123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408 |
- /* $Id$ */
- /*
- * Copyright (c) 2001-2010 Aaron Turner <aturner at synfin dot net>
- * Copyright (c) 2013-2018 Fred Klassen <tcpreplay at appneta dot com> - AppNeta
- *
- * The Tcpreplay Suite of tools is free software: you can redistribute it
- * and/or modify it under the terms of the GNU General Public License as
- * published by the Free Software Foundation, either version 3 of the
- * License, or with the authors permission any later version.
- *
- * The Tcpreplay Suite is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with the Tcpreplay Suite. If not, see <http://www.gnu.org/licenses/>.
- */
- /*
- * This file contains routines to manipulate port maps, in which
- * one port number is mapped to another.
- */
- #include "config.h"
- #include "defines.h"
- #include "common.h"
- #include <stdlib.h>
- #include <string.h>
- #include <errno.h>
- #include "tcpreplay.h"
- #include "tcpedit.h"
- #include "portmap.h"
- #include "incremental_checksum.h"
- /**
- * mallocs a new tcpedit_portmap_t structure
- */
- tcpedit_portmap_t *
- new_portmap()
- {
- tcpedit_portmap_t *newportmap;
- newportmap = (tcpedit_portmap_t *)safe_malloc(sizeof(tcpedit_portmap_t));
- return (newportmap);
- }
- /**
- * \brief parses a string <port>:<port> and returns a new tcpedit_portmap_t struct
- *
- * We support the following formats:
- * <port>:<port> - map a single port to a new port
- * <port>-<port>:<port> - map a range of ports to a new port
- * <port>+<port>+...:<port> - map a list of ports to a single ports
- *
- * In the case of port ranges or port lists, we actually return a
- * chain of tcpedit_portmap_t's
- */
- static tcpedit_portmap_t *
- ports2PORT(char *ports)
- {
- tcpedit_portmap_t *portmap = NULL, *portmap_head = NULL, *portmap_last = NULL;
- char *from_s, *to_s, *from_begin, *from_end, *badchar;
- long from_l, to_l;
- char *token = NULL, *token2 = NULL;
- assert(ports);
- from_begin = NULL;
- from_end = NULL;
- /* first split the port numbers */
- from_s = strtok_r(ports, ":", &token);
- to_s = strtok_r(NULL, ":", &token);
- /* if there's anything left, it's a syntax error */
- if (strtok_r(NULL, ":", &token) != NULL)
- return NULL;
- /* if either of the parsed strings is NULL, we have a problem */
- if (from_s == NULL || to_s == NULL)
- return NULL;
- /* source map can have - (range) or , (and), but not both */
- if (strchr(from_s, '-') && strchr(from_s, '+'))
- return NULL;
- /* process to the to port */
- to_l = strtol(to_s, &badchar, 10);
- if (strlen(badchar) != 0)
- return NULL;
- if (to_l > 65535 || to_l < 0)
- return NULL;
- /*
- * put the new portmap info into the new node
- * while we convert to network-byte order, b/c its better
- * to do it once now, rather then each time we have to do a lookup
- */
- portmap_head = new_portmap();
- portmap = portmap_last = portmap_head;
- /* process a range, setting from_begin & from_end */
- if (strchr(from_s, '-')) {
- long i;
- from_begin = strtok_r(from_s, "-", &token2);
- from_end = strtok_r(NULL, "-", &token2);
- long from_b = strtol(from_begin, &badchar, 10);
- if (strlen(badchar) != 0) {
- free(portmap);
- return NULL;
- }
- long from_e = strtol(from_end, &badchar, 10);
- if (from_b > 65535 || from_b < 0 || from_e > 65535 || from_e < 0) {
- free(portmap);
- return NULL;
- }
- for (i = from_b; i <= from_e; i++) {
- portmap->from = htons(i);
- portmap->to = htons(to_l);
- portmap->next = new_portmap();
- portmap_last = portmap;
- portmap = portmap->next;
- }
- portmap_last->next = NULL;
- }
- /* process a list via +, filling in list[] */
- else if (strchr(from_s, '+')) {
- from_begin = strtok_r(from_s, "+", &token2);
- from_l = strtol(from_begin, &badchar, 10);
- if (strlen(badchar) != 0) {
- free(portmap);
- return NULL;
- }
- portmap->to = htons(to_l);
- portmap->from = htons(from_l);
- while ((from_begin = strtok_r(NULL, "+", &token2)) != NULL) {
- from_l = strtol(from_begin, &badchar, 10);
- if (strlen(badchar) != 0 || from_l > 65535 || from_l < 0) {
- portmap = portmap_head;
- while (portmap) {
- tcpedit_portmap_t *tmp_portmap = portmap->next;
- free(portmap);
- portmap = tmp_portmap;
- }
- return NULL;
- }
- portmap->next = new_portmap();
- portmap = portmap->next;
- portmap->to = htons(to_l);
- portmap->from = htons(from_l);
- }
- }
- /* this is just the old port:port format */
- else {
- /*
- * convert the strings to longs: if badchar points to anything
- * after, then it was a bad string
- */
- from_l = strtol(from_s, &badchar, 10);
- if (strlen(badchar) != 0 || from_l > 65535 || from_l < 0) {
- free(portmap);
- return NULL;
- }
- portmap->to = htons(to_l);
- portmap->from = htons(from_l);
- }
- /* return structure for success */
- return portmap_head;
- }
- /**
- * Processes a string (ourstr) containing the portmap ("2000:4000" for
- * example) and places the data in **portmapdata and finally returns 1 for
- * success, 0 for fail.
- */
- int
- parse_portmap(tcpedit_portmap_t ** portmap, const char *ourstr)
- {
- tcpedit_portmap_t *portmap_ptr;
- char *substr, *ourstrcpy, *token = NULL;
- assert(ourstr);
- ourstrcpy = safe_strdup(ourstr);
- /* first iteration of input */
- substr = strtok_r(ourstrcpy, ",", &token);
- if ((*portmap = ports2PORT(substr)) == NULL) {
- safe_free(ourstrcpy);
- return 0;
- }
- portmap_ptr = *portmap;
- /* ports2PORT may return a chain, so find the end of it */
- while (portmap_ptr->next != NULL)
- portmap_ptr = portmap_ptr->next;
- while (1) {
- substr = strtok_r(NULL, ",", &token);
- /* if that was the last one, kick out */
- if (substr == NULL)
- break;
- /* process next record */
- portmap_ptr->next = ports2PORT(substr);
- /* ports2PORT may return a chain, so find the end of it */
- while (portmap_ptr->next != NULL)
- portmap_ptr = portmap_ptr->next;
- }
- safe_free(ourstrcpy);
- return 1;
- }
- /**
- * Free's all the memory associated with the given portmap chain
- */
- void
- free_portmap(tcpedit_portmap_t * portmap)
- {
- assert(portmap);
- /* recursively go down the portmaps */
- if (portmap->next != NULL)
- free_portmap(portmap->next);
- safe_free(portmap);
- }
- /**
- * This function takes a pointer to a portmap list and prints each node
- */
- void
- print_portmap(tcpedit_portmap_t *portmap_data)
- {
- tcpedit_portmap_t *portmap_ptr;
- assert(portmap_data);
- portmap_ptr = portmap_data;
- while (portmap_ptr != NULL) {
- printf("from: %ld to: %ld\n", portmap_ptr->from, portmap_ptr->to);
- portmap_ptr = portmap_ptr->next;
- }
- printf("\n");
- }
- /**
- * This function takes a portmap and a port, and returns the mapped port,
- * or the original port if it isn't mapped to anything.
- */
- long
- map_port(tcpedit_portmap_t *portmap_data, long port)
- {
- tcpedit_portmap_t *portmap_ptr;
- long newport;
- assert(portmap_data);
- portmap_ptr = portmap_data;
- newport = port;
- /* step through the nodes, resetting newport if a match is found */
- while (portmap_ptr != NULL) {
- if (portmap_ptr->from == port)
- newport = portmap_ptr->to;
- portmap_ptr = portmap_ptr->next;
- }
- return(newport);
- }
- /**
- * rewrites the TCP or UDP ports based on a portmap
- * returns 1 for changes made or 0 for none
- */
- static int
- rewrite_ports(tcpedit_t *tcpedit, u_char protocol, u_char *layer4,
- const int l4len)
- {
- tcp_hdr_t *tcp_hdr = NULL;
- udp_hdr_t *udp_hdr = NULL;
- volatile uint16_t newport;
- tcpedit_portmap_t *portmap;
- assert(tcpedit);
- assert(tcpedit->portmap);
- portmap = tcpedit->portmap;
- if (protocol == IPPROTO_TCP) {
- if (l4len < (int)sizeof(tcp_hdr_t)) {
- tcpedit_setwarn(tcpedit, "caplen to small to set TCP port: l4 len=%d",
- l4len);
- return TCPEDIT_WARN;
- }
- tcp_hdr = (tcp_hdr_t *)layer4;
- /* check if we need to remap the destination port */
- newport = map_port(portmap, tcp_hdr->th_dport);
- if (newport != tcp_hdr->th_dport) {
- csum_replace2(&tcp_hdr->th_sum, tcp_hdr->th_dport, newport);
- tcp_hdr->th_dport = newport;
- }
- /* check if we need to remap the source port */
- newport = map_port(portmap, tcp_hdr->th_sport);
- if (newport != tcp_hdr->th_sport) {
- csum_replace2(&tcp_hdr->th_sum, tcp_hdr->th_sport, newport);
- tcp_hdr->th_sport = newport;
- }
- } else if (protocol == IPPROTO_UDP) {
- if (l4len < (int)sizeof(udp_hdr_t)) {
- tcpedit_setwarn(tcpedit, "caplen to small to set UDP port: l4 len=%d",
- l4len);
- return TCPEDIT_WARN;
- }
- udp_hdr = (udp_hdr_t *)layer4;
- /* check if we need to remap the destination port */
- newport = map_port(portmap, udp_hdr->uh_dport);
- if (newport != udp_hdr->uh_dport) {
- if (udp_hdr->uh_sum) {
- csum_replace2(&udp_hdr->uh_sum, udp_hdr->uh_dport, newport);
- }
- udp_hdr->uh_dport = newport;
- }
- /* check if we need to remap the source port */
- newport = map_port(portmap, udp_hdr->uh_sport);
- if (newport != udp_hdr->uh_sport) {
- if (udp_hdr->uh_sum) {
- csum_replace2(&udp_hdr->uh_sum, udp_hdr->uh_sport, newport);
- }
- udp_hdr->uh_sport = newport;
- }
- }
- return 0;
- }
- int
- rewrite_ipv4_ports(tcpedit_t *tcpedit, ipv4_hdr_t **ip_hdr, const int l3len)
- {
- assert(tcpedit);
- u_char *l4;
- if (*ip_hdr == NULL || ip_hdr == NULL) {
- tcpedit_seterr(tcpedit, "rewrite_ipv4_ports: NULL IP header: l3 len=%d",
- l3len);
- return TCPEDIT_ERROR;
- } else if ((*ip_hdr)->ip_p == IPPROTO_TCP || (*ip_hdr)->ip_p == IPPROTO_UDP) {
- l4 = get_layer4_v4(*ip_hdr, l3len);
- if (l4)
- return rewrite_ports(tcpedit, (*ip_hdr)->ip_p, l4,
- l3len - (l4 - (u_char*)*ip_hdr));
- tcpedit_setwarn(tcpedit, "Unable to rewrite ports on IP header: l3 len=%d",
- l3len);
- return TCPEDIT_WARN;
- }
- return 0;
- }
- int
- rewrite_ipv6_ports(tcpedit_t *tcpedit, ipv6_hdr_t **ip6_hdr, const int l3len)
- {
- assert(tcpedit);
- u_char *l4;
- if (*ip6_hdr == NULL || ip6_hdr == NULL) {
- tcpedit_seterr(tcpedit, "rewrite_ipv6_ports: NULL IPv6 header: l3 len=%d",
- l3len);
- return TCPEDIT_ERROR;
- } else if ((*ip6_hdr)->ip_nh == IPPROTO_TCP || (*ip6_hdr)->ip_nh == IPPROTO_UDP) {
- l4 = get_layer4_v6(*ip6_hdr, l3len);
- if (l4)
- return rewrite_ports(tcpedit, (*ip6_hdr)->ip_nh, l4,
- l3len - (l4 - (u_char*)*ip6_hdr));
- tcpedit_setwarn(tcpedit, "Unable to rewrite ports on IPv6 header: l3 len=%d",
- l3len);
- return TCPEDIT_WARN;
- }
- return 0;
- }
|