![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
diff --git a/plugins/check_tcp.c b/plugins/check_tcp.c
index bef0e752c788cfb5148faca49ddd7d8c90fd2ca1..1057fdc66889f052c22e8781a7ba9a390696d66c 100644 (file)
--- a/plugins/check_tcp.c
+++ b/plugins/check_tcp.c
-/******************************************************************************
- *
- * This file is part of the Nagios Plugins.
- *
- * Copyright (c) 1999 Ethan Galstad <nagios@nagios.org>
- *
- * The Nagios Plugins are free software; you can redistribute them
- * and/or modify them under the terms of the GNU General Public
- * License as published by the Free Software Foundation; either
- * version 2 of the License, or (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful, but
- * WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
- * General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with this program; if not, write to the Free Software
- * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
- *
- * $Id$
- *
- *****************************************************************************/
-
-#define PROGRAM check_tcp
-#define DESCRIPTION "Check a TCP port"
-#define AUTHOR "Ethan Galstad"
-#define EMAIL "nagios@nagios.org"
-#define COPYRIGHTDATE "1999"
+/*****************************************************************************
+*
+* This program is free software; you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation; either version 2 of the License, or
+* (at your option) any later version.
+*
+* This program is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+* GNU General Public License for more details.
+*
+* You should have received a copy of the GNU General Public License
+* along with this program; if not, write to the Free Software
+* Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+*
+*****************************************************************************/
+
+/* progname changes depending on symlink called */
+char *progname = "check_tcp";
+const char *revision = "$Revision$";
+const char *copyright = "2002-2003";
+const char *authors = "Nagios Plugin Development Team";
+const char *email = "nagiosplug-devel@lists.sourceforge.net";
+
+const char *summary = "\
+This plugin tests %s connections with the specified host.\n";
+
+const char *option_summary = "\
+-H host -p port [-w warn_time] [-c crit_time] [-s send]\n\
+ [-e expect] [-W wait] [-t to_sec] [-r refuse_state] [-v]\n";
+
+const char *options = "\
+ -H, --hostname=ADDRESS\n\
+ Host name argument for servers using host headers (use numeric\n\
+ address if possible to bypass DNS lookup).\n\
+ -p, --port=INTEGER\n\
+ Port number\n\
+ -s, --send=STRING\n\
+ String to send to the server\n\
+ -e, --expect=STRING\n\
+ String to expect in server response\n\
+ -W, --wait=INTEGER\n\
+ Seconds to wait between sending string and polling for response\n\
+ -w, --warning=DOUBLE\n\
+ Response time to result in warning status (seconds)\n\
+ -c, --critical=DOUBLE\n\
+ Response time to result in critical status (seconds)\n\
+ -t, --timeout=INTEGER\n\
+ Seconds before connection times out (default: %d)\n\
+ -r, --refuse=ok|warn|crit\n\
+ Accept tcp refusals with states ok, warn, crit (default: crit)\n\
+ -v\n\
+ Show details for command-line debugging (do not use with nagios server)\n";
+
+const char *standard_options = "\
+ -h, --help\n\
+ Print detailed help screen\n\
+ -V, --version\n\
+ Print version information\n\n";
#include "config.h"
#include "common.h"
#include "utils.h"
#ifdef HAVE_SSL_H
-#include <rsa.h>
-#include <crypto.h>
-#include <x509.h>
-#include <pem.h>
-#include <ssl.h>
-#include <err.h>
-#endif
-
-#ifdef HAVE_OPENSSL_SSL_H
-#include <openssl/rsa.h>
-#include <openssl/crypto.h>
-#include <openssl/x509.h>
-#include <openssl/pem.h>
-#include <openssl/ssl.h>
-#include <openssl/err.h>
+# include <rsa.h>
+# include <crypto.h>
+# include <x509.h>
+# include <pem.h>
+# include <ssl.h>
+# include <err.h>
+#else
+# ifdef HAVE_OPENSSL_SSL_H
+# include <openssl/rsa.h>
+# include <openssl/crypto.h>
+# include <openssl/x509.h>
+# include <openssl/pem.h>
+# include <openssl/ssl.h>
+# include <openssl/err.h>
+# endif
#endif
#ifdef HAVE_SSL
int connect_SSL (void);
#endif
-#define TCP_PROTOCOL 1
-#define UDP_PROTOCOL 2
+enum {
+ TCP_PROTOCOL = 1,
+ UDP_PROTOCOL = 2,
+ MAXBUF = 1024
+};
int process_arguments (int, char **);
void print_usage (void);
void print_help (void);
+int my_recv (void);
-char *PROGNAME = NULL;
char *SERVICE = NULL;
char *SEND = NULL;
char *EXPECT = NULL;
char **crit_codes = NULL;
int crit_codes_count = 0;
int delay = 0;
-int warning_time = 0;
+double warning_time = 0;
int check_warning_time = FALSE;
-int critical_time = 0;
+double critical_time = 0;
int check_critical_time = FALSE;
+double elapsed_time = 0;
int verbose = FALSE;
int use_ssl = FALSE;
-int sd;
+int sd = 0;
+char *buffer = "";
int
main (int argc, char **argv)
{
int result;
int i;
- char buffer[MAX_INPUT_BUFFER] = "";
- char *status = NULL;
- char *output = NULL;
- char *ptr = NULL;
+ char *status = "";
+ struct timeval tv;
if (strstr (argv[0], "check_udp")) {
- PROGNAME = strscpy (PROGNAME, "check_udp");
- SERVICE = strscpy (SERVICE, "UDP");
+ progname = strdup ("check_udp");
+ SERVICE = strdup ("UDP");
SEND = NULL;
EXPECT = NULL;
QUIT = NULL;
PORT = 0;
}
else if (strstr (argv[0], "check_tcp")) {
- PROGNAME = strscpy (PROGNAME, "check_tcp");
- SERVICE = strscpy (SERVICE, "TCP");
+ progname = strdup ("check_tcp");
+ SERVICE = strdup ("TCP");
SEND = NULL;
EXPECT = NULL;
QUIT = NULL;
PORT = 0;
}
else if (strstr (argv[0], "check_ftp")) {
- PROGNAME = strscpy (PROGNAME, "check_ftp");
- SERVICE = strscpy (SERVICE, "FTP");
+ progname = strdup ("check_ftp");
+ SERVICE = strdup ("FTP");
SEND = NULL;
- EXPECT = strscpy (EXPECT, "220");
- QUIT = strscpy (QUIT, "QUIT\r\n");
+ EXPECT = strdup ("220");
+ QUIT = strdup ("QUIT\r\n");
PROTOCOL = TCP_PROTOCOL;
PORT = 21;
}
else if (strstr (argv[0], "check_smtp")) {
- PROGNAME = strscpy (PROGNAME, "check_smtp");
- SERVICE = strscpy (SERVICE, "SMTP");
+ progname = strdup ("check_smtp");
+ SERVICE = strdup ("SMTP");
SEND = NULL;
- EXPECT = strscpy (EXPECT, "220");
- QUIT = strscpy (QUIT, "QUIT\r\n");
+ EXPECT = strdup ("220");
+ QUIT = strdup ("QUIT\r\n");
PROTOCOL = TCP_PROTOCOL;
PORT = 25;
}
else if (strstr (argv[0], "check_pop")) {
- PROGNAME = strscpy (PROGNAME, "check_pop");
- SERVICE = strscpy (SERVICE, "POP");
+ progname = strdup ("check_pop");
+ SERVICE = strdup ("POP");
SEND = NULL;
- EXPECT = strscpy (EXPECT, "110");
- QUIT = strscpy (QUIT, "QUIT\r\n");
+ EXPECT = strdup ("+OK");
+ QUIT = strdup ("QUIT\r\n");
PROTOCOL = TCP_PROTOCOL;
PORT = 110;
}
else if (strstr (argv[0], "check_imap")) {
- PROGNAME = strscpy (PROGNAME, "check_imap");
- SERVICE = strscpy (SERVICE, "IMAP");
+ progname = strdup ("check_imap");
+ SERVICE = strdup ("IMAP");
SEND = NULL;
- EXPECT = strscpy (EXPECT, "* OK");
- QUIT = strscpy (QUIT, "a1 LOGOUT\r\n");
+ EXPECT = strdup ("* OK");
+ QUIT = strdup ("a1 LOGOUT\r\n");
PROTOCOL = TCP_PROTOCOL;
PORT = 143;
}
#ifdef HAVE_SSL
else if (strstr(argv[0],"check_simap")) {
- PROGNAME=strscpy(PROGNAME,"check_simap");
- SERVICE=strscpy(SERVICE,"SIMAP");
+ progname = strdup ("check_simap");
+ SERVICE = strdup ("SIMAP");
SEND=NULL;
- EXPECT=strscpy(EXPECT,"* OK");
- QUIT=strscpy(QUIT,"a1 LOGOUT\n");
+ EXPECT = strdup ("* OK");
+ QUIT = strdup ("a1 LOGOUT\r\n");
PROTOCOL=TCP_PROTOCOL;
use_ssl=TRUE;
PORT=993;
}
+ else if (strstr(argv[0],"check_spop")) {
+ progname = strdup ("check_spop");
+ SERVICE = strdup ("SPOP");
+ SEND=NULL;
+ EXPECT = strdup ("+OK");
+ QUIT = strdup ("QUIT\r\n");
+ PROTOCOL=TCP_PROTOCOL;
+ use_ssl=TRUE;
+ PORT=995;
+ }
#endif
else if (strstr (argv[0], "check_nntp")) {
- PROGNAME = strscpy (PROGNAME, "check_nntp");
- SERVICE = strscpy (SERVICE, "NNTP");
+ progname = strdup ("check_nntp");
+ SERVICE = strdup ("NNTP");
SEND = NULL;
EXPECT = NULL;
server_expect = realloc (server_expect, ++server_expect_count);
- server_expect[server_expect_count - 1] = strscpy (EXPECT, "200");
+ asprintf (&server_expect[server_expect_count - 1], "200");
server_expect = realloc (server_expect, ++server_expect_count);
- server_expect[server_expect_count - 1] = strscpy (NULL, "201");
- QUIT = strscpy (QUIT, "QUIT\r\n");
+ asprintf (&server_expect[server_expect_count - 1], "201");
+ asprintf (&QUIT, "QUIT\r\n");
PROTOCOL = TCP_PROTOCOL;
PORT = 119;
}
usage ("ERROR: Generic check_tcp called with unknown service\n");
}
- server_address = strscpy (NULL, "127.0.0.1");
+ server_address = strdup ("127.0.0.1");
server_port = PORT;
server_send = SEND;
server_quit = QUIT;
/* use default expect if none listed in process_arguments() */
if (EXPECT && server_expect_count == 0) {
- server_expect = malloc (1);
+ server_expect = malloc (++server_expect_count);
server_expect[server_expect_count - 1] = EXPECT;
}
alarm (socket_timeout);
/* try to connect to the host at the given port number */
- time (&start_time);
+ gettimeofday (&tv, NULL);
#ifdef HAVE_SSL
if (use_ssl)
result = connect_SSL ();
{
if (PROTOCOL == UDP_PROTOCOL)
result = my_udp_connect (server_address, server_port, &sd);
- else /* default is TCP */
+ else
+ /* default is TCP */
result = my_tcp_connect (server_address, server_port, &sd);
}
return STATE_CRITICAL;
if (server_send != NULL) { /* Something to send? */
- snprintf (buffer, MAX_INPUT_BUFFER - 1, "%s\r\n", server_send);
- buffer[MAX_INPUT_BUFFER - 1] = 0;
+ asprintf (&server_send, "%s\r\n", server_send);
#ifdef HAVE_SSL
if (use_ssl)
- SSL_write(ssl,buffer,strlen(buffer));
+ SSL_write(ssl, server_send, strlen (server_send));
else
#endif
- send (sd, buffer, strlen (buffer), 0);
+ send (sd, server_send, strlen (server_send), 0);
}
if (delay > 0) {
- start_time = start_time + delay;
+ tv.tv_sec += delay;
sleep (delay);
}
if (server_send || server_expect_count > 0) {
+ buffer = malloc (MAXBUF);
+ memset (buffer, '\0', MAXBUF);
/* watch for the expect string */
-#ifdef HAVE_SSL
- if (use_ssl && SSL_read (ssl, buffer, MAX_INPUT_BUFFER - 1)>=0)
- status = strscat(status,buffer);
- else
-#endif
- {
- if (recv (sd, buffer, MAX_INPUT_BUFFER - 1, 0) >= 0)
- status = strscat (status, buffer);
- }
- strip (status);
+ while ((i = my_recv ()) > 0) {
+ buffer[i] = '\0';
+ asprintf (&status, "%s%s", status, buffer);
+ if (buffer[i-2] == '\r' && buffer[i-1] == '\n')
+ break;
+ }
/* return a CRITICAL status if we couldn't read any data */
if (status == NULL)
terminate (STATE_CRITICAL, "No data received from host\n");
+ strip (status);
+
if (status && verbose)
printf ("%s\n", status);
if (server_expect_count > 0) {
for (i = 0;; i++) {
- printf ("%d %d\n", i, server_expect_count);
+ if (verbose)
+ printf ("%d %d\n", i, server_expect_count);
if (i >= server_expect_count)
terminate (STATE_WARNING, "Invalid response from host\n");
if (strstr (status, server_expect[i]))
}
}
- if (server_quit)
+ if (server_quit != NULL) {
#ifdef HAVE_SSL
if (use_ssl) {
- SSL_write (ssl, QUIT, strlen (QUIT));
+ SSL_write (ssl, server_quit, strlen (server_quit));
SSL_shutdown (ssl);
- SSL_free (ssl);
- SSL_CTX_free (ctx);
+ SSL_free (ssl);
+ SSL_CTX_free (ctx);
+ }
+ else {
+#endif
+ send (sd, server_quit, strlen (server_quit), 0);
+#ifdef HAVE_SSL
}
- else
#endif
- send (sd, server_quit, strlen (server_quit), 0);
+ }
/* close the connection */
- close (sd);
+ if (sd)
+ close (sd);
- time (&end_time);
+ elapsed_time = delta_time (tv);
- if (check_critical_time == TRUE && (end_time - start_time) > critical_time)
+ if (check_critical_time == TRUE && elapsed_time > critical_time)
result = STATE_CRITICAL;
- else if (check_warning_time == TRUE
- && (end_time - start_time) > warning_time) result = STATE_WARNING;
+ else if (check_warning_time == TRUE && elapsed_time > warning_time)
+ result = STATE_WARNING;
/* reset the alarm */
alarm (0);
printf
- ("%s %s - %d second response time on port %d",
+ ("%s %s%s - %.3f second response time on port %d",
SERVICE,
- state_text (result), (int) (end_time - start_time), server_port);
+ state_text (result),
+ (was_refused) ? " (refused)" : "",
+ elapsed_time, server_port);
- if (status)
- printf (" [%s]\n", status);
- else
- printf ("\n");
+ if (status && strlen(status) > 0)
+ printf (" [%s]", status);
+
+ printf ("|time=%.3f\n", elapsed_time);
return result;
}
-
-
-
-
+\f
{
int c;
-#ifdef HAVE_GETOPT_H
int option_index = 0;
static struct option long_options[] = {
{"hostname", required_argument, 0, 'H'},
{"expect", required_argument, 0, 'e'},
{"quit", required_argument, 0, 'q'},
{"delay", required_argument, 0, 'd'},
+ {"refuse", required_argument, 0, 'r'},
{"verbose", no_argument, 0, 'v'},
{"version", no_argument, 0, 'V'},
{"help", no_argument, 0, 'h'},
{0, 0, 0, 0}
};
-#endif
if (argc < 2)
usage ("No arguments found\n");
}
while (1) {
-#ifdef HAVE_GETOPT_H
- c =
- getopt_long (argc, argv, "+hVvH:s:e:q:c:w:t:p:C:W:d:S", long_options,
+ c = getopt_long (argc, argv, "+hVvH:s:e:q:c:w:t:p:C:W:d:Sr:", long_options,
&option_index);
-#else
- c = getopt (argc, argv, "+hVvH:s:e:q:c:w:t:p:C:W:d:S");
-#endif
if (c == -1 || c == EOF || c == 1)
break;
switch (c) {
case '?': /* print short usage statement if args not parsable */
- printf ("%s: Unknown argument: %s\n\n", my_basename (argv[0]), optarg);
+ printf ("%s: Unknown argument: %s\n\n", progname, optarg);
print_usage ();
exit (STATE_UNKNOWN);
case 'h': /* help */
print_help ();
exit (STATE_OK);
case 'V': /* version */
- print_revision (PROGNAME, "$Revision$");
+ print_revision (progname, "$Revision$");
exit (STATE_OK);
case 'v': /* verbose mode */
verbose = TRUE;
break;
case 'H': /* hostname */
if (is_host (optarg) == FALSE)
- usage ("Invalid host name/address\n");
+ usage2 ("invalid host name or address", optarg);
server_address = optarg;
break;
case 'c': /* critical */
if (!is_intnonneg (optarg))
usage ("Critical threshold must be a nonnegative integer\n");
- critical_time = atoi (optarg);
+ critical_time = strtod (optarg, NULL);
check_critical_time = TRUE;
break;
case 'w': /* warning */
if (!is_intnonneg (optarg))
usage ("Warning threshold must be a nonnegative integer\n");
- warning_time = atoi (optarg);
+ warning_time = strtod (optarg, NULL);
check_warning_time = TRUE;
break;
case 'C':
case 's':
server_send = optarg;
break;
- case 'e':
+ case 'e': /* expect string (may be repeated) */
EXPECT = NULL;
if (server_expect_count == 0)
server_expect = malloc (++server_expect_count);
case 'q':
server_quit = optarg;
break;
+ case 'r':
+ if (!strncmp(optarg,"ok",2))
+ econn_refuse_state = STATE_OK;
+ else if (!strncmp(optarg,"warn",4))
+ econn_refuse_state = STATE_WARNING;
+ else if (!strncmp(optarg,"crit",4))
+ econn_refuse_state = STATE_CRITICAL;
+ else
+ usage ("Refuse mut be one of ok, warn, crit\n");
+ break;
case 'd':
if (is_intpos (optarg))
delay = atoi (optarg);
return OK;
}
-
-
+\f
void
-print_usage (void)
+print_help (void)
{
- printf
- ("Usage: %s -H host -p port [-w warn_time] [-c crit_time] [-s send]\n"
- " [-e expect] [-W wait] [-t to_sec] [-v]\n", PROGNAME);
+ print_revision (progname, revision);
+ printf ("Copyright (c) %s %s\n\t<%s>\n\n", copyright, authors, email);
+ printf (summary, SERVICE);
+ print_usage ();
+ printf ("\nOptions:\n");
+ printf (options, DEFAULT_SOCKET_TIMEOUT);
+ printf (standard_options);
+ support ();
}
-
-
-
-
void
-print_help (void)
+print_usage (void)
{
- print_revision (PROGNAME, "$Revision$");
- printf
- ("Copyright (c) 1999 Ethan Galstad (nagios@nagios.org)\n\n"
- "This plugin tests %s connections with the specified host.\n\n",
- SERVICE);
- print_usage ();
- printf
- ("Options:\n"
- " -H, --hostname=ADDRESS\n"
- " Host name argument for servers using host headers (use numeric\n"
- " address if possible to bypass DNS lookup).\n"
- " -p, --port=INTEGER\n"
- " Port number\n"
- " -s, --send=STRING\n"
- " String to send to the server\n"
- " -e, --expect=STRING\n"
- " String to expect in server response"
- " -W, --wait=INTEGER\n"
- " Seconds to wait between sending string and polling for response\n"
- " -w, --warning=INTEGER\n"
- " Response time to result in warning status (seconds)\n"
- " -c, --critical=INTEGER\n"
- " Response time to result in critical status (seconds)\n"
- " -t, --timeout=INTEGER\n"
- " Seconds before connection times out (default: %d)\n"
- " -v"
- " Show details for command-line debugging (do not use with nagios server)\n"
- " -h, --help\n"
- " Print detailed help screen\n"
- " -V, --version\n"
- " Print version information\n", DEFAULT_SOCKET_TIMEOUT);
+ printf ("Usage: %s %s\n", progname, option_summary);
+ printf (" %s (-h|--help)\n", progname);
+ printf (" %s (-V|--version)\n", progname);
}
+\f
+
#ifdef HAVE_SSL
time (&start_time);
/* Make TCP connection */
- if (my_tcp_connect (server_address, server_port, &sd) == STATE_OK)
+ if (my_tcp_connect (server_address, server_port, &sd) == STATE_OK && was_refused == FALSE)
{
/* Do the SSL handshake */
if ((ssl = SSL_new (ctx)) != NULL)
}
#endif
+
+
+int
+my_recv (void)
+{
+ int i;
+
+#ifdef HAVE_SSL
+ if (use_ssl) {
+ i = SSL_read (ssl, buffer, MAXBUF - 1);
+ }
+ else {
+#endif
+ i = read (sd, buffer, MAXBUF - 1);
+#ifdef HAVE_SSL
+ }
+#endif
+
+ return i;
+}