ftr 0.7.0

A fast, parallel ICMP traceroute with ASN lookup, reverse DNS, and ISP detection
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382

//! macOS async ICMP socket using per-probe sockets
//!
//! This module implements an async ICMP socket for macOS that creates
//! a new DGRAM ICMP socket for each probe, similar to the Linux approach.
//! This avoids issues with macOS DGRAM ICMP sockets not receiving
//! TimeExceeded messages when used with async I/O.

use crate::probe::{ProbeInfo, ProbeResponse};
use crate::socket::icmp;
use crate::socket::traits::{ProbeMode, ProbeSocket};
use crate::traceroute::TracerouteError;
use crate::TimingConfig;
use socket2::{Domain, Protocol, Socket as Socket2, Type};
use std::future::Future;
use std::mem::MaybeUninit;
use std::net::{IpAddr, Ipv4Addr, SocketAddr};
use std::pin::Pin;
use std::sync::atomic::{AtomicBool, AtomicUsize, Ordering};
use std::sync::Arc;
use std::time::{Duration, Instant};
use tokio::sync::oneshot;

/// Size of ICMP echo payload
const ICMP_ECHO_PAYLOAD_SIZE: usize = 16;
/// ICMP error header length in bytes
const ICMP_ERROR_HEADER_LEN_BYTES: usize = 8;
/// IPv4 header minimum length in bytes
const IPV4_HEADER_MIN_LEN_BYTES: usize = 20;

/// macOS async ICMP socket implementation using per-probe sockets
pub struct MacOSAsyncIcmpSocket {
    icmp_identifier: u16,
    destination_reached: Arc<AtomicBool>,
    pending_count: Arc<AtomicUsize>,
    timing_config: TimingConfig,
    verbose: u8,
}

impl MacOSAsyncIcmpSocket {
    /// Create a new macOS async ICMP socket
    pub fn new() -> Result<Self, TracerouteError> {
        Self::new_with_config(TimingConfig::default())
    }

    /// Create a new macOS async ICMP socket with timing configuration
    pub fn new_with_config(timing_config: TimingConfig) -> Result<Self, TracerouteError> {
        let verbose = std::env::var("FTR_VERBOSE")
            .ok()
            .and_then(|v| v.parse::<u8>().ok())
            .unwrap_or(0);
        trace_time!(
            verbose,
            "Creating macOS async ICMP socket (per-probe version)"
        );

        Ok(Self {
            icmp_identifier: std::process::id() as u16,
            destination_reached: Arc::new(AtomicBool::new(false)),
            pending_count: Arc::new(AtomicUsize::new(0)),
            timing_config,
            verbose,
        })
    }

    /// Parse an ICMP response
    fn parse_response(
        &self,
        packet_data: &[u8],
        from_addr: IpAddr,
        recv_time: Instant,
        expected_sequence: u16,
        dest: IpAddr,
    ) -> Option<ProbeResponse> {
        // Parse outer IPv4 packet
        let icmp_data = icmp::ipv4_payload(packet_data)?;
        let hdr = icmp::parse_icmp_header(icmp_data)?;

        trace_time!(
            self.verbose,
            "Received ICMP type {} code {} from {}",
            hdr.icmp_type,
            hdr.icmp_code,
            from_addr
        );

        match hdr.icmp_type {
            icmp::ICMP_TIME_EXCEEDED | icmp::ICMP_DEST_UNREACHABLE => {
                // Parse the original packet that triggered this response
                let original_datagram_bytes = if icmp_data.len() >= ICMP_ERROR_HEADER_LEN_BYTES {
                    &icmp_data[ICMP_ERROR_HEADER_LEN_BYTES..]
                } else {
                    return None;
                };

                if original_datagram_bytes.len() < IPV4_HEADER_MIN_LEN_BYTES {
                    return None;
                }

                let (inner_hdr_len, _) = icmp::parse_ipv4_header(original_datagram_bytes)?;
                let original_icmp_bytes = &original_datagram_bytes[inner_hdr_len..];

                if original_icmp_bytes.len() < 8 {
                    return None;
                }

                // Extract identifier and sequence from original ICMP echo
                let original_type = original_icmp_bytes[0];
                let original_id =
                    u16::from_be_bytes([original_icmp_bytes[4], original_icmp_bytes[5]]);
                let original_seq =
                    u16::from_be_bytes([original_icmp_bytes[6], original_icmp_bytes[7]]);

                if original_type == icmp::ICMP_ECHO_REQUEST
                    && original_id == self.icmp_identifier
                    && original_seq == expected_sequence
                {
                    let is_destination = hdr.icmp_type == icmp::ICMP_DEST_UNREACHABLE;
                    return Some(ProbeResponse {
                        from_addr,
                        sequence: expected_sequence,
                        ttl: 0,                                   // Will be filled by caller
                        rtt: recv_time.duration_since(recv_time), // Will be calculated by caller
                        received_at: recv_time,
                        is_destination,
                        is_timeout: false,
                    });
                }
            }
            icmp::ICMP_ECHO_REPLY => {
                if let Some((reply_id, reply_seq)) = icmp::parse_echo_reply(icmp_data) {
                    if reply_id == self.icmp_identifier && reply_seq == expected_sequence {
                        let is_destination = from_addr == dest;
                        return Some(ProbeResponse {
                            from_addr,
                            sequence: expected_sequence,
                            ttl: 0, // Will be filled by caller
                            rtt: recv_time.duration_since(recv_time), // Will be calculated by caller
                            received_at: recv_time,
                            is_destination,
                            is_timeout: false,
                        });
                    }
                }
            }
            _ => {}
        }

        None
    }

    /// Send an ICMP echo request and wait for response
    async fn send_and_recv_probe(
        &self,
        dest: Ipv4Addr,
        probe: ProbeInfo,
    ) -> Result<ProbeResponse, TracerouteError> {
        let send_start = probe.sent_at;

        // Create a new DGRAM ICMP socket for this probe
        let socket =
            Socket2::new(Domain::IPV4, Type::DGRAM, Some(Protocol::ICMPV4)).map_err(|e| {
                TracerouteError::SocketError(format!("Failed to create ICMP socket: {e}"))
            })?;

        // Set TTL
        socket
            .set_ttl_v4(probe.ttl as u32)
            .map_err(|e| TracerouteError::SocketError(format!("Failed to set TTL: {e}")))?;

        // Set non-blocking
        socket.set_nonblocking(true).map_err(|e| {
            TracerouteError::SocketError(format!("Failed to set non-blocking: {e}"))
        })?;

        // Build ICMP Echo Request packet
        let payload_data = (self.icmp_identifier as u32) << 16 | (probe.sequence as u32);
        let payload_bytes = payload_data.to_be_bytes();
        let mut final_payload = vec![0u8; ICMP_ECHO_PAYLOAD_SIZE];
        let bytes_to_copy = payload_bytes.len().min(ICMP_ECHO_PAYLOAD_SIZE);
        final_payload[..bytes_to_copy].copy_from_slice(&payload_bytes[..bytes_to_copy]);

        let icmp_buf =
            icmp::build_echo_request(self.icmp_identifier, probe.sequence, &final_payload);

        // Send the packet
        let dest_addr = SocketAddr::new(IpAddr::V4(dest), 0);
        socket.send_to(&icmp_buf, &dest_addr.into()).map_err(|e| {
            TracerouteError::ProbeSendError(format!("Failed to send ICMP packet: {e}"))
        })?;

        trace_time!(
            self.verbose,
            "Sent ICMP echo seq={} ttl={} to {}",
            probe.sequence,
            probe.ttl,
            dest
        );

        // Create channel for response
        let (tx, rx) = oneshot::channel();

        // Spawn task to receive response
        let socket_clone = socket
            .try_clone()
            .map_err(|e| TracerouteError::SocketError(format!("Failed to clone socket: {e}")))?;
        let icmp_identifier = self.icmp_identifier;
        let sequence = probe.sequence;
        let ttl = probe.ttl;
        let dest_ip = IpAddr::V4(dest);
        let verbose = self.verbose;
        let destination_reached = Arc::clone(&self.destination_reached);
        let pending_count = Arc::clone(&self.pending_count);
        let socket_timeout = self.timing_config.socket_read_timeout;

        tokio::spawn(async move {
            let mut buf = vec![MaybeUninit::uninit(); 1500];
            let timeout = socket_timeout;
            let deadline = Instant::now() + timeout;

            loop {
                let remaining = deadline.saturating_duration_since(Instant::now());
                if remaining.is_zero() {
                    trace_time!(verbose, "Timeout waiting for response to seq={}", sequence);
                    break;
                }

                // Use tokio::time::timeout for async waiting
                let result = tokio::time::timeout(remaining, async {
                    // Poll the socket in a loop
                    loop {
                        match socket_clone.recv_from(&mut buf[..]) {
                            Ok((size, addr)) => {
                                return Ok((size, addr));
                            }
                            Err(e) if e.kind() == std::io::ErrorKind::WouldBlock => {
                                tokio::time::sleep(Duration::from_millis(1)).await;
                                continue;
                            }
                            Err(e) => return Err(e),
                        }
                    }
                })
                .await;

                match result {
                    Ok(Ok((size, addr))) => {
                        let recv_time = Instant::now();
                        let from_addr = match addr.as_socket_ipv4() {
                            Some(ipv4) => IpAddr::V4(*ipv4.ip()),
                            None => continue,
                        };

                        trace_time!(verbose, "Received {} bytes from {}", size, from_addr);

                        // Convert MaybeUninit buffer to initialized slice
                        let initialized_buf =
                            unsafe { std::slice::from_raw_parts(buf.as_ptr() as *const u8, size) };

                        // Try to parse the response - create a temporary parser
                        let parser = MacOSAsyncIcmpSocket {
                            icmp_identifier,
                            destination_reached: Arc::new(AtomicBool::new(false)),
                            pending_count: Arc::new(AtomicUsize::new(0)),
                            timing_config: TimingConfig::default(),
                            verbose,
                        };

                        if let Some(mut response) = parser.parse_response(
                            initialized_buf,
                            from_addr,
                            recv_time,
                            sequence,
                            dest_ip,
                        ) {
                            // Fill in the actual values
                            response.ttl = ttl;
                            response.rtt = recv_time.duration_since(send_start);

                            trace_time!(
                                verbose,
                                "Matched response for seq={} from {} rtt={:?}",
                                sequence,
                                from_addr,
                                response.rtt
                            );

                            // Update destination reached
                            if response.is_destination {
                                destination_reached.store(true, Ordering::Relaxed);
                            }

                            // Decrement pending count
                            pending_count.fetch_sub(1, Ordering::Relaxed);

                            let _ = tx.send(response);
                            return;
                        }
                    }
                    Ok(Err(e)) => {
                        trace_time!(verbose, "Error receiving: {}", e);
                        break;
                    }
                    Err(_) => {
                        // Timeout
                        break;
                    }
                }
            }

            // Send timeout response
            pending_count.fetch_sub(1, Ordering::Relaxed);
            let _ = tx.send(ProbeResponse {
                from_addr: dest_ip,
                sequence,
                ttl,
                rtt: Duration::from_millis(1000),
                received_at: Instant::now(),
                is_destination: false,
                is_timeout: true,
            });
        });

        // Wait for response
        match tokio::time::timeout(self.timing_config.socket_read_timeout, rx).await {
            Ok(Ok(response)) => Ok(response),
            Ok(Err(_)) => {
                // Channel closed
                Err(TracerouteError::SocketError(
                    "Response channel closed unexpectedly".to_string(),
                ))
            }
            Err(_) => {
                // Timeout
                Ok(ProbeResponse {
                    from_addr: IpAddr::V4(dest),
                    sequence: probe.sequence,
                    ttl: probe.ttl,
                    rtt: self.timing_config.socket_read_timeout,
                    received_at: Instant::now(),
                    is_destination: false,
                    is_timeout: true,
                })
            }
        }
    }
}

impl ProbeSocket for MacOSAsyncIcmpSocket {
    fn mode(&self) -> ProbeMode {
        ProbeMode::DgramIcmp
    }

    fn send_probe_and_recv(
        &self,
        dest: IpAddr,
        probe: ProbeInfo,
    ) -> Pin<Box<dyn Future<Output = Result<ProbeResponse, TracerouteError>> + Send + '_>> {
        Box::pin(async move {
            let dest_v4 = match dest {
                IpAddr::V4(addr) => addr,
                _ => return Err(TracerouteError::Ipv6NotSupported),
            };

            // Increment pending count
            self.pending_count.fetch_add(1, Ordering::Relaxed);

            self.send_and_recv_probe(dest_v4, probe).await
        })
    }

    fn destination_reached(&self) -> bool {
        self.destination_reached.load(Ordering::Relaxed)
    }

    fn pending_count(&self) -> usize {
        self.pending_count.load(Ordering::Relaxed)
    }
}

// Safety: The socket and shared state are properly synchronized
unsafe impl Send for MacOSAsyncIcmpSocket {}
unsafe impl Sync for MacOSAsyncIcmpSocket {}