#include #include #include #include #include #include "tsg_entry.h" #include #include "tsg_protocol_common.h" #define MTU_LEN 65535 #define MAC_LEN 6 #define MAC_LEN_2 ((MAC_LEN)+(MAC_LEN)) #define ETH_IP_TYPE_LEN 2 #define ETH_LEN ((MAC_LEN_2)+(ETH_IP_TYPE_LEN)) #define IPV4_TYPE 1 //ADDR_TYPE_IPV4 ==1 , 取的enum 0x0800 #define IPV6_TYPE 2 //ADDR_TYPE_IPV6 ==2 0x86dd #define TCP_TYPE 0x06 #define UDP_TYPE 0x11 #define IPV4_LEN 20 //ip_len(20) #define IPV4_PROTOCOL_INDEX 9 //ipv4_protocol_index_len #define IPV4_TCP_HEAD_LEN_INDEX 32 //ip_len(20) + tcp_head_len_index() #define ETH_IPV4_IP_UPD_LEN 28 //ip_len(20) + udp_len(8) #define IPV4_IP_LEN_INDEX 2 //ip_len_index(2) #define IPV6_PROTOCOL_INDEX 6 //ipv6_protocol_index(6) #define IPV6_LEN 40 #define ETH_IPV6_LEN 40 //ipv6_len(40) #define IPV6_TCP_OPTION_LEN_INDEX 52 //ipv6_len(40) + tcp_head_len_index(12) #define IPV6_UDP_PALYLOAD_START_INDEX 48 //ipv6_len(40) + udp_len(8) #define IPV6_IP_PAYLOAD_INDEX 4 //ipv6_payload_index(4) int swap_payload2byte(char *str, int endlen) { char temp; if(endlen<4){ //最少满足2个16bit的长度,即最小4字节。 return 0; } //这样交换是别面校验和不对的问题 for(int i=1; iptcpdetail->pdata; trans_layload_len = a_stream->ptcpdetail->datalen; if((p_trans_payload==NULL)||(trans_layload_len<=4)){ FS_operate(g_tsg_para.fs2_handle, g_tsg_para.fs2_field_id[TSG_FS2_TAMPER_FAILED_PLOAD_LESS_4], 0, FS_OP_ADD, 1); MESA_handle_runtime_log(g_tsg_para.logger, RLOG_LV_DEBUG, __FUNCTION__, "Addr: %s, try send num %ld ptcpdetail->pdata %p, ptcpdetail->datalen %d rawpkt %p , but packet is not tamper because the payload is too short or there is no payload", PRINTADDR(a_stream, g_tsg_para.level), *tamper_count, p_trans_payload, trans_layload_len, raw_pkt); return -1; } memcpy(tamper_buf, p_trans_payload, trans_layload_len); tamper_index = swap_payload2byte(tamper_buf, trans_layload_len); if(tamper_index > 0 ){ if(0 == tsg_send_inject_packet(a_stream, SIO_DEFAULT, tamper_buf, trans_layload_len, a_stream->routedir)){ FS_operate(g_tsg_para.fs2_handle, g_tsg_para.fs2_field_id[TSG_FS2_SUCESS_TAMPER], 0, FS_OP_ADD, 1); MESA_handle_runtime_log(g_tsg_para.logger, RLOG_LV_DEBUG, __FUNCTION__, "Addr: %s, try send num %ld ptcpdetail->pdata %p, ptcpdetail->datalen %d rawpkt %p, modify the index(%d) position of the payload:(old: %02x %02x %02x %02x, new: %02x %02x %02x %02x)", PRINTADDR(a_stream, g_tsg_para.level), *tamper_count, p_trans_payload, trans_layload_len, raw_pkt, tamper_index, (uint8_t)p_trans_payload[tamper_index-1], (uint8_t)p_trans_payload[tamper_index], (uint8_t)p_trans_payload[tamper_index+1], (uint8_t)p_trans_payload[tamper_index+2], (uint8_t)tamper_buf[tamper_index-1], (uint8_t)tamper_buf[tamper_index], (uint8_t)tamper_buf[tamper_index+1], (uint8_t)tamper_buf[tamper_index+2]); return 0; } } FS_operate(g_tsg_para.fs2_handle, g_tsg_para.fs2_field_id[TSG_FS2_TAMPER_FAILED_NOSWAP], 0, FS_OP_ADD, 1); MESA_handle_runtime_log(g_tsg_para.logger, RLOG_LV_DEBUG, __FUNCTION__, "Addr: %s, try send num %ld ptcpdetail->pdata %p, ptcpdetail->datalen %d rawpkt %p, payload tamper failed because payload data same", PRINTADDR(a_stream, g_tsg_para.level), *tamper_count, p_trans_payload, trans_layload_len, raw_pkt); return -1; }