Loading nfq/conntrack.c +2 −2 Original line number Diff line number Diff line Loading @@ -338,8 +338,8 @@ void ConntrackPoolDump(const t_conntrack *p) printf("rseq=%u pos_orig=%u rack=%u pos_reply=%u", t->track.seq_last, t->track.pos_orig, t->track.ack_last, t->track.pos_reply); printf(" req_retrans=%u cutoff=%u wss_cutoff=%u d_cutoff=%u hostname=%s l7proto=%s\n", t->track.req_retrans_counter, t->track.b_cutoff, t->track.b_wssize_cutoff, t->track.b_desync_cutoff, t->track.hostname, l7proto_str(t->track.l7proto)); printf(" req_retrans=%u cutoff=%u wss_cutoff=%u desync_cutoff=%u dup_cutoff=%u orig_cutoff=%u hostname=%s l7proto=%s\n", t->track.req_retrans_counter, t->track.b_cutoff, t->track.b_wssize_cutoff, t->track.b_desync_cutoff, t->track.b_dup_cutoff, t->track.b_orig_mod_cutoff, t->track.hostname, l7proto_str(t->track.l7proto)); }; } Loading nfq/conntrack.h +1 −1 Original line number Diff line number Diff line Loading @@ -80,7 +80,7 @@ typedef struct uint8_t incoming_ttl, autottl; bool b_cutoff; // mark for deletion bool b_wssize_cutoff, b_desync_cutoff; bool b_wssize_cutoff, b_desync_cutoff, b_dup_cutoff, b_orig_mod_cutoff; t_l7proto l7proto; bool l7proto_discovered; Loading nfq/darkmagic.c +74 −23 Original line number Diff line number Diff line Loading @@ -83,10 +83,22 @@ bool tcp_has_fastopen(const struct tcphdr *tcp) opt = tcp_find_option((struct tcphdr*)tcp, 254); return opt && opt[1]>=4 && opt[2]==0xF9 && opt[3]==0x89; } uint16_t tcp_find_mss(struct tcphdr *tcp) { uint8_t *t = tcp_find_option(tcp,2); return (t && t[1]==4) ? *(uint16_t*)(t+2) : 0; } bool tcp_has_sack(struct tcphdr *tcp) { uint8_t *t = tcp_find_option(tcp,4); return !!t; } // n prefix (nsport, nwsize) means network byte order static void fill_tcphdr( struct tcphdr *tcp, uint32_t fooling, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nsport, uint16_t ndport, uint16_t nwsize, uint8_t scale_factor, Loading Loading @@ -116,15 +128,27 @@ static void fill_tcphdr( tcp_flags &= ~TH_ACK; *((uint8_t*)tcp+13)= tcp_flags; tcp->th_win = nwsize; if (nmss) { tcpopt[t++] = 2; // kind tcpopt[t++] = 4; // len *(uint16_t*)(tcpopt+t) = nmss; t+=2; } if (sack) { tcpopt[t++] = 4; // kind tcpopt[t++] = 2; // len } if (fooling & FOOL_MD5SIG) { tcpopt[0] = 19; // kind tcpopt[1] = 18; // len *(uint32_t*)(tcpopt+2)=random(); *(uint32_t*)(tcpopt+6)=random(); *(uint32_t*)(tcpopt+10)=random(); *(uint32_t*)(tcpopt+14)=random(); t=18; tcpopt[t] = 19; // kind tcpopt[t+1] = 18; // len *(uint32_t*)(tcpopt+t+2)=random(); *(uint32_t*)(tcpopt+t+6)=random(); *(uint32_t*)(tcpopt+t+10)=random(); *(uint32_t*)(tcpopt+t+14)=random(); t+=18; } if (timestamps || (fooling & FOOL_TS)) { Loading @@ -145,10 +169,12 @@ static void fill_tcphdr( tcp->th_off += t>>2; tcp->th_sum = 0; } static uint16_t tcpopt_len(uint32_t fooling, const uint32_t *timestamps, uint8_t scale_factor) static uint16_t tcpopt_len(bool sack, bool mss, uint32_t fooling, const uint32_t *timestamps, uint8_t scale_factor) { uint16_t t=0; if (fooling & FOOL_MD5SIG) t=18; if (sack) t+=2; if (mss) t+=4; if (fooling & FOOL_MD5SIG) t+=18; if ((fooling & FOOL_TS) || timestamps) t+=10; if (scale_factor!=SCALE_NONE) t+=3; return (t+3)&~3; Loading Loading @@ -190,6 +216,8 @@ static void fill_ip6hdr(struct ip6_hdr *ip6, const struct in6_addr *src, const s bool prepare_tcp_segment4( const struct sockaddr_in *src, const struct sockaddr_in *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -203,7 +231,7 @@ bool prepare_tcp_segment4( const void *data, uint16_t len, uint8_t *buf, size_t *buflen) { uint16_t tcpoptlen = tcpopt_len(fooling,timestamps,scale_factor); uint16_t tcpoptlen = tcpopt_len(sack,!!nmss,fooling,timestamps,scale_factor); uint16_t ip_payload_len = sizeof(struct tcphdr) + tcpoptlen + len; uint16_t pktlen = sizeof(struct ip) + ip_payload_len; if (pktlen>*buflen) return false; Loading @@ -213,11 +241,11 @@ bool prepare_tcp_segment4( uint8_t *payload = (uint8_t*)(tcp+1)+tcpoptlen; fill_iphdr(ip, &src->sin_addr, &dst->sin_addr, pktlen, IPPROTO_TCP, ttl, tos, ip_id); fill_tcphdr(tcp,fooling,tcp_flags,nseq,nack_seq,src->sin_port,dst->sin_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); fill_tcphdr(tcp,fooling,tcp_flags,sack,nmss,nseq,nack_seq,src->sin_port,dst->sin_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); memcpy(payload,data,len); tcp4_fix_checksum(tcp,ip_payload_len,&ip->ip_src,&ip->ip_dst); if (fooling & FOOL_BADSUM) tcp->th_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) tcp->th_sum^=(uint16_t)(1+random()%0xFFFF); *buflen = pktlen; return true; Loading @@ -226,6 +254,8 @@ bool prepare_tcp_segment4( bool prepare_tcp_segment6( const struct sockaddr_in6 *src, const struct sockaddr_in6 *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -238,7 +268,7 @@ bool prepare_tcp_segment6( const void *data, uint16_t len, uint8_t *buf, size_t *buflen) { uint16_t tcpoptlen = tcpopt_len(fooling,timestamps,scale_factor); uint16_t tcpoptlen = tcpopt_len(sack,!!nmss,fooling,timestamps,scale_factor); uint16_t transport_payload_len = sizeof(struct tcphdr) + tcpoptlen + len; uint16_t ip_payload_len = transport_payload_len + 8*!!((fooling & (FOOL_HOPBYHOP|FOOL_HOPBYHOP2))==FOOL_HOPBYHOP) + Loading Loading @@ -297,11 +327,11 @@ bool prepare_tcp_segment6( uint8_t *payload = (uint8_t*)(tcp+1)+tcpoptlen; fill_ip6hdr(ip6, &src->sin6_addr, &dst->sin6_addr, ip_payload_len, proto, ttl, flow_label); fill_tcphdr(tcp,fooling,tcp_flags,nseq,nack_seq,src->sin6_port,dst->sin6_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); fill_tcphdr(tcp,fooling,tcp_flags,sack,nmss,nseq,nack_seq,src->sin6_port,dst->sin6_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); memcpy(payload,data,len); tcp6_fix_checksum(tcp,transport_payload_len,&ip6->ip6_src,&ip6->ip6_dst); if (fooling & FOOL_BADSUM) tcp->th_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) tcp->th_sum^=(1+random()%0xFFFF); *buflen = pktlen; return true; Loading @@ -310,6 +340,8 @@ bool prepare_tcp_segment6( bool prepare_tcp_segment( const struct sockaddr *src, const struct sockaddr *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -325,9 +357,9 @@ bool prepare_tcp_segment( uint8_t *buf, size_t *buflen) { return (src->sa_family==AF_INET && dst->sa_family==AF_INET) ? prepare_tcp_segment4((struct sockaddr_in *)src,(struct sockaddr_in *)dst,tcp_flags,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,tos,ip_id,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : prepare_tcp_segment4((struct sockaddr_in *)src,(struct sockaddr_in *)dst,tcp_flags,sack,nmss,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,tos,ip_id,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : (src->sa_family==AF_INET6 && dst->sa_family==AF_INET6) ? prepare_tcp_segment6((struct sockaddr_in6 *)src,(struct sockaddr_in6 *)dst,tcp_flags,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,flow_label,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : prepare_tcp_segment6((struct sockaddr_in6 *)src,(struct sockaddr_in6 *)dst,tcp_flags,sack,nmss,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,flow_label,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : false; } Loading Loading @@ -370,7 +402,7 @@ bool prepare_udp_segment4( else memset(payload+len,0,padlen); udp4_fix_checksum(udp,ip_payload_len,&ip->ip_src,&ip->ip_dst); if (fooling & FOOL_BADSUM) udp->uh_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) udp->uh_sum^=(1+random()%0xFFFF); *buflen = pktlen; return true; Loading Loading @@ -459,7 +491,7 @@ bool prepare_udp_segment6( else memset(payload+len,0,padlen); udp6_fix_checksum(udp,transport_payload_len,&ip6->ip6_src,&ip6->ip6_dst); if (fooling & FOOL_BADSUM) udp->uh_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) udp->uh_sum^=(1+random()%0xFFFF); *buflen = pktlen; return true; Loading Loading @@ -601,10 +633,29 @@ bool ip_frag( return false; } void rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl) bool rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl) { if (ttl) { if (ip) { if (ip->ip_ttl!=ttl) { if (ip) ip->ip_ttl = ttl; if (ip6) ip6->ip6_ctlun.ip6_un1.ip6_un1_hlim = ttl; ip->ip_ttl = ttl; ip4_fix_checksum(ip); return true; } } else if (ip6) { if (ip6->ip6_ctlun.ip6_un1.ip6_un1_hlim!=ttl) { ip6->ip6_ctlun.ip6_un1.ip6_un1_hlim = ttl; return true; } } } return false; } Loading nfq/darkmagic.h +11 −1 Original line number Diff line number Diff line Loading @@ -59,6 +59,7 @@ uint32_t net16_add(uint16_t netorder_value, uint16_t cpuorder_increment); #define VERDICT_DROP 2 #define VERDICT_MASK 3 #define VERDICT_NOCSUM 4 #define VERDICT_GARBAGE 8 #define IP4_TOS(ip_header) (ip_header ? ip_header->ip_tos : 0) #define IP4_IP_ID(ip_header) (ip_header ? ip_header->ip_id : 0) Loading @@ -68,6 +69,8 @@ uint32_t net16_add(uint16_t netorder_value, uint16_t cpuorder_increment); bool prepare_tcp_segment4( const struct sockaddr_in *src, const struct sockaddr_in *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -83,6 +86,8 @@ bool prepare_tcp_segment4( bool prepare_tcp_segment6( const struct sockaddr_in6 *src, const struct sockaddr_in6 *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -97,6 +102,8 @@ bool prepare_tcp_segment6( bool prepare_tcp_segment( const struct sockaddr *src, const struct sockaddr *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading Loading @@ -162,13 +169,16 @@ bool ip_frag( uint8_t *pkt1, size_t *pkt1_size, uint8_t *pkt2, size_t *pkt2_size); void rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl); bool rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl); void extract_ports(const struct tcphdr *tcphdr, const struct udphdr *udphdr, uint8_t *proto, uint16_t *sport, uint16_t *dport); void extract_endpoints(const struct ip *ip,const struct ip6_hdr *ip6hdr,const struct tcphdr *tcphdr,const struct udphdr *udphdr, struct sockaddr_storage *src, struct sockaddr_storage *dst); uint8_t *tcp_find_option(struct tcphdr *tcp, uint8_t kind); uint32_t *tcp_find_timestamps(struct tcphdr *tcp); uint8_t tcp_find_scale_factor(const struct tcphdr *tcp); uint16_t tcp_find_mss(struct tcphdr *tcp); bool tcp_has_sack(struct tcphdr *tcp); bool tcp_has_fastopen(const struct tcphdr *tcp); #ifdef __CYGWIN__ Loading nfq/desync.c +420 −134 File changed.Preview size limit exceeded, changes collapsed. Show changes Loading
nfq/conntrack.c +2 −2 Original line number Diff line number Diff line Loading @@ -338,8 +338,8 @@ void ConntrackPoolDump(const t_conntrack *p) printf("rseq=%u pos_orig=%u rack=%u pos_reply=%u", t->track.seq_last, t->track.pos_orig, t->track.ack_last, t->track.pos_reply); printf(" req_retrans=%u cutoff=%u wss_cutoff=%u d_cutoff=%u hostname=%s l7proto=%s\n", t->track.req_retrans_counter, t->track.b_cutoff, t->track.b_wssize_cutoff, t->track.b_desync_cutoff, t->track.hostname, l7proto_str(t->track.l7proto)); printf(" req_retrans=%u cutoff=%u wss_cutoff=%u desync_cutoff=%u dup_cutoff=%u orig_cutoff=%u hostname=%s l7proto=%s\n", t->track.req_retrans_counter, t->track.b_cutoff, t->track.b_wssize_cutoff, t->track.b_desync_cutoff, t->track.b_dup_cutoff, t->track.b_orig_mod_cutoff, t->track.hostname, l7proto_str(t->track.l7proto)); }; } Loading
nfq/conntrack.h +1 −1 Original line number Diff line number Diff line Loading @@ -80,7 +80,7 @@ typedef struct uint8_t incoming_ttl, autottl; bool b_cutoff; // mark for deletion bool b_wssize_cutoff, b_desync_cutoff; bool b_wssize_cutoff, b_desync_cutoff, b_dup_cutoff, b_orig_mod_cutoff; t_l7proto l7proto; bool l7proto_discovered; Loading
nfq/darkmagic.c +74 −23 Original line number Diff line number Diff line Loading @@ -83,10 +83,22 @@ bool tcp_has_fastopen(const struct tcphdr *tcp) opt = tcp_find_option((struct tcphdr*)tcp, 254); return opt && opt[1]>=4 && opt[2]==0xF9 && opt[3]==0x89; } uint16_t tcp_find_mss(struct tcphdr *tcp) { uint8_t *t = tcp_find_option(tcp,2); return (t && t[1]==4) ? *(uint16_t*)(t+2) : 0; } bool tcp_has_sack(struct tcphdr *tcp) { uint8_t *t = tcp_find_option(tcp,4); return !!t; } // n prefix (nsport, nwsize) means network byte order static void fill_tcphdr( struct tcphdr *tcp, uint32_t fooling, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nsport, uint16_t ndport, uint16_t nwsize, uint8_t scale_factor, Loading Loading @@ -116,15 +128,27 @@ static void fill_tcphdr( tcp_flags &= ~TH_ACK; *((uint8_t*)tcp+13)= tcp_flags; tcp->th_win = nwsize; if (nmss) { tcpopt[t++] = 2; // kind tcpopt[t++] = 4; // len *(uint16_t*)(tcpopt+t) = nmss; t+=2; } if (sack) { tcpopt[t++] = 4; // kind tcpopt[t++] = 2; // len } if (fooling & FOOL_MD5SIG) { tcpopt[0] = 19; // kind tcpopt[1] = 18; // len *(uint32_t*)(tcpopt+2)=random(); *(uint32_t*)(tcpopt+6)=random(); *(uint32_t*)(tcpopt+10)=random(); *(uint32_t*)(tcpopt+14)=random(); t=18; tcpopt[t] = 19; // kind tcpopt[t+1] = 18; // len *(uint32_t*)(tcpopt+t+2)=random(); *(uint32_t*)(tcpopt+t+6)=random(); *(uint32_t*)(tcpopt+t+10)=random(); *(uint32_t*)(tcpopt+t+14)=random(); t+=18; } if (timestamps || (fooling & FOOL_TS)) { Loading @@ -145,10 +169,12 @@ static void fill_tcphdr( tcp->th_off += t>>2; tcp->th_sum = 0; } static uint16_t tcpopt_len(uint32_t fooling, const uint32_t *timestamps, uint8_t scale_factor) static uint16_t tcpopt_len(bool sack, bool mss, uint32_t fooling, const uint32_t *timestamps, uint8_t scale_factor) { uint16_t t=0; if (fooling & FOOL_MD5SIG) t=18; if (sack) t+=2; if (mss) t+=4; if (fooling & FOOL_MD5SIG) t+=18; if ((fooling & FOOL_TS) || timestamps) t+=10; if (scale_factor!=SCALE_NONE) t+=3; return (t+3)&~3; Loading Loading @@ -190,6 +216,8 @@ static void fill_ip6hdr(struct ip6_hdr *ip6, const struct in6_addr *src, const s bool prepare_tcp_segment4( const struct sockaddr_in *src, const struct sockaddr_in *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -203,7 +231,7 @@ bool prepare_tcp_segment4( const void *data, uint16_t len, uint8_t *buf, size_t *buflen) { uint16_t tcpoptlen = tcpopt_len(fooling,timestamps,scale_factor); uint16_t tcpoptlen = tcpopt_len(sack,!!nmss,fooling,timestamps,scale_factor); uint16_t ip_payload_len = sizeof(struct tcphdr) + tcpoptlen + len; uint16_t pktlen = sizeof(struct ip) + ip_payload_len; if (pktlen>*buflen) return false; Loading @@ -213,11 +241,11 @@ bool prepare_tcp_segment4( uint8_t *payload = (uint8_t*)(tcp+1)+tcpoptlen; fill_iphdr(ip, &src->sin_addr, &dst->sin_addr, pktlen, IPPROTO_TCP, ttl, tos, ip_id); fill_tcphdr(tcp,fooling,tcp_flags,nseq,nack_seq,src->sin_port,dst->sin_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); fill_tcphdr(tcp,fooling,tcp_flags,sack,nmss,nseq,nack_seq,src->sin_port,dst->sin_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); memcpy(payload,data,len); tcp4_fix_checksum(tcp,ip_payload_len,&ip->ip_src,&ip->ip_dst); if (fooling & FOOL_BADSUM) tcp->th_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) tcp->th_sum^=(uint16_t)(1+random()%0xFFFF); *buflen = pktlen; return true; Loading @@ -226,6 +254,8 @@ bool prepare_tcp_segment4( bool prepare_tcp_segment6( const struct sockaddr_in6 *src, const struct sockaddr_in6 *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -238,7 +268,7 @@ bool prepare_tcp_segment6( const void *data, uint16_t len, uint8_t *buf, size_t *buflen) { uint16_t tcpoptlen = tcpopt_len(fooling,timestamps,scale_factor); uint16_t tcpoptlen = tcpopt_len(sack,!!nmss,fooling,timestamps,scale_factor); uint16_t transport_payload_len = sizeof(struct tcphdr) + tcpoptlen + len; uint16_t ip_payload_len = transport_payload_len + 8*!!((fooling & (FOOL_HOPBYHOP|FOOL_HOPBYHOP2))==FOOL_HOPBYHOP) + Loading Loading @@ -297,11 +327,11 @@ bool prepare_tcp_segment6( uint8_t *payload = (uint8_t*)(tcp+1)+tcpoptlen; fill_ip6hdr(ip6, &src->sin6_addr, &dst->sin6_addr, ip_payload_len, proto, ttl, flow_label); fill_tcphdr(tcp,fooling,tcp_flags,nseq,nack_seq,src->sin6_port,dst->sin6_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); fill_tcphdr(tcp,fooling,tcp_flags,sack,nmss,nseq,nack_seq,src->sin6_port,dst->sin6_port,nwsize,scale_factor,timestamps,badseq_increment,badseq_ack_increment,len); memcpy(payload,data,len); tcp6_fix_checksum(tcp,transport_payload_len,&ip6->ip6_src,&ip6->ip6_dst); if (fooling & FOOL_BADSUM) tcp->th_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) tcp->th_sum^=(1+random()%0xFFFF); *buflen = pktlen; return true; Loading @@ -310,6 +340,8 @@ bool prepare_tcp_segment6( bool prepare_tcp_segment( const struct sockaddr *src, const struct sockaddr *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -325,9 +357,9 @@ bool prepare_tcp_segment( uint8_t *buf, size_t *buflen) { return (src->sa_family==AF_INET && dst->sa_family==AF_INET) ? prepare_tcp_segment4((struct sockaddr_in *)src,(struct sockaddr_in *)dst,tcp_flags,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,tos,ip_id,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : prepare_tcp_segment4((struct sockaddr_in *)src,(struct sockaddr_in *)dst,tcp_flags,sack,nmss,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,tos,ip_id,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : (src->sa_family==AF_INET6 && dst->sa_family==AF_INET6) ? prepare_tcp_segment6((struct sockaddr_in6 *)src,(struct sockaddr_in6 *)dst,tcp_flags,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,flow_label,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : prepare_tcp_segment6((struct sockaddr_in6 *)src,(struct sockaddr_in6 *)dst,tcp_flags,sack,nmss,nseq,nack_seq,nwsize,scale_factor,timestamps,ttl,flow_label,fooling,badseq_increment,badseq_ack_increment,data,len,buf,buflen) : false; } Loading Loading @@ -370,7 +402,7 @@ bool prepare_udp_segment4( else memset(payload+len,0,padlen); udp4_fix_checksum(udp,ip_payload_len,&ip->ip_src,&ip->ip_dst); if (fooling & FOOL_BADSUM) udp->uh_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) udp->uh_sum^=(1+random()%0xFFFF); *buflen = pktlen; return true; Loading Loading @@ -459,7 +491,7 @@ bool prepare_udp_segment6( else memset(payload+len,0,padlen); udp6_fix_checksum(udp,transport_payload_len,&ip6->ip6_src,&ip6->ip6_dst); if (fooling & FOOL_BADSUM) udp->uh_sum^=htons(0xBEAF); if (fooling & FOOL_BADSUM) udp->uh_sum^=(1+random()%0xFFFF); *buflen = pktlen; return true; Loading Loading @@ -601,10 +633,29 @@ bool ip_frag( return false; } void rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl) bool rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl) { if (ttl) { if (ip) { if (ip->ip_ttl!=ttl) { if (ip) ip->ip_ttl = ttl; if (ip6) ip6->ip6_ctlun.ip6_un1.ip6_un1_hlim = ttl; ip->ip_ttl = ttl; ip4_fix_checksum(ip); return true; } } else if (ip6) { if (ip6->ip6_ctlun.ip6_un1.ip6_un1_hlim!=ttl) { ip6->ip6_ctlun.ip6_un1.ip6_un1_hlim = ttl; return true; } } } return false; } Loading
nfq/darkmagic.h +11 −1 Original line number Diff line number Diff line Loading @@ -59,6 +59,7 @@ uint32_t net16_add(uint16_t netorder_value, uint16_t cpuorder_increment); #define VERDICT_DROP 2 #define VERDICT_MASK 3 #define VERDICT_NOCSUM 4 #define VERDICT_GARBAGE 8 #define IP4_TOS(ip_header) (ip_header ? ip_header->ip_tos : 0) #define IP4_IP_ID(ip_header) (ip_header ? ip_header->ip_id : 0) Loading @@ -68,6 +69,8 @@ uint32_t net16_add(uint16_t netorder_value, uint16_t cpuorder_increment); bool prepare_tcp_segment4( const struct sockaddr_in *src, const struct sockaddr_in *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -83,6 +86,8 @@ bool prepare_tcp_segment4( bool prepare_tcp_segment6( const struct sockaddr_in6 *src, const struct sockaddr_in6 *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading @@ -97,6 +102,8 @@ bool prepare_tcp_segment6( bool prepare_tcp_segment( const struct sockaddr *src, const struct sockaddr *dst, uint8_t tcp_flags, bool sack, uint16_t nmss, uint32_t nseq, uint32_t nack_seq, uint16_t nwsize, uint8_t scale_factor, Loading Loading @@ -162,13 +169,16 @@ bool ip_frag( uint8_t *pkt1, size_t *pkt1_size, uint8_t *pkt2, size_t *pkt2_size); void rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl); bool rewrite_ttl(struct ip *ip, struct ip6_hdr *ip6, uint8_t ttl); void extract_ports(const struct tcphdr *tcphdr, const struct udphdr *udphdr, uint8_t *proto, uint16_t *sport, uint16_t *dport); void extract_endpoints(const struct ip *ip,const struct ip6_hdr *ip6hdr,const struct tcphdr *tcphdr,const struct udphdr *udphdr, struct sockaddr_storage *src, struct sockaddr_storage *dst); uint8_t *tcp_find_option(struct tcphdr *tcp, uint8_t kind); uint32_t *tcp_find_timestamps(struct tcphdr *tcp); uint8_t tcp_find_scale_factor(const struct tcphdr *tcp); uint16_t tcp_find_mss(struct tcphdr *tcp); bool tcp_has_sack(struct tcphdr *tcp); bool tcp_has_fastopen(const struct tcphdr *tcp); #ifdef __CYGWIN__ Loading
