Chinaunix首页 | 论坛 | 博客

甄|后的ChinaUnix博客

首页 |  博文目录 |  关于我

甄|后

  • 博客访问: 32123
  • 博文数量: 6
  • 博客积分: 65
  • 博客等级: 民兵
  • 技术积分: 71
  • 用 户 组: 普通用户
  • 注册时间: 2011-10-23 21:40
文章分类

全部博文(6)

文章存档

2014年(2)

2013年(2)

2012年(2)

我的朋友
最近访客
推荐博文
相关博文
模拟TCP三次握手

分类: LINUX

2013-07-07 16:29:44


点击(此处)折叠或打开

  1. #include <stdio.h>
  2. #include <string.h>
  3. #include <errno.h>
  4. #include <sys/types.h>
  5. #include <sys/socket.h>
  6. #include <netinet/in.h>
  7. #include <linux/if_ether.h>
  8. #include <linux/sockios.h>
  9. #include <sys/socket.h>
  10. #include <netpacket/packet.h>
  11. #include <net/ethernet.h>
  12. #include <net/if_arp.h>
  13. #include <net/if.h>


  16. #define DESTPORT 80
  17. #define LOCALPORT 0x8888

  19. /* Buffer Size */
  20. #define SND_BUF_SIZE 1024*5

  22. /* Buffer */
  23. static int g_iSendBufSize = SND_BUF_SIZE;

  25. static int g_iRecvBufSize = SND_BUF_SIZE;

  27. static unsigned long seqno, ackno;    //save sequence no and ackment no

  29. extern int errno;

  31. /* Prseuheader */
  32. struct prseuheader
  33. {
  34.     unsigned long s_addr;
  35.     unsigned long d_addr;
  36.     unsigned char zero;
  37.     unsigned char prototp;
  38.     unsigned short len;
  39. };

  41. /* IP Head */
  42. struct IP_Head
  43. {
  44.     unsigned char length:4;
  45.     unsigned char version:4;
  46.     unsigned char tos;
  47.     unsigned short total_length;
  48.     unsigned short id;
  49.     unsigned short flagoff;
  50.     unsigned char ttl;
  51.     unsigned char protocol;
  52.     unsigned short chksum;
  53.     unsigned int source;
  54.     unsigned int dest;
  55. };

  57. /* TCP Head */
  58. struct TCP_Head
  59. {
  60.     unsigned short source_port;
  61.     unsigned short dest_port;
  62.     unsigned int seqno;
  63.     unsigned int ackno;
  64.     unsigned char rev1:4;
  65.     unsigned char len:4;
  66.     unsigned char fin:1;
  67.     unsigned char syn:1;
  68.     unsigned char rst:1;
  69.     unsigned char psh:1;
  70.     unsigned char ack:1;
  71.     unsigned char urg:1;
  72.     unsigned char rev2:2;
  73.     unsigned short winsize;
  74.     unsigned short chksum;
  75.     unsigned short urgent;
  76. };

  78. /* Check sum */
  79. unsigned short
  80. checksum (unsigned short *buffer, int size)
  81. {
  82.     unsigned long cksum = 0;

  84.     while (size > 1)
  85.     {
  86.         cksum += *buffer++;
  87.         size -= 2;
  88.     }
  89.     if (size)
  90.     {
  91.         cksum += *(u_char *) buffer;
  92.     }
  93.     cksum = (cksum >> 16) + (cksum & 0xffff);
  94.     cksum += (cksum >> 16);
  95.     return (unsigned short) (~cksum);
  96. }

  98. //Create SOCK_RAW
  99. int
  100. creat_raw ()
  101. {
  102.     int sk;

  104.     sk = socket (PF_PACKET, SOCK_DGRAM, htons (ETH_P_ALL));
  105.     if (sk < 0)
  106.     {
  107.         strerror (errno);
  108.         return -1;
  109.     }
  110.     return sk;
  111. }

  113. //Set sock option
  114. int
  115. set_promisc (int sk)
  116. {
  117. //    struct ifreq ifr;
  118. //
  119. //    strcpy (ifr.ifr_name, "eth0");
  120. //    if ((ioctl (sk, SIOCGIFFLAGS, &ifr) == -1))
  121. //    {
  122. //        strerror (errno);
  123. //    }
  124. //    ifr.ifr_flags |= IFF_PROMISC;
  125. //    if (ioctl (sk, SIOCSIFFLAGS, &ifr) == -1)
  126. //    {
  127. //        strerror (errno);
  128. //    }
  129.     return 0;
  130. }

  132. /* fill ip head */
  133. int
  134. fill_iph (unsigned char buffer[])
  135. {
  136.     struct IP_Head *pIph;

  138.     int total_len = sizeof (struct IP_Head) + sizeof (struct TCP_Head);


  141.     pIph = (struct IP_Head *) buffer;

  143.     pIph->length = 5;
  144.     pIph->version = 4;
  145.     pIph->tos = 0;
  146.     pIph->total_length = htons (total_len);
  147.     pIph->id = 0;
  148.     pIph->flagoff = htons (0x4000);
  149.     pIph->ttl = 255;
  150.     pIph->protocol = 6;
  151.     pIph->chksum = 0;
  152.     pIph->source = inet_addr ("192.168.1.2");    //Local PC 写上自己网卡的IP
  153.     pIph->dest = inet_addr ("119.75.217.56");    //remote PC 服务器的IP
  154.     pIph->chksum =
  155.         checksum ((unsigned short *) pIph, sizeof (struct IP_Head));

  157.     return 0;
  158. }

  160. /* fill tcp head */
  161. int
  162. fill_tcp (unsigned char buffer[], unsigned char control)
  163. {
  164.     struct TCP_Head *pTcph;

  166.     pTcph = (struct TCP_Head *) (buffer + sizeof (struct IP_Head));

  168.     pTcph->source_port = htons (LOCALPORT);
  169.     pTcph->dest_port = htons (DESTPORT);
  170.     pTcph->seqno = htonl (seqno);
  171.     pTcph->ackno = htonl (ackno);
  172.     pTcph->rev1 = 0;
  173.     pTcph->len = 5;
  174.     pTcph->fin = control & 0x01 ? 1 : 0;
  175.     pTcph->syn = control & 0x02 ? 1 : 0;
  176.     pTcph->rst = control & 0x04 ? 1 : 0;
  177.     pTcph->psh = control & 0x10 ? 1 : 0;
  178.     pTcph->ack = control & 0x20 ? 1 : 0;
  179.     pTcph->urg = control & 0x40 ? 1 : 0;
  180.     pTcph->rev2 = 0;
  181.     pTcph->winsize = htons (1000);
  182.     pTcph->chksum = 0;
  183.     pTcph->urgent = 0;

  185.     return 0;
  186. }

  188. //send tcp packet
  189. int
  190. sendto_packet (int sk, unsigned char buffer[])
  191. {
  192.     int iRet;

  194.     struct IP_Head *pIph;

  196.     struct TCP_Head *pTcph;

  198.     struct prseuheader theheader;

  200.     char tcpbuff[32];            //it include prseuheader and tcp head

  202.     int total_len = sizeof (struct IP_Head) + sizeof (struct TCP_Head);

  204.     struct sockaddr_ll addr;

  206.     pIph = (struct IP_Head *) buffer;
  207.     pTcph = (struct TCP_Head *) (buffer + sizeof (struct IP_Head));

  209.     bzero (&addr, sizeof (struct sockaddr_ll));
  210.     addr.sll_family = htons (PF_PACKET);
  211.     addr.sll_protocol = htons (ETH_P_IP);
  212.     addr.sll_ifindex = if_nametoindex ("eth0");//换成你的网口的名字
  213.     addr.sll_addr[0] = 0x08;//
  214.     addr.sll_addr[1] = 0x10;//
  215.     addr.sll_addr[2] = 0x74;//换成你的网关的MAC地址就行了
  216.     addr.sll_addr[3] = 0xC9;//
  217.     addr.sll_addr[4] = 0x0B;//
  218.     addr.sll_addr[5] = 0x16;//

  220.     bzero (tcpbuff, 32);
  221.     theheader.s_addr = pIph->source;
  222.     theheader.d_addr = pIph->dest;
  223.     theheader.zero = 0;
  224.     theheader.prototp = 6;
  225.     theheader.len = htons (20);    //the size of TCP head

  227.     memcpy (tcpbuff, &theheader, 12);
  228.     memcpy (tcpbuff + 12, pTcph, 20);
  229.     pTcph->chksum = 0;
  230.     pTcph->chksum = checksum ((unsigned short *) tcpbuff, 32);

  232.     iRet =
  233.         sendto (sk, buffer, total_len, 0, (struct sockaddr *) &addr,
  234.                 sizeof (struct sockaddr_ll));
  235.     if (iRet < 0)
  236.     {
  237.         strerror (errno);
  238.         return -1;
  239.     }

  241.     return 0;
  242. }

  244. //receive tcp packet and display IP Head and TCP Head
  245. int
  246. recvfrom_packet (int sk, unsigned char buffer[])
  247. {
  248.     int iRet;

  250.     int lenfrom = sizeof (struct sockaddr_in);

  252.     struct sockaddr_in addr;

  254.     struct in_addr in;

  256.     struct IP_Head *pIph;

  258.     struct TCP_Head *pTcph;

  260.     fd_set fdR;

  262.     struct timeval timeout;

  264.     //Set Non-block
  265.     bzero (&addr, sizeof (struct sockaddr_in));
  266.     while (1)
  267.     {
  268.         iRet =
  269.             recvfrom (sk, buffer, g_iRecvBufSize, 0,
  270.                      (struct sockaddr *) &addr, &lenfrom);
  271.         if (iRet < 0)
  272.         {
  273.             printf ("error recvfrom\n");
  274.             return -1;
  275.         }
  276.         else
  277.         {
  278.             pIph = (struct IP_Head *) buffer;
  279.             pTcph = (struct TCP_Head *) (buffer + pIph->length * 4);
  280.             if ((pIph->protocol!=6) || ntohs (pTcph->dest_port) != 0x8888)
  281.             {
  282.                 continue;
  283.             }
  284.             //Display IP Head
  285.             printf ("Parse IP......\n");
  286.             printf ("length:%x\n", pIph->length);
  287.             printf ("version:%x\n", pIph->version);
  288.             printf ("tos:%x\n", pIph->tos);
  289.             printf ("total_length:%d\n", ntohs (pIph->total_length));
  290.             printf ("id:%d\n", ntohs (pIph->id));
  291.             printf ("flagoff:%x\n", ntohs (pIph->flagoff));
  292.             printf ("ttl:%d\n", pIph->ttl);
  293.             printf ("protocol:%d\n", pIph->protocol);
  294.             printf ("cksum:%x\n", ntohs (pIph->chksum));
  295.             in.s_addr = pIph->source;
  296.             printf ("SIP:%s\n", inet_ntoa (in));
  297.             in.s_addr = pIph->dest;
  298.             printf ("DIP:%s\n", inet_ntoa (in));

  300.             //Display TCP Head
  301.             printf ("Parse TCP......\n");
  302.             printf ("source_port:%d\n", ntohs (pTcph->source_port));
  303.             printf ("dest_port:%d\n", ntohs (pTcph->dest_port));
  304.             printf ("seqno:%d\n", ntohl (pTcph->seqno));
  305.             printf ("ackno:%d\n", ntohl (pTcph->ackno));
  306.             printf ("len:%d\n", pTcph->len);
  307.             printf ("fin:%d\n", pTcph->fin);
  308.             printf ("syn:%d\n", pTcph->syn);
  309.             printf ("rst:%d\n", pTcph->rst);
  310.             printf ("psh:%d\n", pTcph->psh);
  311.             printf ("ack:%d\n", pTcph->ack);
  312.             printf ("urg:%d\n", pTcph->urg);
  313.             printf ("winsize:%d\n", ntohs (pTcph->winsize));
  314.             printf ("urgent:%d\n", ntohs (pTcph->urgent));
  315.             printf ("\n");

  317.             seqno = ntohl (pTcph->seqno);
  318.             ackno = ntohl (pTcph->ackno);
  319.             
  320.             return;
  321.         }
  322.     }
  323. }

  325. //Main
  326. int
  327. main ()
  328. {
  329.     int sk;

  331.     unsigned char buffers[g_iSendBufSize];    //send buffer

  333.     unsigned char bufferr[g_iRecvBufSize];    //receive buffer

  335.     int iRet;

  337.     unsigned long temp;


  340.     sk = creat_raw ();
  341.     if (sk < 0)
  342.     {
  343.         printf ("Creat socket error.\n");
  344.         return -1;
  345.     }


  348.     iRet = set_promisc (sk);
  349.     if (iRet < 0)
  350.     {
  351.         printf ("Set socket promisc error.\n");
  352.         close (sk);
  353.         return -1;
  354.     }

  356.     //the first
  357.     bzero (buffers, g_iSendBufSize);
  358.     bzero (bufferr, g_iRecvBufSize);

  360.     fill_iph (buffers);
  361.     seqno = 0;
  362.     ackno = 0;
  363.     fill_tcp (buffers, 0x02);
  364.     iRet = sendto_packet (sk, buffers);
  365.     if (iRet < 0)
  366.     {
  367.         printf ("Sendto_packet error.\n");
  368.         close (sk);
  369.         return -1;
  370.     }

  372.     iRet = recvfrom_packet (sk, bufferr);
  373.     if (iRet < 0)
  374.     {
  375.         printf ("Recvfrom_packet error.\n");
  376.         printf ("time is over or error opertion \n");
  377.         close (sk);
  378.         return -1;
  379.     }


  382.     //the third
  383.     bzero (buffers, g_iSendBufSize);
  384.     bzero (bufferr, g_iRecvBufSize);

  386.     fill_iph (buffers);
  387.     temp = seqno;
  388.     seqno = ackno;
  389.     ackno = temp + 1;
  390.     fill_tcp (buffers, 0x20);
  391.     iRet = sendto_packet (sk, buffers);
  392.     if (iRet < 0)
  393.     {
  394.         printf ("Sendto_packet error.\n");
  395.         close (sk);
  396.         return -1;
  397.     }

  399.     close (sk);
  400.     return 0;
  401. }
模拟了一下TCP的三次握手,写得比较粗糙。
主要是创建一个PF_PACKET的套接字,绕过(bypass)系统的协议栈,然后自己构造IP层和TCP层就可以了。
运行之前先执行一下iptables -I INPUT -j DROP把来的数据都扔掉,要不然等服务器发回SYN ACK的时候会被系统的协议栈返回个RST。
可以打开wireshark看效果。
阅读(6611) | 评论(0) | 转发(0) |
0

上一篇:How to make a Bochs disk image-制作可启动的bochs虚拟磁盘

下一篇:linux的spinlock

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6