628
1629 /*
1630 * Perform the route operation given in argv on the persistent route file.
1631 * If do_flush is set, the persistent route file is flushed of all routes
1632 * matching the global family, and the arguments are ignored.
1633 */
1634 void
1635 save_route(int argc, char **argv, int do_flush)
1636 {
1637 rtcmd_irep_t *rt;
1638 int perm_fd;
1639 FILE *perm_fp;
1640 FILE *temp_fp;
1641 mode_t fmode = S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH;
1642 struct flock lock;
1643 struct stat st;
1644 const char commentstr[] =
1645 "# File generated by route(1M) - do not edit.\n";
1646
1647 perm_fd = open(perm_file, O_RDWR | O_CREAT, fmode);
1648 if (perm_fd == -1 || fstat(perm_fd, &st) == -1)
1649 quit("failed to open route file", errno);
1650
1651 lock.l_type = F_WRLCK;
1652 lock.l_whence = SEEK_SET;
1653 lock.l_start = 0;
1654 lock.l_len = 0;
1655 if (fcntl(perm_fd, F_SETLK, &lock) != 0) {
1656 quit(gettext("failed to lock route file"), errno);
1657 /* NOTREACHED */
1658 }
1659 if (st.st_size == 0 &&
1660 write(perm_fd, commentstr, sizeof (commentstr) - 1) !=
1661 sizeof (commentstr) - 1)
1662 quit(gettext("failed to open route file"), errno);
1663
1664 if ((perm_fp = fdopen(perm_fd, "r+")) == NULL) {
1665 quit(gettext("failed to open route file"), errno);
1666 /* NOTREACHED */
1667 }
1668
1669 if (!do_flush) {
1670 rt = new_rtcmd_irep();
1671 (void) args_to_rtcmd(rt, argv, NULL);
1672 }
1673 if (do_flush || rt->ri_cmd == RTM_DELETE) {
1674 if ((temp_fp = fopen(temp_file, "w")) == NULL) {
1675 quit(gettext("failed to open temp file"), errno);
1676 /* NOTREACHED */
1677 }
1678 }
1679 if (do_flush) {
1680 (void) search_rtfile(perm_fp, temp_fp, NULL, SEARCH_MODE_DEL);
1681 if (fclose(temp_fp) != 0 || rename(temp_file, perm_file) != 0) {
1682 quit(gettext("failed to update route file"), errno);
1683 /* NOTREACHED */
1684 }
1685 (void) fclose(perm_fp);
1686 return;
1687 }
1688
1689 switch (rt->ri_cmd) {
1690 case RTM_ADD:
1691 if (search_rtfile(perm_fp, NULL, rt, SEARCH_MODE_NULL) > 0) {
1692 /* Route is already in the file */
1693 print_rtcmd_short(stderr, rt, B_FALSE, B_TRUE);
1694 (void) fprintf(stderr, ": entry exists\n");
1695 exit(1);
1696 }
1697 write_to_rtfile(perm_fp, argc - 1, argv + 1);
1698 print_rtcmd_short(stdout, rt, B_FALSE, B_TRUE);
1699 (void) printf("\n");
1700 break;
1701
1702 case RTM_CHANGE:
1703 syntax_error(
1704 gettext("route: change command not supported with -p\n"));
1705 /* NOTREACHED */
1706
1707 case RTM_DELETE:
1708 if (search_rtfile(perm_fp, temp_fp, rt, SEARCH_MODE_DEL) <= 0) {
1709 /* Route not found */
1710 print_rtcmd_short(stderr, rt, B_FALSE, B_TRUE);
1711 (void) fprintf(stderr, gettext(": not in file\n"));
1712 exit(1);
1713 }
1714 if (fclose(temp_fp) != 0 || rename(temp_file, perm_file) != 0) {
1715 quit(gettext("failed to update route file"), errno);
1716 /* NOTREACHED */
1717 }
1718 break;
1719
1720 case RTM_GET:
1721 if (search_rtfile(perm_fp, temp_fp, rt, SEARCH_MODE_PRINT) <=
1722 0) {
1723 print_rtcmd_short(stdout, rt, B_FALSE, B_TRUE);
1724 (void) printf(gettext(": not in file\n"));
1725 }
1726 break;
1727
1728 default:
1729 quit(gettext("Internal Error"), EINVAL);
1730 /* NOTREACHED */
1731 }
1732
1733 /*
1734 * Closing the file unlocks it.
1735 */
1736 (void) fclose(perm_fp);
1737 }
1738
1739 int
1740 show_saved_routes(int argc)
1741 {
1742 int perm_fd;
1743 FILE *perm_fp;
1744 struct flock lock;
1745 int count = 0;
1746
1747 if (argc != 1) {
1748 syntax_error(gettext("route: invalid arguments for show\n"));
1749 }
1750
1751 perm_fd = open(perm_file, O_RDONLY, 0);
1752
1753 if (perm_fd == -1) {
1754 if (errno == ENOENT) {
1755 (void) printf("No persistent routes are defined\n");
1756 return (0);
1757 } else {
1758 quit(gettext("failed to open route file"), errno);
1759 }
1760 }
1761 lock.l_type = F_RDLCK;
1762 lock.l_whence = SEEK_SET;
1763 lock.l_start = 0;
1764 lock.l_len = 0;
1765 if (fcntl(perm_fd, F_SETLK, &lock) != 0) {
1766 quit(gettext("failed to lock route file"),
1767 errno);
1768 /* NOTREACHED */
1769 }
1770 if ((perm_fp = fdopen(perm_fd, "r")) == NULL) {
1771 quit(gettext("failed to open route file"), errno);
1772 /* NOTREACHED */
1773 }
1774 count += search_rtfile(perm_fp, NULL, NULL, SEARCH_MODE_PRINT);
1775 (void) fseek(perm_fp, 0, SEEK_SET);
1776 af = AF_INET6;
1777 count += search_rtfile(perm_fp, NULL, NULL, SEARCH_MODE_PRINT);
1778
1779 if (count == 0)
1780 (void) printf("No persistent routes are defined\n");
1781
1782 (void) fclose(perm_fp);
1783 return (0);
1784 }
1785
1786 int
1787 newroute(char **argv)
1788 {
1789 rtcmd_irep_t *newrt;
1790 int ret, attempts, oerrno;
1791 char *err;
1792 char obuf[INET6_ADDRSTRLEN];
1793 #define hp (newrt->ri_gate_hp)
1794
1795 newrt = new_rtcmd_irep();
1796 (void) args_to_rtcmd(newrt, argv, NULL);
1797
1798 if (newrt->ri_cmd != RTM_GET && !tflag) {
1799 /* Don't want to read back our messages */
1800 (void) shutdown(s, 0);
1801 }
1802 if (newrt->ri_addrs & RTA_IFP) {
1803 newrt->ri_ifp.sdl.sdl_index = if_nametoindex(newrt->ri_ifp_str);
1804 if (newrt->ri_ifp.sdl.sdl_index == 0) {
1805 if (errno != ENXIO) {
1806 quit("if_nametoindex", errno);
1807 } else {
1808 (void) fprintf(stderr,
1809 gettext("route: %s: no such interface\n"),
1810 newrt->ri_ifp_str);
1811 exit(1);
1812 }
1813 }
1814 newrt->ri_ifp.sdl.sdl_family = AF_LINK;
1815 }
1816 for (attempts = 1; ; attempts++) {
1817 errno = 0;
1818 if ((ret = rtmsg(newrt)) == 0)
1819 break;
1820 if (errno != ENETUNREACH && errno != ESRCH)
1821 break;
1822 if ((newrt->ri_addrs & RTA_GATEWAY) && hp != NULL &&
1823 hp->h_addr_list[attempts] != NULL) {
1824 switch (af) {
1825 case AF_INET:
1826 (void) memmove(&newrt->ri_gate.sin.sin_addr,
1827 hp->h_addr_list[attempts], hp->h_length);
1828 continue;
1829 case AF_INET6:
1830 (void) memmove(&newrt->ri_gate.sin6.sin6_addr,
1831 hp->h_addr_list[attempts], hp->h_length);
1832 continue;
1833 }
1834 }
1835 break;
1836 }
1837 oerrno = errno;
1838
1839 if (newrt->ri_cmd != RTM_GET) {
1840 print_rtcmd_short(stdout, newrt, (ret == 0), B_FALSE);
1841 if (ret == 0)
1842 (void) printf("\n");
1843 } else if (ret != 0) {
1844 /*
1845 * Note: there is nothing additional to print for get
1846 * if ret == 0.
1847 */
1848 if (nflag) {
1849 switch (newrt->ri_af) {
1850 case AF_INET:
1851 (void) printf(" %s",
1852 inet_ntoa(newrt->ri_dst.sin.sin_addr));
1853 break;
1854 case AF_INET6:
1855 if (inet_ntop(AF_INET6,
1856 (void *)&newrt->ri_dst.sin6.sin6_addr,
1857 obuf, INET6_ADDRSTRLEN) != NULL) {
1858 (void) printf(" %s", obuf);
1859 break;
1860 }
1861 /* FALLTHROUGH */
1862 default:
1863 (void) printf("%s", newrt->ri_dest_str);
1864 break;
1865 }
1866 } else {
1867 (void) printf("%s", newrt->ri_dest_str);
1868 }
1869 }
1870
1871 if (ret != 0) {
1872 switch (oerrno) {
1873 case ESRCH:
1874 err = "not in table";
1875 break;
1876 case EBUSY:
1877 err = "entry in use";
1878 break;
1879 case ENOBUFS:
1880 err = "routing table overflow";
1881 break;
1882 case EEXIST:
1883 err = "entry exists";
1884 break;
1885 case EPERM:
1886 err = "insufficient privileges";
1887 break;
1888 default:
1889 err = strerror(oerrno);
1890 break;
1891 }
1892 (void) printf(": %s\n", err);
1893 }
1894
1895 del_rtcmd_irep(newrt);
1896
1897 return (oerrno);
1898 #undef hp
1899 }
1900
1901
1902 /*
1903 * Convert a network number to the corresponding IP address.
1904 * If the RTA_NETMASK hasn't been specified yet set it based
1905 * on the class of address.
1906 */
1907 static void
1908 inet_makenetandmask(rtcmd_irep_t *rcip, in_addr_t net, struct sockaddr_in *sin)
1909 {
1910 in_addr_t addr, mask;
1911
1912 if (net == 0) {
1913 mask = addr = 0;
1914 } else if (net < 128) {
1915 addr = net << IN_CLASSA_NSHIFT;
1916 mask = IN_CLASSA_NET;
1917 } else if (net < 65536) {
1918 addr = net << IN_CLASSB_NSHIFT;
1919 mask = IN_CLASSB_NET;
1920 } else if (net < 16777216L) {
1921 addr = net << IN_CLASSC_NSHIFT;
1922 mask = IN_CLASSC_NET;
1923 } else {
1924 addr = net;
1925 if ((addr & IN_CLASSA_HOST) == 0)
1926 mask = IN_CLASSA_NET;
1927 else if ((addr & IN_CLASSB_HOST) == 0)
1928 mask = IN_CLASSB_NET;
1929 else if ((addr & IN_CLASSC_HOST) == 0)
1930 mask = IN_CLASSC_NET;
1931 else {
1932 if (IN_CLASSA(addr))
1933 mask = IN_CLASSA_NET;
1934 else if (IN_CLASSB(addr))
1935 mask = IN_CLASSB_NET;
1936 else if (IN_CLASSC(addr))
1937 mask = IN_CLASSC_NET;
1938 else
1939 mask = IP_HOST_MASK;
1940 mask = inet_makesubnetmask(addr, mask);
1941 }
1942 }
1943 sin->sin_addr.s_addr = htonl(addr);
1944
1945 /* Class E default mask is 32 */
1946 if (IN_CLASSE(addr))
1947 mask = IN_CLASSE_NET;
1948
1949 if (!(rcip->ri_addrs & RTA_NETMASK)) {
1950 rcip->ri_addrs |= RTA_NETMASK;
1951 sin = &rcip->ri_mask.sin;
1952 sin->sin_addr.s_addr = htonl(mask);
1953 sin->sin_family = AF_INET;
1954 }
1955 }
1956
1957 static in_addr_t
1958 inet_makesubnetmask(in_addr_t addr, in_addr_t mask)
1959 {
1960 int n;
1961 struct ifconf ifc;
1962 struct ifreq ifreq;
1963 struct ifreq *ifr;
1964 struct sockaddr_in *sin;
1965 char *buf;
1966 int numifs;
1967 size_t bufsize;
1968 int iosoc;
1969 in_addr_t if_addr, if_mask;
1970 in_addr_t if_subnetmask = 0;
1971 short if_flags;
1972
1973 if (mask == 0)
1974 return (0);
1975 if ((iosoc = socket(AF_INET, SOCK_DGRAM, 0)) < 0)
1976 quit("socket", errno);
1977 if (ioctl(iosoc, SIOCGIFNUM, (char *)&numifs) < 0)
1978 quit("ioctl", errno);
1979 bufsize = numifs * sizeof (struct ifreq);
1980 buf = malloc(bufsize);
1981 if (buf == NULL)
1982 quit("malloc", errno);
1983 (void) memset(&ifc, 0, sizeof (ifc));
1984 ifc.ifc_len = bufsize;
1985 ifc.ifc_buf = buf;
1986 if (ioctl(iosoc, SIOCGIFCONF, (char *)&ifc) < 0)
1987 quit("ioctl (get interface configuration)", errno);
1988 /* Let's check to see if this is maybe a local subnet route. */
1989 ifr = ifc.ifc_req;
1990 for (n = ifc.ifc_len / sizeof (struct ifreq); n > 0; n--, ifr++) {
1991 ifreq = *ifr;
1992 /* LINTED */
1993 sin = (struct sockaddr_in *)&ifr->ifr_addr;
1994 if_addr = ntohl(sin->sin_addr.s_addr);
1995
1996 if (ioctl(iosoc, SIOCGIFFLAGS, (char *)&ifreq) < 0)
1997 quit("ioctl (get interface flags)", errno);
1998 if ((ifreq.ifr_flags & IFF_UP) == 0)
1999 continue;
2000 if_flags = ifreq.ifr_flags;
2001
2002 if (ioctl(iosoc, SIOCGIFNETMASK, (char *)&ifreq) < 0)
2003 quit("ioctl (get netmask)", errno);
2004 /* LINTED */
2005 sin = (struct sockaddr_in *)&ifreq.ifr_addr;
2006 if_mask = ntohl(sin->sin_addr.s_addr);
2007 if ((if_addr & mask) == (addr & mask)) {
2008 /*
2009 * Don't trust pt-pt interfaces if there are
2010 * other interfaces.
2011 */
2012 if (if_flags & IFF_POINTOPOINT) {
2013 if_subnetmask = if_mask;
2014 continue;
2015 }
2016 /*
2017 * Fine. Just assume the same net mask as the
2018 * directly attached subnet interface is using.
2019 */
2020 return (if_mask);
2021 }
2022 }
2023 if (if_subnetmask != 0)
2024 return (if_subnetmask);
2025 return (mask);
2026 }
2027
2028 /*
2029 * Interpret an argument as a network address of some kind.
2030 *
2031 * If the address family is one looked up in getaddr() using one of the
2032 * getipnodebyX() functions (currently only AF_INET6), then callers should
2033 * freehostent() the returned "struct hostent" pointer if one was passed in.
2034 *
2035 * If exit_on_error is true, this function will cause route to exit on error by
2036 * calling syntax_error(). Otherwise, it returns B_TRUE on success or B_FALSE
2037 * on failure.
2038 */
2039 static boolean_t
2040 getaddr(rtcmd_irep_t *rcip, int which, char *s, addr_type_t atype)
2041 {
2042 su_t *su;
2043 struct hostent **hpp;
2044 struct hostent *hp;
2045 int masklen;
2046
2047 if (which == RTA_GATEWAY) {
2048 hpp = &(rcip->ri_gate_hp);
2049 } else {
2050 hpp = &hp;
2051 }
2052 *hpp = NULL;
2053
2054 rcip->ri_addrs |= which;
2055 switch (which) {
2056 case RTA_DST:
2057 save_string(&rcip->ri_dest_str, s);
2058 su = &rcip->ri_dst;
2059 su->sa.sa_family = rcip->ri_af;
2060 break;
2061 case RTA_GATEWAY:
2062 save_string(&rcip->ri_gate_str, s);
2063 su = &rcip->ri_gate;
2064 su->sa.sa_family = rcip->ri_af;
2065 break;
2066 case RTA_NETMASK:
2067 su = &rcip->ri_mask;
2068 su->sa.sa_family = rcip->ri_af;
2069 break;
2070 case RTA_IFP:
2071 save_string(&rcip->ri_ifp_str, s);
2072 return (B_TRUE);
2073 /*
2074 * RTA_SRC has overloaded meaning. It can represent the
2075 * src address of incoming or outgoing packets.
2076 */
2077 case RTA_IFA:
2078 su = &rcip->ri_ifa;
2079 su->sa.sa_family = rcip->ri_af;
2080 break;
2081 case RTA_SRC:
2082 su = &rcip->ri_src;
2083 su->sa.sa_family = rcip->ri_af;
2084 break;
2085 default:
2086 /* NOTREACHED */
2087 quit(gettext("Internal Error"), EINVAL);
2088 /* NOTREACHED */
2089 }
2090 if (strcmp(s, "default") == 0) {
2091 if (which == RTA_DST) {
2092 return (getaddr(rcip, RTA_NETMASK, s, ADDR_TYPE_NET));
2093 }
2094 if (which == RTA_SRC) {
2095 return (B_TRUE);
2096 }
2097 return (B_TRUE);
2098 }
2099 switch (rcip->ri_af) {
2100 case AF_LINK:
2101 link_addr(s, &su->sdl);
2102 return (B_TRUE);
2103 case PF_ROUTE:
2104 sockaddr(s, &su->sa);
2105 return (B_TRUE);
2106 case AF_INET6:
2107 switch (which) {
2108 case RTA_DST:
2109 if (!in6_getaddr(s, &su->sin6, &masklen, hpp)) {
2110 return (B_FALSE);
2111 }
2112 if (masklen != NO_PREFIX) {
2113 (void) memset(&rcip->ri_mask.sin6.sin6_addr, 0,
2114 sizeof (rcip->ri_mask.sin6.sin6_addr));
2115 if (!in_prefixlentomask(masklen, IPV6_ABITS,
2116 (uchar_t *)&rcip->ri_mask.sin6.sin6_addr)) {
2117 syntax_error(gettext(
2118 "route: bad prefix length: %d\n"),
2119 masklen);
2120 return (B_FALSE);
2121 }
2122 rcip->ri_mask.sin6.sin6_family = rcip->ri_af;
2123 rcip->ri_addrs |= RTA_NETMASK;
2124 }
2125 return (B_TRUE);
2126 case RTA_GATEWAY:
2127 case RTA_IFA:
2128 case RTA_SRC:
2129 return (in6_getaddr(s, &su->sin6, NULL, hpp));
2130 case RTA_NETMASK:
2131 syntax_error(
2132 gettext("route: -netmask not supported for IPv6: "
2133 "use <prefix>/<prefix-length> instead\n"));
2134 return (B_FALSE);
2135 default:
2136 quit(gettext("Internal Error"), EINVAL);
2137 /* NOTREACHED */
2138 }
2139 case AF_INET:
2140 switch (which) {
2141 case RTA_DST:
2142 if (!in_getaddr(s, &su->sin, &masklen, which, hpp,
2143 atype, rcip)) {
2144 return (B_FALSE);
2145 }
2146 if (masklen != NO_PREFIX) {
2147 (void) memset(&rcip->ri_mask.sin.sin_addr, 0,
2148 sizeof (rcip->ri_mask.sin.sin_addr));
2149 if (!in_prefixlentomask(masklen, IP_ABITS,
2150 (uchar_t *)&rcip->ri_mask.sin.sin_addr)) {
2151 syntax_error(gettext(
2152 "route: bad prefix length: %d\n"),
2153 masklen);
2154 return (B_FALSE);
2155 }
2156 rcip->ri_mask.sin.sin_family = rcip->ri_af;
2157 rcip->ri_addrs |= RTA_NETMASK;
2158 }
2159 return (B_TRUE);
2160 case RTA_GATEWAY:
2161 case RTA_IFA:
2162 case RTA_NETMASK:
2163 case RTA_SRC:
2164 return (in_getaddr(s, &su->sin, NULL, which, hpp, atype,
2165 rcip));
2166 default:
2167 quit(gettext("Internal Error"), EINVAL);
2168 /* NOTREACHED */
2169 }
2170 default:
2171 quit(gettext("Internal Error"), EINVAL);
2172 /* NOTREACHED */
2173 }
2174 return (B_TRUE);
2175 }
2176
2177 /*
2178 * Interpret an argument as an IPv4 network address of some kind,
2179 * returning B_TRUE on success or B_FALSE on failure.
2180 * This function will cause an exit() on failure if exit_on_failure is set.
2181 *
2182 * Note that this tries host interpretation before network interpretation,
2183 * except when -net has been given and the destination address is being parsed.
2184 *
2185 * If the plenp argument is non-NULL, allow <addr>/<n> syntax and
2186 * pass out <n> in *plenp.
2187 * If <n> doesn't parse return BAD_ADDR as *plenp.
2188 * If no /<n> is present return NO_PREFIX as *plenp.
2189 */
2190 static boolean_t
2191 in_getaddr(char *s, struct sockaddr_in *sin, int *plenp, int which,
2192 struct hostent **hpp, addr_type_t atype, rtcmd_irep_t *rcip)
2193 {
2194 struct hostent *hp;
2195 struct netent *np;
2196 in_addr_t val;
2197 char str[BUFSIZ];
2198
2199 (void) strlcpy(str, s, sizeof (str));
2200
2201 /*
2202 * If plenp is non-NULL, /<n> syntax for netmask is allowed.
2203 */
2204 if (plenp != NULL) {
2205 char *cp;
2206
2207 *plenp = in_getprefixlen(str, IP_ABITS);
2208 if (*plenp == BAD_ADDR)
2209 return (B_FALSE);
2210 cp = strchr(str, '/');
2211 if (cp != NULL)
2212 *cp = '\0';
2213 } else if (strchr(str, '/') != NULL) {
2214 syntax_error(gettext("route: %s: unexpected '/'\n"), str);
2215 return (B_FALSE);
2216 }
2217
2218 (void) memset(sin, 0, sizeof (*sin));
2219 sin->sin_family = AF_INET;
2220
2221 /*
2222 * Handle 255.255.255.255 as a special case first.
2223 */
2224 if (strcmp(str, "255.255.255.255") == 0) {
2225 sin->sin_addr.s_addr = INADDR_BROADCAST;
2226 return (B_TRUE);
2227 }
2228
2229 val = inet_addr(str);
2230 if (val != (in_addr_t)-1) {
2231 /* Numeric address */
2232 sin->sin_addr.s_addr = val;
2233 if (which == RTA_DST) {
2234 if (atype == ADDR_TYPE_NET ||
2235 (atype == ADDR_TYPE_ANY &&
2236 inet_lnaof(sin->sin_addr) == INADDR_ANY)) {
2237 /* This looks like a network address. */
2238 inet_makenetandmask(rcip, ntohl(val),
2239 sin);
2240 }
2241 }
2242 return (B_TRUE);
2243 }
2244 /* Host or net name */
2245 if (which != RTA_DST || atype != ADDR_TYPE_NET) {
2246 /* A host name is allowed. */
2247 if ((hp = gethostbyname(str)) != NULL) {
2248 *hpp = hp;
2249 (void) memmove(&sin->sin_addr, hp->h_addr,
2250 hp->h_length);
2251 return (B_TRUE);
2252 }
2253 }
2254 if (atype != ADDR_TYPE_HOST) {
2255 /* A network name is allowed */
2256 if ((np = getnetbyname(str)) != NULL &&
2257 (val = np->n_net) != 0) {
2258 if (which == RTA_DST) {
2259 inet_makenetandmask(rcip, val, sin);
2260 }
2261 return (B_TRUE);
2262 }
2263 }
2264 syntax_error(gettext("%s: bad value\n"), s);
2265 return (B_FALSE);
2266 }
2267
2268 /*
2269 * Interpret an argument as an IPv6 network address of some kind,
2270 * returning B_TRUE on success or B_FALSE on failure.
2271 * This function will cause an exit() on failure if exit_on_failure is set.
2272 *
2273 * If the last argument is non-NULL allow a <addr>/<n> syntax and
2274 * pass out <n> in *plenp.
2275 * If <n> doesn't parse return BAD_ADDR as *plenp.
2276 * If no /<n> is present return NO_PREFIX as *plenp.
2277 */
2278 static boolean_t
2279 in6_getaddr(char *s, struct sockaddr_in6 *sin6, int *plenp,
2280 struct hostent **hpp)
2281 {
2282 struct hostent *hp;
2283 char str[BUFSIZ];
2284 int error_num;
2285
2286 (void) strlcpy(str, s, sizeof (str));
2287
2288 /*
2289 * If plenp is non-NULL, /<n> syntax for netmask is allowed.
2290 */
2291 if (plenp != NULL) {
2292 char *cp;
2293
2294 *plenp = in_getprefixlen(str, IPV6_ABITS);
2295 if (*plenp == BAD_ADDR)
2296 return (B_FALSE);
2297 cp = strchr(str, '/');
2298 if (cp != NULL)
2299 *cp = '\0';
2300 } else if (strchr(str, '/') != NULL) {
2301 syntax_error(gettext("route: %s: unexpected '/'\n"), str);
2302 return (B_FALSE);
2303 }
2304
2305 (void) memset(sin6, 0, sizeof (struct sockaddr_in6));
2306 sin6->sin6_family = AF_INET6;
2307
2308 hp = getipnodebyname(str, AF_INET6, 0, &error_num);
2309 if (hp != NULL) {
2310 *hpp = hp;
2311 (void) memmove(&sin6->sin6_addr, hp->h_addr, hp->h_length);
2312 return (B_TRUE);
2313 }
2314 if (error_num == TRY_AGAIN) {
2315 /*
2316 * This isn't a problem if we aren't going to use the address
2317 * right away.
2318 */
2319 if (!exit_on_error) {
2320 return (B_TRUE);
2321 }
2322 syntax_error(gettext("route: %s: bad address (try "
2323 "again later)\n"), s);
2324 return (B_FALSE);
2325 }
2326 syntax_error(gettext("route: %s: bad address\n"), s);
2327 return (B_FALSE);
2328 }
2329
2330 /*
2331 * Parse <addr>/<n> syntax and return the integer n.
2332 * If <addr> is missing or <n> is not a valid integer, this function calls
2333 * syntax_error() and returns BAD_ADDR.
2334 * if n is not between 0 and max_plen inclusive, this functions calls
2335 * syntax_error() and returns BAD_ADDR.
2336 * If /<n> is not present, this function returns NO_PREFIX.
2337 * The string addr is not modified.
2338 */
2339 int
2340 in_getprefixlen(char *addr, int max_plen)
2341 {
2342 int prefixlen;
2343 char *str, *end;
2344
2345 str = strchr(addr, '/');
2346 if (str == addr) {
2347 syntax_error(gettext("route: %s: unexpected '/'\n"), addr);
2348 return (BAD_ADDR);
2349 }
2350 if (str == NULL)
2351 return (NO_PREFIX);
2352 str++;
2353
2354 errno = 0;
2355 prefixlen = strtoul(str, &end, 10);
2356 if (errno != 0 || str == end) {
2357 syntax_error(gettext("route: bad prefix length %s\n"), str);
2358 return (BAD_ADDR);
2359 }
2360 if (prefixlen > max_plen) {
2361 syntax_error(gettext("route: prefix length %s out of range\n"),
2362 str);
2363 return (BAD_ADDR);
2364 }
2365 return (prefixlen);
2366 }
2367
2368 /*
2369 * Convert a prefix length to a mask.
2370 * Returns B_TRUE if ok. B_FALSE otherwise.
2371 * Assumes the mask array is zeroed by the caller.
2372 */
2373 boolean_t
2374 in_prefixlentomask(int prefixlen, int maxlen, uchar_t *mask)
2375 {
2376 if (prefixlen < 0 || prefixlen > maxlen)
2377 return (B_FALSE);
2378
2379 while (prefixlen > 0) {
2380 if (prefixlen >= 8) {
2381 *mask++ = 0xFF;
2382 prefixlen -= 8;
2383 continue;
2384 }
2385 *mask |= 1 << (8 - prefixlen);
2386 prefixlen--;
2387 }
2388 return (B_TRUE);
2389 }
2390
2391 void
2392 rtmonitor(int argc, char *argv[])
2393 {
2394 int n;
2395 intmax_t msg[2048 / sizeof (intmax_t)];
2396
2397 if (tflag)
2398 exit(0);
2399 verbose = B_TRUE;
2400 if (argc > 1) {
2401 argv++;
2402 if (argc == 2 && **argv == '-') {
2403 switch (keyword(*argv + 1)) {
2404 case K_INET:
2405 af = AF_INET;
2406 break;
2407 case K_LINK:
2408 af = AF_LINK;
2409 break;
2410 case K_INET6:
2411 af = AF_INET6;
2412 break;
2413 default:
2414 usage(*argv);
2415 /* NOTREACHED */
2416 }
2417 } else {
2418 usage(*argv);
2419 }
2420 (void) close(s);
2421 s = socket(PF_ROUTE, SOCK_RAW, af);
2422 if (s < 0)
2423 quit("socket", errno);
2424 }
2425 for (;;) {
2426 n = read(s, msg, sizeof (msg));
2427 if (n <= 0)
2428 quit("read", errno);
2429 (void) printf("got message of size %d\n", n);
2430 print_rtmsg((struct rt_msghdr *)msg, n);
2431 }
2432 }
2433
2434 int
2435 rtmsg(rtcmd_irep_t *newrt)
2436 {
2437 static int seq;
2438 int rlen;
2439 char *cp = m_rtmsg.m_space;
2440 int l;
2441
2442 errno = 0;
2443 (void) memset(&m_rtmsg, 0, sizeof (m_rtmsg));
2444
2445 if (newrt->ri_cmd == RTM_GET) {
2446 newrt->ri_ifp.sa.sa_family = AF_LINK;
2447 newrt->ri_addrs |= RTA_IFP;
2448 }
2449
2450 #define rtm m_rtmsg.m_rtm
2451 rtm.rtm_type = newrt->ri_cmd;
2452 rtm.rtm_flags = newrt->ri_flags;
2453 rtm.rtm_version = RTM_VERSION;
2454 rtm.rtm_seq = ++seq;
2455 rtm.rtm_addrs = newrt->ri_addrs;
2456 rtm.rtm_rmx = newrt->ri_metrics;
2457 rtm.rtm_inits = newrt->ri_inits;
2458
2459 #define NEXTADDR(w, u) \
2460 if (newrt->ri_addrs & (w)) { \
2461 l = ROUNDUP_LONG(salen(&u.sa)); \
2462 (void) memmove(cp, &(u), l); \
2463 cp += l; \
2464 if (verbose) \
2465 sodump(&(u), #u); \
2466 }
2467 NEXTADDR(RTA_DST, newrt->ri_dst);
2468 NEXTADDR(RTA_GATEWAY, newrt->ri_gate);
2469 NEXTADDR(RTA_NETMASK, newrt->ri_mask);
2470 NEXTADDR(RTA_IFP, newrt->ri_ifp);
2471 NEXTADDR(RTA_IFA, newrt->ri_ifa);
2472 /*
2473 * RTA_SRC has overloaded meaning. It can represent the
2474 * src address of incoming or outgoing packets.
2475 */
2476 NEXTADDR(RTA_SRC, newrt->ri_src);
2477 #undef NEXTADDR
2478
2479 if (newrt->ri_rtsa_cnt > 0) {
2480 /* LINTED: aligned */
2481 rtm_ext_t *rtm_ext = (rtm_ext_t *)cp;
2482 tsol_rtsecattr_t *rtsecattr;
2483
2484 rtm_ext->rtmex_type = RTMEX_GATEWAY_SECATTR;
2485 rtm_ext->rtmex_len = TSOL_RTSECATTR_SIZE(1);
2486
2487 rtsecattr = (tsol_rtsecattr_t *)(rtm_ext + 1);
2488 rtsecattr->rtsa_cnt = 1;
2489
2490 bcopy(&newrt->ri_rtsa, rtsecattr->rtsa_attr,
2491 sizeof (newrt->ri_rtsa));
2492 cp = (char *)(rtsecattr->rtsa_attr + 1);
2493 }
2494
2495 rtm.rtm_msglen = l = cp - (char *)&m_rtmsg;
2496
2497 if (verbose)
2498 print_rtmsg(&rtm, l);
2499 if (debugonly)
2500 return (0);
2501 if ((rlen = write(s, (char *)&m_rtmsg, l)) < 0) {
2502 switch (errno) {
2503 case ESRCH:
2504 case EBUSY:
2505 case ENOBUFS:
2506 case EEXIST:
2507 case ENETUNREACH:
2508 case EHOSTUNREACH:
2509 case EPERM:
2510 break;
2511 default:
2512 perror(gettext("writing to routing socket"));
2513 break;
2514 }
2515 return (-1);
2516 } else if (rlen < (int)rtm.rtm_msglen) {
2517 (void) fprintf(stderr,
2518 gettext("route: write to routing socket got only %d for "
2519 "len\n"), rlen);
2520 return (-1);
2521 }
2522 if (newrt->ri_cmd == RTM_GET) {
2523 do {
2524 l = read(s, (char *)&m_rtmsg, sizeof (m_rtmsg));
2525 } while (l > 0 && (rtm.rtm_seq != seq || rtm.rtm_pid != pid));
2526 if (l < 0) {
2527 (void) fprintf(stderr,
2528 gettext("route: read from routing socket: %s\n"),
2529 strerror(errno));
2530 } else {
2531 print_getmsg(newrt, &rtm, l);
2532 }
2533 }
2534 #undef rtm
2535 return (0);
2536 }
2537
2538 static char *msgtypes[] = {
2539 "",
2540 "RTM_ADD: Add Route",
2541 "RTM_DELETE: Delete Route",
2542 "RTM_CHANGE: Change Metrics or flags",
2543 "RTM_GET: Report Metrics",
2544 "RTM_LOSING: Kernel Suspects Partitioning",
2545 "RTM_REDIRECT: Told to use different route",
2546 "RTM_MISS: Lookup failed on this address",
2547 "RTM_LOCK: fix specified metrics",
2548 "RTM_OLDADD: caused by SIOCADDRT",
2549 "RTM_OLDDEL: caused by SIOCDELRT",
2550 "RTM_RESOLVE: Route created by cloning",
2551 "RTM_NEWADDR: address being added to iface",
2552 "RTM_DELADDR: address being removed from iface",
2553 "RTM_IFINFO: iface status change",
2554 0,
2555 };
2556
2557 #define NMSGTYPES (sizeof (msgtypes) / sizeof (msgtypes[0]))
2558
2559 static char metricnames[] =
2560 "\011pksent\010rttvar\7rtt\6ssthresh\5sendpipe\4recvpipe\3expire\2hopcount"
2561 "\1mtu";
2562 static char routeflags[] =
2563 "\1UP\2GATEWAY\3HOST\4REJECT\5DYNAMIC\6MODIFIED\7DONE\010MASK_PRESENT"
2564 "\011CLONING\012XRESOLVE\013LLINFO\014STATIC\015BLACKHOLE"
2565 "\016PRIVATE\017PROTO2\020PROTO1\021MULTIRT\022SETSRC";
2566 static char ifnetflags[] =
2567 "\1UP\2BROADCAST\3DEBUG\4LOOPBACK\5PTP\6NOTRAILERS\7RUNNING\010NOARP"
2568 "\011PPROMISC\012ALLMULTI\013INTELLIGENT\014MULTICAST"
2569 "\015MULTI_BCAST\016UNNUMBERED\017DHCP\020PRIVATE"
2570 "\021NOXMIT\022NOLOCAL\023DEPRECATED\024ADDRCONF"
2571 "\025ROUTER\026NONUD\027ANYCAST\030NORTEXCH\031IPv4\032IPv6"
2572 "\034NOFAILOVER\035FAILED\036STANDBY\037INACTIVE\040OFFLINE"
2573 "\041XRESOLV\042COS\043PREFERRED\044TEMPORARY\045FIXEDMTU\046VIRTUAL"
2574 "\047DUPLICATE";
2575 static char addrnames[] =
2576 "\1DST\2GATEWAY\3NETMASK\4GENMASK\5IFP\6IFA\7AUTHOR\010BRD\011SRC";
2577
2578 void
2579 print_rtmsg(struct rt_msghdr *rtm, int msglen)
2580 {
2581 struct if_msghdr *ifm;
2582 struct ifa_msghdr *ifam;
2583
2584 if (!verbose)
2585 return;
2586 if (rtm->rtm_version != RTM_VERSION) {
2587 (void) printf("routing message version %d not understood\n",
2588 rtm->rtm_version);
2589 return;
2590 }
2591 if (rtm->rtm_msglen != msglen) {
2592 (void) printf("message length mismatch, in packet %d, "
2593 "returned %d\n",
2594 rtm->rtm_msglen, msglen);
2595 if (msglen > rtm->rtm_msglen)
2596 msglen = rtm->rtm_msglen;
2597 }
2598 /*
2599 * Since rtm->rtm_type is unsigned, we'll just check the case of zero
2600 * and the upper-bound of (NMSGTYPES - 1).
2601 */
2602 if (rtm->rtm_type == 0 || rtm->rtm_type >= (NMSGTYPES - 1)) {
2603 (void) printf("routing message type %d not understood\n",
2604 rtm->rtm_type);
2605 return;
2606 }
2607 (void) printf("%s: len %d, ", msgtypes[rtm->rtm_type], msglen);
2608 switch (rtm->rtm_type) {
2609 case RTM_IFINFO:
2610 ifm = (struct if_msghdr *)rtm;
2611 (void) printf("if# %d, flags:", ifm->ifm_index);
2612 bprintf(stdout, ifm->ifm_flags, ifnetflags);
2613 pmsg_addrs((const char *)(ifm + 1), msglen - sizeof (*ifm),
2614 ifm->ifm_addrs);
2615 break;
2616 case RTM_NEWADDR:
2617 case RTM_DELADDR:
2618 ifam = (struct ifa_msghdr *)rtm;
2619 (void) printf("metric %d, flags:", ifam->ifam_metric);
2620 bprintf(stdout, ifam->ifam_flags, routeflags);
2621 pmsg_addrs((const char *)(ifam + 1), msglen - sizeof (*ifam),
2622 ifam->ifam_addrs);
2623 break;
2624 default:
2625 (void) printf("pid: %ld, seq %d, errno %d, flags:",
2626 rtm->rtm_pid, rtm->rtm_seq, rtm->rtm_errno);
2627 bprintf(stdout, rtm->rtm_flags, routeflags);
2628 pmsg_common(rtm, msglen);
2629 break;
2630 }
2631 }
2632
2633 void
2634 print_getmsg(rtcmd_irep_t *req_rt, struct rt_msghdr *rtm, int msglen)
2635 {
2636 struct sockaddr *dst = NULL, *gate = NULL, *mask = NULL, *src = NULL;
2637 struct sockaddr_dl *ifp = NULL;
2638 struct sockaddr *sa;
2639 char *cp;
2640 int i;
2641
2642 (void) printf(" route to: %s\n", routename(&req_rt->ri_dst.sa));
2643 if (rtm->rtm_version != RTM_VERSION) {
2644 (void) fprintf(stderr,
2645 gettext("routing message version %d not understood\n"),
2646 rtm->rtm_version);
2647 return;
2648 }
2649 if (rtm->rtm_msglen > (ushort_t)msglen) {
2650 (void) fprintf(stderr,
2651 gettext("message length mismatch, in packet %d, "
2652 "returned %d\n"), rtm->rtm_msglen, msglen);
2653 }
2654 if (rtm->rtm_errno) {
2655 (void) fprintf(stderr, "RTM_GET: %s (errno %d)\n",
2656 strerror(rtm->rtm_errno), rtm->rtm_errno);
2657 return;
2658 }
2659 cp = ((char *)(rtm + 1));
2660 if (rtm->rtm_addrs != 0) {
2661 for (i = 1; i != 0; i <<= 1) {
2662 if (i & rtm->rtm_addrs) {
2663 /* LINTED */
2664 sa = (struct sockaddr *)cp;
2665 switch (i) {
2666 case RTA_DST:
2667 dst = sa;
2668 break;
2669 case RTA_GATEWAY:
2670 gate = sa;
2671 break;
2672 case RTA_NETMASK:
2673 mask = sa;
2674 break;
2675 case RTA_IFP:
2676 if (sa->sa_family == AF_LINK &&
2677 ((struct sockaddr_dl *)sa)->
2678 sdl_nlen != 0)
2679 ifp = (struct sockaddr_dl *)sa;
2680 break;
2681 case RTA_SRC:
2682 src = sa;
2683 break;
2684 }
2685 ADVANCE(cp, sa);
2686 }
2687 }
2688 }
2689 if (dst != NULL && mask != NULL)
2690 mask->sa_family = dst->sa_family; /* XXX */
2691 if (dst != NULL)
2692 (void) printf("destination: %s\n", routename(dst));
2693 if (mask != NULL) {
2694 boolean_t savenflag = nflag;
2695
2696 nflag = B_TRUE;
2697 (void) printf(" mask: %s\n", routename(mask));
2698 nflag = savenflag;
2699 }
2700 if (gate != NULL && rtm->rtm_flags & RTF_GATEWAY)
2701 (void) printf(" gateway: %s\n", routename(gate));
2702 if (src != NULL && rtm->rtm_flags & RTF_SETSRC)
2703 (void) printf(" setsrc: %s\n", routename(src));
2704 if (ifp != NULL) {
2705 if (verbose) {
2706 int i;
2707
2708 (void) printf(" interface: %.*s index %d address ",
2709 ifp->sdl_nlen, ifp->sdl_data, ifp->sdl_index);
2710 for (i = ifp->sdl_nlen;
2711 i < ifp->sdl_nlen + ifp->sdl_alen;
2712 i++) {
2713 (void) printf("%02x ",
2714 ifp->sdl_data[i] & 0xFF);
2715 }
2716 (void) printf("\n");
2717 } else {
2718 (void) printf(" interface: %.*s\n",
2719 ifp->sdl_nlen, ifp->sdl_data);
2720 }
2721 }
2722 (void) printf(" flags: ");
2723 bprintf(stdout, rtm->rtm_flags, routeflags);
2724
2725 #define lock(f) ((rtm->rtm_rmx.rmx_locks & RTV_ ## f) ? 'L' : ' ')
2726 #define msec(u) (((u) + 500) / 1000) /* usec to msec */
2727
2728 (void) printf("\n%s\n", " recvpipe sendpipe ssthresh rtt,ms "
2729 "rttvar,ms hopcount mtu expire");
2730 (void) printf("%8d%c ", rtm->rtm_rmx.rmx_recvpipe, lock(RPIPE));
2731 (void) printf("%8d%c ", rtm->rtm_rmx.rmx_sendpipe, lock(SPIPE));
2732 (void) printf("%8d%c ", rtm->rtm_rmx.rmx_ssthresh, lock(SSTHRESH));
2733 (void) printf("%8d%c ", msec(rtm->rtm_rmx.rmx_rtt), lock(RTT));
2734 (void) printf("%8d%c ", msec(rtm->rtm_rmx.rmx_rttvar), lock(RTTVAR));
2735 (void) printf("%8d%c ", rtm->rtm_rmx.rmx_hopcount, lock(HOPCOUNT));
2736 (void) printf("%8d%c ", rtm->rtm_rmx.rmx_mtu, lock(MTU));
2737 if (rtm->rtm_rmx.rmx_expire)
2738 rtm->rtm_rmx.rmx_expire -= time(0);
2739 (void) printf("%8d%c", rtm->rtm_rmx.rmx_expire, lock(EXPIRE));
2740 #undef lock
2741 #undef msec
2742 #define RTA_IGN \
2743 (RTA_DST|RTA_GATEWAY|RTA_NETMASK|RTA_IFP|RTA_IFA|RTA_BRD|RTA_SRC)
2744 if (verbose) {
2745 pmsg_common(rtm, msglen);
2746 } else {
2747 const char *sptr, *endptr;
2748 const struct sockaddr *sa;
2749 uint_t addrs;
2750
2751 /* Not verbose; just print out the exceptional cases */
2752 if (rtm->rtm_addrs &~ RTA_IGN) {
2753 (void) printf("\nsockaddrs: ");
2754 bprintf(stdout, rtm->rtm_addrs, addrnames);
2755 }
2756 sptr = (const char *)(rtm + 1);
2757 endptr = (const char *)rtm + msglen;
2758 addrs = rtm->rtm_addrs;
2759 while (addrs != 0 && sptr + sizeof (*sa) <= endptr) {
2760 addrs &= addrs - 1;
2761 /* LINTED */
2762 sa = (const struct sockaddr *)sptr;
2763 ADVANCE(sptr, sa);
2764 }
2765 if (addrs == 0)
2766 pmsg_secattr(sptr, endptr - sptr, " secattr: ");
2767 (void) putchar('\n');
2768 }
2769 #undef RTA_IGN
2770 }
2771
2772 static void
2773 pmsg_common(const struct rt_msghdr *rtm, size_t msglen)
2774 {
2775 (void) printf("\nlocks: ");
2776 bprintf(stdout, (int)rtm->rtm_rmx.rmx_locks, metricnames);
2777 (void) printf(" inits: ");
2778 bprintf(stdout, (int)rtm->rtm_inits, metricnames);
2779 pmsg_addrs((const char *)(rtm + 1), msglen - sizeof (*rtm),
2780 rtm->rtm_addrs);
2781 }
2782
2783 static void
2784 pmsg_addrs(const char *cp, size_t msglen, uint_t addrs)
2785 {
2786 const struct sockaddr *sa;
2787 const char *maxptr;
2788 int i;
2789
2790 if (addrs != 0) {
2791 (void) printf("\nsockaddrs: ");
2792 bprintf(stdout, addrs, addrnames);
2793 (void) putchar('\n');
2794 maxptr = cp + msglen;
2795 for (i = 1; i != 0 && cp + sizeof (*sa) <= maxptr; i <<= 1) {
2796 if (i & addrs) {
2797 /* LINTED */
2798 sa = (const struct sockaddr *)cp;
2799 (void) printf(" %s", routename(sa));
2800 ADVANCE(cp, sa);
2801 }
2802 }
2803 if (i != 0)
2804 msglen = 0;
2805 else
2806 msglen = maxptr - cp;
2807 }
2808 pmsg_secattr(cp, msglen, "secattr: ");
2809 (void) putchar('\n');
2810 (void) fflush(stdout);
2811 }
2812
2813 void
2814 bprintf(FILE *fp, int b, char *s)
2815 {
2816 int i;
2817 boolean_t gotsome = B_FALSE;
2818
2819 if (b == 0)
2820 return;
2821 while ((i = *s++) != 0) {
2822 if (b & (1 << (i - 1))) {
2823 if (!gotsome)
2824 i = '<';
2825 else
2826 i = ',';
2827 (void) putc(i, fp);
2828 gotsome = B_TRUE;
2829 for (; (i = *s) > ' '; s++)
2830 (void) putc(i, fp);
2831 } else {
2832 while (*s > ' ')
2833 s++;
2834 }
2835 }
2836 if (gotsome)
2837 (void) putc('>', fp);
2838 }
2839
2840 int
2841 keyword(const char *cp)
2842 {
2843 struct keytab *kt = keywords;
2844
2845 while (kt->kt_cp && strcmp(kt->kt_cp, cp))
2846 kt++;
2847 return (kt->kt_i);
2848 }
2849
2850 void
2851 sodump(su_t *su, char *which)
2852 {
2853 static char obuf[INET6_ADDRSTRLEN];
2854
2855 switch (su->sa.sa_family) {
2856 case AF_LINK:
2857 (void) printf("%s: link %s; ",
2858 which, link_ntoa(&su->sdl));
2859 break;
2860 case AF_INET:
2861 (void) printf("%s: inet %s; ",
2862 which, inet_ntoa(su->sin.sin_addr));
2863 break;
2864 case AF_INET6:
2865 if (inet_ntop(AF_INET6, (void *)&su->sin6.sin6_addr, obuf,
2866 INET6_ADDRSTRLEN) != NULL) {
2867 (void) printf("%s: inet6 %s; ", which, obuf);
2868 break;
2869 }
2870 /* FALLTHROUGH */
2871 default:
2872 quit(gettext("Internal Error"), EINVAL);
2873 /* NOTREACHED */
2874 }
2875 (void) fflush(stdout);
2876 }
2877
2878 /* States */
2879 #define VIRGIN 0
2880 #define GOTONE 1
2881 #define GOTTWO 2
2882 #define RESET 3
2883 /* Inputs */
2884 #define DIGIT (4*0)
2885 #define END (4*1)
2886 #define DELIM (4*2)
2887 #define LETTER (4*3)
2888
2889 void
2890 sockaddr(char *addr, struct sockaddr *sa)
2891 {
2892 char *cp = (char *)sa;
2893 int size = salen(sa);
2894 char *cplim = cp + size;
2895 int byte = 0, state = VIRGIN, new;
2896
2897 (void) memset(cp, 0, size);
2898 cp++;
2899 do {
2900 if ((*addr >= '0') && (*addr <= '9')) {
2901 new = *addr - '0';
2902 } else if ((*addr >= 'a') && (*addr <= 'f')) {
2903 new = *addr - 'a' + 10;
2904 } else if ((*addr >= 'A') && (*addr <= 'F')) {
2905 new = *addr - 'A' + 10;
2906 } else if (*addr == 0) {
2907 state |= END;
2908 } else {
2909 state |= DELIM;
2910 }
2911 addr++;
2912 switch (state /* | INPUT */) {
2913 case GOTTWO | DIGIT:
2914 *cp++ = byte;
2915 /* FALLTHROUGH */
2916 case VIRGIN | DIGIT:
2917 state = GOTONE; byte = new; continue;
2918 case GOTONE | DIGIT:
2919 state = GOTTWO; byte = new + (byte << 4); continue;
2920 default: /* | DELIM */
2921 state = VIRGIN; *cp++ = byte; byte = 0; continue;
2922 case GOTONE | END:
2923 case GOTTWO | END:
2924 *cp++ = byte;
2925 /* FALLTHROUGH */
2926 case VIRGIN | END:
2927 break;
2928 }
2929 break;
2930 } while (cp < cplim);
2931 }
2932
2933 int
2934 salen(const struct sockaddr *sa)
2935 {
2936 switch (sa->sa_family) {
2937 case AF_INET:
2938 return (sizeof (struct sockaddr_in));
2939 case AF_LINK:
2940 return (sizeof (struct sockaddr_dl));
2941 case AF_INET6:
2942 return (sizeof (struct sockaddr_in6));
2943 default:
2944 return (sizeof (struct sockaddr));
2945 }
2946 }
2947
2948 void
2949 link_addr(const char *addr, struct sockaddr_dl *sdl)
2950 {
2951 char *cp = sdl->sdl_data;
2952 char *cplim = sizeof (struct sockaddr_dl) + (char *)sdl;
2953 int byte = 0, state = VIRGIN, new;
2954
2955 (void) memset(sdl, 0, sizeof (struct sockaddr_dl));
2956 sdl->sdl_family = AF_LINK;
2957 do {
2958 state &= ~LETTER;
2959 if ((*addr >= '0') && (*addr <= '9')) {
2960 new = *addr - '0';
2961 } else if ((*addr >= 'a') && (*addr <= 'f')) {
2962 new = *addr - 'a' + 10;
2963 } else if ((*addr >= 'A') && (*addr <= 'F')) {
2964 new = *addr - 'A' + 10;
2965 } else if (*addr == 0) {
2966 state |= END;
2967 } else if (state == VIRGIN &&
2968 (((*addr >= 'A') && (*addr <= 'Z')) ||
2969 ((*addr >= 'a') && (*addr <= 'z')))) {
2970 state |= LETTER;
2971 } else {
2972 state |= DELIM;
2973 }
2974 addr++;
2975 switch (state /* | INPUT */) {
2976 case VIRGIN | DIGIT:
2977 case VIRGIN | LETTER:
2978 *cp++ = addr[-1];
2979 continue;
2980 case VIRGIN | DELIM:
2981 state = RESET;
2982 sdl->sdl_nlen = cp - sdl->sdl_data;
2983 continue;
2984 case GOTTWO | DIGIT:
2985 *cp++ = byte;
2986 /* FALLTHROUGH */
2987 case RESET | DIGIT:
2988 state = GOTONE;
2989 byte = new;
2990 continue;
2991 case GOTONE | DIGIT:
2992 state = GOTTWO;
2993 byte = new + (byte << 4);
2994 continue;
2995 default: /* | DELIM */
2996 state = RESET;
2997 *cp++ = byte;
2998 byte = 0;
2999 continue;
3000 case GOTONE | END:
3001 case GOTTWO | END:
3002 *cp++ = byte;
3003 /* FALLTHROUGH */
3004 case RESET | END:
3005 break;
3006 }
3007 break;
3008 } while (cp < cplim);
3009 sdl->sdl_alen = cp - LLADDR(sdl);
3010 }
3011
3012 static char hexlist[] = "0123456789abcdef";
3013
3014 char *
3015 link_ntoa(const struct sockaddr_dl *sdl)
3016 {
3017 static char obuf[64];
3018 char *out = obuf;
3019 int i;
3020 uchar_t *in = (uchar_t *)LLADDR(sdl);
3021 uchar_t *inlim = in + sdl->sdl_alen;
3022 boolean_t firsttime = B_TRUE;
3023
3024 if (sdl->sdl_nlen) {
3025 (void) memcpy(obuf, sdl->sdl_data, sdl->sdl_nlen);
3026 out += sdl->sdl_nlen;
3027 if (sdl->sdl_alen)
3028 *out++ = ':';
3029 }
3030 while (in < inlim) {
3031 if (firsttime)
3032 firsttime = B_FALSE;
3033 else
3034 *out++ = '.';
3035 i = *in++;
3036 if (i > 0xf) {
3037 out[1] = hexlist[i & 0xf];
3038 i >>= 4;
3039 out[0] = hexlist[i];
3040 out += 2;
3041 } else {
3042 *out++ = hexlist[i];
3043 }
3044 }
3045 *out = 0;
3046 return (obuf);
3047 }
3048
3049 static mib_item_t *
3050 mibget(int sd)
3051 {
3052 intmax_t buf[512 / sizeof (intmax_t)];
3053 int flags;
3054 int i, j, getcode;
3055 struct strbuf ctlbuf, databuf;
3056 struct T_optmgmt_req *tor = (struct T_optmgmt_req *)buf;
3057 struct T_optmgmt_ack *toa = (struct T_optmgmt_ack *)buf;
3058 struct T_error_ack *tea = (struct T_error_ack *)buf;
3059 struct opthdr *req;
3060 mib_item_t *first_item = NULL;
3061 mib_item_t *last_item = NULL;
3062 mib_item_t *temp;
3063
3064 tor->PRIM_type = T_SVR4_OPTMGMT_REQ;
3065 tor->OPT_offset = sizeof (struct T_optmgmt_req);
3066 tor->OPT_length = sizeof (struct opthdr);
3067 tor->MGMT_flags = T_CURRENT;
3068 req = (struct opthdr *)&tor[1];
3069 req->level = MIB2_IP; /* any MIB2_xxx value ok here */
3070 req->name = 0;
3071 req->len = 0;
3072
3073 ctlbuf.buf = (char *)buf;
3074 ctlbuf.len = tor->OPT_length + tor->OPT_offset;
3075 flags = 0;
3076 if (putmsg(sd, &ctlbuf, NULL, flags) < 0) {
3077 perror("mibget: putmsg (ctl)");
3078 return (NULL);
3079 }
3080 /*
3081 * each reply consists of a ctl part for one fixed structure
3082 * or table, as defined in mib2.h. The format is a T_OPTMGMT_ACK,
3083 * containing an opthdr structure. level/name identify the entry,
3084 * len is the size of the data part of the message.
3085 */
3086 req = (struct opthdr *)&toa[1];
3087 ctlbuf.maxlen = sizeof (buf);
3088 for (j = 1; ; j++) {
3089 flags = 0;
3090 getcode = getmsg(sd, &ctlbuf, NULL, &flags);
3091 if (getcode < 0) {
3092 perror("mibget: getmsg (ctl)");
3093 if (verbose) {
3094 (void) fprintf(stderr,
3095 "# level name len\n");
3096 i = 0;
3097 for (last_item = first_item; last_item != NULL;
3098 last_item = last_item->next_item) {
3099 (void) printf("%d %4ld %5ld %ld\n",
3100 ++i, last_item->group,
3101 last_item->mib_id,
3102 last_item->length);
3103 }
3104 }
3105 break;
3106 }
3107 if (getcode == 0 &&
3108 ctlbuf.len >= sizeof (struct T_optmgmt_ack) &&
3109 toa->PRIM_type == T_OPTMGMT_ACK &&
3110 toa->MGMT_flags == T_SUCCESS &&
3111 req->len == 0) {
3112 if (verbose) {
3113 (void) printf("mibget getmsg() %d returned EOD "
3114 "(level %lu, name %lu)\n", j, req->level,
3115 req->name);
3116 }
3117 return (first_item); /* this is EOD msg */
3118 }
3119
3120 if (ctlbuf.len >= sizeof (struct T_error_ack) &&
3121 tea->PRIM_type == T_ERROR_ACK) {
3122 (void) fprintf(stderr, gettext("mibget %d gives "
3123 "T_ERROR_ACK: TLI_error = 0x%lx, UNIX_error = "
3124 "0x%lx\n"), j, tea->TLI_error, tea->UNIX_error);
3125 errno = (tea->TLI_error == TSYSERR)
3126 ? tea->UNIX_error : EPROTO;
3127 break;
3128 }
3129
3130 if (getcode != MOREDATA ||
3131 ctlbuf.len < sizeof (struct T_optmgmt_ack) ||
3132 toa->PRIM_type != T_OPTMGMT_ACK ||
3133 toa->MGMT_flags != T_SUCCESS) {
3134 (void) printf("mibget getmsg(ctl) %d returned %d, "
3135 "ctlbuf.len = %d, PRIM_type = %ld\n",
3136 j, getcode, ctlbuf.len, toa->PRIM_type);
3137 if (toa->PRIM_type == T_OPTMGMT_ACK) {
3138 (void) printf("T_OPTMGMT_ACK: "
3139 "MGMT_flags = 0x%lx, req->len = %ld\n",
3140 toa->MGMT_flags, req->len);
3141 }
3142 errno = ENOMSG;
3143 break;
3144 }
3145
3146 temp = malloc(sizeof (mib_item_t));
3147 if (temp == NULL) {
3148 perror("mibget: malloc");
3149 break;
3150 }
3151 if (last_item != NULL)
3152 last_item->next_item = temp;
3153 else
3154 first_item = temp;
3155 last_item = temp;
3156 last_item->next_item = NULL;
3157 last_item->group = req->level;
3158 last_item->mib_id = req->name;
3159 last_item->length = req->len;
3160 last_item->valp = malloc(req->len);
3161 if (verbose) {
3162 (void) printf("msg %d: group = %4ld mib_id = %5ld "
3163 "length = %ld\n",
3164 j, last_item->group, last_item->mib_id,
3165 last_item->length);
3166 }
3167
3168 databuf.maxlen = last_item->length;
3169 databuf.buf = (char *)last_item->valp;
3170 databuf.len = 0;
3171 flags = 0;
3172 getcode = getmsg(sd, NULL, &databuf, &flags);
3173 if (getcode < 0) {
3174 perror("mibget: getmsg (data)");
3175 break;
3176 } else if (getcode != 0) {
3177 (void) printf("mibget getmsg(data) returned %d, "
3178 "databuf.maxlen = %d, databuf.len = %d\n",
3179 getcode, databuf.maxlen, databuf.len);
3180 break;
3181 }
3182 }
3183
3184 /*
3185 * On error, free all the allocated mib_item_t objects.
3186 */
3187 while (first_item != NULL) {
3188 last_item = first_item;
3189 first_item = first_item->next_item;
3190 free(last_item);
3191 }
3192 return (NULL);
3193 }
3194
3195 /*
3196 * print label security attributes for gateways.
3197 */
3198 static void
3199 pmsg_secattr(const char *sptr, size_t msglen, const char *labelstr)
3200 {
3201 rtm_ext_t rtm_ext;
3202 tsol_rtsecattr_t sp;
3203 struct rtsa_s *rtsa = &sp.rtsa_attr[0];
3204 const char *endptr;
3205 char buf[256];
3206 int i;
3207
3208 if (!is_system_labeled())
3209 return;
3210
3211 endptr = sptr + msglen;
3212
3213 for (;;) {
3214 if (sptr + sizeof (rtm_ext_t) + sizeof (sp) > endptr)
3215 return;
3216
3217 bcopy(sptr, &rtm_ext, sizeof (rtm_ext));
3218 sptr += sizeof (rtm_ext);
3219 if (rtm_ext.rtmex_type == RTMEX_GATEWAY_SECATTR)
3220 break;
3221 sptr += rtm_ext.rtmex_len;
3222 }
3223
3224 /* bail if this entry is corrupt or overruns buffer length */
3225 if (rtm_ext.rtmex_len < sizeof (sp) ||
3226 sptr + rtm_ext.rtmex_len > endptr)
3227 return;
3228
3229 /* run up just to the end of this extension */
3230 endptr = sptr + rtm_ext.rtmex_len;
3231
3232 bcopy(sptr, &sp, sizeof (sp));
3233 sptr += sizeof (sp);
3234
3235 if (sptr + (sp.rtsa_cnt - 1) * sizeof (*rtsa) != endptr)
3236 return;
3237
3238 for (i = 0; i < sp.rtsa_cnt; i++) {
3239 if (i > 0) {
3240 /* first element is part of sp initalized above */
3241 bcopy(sptr, rtsa, sizeof (*rtsa));
3242 sptr += sizeof (*rtsa);
3243 }
3244 (void) printf("\n%s%s", labelstr, rtsa_to_str(rtsa, buf,
3245 sizeof (buf)));
3246 }
3247 }
Unleashed OS