print-icmp.c revision 1.9.4.1 1 1.1 christos /*
2 1.1 christos * Copyright (c) 1988, 1989, 1990, 1991, 1993, 1994, 1995, 1996
3 1.1 christos * The Regents of the University of California. All rights reserved.
4 1.1 christos *
5 1.1 christos * Redistribution and use in source and binary forms, with or without
6 1.1 christos * modification, are permitted provided that: (1) source code distributions
7 1.1 christos * retain the above copyright notice and this paragraph in its entirety, (2)
8 1.1 christos * distributions including binary code include the above copyright notice and
9 1.1 christos * this paragraph in its entirety in the documentation or other materials
10 1.1 christos * provided with the distribution, and (3) all advertising materials mentioning
11 1.1 christos * features or use of this software display the following acknowledgement:
12 1.1 christos * ``This product includes software developed by the University of California,
13 1.1 christos * Lawrence Berkeley Laboratory and its contributors.'' Neither the name of
14 1.1 christos * the University nor the names of its contributors may be used to endorse
15 1.1 christos * or promote products derived from this software without specific prior
16 1.1 christos * written permission.
17 1.1 christos * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
18 1.1 christos * WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
19 1.1 christos * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
20 1.1 christos */
21 1.1 christos
22 1.2 christos #include <sys/cdefs.h>
23 1.1 christos #ifndef lint
24 1.9.4.1 martin __RCSID("$NetBSD: print-icmp.c,v 1.9.4.1 2020/04/08 14:04:14 martin Exp $");
25 1.1 christos #endif
26 1.1 christos
27 1.8 spz /* \summary: Internet Control Message Protocol (ICMP) printer */
28 1.8 spz
29 1.1 christos #ifdef HAVE_CONFIG_H
30 1.1 christos #include "config.h"
31 1.1 christos #endif
32 1.1 christos
33 1.7 christos #include <netdissect-stdinc.h>
34 1.1 christos
35 1.1 christos #include <stdio.h>
36 1.1 christos #include <string.h>
37 1.1 christos
38 1.7 christos #include "netdissect.h"
39 1.1 christos #include "addrtoname.h"
40 1.7 christos #include "extract.h"
41 1.1 christos
42 1.1 christos #include "ip.h"
43 1.1 christos #include "udp.h"
44 1.1 christos #include "ipproto.h"
45 1.1 christos #include "mpls.h"
46 1.1 christos
47 1.1 christos /*
48 1.1 christos * Interface Control Message Protocol Definitions.
49 1.1 christos * Per RFC 792, September 1981.
50 1.1 christos */
51 1.1 christos
52 1.1 christos /*
53 1.1 christos * Structure of an icmp header.
54 1.1 christos */
55 1.1 christos struct icmp {
56 1.5 christos uint8_t icmp_type; /* type of message, see below */
57 1.5 christos uint8_t icmp_code; /* type sub code */
58 1.5 christos uint16_t icmp_cksum; /* ones complement cksum of struct */
59 1.1 christos union {
60 1.5 christos uint8_t ih_pptr; /* ICMP_PARAMPROB */
61 1.1 christos struct in_addr ih_gwaddr; /* ICMP_REDIRECT */
62 1.1 christos struct ih_idseq {
63 1.5 christos uint16_t icd_id;
64 1.5 christos uint16_t icd_seq;
65 1.1 christos } ih_idseq;
66 1.5 christos uint32_t ih_void;
67 1.1 christos } icmp_hun;
68 1.1 christos #define icmp_pptr icmp_hun.ih_pptr
69 1.1 christos #define icmp_gwaddr icmp_hun.ih_gwaddr
70 1.1 christos #define icmp_id icmp_hun.ih_idseq.icd_id
71 1.1 christos #define icmp_seq icmp_hun.ih_idseq.icd_seq
72 1.1 christos #define icmp_void icmp_hun.ih_void
73 1.1 christos union {
74 1.1 christos struct id_ts {
75 1.5 christos uint32_t its_otime;
76 1.5 christos uint32_t its_rtime;
77 1.5 christos uint32_t its_ttime;
78 1.1 christos } id_ts;
79 1.1 christos struct id_ip {
80 1.1 christos struct ip idi_ip;
81 1.1 christos /* options and then 64 bits of data */
82 1.1 christos } id_ip;
83 1.5 christos uint32_t id_mask;
84 1.5 christos uint8_t id_data[1];
85 1.1 christos } icmp_dun;
86 1.1 christos #define icmp_otime icmp_dun.id_ts.its_otime
87 1.1 christos #define icmp_rtime icmp_dun.id_ts.its_rtime
88 1.1 christos #define icmp_ttime icmp_dun.id_ts.its_ttime
89 1.1 christos #define icmp_ip icmp_dun.id_ip.idi_ip
90 1.1 christos #define icmp_mask icmp_dun.id_mask
91 1.1 christos #define icmp_data icmp_dun.id_data
92 1.1 christos };
93 1.1 christos
94 1.5 christos #define ICMP_MPLS_EXT_EXTRACT_VERSION(x) (((x)&0xf0)>>4)
95 1.1 christos #define ICMP_MPLS_EXT_VERSION 2
96 1.1 christos
97 1.1 christos /*
98 1.1 christos * Lower bounds on packet lengths for various types.
99 1.1 christos * For the error advice packets must first insure that the
100 1.1 christos * packet is large enought to contain the returned ip header.
101 1.1 christos * Only then can we do the check to see if 64 bits of packet
102 1.1 christos * data have been returned, since we need to check the returned
103 1.1 christos * ip header length.
104 1.1 christos */
105 1.1 christos #define ICMP_MINLEN 8 /* abs minimum */
106 1.1 christos #define ICMP_EXTD_MINLEN (156 - sizeof (struct ip)) /* draft-bonica-internet-icmp-08 */
107 1.5 christos #define ICMP_TSLEN (8 + 3 * sizeof (uint32_t)) /* timestamp */
108 1.1 christos #define ICMP_MASKLEN 12 /* address mask */
109 1.1 christos #define ICMP_ADVLENMIN (8 + sizeof (struct ip) + 8) /* min */
110 1.1 christos #define ICMP_ADVLEN(p) (8 + (IP_HL(&(p)->icmp_ip) << 2) + 8)
111 1.1 christos /* N.B.: must separately check that ip_hl >= 5 */
112 1.1 christos
113 1.1 christos /*
114 1.1 christos * Definition of type and code field values.
115 1.1 christos */
116 1.1 christos #define ICMP_ECHOREPLY 0 /* echo reply */
117 1.1 christos #define ICMP_UNREACH 3 /* dest unreachable, codes: */
118 1.1 christos #define ICMP_UNREACH_NET 0 /* bad net */
119 1.1 christos #define ICMP_UNREACH_HOST 1 /* bad host */
120 1.1 christos #define ICMP_UNREACH_PROTOCOL 2 /* bad protocol */
121 1.1 christos #define ICMP_UNREACH_PORT 3 /* bad port */
122 1.1 christos #define ICMP_UNREACH_NEEDFRAG 4 /* IP_DF caused drop */
123 1.1 christos #define ICMP_UNREACH_SRCFAIL 5 /* src route failed */
124 1.1 christos #define ICMP_UNREACH_NET_UNKNOWN 6 /* unknown net */
125 1.1 christos #define ICMP_UNREACH_HOST_UNKNOWN 7 /* unknown host */
126 1.1 christos #define ICMP_UNREACH_ISOLATED 8 /* src host isolated */
127 1.1 christos #define ICMP_UNREACH_NET_PROHIB 9 /* prohibited access */
128 1.1 christos #define ICMP_UNREACH_HOST_PROHIB 10 /* ditto */
129 1.1 christos #define ICMP_UNREACH_TOSNET 11 /* bad tos for net */
130 1.1 christos #define ICMP_UNREACH_TOSHOST 12 /* bad tos for host */
131 1.1 christos #define ICMP_SOURCEQUENCH 4 /* packet lost, slow down */
132 1.1 christos #define ICMP_REDIRECT 5 /* shorter route, codes: */
133 1.1 christos #define ICMP_REDIRECT_NET 0 /* for network */
134 1.1 christos #define ICMP_REDIRECT_HOST 1 /* for host */
135 1.1 christos #define ICMP_REDIRECT_TOSNET 2 /* for tos and net */
136 1.1 christos #define ICMP_REDIRECT_TOSHOST 3 /* for tos and host */
137 1.1 christos #define ICMP_ECHO 8 /* echo service */
138 1.1 christos #define ICMP_ROUTERADVERT 9 /* router advertisement */
139 1.1 christos #define ICMP_ROUTERSOLICIT 10 /* router solicitation */
140 1.1 christos #define ICMP_TIMXCEED 11 /* time exceeded, code: */
141 1.1 christos #define ICMP_TIMXCEED_INTRANS 0 /* ttl==0 in transit */
142 1.1 christos #define ICMP_TIMXCEED_REASS 1 /* ttl==0 in reass */
143 1.1 christos #define ICMP_PARAMPROB 12 /* ip header bad */
144 1.1 christos #define ICMP_PARAMPROB_OPTABSENT 1 /* req. opt. absent */
145 1.1 christos #define ICMP_TSTAMP 13 /* timestamp request */
146 1.1 christos #define ICMP_TSTAMPREPLY 14 /* timestamp reply */
147 1.1 christos #define ICMP_IREQ 15 /* information request */
148 1.1 christos #define ICMP_IREQREPLY 16 /* information reply */
149 1.1 christos #define ICMP_MASKREQ 17 /* address mask request */
150 1.1 christos #define ICMP_MASKREPLY 18 /* address mask reply */
151 1.1 christos
152 1.1 christos #define ICMP_MAXTYPE 18
153 1.1 christos
154 1.6 christos #define ICMP_ERRTYPE(type) \
155 1.6 christos ((type) == ICMP_UNREACH || (type) == ICMP_SOURCEQUENCH || \
156 1.6 christos (type) == ICMP_REDIRECT || (type) == ICMP_TIMXCEED || \
157 1.6 christos (type) == ICMP_PARAMPROB)
158 1.1 christos #define ICMP_MPLS_EXT_TYPE(type) \
159 1.1 christos ((type) == ICMP_UNREACH || \
160 1.1 christos (type) == ICMP_TIMXCEED || \
161 1.1 christos (type) == ICMP_PARAMPROB)
162 1.1 christos /* rfc1700 */
163 1.1 christos #ifndef ICMP_UNREACH_NET_UNKNOWN
164 1.1 christos #define ICMP_UNREACH_NET_UNKNOWN 6 /* destination net unknown */
165 1.1 christos #endif
166 1.1 christos #ifndef ICMP_UNREACH_HOST_UNKNOWN
167 1.1 christos #define ICMP_UNREACH_HOST_UNKNOWN 7 /* destination host unknown */
168 1.1 christos #endif
169 1.1 christos #ifndef ICMP_UNREACH_ISOLATED
170 1.1 christos #define ICMP_UNREACH_ISOLATED 8 /* source host isolated */
171 1.1 christos #endif
172 1.1 christos #ifndef ICMP_UNREACH_NET_PROHIB
173 1.1 christos #define ICMP_UNREACH_NET_PROHIB 9 /* admin prohibited net */
174 1.1 christos #endif
175 1.1 christos #ifndef ICMP_UNREACH_HOST_PROHIB
176 1.1 christos #define ICMP_UNREACH_HOST_PROHIB 10 /* admin prohibited host */
177 1.1 christos #endif
178 1.1 christos #ifndef ICMP_UNREACH_TOSNET
179 1.1 christos #define ICMP_UNREACH_TOSNET 11 /* tos prohibited net */
180 1.1 christos #endif
181 1.1 christos #ifndef ICMP_UNREACH_TOSHOST
182 1.1 christos #define ICMP_UNREACH_TOSHOST 12 /* tos prohibited host */
183 1.1 christos #endif
184 1.1 christos
185 1.1 christos /* rfc1716 */
186 1.1 christos #ifndef ICMP_UNREACH_FILTER_PROHIB
187 1.1 christos #define ICMP_UNREACH_FILTER_PROHIB 13 /* admin prohibited filter */
188 1.1 christos #endif
189 1.1 christos #ifndef ICMP_UNREACH_HOST_PRECEDENCE
190 1.1 christos #define ICMP_UNREACH_HOST_PRECEDENCE 14 /* host precedence violation */
191 1.1 christos #endif
192 1.1 christos #ifndef ICMP_UNREACH_PRECEDENCE_CUTOFF
193 1.1 christos #define ICMP_UNREACH_PRECEDENCE_CUTOFF 15 /* precedence cutoff */
194 1.1 christos #endif
195 1.1 christos
196 1.1 christos /* Most of the icmp types */
197 1.4 christos static const struct tok icmp2str[] = {
198 1.1 christos { ICMP_ECHOREPLY, "echo reply" },
199 1.1 christos { ICMP_SOURCEQUENCH, "source quench" },
200 1.1 christos { ICMP_ECHO, "echo request" },
201 1.1 christos { ICMP_ROUTERSOLICIT, "router solicitation" },
202 1.1 christos { ICMP_TSTAMP, "time stamp request" },
203 1.1 christos { ICMP_TSTAMPREPLY, "time stamp reply" },
204 1.1 christos { ICMP_IREQ, "information request" },
205 1.1 christos { ICMP_IREQREPLY, "information reply" },
206 1.1 christos { ICMP_MASKREQ, "address mask request" },
207 1.1 christos { 0, NULL }
208 1.1 christos };
209 1.1 christos
210 1.1 christos /* Formats for most of the ICMP_UNREACH codes */
211 1.4 christos static const struct tok unreach2str[] = {
212 1.1 christos { ICMP_UNREACH_NET, "net %s unreachable" },
213 1.1 christos { ICMP_UNREACH_HOST, "host %s unreachable" },
214 1.1 christos { ICMP_UNREACH_SRCFAIL,
215 1.1 christos "%s unreachable - source route failed" },
216 1.1 christos { ICMP_UNREACH_NET_UNKNOWN, "net %s unreachable - unknown" },
217 1.1 christos { ICMP_UNREACH_HOST_UNKNOWN, "host %s unreachable - unknown" },
218 1.1 christos { ICMP_UNREACH_ISOLATED,
219 1.1 christos "%s unreachable - source host isolated" },
220 1.1 christos { ICMP_UNREACH_NET_PROHIB,
221 1.1 christos "net %s unreachable - admin prohibited" },
222 1.1 christos { ICMP_UNREACH_HOST_PROHIB,
223 1.1 christos "host %s unreachable - admin prohibited" },
224 1.1 christos { ICMP_UNREACH_TOSNET,
225 1.1 christos "net %s unreachable - tos prohibited" },
226 1.1 christos { ICMP_UNREACH_TOSHOST,
227 1.1 christos "host %s unreachable - tos prohibited" },
228 1.1 christos { ICMP_UNREACH_FILTER_PROHIB,
229 1.1 christos "host %s unreachable - admin prohibited filter" },
230 1.1 christos { ICMP_UNREACH_HOST_PRECEDENCE,
231 1.1 christos "host %s unreachable - host precedence violation" },
232 1.1 christos { ICMP_UNREACH_PRECEDENCE_CUTOFF,
233 1.1 christos "host %s unreachable - precedence cutoff" },
234 1.1 christos { 0, NULL }
235 1.1 christos };
236 1.1 christos
237 1.1 christos /* Formats for the ICMP_REDIRECT codes */
238 1.4 christos static const struct tok type2str[] = {
239 1.1 christos { ICMP_REDIRECT_NET, "redirect %s to net %s" },
240 1.1 christos { ICMP_REDIRECT_HOST, "redirect %s to host %s" },
241 1.1 christos { ICMP_REDIRECT_TOSNET, "redirect-tos %s to net %s" },
242 1.1 christos { ICMP_REDIRECT_TOSHOST, "redirect-tos %s to host %s" },
243 1.1 christos { 0, NULL }
244 1.1 christos };
245 1.1 christos
246 1.1 christos /* rfc1191 */
247 1.1 christos struct mtu_discovery {
248 1.5 christos uint16_t unused;
249 1.5 christos uint16_t nexthopmtu;
250 1.1 christos };
251 1.1 christos
252 1.1 christos /* rfc1256 */
253 1.1 christos struct ih_rdiscovery {
254 1.5 christos uint8_t ird_addrnum;
255 1.5 christos uint8_t ird_addrsiz;
256 1.5 christos uint16_t ird_lifetime;
257 1.1 christos };
258 1.1 christos
259 1.1 christos struct id_rdiscovery {
260 1.5 christos uint32_t ird_addr;
261 1.5 christos uint32_t ird_pref;
262 1.1 christos };
263 1.1 christos
264 1.1 christos /*
265 1.1 christos * draft-bonica-internet-icmp-08
266 1.1 christos *
267 1.1 christos * The Destination Unreachable, Time Exceeded
268 1.1 christos * and Parameter Problem messages are slighly changed as per
269 1.1 christos * the above draft. A new Length field gets added to give
270 1.1 christos * the caller an idea about the length of the piggypacked
271 1.1 christos * IP packet before the MPLS extension header starts.
272 1.1 christos *
273 1.1 christos * The Length field represents length of the padded "original datagram"
274 1.1 christos * field measured in 32-bit words.
275 1.1 christos *
276 1.1 christos * 0 1 2 3
277 1.1 christos * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
278 1.1 christos * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
279 1.1 christos * | Type | Code | Checksum |
280 1.1 christos * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
281 1.1 christos * | unused | Length | unused |
282 1.1 christos * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
283 1.1 christos * | Internet Header + leading octets of original datagram |
284 1.1 christos * | |
285 1.1 christos * | // |
286 1.1 christos * | |
287 1.1 christos * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
288 1.1 christos */
289 1.1 christos
290 1.1 christos struct icmp_ext_t {
291 1.5 christos uint8_t icmp_type;
292 1.5 christos uint8_t icmp_code;
293 1.5 christos uint8_t icmp_checksum[2];
294 1.5 christos uint8_t icmp_reserved;
295 1.5 christos uint8_t icmp_length;
296 1.5 christos uint8_t icmp_reserved2[2];
297 1.5 christos uint8_t icmp_ext_legacy_header[128]; /* extension header starts 128 bytes after ICMP header */
298 1.5 christos uint8_t icmp_ext_version_res[2];
299 1.5 christos uint8_t icmp_ext_checksum[2];
300 1.5 christos uint8_t icmp_ext_data[1];
301 1.1 christos };
302 1.1 christos
303 1.1 christos struct icmp_mpls_ext_object_header_t {
304 1.5 christos uint8_t length[2];
305 1.5 christos uint8_t class_num;
306 1.5 christos uint8_t ctype;
307 1.1 christos };
308 1.1 christos
309 1.1 christos static const struct tok icmp_mpls_ext_obj_values[] = {
310 1.1 christos { 1, "MPLS Stack Entry" },
311 1.1 christos { 2, "Extended Payload" },
312 1.1 christos { 0, NULL}
313 1.1 christos };
314 1.1 christos
315 1.1 christos /* prototypes */
316 1.1 christos const char *icmp_tstamp_print(u_int);
317 1.1 christos
318 1.1 christos /* print the milliseconds since midnight UTC */
319 1.1 christos const char *
320 1.6 christos icmp_tstamp_print(u_int tstamp)
321 1.6 christos {
322 1.1 christos u_int msec,sec,min,hrs;
323 1.1 christos
324 1.1 christos static char buf[64];
325 1.1 christos
326 1.1 christos msec = tstamp % 1000;
327 1.1 christos sec = tstamp / 1000;
328 1.1 christos min = sec / 60; sec -= min * 60;
329 1.1 christos hrs = min / 60; min -= hrs * 60;
330 1.1 christos snprintf(buf, sizeof(buf), "%02u:%02u:%02u.%03u",hrs,min,sec,msec);
331 1.1 christos return buf;
332 1.1 christos }
333 1.5 christos
334 1.9.4.1 martin UNALIGNED_OK
335 1.1 christos void
336 1.5 christos icmp_print(netdissect_options *ndo, const u_char *bp, u_int plen, const u_char *bp2,
337 1.5 christos int fragmented)
338 1.1 christos {
339 1.1 christos char *cp;
340 1.1 christos const struct icmp *dp;
341 1.1 christos const struct icmp_ext_t *ext_dp;
342 1.1 christos const struct ip *ip;
343 1.1 christos const char *str, *fmt;
344 1.1 christos const struct ip *oip;
345 1.1 christos const struct udphdr *ouh;
346 1.5 christos const uint8_t *obj_tptr;
347 1.5 christos uint32_t raw_label;
348 1.1 christos const u_char *snapend_save;
349 1.1 christos const struct icmp_mpls_ext_object_header_t *icmp_mpls_ext_object_header;
350 1.1 christos u_int hlen, dport, mtu, obj_tlen, obj_class_num, obj_ctype;
351 1.1 christos char buf[MAXHOSTNAMELEN + 100];
352 1.3 christos struct cksum_vec vec[1];
353 1.1 christos
354 1.7 christos dp = (const struct icmp *)bp;
355 1.7 christos ext_dp = (const struct icmp_ext_t *)bp;
356 1.7 christos ip = (const struct ip *)bp2;
357 1.1 christos str = buf;
358 1.1 christos
359 1.5 christos ND_TCHECK(dp->icmp_code);
360 1.1 christos switch (dp->icmp_type) {
361 1.1 christos
362 1.1 christos case ICMP_ECHO:
363 1.1 christos case ICMP_ECHOREPLY:
364 1.5 christos ND_TCHECK(dp->icmp_seq);
365 1.1 christos (void)snprintf(buf, sizeof(buf), "echo %s, id %u, seq %u",
366 1.1 christos dp->icmp_type == ICMP_ECHO ?
367 1.1 christos "request" : "reply",
368 1.1 christos EXTRACT_16BITS(&dp->icmp_id),
369 1.1 christos EXTRACT_16BITS(&dp->icmp_seq));
370 1.1 christos break;
371 1.1 christos
372 1.1 christos case ICMP_UNREACH:
373 1.5 christos ND_TCHECK(dp->icmp_ip.ip_dst);
374 1.1 christos switch (dp->icmp_code) {
375 1.1 christos
376 1.1 christos case ICMP_UNREACH_PROTOCOL:
377 1.5 christos ND_TCHECK(dp->icmp_ip.ip_p);
378 1.1 christos (void)snprintf(buf, sizeof(buf),
379 1.1 christos "%s protocol %d unreachable",
380 1.5 christos ipaddr_string(ndo, &dp->icmp_ip.ip_dst),
381 1.1 christos dp->icmp_ip.ip_p);
382 1.1 christos break;
383 1.1 christos
384 1.1 christos case ICMP_UNREACH_PORT:
385 1.5 christos ND_TCHECK(dp->icmp_ip.ip_p);
386 1.1 christos oip = &dp->icmp_ip;
387 1.1 christos hlen = IP_HL(oip) * 4;
388 1.7 christos ouh = (const struct udphdr *)(((const u_char *)oip) + hlen);
389 1.5 christos ND_TCHECK(ouh->uh_dport);
390 1.1 christos dport = EXTRACT_16BITS(&ouh->uh_dport);
391 1.1 christos switch (oip->ip_p) {
392 1.1 christos
393 1.1 christos case IPPROTO_TCP:
394 1.1 christos (void)snprintf(buf, sizeof(buf),
395 1.1 christos "%s tcp port %s unreachable",
396 1.5 christos ipaddr_string(ndo, &oip->ip_dst),
397 1.7 christos tcpport_string(ndo, dport));
398 1.1 christos break;
399 1.1 christos
400 1.1 christos case IPPROTO_UDP:
401 1.1 christos (void)snprintf(buf, sizeof(buf),
402 1.1 christos "%s udp port %s unreachable",
403 1.5 christos ipaddr_string(ndo, &oip->ip_dst),
404 1.7 christos udpport_string(ndo, dport));
405 1.1 christos break;
406 1.1 christos
407 1.1 christos default:
408 1.1 christos (void)snprintf(buf, sizeof(buf),
409 1.1 christos "%s protocol %d port %d unreachable",
410 1.5 christos ipaddr_string(ndo, &oip->ip_dst),
411 1.1 christos oip->ip_p, dport);
412 1.1 christos break;
413 1.1 christos }
414 1.1 christos break;
415 1.1 christos
416 1.1 christos case ICMP_UNREACH_NEEDFRAG:
417 1.1 christos {
418 1.1 christos register const struct mtu_discovery *mp;
419 1.7 christos mp = (const struct mtu_discovery *)(const u_char *)&dp->icmp_void;
420 1.1 christos mtu = EXTRACT_16BITS(&mp->nexthopmtu);
421 1.1 christos if (mtu) {
422 1.1 christos (void)snprintf(buf, sizeof(buf),
423 1.1 christos "%s unreachable - need to frag (mtu %d)",
424 1.5 christos ipaddr_string(ndo, &dp->icmp_ip.ip_dst), mtu);
425 1.1 christos } else {
426 1.1 christos (void)snprintf(buf, sizeof(buf),
427 1.1 christos "%s unreachable - need to frag",
428 1.5 christos ipaddr_string(ndo, &dp->icmp_ip.ip_dst));
429 1.1 christos }
430 1.1 christos }
431 1.1 christos break;
432 1.1 christos
433 1.1 christos default:
434 1.1 christos fmt = tok2str(unreach2str, "#%d %%s unreachable",
435 1.1 christos dp->icmp_code);
436 1.1 christos (void)snprintf(buf, sizeof(buf), fmt,
437 1.5 christos ipaddr_string(ndo, &dp->icmp_ip.ip_dst));
438 1.1 christos break;
439 1.1 christos }
440 1.1 christos break;
441 1.1 christos
442 1.1 christos case ICMP_REDIRECT:
443 1.5 christos ND_TCHECK(dp->icmp_ip.ip_dst);
444 1.1 christos fmt = tok2str(type2str, "redirect-#%d %%s to net %%s",
445 1.1 christos dp->icmp_code);
446 1.1 christos (void)snprintf(buf, sizeof(buf), fmt,
447 1.5 christos ipaddr_string(ndo, &dp->icmp_ip.ip_dst),
448 1.5 christos ipaddr_string(ndo, &dp->icmp_gwaddr));
449 1.1 christos break;
450 1.1 christos
451 1.1 christos case ICMP_ROUTERADVERT:
452 1.1 christos {
453 1.1 christos register const struct ih_rdiscovery *ihp;
454 1.1 christos register const struct id_rdiscovery *idp;
455 1.1 christos u_int lifetime, num, size;
456 1.1 christos
457 1.1 christos (void)snprintf(buf, sizeof(buf), "router advertisement");
458 1.1 christos cp = buf + strlen(buf);
459 1.1 christos
460 1.7 christos ihp = (const struct ih_rdiscovery *)&dp->icmp_void;
461 1.5 christos ND_TCHECK(*ihp);
462 1.1 christos (void)strncpy(cp, " lifetime ", sizeof(buf) - (cp - buf));
463 1.1 christos cp = buf + strlen(buf);
464 1.1 christos lifetime = EXTRACT_16BITS(&ihp->ird_lifetime);
465 1.1 christos if (lifetime < 60) {
466 1.1 christos (void)snprintf(cp, sizeof(buf) - (cp - buf), "%u",
467 1.1 christos lifetime);
468 1.1 christos } else if (lifetime < 60 * 60) {
469 1.1 christos (void)snprintf(cp, sizeof(buf) - (cp - buf), "%u:%02u",
470 1.1 christos lifetime / 60, lifetime % 60);
471 1.1 christos } else {
472 1.1 christos (void)snprintf(cp, sizeof(buf) - (cp - buf),
473 1.1 christos "%u:%02u:%02u",
474 1.1 christos lifetime / 3600,
475 1.1 christos (lifetime % 3600) / 60,
476 1.1 christos lifetime % 60);
477 1.1 christos }
478 1.1 christos cp = buf + strlen(buf);
479 1.1 christos
480 1.1 christos num = ihp->ird_addrnum;
481 1.1 christos (void)snprintf(cp, sizeof(buf) - (cp - buf), " %d:", num);
482 1.1 christos cp = buf + strlen(buf);
483 1.1 christos
484 1.1 christos size = ihp->ird_addrsiz;
485 1.1 christos if (size != 2) {
486 1.1 christos (void)snprintf(cp, sizeof(buf) - (cp - buf),
487 1.1 christos " [size %d]", size);
488 1.1 christos break;
489 1.1 christos }
490 1.7 christos idp = (const struct id_rdiscovery *)&dp->icmp_data;
491 1.1 christos while (num-- > 0) {
492 1.5 christos ND_TCHECK(*idp);
493 1.1 christos (void)snprintf(cp, sizeof(buf) - (cp - buf), " {%s %u}",
494 1.5 christos ipaddr_string(ndo, &idp->ird_addr),
495 1.1 christos EXTRACT_32BITS(&idp->ird_pref));
496 1.1 christos cp = buf + strlen(buf);
497 1.1 christos ++idp;
498 1.1 christos }
499 1.1 christos }
500 1.1 christos break;
501 1.1 christos
502 1.1 christos case ICMP_TIMXCEED:
503 1.5 christos ND_TCHECK(dp->icmp_ip.ip_dst);
504 1.1 christos switch (dp->icmp_code) {
505 1.1 christos
506 1.1 christos case ICMP_TIMXCEED_INTRANS:
507 1.1 christos str = "time exceeded in-transit";
508 1.1 christos break;
509 1.1 christos
510 1.1 christos case ICMP_TIMXCEED_REASS:
511 1.1 christos str = "ip reassembly time exceeded";
512 1.1 christos break;
513 1.1 christos
514 1.1 christos default:
515 1.1 christos (void)snprintf(buf, sizeof(buf), "time exceeded-#%d",
516 1.1 christos dp->icmp_code);
517 1.1 christos break;
518 1.1 christos }
519 1.1 christos break;
520 1.1 christos
521 1.1 christos case ICMP_PARAMPROB:
522 1.1 christos if (dp->icmp_code)
523 1.1 christos (void)snprintf(buf, sizeof(buf),
524 1.1 christos "parameter problem - code %d", dp->icmp_code);
525 1.1 christos else {
526 1.5 christos ND_TCHECK(dp->icmp_pptr);
527 1.1 christos (void)snprintf(buf, sizeof(buf),
528 1.1 christos "parameter problem - octet %d", dp->icmp_pptr);
529 1.1 christos }
530 1.1 christos break;
531 1.1 christos
532 1.1 christos case ICMP_MASKREPLY:
533 1.5 christos ND_TCHECK(dp->icmp_mask);
534 1.1 christos (void)snprintf(buf, sizeof(buf), "address mask is 0x%08x",
535 1.1 christos EXTRACT_32BITS(&dp->icmp_mask));
536 1.1 christos break;
537 1.1 christos
538 1.1 christos case ICMP_TSTAMP:
539 1.5 christos ND_TCHECK(dp->icmp_seq);
540 1.1 christos (void)snprintf(buf, sizeof(buf),
541 1.1 christos "time stamp query id %u seq %u",
542 1.1 christos EXTRACT_16BITS(&dp->icmp_id),
543 1.1 christos EXTRACT_16BITS(&dp->icmp_seq));
544 1.1 christos break;
545 1.1 christos
546 1.1 christos case ICMP_TSTAMPREPLY:
547 1.5 christos ND_TCHECK(dp->icmp_ttime);
548 1.1 christos (void)snprintf(buf, sizeof(buf),
549 1.1 christos "time stamp reply id %u seq %u: org %s",
550 1.1 christos EXTRACT_16BITS(&dp->icmp_id),
551 1.1 christos EXTRACT_16BITS(&dp->icmp_seq),
552 1.1 christos icmp_tstamp_print(EXTRACT_32BITS(&dp->icmp_otime)));
553 1.1 christos
554 1.1 christos (void)snprintf(buf+strlen(buf),sizeof(buf)-strlen(buf),", recv %s",
555 1.1 christos icmp_tstamp_print(EXTRACT_32BITS(&dp->icmp_rtime)));
556 1.1 christos (void)snprintf(buf+strlen(buf),sizeof(buf)-strlen(buf),", xmit %s",
557 1.1 christos icmp_tstamp_print(EXTRACT_32BITS(&dp->icmp_ttime)));
558 1.1 christos break;
559 1.1 christos
560 1.1 christos default:
561 1.1 christos str = tok2str(icmp2str, "type-#%d", dp->icmp_type);
562 1.1 christos break;
563 1.1 christos }
564 1.5 christos ND_PRINT((ndo, "ICMP %s, length %u", str, plen));
565 1.5 christos if (ndo->ndo_vflag && !fragmented) { /* don't attempt checksumming if this is a frag */
566 1.5 christos uint16_t sum, icmp_sum;
567 1.7 christos
568 1.5 christos if (ND_TTEST2(*bp, plen)) {
569 1.7 christos vec[0].ptr = (const uint8_t *)(const void *)dp;
570 1.3 christos vec[0].len = plen;
571 1.3 christos sum = in_cksum(vec, 1);
572 1.1 christos if (sum != 0) {
573 1.1 christos icmp_sum = EXTRACT_16BITS(&dp->icmp_cksum);
574 1.5 christos ND_PRINT((ndo, " (wrong icmp cksum %x (->%x)!)",
575 1.1 christos icmp_sum,
576 1.5 christos in_cksum_shouldbe(icmp_sum, sum)));
577 1.1 christos }
578 1.1 christos }
579 1.1 christos }
580 1.1 christos
581 1.1 christos /*
582 1.1 christos * print the remnants of the IP packet.
583 1.1 christos * save the snaplength as this may get overidden in the IP printer.
584 1.1 christos */
585 1.6 christos if (ndo->ndo_vflag >= 1 && ICMP_ERRTYPE(dp->icmp_type)) {
586 1.1 christos bp += 8;
587 1.5 christos ND_PRINT((ndo, "\n\t"));
588 1.7 christos ip = (const struct ip *)bp;
589 1.5 christos ndo->ndo_snaplen = ndo->ndo_snapend - bp;
590 1.5 christos snapend_save = ndo->ndo_snapend;
591 1.9 christos ND_TCHECK_16BITS(&ip->ip_len);
592 1.5 christos ip_print(ndo, bp, EXTRACT_16BITS(&ip->ip_len));
593 1.5 christos ndo->ndo_snapend = snapend_save;
594 1.1 christos }
595 1.1 christos
596 1.1 christos /*
597 1.1 christos * Attempt to decode the MPLS extensions only for some ICMP types.
598 1.1 christos */
599 1.5 christos if (ndo->ndo_vflag >= 1 && plen > ICMP_EXTD_MINLEN && ICMP_MPLS_EXT_TYPE(dp->icmp_type)) {
600 1.1 christos
601 1.5 christos ND_TCHECK(*ext_dp);
602 1.1 christos
603 1.1 christos /*
604 1.1 christos * Check first if the mpls extension header shows a non-zero length.
605 1.1 christos * If the length field is not set then silently verify the checksum
606 1.1 christos * to check if an extension header is present. This is expedient,
607 1.1 christos * however not all implementations set the length field proper.
608 1.1 christos */
609 1.9 christos if (!ext_dp->icmp_length &&
610 1.9 christos ND_TTEST2(ext_dp->icmp_ext_version_res, plen - ICMP_EXTD_MINLEN)) {
611 1.7 christos vec[0].ptr = (const uint8_t *)(const void *)&ext_dp->icmp_ext_version_res;
612 1.3 christos vec[0].len = plen - ICMP_EXTD_MINLEN;
613 1.3 christos if (in_cksum(vec, 1)) {
614 1.3 christos return;
615 1.3 christos }
616 1.1 christos }
617 1.1 christos
618 1.5 christos ND_PRINT((ndo, "\n\tMPLS extension v%u",
619 1.5 christos ICMP_MPLS_EXT_EXTRACT_VERSION(*(ext_dp->icmp_ext_version_res))));
620 1.5 christos
621 1.1 christos /*
622 1.1 christos * Sanity checking of the header.
623 1.1 christos */
624 1.1 christos if (ICMP_MPLS_EXT_EXTRACT_VERSION(*(ext_dp->icmp_ext_version_res)) !=
625 1.1 christos ICMP_MPLS_EXT_VERSION) {
626 1.5 christos ND_PRINT((ndo, " packet not supported"));
627 1.1 christos return;
628 1.1 christos }
629 1.1 christos
630 1.1 christos hlen = plen - ICMP_EXTD_MINLEN;
631 1.9 christos if (ND_TTEST2(ext_dp->icmp_ext_version_res, hlen)) {
632 1.9 christos vec[0].ptr = (const uint8_t *)(const void *)&ext_dp->icmp_ext_version_res;
633 1.9 christos vec[0].len = hlen;
634 1.9 christos ND_PRINT((ndo, ", checksum 0x%04x (%scorrect), length %u",
635 1.9 christos EXTRACT_16BITS(ext_dp->icmp_ext_checksum),
636 1.9 christos in_cksum(vec, 1) ? "in" : "",
637 1.9 christos hlen));
638 1.9 christos }
639 1.1 christos
640 1.1 christos hlen -= 4; /* subtract common header size */
641 1.7 christos obj_tptr = (const uint8_t *)ext_dp->icmp_ext_data;
642 1.1 christos
643 1.1 christos while (hlen > sizeof(struct icmp_mpls_ext_object_header_t)) {
644 1.1 christos
645 1.7 christos icmp_mpls_ext_object_header = (const struct icmp_mpls_ext_object_header_t *)obj_tptr;
646 1.5 christos ND_TCHECK(*icmp_mpls_ext_object_header);
647 1.1 christos obj_tlen = EXTRACT_16BITS(icmp_mpls_ext_object_header->length);
648 1.1 christos obj_class_num = icmp_mpls_ext_object_header->class_num;
649 1.1 christos obj_ctype = icmp_mpls_ext_object_header->ctype;
650 1.1 christos obj_tptr += sizeof(struct icmp_mpls_ext_object_header_t);
651 1.1 christos
652 1.5 christos ND_PRINT((ndo, "\n\t %s Object (%u), Class-Type: %u, length %u",
653 1.1 christos tok2str(icmp_mpls_ext_obj_values,"unknown",obj_class_num),
654 1.1 christos obj_class_num,
655 1.1 christos obj_ctype,
656 1.5 christos obj_tlen));
657 1.1 christos
658 1.1 christos hlen-=sizeof(struct icmp_mpls_ext_object_header_t); /* length field includes tlv header */
659 1.1 christos
660 1.5 christos /* infinite loop protection */
661 1.1 christos if ((obj_class_num == 0) ||
662 1.1 christos (obj_tlen < sizeof(struct icmp_mpls_ext_object_header_t))) {
663 1.1 christos return;
664 1.1 christos }
665 1.1 christos obj_tlen-=sizeof(struct icmp_mpls_ext_object_header_t);
666 1.1 christos
667 1.1 christos switch (obj_class_num) {
668 1.1 christos case 1:
669 1.1 christos switch(obj_ctype) {
670 1.1 christos case 1:
671 1.5 christos ND_TCHECK2(*obj_tptr, 4);
672 1.1 christos raw_label = EXTRACT_32BITS(obj_tptr);
673 1.5 christos ND_PRINT((ndo, "\n\t label %u, exp %u", MPLS_LABEL(raw_label), MPLS_EXP(raw_label)));
674 1.1 christos if (MPLS_STACK(raw_label))
675 1.5 christos ND_PRINT((ndo, ", [S]"));
676 1.5 christos ND_PRINT((ndo, ", ttl %u", MPLS_TTL(raw_label)));
677 1.1 christos break;
678 1.1 christos default:
679 1.5 christos print_unknown_data(ndo, obj_tptr, "\n\t ", obj_tlen);
680 1.1 christos }
681 1.1 christos break;
682 1.1 christos
683 1.1 christos /*
684 1.1 christos * FIXME those are the defined objects that lack a decoder
685 1.1 christos * you are welcome to contribute code ;-)
686 1.1 christos */
687 1.1 christos case 2:
688 1.1 christos default:
689 1.5 christos print_unknown_data(ndo, obj_tptr, "\n\t ", obj_tlen);
690 1.1 christos break;
691 1.1 christos }
692 1.1 christos if (hlen < obj_tlen)
693 1.1 christos break;
694 1.1 christos hlen -= obj_tlen;
695 1.1 christos obj_tptr += obj_tlen;
696 1.1 christos }
697 1.1 christos }
698 1.1 christos
699 1.1 christos return;
700 1.1 christos trunc:
701 1.5 christos ND_PRINT((ndo, "[|icmp]"));
702 1.1 christos }
703 1.5 christos /*
704 1.5 christos * Local Variables:
705 1.5 christos * c-style: whitesmith
706 1.5 christos * c-basic-offset: 8
707 1.5 christos * End:
708 1.5 christos */
709