5 * Copyright (C) 1997-1998 by Darren Reed.
7 * See the IPFILTER.LICENCE file for details on licencing.
9 * Id: iplang_y.y,v 2.9.2.2 2004/12/09 19:41:10 darrenr Exp
16 #if !defined(__SVR4) && !defined(__svr4__)
19 #include <sys/byteorder.h>
21 #include <sys/types.h>
23 #include <sys/param.h>
28 #include <sys/socket.h>
29 #include <netinet/in.h>
30 #include <netinet/in_systm.h>
31 #include <netinet/ip.h>
33 #include <netinet/ip_var.h>
37 #include <netinet/if_ether.h>
40 #include <arpa/nameser.h>
41 #include <arpa/inet.h>
45 #include "ip_compat.h"
49 #if !defined(__NetBSD__) && (!defined(__FreeBSD_version) && \
50 __FreeBSD_version < 400020) && (!SOLARIS || SOLARIS2 < 10)
51 extern struct ether_addr *ether_aton __P((char *));
55 extern struct ipopt_names ionames[];
56 extern int state, state, lineNum, token;
60 int yylex __P((void));
62 #if !defined(ultrix) && !defined(hpux)
68 iface_t *iflist = NULL, **iftail = &iflist;
70 arp_t *arplist = NULL, **arptail = &arplist, *carp = NULL;
71 struct in_addr defrouter;
74 u_short c_chksum __P((u_short *, u_int, u_long));
75 u_long p_chksum __P((u_short *, u_int));
77 u_long ipbuffer[67584/sizeof(u_long)]; /* 66K */
78 aniphdr_t *aniphead = NULL, *canip = NULL, **aniptail = &aniphead;
82 icmphdr_t *icmp = NULL;
89 struct in_addr getipv4addr __P((char *arg));
90 u_short getportnum __P((char *, char *));
91 struct ether_addr *geteaddr __P((char *, struct ether_addr *));
92 void *new_header __P((int));
93 void free_aniplist __P((void));
94 void inc_anipheaders __P((int));
95 void new_data __P((void));
96 void set_datalen __P((char **));
97 void set_datafile __P((char **));
98 void set_data __P((char **));
99 void new_packet __P((void));
100 void set_ipv4proto __P((char **));
101 void set_ipv4src __P((char **));
102 void set_ipv4dst __P((char **));
103 void set_ipv4off __P((char **));
104 void set_ipv4v __P((char **));
105 void set_ipv4hl __P((char **));
106 void set_ipv4ttl __P((char **));
107 void set_ipv4tos __P((char **));
108 void set_ipv4id __P((char **));
109 void set_ipv4sum __P((char **));
110 void set_ipv4len __P((char **));
111 void new_tcpheader __P((void));
112 void set_tcpsport __P((char **));
113 void set_tcpdport __P((char **));
114 void set_tcpseq __P((char **));
115 void set_tcpack __P((char **));
116 void set_tcpoff __P((char **));
117 void set_tcpurp __P((char **));
118 void set_tcpwin __P((char **));
119 void set_tcpsum __P((char **));
120 void set_tcpflags __P((char **));
121 void set_tcpopt __P((int, char **));
122 void end_tcpopt __P((void));
123 void new_udpheader __P((void));
124 void set_udplen __P((char **));
125 void set_udpsum __P((char **));
126 void prep_packet __P((void));
127 void packet_done __P((void));
128 void new_interface __P((void));
129 void check_interface __P((void));
130 void set_ifname __P((char **));
131 void set_ifmtu __P((int));
132 void set_ifv4addr __P((char **));
133 void set_ifeaddr __P((char **));
134 void new_arp __P((void));
135 void set_arpeaddr __P((char **));
136 void set_arpv4addr __P((char **));
137 void reset_send __P((void));
138 void set_sendif __P((char **));
139 void set_sendvia __P((char **));
140 void set_defaultrouter __P((char **));
141 void new_icmpheader __P((void));
142 void set_icmpcode __P((int));
143 void set_icmptype __P((int));
144 void set_icmpcodetok __P((char **));
145 void set_icmptypetok __P((char **));
146 void set_icmpid __P((int));
147 void set_icmpseq __P((int));
148 void set_icmpotime __P((int));
149 void set_icmprtime __P((int));
150 void set_icmpttime __P((int));
151 void set_icmpmtu __P((int));
152 void set_redir __P((int, char **));
153 void new_ipv4opt __P((void));
154 void set_icmppprob __P((int));
155 void add_ipopt __P((int, void *));
156 void end_ipopt __P((void));
157 void set_secclass __P((char **));
158 void free_anipheader __P((void));
159 void end_ipv4 __P((void));
160 void end_icmp __P((void));
161 void end_udp __P((void));
162 void end_tcp __P((void));
163 void end_data __P((void));
164 void yyerror __P((char *));
165 void iplang __P((FILE *));
166 int arp_getipv4 __P((char *, char *));
167 int yyparse __P((void));
173 %token <num> IL_NUMBER
174 %type <num> number digits optnumber
175 %token <str> IL_TOKEN
176 %type <str> token optoken
177 %token IL_HEXDIGIT IL_COLON IL_DOT IL_EOF IL_COMMENT
178 %token IL_INTERFACE IL_IFNAME IL_MTU IL_EADDR
179 %token IL_IPV4 IL_V4PROTO IL_V4SRC IL_V4DST IL_V4OFF IL_V4V IL_V4HL IL_V4TTL
180 %token IL_V4TOS IL_V4SUM IL_V4LEN IL_V4OPT IL_V4ID
181 %token IL_TCP IL_SPORT IL_DPORT IL_TCPFL IL_TCPSEQ IL_TCPACK IL_TCPOFF
182 %token IL_TCPWIN IL_TCPSUM IL_TCPURP IL_TCPOPT IL_TCPO_NOP IL_TCPO_EOL
183 %token IL_TCPO_MSS IL_TCPO_WSCALE IL_TCPO_TS
184 %token IL_UDP IL_UDPLEN IL_UDPSUM
185 %token IL_ICMP IL_ICMPTYPE IL_ICMPCODE
186 %token IL_SEND IL_VIA
189 %token IL_SUM IL_OFF IL_LEN IL_V4ADDR IL_OPT
190 %token IL_DATA IL_DLEN IL_DVALUE IL_DFILE
191 %token IL_IPO_NOP IL_IPO_RR IL_IPO_ZSU IL_IPO_MTUP IL_IPO_MTUR IL_IPO_EOL
192 %token IL_IPO_TS IL_IPO_TR IL_IPO_SEC IL_IPO_LSRR IL_IPO_ESEC
193 %token IL_IPO_SATID IL_IPO_SSRR IL_IPO_ADDEXT IL_IPO_VISA IL_IPO_IMITD
194 %token IL_IPO_EIP IL_IPO_FINN IL_IPO_SECCLASS IL_IPO_CIPSO IL_IPO_ENCODE
195 %token <str> IL_IPS_RESERV4 IL_IPS_TOPSECRET IL_IPS_SECRET IL_IPS_RESERV3
196 %token <str> IL_IPS_CONFID IL_IPS_UNCLASS IL_IPS_RESERV2 IL_IPS_RESERV1
197 %token IL_ICMP_ECHOREPLY IL_ICMP_UNREACH IL_ICMP_UNREACH_NET
198 %token IL_ICMP_UNREACH_HOST IL_ICMP_UNREACH_PROTOCOL IL_ICMP_UNREACH_PORT
199 %token IL_ICMP_UNREACH_NEEDFRAG IL_ICMP_UNREACH_SRCFAIL
200 %token IL_ICMP_UNREACH_NET_UNKNOWN IL_ICMP_UNREACH_HOST_UNKNOWN
201 %token IL_ICMP_UNREACH_ISOLATED IL_ICMP_UNREACH_NET_PROHIB
202 %token IL_ICMP_UNREACH_HOST_PROHIB IL_ICMP_UNREACH_TOSNET
203 %token IL_ICMP_UNREACH_TOSHOST IL_ICMP_UNREACH_FILTER_PROHIB
204 %token IL_ICMP_UNREACH_HOST_PRECEDENCE IL_ICMP_UNREACH_PRECEDENCE_CUTOFF
205 %token IL_ICMP_SOURCEQUENCH IL_ICMP_REDIRECT IL_ICMP_REDIRECT_NET
206 %token IL_ICMP_REDIRECT_HOST IL_ICMP_REDIRECT_TOSNET
207 %token IL_ICMP_REDIRECT_TOSHOST IL_ICMP_ECHO IL_ICMP_ROUTERADVERT
208 %token IL_ICMP_ROUTERSOLICIT IL_ICMP_TIMXCEED IL_ICMP_TIMXCEED_INTRANS
209 %token IL_ICMP_TIMXCEED_REASS IL_ICMP_PARAMPROB IL_ICMP_PARAMPROB_OPTABSENT
210 %token IL_ICMP_TSTAMP IL_ICMP_TSTAMPREPLY IL_ICMP_IREQ IL_ICMP_IREQREPLY
211 %token IL_ICMP_MASKREQ IL_ICMP_MASKREPLY IL_ICMP_SEQ IL_ICMP_ID
212 %token IL_ICMP_OTIME IL_ICMP_RTIME IL_ICMP_TTIME
228 iface: ifhdr '{' ifaceopts '}' ';' { check_interface(); }
231 ifhdr: IL_INTERFACE { new_interface(); }
240 IL_IFNAME token { set_ifname(&$2); }
241 | IL_MTU number { set_ifmtu($2); }
242 | IL_V4ADDR token { set_ifv4addr(&$2); }
243 | IL_EADDR token { set_ifeaddr(&$2); }
246 send: sendhdr '{' sendbody '}' ';' { packet_done(); }
247 | sendhdr ';' { packet_done(); }
251 IL_SEND { reset_send(); }
260 IL_IFNAME token { set_sendif(&$2); }
261 | IL_VIA token { set_sendvia(&$2); }
264 arp: arphdr '{' arpbody '}' ';'
267 arphdr: IL_ARP { new_arp(); }
275 arpopt: IL_V4ADDR token { set_arpv4addr(&$2); }
276 | IL_EADDR token { set_arpeaddr(&$2); }
280 IL_DEFROUTER token { set_defaultrouter(&$2); }
291 ipline: ipv4 '{' ipv4body '}' ';' { end_ipv4(); }
294 ipv4: IL_IPV4 { new_packet(); }
303 IL_V4PROTO token { set_ipv4proto(&$2); }
304 | IL_V4SRC token { set_ipv4src(&$2); }
305 | IL_V4DST token { set_ipv4dst(&$2); }
306 | IL_V4OFF token { set_ipv4off(&$2); }
307 | IL_V4V token { set_ipv4v(&$2); }
308 | IL_V4HL token { set_ipv4hl(&$2); }
309 | IL_V4ID token { set_ipv4id(&$2); }
310 | IL_V4TTL token { set_ipv4ttl(&$2); }
311 | IL_V4TOS token { set_ipv4tos(&$2); }
312 | IL_V4SUM token { set_ipv4sum(&$2); }
313 | IL_V4LEN token { set_ipv4len(&$2); }
314 | ipv4opt '{' ipv4optlist '}' ';' { end_ipopt(); }
317 tcp: IL_TCP { new_tcpheader(); }
321 '{' tcpheader '}' ';' { end_tcp(); }
331 IL_SPORT token { set_tcpsport(&$2); }
332 | IL_DPORT token { set_tcpdport(&$2); }
333 | IL_TCPSEQ token { set_tcpseq(&$2); }
334 | IL_TCPACK token { set_tcpack(&$2); }
335 | IL_TCPOFF token { set_tcpoff(&$2); }
336 | IL_TCPURP token { set_tcpurp(&$2); }
337 | IL_TCPWIN token { set_tcpwin(&$2); }
338 | IL_TCPSUM token { set_tcpsum(&$2); }
339 | IL_TCPFL token { set_tcpflags(&$2); }
340 | IL_TCPOPT '{' tcpopts '}' ';' { end_tcpopt(); }
347 tcpopt: IL_TCPO_NOP ';' { set_tcpopt(IL_TCPO_NOP, NULL); }
348 | IL_TCPO_EOL ';' { set_tcpopt(IL_TCPO_EOL, NULL); }
349 | IL_TCPO_MSS optoken { set_tcpopt(IL_TCPO_MSS,&$2);}
350 | IL_TCPO_WSCALE optoken { set_tcpopt(IL_TCPO_WSCALE,&$2);}
351 | IL_TCPO_TS optoken { set_tcpopt(IL_TCPO_TS, &$2);}
354 udp: IL_UDP { new_udpheader(); }
358 '{' udpheader '}' ';' { end_udp(); }
369 IL_SPORT token { set_tcpsport(&$2); }
370 | IL_DPORT token { set_tcpdport(&$2); }
371 | IL_UDPLEN token { set_udplen(&$2); }
372 | IL_UDPSUM token { set_udpsum(&$2); }
375 icmp: IL_ICMP { new_icmpheader(); }
379 '{' icmpbody '}' ';' { end_icmp(); }
384 | icmpheader bodyline
389 | IL_ICMPTYPE icmptype icmpcode
393 IL_ICMPCODE token { set_icmpcodetok(&$2); }
397 IL_ICMP_ECHOREPLY ';' { set_icmptype(ICMP_ECHOREPLY); }
398 | IL_ICMP_ECHOREPLY '{' icmpechoopts '}' ';'
400 | IL_ICMP_SOURCEQUENCH ';' { set_icmptype(ICMP_SOURCEQUENCH); }
402 | IL_ICMP_ROUTERADVERT ';' { set_icmptype(ICMP_ROUTERADVERT); }
403 | IL_ICMP_ROUTERSOLICIT ';' { set_icmptype(ICMP_ROUTERSOLICIT); }
404 | IL_ICMP_ECHO ';' { set_icmptype(ICMP_ECHO); }
405 | IL_ICMP_ECHO '{' icmpechoopts '}' ';'
406 | IL_ICMP_TIMXCEED ';' { set_icmptype(ICMP_TIMXCEED); }
407 | IL_ICMP_TIMXCEED '{' exceed '}' ';'
408 | IL_ICMP_TSTAMP ';' { set_icmptype(ICMP_TSTAMP); }
409 | IL_ICMP_TSTAMPREPLY ';' { set_icmptype(ICMP_TSTAMPREPLY); }
410 | IL_ICMP_TSTAMPREPLY '{' icmptsopts '}' ';'
411 | IL_ICMP_IREQ ';' { set_icmptype(ICMP_IREQ); }
412 | IL_ICMP_IREQREPLY ';' { set_icmptype(ICMP_IREQREPLY); }
413 | IL_ICMP_IREQREPLY '{' data dataline '}' ';'
414 | IL_ICMP_MASKREQ ';' { set_icmptype(ICMP_MASKREQ); }
415 | IL_ICMP_MASKREPLY ';' { set_icmptype(ICMP_MASKREPLY); }
416 | IL_ICMP_MASKREPLY '{' token '}' ';'
417 | IL_ICMP_PARAMPROB ';' { set_icmptype(ICMP_PARAMPROB); }
418 | IL_ICMP_PARAMPROB '{' paramprob '}' ';'
419 | IL_TOKEN ';' { set_icmptypetok(&$1); }
423 | icmpechoopts icmpecho
427 IL_ICMP_SEQ number { set_icmpseq($2); }
428 | IL_ICMP_ID number { set_icmpid($2); }
432 | icmptsopts icmpts ';'
435 icmpts: IL_ICMP_OTIME number { set_icmpotime($2); }
436 | IL_ICMP_RTIME number { set_icmprtime($2); }
437 | IL_ICMP_TTIME number { set_icmpttime($2); }
442 | IL_ICMP_UNREACH '{' unreachopts '}' ';'
446 IL_ICMP_UNREACH_NET line
447 | IL_ICMP_UNREACH_HOST line
448 | IL_ICMP_UNREACH_PROTOCOL line
449 | IL_ICMP_UNREACH_PORT line
450 | IL_ICMP_UNREACH_NEEDFRAG number ';' { set_icmpmtu($2); }
451 | IL_ICMP_UNREACH_SRCFAIL line
452 | IL_ICMP_UNREACH_NET_UNKNOWN line
453 | IL_ICMP_UNREACH_HOST_UNKNOWN line
454 | IL_ICMP_UNREACH_ISOLATED line
455 | IL_ICMP_UNREACH_NET_PROHIB line
456 | IL_ICMP_UNREACH_HOST_PROHIB line
457 | IL_ICMP_UNREACH_TOSNET line
458 | IL_ICMP_UNREACH_TOSHOST line
459 | IL_ICMP_UNREACH_FILTER_PROHIB line
460 | IL_ICMP_UNREACH_HOST_PRECEDENCE line
461 | IL_ICMP_UNREACH_PRECEDENCE_CUTOFF line
466 | IL_ICMP_REDIRECT '{' redirectopts '}' ';'
470 | IL_ICMP_REDIRECT_NET token { set_redir(0, &$2); }
471 | IL_ICMP_REDIRECT_HOST token { set_redir(1, &$2); }
472 | IL_ICMP_REDIRECT_TOSNET token { set_redir(2, &$2); }
473 | IL_ICMP_REDIRECT_TOSHOST token { set_redir(3, &$2); }
477 IL_ICMP_TIMXCEED_INTRANS line
478 | IL_ICMP_TIMXCEED_REASS line
482 IL_ICMP_PARAMPROB_OPTABSENT
483 | IL_ICMP_PARAMPROB_OPTABSENT paraprobarg
486 '{' number '}' ';' { set_icmppprob($2); }
489 ipv4opt: IL_V4OPT { new_ipv4opt(); }
493 | ipv4opts ipv4optlist
497 IL_IPO_NOP ';' { add_ipopt(IL_IPO_NOP, NULL); }
498 | IL_IPO_RR optnumber { add_ipopt(IL_IPO_RR, &$2); }
499 | IL_IPO_ZSU ';' { add_ipopt(IL_IPO_ZSU, NULL); }
500 | IL_IPO_MTUP ';' { add_ipopt(IL_IPO_MTUP, NULL); }
501 | IL_IPO_MTUR ';' { add_ipopt(IL_IPO_MTUR, NULL); }
502 | IL_IPO_ENCODE ';' { add_ipopt(IL_IPO_ENCODE, NULL); }
503 | IL_IPO_TS ';' { add_ipopt(IL_IPO_TS, NULL); }
504 | IL_IPO_TR ';' { add_ipopt(IL_IPO_TR, NULL); }
505 | IL_IPO_SEC ';' { add_ipopt(IL_IPO_SEC, NULL); }
506 | IL_IPO_SECCLASS secclass { add_ipopt(IL_IPO_SECCLASS, sclass); }
507 | IL_IPO_LSRR token { add_ipopt(IL_IPO_LSRR,&$2); }
508 | IL_IPO_ESEC ';' { add_ipopt(IL_IPO_ESEC, NULL); }
509 | IL_IPO_CIPSO ';' { add_ipopt(IL_IPO_CIPSO, NULL); }
510 | IL_IPO_SATID optnumber { add_ipopt(IL_IPO_SATID,&$2);}
511 | IL_IPO_SSRR token { add_ipopt(IL_IPO_SSRR,&$2); }
512 | IL_IPO_ADDEXT ';' { add_ipopt(IL_IPO_ADDEXT, NULL); }
513 | IL_IPO_VISA ';' { add_ipopt(IL_IPO_VISA, NULL); }
514 | IL_IPO_IMITD ';' { add_ipopt(IL_IPO_IMITD, NULL); }
515 | IL_IPO_EIP ';' { add_ipopt(IL_IPO_EIP, NULL); }
516 | IL_IPO_FINN ';' { add_ipopt(IL_IPO_FINN, NULL); }
520 IL_IPS_RESERV4 ';' { set_secclass(&$1); }
521 | IL_IPS_TOPSECRET ';' { set_secclass(&$1); }
522 | IL_IPS_SECRET ';' { set_secclass(&$1); }
523 | IL_IPS_RESERV3 ';' { set_secclass(&$1); }
524 | IL_IPS_CONFID ';' { set_secclass(&$1); }
525 | IL_IPS_UNCLASS ';' { set_secclass(&$1); }
526 | IL_IPS_RESERV2 ';' { set_secclass(&$1); }
527 | IL_IPS_RESERV1 ';' { set_secclass(&$1); }
530 data: IL_DATA { new_data(); }
534 '{' databody '}' ';' { end_data(); }
542 IL_DLEN token { set_datalen(&$2); }
543 | IL_DVALUE token { set_data(&$2); }
544 | IL_DFILE token { set_datafile(&$2); }
550 optoken: ';' { $$ = ""; }
557 optnumber: ';' { $$ = 0; }
566 struct statetoopt toipopts[] = {
567 { IL_IPO_NOP, IPOPT_NOP },
568 { IL_IPO_RR, IPOPT_RR },
569 { IL_IPO_ZSU, IPOPT_ZSU },
570 { IL_IPO_MTUP, IPOPT_MTUP },
571 { IL_IPO_MTUR, IPOPT_MTUR },
572 { IL_IPO_ENCODE, IPOPT_ENCODE },
573 { IL_IPO_TS, IPOPT_TS },
574 { IL_IPO_TR, IPOPT_TR },
575 { IL_IPO_SEC, IPOPT_SECURITY },
576 { IL_IPO_SECCLASS, IPOPT_SECURITY },
577 { IL_IPO_LSRR, IPOPT_LSRR },
578 { IL_IPO_ESEC, IPOPT_E_SEC },
579 { IL_IPO_CIPSO, IPOPT_CIPSO },
580 { IL_IPO_SATID, IPOPT_SATID },
581 { IL_IPO_SSRR, IPOPT_SSRR },
582 { IL_IPO_ADDEXT, IPOPT_ADDEXT },
583 { IL_IPO_VISA, IPOPT_VISA },
584 { IL_IPO_IMITD, IPOPT_IMITD },
585 { IL_IPO_EIP, IPOPT_EIP },
586 { IL_IPO_FINN, IPOPT_FINN },
590 struct statetoopt tosecopts[] = {
591 { IL_IPS_RESERV4, IPSO_CLASS_RES4 },
592 { IL_IPS_TOPSECRET, IPSO_CLASS_TOPS },
593 { IL_IPS_SECRET, IPSO_CLASS_SECR },
594 { IL_IPS_RESERV3, IPSO_CLASS_RES3 },
595 { IL_IPS_CONFID, IPSO_CLASS_CONF },
596 { IL_IPS_UNCLASS, IPSO_CLASS_UNCL },
597 { IL_IPS_RESERV2, IPSO_CLASS_RES2 },
598 { IL_IPS_RESERV1, IPSO_CLASS_RES1 },
607 static struct ether_addr n;
610 if (sscanf(s, " %x:%x:%x:%x:%x:%x ", &i[0], &i[1],
611 &i[2], &i[3], &i[4], &i[5]) == 6) {
612 n.ether_addr_octet[0] = (u_char)i[0];
613 n.ether_addr_octet[1] = (u_char)i[1];
614 n.ether_addr_octet[2] = (u_char)i[2];
615 n.ether_addr_octet[3] = (u_char)i[3];
616 n.ether_addr_octet[4] = (u_char)i[4];
617 n.ether_addr_octet[5] = (u_char)i[5];
625 struct in_addr getipv4addr(arg)
631 in.s_addr = 0xffffffff;
633 if ((hp = gethostbyname(arg)))
634 bcopy(hp->h_addr, &in.s_addr, sizeof(struct in_addr));
636 in.s_addr = inet_addr(arg);
641 u_short getportnum(pr, name)
646 if (!(sp = getservbyname(name, pr)))
647 return htons(atoi(name));
652 struct ether_addr *geteaddr(arg, buf)
654 struct ether_addr *buf;
656 struct ether_addr *e;
658 #if !defined(hpux) && !defined(linux)
661 fprintf(stderr, "Invalid ethernet address: %s\n", arg);
664 bcopy(e->octet, buf->octet, sizeof(e->octet));
666 bcopy(e->ether_addr_octet, buf->ether_addr_octet,
667 sizeof(e->ether_addr_octet));
676 void *new_header(type)
679 aniphdr_t *aip, *oip = canip;
682 aip = (aniphdr_t *)calloc(1, sizeof(*aip));
684 aniptail = &aip->ah_next;
689 if (type == IPPROTO_UDP)
690 sz = sizeof(udphdr_t);
691 else if (type == IPPROTO_TCP)
692 sz = sizeof(tcphdr_t);
693 else if (type == IPPROTO_ICMP)
694 sz = sizeof(icmphdr_t);
695 else if (type == IPPROTO_IP)
699 canip->ah_data = oip->ah_data + oip->ah_len;
701 canip->ah_data = (char *)ipbuffer;
704 * Increase the size fields in all wrapping headers.
706 for (aip = aniphead; aip; aip = aip->ah_next) {
708 if (aip->ah_p == IPPROTO_IP)
709 aip->ah_ip->ip_len += sz;
710 else if (aip->ah_p == IPPROTO_UDP)
711 aip->ah_udp->uh_ulen += sz;
713 return (void *)canip->ah_data;
719 aniphdr_t *aip, **aipp = &aniphead;
721 while ((aip = *aipp)) {
722 *aipp = aip->ah_next;
725 aniptail = &aniphead;
729 void inc_anipheaders(inc)
734 for (aip = aniphead; aip; aip = aip->ah_next) {
736 if (aip->ah_p == IPPROTO_IP)
737 aip->ah_ip->ip_len += inc;
738 else if (aip->ah_p == IPPROTO_UDP)
739 aip->ah_udp->uh_ulen += inc;
746 (void) new_header(-1);
751 void set_datalen(arg)
756 len = strtol(*arg, NULL, 0);
757 inc_anipheaders(len);
766 u_char *s = (u_char *)*arg, *t = (u_char *)canip->ah_data, c;
767 int len = 0, todo = 0, quote = 0, val = 0;
774 fprintf(stderr, "octal with %c!\n", c);
780 if (!ISDIGIT(c) || !todo) {
781 *t++ = (u_char)(val & 0xff);
791 fprintf(stderr, "octal with %c!\n", c);
825 *t++ = (u_char)(val & 0xff);
828 len = t - (u_char *)canip->ah_data;
829 inc_anipheaders(len - canip->ah_len);
834 void set_datafile(arg)
841 if ((fd = open(file, O_RDONLY)) == -1) {
846 if (fstat(fd, &sb) == -1) {
851 if ((sb.st_size + aniphead->ah_len ) > 65535) {
852 fprintf(stderr, "data file %s too big to include.\n", file);
856 if ((len = read(fd, canip->ah_data, sb.st_size)) == -1) {
861 inc_anipheaders(len);
862 canip->ah_len += len;
869 static u_short id = 0;
872 bzero((char *)ipbuffer, sizeof(ipbuffer));
874 ip = (ip_t *)new_header(IPPROTO_IP);
875 ip->ip_v = IPVERSION;
876 ip->ip_hl = sizeof(ip_t) >> 2;
877 ip->ip_len = sizeof(ip_t);
879 ip->ip_id = htons(id++);
883 void set_ipv4proto(arg)
888 if ((pr = getprotobyname(*arg)))
889 ip->ip_p = pr->p_proto;
891 if (!(ip->ip_p = atoi(*arg)))
892 fprintf(stderr, "unknown protocol %s\n", *arg);
898 void set_ipv4src(arg)
901 ip->ip_src = getipv4addr(*arg);
907 void set_ipv4dst(arg)
910 ip->ip_dst = getipv4addr(*arg);
916 void set_ipv4off(arg)
919 ip->ip_off = htons(strtol(*arg, NULL, 0));
928 ip->ip_v = strtol(*arg, NULL, 0);
939 newhl = strtol(*arg, NULL, 0);
940 inc = (newhl - ip->ip_hl) << 2;
943 canip->ah_len += inc;
949 void set_ipv4ttl(arg)
952 ip->ip_ttl = strtol(*arg, NULL, 0);
958 void set_ipv4tos(arg)
961 ip->ip_tos = strtol(*arg, NULL, 0);
970 ip->ip_id = htons(strtol(*arg, NULL, 0));
976 void set_ipv4sum(arg)
979 ip->ip_sum = strtol(*arg, NULL, 0);
985 void set_ipv4len(arg)
990 len = strtol(*arg, NULL, 0);
991 inc_anipheaders(len - ip->ip_len);
1001 if ((ip->ip_p) && (ip->ip_p != IPPROTO_TCP)) {
1002 fprintf(stderr, "protocol %d specified with TCP!\n", ip->ip_p);
1005 ip->ip_p = IPPROTO_TCP;
1007 tcp = (tcphdr_t *)new_header(IPPROTO_TCP);
1008 tcp->th_win = htons(4096);
1009 tcp->th_off = sizeof(*tcp) >> 2;
1013 void set_tcpsport(arg)
1019 if (ip->ip_p == IPPROTO_UDP) {
1020 port = &udp->uh_sport;
1023 port = &tcp->th_sport;
1027 *port = getportnum(pr, *arg);
1033 void set_tcpdport(arg)
1039 if (ip->ip_p == IPPROTO_UDP) {
1040 port = &udp->uh_dport;
1043 port = &tcp->th_dport;
1047 *port = getportnum(pr, *arg);
1053 void set_tcpseq(arg)
1056 tcp->th_seq = htonl(strtol(*arg, NULL, 0));
1062 void set_tcpack(arg)
1065 tcp->th_ack = htonl(strtol(*arg, NULL, 0));
1071 void set_tcpoff(arg)
1076 off = strtol(*arg, NULL, 0);
1077 inc_anipheaders((off - tcp->th_off) << 2);
1084 void set_tcpurp(arg)
1087 tcp->th_urp = htons(strtol(*arg, NULL, 0));
1093 void set_tcpwin(arg)
1096 tcp->th_win = htons(strtol(*arg, NULL, 0));
1102 void set_tcpsum(arg)
1105 tcp->th_sum = strtol(*arg, NULL, 0);
1111 void set_tcpflags(arg)
1114 static char flags[] = "ASURPF";
1115 static int flagv[] = { TH_ACK, TH_SYN, TH_URG, TH_RST, TH_PUSH,
1119 for (s = *arg; *s; s++)
1120 if (!(t = strchr(flags, *s))) {
1122 fprintf(stderr, "unknown TCP flag %c\n", *s);
1125 tcp->th_flags = strtol(*arg, NULL, 0);
1128 tcp->th_flags |= flagv[t - flags];
1134 void set_tcpopt(state, arg)
1139 int val, len, val2, pad, optval;
1146 s = (u_char *)tcp + sizeof(*tcp) + canip->ah_optlen;
1161 case IL_TCPO_WSCALE :
1177 * prepend padding - if required.
1180 for (pad = 4 - (len & 3); pad; pad--) {
1187 *s++ = (u_char)optval;
1190 if (len == 3) { /* 1 byte - char */
1192 } else if (len == 4) { /* 2 bytes - short */
1193 *s++ = (u_char)((val >> 8) & 0xff);
1194 *s++ = (u_char)(val & 0xff);
1195 } else if (len >= 6) { /* 4 bytes - long */
1197 bcopy((char *)&val2, s, 4);
1202 *s++ = (u_char)optval;
1204 canip->ah_lastopt = optval;
1205 canip->ah_optlen += len;
1217 char *s = (char *)tcp;
1219 s += sizeof(*tcp) + canip->ah_optlen;
1221 * pad out so that we have a multiple of 4 bytes in size fo the
1222 * options. make sure last byte is EOL.
1224 if (canip->ah_optlen & 3) {
1225 if (canip->ah_lastopt != 1) {
1226 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1234 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1241 tcp->th_off = (sizeof(*tcp) + canip->ah_optlen) >> 2;
1242 inc_anipheaders(canip->ah_optlen);
1246 void new_udpheader()
1248 if ((ip->ip_p) && (ip->ip_p != IPPROTO_UDP)) {
1249 fprintf(stderr, "protocol %d specified with UDP!\n", ip->ip_p);
1252 ip->ip_p = IPPROTO_UDP;
1254 udp = (udphdr_t *)new_header(IPPROTO_UDP);
1255 udp->uh_ulen = sizeof(*udp);
1259 void set_udplen(arg)
1264 len = strtol(*arg, NULL, 0);
1265 inc_anipheaders(len - udp->uh_ulen);
1272 void set_udpsum(arg)
1275 udp->uh_sum = strtol(*arg, NULL, 0);
1284 struct in_addr gwip;
1286 ifp = sending.snd_if;
1288 fprintf(stderr, "no interface defined for sending!\n");
1291 if (ifp->if_fd == -1)
1292 ifp->if_fd = initdevice(ifp->if_name, 5);
1293 gwip = sending.snd_gw;
1295 gwip = aniphead->ah_ip->ip_dst;
1296 (void) send_ip(ifp->if_fd, ifp->if_MTU, (ip_t *)ipbuffer, gwip, 2);
1304 u_char *s = (u_char *)ipbuffer, *t = (u_char *)outline;
1306 if (opts & OPT_VERBOSE) {
1307 ip->ip_len = htons(ip->ip_len);
1308 for (i = ntohs(ip->ip_len), j = 0; i; i--, j++, s++) {
1309 if (j && !(j & 0xf)) {
1312 fputs(outline, stdout);
1314 t = (u_char *)outline;
1317 sprintf((char *)t, "%02x", *s & 0xff);
1319 if (!((j + 1) & 0xf)) {
1321 sprintf((char *)t, " ");
1323 for (k = 16; k; k--, s++)
1324 *t++ = (ISPRINT(*s) ? *s : '.');
1333 for (k = 16 - (j & 0xf); k; k--) {
1338 sprintf((char *)t, " ");
1341 for (k = j & 0xf; k; k--, s++)
1342 *t++ = (ISPRINT(*s) ? *s : '.');
1346 fputs(outline, stdout);
1348 ip->ip_len = ntohs(ip->ip_len);
1356 void new_interface()
1358 cifp = (iface_t *)calloc(1, sizeof(iface_t));
1360 iftail = &cifp->if_next;
1365 void check_interface()
1367 if (!cifp->if_name || !*cifp->if_name)
1368 fprintf(stderr, "No interface name given!\n");
1369 if (!cifp->if_MTU || !*cifp->if_name)
1370 fprintf(stderr, "Interface %s has an MTU of 0!\n",
1375 void set_ifname(arg)
1378 cifp->if_name = *arg;
1390 void set_ifv4addr(arg)
1393 cifp->if_addr = getipv4addr(*arg);
1399 void set_ifeaddr(arg)
1402 (void) geteaddr(*arg, &cifp->if_eaddr);
1410 carp = (arp_t *)calloc(1, sizeof(arp_t));
1412 arptail = &carp->arp_next;
1416 void set_arpeaddr(arg)
1419 (void) geteaddr(*arg, &carp->arp_eaddr);
1425 void set_arpv4addr(arg)
1428 carp->arp_addr = getipv4addr(*arg);
1434 int arp_getipv4(ip, addr)
1440 for (a = arplist; a; a = a->arp_next)
1441 if (!bcmp(ip, (char *)&a->arp_addr, 4)) {
1442 bcopy((char *)&a->arp_eaddr, addr, 6);
1451 sending.snd_if = iflist;
1452 sending.snd_gw = defrouter;
1456 void set_sendif(arg)
1461 for (ifp = iflist; ifp; ifp = ifp->if_next)
1462 if (ifp->if_name && !strcmp(ifp->if_name, *arg))
1464 sending.snd_if = ifp;
1466 fprintf(stderr, "couldn't find interface %s\n", *arg);
1472 void set_sendvia(arg)
1475 sending.snd_gw = getipv4addr(*arg);
1481 void set_defaultrouter(arg)
1484 defrouter = getipv4addr(*arg);
1490 void new_icmpheader()
1492 if ((ip->ip_p) && (ip->ip_p != IPPROTO_ICMP)) {
1493 fprintf(stderr, "protocol %d specified with ICMP!\n",
1497 ip->ip_p = IPPROTO_ICMP;
1498 icmp = (icmphdr_t *)new_header(IPPROTO_ICMP);
1502 void set_icmpcode(code)
1505 icmp->icmp_code = code;
1509 void set_icmptype(type)
1512 icmp->icmp_type = type;
1516 void set_icmpcodetok(code)
1522 for (i = 0; (s = icmpcodes[i]); i++)
1523 if (!strcmp(s, *code)) {
1524 icmp->icmp_code = i;
1528 fprintf(stderr, "unknown ICMP code %s\n", *code);
1534 void set_icmptypetok(type)
1540 for (i = 0; !(s = icmptypes[i]) || strcmp(s, "END"); i++)
1541 if (s && !strcmp(s, *type)) {
1542 icmp->icmp_type = i;
1547 fprintf(stderr, "unknown ICMP type %s\n", *type);
1553 void set_icmpid(arg)
1556 icmp->icmp_id = htons(arg);
1560 void set_icmpseq(arg)
1563 icmp->icmp_seq = htons(arg);
1567 void set_icmpotime(arg)
1570 icmp->icmp_otime = htonl(arg);
1574 void set_icmprtime(arg)
1577 icmp->icmp_rtime = htonl(arg);
1581 void set_icmpttime(arg)
1584 icmp->icmp_ttime = htonl(arg);
1588 void set_icmpmtu(arg)
1592 icmp->icmp_nextmtu = htons(arg);
1597 void set_redir(redir, arg)
1601 icmp->icmp_code = redir;
1602 icmp->icmp_gwaddr = getipv4addr(*arg);
1608 void set_icmppprob(num)
1611 icmp->icmp_pptr = num;
1621 void add_ipopt(state, ptr)
1625 struct ipopt_names *io;
1626 struct statetoopt *sto;
1627 char numbuf[16], *arg, **param = ptr;
1630 if (state == IL_IPO_RR || state == IL_IPO_SATID) {
1632 sprintf(numbuf, "%d", *(int *)param);
1634 strcpy(numbuf, "0");
1637 arg = param ? *param : NULL;
1639 if (canip->ah_next) {
1640 fprintf(stderr, "cannot specify options after data body\n");
1643 for (sto = toipopts; sto->sto_st; sto++)
1644 if (sto->sto_st == state)
1646 if (!sto || !sto->sto_st) {
1647 fprintf(stderr, "No mapping for state %d to IP option\n",
1652 hlen = sizeof(ip_t) + canip->ah_optlen;
1653 for (io = ionames; io->on_name; io++)
1654 if (io->on_value == sto->sto_op)
1656 canip->ah_lastopt = io->on_value;
1659 inc = addipopt((char *)ip + hlen, io, hlen - sizeof(ip_t),arg);
1662 ((char *)ip)[sizeof(*ip) + inc] = IPOPT_NOP;
1663 canip->ah_lastopt = IPOPT_NOP;
1670 canip->ah_optlen = hlen - sizeof(ip_t);
1672 if (state != IL_IPO_RR && state != IL_IPO_SATID)
1673 if (param && *param) {
1684 char *s, *buf = (char *)ip;
1687 * pad out so that we have a multiple of 4 bytes in size fo the
1688 * options. make sure last byte is EOL.
1690 if (canip->ah_lastopt == IPOPT_NOP) {
1691 buf[sizeof(*ip) + canip->ah_optlen - 1] = IPOPT_EOL;
1692 } else if (canip->ah_lastopt != IPOPT_EOL) {
1693 s = buf + sizeof(*ip) + canip->ah_optlen;
1695 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1702 s = buf + sizeof(*ip) + canip->ah_optlen - 1;
1704 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1710 ip->ip_hl = (sizeof(*ip) + canip->ah_optlen) >> 2;
1711 inc_anipheaders(canip->ah_optlen);
1716 void set_secclass(arg)
1724 void free_anipheader()
1729 if ((canip = aip->ah_prev)) {
1730 canip->ah_next = NULL;
1731 aniptail = &canip->ah_next;
1744 ip->ip_len = htons(ip->ip_len);
1745 ip->ip_sum = chksum((u_short *)ip, ip->ip_hl << 2);
1746 ip->ip_len = ntohs(ip->ip_len);
1748 for (aip = aniphead, ip = NULL; aip; aip = aip->ah_next)
1749 if (aip->ah_p == IPPROTO_IP)
1758 icmp->icmp_cksum = 0;
1759 icmp->icmp_cksum = chksum((u_short *)icmp, canip->ah_len);
1761 for (aip = aniphead, icmp = NULL; aip; aip = aip->ah_next)
1762 if (aip->ah_p == IPPROTO_ICMP)
1763 icmp = aip->ah_icmp;
1773 bzero((char *)&iptmp, sizeof(iptmp));
1774 iptmp.ip_p = ip->ip_p;
1775 iptmp.ip_src = ip->ip_src;
1776 iptmp.ip_dst = ip->ip_dst;
1777 iptmp.ip_len = htons(ip->ip_len - (ip->ip_hl << 2));
1778 sum = p_chksum((u_short *)&iptmp, (u_int)sizeof(iptmp));
1779 udp->uh_ulen = htons(udp->uh_ulen);
1780 udp->uh_sum = c_chksum((u_short *)udp, (u_int)ntohs(iptmp.ip_len), sum);
1782 for (aip = aniphead, udp = NULL; aip; aip = aip->ah_next)
1783 if (aip->ah_p == IPPROTO_UDP)
1794 bzero((char *)&iptmp, sizeof(iptmp));
1795 iptmp.ip_p = ip->ip_p;
1796 iptmp.ip_src = ip->ip_src;
1797 iptmp.ip_dst = ip->ip_dst;
1798 iptmp.ip_len = htons(ip->ip_len - (ip->ip_hl << 2));
1799 sum = p_chksum((u_short *)&iptmp, (u_int)sizeof(iptmp));
1801 tcp->th_sum = c_chksum((u_short *)tcp, (u_int)ntohs(iptmp.ip_len), sum);
1803 for (aip = aniphead, tcp = NULL; aip; aip = aip->ah_next)
1804 if (aip->ah_p == IPPROTO_TCP)
1820 yydebug = (opts & OPT_DEBUG) ? 1 : 0;
1827 u_short c_chksum(buf, len, init)
1833 int nwords = len >> 1;
1835 for(; nwords > 0; nwords--)
1837 sum = (sum>>16) + (sum & 0xffff);
1843 u_long p_chksum(buf,len)
1848 int nwords = len >> 1;
1850 for(; nwords > 0; nwords--)
projects / FreeBSD / FreeBSD.git / blob