]> git.saurik.com Git - apple/configd.git/blob - get-network-info
projects / apple / configd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
configd-963.tar.gz
[apple/configd.git] / get-network-info
1 #!/bin/sh
2
3 #
4 # Copyright © 2015-2017 Apple Inc.
5 #
6 # get-network-info
7 #
8 # Collect network information.
9 #
10
11 PATH=/bin:/usr/bin:/sbin:/usr/sbin
12
13 # __SETUP_ROUTINES_BEGIN__
14
15 process_opts () {
16
17 for i in $ARGS
18 do
19 case "$i" in
20 -c)
21 COLLECT_CONFIGURATION_FILES="Y"
22 shift
23 ;;
24 -n)
25 COLLECT_NDF_INFO="Y"
26 shift
27 ;;
28 -P)
29 COLLECT_PCAP="N"
30 shift
31 ;;
32 -s)
33 COLLECT_SENSITIVE_INFO="Y"
34 shift
35 ;;
36 --)
37 shift
38 ;;
39 *)
40 REQUESTED_OUTDIR="${i}"
41 shift
42 ;;
43 esac
44 done
45
46 }
47
48 set_root () {
49
50 PRIV=""
51 if [ ${EUID} -ne 0 ]; then
52 PRIV="sudo"
53 fi
54
55 }
56
57 #
58 # Setup
59 #
60 setup () {
61
62 set_root
63 umask 077
64 cd "${REQUESTED_OUTDIR}"
65
66 }
67
68 # __SETUP_ROUTINES_END__
69
70
71 # __COMMAND_ROUTINES_BEGIN__
72
73 # note: the daemons dump to syslog so you need to wait a bit before
74 # capturing the logs.
75 collect_state_dump_sensitive () {
76
77 ${PRIV} /usr/bin/killall -INFO mDNSResponder 2>/dev/null
78
79 sleep 1 &
80
81 }
82
83 #
84 # network interface configuration
85 #
86 run_ifconfig () {
87
88 if [ ! -x /sbin/ifconfig ]; then
89 return
90 fi
91
92 /sbin/ifconfig -a -L -b -m -r -v -v > ifconfig.txt 2>&1
93 if [ $? -ne 0 ]; then
94 /sbin/ifconfig -a > ifconfig.txt 2>&1
95 fi
96
97 }
98
99 #
100 # network route configuration and statistics
101 #
102 run_netstat () {
103
104 if [ ! -x /usr/sbin/netstat ]; then
105 return
106 fi
107
108 echo "#" > netstat.txt
109 echo "# netstat -n -r -a -l" >> netstat.txt
110 echo "#" >> netstat.txt
111 /usr/sbin/netstat -n -r -a -l >> netstat.txt 2>&1
112
113 echo "#" >> netstat.txt
114 echo "# netstat -A -a -l -n -v" >> netstat.txt
115 echo "#" >> netstat.txt
116 /usr/sbin/netstat -A -a -l -n -v >> netstat.txt 2>&1
117
118 echo "#" >> netstat.txt
119 echo "# netstat -s" >> netstat.txt
120 echo "#" >> netstat.txt
121 /usr/sbin/netstat -s >> netstat.txt 2>&1
122
123 echo "#" >> netstat.txt
124 echo "# netstat -rs" >> netstat.txt
125 echo "#" >> netstat.txt
126 /usr/sbin/netstat -rs >> netstat.txt 2>&1
127
128 echo "#" >> netstat.txt
129 echo "# netstat -mmm" >> netstat.txt
130 echo "#" >> netstat.txt
131 /usr/sbin/netstat -mmm >> netstat.txt 2>&1
132
133 echo "#" >> netstat.txt
134 echo "# netstat -i -n -d" >> netstat.txt
135 echo "#" >> netstat.txt
136 /usr/sbin/netstat -i -n -d >> netstat.txt 2>&1
137
138 echo "#" >> netstat.txt
139 echo "# netstat -i -x R" >> netstat.txt
140 echo "#" >> netstat.txt
141 /usr/sbin/netstat -i -x R >> netstat.txt 2>&1
142
143 echo "#" >> netstat.txt
144 echo "# netstat -a -n -p mptcp" >> netstat.txt
145 echo "#" >> netstat.txt
146 /usr/sbin/netstat -anp mptcp >> netstat.txt 2>&1
147
148 echo "#" >> netstat.txt
149 echo "# netstat -s -p mptcp" >> netstat.txt
150 echo "#" >> netstat.txt
151 /usr/sbin/netstat -s -p mptcp >> netstat.txt 2>&1
152
153 echo "#" >> netstat.txt
154 echo "# netstat -g -n -s" >> netstat.txt
155 echo "#" >> netstat.txt
156 /usr/sbin/netstat -g -n -s >> netstat.txt 2>&1
157
158 if [ -x /sbin/ifconfig ]; then
159 for if in ${IF_LIST}
160 do
161 IF_INFO=`/sbin/ifconfig -v ${if}`
162 `echo $IF_INFO | grep -q TXSTART`
163 if [ $? -eq 0 ]; then
164 echo "#" >> netstat.txt
165 echo "# netstat -qq -I ${if}" >> netstat.txt
166 echo "#" >> netstat.txt
167 /usr/sbin/netstat -qq -I ${if} >> netstat.txt 2>&1
168 fi
169 `echo $IF_INFO | grep -q RXPOLL`
170 if [ $? -eq 0 ]; then
171 echo "#" >> netstat.txt
172 echo "# netstat -Q -I ${if}" >> netstat.txt
173 echo "#" >> netstat.txt
174 /usr/sbin/netstat -Q -I ${if} >> netstat.txt 2>&1
175 fi
176 done
177 fi
178
179 }
180
181 #
182 # ndp
183 #
184 run_ndp () {
185
186 if [ ! -x /usr/sbin/ndp ]; then
187 return
188 fi
189
190 echo "#" > ndp-info.txt
191 echo "# ndp -n -a" >> ndp-info.txt
192 echo "#" >> ndp-info.txt
193 /usr/sbin/ndp -n -a >> ndp-info.txt 2>&1
194
195 echo "#" >> ndp-info.txt
196 echo "# ndp -n -p" >> ndp-info.txt
197 echo "#" >> ndp-info.txt
198 /usr/sbin/ndp -n -p >> ndp-info.txt 2>&1
199
200 echo "#" >> ndp-info.txt
201 echo "# ndp -n -r" >> ndp-info.txt
202 echo "#" >> ndp-info.txt
203 /usr/sbin/ndp -n -r >> ndp-info.txt 2>&1
204
205 if [ -x /sbin/ifconfig ]; then
206 for if in ${IF_LIST}
207 do
208 echo "#" >> ndp-info.txt
209 echo "# ndp -i ${if}" >> ndp-info.txt
210 echo "#" >> ndp-info.txt
211 /usr/sbin/ndp -i ${if} >> ndp-info.txt 2>&1
212 done
213 fi
214
215 }
216
217 #
218 # arp
219 #
220 run_arp () {
221
222 if [ ! -x /usr/sbin/arp ]; then
223 return
224 fi
225
226 echo "#" > arp-info.txt
227 echo "# arp -n -a" >> arp-info.txt
228 echo "#" >> arp-info.txt
229 /usr/sbin/arp -n -a >> arp-info.txt 2>&1
230
231 }
232
233 #
234 # DHCP configuration
235 #
236 run_ipconfig () {
237
238 if [ ! -x /usr/sbin/ipconfig ]; then
239 return
240 fi
241
242 for if in ${IF_LIST}
243 do
244 case ${if} in
245 lo* )
246 ;;
247 *)
248 echo "#" >> ipconfig-info.txt
249 echo "# INTERFACE ${if}" >> ipconfig-info.txt
250 echo "#" >> ipconfig-info.txt
251
252 echo "DHCPv4 information:" >> ipconfig-info.txt
253
254 IPCONFIG_INFO=`/usr/sbin/ipconfig getpacket ${if}`
255 if [ "${IPCONFIG_INFO}" != "" ]; then
256 echo "${IPCONFIG_INFO}" >> ipconfig-info.txt
257 else
258 echo "not available" >> ipconfig-info.txt
259 fi
260
261 echo"" >> ipconfig-info.txt
262
263 echo "DHCPv6 information:" >> ipconfig-info.txt
264
265 IPCONFIG_INFO=`/usr/sbin/ipconfig getv6packet ${if}`
266 if [ "${IPCONFIG_INFO}" != "" ]; then
267 echo "${IPCONFIG_INFO}" >> ipconfig-info.txt
268 else
269 echo "not available" >> ipconfig-info.txt
270 fi
271
272 echo"" >> ipconfig-info.txt
273 ;;
274 esac
275 done
276
277 }
278
279 #
280 # IPsec configuration
281 #
282 run_setkey () {
283
284 if [ ! -x /usr/sbin/setkey -o ! -x /usr/bin/perl ]; then
285 return
286 fi
287
288 echo "#" > ipsec.txt
289 echo "# setkey -D" >> ipsec.txt
290 echo "#" >> ipsec.txt
291 ${PRIV} /usr/sbin/setkey -D \
292 | /usr/bin/perl -l -n -e '
293 if (/^(\s+[AE]:\s+\S+\s+)"?(.*)"?\s*$/) {
294 printf "%s[redacted]%s\n", $1, $3;
295 } else {
296 printf "%s\n", $_;
297 }
298 ' >> ipsec.txt
299
300 echo "" >> ipsec.txt
301 echo "#" >> ipsec.txt
302 echo "# setkey -Pp -D" >> ipsec.txt
303 echo "#" >> ipsec.txt
304 ${PRIV} /usr/sbin/setkey -Pp -D >> ipsec.txt
305
306 for CF in /var/run/racoon/*.conf
307 do
308 if [ ! -r "${CF}" ]; then
309 continue
310 fi
311
312 echo "" >> ipsec.txt
313 echo "#" >> ipsec.txt
314 echo "# ${CF}" >> ipsec.txt
315 echo "#" >> ipsec.txt
316 ${PRIV} cat ${CF} \
317 | /usr/bin/perl -l -n -e '
318 if (/^(\s+shared_secret\s+use\s+)"?([^\s;"]+)"?(.*)/) {
319 printf "%s[redacted]%s\n", $1, $3;
320 } else {
321 printf "%s\n", $_;
322 }
323 ' >> ipsec.txt
324 done
325
326 }
327
328 #
329 # skywalk configuration and statistics
330 #
331 run_skywalk () {
332
333 if [ ! -x /usr/sbin/skywalkctl ]; then
334 return
335 fi
336
337 echo "#" > skywalk.txt
338 echo "# skywalkctl list-providers -D" >> skywalk.txt
339 echo "#" >> skywalk.txt
340 /usr/sbin/skywalkctl list-providers -D >> skywalk.txt 2>&1
341
342 echo "#" >> skywalk.txt
343 echo "# skywalkctl channel-stats" >> skywalk.txt
344 echo "#" >> skywalk.txt
345 /usr/sbin/skywalkctl channel-stats >> skywalk.txt 2>&1
346
347 echo "#" >> skywalk.txt
348 echo "# skywalkctl netstat -a -n" >> skywalk.txt
349 echo "#" >> skywalk.txt
350 /usr/sbin/skywalkctl netstat -a -n >> skywalk.txt 2>&1
351
352 echo "#" >> skywalk.txt
353 echo "# skywalkctl netstat -s" >> skywalk.txt
354 echo "#" >> skywalk.txt
355 /usr/sbin/skywalkctl netstat -s >> skywalk.txt 2>&1
356
357 echo "#" >> skywalk.txt
358 echo "# skywalkctl netstat -s --global" >> skywalk.txt
359 echo "#" >> skywalk.txt
360 /usr/sbin/skywalkctl netstat -s --global >> skywalk.txt 2>&1
361
362 echo "#" >> skywalk.txt
363 echo "# skywalkctl netstat --netif" >> skywalk.txt
364 echo "#" >> skywalk.txt
365 /usr/sbin/skywalkctl netstat --netif >> skywalk.txt 2>&1
366
367 echo "#" >> skywalk.txt
368 echo "# skywalkctl netstat --flowswitch" >> skywalk.txt
369 echo "#" >> skywalk.txt
370 /usr/sbin/skywalkctl netstat --flowswitch >> skywalk.txt 2>&1
371
372 echo "#" >> skywalk.txt
373 echo "# skywalkctl netstat --flow-adv" >> skywalk.txt
374 echo "#" >> skywalk.txt
375 /usr/sbin/skywalkctl netstat --flow-adv >> skywalk.txt 2>&1
376
377 echo "#" >> skywalk.txt
378 echo "# skywalkctl netstat --flow-owner" >> skywalk.txt
379 echo "#" >> skywalk.txt
380 /usr/sbin/skywalkctl netstat --flow-owner >> skywalk.txt 2>&1
381
382 echo "#" >> skywalk.txt
383 echo "# skywalkctl netns -a" >> skywalk.txt
384 echo "#" >> skywalk.txt
385 /usr/sbin/skywalkctl netns -a >> skywalk.txt 2>&1
386
387 echo "#" >> skywalk.txt
388 echo "# skywalkctl memory" >> skywalk.txt
389 echo "#" >> skywalk.txt
390 /usr/sbin/skywalkctl memory >> skywalk.txt 2>&1
391
392 }
393
394 #
395 # skywalk configuration and statistics
396 #
397 run_nettop () {
398
399 if [ ! -x /usr/bin/nettop ]; then
400 return
401 fi
402
403 echo "#" > nettop.txt
404 echo "# nettop -U -l 1" >> nettop.txt
405 echo "#" >> nettop.txt
406 /usr/bin/nettop -U -l 1 >> nettop.txt 2>&1
407
408 }
409
410 #
411 # Network preferences
412 #
413 collect_configuration_files () {
414
415 for f in \
416 /Library/Preferences/com.apple.networkextension.plist \
417 /Library/Preferences/com.apple.networkextension.control.plist \
418 /Library/Preferences/com.apple.networkextension.necp.plist \
419 /Library/Preferences/com.apple.networkextension.cache.plist \
420 /Library/Preferences/SystemConfiguration/com.apple.nat.plist \
421 /Library/Preferences/SystemConfiguration/com.apple.RemoteAccessServers.plist \
422 /Library/Preferences/SystemConfiguration/com.apple.smb.server.plist \
423 /Library/Preferences/com.apple.mDNSResponder.plist \
424 /Library/Preferences/SystemConfiguration/NetworkInterfaces.plist \
425 /Library/Preferences/SystemConfiguration/preferences.plist \
426
427 do
428 if [ -e "${f}" ]; then
429 b="`basename ${f}`"
430 cat "${f}" > "${b}" 2>&1
431 fi
432 done
433
434 if [ -e /etc/resolv.conf ]; then
435 cat /etc/resolv.conf > etc-resolv-conf.txt 2>&1
436 fi
437 if [ -e /var/run/resolv.conf ]; then
438 cat /var/run/resolv.conf > var-run-resolv-conf.txt 2>&1
439 fi
440 if [ -e /etc/resolver ]; then
441 tar -c -H /etc/resolver > etc-resolver.tar 2>/dev/null
442 fi
443 }
444
445 #
446 # VPN
447 #
448 collect_vpn_logs () {
449
450 for f in \
451 /var/log/vpnd.log \
452 /var/log/racoon.log \
453
454 do
455 if [ -e "${f}" ]; then
456 b="`basename ${f}`"
457 ${PRIV} cat "${f}" > "${b}".txt 2>&1
458 fi
459 done
460 }
461
462 #
463 # Policy
464 #
465 run_neutil () {
466
467 if [ ! -x /usr/local/bin/neutil ]; then
468 return
469 fi
470
471 (
472 echo "#" > necp.txt
473 echo "# neutil policy dump" >> necp.txt
474 echo "#" >> necp.txt
475 /usr/local/bin/neutil policy dump >> necp.txt 2>&1
476
477 echo "#" > network-agents.txt
478 echo "# neutil agent dump" >> network-agents.txt
479 echo "#" >> network-agents.txt
480 /usr/local/bin/neutil agent dump >> network-agents.txt 2>&1
481 ) &
482 }
483
484 #
485 # Path
486 #
487 run_network_test () {
488
489 if [ ! -x /usr/local/bin/network_test ]; then
490 return
491 fi
492
493 /usr/local/bin/network_test path_watcher > nw_path.txt 2>&1
494
495 }
496
497 #
498 # Network, DNS, Proxy, Reachability, Cache information
499 #
500 run_scutil () {
501
502 if [ ! -x /usr/sbin/scutil ]; then
503 return
504 fi
505
506 echo "#" > network-information.txt
507 echo "# scutil -d -v --nwi" >> network-information.txt
508 echo "#" >> network-information.txt
509 /usr/sbin/scutil -d -v --nwi >> network-information.txt 2>&1
510 for if in ${IF_LIST}
511 do
512 echo "" >> network-information.txt
513 echo "#" >> network-information.txt
514 echo "# scutil --nwi ${if}" >> network-information.txt
515 echo "#" >> network-information.txt
516 scutil --nwi ${if} >> network-information.txt 2>&1
517 done
518
519 echo "#" > dns-configuration.txt
520 echo "# scutil -d -v --dns" >> dns-configuration.txt
521 echo "#" >> dns-configuration.txt
522 /usr/sbin/scutil -d -v --dns >> dns-configuration.txt 2>&1
523
524 echo "#" > proxy-configuration.txt
525 echo "# scutil -d -v --proxy" >> proxy-configuration.txt
526 echo "#" >> proxy-configuration.txt
527 /usr/sbin/scutil -d -v --proxy >> proxy-configuration.txt 2>&1
528
529 echo "#" > reachability-info.txt
530 echo '# scutil -d -v -r www.apple.com' >> reachability-info.txt
531 echo "#" >> reachability-info.txt
532 /usr/sbin/scutil -d -v -r www.apple.com >> reachability-info.txt 2>&1
533
534 echo "#" >> reachability-info.txt
535 echo '# scutil -d -v -r 0.0.0.0' >> reachability-info.txt
536 echo "#" >> reachability-info.txt
537 /usr/sbin/scutil -d -v -r 0.0.0.0 >> reachability-info.txt 2>&1
538
539 echo "#" >> reachability-info.txt
540 echo '# scutil -d -v -r 169.254.0.0' >> reachability-info.txt
541 echo "#" >> reachability-info.txt
542 /usr/sbin/scutil -d -v -r 169.254.0.0 >> reachability-info.txt 2>&1
543
544 echo "#" > nc-info.txt
545 echo '# scutil --nc list' >> nc-info.txt
546 echo "#" >> nc-info.txt
547 /usr/sbin/scutil --nc list >> nc-info.txt 2>&1
548
549 /usr/sbin/scutil -p --snapshot SCDynamicStore.plist 2>&1
550
551 }
552
553 #
554 # route
555 #
556 run_route () {
557
558 if [ ! -x /sbin/route ]; then
559 return
560 fi
561
562 echo "#" > route-info.txt
563 echo '# route -n -v get www.apple.com' >> route-info.txt
564 echo "#" >> route-info.txt
565 /sbin/route -n -v get www.apple.com >> route-info.txt 2>&1
566
567 echo "#" >> route-info.txt
568 echo '# route -n -v get 0.0.0.0' >> route-info.txt
569 echo "#" >> route-info.txt
570 /sbin/route -n -v get 0.0.0.0 >> route-info.txt 2>&1
571
572 }
573
574 #
575 # dig
576 #
577 run_dig () {
578
579 if [ ! -x /usr/bin/dig -o ! -f /etc/resolv.conf ]; then
580 return
581 fi
582
583 echo "#" > dig-info.txt
584 echo '# dig -t any -c any www.apple.com' >> dig-info.txt
585 echo "#" >> dig-info.txt
586 /usr/bin/dig +time=2 -t any -c any www.apple.com >> dig-info.txt 2>/dev/null
587
588 }
589
590 #
591 # hostname
592 #
593 run_hostname () {
594
595 if [ ! -x /bin/hostname ]; then
596 return
597 fi
598
599 /bin/hostname > hostname.txt 2>&1
600
601 }
602
603 #
604 # lsof
605 #
606 run_lsof () {
607
608 if [ ! -x /usr/sbin/lsof ]; then
609 return
610 fi
611
612 ${PRIV} /usr/sbin/lsof -i -n -O -P -T q > lsof.txt 2>&1 &
613 LSOF_PID=$!
614 # start a watchdog for lsof
615 (
616 WAIT_TIME=5
617 while [ $WAIT_TIME -gt 0 ]
618 do
619 ${PRIV} kill -0 ${LSOF_PID} 2>/dev/null
620 if [ $? -eq 0 ]; then
621 # lsof is [still] gathering data...
622 sleep 1
623 WAIT_TIME=$((WAIT_TIME - 1))
624 continue
625 fi
626
627 # lsof completed gathering data
628 break
629 done
630
631 if [ $WAIT_TIME -eq 0 ]; then
632 # lsof timed out
633 ${PRIV} kill ${LSOF_PID} 2>/dev/null
634 fi
635 ) &
636
637 }
638
639 start_pcap() {
640 #
641 # collect a packet capture if netdiagnose is available
642 #
643 if [ -x /usr/local/bin/netdiagnose ]; then
644 trap stop_pcap SIGINT
645 /usr/local/bin/netdiagnose -p "${REQUESTED_OUTDIR}" start sysdiagpcap 2>&1 1>/dev/null
646 PCAP_STARTED=1
647 fi
648 }
649
650 stop_pcap () {
651 if [ ${PCAP_STARTED} -ne 0 ]; then
652 trap '' SIGINT
653 /usr/local/bin/netdiagnose stop sysdiagpcap 2>&1 1>/dev/null
654 fi
655 }
656
657 collect_ndf_info () {
658 run_lsof
659 }
660
661 collect_sensitive_info () {
662
663 if [ "${COLLECT_PCAP}" == "Y" ]; then
664 start_pcap
665 fi
666
667 collect_state_dump_sensitive
668 run_ndp
669 run_arp
670 run_neutil
671 run_nettop
672 run_network_test
673 }
674
675 collect_info () {
676
677 if [ "${COLLECT_NDF_INFO}" == "Y" ]; then
678 collect_ndf_info
679 fi
680
681 if [ "${COLLECT_SENSITIVE_INFO}" == "Y" ]; then
682 collect_sensitive_info
683 fi
684
685 run_scutil
686 run_dig
687 run_ifconfig
688 run_netstat
689 run_ipconfig
690 run_setkey
691 run_skywalk
692 collect_vpn_logs
693 run_route
694 run_hostname
695
696 if [ "${COLLECT_CONFIGURATION_FILES}" == "Y" ]; then
697 collect_configuration_files
698 fi
699
700 stop_pcap
701 }
702
703 # __COMMAND_ROUTINES_END__
704
705 # __HELPER_ROUTINES_BEGIN__
706
707 usage () {
708
709 echo "Usage: get-network-info [-c] [-n] [-s] <info-directory>"
710 echo " -c collects system configuration files"
711 echo " -n collects NDF information (lsof)"
712 echo " -P do not collect a packet capture"
713 echo " -s collects sensitive information (ARP/NDP/mDNS cache)"
714 echo " <info-directory> path to directory where all the information will be collected"
715
716 }
717
718 is_outdir_valid () {
719
720 if [ "${REQUESTED_OUTDIR}" = "" ]; then
721 usage
722 exit 1
723 fi
724
725 if [ ! -d ${REQUESTED_OUTDIR} ]; then
726 echo "${REQUESTED_OUTDIR} does not exist"
727 exit 1
728 fi
729
730 if [ ! -w ${REQUESTED_OUTDIR} ]; then
731 echo "${REQUESTED_OUTDIR} is write-protected"
732 exit 1
733 fi
734 }
735
736 #
737 # Collect most used command output to be used later
738 #
739 optimize () {
740
741 if [ ! -x /sbin/ifconfig ]; then
742 return
743 fi
744
745 IF_LIST=`/sbin/ifconfig -l`
746
747 }
748
749 init_globals () {
750 REQUESTED_OUTDIR=""
751 COLLECT_SENSITIVE_INFO=""
752 COLLECT_CONFIGURATION_FILES=""
753 COLLECT_PCAP="Y"
754 PCAP_STARTED=0
755
756 }
757
758 # __HELPER_ROUTINES_END__
759
760 #
761 # __MAIN__
762 #
763 ARGS=`getopt cnPs $*`
764 if [ $? != 0 ]; then
765 usage
766 exit 1
767 fi
768
769 init_globals
770 process_opts
771 is_outdir_valid
772 setup
773 optimize
774 collect_info
775 wait
776
777 exit 0
mirror of configd