2 * ntp_control.c - respond to control messages and send async traps
15 #include "ntp_refclock.h"
16 #include "ntp_control.h"
17 #include "ntp_unixtime.h"
18 #include "ntp_stdlib.h"
24 #include <netinet/in.h>
25 #include <arpa/inet.h>
28 * Structure to hold request procedure information
33 #define NO_REQUEST (-1)
36 short control_code; /* defined request code */
37 u_short flags; /* flags word */
38 void (*handler) P((struct recvbuf *, int)); /* handle request */
42 * Only one flag. Authentication required or not.
48 * Request processing routines
50 static void ctl_error P((int));
52 static u_short ctlclkstatus P((struct refclockstat *));
54 static void ctl_flushpkt P((int));
55 static void ctl_putdata P((const char *, unsigned int, int));
56 static void ctl_putstr P((const char *, const char *,
58 static void ctl_putdbl P((const char *, double));
59 static void ctl_putuint P((const char *, u_long));
60 static void ctl_puthex P((const char *, u_long));
61 static void ctl_putint P((const char *, long));
62 static void ctl_putts P((const char *, l_fp *));
63 static void ctl_putadr P((const char *, u_int32, struct sockaddr_storage*));
64 static void ctl_putid P((const char *, char *));
65 static void ctl_putarray P((const char *, double *, int));
66 static void ctl_putsys P((int));
67 static void ctl_putpeer P((int, struct peer *));
69 static void ctl_putfs P((const char *, tstamp_t));
72 static void ctl_putclock P((int, struct refclockstat *, int));
74 static struct ctl_var *ctl_getitem P((struct ctl_var *, char **));
75 static u_long count_var P((struct ctl_var *));
76 static void control_unspec P((struct recvbuf *, int));
77 static void read_status P((struct recvbuf *, int));
78 static void read_variables P((struct recvbuf *, int));
79 static void write_variables P((struct recvbuf *, int));
80 static void read_clock_status P((struct recvbuf *, int));
81 static void write_clock_status P((struct recvbuf *, int));
82 static void set_trap P((struct recvbuf *, int));
83 static void unset_trap P((struct recvbuf *, int));
84 static struct ctl_trap *ctlfindtrap P((struct sockaddr_storage *,
87 static struct ctl_proc control_codes[] = {
88 { CTL_OP_UNSPEC, NOAUTH, control_unspec },
89 { CTL_OP_READSTAT, NOAUTH, read_status },
90 { CTL_OP_READVAR, NOAUTH, read_variables },
91 { CTL_OP_WRITEVAR, AUTH, write_variables },
92 { CTL_OP_READCLOCK, NOAUTH, read_clock_status },
93 { CTL_OP_WRITECLOCK, NOAUTH, write_clock_status },
94 { CTL_OP_SETTRAP, NOAUTH, set_trap },
95 { CTL_OP_UNSETTRAP, NOAUTH, unset_trap },
100 * System variable values. The array can be indexed by the variable
101 * index to find the textual name.
103 static struct ctl_var sys_var[] = {
104 { 0, PADDING, "" }, /* 0 */
105 { CS_LEAP, RW, "leap" }, /* 1 */
106 { CS_STRATUM, RO, "stratum" }, /* 2 */
107 { CS_PRECISION, RO, "precision" }, /* 3 */
108 { CS_ROOTDELAY, RO, "rootdelay" }, /* 4 */
109 { CS_ROOTDISPERSION, RO, "rootdispersion" }, /* 5 */
110 { CS_REFID, RO, "refid" }, /* 6 */
111 { CS_REFTIME, RO, "reftime" }, /* 7 */
112 { CS_POLL, RO, "poll" }, /* 8 */
113 { CS_PEERID, RO, "peer" }, /* 9 */
114 { CS_STATE, RO, "state" }, /* 10 */
115 { CS_OFFSET, RO, "offset" }, /* 11 */
116 { CS_DRIFT, RO, "frequency" }, /* 12 */
117 { CS_JITTER, RO, "jitter" }, /* 13 */
118 { CS_ERROR, RO, "noise" }, /* 14 */
119 { CS_CLOCK, RO, "clock" }, /* 15 */
120 { CS_PROCESSOR, RO, "processor" }, /* 16 */
121 { CS_SYSTEM, RO, "system" }, /* 17 */
122 { CS_VERSION, RO, "version" }, /* 18 */
123 { CS_STABIL, RO, "stability" }, /* 19 */
124 { CS_VARLIST, RO, "sys_var_list" }, /* 20 */
126 { CS_FLAGS, RO, "flags" }, /* 21 */
127 { CS_HOST, RO, "hostname" }, /* 22 */
128 { CS_PUBLIC, RO, "update" }, /* 23 */
129 { CS_CERTIF, RO, "cert" }, /* 24 */
130 { CS_REVTIME, RO, "expire" }, /* 25 */
131 { CS_LEAPTAB, RO, "leapsec" }, /* 26 */
132 { CS_TAI, RO, "tai" }, /* 27 */
133 { CS_DIGEST, RO, "signature" }, /* 28 */
134 { CS_IDENT, RO, "ident" }, /* 29 */
135 { CS_REVOKE, RO, "expire" }, /* 30 */
137 { 0, EOV, "" } /* 21/31 */
140 static struct ctl_var *ext_sys_var = (struct ctl_var *)0;
143 * System variables we print by default (in fuzzball order,
146 static u_char def_sys_var[] = {
183 static struct ctl_var peer_var[] = {
184 { 0, PADDING, "" }, /* 0 */
185 { CP_CONFIG, RO, "config" }, /* 1 */
186 { CP_AUTHENABLE, RO, "authenable" }, /* 2 */
187 { CP_AUTHENTIC, RO, "authentic" }, /* 3 */
188 { CP_SRCADR, RO, "srcadr" }, /* 4 */
189 { CP_SRCPORT, RO, "srcport" }, /* 5 */
190 { CP_DSTADR, RO, "dstadr" }, /* 6 */
191 { CP_DSTPORT, RO, "dstport" }, /* 7 */
192 { CP_LEAP, RO, "leap" }, /* 8 */
193 { CP_HMODE, RO, "hmode" }, /* 9 */
194 { CP_STRATUM, RO, "stratum" }, /* 10 */
195 { CP_PPOLL, RO, "ppoll" }, /* 11 */
196 { CP_HPOLL, RO, "hpoll" }, /* 12 */
197 { CP_PRECISION, RO, "precision" }, /* 13 */
198 { CP_ROOTDELAY, RO, "rootdelay" }, /* 14 */
199 { CP_ROOTDISPERSION, RO, "rootdispersion" }, /* 15 */
200 { CP_REFID, RO, "refid" }, /* 16 */
201 { CP_REFTIME, RO, "reftime" }, /* 17 */
202 { CP_ORG, RO, "org" }, /* 18 */
203 { CP_REC, RO, "rec" }, /* 19 */
204 { CP_XMT, RO, "xmt" }, /* 20 */
205 { CP_REACH, RO, "reach" }, /* 21 */
206 { CP_UNREACH, RO, "unreach" }, /* 22 */
207 { CP_TIMER, RO, "timer" }, /* 23 */
208 { CP_DELAY, RO, "delay" }, /* 24 */
209 { CP_OFFSET, RO, "offset" }, /* 25 */
210 { CP_JITTER, RO, "jitter" }, /* 26 */
211 { CP_DISPERSION, RO, "dispersion" }, /* 27 */
212 { CP_KEYID, RO, "keyid" }, /* 28 */
213 { CP_FILTDELAY, RO, "filtdelay=" }, /* 29 */
214 { CP_FILTOFFSET, RO, "filtoffset=" }, /* 30 */
215 { CP_PMODE, RO, "pmode" }, /* 31 */
216 { CP_RECEIVED, RO, "received"}, /* 32 */
217 { CP_SENT, RO, "sent" }, /* 33 */
218 { CP_FILTERROR, RO, "filtdisp=" }, /* 34 */
219 { CP_FLASH, RO, "flash" }, /* 35 */
220 { CP_TTL, RO, "ttl" }, /* 36 */
221 { CP_VARLIST, RO, "peer_var_list" }, /* 37 */
223 { CP_FLAGS, RO, "flags" }, /* 38 */
224 { CP_HOST, RO, "hostname" }, /* 39 */
225 { CP_VALID, RO, "valid" }, /* 40 */
226 { CP_INITSEQ, RO, "initsequence" }, /* 41 */
227 { CP_INITKEY, RO, "initkey" }, /* 42 */
228 { CP_INITTSP, RO, "timestamp" }, /* 43 */
229 { CP_DIGEST, RO, "signature" }, /* 44 */
230 { CP_IDENT, RO, "trust" }, /* 45 */
232 { 0, EOV, "" } /* 38/46 */
237 * Peer variables we print by default
239 static u_char def_peer_var[] = {
284 * Clock variable list
286 static struct ctl_var clock_var[] = {
287 { 0, PADDING, "" }, /* 0 */
288 { CC_TYPE, RO, "type" }, /* 1 */
289 { CC_TIMECODE, RO, "timecode" }, /* 2 */
290 { CC_POLL, RO, "poll" }, /* 3 */
291 { CC_NOREPLY, RO, "noreply" }, /* 4 */
292 { CC_BADFORMAT, RO, "badformat" }, /* 5 */
293 { CC_BADDATA, RO, "baddata" }, /* 6 */
294 { CC_FUDGETIME1, RO, "fudgetime1" }, /* 7 */
295 { CC_FUDGETIME2, RO, "fudgetime2" }, /* 8 */
296 { CC_FUDGEVAL1, RO, "stratum" }, /* 9 */
297 { CC_FUDGEVAL2, RO, "refid" }, /* 10 */
298 { CC_FLAGS, RO, "flags" }, /* 11 */
299 { CC_DEVICE, RO, "device" }, /* 12 */
300 { CC_VARLIST, RO, "clock_var_list" }, /* 13 */
301 { 0, EOV, "" } /* 14 */
306 * Clock variables printed by default
308 static u_char def_clock_var[] = {
310 CC_TYPE, /* won't be output if device = known */
327 * System and processor definitions.
331 # define STR_SYSTEM "UNIX"
333 # ifndef STR_PROCESSOR
334 # define STR_PROCESSOR "unknown"
337 static char str_system[] = STR_SYSTEM;
338 static char str_processor[] = STR_PROCESSOR;
340 # include <sys/utsname.h>
341 static struct utsname utsnamebuf;
342 #endif /* HAVE_UNAME */
345 * Trap structures. We only allow a few of these, and send a copy of
346 * each async message to each live one. Traps time out after an hour, it
347 * is up to the trap receipient to keep resetting it to avoid being
351 struct ctl_trap ctl_trap[CTL_MAXTRAPS];
355 * Type bits, for ctlsettrap() call.
357 #define TRAP_TYPE_CONFIG 0 /* used by configuration code */
358 #define TRAP_TYPE_PRIO 1 /* priority trap */
359 #define TRAP_TYPE_NONPRIO 2 /* nonpriority trap */
363 * List relating reference clock types to control message time sources.
364 * Index by the reference clock type. This list will only be used iff
365 * the reference clock driver doesn't set peer->sstclktype to something
366 * different than CTL_SST_TS_UNSPEC.
368 static u_char clocktypes[] = {
369 CTL_SST_TS_NTP, /* REFCLK_NONE (0) */
370 CTL_SST_TS_LOCAL, /* REFCLK_LOCALCLOCK (1) */
371 CTL_SST_TS_UHF, /* deprecated REFCLK_GPS_TRAK (2) */
372 CTL_SST_TS_HF, /* REFCLK_WWV_PST (3) */
373 CTL_SST_TS_LF, /* REFCLK_WWVB_SPECTRACOM (4) */
374 CTL_SST_TS_UHF, /* REFCLK_TRUETIME (5) */
375 CTL_SST_TS_UHF, /* REFCLK_GOES_TRAK (6) IRIG_AUDIO? */
376 CTL_SST_TS_HF, /* REFCLK_CHU (7) */
377 CTL_SST_TS_LF, /* REFCLOCK_PARSE (default) (8) */
378 CTL_SST_TS_LF, /* REFCLK_GPS_MX4200 (9) */
379 CTL_SST_TS_UHF, /* REFCLK_GPS_AS2201 (10) */
380 CTL_SST_TS_UHF, /* REFCLK_GPS_ARBITER (11) */
381 CTL_SST_TS_UHF, /* REFCLK_IRIG_TPRO (12) */
382 CTL_SST_TS_ATOM, /* REFCLK_ATOM_LEITCH (13) */
383 CTL_SST_TS_LF, /* deprecated REFCLK_MSF_EES (14) */
384 CTL_SST_TS_NTP, /* not used (15) */
385 CTL_SST_TS_UHF, /* REFCLK_IRIG_BANCOMM (16) */
386 CTL_SST_TS_UHF, /* REFCLK_GPS_DATU (17) */
387 CTL_SST_TS_TELEPHONE, /* REFCLK_NIST_ACTS (18) */
388 CTL_SST_TS_HF, /* REFCLK_WWV_HEATH (19) */
389 CTL_SST_TS_UHF, /* REFCLK_GPS_NMEA (20) */
390 CTL_SST_TS_UHF, /* REFCLK_GPS_VME (21) */
391 CTL_SST_TS_ATOM, /* REFCLK_ATOM_PPS (22) */
392 CTL_SST_TS_NTP, /* not used (23) */
393 CTL_SST_TS_NTP, /* not used (24) */
394 CTL_SST_TS_NTP, /* not used (25) */
395 CTL_SST_TS_UHF, /* REFCLK_GPS_HP (26) */
396 CTL_SST_TS_TELEPHONE, /* REFCLK_ARCRON_MSF (27) */
397 CTL_SST_TS_TELEPHONE, /* REFCLK_SHM (28) */
398 CTL_SST_TS_UHF, /* REFCLK_PALISADE (29) */
399 CTL_SST_TS_UHF, /* REFCLK_ONCORE (30) */
400 CTL_SST_TS_UHF, /* REFCLK_JUPITER (31) */
401 CTL_SST_TS_LF, /* REFCLK_CHRONOLOG (32) */
402 CTL_SST_TS_LF, /* REFCLK_DUMBCLOCK (33) */
403 CTL_SST_TS_LF, /* REFCLK_ULINK (34) */
404 CTL_SST_TS_LF, /* REFCLK_PCF (35) */
405 CTL_SST_TS_LF, /* REFCLK_WWV (36) */
406 CTL_SST_TS_LF, /* REFCLK_FG (37) */
407 CTL_SST_TS_UHF, /* REFCLK_HOPF_SERIAL (38) */
408 CTL_SST_TS_UHF, /* REFCLK_HOPF_PCI (39) */
409 CTL_SST_TS_LF, /* REFCLK_JJY (40) */
410 CTL_SST_TS_UHF, /* REFCLK_TT560 (41) */
411 CTL_SST_TS_UHF, /* REFCLK_ZYFER (42) */
412 CTL_SST_TS_UHF, /* REFCLK_RIPENCC (43) */
413 CTL_SST_TS_UHF, /* REFCLK_NEOCLOCK4X (44) */
418 * Keyid used for authenticating write requests.
420 keyid_t ctl_auth_keyid;
423 * We keep track of the last error reported by the system internally
425 static u_char ctl_sys_last_event;
426 static u_char ctl_sys_num_events;
430 * Statistic counters to keep track of requests and responses.
432 u_long ctltimereset; /* time stats reset */
433 u_long numctlreq; /* number of requests we've received */
434 u_long numctlbadpkts; /* number of bad control packets */
435 u_long numctlresponses; /* number of resp packets sent with data */
436 u_long numctlfrags; /* number of fragments sent */
437 u_long numctlerrors; /* number of error responses sent */
438 u_long numctltooshort; /* number of too short input packets */
439 u_long numctlinputresp; /* number of responses on input */
440 u_long numctlinputfrag; /* number of fragments on input */
441 u_long numctlinputerr; /* number of input pkts with err bit set */
442 u_long numctlbadoffset; /* number of input pkts with nonzero offset */
443 u_long numctlbadversion; /* number of input pkts with unknown version */
444 u_long numctldatatooshort; /* data too short for count */
445 u_long numctlbadop; /* bad op code found in packet */
446 u_long numasyncmsgs; /* number of async messages we've sent */
449 * Response packet used by these routines. Also some state information
450 * so that we can handle packet formatting within a common set of
451 * subroutines. Note we try to enter data in place whenever possible,
452 * but the need to set the more bit correctly means we occasionally
453 * use the extra buffer and copy.
455 static struct ntp_control rpkt;
456 static u_char res_version;
457 static u_char res_opcode;
458 static associd_t res_associd;
459 static int res_offset;
460 static u_char * datapt;
461 static u_char * dataend;
462 static int datalinelen;
463 static int datanotbinflag;
464 static struct sockaddr_storage *rmt_addr;
465 static struct interface *lcl_inter;
467 static u_char res_authenticate;
468 static u_char res_authokay;
469 static keyid_t res_keyid;
471 #define MAXDATALINELEN (72)
473 static u_char res_async; /* set to 1 if this is async trap response */
476 * Pointers for saving state when decoding request packets
482 * init_control - initialize request data
491 #endif /* HAVE_UNAME */
496 ctl_sys_last_event = EVNT_UNSPEC;
497 ctl_sys_num_events = 0;
500 for (i = 0; i < CTL_MAXTRAPS; i++)
501 ctl_trap[i].tr_flags = 0;
506 * ctl_error - send an error response for the current request
515 printf("sending control error %d\n", errcode);
518 * Fill in the fields. We assume rpkt.sequence and rpkt.associd
519 * have already been filled in.
521 rpkt.r_m_e_op = (u_char) (CTL_RESPONSE|CTL_ERROR|(res_opcode &
523 rpkt.status = htons((u_short) ((errcode<<8) & 0xff00));
527 * send packet and bump counters
529 if (res_authenticate && sys_authenticate) {
532 *(u_int32 *)((u_char *)&rpkt + CTL_HEADER_LEN) =
534 maclen = authencrypt(res_keyid, (u_int32 *)&rpkt,
536 sendpkt(rmt_addr, lcl_inter, -2, (struct pkt *)&rpkt,
537 CTL_HEADER_LEN + maclen);
539 sendpkt(rmt_addr, lcl_inter, -3, (struct pkt *)&rpkt,
547 * process_control - process an incoming control message
551 struct recvbuf *rbufp,
555 register struct ntp_control *pkt;
556 register int req_count;
557 register int req_data;
558 register struct ctl_proc *cc;
564 printf("in process_control()\n");
568 * Save the addresses for error responses
571 rmt_addr = &rbufp->recv_srcadr;
572 lcl_inter = rbufp->dstadr;
573 pkt = (struct ntp_control *)&rbufp->recv_pkt;
576 * If the length is less than required for the header, or
577 * it is a response or a fragment, ignore this.
579 if (rbufp->recv_length < CTL_HEADER_LEN
580 || pkt->r_m_e_op & (CTL_RESPONSE|CTL_MORE|CTL_ERROR)
581 || pkt->offset != 0) {
584 printf("invalid format in control packet\n");
586 if (rbufp->recv_length < CTL_HEADER_LEN)
588 if (pkt->r_m_e_op & CTL_RESPONSE)
590 if (pkt->r_m_e_op & CTL_MORE)
592 if (pkt->r_m_e_op & CTL_ERROR)
594 if (pkt->offset != 0)
598 res_version = PKT_VERSION(pkt->li_vn_mode);
599 if (res_version > NTP_VERSION || res_version < NTP_OLDVERSION) {
602 printf("unknown version %d in control packet\n",
610 * Pull enough data from the packet to make intelligent
613 rpkt.li_vn_mode = PKT_LI_VN_MODE(sys_leap, res_version,
615 res_opcode = pkt->r_m_e_op;
616 rpkt.sequence = pkt->sequence;
617 rpkt.associd = pkt->associd;
620 res_associd = htons(pkt->associd);
622 res_authenticate = 0;
625 req_count = (int)htons(pkt->count);
629 dataend = &(rpkt.data[CTL_MAX_DATA_LEN]);
632 * We're set up now. Make sure we've got at least enough
633 * incoming data space to match the count.
635 req_data = rbufp->recv_length - CTL_HEADER_LEN;
636 if (req_data < req_count || rbufp->recv_length & 0x3) {
637 ctl_error(CERR_BADFMT);
638 numctldatatooshort++;
642 properlen = req_count + CTL_HEADER_LEN;
644 if (debug > 2 && (rbufp->recv_length & 0x3) != 0)
645 printf("Packet length %d unrounded\n",
648 /* round up proper len to a 8 octet boundary */
650 properlen = (properlen + 7) & ~7;
651 maclen = rbufp->recv_length - properlen;
652 if ((rbufp->recv_length & (sizeof(u_long) - 1)) == 0 &&
653 maclen >= MIN_MAC_LEN && maclen <= MAX_MAC_LEN &&
655 res_authenticate = 1;
656 res_keyid = ntohl(*(u_int32 *)((u_char *)pkt +
662 "recv_len %d, properlen %d, wants auth with keyid %08x, MAC length=%d\n",
663 rbufp->recv_length, properlen, res_keyid, maclen);
665 if (!authistrusted(res_keyid)) {
668 printf("invalid keyid %08x\n",
671 } else if (authdecrypt(res_keyid, (u_int32 *)pkt,
672 rbufp->recv_length - maclen, maclen)) {
675 printf("authenticated okay\n");
681 printf("authentication failed\n");
688 * Set up translate pointers
690 reqpt = (char *)pkt->data;
691 reqend = reqpt + req_count;
694 * Look for the opcode processor
696 for (cc = control_codes; cc->control_code != NO_REQUEST; cc++) {
697 if (cc->control_code == res_opcode) {
700 printf("opcode %d, found command handler\n",
703 if (cc->flags == AUTH && (!res_authokay ||
704 res_keyid != ctl_auth_keyid)) {
705 ctl_error(CERR_PERMISSION);
708 (cc->handler)(rbufp, restrict_mask);
714 * Can't find this one, return an error.
717 ctl_error(CERR_BADOP);
723 * ctlpeerstatus - return a status word for this peer
727 register struct peer *peer
730 register u_short status;
732 status = peer->status;
733 if (peer->flags & FLAG_CONFIG)
734 status |= CTL_PST_CONFIG;
735 if (peer->flags & FLAG_AUTHENABLE)
736 status |= CTL_PST_AUTHENABLE;
737 if (peer->flags & FLAG_AUTHENTIC)
738 status |= CTL_PST_AUTHENTIC;
739 if (peer->reach != 0)
740 status |= CTL_PST_REACH;
741 return (u_short)CTL_PEER_STATUS(status, peer->num_events,
747 * ctlclkstatus - return a status word for this clock
752 struct refclockstat *this_clock
755 return ((u_short)(((this_clock->currentstatus) << 8) |
756 (this_clock->lastevent)));
762 * ctlsysstatus - return the system status word
767 register u_char this_clock;
769 this_clock = CTL_SST_TS_UNSPEC;
772 if (sys_peer->sstclktype != CTL_SST_TS_UNSPEC) {
773 this_clock = sys_peer->sstclktype;
775 this_clock |= CTL_SST_TS_PPS;
777 if (sys_peer->refclktype < sizeof(clocktypes))
779 clocktypes[sys_peer->refclktype];
781 this_clock |= CTL_SST_TS_PPS;
784 #endif /* REFCLOCK */
785 return (u_short)CTL_SYS_STATUS(sys_leap, this_clock,
786 ctl_sys_num_events, ctl_sys_last_event);
791 * ctl_flushpkt - write out the current packet and prepare
792 * another if necessary.
802 if (!more && datanotbinflag) {
804 * Big hack, output a trailing \r\n
809 dlen = datapt - (u_char *)rpkt.data;
810 sendlen = dlen + CTL_HEADER_LEN;
813 * Pad to a multiple of 32 bits
815 while (sendlen & 0x3) {
821 * Fill in the packet with the current info
823 rpkt.r_m_e_op = (u_char)(CTL_RESPONSE|more|(res_opcode &
825 rpkt.count = htons((u_short) dlen);
826 rpkt.offset = htons( (u_short) res_offset);
830 for (i = 0; i < CTL_MAXTRAPS; i++) {
831 if (ctl_trap[i].tr_flags & TRAP_INUSE) {
833 PKT_LI_VN_MODE(sys_leap,
834 ctl_trap[i].tr_version,
837 htons(ctl_trap[i].tr_sequence);
838 sendpkt(&ctl_trap[i].tr_addr,
839 ctl_trap[i].tr_localaddr, -4,
840 (struct pkt *)&rpkt, sendlen);
842 ctl_trap[i].tr_sequence++;
847 if (res_authenticate && sys_authenticate) {
849 int totlen = sendlen;
850 keyid_t keyid = htonl(res_keyid);
853 * If we are going to authenticate, then there
854 * is an additional requirement that the MAC
855 * begin on a 64 bit boundary.
861 memcpy(datapt, &keyid, sizeof keyid);
862 maclen = authencrypt(res_keyid,
863 (u_int32 *)&rpkt, totlen);
864 sendpkt(rmt_addr, lcl_inter, -5,
865 (struct pkt *)&rpkt, totlen + maclen);
867 sendpkt(rmt_addr, lcl_inter, -6,
868 (struct pkt *)&rpkt, sendlen);
877 * Set us up for another go around.
880 datapt = (u_char *)rpkt.data;
885 * ctl_putdata - write data into the packet, fragmenting and starting
886 * another if this one is full.
892 int bin /* set to 1 when data is binary */
901 if (datapt != rpkt.data) {
904 if ((dlen + datalinelen + 1) >= MAXDATALINELEN)
917 * Save room for trailing junk
919 if (dlen + overhead + datapt > dataend) {
921 * Not enough room in this one, flush it out.
923 ctl_flushpkt(CTL_MORE);
925 memmove((char *)datapt, dp, (unsigned)dlen);
932 * ctl_putstr - write a tagged string into the response packet
942 register const char *cq;
952 if (len > (int) (sizeof(buffer) - (cp - buffer) - 1))
953 len = sizeof(buffer) - (cp - buffer) - 1;
954 memmove(cp, data, (unsigned)len);
958 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
963 * ctl_putdbl - write a tagged, signed double into the response packet
972 register const char *cq;
980 (void)sprintf(cp, "%.3f", ts);
983 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
987 * ctl_putuint - write a tagged unsigned integer into the response
996 register const char *cq;
1005 (void) sprintf(cp, "%lu", uval);
1008 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
1012 * ctl_putfs - write a decoded filestamp into the response
1022 register const char *cq;
1024 struct tm *tm = NULL;
1033 fstamp = uval - JAN_1970;
1034 tm = gmtime(&fstamp);
1038 sprintf(cp, "%04d%02d%02d%02d%02d", tm->tm_year + 1900,
1039 tm->tm_mon + 1, tm->tm_mday, tm->tm_hour, tm->tm_min);
1042 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
1048 * ctl_puthex - write a tagged unsigned integer, in hex, into the response
1057 register const char *cq;
1066 (void) sprintf(cp, "0x%lx", uval);
1069 ctl_putdata(buffer,(unsigned)( cp - buffer ), 0);
1074 * ctl_putint - write a tagged signed integer into the response
1083 register const char *cq;
1092 (void) sprintf(cp, "%ld", ival);
1095 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
1100 * ctl_putts - write a tagged timestamp, in hex, into the response
1109 register const char *cq;
1118 (void) sprintf(cp, "0x%08lx.%08lx",
1119 ts->l_ui & ULONG_CONST(0xffffffff),
1120 ts->l_uf & ULONG_CONST(0xffffffff));
1123 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
1128 * ctl_putadr - write an IP address into the response
1134 struct sockaddr_storage* addr
1138 register const char *cq;
1148 cq = numtoa(addr32);
1153 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
1157 * ctl_putid - write a tagged clock ID into the response
1166 register const char *cq;
1176 while (*cq != '\0' && (cq - id) < 4)
1178 ctl_putdata(buffer, (unsigned)( cp - buffer ), 0);
1183 * ctl_putarray - write a tagged eight element double array into the response
1193 register const char *cq;
1205 (void)sprintf(cp, " %.2f", arr[i] * 1e3);
1208 } while(i != start);
1209 ctl_putdata(buffer, (unsigned)(cp - buffer), 0);
1214 * ctl_putsys - output a system variable
1224 struct cert_info *cp;
1226 #endif /* OPENSSL */
1231 ctl_putuint(sys_var[CS_LEAP].text, sys_leap);
1235 ctl_putuint(sys_var[CS_STRATUM].text, sys_stratum);
1239 ctl_putint(sys_var[CS_PRECISION].text, sys_precision);
1243 ctl_putdbl(sys_var[CS_ROOTDELAY].text, sys_rootdelay *
1247 case CS_ROOTDISPERSION:
1248 ctl_putdbl(sys_var[CS_ROOTDISPERSION].text,
1249 sys_rootdispersion * 1e3);
1253 if (sys_stratum > 1 && sys_stratum < STRATUM_UNSPEC)
1254 ctl_putadr(sys_var[CS_REFID].text, sys_refid, NULL);
1256 ctl_putid(sys_var[CS_REFID].text,
1257 (char *)&sys_refid);
1261 ctl_putts(sys_var[CS_REFTIME].text, &sys_reftime);
1265 ctl_putuint(sys_var[CS_POLL].text, sys_poll);
1269 if (sys_peer == NULL)
1270 ctl_putuint(sys_var[CS_PEERID].text, 0);
1272 ctl_putuint(sys_var[CS_PEERID].text,
1277 ctl_putuint(sys_var[CS_STATE].text, (unsigned)state);
1281 ctl_putdbl(sys_var[CS_OFFSET].text, last_offset * 1e3);
1285 ctl_putdbl(sys_var[CS_DRIFT].text, drift_comp * 1e6);
1289 ctl_putdbl(sys_var[CS_JITTER].text, sys_jitter * 1e3);
1293 ctl_putdbl(sys_var[CS_ERROR].text, clock_jitter * 1e3);
1298 ctl_putts(sys_var[CS_CLOCK].text, &tmp);
1303 ctl_putstr(sys_var[CS_PROCESSOR].text, str_processor,
1304 sizeof(str_processor) - 1);
1306 ctl_putstr(sys_var[CS_PROCESSOR].text,
1307 utsnamebuf.machine, strlen(utsnamebuf.machine));
1308 #endif /* HAVE_UNAME */
1313 ctl_putstr(sys_var[CS_SYSTEM].text, str_system,
1314 sizeof(str_system) - 1);
1316 sprintf(str, "%s/%s", utsnamebuf.sysname, utsnamebuf.release);
1317 ctl_putstr(sys_var[CS_SYSTEM].text, str, strlen(str));
1318 #endif /* HAVE_UNAME */
1322 ctl_putstr(sys_var[CS_VERSION].text, Version,
1327 ctl_putdbl(sys_var[CS_STABIL].text, clock_stability *
1333 char buf[CTL_MAX_DATA_LEN];
1334 register char *s, *t, *be;
1335 register const char *ss;
1337 register struct ctl_var *k;
1340 be = buf + sizeof(buf) -
1341 strlen(sys_var[CS_VARLIST].text) - 4;
1343 break; /* really long var name */
1345 strcpy(s, sys_var[CS_VARLIST].text);
1349 for (k = sys_var; !(k->flags &EOV); k++) {
1350 if (k->flags & PADDING)
1352 i = strlen(k->text);
1362 for (k = ext_sys_var; k && !(k->flags &EOV);
1364 if (k->flags & PADDING)
1371 while (*ss && *ss != '=')
1374 if (s + i + 1 >= be)
1389 ctl_putdata(buf, (unsigned)( s - buf ),
1397 ctl_puthex(sys_var[CS_FLAGS].text, crypto_flags);
1405 dp = EVP_get_digestbynid(crypto_flags >> 16);
1406 strcpy(str, OBJ_nid2ln(EVP_MD_pkey_type(dp)));
1407 ctl_putstr(sys_var[CS_DIGEST].text, str,
1413 if (sys_hostname != NULL)
1414 ctl_putstr(sys_var[CS_HOST].text, sys_hostname,
1415 strlen(sys_hostname));
1419 for (cp = cinfo; cp != NULL; cp = cp->link) {
1420 sprintf(cbuf, "%s %s 0x%x", cp->subject,
1421 cp->issuer, cp->flags);
1422 ctl_putstr(sys_var[CS_CERTIF].text, cbuf,
1424 ctl_putfs(sys_var[CS_REVOKE].text, cp->last);
1429 if (hostval.fstamp != 0)
1430 ctl_putfs(sys_var[CS_PUBLIC].text,
1431 ntohl(hostval.tstamp));
1435 if (hostval.tstamp != 0)
1436 ctl_putfs(sys_var[CS_REVTIME].text,
1437 ntohl(hostval.tstamp));
1441 if (iffpar_pkey != NULL)
1442 ctl_putstr(sys_var[CS_IDENT].text,
1443 iffpar_file, strlen(iffpar_file));
1444 if (gqpar_pkey != NULL)
1445 ctl_putstr(sys_var[CS_IDENT].text,
1446 gqpar_file, strlen(gqpar_file));
1447 if (mvpar_pkey != NULL)
1448 ctl_putstr(sys_var[CS_IDENT].text,
1449 mvpar_file, strlen(mvpar_file));
1453 if (tai_leap.fstamp != 0)
1454 ctl_putfs(sys_var[CS_LEAPTAB].text,
1455 ntohl(tai_leap.fstamp));
1459 ctl_putuint(sys_var[CS_TAI].text, sys_tai);
1461 #endif /* OPENSSL */
1467 * ctl_putpeer - output a peer variable
1479 #endif /* OPENSSL */
1484 ctl_putuint(peer_var[CP_CONFIG].text,
1485 (unsigned)((peer->flags & FLAG_CONFIG) != 0));
1489 ctl_putuint(peer_var[CP_AUTHENABLE].text,
1490 (unsigned)((peer->flags & FLAG_AUTHENABLE) != 0));
1494 ctl_putuint(peer_var[CP_AUTHENTIC].text,
1495 (unsigned)((peer->flags & FLAG_AUTHENTIC) != 0));
1499 ctl_putadr(peer_var[CP_SRCADR].text, 0,
1504 ctl_putuint(peer_var[CP_SRCPORT].text,
1505 ntohs(((struct sockaddr_in*)&peer->srcadr)->sin_port));
1510 ctl_putadr(peer_var[CP_DSTADR].text, 0,
1511 &(peer->dstadr->sin));
1513 ctl_putadr(peer_var[CP_DSTADR].text, 0,
1519 ctl_putuint(peer_var[CP_DSTPORT].text,
1520 (u_long)(peer->dstadr ?
1521 ntohs(((struct sockaddr_in*)&peer->dstadr->sin)->sin_port) : 0));
1525 ctl_putuint(peer_var[CP_LEAP].text, peer->leap);
1529 ctl_putuint(peer_var[CP_HMODE].text, peer->hmode);
1533 ctl_putuint(peer_var[CP_STRATUM].text, peer->stratum);
1537 ctl_putuint(peer_var[CP_PPOLL].text, peer->ppoll);
1541 ctl_putuint(peer_var[CP_HPOLL].text, peer->hpoll);
1545 ctl_putint(peer_var[CP_PRECISION].text,
1550 ctl_putdbl(peer_var[CP_ROOTDELAY].text,
1551 peer->rootdelay * 1e3);
1554 case CP_ROOTDISPERSION:
1555 ctl_putdbl(peer_var[CP_ROOTDISPERSION].text,
1556 peer->rootdispersion * 1e3);
1560 if (peer->flags & FLAG_REFCLOCK) {
1561 ctl_putid(peer_var[CP_REFID].text,
1562 (char *)&peer->refid);
1564 if (peer->stratum > 1 && peer->stratum <
1566 ctl_putadr(peer_var[CP_REFID].text,
1569 ctl_putid(peer_var[CP_REFID].text,
1570 (char *)&peer->refid);
1575 ctl_putts(peer_var[CP_REFTIME].text, &peer->reftime);
1579 ctl_putts(peer_var[CP_ORG].text, &peer->org);
1583 ctl_putts(peer_var[CP_REC].text, &peer->rec);
1587 ctl_putts(peer_var[CP_XMT].text, &peer->xmt);
1591 ctl_puthex(peer_var[CP_REACH].text, peer->reach);
1596 ctl_puthex(peer_var[CP_FLASH].text, temp);
1600 ctl_putint(peer_var[CP_TTL].text, sys_ttl[peer->ttl]);
1604 ctl_putuint(peer_var[CP_UNREACH].text, peer->unreach);
1608 ctl_putuint(peer_var[CP_TIMER].text,
1609 peer->nextdate - current_time);
1613 ctl_putdbl(peer_var[CP_DELAY].text, peer->delay * 1e3);
1617 ctl_putdbl(peer_var[CP_OFFSET].text, peer->offset *
1622 ctl_putdbl(peer_var[CP_JITTER].text, peer->jitter * 1e3);
1626 ctl_putdbl(peer_var[CP_DISPERSION].text, peer->disp *
1631 ctl_putuint(peer_var[CP_KEYID].text, peer->keyid);
1635 ctl_putarray(peer_var[CP_FILTDELAY].text,
1636 peer->filter_delay, (int)peer->filter_nextpt);
1640 ctl_putarray(peer_var[CP_FILTOFFSET].text,
1641 peer->filter_offset, (int)peer->filter_nextpt);
1645 ctl_putarray(peer_var[CP_FILTERROR].text,
1646 peer->filter_disp, (int)peer->filter_nextpt);
1650 ctl_putuint(peer_var[CP_PMODE].text, peer->pmode);
1654 ctl_putuint(peer_var[CP_RECEIVED].text, peer->received);
1658 ctl_putuint(peer_var[CP_SENT].text, peer->sent);
1663 char buf[CTL_MAX_DATA_LEN];
1664 register char *s, *t, *be;
1666 register struct ctl_var *k;
1669 be = buf + sizeof(buf) -
1670 strlen(peer_var[CP_VARLIST].text) - 4;
1672 break; /* really long var name */
1674 strcpy(s, peer_var[CP_VARLIST].text);
1678 for (k = peer_var; !(k->flags &EOV); k++) {
1679 if (k->flags & PADDING)
1682 i = strlen(k->text);
1683 if (s + i + 1 >= be)
1696 ctl_putdata(buf, (unsigned)(s - buf), 0);
1702 ctl_puthex(peer_var[CP_FLAGS].text, peer->crypto);
1709 dp = EVP_get_digestbynid(peer->crypto >> 16);
1710 strcpy(str, OBJ_nid2ln(EVP_MD_pkey_type(dp)));
1711 ctl_putstr(peer_var[CP_DIGEST].text, str,
1717 if (peer->subject != NULL)
1718 ctl_putstr(peer_var[CP_HOST].text,
1719 peer->subject, strlen(peer->subject));
1722 case CP_VALID: /* not used */
1726 if (peer->issuer != NULL)
1727 ctl_putstr(peer_var[CP_IDENT].text,
1728 peer->issuer, strlen(peer->issuer));
1732 if ((ap = (struct autokey *)peer->recval.ptr) == NULL)
1734 ctl_putint(peer_var[CP_INITSEQ].text, ap->seq);
1735 ctl_puthex(peer_var[CP_INITKEY].text, ap->key);
1736 ctl_putfs(peer_var[CP_INITTSP].text,
1737 ntohl(peer->recval.tstamp));
1739 #endif /* OPENSSL */
1746 * ctl_putclock - output clock variables
1751 struct refclockstat *clock_stat,
1758 if (mustput || clock_stat->clockdesc == NULL
1759 || *(clock_stat->clockdesc) == '\0') {
1760 ctl_putuint(clock_var[CC_TYPE].text, clock_stat->type);
1764 ctl_putstr(clock_var[CC_TIMECODE].text,
1765 clock_stat->p_lastcode,
1766 (unsigned)clock_stat->lencode);
1770 ctl_putuint(clock_var[CC_POLL].text, clock_stat->polls);
1774 ctl_putuint(clock_var[CC_NOREPLY].text,
1775 clock_stat->noresponse);
1779 ctl_putuint(clock_var[CC_BADFORMAT].text,
1780 clock_stat->badformat);
1784 ctl_putuint(clock_var[CC_BADDATA].text,
1785 clock_stat->baddata);
1789 if (mustput || (clock_stat->haveflags & CLK_HAVETIME1))
1790 ctl_putdbl(clock_var[CC_FUDGETIME1].text,
1791 clock_stat->fudgetime1 * 1e3);
1795 if (mustput || (clock_stat->haveflags & CLK_HAVETIME2)) ctl_putdbl(clock_var[CC_FUDGETIME2].text,
1796 clock_stat->fudgetime2 * 1e3);
1800 if (mustput || (clock_stat->haveflags & CLK_HAVEVAL1))
1801 ctl_putint(clock_var[CC_FUDGEVAL1].text,
1802 clock_stat->fudgeval1);
1806 if (mustput || (clock_stat->haveflags & CLK_HAVEVAL2)) {
1807 if (clock_stat->fudgeval1 > 1)
1808 ctl_putadr(clock_var[CC_FUDGEVAL2].text,
1809 (u_int32)clock_stat->fudgeval2, NULL);
1811 ctl_putid(clock_var[CC_FUDGEVAL2].text,
1812 (char *)&clock_stat->fudgeval2);
1817 if (mustput || (clock_stat->haveflags & (CLK_HAVEFLAG1 |
1818 CLK_HAVEFLAG2 | CLK_HAVEFLAG3 | CLK_HAVEFLAG4)))
1819 ctl_putuint(clock_var[CC_FLAGS].text,
1824 if (clock_stat->clockdesc == NULL ||
1825 *(clock_stat->clockdesc) == '\0') {
1827 ctl_putstr(clock_var[CC_DEVICE].text,
1830 ctl_putstr(clock_var[CC_DEVICE].text,
1831 clock_stat->clockdesc,
1832 strlen(clock_stat->clockdesc));
1838 char buf[CTL_MAX_DATA_LEN];
1839 register char *s, *t, *be;
1840 register const char *ss;
1842 register struct ctl_var *k;
1845 be = buf + sizeof(buf);
1846 if (s + strlen(clock_var[CC_VARLIST].text) + 4 >
1848 break; /* really long var name */
1850 strcpy(s, clock_var[CC_VARLIST].text);
1855 for (k = clock_var; !(k->flags &EOV); k++) {
1856 if (k->flags & PADDING)
1859 i = strlen(k->text);
1860 if (s + i + 1 >= be)
1869 for (k = clock_stat->kv_list; k && !(k->flags &
1871 if (k->flags & PADDING)
1878 while (*ss && *ss != '=')
1886 strncpy(s, k->text, (unsigned)i);
1895 ctl_putdata(buf, (unsigned)( s - buf ), 0);
1905 * ctl_getitem - get the next data item from the incoming packet
1907 static struct ctl_var *
1909 struct ctl_var *var_list,
1913 register struct ctl_var *v;
1916 static struct ctl_var eol = { 0, EOV, };
1917 static char buf[128];
1920 * Delete leading commas and white space
1922 while (reqpt < reqend && (*reqpt == ',' ||
1923 isspace((unsigned char)*reqpt)))
1925 if (reqpt >= reqend)
1928 if (var_list == (struct ctl_var *)0)
1932 * Look for a first character match on the tag. If we find
1933 * one, see if it is a full match.
1937 while (!(v->flags & EOV)) {
1938 if (!(v->flags & PADDING) && *cp == *(v->text)) {
1940 while (*tp != '\0' && *tp != '=' && cp <
1941 reqend && *cp == *tp) {
1945 if ((*tp == '\0') || (*tp == '=')) {
1946 while (cp < reqend && isspace((unsigned char)*cp))
1948 if (cp == reqend || *cp == ',') {
1959 while (cp < reqend && isspace((unsigned char)*cp))
1961 while (cp < reqend && *cp != ',') {
1963 if (tp >= buf + sizeof(buf)) {
1964 ctl_error(CERR_BADFMT);
1966 #if 0 /* Avoid possible DOS attack */
1967 /* If we get a smarter msyslog we can re-enable this */
1968 msyslog(LOG_WARNING,
1969 "Possible 'ntpdx' exploit from %s:%d (possibly spoofed)\n",
1970 stoa(rmt_addr), SRCPORT(rmt_addr)
1980 if (!isspace((unsigned int)(*tp)))
1998 * control_unspec - response to an unspecified op-code
2003 struct recvbuf *rbufp,
2010 * What is an appropriate response to an unspecified op-code?
2011 * I return no errors and no data, unless a specified assocation
2014 if (res_associd != 0) {
2015 if ((peer = findpeerbyassoc(res_associd)) == 0) {
2016 ctl_error(CERR_BADASSOC);
2019 rpkt.status = htons(ctlpeerstatus(peer));
2021 rpkt.status = htons(ctlsysstatus());
2028 * read_status - return either a list of associd's, or a particular
2034 struct recvbuf *rbufp,
2039 register struct peer *peer;
2040 u_short ass_stat[CTL_MAX_DATA_LEN / sizeof(u_short)];
2044 printf("read_status: ID %d\n", res_associd);
2047 * Two choices here. If the specified association ID is
2048 * zero we return all known assocation ID's. Otherwise
2049 * we return a bunch of stuff about the particular peer.
2051 if (res_associd == 0) {
2055 rpkt.status = htons(ctlsysstatus());
2056 for (i = 0; i < NTP_HASH_SIZE; i++) {
2057 for (peer = assoc_hash[i]; peer != 0;
2058 peer = peer->ass_next) {
2059 ass_stat[n++] = htons(peer->associd);
2061 htons(ctlpeerstatus(peer));
2063 CTL_MAX_DATA_LEN/sizeof(u_short)) {
2064 ctl_putdata((char *)ass_stat,
2065 n * sizeof(u_short), 1);
2072 ctl_putdata((char *)ass_stat, n *
2073 sizeof(u_short), 1);
2076 peer = findpeerbyassoc(res_associd);
2078 ctl_error(CERR_BADASSOC);
2080 register u_char *cp;
2082 rpkt.status = htons(ctlpeerstatus(peer));
2084 peer->num_events = 0;
2086 * For now, output everything we know about the
2087 * peer. May be more selective later.
2089 for (cp = def_peer_var; *cp != 0; cp++)
2090 ctl_putpeer((int)*cp, peer);
2098 * read_variables - return the variables the caller asks for
2103 struct recvbuf *rbufp,
2107 register struct ctl_var *v;
2111 unsigned int gotvar = (CS_MAXCODE > CP_MAXCODE) ? (CS_MAXCODE +
2112 1) : (CP_MAXCODE + 1);
2113 if (res_associd == 0) {
2115 * Wants system variables. Figure out which he wants
2116 * and give them to him.
2118 rpkt.status = htons(ctlsysstatus());
2120 ctl_sys_num_events = 0;
2121 gotvar += count_var(ext_sys_var);
2122 wants = (u_char *)emalloc(gotvar);
2123 memset((char *)wants, 0, gotvar);
2125 while ((v = ctl_getitem(sys_var, &valuep)) != 0) {
2126 if (v->flags & EOV) {
2127 if ((v = ctl_getitem(ext_sys_var,
2129 if (v->flags & EOV) {
2130 ctl_error(CERR_UNKNOWNVAR);
2131 free((char *)wants);
2134 wants[CS_MAXCODE + 1 +
2139 break; /* shouldn't happen ! */
2146 for (i = 1; i <= CS_MAXCODE; i++)
2149 for (i = 0; ext_sys_var &&
2150 !(ext_sys_var[i].flags & EOV); i++)
2151 if (wants[i + CS_MAXCODE + 1])
2152 ctl_putdata(ext_sys_var[i].text,
2153 strlen(ext_sys_var[i].text),
2156 register u_char *cs;
2157 register struct ctl_var *kv;
2159 for (cs = def_sys_var; *cs != 0; cs++)
2160 ctl_putsys((int)*cs);
2161 for (kv = ext_sys_var; kv && !(kv->flags & EOV);
2163 if (kv->flags & DEF)
2164 ctl_putdata(kv->text,
2165 strlen(kv->text), 0);
2167 free((char *)wants);
2169 register struct peer *peer;
2172 * Wants info for a particular peer. See if we know
2175 peer = findpeerbyassoc(res_associd);
2177 ctl_error(CERR_BADASSOC);
2180 rpkt.status = htons(ctlpeerstatus(peer));
2182 peer->num_events = 0;
2183 wants = (u_char *)emalloc(gotvar);
2184 memset((char*)wants, 0, gotvar);
2186 while ((v = ctl_getitem(peer_var, &valuep)) != 0) {
2187 if (v->flags & EOV) {
2188 ctl_error(CERR_UNKNOWNVAR);
2189 free((char *)wants);
2196 for (i = 1; i <= CP_MAXCODE; i++)
2198 ctl_putpeer(i, peer);
2200 register u_char *cp;
2202 for (cp = def_peer_var; *cp != 0; cp++)
2203 ctl_putpeer((int)*cp, peer);
2205 free((char *)wants);
2212 * write_variables - write into variables. We only allow leap bit
2218 struct recvbuf *rbufp,
2222 register struct ctl_var *v;
2223 register int ext_var;
2228 * If he's trying to write into a peer tell him no way
2230 if (res_associd != 0) {
2231 ctl_error(CERR_PERMISSION);
2238 rpkt.status = htons(ctlsysstatus());
2241 * Look through the variables. Dump out at the first sign of
2244 while ((v = ctl_getitem(sys_var, &valuep)) != 0) {
2246 if (v->flags & EOV) {
2247 if ((v = ctl_getitem(ext_sys_var, &valuep)) !=
2249 if (v->flags & EOV) {
2250 ctl_error(CERR_UNKNOWNVAR);
2258 if (!(v->flags & CAN_WRITE)) {
2259 ctl_error(CERR_PERMISSION);
2262 if (!ext_var && (*valuep == '\0' || !atoint(valuep,
2264 ctl_error(CERR_BADFMT);
2267 if (!ext_var && (val & ~LEAP_NOTINSYNC) != 0) {
2268 ctl_error(CERR_BADVALUE);
2273 char *s = (char *)emalloc(strlen(v->text) +
2274 strlen(valuep) + 2);
2279 while (*t && *t != '=')
2284 set_sys_var(s, strlen(s)+1, v->flags);
2288 * This one seems sane. Save it.
2294 ctl_error(CERR_UNSPEC); /* really */
2301 * If we got anything, do it. xxx nothing to do ***
2304 if (leapind != ~0 || leapwarn != ~0) {
2305 if (!leap_setleap((int)leapind, (int)leapwarn)) {
2306 ctl_error(CERR_PERMISSION);
2316 * read_clock_status - return clock radio status
2321 struct recvbuf *rbufp,
2327 * If no refclock support, no data to return
2329 ctl_error(CERR_BADASSOC);
2331 register struct ctl_var *v;
2333 register struct peer *peer;
2336 unsigned int gotvar;
2337 struct refclockstat clock_stat;
2339 if (res_associd == 0) {
2342 * Find a clock for this jerk. If the system peer
2343 * is a clock use it, else search the hash tables
2346 if (sys_peer != 0 && (sys_peer->flags & FLAG_REFCLOCK))
2351 for (i = 0; peer == 0 && i < NTP_HASH_SIZE; i++) {
2352 for (peer = assoc_hash[i]; peer != 0;
2353 peer = peer->ass_next) {
2354 if (peer->flags & FLAG_REFCLOCK)
2359 ctl_error(CERR_BADASSOC);
2364 peer = findpeerbyassoc(res_associd);
2365 if (peer == 0 || !(peer->flags & FLAG_REFCLOCK)) {
2366 ctl_error(CERR_BADASSOC);
2372 * If we got here we have a peer which is a clock. Get his
2375 clock_stat.kv_list = (struct ctl_var *)0;
2376 refclock_control(&peer->srcadr, (struct refclockstat *)0,
2380 * Look for variables in the packet.
2382 rpkt.status = htons(ctlclkstatus(&clock_stat));
2383 gotvar = CC_MAXCODE + 1 + count_var(clock_stat.kv_list);
2384 wants = (u_char *)emalloc(gotvar);
2385 memset((char*)wants, 0, gotvar);
2387 while ((v = ctl_getitem(clock_var, &valuep)) != 0) {
2388 if (v->flags & EOV) {
2389 if ((v = ctl_getitem(clock_stat.kv_list,
2391 if (v->flags & EOV) {
2392 ctl_error(CERR_UNKNOWNVAR);
2394 free_varlist(clock_stat.kv_list);
2397 wants[CC_MAXCODE + 1 + v->code] = 1;
2401 break; /* shouldn't happen ! */
2409 for (i = 1; i <= CC_MAXCODE; i++)
2411 ctl_putclock(i, &clock_stat, 1);
2412 for (i = 0; clock_stat.kv_list &&
2413 !(clock_stat.kv_list[i].flags & EOV); i++)
2414 if (wants[i + CC_MAXCODE + 1])
2415 ctl_putdata(clock_stat.kv_list[i].text,
2416 strlen(clock_stat.kv_list[i].text),
2419 register u_char *cc;
2420 register struct ctl_var *kv;
2422 for (cc = def_clock_var; *cc != 0; cc++)
2423 ctl_putclock((int)*cc, &clock_stat, 0);
2424 for (kv = clock_stat.kv_list; kv && !(kv->flags & EOV);
2426 if (kv->flags & DEF)
2427 ctl_putdata(kv->text, strlen(kv->text),
2432 free_varlist(clock_stat.kv_list);
2440 * write_clock_status - we don't do this
2445 struct recvbuf *rbufp,
2449 ctl_error(CERR_PERMISSION);
2453 * Trap support from here on down. We send async trap messages when the
2454 * upper levels report trouble. Traps can by set either by control
2455 * messages or by configuration.
2458 * set_trap - set a trap in response to a control message
2462 struct recvbuf *rbufp,
2469 * See if this guy is allowed
2471 if (restrict_mask & RES_NOTRAP) {
2472 ctl_error(CERR_PERMISSION);
2477 * Determine his allowed trap type.
2479 traptype = TRAP_TYPE_PRIO;
2480 if (restrict_mask & RES_LPTRAP)
2481 traptype = TRAP_TYPE_NONPRIO;
2484 * Call ctlsettrap() to do the work. Return
2485 * an error if it can't assign the trap.
2487 if (!ctlsettrap(&rbufp->recv_srcadr, rbufp->dstadr, traptype,
2489 ctl_error(CERR_NORESOURCE);
2495 * unset_trap - unset a trap in response to a control message
2499 struct recvbuf *rbufp,
2506 * We don't prevent anyone from removing his own trap unless the
2507 * trap is configured. Note we also must be aware of the
2508 * possibility that restriction flags were changed since this
2509 * guy last set his trap. Set the trap type based on this.
2511 traptype = TRAP_TYPE_PRIO;
2512 if (restrict_mask & RES_LPTRAP)
2513 traptype = TRAP_TYPE_NONPRIO;
2516 * Call ctlclrtrap() to clear this out.
2518 if (!ctlclrtrap(&rbufp->recv_srcadr, rbufp->dstadr, traptype))
2519 ctl_error(CERR_BADASSOC);
2525 * ctlsettrap - called to set a trap
2529 struct sockaddr_storage *raddr,
2530 struct interface *linter,
2535 register struct ctl_trap *tp;
2536 register struct ctl_trap *tptouse;
2539 * See if we can find this trap. If so, we only need update
2540 * the flags and the time.
2542 if ((tp = ctlfindtrap(raddr, linter)) != NULL) {
2545 case TRAP_TYPE_CONFIG:
2546 tp->tr_flags = TRAP_INUSE|TRAP_CONFIGURED;
2549 case TRAP_TYPE_PRIO:
2550 if (tp->tr_flags & TRAP_CONFIGURED)
2551 return (1); /* don't change anything */
2552 tp->tr_flags = TRAP_INUSE;
2555 case TRAP_TYPE_NONPRIO:
2556 if (tp->tr_flags & TRAP_CONFIGURED)
2557 return (1); /* don't change anything */
2558 tp->tr_flags = TRAP_INUSE|TRAP_NONPRIO;
2561 tp->tr_settime = current_time;
2567 * First we heard of this guy. Try to find a trap structure
2568 * for him to use, clearing out lesser priority guys if we
2569 * have to. Clear out anyone who's expired while we're at it.
2572 for (tp = ctl_trap; tp < &ctl_trap[CTL_MAXTRAPS]; tp++) {
2573 if ((tp->tr_flags & TRAP_INUSE) &&
2574 !(tp->tr_flags & TRAP_CONFIGURED) &&
2575 ((tp->tr_settime + CTL_TRAPTIME) > current_time)) {
2579 if (!(tp->tr_flags & TRAP_INUSE)) {
2581 } else if (!(tp->tr_flags & TRAP_CONFIGURED)) {
2584 case TRAP_TYPE_CONFIG:
2585 if (tptouse == NULL) {
2589 if (tptouse->tr_flags & TRAP_NONPRIO &&
2590 !(tp->tr_flags & TRAP_NONPRIO))
2593 if (!(tptouse->tr_flags & TRAP_NONPRIO)
2594 && tp->tr_flags & TRAP_NONPRIO) {
2598 if (tptouse->tr_origtime <
2603 case TRAP_TYPE_PRIO:
2604 if (tp->tr_flags & TRAP_NONPRIO) {
2605 if (tptouse == NULL ||
2606 (tptouse->tr_flags &
2608 tptouse->tr_origtime <
2614 case TRAP_TYPE_NONPRIO:
2621 * If we don't have room for him return an error.
2623 if (tptouse == NULL)
2627 * Set up this structure for him.
2629 tptouse->tr_settime = tptouse->tr_origtime = current_time;
2630 tptouse->tr_count = tptouse->tr_resets = 0;
2631 tptouse->tr_sequence = 1;
2632 tptouse->tr_addr = *raddr;
2633 tptouse->tr_localaddr = linter;
2634 tptouse->tr_version = (u_char) version;
2635 tptouse->tr_flags = TRAP_INUSE;
2636 if (traptype == TRAP_TYPE_CONFIG)
2637 tptouse->tr_flags |= TRAP_CONFIGURED;
2638 else if (traptype == TRAP_TYPE_NONPRIO)
2639 tptouse->tr_flags |= TRAP_NONPRIO;
2646 * ctlclrtrap - called to clear a trap
2650 struct sockaddr_storage *raddr,
2651 struct interface *linter,
2655 register struct ctl_trap *tp;
2657 if ((tp = ctlfindtrap(raddr, linter)) == NULL)
2660 if (tp->tr_flags & TRAP_CONFIGURED
2661 && traptype != TRAP_TYPE_CONFIG)
2671 * ctlfindtrap - find a trap given the remote and local addresses
2673 static struct ctl_trap *
2675 struct sockaddr_storage *raddr,
2676 struct interface *linter
2679 register struct ctl_trap *tp;
2681 for (tp = ctl_trap; tp < &ctl_trap[CTL_MAXTRAPS]; tp++) {
2682 if ((tp->tr_flags & TRAP_INUSE)
2683 && (NSRCPORT(raddr) == NSRCPORT(&tp->tr_addr))
2684 && SOCKCMP(raddr, &tp->tr_addr)
2685 && (linter == tp->tr_localaddr) )
2688 return (struct ctl_trap *)NULL;
2693 * report_event - report an event to the trappers
2704 * Record error code in proper spots, but have mercy on the
2707 if (!(err & (PEER_EVENT | CRPT_EVENT))) {
2708 if (ctl_sys_num_events < CTL_SYS_MAXEVENTS)
2709 ctl_sys_num_events++;
2710 if (ctl_sys_last_event != (u_char)err) {
2712 msyslog(LOG_INFO, "system event '%s' (0x%02x) status '%s' (0x%02x)",
2714 sysstatstr(ctlsysstatus()), ctlsysstatus());
2717 printf("report_event: system event '%s' (0x%02x) status '%s' (0x%02x)\n",
2719 sysstatstr(ctlsysstatus()),
2722 ctl_sys_last_event = (u_char)err;
2724 } else if (peer != 0) {
2728 if (ISREFCLOCKADR(&peer->srcadr))
2729 src = refnumtoa(&peer->srcadr);
2732 src = stoa(&peer->srcadr);
2734 peer->last_event = (u_char)(err & ~PEER_EVENT);
2735 if (peer->num_events < CTL_PEER_MAXEVENTS)
2737 NLOG(NLOG_PEEREVENT)
2738 msyslog(LOG_INFO, "peer %s event '%s' (0x%02x) status '%s' (0x%02x)",
2739 src, eventstr(err), err,
2740 peerstatstr(ctlpeerstatus(peer)),
2741 ctlpeerstatus(peer));
2744 printf( "peer %s event '%s' (0x%02x) status '%s' (0x%02x)\n",
2745 src, eventstr(err), err,
2746 peerstatstr(ctlpeerstatus(peer)),
2747 ctlpeerstatus(peer));
2751 "report_event: err '%s' (0x%02x), no peer",
2752 eventstr(err), err);
2755 "report_event: peer event '%s' (0x%02x), no peer\n",
2756 eventstr(err), err);
2762 * If no trappers, return.
2764 if (num_ctl_traps <= 0)
2768 * Set up the outgoing packet variables
2770 res_opcode = CTL_OP_ASYNCMSG;
2773 res_authenticate = 0;
2775 dataend = &(rpkt.data[CTL_MAX_DATA_LEN]);
2776 if (!(err & PEER_EVENT)) {
2778 rpkt.status = htons(ctlsysstatus());
2781 * For now, put everything we know about system
2782 * variables. Don't send crypto strings.
2784 for (i = 1; i <= CS_MAXCODE; i++) {
2788 #endif /* OPENSSL */
2793 * for clock exception events: add clock variables to
2794 * reflect info on exception
2796 if (err == EVNT_CLOCKEXCPT) {
2797 struct refclockstat clock_stat;
2800 clock_stat.kv_list = (struct ctl_var *)0;
2801 refclock_control(&peer->srcadr,
2802 (struct refclockstat *)0, &clock_stat);
2803 ctl_puthex("refclockstatus",
2804 ctlclkstatus(&clock_stat));
2805 for (i = 1; i <= CC_MAXCODE; i++)
2806 ctl_putclock(i, &clock_stat, 0);
2807 for (kv = clock_stat.kv_list; kv &&
2808 !(kv->flags & EOV); kv++)
2809 if (kv->flags & DEF)
2810 ctl_putdata(kv->text,
2811 strlen(kv->text), 0);
2812 free_varlist(clock_stat.kv_list);
2814 #endif /* REFCLOCK */
2816 rpkt.associd = htons(peer->associd);
2817 rpkt.status = htons(ctlpeerstatus(peer));
2820 * Dump it all. Later, maybe less.
2822 for (i = 1; i <= CP_MAXCODE; i++) {
2826 #endif /* OPENSSL */
2827 ctl_putpeer(i, peer);
2831 * for clock exception events: add clock variables to
2832 * reflect info on exception
2834 if (err == EVNT_PEERCLOCK) {
2835 struct refclockstat clock_stat;
2838 clock_stat.kv_list = (struct ctl_var *)0;
2839 refclock_control(&peer->srcadr,
2840 (struct refclockstat *)0, &clock_stat);
2842 ctl_puthex("refclockstatus",
2843 ctlclkstatus(&clock_stat));
2845 for (i = 1; i <= CC_MAXCODE; i++)
2846 ctl_putclock(i, &clock_stat, 0);
2847 for (kv = clock_stat.kv_list; kv &&
2848 !(kv->flags & EOV); kv++)
2849 if (kv->flags & DEF)
2850 ctl_putdata(kv->text,
2851 strlen(kv->text), 0);
2852 free_varlist(clock_stat.kv_list);
2854 #endif /* REFCLOCK */
2858 * We're done, return.
2865 * ctl_clr_stats - clear stat counters
2870 ctltimereset = current_time;
2873 numctlresponses = 0;
2878 numctlinputresp = 0;
2879 numctlinputfrag = 0;
2881 numctlbadoffset = 0;
2882 numctlbadversion = 0;
2883 numctldatatooshort = 0;
2899 while (!(k++->flags & EOV))
2906 struct ctl_var **kv,
2912 register struct ctl_var *k;
2917 *kv = (struct ctl_var *)emalloc((c+2)*sizeof(struct ctl_var));
2919 memmove((char *)*kv, (char *)k,
2920 sizeof(struct ctl_var)*c);
2923 (*kv)[c].code = (u_short) c;
2924 (*kv)[c].text = (char *)emalloc(size);
2925 (*kv)[c].flags = def;
2926 (*kv)[c+1].code = 0;
2927 (*kv)[c+1].text = (char *)0;
2928 (*kv)[c+1].flags = EOV;
2929 return (char *)(*kv)[c].text;
2934 struct ctl_var **kv,
2940 register struct ctl_var *k;
2941 register const char *s;
2942 register const char *t;
2950 while (!(k->flags & EOV)) {
2954 while (*t != '=' && *s - *t == 0) {
2958 if (*s == *t && ((*t == '=') || !*t)) {
2959 free((void *)k->text);
2960 td = (char *)emalloc(size);
2961 memmove(td, data, size);
2967 td = (char *)emalloc(size);
2968 memmove(td, data, size);
2976 td = add_var(kv, size, def);
2977 memmove(td, data, size);
2987 set_var(&ext_sys_var, data, size, def);
2997 for (k = kv; !(k->flags & EOV); k++)
2998 free((void *)k->text);