Ana Sayfa Keşfet Yardım
Giriş Yap
LBP
/
nagios-plugins
şunun yansıması https://github.com/nagios-plugins/nagios-plugins.git
4
0
Çatalla 0
Dosyalar Sorunlar 0 Wiki
Ağaç: c2a4a3a67f
Dallar Biçim İmleri
nagios-plugins
/
plugins
/
check_tcp.c

check_tcp.c 15 KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646 
  1. /*****************************************************************************
    2. 

  2. 

  3.  This program is free software; you can redistribute it and/or modify
    4. 

  4.  it under the terms of the GNU General Public License as published by
    5. 

  5.  the Free Software Foundation; either version 2 of the License, or
    6. 

  6.  (at your option) any later version.
    7. 

  7. 

  8.  This program is distributed in the hope that it will be useful,
    9. 

  9.  but WITHOUT ANY WARRANTY; without even the implied warranty of
    10. 

  10.  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    11. 

  11.  GNU General Public License for more details.
    12. 

  12. 

  13.  You should have received a copy of the GNU General Public License
    14. 

  14.  along with this program; if not, write to the Free Software
    15. 

  15.  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
    16. 

  16. 

  17. *****************************************************************************/
    18. 

  18. 

  19. /* progname changes depending on symlink called */
    20. 

  20. char *progname = "check_tcp";
    21. 

  21. const char *revision = "$Revision$";
    22. 

  22. const char *copyright = "1999-2003";
    23. 

  23. const char *email = "nagiosplug-devel@lists.sourceforge.net";
    24. 

  24. 

  25. #include "common.h"
    26. 

  26. #include "netutils.h"
    27. 

  27. #include "utils.h"
    28. 

  28. 

  29. #ifdef HAVE_SSL_H
    30. 

  30. #  include <rsa.h>
    31. 

  31. #  include <crypto.h>
    32. 

  32. #  include <x509.h>
    33. 

  33. #  include <pem.h>
    34. 

  34. #  include <ssl.h>
    35. 

  35. #  include <err.h>
    36. 

  36. #else
    37. 

  37. #  ifdef HAVE_OPENSSL_SSL_H
    38. 

  38. #    include <openssl/rsa.h>
    39. 

  39. #    include <openssl/crypto.h>
    40. 

  40. #    include <openssl/x509.h>
    41. 

  41. #    include <openssl/pem.h>
    42. 

  42. #    include <openssl/ssl.h>
    43. 

  43. #    include <openssl/err.h>
    44. 

  44. #  endif
    45. 

  45. #endif
    46. 

  46. 

  47. #ifdef HAVE_SSL
    48. 

  48. SSL_CTX *ctx;
    49. 

  49. SSL *ssl;
    50. 

  50. int connect_SSL (void);
    51. 

  51. #endif
    52. 

  52. 

  53. enum {
    54. 

  54. 	TCP_PROTOCOL = 1,
    55. 

  55. 	UDP_PROTOCOL = 2,
    56. 

  56. 	MAXBUF = 1024
    57. 

  57. };
    58. 

  58. 

  59. int process_arguments (int, char **);
    60. 

  60. int my_recv (void);
    61. 

  61. void print_help (void);
    62. 

  62. void print_usage (void);
    63. 

  63. 

  64. char *SERVICE = NULL;
    65. 

  65. char *SEND = NULL;
    66. 

  66. char *EXPECT = NULL;
    67. 

  67. char *QUIT = NULL;
    68. 

  68. int PROTOCOL = 0;
    69. 

  69. int PORT = 0;
    70. 

  70. 

  71. int server_port = 0;
    72. 

  72. char *server_address = NULL;
    73. 

  73. char *server_send = NULL;
    74. 

  74. char *server_quit = NULL;
    75. 

  75. char **server_expect = NULL;
    76. 

  76. size_t server_expect_count = 0;
    77. 

  77. int maxbytes = 0;
    78. 

  78. char **warn_codes = NULL;
    79. 

  79. size_t warn_codes_count = 0;
    80. 

  80. char **crit_codes = NULL;
    81. 

  81. size_t crit_codes_count = 0;
    82. 

  82. unsigned int delay = 0;
    83. 

  83. double warning_time = 0;
    84. 

  84. int check_warning_time = FALSE;
    85. 

  85. double critical_time = 0;
    86. 

  86. int check_critical_time = FALSE;
    87. 

  87. double elapsed_time = 0;
    88. 

  88. long microsec;
    89. 

  89. int verbose = FALSE;
    90. 

  90. int use_ssl = FALSE;
    91. 

  91. int sd = 0;
    92. 

  92. char *buffer;
    93. 

  93. 

  94. 

  95. 

  96. 

  97. 

  98. 
    99. 

  99. int
    100. 

  100. main (int argc, char **argv)
    101. 

  101. {
    102. 

  102. 	int result;
    103. 

  103. 	int i;
    104. 

  104. 	char *status;
    105. 

  105. 	struct timeval tv;
    106. 

  106. 

  107. 	setlocale (LC_ALL, "");
    108. 

  108. 	bindtextdomain (PACKAGE, LOCALEDIR);
    109. 

  109. 	textdomain (PACKAGE);
    110. 

  110. 

  111. 	if (strstr (argv[0], "check_udp")) {
    112. 

  112. 		progname = strdup ("check_udp");
    113. 

  113. 		SERVICE = strdup ("UDP");
    114. 

  114. 		SEND = NULL;
    115. 

  115. 		EXPECT = NULL;
    116. 

  116. 		QUIT = NULL;
    117. 

  117. 		PROTOCOL = UDP_PROTOCOL;
    118. 

  118. 		PORT = 0;
    119. 

  119. 	}
    120. 

  120. 	else if (strstr (argv[0], "check_tcp")) {
    121. 

  121. 		progname = strdup ("check_tcp");
    122. 

  122. 		SERVICE = strdup ("TCP");
    123. 

  123. 		SEND = NULL;
    124. 

  124. 		EXPECT = NULL;
    125. 

  125. 		QUIT = NULL;
    126. 

  126. 		PROTOCOL = TCP_PROTOCOL;
    127. 

  127. 		PORT = 0;
    128. 

  128. 	}
    129. 

  129. 	else if (strstr (argv[0], "check_ftp")) {
    130. 

  130. 		progname = strdup ("check_ftp");
    131. 

  131. 		SERVICE = strdup ("FTP");
    132. 

  132. 		SEND = NULL;
    133. 

  133. 		EXPECT = strdup ("220");
    134. 

  134. 		QUIT = strdup ("QUIT\r\n");
    135. 

  135. 		PROTOCOL = TCP_PROTOCOL;
    136. 

  136. 		PORT = 21;
    137. 

  137. 	}
    138. 

  138. 	else if (strstr (argv[0], "check_smtp")) {
    139. 

  139. 		progname = strdup ("check_smtp");
    140. 

  140. 		SERVICE = strdup ("SMTP");
    141. 

  141. 		SEND = NULL;
    142. 

  142. 		EXPECT = strdup ("220");
    143. 

  143. 		QUIT = strdup ("QUIT\r\n");
    144. 

  144. 		PROTOCOL = TCP_PROTOCOL;
    145. 

  145. 		PORT = 25;
    146. 

  146. 	}
    147. 

  147. 	else if (strstr (argv[0], "check_pop")) {
    148. 

  148. 		progname = strdup ("check_pop");
    149. 

  149. 		SERVICE = strdup ("POP");
    150. 

  150. 		SEND = NULL;
    151. 

  151. 		EXPECT = strdup ("+OK");
    152. 

  152. 		QUIT = strdup ("QUIT\r\n");
    153. 

  153. 		PROTOCOL = TCP_PROTOCOL;
    154. 

  154. 		PORT = 110;
    155. 

  155. 	}
    156. 

  156. 	else if (strstr (argv[0], "check_imap")) {
    157. 

  157. 		progname = strdup ("check_imap");
    158. 

  158. 		SERVICE = strdup ("IMAP");
    159. 

  159. 		SEND = NULL;
    160. 

  160. 		EXPECT = strdup ("* OK");
    161. 

  161. 		QUIT = strdup ("a1 LOGOUT\r\n");
    162. 

  162. 		PROTOCOL = TCP_PROTOCOL;
    163. 

  163. 		PORT = 143;
    164. 

  164. 	}
    165. 

  165. #ifdef HAVE_SSL
    166. 

  166. 	else if (strstr(argv[0],"check_simap")) {
    167. 

  167. 		progname = strdup ("check_simap");
    168. 

  168. 		SERVICE = strdup ("SIMAP");
    169. 

  169. 		SEND=NULL;
    170. 

  170. 		EXPECT = strdup ("* OK");
    171. 

  171. 		QUIT = strdup ("a1 LOGOUT\r\n");
    172. 

  172. 		PROTOCOL=TCP_PROTOCOL;
    173. 

  173. 		use_ssl=TRUE;
    174. 

  174. 		PORT=993;
    175. 

  175. 	}
    176. 

  176. 	else if (strstr(argv[0],"check_spop")) {
    177. 

  177. 		progname = strdup ("check_spop");
    178. 

  178. 		SERVICE = strdup ("SPOP");
    179. 

  179. 		SEND=NULL;
    180. 

  180. 		EXPECT = strdup ("+OK");
    181. 

  181. 		QUIT = strdup ("QUIT\r\n");
    182. 

  182. 		PROTOCOL=TCP_PROTOCOL;
    183. 

  183. 		use_ssl=TRUE;
    184. 

  184. 		PORT=995;
    185. 

  185. 	}
    186. 

  186. #endif
    187. 

  187. 	else if (strstr (argv[0], "check_nntp")) {
    188. 

  188. 		progname = strdup ("check_nntp");
    189. 

  189. 		SERVICE = strdup ("NNTP");
    190. 

  190. 		SEND = NULL;
    191. 

  191. 		EXPECT = NULL;
    192. 

  192. 		server_expect = realloc (server_expect, ++server_expect_count);
    193. 

  193. 		asprintf (&server_expect[server_expect_count - 1], "200");
    194. 

  194. 		server_expect = realloc (server_expect, ++server_expect_count);
    195. 

  195. 		asprintf (&server_expect[server_expect_count - 1], "201");
    196. 

  196. 		asprintf (&QUIT, "QUIT\r\n");
    197. 

  197. 		PROTOCOL = TCP_PROTOCOL;
    198. 

  198. 		PORT = 119;
    199. 

  199. 	}
    200. 

  200. 	else {
    201. 

  201. 		usage (_("ERROR: Generic check_tcp called with unknown service\n"));
    202. 

  202. 	}
    203. 

  203. 

  204. 	server_address = strdup ("127.0.0.1");
    205. 

  205. 	server_port = PORT;
    206. 

  206. 	server_send = SEND;
    207. 

  207. 	server_quit = QUIT;
    208. 

  208. 

  209. 	if (process_arguments (argc, argv) == ERROR)
    210. 

  210. 		usage (_("Could not parse arguments\n"));
    211. 

  211. 

  212. 	/* use default expect if none listed in process_arguments() */
    213. 

  213. 	if (EXPECT && server_expect_count == 0) {
    214. 

  214. 		server_expect = malloc (++server_expect_count);
    215. 

  215. 		server_expect[server_expect_count - 1] = EXPECT;
    216. 

  216. 	}
    217. 

  217. 

  218. 	/* initialize alarm signal handling */
    219. 

  219. 	signal (SIGALRM, socket_timeout_alarm_handler);
    220. 

  220. 

  221. 	/* set socket timeout */
    222. 

  222. 	alarm (socket_timeout);
    223. 

  223. 

  224. 	/* try to connect to the host at the given port number */
    225. 

  225. 	gettimeofday (&tv, NULL);
    226. 

  226. #ifdef HAVE_SSL
    227. 

  227. 	if (use_ssl)
    228. 

  228. 		result = connect_SSL ();
    229. 

  229. 	else
    230. 

  230. #endif
    231. 

  231. 		{
    232. 

  232. 			if (PROTOCOL == UDP_PROTOCOL)
    233. 

  233. 				result = my_udp_connect (server_address, server_port, &sd);
    234. 

  234. 			else
    235. 

  235. 				/* default is TCP */
    236. 

  236. 				result = my_tcp_connect (server_address, server_port, &sd);
    237. 

  237. 		}
    238. 

  238. 

  239. 	if (result == STATE_CRITICAL)
    240. 

  240. 		return STATE_CRITICAL;
    241. 

  241. 

  242. 	if (server_send != NULL) {		/* Something to send? */
    243. 

  243. 		asprintf (&server_send, "%s\r\n", server_send);
    244. 

  244. #ifdef HAVE_SSL
    245. 

  245. 		if (use_ssl)
    246. 

  246. 			SSL_write(ssl, server_send, (int)strlen(server_send));
    247. 

  247. 		else
    248. 

  248. #endif
    249. 

  249. 			send (sd, server_send, strlen(server_send), 0);
    250. 

  250. 	}
    251. 

  251. 

  252. 	if (delay > 0) {
    253. 

  253. 		tv.tv_sec += delay;
    254. 

  254. 		sleep (delay);
    255. 

  255. 	}
    256. 

  256. 

  257. 	if (server_send || server_expect_count > 0) {
    258. 

  258. 

  259. 		buffer = malloc (MAXBUF);
    260. 

  260. 		memset (buffer, '\0', MAXBUF);
    261. 

  261. 		status = strdup ("");
    262. 

  262. 		/* watch for the expect string */
    263. 

  263. 		while ((i = my_recv ()) > 0) {
    264. 

  264. 			buffer[i] = '\0';
    265. 

  265. 			asprintf (&status, "%s%s", status, buffer);
    266. 

  266. 			if (buffer[i-2] == '\r' && buffer[i-1] == '\n')
    267. 

  267. 				break;
    268. 

  268. 			if (maxbytes>0 && strlen(status) >= (unsigned)maxbytes)
    269. 

  269. 				break;
    270. 

  270. 		}
    271. 

  271. 

  272. 		/* return a CRITICAL status if we couldn't read any data */
    273. 

  273. 		if (status == NULL)
    274. 

  274. 			die (STATE_CRITICAL, _("No data received from host\n"));
    275. 

  275. 

  276. 		strip (status);
    277. 

  277. 

  278. 		if (status && verbose)
    279. 

  279. 			printf ("%s\n", status);
    280. 

  280. 

  281. 		if (server_expect_count > 0) {
    282. 

  282. 			for (i = 0;; i++) {
    283. 

  283. 				if (verbose)
    284. 

  284. 					printf ("%d %d\n", i, (int)server_expect_count);
    285. 

  285. 				if (i >= (int)server_expect_count)
    286. 

  286. 					die (STATE_WARNING, _("Invalid response from host\n"));
    287. 

  287. 				if (strstr (status, server_expect[i]))
    288. 

  288. 					break;
    289. 

  289. 			}
    290. 

  290. 		}
    291. 

  291. 	}
    292. 

  292. 

  293. 	if (server_quit != NULL) {
    294. 

  294. #ifdef HAVE_SSL
    295. 

  295. 		if (use_ssl) {
    296. 

  296. 			SSL_write (ssl, server_quit, (int)strlen(server_quit));
    297. 

  297. 			SSL_shutdown (ssl);
    298. 

  298.  			SSL_free (ssl);
    299. 

  299.  			SSL_CTX_free (ctx);
    300. 

  300. 		}
    301. 

  301. 		else {
    302. 

  302. #endif
    303. 

  303. 			send (sd, server_quit, strlen (server_quit), 0);
    304. 

  304. #ifdef HAVE_SSL
    305. 

  305. 		}
    306. 

  306. #endif
    307. 

  307. 	}
    308. 

  308. 

  309. 	/* close the connection */
    310. 

  310. 	if (sd)
    311. 

  311. 		close (sd);
    312. 

  312. 

  313. 	microsec = deltime (tv);
    314. 

  314. 	elapsed_time = (double)microsec / 1.0e6;
    315. 

  315. 

  316. 	if (check_critical_time == TRUE && elapsed_time > critical_time)
    317. 

  317. 		result = STATE_CRITICAL;
    318. 

  318. 	else if (check_warning_time == TRUE && elapsed_time > warning_time)
    319. 

  319. 		result = STATE_WARNING;
    320. 

  320. 

  321. 	/* reset the alarm */
    322. 

  322. 	alarm (0);
    323. 

  323. 

  324. 	printf
    325. 

  325. 		(_("%s %s%s - %.3f second response time on port %d"),
    326. 

  326. 		 SERVICE,
    327. 

  327. 		 state_text (result),
    328. 

  328. 		 (was_refused) ? " (refused)" : "",
    329. 

  329. 		 elapsed_time, server_port);
    330. 

  330. 

  331. 	if (status && strlen(status) > 0)
    332. 

  332. 		printf (" [%s]", status);
    333. 

  333. 

  334. 	printf ("|time=%ldus\n", microsec);
    335. 

  335. 

  336. 	return result;
    337. 

  337. }
    338. 

  338. 
    339. 

  339. 

  340. 

  341. 

  342. /* process command-line arguments */
    343. 

  343. int
    344. 

  344. process_arguments (int argc, char **argv)
    345. 

  345. {
    346. 

  346. 	int c;
    347. 

  347. 

  348. 	int option = 0;
    349. 

  349. 	static struct option longopts[] = {
    350. 

  350. 		{"hostname", required_argument, 0, 'H'},
    351. 

  351. 		{"critical-time", required_argument, 0, 'c'},
    352. 

  352. 		{"warning-time", required_argument, 0, 'w'},
    353. 

  353. 		{"critical-codes", required_argument, 0, 'C'},
    354. 

  354. 		{"warning-codes", required_argument, 0, 'W'},
    355. 

  355. 		{"timeout", required_argument, 0, 't'},
    356. 

  356. 		{"protocol", required_argument, 0, 'P'},
    357. 

  357. 		{"port", required_argument, 0, 'p'},
    358. 

  358. 		{"send", required_argument, 0, 's'},
    359. 

  359. 		{"expect", required_argument, 0, 'e'},
    360. 

  360. 		{"maxbytes", required_argument, 0, 'm'},
    361. 

  361. 		{"quit", required_argument, 0, 'q'},
    362. 

  362. 		{"delay", required_argument, 0, 'd'},
    363. 

  363. 		{"refuse", required_argument, 0, 'r'},
    364. 

  364. 		{"use-ipv4", no_argument, 0, '4'},
    365. 

  365. 		{"use-ipv6", no_argument, 0, '6'},
    366. 

  366. 		{"verbose", no_argument, 0, 'v'},
    367. 

  367. 		{"version", no_argument, 0, 'V'},
    368. 

  368. 		{"help", no_argument, 0, 'h'},
    369. 

  369. 		{0, 0, 0, 0}
    370. 

  370. 	};
    371. 

  371. 

  372. 	if (argc < 2)
    373. 

  373. 		usage ("No arguments found\n");
    374. 

  374. 

  375. 	/* backwards compatibility */
    376. 

  376. 	for (c = 1; c < argc; c++) {
    377. 

  377. 		if (strcmp ("-to", argv[c]) == 0)
    378. 

  378. 			strcpy (argv[c], "-t");
    379. 

  379. 		else if (strcmp ("-wt", argv[c]) == 0)
    380. 

  380. 			strcpy (argv[c], "-w");
    381. 

  381. 		else if (strcmp ("-ct", argv[c]) == 0)
    382. 

  382. 			strcpy (argv[c], "-c");
    383. 

  383. 	}
    384. 

  384. 

  385. 	if (!is_option (argv[1])) {
    386. 

  386. 		server_address = argv[1];
    387. 

  387. 		argv[1] = argv[0];
    388. 

  388. 		argv = &argv[1];
    389. 

  389. 		argc--;
    390. 

  390. 	}
    391. 

  391. 

  392. 	while (1) {
    393. 

  393. 		c = getopt_long (argc, argv, "+hVv46H:s:e:q:m:c:w:t:p:C:W:d:Sr:",
    394. 

  394. 		                 longopts, &option);
    395. 

  395. 

  396. 		if (c == -1 || c == EOF || c == 1)
    397. 

  397. 			break;
    398. 

  398. 

  399. 		switch (c) {
    400. 

  400. 		case '?':                 /* print short usage statement if args not parsable */
    401. 

  401. 			printf (_("%s: Unknown argument: %s\n\n"), progname, optarg);
    402. 

  402. 			print_usage ();
    403. 

  403. 			exit (STATE_UNKNOWN);
    404. 

  404. 		case 'h':                 /* help */
    405. 

  405. 			print_help ();
    406. 

  406. 			exit (STATE_OK);
    407. 

  407. 		case 'V':                 /* version */
    408. 

  408. 			print_revision (progname, "$Revision$");
    409. 

  409. 			exit (STATE_OK);
    410. 

  410. 		case 'v':                 /* verbose mode */
    411. 

  411. 			verbose = TRUE;
    412. 

  412. 			break;
    413. 

  413. 		case '4':
    414. 

  414. 			address_family = AF_INET;
    415. 

  415. 			break;
    416. 

  416. 		case '6':
    417. 

  417. #ifdef USE_IPV6
    418. 

  418. 			address_family = AF_INET6;
    419. 

  419. #else
    420. 

  420. 			usage (_("IPv6 support not available\n"));
    421. 

  421. #endif
    422. 

  422. 			break;
    423. 

  423. 		case 'H':                 /* hostname */
    424. 

  424. 			if (is_host (optarg) == FALSE)
    425. 

  425. 				usage2 (_("invalid host name or address"), optarg);
    426. 

  426. 			server_address = optarg;
    427. 

  427. 			break;
    428. 

  428. 		case 'c':                 /* critical */
    429. 

  429. 			if (!is_intnonneg (optarg))
    430. 

  430. 				usage (_("Critical threshold must be a nonnegative integer\n"));
    431. 

  431. 			else
    432. 

  432. 				critical_time = strtod (optarg, NULL);
    433. 

  433. 			check_critical_time = TRUE;
    434. 

  434. 			break;
    435. 

  435. 		case 'w':                 /* warning */
    436. 

  436. 			if (!is_intnonneg (optarg))
    437. 

  437. 				usage (_("Warning threshold must be a nonnegative integer\n"));
    438. 

  438. 			else
    439. 

  439. 				warning_time = strtod (optarg, NULL);
    440. 

  440. 			check_warning_time = TRUE;
    441. 

  441. 			break;
    442. 

  442. 		case 'C':
    443. 

  443. 			crit_codes = realloc (crit_codes, ++crit_codes_count);
    444. 

  444. 			crit_codes[crit_codes_count - 1] = optarg;
    445. 

  445. 			break;
    446. 

  446. 		case 'W':
    447. 

  447. 			warn_codes = realloc (warn_codes, ++warn_codes_count);
    448. 

  448. 			warn_codes[warn_codes_count - 1] = optarg;
    449. 

  449. 			break;
    450. 

  450. 		case 't':                 /* timeout */
    451. 

  451. 			if (!is_intpos (optarg))
    452. 

  452. 				usage (_("Timeout interval must be a positive integer\n"));
    453. 

  453. 			else
    454. 

  454. 				socket_timeout = atoi (optarg);
    455. 

  455. 			break;
    456. 

  456. 		case 'p':                 /* port */
    457. 

  457. 			if (!is_intpos (optarg))
    458. 

  458. 				usage (_("Server port must be a positive integer\n"));
    459. 

  459. 			else
    460. 

  460. 				server_port = atoi (optarg);
    461. 

  461. 			break;
    462. 

  462. 		case 's':
    463. 

  463. 			server_send = optarg;
    464. 

  464. 			break;
    465. 

  465. 		case 'e': /* expect string (may be repeated) */
    466. 

  466. 			EXPECT = NULL;
    467. 

  467. 			if (server_expect_count == 0)
    468. 

  468. 				server_expect = malloc (++server_expect_count);
    469. 

  469. 			else
    470. 

  470. 				server_expect = realloc (server_expect, ++server_expect_count);
    471. 

  471. 			server_expect[server_expect_count - 1] = optarg;
    472. 

  472. 			break;
    473. 

  473. 		case 'm':
    474. 

  474. 			if (!is_intpos (optarg))
    475. 

  475. 				usage (_("Maxbytes must be a positive integer\n"));
    476. 

  476. 			else
    477. 

  477. 				maxbytes = atoi (optarg);
    478. 

  478. 		case 'q':
    479. 

  479. 			server_quit = optarg;
    480. 

  480. 			break;
    481. 

  481. 		case 'r':
    482. 

  482. 			if (!strncmp(optarg,"ok",2))
    483. 

  483. 				econn_refuse_state = STATE_OK;
    484. 

  484. 			else if (!strncmp(optarg,"warn",4))
    485. 

  485. 				econn_refuse_state = STATE_WARNING;
    486. 

  486. 			else if (!strncmp(optarg,"crit",4))
    487. 

  487. 				econn_refuse_state = STATE_CRITICAL;
    488. 

  488. 			else
    489. 

  489. 				usage (_("Refuse mut be one of ok, warn, crit\n"));
    490. 

  490. 			break;
    491. 

  491. 		case 'd':
    492. 

  492. 			if (is_intpos (optarg))
    493. 

  493. 				delay = atoi (optarg);
    494. 

  494. 			else
    495. 

  495. 				usage (_("Delay must be a positive integer\n"));
    496. 

  496. 			break;
    497. 

  497. 		case 'S':
    498. 

  498. #ifndef HAVE_SSL
    499. 

  499. 			die (STATE_UNKNOWN,
    500. 

  500. 				_("SSL support not available. Install OpenSSL and recompile."));
    501. 

  501. #endif
    502. 

  502. 			use_ssl = TRUE;
    503. 

  503. 			break;
    504. 

  504. 		}
    505. 

  505. 	}
    506. 

  506. 

  507. 	if (server_address == NULL)
    508. 

  508. 		usage (_("You must provide a server address\n"));
    509. 

  509. 

  510. 	return OK;
    511. 

  511. }
    512. 

  512. 
    513. 

  513. 

  514. #ifdef HAVE_SSL
    515. 

  515. int
    516. 

  516. connect_SSL (void)
    517. 

  517. {
    518. 

  518.   SSL_METHOD *meth;
    519. 

  519. 

  520.   /* Initialize SSL context */
    521. 

  521.   SSLeay_add_ssl_algorithms ();
    522. 

  522.   meth = SSLv2_client_method ();
    523. 

  523.   SSL_load_error_strings ();
    524. 

  524.   if ((ctx = SSL_CTX_new (meth)) == NULL)
    525. 

  525.     {
    526. 

  526.       printf (_("ERROR: Cannot create SSL context.\n"));
    527. 

  527.       return STATE_CRITICAL;
    528. 

  528.     }
    529. 

  529. 

  530.   /* Initialize alarm signal handling */
    531. 

  531.   signal (SIGALRM, socket_timeout_alarm_handler);
    532. 

  532. 

  533.   /* Set socket timeout */
    534. 

  534.   alarm (socket_timeout);
    535. 

  535. 

  536.   /* Save start time */
    537. 

  537.   time (&start_time);
    538. 

  538. 

  539.   /* Make TCP connection */
    540. 

  540.   if (my_tcp_connect (server_address, server_port, &sd) == STATE_OK && was_refused == FALSE)
    541. 

  541.     {
    542. 

  542.     /* Do the SSL handshake */
    543. 

  543.       if ((ssl = SSL_new (ctx)) != NULL)
    544. 

  544.       {
    545. 

  545.         SSL_set_fd (ssl, sd);
    546. 

  546.         if (SSL_connect (ssl) != -1)
    547. 

  547.           return OK;
    548. 

  548.         ERR_print_errors_fp (stderr);
    549. 

  549.       }
    550. 

  550.       else
    551. 

  551.       {
    552. 

  552.         printf (_("ERROR: Cannot initiate SSL handshake.\n"));
    553. 

  553.       }
    554. 

  554.       SSL_free (ssl);
    555. 

  555.     }
    556. 

  556. 

  557.   SSL_CTX_free (ctx);
    558. 

  558.   close (sd);
    559. 

  559. 

  560.   return STATE_CRITICAL;
    561. 

  561. }
    562. 

  562. #endif
    563. 

  563. 

  564. 

  565. 

  566. int
    567. 

  567. my_recv (void)
    568. 

  568. {
    569. 

  569. 	int i;
    570. 

  570. 

  571. #ifdef HAVE_SSL
    572. 

  572. 	if (use_ssl) {
    573. 

  573. 		i = SSL_read (ssl, buffer, MAXBUF - 1);
    574. 

  574. 	}
    575. 

  575. 	else {
    576. 

  576. #endif
    577. 

  577. 		i = read (sd, buffer, MAXBUF - 1);
    578. 

  578. #ifdef HAVE_SSL
    579. 

  579. 	}
    580. 

  580. #endif
    581. 

  581. 

  582. 	return i;
    583. 

  583. }
    584. 

  584. 

  585. 

  586. 

  587. 

  588. 

  589. 
    590. 

  590. void
    591. 

  591. print_help (void)
    592. 

  592. {
    593. 

  593. 	print_revision (progname, revision);
    594. 

  594. 

  595. 	printf (_(COPYRIGHT), copyright, email);
    596. 

  596. 

  597. 	printf (_("This plugin tests %s connections with the specified host.\n\n"),
    598. 

  598. 	        SERVICE);
    599. 

  599. 

  600. 	print_usage ();
    601. 

  601. 

  602. 	printf (_(UT_HELP_VRSN));
    603. 

  603. 

  604. 	printf (_(UT_HOST_PORT), 'p', "none");
    605. 

  605. 

  606. 	printf (_(UT_IPv46));
    607. 

  607. 

  608. 	printf (_("\
    609. 

  609.  -s, --send=STRING\n\
    610. 

  610.     String to send to the server\n\
    611. 

  611.  -e, --expect=STRING\n\
    612. 

  612.     String to expect in server response\n\
    613. 

  613.  -q, --quit=STRING\n\
    614. 

  614.     String to send server to initiate a clean close of the connection\n"));
    615. 

  615. 

  616. 	printf (_("\
    617. 

  617.  -r, --refuse=ok|warn|crit\n\
    618. 

  618.     Accept tcp refusals with states ok, warn, crit (default: crit)\n\
    619. 

  619.  -m, --maxbytes=INTEGER\n\
    620. 

  620.     Close connection once more than this number of bytes are received\n\
    621. 

  621.  -d, --delay=INTEGER\n\
    622. 

  622.     Seconds to wait between sending string and polling for response\n"));
    623. 

  623. 

  624. 	printf (_(UT_WARN_CRIT));
    625. 

  625. 

  626. 	printf (_(UT_TIMEOUT), DEFAULT_SOCKET_TIMEOUT);
    627. 

  627. 

  628. 	printf (_(UT_VERBOSE));
    629. 

  629. 

  630. 	printf (_(UT_SUPPORT));
    631. 

  631. }
    632. 

  632. 

  633. 

  634. 

  635. 

  636. void
    637. 

  637. print_usage (void)
    638. 

  638. {
    639. 

  639. 	printf (_("\
    640. 

  640. Usage: %s -H host -p port [-w <warning time>] [-c <critical time>]\n\
    641. 

  641.   [-s <send string>] [-e <expect string>] [-q <quit string>]\n\
    642. 

  642.   [-m <maximum bytes>] [-d <delay>] [-t <timeout seconds>]\n\
    643. 

  643.   [-r <refuse state>] [-v] [-4|-6]\n"), progname);
    644. 

  644. 	printf ("       %s (-h|--help)\n", progname);
    645. 

  645. 	printf ("       %s (-V|--version)\n", progname);
    646. 

  646. }
    647.