* $Id: libnet_build_ipsec.c,v 1.19 2005/11/29 22:41:39 carlosc Exp $
* libnet_build_ipsec.c - IP packet assembler
* Copyright (c) 1998 - 2004 Mike D. Schiffman <mike@infonexus.com>
* Copyright (c) 2002 Jose Nazario <jose@crimelabs.net>
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
#include "../include/config.h"
#if (!(_WIN32) || (__CYGWIN__))
#include "../include/libnet.h"
#include "../include/win32/libnet.h"
libnet_build_ipsec_esp_hdr(u_int32_t spi
, u_int32_t seq
, u_int32_t iv
,
u_int8_t
*payload
, u_int32_t payload_s
, libnet_t
*l
, libnet_ptag_t ptag
)
struct libnet_esp_hdr esp_hdr
;
n
= LIBNET_IPSEC_ESP_HDR_H
+ payload_s
;/* size of memory block */
memset(&esp_hdr
, 0, sizeof(esp_hdr
));
esp_hdr
.esp_spi
= htonl(spi
); /* SPI */
esp_hdr
.esp_seq
= htonl(seq
); /* ESP sequence number */
esp_hdr
.esp_iv
= htonl(iv
); /* initialization vector */
* Find the existing protocol block if a ptag is specified, or create
p
= libnet_pblock_probe(l
, ptag
, n
, LIBNET_PBLOCK_IPSEC_ESP_HDR_H
);
n
= libnet_pblock_append(l
, p
, (u_int8_t
*)&esp_hdr
, LIBNET_IPSEC_ESP_HDR_H
);
if ((payload
&& !payload_s
) || (!payload
&& payload_s
))
snprintf(l
->err_buf
, LIBNET_ERRBUF_SIZE
,
"%s(): payload inconsistency\n", __func__
);
if (payload
&& payload_s
)
n
= libnet_pblock_append(l
, p
, payload
, payload_s
);
return (ptag
? ptag
: libnet_pblock_update(l
, p
, h
,
LIBNET_PBLOCK_IPSEC_ESP_HDR_H
));
libnet_pblock_delete(l
, p
);
libnet_build_ipsec_esp_ftr(u_int8_t len
, u_int8_t nh
, int8_t *auth
,
u_int8_t
*payload
, u_int32_t payload_s
, libnet_t
*l
,
/* XXX we need to know the size of auth */
struct libnet_esp_ftr esp_ftr
;
n
= LIBNET_IPSEC_ESP_FTR_H
+ payload_s
;/* size of memory block */
memset(&esp_ftr
, 0, sizeof(esp_ftr
));
esp_ftr
.esp_pad_len
= len
; /* pad length */
esp_ftr
.esp_nh
= nh
; /* next header pointer */
esp_ftr
.esp_auth
= auth
; /* authentication data */
* Find the existing protocol block if a ptag is specified, or create
p
= libnet_pblock_probe(l
, ptag
, n
, LIBNET_PBLOCK_IPSEC_ESP_FTR_H
);
n
= libnet_pblock_append(l
, p
, (u_int8_t
*)&esp_ftr
, LIBNET_IPSEC_ESP_FTR_H
);
if ((payload
&& !payload_s
) || (!payload
&& payload_s
))
snprintf(l
->err_buf
, LIBNET_ERRBUF_SIZE
,
"%s(): payload inconsistency\n", __func__
);
if (payload
&& payload_s
)
n
= libnet_pblock_append(l
, p
, payload
, payload_s
);
return (ptag
? ptag
: libnet_pblock_update(l
, p
, h
,
LIBNET_PBLOCK_IPSEC_ESP_FTR_H
));
libnet_pblock_delete(l
, p
);
libnet_build_ipsec_ah(u_int8_t nh
, u_int8_t len
, u_int16_t res
,
u_int32_t spi
, u_int32_t seq
, u_int32_t auth
, u_int8_t
*payload
,
u_int32_t payload_s
, libnet_t
*l
, libnet_ptag_t ptag
)
struct libnet_ah_hdr ah_hdr
;
n
= LIBNET_IPSEC_AH_H
+ payload_s
;/* size of memory block */
* Find the existing protocol block if a ptag is specified, or create
p
= libnet_pblock_probe(l
, ptag
, n
, LIBNET_PBLOCK_IPSEC_AH_H
);
memset(&ah_hdr
, 0, sizeof(ah_hdr
));
ah_hdr
.ah_nh
= nh
; /* next header */
ah_hdr
.ah_len
= len
; /* length */
ah_hdr
.ah_res
= (res
? htons(res
) : 0);
ah_hdr
.ah_spi
= htonl(spi
); /* SPI */
ah_hdr
.ah_seq
= htonl(seq
); /* AH sequence number */
ah_hdr
.ah_auth
= htonl(auth
); /* authentication data */
n
= libnet_pblock_append(l
, p
, (u_int8_t
*)&ah_hdr
, LIBNET_IPSEC_AH_H
);
if ((payload
&& !payload_s
) || (!payload
&& payload_s
))
snprintf(l
->err_buf
, LIBNET_ERRBUF_SIZE
,
"%s(): payload inconsistency\n", __func__
);
if (payload
&& payload_s
)
n
= libnet_pblock_append(l
, p
, payload
, payload_s
);
return (ptag
? ptag
: libnet_pblock_update(l
, p
, h
,
LIBNET_PBLOCK_IPSEC_AH_H
));
libnet_pblock_delete(l
, p
);