[mirror_iproute2.git] / ip / ip.c

/*
 * ip.c		"ip" utility frontend.
 *
 *		This program is free software; you can redistribute it and/or
 *		modify it under the terms of the GNU General Public License
 *		as published by the Free Software Foundation; either version
 *		2 of the License, or (at your option) any later version.
 *
 * Authors:	Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
 */

#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <fcntl.h>
#include <sys/socket.h>
#include <netinet/in.h>
#include <string.h>
#include <errno.h>

#include "SNAPSHOT.h"
#include "utils.h"
#include "ip_common.h"
#include "namespace.h"
#include "color.h"

int preferred_family = AF_UNSPEC;
int human_readable;
int use_iec;
int show_stats;
int show_details;
int oneline;
int brief;
int json;
int timestamp;
const char *_SL_;
int force;
int max_flush_loops = 10;
int batch_mode;
bool do_all;

struct rtnl_handle rth = { .fd = -1 };

static void usage(void) __attribute__((noreturn));

static void usage(void)
{
	fprintf(stderr,
"Usage: ip [ OPTIONS ] OBJECT { COMMAND | help }\n"
"       ip [ -force ] -batch filename\n"
"where  OBJECT := { link | address | addrlabel | route | rule | neigh | ntable |\n"
"                   tunnel | tuntap | maddress | mroute | mrule | monitor | xfrm |\n"
"                   netns | l2tp | fou | macsec | tcp_metrics | token | netconf | ila |\n"
"                   vrf | sr }\n"
"       OPTIONS := { -V[ersion] | -s[tatistics] | -d[etails] | -r[esolve] |\n"
"                    -h[uman-readable] | -iec |\n"
"                    -f[amily] { inet | inet6 | ipx | dnet | mpls | bridge | link } |\n"
"                    -4 | -6 | -I | -D | -B | -0 |\n"
"                    -l[oops] { maximum-addr-flush-attempts } | -br[ief] |\n"
"                    -o[neline] | -t[imestamp] | -ts[hort] | -b[atch] [filename] |\n"
"                    -rc[vbuf] [size] | -n[etns] name | -a[ll] | -c[olor]}\n");
	exit(-1);
}

static int do_help(int argc, char **argv)
{
	usage();
	return 0;
}

static const struct cmd {
	const char *cmd;
	int (*func)(int argc, char **argv);
} cmds[] = {
	{ "address",	do_ipaddr },
	{ "addrlabel",	do_ipaddrlabel },
	{ "maddress",	do_multiaddr },
	{ "route",	do_iproute },
	{ "rule",	do_iprule },
	{ "neighbor",	do_ipneigh },
	{ "neighbour",	do_ipneigh },
	{ "ntable",	do_ipntable },
	{ "ntbl",	do_ipntable },
	{ "link",	do_iplink },
	{ "l2tp",	do_ipl2tp },
	{ "fou",	do_ipfou },
	{ "ila",	do_ipila },
	{ "macsec",	do_ipmacsec },
	{ "tunnel",	do_iptunnel },
	{ "tunl",	do_iptunnel },
	{ "tuntap",	do_iptuntap },
	{ "tap",	do_iptuntap },
	{ "token",	do_iptoken },
	{ "tcpmetrics",	do_tcp_metrics },
	{ "tcp_metrics", do_tcp_metrics },
	{ "monitor",	do_ipmonitor },
	{ "xfrm",	do_xfrm },
	{ "mroute",	do_multiroute },
	{ "mrule",	do_multirule },
	{ "netns",	do_netns },
	{ "netconf",	do_ipnetconf },
	{ "vrf",	do_ipvrf},
	{ "sr",		do_seg6 },
	{ "help",	do_help },
	{ 0 }
};

static int do_cmd(const char *argv0, int argc, char **argv)
{
	const struct cmd *c;

	for (c = cmds; c->cmd; ++c) {
		if (matches(argv0, c->cmd) == 0)
			return -(c->func(argc-1, argv+1));
	}

	fprintf(stderr, "Object \"%s\" is unknown, try \"ip help\".\n", argv0);
	return EXIT_FAILURE;
}

static int batch(const char *name)
{
	char *line = NULL;
	size_t len = 0;
	int ret = EXIT_SUCCESS;
	int orig_family = preferred_family;

	batch_mode = 1;

	if (name && strcmp(name, "-") != 0) {
		if (freopen(name, "r", stdin) == NULL) {
			fprintf(stderr,
				"Cannot open file \"%s\" for reading: %s\n",
				name, strerror(errno));
			return EXIT_FAILURE;
		}
	}

	if (rtnl_open(&rth, 0) < 0) {
		fprintf(stderr, "Cannot open rtnetlink\n");
		return EXIT_FAILURE;
	}

	cmdlineno = 0;
	while (getcmdline(&line, &len, stdin) != -1) {
		char *largv[100];
		int largc;

		preferred_family = orig_family;

		largc = makeargs(line, largv, 100);
		if (largc == 0)
			continue;	/* blank line */

		if (do_cmd(largv[0], largc, largv)) {
			fprintf(stderr, "Command failed %s:%d\n",
				name, cmdlineno);
			ret = EXIT_FAILURE;
			if (!force)
				break;
		}
	}
	if (line)
		free(line);

	rtnl_close(&rth);
	return ret;
}


int main(int argc, char **argv)
{
	char *basename;
	char *batch_file = NULL;
	int color = 0;

	/* to run vrf exec without root, capabilities might be set, drop them
	 * if not needed as the first thing.
	 * execv will drop them for the child command.
	 * vrf exec requires:
	 * - cap_dac_override to create the cgroup subdir in /sys
	 * - cap_sys_admin to load the BPF program
	 * - cap_net_admin to set the socket into the cgroup
	 */
	if (argc < 3 || strcmp(argv[1], "vrf") != 0 ||
			strcmp(argv[2], "exec") != 0)
		drop_cap();

	basename = strrchr(argv[0], '/');
	if (basename == NULL)
		basename = argv[0];
	else
		basename++;

	while (argc > 1) {
		char *opt = argv[1];

		if (strcmp(opt, "--") == 0) {
			argc--; argv++;
			break;
		}
		if (opt[0] != '-')
			break;
		if (opt[1] == '-')
			opt++;
		if (matches(opt, "-loops") == 0) {
			argc--;
			argv++;
			if (argc <= 1)
				usage();
			max_flush_loops = atoi(argv[1]);
		} else if (matches(opt, "-family") == 0) {
			argc--;
			argv++;
			if (argc <= 1)
				usage();
			if (strcmp(argv[1], "help") == 0)
				usage();
			else
				preferred_family = read_family(argv[1]);
			if (preferred_family == AF_UNSPEC)
				invarg("invalid protocol family", argv[1]);
		} else if (strcmp(opt, "-4") == 0) {
			preferred_family = AF_INET;
		} else if (strcmp(opt, "-6") == 0) {
			preferred_family = AF_INET6;
		} else if (strcmp(opt, "-0") == 0) {
			preferred_family = AF_PACKET;
		} else if (strcmp(opt, "-I") == 0) {
			preferred_family = AF_IPX;
		} else if (strcmp(opt, "-D") == 0) {
			preferred_family = AF_DECnet;
		} else if (strcmp(opt, "-M") == 0) {
			preferred_family = AF_MPLS;
		} else if (strcmp(opt, "-B") == 0) {
			preferred_family = AF_BRIDGE;
		} else if (matches(opt, "-human") == 0 ||
			   matches(opt, "-human-readable") == 0) {
			++human_readable;
		} else if (matches(opt, "-iec") == 0) {
			++use_iec;
		} else if (matches(opt, "-stats") == 0 ||
			   matches(opt, "-statistics") == 0) {
			++show_stats;
		} else if (matches(opt, "-details") == 0) {
			++show_details;
		} else if (matches(opt, "-resolve") == 0) {
			++resolve_hosts;
		} else if (matches(opt, "-oneline") == 0) {
			++oneline;
		} else if (matches(opt, "-timestamp") == 0) {
			++timestamp;
		} else if (matches(opt, "-tshort") == 0) {
			++timestamp;
			++timestamp_short;
		} else if (matches(opt, "-Version") == 0) {
			printf("ip utility, iproute2-ss%s\n", SNAPSHOT);
			exit(0);
		} else if (matches(opt, "-force") == 0) {
			++force;
		} else if (matches(opt, "-batch") == 0) {
			argc--;
			argv++;
			if (argc <= 1)
				usage();
			batch_file = argv[1];
		} else if (matches(opt, "-brief") == 0) {
			++brief;
		} else if (matches(opt, "-json") == 0) {
			++json;
		} else if (matches(opt, "-rcvbuf") == 0) {
			unsigned int size;

			argc--;
			argv++;
			if (argc <= 1)
				usage();
			if (get_unsigned(&size, argv[1], 0)) {
				fprintf(stderr, "Invalid rcvbuf size '%s'\n",
					argv[1]);
				exit(-1);
			}
			rcvbuf = size;
		} else if (matches(opt, "-color") == 0) {
			++color;
		} else if (matches(opt, "-help") == 0) {
			usage();
		} else if (matches(opt, "-netns") == 0) {
			NEXT_ARG();
			if (netns_switch(argv[1]))
				exit(-1);
		} else if (matches(opt, "-all") == 0) {
			do_all = true;
		} else {
			fprintf(stderr,
				"Option \"%s\" is unknown, try \"ip -help\".\n",
				opt);
			exit(-1);
		}
		argc--;	argv++;
	}

	_SL_ = oneline ? "\\" : "\n";

	if (color && !json)
		enable_color();

	if (batch_file)
		return batch(batch_file);

	if (rtnl_open(&rth, 0) < 0)
		exit(1);

	if (strlen(basename) > 2)
		return do_cmd(basename+2, argc, argv);

	if (argc > 1)
		return do_cmd(argv[1], argc-1, argv+1);

	rtnl_close(&rth);
	usage();
}
Commit	Line	Data
aba5acdf SH	1	/*
	2	* ip.c "ip" utility frontend.
	3	*
	4	* This program is free software; you can redistribute it and/or
	5	* modify it under the terms of the GNU General Public License
	6	* as published by the Free Software Foundation; either version
	7	* 2 of the License, or (at your option) any later version.
	8	*
	9	* Authors: Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
aba5acdf SH	10	*/
	11
	12	#include <stdio.h>
	13	#include <stdlib.h>
	14	#include <unistd.h>
aba5acdf SH	15	#include <fcntl.h>
	16	#include <sys/socket.h>
	17	#include <netinet/in.h>
	18	#include <string.h>
351efcde	19	#include <errno.h>
aba5acdf SH	20
	21	#include "SNAPSHOT.h"
	22	#include "utils.h"
	23	#include "ip_common.h"
52700d40	24	#include "namespace.h"
d7bd2db5	25	#include "color.h"
aba5acdf SH	26
aba5acdf SH	27	int preferred_family = AF_UNSPEC;
ec7aff5c SH	28	int human_readable;
	29	int use_iec;
	30	int show_stats;
	31	int show_details;
ec7aff5c	32	int oneline;
5d295bb8	33	int brief;
5df60772	34	int json;
ec7aff5c SH	35	int timestamp;
	36	const char *_SL_;
	37	int force;
64c79560	38	int max_flush_loops = 10;
ec7aff5c SH	39	int batch_mode;
ec7aff5c SH	40	bool do_all;
64c79560	41
3bfa73ff	42	struct rtnl_handle rth = { .fd = -1 };
aba5acdf SH	43
	44	static void usage(void) __attribute__((noreturn));
	45
	46	static void usage(void)
	47	{
	48	fprintf(stderr,
	49	"Usage: ip [ OPTIONS ] OBJECT { COMMAND \| help }\n"
10494d27	50	" ip [ -force ] -batch filename\n"
7a53aa59	51	"where OBJECT := { link \| address \| addrlabel \| route \| rule \| neigh \| ntable \|\n"
142434dc	52	" tunnel \| tuntap \| maddress \| mroute \| mrule \| monitor \| xfrm \|\n"
1949f82c	53	" netns \| l2tp \| fou \| macsec \| tcp_metrics \| token \| netconf \| ila \|\n"
93863328	54	" vrf \| sr }\n"
1d934839	55	" OPTIONS := { -V[ersion] \| -s[tatistics] \| -d[etails] \| -r[esolve] \|\n"
1e264abc	56	" -h[uman-readable] \| -iec \|\n"
dacc5d41	57	" -f[amily] { inet \| inet6 \| ipx \| dnet \| mpls \| bridge \| link } \|\n"
f4809174	58	" -4 \| -6 \| -I \| -D \| -B \| -0 \|\n"
5d295bb8	59	" -l[oops] { maximum-addr-flush-attempts } \| -br[ief] \|\n"
a925535c	60	" -o[neline] \| -t[imestamp] \| -ts[hort] \| -b[atch] [filename] \|\n"
d7bd2db5	61	" -rc[vbuf] [size] \| -n[etns] name \| -a[ll] \| -c[olor]}\n");
aba5acdf SH	62	exit(-1);
	63	}
	64
fc57a9df SH	65	static int do_help(int argc, char **argv)
	66	{
	67	usage();
ec7aff5c	68	return 0;
fc57a9df SH	69	}
fc57a9df SH	70
351efcde SH	71	static const struct cmd {
	72	const char *cmd;
	73	int (func)(int argc, char *argv);
	74	} cmds[] = {
4806867a	75	{ "address", do_ipaddr },
4759758c	76	{ "addrlabel", do_ipaddrlabel },
ede72396	77	{ "maddress", do_multiaddr },
351efcde SH	78	{ "route", do_iproute },
351efcde SH	79	{ "rule", do_iprule },
ede72396 SH	80	{ "neighbor", do_ipneigh },
ede72396 SH	81	{ "neighbour", do_ipneigh },
09954dc6 SH	82	{ "ntable", do_ipntable },
09954dc6 SH	83	{ "ntbl", do_ipntable },
351efcde	84	{ "link", do_iplink },
5aa08f6b	85	{ "l2tp", do_ipl2tp },
6928747b	86	{ "fou", do_ipfou },
ec71cae0	87	{ "ila", do_ipila },
b26fc590	88	{ "macsec", do_ipmacsec },
351efcde	89	{ "tunnel", do_iptunnel },
ede72396	90	{ "tunl", do_iptunnel },
580fbd88 DW	91	{ "tuntap", do_iptuntap },
580fbd88 DW	92	{ "tap", do_iptuntap },
191b60bd	93	{ "token", do_iptoken },
ea63a69b	94	{ "tcpmetrics", do_tcp_metrics },
ec7aff5c	95	{ "tcp_metrics", do_tcp_metrics },
351efcde SH	96	{ "monitor", do_ipmonitor },
351efcde SH	97	{ "xfrm", do_xfrm },
84616f83	98	{ "mroute", do_multiroute },
b6c8e808	99	{ "mrule", do_multirule },
0dc34c77	100	{ "netns", do_netns },
9d0efc10	101	{ "netconf", do_ipnetconf },
1949f82c	102	{ "vrf", do_ipvrf},
93863328	103	{ "sr", do_seg6 },
fc57a9df	104	{ "help", do_help },
351efcde SH	105	{ 0 }
	106	};
	107
	108	static int do_cmd(const char argv0, int argc, char *argv)
	109	{
e25d6970	110	const struct cmd *c;
351efcde	111
ede72396	112	for (c = cmds; c->cmd; ++c) {
ec7aff5c	113	if (matches(argv0, c->cmd) == 0)
7397944d	114	return -(c->func(argc-1, argv+1));
ede72396 SH	115	}
ede72396 SH	116
351efcde	117	fprintf(stderr, "Object \"%s\" is unknown, try \"ip help\".\n", argv0);
7397944d	118	return EXIT_FAILURE;
351efcde SH	119	}
	120
	121	static int batch(const char *name)
	122	{
	123	char *line = NULL;
	124	size_t len = 0;
7397944d	125	int ret = EXIT_SUCCESS;
531d5da4	126	int orig_family = preferred_family;
351efcde	127
a3aa47a5 SH	128	batch_mode = 1;
a3aa47a5 SH	129
351efcde SH	130	if (name && strcmp(name, "-") != 0) {
351efcde SH	131	if (freopen(name, "r", stdin) == NULL) {
ec7aff5c SH	132	fprintf(stderr,
ec7aff5c SH	133	"Cannot open file \"%s\" for reading: %s\n",
351efcde	134	name, strerror(errno));
7397944d	135	return EXIT_FAILURE;
351efcde SH	136	}
	137	}
	138
	139	if (rtnl_open(&rth, 0) < 0) {
	140	fprintf(stderr, "Cannot open rtnetlink\n");
7397944d	141	return EXIT_FAILURE;
351efcde SH	142	}
351efcde SH	143
3e4f6a38	144	cmdlineno = 0;
351efcde SH	145	while (getcmdline(&line, &len, stdin) != -1) {
	146	char *largv[100];
	147	int largc;
	148
531d5da4 AP	149	preferred_family = orig_family;
531d5da4 AP	150
351efcde SH	151	largc = makeargs(line, largv, 100);
	152	if (largc == 0)
	153	continue; /* blank line */
	154
	155	if (do_cmd(largv[0], largc, largv)) {
ec7aff5c SH	156	fprintf(stderr, "Command failed %s:%d\n",
ec7aff5c SH	157	name, cmdlineno);
7397944d	158	ret = EXIT_FAILURE;
351efcde SH	159	if (!force)
	160	break;
	161	}
	162	}
8ed63ab1 SH	163	if (line)
8ed63ab1 SH	164	free(line);
351efcde SH	165
	166	rtnl_close(&rth);
	167	return ret;
	168	}
	169
	170
aba5acdf SH	171	int main(int argc, char **argv)
	172	{
	173	char *basename;
a3aa47a5	174	char *batch_file = NULL;
1ca4341d	175	int color = 0;
aba5acdf	176
ba2fc55b LB	177	/* to run vrf exec without root, capabilities might be set, drop them
	178	* if not needed as the first thing.
	179	* execv will drop them for the child command.
	180	* vrf exec requires:
	181	* - cap_dac_override to create the cgroup subdir in /sys
	182	* - cap_sys_admin to load the BPF program
	183	* - cap_net_admin to set the socket into the cgroup
	184	*/
	185	if (argc < 3 \|\| strcmp(argv[1], "vrf") != 0 \|\|
	186	strcmp(argv[2], "exec") != 0)
	187	drop_cap();
	188
aba5acdf SH	189	basename = strrchr(argv[0], '/');
	190	if (basename == NULL)
	191	basename = argv[0];
	192	else
	193	basename++;
ae665a52	194
aba5acdf SH	195	while (argc > 1) {
aba5acdf SH	196	char *opt = argv[1];
ec7aff5c SH	197
ec7aff5c SH	198	if (strcmp(opt, "--") == 0) {
aba5acdf SH	199	argc--; argv++;
	200	break;
	201	}
	202	if (opt[0] != '-')
	203	break;
	204	if (opt[1] == '-')
	205	opt++;
64c79560 BG	206	if (matches(opt, "-loops") == 0) {
	207	argc--;
	208	argv++;
	209	if (argc <= 1)
	210	usage();
ec7aff5c SH	211	max_flush_loops = atoi(argv[1]);
ec7aff5c SH	212	} else if (matches(opt, "-family") == 0) {
aba5acdf SH	213	argc--;
	214	argv++;
	215	if (argc <= 1)
	216	usage();
45c90d19	217	if (strcmp(argv[1], "help") == 0)
aba5acdf SH	218	usage();
aba5acdf SH	219	else
45c90d19 EB	220	preferred_family = read_family(argv[1]);
45c90d19 EB	221	if (preferred_family == AF_UNSPEC)
f1675d61	222	invarg("invalid protocol family", argv[1]);
aba5acdf SH	223	} else if (strcmp(opt, "-4") == 0) {
	224	preferred_family = AF_INET;
	225	} else if (strcmp(opt, "-6") == 0) {
	226	preferred_family = AF_INET6;
	227	} else if (strcmp(opt, "-0") == 0) {
	228	preferred_family = AF_PACKET;
	229	} else if (strcmp(opt, "-I") == 0) {
	230	preferred_family = AF_IPX;
	231	} else if (strcmp(opt, "-D") == 0) {
	232	preferred_family = AF_DECnet;
dacc5d41 EB	233	} else if (strcmp(opt, "-M") == 0) {
dacc5d41 EB	234	preferred_family = AF_MPLS;
27bca615 SH	235	} else if (strcmp(opt, "-B") == 0) {
27bca615 SH	236	preferred_family = AF_BRIDGE;
b68d9837 CH	237	} else if (matches(opt, "-human") == 0 \|\|
	238	matches(opt, "-human-readable") == 0) {
	239	++human_readable;
1e264abc SH	240	} else if (matches(opt, "-iec") == 0) {
1e264abc SH	241	++use_iec;
aba5acdf SH	242	} else if (matches(opt, "-stats") == 0 \|\|
	243	matches(opt, "-statistics") == 0) {
	244	++show_stats;
1d934839 PM	245	} else if (matches(opt, "-details") == 0) {
1d934839 PM	246	++show_details;
aba5acdf SH	247	} else if (matches(opt, "-resolve") == 0) {
	248	++resolve_hosts;
	249	} else if (matches(opt, "-oneline") == 0) {
	250	++oneline;
90f93024 SH	251	} else if (matches(opt, "-timestamp") == 0) {
90f93024 SH	252	++timestamp;
79aa79d0 VK	253	} else if (matches(opt, "-tshort") == 0) {
	254	++timestamp;
	255	++timestamp_short;
aba5acdf SH	256	} else if (matches(opt, "-Version") == 0) {
	257	printf("ip utility, iproute2-ss%s\n", SNAPSHOT);
	258	exit(0);
351efcde SH	259	} else if (matches(opt, "-force") == 0) {
	260	++force;
	261	} else if (matches(opt, "-batch") == 0) {
	262	argc--;
	263	argv++;
	264	if (argc <= 1)
	265	usage();
	266	batch_file = argv[1];
5d295bb8 AG	267	} else if (matches(opt, "-brief") == 0) {
5d295bb8 AG	268	++brief;
5df60772 JF	269	} else if (matches(opt, "-json") == 0) {
5df60772 JF	270	++json;
7f03191f PM	271	} else if (matches(opt, "-rcvbuf") == 0) {
	272	unsigned int size;
	273
	274	argc--;
	275	argv++;
	276	if (argc <= 1)
	277	usage();
	278	if (get_unsigned(&size, argv[1], 0)) {
	279	fprintf(stderr, "Invalid rcvbuf size '%s'\n",
	280	argv[1]);
	281	exit(-1);
	282	}
	283	rcvbuf = size;
d7bd2db5	284	} else if (matches(opt, "-color") == 0) {
1ca4341d	285	++color;
aba5acdf SH	286	} else if (matches(opt, "-help") == 0) {
aba5acdf SH	287	usage();
52700d40 VK	288	} else if (matches(opt, "-netns") == 0) {
	289	NEXT_ARG();
	290	if (netns_switch(argv[1]))
	291	exit(-1);
b13ba03f VK	292	} else if (matches(opt, "-all") == 0) {
b13ba03f VK	293	do_all = true;
aba5acdf	294	} else {
ec7aff5c SH	295	fprintf(stderr,
	296	"Option \"%s\" is unknown, try \"ip -help\".\n",
	297	opt);
aba5acdf SH	298	exit(-1);
	299	}
	300	argc--; argv++;
	301	}
	302
ec7aff5c	303	_SL_ = oneline ? "\\" : "\n";
aba5acdf	304
1ca4341d VB	305	if (color && !json)
1ca4341d VB	306	enable_color();
5df60772	307
ae665a52	308	if (batch_file)
351efcde	309	return batch(batch_file);
ae665a52	310
351efcde SH	311	if (rtnl_open(&rth, 0) < 0)
	312	exit(1);
	313
ae665a52	314	if (strlen(basename) > 2)
351efcde SH	315	return do_cmd(basename+2, argc, argv);
351efcde SH	316
ae665a52	317	if (argc > 1)
351efcde SH	318	return do_cmd(argv[1], argc-1, argv+1);
	319
	320	rtnl_close(&rth);
aba5acdf SH	321	usage();
aba5acdf SH	322	}