5 * Copyright (C) 2012 by Darren Reed.
7 * See the IPFILTER.LICENCE file for details on licencing.
9 * Id: iplang_y.y,v 2.9.2.4 2006/03/17 12:11:29 darrenr Exp $
16 #if !defined(__SVR4) && !defined(__svr4__)
19 # include <sys/byteorder.h>
21 #include <sys/types.h>
23 #include <sys/param.h>
28 #include <sys/socket.h>
30 #include <netinet/in.h>
31 #include <netinet/in_systm.h>
32 #include <netinet/ip.h>
34 # include <netinet/ip_var.h>
35 # include <net/route.h>
36 # include <netinet/if_ether.h>
39 #include <arpa/nameser.h>
40 #include <arpa/inet.h>
44 #include "ip_compat.h"
48 #if !defined(__NetBSD__) && (!defined(__FreeBSD_version) && \
49 __FreeBSD_version < 400020) && (!SOLARIS || SOLARIS2 < 10)
50 extern struct ether_addr *ether_aton __P((char *));
54 extern struct ipopt_names ionames[];
55 extern int state, state, lineNum, token;
59 int yylex __P((void));
61 #if !defined(ultrix) && !defined(hpux)
67 iface_t *iflist = NULL, **iftail = &iflist;
69 arp_t *arplist = NULL, **arptail = &arplist, *carp = NULL;
70 struct in_addr defrouter;
73 u_short c_chksum __P((u_short *, u_int, u_long));
74 u_long p_chksum __P((u_short *, u_int));
76 u_long ipbuffer[67584/sizeof(u_long)]; /* 66K */
77 aniphdr_t *aniphead = NULL, *canip = NULL, **aniptail = &aniphead;
81 icmphdr_t *icmp = NULL;
88 struct in_addr getipv4addr __P((char *arg));
89 u_short getportnum __P((char *, char *));
90 struct ether_addr *geteaddr __P((char *, struct ether_addr *));
91 void *new_header __P((int));
92 void free_aniplist __P((void));
93 void inc_anipheaders __P((int));
94 void new_data __P((void));
95 void set_datalen __P((char **));
96 void set_datafile __P((char **));
97 void set_data __P((char **));
98 void new_packet __P((void));
99 void set_ipv4proto __P((char **));
100 void set_ipv4src __P((char **));
101 void set_ipv4dst __P((char **));
102 void set_ipv4off __P((char **));
103 void set_ipv4v __P((char **));
104 void set_ipv4hl __P((char **));
105 void set_ipv4ttl __P((char **));
106 void set_ipv4tos __P((char **));
107 void set_ipv4id __P((char **));
108 void set_ipv4sum __P((char **));
109 void set_ipv4len __P((char **));
110 void new_tcpheader __P((void));
111 void set_tcpsport __P((char **));
112 void set_tcpdport __P((char **));
113 void set_tcpseq __P((char **));
114 void set_tcpack __P((char **));
115 void set_tcpoff __P((char **));
116 void set_tcpurp __P((char **));
117 void set_tcpwin __P((char **));
118 void set_tcpsum __P((char **));
119 void set_tcpflags __P((char **));
120 void set_tcpopt __P((int, char **));
121 void end_tcpopt __P((void));
122 void new_udpheader __P((void));
123 void set_udplen __P((char **));
124 void set_udpsum __P((char **));
125 void prep_packet __P((void));
126 void packet_done __P((void));
127 void new_interface __P((void));
128 void check_interface __P((void));
129 void set_ifname __P((char **));
130 void set_ifmtu __P((int));
131 void set_ifv4addr __P((char **));
132 void set_ifeaddr __P((char **));
133 void new_arp __P((void));
134 void set_arpeaddr __P((char **));
135 void set_arpv4addr __P((char **));
136 void reset_send __P((void));
137 void set_sendif __P((char **));
138 void set_sendvia __P((char **));
139 void set_defaultrouter __P((char **));
140 void new_icmpheader __P((void));
141 void set_icmpcode __P((int));
142 void set_icmptype __P((int));
143 void set_icmpcodetok __P((char **));
144 void set_icmptypetok __P((char **));
145 void set_icmpid __P((int));
146 void set_icmpseq __P((int));
147 void set_icmpotime __P((int));
148 void set_icmprtime __P((int));
149 void set_icmpttime __P((int));
150 void set_icmpmtu __P((int));
151 void set_redir __P((int, char **));
152 void new_ipv4opt __P((void));
153 void set_icmppprob __P((int));
154 void add_ipopt __P((int, void *));
155 void end_ipopt __P((void));
156 void set_secclass __P((char **));
157 void free_anipheader __P((void));
158 void end_ipv4 __P((void));
159 void end_icmp __P((void));
160 void end_udp __P((void));
161 void end_tcp __P((void));
162 void end_data __P((void));
163 void yyerror __P((char *));
164 void iplang __P((FILE *));
165 int arp_getipv4 __P((char *, char *));
166 int yyparse __P((void));
172 %token <num> IL_NUMBER
173 %type <num> number digits optnumber
174 %token <str> IL_TOKEN
175 %type <str> token optoken
176 %token IL_HEXDIGIT IL_COLON IL_DOT IL_EOF IL_COMMENT
177 %token IL_INTERFACE IL_IFNAME IL_MTU IL_EADDR
178 %token IL_IPV4 IL_V4PROTO IL_V4SRC IL_V4DST IL_V4OFF IL_V4V IL_V4HL IL_V4TTL
179 %token IL_V4TOS IL_V4SUM IL_V4LEN IL_V4OPT IL_V4ID
180 %token IL_TCP IL_SPORT IL_DPORT IL_TCPFL IL_TCPSEQ IL_TCPACK IL_TCPOFF
181 %token IL_TCPWIN IL_TCPSUM IL_TCPURP IL_TCPOPT IL_TCPO_NOP IL_TCPO_EOL
182 %token IL_TCPO_MSS IL_TCPO_WSCALE IL_TCPO_TS
183 %token IL_UDP IL_UDPLEN IL_UDPSUM
184 %token IL_ICMP IL_ICMPTYPE IL_ICMPCODE
185 %token IL_SEND IL_VIA
188 %token IL_SUM IL_OFF IL_LEN IL_V4ADDR IL_OPT
189 %token IL_DATA IL_DLEN IL_DVALUE IL_DFILE
190 %token IL_IPO_NOP IL_IPO_RR IL_IPO_ZSU IL_IPO_MTUP IL_IPO_MTUR IL_IPO_EOL
191 %token IL_IPO_TS IL_IPO_TR IL_IPO_SEC IL_IPO_LSRR IL_IPO_ESEC
192 %token IL_IPO_SATID IL_IPO_SSRR IL_IPO_ADDEXT IL_IPO_VISA IL_IPO_IMITD
193 %token IL_IPO_EIP IL_IPO_FINN IL_IPO_SECCLASS IL_IPO_CIPSO IL_IPO_ENCODE
194 %token <str> IL_IPS_RESERV4 IL_IPS_TOPSECRET IL_IPS_SECRET IL_IPS_RESERV3
195 %token <str> IL_IPS_CONFID IL_IPS_UNCLASS IL_IPS_RESERV2 IL_IPS_RESERV1
196 %token IL_ICMP_ECHOREPLY IL_ICMP_UNREACH IL_ICMP_UNREACH_NET
197 %token IL_ICMP_UNREACH_HOST IL_ICMP_UNREACH_PROTOCOL IL_ICMP_UNREACH_PORT
198 %token IL_ICMP_UNREACH_NEEDFRAG IL_ICMP_UNREACH_SRCFAIL
199 %token IL_ICMP_UNREACH_NET_UNKNOWN IL_ICMP_UNREACH_HOST_UNKNOWN
200 %token IL_ICMP_UNREACH_ISOLATED IL_ICMP_UNREACH_NET_PROHIB
201 %token IL_ICMP_UNREACH_HOST_PROHIB IL_ICMP_UNREACH_TOSNET
202 %token IL_ICMP_UNREACH_TOSHOST IL_ICMP_UNREACH_FILTER_PROHIB
203 %token IL_ICMP_UNREACH_HOST_PRECEDENCE IL_ICMP_UNREACH_PRECEDENCE_CUTOFF
204 %token IL_ICMP_SOURCEQUENCH IL_ICMP_REDIRECT IL_ICMP_REDIRECT_NET
205 %token IL_ICMP_REDIRECT_HOST IL_ICMP_REDIRECT_TOSNET
206 %token IL_ICMP_REDIRECT_TOSHOST IL_ICMP_ECHO IL_ICMP_ROUTERADVERT
207 %token IL_ICMP_ROUTERSOLICIT IL_ICMP_TIMXCEED IL_ICMP_TIMXCEED_INTRANS
208 %token IL_ICMP_TIMXCEED_REASS IL_ICMP_PARAMPROB IL_ICMP_PARAMPROB_OPTABSENT
209 %token IL_ICMP_TSTAMP IL_ICMP_TSTAMPREPLY IL_ICMP_IREQ IL_ICMP_IREQREPLY
210 %token IL_ICMP_MASKREQ IL_ICMP_MASKREPLY IL_ICMP_SEQ IL_ICMP_ID
211 %token IL_ICMP_OTIME IL_ICMP_RTIME IL_ICMP_TTIME
227 iface: ifhdr '{' ifaceopts '}' ';' { check_interface(); }
230 ifhdr: IL_INTERFACE { new_interface(); }
239 IL_IFNAME token { set_ifname(&$2); }
240 | IL_MTU number { set_ifmtu($2); }
241 | IL_V4ADDR token { set_ifv4addr(&$2); }
242 | IL_EADDR token { set_ifeaddr(&$2); }
245 send: sendhdr '{' sendbody '}' ';' { packet_done(); }
246 | sendhdr ';' { packet_done(); }
250 IL_SEND { reset_send(); }
259 IL_IFNAME token { set_sendif(&$2); }
260 | IL_VIA token { set_sendvia(&$2); }
263 arp: arphdr '{' arpbody '}' ';'
266 arphdr: IL_ARP { new_arp(); }
274 arpopt: IL_V4ADDR token { set_arpv4addr(&$2); }
275 | IL_EADDR token { set_arpeaddr(&$2); }
279 IL_DEFROUTER token { set_defaultrouter(&$2); }
290 ipline: ipv4 '{' ipv4body '}' ';' { end_ipv4(); }
293 ipv4: IL_IPV4 { new_packet(); }
302 IL_V4PROTO token { set_ipv4proto(&$2); }
303 | IL_V4SRC token { set_ipv4src(&$2); }
304 | IL_V4DST token { set_ipv4dst(&$2); }
305 | IL_V4OFF token { set_ipv4off(&$2); }
306 | IL_V4V token { set_ipv4v(&$2); }
307 | IL_V4HL token { set_ipv4hl(&$2); }
308 | IL_V4ID token { set_ipv4id(&$2); }
309 | IL_V4TTL token { set_ipv4ttl(&$2); }
310 | IL_V4TOS token { set_ipv4tos(&$2); }
311 | IL_V4SUM token { set_ipv4sum(&$2); }
312 | IL_V4LEN token { set_ipv4len(&$2); }
313 | ipv4opt '{' ipv4optlist '}' ';' { end_ipopt(); }
316 tcp: IL_TCP { new_tcpheader(); }
320 '{' tcpheader '}' ';' { end_tcp(); }
330 IL_SPORT token { set_tcpsport(&$2); }
331 | IL_DPORT token { set_tcpdport(&$2); }
332 | IL_TCPSEQ token { set_tcpseq(&$2); }
333 | IL_TCPACK token { set_tcpack(&$2); }
334 | IL_TCPOFF token { set_tcpoff(&$2); }
335 | IL_TCPURP token { set_tcpurp(&$2); }
336 | IL_TCPWIN token { set_tcpwin(&$2); }
337 | IL_TCPSUM token { set_tcpsum(&$2); }
338 | IL_TCPFL token { set_tcpflags(&$2); }
339 | IL_TCPOPT '{' tcpopts '}' ';' { end_tcpopt(); }
346 tcpopt: IL_TCPO_NOP ';' { set_tcpopt(IL_TCPO_NOP, NULL); }
347 | IL_TCPO_EOL ';' { set_tcpopt(IL_TCPO_EOL, NULL); }
348 | IL_TCPO_MSS optoken { set_tcpopt(IL_TCPO_MSS,&$2);}
349 | IL_TCPO_WSCALE optoken { set_tcpopt(IL_TCPO_WSCALE,&$2);}
350 | IL_TCPO_TS optoken { set_tcpopt(IL_TCPO_TS, &$2);}
353 udp: IL_UDP { new_udpheader(); }
357 '{' udpheader '}' ';' { end_udp(); }
368 IL_SPORT token { set_tcpsport(&$2); }
369 | IL_DPORT token { set_tcpdport(&$2); }
370 | IL_UDPLEN token { set_udplen(&$2); }
371 | IL_UDPSUM token { set_udpsum(&$2); }
374 icmp: IL_ICMP { new_icmpheader(); }
378 '{' icmpbody '}' ';' { end_icmp(); }
383 | icmpheader bodyline
388 | IL_ICMPTYPE icmptype icmpcode
392 IL_ICMPCODE token { set_icmpcodetok(&$2); }
396 IL_ICMP_ECHOREPLY ';' { set_icmptype(ICMP_ECHOREPLY); }
397 | IL_ICMP_ECHOREPLY '{' icmpechoopts '}' ';'
399 | IL_ICMP_SOURCEQUENCH ';' { set_icmptype(ICMP_SOURCEQUENCH); }
401 | IL_ICMP_ROUTERADVERT ';' { set_icmptype(ICMP_ROUTERADVERT); }
402 | IL_ICMP_ROUTERSOLICIT ';' { set_icmptype(ICMP_ROUTERSOLICIT); }
403 | IL_ICMP_ECHO ';' { set_icmptype(ICMP_ECHO); }
404 | IL_ICMP_ECHO '{' icmpechoopts '}' ';'
405 | IL_ICMP_TIMXCEED ';' { set_icmptype(ICMP_TIMXCEED); }
406 | IL_ICMP_TIMXCEED '{' exceed '}' ';'
407 | IL_ICMP_TSTAMP ';' { set_icmptype(ICMP_TSTAMP); }
408 | IL_ICMP_TSTAMPREPLY ';' { set_icmptype(ICMP_TSTAMPREPLY); }
409 | IL_ICMP_TSTAMPREPLY '{' icmptsopts '}' ';'
410 | IL_ICMP_IREQ ';' { set_icmptype(ICMP_IREQ); }
411 | IL_ICMP_IREQREPLY ';' { set_icmptype(ICMP_IREQREPLY); }
412 | IL_ICMP_IREQREPLY '{' data dataline '}' ';'
413 | IL_ICMP_MASKREQ ';' { set_icmptype(ICMP_MASKREQ); }
414 | IL_ICMP_MASKREPLY ';' { set_icmptype(ICMP_MASKREPLY); }
415 | IL_ICMP_MASKREPLY '{' token '}' ';'
416 | IL_ICMP_PARAMPROB ';' { set_icmptype(ICMP_PARAMPROB); }
417 | IL_ICMP_PARAMPROB '{' paramprob '}' ';'
418 | IL_TOKEN ';' { set_icmptypetok(&$1); }
422 | icmpechoopts icmpecho
426 IL_ICMP_SEQ number { set_icmpseq($2); }
427 | IL_ICMP_ID number { set_icmpid($2); }
431 | icmptsopts icmpts ';'
434 icmpts: IL_ICMP_OTIME number { set_icmpotime($2); }
435 | IL_ICMP_RTIME number { set_icmprtime($2); }
436 | IL_ICMP_TTIME number { set_icmpttime($2); }
441 | IL_ICMP_UNREACH '{' unreachopts '}' ';'
445 IL_ICMP_UNREACH_NET line
446 | IL_ICMP_UNREACH_HOST line
447 | IL_ICMP_UNREACH_PROTOCOL line
448 | IL_ICMP_UNREACH_PORT line
449 | IL_ICMP_UNREACH_NEEDFRAG number ';' { set_icmpmtu($2); }
450 | IL_ICMP_UNREACH_SRCFAIL line
451 | IL_ICMP_UNREACH_NET_UNKNOWN line
452 | IL_ICMP_UNREACH_HOST_UNKNOWN line
453 | IL_ICMP_UNREACH_ISOLATED line
454 | IL_ICMP_UNREACH_NET_PROHIB line
455 | IL_ICMP_UNREACH_HOST_PROHIB line
456 | IL_ICMP_UNREACH_TOSNET line
457 | IL_ICMP_UNREACH_TOSHOST line
458 | IL_ICMP_UNREACH_FILTER_PROHIB line
459 | IL_ICMP_UNREACH_HOST_PRECEDENCE line
460 | IL_ICMP_UNREACH_PRECEDENCE_CUTOFF line
465 | IL_ICMP_REDIRECT '{' redirectopts '}' ';'
469 | IL_ICMP_REDIRECT_NET token { set_redir(0, &$2); }
470 | IL_ICMP_REDIRECT_HOST token { set_redir(1, &$2); }
471 | IL_ICMP_REDIRECT_TOSNET token { set_redir(2, &$2); }
472 | IL_ICMP_REDIRECT_TOSHOST token { set_redir(3, &$2); }
476 IL_ICMP_TIMXCEED_INTRANS line
477 | IL_ICMP_TIMXCEED_REASS line
481 IL_ICMP_PARAMPROB_OPTABSENT
482 | IL_ICMP_PARAMPROB_OPTABSENT paraprobarg
485 '{' number '}' ';' { set_icmppprob($2); }
488 ipv4opt: IL_V4OPT { new_ipv4opt(); }
492 | ipv4opts ipv4optlist
496 IL_IPO_NOP ';' { add_ipopt(IL_IPO_NOP, NULL); }
497 | IL_IPO_RR optnumber { add_ipopt(IL_IPO_RR, &$2); }
498 | IL_IPO_ZSU ';' { add_ipopt(IL_IPO_ZSU, NULL); }
499 | IL_IPO_MTUP ';' { add_ipopt(IL_IPO_MTUP, NULL); }
500 | IL_IPO_MTUR ';' { add_ipopt(IL_IPO_MTUR, NULL); }
501 | IL_IPO_ENCODE ';' { add_ipopt(IL_IPO_ENCODE, NULL); }
502 | IL_IPO_TS ';' { add_ipopt(IL_IPO_TS, NULL); }
503 | IL_IPO_TR ';' { add_ipopt(IL_IPO_TR, NULL); }
504 | IL_IPO_SEC ';' { add_ipopt(IL_IPO_SEC, NULL); }
505 | IL_IPO_SECCLASS secclass { add_ipopt(IL_IPO_SECCLASS, sclass); }
506 | IL_IPO_LSRR token { add_ipopt(IL_IPO_LSRR,&$2); }
507 | IL_IPO_ESEC ';' { add_ipopt(IL_IPO_ESEC, NULL); }
508 | IL_IPO_CIPSO ';' { add_ipopt(IL_IPO_CIPSO, NULL); }
509 | IL_IPO_SATID optnumber { add_ipopt(IL_IPO_SATID,&$2);}
510 | IL_IPO_SSRR token { add_ipopt(IL_IPO_SSRR,&$2); }
511 | IL_IPO_ADDEXT ';' { add_ipopt(IL_IPO_ADDEXT, NULL); }
512 | IL_IPO_VISA ';' { add_ipopt(IL_IPO_VISA, NULL); }
513 | IL_IPO_IMITD ';' { add_ipopt(IL_IPO_IMITD, NULL); }
514 | IL_IPO_EIP ';' { add_ipopt(IL_IPO_EIP, NULL); }
515 | IL_IPO_FINN ';' { add_ipopt(IL_IPO_FINN, NULL); }
519 IL_IPS_RESERV4 ';' { set_secclass(&$1); }
520 | IL_IPS_TOPSECRET ';' { set_secclass(&$1); }
521 | IL_IPS_SECRET ';' { set_secclass(&$1); }
522 | IL_IPS_RESERV3 ';' { set_secclass(&$1); }
523 | IL_IPS_CONFID ';' { set_secclass(&$1); }
524 | IL_IPS_UNCLASS ';' { set_secclass(&$1); }
525 | IL_IPS_RESERV2 ';' { set_secclass(&$1); }
526 | IL_IPS_RESERV1 ';' { set_secclass(&$1); }
529 data: IL_DATA { new_data(); }
533 '{' databody '}' ';' { end_data(); }
541 IL_DLEN token { set_datalen(&$2); }
542 | IL_DVALUE token { set_data(&$2); }
543 | IL_DFILE token { set_datafile(&$2); }
549 optoken: ';' { $$ = ""; }
556 optnumber: ';' { $$ = 0; }
565 struct statetoopt toipopts[] = {
566 { IL_IPO_NOP, IPOPT_NOP },
567 { IL_IPO_RR, IPOPT_RR },
568 { IL_IPO_ZSU, IPOPT_ZSU },
569 { IL_IPO_MTUP, IPOPT_MTUP },
570 { IL_IPO_MTUR, IPOPT_MTUR },
571 { IL_IPO_ENCODE, IPOPT_ENCODE },
572 { IL_IPO_TS, IPOPT_TS },
573 { IL_IPO_TR, IPOPT_TR },
574 { IL_IPO_SEC, IPOPT_SECURITY },
575 { IL_IPO_SECCLASS, IPOPT_SECURITY },
576 { IL_IPO_LSRR, IPOPT_LSRR },
577 { IL_IPO_ESEC, IPOPT_E_SEC },
578 { IL_IPO_CIPSO, IPOPT_CIPSO },
579 { IL_IPO_SATID, IPOPT_SATID },
580 { IL_IPO_SSRR, IPOPT_SSRR },
581 { IL_IPO_ADDEXT, IPOPT_ADDEXT },
582 { IL_IPO_VISA, IPOPT_VISA },
583 { IL_IPO_IMITD, IPOPT_IMITD },
584 { IL_IPO_EIP, IPOPT_EIP },
585 { IL_IPO_FINN, IPOPT_FINN },
589 struct statetoopt tosecopts[] = {
590 { IL_IPS_RESERV4, IPSO_CLASS_RES4 },
591 { IL_IPS_TOPSECRET, IPSO_CLASS_TOPS },
592 { IL_IPS_SECRET, IPSO_CLASS_SECR },
593 { IL_IPS_RESERV3, IPSO_CLASS_RES3 },
594 { IL_IPS_CONFID, IPSO_CLASS_CONF },
595 { IL_IPS_UNCLASS, IPSO_CLASS_UNCL },
596 { IL_IPS_RESERV2, IPSO_CLASS_RES2 },
597 { IL_IPS_RESERV1, IPSO_CLASS_RES1 },
606 static struct ether_addr n;
609 if (sscanf(s, " %x:%x:%x:%x:%x:%x ", &i[0], &i[1],
610 &i[2], &i[3], &i[4], &i[5]) == 6) {
611 n.ether_addr_octet[0] = (u_char)i[0];
612 n.ether_addr_octet[1] = (u_char)i[1];
613 n.ether_addr_octet[2] = (u_char)i[2];
614 n.ether_addr_octet[3] = (u_char)i[3];
615 n.ether_addr_octet[4] = (u_char)i[4];
616 n.ether_addr_octet[5] = (u_char)i[5];
624 struct in_addr getipv4addr(arg)
630 in.s_addr = 0xffffffff;
632 if ((hp = gethostbyname(arg)))
633 bcopy(hp->h_addr, &in.s_addr, sizeof(struct in_addr));
635 in.s_addr = inet_addr(arg);
640 u_short getportnum(pr, name)
645 if (!(sp = getservbyname(name, pr)))
646 return htons(atoi(name));
651 struct ether_addr *geteaddr(arg, buf)
653 struct ether_addr *buf;
655 struct ether_addr *e;
657 #if !defined(hpux) && !defined(linux)
660 fprintf(stderr, "Invalid ethernet address: %s\n", arg);
663 bcopy(e->octet, buf->octet, sizeof(e->octet));
665 bcopy(e->ether_addr_octet, buf->ether_addr_octet,
666 sizeof(e->ether_addr_octet));
675 void *new_header(type)
678 aniphdr_t *aip, *oip = canip;
681 aip = (aniphdr_t *)calloc(1, sizeof(*aip));
683 aniptail = &aip->ah_next;
688 if (type == IPPROTO_UDP)
689 sz = sizeof(udphdr_t);
690 else if (type == IPPROTO_TCP)
691 sz = sizeof(tcphdr_t);
692 else if (type == IPPROTO_ICMP)
693 sz = sizeof(icmphdr_t);
694 else if (type == IPPROTO_IP)
698 canip->ah_data = oip->ah_data + oip->ah_len;
700 canip->ah_data = (char *)ipbuffer;
703 * Increase the size fields in all wrapping headers.
705 for (aip = aniphead; aip; aip = aip->ah_next) {
707 if (aip->ah_p == IPPROTO_IP)
708 aip->ah_ip->ip_len += sz;
709 else if (aip->ah_p == IPPROTO_UDP)
710 aip->ah_udp->uh_ulen += sz;
712 return (void *)canip->ah_data;
718 aniphdr_t *aip, **aipp = &aniphead;
720 while ((aip = *aipp)) {
721 *aipp = aip->ah_next;
724 aniptail = &aniphead;
728 void inc_anipheaders(inc)
733 for (aip = aniphead; aip; aip = aip->ah_next) {
735 if (aip->ah_p == IPPROTO_IP)
736 aip->ah_ip->ip_len += inc;
737 else if (aip->ah_p == IPPROTO_UDP)
738 aip->ah_udp->uh_ulen += inc;
745 (void) new_header(-1);
750 void set_datalen(arg)
755 len = strtol(*arg, NULL, 0);
756 inc_anipheaders(len);
765 u_char *s = (u_char *)*arg, *t = (u_char *)canip->ah_data, c;
766 int len = 0, todo = 0, quote = 0, val = 0;
773 fprintf(stderr, "octal with %c!\n", c);
779 if (!ISDIGIT(c) || !todo) {
780 *t++ = (u_char)(val & 0xff);
790 fprintf(stderr, "octal with %c!\n", c);
824 *t++ = (u_char)(val & 0xff);
827 len = t - (u_char *)canip->ah_data;
828 inc_anipheaders(len - canip->ah_len);
833 void set_datafile(arg)
840 if ((fd = open(file, O_RDONLY)) == -1) {
845 if (fstat(fd, &sb) == -1) {
850 if ((sb.st_size + aniphead->ah_len ) > 65535) {
851 fprintf(stderr, "data file %s too big to include.\n", file);
855 if ((len = read(fd, canip->ah_data, sb.st_size)) == -1) {
860 inc_anipheaders(len);
861 canip->ah_len += len;
868 static u_short id = 0;
871 bzero((char *)ipbuffer, sizeof(ipbuffer));
873 ip = (ip_t *)new_header(IPPROTO_IP);
874 ip->ip_v = IPVERSION;
875 ip->ip_hl = sizeof(ip_t) >> 2;
876 ip->ip_len = sizeof(ip_t);
878 ip->ip_id = htons(id++);
882 void set_ipv4proto(arg)
887 if ((pr = getprotobyname(*arg)))
888 ip->ip_p = pr->p_proto;
890 if (!(ip->ip_p = atoi(*arg)))
891 fprintf(stderr, "unknown protocol %s\n", *arg);
897 void set_ipv4src(arg)
900 ip->ip_src = getipv4addr(*arg);
906 void set_ipv4dst(arg)
909 ip->ip_dst = getipv4addr(*arg);
915 void set_ipv4off(arg)
918 ip->ip_off = htons(strtol(*arg, NULL, 0));
927 ip->ip_v = strtol(*arg, NULL, 0);
938 newhl = strtol(*arg, NULL, 0);
939 inc = (newhl - ip->ip_hl) << 2;
942 canip->ah_len += inc;
948 void set_ipv4ttl(arg)
951 ip->ip_ttl = strtol(*arg, NULL, 0);
957 void set_ipv4tos(arg)
960 ip->ip_tos = strtol(*arg, NULL, 0);
969 ip->ip_id = htons(strtol(*arg, NULL, 0));
975 void set_ipv4sum(arg)
978 ip->ip_sum = strtol(*arg, NULL, 0);
984 void set_ipv4len(arg)
989 len = strtol(*arg, NULL, 0);
990 inc_anipheaders(len - ip->ip_len);
1000 if ((ip->ip_p) && (ip->ip_p != IPPROTO_TCP)) {
1001 fprintf(stderr, "protocol %d specified with TCP!\n", ip->ip_p);
1004 ip->ip_p = IPPROTO_TCP;
1006 tcp = (tcphdr_t *)new_header(IPPROTO_TCP);
1007 tcp->th_win = htons(4096);
1008 tcp->th_off = sizeof(*tcp) >> 2;
1012 void set_tcpsport(arg)
1018 if (ip->ip_p == IPPROTO_UDP) {
1019 port = &udp->uh_sport;
1022 port = &tcp->th_sport;
1026 *port = getportnum(pr, *arg);
1032 void set_tcpdport(arg)
1038 if (ip->ip_p == IPPROTO_UDP) {
1039 port = &udp->uh_dport;
1042 port = &tcp->th_dport;
1046 *port = getportnum(pr, *arg);
1052 void set_tcpseq(arg)
1055 tcp->th_seq = htonl(strtol(*arg, NULL, 0));
1061 void set_tcpack(arg)
1064 tcp->th_ack = htonl(strtol(*arg, NULL, 0));
1070 void set_tcpoff(arg)
1075 off = strtol(*arg, NULL, 0);
1076 inc_anipheaders((off - tcp->th_off) << 2);
1083 void set_tcpurp(arg)
1086 tcp->th_urp = htons(strtol(*arg, NULL, 0));
1092 void set_tcpwin(arg)
1095 tcp->th_win = htons(strtol(*arg, NULL, 0));
1101 void set_tcpsum(arg)
1104 tcp->th_sum = strtol(*arg, NULL, 0);
1110 void set_tcpflags(arg)
1113 static char flags[] = "ASURPF";
1114 static int flagv[] = { TH_ACK, TH_SYN, TH_URG, TH_RST, TH_PUSH,
1118 for (s = *arg; *s; s++)
1119 if (!(t = strchr(flags, *s))) {
1121 fprintf(stderr, "unknown TCP flag %c\n", *s);
1124 tcp->th_flags = strtol(*arg, NULL, 0);
1127 tcp->th_flags |= flagv[t - flags];
1133 void set_tcpopt(state, arg)
1138 int val, len, val2, pad, optval;
1145 s = (u_char *)tcp + sizeof(*tcp) + canip->ah_optlen;
1160 case IL_TCPO_WSCALE :
1176 * prepend padding - if required.
1179 for (pad = 4 - (len & 3); pad; pad--) {
1186 *s++ = (u_char)optval;
1189 if (len == 3) { /* 1 byte - char */
1191 } else if (len == 4) { /* 2 bytes - short */
1192 *s++ = (u_char)((val >> 8) & 0xff);
1193 *s++ = (u_char)(val & 0xff);
1194 } else if (len >= 6) { /* 4 bytes - long */
1196 bcopy((char *)&val2, s, 4);
1201 *s++ = (u_char)optval;
1203 canip->ah_lastopt = optval;
1204 canip->ah_optlen += len;
1216 char *s = (char *)tcp;
1218 s += sizeof(*tcp) + canip->ah_optlen;
1220 * pad out so that we have a multiple of 4 bytes in size fo the
1221 * options. make sure last byte is EOL.
1223 if (canip->ah_optlen & 3) {
1224 if (canip->ah_lastopt != 1) {
1225 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1233 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1240 tcp->th_off = (sizeof(*tcp) + canip->ah_optlen) >> 2;
1241 inc_anipheaders(canip->ah_optlen);
1245 void new_udpheader()
1247 if ((ip->ip_p) && (ip->ip_p != IPPROTO_UDP)) {
1248 fprintf(stderr, "protocol %d specified with UDP!\n", ip->ip_p);
1251 ip->ip_p = IPPROTO_UDP;
1253 udp = (udphdr_t *)new_header(IPPROTO_UDP);
1254 udp->uh_ulen = sizeof(*udp);
1258 void set_udplen(arg)
1263 len = strtol(*arg, NULL, 0);
1264 inc_anipheaders(len - udp->uh_ulen);
1271 void set_udpsum(arg)
1274 udp->uh_sum = strtol(*arg, NULL, 0);
1283 struct in_addr gwip;
1285 ifp = sending.snd_if;
1287 fprintf(stderr, "no interface defined for sending!\n");
1290 if (ifp->if_fd == -1)
1291 ifp->if_fd = initdevice(ifp->if_name, 5);
1292 gwip = sending.snd_gw;
1294 if (aniphead == NULL) {
1296 "no destination address defined for sending\n");
1299 gwip = aniphead->ah_ip->ip_dst;
1301 (void) send_ip(ifp->if_fd, ifp->if_MTU, (ip_t *)ipbuffer, gwip, 2);
1309 u_char *s = (u_char *)ipbuffer, *t = (u_char *)outline;
1311 if (opts & OPT_VERBOSE) {
1312 ip->ip_len = htons(ip->ip_len);
1313 for (i = ntohs(ip->ip_len), j = 0; i; i--, j++, s++) {
1314 if (j && !(j & 0xf)) {
1317 fputs(outline, stdout);
1319 t = (u_char *)outline;
1322 sprintf((char *)t, "%02x", *s & 0xff);
1324 if (!((j + 1) & 0xf)) {
1326 sprintf((char *)t, " ");
1328 for (k = 16; k; k--, s++)
1329 *t++ = (isprint(*s) ? *s : '.');
1338 for (k = 16 - (j & 0xf); k; k--) {
1343 sprintf((char *)t, " ");
1346 for (k = j & 0xf; k; k--, s++)
1347 *t++ = (isprint(*s) ? *s : '.');
1351 fputs(outline, stdout);
1353 ip->ip_len = ntohs(ip->ip_len);
1361 void new_interface()
1363 cifp = (iface_t *)calloc(1, sizeof(iface_t));
1365 iftail = &cifp->if_next;
1370 void check_interface()
1372 if (!cifp->if_name || !*cifp->if_name)
1373 fprintf(stderr, "No interface name given!\n");
1374 if (!cifp->if_MTU || !*cifp->if_name)
1375 fprintf(stderr, "Interface %s has an MTU of 0!\n",
1380 void set_ifname(arg)
1383 cifp->if_name = *arg;
1395 void set_ifv4addr(arg)
1398 cifp->if_addr = getipv4addr(*arg);
1404 void set_ifeaddr(arg)
1407 (void) geteaddr(*arg, &cifp->if_eaddr);
1415 carp = (arp_t *)calloc(1, sizeof(arp_t));
1417 arptail = &carp->arp_next;
1421 void set_arpeaddr(arg)
1424 (void) geteaddr(*arg, &carp->arp_eaddr);
1430 void set_arpv4addr(arg)
1433 carp->arp_addr = getipv4addr(*arg);
1439 int arp_getipv4(ip, addr)
1445 for (a = arplist; a; a = a->arp_next)
1446 if (!bcmp(ip, (char *)&a->arp_addr, 4)) {
1447 bcopy((char *)&a->arp_eaddr, addr, 6);
1456 sending.snd_if = iflist;
1457 sending.snd_gw = defrouter;
1461 void set_sendif(arg)
1466 for (ifp = iflist; ifp; ifp = ifp->if_next)
1467 if (ifp->if_name && !strcmp(ifp->if_name, *arg))
1469 sending.snd_if = ifp;
1471 fprintf(stderr, "couldn't find interface %s\n", *arg);
1477 void set_sendvia(arg)
1480 sending.snd_gw = getipv4addr(*arg);
1486 void set_defaultrouter(arg)
1489 defrouter = getipv4addr(*arg);
1495 void new_icmpheader()
1497 if ((ip->ip_p) && (ip->ip_p != IPPROTO_ICMP)) {
1498 fprintf(stderr, "protocol %d specified with ICMP!\n",
1502 ip->ip_p = IPPROTO_ICMP;
1503 icmp = (icmphdr_t *)new_header(IPPROTO_ICMP);
1507 void set_icmpcode(code)
1510 icmp->icmp_code = code;
1514 void set_icmptype(type)
1517 icmp->icmp_type = type;
1521 void set_icmpcodetok(code)
1527 for (i = 0; (s = icmpcodes[i]); i++)
1528 if (!strcmp(s, *code)) {
1529 icmp->icmp_code = i;
1533 fprintf(stderr, "unknown ICMP code %s\n", *code);
1539 void set_icmptypetok(type)
1545 for (i = 0; !(s = icmptypes[i]) || strcmp(s, "END"); i++)
1546 if (s && !strcmp(s, *type)) {
1547 icmp->icmp_type = i;
1552 fprintf(stderr, "unknown ICMP type %s\n", *type);
1558 void set_icmpid(arg)
1561 icmp->icmp_id = htons(arg);
1565 void set_icmpseq(arg)
1568 icmp->icmp_seq = htons(arg);
1572 void set_icmpotime(arg)
1575 icmp->icmp_otime = htonl(arg);
1579 void set_icmprtime(arg)
1582 icmp->icmp_rtime = htonl(arg);
1586 void set_icmpttime(arg)
1589 icmp->icmp_ttime = htonl(arg);
1593 void set_icmpmtu(arg)
1597 icmp->icmp_nextmtu = htons(arg);
1602 void set_redir(redir, arg)
1606 icmp->icmp_code = redir;
1607 icmp->icmp_gwaddr = getipv4addr(*arg);
1613 void set_icmppprob(num)
1616 icmp->icmp_pptr = num;
1626 void add_ipopt(state, ptr)
1630 struct ipopt_names *io;
1631 struct statetoopt *sto;
1632 char numbuf[16], *arg, **param = ptr;
1635 if (state == IL_IPO_RR || state == IL_IPO_SATID) {
1637 sprintf(numbuf, "%d", *(int *)param);
1639 strcpy(numbuf, "0");
1642 arg = param ? *param : NULL;
1644 if (canip->ah_next) {
1645 fprintf(stderr, "cannot specify options after data body\n");
1648 for (sto = toipopts; sto->sto_st; sto++)
1649 if (sto->sto_st == state)
1652 fprintf(stderr, "No mapping for state %d to IP option\n",
1657 hlen = sizeof(ip_t) + canip->ah_optlen;
1658 for (io = ionames; io->on_name; io++)
1659 if (io->on_value == sto->sto_op)
1661 canip->ah_lastopt = io->on_value;
1664 inc = addipopt((char *)ip + hlen, io, hlen - sizeof(ip_t),arg);
1667 ((char *)ip)[sizeof(*ip) + inc] = IPOPT_NOP;
1668 canip->ah_lastopt = IPOPT_NOP;
1675 canip->ah_optlen = hlen - sizeof(ip_t);
1677 if (state != IL_IPO_RR && state != IL_IPO_SATID)
1678 if (param && *param) {
1689 char *s, *buf = (char *)ip;
1692 * pad out so that we have a multiple of 4 bytes in size fo the
1693 * options. make sure last byte is EOL.
1695 if (canip->ah_lastopt == IPOPT_NOP) {
1696 buf[sizeof(*ip) + canip->ah_optlen - 1] = IPOPT_EOL;
1697 } else if (canip->ah_lastopt != IPOPT_EOL) {
1698 s = buf + sizeof(*ip) + canip->ah_optlen;
1700 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1707 s = buf + sizeof(*ip) + canip->ah_optlen - 1;
1709 for (pad = 3 - (canip->ah_optlen & 3); pad; pad--) {
1715 ip->ip_hl = (sizeof(*ip) + canip->ah_optlen) >> 2;
1716 inc_anipheaders(canip->ah_optlen);
1721 void set_secclass(arg)
1729 void free_anipheader()
1734 if ((canip = aip->ah_prev)) {
1735 canip->ah_next = NULL;
1736 aniptail = &canip->ah_next;
1749 ip->ip_len = htons(ip->ip_len);
1750 ip->ip_sum = chksum((u_short *)ip, ip->ip_hl << 2);
1751 ip->ip_len = ntohs(ip->ip_len);
1753 for (aip = aniphead, ip = NULL; aip; aip = aip->ah_next)
1754 if (aip->ah_p == IPPROTO_IP)
1763 icmp->icmp_cksum = 0;
1764 icmp->icmp_cksum = chksum((u_short *)icmp, canip->ah_len);
1766 for (aip = aniphead, icmp = NULL; aip; aip = aip->ah_next)
1767 if (aip->ah_p == IPPROTO_ICMP)
1768 icmp = aip->ah_icmp;
1778 bzero((char *)&iptmp, sizeof(iptmp));
1779 iptmp.ip_p = ip->ip_p;
1780 iptmp.ip_src = ip->ip_src;
1781 iptmp.ip_dst = ip->ip_dst;
1782 iptmp.ip_len = htons(ip->ip_len - (ip->ip_hl << 2));
1783 sum = p_chksum((u_short *)&iptmp, (u_int)sizeof(iptmp));
1784 udp->uh_ulen = htons(udp->uh_ulen);
1785 udp->uh_sum = c_chksum((u_short *)udp, (u_int)ntohs(iptmp.ip_len), sum);
1787 for (aip = aniphead, udp = NULL; aip; aip = aip->ah_next)
1788 if (aip->ah_p == IPPROTO_UDP)
1799 bzero((char *)&iptmp, sizeof(iptmp));
1800 iptmp.ip_p = ip->ip_p;
1801 iptmp.ip_src = ip->ip_src;
1802 iptmp.ip_dst = ip->ip_dst;
1803 iptmp.ip_len = htons(ip->ip_len - (ip->ip_hl << 2));
1804 sum = p_chksum((u_short *)&iptmp, (u_int)sizeof(iptmp));
1806 tcp->th_sum = c_chksum((u_short *)tcp, (u_int)ntohs(iptmp.ip_len), sum);
1808 for (aip = aniphead, tcp = NULL; aip; aip = aip->ah_next)
1809 if (aip->ah_p == IPPROTO_TCP)
1825 yydebug = (opts & OPT_DEBUG) ? 1 : 0;
1832 u_short c_chksum(buf, len, init)
1838 int nwords = len >> 1;
1840 for(; nwords > 0; nwords--)
1842 sum = (sum>>16) + (sum & 0xffff);
1848 u_long p_chksum(buf,len)
1853 int nwords = len >> 1;
1855 for(; nwords > 0; nwords--)
projects / FreeBSD / releng / 10.0.git / blob