12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322 |
- /* $Id$ */
- /*
- * Copyright (c) 2001-2010 Aaron Turner <aturner at synfin dot net>
- * Copyright (c) 2013-2018 Fred Klassen <tcpreplay at appneta dot com> - AppNeta
- *
- * The Tcpreplay Suite of tools is free software: you can redistribute it
- * and/or modify it under the terms of the GNU General Public License as
- * published by the Free Software Foundation, either version 3 of the
- * License, or with the authors permission any later version.
- *
- * The Tcpreplay Suite is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with the Tcpreplay Suite. If not, see <http://www.gnu.org/licenses/>.
- */
- /* sendpacket.[ch] is my attempt to write a universal packet injection
- * API for BPF, libpcap, libdnet, and Linux's PF_PACKET. I got sick
- * and tired dealing with libnet bugs and its lack of active maintenance,
- * but unfortunately, libpcap frame injection support is relatively new
- * and not everyone uses Linux, so I decided to support all four as
- * best as possible. If your platform/OS/hardware supports an additional
- * injection method, then by all means add it here (and send me a patch).
- *
- * Anyways, long story short, for now the order of preference is:
- * 1. TX_RING
- * 2. PF_PACKET
- * 3. BPF
- * 4. libdnet
- * 5. pcap_inject()
- * 6. pcap_sendpacket()
- *
- * Right now, one big problem with the pcap_* methods is that libpcap
- * doesn't provide a reliable method of getting the MAC address of
- * an interface (required for tcpbridge).
- * You can use PF_PACKET or BPF to get that, but if your system supports
- * those, might as well inject directly without going through another
- * level of indirection.
- *
- * Please note that some of this code was copied from Libnet 1.1.3
- */
- #include <string.h>
- #include <errno.h>
- #include <stdarg.h>
- #include <stdio.h>
- #include <sys/types.h>
- #include <sys/time.h>
- #include <sys/ioctl.h>
- #include <sys/file.h>
- #include <sys/socket.h>
- #include "config.h"
- #include "defines.h"
- #include "common.h"
- #include "sendpacket.h"
- #ifdef FORCE_INJECT_TX_RING
- /* TX_RING uses PF_PACKET API so don't undef it here */
- #undef HAVE_LIBDNET
- #undef HAVE_PCAP_INJECT
- #undef HAVE_PCAP_SENDPACKET
- #undef HAVE_BPF
- #endif
- #ifdef FORCE_INJECT_PF_PACKET
- #undef HAVE_TX_RING
- #undef HAVE_LIBDNET
- #undef HAVE_PCAP_INJECT
- #undef HAVE_PCAP_SENDPACKET
- #undef HAVE_BPF
- #endif
- #ifdef FORCE_INJECT_LIBDNET
- #undef HAVE_TX_RING
- #undef HAVE_PF_PACKET
- #undef HAVE_PCAP_INJECT
- #undef HAVE_PCAP_SENDPACKET
- #undef HAVE_BPF
- #endif
- #ifdef FORCE_INJECT_BPF
- #undef HAVE_TX_RING
- #undef HAVE_LIBDNET
- #undef HAVE_PCAP_INJECT
- #undef HAVE_PCAP_SENDPACKET
- #undef HAVE_PF_PACKET
- #endif
- #ifdef FORCE_INJECT_PCAP_INJECT
- #undef HAVE_TX_RING
- #undef HAVE_LIBDNET
- #undef HAVE_PCAP_SENDPACKET
- #undef HAVE_BPF
- #undef HAVE_PF_PACKET
- #endif
- #ifdef FORCE_INJECT_PCAP_SENDPACKET
- #undef HAVE_TX_RING
- #undef HAVE_LIBDNET
- #undef HAVE_PCAP_INJECT
- #undef HAVE_BPF
- #undef HAVE_PF_PACKET
- #endif
- #if (defined HAVE_WINPCAP && defined HAVE_PCAP_INJECT)
- #undef HAVE_PCAP_INJECT /* configure returns true for some odd reason */
- #endif
- #if !defined HAVE_PCAP_INJECT && !defined HAVE_PCAP_SENDPACKET && !defined HAVE_LIBDNET && !defined HAVE_PF_PACKET && !defined HAVE_BPF && !defined TX_RING
- #error You need pcap_inject() or pcap_sendpacket() from libpcap, libdnet, Linux's PF_PACKET/TX_RING or *BSD's BPF
- #endif
- #ifdef HAVE_SYS_PARAM_H
- #include <sys/param.h>
- #endif
- #ifdef HAVE_SYS_SYSCTL_H
- #include <sys/sysctl.h>
- #endif
- #ifdef HAVE_NET_ROUTE_H
- #include <net/route.h>
- #endif
- #include <stdlib.h>
- #include <unistd.h>
- #ifdef HAVE_PF_PACKET
- #undef INJECT_METHOD
- /* give priority to TX_RING */
- #ifndef HAVE_TX_RING
- #define INJECT_METHOD "PF_PACKET send()"
- #else
- #define INJECT_METHOD "PF_PACKET / TX_RING"
- #endif
- #include <fcntl.h>
- #include <sys/utsname.h>
- #include <net/if.h>
- #include <netinet/in.h>
- #include <net/if_arp.h>
- #include <netpacket/packet.h>
- #ifdef HAVE_TX_RING
- #include "txring.h"
- #endif
- static sendpacket_t *sendpacket_open_pf(const char *, char *);
- static struct tcpr_ether_addr *sendpacket_get_hwaddr_pf(sendpacket_t *);
- static int get_iface_index(int fd, const char *device, char *);
- #endif /* HAVE_PF_PACKET */
- #ifdef HAVE_TUNTAP
- #ifdef HAVE_LINUX
- #include <net/if.h>
- #include <linux/if_tun.h>
- #elif defined(HAVE_FREEBSD)
- #define TUNTAP_DEVICE_PREFIX "/dev/"
- #endif
- static sendpacket_t *sendpacket_open_tuntap(const char *, char *);
- #endif
- #if defined HAVE_BPF && ! defined INJECT_METHOD
- #undef INJECT_METHOD
- #define INJECT_METHOD "bpf send()"
- #include <net/bpf.h>
- #include <sys/sysctl.h>
- #include <net/route.h>
- #include <net/if.h>
- #include <sys/uio.h>
- #include <net/if_dl.h> // used for get_hwaddr_bpf()
- static sendpacket_t *sendpacket_open_bpf(const char *, char *) _U_;
- static struct tcpr_ether_addr *sendpacket_get_hwaddr_bpf(sendpacket_t *) _U_;
- #endif /* HAVE_BPF */
- #if defined HAVE_LIBDNET && ! defined INJECT_METHOD
- #undef INJECT_METHOD
- #define INJECT_METHOD "libdnet eth_send()"
- /* need to undef these which are pulled in via defines.h, prior to importing dnet.h */
- #undef icmp_id
- #undef icmp_seq
- #undef icmp_data
- #undef icmp_mask
- #ifdef HAVE_DNET_H
- #include <dnet.h>
- #endif
- #ifdef HAVE_DUMBNET_H
- #include <dumbnet.h>
- #endif
- static sendpacket_t *sendpacket_open_libdnet(const char *, char *) _U_;
- static struct tcpr_ether_addr *sendpacket_get_hwaddr_libdnet(sendpacket_t *) _U_;
- #endif /* HAVE_LIBDNET */
- #if (defined HAVE_PCAP_INJECT || defined HAVE_PCAP_SENDPACKET) && !(defined HAVE_PF_PACKET || defined BPF || defined HAVE_LIBDNET)
- static sendpacket_t *sendpacket_open_pcap(const char *, char *) _U_;
- static struct tcpr_ether_addr *sendpacket_get_hwaddr_pcap(sendpacket_t *) _U_;
- #endif /* HAVE_PCAP_INJECT || HAVE_PACKET_SENDPACKET */
- #if defined HAVE_PCAP_INJECT && ! defined INJECT_METHOD
- #undef INJECT_METHOD
- #define INJECT_METHOD "pcap_inject()"
- #elif defined HAVE_PCAP_SENDPACKET && ! defined INJECT_METHOD
- #undef INJECT_METHOD
- #define INJECT_METHOD "pcap_sendpacket()"
- #endif
- static void sendpacket_seterr(sendpacket_t *sp, const char *fmt, ...);
- static sendpacket_t * sendpacket_open_khial(const char *, char *) _U_;
- static struct tcpr_ether_addr * sendpacket_get_hwaddr_khial(sendpacket_t *) _U_;
- /**
- * returns number of bytes sent on success or -1 on error
- * Note: it is theoretically possible to get a return code >0 and < len
- * which for most people would be considered an error (the packet wasn't fully sent)
- * so you may want to test for recode != len too.
- *
- * Most socket API's have two interesting errors: ENOBUFS & EAGAIN. ENOBUFS
- * is usually due to the kernel buffers being full. EAGAIN happens when you
- * try to send traffic faster then the PHY allows.
- */
- int
- sendpacket(sendpacket_t *sp, const u_char *data, size_t len, struct pcap_pkthdr *pkthdr)
- {
- int retcode = 0, val;
- static u_char buffer[10000]; /* 10K bytes, enough for jumbo frames + pkthdr
- * larger than page size so made static to
- * prevent page misses on stack
- */
- static const size_t buffer_payload_size = sizeof(buffer) + sizeof(struct pcap_pkthdr);
- assert(sp);
- assert(data);
- if (len == 0)
- return -1;
- TRY_SEND_AGAIN:
- sp->attempt ++;
- switch (sp->handle_type) {
- case SP_TYPE_KHIAL:
- memcpy(buffer, pkthdr, sizeof(struct pcap_pkthdr));
- memcpy(buffer + sizeof(struct pcap_pkthdr), data, min(len, buffer_payload_size));
- /* tell the kernel module which direction the traffic is going */
- if (sp->cache_dir == TCPR_DIR_C2S) { /* aka PRIMARY */
- val = KHIAL_DIRECTION_RX;
- if (ioctl(sp->handle.fd, KHIAL_SET_DIRECTION, (void *)&val) < 0) {
- sendpacket_seterr(sp, "Error setting direction on %s: %s (%d)",
- sp->device, strerror(errno), errno);
- return -1;
- }
- } else if (sp->cache_dir == TCPR_DIR_S2C) {
- val = KHIAL_DIRECTION_TX;
- if (ioctl(sp->handle.fd, KHIAL_SET_DIRECTION, (void *)&val) < 0) {
- sendpacket_seterr(sp, "Error setting direction on %s: %s (%d)",
- sp->device, strerror(errno), errno);
- return -1;
- }
- }
- /* write the pkthdr + packet data all at once */
- retcode = write(sp->handle.fd, (void *)buffer, sizeof(struct pcap_pkthdr) + len);
- retcode -= sizeof(struct pcap_pkthdr); /* only record packet bytes we sent, not pcap data too */
-
- if (retcode < 0 && !sp->abort) {
- switch(errno) {
- case EAGAIN:
- sp->retry_eagain ++;
- goto TRY_SEND_AGAIN;
- break;
- case ENOBUFS:
- sp->retry_enobufs ++;
- goto TRY_SEND_AGAIN;
- break;
- default:
- sendpacket_seterr(sp, "Error with %s [" COUNTER_SPEC "]: %s (errno = %d)",
- "khial", sp->sent + sp->failed + 1, strerror(errno), errno);
- }
- break;
- }
- break;
- case SP_TYPE_TUNTAP:
- retcode = write(sp->handle.fd, (void *)data, len);
- break;
- /* Linux PF_PACKET and TX_RING */
- case SP_TYPE_PF_PACKET:
- case SP_TYPE_TX_RING:
- #if defined HAVE_PF_PACKET
- #ifdef HAVE_TX_RING
- retcode = (int)txring_put(sp->tx_ring, data, len);
- #else
- retcode = (int)send(sp->handle.fd, (void *)data, len, 0);
- #endif
- /* out of buffers, or hit max PHY speed, silently retry
- * as long as we're not told to abort
- */
- if (retcode < 0 && !sp->abort) {
- switch (errno) {
- case EAGAIN:
- sp->retry_eagain ++;
- goto TRY_SEND_AGAIN;
- break;
- case ENOBUFS:
- sp->retry_enobufs ++;
- goto TRY_SEND_AGAIN;
- break;
- default:
- sendpacket_seterr(sp, "Error with %s [" COUNTER_SPEC "]: %s (errno = %d)",
- INJECT_METHOD, sp->sent + sp->failed + 1, strerror(errno), errno);
- }
- }
- #endif /* HAVE_PF_PACKET */
- break;
- /* BPF */
- case SP_TYPE_BPF:
- #if defined HAVE_BPF
- retcode = write(sp->handle.fd, (void *)data, len);
- /* out of buffers, or hit max PHY speed, silently retry */
- if (retcode < 0 && !sp->abort) {
- switch (errno) {
- case EAGAIN:
- sp->retry_eagain ++;
- goto TRY_SEND_AGAIN;
- break;
- case ENOBUFS:
- sp->retry_enobufs ++;
- goto TRY_SEND_AGAIN;
- break;
- default:
- sendpacket_seterr(sp, "Error with %s [" COUNTER_SPEC "]: %s (errno = %d)",
- INJECT_METHOD, sp->sent + sp->failed + 1, strerror(errno), errno);
- }
- }
- #endif
- break;
- /* Libdnet */
- case SP_TYPE_LIBDNET:
- #if defined HAVE_LIBDNET
- retcode = eth_send(sp->handle.ldnet, (void*)data, (size_t)len);
- /* out of buffers, or hit max PHY speed, silently retry */
- if (retcode < 0 && !sp->abort) {
- switch (errno) {
- case EAGAIN:
- sp->retry_eagain ++;
- goto TRY_SEND_AGAIN;
- break;
- case ENOBUFS:
- sp->retry_enobufs ++;
- goto TRY_SEND_AGAIN;
- break;
- default:
- sendpacket_seterr(sp, "Error with %s [" COUNTER_SPEC "]: %s (errno = %d)",
- INJECT_METHOD, sp->sent + sp->failed + 1, strerror(errno), errno);
- }
- }
- #endif
- break;
- case SP_TYPE_LIBPCAP:
- #if (defined HAVE_PCAP_INJECT || defined HAVE_PCAP_SENDPACKET)
- #if defined HAVE_PCAP_INJECT
- /*
- * pcap methods don't seem to support ENOBUFS, so we just straight fail
- * is there a better way???
- */
- retcode = pcap_inject(sp->handle.pcap, (void*)data, len);
- #elif defined HAVE_PCAP_SENDPACKET
- retcode = pcap_sendpacket(sp->handle.pcap, data, (int)len);
- #endif
- /* out of buffers, or hit max PHY speed, silently retry */
- if (retcode < 0 && !sp->abort) {
- switch (errno) {
- case EAGAIN:
- sp->retry_eagain ++;
- goto TRY_SEND_AGAIN;
- break;
- case ENOBUFS:
- sp->retry_enobufs ++;
- goto TRY_SEND_AGAIN;
- break;
- default:
- sendpacket_seterr(sp, "Error with %s [" COUNTER_SPEC "]: %s (errno = %d)",
- INJECT_METHOD, sp->sent + sp->failed + 1, pcap_geterr(sp->handle.pcap), errno);
- }
- }
- #if defined HAVE_PCAP_SENDPACKET
- /*
- * pcap_sendpacket returns 0 on success, not the packet length!
- * hence, we have to fix retcode to be more standard on success
- */
- if (retcode == 0)
- retcode = len;
- #endif /* HAVE_PCAP_SENDPACKET */
- #endif /* HAVE_PCAP_INJECT || HAVE_PCAP_SENDPACKET */
- break;
- case SP_TYPE_NETMAP:
- #ifdef HAVE_NETMAP
- retcode = sendpacket_send_netmap(sp, data, len);
- if (retcode == -1) {
- sendpacket_seterr(sp, "interface hung!!");
- } else if (retcode == -2) {
- /* this indicates that a retry was requested - this is not a failure */
- sp->retry_eagain ++;
- retcode = 0;
- #ifdef HAVE_SCHED_H
- /* yield the CPU so other apps remain responsive */
- sched_yield();
- #endif
- goto TRY_SEND_AGAIN;
- }
- #endif /* HAVE_NETMAP */
- break;
- default:
- errx(-1, "Unsupported sp->handle_type = %d", sp->handle_type);
- } /* end case */
- if (retcode < 0) {
- sp->failed ++;
- } else if (sp->abort) {
- sendpacket_seterr(sp, "User abort");
- } else if (retcode != (int)len) {
- sendpacket_seterr(sp, "Only able to write %d bytes out of %u bytes total",
- retcode, len);
- sp->trunc_packets ++;
- } else {
- sp->bytes_sent += len;
- sp->sent ++;
- }
- return retcode;
- }
- /**
- * Open the given network device name and returns a sendpacket_t struct
- * pass the error buffer (in case there's a problem) and the direction
- * that this interface represents
- */
- sendpacket_t *
- sendpacket_open(const char *device, char *errbuf, tcpr_dir_t direction,
- sendpacket_type_t sendpacket_type, void *arg)
- {
- sendpacket_t *sp;
- struct stat sdata;
- assert(device);
- assert(errbuf);
- errbuf[0] = '\0';
- /* khial is universal */
- if (stat(device, &sdata) == 0) {
- if (((sdata.st_mode & S_IFMT) == S_IFCHR)) {
- sp = sendpacket_open_khial(device, errbuf);
- } else {
- switch (sdata.st_mode & S_IFMT) {
- case S_IFBLK:
- errx(-1, "\"%s\" is a block device and is not a valid Tcpreplay device",
- device);
- break;
- case S_IFDIR:
- errx(-1, "\"%s\" is a directory and is not a valid Tcpreplay device",
- device);
- break;
- case S_IFIFO:
- errx(-1, "\"%s\" is a FIFO and is not a valid Tcpreplay device",
- device);
- break;
- case S_IFLNK:
- errx(-1, "\"%s\" is a symbolic link and is not a valid Tcpreplay device",
- device);
- break;
- case S_IFREG:
- errx(-1, "\"%s\" is a file and is not a valid Tcpreplay device",
- device);
- break;
- default:
- errx(-1, "\"%s\" is not a valid Tcpreplay device",
- device);
- break;
- }
- }
- #ifdef HAVE_TUNTAP
- } else if (strncmp(device, "tap", 3) == 0) {
- sp = sendpacket_open_tuntap(device, errbuf);
- #endif
- } else {
- #ifdef HAVE_NETMAP
- if (sendpacket_type == SP_TYPE_NETMAP)
- sp = (sendpacket_t*)sendpacket_open_netmap(device, errbuf, arg);
- else
- #endif
- #if defined HAVE_PF_PACKET
- sp = sendpacket_open_pf(device, errbuf);
- #elif defined HAVE_BPF
- sp = sendpacket_open_bpf(device, errbuf);
- #elif defined HAVE_LIBDNET
- sp = sendpacket_open_libdnet(device, errbuf);
- #elif (defined HAVE_PCAP_INJECT || defined HAVE_PCAP_SENDPACKET)
- sp = sendpacket_open_pcap(device, errbuf);
- #else
- #error "No defined packet injection method for sendpacket_open()"
- #endif
- }
- if (sp) {
- sp->open = 1;
- sp->cache_dir = direction;
- } else {
- errx(-1, "failed to open device %s: %s", device, errbuf);
- }
- return sp;
- }
- /**
- * Get packet stats for the given sendpacket_t
- */
- size_t
- sendpacket_getstat(sendpacket_t *sp, char *buf, size_t buf_size)
- {
- size_t offset;
- assert(sp);
- assert(buf);
- memset(buf, 0, buf_size);
- offset = snprintf(buf, buf_size, "Statistics for network device: %s\n"
- "\tSuccessful packets: " COUNTER_SPEC "\n"
- "\tFailed packets: " COUNTER_SPEC "\n"
- "\tTruncated packets: " COUNTER_SPEC "\n"
- "\tRetried packets (ENOBUFS): " COUNTER_SPEC "\n"
- "\tRetried packets (EAGAIN): " COUNTER_SPEC "\n",
- sp->device, sp->sent, sp->failed, sp->trunc_packets,
- sp->retry_enobufs, sp->retry_eagain);
- if (sp->flow_packets && offset > 0) {
- offset += snprintf(&buf[offset], buf_size - offset,
- "\tFlows total: " COUNTER_SPEC "\n"
- "\tFlows unique: " COUNTER_SPEC "\n"
- "\tFlows expired: " COUNTER_SPEC "\n"
- "\tFlow packets: " COUNTER_SPEC "\n"
- "\tNon-flow packets: " COUNTER_SPEC "\n"
- "\tInvalid flow packets: " COUNTER_SPEC "\n",
- sp->flows, sp->flows_expired, sp->flows_expired, sp->flow_packets,
- sp->flow_non_flow_packets, sp->flows_invalid_packets);
- }
- return offset;
- }
- /**
- * close the given sendpacket
- */
- void
- sendpacket_close(sendpacket_t *sp)
- {
- assert(sp);
- switch(sp->handle_type) {
- case SP_TYPE_KHIAL:
- close(sp->handle.fd);
- break;
- case SP_TYPE_BPF:
- #if (defined HAVE_PCAP_INJECT || defined HAVE_PCAP_SENDPACKET)
- close(sp->handle.fd);
- #endif
- break;
- case SP_TYPE_PF_PACKET:
- case SP_TYPE_TX_RING:
- #ifdef HAVE_PF_PACKET
- close(sp->handle.fd);
- #endif
- break;
- case SP_TYPE_LIBPCAP:
- #ifdef HAVE_LIBPCAP
- pcap_close(sp->handle.pcap);
- #endif
- break;
- case SP_TYPE_LIBDNET:
- #ifdef HAVE_LIBDNET
- eth_close(sp->handle.ldnet);
- #endif
- break;
- case SP_TYPE_LIBNET:
- err(-1, "Libnet is no longer supported!");
- break;
- case SP_TYPE_NETMAP:
- #ifdef HAVE_NETMAP
- sendpacket_close_netmap(sp);
- #endif /* HAVE_NETMAP */
- break;
- case SP_TYPE_TUNTAP:
- #ifdef HAVE_TUNTAP
- close(sp->handle.fd);
- #endif
- break;
- case SP_TYPE_NONE:
- err(-1, "no injector selected!");
- break;
- }
- safe_free(sp);
- }
- /**
- * returns the Layer 2 address of the interface current
- * open. on error, return NULL
- */
- struct tcpr_ether_addr *
- sendpacket_get_hwaddr(sendpacket_t *sp)
- {
- struct tcpr_ether_addr *addr;
- assert(sp);
- /* if we already have our MAC address stored, just return it */
- if (memcmp(&sp->ether, "\x00\x00\x00\x00\x00\x00", ETHER_ADDR_LEN) != 0)
- return &sp->ether;
- if (sp->handle_type == SP_TYPE_KHIAL) {
- addr = sendpacket_get_hwaddr_khial(sp);
- } else {
- #if defined HAVE_PF_PACKET
- addr = sendpacket_get_hwaddr_pf(sp);
- #elif defined HAVE_BPF
- addr = sendpacket_get_hwaddr_bpf(sp);
- #elif defined HAVE_LIBDNET
- addr = sendpacket_get_hwaddr_libdnet(sp);
- #elif (defined HAVE_PCAP_INJECT || defined HAVE_PCAP_SENDPACKET)
- addr = sendpacket_get_hwaddr_pcap(sp);
- #endif
- }
- return addr;
- }
- /**
- * returns the error string
- */
- char *
- sendpacket_geterr(sendpacket_t *sp)
- {
- assert(sp);
- return sp->errbuf;
- }
- /**
- * Set's the error string
- */
- static void
- sendpacket_seterr(sendpacket_t *sp, const char *fmt, ...)
- {
- va_list ap;
- assert(sp);
- va_start(ap, fmt);
- if (fmt != NULL)
- (void)vsnprintf(sp->errbuf, SENDPACKET_ERRBUF_SIZE, fmt, ap);
- va_end(ap);
- sp->errbuf[(SENDPACKET_ERRBUF_SIZE-1)] = '\0'; // be safe
- }
- #if (defined HAVE_PCAP_INJECT || defined HAVE_PCAP_SENDPACKET) && !(defined HAVE_PF_PACKET || defined BPF || defined HAVE_LIBDNET)
- /**
- * Inner sendpacket_open() method for using libpcap
- */
- static sendpacket_t *
- sendpacket_open_pcap(const char *device, char *errbuf)
- {
- pcap_t *pcap;
- sendpacket_t *sp;
- #ifdef BIOCSHDRCMPLT
- u_int spoof_eth_src = 1;
- int fd;
- #endif
- assert(device);
- assert(errbuf);
- dbg(1, "sendpacket: using Libpcap");
- /* open_pcap_live automatically fills out our errbuf for us */
- if ((pcap = pcap_open_live(device, 0, 0, 0, errbuf)) == NULL)
- return NULL;
- sp = (sendpacket_t *)safe_malloc(sizeof(sendpacket_t));
- strlcpy(sp->device, device, sizeof(sp->device));
- sp->handle.pcap = pcap;
- #ifdef BIOCSHDRCMPLT
- /*
- * Only systems using BPF on the backend need this...
- * other systems don't have ioctl and will get compile errors.
- */
- fd = pcap_get_selectable_fd(pcap);
- if (ioctl(fd, BIOCSHDRCMPLT, &spoof_eth_src) == -1)
- errx(-1, "Unable to enable source MAC spoof support: %s", strerror(errno));
- #endif
- sp->handle_type = SP_TYPE_LIBPCAP;
- return sp;
- }
- /**
- * Get the hardware MAC address for the given interface using libpcap
- */
- static struct tcpr_ether_addr *
- sendpacket_get_hwaddr_pcap(sendpacket_t *sp)
- {
- assert(sp);
- sendpacket_seterr(sp, "Error: sendpacket_get_hwaddr() not yet supported for pcap injection");
- return NULL;
- }
- #endif /* HAVE_PCAP_INJECT || HAVE_PCAP_SENDPACKET */
- #if defined HAVE_LIBDNET && !defined HAVE_PF_PACKET && !defined HAVE_BPF
- /**
- * Inner sendpacket_open() method for using libdnet
- */
- static sendpacket_t *
- sendpacket_open_libdnet(const char *device, char *errbuf)
- {
- eth_t *ldnet;
- sendpacket_t *sp;
- assert(device);
- assert(errbuf);
- dbg(1, "sendpacket: using Libdnet");
- if ((ldnet = eth_open(device)) == NULL)
- return NULL;
- sp = (sendpacket_t *)safe_malloc(sizeof(sendpacket_t));
- strlcpy(sp->device, device, sizeof(sp->device));
- sp->handle.ldnet = ldnet;
- sp->handle_type = SP_TYPE_LIBDNET;
- return sp;
- }
- /**
- * Get the hardware MAC address for the given interface using libdnet
- */
- static struct tcpr_ether_addr *
- sendpacket_get_hwaddr_libdnet(sendpacket_t *sp)
- {
- struct tcpr_ether_addr *addr = NULL;
- int ret;
- assert(sp);
- ret = eth_get(sp->handle.ldnet, (eth_addr_t *)addr);
- if (addr == NULL || ret < 0) {
- sendpacket_seterr(sp, "Error getting hwaddr via libdnet: %s", strerror(errno));
- return NULL;
- }
- memcpy(&sp->ether, addr, sizeof(struct tcpr_ether_addr));
- return(&sp->ether);
- }
- #endif /* HAVE_LIBDNET */
- #if defined HAVE_TUNTAP
- /**
- * Inner sendpacket_open() method for tuntap devices
- */
- static sendpacket_t *
- sendpacket_open_tuntap(const char *device, char *errbuf)
- {
- sendpacket_t *sp;
- struct ifreq ifr;
- int tapfd;
- assert(device);
- assert(errbuf);
- #if defined HAVE_LINUX
- if ((tapfd = open("/dev/net/tun", O_RDWR)) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Could not open /dev/net/tun control file: %s", strerror(errno));
- return NULL;
- }
- memset(&ifr, 0, sizeof(ifr));
- ifr.ifr_flags = (IFF_TAP | IFF_NO_PI);
- strncpy(ifr.ifr_name, device, sizeof(ifr.ifr_name)-1);
- if (ioctl(tapfd, TUNSETIFF, (void *) &ifr) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Unable to create tuntap interface: %s", device);
- close(tapfd);
- return NULL;
- }
- #elif defined(HAVE_FREEBSD)
- if (*device == '/') {
- if ((tapfd = open(device, O_RDWR)) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Could not open device %s: %s", device, strerror(errno));
- return NULL;
- }
- } else {
- /* full path needed */
- char *path;
- int prefix_length = strlen(TUNTAP_DEVICE_PREFIX);
- if ((path = malloc(strlen(device) + prefix_length + 1)) == NULL) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Malloc error: %s", strerror(errno));
- return NULL;
- }
- snprintf(path, strlen(device) + prefix_length + 1, "%s%s", TUNTAP_DEVICE_PREFIX, device);
- if ((tapfd = open(path, O_RDWR)) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Could not open device %s: %s", path, strerror(errno));
- free(path);
- return NULL;
- }
- free(path);
- }
- #endif
- /* prep & return our sp handle */
- sp = (sendpacket_t *)safe_malloc(sizeof(sendpacket_t));
- strlcpy(sp->device, device, sizeof(sp->device));
- sp->handle.fd = tapfd;
- sp->handle_type = SP_TYPE_TUNTAP;
- return sp;
- }
- #endif
- #if defined HAVE_PF_PACKET
- /**
- * Inner sendpacket_open() method for using Linux's PF_PACKET or TX_RING
- */
- static sendpacket_t *
- sendpacket_open_pf(const char *device, char *errbuf)
- {
- int mysocket;
- sendpacket_t *sp;
- struct ifreq ifr;
- struct sockaddr_ll sa;
- int err;
- socklen_t errlen = sizeof(err);
- unsigned int UNUSED(mtu) = 1500;
- #ifdef SO_BROADCAST
- int n = 1;
- #endif
- assert(device);
- assert(errbuf);
- #if defined TX_RING
- dbg(1, "sendpacket: using TX_RING");
- #else
- dbg(1, "sendpacket: using PF_PACKET");
- #endif
- memset(&sa, 0, sizeof(sa));
- /* open our socket */
- if ((mysocket = socket(PF_PACKET, SOCK_RAW, htons(ETH_P_ALL))) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "socket: %s", strerror(errno));
- return NULL;
- }
- /* get the interface id for the device */
- if ((sa.sll_ifindex = get_iface_index(mysocket, device, errbuf)) < 0) {
- close(mysocket);
- return NULL;
- }
- /* bind socket to our interface id */
- sa.sll_family = AF_PACKET;
- sa.sll_protocol = htons(ETH_P_ALL);
- if (bind(mysocket, (struct sockaddr *)&sa, sizeof(sa)) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "bind error: %s", strerror(errno));
- close(mysocket);
- return NULL;
- }
- /* check for errors, network down, etc... */
- if (getsockopt(mysocket, SOL_SOCKET, SO_ERROR, &err, &errlen) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "error opening %s: %s", device,
- strerror(errno));
- close(mysocket);
- return NULL;
- }
- if (err > 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "error opening %s: %s", device,
- strerror(err));
- close(mysocket);
- return NULL;
- }
- /* get hardware type for our interface */
- memset(&ifr, 0, sizeof(ifr));
- strlcpy(ifr.ifr_name, device, sizeof(ifr.ifr_name));
- if (ioctl(mysocket, SIOCGIFHWADDR, &ifr) < 0) {
- close(mysocket);
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Error getting hardware type: %s",
- strerror(errno));
- return NULL;
- }
- /* make sure it's not loopback (PF_PACKET doesn't support it) */
- if (ifr.ifr_hwaddr.sa_family != ARPHRD_ETHER)
- warnx("Unsupported physical layer type 0x%04x on %s. Maybe it works, maybe it won't."
- " See tickets #123/318", ifr.ifr_hwaddr.sa_family, device);
- #ifdef SO_BROADCAST
- /*
- * man 7 socket
- *
- * Set or get the broadcast flag. When enabled, datagram sockets
- * receive packets sent to a broadcast address and they are allowed
- * to send packets to a broadcast address. This option has no
- * effect on stream-oriented sockets.
- */
- if (setsockopt(mysocket, SOL_SOCKET, SO_BROADCAST, &n, sizeof(n)) == -1) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE,
- "SO_BROADCAST: %s", strerror(errno));
- close(mysocket);
- return NULL;
- }
- #endif /* SO_BROADCAST */
- /* prep & return our sp handle */
- sp = (sendpacket_t *)safe_malloc(sizeof(sendpacket_t));
- strlcpy(sp->device, device, sizeof(sp->device));
- sp->handle.fd = mysocket;
- #ifdef HAVE_TX_RING
- /* Look up for MTU */
- memset(&ifr, 0, sizeof(ifr));
- strlcpy(ifr.ifr_name, sp->device, sizeof(ifr.ifr_name));
- if (ioctl(mysocket, SIOCGIFMTU, &ifr) < 0) {
- close(mysocket);
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Error getting MTU: %s", strerror(errno));
- return NULL;
- }
- mtu = ifr.ifr_ifru.ifru_mtu;
- /* Init TX ring for sp->handle.fd socket */
- if ((sp->tx_ring = txring_init(sp->handle.fd, mtu)) == 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "txring_init: %s", strerror(errno));
- close(mysocket);
- return NULL;
- }
- sp->handle_type = SP_TYPE_TX_RING;
- #else
- sp->handle_type = SP_TYPE_PF_PACKET;
- #endif
- return sp;
- }
- /**
- * get the interface index (necessary for sending packets w/ PF_PACKET)
- */
- static int
- get_iface_index(int fd, const char *device, char *errbuf) {
- struct ifreq ifr;
- memset(&ifr, 0, sizeof(ifr));
- strlcpy(ifr.ifr_name, (const char *)device, sizeof(ifr.ifr_name));
- if (ioctl(fd, SIOCGIFINDEX, &ifr) == -1) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "ioctl: %s", strerror(errno));
- return (-1);
- }
- return ifr.ifr_ifindex;
- }
- /**
- * gets the hardware address via Linux's PF packet interface
- */
- static struct tcpr_ether_addr *
- sendpacket_get_hwaddr_pf(sendpacket_t *sp)
- {
- struct ifreq ifr;
- int fd;
- assert(sp);
- if (!sp->open) {
- sendpacket_seterr(sp, "Unable to get hardware address on un-opened sendpacket handle");
- return NULL;
- }
- /* create dummy socket for ioctl */
- if ((fd = socket(AF_INET, SOCK_DGRAM, 0)) < 0) {
- sendpacket_seterr(sp, "Unable to open dummy socket for get_hwaddr: %s", strerror(errno));
- return NULL;
- }
- memset(&ifr, 0, sizeof(ifr));
- strlcpy(ifr.ifr_name, sp->device, sizeof(ifr.ifr_name));
- if (ioctl(fd, SIOCGIFHWADDR, (int8_t *)&ifr) < 0) {
- close(fd);
- sendpacket_seterr(sp, "Error getting hardware address: %s", strerror(errno));
- return NULL;
- }
- memcpy(&sp->ether, &ifr.ifr_hwaddr.sa_data, ETHER_ADDR_LEN);
- close(fd);
- return(&sp->ether);
- }
- #endif /* HAVE_PF_PACKET */
- #if defined HAVE_BPF
- /**
- * Inner sendpacket_open() method for using BSD's BPF interface
- */
- static sendpacket_t *
- sendpacket_open_bpf(const char *device, char *errbuf)
- {
- sendpacket_t *sp;
- char bpf_dev[10];
- int dev, mysocket, link_offset, link_type;
- struct ifreq ifr;
- struct bpf_version bv;
- u_int v;
- #if defined(BIOCGHDRCMPLT) && defined(BIOCSHDRCMPLT)
- u_int spoof_eth_src = 1;
- #endif
- assert(device);
- assert(errbuf);
- memset(&ifr, '\0', sizeof(struct ifreq));
- dbg(1, "sendpacket: using BPF");
- /* open socket */
- mysocket = -1;
- for (dev = 0; dev <= 9; dev ++) {
- memset(bpf_dev, '\0', sizeof(bpf_dev));
- snprintf(bpf_dev, sizeof(bpf_dev), "/dev/bpf%d", dev);
- if ((mysocket = open(bpf_dev, O_RDWR, 0)) > 0) {
- break;
- }
- }
- /* error?? */
- if (mysocket < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE,
- "Unable to open /dev/bpfX: %s", strerror(errno));
- errbuf[SENDPACKET_ERRBUF_SIZE -1] = '\0';
- return NULL;
- }
- /* get BPF version */
- if (ioctl(mysocket, BIOCVERSION, (caddr_t)&bv) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Unable to get bpf version: %s", strerror(errno));
- return NULL;
- }
- if (bv.bv_major != BPF_MAJOR_VERSION || bv.bv_minor != BPF_MINOR_VERSION) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Kernel's bpf version is out of date.");
- return NULL;
- }
- /* attach to device */
- strlcpy(ifr.ifr_name, device, sizeof(ifr.ifr_name));
- if (ioctl(mysocket, BIOCSETIF, (caddr_t)&ifr) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Unable to bind %s to %s: %s",
- bpf_dev, device, strerror(errno));
- return NULL;
- }
- /* get datalink type */
- if (ioctl(mysocket, BIOCGDLT, (caddr_t)&v) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "Unable to get datalink type: %s",
- strerror(errno));
- return NULL;
- }
- /*
- * NetBSD and FreeBSD BPF have an ioctl for enabling/disabling
- * automatic filling of the link level source address.
- */
- #if defined(BIOCGHDRCMPLT) && defined(BIOCSHDRCMPLT)
- if (ioctl(mysocket, BIOCSHDRCMPLT, &spoof_eth_src) == -1) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE,
- "Unable to enable spoofing src MAC: %s", strerror(errno));
- return NULL;
- }
- #endif
- /* assign link type and offset */
- switch (v) {
- case DLT_SLIP:
- link_offset = 0x10;
- break;
- case DLT_RAW:
- link_offset = 0x0;
- break;
- case DLT_PPP:
- link_offset = 0x04;
- break;
- case DLT_EN10MB:
- default: /* default to Ethernet */
- link_offset = 0xe;
- break;
- }
- #if _BSDI_VERSION - 0 > 199510
- switch (v) {
- case DLT_SLIP:
- v = DLT_SLIP_BSDOS;
- link_offset = 0x10;
- break;
- case DLT_PPP:
- v = DLT_PPP_BSDOS;
- link_offset = 0x04;
- break;
- }
- #endif
- link_type = v;
- /* allocate our sp handle, and return it */
- sp = (sendpacket_t *)safe_malloc(sizeof(sendpacket_t));
- strlcpy(sp->device, device, sizeof(sp->device));
- sp->handle.fd = mysocket;
- //sp->link_type = link_type;
- //sp->link_offset = link_offset;
- sp->handle_type = SP_TYPE_BPF;
- return sp;
- }
- /**
- * Get the interface hardware MAC address when using BPF
- */
- static struct tcpr_ether_addr *
- sendpacket_get_hwaddr_bpf(sendpacket_t *sp)
- {
- int mib[6];
- size_t len;
- int8_t *buf, *next, *end;
- struct if_msghdr *ifm;
- struct sockaddr_dl *sdl;
- assert(sp);
- mib[0] = CTL_NET;
- mib[1] = AF_ROUTE;
- mib[2] = 0;
- mib[3] = AF_LINK;
- mib[4] = NET_RT_IFLIST;
- mib[5] = 0;
- if (sysctl(mib, 6, NULL, &len, NULL, 0) == -1) {
- sendpacket_seterr(sp, "%s(): sysctl(): %s", __func__, strerror(errno));
- return NULL;
- }
- buf = (int8_t *)safe_malloc(len);
- if (sysctl(mib, 6, buf, &len, NULL, 0) == -1) {
- sendpacket_seterr(sp, "%s(): sysctl(): %s", __func__, strerror(errno));
- safe_free(buf);
- return NULL;
- }
- end = buf + len;
- for (next = buf; next < end; next += ifm->ifm_msglen) {
- ifm = (struct if_msghdr *)next;
- if (ifm->ifm_type == RTM_IFINFO) {
- sdl = (struct sockaddr_dl *)(ifm + 1);
- if (strncmp(&sdl->sdl_data[0], sp->device, sdl->sdl_len) == 0) {
- memcpy(&sp->ether, LLADDR(sdl), ETHER_ADDR_LEN);
- break;
- }
- }
- }
- safe_free(buf);
- return(&sp->ether);
- }
- #endif /* HAVE_BPF */
- /**
- * Get the DLT type of the opened sendpacket
- * Return -1 if we can't figure it out, else return the DLT_ value
- */
- int
- sendpacket_get_dlt(sendpacket_t *sp)
- {
- int dlt = DLT_EN10MB;
- if (sp->handle_type == SP_TYPE_KHIAL ||
- sp->handle_type == SP_TYPE_NETMAP ||
- sp->handle_type == SP_TYPE_TUNTAP) {
- /* always EN10MB */
- ;
- } else {
- #if defined HAVE_BPF
- int rcode;
- if ((rcode = ioctl(sp->handle.fd, BIOCGDLT, &dlt)) < 0) {
- warnx("Unable to get DLT value for BPF device (%s): %s", sp->device, strerror(errno));
- return(-1);
- }
- #elif defined HAVE_PF_PACKET || defined HAVE_LIBDNET
- /* use libpcap to get dlt */
- pcap_t *pcap;
- char errbuf[PCAP_ERRBUF_SIZE];
- if ((pcap = pcap_open_live(sp->device, 65535, 0, 0, errbuf)) == NULL) {
- warnx("Unable to get DLT value for %s: %s", sp->device, errbuf);
- return(-1);
- }
- dlt = pcap_datalink(pcap);
- pcap_close(pcap);
- #elif defined HAVE_PCAP_SENDPACKET || defined HAVE_PCAP_INJECT
- dlt = pcap_datalink(sp->handle.pcap);
- #endif
- }
- return dlt;
- }
- /**
- * \brief Returns a string of the name of the injection method being used
- */
- const char *
- sendpacket_get_method(sendpacket_t *sp)
- {
- if (sp == NULL) {
- return INJECT_METHOD;
- } else if (sp->handle_type == SP_TYPE_KHIAL) {
- return "khial";
- } else if (sp->handle_type == SP_TYPE_NETMAP) {
- return "netmap";
- } else {
- return INJECT_METHOD;
- }
- }
- /**
- * Opens a character device for injecting packets directly into
- * your kernel via a custom driver
- */
- static sendpacket_t *
- sendpacket_open_khial(const char *device, char *errbuf)
- {
- int mysocket;
- sendpacket_t *sp;
- assert(device);
- assert(errbuf);
- if ((mysocket = open(device, O_WRONLY|O_EXCL)) < 0) {
- snprintf(errbuf, SENDPACKET_ERRBUF_SIZE, "error opening khial device: %s", strerror(errno));
- return NULL;
- }
- sp = (sendpacket_t *)safe_malloc(sizeof(sendpacket_t));
- strlcpy(sp->device, device, sizeof(sp->device));
- sp->handle.fd = mysocket;
- sp->handle_type = SP_TYPE_KHIAL;
- return sp;
- }
- /**
- * Get the hardware MAC address for the given interface using khial
- */
- static struct tcpr_ether_addr *
- sendpacket_get_hwaddr_khial(sendpacket_t *sp)
- {
- assert(sp);
- sendpacket_seterr(sp, "Error: sendpacket_get_hwaddr() not yet supported for character devices");
- return NULL;
- }
- /**
- * \brief Cause the currently running sendpacket() call to stop
- */
- void
- sendpacket_abort(sendpacket_t *sp)
- {
- assert(sp);
- sp->abort = true;
- }
|