2 * ntpdc - control and monitor your ntpd daemon
20 #include <isc/result.h>
23 #include "ntp_select.h"
24 #include "ntp_stdlib.h"
25 #include "ntp_assert.h"
26 #include "ntp_lineedit.h"
28 #include "openssl/evp.h"
29 #include "openssl/objects.h"
31 #include <ssl_applink.c>
33 #include "ntp_libopts.h"
34 #include "ntpdc-opts.h"
38 /* vxWorks needs mode flag -casey*/
39 # define open(name, flags) open(name, flags, 0777)
40 # define SERVER_PORT_NUM 123
43 /* We use COMMAND as an autogen keyword */
49 * Because we now potentially understand a lot of commands (and
50 * it requires a lot of commands to talk to ntpd) we will run
51 * interactive if connected to a terminal.
53 static int interactive = 0; /* set to 1 when we should prompt */
54 static const char * prompt = "ntpdc> "; /* prompt to ask him about */
57 * Keyid used for authenticated requests. Obtained on the fly.
59 static u_long info_auth_keyid;
60 static int keyid_entered = 0;
62 static int info_auth_keytype = NID_md5; /* MD5 */
63 static size_t info_auth_hashlen = 16; /* MD5 */
64 u_long current_time; /* needed by authkeys; not used */
69 s_char sys_precision; /* local clock precision (log2 s) */
71 int ntpdcmain (int, char **);
73 * Built in command handler declarations
75 static int openhost (const char *);
76 static int sendpkt (void *, size_t);
77 static void growpktdata (void);
78 static int getresponse (int, int, size_t *, size_t *, const char **, size_t);
79 static int sendrequest (int, int, int, size_t, size_t, const char *);
80 static void getcmds (void);
81 static RETSIGTYPE abortcmd (int);
82 static void docmd (const char *);
83 static void tokenize (const char *, char **, int *);
84 static int findcmd (char *, struct xcmd *, struct xcmd *, struct xcmd **);
85 static int getarg (char *, int, arg_v *);
86 static int getnetnum (const char *, sockaddr_u *, char *, int);
87 static void help (struct parse *, FILE *);
88 static int helpsort (const void *, const void *);
89 static void printusage (struct xcmd *, FILE *);
90 static void timeout (struct parse *, FILE *);
91 static void my_delay (struct parse *, FILE *);
92 static void host (struct parse *, FILE *);
93 static void keyid (struct parse *, FILE *);
94 static void keytype (struct parse *, FILE *);
95 static void passwd (struct parse *, FILE *);
96 static void hostnames (struct parse *, FILE *);
97 static void setdebug (struct parse *, FILE *);
98 static void quit (struct parse *, FILE *);
99 static void version (struct parse *, FILE *);
100 static void warning (const char *, ...)
101 __attribute__((__format__(__printf__, 1, 2)));
102 static void error (const char *, ...)
103 __attribute__((__format__(__printf__, 1, 2)));
104 static u_long getkeyid (const char *);
109 * Built-in commands we understand
111 static struct xcmd builtins[] = {
112 { "?", help, { OPT|NTP_STR, NO, NO, NO },
113 { "command", "", "", "" },
114 "tell the use and syntax of commands" },
115 { "help", help, { OPT|NTP_STR, NO, NO, NO },
116 { "command", "", "", "" },
117 "tell the use and syntax of commands" },
118 { "timeout", timeout, { OPT|NTP_UINT, NO, NO, NO },
119 { "msec", "", "", "" },
120 "set the primary receive time out" },
121 { "delay", my_delay, { OPT|NTP_INT, NO, NO, NO },
122 { "msec", "", "", "" },
123 "set the delay added to encryption time stamps" },
124 { "host", host, { OPT|NTP_STR, OPT|NTP_STR, NO, NO },
125 { "-4|-6", "hostname", "", "" },
126 "specify the host whose NTP server we talk to" },
127 { "passwd", passwd, { OPT|NTP_STR, NO, NO, NO },
129 "specify a password to use for authenticated requests"},
130 { "hostnames", hostnames, { OPT|NTP_STR, NO, NO, NO },
131 { "yes|no", "", "", "" },
132 "specify whether hostnames or net numbers are printed"},
133 { "debug", setdebug, { OPT|NTP_STR, NO, NO, NO },
134 { "no|more|less", "", "", "" },
135 "set/change debugging level" },
136 { "quit", quit, { NO, NO, NO, NO },
139 { "exit", quit, { NO, NO, NO, NO },
142 { "keyid", keyid, { OPT|NTP_UINT, NO, NO, NO },
143 { "key#", "", "", "" },
144 "set/show keyid to use for authenticated requests" },
145 { "keytype", keytype, { OPT|NTP_STR, NO, NO, NO },
146 { "(md5|des)", "", "", "" },
147 "set/show key authentication type for authenticated requests (des|md5)" },
148 { "version", version, { NO, NO, NO, NO },
150 "print version number" },
151 { 0, 0, { NO, NO, NO, NO },
152 { "", "", "", "" }, "" }
157 * Default values we use.
159 #define DEFHOST "localhost" /* default host name */
160 #define DEFTIMEOUT (5) /* 5 second time out */
161 #define DEFSTIMEOUT (2) /* 2 second time out after first */
162 #define DEFDELAY 0x51EB852 /* 20 milliseconds, l_fp fraction */
163 #define LENHOSTNAME 256 /* host name is 256 characters long */
164 #define MAXCMDS 100 /* maximum commands on cmd line */
165 #define MAXHOSTS 200 /* maximum hosts on cmd line */
166 #define MAXLINE 512 /* maximum line length */
167 #define MAXTOKENS (1+1+MAXARGS+MOREARGS+2) /* maximum number of usable tokens */
168 #define SCREENWIDTH 78 /* nominal screen width in columns */
171 * Some variables used and manipulated locally
173 static struct sock_timeval tvout = { DEFTIMEOUT, 0 }; /* time out for reads */
174 static struct sock_timeval tvsout = { DEFSTIMEOUT, 0 };/* secondary time out */
175 static l_fp delay_time; /* delay time */
176 static char currenthost[LENHOSTNAME]; /* current host name */
177 int showhostnames = 1; /* show host names by default */
179 static int ai_fam_templ; /* address family */
180 static int ai_fam_default; /* default address family */
181 static SOCKET sockfd; /* fd socket is opened on */
182 static int havehost = 0; /* set to 1 when host open */
186 * Holds data returned from queries. We allocate INITDATASIZE
187 * octets to begin with, increasing this as we need to.
189 #define INITDATASIZE (sizeof(struct resp_pkt) * 16)
190 #define INCDATASIZE (sizeof(struct resp_pkt) * 8)
192 static char *pktdata;
193 static int pktdatasize;
196 * These are used to help the magic with old and new versions of ntpd.
198 int impl_ver = IMPL_XNTPD;
199 static int req_pkt_size = REQ_LEN_NOMAC;
202 * For commands typed on the command line (with the -c option)
204 static int numcmds = 0;
205 static const char *ccmds[MAXCMDS];
206 #define ADDCMD(cp) if (numcmds < MAXCMDS) ccmds[numcmds++] = (cp)
209 * When multiple hosts are specified.
211 static int numhosts = 0;
212 static const char *chosts[MAXHOSTS];
213 #define ADDHOST(cp) if (numhosts < MAXHOSTS) chosts[numhosts++] = (cp)
216 * Error codes for internal use
218 #define ERR_INCOMPLETE 16
219 #define ERR_TIMEOUT 17
222 * Macro definitions we use
224 #define ISSPACE(c) ((c) == ' ' || (c) == '\t')
225 #define ISEOL(c) ((c) == '\n' || (c) == '\r' || (c) == '\0')
226 #define STREQ(a, b) (*(a) == *(b) && strcmp((a), (b)) == 0)
229 * Jump buffer for longjumping back to the command level.
231 * See ntpq/ntpq.c for an explanation why 'sig{set,long}jmp()' is used
234 #if HAVE_DECL_SIGSETJMP && HAVE_DECL_SIGLONGJMP
235 # define JMP_BUF sigjmp_buf
236 # define SETJMP(x) sigsetjmp((x), 1)
237 # define LONGJMP(x, v) siglongjmp((x),(v))
239 # define JMP_BUF jmp_buf
240 # define SETJMP(x) setjmp((x))
241 # define LONGJMP(x, v) longjmp((x),(v))
243 static JMP_BUF interrupt_buf;
244 static volatile int jump = 0;
247 * Pointer to current output unit
249 static FILE *current_output = NULL;
252 * Command table imported from ntpdc_ops.c
254 extern struct xcmd opcmds[];
256 char const *progname;
258 #ifdef NO_MAIN_ALLOWED
259 CALL(ntpdc,"ntpdc",ntpdcmain);
267 return ntpdcmain(argc, argv);
272 void clear_globals(void)
274 showhostnames = 0; /* show host names by default */
275 havehost = 0; /* set to 1 when host open */
282 * main - parse arguments and handle options
291 delay_time.l_uf = DEFDELAY;
295 taskPrioritySet(taskIdSelf(), 100 );
298 init_lib(); /* sets up ipv4_works, ipv6_works */
302 /* Check to see if we have IPv6. Otherwise default to IPv4 */
304 ai_fam_default = AF_INET;
309 int optct = ntpOptionProcess(&ntpdcOptions, argc, argv);
315 ai_fam_templ = AF_INET;
316 else if (HAVE_OPT(IPV6))
317 ai_fam_templ = AF_INET6;
319 ai_fam_templ = ai_fam_default;
321 if (HAVE_OPT(COMMAND)) {
322 int cmdct = STACKCT_OPT( COMMAND );
323 const char** cmds = STACKLST_OPT( COMMAND );
325 while (cmdct-- > 0) {
330 debug = OPT_VALUE_SET_DEBUG_LEVEL;
332 if (HAVE_OPT(INTERACTIVE)) {
336 if (HAVE_OPT(NUMERIC)) {
340 if (HAVE_OPT(LISTPEERS)) {
344 if (HAVE_OPT(PEERS)) {
348 if (HAVE_OPT(SHOWPEERS)) {
352 if (ntp_optind == argc) {
355 for (; ntp_optind < argc; ntp_optind++)
356 ADDHOST(argv[ntp_optind]);
359 if (numcmds == 0 && interactive == 0
360 && isatty(fileno(stdin)) && isatty(fileno(stderr))) {
364 #ifndef SYS_WINNT /* Under NT cannot handle SIGINT, WIN32 spawns a handler */
366 (void) signal_no_reset(SIGINT, abortcmd);
367 #endif /* SYS_WINNT */
370 * Initialize the packet data buffer
372 pktdatasize = INITDATASIZE;
373 pktdata = emalloc(INITDATASIZE);
376 (void) openhost(chosts[0]);
382 for (ihost = 0; ihost < numhosts; ihost++) {
383 if (openhost(chosts[ihost]))
384 for (icmd = 0; icmd < numcmds; icmd++) {
386 printf ("--- %s ---\n",chosts[ihost]);
399 * openhost - open a socket to a host
406 char temphost[LENHOSTNAME];
408 struct addrinfo hints, *ai = NULL;
412 char name[LENHOSTNAME];
416 * We need to get by the [] if they were entered
419 cp = strchr(hname + 1, ']');
420 if (!cp || (octets = (size_t)(cp - hname) - 1) >= sizeof(name)) {
422 warning("%s", "bad hostname/address");
425 memcpy(name, hname + 1, octets);
431 * First try to resolve it as an ip address and if that fails,
432 * do a fullblown (dns) lookup. That way we only use the dns
433 * when it is needed and work around some implementations that
434 * will return an "IPv4-mapped IPv6 address" address if you
435 * give it an IPv4 address to lookup.
437 strlcpy(service, "ntp", sizeof(service));
439 hints.ai_family = ai_fam_templ;
440 hints.ai_protocol = IPPROTO_UDP;
441 hints.ai_socktype = SOCK_DGRAM;
442 hints.ai_flags = Z_AI_NUMERICHOST;
444 a_info = getaddrinfo(hname, service, &hints, &ai);
445 if (a_info == EAI_NONAME
447 || a_info == EAI_NODATA
450 hints.ai_flags = AI_CANONNAME;
452 hints.ai_flags |= AI_ADDRCONFIG;
454 a_info = getaddrinfo(hname, service, &hints, &ai);
456 /* Some older implementations don't like AI_ADDRCONFIG. */
457 if (a_info == EAI_BADFLAGS) {
458 hints.ai_flags = AI_CANONNAME;
459 a_info = getaddrinfo(hname, service, &hints, &ai);
462 fprintf(stderr, "%s\n", gai_strerror(a_info));
469 * getaddrinfo() has returned without error so ai should not
474 octets = min(sizeof(addr), ai->ai_addrlen);
475 memcpy(&addr, ai->ai_addr, octets);
477 if (ai->ai_canonname == NULL)
478 strlcpy(temphost, stoa(&addr), sizeof(temphost));
480 strlcpy(temphost, ai->ai_canonname, sizeof(temphost));
483 printf("Opening host %s\n", temphost);
487 printf("Closing old host %s\n", currenthost);
491 strlcpy(currenthost, temphost, sizeof(currenthost));
493 /* port maps to the same in both families */
494 s_port = NSRCPORT(&addr);;
496 ((struct sockaddr_in6 *)&hostaddr)->sin6_port = htons(SERVER_PORT_NUM);
497 if (ai->ai_family == AF_INET)
498 *(struct sockaddr_in *)&hostaddr=
499 *((struct sockaddr_in *)ai->ai_addr);
501 *(struct sockaddr_in6 *)&hostaddr=
502 *((struct sockaddr_in6 *)ai->ai_addr);
503 #endif /* SYS_VXWORKS */
507 int optionValue = SO_SYNCHRONOUS_NONALERT;
510 err = setsockopt(INVALID_SOCKET, SOL_SOCKET, SO_OPENTYPE, (void *)&optionValue, sizeof(optionValue));
511 if (err != NO_ERROR) {
512 (void) fprintf(stderr, "cannot open nonoverlapped sockets\n");
516 #endif /* SYS_WINNT */
518 sockfd = socket(ai->ai_family, SOCK_DGRAM, 0);
519 if (sockfd == INVALID_SOCKET) {
524 #ifdef NEED_RCVBUF_SLOP
527 int rbufsize = INITDATASIZE + 2048; /* 2K for slop */
529 if (setsockopt(sockfd, SOL_SOCKET, SO_RCVBUF,
530 (void *)&rbufsize, sizeof(int)) == -1)
537 if (connect(sockfd, (struct sockaddr *)&hostaddr,
538 sizeof(hostaddr)) == -1)
540 if (connect(sockfd, ai->ai_addr, ai->ai_addrlen) == -1)
541 #endif /* SYS_VXWORKS */
549 req_pkt_size = REQ_LEN_NOMAC;
550 impl_ver = IMPL_XNTPD;
555 /* XXX ELIMINATE sendpkt similar in ntpq.c, ntpdc.c, ntp_io.c, ntptrace.c */
557 * sendpkt - send a packet to the remote host
565 if (send(sockfd, xdata, xdatalen, 0) == -1) {
566 warning("write to %s failed", currenthost);
575 * growpktdata - grow the packet data area
582 priorsz = (size_t)pktdatasize;
583 pktdatasize += INCDATASIZE;
584 pktdata = erealloc_zero(pktdata, (size_t)pktdatasize, priorsz);
589 * getresponse - get a (series of) response packet(s) and return the data
601 struct resp_pkt rpkt;
602 struct sock_timeval tvo;
609 char haveseq[MAXSEQ+1];
617 /* absolute timeout checks. Not 'time_t' by intention! */
618 uint32_t tobase; /* base value for timeout */
619 uint32_t tospan; /* timeout span (max delay) */
620 uint32_t todiff; /* current delay */
623 * This is pretty tricky. We may get between 1 and many packets
624 * back in response to the request. We peel the data out of
625 * each packet and collect it in one long block. When the last
626 * packet in the sequence is received we'll know how many we
627 * should have had. Note we use one long time out, should reconsider.
633 *rdata = datap = pktdata;
634 lastseq = 999; /* too big to be a sequence number */
637 tobase = (uint32_t)time(NULL);
644 tospan = (uint32_t)tvo.tv_sec + (tvo.tv_usec != 0);
646 FD_SET(sockfd, &fds);
647 n = select(sockfd+1, &fds, NULL, NULL, &tvo);
649 warning("select fails");
654 * Check if this is already too late. Trash the data and fake a
655 * timeout if this is so.
657 todiff = (((uint32_t)time(NULL)) - tobase) & 0x7FFFFFFFu;
658 if ((n > 0) && (todiff > tospan)) {
659 n = recv(sockfd, (char *)&rpkt, sizeof(rpkt), 0);
660 n -= n; /* faked timeout return from 'select()'*/
665 * Timed out. Return what we have
668 (void) fprintf(stderr,
669 "%s: timed out, nothing received\n",
673 (void) fprintf(stderr,
674 "%s: timed out with incomplete data\n",
677 printf("Received sequence numbers");
678 for (n = 0; n <= MAXSEQ; n++)
680 printf(" %zd,", (size_t)n);
682 printf(" last frame received\n");
684 printf(" last frame not received\n");
686 return ERR_INCOMPLETE;
690 n = recv(sockfd, (char *)&rpkt, sizeof(rpkt), 0);
698 * Check for format errors. Bug proofing.
700 if (n < (ssize_t)RESP_HEADER_SIZE) {
702 printf("Short (%zd byte) packet received\n", (size_t)n);
705 if (INFO_VERSION(rpkt.rm_vn_mode) > NTP_VERSION ||
706 INFO_VERSION(rpkt.rm_vn_mode) < NTP_OLDVERSION) {
708 printf("Packet received with version %d\n",
709 INFO_VERSION(rpkt.rm_vn_mode));
712 if (INFO_MODE(rpkt.rm_vn_mode) != MODE_PRIVATE) {
714 printf("Packet received with mode %d\n",
715 INFO_MODE(rpkt.rm_vn_mode));
718 if (INFO_IS_AUTH(rpkt.auth_seq)) {
720 printf("Encrypted packet received\n");
723 if (!ISRESPONSE(rpkt.rm_vn_mode)) {
725 printf("Received request packet, wanted response\n");
728 if (INFO_MBZ(rpkt.mbz_itemsize) != 0) {
730 printf("Received packet with nonzero MBZ field!\n");
735 * Check implementation/request. Could be old data getting to us.
737 if (rpkt.implementation != implcode || rpkt.request != reqcode) {
740 "Received implementation/request of %d/%d, wanted %d/%d",
741 rpkt.implementation, rpkt.request,
747 * Check the error code. If non-zero, return it.
749 if (INFO_ERR(rpkt.err_nitems) != INFO_OKAY) {
750 if (debug && ISMORE(rpkt.rm_vn_mode)) {
751 printf("Error code %d received on not-final packet\n",
752 INFO_ERR(rpkt.err_nitems));
754 return (int)INFO_ERR(rpkt.err_nitems);
758 * Collect items and size. Make sure they make sense.
760 items = INFO_NITEMS(rpkt.err_nitems);
761 size = INFO_ITEMSIZE(rpkt.mbz_itemsize);
766 datasize = items * size;
767 if ((size_t)datasize > (n-RESP_HEADER_SIZE)) {
770 "Received items %zu, size %zu (total %zu), data in packet is %zu\n",
771 items, size, datasize, n-RESP_HEADER_SIZE);
776 * If this isn't our first packet, make sure the size matches
779 if (!firstpkt && size != *rsize) {
781 printf("Received itemsize %zu, previous %zu\n",
786 * If we've received this before, +toss it
788 seq = INFO_SEQ(rpkt.auth_seq);
791 printf("Received duplicate sequence number %d\n", seq);
797 * If this is the last in the sequence, record that.
799 if (!ISMORE(rpkt.rm_vn_mode)) {
800 if (lastseq != 999) {
801 printf("Received second end sequence packet\n");
808 * So far, so good. Copy this data into the output array. Bump
809 * the timeout base, in case we expect more data.
811 tobase = (uint32_t)time(NULL);
812 if ((datap + datasize + (pad * items)) > (pktdata + pktdatasize)) {
813 size_t offset = datap - pktdata;
815 *rdata = pktdata; /* might have been realloced ! */
816 datap = pktdata + offset;
819 * We now move the pointer along according to size and number of
820 * items. This is so we can play nice with older implementations
823 tmp_data = rpkt.u.data;
824 for (i = 0; i < items; i++) {
825 memcpy(datap, tmp_data, (unsigned)size);
827 zero_mem(datap + size, pad);
838 * Finally, check the count of received packets. If we've got them
842 if (numrecv <= lastseq)
849 * sendrequest - format and send a request packet
851 * Historically, ntpdc has used a fixed-size request packet regardless
852 * of the actual payload size. When authenticating, the timestamp, key
853 * ID, and digest have been placed just before the end of the packet.
854 * With the introduction in late 2009 of support for authenticated
855 * ntpdc requests using larger 20-octet digests (vs. 16 for MD5), we
856 * come up four bytes short.
858 * To maintain interop while allowing for larger digests, the behavior
859 * is unchanged when using 16-octet digests. For larger digests, the
860 * timestamp, key ID, and digest are placed immediately following the
861 * request payload, with the overall packet size variable. ntpd can
862 * distinguish 16-octet digests by the overall request size being
863 * REQ_LEN_NOMAC + 4 + 16 with the auth bit enabled. When using a
864 * longer digest, that request size should be avoided.
866 * With the form used with 20-octet and larger digests, the timestamp,
867 * key ID, and digest are located by ntpd relative to the start of the
868 * packet, and the size of the digest is then implied by the packet
891 qpkt.rm_vn_mode = RM_VN_MODE(0, 0, 0);
892 qpkt.implementation = (u_char)implcode;
893 qpkt.request = (u_char)reqcode;
895 datasize = qitems * qsize;
896 if (datasize && qdata != NULL) {
897 memcpy(qpkt.u.data, qdata, datasize);
898 qpkt.err_nitems = ERR_NITEMS(0, qitems);
899 qpkt.mbz_itemsize = MBZ_ITEMSIZE(qsize);
901 qpkt.err_nitems = ERR_NITEMS(0, 0);
902 qpkt.mbz_itemsize = MBZ_ITEMSIZE(qsize); /* allow for optional first item */
905 if (!auth || (keyid_entered && info_auth_keyid == 0)) {
906 qpkt.auth_seq = AUTH_SEQ(0, 0);
907 return sendpkt(&qpkt, req_pkt_size);
910 if (info_auth_keyid == 0) {
911 key_id = getkeyid("Keyid: ");
913 fprintf(stderr, "Invalid key identifier\n");
916 info_auth_keyid = key_id;
918 if (!authistrusted(info_auth_keyid)) {
919 pass = getpass_keytype(info_auth_keytype);
920 if ('\0' == pass[0]) {
921 fprintf(stderr, "Invalid password\n");
924 authusekey(info_auth_keyid, info_auth_keytype,
926 authtrust(info_auth_keyid, 1);
928 qpkt.auth_seq = AUTH_SEQ(1, 0);
929 if (info_auth_hashlen > 16) {
931 * Only ntpd which expects REQ_LEN_NOMAC plus maclen
932 * octets in an authenticated request using a 16 octet
933 * digest (that is, a newer ntpd) will handle digests
934 * larger than 16 octets, so for longer digests, do
935 * not attempt to shorten the requests for downlevel
936 * ntpd compatibility.
938 if (REQ_LEN_NOMAC != req_pkt_size)
940 reqsize = REQ_LEN_HDR + datasize + sizeof(*ptstamp);
941 /* align to 32 bits */
942 reqsize = (reqsize + 3) & ~3;
944 reqsize = req_pkt_size;
945 ptstamp = (void *)((char *)&qpkt + reqsize);
948 L_ADD(&ts, &delay_time);
949 HTONL_FP(&ts, ptstamp);
950 maclen = authencrypt(
951 info_auth_keyid, (void *)&qpkt, size2int_chk(reqsize));
953 fprintf(stderr, "Key not found\n");
955 } else if (maclen != (size_t)(info_auth_hashlen + sizeof(keyid_t))) {
957 "%zu octet MAC, %zu expected with %zu octet digest\n",
958 maclen, (info_auth_hashlen + sizeof(keyid_t)),
962 return sendpkt(&qpkt, reqsize + maclen);
967 * doquery - send a request and process the response
987 struct sock_timeval tvzero;
990 * Check to make sure host is open
993 (void) fprintf(stderr, "***No host open, use `host' command\n");
998 * Poll the socket and clear out any pending data
1002 tvzero.tv_sec = tvzero.tv_usec = 0;
1004 FD_SET(sockfd, &fds);
1005 res = select(sockfd+1, &fds, NULL, NULL, &tvzero);
1007 warning("polling select");
1011 (void) recv(sockfd, junk, sizeof junk, 0);
1018 res = sendrequest(implcode, reqcode, auth, qitems, qsize, qdata);
1023 * Get the response. If we got a standard error, print a message
1025 res = getresponse(implcode, reqcode, ritems, rsize, rdata, esize);
1028 * Try to be compatible with older implementations of ntpd.
1030 if (res == INFO_ERR_FMT && req_pkt_size != 48) {
1033 oldsize = req_pkt_size;
1035 switch(req_pkt_size) {
1043 if (impl_ver == IMPL_XNTPD) {
1045 "***Warning changing to older implementation\n");
1046 return INFO_ERR_IMPL;
1050 "***Warning changing the request packet size from %d to %d\n",
1051 oldsize, req_pkt_size);
1055 /* log error message if not told to be quiet */
1056 if ((res > 0) && (((1 << res) & quiet_mask) == 0)) {
1059 /* Give us a chance to try the older implementation. */
1060 if (implcode == IMPL_XNTPD)
1062 (void) fprintf(stderr,
1063 "***Server implementation incompatible with our own\n");
1066 (void) fprintf(stderr,
1067 "***Server doesn't implement this request\n");
1070 (void) fprintf(stderr,
1071 "***Server reports a format error in the received packet (shouldn't happen)\n");
1073 case INFO_ERR_NODATA:
1074 (void) fprintf(stderr,
1075 "***Server reports data not found\n");
1078 (void) fprintf(stderr, "***Permission denied\n");
1081 (void) fprintf(stderr, "***Request timed out\n");
1083 case ERR_INCOMPLETE:
1084 (void) fprintf(stderr,
1085 "***Response from server was incomplete\n");
1088 (void) fprintf(stderr,
1089 "***Server returns unknown error code %d\n", res);
1098 * getcmds - read commands from the standard input and execute them
1106 ntp_readline_init(interactive ? prompt : NULL);
1109 line = ntp_readline(&count);
1116 ntp_readline_uninit();
1120 #ifndef SYS_WINNT /* Under NT cannot handle SIGINT, WIN32 spawns a handler */
1122 * abortcmd - catch interrupts and abort the current command
1129 if (current_output == stdout)
1130 (void)fflush(stdout);
1132 (void)fflush(stderr);
1135 LONGJMP(interrupt_buf, 1);
1138 #endif /* SYS_WINNT */
1141 * docmd - decode the command line and execute a command
1148 char *tokens[1+MAXARGS+MOREARGS+2];
1155 ai_fam_templ = ai_fam_default;
1157 * Tokenize the command line. If nothing on it, return.
1159 if (strlen(cmdline) >= MAXLINE) {
1160 fprintf(stderr, "***Command ignored, more than %d characters:\n%s\n",
1161 MAXLINE - 1, cmdline);
1164 tokenize(cmdline, tokens, &ntok);
1169 * Find the appropriate command description.
1171 i = findcmd(tokens[0], builtins, opcmds, &xcmd);
1173 (void) fprintf(stderr, "***Command `%s' unknown\n",
1176 } else if (i >= 2) {
1177 (void) fprintf(stderr, "***Command `%s' ambiguous\n",
1183 * Save the keyword, then walk through the arguments, interpreting
1186 pcmd.keyword = tokens[0];
1189 for (i = 0; i < MAXARGS && xcmd->arg[i] != NO;) {
1190 if ((i+ti) >= ntok) {
1191 if (!(xcmd->arg[i] & OPT)) {
1192 printusage(xcmd, stderr);
1197 if ((xcmd->arg[i] & OPT) && (*tokens[i+ti] == '>'))
1199 rval = getarg(tokens[i+ti], (int)xcmd->arg[i], &pcmd.argval[i]);
1210 /* Any extra args are assumed to be "OPT|NTP_STR". */
1211 for ( ; i < MAXARGS + MOREARGS;) {
1214 rval = getarg(tokens[i+ti], (int)(OPT|NTP_STR), &pcmd.argval[i]);
1226 if (i < ntok && *tokens[i] == '>') {
1229 if (*(tokens[i]+1) != '\0')
1230 fname = tokens[i]+1;
1231 else if ((i+1) < ntok)
1232 fname = tokens[i+1];
1234 (void) fprintf(stderr, "***No file for redirect\n");
1238 current_output = fopen(fname, "w");
1239 if (current_output == NULL) {
1240 (void) fprintf(stderr, "***Error opening %s: ", fname);
1245 current_output = stdout;
1249 if ( ! SETJMP(interrupt_buf)) {
1251 (xcmd->handler)(&pcmd, current_output);
1254 fflush(current_output);
1255 fputs("\n >>> command aborted <<<\n", stderr);
1260 (xcmd->handler)(&pcmd, current_output);
1262 if ((NULL != current_output) && (stdout != current_output)) {
1263 (void)fclose(current_output);
1264 current_output = NULL;
1270 * tokenize - turn a command line into tokens
1279 register const char *cp;
1281 static char tspace[MAXLINE];
1285 for (*ntok = 0; *ntok < MAXTOKENS; (*ntok)++) {
1287 while (ISSPACE(*cp))
1293 } while (!ISSPACE(*cp) && !ISEOL(*cp));
1302 * findcmd - find a command in a command description table
1307 struct xcmd *clist1,
1308 struct xcmd *clist2,
1312 register struct xcmd *cl;
1315 struct xcmd *nearmatch = NULL;
1322 else if (clist2 != 0)
1328 for (cl = clist; cl->keyword != 0; cl++) {
1329 /* do a first character check, for efficiency */
1330 if (*str != *(cl->keyword))
1332 if (strncmp(str, cl->keyword, (unsigned)clen) == 0) {
1334 * Could be extact match, could be approximate.
1335 * Is exact if the length of the keyword is the
1338 if (*((cl->keyword) + clen) == '\0') {
1348 * See if there is more to do. If so, go again. Sorry about the
1349 * goto, too much looking at BSD sources...
1351 if (clist == clist1 && clist2 != 0) {
1357 * If we got extactly 1 near match, use it, else return number
1369 * getarg - interpret an argument token
1371 * string is always set.
1372 * type is set to the decoded type.
1374 * return: 0 - failure
1376 * -1 - skip to next token
1387 static const char *digits = "0123456789";
1391 argp->type = code & ~OPT;
1393 switch (argp->type) {
1397 if (!strcmp("-6", str)) {
1398 ai_fam_templ = AF_INET6;
1400 } else if (!strcmp("-4", str)) {
1401 ai_fam_templ = AF_INET;
1404 if (!getnetnum(str, &(argp->netnum), (char *)0, 0)) {
1419 cp = strchr(digits, *np);
1421 (void) fprintf(stderr,
1422 "***Illegal integer value %s\n", str);
1426 argp->uval += (u_long)(cp - digits);
1427 } while (*(++np) != '\0');
1430 if ((code & ~OPT) == NTP_UINT) {
1431 (void) fprintf(stderr,
1432 "***Value %s should be unsigned\n", str);
1435 argp->ival = -argp->ival;
1439 if (!strcmp("-6", str))
1441 else if (!strcmp("-4", str))
1444 (void) fprintf(stderr,
1445 "***Version must be either 4 or 6\n");
1456 * getnetnum - given a host name, return its net number
1457 * and (optional) full name
1467 struct addrinfo hints, *ai = NULL;
1470 hints.ai_flags = AI_CANONNAME;
1471 #ifdef AI_ADDRCONFIG
1472 hints.ai_flags |= AI_ADDRCONFIG;
1476 * decodenetnum only works with addresses, but handles syntax
1477 * that getaddrinfo doesn't: [2001::1]:1234
1479 if (decodenetnum(hname, num)) {
1480 if (fullhost != NULL)
1481 getnameinfo(&num->sa, SOCKLEN(num), fullhost,
1482 LENHOSTNAME, NULL, 0, 0);
1484 } else if (getaddrinfo(hname, "ntp", &hints, &ai) == 0) {
1485 INSIST(sizeof(*num) >= ai->ai_addrlen);
1486 memcpy(num, ai->ai_addr, ai->ai_addrlen);
1487 if (fullhost != NULL) {
1488 if (ai->ai_canonname != NULL)
1489 strlcpy(fullhost, ai->ai_canonname,
1492 getnameinfo(&num->sa, SOCKLEN(num),
1493 fullhost, LENHOSTNAME, NULL,
1498 fprintf(stderr, "***Can't find host %s\n", hname);
1505 * nntohost - convert network number to host name. This routine enforces
1506 * the showhostnames setting.
1513 if (!showhostnames || SOCK_UNSPEC(netnum))
1514 return stoa(netnum);
1515 else if (ISREFCLOCKADR(netnum))
1516 return refnumtoa(netnum);
1518 return socktohost(netnum);
1523 * Finally, the built in command handlers
1527 * help - tell about commands, or details of a particular command
1537 const char *list[100];
1543 if (pcmd->nargs == 0) {
1545 for (xcp = builtins; xcp->keyword != 0; xcp++) {
1546 if (*(xcp->keyword) != '?')
1547 list[words++] = xcp->keyword;
1549 for (xcp = opcmds; xcp->keyword != 0; xcp++)
1550 list[words++] = xcp->keyword;
1552 qsort((void *)list, words, sizeof(list[0]), helpsort);
1554 for (word = 0; word < words; word++) {
1555 length = strlen(list[word]);
1556 col = max(col, length);
1559 cols = SCREENWIDTH / ++col;
1560 rows = (words + cols - 1) / cols;
1562 fprintf(fp, "ntpdc commands:\n");
1564 for (row = 0; row < rows; row++) {
1565 for (word = row; word < words; word += rows)
1566 fprintf(fp, "%-*.*s", (int)col,
1567 (int)col - 1, list[word]);
1571 cmd = pcmd->argval[0].string;
1572 words = findcmd(cmd, builtins, opcmds, &xcp);
1575 "Command `%s' is unknown\n", cmd);
1577 } else if (words >= 2) {
1579 "Command `%s' is ambiguous\n", cmd);
1582 fprintf(fp, "function: %s\n", xcp->comment);
1583 printusage(xcp, fp);
1589 * helpsort - do hostname qsort comparisons
1597 const char * const * name1 = t1;
1598 const char * const * name2 = t2;
1600 return strcmp(*name1, *name2);
1605 * printusage - print usage information for a command
1616 (void) fprintf(fp, "usage: %s", xcp->keyword);
1617 for (i = 0; i < MAXARGS && xcp->arg[i] != NO; i++) {
1618 if (opt46 == 0 && (xcp->arg[i] & ~OPT) == NTP_ADD) {
1619 (void) fprintf(fp, " [ -4|-6 ]");
1622 if (xcp->arg[i] & OPT)
1623 (void) fprintf(fp, " [ %s ]", xcp->desc[i]);
1625 (void) fprintf(fp, " %s", xcp->desc[i]);
1627 (void) fprintf(fp, "\n");
1632 * timeout - set time out time
1642 if (pcmd->nargs == 0) {
1643 val = tvout.tv_sec * 1000 + tvout.tv_usec / 1000;
1644 (void) fprintf(fp, "primary timeout %d ms\n", val);
1646 tvout.tv_sec = pcmd->argval[0].uval / 1000;
1647 tvout.tv_usec = (pcmd->argval[0].uval - (tvout.tv_sec * 1000))
1654 * my_delay - set delay for auth requests
1665 if (pcmd->nargs == 0) {
1666 val = delay_time.l_ui * 1000 + delay_time.l_uf / 4294967;
1667 (void) fprintf(fp, "delay %lu ms\n", val);
1669 if (pcmd->argval[0].ival < 0) {
1671 val = (u_long)(-pcmd->argval[0].ival);
1674 val = (u_long)pcmd->argval[0].ival;
1677 delay_time.l_ui = val / 1000;
1679 delay_time.l_uf = val * 4294967; /* 2**32/1000 */
1688 * host - set the host we are dealing with.
1698 if (pcmd->nargs == 0) {
1700 (void) fprintf(fp, "current host is %s\n", currenthost);
1702 (void) fprintf(fp, "no current host\n");
1707 if (pcmd->nargs == 2) {
1708 if (!strcmp("-4", pcmd->argval[i].string))
1709 ai_fam_templ = AF_INET;
1710 else if (!strcmp("-6", pcmd->argval[i].string))
1711 ai_fam_templ = AF_INET6;
1715 "current host remains %s\n", currenthost);
1717 (void) fprintf(fp, "still no current host\n");
1722 if (openhost(pcmd->argval[i].string)) {
1723 (void) fprintf(fp, "current host set to %s\n", currenthost);
1727 "current host remains %s\n", currenthost);
1729 (void) fprintf(fp, "still no current host\n");
1735 * keyid - get a keyid to use for authenticating requests
1743 if (pcmd->nargs == 0) {
1744 if (info_auth_keyid == 0 && !keyid_entered)
1745 (void) fprintf(fp, "no keyid defined\n");
1746 else if (info_auth_keyid == 0 && keyid_entered)
1747 (void) fprintf(fp, "no keyid will be sent\n");
1749 (void) fprintf(fp, "keyid is %lu\n", (u_long)info_auth_keyid);
1751 info_auth_keyid = pcmd->argval[0].uval;
1758 * keytype - get type of key to use for authenticating requests
1766 const char * digest_name;
1771 fprintf(fp, "keytype is %s with %lu octet digests\n",
1772 keytype_name(info_auth_keytype),
1773 (u_long)info_auth_hashlen);
1777 digest_name = pcmd->argval[0].string;
1779 key_type = keytype_from_text(digest_name, &digest_len);
1782 fprintf(fp, "keytype must be 'md5'%s\n",
1784 " or a digest type provided by OpenSSL");
1791 info_auth_keytype = key_type;
1792 info_auth_hashlen = digest_len;
1797 * passwd - get an authentication key
1808 if (info_auth_keyid == 0) {
1809 info_auth_keyid = getkeyid("Keyid: ");
1810 if (info_auth_keyid == 0) {
1811 (void)fprintf(fp, "Keyid must be defined\n");
1815 if (pcmd->nargs >= 1)
1816 pass = pcmd->argval[0].string;
1818 pass = getpass_keytype(info_auth_keytype);
1819 if ('\0' == *pass) {
1820 fprintf(fp, "Password unchanged\n");
1824 authusekey(info_auth_keyid, info_auth_keytype, (u_char *)pass);
1825 authtrust(info_auth_keyid, 1);
1830 * hostnames - set the showhostnames flag
1838 if (pcmd->nargs == 0) {
1840 (void) fprintf(fp, "hostnames being shown\n");
1842 (void) fprintf(fp, "hostnames not being shown\n");
1844 if (STREQ(pcmd->argval[0].string, "yes"))
1846 else if (STREQ(pcmd->argval[0].string, "no"))
1849 (void)fprintf(stderr, "What?\n");
1855 * setdebug - set/change debugging level
1863 if (pcmd->nargs == 0) {
1864 (void) fprintf(fp, "debug level is %d\n", debug);
1866 } else if (STREQ(pcmd->argval[0].string, "no")) {
1868 } else if (STREQ(pcmd->argval[0].string, "more")) {
1870 } else if (STREQ(pcmd->argval[0].string, "less")) {
1873 (void) fprintf(fp, "What?\n");
1876 (void) fprintf(fp, "debug level set to %d\n", debug);
1881 * quit - stop this nonsense
1891 closesocket(sockfd);
1897 * version - print the current version number
1907 (void) fprintf(fp, "%s\n", Version);
1912 static void __attribute__((__format__(__printf__, 1, 0)))
1913 vwarning(const char *fmt, va_list ap)
1916 (void) fprintf(stderr, "%s: ", progname);
1917 vfprintf(stderr, fmt, ap);
1918 (void) fprintf(stderr, ": %s\n", strerror(serrno));
1922 * warning - print a warning message
1924 static void __attribute__((__format__(__printf__, 1, 2)))
1938 * error - print a message and exit
1940 static void __attribute__((__format__(__printf__, 1, 2)))
1954 * getkeyid - prompt the user for a keyid to use
1958 const char *keyprompt
1968 if ((fi = fdopen(open("/dev/tty", 2), "r")) == NULL)
1970 if ((fi = _fdopen(open("CONIN$", _O_TEXT), "r")) == NULL)
1971 #endif /* SYS_WINNT */
1974 setbuf(fi, (char *)NULL);
1975 fprintf(stderr, "%s", keyprompt); fflush(stderr);
1976 for (i = 0, ilim = COUNTOF(pbuf) - 1;
1977 i < ilim && (c = getc(fi)) != '\n' && c != EOF;
1979 pbuf[i++] = (char)c;
1984 return (u_long) atoi(pbuf);