2024-05-21 17:39:16 +08:00
|
|
|
#include <time.h>
|
2024-05-08 18:24:26 +08:00
|
|
|
#include <errno.h>
|
2024-05-11 18:58:36 +08:00
|
|
|
#include <assert.h>
|
|
|
|
|
|
2024-05-16 10:32:42 +08:00
|
|
|
#include "times.h"
|
2024-04-30 15:30:43 +08:00
|
|
|
#include "tcp_utils.h"
|
|
|
|
|
#include "udp_utils.h"
|
|
|
|
|
#include "ipv4_utils.h"
|
|
|
|
|
#include "ipv6_utils.h"
|
|
|
|
|
#include "packet_io.h"
|
|
|
|
|
#include "packet_priv.h"
|
|
|
|
|
#include "session_priv.h"
|
|
|
|
|
#include "stellar_priv.h"
|
|
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
#define INJECT_PACKET_LOG_ERROR(format, ...) LOG_ERROR("inject packet", format, ##__VA_ARGS__)
|
|
|
|
|
#define INJECT_PACKE_LOG_DEBUG(format, ...) LOG_DEBUG("inject packet", format, ##__VA_ARGS__)
|
|
|
|
|
|
2024-05-11 18:58:36 +08:00
|
|
|
struct tcp_fingerprint
|
|
|
|
|
{
|
|
|
|
|
uint16_t ipid;
|
|
|
|
|
uint8_t ttl;
|
|
|
|
|
uint16_t win;
|
|
|
|
|
};
|
|
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
static uint16_t checksum(const char *data, uint16_t len)
|
|
|
|
|
{
|
|
|
|
|
uint32_t sum = 0;
|
|
|
|
|
const uint16_t *ip1 = (const uint16_t *)data;
|
|
|
|
|
|
|
|
|
|
while (len > 1)
|
|
|
|
|
{
|
|
|
|
|
sum += *ip1++;
|
|
|
|
|
if (sum & 0x80000000)
|
|
|
|
|
{
|
|
|
|
|
sum = (sum & 0xFFFF) + (sum >> 16);
|
|
|
|
|
}
|
|
|
|
|
len -= 2;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
while (sum >> 16)
|
|
|
|
|
{
|
|
|
|
|
sum = (sum & 0xFFFF) + (sum >> 16);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return (~sum);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint16_t checksum_v4(const void *l4_hdr, uint16_t l4_total_len, uint8_t l4_proto, struct in_addr *src_addr, struct in_addr *dst_addr)
|
|
|
|
|
{
|
|
|
|
|
uint16_t *ip_src = (uint16_t *)src_addr;
|
|
|
|
|
uint16_t *ip_dst = (uint16_t *)dst_addr;
|
|
|
|
|
const uint16_t *buffer = (u_int16_t *)l4_hdr;
|
|
|
|
|
|
|
|
|
|
uint32_t sum = 0;
|
|
|
|
|
size_t len = l4_total_len;
|
|
|
|
|
|
|
|
|
|
while (len > 1)
|
|
|
|
|
{
|
|
|
|
|
sum += *buffer++;
|
|
|
|
|
if (sum & 0x80000000)
|
|
|
|
|
{
|
|
|
|
|
sum = (sum & 0xFFFF) + (sum >> 16);
|
|
|
|
|
}
|
|
|
|
|
len -= 2;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len & 1)
|
|
|
|
|
{
|
|
|
|
|
sum += *((uint8_t *)buffer);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sum += *(ip_src++);
|
|
|
|
|
sum += *ip_src;
|
|
|
|
|
sum += *(ip_dst++);
|
|
|
|
|
sum += *ip_dst;
|
|
|
|
|
sum += htons(l4_proto);
|
|
|
|
|
sum += htons(l4_total_len);
|
|
|
|
|
|
|
|
|
|
while (sum >> 16)
|
|
|
|
|
{
|
|
|
|
|
sum = (sum & 0xFFFF) + (sum >> 16);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return ((uint16_t)(~sum));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static uint16_t checksum_v6(const void *l4_hdr, uint16_t l4_total_len, uint8_t l4_proto, struct in6_addr *src_addr, struct in6_addr *dst_addr)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-08 18:24:26 +08:00
|
|
|
uint16_t *ip_src = (uint16_t *)src_addr;
|
|
|
|
|
uint16_t *ip_dst = (uint16_t *)dst_addr;
|
|
|
|
|
const uint16_t *buffer = (u_int16_t *)l4_hdr;
|
|
|
|
|
|
|
|
|
|
uint32_t sum = 0;
|
|
|
|
|
size_t len = l4_total_len;
|
|
|
|
|
|
|
|
|
|
while (len > 1)
|
|
|
|
|
{
|
|
|
|
|
sum += *buffer++;
|
|
|
|
|
if (sum & 0x80000000)
|
|
|
|
|
{
|
|
|
|
|
sum = (sum & 0xFFFF) + (sum >> 16);
|
|
|
|
|
}
|
|
|
|
|
len -= 2;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len & 1)
|
|
|
|
|
{
|
|
|
|
|
sum += *((uint8_t *)buffer);
|
|
|
|
|
}
|
2024-04-30 15:30:43 +08:00
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
for (int i = 0; i < 8; i++)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-08 18:24:26 +08:00
|
|
|
sum += *ip_src;
|
|
|
|
|
ip_src++;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
for (int i = 0; i < 8; i++)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-08 18:24:26 +08:00
|
|
|
sum += *ip_dst;
|
|
|
|
|
ip_dst++;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
2024-05-08 18:24:26 +08:00
|
|
|
sum += htons(l4_proto);
|
|
|
|
|
sum += htons(l4_total_len);
|
|
|
|
|
|
|
|
|
|
while (sum >> 16)
|
|
|
|
|
{
|
|
|
|
|
sum = (sum & 0xFFFF) + (sum >> 16);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return ((uint16_t)(~sum));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void update_tcp_hdr(struct tcphdr *tcphdr, uint32_t seq, uint32_t ack, uint16_t win, uint8_t flags)
|
|
|
|
|
{
|
|
|
|
|
tcp_hdr_set_seq(tcphdr, seq);
|
|
|
|
|
tcp_hdr_set_ack(tcphdr, ack);
|
|
|
|
|
tcp_hdr_set_hdr_len(tcphdr, sizeof(struct tcphdr));
|
|
|
|
|
tcp_hdr_set_flags(tcphdr, flags);
|
|
|
|
|
tcp_hdr_set_window(tcphdr, win);
|
|
|
|
|
tcp_hdr_set_urg_ptr(tcphdr, 0);
|
|
|
|
|
tcp_hdr_set_checksum(tcphdr, 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void update_udp_hdr(struct udphdr *udphdr, int trim)
|
|
|
|
|
{
|
|
|
|
|
uint16_t total = udp_hdr_get_total_len(udphdr);
|
|
|
|
|
udp_hdr_set_total_len(udphdr, total - trim);
|
|
|
|
|
udp_hdr_set_checksum(udphdr, 0);
|
|
|
|
|
}
|
2024-04-30 15:30:43 +08:00
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
static void update_ip4_hdr(struct ip *iphdr, uint16_t ipid, uint8_t ttl, int trim)
|
|
|
|
|
{
|
|
|
|
|
int hdr_len = ipv4_hdr_get_hdr_len(iphdr);
|
|
|
|
|
uint16_t total = ipv4_hdr_get_total_len(iphdr);
|
|
|
|
|
ipv4_hdr_set_total_len(iphdr, total - trim);
|
|
|
|
|
ipv4_hdr_set_ipid(iphdr, ipid);
|
|
|
|
|
ipv4_hdr_set_ttl(iphdr, ttl);
|
|
|
|
|
iphdr->ip_sum = 0;
|
|
|
|
|
iphdr->ip_sum = checksum((char *)iphdr, hdr_len);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void update_ip6_hdr(struct ip6_hdr *ip6hdr, int trim)
|
|
|
|
|
{
|
|
|
|
|
uint16_t len = ipv6_hdr_get_payload_len(ip6hdr);
|
|
|
|
|
ipv6_hdr_set_payload_len(ip6hdr, len - trim);
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-22 18:15:08 +08:00
|
|
|
static inline void calc_tcp_seq_ack(const struct session *sess, enum flow_direction inject_dir, uint32_t *seq, uint32_t *ack, uint8_t flags, uint16_t len)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
|
|
|
|
/*
|
|
|
|
|
* +--------+ current packet +---------+ C2S RST +--------+
|
|
|
|
|
* | |----------------->| |----------------->| |
|
|
|
|
|
* | Client | | Stellar | | Server |
|
|
|
|
|
* | |<-----------------| |<-----------------| |
|
|
|
|
|
* +--------+ S2C RST +---------+ +--------+
|
|
|
|
|
*
|
|
|
|
|
* for example: current packet is C2S
|
|
|
|
|
*
|
|
|
|
|
* inject direction == current direction (inject C2S RST)
|
|
|
|
|
* seq = current_packet_seq
|
|
|
|
|
* ack = current_packet_ack
|
|
|
|
|
*
|
|
|
|
|
* inject direction != current direction (inject S2C RST)
|
2024-05-08 18:24:26 +08:00
|
|
|
* seq = current_packet_ack
|
|
|
|
|
* ack = current_packet_seq + current_packet_payload_len
|
2024-05-11 18:58:36 +08:00
|
|
|
* or if current packet is a SYN-ACK packet
|
|
|
|
|
* seq = current_packet_seq
|
|
|
|
|
* ack = current_packet_ack + current_packet_payload_len + 1
|
2024-04-30 15:30:43 +08:00
|
|
|
*/
|
|
|
|
|
|
2024-05-15 16:29:33 +08:00
|
|
|
enum flow_direction curr_dir = session_get_current_flow_direction(sess);
|
2024-05-17 19:10:28 +08:00
|
|
|
struct tcp_half *tcp_curr_half = (struct tcp_half *)&sess->tcp_halfs[curr_dir];
|
2024-05-09 14:57:12 +08:00
|
|
|
if (inject_dir == curr_dir)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-17 19:10:28 +08:00
|
|
|
*seq = uint32_add(tcp_curr_half->seq, tcp_curr_half->inject_inc_seq_offset);
|
2024-05-20 15:42:58 +08:00
|
|
|
*ack = tcp_curr_half->ack;
|
2024-05-17 19:10:28 +08:00
|
|
|
|
|
|
|
|
tcp_curr_half->inject_inc_seq_offset += len;
|
2024-05-22 18:15:08 +08:00
|
|
|
// inject RST packer after FIN packer, seq should be increased by 1
|
|
|
|
|
tcp_curr_half->inject_inc_seq_offset += (flags & TH_FIN) ? 1 : 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2024-05-17 19:10:28 +08:00
|
|
|
*seq = uint32_add(tcp_curr_half->ack, tcp_curr_half->inject_inc_ack_offset);
|
2024-05-20 15:42:58 +08:00
|
|
|
*ack = uint32_add(tcp_curr_half->seq, tcp_curr_half->len + (tcp_curr_half->flags & TH_SYN ? 1 : 0));
|
2024-05-17 19:10:28 +08:00
|
|
|
|
|
|
|
|
tcp_curr_half->inject_inc_ack_offset += len;
|
2024-05-22 18:15:08 +08:00
|
|
|
// inject RST packer after FIN packer, ack should be increased by 1
|
|
|
|
|
tcp_curr_half->inject_inc_ack_offset += (flags & TH_FIN) ? 1 : 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-11 18:58:36 +08:00
|
|
|
static inline void calc_tcp_fingerprint(struct tcp_fingerprint *finger)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-08 18:24:26 +08:00
|
|
|
#define RANGE(rand, start, end) (start + rand % (end - start + 1)) // [start, end]
|
|
|
|
|
|
2024-05-21 17:39:16 +08:00
|
|
|
struct timespec time;
|
|
|
|
|
clock_gettime(CLOCK_MONOTONIC, &time);
|
|
|
|
|
|
|
|
|
|
uint64_t random = 0x013579ABCDEF ^ time.tv_nsec;
|
2024-05-11 18:58:36 +08:00
|
|
|
finger->ipid = (uint16_t)(RANGE(random, 32767, 65535));
|
|
|
|
|
finger->ttl = (uint8_t)(RANGE(random, 48, 120));
|
|
|
|
|
finger->win = (uint16_t)(RANGE(random, 1000, 1460));
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
// return packet length
|
2024-05-30 13:49:31 +08:00
|
|
|
static int build_tcp_packet(const struct packet *first, uint16_t ip_id, uint8_t ip_ttl,
|
|
|
|
|
uint32_t tcp_seq, uint32_t tcp_ack, uint8_t tcp_flags, uint16_t tcp_win,
|
|
|
|
|
const char *tcp_pld, int pld_len, char *pkt_buff, int buff_size)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-08 18:24:26 +08:00
|
|
|
int trim = 0;
|
|
|
|
|
struct tcphdr *tcphdr;
|
|
|
|
|
struct udphdr *udphdr;
|
|
|
|
|
struct ip *iphdr;
|
|
|
|
|
struct ip6_hdr *ip6hdr;
|
|
|
|
|
struct packet_layer *curr;
|
|
|
|
|
struct packet_layer *last;
|
|
|
|
|
int len = packet_get_len(first);
|
2024-05-09 14:57:12 +08:00
|
|
|
int8_t layers = packet_get_layers_number(first);
|
2024-04-30 15:30:43 +08:00
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
if ((tcp_pld == NULL && pld_len > 0) || (tcp_pld != NULL && pld_len <= 0))
|
|
|
|
|
{
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
2024-04-30 15:30:43 +08:00
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
if (len > buff_size)
|
|
|
|
|
{
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
memcpy(pkt_buff, packet_get_data(first), len);
|
|
|
|
|
for (int8_t i = layers - 1; i >= 0; i--)
|
|
|
|
|
{
|
|
|
|
|
curr = (struct packet_layer *)packet_get_layer(first, i);
|
|
|
|
|
switch (curr->type)
|
|
|
|
|
{
|
|
|
|
|
case LAYER_TYPE_TCP:
|
2024-05-17 17:38:08 +08:00
|
|
|
trim = curr->hdr_len + curr->pld_len - sizeof(struct tcphdr) - pld_len;
|
2024-05-11 18:58:36 +08:00
|
|
|
if (len - trim > buff_size)
|
2024-05-08 18:24:26 +08:00
|
|
|
{
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
}
|
|
|
|
|
tcphdr = (struct tcphdr *)(pkt_buff + curr->hdr_offset);
|
2024-05-11 18:58:36 +08:00
|
|
|
update_tcp_hdr(tcphdr, tcp_seq, tcp_ack, tcp_win, tcp_flags);
|
2024-05-08 18:24:26 +08:00
|
|
|
if (pld_len)
|
|
|
|
|
{
|
|
|
|
|
memcpy(pkt_buff + curr->hdr_offset + sizeof(struct tcphdr), tcp_pld, pld_len);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_UDP:
|
|
|
|
|
udphdr = (struct udphdr *)(pkt_buff + curr->hdr_offset);
|
|
|
|
|
update_udp_hdr(udphdr, trim);
|
|
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_IPV4:
|
|
|
|
|
iphdr = (struct ip *)(pkt_buff + curr->hdr_offset);
|
|
|
|
|
last = (struct packet_layer *)packet_get_layer(first, i + 1);
|
|
|
|
|
if (last->type == LAYER_TYPE_TCP)
|
|
|
|
|
{
|
|
|
|
|
tcphdr = (struct tcphdr *)(pkt_buff + last->hdr_offset);
|
|
|
|
|
tcphdr->th_sum = checksum_v4(tcphdr, len - trim - last->hdr_offset, IPPROTO_TCP, &iphdr->ip_src, &iphdr->ip_dst);
|
|
|
|
|
}
|
|
|
|
|
if (last->type == LAYER_TYPE_UDP)
|
|
|
|
|
{
|
|
|
|
|
udphdr = (struct udphdr *)(pkt_buff + last->hdr_offset);
|
2024-05-11 18:58:36 +08:00
|
|
|
udphdr->uh_sum = checksum_v4(udphdr, len - trim - last->hdr_offset, IPPROTO_UDP, &iphdr->ip_src, &iphdr->ip_dst);
|
2024-05-08 18:24:26 +08:00
|
|
|
}
|
2024-05-11 18:58:36 +08:00
|
|
|
update_ip4_hdr(iphdr, ip_id, ip_ttl, trim);
|
2024-05-08 18:24:26 +08:00
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_IPV6:
|
|
|
|
|
ip6hdr = (struct ip6_hdr *)(pkt_buff + curr->hdr_offset);
|
|
|
|
|
last = (struct packet_layer *)packet_get_layer(first, i + 1);
|
|
|
|
|
if (last->type == LAYER_TYPE_TCP)
|
|
|
|
|
{
|
|
|
|
|
tcphdr = (struct tcphdr *)(pkt_buff + last->hdr_offset);
|
|
|
|
|
tcphdr->th_sum = checksum_v6(tcphdr, len - trim - last->hdr_offset, IPPROTO_TCP, &ip6hdr->ip6_src, &ip6hdr->ip6_dst);
|
|
|
|
|
}
|
|
|
|
|
if (last->type == LAYER_TYPE_UDP)
|
|
|
|
|
{
|
|
|
|
|
udphdr = (struct udphdr *)(pkt_buff + last->hdr_offset);
|
2024-05-11 18:58:36 +08:00
|
|
|
udphdr->uh_sum = checksum_v6(udphdr, len - trim - last->hdr_offset, IPPROTO_UDP, &ip6hdr->ip6_src, &ip6hdr->ip6_dst);
|
|
|
|
|
}
|
|
|
|
|
update_ip6_hdr(ip6hdr, trim);
|
|
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_GRE:
|
|
|
|
|
return -EPROTONOSUPPORT;
|
|
|
|
|
// TODO
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return len - trim;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// return packet length
|
2024-05-30 13:49:31 +08:00
|
|
|
static int build_udp_packet(const struct packet *first, const char *udp_pld, int pld_len, char *pkt_buff, int buff_size)
|
2024-05-11 18:58:36 +08:00
|
|
|
{
|
|
|
|
|
int trim = 0;
|
|
|
|
|
struct udphdr *udphdr;
|
|
|
|
|
struct ip *iphdr;
|
|
|
|
|
struct ip6_hdr *ip6hdr;
|
|
|
|
|
struct packet_layer *curr;
|
|
|
|
|
struct packet_layer *last;
|
|
|
|
|
int len = packet_get_len(first);
|
|
|
|
|
int8_t layers = packet_get_layers_number(first);
|
|
|
|
|
|
|
|
|
|
if ((udp_pld == NULL && pld_len > 0) || (udp_pld != NULL && pld_len <= 0))
|
|
|
|
|
{
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len > buff_size)
|
|
|
|
|
{
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
memcpy(pkt_buff, packet_get_data(first), len);
|
|
|
|
|
for (int8_t i = layers - 1; i >= 0; i--)
|
|
|
|
|
{
|
|
|
|
|
curr = (struct packet_layer *)packet_get_layer(first, i);
|
|
|
|
|
switch (curr->type)
|
|
|
|
|
{
|
|
|
|
|
case LAYER_TYPE_UDP:
|
2024-05-17 17:38:08 +08:00
|
|
|
trim = curr->hdr_len + curr->pld_len - sizeof(struct udphdr) - pld_len;
|
2024-05-11 18:58:36 +08:00
|
|
|
if (len - trim > buff_size)
|
|
|
|
|
{
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
}
|
|
|
|
|
udphdr = (struct udphdr *)(pkt_buff + curr->hdr_offset);
|
|
|
|
|
update_udp_hdr(udphdr, trim);
|
|
|
|
|
if (pld_len)
|
|
|
|
|
{
|
|
|
|
|
memcpy(pkt_buff + curr->hdr_offset + sizeof(struct udphdr), udp_pld, pld_len);
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_IPV4:
|
|
|
|
|
iphdr = (struct ip *)(pkt_buff + curr->hdr_offset);
|
|
|
|
|
last = (struct packet_layer *)packet_get_layer(first, i + 1);
|
|
|
|
|
if (last->type == LAYER_TYPE_UDP)
|
|
|
|
|
{
|
|
|
|
|
udphdr = (struct udphdr *)(pkt_buff + last->hdr_offset);
|
|
|
|
|
udphdr->uh_sum = checksum_v4(udphdr, len - trim - last->hdr_offset, IPPROTO_UDP, &iphdr->ip_src, &iphdr->ip_dst);
|
|
|
|
|
}
|
|
|
|
|
update_ip4_hdr(iphdr, 0, 0, trim);
|
|
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_IPV6:
|
|
|
|
|
ip6hdr = (struct ip6_hdr *)(pkt_buff + curr->hdr_offset);
|
|
|
|
|
last = (struct packet_layer *)packet_get_layer(first, i + 1);
|
|
|
|
|
if (last->type == LAYER_TYPE_UDP)
|
|
|
|
|
{
|
|
|
|
|
udphdr = (struct udphdr *)(pkt_buff + last->hdr_offset);
|
|
|
|
|
udphdr->uh_sum = checksum_v6(udphdr, len - trim - last->hdr_offset, IPPROTO_UDP, &ip6hdr->ip6_src, &ip6hdr->ip6_dst);
|
2024-05-08 18:24:26 +08:00
|
|
|
}
|
|
|
|
|
update_ip6_hdr(ip6hdr, trim);
|
|
|
|
|
break;
|
|
|
|
|
case LAYER_TYPE_GRE:
|
|
|
|
|
return -EPROTONOSUPPORT;
|
|
|
|
|
// TODO
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return len - trim;
|
|
|
|
|
}
|
2024-04-30 15:30:43 +08:00
|
|
|
|
2024-05-30 13:49:31 +08:00
|
|
|
static int inject_tcp_packet(struct stellar *st, const struct session *sess, enum flow_direction inject_dir, uint8_t tcp_flags, const char *payload, uint16_t len)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-11 18:58:36 +08:00
|
|
|
#define TCP_FLAGS_LOG_FORMAT "URG:%d, ACK:%d, PSH:%d, RST:%d, SYN:%d, FIN:%d"
|
|
|
|
|
#define TCP_FLAGS_LOG_VALUE(flags) \
|
|
|
|
|
(((flags) & TH_URG) ? 1 : 0), (((flags) & TH_ACK) ? 1 : 0), \
|
|
|
|
|
(((flags) & TH_PUSH) ? 1 : 0), (((flags) & TH_RST) ? 1 : 0), \
|
|
|
|
|
(((flags) & TH_SYN) ? 1 : 0), (((flags) & TH_FIN) ? 1 : 0)
|
|
|
|
|
|
2024-05-09 14:57:12 +08:00
|
|
|
uint16_t thr_idx = stellar_get_current_thread_index();
|
2024-05-16 10:32:42 +08:00
|
|
|
uint64_t time_ms = stellar_get_monotonic_time_msec();
|
2024-05-28 10:26:29 +08:00
|
|
|
struct packet_io *packet_io = stellar_get_packet_io(st);
|
|
|
|
|
struct session_manager *sess_mgr = stellar_get_session_manager(st);
|
2024-04-30 15:30:43 +08:00
|
|
|
|
|
|
|
|
if (session_get_type(sess) != SESSION_TYPE_TCP)
|
|
|
|
|
{
|
2024-05-09 16:32:45 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s is not a TCP session, cannot inject TCP packet (" TCP_FLAGS_LOG_FORMAT ", payload len:%d)",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
TCP_FLAGS_LOG_VALUE(tcp_flags), len);
|
2024-05-11 18:58:36 +08:00
|
|
|
return 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-09 14:57:12 +08:00
|
|
|
const struct packet *pkt = session_get_first_packet(sess, inject_dir);
|
2024-04-30 15:30:43 +08:00
|
|
|
if (pkt == NULL)
|
|
|
|
|
{
|
2024-05-09 16:32:45 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s has no %s first packet, cannot inject TCP packet (" TCP_FLAGS_LOG_FORMAT ", payload len:%d)",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), TCP_FLAGS_LOG_VALUE(tcp_flags), len);
|
2024-05-11 18:58:36 +08:00
|
|
|
return 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-11 18:58:36 +08:00
|
|
|
struct tcp_fingerprint finger = {0};
|
2024-05-08 18:24:26 +08:00
|
|
|
uint32_t tcp_seq = 0;
|
|
|
|
|
uint32_t tcp_ack = 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
char buff[4096] = {0};
|
2024-05-22 18:15:08 +08:00
|
|
|
calc_tcp_seq_ack(sess, inject_dir, &tcp_seq, &tcp_ack, tcp_flags, len);
|
2024-05-11 18:58:36 +08:00
|
|
|
calc_tcp_fingerprint(&finger);
|
2024-04-30 15:30:43 +08:00
|
|
|
|
2024-05-11 18:58:36 +08:00
|
|
|
int pkt_len = build_tcp_packet(pkt, finger.ipid, finger.ttl, tcp_seq, tcp_ack, tcp_flags, finger.win, payload, len, buff, sizeof(buff));
|
|
|
|
|
if (pkt_len <= 0)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s build TCP %s packet (" TCP_FLAGS_LOG_FORMAT ", payload len:%d) failed, %s",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), TCP_FLAGS_LOG_VALUE(tcp_flags), len, strerror(len));
|
2024-05-09 16:32:45 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
2024-05-11 18:58:36 +08:00
|
|
|
return 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-08 18:24:26 +08:00
|
|
|
struct inject_packet_meta meta = {0};
|
|
|
|
|
meta.session_id = session_get_id(sess);
|
2024-05-09 14:57:12 +08:00
|
|
|
session_get_route_ctx(sess, inject_dir, &meta.route);
|
|
|
|
|
session_get_sid_list(sess, inject_dir, &meta.sids);
|
2024-05-08 18:24:26 +08:00
|
|
|
|
2024-04-30 15:30:43 +08:00
|
|
|
struct packet inj_pkt;
|
2024-05-11 18:58:36 +08:00
|
|
|
packet_parse(&inj_pkt, buff, pkt_len);
|
2024-05-08 18:24:26 +08:00
|
|
|
packet_set_origin(&inj_pkt, PACKET_ORIGIN_USERSTACK);
|
|
|
|
|
packet_set_origin_ctx(&inj_pkt, &meta);
|
2024-05-28 10:26:29 +08:00
|
|
|
session_manager_record_duplicated_packet(sess_mgr, &inj_pkt, time_ms);
|
|
|
|
|
if (packet_io_inject(packet_io, thr_idx, &inj_pkt, 1) == 1)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-09 16:32:45 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_SUCCESS, 1);
|
2024-05-11 18:58:36 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_BYTES_SUCCESS, pkt_len);
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKE_LOG_DEBUG("session %ld %s inject TCP %s packet (" TCP_FLAGS_LOG_FORMAT ", payload len:%d) success",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), TCP_FLAGS_LOG_VALUE(tcp_flags), len);
|
2024-05-11 18:58:36 +08:00
|
|
|
return pkt_len;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s inject TCP %s packet (" TCP_FLAGS_LOG_FORMAT ", payload len:%d) failed, packet I/O nospace",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), TCP_FLAGS_LOG_VALUE(tcp_flags), len);
|
2024-05-11 18:58:36 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-30 13:49:31 +08:00
|
|
|
static int inject_udp_packet(struct stellar *st, const struct session *sess, enum flow_direction inject_dir, const char *payload, uint16_t len)
|
2024-05-11 18:58:36 +08:00
|
|
|
{
|
|
|
|
|
uint16_t thr_idx = stellar_get_current_thread_index();
|
2024-05-16 10:32:42 +08:00
|
|
|
uint64_t time_ms = stellar_get_monotonic_time_msec();
|
2024-05-28 10:26:29 +08:00
|
|
|
struct packet_io *packet_io = stellar_get_packet_io(st);
|
|
|
|
|
struct session_manager *sess_mgr = stellar_get_session_manager(st);
|
2024-05-11 18:58:36 +08:00
|
|
|
|
|
|
|
|
if (session_get_type(sess) != SESSION_TYPE_UDP)
|
|
|
|
|
{
|
|
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s is not a UDP session, cannot inject UDP packet (payload len:%d)",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess), len);
|
2024-05-11 18:58:36 +08:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const struct packet *pkt = session_get_first_packet(sess, inject_dir);
|
|
|
|
|
if (pkt == NULL)
|
|
|
|
|
{
|
|
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s has no %s first packet, cannot inject UDP packet (payload len:%d)",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), len);
|
2024-04-30 15:30:43 +08:00
|
|
|
return 0;
|
|
|
|
|
}
|
2024-05-11 18:58:36 +08:00
|
|
|
|
|
|
|
|
char buff[4096] = {0};
|
|
|
|
|
int pkt_len = build_udp_packet(pkt, payload, len, buff, sizeof(buff));
|
|
|
|
|
if (pkt_len <= 0)
|
|
|
|
|
{
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s build UDP %s packet (payload len:%d) failed, %s",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), len, strerror(len));
|
2024-05-11 18:58:36 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
struct inject_packet_meta meta = {0};
|
|
|
|
|
meta.session_id = session_get_id(sess);
|
|
|
|
|
session_get_route_ctx(sess, inject_dir, &meta.route);
|
|
|
|
|
session_get_sid_list(sess, inject_dir, &meta.sids);
|
|
|
|
|
|
|
|
|
|
struct packet inj_pkt;
|
|
|
|
|
packet_parse(&inj_pkt, buff, pkt_len);
|
|
|
|
|
packet_set_origin(&inj_pkt, PACKET_ORIGIN_USERSTACK);
|
|
|
|
|
packet_set_origin_ctx(&inj_pkt, &meta);
|
2024-05-28 10:26:29 +08:00
|
|
|
session_manager_record_duplicated_packet(sess_mgr, &inj_pkt, time_ms);
|
|
|
|
|
if (packet_io_inject(packet_io, thr_idx, &inj_pkt, 1) == 1)
|
2024-05-11 18:58:36 +08:00
|
|
|
{
|
|
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_SUCCESS, 1);
|
|
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_BYTES_SUCCESS, pkt_len);
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKE_LOG_DEBUG("session %ld %s inject UDP %s packet (payload len:%d) success",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), len);
|
2024-05-11 18:58:36 +08:00
|
|
|
return pkt_len;
|
|
|
|
|
}
|
2024-04-30 15:30:43 +08:00
|
|
|
else
|
|
|
|
|
{
|
2024-05-20 15:42:58 +08:00
|
|
|
INJECT_PACKET_LOG_ERROR("session %ld %s inject UDP %s packet (payload len:%d) failed, packet I/O nospace",
|
|
|
|
|
session_get_id(sess), session_get0_readable_addr(sess),
|
|
|
|
|
flow_direction_to_str(inject_dir), len);
|
2024-05-09 16:32:45 +08:00
|
|
|
session_inc_stat((struct session *)sess, inject_dir, STAT_INJECTED_PACKETS_FAILED, 1);
|
2024-05-11 18:58:36 +08:00
|
|
|
return 0;
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-11 18:58:36 +08:00
|
|
|
/******************************************************************************
|
|
|
|
|
* Public API
|
|
|
|
|
******************************************************************************/
|
|
|
|
|
|
2024-05-28 10:26:29 +08:00
|
|
|
int stellar_inject_tcp_rst(struct stellar *st, const struct session *sess, enum flow_direction inject_dir)
|
2024-05-11 18:58:36 +08:00
|
|
|
{
|
2024-05-28 10:26:29 +08:00
|
|
|
return inject_tcp_packet(st, sess, inject_dir, TH_RST | TH_ACK, NULL, 0);
|
2024-05-11 18:58:36 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-28 10:26:29 +08:00
|
|
|
int stellar_inject_tcp_fin(struct stellar *st, const struct session *sess, enum flow_direction inject_dir)
|
2024-05-11 18:58:36 +08:00
|
|
|
{
|
2024-05-28 10:26:29 +08:00
|
|
|
return inject_tcp_packet(st, sess, inject_dir, TH_FIN | TH_ACK, NULL, 0);
|
2024-05-11 18:58:36 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-29 19:01:05 +08:00
|
|
|
int stellar_inject_tcp_payload(struct stellar *st, const struct session *sess, enum flow_direction inject_dir, const char *payload, uint16_t len)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
2024-05-29 19:01:05 +08:00
|
|
|
return inject_tcp_packet(st, sess, inject_dir, TH_ACK, payload, len);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int stellar_inject_udp_payload(struct stellar *st, const struct session *sess, enum flow_direction inject_dir, const char *payload, uint16_t len)
|
|
|
|
|
{
|
|
|
|
|
return inject_udp_packet(st, sess, inject_dir, payload, len);
|
2024-04-30 15:30:43 +08:00
|
|
|
}
|
|
|
|
|
|
2024-05-28 10:26:29 +08:00
|
|
|
int stellar_inject_ctrl_msg(struct stellar *st, const struct session *sess, const struct sid_list *sids, const char *msg, uint16_t len)
|
2024-04-30 15:30:43 +08:00
|
|
|
{
|
|
|
|
|
// TODO
|
2024-05-11 18:58:36 +08:00
|
|
|
return 0;
|
|
|
|
|
}
|
