-
Notifications
You must be signed in to change notification settings - Fork 1
/
mod_ip_chaff.c
125 lines (106 loc) · 2.63 KB
/
mod_ip_chaff.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
/*
* mod_ip_chaff.c
*
* Copyright (c) 2001 Dug Song <dugsong@monkey.org>
*
* $Id: mod_ip_chaff.c,v 1.5 2002/04/11 04:25:52 dugsong Exp $
*/
#include "config.h"
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include "mod.h"
#include "pkt.h"
#include "randutil.h"
#define CHAFF_TYPE_DUP 1
#define CHAFF_TYPE_OPT 2
#define CHAFF_TYPE_TTL 3
struct ip_chaff_data {
rand_t *rnd;
int type;
int ttl;
struct pktq *pktq;
};
void *
ip_chaff_close(void *d)
{
struct ip_chaff_data *data = (struct ip_chaff_data *)d;
if (data != NULL) {
rand_close(data->rnd);
free(data);
}
return (NULL);
}
void *
ip_chaff_open(int argc, char *argv[])
{
struct ip_chaff_data *data;
if (argc < 2)
return (NULL);
if ((data = calloc(1, sizeof(*data))) == NULL)
return (NULL);
data->rnd = rand_open();
if (strcasecmp(argv[1], "dup") == 0) {
data->type = CHAFF_TYPE_DUP;
} else if (strcasecmp(argv[1], "opt") == 0) {
data->type = CHAFF_TYPE_OPT;
} else if ((data->ttl = atoi(argv[1])) >= 0 && data->ttl < 256) {
data->type = CHAFF_TYPE_TTL;
} else
return (ip_chaff_close(data));
return (data);
}
int
ip_chaff_apply(void *d, struct pktq *pktq)
{
struct ip_chaff_data *data = (struct ip_chaff_data *)d;
struct pkt *pkt, *new, *next;
struct ip_opt opt;
int i;
for (pkt = TAILQ_FIRST(pktq); pkt != TAILQ_END(pktq); pkt = next) {
next = TAILQ_NEXT(pkt, pkt_next);
if (pkt->pkt_ip_data == NULL)
continue;
new = pkt_dup(pkt);
rand_strset(data->rnd, new->pkt_ip_data,
new->pkt_end - new->pkt_ip_data + 1);
switch (data->type) {
case CHAFF_TYPE_DUP:
new->pkt_ts.tv_usec = 1;
ip_checksum(new->pkt_ip, new->pkt_ip_data -
new->pkt_eth_data);
break;
case CHAFF_TYPE_OPT:
opt.opt_type = 0x42;
opt.opt_len = IP_OPT_LEN;
i = ip_add_option(new->pkt_ip,
PKT_BUF_LEN - ETH_HDR_LEN, IP_PROTO_IP,
&opt, opt.opt_len);
/* XXX - whack opt with random crap */
*(uint32_t *)new->pkt_ip_data = rand_uint32(data->rnd);
new->pkt_ip_data += i;
new->pkt_end += i;
ip_checksum(new->pkt_ip, new->pkt_ip_data -
new->pkt_eth_data);
break;
case CHAFF_TYPE_TTL:
new->pkt_ip->ip_ttl = data->ttl;
ip_checksum(new->pkt_ip, new->pkt_ip_data -
new->pkt_eth_data);
break;
}
/* Minimal random reordering. */
if ((pkt->pkt_ip->ip_sum & 1) == 0)
TAILQ_INSERT_BEFORE(pkt, new, pkt_next);
else
TAILQ_INSERT_AFTER(pktq, pkt, new, pkt_next);
}
return (0);
}
struct mod mod_ip_chaff = {
"ip_chaff", /* name */
"ip_chaff dup|opt|<ttl>", /* usage */
ip_chaff_open, /* open */
ip_chaff_apply, /* apply */
ip_chaff_close /* close */
};