]>
Commit | Line | Data |
---|---|---|
cc192b50 | 1 | /* |
262a0e14 | 2 | * $Id$ |
cc192b50 | 3 | * |
4 | * DEBUG: section 42 ICMP Pinger program | |
5 | * AUTHOR: Duane Wessels, Amos Jeffries | |
6 | * | |
7 | * SQUID Web Proxy Cache http://www.squid-cache.org/ | |
8 | * ---------------------------------------------------------- | |
9 | * | |
10 | * Squid is the result of efforts by numerous individuals from | |
11 | * the Internet community; see the CONTRIBUTORS file for full | |
12 | * details. Many organizations have provided support for Squid's | |
13 | * development; see the SPONSORS file for full details. Squid is | |
14 | * Copyrighted (C) 2001 by the Regents of the University of | |
15 | * California; see the COPYRIGHT file for full details. Squid | |
16 | * incorporates software developed and/or copyrighted by other | |
17 | * sources; see the CREDITS file for full details. | |
18 | * | |
19 | * This program is free software; you can redistribute it and/or modify | |
20 | * it under the terms of the GNU General Public License as published by | |
21 | * the Free Software Foundation; either version 2 of the License, or | |
22 | * (at your option) any later version. | |
26ac0430 | 23 | * |
cc192b50 | 24 | * This program is distributed in the hope that it will be useful, |
25 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
26 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
27 | * GNU General Public License for more details. | |
26ac0430 | 28 | * |
cc192b50 | 29 | * You should have received a copy of the GNU General Public License |
30 | * along with this program; if not, write to the Free Software | |
31 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111, USA. | |
32 | * | |
33 | */ | |
34 | //#define SQUID_HELPER 1 | |
35 | ||
582c2af2 | 36 | #include "squid.h" |
cc192b50 | 37 | |
055421ee | 38 | #if USE_ICMP |
cc192b50 | 39 | |
582c2af2 | 40 | #include "leakcheck.h" |
cc192b50 | 41 | #include "SquidTime.h" |
42 | #include "Debug.h" | |
b826ffb5 AJ |
43 | #include "Icmp6.h" |
44 | #include "IcmpPinger.h" | |
cc192b50 | 45 | |
46 | // Some system headers are only neeed internally here. | |
47 | // They should not be included via the header. | |
48 | ||
49 | #if HAVE_NETINET_IP6_H | |
50 | #include <netinet/ip6.h> | |
51 | #endif | |
52 | ||
b826ffb5 | 53 | // Icmp6 OP-Codes |
cc192b50 | 54 | // see http://www.iana.org/assignments/icmpv6-parameters |
55 | // NP: LowPktStr is for codes 0-127 | |
26ac0430 AJ |
56 | static const char *icmp6LowPktStr[] = { |
57 | "ICMP 0", // 0 | |
58 | "Destination Unreachable", // 1 - RFC2463 | |
59 | "Packet Too Big", // 2 - RFC2463 | |
60 | "Time Exceeded", // 3 - RFC2463 | |
61 | "Parameter Problem", // 4 - RFC2463 | |
62 | "ICMP 5", // 5 | |
63 | "ICMP 6", // 6 | |
64 | "ICMP 7", // 7 | |
65 | "ICMP 8", // 8 | |
66 | "ICMP 9", // 9 | |
67 | "ICMP 10" // 10 | |
68 | }; | |
cc192b50 | 69 | |
70 | // NP: HighPktStr is for codes 128-255 | |
26ac0430 AJ |
71 | static const char *icmp6HighPktStr[] = { |
72 | "Echo Request", // 128 - RFC2463 | |
73 | "Echo Reply", // 129 - RFC2463 | |
74 | "Multicast Listener Query", // 130 - RFC2710 | |
75 | "Multicast Listener Report", // 131 - RFC2710 | |
76 | "Multicast Listener Done", // 132 - RFC2710 | |
77 | "Router Solicitation", // 133 - RFC4861 | |
78 | "Router Advertisement", // 134 - RFC4861 | |
79 | "Neighbor Solicitation", // 135 - RFC4861 | |
80 | "Neighbor Advertisement", // 136 - RFC4861 | |
81 | "Redirect Message", // 137 - RFC4861 | |
82 | "Router Renumbering", // 138 - Crawford | |
83 | "ICMP Node Information Query", // 139 - RFC4620 | |
84 | "ICMP Node Information Response", // 140 - RFC4620 | |
85 | "Inverse Neighbor Discovery Solicitation", // 141 - RFC3122 | |
86 | "Inverse Neighbor Discovery Advertisement", // 142 - RFC3122 | |
87 | "Version 2 Multicast Listener Report", // 143 - RFC3810 | |
88 | "Home Agent Address Discovery Request", // 144 - RFC3775 | |
89 | "Home Agent Address Discovery Reply", // 145 - RFC3775 | |
90 | "Mobile Prefix Solicitation", // 146 - RFC3775 | |
91 | "Mobile Prefix Advertisement", // 147 - RFC3775 | |
92 | "Certification Path Solicitation", // 148 - RFC3971 | |
93 | "Certification Path Advertisement", // 149 - RFC3971 | |
94 | "ICMP Experimental (150)", // 150 - RFC4065 | |
95 | "Multicast Router Advertisement", // 151 - RFC4286 | |
96 | "Multicast Router Solicitation", // 152 - RFC4286 | |
97 | "Multicast Router Termination", // 153 - [RFC4286] | |
98 | "ICMP 154", | |
99 | "ICMP 155", | |
100 | "ICMP 156", | |
101 | "ICMP 157", | |
102 | "ICMP 158", | |
103 | "ICMP 159", | |
104 | "ICMP 160" | |
105 | }; | |
cc192b50 | 106 | |
b826ffb5 | 107 | Icmp6::Icmp6() : Icmp() |
cc192b50 | 108 | { |
109 | ; // nothing new. | |
110 | } | |
111 | ||
b826ffb5 | 112 | Icmp6::~Icmp6() |
cc192b50 | 113 | { |
114 | Close(); | |
115 | } | |
116 | ||
117 | int | |
b826ffb5 | 118 | Icmp6::Open(void) |
cc192b50 | 119 | { |
120 | icmp_sock = socket(PF_INET6, SOCK_RAW, IPPROTO_ICMPV6); | |
121 | ||
122 | if (icmp_sock < 0) { | |
fa84c01d | 123 | debugs(50, DBG_CRITICAL, HERE << " icmp_sock: " << xstrerror()); |
cc192b50 | 124 | return -1; |
125 | } | |
126 | ||
127 | icmp_ident = getpid() & 0xffff; | |
e0236918 | 128 | debugs(42, DBG_IMPORTANT, "pinger: ICMPv6 socket opened"); |
cc192b50 | 129 | |
130 | return icmp_sock; | |
131 | } | |
132 | ||
133 | /** | |
b826ffb5 | 134 | * Generates an RFC 4443 Icmp6 ECHO Packet and sends into the network. |
cc192b50 | 135 | */ |
136 | void | |
b7ac5457 | 137 | Icmp6::SendEcho(Ip::Address &to, int opcode, const char *payload, int len) |
cc192b50 | 138 | { |
139 | int x; | |
140 | LOCAL_ARRAY(char, pkt, MAX_PKT6_SZ); | |
141 | struct icmp6_hdr *icmp = NULL; | |
142 | icmpEchoData *echo = NULL; | |
143 | struct addrinfo *S = NULL; | |
144 | size_t icmp6_pktsize = 0; | |
145 | ||
146 | memset(pkt, '\0', MAX_PKT6_SZ); | |
147 | icmp = (struct icmp6_hdr *)pkt; | |
148 | ||
149 | /* | |
150 | * cevans - beware signed/unsigned issues in untrusted data from | |
151 | * the network!! | |
152 | */ | |
153 | if (len < 0) { | |
154 | len = 0; | |
155 | } | |
156 | ||
b826ffb5 | 157 | // Construct Icmp6 ECHO header |
cc192b50 | 158 | icmp->icmp6_type = ICMP6_ECHO_REQUEST; |
159 | icmp->icmp6_code = 0; | |
160 | icmp->icmp6_cksum = 0; | |
161 | icmp->icmp6_id = icmp_ident; | |
aec55359 FC |
162 | icmp->icmp6_seq = (unsigned short) icmp_pkts_sent; |
163 | ++icmp_pkts_sent; | |
cc192b50 | 164 | |
165 | icmp6_pktsize = sizeof(struct icmp6_hdr); | |
166 | ||
b826ffb5 | 167 | // Fill Icmp6 ECHO data content |
cc192b50 | 168 | echo = (icmpEchoData *) (pkt + sizeof(icmp6_hdr)); |
169 | echo->opcode = (unsigned char) opcode; | |
c3c6695b | 170 | memcpy(&echo->tv, ¤t_time, sizeof(struct timeval)); |
cc192b50 | 171 | |
172 | icmp6_pktsize += sizeof(struct timeval) + sizeof(char); | |
173 | ||
26ac0430 | 174 | if (payload) { |
cc192b50 | 175 | if (len > MAX_PAYLOAD) |
176 | len = MAX_PAYLOAD; | |
177 | ||
41d00cd3 | 178 | memcpy(echo->payload, payload, len); |
cc192b50 | 179 | |
180 | icmp6_pktsize += len; | |
181 | } | |
182 | ||
f45dd259 | 183 | icmp->icmp6_cksum = CheckSum((unsigned short *) icmp, icmp6_pktsize); |
cc192b50 | 184 | |
185 | to.GetAddrInfo(S); | |
186 | ((sockaddr_in6*)S->ai_addr)->sin6_port = 0; | |
187 | ||
188 | assert(icmp6_pktsize <= MAX_PKT6_SZ); | |
189 | ||
b826ffb5 | 190 | debugs(42, 5, HERE << "Send Icmp6 packet to " << to << "."); |
cc192b50 | 191 | |
192 | x = sendto(icmp_sock, | |
26ac0430 AJ |
193 | (const void *) pkt, |
194 | icmp6_pktsize, | |
195 | 0, | |
196 | S->ai_addr, | |
197 | S->ai_addrlen); | |
cc192b50 | 198 | |
26ac0430 | 199 | if (x < 0) { |
e0236918 | 200 | debugs(42, DBG_IMPORTANT, HERE << "Error sending to ICMPv6 packet to " << to << ". ERR: " << xstrerror()); |
cc192b50 | 201 | } |
202 | debugs(42,9, HERE << "x=" << x); | |
203 | ||
204 | Log(to, 0, NULL, 0, 0); | |
205 | } | |
206 | ||
207 | /** | |
b826ffb5 | 208 | * Reads an RFC 4443 Icmp6 ECHO-REPLY Packet from the network. |
cc192b50 | 209 | */ |
210 | void | |
b826ffb5 | 211 | Icmp6::Recv(void) |
cc192b50 | 212 | { |
213 | int n; | |
214 | struct addrinfo *from = NULL; | |
215 | // struct ip6_hdr *ip = NULL; | |
216 | static char *pkt = NULL; | |
b0365bd9 | 217 | struct icmp6_hdr *icmp6header = NULL; |
cc192b50 | 218 | icmpEchoData *echo = NULL; |
219 | struct timeval now; | |
220 | static pingerReplyData preply; | |
221 | ||
26ac0430 | 222 | if (icmp_sock < 0) { |
fa84c01d | 223 | debugs(42, DBG_CRITICAL, HERE << "dropping ICMPv6 read. No socket!?"); |
cc192b50 | 224 | return; |
225 | } | |
226 | ||
227 | if (pkt == NULL) { | |
228 | pkt = (char *)xmalloc(MAX_PKT6_SZ); | |
229 | } | |
230 | ||
231 | preply.from.InitAddrInfo(from); | |
232 | ||
233 | n = recvfrom(icmp_sock, | |
234 | (void *)pkt, | |
235 | MAX_PKT6_SZ, | |
236 | 0, | |
237 | from->ai_addr, | |
238 | &from->ai_addrlen); | |
239 | ||
240 | preply.from = *from; | |
241 | ||
242 | #if GETTIMEOFDAY_NO_TZP | |
243 | ||
244 | gettimeofday(&now); | |
245 | ||
246 | #else | |
247 | ||
248 | gettimeofday(&now, NULL); | |
249 | ||
250 | #endif | |
251 | ||
252 | debugs(42, 8, HERE << n << " bytes from " << preply.from); | |
253 | ||
254 | // FIXME INET6 : The IPv6 Header (ip6_hdr) is not availble directly >:-( | |
255 | // | |
256 | // TTL still has to come from the IP header somewhere. | |
257 | // still need to strip and process it properly. | |
258 | // probably have to rely on RTT as given by timestamp in data sent and current. | |
26ac0430 AJ |
259 | /* IPv6 Header Structures (linux) |
260 | struct ip6_hdr | |
cc192b50 | 261 | |
26ac0430 AJ |
262 | // fields (via simple define) |
263 | #define ip6_vfc // N.A | |
264 | #define ip6_flow // N/A | |
265 | #define ip6_plen // payload length. | |
266 | #define ip6_nxt // expect to be type 0x3a - ICMPv6 | |
267 | #define ip6_hlim // MAX hops (always 64, but no guarantee) | |
268 | #define ip6_hops // HOPS!!! (can it be true??) | |
cc192b50 | 269 | |
26ac0430 AJ |
270 | ip = (struct ip6_hdr *) pkt; |
271 | pkt += sizeof(ip6_hdr); | |
cc192b50 | 272 | |
fa84c01d | 273 | debugs(42, DBG_CRITICAL, HERE << "ip6_nxt=" << ip->ip6_nxt << |
26ac0430 AJ |
274 | ", ip6_plen=" << ip->ip6_plen << |
275 | ", ip6_hlim=" << ip->ip6_hlim << | |
276 | ", ip6_hops=" << ip->ip6_hops << | |
277 | " ::: 40 == sizef(ip6_hdr) == " << sizeof(ip6_hdr) | |
278 | ); | |
279 | */ | |
cc192b50 | 280 | |
b0365bd9 | 281 | icmp6header = (struct icmp6_hdr *) pkt; |
cc192b50 | 282 | pkt += sizeof(icmp6_hdr); |
283 | ||
b0365bd9 | 284 | if (icmp6header->icmp6_type != ICMP6_ECHO_REPLY) { |
cc192b50 | 285 | |
b0365bd9 | 286 | switch (icmp6header->icmp6_type) { |
26ac0430 AJ |
287 | case 134: |
288 | case 135: | |
289 | case 136: | |
290 | /* ignore Router/Neighbour Advertisements */ | |
cc192b50 | 291 | break; |
292 | ||
26ac0430 | 293 | default: |
b0365bd9 FC |
294 | debugs(42, 8, HERE << preply.from << " said: " << icmp6header->icmp6_type << "/" << (int)icmp6header->icmp6_code << " " << |
295 | ( icmp6header->icmp6_type&0x80 ? icmp6HighPktStr[(int)(icmp6header->icmp6_type&0x7f)] : icmp6LowPktStr[(int)(icmp6header->icmp6_type&0x7f)] ) | |
cc192b50 | 296 | ); |
297 | } | |
298 | return; | |
299 | } | |
300 | ||
b0365bd9 FC |
301 | if (icmp6header->icmp6_id != icmp_ident) { |
302 | debugs(42, 8, HERE << "dropping Icmp6 read. IDENT check failed. ident=='" << icmp_ident << "'=='" << icmp6header->icmp6_id << "'"); | |
cc192b50 | 303 | return; |
304 | } | |
305 | ||
306 | echo = (icmpEchoData *) pkt; | |
307 | ||
308 | preply.opcode = echo->opcode; | |
309 | ||
c3c6695b | 310 | struct timeval tv; |
311 | memcpy(&tv, &echo->tv, sizeof(struct timeval)); | |
312 | preply.rtt = tvSubMsec(tv, now); | |
cc192b50 | 313 | |
26ac0430 AJ |
314 | /* |
315 | * FIXME INET6: Without access to the IPv6-Hops header we must rely on the total RTT | |
316 | * and could caculate the hops from that, but it produces some weird value mappings using ipHops | |
317 | * for now everything is 1 v6 hop away with variant RTT | |
318 | * WANT: preply.hops = ip->ip6_hops; // ipHops(ip->ip_hops); | |
319 | */ | |
cc192b50 | 320 | preply.hops = 1; |
321 | ||
322 | preply.psize = n - /* sizeof(ip6_hdr) - */ sizeof(icmp6_hdr) - (sizeof(icmpEchoData) - MAX_PKT6_SZ); | |
323 | ||
324 | /* Ensure the response packet has safe payload size */ | |
26ac0430 | 325 | if ( preply.psize > (unsigned short) MAX_PKT6_SZ) { |
cc192b50 | 326 | preply.psize = MAX_PKT6_SZ; |
26ac0430 | 327 | } else if ( preply.psize < (unsigned short)0) { |
cc192b50 | 328 | preply.psize = 0; |
329 | } | |
330 | ||
331 | Log(preply.from, | |
b0365bd9 FC |
332 | icmp6header->icmp6_type, |
333 | ( icmp6header->icmp6_type&0x80 ? icmp6HighPktStr[(int)(icmp6header->icmp6_type&0x7f)] : icmp6LowPktStr[(int)(icmp6header->icmp6_type&0x7f)] ), | |
cc192b50 | 334 | preply.rtt, |
335 | preply.hops); | |
336 | ||
337 | /* send results of the lookup back to squid.*/ | |
338 | control.SendResult(preply, (sizeof(pingerReplyData) - PINGER_PAYLOAD_SZ + preply.psize) ); | |
339 | } | |
340 | ||
055421ee | 341 | #endif /* USE_ICMP */ |