overflow_scanner/probe
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
76e8feee72
probe/internal/pcap/pcap_scan.go

324 lines
7.6 KiB
Go
Raw Normal View History

init
2018-08-12 10:24:23 +00:00
package pcap
import (
"fmt"
"sync"
test
2018-08-13 07:19:59 +00:00
omd "git.loafle.net/overflow/model/discovery"
init
2018-08-12 10:24:23 +00:00
"github.com/google/gopacket"
"github.com/google/gopacket/layers"
"github.com/google/gopacket/pcap"
)
ing
2018-09-04 18:58:33 +00:00
func NewPCapScanner(zone *omd.Zone) PCapScanner {
init
2018-08-12 10:24:23 +00:00
ps := &pCapScan{
test
2018-08-12 11:08:31 +00:00
zone: zone,
init
2018-08-12 10:24:23 +00:00
}
return ps
}
type PCapScanner interface {
OpenARP() chan *layers.ARP
CloseARP(ch chan *layers.ARP)
icmp added
2018-08-31 10:05:49 +00:00
OpenICMP4() chan gopacket.Packet
CloseICMP4(ch chan gopacket.Packet)
OpenICMP6() chan gopacket.Packet
CloseICMP6(ch chan gopacket.Packet)
init
2018-08-12 10:24:23 +00:00
OpenTCP(ip string) chan *layers.TCP
CloseTCP(ip string, ch chan *layers.TCP)
OpenUDP(ip string) chan gopacket.Packet
CloseUDP(ip string, ch chan gopacket.Packet)
WritePacketData(data []byte) (err error)
ing
2018-09-04 18:58:33 +00:00
Start() error
Stop()
init
2018-08-12 10:24:23 +00:00
retain()
release() bool
}
type pCapScan struct {
pCapHandle *pcap.Handle
test
2018-08-13 07:19:59 +00:00
zone *omd.Zone
init
2018-08-12 10:24:23 +00:00
ing
2018-09-04 20:25:04 +00:00
arpListenerChanMtx sync.RWMutex
init
2018-08-12 10:24:23 +00:00
arpListenerChans []chan *layers.ARP
ing
2018-09-04 20:25:04 +00:00
icmp4ListenerChanMtx sync.RWMutex
icmp added
2018-08-31 10:05:49 +00:00
icmp4ListenerChans []chan gopacket.Packet
ing
2018-09-04 20:25:04 +00:00
icmp6ListenerChanMtx sync.RWMutex
icmp added
2018-08-31 10:05:49 +00:00
icmp6ListenerChans []chan gopacket.Packet
ing
2018-09-04 20:25:04 +00:00
tcpListenerChanMtx sync.RWMutex
init
2018-08-12 10:24:23 +00:00
tcpListenerChans map[string][]chan *layers.TCP
ing
2018-09-04 20:25:04 +00:00
udpListenerChanMtx sync.RWMutex
init
2018-08-12 10:24:23 +00:00
udpListenerChans map[string][]chan gopacket.Packet
refCount int
stopChan chan struct{}
stopWg sync.WaitGroup
}
ing
2018-09-04 18:58:33 +00:00
func (ps *pCapScan) Start() error {
init
2018-08-12 10:24:23 +00:00
if ps.stopChan != nil {
return fmt.Errorf("PCapScanner: already running. Stop it before starting it again")
}
// new pcap handle
var h *pcap.Handle
var err error
ing
2018-09-21 10:35:23 +00:00
if h, err = pcap.OpenLive(ps.zone.Iface, 65536, false, pcap.BlockForever); nil != err {
init
2018-08-12 10:24:23 +00:00
return err
}
// set filter
// todo add tcp, udp filter
ing
2018-09-28 04:53:46 +00:00
// if err = h.SetBPFFilter("arp or icmp or icmp6 and src net " + ps.zone.Network + " or (((tcp[tcpflags] & (tcp-syn|tcp-ack) != 0) or (tcp[tcpflags] & (tcp-rst) != 0)) and port 60000) or udp "); nil != err {
if err = h.SetBPFFilter("(arp or icmp or icmp6 or (((tcp[tcpflags] & (tcp-syn|tcp-ack) != 0) or (tcp[tcpflags] & (tcp-rst) != 0)) and port 60000) or udp) and src net " + ps.zone.Network); nil != err {
ing
2018-09-04 18:58:33 +00:00
// if err = h.SetBPFFilter("arp or icmp or icmp6 or tcp or udp"); nil != err {
init
2018-08-12 10:24:23 +00:00
h.Close()
return err
}
ps.pCapHandle = h
ps.arpListenerChans = make([]chan *layers.ARP, 0)
icmp added
2018-08-31 10:05:49 +00:00
ps.icmp4ListenerChans = make([]chan gopacket.Packet, 0)
ps.icmp6ListenerChans = make([]chan gopacket.Packet, 0)
init
2018-08-12 10:24:23 +00:00
ps.tcpListenerChans = make(map[string][]chan *layers.TCP, 0)
ps.udpListenerChans = make(map[string][]chan gopacket.Packet, 0)
ps.stopChan = make(chan struct{})
ps.stopWg.Add(1)
go handleReceive(ps)
return nil
}
ing
2018-09-04 18:58:33 +00:00
func (ps *pCapScan) Stop() {
init
2018-08-12 10:24:23 +00:00
if ps.stopChan == nil {
panic("PCapScanner: must be started before stopping it")
}
close(ps.stopChan)
ps.stopWg.Wait()
ps.stopChan = nil
}
func (ps *pCapScan) OpenARP() chan *layers.ARP {
ps.arpListenerChanMtx.Lock()
defer ps.arpListenerChanMtx.Unlock()
ing
2018-09-04 18:58:33 +00:00
c := make(chan *layers.ARP, 128)
init
2018-08-12 10:24:23 +00:00
ps.arpListenerChans = append(ps.arpListenerChans, c)
return c
}
func (ps *pCapScan) CloseARP(ch chan *layers.ARP) {
ps.arpListenerChanMtx.Lock()
defer ps.arpListenerChanMtx.Unlock()
ing
2018-09-12 07:45:05 +00:00
for indexI := 0; indexI < len(ps.arpListenerChans); indexI++ {
if ch == ps.arpListenerChans[indexI] {
close(ch)
ps.arpListenerChans = append(ps.arpListenerChans[:indexI], ps.arpListenerChans[indexI+1:]...)
break
}
init
2018-08-12 10:24:23 +00:00
}
}
icmp added
2018-08-31 10:05:49 +00:00
func (ps *pCapScan) OpenICMP4() chan gopacket.Packet {
ps.icmp4ListenerChanMtx.Lock()
defer ps.icmp4ListenerChanMtx.Unlock()
ing
2018-09-04 18:58:33 +00:00
c := make(chan gopacket.Packet, 128)
icmp added
2018-08-31 10:05:49 +00:00
ps.icmp4ListenerChans = append(ps.icmp4ListenerChans, c)
return c
}
func (ps *pCapScan) CloseICMP4(ch chan gopacket.Packet) {
ps.icmp4ListenerChanMtx.Lock()
defer ps.icmp4ListenerChanMtx.Unlock()
ing
2018-09-12 07:45:05 +00:00
for indexI := 0; indexI < len(ps.icmp4ListenerChans); indexI++ {
if ch == ps.icmp4ListenerChans[indexI] {
close(ch)
ps.icmp4ListenerChans = append(ps.icmp4ListenerChans[:indexI], ps.icmp4ListenerChans[indexI+1:]...)
break
}
icmp added
2018-08-31 10:05:49 +00:00
}
}
func (ps *pCapScan) OpenICMP6() chan gopacket.Packet {
ps.icmp6ListenerChanMtx.Lock()
defer ps.icmp6ListenerChanMtx.Unlock()
ing
2018-09-04 18:58:33 +00:00
c := make(chan gopacket.Packet, 128)
icmp added
2018-08-31 10:05:49 +00:00
ps.icmp6ListenerChans = append(ps.icmp6ListenerChans, c)
return c
}
func (ps *pCapScan) CloseICMP6(ch chan gopacket.Packet) {
ps.icmp6ListenerChanMtx.Lock()
defer ps.icmp6ListenerChanMtx.Unlock()
ing
2018-09-12 07:45:05 +00:00
for indexI := 0; indexI < len(ps.icmp6ListenerChans); indexI++ {
if ch == ps.icmp6ListenerChans[indexI] {
close(ch)
ps.icmp6ListenerChans = append(ps.icmp6ListenerChans[:indexI], ps.icmp6ListenerChans[indexI+1:]...)
break
}
icmp added
2018-08-31 10:05:49 +00:00
}
}
init
2018-08-12 10:24:23 +00:00
func (ps *pCapScan) OpenTCP(ip string) chan *layers.TCP {
ps.tcpListenerChanMtx.Lock()
defer ps.tcpListenerChanMtx.Unlock()
if _, ok := ps.tcpListenerChans[ip]; !ok {
ps.tcpListenerChans[ip] = make([]chan *layers.TCP, 0)
}
ing
2018-09-04 19:30:04 +00:00
ch := make(chan *layers.TCP, 2048)
init
2018-08-12 10:24:23 +00:00
ps.tcpListenerChans[ip] = append(ps.tcpListenerChans[ip], ch)
return ch
}
func (ps *pCapScan) CloseTCP(ip string, ch chan *layers.TCP) {
ps.tcpListenerChanMtx.Lock()
defer ps.tcpListenerChanMtx.Unlock()
if _, ok := ps.tcpListenerChans[ip]; !ok {
return
}
ing
2018-09-12 07:45:05 +00:00
chs, ok := ps.tcpListenerChans[ip]
if !ok {
return
}
for indexI := 0; indexI < len(chs); indexI++ {
if ch == chs[indexI] {
close(ch)
ps.tcpListenerChans[ip] = append(ps.tcpListenerChans[ip][:indexI], ps.tcpListenerChans[ip][indexI+1:]...)
break
}
init
2018-08-12 10:24:23 +00:00
}
}
func (ps *pCapScan) OpenUDP(ip string) chan gopacket.Packet {
ps.udpListenerChanMtx.Lock()
defer ps.udpListenerChanMtx.Unlock()
if _, ok := ps.udpListenerChans[ip]; !ok {
ps.udpListenerChans[ip] = make([]chan gopacket.Packet, 0)
}
ing
2018-09-04 18:58:33 +00:00
ch := make(chan gopacket.Packet, 256)
init
2018-08-12 10:24:23 +00:00
ps.udpListenerChans[ip] = append(ps.udpListenerChans[ip], ch)
return ch
}
func (ps *pCapScan) CloseUDP(ip string, ch chan gopacket.Packet) {
ps.udpListenerChanMtx.Lock()
defer ps.udpListenerChanMtx.Unlock()
if _, ok := ps.udpListenerChans[ip]; !ok {
return
}
ing
2018-09-12 07:45:05 +00:00
chs, ok := ps.udpListenerChans[ip]
if !ok {
return
}
for indexI := 0; indexI < len(chs); indexI++ {
if ch == chs[indexI] {
close(ch)
ps.udpListenerChans[ip] = append(ps.udpListenerChans[ip][:indexI], ps.udpListenerChans[ip][indexI+1:]...)
break
}
init
2018-08-12 10:24:23 +00:00
}
}
func (ps *pCapScan) WritePacketData(data []byte) (err error) {
return ps.pCapHandle.WritePacketData(data)
}
func (ps *pCapScan) retain() {
ps.refCount++
}
func (ps *pCapScan) release() bool {
ps.refCount--
if 0 > ps.refCount {
ps.refCount = 0
}
return 0 == ps.refCount
}
func (ps *pCapScan) destroy() {
ps.tcpListenerChanMtx.Lock()
for k, v := range ps.tcpListenerChans {
for _, ch := range v {
close(ch)
}
v = v[:0]
delete(ps.tcpListenerChans, k)
}
ps.tcpListenerChanMtx.Unlock()
ps.udpListenerChanMtx.Lock()
for k, v := range ps.udpListenerChans {
for _, ch := range v {
close(ch)
}
v = v[:0]
delete(ps.udpListenerChans, k)
}
ps.udpListenerChanMtx.Unlock()
icmp added
2018-08-31 10:05:49 +00:00
ps.icmp4ListenerChanMtx.Lock()
for _, v := range ps.icmp4ListenerChans {
close(v)
}
ps.icmp4ListenerChans = ps.icmp4ListenerChans[:0]
ps.icmp4ListenerChanMtx.Unlock()
ps.icmp6ListenerChanMtx.Lock()
for _, v := range ps.icmp6ListenerChans {
close(v)
}
ps.icmp6ListenerChans = ps.icmp6ListenerChans[:0]
ps.icmp6ListenerChanMtx.Unlock()
init
2018-08-12 10:24:23 +00:00
ps.arpListenerChanMtx.Lock()
for _, v := range ps.arpListenerChans {
close(v)
}
ps.arpListenerChans = ps.arpListenerChans[:0]
ps.arpListenerChanMtx.Unlock()
ps.pCapHandle.Close()
}
func handleReceive(ps *pCapScan) {
defer ps.stopWg.Done()
icmp added
2018-08-31 10:05:49 +00:00
pSrc := gopacket.NewPacketSource(ps.pCapHandle, ps.pCapHandle.LinkType())
init
2018-08-12 10:24:23 +00:00
inPacket := pSrc.Packets()
for {
select {
case packet := <-inPacket:
ing
2018-09-04 19:30:04 +00:00
handlePacket(ps, packet)
init
2018-08-12 10:24:23 +00:00
case <-ps.stopChan:
ps.destroy()
return
}
}
port scan modified
2018-08-15 06:18:40 +00:00
init
2018-08-12 10:24:23 +00:00
}
Reference in New Issue Copy Permalink