![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
diff --git a/plugins/netutils.c b/plugins/netutils.c
index fc85a2467e35aa5594d3ab1eb03373e4a93e6abe..1d6100abf843efd3f25a8209adbdcfa4042d8fd4 100644 (file)
--- a/plugins/netutils.c
+++ b/plugins/netutils.c
-/****************************************************************************
-*
+/*****************************************************************************
+*
* Nagios plugins network utilities
-*
+*
* License: GPL
* Copyright (c) 1999 Ethan Galstad (nagios@nagios.org)
-*
-* Last Modified: $Date$
-*
+* Copyright (c) 2003-2008 Nagios Plugins Development Team
+*
* Description:
-*
+*
* This file contains commons functions used in many of the plugins.
-*
-* License Information:
-*
-* This program is free software; you can redistribute it and/or modify
+*
+*
+* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
-* the Free Software Foundation; either version 2 of the License, or
+* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
-*
+*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
-*
+*
* You should have received a copy of the GNU General Public License
-* along with this program; if not, write to the Free Software
-* Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*
-****************************************************************************/
+* along with this program. If not, see <http://www.gnu.org/licenses/>.
+*
+*
+*****************************************************************************/
-#include "config.h"
-#include "common.h"
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-extern int socket_timeout;
-RETSIGTYPE socket_timeout_alarm_handler (int);
-
-int process_tcp_request2 (char *, int, char *, char *, int);
-int process_tcp_request (char *, int, char *, char *, int);
-int process_udp_request (char *, int, char *, char *, int);
-int process_request (char *, int, char *, char *, char *, int);
+#define LOCAL_TIMEOUT_ALARM_HANDLER
-int my_tcp_connect (char *, int, int *);
-int my_udp_connect (char *, int, int *);
-int my_connect (char *, int, int *, char *);
+#include "common.h"
+#include "netutils.h"
-int my_inet_aton (register const char *, struct in_addr *);
+int econn_refuse_state = STATE_CRITICAL;
+int was_refused = FALSE;
+#if USE_IPV6
+int address_family = AF_UNSPEC;
+#else
+int address_family = AF_INET;
+#endif
/* handles socket timeouts */
void
socket_timeout_alarm_handler (int sig)
{
+ if (sig == SIGALRM)
+ printf (_("%s - Socket timeout after %d seconds\n"), state_text(socket_timeout_state), socket_timeout);
+ else
+ printf (_("%s - Abnormal timeout after %d seconds\n"), state_text(socket_timeout_state), socket_timeout);
- printf ("Socket timeout after %d seconds\n", socket_timeout);
-
- exit (STATE_CRITICAL);
+ exit (socket_timeout_state);
}
-/* connects to a host on a specified TCP port, sends a string,
- and gets a response */
-int
-process_tcp_request (char *server_address,
- int server_port,
- char *send_buffer, char *recv_buffer, int recv_size)
-{
- int result;
- char proto[4] = "tcp";
-
- result = process_request (server_address,
- server_port,
- proto, send_buffer, recv_buffer, recv_size);
-
- return result;
-}
-
-
-/* connects to a host on a specified UDP port, sends a string, and gets a
- response */
-int
-process_udp_request (char *server_address,
- int server_port,
- char *send_buffer, char *recv_buffer, int recv_size)
-{
- int result;
- char proto[4] = "udp";
-
- result = process_request (server_address,
- server_port,
- proto, send_buffer, recv_buffer, recv_size);
-
- return result;
-}
-
-
-
-/* connects to a host on a specified tcp port, sends a string, and gets a
- response. loops on select-recv until timeout or eof to get all of a
+/* connects to a host on a specified tcp port, sends a string, and gets a
+ response. loops on select-recv until timeout or eof to get all of a
multi-packet answer */
int
-process_tcp_request2 (char *server_address,
- int server_port,
- char *send_buffer, char *recv_buffer, int recv_size)
+process_tcp_request2 (const char *server_address, int server_port,
+ const char *send_buffer, char *recv_buffer, int recv_size)
{
int result;
fd_set readfds;
int recv_length = 0;
- result = my_connect (server_address, server_port, &sd, "tcp");
+ result = np_net_connect (server_address, server_port, &sd, IPPROTO_TCP);
if (result != STATE_OK)
return STATE_CRITICAL;
send_result = send (sd, send_buffer, strlen (send_buffer), 0);
- if (send_result != strlen (send_buffer)) {
- printf ("send() failed\n");
+ if (send_result<0 || (size_t)send_result!=strlen(send_buffer)) {
+ printf ("%s\n", _("Send failed"));
result = STATE_WARNING;
}
if (!FD_ISSET (sd, &readfds)) { /* it hasn't */
if (!recv_length) {
strcpy (recv_buffer, "");
- printf ("No data was recieved from host!\n");
+ printf ("%s\n", _("No data was received from host!"));
result = STATE_WARNING;
}
else { /* this one failed, but previous ones worked */
}
else { /* it has */
recv_result =
- recv (sd, recv_buffer + recv_length, recv_size - recv_length - 1, 0);
- if (recv_result == -1) { /* recv failed, bail out */
+ recv (sd, recv_buffer + recv_length,
+ (size_t)recv_size - recv_length - 1, 0);
+ if (recv_result == -1) {
+ /* recv failed, bail out */
strcpy (recv_buffer + recv_length, "");
result = STATE_WARNING;
break;
}
- else if (recv_result == 0) { /* end of file ? */
+ else if (recv_result == 0) {
+ /* end of file ? */
recv_buffer[recv_length] = 0;
break;
}
else { /* we got data! */
recv_length += recv_result;
- if (recv_length >= recv_size - 1) { /* buffer full, we're done */
+ if (recv_length >= recv_size - 1) {
+ /* buffer full, we're done */
recv_buffer[recv_size - 1] = 0;
break;
}
}
- } /* end if(!FD_ISSET(sd,&readfds)) */
- } /* end while(1) */
+ }
+ /* end if(!FD_ISSET(sd,&readfds)) */
+ }
+ /* end while(1) */
close (sd);
return result;
}
-/* connects to a host on a specified port, sends a string, and gets a
+
+/* connects to a host on a specified port, sends a string, and gets a
response */
int
-process_request (char *server_address,
- int server_port,
- char *proto,
- char *send_buffer, char *recv_buffer, int recv_size)
+process_request (const char *server_address, int server_port, int proto,
+ const char *send_buffer, char *recv_buffer, int recv_size)
{
int result;
- int send_result;
- int recv_result;
int sd;
- struct timeval tv;
- fd_set readfds;
result = STATE_OK;
- result = my_connect (server_address, server_port, &sd, proto);
+ result = np_net_connect (server_address, server_port, &sd, proto);
if (result != STATE_OK)
return STATE_CRITICAL;
+ result = send_request (sd, proto, send_buffer, recv_buffer, recv_size);
+
+ close (sd);
+
+ return result;
+}
+
+
+/* opens a tcp or udp connection to a remote host or local socket */
+int
+np_net_connect (const char *host_name, int port, int *sd, int proto)
+{
+ struct addrinfo hints;
+ struct addrinfo *r, *res;
+ struct sockaddr_un su;
+ char port_str[6], host[MAX_HOST_ADDRESS_LENGTH];
+ size_t len;
+ int socktype, result;
+
+ socktype = (proto == IPPROTO_UDP) ? SOCK_DGRAM : SOCK_STREAM;
+
+ /* as long as it doesn't start with a '/', it's assumed a host or ip */
+ if(host_name[0] != '/'){
+ memset (&hints, 0, sizeof (hints));
+ hints.ai_family = address_family;
+ hints.ai_protocol = proto;
+ hints.ai_socktype = socktype;
+
+ len = strlen (host_name);
+ /* check for an [IPv6] address (and strip the brackets) */
+ if (len >= 2 && host_name[0] == '[' && host_name[len - 1] == ']') {
+ host_name++;
+ len -= 2;
+ }
+ if (len >= sizeof(host))
+ return STATE_UNKNOWN;
+ memcpy (host, host_name, len);
+ host[len] = '\0';
+ snprintf (port_str, sizeof (port_str), "%d", port);
+ result = getaddrinfo (host, port_str, &hints, &res);
+
+ if (result != 0) {
+ printf ("%s\n", gai_strerror (result));
+ return STATE_UNKNOWN;
+ }
+
+ r = res;
+ while (r) {
+ /* attempt to create a socket */
+ *sd = socket (r->ai_family, socktype, r->ai_protocol);
+
+ if (*sd < 0) {
+ printf ("%s\n", _("Socket creation failed"));
+ freeaddrinfo (r);
+ return STATE_UNKNOWN;
+ }
+
+ /* attempt to open a connection */
+ result = connect (*sd, r->ai_addr, r->ai_addrlen);
+
+ if (result == 0) {
+ was_refused = FALSE;
+ break;
+ }
+
+ if (result < 0) {
+ switch (errno) {
+ case ECONNREFUSED:
+ was_refused = TRUE;
+ break;
+ }
+ }
+
+ close (*sd);
+ r = r->ai_next;
+ }
+ freeaddrinfo (res);
+ }
+ /* else the hostname is interpreted as a path to a unix socket */
+ else {
+ if(strlen(host_name) >= UNIX_PATH_MAX){
+ die(STATE_UNKNOWN, _("Supplied path too long unix domain socket"));
+ }
+ memset(&su, 0, sizeof(su));
+ su.sun_family = AF_UNIX;
+ strncpy(su.sun_path, host_name, UNIX_PATH_MAX);
+ *sd = socket(PF_UNIX, SOCK_STREAM, 0);
+ if(*sd < 0){
+ die(STATE_UNKNOWN, _("Socket creation failed"));
+ }
+ result = connect(*sd, (struct sockaddr *)&su, sizeof(su));
+ if (result < 0 && errno == ECONNREFUSED)
+ was_refused = TRUE;
+ }
+
+ if (result == 0)
+ return STATE_OK;
+ else if (was_refused) {
+ switch (econn_refuse_state) { /* a user-defined expected outcome */
+ case STATE_OK:
+ case STATE_WARNING: /* user wants WARN or OK on refusal */
+ return econn_refuse_state;
+ break;
+ case STATE_CRITICAL: /* user did not set econn_refuse_state */
+ printf ("%s\n", strerror(errno));
+ return econn_refuse_state;
+ break;
+ default: /* it's a logic error if we do not end up in STATE_(OK|WARNING|CRITICAL) */
+ return STATE_UNKNOWN;
+ break;
+ }
+ }
+ else {
+ printf ("%s\n", strerror(errno));
+ return STATE_CRITICAL;
+ }
+}
+
+int
+send_request (int sd, int proto, const char *send_buffer, char *recv_buffer, int recv_size)
+{
+ int result = STATE_OK;
+ int send_result;
+ int recv_result;
+ struct timeval tv;
+ fd_set readfds;
+
send_result = send (sd, send_buffer, strlen (send_buffer), 0);
- if (send_result != strlen (send_buffer)) {
- printf ("send() failed\n");
+ if (send_result<0 || (size_t)send_result!=strlen(send_buffer)) {
+ printf ("%s\n", _("Send failed"));
result = STATE_WARNING;
}
- /* wait up to the number of seconds for socket timeout minus one
+ /* wait up to the number of seconds for socket timeout minus one
for data from the host */
tv.tv_sec = socket_timeout - 1;
tv.tv_usec = 0;
/* make sure some data has arrived */
if (!FD_ISSET (sd, &readfds)) {
strcpy (recv_buffer, "");
- printf ("No data was recieved from host!\n");
+ printf ("%s\n", _("No data was received from host!"));
result = STATE_WARNING;
}
else {
- recv_result = recv (sd, recv_buffer, recv_size - 1, 0);
+ recv_result = recv (sd, recv_buffer, (size_t)recv_size - 1, 0);
if (recv_result == -1) {
strcpy (recv_buffer, "");
- if (!strcmp (proto, "tcp"))
- printf ("recv() failed\n");
+ if (proto != IPPROTO_TCP)
+ printf ("%s\n", _("Receive failed"));
result = STATE_WARNING;
}
else
recv_buffer[recv_result] = 0;
- /* terminate returned string */
+ /* die returned string */
recv_buffer[recv_size - 1] = 0;
}
-
- close (sd);
-
return result;
}
-/* opens a connection to a remote host/tcp port */
int
-my_tcp_connect (char *host_name, int port, int *sd)
+is_host (const char *address)
{
- int result;
- char proto[4] = "tcp";
-
- result = my_connect (host_name, port, sd, proto);
+ if (is_addr (address) || is_hostname (address))
+ return (TRUE);
- return result;
+ return (FALSE);
}
-
-/* opens a connection to a remote host/udp port */
-int
-my_udp_connect (char *host_name, int port, int *sd)
+void
+host_or_die(const char *str)
{
- int result;
- char proto[4] = "udp";
-
- result = my_connect (host_name, port, sd, proto);
-
- return result;
+ if(!str || (!is_addr(str) && !is_hostname(str)))
+ usage_va(_("Invalid hostname/address - %s"), str);
}
-
-/* opens a tcp or udp connection to a remote host */
int
-my_connect (char *host_name, int port, int *sd, char *proto)
+is_addr (const char *address)
{
- struct sockaddr_in servaddr;
- struct hostent *hp;
- struct protoent *ptrp;
- int result;
-
- bzero ((char *) &servaddr, sizeof (servaddr));
- servaddr.sin_family = AF_INET;
- servaddr.sin_port = htons (port);
-
- /* try to bypass using a DNS lookup if this is just an IP address */
- if (!my_inet_aton (host_name, &servaddr.sin_addr)) {
-
- /* else do a DNS lookup */
- hp = gethostbyname ((const char *) host_name);
- if (hp == NULL) {
- printf ("Invalid host name '%s'\n", host_name);
- return STATE_UNKNOWN;
- }
-
- memcpy (&servaddr.sin_addr, hp->h_addr, hp->h_length);
- }
-
- /* map transport protocol name to protocol number */
- if ((ptrp = getprotobyname (proto)) == NULL) {
- printf ("Cannot map \"%s\" to protocol number\n", proto);
- return STATE_UNKNOWN;
- }
-
- /* create a socket */
- *sd =
- socket (PF_INET, (!strcmp (proto, "udp")) ? SOCK_DGRAM : SOCK_STREAM,
- ptrp->p_proto);
- if (*sd < 0) {
- printf ("Socket creation failed\n");
- return STATE_UNKNOWN;
- }
-
- /* open a connection */
- result = connect (*sd, (struct sockaddr *) &servaddr, sizeof (servaddr));
- if (result < 0) {
- switch (errno) {
- case ECONNREFUSED:
- printf ("Connection refused by host\n");
- break;
- case ETIMEDOUT:
- printf ("Timeout while attempting connection\n");
- break;
- case ENETUNREACH:
- printf ("Network is unreachable\n");
- break;
- default:
- printf ("Connection refused or timed out\n");
- }
-
- return STATE_CRITICAL;
- }
-
- return STATE_OK;
+#ifdef USE_IPV6
+ if (address_family == AF_INET && is_inet_addr (address))
+ return TRUE;
+ else if (address_family == AF_INET6 && is_inet6_addr (address))
+ return TRUE;
+#else
+ if (is_inet_addr (address))
+ return (TRUE);
+#endif
+
+ return (FALSE);
}
-
-
-/* This code was taken from Fyodor's nmap utility, which was originally
- taken from the GLIBC 2.0.6 libraries because Solaris doesn't contain
- the inet_aton() funtion. */
int
-my_inet_aton (register const char *cp, struct in_addr *addr)
+resolve_host_or_addr (const char *address, int family)
{
- register unsigned int val; /* changed from u_long --david */
- register int base, n;
- register char c;
- u_int parts[4];
- register u_int *pp = parts;
-
- c = *cp;
-
- for (;;) {
-
- /*
- * Collect number up to ``.''.
- * Values are specified as for C:
- * 0x=hex, 0=octal, isdigit=decimal.
- */
- if (!isdigit ((int) c))
- return (0);
- val = 0;
- base = 10;
-
- if (c == '0') {
- c = *++cp;
- if (c == 'x' || c == 'X')
- base = 16, c = *++cp;
- else
- base = 8;
- }
-
- for (;;) {
- if (isascii ((int) c) && isdigit ((int) c)) {
- val = (val * base) + (c - '0');
- c = *++cp;
- }
- else if (base == 16 && isascii ((int) c) && isxdigit ((int) c)) {
- val = (val << 4) | (c + 10 - (islower ((int) c) ? 'a' : 'A'));
- c = *++cp;
- }
- else
- break;
- }
+ struct addrinfo hints;
+ struct addrinfo *res;
+ int retval;
- if (c == '.') {
-
- /*
- * Internet format:
- * a.b.c.d
- * a.b.c (with c treated as 16 bits)
- * a.b (with b treated as 24 bits)
- */
- if (pp >= parts + 3)
- return (0);
- *pp++ = val;
- c = *++cp;
- }
- else
- break;
- }
+ memset (&hints, 0, sizeof (hints));
+ hints.ai_family = family;
+ retval = getaddrinfo (address, NULL, &hints, &res);
- /* Check for trailing characters */
- if (c != '\0' && (!isascii ((int) c) || !isspace ((int) c)))
- return (0);
-
- /* Concoct the address according to the number of parts specified */
- n = pp - parts + 1;
- switch (n) {
-
- case 0:
- return (0); /* initial nondigit */
-
- case 1: /* a -- 32 bits */
- break;
-
- case 2: /* a.b -- 8.24 bits */
- if (val > 0xffffff)
- return (0);
- val |= parts[0] << 24;
- break;
-
- case 3: /* a.b.c -- 8.8.16 bits */
- if (val > 0xffff)
- return (0);
- val |= (parts[0] << 24) | (parts[1] << 16);
- break;
-
- case 4: /* a.b.c.d -- 8.8.8.8 bits */
- if (val > 0xff)
- return (0);
- val |= (parts[0] << 24) | (parts[1] << 16) | (parts[2] << 8);
- break;
+ if (retval != 0)
+ return FALSE;
+ else {
+ freeaddrinfo (res);
+ return TRUE;
}
-
- if (addr)
- addr->s_addr = htonl (val);
-
- return (1);
}