ping程序的实现

最近在看些Windows下网络编程问题。看到原始套接字的使用，于是看了Ping程序的功能实现。

大部分人用ping命令只是作为查看另一个系统的网络连接是否正常的一种简单方法。这里我介绍下在Windows下实现ping程序的两种方法。

一是使用原始套接字的方法：

代码如下：

1. #include<Winsock2.h>
2. #pragmacomment(lib,"ws2_32.lib")
3. #pragmacomment(lib,"Iphlpapi.lib")
5. typedefstructicmp_hdr
6. {
7. unsignedcharicmp_type;
8. unsignedcharicmp_code;
9. unsignedshorticmp_checksum;
10. //回显头
11. unsignedshorticmp_id;
12. unsignedshorticmp_sequence;
13. unsignedlongicmp_timestamp;
14. }ICMP_HDR,*PICMP_HDR;
16. typedefstruct_IPHeader//20字节的IP头
17. {
18. UCHARiphVerLen;//版本号和头长度（各占4位）
19. UCHARipTOS;//服务类型
20. USHORTipLength;//封包总长度，即整个IP报的长度
21. USHORTipID;//封包标识，惟一标识发送的每一个数据报
22. USHORTipFlags;//标志
23. UCHARipTTL;//生存时间，就是TTL
24. UCHARipProtocol;//协议，可能是TCP、UDP、ICMP等
25. USHORTipChecksum;//校验和
26. ULONGipSource;//源IP地址
27. ULONGipDestination;//目标IP地址
28. }IPHeader,*PIPHeader;
30. USHORTchecksum(USHORT*buffer,intsize)
31. {
32. unsignedlongcksum=0;
33. while(size>1)
34. {
35. cksum+=*buffer++;
36. size-=sizeof(USHORT);
37. }
38. if(size)
39. {
40. cksum+=*(UCHAR*)buffer;
41. }
42. cksum=(cksum>>16)+(cksum&0xffff);
43. cksum+=(cksum>>16);
44. return(USHORT)(~cksum);
45. }
47. BOOLSetTimeout(SOCKETs,intnTime,BOOLbRecv)
48. {
49. intret=::setsockopt(s,SOL_SOCKET,
50. bRecv?SO_RCVTIMEO:SO_SNDTIMEO,(char*)&nTime,sizeof(nTime));
51. returnret!=SOCKET_ERROR;
52. }
54. intmain(intargc,char*argv[])
55. {
56. if(argc<2)
57. {
58. printf("Usage:PingIPaddress.\n");
59. return-1;
60. }
61. charszDestIp[20];
62. strcpy_s(szDestIp,argv[1]);
63. //初始化套接字
64. WSADATAwsaData;
65. intwsaset=WSAStartup(0x101,&wsaData);
66. SOCKETsRaw=::socket(AF_INET,SOCK_RAW,IPPROTO_ICMP);
67. inta=::GetLastError();
68. SetTimeout(sRaw,1000,TRUE);
69. SOCKADDR_INdest;
70. dest.sin_family=AF_INET;
71. dest.sin_port=htons(0);
72. dest.sin_addr.S_un.S_addr=inet_addr(szDestIp);
73. //创建ICMP封包
74. charbuff[sizeof(ICMP_HDR)+32];
75. ICMP_HDR*pIcmp=(ICMP_HDR*)buff;
76. //填写ICMP包
77. pIcmp->icmp_type=8;
78. pIcmp->icmp_code=0;
79. pIcmp->icmp_id=(USHORT)::GetCurrentProcessId();
80. pIcmp->icmp_checksum=0;
81. pIcmp->icmp_sequence=0;
82. //填充数据
83. memset(&buff[sizeof(ICMP_HDR)],'E',32);
84. //开始发送和接收ICMP封包
85. USHORTnSeq=0;
86. charrecvBuf[1024];
87. SOCKADDR_INfrom;
88. intnLen=sizeof(from);
89. while(TRUE)
90. {
91. staticintnCount=0;
92. intnRet;
93. if(nCount++==4)
94. break;
95. pIcmp->icmp_checksum=0;
96. pIcmp->icmp_timestamp=::GetTickCount();
97. pIcmp->icmp_sequence=nSeq++;
98. pIcmp->icmp_checksum=checksum((USHORT*)buff,sizeof(ICMP_HDR)+32);
99. //发送
100. nRet=::sendto(sRaw,buff,sizeof(ICMP_HDR)+32,0,(SOCKADDR*)&dest,sizeof(dest));
101. if(nRet==SOCKET_ERROR)
102. {
103. printf("sendto()failed:%d\n",::WSAGetLastError());
104. return-1;
105. }
106. nRet=::recvfrom(sRaw,recvBuf,1024,0,(sockaddr*)&from,&nLen);
107. if(nRet==SOCKET_ERROR)
108. {
109. if(::WSAGetLastError()==WSAETIMEDOUT)
110. {
111. printf("timedout\n");
112. continue;
113. }
114. printf("recvfrom()failed:%d\n",::WSAGetLastError());
115. return-1;
116. }
117. //下面开始解析接收到的ICMP封包
118. intnTick=::GetTickCount();
119. if(nRet<sizeof(IPHeader)+sizeof(ICMP_HDR))
120. {
121. printf("Toofewbytesfrom%s\n",::inet_ntoa(from.sin_addr));
122. }
123. //接收到的数据中包含IP头，IP头大小为20个字节，所以加20得到ICMP头
124. ICMP_HDR*pRecvIcmp=(ICMP_HDR*)(recvBuf+20);//(ICMP_HDR*)(recvBuf+sizeof(IPHeader));
125. if(pRecvIcmp->icmp_type!=0)//回显
126. {
127. printf("nonechotype%drecvd\n",pRecvIcmp->icmp_type);
128. return-1;
129. }
131. if(pRecvIcmp->icmp_id!=::GetCurrentProcessId())
132. {
133. printf("someoneelse'spacket!\n");
134. return-1;
135. }
137. printf("%dbytesfrom%s:",nRet,inet_ntoa(from.sin_addr));
138. printf("icmp_seq=%d.",pRecvIcmp->icmp_sequence);
139. printf("time:%dms",nTick-pRecvIcmp->icmp_timestamp);
140. printf("\n");
142. ::Sleep(1000);
143. }
144. system("pause");
145. return0;
146. }

这是使用了原始套接字，实现发送ICMP数据包，实现ping程序。

在Linux中的Ping使用了这种方式。

这里是一个比较完整的关于Ping程序介绍的文章：http://www.ibm.com/developerworks/cn/linux/network/ping/index.html

这是Windows下实现的Ping程序：http://blog.csdn.net/tancfjob/archive/2008/05/07/2408978.aspx

但是在使用Windows下实现Ping的时候发现使用原始套接字需要管理员权限，但是Windows下使用ping程序并不需要使用管理员权限。感谢shadowstar 提示了我使用IcmpSendEcho来实现功能。

下面是使用IcmpSendEcho的示例代码：

1. #pragmacomment(lib,"ws2_32.lib")
2. #pragmacomment(lib,"Iphlpapi.lib")
5. int__cdeclmain(intargc,char**argv){
7. //Declareandinitializevariables
9. HANDLEhIcmpFile;
10. unsignedlongipaddr=INADDR_NONE;
11. DWORDdwRetVal=0;
12. charSendData[]="DataBuffer";
13. LPVOIDReplyBuffer=NULL;
14. DWORDReplySize=0;
16. //Validatetheparameters
17. if(argc!=2){
18. printf("usage:%sIPaddress\n",argv[0]);
19. return1;
20. }
22. ipaddr=inet_addr(argv[1]);
23. if(ipaddr==INADDR_NONE){
24. printf("usage:%sIPaddress\n",argv[0]);
25. return1;
26. }
28. hIcmpFile=IcmpCreateFile();
29. if(hIcmpFile==INVALID_HANDLE_VALUE){
30. printf("\tUnabletoopenhandle.\n");
31. printf("IcmpCreatefilereturnederror:%ld\n",GetLastError());
32. return1;
33. }
35. ReplySize=sizeof(ICMP_ECHO_REPLY)+sizeof(SendData);
36. ReplyBuffer=(VOID*)malloc(ReplySize);
37. if(ReplyBuffer==NULL){
38. printf("\tUnabletoallocatememory\n");
39. return1;
40. }
43. dwRetVal=IcmpSendEcho(hIcmpFile,ipaddr,SendData,sizeof(SendData),
44. NULL,ReplyBuffer,ReplySize,1000);
45. if(dwRetVal!=0){
46. PICMP_ECHO_REPLYpEchoReply=(PICMP_ECHO_REPLY)ReplyBuffer;
47. structin_addrReplyAddr;
48. ReplyAddr.S_un.S_addr=pEchoReply->Address;
49. printf("\tSenticmpmessageto%s\n",argv[1]);
50. if(dwRetVal>1){
51. printf("\tReceived%ldicmpmessageresponses\n",dwRetVal);
52. printf("\tInformationfromthefirstresponse:\n");
53. }
54. else{
55. printf("\tReceived%ldicmpmessageresponse\n",dwRetVal);
56. printf("\tInformationfromthisresponse:\n");
57. }
58. printf("\tReceivedfrom%s\n",inet_ntoa(ReplyAddr));
59. printf("\tStatus=%ld\n",
60. pEchoReply->Status);
61. printf("\tRoundtriptime=%ldmilliseconds\n",
62. pEchoReply->RoundTripTime);
63. }
64. else{
65. printf("\tCalltoIcmpSendEchofailed.\n");
66. printf("\tIcmpSendEchoreturnederror:%ld\n",GetLastError());
67. return1;
68. }
69. return0;
70. }

此段代码需要ws2_32.lib和Iphlpapi.lib，包含头文件iphlpapi.h和icmpapi.h