linux netfilter queue 修改数据包,用netfilter_queue 在用户态修改网络数据包的例子程序...

#include #include #include #include #include #include #include #include #include #include #include #ifdef __LITTLE_ENDIAN#define IPQUAD(addr) /((unsigned char *)&addr)[0],/((unsi...

聪明绝顶的卡叔

749人浏览 · 2021-05-17 02:51:53

聪明绝顶的卡叔 · 2021-05-17 02:51:53 发布

#include

#ifdef __LITTLE_ENDIAN

#define IPQUAD(addr) /

((unsigned char *)&addr)[0], /

((unsigned char *)&addr)[1], /

((unsigned char *)&addr)[2], /

((unsigned char *)&addr)[3]

#else

#define IPQUAD(addr) /

((unsigned char *)&addr)[3], /

((unsigned char *)&addr)[2], /

((unsigned char *)&addr)[1], /

((unsigned char *)&addr)[0]

#endif

static u_int16_t checksum(u_int32_t init, u_int8_t *addr, size_t count){

/*Compute Internet Checksum for "count" bytes

* beginning at location "addr".*/

u_int32_t sum = init;

while( count > 1 ) {

/*This is the inner loop*/

sum += ntohs(* (u_int16_t*) addr);

addr += 2;

count -= 2;

}

/*Add left-over byte, if any*/

if( count > 0 )

sum += * (u_int8_t *) addr;

/*Fold 32-bit sum to 16 bits*/

while (sum>>16)

sum = (sum & 0xffff) + (sum >> 16);

return (u_int16_t)~sum;

}

static u_int16_t ip_checksum(struct iphdr* iphdrp){

return checksum(0, (u_int8_t*)iphdrp, iphdrp->ihl<<2);

}

static void set_ip_checksum(struct iphdr* iphdrp){

iphdrp->check = 0;

iphdrp->check = htons(checksum(0, (u_int8_t*)iphdrp, iphdrp->ihl<<2));

}

static u_int16_t tcp_checksum2(struct iphdr* iphdrp, struct tcphdr* tcphdrp){

size_t tcplen = ntohs(iphdrp->tot_len) - (iphdrp->ihl<<2);

u_int32_t cksum = 0;

cksum += ntohs((iphdrp->saddr >> 16) & 0x0000ffff);

cksum += ntohs(iphdrp->saddr & 0x0000ffff);

cksum += ntohs((iphdrp->daddr >> 16) & 0x0000ffff);

cksum += ntohs(iphdrp->daddr & 0x0000ffff);

cksum += iphdrp->protocol & 0x00ff;

cksum += tcplen;

return checksum(cksum, (u_int8_t*)tcphdrp, tcplen);

}

static u_int16_t tcp_checksum1(struct iphdr* iphdrp){

struct tcphdr *tcphdrp =

(struct tcphdr*)((u_int8_t*)iphdrp + (iphdrp->ihl<<2));

return tcp_checksum2(iphdrp, tcphdrp);

}

static void set_tcp_checksum2(struct iphdr* iphdrp, struct tcphdr* tcphdrp){

tcphdrp->check = 0;

tcphdrp->check = htons(tcp_checksum2(iphdrp, tcphdrp));

}

static void set_tcp_checksum1(struct iphdr* iphdrp){

struct tcphdr *tcphdrp =

(struct tcphdr*)((u_int8_t*)iphdrp + (iphdrp->ihl<<2));

set_tcp_checksum2(iphdrp, tcphdrp);

}

static int cb(struct nfq_q_handle *qh, struct nfgenmsg *nfmsg,

struct nfq_data *nfa, void *data){

(void)nfmsg;

(void)data;

u_int32_t id = 0;

struct nfqnl_msg_packet_hdr *ph;

unsigned char *pdata = NULL;

int pdata_len;

ph = nfq_get_msg_packet_hdr(nfa);

if (ph){

id = ntohl(ph->packet_id);

}

pdata_len = nfq_get_payload(nfa, (char**)&pdata);

if(pdata_len == -1){

pdata_len = 0;

}

struct iphdr *iphdrp = (struct iphdr *)pdata;

printf("len %d iphdr %d %u.%u.%u.%u ->",

pdata_len,

iphdrp->ihl<<2,

IPQUAD(iphdrp->saddr));

printf(" %u.%u.%u.%u %s",

IPQUAD(iphdrp->daddr),

getprotobynumber(iphdrp->protocol)->p_name);

printf(" ipsum %hu", ip_checksum(iphdrp));

if(iphdrp->protocol == IPPROTO_TCP){

printf(" tcpsum %hu", tcp_checksum1(iphdrp));

}

#define TO "220.181.37.55"

#define DNAT_TO "64.233.189.104"

if(iphdrp->daddr == inet_addr(TO)){

printf(" !hacked!");

iphdrp->daddr = inet_addr(DNAT_TO);

set_ip_checksum(iphdrp);

if(iphdrp->protocol == IPPROTO_TCP){

set_tcp_checksum1(iphdrp);

printf(" ipsum+ %hu tcpsum+ %hu",

ip_checksum(iphdrp), tcp_checksum1(iphdrp));

}

if(iphdrp->saddr == inet_addr(DNAT_TO)){

iphdrp->saddr = inet_addr(TO);

printf(" !hacked!");

set_ip_checksum(iphdrp);

if(iphdrp->protocol == IPPROTO_TCP){

set_tcp_checksum1(iphdrp);

printf(" ipsum+ %hu tcpsum+ %hu",

ip_checksum(iphdrp), tcp_checksum1(iphdrp));

}

printf("/n");

return nfq_set_verdict_mark(qh, id, NF_REPEAT, 1,

(u_int32_t)pdata_len, pdata);

}

int main(int argc, char **argv){

struct nfq_handle *h;

struct nfq_q_handle *qh;

struct nfnl_handle *nh;

int fd;

int rv;

char buf[4096];

h = nfq_open();

if (!h) {

exit(1);

}

if (nfq_unbind_pf(h, AF_INET) < 0){

exit(1);

}

if (nfq_bind_pf(h, AF_INET) < 0) {

exit(1);

}

int qid = 0;

if(argc == 2){

qid = atoi(argv[1]);

}

printf("binding this socket to queue %d/n", qid);

qh = nfq_create_queue(h, qid, &cb, NULL);

if (!qh) {

exit(1);

}

if (nfq_set_mode(qh, NFQNL_COPY_PACKET, 0xffff) < 0) {

exit(1);

}

nh = nfq_nfnlh(h);

fd = nfnl_fd(nh);

while ((rv = recv(fd, buf, sizeof(buf), 0)) && rv >= 0) {

nfq_handle_packet(h, buf, rv);

}

/*never reached*/

nfq_destroy_queue(qh);

nfq_close(h);

exit(0);

}

DAMO开发者矩阵

DAMO开发者矩阵，由阿里巴巴达摩院和中国互联网协会联合发起，致力于探讨最前沿的技术趋势与应用成果，搭建高质量的交流与分享平台，推动技术创新与产业应用链接，围绕“人工智能与新型计算”构建开放共享的开发者生态。

更多推荐

【机器人避障】基于全自主差动驱动移动机器人复杂环境中动态路径跟踪和实时障碍物规避附Matlab代码

一、开篇引入：从需求到核心 —— 差动驱动机器人的自主导航难题一、开篇引入：从需求到核心 —— 差动驱动机器人的自主导航难题1.1 应用场景驱动：差动驱动机器人的 “用武之地”在科技飞速发展的当下，全自主差动驱动移动机器人凭借独特的结构与灵活的运动能力，在众多领域大显身手。在军事侦察领域，它能深入危险区域，凭借小巧身形穿梭于复杂地形，为作战指挥提供关键情报，降低士兵暴露于危险环境的风险；工业物料

DAMO开发者矩阵

【图像加密】基于仿射变换和双随机相位的图像加密算法实现附matlab代码

在大数据传输、云端存储、军事通信、医疗影像共享等场景中，图像作为核心信息载体，其隐私保护至关重要。传统明文传输或简单加密方式易遭窃取、篡改，而图像的冗余性、相关性等特性，也对加密算法提出了 “高安全性、抗攻击、易实现” 的核心要求 —— 图像加密的本质，是通过数学变换将原始图像转化为无意义的乱码，仅授权者可通过密钥还原，从而保障信息安全。