-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathicmp_packet.c
406 lines (368 loc) · 12.8 KB
/
icmp_packet.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
/*
* Copyright 2013 Google Inc.
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation; either version 2
* of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
* 02110-1301, USA.
*/
/*
* Author: [email protected] (Neal Cardwell)
*
* Implementation for module for formatting ICMP packets.
*/
#include "icmp_packet.h"
#include "icmp.h"
#include "icmpv6.h"
#include "ip_packet.h"
/* A table entry mapping an ICMP code string to byte. */
struct icmp_code_info {
u8 code_byte; /* type byte on the wire */
const char *code_string; /* human-readable code */
};
/* A table entry mapping an ICMP type string to byte and code table. */
struct icmp_type_info {
u8 type_byte; /* type byte on the wire */
const char *type_string; /* human-readable type */
const struct icmp_code_info *code_table; /* codes for this type */
};
/* Values for the 'code' byte of an IPv4 ICMP_DEST_UNREACH header (RFC 1700). */
struct icmp_code_info icmpv4_unreachable_codes[] = {
{ ICMP_NET_UNREACH, "net_unreachable" },
{ ICMP_HOST_UNREACH, "host_unreachable" },
{ ICMP_PROT_UNREACH, "protocol_unreachable" },
{ ICMP_PORT_UNREACH, "port_unreachable" },
{ ICMP_FRAG_NEEDED, "frag_needed" },
{ ICMP_SR_FAILED, "source_route_failed" },
{ ICMP_NET_UNKNOWN, "net_unknown" },
{ ICMP_HOST_UNKNOWN, "host_unknown" },
{ ICMP_HOST_ISOLATED, "source_host_isolated" },
{ ICMP_NET_ANO, "net_prohibited" },
{ ICMP_HOST_ANO, "host_prohibited" },
{ ICMP_NET_UNR_TOS, "net_unreachable_for_tos" },
{ ICMP_HOST_UNR_TOS, "host_unreachable_for_tos" },
{ ICMP_PKT_FILTERED, "packet_filtered" },
{ ICMP_PREC_VIOLATION, "precedence_violation" },
{ ICMP_PREC_CUTOFF, "precedence_cutoff" },
{ 0, NULL },
};
/* Information about the supported types of ICMPv4 header (RFC 1700). */
struct icmp_type_info icmpv4_types[] = {
{ ICMP_ECHOREPLY, "echo_reply" },
{ ICMP_DEST_UNREACH, "unreachable", icmpv4_unreachable_codes },
{ ICMP_SOURCE_QUENCH, "source_quench" },
{ ICMP_REDIRECT, "redirect" },
{ ICMP_ECHO, "echo_request" },
{ ICMP_TIME_EXCEEDED, "time_exceeded" },
{ ICMP_PARAMETERPROB, "parameter_problem" },
{ ICMP_TIMESTAMP, "timestamp_request" },
{ ICMP_TIMESTAMPREPLY, "timestamp_reply" },
{ ICMP_INFO_REQUEST, "information_request" },
{ ICMP_INFO_REPLY, "information_reply" },
{ ICMP_ADDRESS, "address_mask_request" },
{ ICMP_ADDRESSREPLY, "address_mask_reply" },
{ 0, NULL, NULL },
};
/* Values for the 'code' byte of an ICMPV6_DEST_UNREACH header (RFC 2463). */
struct icmp_code_info icmpv6_unreachable_codes[] = {
{ ICMP_NET_UNREACH, "net_unreachable" },
{ ICMPV6_NOROUTE, "no_route" },
{ ICMPV6_ADM_PROHIBITED, "admin_prohibited" },
{ ICMPV6_NOT_NEIGHBOUR, "not_neighbour" },
{ ICMPV6_ADDR_UNREACH, "address_unreachable" },
{ ICMPV6_PORT_UNREACH, "port_unreachable" },
{ 0, NULL },
};
/* Values for the 'code' byte of an ICMPV6_TIME_EXCEED header (RFC 2463). */
struct icmp_code_info icmpv6_time_exceed_codes[] = {
{ ICMPV6_EXC_HOPLIMIT, "exceeded_hop_limit" },
{ ICMPV6_EXC_FRAGTIME, "exceeded_frag_time" },
{ 0, NULL },
};
/* Values for the 'code' byte of an ICMPV6_PARAMPROB header (RFC 2463). */
struct icmp_code_info icmpv6_paramprob_codes[] = {
{ ICMPV6_HDR_FIELD, "header_field" },
{ ICMPV6_UNK_NEXTHDR, "unknown_next_header" },
{ ICMPV6_UNK_OPTION, "unknown_option" },
{ 0, NULL },
};
/* Information about the supported types of ICMPv6 header (RFC 2463). */
struct icmp_type_info icmpv6_types[] = {
{ ICMPV6_DEST_UNREACH, "unreachable", icmpv6_unreachable_codes },
{ ICMPV6_PKT_TOOBIG, "packet_too_big" },
{ ICMPV6_TIME_EXCEED, "time_exceeded", icmpv6_time_exceed_codes },
{ ICMPV6_PARAMPROB, "parameter_problem", icmpv6_paramprob_codes },
{ ICMPV6_ECHO_REQUEST, "echo_request" },
{ ICMPV6_ECHO_REPLY, "echo_reply" },
{ 0, NULL, NULL },
};
/* Return the ICMP protocol number for the given address family. */
static int icmp_protocol(int address_family)
{
if (address_family == AF_INET)
return IPPROTO_ICMP;
else if (address_family == AF_INET6)
return IPPROTO_ICMPV6;
else
assert(!"bad ip version");
return 0;
}
/* Return the length in bytes of the ICMP header. */
static int icmp_header_len(int address_family)
{
if (address_family == AF_INET)
return sizeof(struct icmpv4);
else if (address_family == AF_INET6)
return sizeof(struct icmpv6);
else
assert(!"bad ip version");
return 0;
}
/* Fill in ICMPv4 header fields. */
static int set_icmpv4_header(struct icmpv4 *icmpv4, u8 type, u8 code,
s64 mtu, u16 echo_id, char **error)
{
icmpv4->type = type;
icmpv4->code = code;
icmpv4->checksum = htons(0);
if (mtu >= 0) {
if ((type != ICMP_DEST_UNREACH) || (code != ICMP_FRAG_NEEDED)) {
asprintf(error,
"ICMPv4 MTU is only valid for "
"unreachable-frag_needed");
return STATUS_ERR;
}
if (!is_valid_u16(mtu)) {
asprintf(error, "ICMPv4 MTU out of 16-bit range");
return STATUS_ERR;
}
icmpv4->message.frag.mtu = htons(mtu);
}
if (echo_id > 0)
icmpv4->message.echo.id = htons(echo_id);
return STATUS_OK;
}
/* Fill in ICMPv4 header fields. */
static int set_icmpv6_header(struct icmpv6 *icmpv6, u8 type, u8 code,
s64 mtu, u16 echo_id, char **error)
{
icmpv6->type = type;
icmpv6->code = code;
icmpv6->checksum = htons(0);
if (mtu >= 0) {
if ((type != ICMPV6_PKT_TOOBIG) || (code != 0)) {
asprintf(error,
"ICMPv6 MTU is only valid for "
"packet_too_big-0");
return STATUS_ERR;
}
if (!is_valid_u32(mtu)) {
asprintf(error, "ICMPv6 MTU out of 32-bit range");
return STATUS_ERR;
}
icmpv6->message.packet_too_big.mtu = htonl(mtu);
}
if (echo_id > 0) {
icmpv6->message.u_echo.identifier = htons(echo_id);
}
return STATUS_OK;
}
/* Populate ICMP header fields. */
static int set_packet_icmp_header(struct packet *packet, void *icmp,
int address_family, int icmp_bytes,
u8 type, u8 code, s64 mtu, u16 echo_id,
char **error)
{
struct header *icmp_header = NULL;
if (address_family == AF_INET) {
struct icmpv4 *icmpv4 = (struct icmpv4 *) icmp;
packet->icmpv4 = icmpv4;
assert(packet->icmpv6 == NULL);
icmp_header = packet_append_header(packet, HEADER_ICMPV4,
sizeof(*icmpv4));
icmp_header->total_bytes = icmp_bytes;
return set_icmpv4_header(icmpv4, type, code, mtu, echo_id, error);
} else if (address_family == AF_INET6) {
struct icmpv6 *icmpv6 = (struct icmpv6 *) icmp;
packet->icmpv6 = icmpv6;
assert(packet->icmpv4 == NULL);
icmp_header = packet_append_header(packet, HEADER_ICMPV6,
sizeof(*icmpv6));
icmp_header->total_bytes = icmp_bytes;
return set_icmpv6_header(icmpv6, type, code, mtu, echo_id, error);
} else {
assert(!"bad ip_version in config");
}
return STATUS_ERR;
}
/* Parse the given ICMP type and code strings, and fill in the
* *type and *code with the results. If there is an error during
* parsing, fill in *error and return STATUS_ERR; otherwise return
* STATUS_OK.
*/
static int parse_icmp_type_and_code(int address_family,
const char *type_string,
const char *code_string,
s32 *type, s32 *code, char **error)
{
int i = 0;
const struct icmp_type_info *icmp_types = NULL;
const struct icmp_code_info *code_table = NULL; /* for this type */
if (address_family == AF_INET)
icmp_types = icmpv4_types;
else if (address_family == AF_INET6)
icmp_types = icmpv6_types;
else
assert(!"bad ip_version in config");
/* Parse the type string. */
if (sscanf(type_string, "type_%d", type) == 1) {
/* Legal but non-standard type in tcpdump-inspired notation. */
} else {
/* Look in our table of known types. */
for (i = 0; icmp_types[i].type_string != NULL; ++i) {
if (!strcmp(type_string, icmp_types[i].type_string)) {
*type = icmp_types[i].type_byte;
code_table = icmp_types[i].code_table;
}
}
}
if (!is_valid_u8(*type)) {
asprintf(error, "bad ICMP type %s", type_string);
return STATUS_ERR;
}
/* Parse the code string. */
if (code_string == NULL) {
*code = 0; /* missing code means code = 0 */
} else if (sscanf(code_string, "code_%d", code) == 1) {
/* Legal but non-standard code in tcpdump-inspired notation. */
} else if (code_table != NULL) {
/* Look in our table of known codes. */
for (i = 0; code_table[i].code_string != NULL; ++i) {
if (!strcmp(code_string, code_table[i].code_string))
*code = code_table[i].code_byte;
}
}
if (!is_valid_u8(*code)) {
asprintf(error, "bad ICMP code %s", code_string);
return STATUS_ERR;
}
return STATUS_OK;
}
struct packet *new_icmp_packet(int address_family,
enum direction_t direction,
const char *type_string,
const char *code_string,
int protocol,
u32 tcp_start_sequence,
u32 payload_bytes,
struct ip_info ip_info,
s64 mtu,
s64 echo_id,
char **error)
{
s32 type = -1; /* bad type; means "unknown so far" */
s32 code = -1; /* bad code; means "unknown so far" */
struct packet *packet = NULL; /* the newly-allocated result packet */
/* Calculate lengths in bytes of all sections of the packet.
* For TCP/UDP, for now we only support the most common ICMP message
* format, which includes at the end the original outgoing IP
* header and the first 8 bytes after that (which will
* typically have the port info needed to demux the message).
* For RAW, we pad the icmp packet with 0 and the total length is
* payload_bytes.
*/
const int ip_fixed_bytes = ip_header_min_len(address_family);
const int ip_option_bytes = 0;
const int ip_header_bytes = ip_fixed_bytes + ip_option_bytes;
int echoed_bytes = 0;
int icmp_bytes = 0;
int ip_bytes = 0;
if (protocol == IPPROTO_TCP || protocol == IPPROTO_UDP) {
echoed_bytes = ip_fixed_bytes + ICMP_ECHO_BYTES;
icmp_bytes = icmp_header_len(address_family) + echoed_bytes;
ip_bytes = ip_header_bytes + icmp_bytes;
} else if (protocol == IPPROTO_RAW) {
echoed_bytes = 0;
icmp_bytes = payload_bytes;
ip_bytes = ip_header_bytes + payload_bytes;
}
/* Sanity-check on echo_id to make sure it fits in u16 */
if (echo_id < 0 || echo_id > 65535) {
asprintf(error,
"invalid echo_id, must be between 0 and 65535");
goto error_out;
}
/* Sanity-check all the various lengths */
if (ip_option_bytes & 0x3) {
asprintf(error, "IP options are not padded correctly "
"to ensure IP header is a multiple of 4 bytes: "
"%d excess bytes", ip_option_bytes & 0x3);
goto error_out;
}
assert((ip_header_bytes & 0x3) == 0);
if (icmp_bytes < icmp_header_len(address_family)) {
asprintf(error, "icmp_bytes %d smaller than icmp header "
"length %d",
icmp_bytes, icmp_header_len(address_family));
goto error_out;
}
/* Parse the ICMP type and code */
if (parse_icmp_type_and_code(address_family, type_string, code_string,
&type, &code, error))
goto error_out;
assert(is_valid_u8(type));
assert(is_valid_u8(code));
/* Allocate and zero out a packet object of the desired size */
packet = packet_new(ip_bytes);
memset(packet->buffer, 0, ip_bytes);
packet->direction = direction;
packet->flags = 0;
packet->tos_chk = ip_info.tos.check;
/* Set IP header fields */
set_packet_ip_header(packet, address_family, ip_bytes, ip_info.tos.value,
ip_info.flow_label, ip_info.ttl,
icmp_protocol(address_family));
/* Find the start of the ICMP header and then populate common fields. */
void *icmp_header = ip_start(packet) + ip_header_bytes;
if (set_packet_icmp_header(packet, icmp_header, address_family,
icmp_bytes, type, code, mtu, echo_id, error))
goto error_out;
/* All ICMP message types currently supported by this tool
* include a copy of the outbound IP header and the first few
* bytes inside. To ensure that the inbound ICMP message gets
* demuxed to the correct socket in the kernel, here we
* construct enough of a basic IP header and during test
* execution we fill in the port numbers and (if specified)
* TCP sequence number in the TCP header.
*/
if (echoed_bytes) {
u8 *echoed_ip = packet_echoed_ip_header(packet);
const int echoed_ip_bytes = (ip_fixed_bytes +
layer4_header_len(protocol) +
payload_bytes);
set_ip_header(echoed_ip, address_family, echoed_ip_bytes,
0, 0, 0, protocol);
if (protocol == IPPROTO_TCP) {
u32 *seq = packet_echoed_tcp_seq(packet);
*seq = htonl(tcp_start_sequence);
}
packet->echoed_header = true;
} else
packet->echoed_header = false;
packet->ip_bytes = ip_bytes;
return packet;
error_out:
if (packet != NULL)
packet_free(packet);
return NULL;
}