]> git.saurik.com Git - apple/configd.git/blob - get-network-info
configd-1061.0.2.tar.gz
[apple/configd.git] / get-network-info
1 #!/bin/sh
2
3 #
4 # Copyright © 2015-2019 Apple Inc.
5 #
6 # get-network-info
7 #
8 # Collect network information.
9 #
10
11 PATH=/bin:/usr/bin:/sbin:/usr/sbin
12
13 # __SETUP_ROUTINES_BEGIN__
14
15 process_opts () {
16
17 for i in $ARGS
18 do
19 case "$i" in
20 -c)
21 COLLECT_CONFIGURATION_FILES="Y"
22 shift
23 ;;
24 -n)
25 COLLECT_NDF_INFO="Y"
26 shift
27 ;;
28 -P)
29 COLLECT_PCAP="N"
30 shift
31 ;;
32 -s)
33 COLLECT_SENSITIVE_INFO="Y"
34 shift
35 ;;
36 --)
37 shift
38 ;;
39 *)
40 REQUESTED_OUTDIR="${i}"
41 shift
42 ;;
43 esac
44 done
45
46 }
47
48 set_root () {
49
50 PRIV=""
51 if [ ${EUID} -ne 0 ]; then
52 PRIV="sudo"
53 fi
54
55 }
56
57 #
58 # Setup
59 #
60 setup () {
61
62 set_root
63 umask 077
64 cd "${REQUESTED_OUTDIR}"
65
66 }
67
68 # __SETUP_ROUTINES_END__
69
70
71 # __COMMAND_ROUTINES_BEGIN__
72
73 #
74 # mDNSResponder state dump
75 # /usr/bin/dns-sd -O -stdout will print the state of mDNSResponder to STDOUT
76 #
77 collect_state_dump_sensitive () {
78
79 echo "`date +"%Y-%m-%d %H:%M:%S"`: collect_state_dump_sensitive" >> get-network-info.txt
80 ${PRIV} /usr/bin/dns-sd -O -stdout > mDNSResponder_state_dump.txt 2>&1
81
82 }
83
84 #
85 # network interface configuration
86 #
87 run_ifconfig () {
88
89 if [ ! -x /sbin/ifconfig ]; then
90 return
91 fi
92
93 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_ifconfig" >> get-network-info.txt
94 /sbin/ifconfig -a -L -b -m -r -v -v > ifconfig.txt 2>&1
95 if [ $? -ne 0 ]; then
96 /sbin/ifconfig -a > ifconfig.txt 2>&1
97 fi
98
99 }
100
101 #
102 # network route configuration and statistics
103 #
104 run_netstat () {
105
106 if [ ! -x /usr/sbin/netstat ]; then
107 return
108 fi
109
110 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_netstat" >> get-network-info.txt
111 echo "#" > netstat.txt
112 echo "# netstat -n -r -a -l" >> netstat.txt
113 echo "#" >> netstat.txt
114 /usr/sbin/netstat -n -r -a -l >> netstat.txt 2>&1
115
116 echo "#" >> netstat.txt
117 echo "# netstat -A -a -l -n -v -W" >> netstat.txt
118 echo "#" >> netstat.txt
119 /usr/sbin/netstat -A -a -l -n -v -W >> netstat.txt 2>&1
120
121 echo "#" >> netstat.txt
122 echo "# netstat -s" >> netstat.txt
123 echo "#" >> netstat.txt
124 /usr/sbin/netstat -s >> netstat.txt 2>&1
125
126 echo "#" >> netstat.txt
127 echo "# netstat -rs" >> netstat.txt
128 echo "#" >> netstat.txt
129 /usr/sbin/netstat -rs >> netstat.txt 2>&1
130
131 echo "#" >> netstat.txt
132 echo "# netstat -mmm" >> netstat.txt
133 echo "#" >> netstat.txt
134 /usr/sbin/netstat -mmm >> netstat.txt 2>&1
135
136 echo "#" >> netstat.txt
137 echo "# netstat -i -n -d" >> netstat.txt
138 echo "#" >> netstat.txt
139 /usr/sbin/netstat -i -n -d >> netstat.txt 2>&1
140
141 echo "#" >> netstat.txt
142 echo "# netstat -i -x R" >> netstat.txt
143 echo "#" >> netstat.txt
144 /usr/sbin/netstat -i -x R >> netstat.txt 2>&1
145
146 echo "#" >> netstat.txt
147 echo "# netstat -a -n -p mptcp" >> netstat.txt
148 echo "#" >> netstat.txt
149 /usr/sbin/netstat -anp mptcp >> netstat.txt 2>&1
150
151 echo "#" >> netstat.txt
152 echo "# netstat -s -p mptcp" >> netstat.txt
153 echo "#" >> netstat.txt
154 /usr/sbin/netstat -s -p mptcp >> netstat.txt 2>&1
155
156 echo "#" >> netstat.txt
157 echo "# netstat -g -n -s" >> netstat.txt
158 echo "#" >> netstat.txt
159 /usr/sbin/netstat -g -n -s >> netstat.txt 2>&1
160
161 if [ -x /sbin/ifconfig ]; then
162 for if in ${IF_LIST}
163 do
164 echo "#" >> netstat.txt
165 echo "# netstat -s -I ${if}" >> netstat.txt
166 echo "#" >> netstat.txt
167 /usr/sbin/netstat -s -I ${if} >> netstat.txt 2>&1
168
169 IF_INFO=`/sbin/ifconfig -v ${if}`
170 `echo $IF_INFO | grep -q TXSTART`
171 if [ $? -eq 0 ]; then
172 echo "#" >> netstat.txt
173 echo "# netstat -qq -I ${if}" >> netstat.txt
174 echo "#" >> netstat.txt
175 /usr/sbin/netstat -qq -I ${if} >> netstat.txt 2>&1
176 fi
177
178 `echo $IF_INFO | grep -q RXPOLL`
179 if [ $? -eq 0 ]; then
180 echo "#" >> netstat.txt
181 echo "# netstat -Q -I ${if}" >> netstat.txt
182 echo "#" >> netstat.txt
183 /usr/sbin/netstat -Q -I ${if} >> netstat.txt 2>&1
184 fi
185 done
186 fi
187
188 }
189
190 #
191 # ndp
192 #
193 run_ndp () {
194
195 if [ ! -x /usr/sbin/ndp ]; then
196 return
197 fi
198
199 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_ndp" >> get-network-info.txt
200 echo "#" > ndp-info.txt
201 echo "# ndp -n -a" >> ndp-info.txt
202 echo "#" >> ndp-info.txt
203 /usr/sbin/ndp -n -a >> ndp-info.txt 2>&1
204
205 echo "#" >> ndp-info.txt
206 echo "# ndp -n -p" >> ndp-info.txt
207 echo "#" >> ndp-info.txt
208 /usr/sbin/ndp -n -p >> ndp-info.txt 2>&1
209
210 echo "#" >> ndp-info.txt
211 echo "# ndp -n -r" >> ndp-info.txt
212 echo "#" >> ndp-info.txt
213 /usr/sbin/ndp -n -r >> ndp-info.txt 2>&1
214
215 if [ -x /sbin/ifconfig ]; then
216 for if in ${IF_LIST}
217 do
218 echo "#" >> ndp-info.txt
219 echo "# ndp -i ${if}" >> ndp-info.txt
220 echo "#" >> ndp-info.txt
221 /usr/sbin/ndp -i ${if} >> ndp-info.txt 2>&1
222 done
223 fi
224
225 }
226
227 #
228 # arp
229 #
230 run_arp () {
231
232 if [ ! -x /usr/sbin/arp ]; then
233 return
234 fi
235
236 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_arp" >> get-network-info.txt
237 echo "#" > arp-info.txt
238 echo "# arp -n -a" >> arp-info.txt
239 echo "#" >> arp-info.txt
240 /usr/sbin/arp -n -a >> arp-info.txt 2>&1
241
242 }
243
244 #
245 # DHCP configuration
246 #
247 run_ipconfig () {
248
249 if [ ! -x /usr/sbin/ipconfig ]; then
250 return
251 fi
252
253 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_ipconfig" >> get-network-info.txt
254 for if in ${IF_LIST}
255 do
256 case ${if} in
257 lo* )
258 ;;
259 *)
260 echo "#" >> ipconfig-info.txt
261 echo "# INTERFACE ${if}" >> ipconfig-info.txt
262 echo "#" >> ipconfig-info.txt
263
264 echo "DHCPv4 information:" >> ipconfig-info.txt
265
266 IPCONFIG_INFO=`/usr/sbin/ipconfig getpacket ${if}`
267 if [ "${IPCONFIG_INFO}" != "" ]; then
268 echo "${IPCONFIG_INFO}" >> ipconfig-info.txt
269 else
270 echo "not available" >> ipconfig-info.txt
271 fi
272
273 echo"" >> ipconfig-info.txt
274
275 echo "DHCPv6 information:" >> ipconfig-info.txt
276
277 IPCONFIG_INFO=`/usr/sbin/ipconfig getv6packet ${if}`
278 if [ "${IPCONFIG_INFO}" != "" ]; then
279 echo "${IPCONFIG_INFO}" >> ipconfig-info.txt
280 else
281 echo "not available" >> ipconfig-info.txt
282 fi
283
284 echo"" >> ipconfig-info.txt
285 ;;
286 esac
287 done
288
289 }
290
291 #
292 # IPsec configuration
293 #
294 run_setkey () {
295
296 if [ ! -x /usr/sbin/setkey -o ! -x /usr/bin/perl ]; then
297 return
298 fi
299
300 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_setkey" >> get-network-info.txt
301 echo "#" > ipsec.txt
302 echo "# setkey -D" >> ipsec.txt
303 echo "#" >> ipsec.txt
304 ${PRIV} /usr/sbin/setkey -D \
305 | /usr/bin/perl -l -n -e '
306 if (/^(\s+[AE]:\s+\S+\s+)"?(.*)"?\s*$/) {
307 printf "%s[redacted]%s\n", $1, $3;
308 } else {
309 printf "%s\n", $_;
310 }
311 ' >> ipsec.txt
312
313 echo "" >> ipsec.txt
314 echo "#" >> ipsec.txt
315 echo "# setkey -Pp -D" >> ipsec.txt
316 echo "#" >> ipsec.txt
317 ${PRIV} /usr/sbin/setkey -Pp -D >> ipsec.txt
318
319 for CF in /var/run/racoon/*.conf
320 do
321 if [ ! -r "${CF}" ]; then
322 continue
323 fi
324
325 echo "" >> ipsec.txt
326 echo "#" >> ipsec.txt
327 echo "# ${CF}" >> ipsec.txt
328 echo "#" >> ipsec.txt
329 ${PRIV} cat ${CF} \
330 | /usr/bin/perl -l -n -e '
331 if (/^(\s+shared_secret\s+use\s+)"?([^\s;"]+)"?(.*)/) {
332 printf "%s[redacted]%s\n", $1, $3;
333 } else {
334 printf "%s\n", $_;
335 }
336 ' >> ipsec.txt
337 done
338
339 }
340
341 #
342 # skywalk configuration and statistics
343 #
344 run_skywalk () {
345
346 if [ ! -x /usr/sbin/skywalkctl ]; then
347 return
348 fi
349
350 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_skywalk" >> get-network-info.txt
351 echo "#" > skywalk.txt
352 echo "# skywalkctl show" >> skywalk.txt
353 echo "#" >> skywalk.txt
354 /usr/sbin/skywalkctl show >> skywalk.txt 2>&1
355
356 echo "#" >> skywalk.txt
357 echo "# skywalkctl flow -n" >> skywalk.txt
358 echo "#" >> skywalk.txt
359 /usr/sbin/skywalkctl flow -n >> skywalk.txt 2>&1
360
361 echo "#" >> skywalk.txt
362 echo "# skywalkctl flow-route -n" >> skywalk.txt
363 echo "#" >> skywalk.txt
364 /usr/sbin/skywalkctl flow-route -n >> skywalk.txt 2>&1
365
366 echo "#" >> skywalk.txt
367 echo "# skywalkctl flow-switch" >> skywalk.txt
368 echo "#" >> skywalk.txt
369 /usr/sbin/skywalkctl flow-switch >> skywalk.txt 2>&1
370
371 echo "#" >> skywalk.txt
372 echo "# skywalkctl flow-owner" >> skywalk.txt
373 echo "#" >> skywalk.txt
374 /usr/sbin/skywalkctl flow-owner >> skywalk.txt 2>&1
375
376 echo "#" >> skywalk.txt
377 echo "# skywalkctl flow-adv" >> skywalk.txt
378 echo "#" >> skywalk.txt
379 /usr/sbin/skywalkctl flow-adv >> skywalk.txt 2>&1
380
381 echo "#" >> skywalk.txt
382 echo "# skywalkctl netstat -s" >> skywalk.txt
383 echo "#" >> skywalk.txt
384 /usr/sbin/skywalkctl netstat -s >> skywalk.txt 2>&1
385
386 echo "#" >> skywalk.txt
387 echo "# skywalkctl netstat -s --global" >> skywalk.txt
388 echo "#" >> skywalk.txt
389 /usr/sbin/skywalkctl netstat -s --global >> skywalk.txt 2>&1
390
391 echo "#" >> skywalk.txt
392 echo "# skywalkctl interface" >> skywalk.txt
393 echo "#" >> skywalk.txt
394 /usr/sbin/skywalkctl interface >> skywalk.txt 2>&1
395
396 echo "#" >> skywalk.txt
397 echo "# skywalkctl channel" >> skywalk.txt
398 echo "#" >> skywalk.txt
399 /usr/sbin/skywalkctl channel >> skywalk.txt 2>&1
400
401 echo "#" >> skywalk.txt
402 echo "# skywalkctl provider -D" >> skywalk.txt
403 echo "#" >> skywalk.txt
404 /usr/sbin/skywalkctl provider -D >> skywalk.txt 2>&1
405
406 echo "#" >> skywalk.txt
407 echo "# skywalkctl netns -a" >> skywalk.txt
408 echo "#" >> skywalk.txt
409 /usr/sbin/skywalkctl netns -a >> skywalk.txt 2>&1
410
411 echo "#" >> skywalk.txt
412 echo "# skywalkctl memory" >> skywalk.txt
413 echo "#" >> skywalk.txt
414 /usr/sbin/skywalkctl memory >> skywalk.txt 2>&1
415
416 }
417
418 #
419 # skywalk configuration and statistics
420 #
421 run_nettop () {
422
423 if [ ! -x /usr/bin/nettop ]; then
424 return
425 fi
426
427 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_nettop" >> get-network-info.txt
428 echo "#" > nettop.txt
429 echo "# nettop -n -l 1" >> nettop.txt
430 echo "#" >> nettop.txt
431 /usr/bin/nettop -n -l 1 >> nettop.txt 2>&1
432
433 }
434
435 #
436 # Network preferences
437 #
438 collect_configuration_files () {
439
440 echo "`date +"%Y-%m-%d %H:%M:%S"`: collect_configuration_files" >> get-network-info.txt
441 for f in \
442 /Library/Preferences/com.apple.networkextension.plist \
443 /Library/Preferences/com.apple.networkextension.control.plist \
444 /Library/Preferences/com.apple.networkextension.necp.plist \
445 /Library/Preferences/com.apple.networkextension.cache.plist \
446 /Library/Preferences/com.apple.networkextension.uuidcache.plist \
447 /Library/Preferences/SystemConfiguration/com.apple.nat.plist \
448 /Library/Preferences/SystemConfiguration/com.apple.RemoteAccessServers.plist \
449 /Library/Preferences/SystemConfiguration/com.apple.smb.server.plist \
450 /Library/Preferences/com.apple.mDNSResponder.plist \
451 /Library/Preferences/SystemConfiguration/NetworkInterfaces.plist \
452 /Library/Preferences/SystemConfiguration/preferences.plist \
453
454 do
455 if [ -e "${f}" ]; then
456 b="`basename ${f}`"
457 cat "${f}" > "${b}" 2>&1
458 fi
459 done
460
461 if [ -e /etc/resolv.conf ]; then
462 cat /etc/resolv.conf > etc-resolv-conf.txt 2>&1
463 fi
464 if [ -e /var/run/resolv.conf ]; then
465 cat /var/run/resolv.conf > var-run-resolv-conf.txt 2>&1
466 fi
467 if [ -e /etc/resolver ]; then
468 tar -c -H /etc/resolver > etc-resolver.tar 2>/dev/null
469 fi
470 }
471
472 #
473 # VPN
474 #
475 collect_vpn_logs () {
476
477 echo "`date +"%Y-%m-%d %H:%M:%S"`: collect_vpn_logs" >> get-network-info.txt
478 for f in \
479 /var/log/vpnd.log \
480 /var/log/racoon.log \
481
482 do
483 if [ -e "${f}" ]; then
484 b="`basename ${f}`"
485 ${PRIV} cat "${f}" > "${b}".txt 2>&1
486 fi
487 done
488 }
489
490 #
491 # Policy
492 #
493 run_neutil () {
494
495 if [ ! -x /usr/local/bin/neutil ]; then
496 return
497 fi
498
499 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_neutil" >> get-network-info.txt
500 (
501 echo "#" > necp.txt
502 echo "# neutil policy dump" >> necp.txt
503 echo "#" >> necp.txt
504 /usr/local/bin/neutil policy dump >> necp.txt 2>&1
505
506 echo "#" > network-agents.txt
507 echo "# neutil agent dump" >> network-agents.txt
508 echo "#" >> network-agents.txt
509 /usr/local/bin/neutil agent dump >> network-agents.txt 2>&1
510
511 # Generates a default-level log message containing the current file handles that UserEventAgent has
512 /usr/local/bin/neutil session log-file-handles
513 sleep 1 &
514 ) &
515 }
516
517 #
518 # Path
519 #
520 run_network_test () {
521
522 if [ ! -x /usr/local/bin/network_test ]; then
523 return
524 fi
525
526 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_network_test" >> get-network-info.txt
527 /usr/local/bin/network_test path_watcher -dump > nw_path.txt 2>&1
528
529 }
530
531 #
532 # Network, DNS, Proxy, Reachability, Cache information
533 #
534 run_scutil () {
535
536 if [ ! -x /usr/sbin/scutil ]; then
537 return
538 fi
539
540 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_scutil" >> get-network-info.txt
541 echo "#" > network-information.txt
542 echo "# scutil -d -v --nwi" >> network-information.txt
543 echo "#" >> network-information.txt
544 /usr/sbin/scutil -d -v --nwi >> network-information.txt 2>&1
545 for if in ${IF_LIST}
546 do
547 echo "" >> network-information.txt
548 echo "#" >> network-information.txt
549 echo "# scutil --nwi ${if}" >> network-information.txt
550 echo "#" >> network-information.txt
551 scutil --nwi ${if} >> network-information.txt 2>&1
552 done
553
554 echo "#" > dns-configuration.txt
555 echo "# scutil -d -v --dns" >> dns-configuration.txt
556 echo "#" >> dns-configuration.txt
557 /usr/sbin/scutil -d -v --dns >> dns-configuration.txt 2>&1
558
559 echo "#" > proxy-configuration.txt
560 echo "# scutil -d -v --proxy" >> proxy-configuration.txt
561 echo "#" >> proxy-configuration.txt
562 /usr/sbin/scutil -d -v --proxy >> proxy-configuration.txt 2>&1
563
564 echo "#" > reachability-info.txt
565 echo '# scutil -d -v -r www.apple.com' >> reachability-info.txt
566 echo "#" >> reachability-info.txt
567 /usr/sbin/scutil -d -v -r www.apple.com >> reachability-info.txt 2>&1
568
569 echo "#" >> reachability-info.txt
570 echo '# scutil -d -v -r 0.0.0.0' >> reachability-info.txt
571 echo "#" >> reachability-info.txt
572 /usr/sbin/scutil -d -v -r 0.0.0.0 >> reachability-info.txt 2>&1
573
574 echo "#" >> reachability-info.txt
575 echo '# scutil -d -v -r 169.254.0.0' >> reachability-info.txt
576 echo "#" >> reachability-info.txt
577 /usr/sbin/scutil -d -v -r 169.254.0.0 >> reachability-info.txt 2>&1
578
579 echo "#" > nc-info.txt
580 echo '# scutil --nc list' >> nc-info.txt
581 echo "#" >> nc-info.txt
582 /usr/sbin/scutil --nc list >> nc-info.txt 2>&1
583
584 /usr/sbin/scutil -p --snapshot SCDynamicStore.plist 2>&1
585
586 }
587
588 #
589 # route
590 #
591 run_route () {
592
593 if [ ! -x /sbin/route ]; then
594 return
595 fi
596
597 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_route" >> get-network-info.txt
598 echo "#" > route-info.txt
599 echo '# route -n -v get www.apple.com' >> route-info.txt
600 echo "#" >> route-info.txt
601 /sbin/route -n -v get www.apple.com >> route-info.txt 2>&1
602
603 echo "#" >> route-info.txt
604 echo '# route -n -v get 0.0.0.0' >> route-info.txt
605 echo "#" >> route-info.txt
606 /sbin/route -n -v get 0.0.0.0 >> route-info.txt 2>&1
607
608 }
609
610 #
611 # dig
612 #
613 run_dig () {
614
615 if [ ! -x /usr/bin/dig -o ! -f /etc/resolv.conf ]; then
616 return
617 fi
618
619 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_dig" >> get-network-info.txt
620 echo "#" > dig-info.txt
621 echo '# dig -t any -c any www.apple.com' >> dig-info.txt
622 echo "#" >> dig-info.txt
623 /usr/bin/dig +time=2 -t any -c any www.apple.com >> dig-info.txt 2>/dev/null
624
625 }
626
627 #
628 # hostname
629 #
630 run_hostname () {
631
632 if [ ! -x /bin/hostname ]; then
633 return
634 fi
635
636 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_hostname" >> get-network-info.txt
637 /bin/hostname > hostname.txt 2>&1
638
639 }
640
641 #
642 # lsof
643 #
644 run_lsof () {
645
646 if [ ! -x /usr/sbin/lsof ]; then
647 return
648 fi
649
650 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_lsof" >> get-network-info.txt
651 ${PRIV} /usr/sbin/lsof +c 0 -X -n -O -P -T q > lsof.txt 2>&1 &
652 LSOF_PID=$!
653 # start a watchdog for lsof
654 (
655 WAIT_TIME=5
656 while [ $WAIT_TIME -gt 0 ]
657 do
658 ${PRIV} kill -0 ${LSOF_PID} 2>/dev/null
659 if [ $? -eq 0 ]; then
660 # lsof is [still] gathering data...
661 sleep 1
662 WAIT_TIME=$((WAIT_TIME - 1))
663 continue
664 fi
665
666 # lsof completed gathering data
667 break
668 done
669
670 if [ $WAIT_TIME -eq 0 ]; then
671 # lsof timed out
672 ${PRIV} kill ${LSOF_PID} 2>/dev/null
673 fi
674 ) &
675
676 }
677
678 #
679 # sysctl
680 #
681 run_sysctl () {
682
683 if [ ! -x /usr/sbin/sysctl ]; then
684 return
685 fi
686
687 echo "`date +"%Y-%m-%d %H:%M:%S"`: run_sysctl" >> get-network-info.txt
688 ${PRIV} /usr/sbin/sysctl -a > sysctl.txt 2>&1 &
689
690 }
691
692 start_pcap() {
693 #
694 # collect a packet capture if netdiagnose is available
695 #
696 if [ -x /usr/local/bin/netdiagnose ]; then
697 echo "`date +"%Y-%m-%d %H:%M:%S"`: start_pcap" >> get-network-info.txt
698 trap stop_pcap SIGINT
699 /usr/local/bin/netdiagnose -p "${REQUESTED_OUTDIR}" start sysdiagpcap 2>&1 1>/dev/null
700 PCAP_STARTED=1
701 fi
702 }
703
704 stop_pcap () {
705 if [ ${PCAP_STARTED} -ne 0 ]; then
706 trap '' SIGINT
707 /usr/local/bin/netdiagnose stop sysdiagpcap 2>&1 1>/dev/null
708 echo "`date +"%Y-%m-%d %H:%M:%S"`: stop_pcap done" >> get-network-info.txt
709 fi
710 }
711
712 collect_ndf_info () {
713 run_lsof
714 run_sysctl
715 }
716
717 collect_sensitive_info () {
718
719 if [ "${COLLECT_PCAP}" == "Y" ]; then
720 start_pcap
721 fi
722
723 collect_state_dump_sensitive
724 run_ndp
725 run_arp
726 run_neutil
727 run_nettop
728 run_network_test
729 }
730
731 collect_info () {
732
733 if [ "${COLLECT_NDF_INFO}" == "Y" ]; then
734 collect_ndf_info
735 fi
736
737 if [ "${COLLECT_SENSITIVE_INFO}" == "Y" ]; then
738 collect_sensitive_info
739 fi
740
741 run_scutil
742 run_dig
743 run_ifconfig
744 run_netstat
745 run_ipconfig
746 run_setkey
747 run_skywalk
748 collect_vpn_logs
749 run_route
750 run_hostname
751
752 if [ "${COLLECT_CONFIGURATION_FILES}" == "Y" ]; then
753 collect_configuration_files
754 fi
755
756 stop_pcap
757 }
758
759 # __COMMAND_ROUTINES_END__
760
761 # __HELPER_ROUTINES_BEGIN__
762
763 usage () {
764
765 echo "Usage: get-network-info [-c] [-n] [-s] <info-directory>"
766 echo " -c collects system configuration files"
767 echo " -n collects NDF information (lsof)"
768 echo " -P do not collect a packet capture"
769 echo " -s collects sensitive information (ARP/NDP/mDNS cache)"
770 echo " <info-directory> path to directory where all the information will be collected"
771
772 }
773
774 is_outdir_valid () {
775
776 if [ "${REQUESTED_OUTDIR}" = "" ]; then
777 usage
778 exit 1
779 fi
780
781 if [ ! -d ${REQUESTED_OUTDIR} ]; then
782 echo "${REQUESTED_OUTDIR} does not exist"
783 exit 1
784 fi
785
786 if [ ! -w ${REQUESTED_OUTDIR} ]; then
787 echo "${REQUESTED_OUTDIR} is write-protected"
788 exit 1
789 fi
790 }
791
792 #
793 # Collect most used command output to be used later
794 #
795 optimize () {
796
797 if [ ! -x /sbin/ifconfig ]; then
798 return
799 fi
800
801 IF_LIST=`/sbin/ifconfig -l`
802
803 }
804
805 init_globals () {
806 REQUESTED_OUTDIR=""
807 COLLECT_SENSITIVE_INFO=""
808 COLLECT_CONFIGURATION_FILES=""
809 COLLECT_PCAP="Y"
810 PCAP_STARTED=0
811
812 }
813
814 # __HELPER_ROUTINES_END__
815
816 #
817 # __MAIN__
818 #
819 ARGS=`getopt cnPs $*`
820 if [ $? != 0 ]; then
821 usage
822 exit 1
823 fi
824
825 init_globals
826 process_opts
827 is_outdir_valid
828 setup
829 optimize
830 collect_info
831 wait
832
833 exit 0