Pndpd/pndp/packet.go

package pndp

import (
	"bytes"
	"encoding/binary"
	"errors"
	"fmt"
	"net"
	"strings"
)

var emptyIpv6 = []byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}

type payload interface {
	constructPacket() ([]byte, int)
}

type ipv6Header struct {
	protocol   byte
	srcIP      []byte
	dstIP      []byte
	payloadLen []byte
	payload    []byte
}

func newIpv6Header(srcIp []byte, dstIp []byte) (*ipv6Header, error) {
	if len(dstIp) != 16 || len(srcIp) != 16 {
		return nil, errors.New("malformed IP")
	}
	return &ipv6Header{dstIP: dstIp, srcIP: srcIp, protocol: 0x3a}, nil
}

func (h *ipv6Header) addPayload(payload payload) {
	bPayload, checksumPos := payload.constructPacket()
	bPayloadLen := make([]byte, 2)
	binary.BigEndian.PutUint16(bPayloadLen, uint16(len(bPayload)))
	h.payloadLen = bPayloadLen

	if checksumPos > 0 {
		bChecksum := make([]byte, 2)
		binary.BigEndian.PutUint16(bChecksum, calculateChecksum(h, bPayload))
		bPayload[checksumPos] = bChecksum[0]
		bPayload[checksumPos+1] = bChecksum[1]
	}

	h.payload = bPayload
}

func (h *ipv6Header) constructPacket() []byte {
	header := []byte{
		0x60,            // v6
		0,               // qos
		0,               // qos
		0,               // qos
		h.payloadLen[0], // payload Length
		h.payloadLen[1], // payload Length
		h.protocol,      // Protocol next header
		0xff,            // Hop limit
	}
	final := append(header, h.srcIP...)
	final = append(final, h.dstIP...)
	final = append(final, h.payload...)
	return final
}

type ndpPayload struct {
	packetType     ndpType
	answeringForIP []byte
	mac            []byte
}

func newNdpPacket(answeringForIP []byte, mac []byte, packetType ndpType) (*ndpPayload, error) {
	if len(answeringForIP) != 16 || len(mac) != 6 {
		return nil, errors.New("malformed IP")
	}
	return &ndpPayload{
		packetType:     packetType,
		answeringForIP: answeringForIP,
		mac:            mac,
	}, nil
}

func (p *ndpPayload) constructPacket() ([]byte, int) {
	var protocol byte
	var flags byte
	var linkType byte
	if p.packetType == ndp_SOL {
		protocol = 0x87
		flags = 0x0
		linkType = 0x01
	} else {
		protocol = 0x88
		flags = 0x60
		linkType = 0x02
	}
	header := []byte{
		protocol, // Type: ndpType
		0x0,      // Code
		0x0,      // Checksum filled in later
		0x0,      // Checksum filled in later
		flags,    // Flags (Solicited,Override)
		0x0,      // Reserved
		0x0,      // Reserved
		0x0,      // Reserved
	}
	final := append(header, p.answeringForIP...)

	secondHeader := []byte{
		linkType, // Type
		0x01,     // Length: 1 (8 bytes)
	}
	final = append(final, secondHeader...)

	final = append(final, p.mac...)
	return final, 2
}

func calculateChecksum(h *ipv6Header, payload []byte) uint16 {
	if payload == nil {
		return 0x0000
	} else if len(payload) == 0 {
		return 0x0000
	}
	sumPseudoHeader := checksumAddition(h.srcIP) + checksumAddition(h.dstIP) + checksumAddition([]byte{0x00, h.protocol}) + checksumAddition(h.payloadLen)
	sumPayload := checksumAddition(payload)
	sumTotal := sumPayload + sumPseudoHeader
	for sumTotal>>16 > 0x0 {
		sumTotal = (sumTotal & 0xffff) + (sumTotal >> 16)
	}
	return uint16(sumTotal) ^ 0xFFFF

}
func checksumAddition(b []byte) uint32 {
	var sum uint32 = 0
	for i := 0; i < len(b); i++ {
		if i%2 == 0 {
			if len(b)-1 == i {
				sum += uint32(uint16(b[i])<<8 | uint16(0x0))
			} else {
				sum += uint32(uint16(b[i])<<8 | uint16(b[i+1]))
			}
		}
	}
	return sum
}

func checkPacketChecksum(scrip, dstip, payload []byte) bool {
	v6, err := newIpv6Header(scrip, dstip)
	if err != nil {
		return false
	}

	packetsum := make([]byte, 2)
	copy(packetsum, payload[2:4])

	bPayloadLen := make([]byte, 2)
	binary.BigEndian.PutUint16(bPayloadLen, uint16(len(payload)))
	v6.payloadLen = bPayloadLen

	payload[2] = 0x0
	payload[3] = 0x0

	bChecksum := make([]byte, 2)
	binary.BigEndian.PutUint16(bChecksum, calculateChecksum(v6, payload))
	if bytes.Equal(packetsum, bChecksum) {
		if GlobalDebug {
			fmt.Println("Verified received packet checksum")
		}
		return true
	} else {
		if GlobalDebug {
			fmt.Println("Received packet checksum validation failed")
		}
		return false
	}
}

func isIpv6(ip string) bool {
	rip := net.ParseIP(ip)
	return rip != nil && strings.Contains(ip, ":")
}
Refactor code 2021-12-22 07:01:30 -05:00			`package pndp`
Initial commit 2021-12-20 14:53:42 -05:00
			`import (`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`"bytes"`
Initial commit 2021-12-20 14:53:42 -05:00			`"encoding/binary"`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`"errors"`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`"fmt"`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`"net"`
isIpv6 fix 2021-12-26 11:45:43 +01:00			`"strings"`
Initial commit 2021-12-20 14:53:42 -05:00			`)`

			`var emptyIpv6 = []byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}`

Refactor code 2021-12-22 07:01:30 -05:00			`type payload interface {`
Initial commit 2021-12-20 14:53:42 -05:00			`constructPacket() ([]byte, int)`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`type ipv6Header struct {`
Initial commit 2021-12-20 14:53:42 -05:00			`protocol byte`
			`srcIP []byte`
			`dstIP []byte`
			`payloadLen []byte`
			`payload []byte`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func newIpv6Header(srcIp []byte, dstIp []byte) (*ipv6Header, error) {`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`if len(dstIp) != 16 \|\| len(srcIp) != 16 {`
			`return nil, errors.New("malformed IP")`
			`}`
Refactor code 2021-12-22 07:01:30 -05:00			`return &ipv6Header{dstIP: dstIp, srcIP: srcIp, protocol: 0x3a}, nil`
Initial commit 2021-12-20 14:53:42 -05:00			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func (h *ipv6Header) addPayload(payload payload) {`
Initial commit 2021-12-20 14:53:42 -05:00			`bPayload, checksumPos := payload.constructPacket()`
			`bPayloadLen := make([]byte, 2)`
			`binary.BigEndian.PutUint16(bPayloadLen, uint16(len(bPayload)))`
			`h.payloadLen = bPayloadLen`

			`if checksumPos > 0 {`
			`bChecksum := make([]byte, 2)`
			`binary.BigEndian.PutUint16(bChecksum, calculateChecksum(h, bPayload))`
			`bPayload[checksumPos] = bChecksum[0]`
			`bPayload[checksumPos+1] = bChecksum[1]`
			`}`

			`h.payload = bPayload`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func (h *ipv6Header) constructPacket() []byte {`
Initial commit 2021-12-20 14:53:42 -05:00			`header := []byte{`
			`0x60, // v6`
			`0, // qos`
			`0, // qos`
			`0, // qos`
Refactor code 2021-12-22 07:01:30 -05:00			`h.payloadLen[0], // payload Length`
			`h.payloadLen[1], // payload Length`
Initial commit 2021-12-20 14:53:42 -05:00			`h.protocol, // Protocol next header`
			`0xff, // Hop limit`
			`}`
			`final := append(header, h.srcIP...)`
			`final = append(final, h.dstIP...)`
			`final = append(final, h.payload...)`
			`return final`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`type ndpPayload struct {`
			`packetType ndpType`
Initial commit 2021-12-20 14:53:42 -05:00			`answeringForIP []byte`
			`mac []byte`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func newNdpPacket(answeringForIP []byte, mac []byte, packetType ndpType) (*ndpPayload, error) {`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`if len(answeringForIP) != 16 \|\| len(mac) != 6 {`
			`return nil, errors.New("malformed IP")`
			`}`
Refactor code 2021-12-22 07:01:30 -05:00			`return &ndpPayload{`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`packetType: packetType,`
Initial commit 2021-12-20 14:53:42 -05:00			`answeringForIP: answeringForIP,`
			`mac: mac,`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`}, nil`
Initial commit 2021-12-20 14:53:42 -05:00			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func (p *ndpPayload) constructPacket() ([]byte, int) {`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`var protocol byte`
			`var flags byte`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`var linkType byte`
Refactor code 2021-12-22 07:01:30 -05:00			`if p.packetType == ndp_SOL {`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`protocol = 0x87`
			`flags = 0x0`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`linkType = 0x01`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`} else {`
			`protocol = 0x88`
			`flags = 0x60`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`linkType = 0x02`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`}`
Initial commit 2021-12-20 14:53:42 -05:00			`header := []byte{`
Refactor code 2021-12-22 07:01:30 -05:00			`protocol, // Type: ndpType`
Initial proxying implementation 2021-12-20 16:46:26 -05:00			`0x0, // Code`
			`0x0, // Checksum filled in later`
			`0x0, // Checksum filled in later`
			`flags, // Flags (Solicited,Override)`
			`0x0, // Reserved`
			`0x0, // Reserved`
			`0x0, // Reserved`
Initial commit 2021-12-20 14:53:42 -05:00			`}`
			`final := append(header, p.answeringForIP...)`

			`secondHeader := []byte{`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`linkType, // Type`
			`0x01, // Length: 1 (8 bytes)`
Initial commit 2021-12-20 14:53:42 -05:00			`}`
			`final = append(final, secondHeader...)`

			`final = append(final, p.mac...)`
			`return final, 2`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func calculateChecksum(h *ipv6Header, payload []byte) uint16 {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`if payload == nil {`
			`return 0x0000`
			`} else if len(payload) == 0 {`
			`return 0x0000`
			`}`
Initial commit 2021-12-20 14:53:42 -05:00			`sumPseudoHeader := checksumAddition(h.srcIP) + checksumAddition(h.dstIP) + checksumAddition([]byte{0x00, h.protocol}) + checksumAddition(h.payloadLen)`
			`sumPayload := checksumAddition(payload)`
			`sumTotal := sumPayload + sumPseudoHeader`
			`for sumTotal>>16 > 0x0 {`
			`sumTotal = (sumTotal & 0xffff) + (sumTotal >> 16)`
			`}`
			`return uint16(sumTotal) ^ 0xFFFF`

			`}`
			`func checksumAddition(b []byte) uint32 {`
			`var sum uint32 = 0`
			`for i := 0; i < len(b); i++ {`
			`if i%2 == 0 {`
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`if len(b)-1 == i {`
Fix checksum 2021-12-24 17:04:18 -05:00			`sum += uint32(uint16(b[i])<<8 \| uint16(0x0))`
			`} else {`
			`sum += uint32(uint16(b[i])<<8 \| uint16(b[i+1]))`
			`}`
Initial commit 2021-12-20 14:53:42 -05:00			`}`
			`}`
			`return sum`
			`}`
Proxying implementation finished 2021-12-21 06:00:28 -05:00
More Fixes and optimization 2021-12-25 08:21:07 -05:00			`func checkPacketChecksum(scrip, dstip, payload []byte) bool {`
			`v6, err := newIpv6Header(scrip, dstip)`
			`if err != nil {`
			`return false`
			`}`

			`packetsum := make([]byte, 2)`
			`copy(packetsum, payload[2:4])`

			`bPayloadLen := make([]byte, 2)`
			`binary.BigEndian.PutUint16(bPayloadLen, uint16(len(payload)))`
			`v6.payloadLen = bPayloadLen`

			`payload[2] = 0x0`
			`payload[3] = 0x0`

			`bChecksum := make([]byte, 2)`
			`binary.BigEndian.PutUint16(bChecksum, calculateChecksum(v6, payload))`
			`if bytes.Equal(packetsum, bChecksum) {`
			`if GlobalDebug {`
			`fmt.Println("Verified received packet checksum")`
			`}`
			`return true`
			`} else {`
			`if GlobalDebug {`
			`fmt.Println("Received packet checksum validation failed")`
			`}`
			`return false`
			`}`
			`}`

Refactor code 2021-12-22 07:01:30 -05:00			`func isIpv6(ip string) bool {`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`rip := net.ParseIP(ip)`
isIpv6 fix 2021-12-26 11:45:43 +01:00			`return rip != nil && strings.Contains(ip, ":")`
Proxying implementation finished 2021-12-21 06:00:28 -05:00			`}`