/* * Copyright (c) 2017, Matias Fontanini * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are * met: * * * Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * Redistributions in binary form must reproduce the above * copyright notice, this list of conditions and the following disclaimer * in the documentation and/or other materials provided with the * distribution. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. * */ #ifndef TINS_PDU_H #define TINS_PDU_H #include #include #include #include #include /** \brief The Tins namespace. */ namespace Tins { class PacketSender; class NetworkInterface; /** * The type used to store several PDU option values. */ typedef std::vector byte_array; /** * \class PDU * \brief Base class for protocol data units. * * Every PDU implementation inherits from this class. * * PDUs can contain 0 or 1 inner PDU. By stacking several PDUs together, * you can construct packets. These are created upwards: upper layers * will be children of the lower ones. * * If you want to find a specific protocol within a PDU chain, you can use * PDU::find_pdu and PDU::rfind_pdu. Both of them take a template parameter * that indicates the PDU type you are looking for. The first one returns a * pointer to the first object of that type, and the second one returns a * reference (and throws if it is not found). * * For example: * * \code * // Take a whole packet from somewhere. * EthernetII packet = ...; * * // Find the IP layer * const IP* ip = packet.find_pdu(); * if(ip) { * // If the pointer is not null, then it will point to the IP layer * } * * // Find the TCP layer. This will throw a pdu_not_found exception * // if there is no TCP layer in this packet. * const TCP& tcp = packet.rfind_pdu(); * \endcode * * PDU objects can be serialized. Serialization converts the entire PDU * stack into a vector of bytes. This process might modify some parameters * on packets depending on which protocols are used in it. For example: * * - If the lowest protocol layer is IP (this means that there is no * link layer protocol in the packet), then it calculates the source address * that should be used in that IP PDU. \sa IP * - If a protocol contains a checksum field, its value will be calculated * and included in its serialized contents. * - If a protocol contains a "next protocol" field, it is also set based * on the type of the next PDU in the packet. * * If you want to serialize a packet, just use PDU::serialize: * * \code * // Construct a packet * EthernetII packet = EthernetII() / IP() / TCP() / RawPDU("hello"); * * // Now serialize it. This is a std::vector. * PDU::serialization_type buffer = packet.serialize(); * \endcode */ class TINS_API PDU { public: /** * The type that will be returned when serializing PDUs. */ typedef byte_array serialization_type; /** * The typep used to identify the endianness of every PDU. */ enum endian_type { BE, LE }; /** * \brief Enum which identifies each type of PDU. * * This enum is used to identify the PDU type. */ enum PDUType { RAW, ETHERNET_II, IEEE802_3, DOT3 = IEEE802_3, RADIOTAP, DOT11, DOT11_ACK, DOT11_ASSOC_REQ, DOT11_ASSOC_RESP, DOT11_AUTH, DOT11_BEACON, DOT11_BLOCK_ACK, DOT11_BLOCK_ACK_REQ, DOT11_CF_END, DOT11_DATA, DOT11_CONTROL, DOT11_DEAUTH, DOT11_DIASSOC, DOT11_END_CF_ACK, DOT11_MANAGEMENT, DOT11_PROBE_REQ, DOT11_PROBE_RESP, DOT11_PS_POLL, DOT11_REASSOC_REQ, DOT11_REASSOC_RESP, DOT11_RTS, DOT11_QOS_DATA, LLC, SNAP, IP, ARP, TCP, UDP, ICMP, BOOTP, DHCP, EAPOL, RC4EAPOL, RSNEAPOL, DNS, LOOPBACK, IPv6, ICMPv6, SLL, DHCPv6, DOT1AD, DOT1Q, PPPOE, STP, PPI, IPSEC_AH, IPSEC_ESP, PKTAP, MPLS, DOT11_CONTROL_TA, VXLAN, UNKNOWN = 999, USER_DEFINED_PDU = 1000 }; /** * The endianness used by this PDU. This can be overriden * by subclasses. */ static const endian_type endianness = BE; /** * \brief Type used to store a PDU header's data. */ struct metadata { /** * \brief Default constructor */ metadata(); /** * \brief Constructs an instance of metadata using the given values */ metadata(uint32_t header_size, PDUType current_type, PDUType next_type); /** * The total header size for the current protocol */ uint32_t header_size; /** * The current PDU type */ PDUType current_pdu_type; /** * The next PDU type */ PDUType next_pdu_type; }; /** * \brief Default constructor. */ PDU(); #if TINS_IS_CXX11 /** * \brief Move constructor. * * \param rhs The PDU to be moved. */ PDU(PDU &&rhs) TINS_NOEXCEPT : inner_pdu_(0), parent_pdu_(0) { std::swap(inner_pdu_, rhs.inner_pdu_); if (inner_pdu_) { inner_pdu_->parent_pdu(this); } } /** * \brief Move assignment operator. * * \param rhs The PDU to be moved. */ PDU& operator=(PDU &&rhs) TINS_NOEXCEPT { delete inner_pdu_; inner_pdu_ = 0; std::swap(inner_pdu_, rhs.inner_pdu_); if (inner_pdu_) { inner_pdu_->parent_pdu(this); } return* this; } #endif /** * \brief PDU destructor. * * Deletes the inner pdu, as a consequence every child pdu is * deleted. */ virtual ~PDU(); /** \brief The header's size */ virtual uint32_t header_size() const = 0; /** \brief Trailer's size. * * Some protocols require a trailer(like Ethernet). This defaults to 0. */ virtual uint32_t trailer_size() const { return 0; } /** \brief The whole chain of PDU's size, including this one. * * Returns the sum of this and all children PDUs' size. */ uint32_t size() const; /** \brief The whole chain of PDU's advertised size, including this one. * * Returns the sum of this and all children PDU's advertised size. */ virtual uint32_t advertised_size() const; /** * \brief Getter for the inner PDU. * \return The current inner PDU. Might be a null pointer. */ PDU* inner_pdu() const { return inner_pdu_; } /** * Getter for the parent PDU * \return The current parent PDU. Might be a null pointer. */ PDU* parent_pdu() const { return parent_pdu_; } /** * \brief Releases the inner PDU. * * This method makes this PDU to no longer own the inner * PDU. The current inner PDU is returned, and is not * destroyed. That means after calling this function, you are * responsible for using operator delete on the returned pointer. * * Use this method if you want to somehow re-use a PDU that * is already owned by another PDU. * * \return The current inner PDU. Might be 0. */ PDU* release_inner_pdu(); /** * \brief Sets the child PDU. * * When setting a new inner_pdu, the instance takesownership of * the object, therefore deleting it when it's no longer required. * * \param next_pdu The new child PDU. */ void inner_pdu(PDU* next_pdu); /** * \brief Sets the child PDU. * * The PDU parameter is cloned using PDU::clone. * * \param next_pdu The new child PDU. */ void inner_pdu(const PDU& next_pdu); /** * \brief Serializes the whole chain of PDU's, including this one. * * This allocates a std::vector of size size(), and fills it * with the serialization this PDU, and all of the inner ones'. * * \return serialization_type containing the serialization * of the whole stack of PDUs. */ serialization_type serialize(); /** * \brief Finds and returns the first PDU that matches the given flag. * * This method searches for the first PDU which has the same type flag as * the given one. If the first PDU matches that flag, it is returned. * If no PDU matches, 0 is returned. * \param flag The flag which being searched. */ template T* find_pdu(PDUType type = T::pdu_flag) { PDU* pdu = this; while (pdu) { if (pdu->matches_flag(type)) { return static_cast(pdu); } pdu = pdu->inner_pdu(); } return 0; } /** * \brief Finds and returns the first PDU that matches the given flag. * * \param flag The flag which being searched. */ template const T* find_pdu(PDUType type = T::pdu_flag) const { return const_cast(this)->find_pdu(type); } /** * \brief Finds and returns the first PDU that matches the given flag. * * If the PDU is not found, a pdu_not_found exception is thrown. * * \sa PDU::find_pdu * * \param flag The flag which being searched. */ template T& rfind_pdu(PDUType type = T::pdu_flag) { T* ptr = find_pdu(type); if (!ptr) { throw pdu_not_found(); } return* ptr; } /** * \brief Finds and returns the first PDU that matches the given flag. * * \param flag The flag which being searched. */ template const T& rfind_pdu(PDUType type = T::pdu_flag) const { return const_cast(this)->rfind_pdu(type); } /** * \brief Clones this packet. * * This method clones this PDU and clones every inner PDU, * therefore obtaining a clone of the whole inner PDU chain. * The pointer returned must be deleted by the user. * \return A pointer to a clone of this packet. */ virtual PDU* clone() const = 0; /** * \brief Send the stack of PDUs through a PacketSender. * * This method will be called only for the PDU on the bottom of the stack, * therefore it should only implement this method if it can be sent. * * PacketSender implements specific methods to send packets which start * on every valid TCP/IP stack layer; this should only be a proxy for * those methods. * * If this PDU does not represent a link layer protocol, then * the interface argument will be ignored. * * \param sender The PacketSender which will send the packet. * \param iface The network interface in which this packet will * be sent. */ virtual void send(PacketSender& sender, const NetworkInterface& iface); /** * \brief Receives a matching response for this packet. * * This method should act as a proxy for PacketSender::recv_lX methods. * * \param sender The packet sender which will receive the packet. * \param iface The interface in which to expect the response. */ virtual PDU* recv_response(PacketSender& sender, const NetworkInterface& iface); /** * \brief Check whether ptr points to a valid response for this PDU. * * This method must check whether the buffer pointed by ptr is a valid * response for this PDU. If it is valid, then it might want to propagate * the call to the next PDU. Note that in some cases, such as ICMP * Host Unreachable, there is no need to ask the next layer for matching. * \param ptr The pointer to the buffer. * \param total_sz The size of the buffer. */ virtual bool matches_response(const uint8_t* ptr, uint32_t total_sz) const; /** * \brief Check whether this PDU matches the specified flag. * * This method should be reimplemented in PDU classes which have * subclasses, and try to match the given PDU to each of its parent * classes' flag. * \param flag The flag to match. */ virtual bool matches_flag(PDUType flag) const { return flag == pdu_type(); } /** * \brief Getter for the PDU's type. * * \return Returns the PDUType corresponding to the PDU. */ virtual PDUType pdu_type() const = 0; protected: /** * \brief Copy constructor. */ PDU(const PDU& other); /** * \brief Copy assignment operator. */ PDU& operator=(const PDU& other); /** * \brief Copy other PDU's inner PDU(if any). * \param pdu The PDU from which to copy the inner PDU. */ void copy_inner_pdu(const PDU& pdu); /** * \brief Prepares this PDU for serialization. * * This method is called before the inner PDUs are serialized. * It's useful in situations such as when serializing IP PDUs, * which don't contain any link layer encapsulation, and therefore * require to set the source IP address before the TCP/UDP checksum * is calculated. * * By default, this method does nothing */ virtual void prepare_for_serialize(); /** * \brief Serializes this PDU and propagates this action to child PDUs. * * \param buffer The buffer in which to store this PDU's serialization. * \param total_sz The total size of the buffer. */ void serialize(uint8_t* buffer, uint32_t total_sz); /** * \brief Serializes this TCP PDU. * * Each PDU must override this method and implement it's own * serialization. * \param buffer The buffer in which the PDU will be serialized. * \param total_sz The size available in the buffer. */ virtual void write_serialization(uint8_t* buffer, uint32_t total_sz) = 0; private: void parent_pdu(PDU* parent); PDU* inner_pdu_; PDU* parent_pdu_; }; /** * \brief Concatenation operator. * * This operator concatenates several PDUs. A copy of the right * operand is set at the end of the left one's inner PDU chain. * This means that: * * IP some_ip = IP("127.0.0.1") / TCP(12, 13) / RawPDU("bleh"); * * Works as expected, meaning the output PDU will look like the * following: * * IP - TCP - RawPDU * * \param lop The left operand, which will be the one modified. * \param rop The right operand, the one which will be appended * to lop. */ template T& operator/= (T& lop, const PDU& rop) { PDU* last = &lop; while (last->inner_pdu()) { last = last->inner_pdu(); } last->inner_pdu(rop.clone()); return lop; } /** * \brief Concatenation operator. * * \sa operator/= */ template T operator/ (T lop, const PDU& rop) { lop /= rop; return lop; } /** * \brief Concatenation operator on PDU pointers. * * \sa operator/= */ template T* operator/= (T* lop, const PDU& rop) { *lop /= rop; return lop; } namespace Internals { template struct remove_pointer { typedef T type; }; template struct remove_pointer { typedef T type; }; } template T tins_cast(U* pdu) { typedef typename Internals::remove_pointer::type TrueT; return pdu && (TrueT::pdu_flag == pdu->pdu_type()) ? static_cast(pdu) : 0; } template T& tins_cast(U& pdu) { T* ptr = tins_cast(&pdu); if (!ptr) { throw bad_tins_cast(); } return* ptr; } } // Tins #endif // TINS_PDU_H