snit.c revision 1.1.1.1
1 1.1 christos /* $NetBSD: snit.c,v 1.1.1.1 2012/03/23 21:20:06 christos Exp $ */ 2 1.1 christos 3 1.1 christos /* 4 1.1 christos * (C)opyright 1992-1998 Darren Reed. (from tcplog) 5 1.1 christos * 6 1.1 christos * See the IPFILTER.LICENCE file for details on licencing. 7 1.1 christos * 8 1.1 christos */ 9 1.1 christos 10 1.1 christos #include <stdio.h> 11 1.1 christos #include <netdb.h> 12 1.1 christos #include <ctype.h> 13 1.1 christos #include <signal.h> 14 1.1 christos #include <errno.h> 15 1.1 christos #include <sys/types.h> 16 1.1 christos #include <sys/time.h> 17 1.1 christos #include <sys/timeb.h> 18 1.1 christos #include <sys/socket.h> 19 1.1 christos #include <sys/file.h> 20 1.1 christos #include <sys/ioctl.h> 21 1.1 christos #include <net/nit.h> 22 1.1 christos #include <sys/fcntlcom.h> 23 1.1 christos #include <sys/dir.h> 24 1.1 christos #include <net/nit_if.h> 25 1.1 christos #include <net/nit_pf.h> 26 1.1 christos #include <net/nit_buf.h> 27 1.1 christos #include <net/packetfilt.h> 28 1.1 christos #include <sys/stropts.h> 29 1.1 christos 30 1.1 christos #include <net/if.h> 31 1.1 christos #include <netinet/in.h> 32 1.1 christos #include <netinet/in_systm.h> 33 1.1 christos #include <netinet/ip.h> 34 1.1 christos #include <netinet/if_ether.h> 35 1.1 christos #include <netinet/ip_var.h> 36 1.1 christos #include <netinet/udp.h> 37 1.1 christos #include <netinet/udp_var.h> 38 1.1 christos #include <netinet/tcp.h> 39 1.1 christos #include <netinet/tcpip.h> 40 1.1 christos 41 1.1 christos #ifndef lint 42 1.1 christos static char snitid[] = "@(#)snit.c 1.2 12/3/95 (C)1995 Darren Reed"; 43 1.1 christos #endif 44 1.1 christos 45 1.1 christos #define BUFSPACE 32768 46 1.1 christos 47 1.1 christos /* 48 1.1 christos * Be careful to only include those defined in the flags option for the 49 1.1 christos * interface are included in the header size. 50 1.1 christos */ 51 1.1 christos #define BUFHDR_SIZE (sizeof(struct nit_bufhdr)) 52 1.1 christos #define NIT_HDRSIZE (BUFHDR_SIZE) 53 1.1 christos 54 1.1 christos static int timeout; 55 1.1 christos 56 1.1 christos 57 1.1 christos int ack_recv(ep) 58 1.1 christos char *ep; 59 1.1 christos { 60 1.1 christos struct tcpiphdr tip; 61 1.1 christos struct tcphdr *tcp; 62 1.1 christos struct ip *ip; 63 1.1 christos 64 1.1 christos ip = (struct ip *)&tip; 65 1.1 christos tcp = (struct tcphdr *)(ip + 1); 66 1.1 christos bcopy(ep + 14, (char *)ip, sizeof(*ip)); 67 1.1 christos bcopy(ep + 14 + (ip->ip_hl << 2), (char *)tcp, sizeof(*tcp)); 68 1.1 christos if (ip->ip_off & 0x1fff != 0) 69 1.1 christos return 0; 70 1.1 christos if (0 == detect(ip, tcp)) 71 1.1 christos return 1; 72 1.1 christos return 0; 73 1.1 christos } 74 1.1 christos 75 1.1 christos 76 1.1 christos int readloop(fd, dst) 77 1.1 christos int fd; 78 1.1 christos struct in_addr dst; 79 1.1 christos { 80 1.1 christos static u_char buf[BUFSPACE]; 81 1.1 christos register u_char *bp, *cp, *bufend; 82 1.1 christos register struct nit_bufhdr *hp; 83 1.1 christos register int cc; 84 1.1 christos time_t now = time(NULL); 85 1.1 christos int done = 0; 86 1.1 christos 87 1.1 christos while ((cc = read(fd, buf, BUFSPACE-1)) >= 0) { 88 1.1 christos if (!cc) 89 1.1 christos if ((time(NULL) - now) > timeout) 90 1.1 christos return done; 91 1.1 christos else 92 1.1 christos continue; 93 1.1 christos bp = buf; 94 1.1 christos bufend = buf + cc; 95 1.1 christos /* 96 1.1 christos * loop through each snapshot in the chunk 97 1.1 christos */ 98 1.1 christos while (bp < bufend) { 99 1.1 christos cp = (u_char *)((char *)bp + NIT_HDRSIZE); 100 1.1 christos /* 101 1.1 christos * get past NIT buffer 102 1.1 christos */ 103 1.1 christos hp = (struct nit_bufhdr *)bp; 104 1.1 christos /* 105 1.1 christos * next snapshot 106 1.1 christos */ 107 1.1 christos bp += hp->nhb_totlen; 108 1.1 christos done += ack_recv(cp); 109 1.1 christos } 110 1.1 christos return done; 111 1.1 christos } 112 1.1 christos perror("read"); 113 1.1 christos exit(-1); 114 1.1 christos } 115 1.1 christos 116 1.1 christos int initdevice(device, tout) 117 1.1 christos char *device; 118 1.1 christos int tout; 119 1.1 christos { 120 1.1 christos struct strioctl si; 121 1.1 christos struct timeval to; 122 1.1 christos struct ifreq ifr; 123 1.1 christos struct packetfilt pfil; 124 1.1 christos u_long if_flags; 125 1.1 christos u_short *fwp = pfil.Pf_Filter; 126 1.1 christos int ret, offset, fd, snaplen= 76, chunksize = BUFSPACE; 127 1.1 christos 128 1.1 christos if ((fd = open("/dev/nit", O_RDWR)) < 0) 129 1.1 christos { 130 1.1 christos perror("/dev/nit"); 131 1.1 christos exit(-1); 132 1.1 christos } 133 1.1 christos 134 1.1 christos /* 135 1.1 christos * Create some filter rules for our TCP watcher. We only want ethernet 136 1.1 christos * pacets which are IP protocol and only the TCP packets from IP. 137 1.1 christos */ 138 1.1 christos offset = 6; 139 1.1 christos *fwp++ = ENF_PUSHWORD + offset; 140 1.1 christos *fwp++ = ENF_PUSHLIT | ENF_CAND; 141 1.1 christos *fwp++ = htons(ETHERTYPE_IP); 142 1.1 christos *fwp++ = ENF_PUSHWORD + sizeof(struct ether_header)/sizeof(short)+4; 143 1.1 christos *fwp++ = ENF_PUSHLIT | ENF_AND; 144 1.1 christos *fwp++ = htons(0x00ff); 145 1.1 christos *fwp++ = ENF_PUSHLIT | ENF_COR; 146 1.1 christos *fwp++ = htons(IPPROTO_TCP); 147 1.1 christos *fwp++ = ENF_PUSHWORD + sizeof(struct ether_header)/sizeof(short)+4; 148 1.1 christos *fwp++ = ENF_PUSHLIT | ENF_AND; 149 1.1 christos *fwp++ = htons(0x00ff); 150 1.1 christos *fwp++ = ENF_PUSHLIT | ENF_CAND; 151 1.1 christos *fwp++ = htons(IPPROTO_UDP); 152 1.1 christos pfil.Pf_FilterLen = fwp - &pfil.Pf_Filter[0]; 153 1.1 christos /* 154 1.1 christos * put filter in place. 155 1.1 christos */ 156 1.1 christos if (ioctl(fd, I_PUSH, "pf") == -1) 157 1.1 christos { 158 1.1 christos perror("ioctl: I_PUSH pf"); 159 1.1 christos exit(1); 160 1.1 christos } 161 1.1 christos if (ioctl(fd, NIOCSETF, &pfil) == -1) 162 1.1 christos { 163 1.1 christos perror("ioctl: NIOCSETF"); 164 1.1 christos exit(1); 165 1.1 christos } 166 1.1 christos /* 167 1.1 christos * arrange to get messages from the NIT STREAM and use NIT_BUF option 168 1.1 christos */ 169 1.1 christos ioctl(fd, I_SRDOPT, (char*)RMSGD); 170 1.1 christos ioctl(fd, I_PUSH, "nbuf"); 171 1.1 christos /* 172 1.1 christos * set the timeout 173 1.1 christos */ 174 1.1 christos timeout = tout; 175 1.1 christos si.ic_timout = 1; 176 1.1 christos to.tv_sec = 1; 177 1.1 christos to.tv_usec = 0; 178 1.1 christos si.ic_cmd = NIOCSTIME; 179 1.1 christos si.ic_len = sizeof(to); 180 1.1 christos si.ic_dp = (char*)&to; 181 1.1 christos if (ioctl(fd, I_STR, (char*)&si) == -1) 182 1.1 christos { 183 1.1 christos perror("ioctl: NIT timeout"); 184 1.1 christos exit(-1); 185 1.1 christos } 186 1.1 christos /* 187 1.1 christos * set the chunksize 188 1.1 christos */ 189 1.1 christos si.ic_cmd = NIOCSCHUNK; 190 1.1 christos si.ic_len = sizeof(chunksize); 191 1.1 christos si.ic_dp = (char*)&chunksize; 192 1.1 christos if (ioctl(fd, I_STR, (char*)&si) == -1) 193 1.1 christos perror("ioctl: NIT chunksize"); 194 1.1 christos if (ioctl(fd, NIOCGCHUNK, (char*)&chunksize) == -1) 195 1.1 christos { 196 1.1 christos perror("ioctl: NIT chunksize"); 197 1.1 christos exit(-1); 198 1.1 christos } 199 1.1 christos printf("NIT buffer size: %d\n", chunksize); 200 1.1 christos 201 1.1 christos /* 202 1.1 christos * request the interface 203 1.1 christos */ 204 1.1 christos strncpy(ifr.ifr_name, device, sizeof(ifr.ifr_name)); 205 1.1 christos ifr.ifr_name[sizeof(ifr.ifr_name) - 1] = ' '; 206 1.1 christos si.ic_cmd = NIOCBIND; 207 1.1 christos si.ic_len = sizeof(ifr); 208 1.1 christos si.ic_dp = (char*)𝔦 209 1.1 christos if (ioctl(fd, I_STR, (char*)&si) == -1) 210 1.1 christos { 211 1.1 christos perror(ifr.ifr_name); 212 1.1 christos exit(1); 213 1.1 christos } 214 1.1 christos 215 1.1 christos /* 216 1.1 christos * set the snapshot length 217 1.1 christos */ 218 1.1 christos si.ic_cmd = NIOCSSNAP; 219 1.1 christos si.ic_len = sizeof(snaplen); 220 1.1 christos si.ic_dp = (char*)&snaplen; 221 1.1 christos if (ioctl(fd, I_STR, (char*)&si) == -1) 222 1.1 christos { 223 1.1 christos perror("ioctl: NIT snaplen"); 224 1.1 christos exit(1); 225 1.1 christos } 226 1.1 christos (void) ioctl(fd, I_FLUSH, (char*)FLUSHR); 227 1.1 christos return fd; 228 1.1 christos } 229
Indexes created Sun Mar 01 05:31:48 UTC 2026