-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathPaxifax.cs
200 lines (170 loc) · 7.34 KB
/
Paxifax.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
/*
Pax : tool support for prototyping packet processors
Nik Sultana, Cambridge University Computer Lab, June 2016
Jonny Shipton, Cambridge University Computer Lab, July 2016
Use of this source code is governed by the Apache 2.0 license; see LICENSE.
*/
using System;
using System.Collections.Generic;
using PacketDotNet;
using SharpPcap;
using System.Text;
using System.Diagnostics;
// FIXME use javadoc-style comments to describe the API
namespace Pax {
// An abstract interface to packet processors.
public interface IAbstract_PacketProcessor {
ForwardingDecision process_packet (int in_port, ref Packet packet);
}
/* FIXME Rather than the sort of specification above, I'd much rather be able to
subtype derivatives of IAbstract_PacketProcessor by specialising the
ForwardingDecision result of process_packet. One idea is to use the
following spec (but note that this would add lots of complications
elsewhere, particularly in the reflection code):
// NOTE this can be specialised by specialising parameter T (ForwardingDecision)
// to specific kinds of decisions. I use this feature below.
public interface PacketProcessor<T> where T : ForwardingDecision {
T process_packet (int in_port, ref Packet packet);
}
then one could define:
public abstract class SimplePacketProcessor : IPacketProcessor<ForwardingDecision.SinglePortForward> {
...
abstract public ForwardingDecision.SinglePortForward process_packet (int in_port, ref Packet packet);
i.e., we'd use C#'s type checker instead of the silly "is" checks at runtime.
*/
public interface IHostbased_PacketProcessor {
void packetHandler (object sender, CaptureEventArgs e);
}
public interface IPacketProcessor : IAbstract_PacketProcessor, IHostbased_PacketProcessor {}
// A packet monitor does not output anything onto the network, it simply
// accumulates state based on what it observes happening on the network.
// It might produce output on side-channels, through side-effects.
// This could be used for diagnosis, to observe network activity and print
// digests to the console or log.
public abstract class PacketMonitor : IPacketProcessor {
abstract public ForwardingDecision process_packet (int in_port, ref Packet packet);
public void packetHandler (object sender, CaptureEventArgs e)
{
var packet = PacketDotNet.Packet.ParsePacket(e.Packet.LinkLayerType, e.Packet.Data);
int in_port = PaxConfig.rdeviceMap[e.Device.Name];
Debug.Assert(process_packet (in_port, ref packet) is ForwardingDecision.Drop);
#if DEBUG
// FIXME could append name of the class in the debug message, so we know which
// packet processor is being used.
Debug.Write(PaxConfig.deviceMap[in_port].Name + " -|");
#endif
}
}
// Simple packet processor: it can only transform the given packet and forward it to at most one interface.
public abstract class SimplePacketProcessor : IPacketProcessor {
// Return the offset of network interface that "packet" is to be forwarded to.
abstract public ForwardingDecision process_packet (int in_port, ref Packet packet);
public void packetHandler (object sender, CaptureEventArgs e)
{
var packet = PacketDotNet.Packet.ParsePacket(e.Packet.LinkLayerType, e.Packet.Data);
int in_port = PaxConfig.rdeviceMap[e.Device.Name];
int out_port;
ForwardingDecision des = process_packet (in_port, ref packet);
if (des is ForwardingDecision.SinglePortForward)
{
out_port = ((ForwardingDecision.SinglePortForward)des).target_port;
} else {
throw (new Exception ("Expected SinglePortForward"));
}
#if DEBUG
Debug.Write(PaxConfig.deviceMap[in_port].Name + " -1> ");
#endif
if (out_port > -1)
{
var device = PaxConfig.deviceMap[out_port];
if (packet is EthernetPacket)
((EthernetPacket)packet).SourceHwAddress = device.MacAddress;
device.SendPacket(packet);
#if DEBUG
Debug.WriteLine(PaxConfig.deviceMap[out_port].Name);
} else {
Debug.WriteLine("<dropped>");
#endif
}
}
}
// Simple packet processor that can forward to multiple interfaces. It is "simple" because
// it can only transform the given packet, and cannot generate new ones.
public abstract class MultiInterface_SimplePacketProcessor : IPacketProcessor {
// Return the offsets of network interfaces that "packet" is to be forwarded to.
abstract public ForwardingDecision process_packet (int in_port, ref Packet packet);
public void packetHandler (object sender, CaptureEventArgs e)
{
var packet = PacketDotNet.Packet.ParsePacket(e.Packet.LinkLayerType, e.Packet.Data);
int in_port = PaxConfig.rdeviceMap[e.Device.Name];
int[] out_ports;
ForwardingDecision des = process_packet (in_port, ref packet);
if (des is ForwardingDecision.MultiPortForward)
{
out_ports = ((ForwardingDecision.MultiPortForward)des).target_ports;
/*
Since MultiPortForward works with arrays, this increases the exposure
to dud values:
* negative values within arrays
* repeated values within arrays
* an array might be larger than intended, and contains rubbish data.
These could manifest themselves as bugs or abused behaviour.
FIXME determine how each of these cases will be treated.
*/
} else {
throw (new Exception ("Expected MultiPortForward"));
}
#if DEBUG
Debug.Write(PaxConfig.deviceMap[in_port].Name + " -> ");
// It's useful to know the width of the returned array during debugging,
// since it might be that the array was wider than intended, and contained
// repeated or rubbish values.
Debug.Write("[" + out_ports.Length.ToString() + "] ");
#endif
for (int idx = 0; idx < out_ports.Length; idx++)
{
int out_port = out_ports[idx];
// Check if trying to send over a non-existent port.
if (out_port < PaxConfig_Lite.no_interfaces) {
PaxConfig.deviceMap[out_port].SendPacket(packet);
#if DEBUG
Debug.Write("(" + out_port.ToString() + ") "); // Show the network interface offset.
// And now show the network interface name that the offset resolves to.
if (idx < out_ports.Length - 1)
{
Debug.Write(PaxConfig.deviceMap[out_port].Name + ", ");
} else {
Debug.Write(PaxConfig.deviceMap[out_port].Name);
}
#endif
} else if (!(out_port < PaxConfig_Lite.no_interfaces) &&
!PaxConfig_Lite.ignore_phantom_forwarding) {
throw (new Exception ("Tried forward to non-existant port"));
}
}
#if DEBUG
Debug.WriteLine("");
#endif
}
}
public class PacketProcessor_Chain : IPacketProcessor {
List<IPacketProcessor> chain;
public PacketProcessor_Chain (List<IPacketProcessor> chain) {
this.chain = chain;
}
public void packetHandler (object sender, CaptureEventArgs e) {
foreach (IPacketProcessor pp in chain) {
pp.packetHandler (sender, e);
}
}
public ForwardingDecision process_packet (int in_port, ref Packet packet)
{
ForwardingDecision fd = null;
//We return the ForwardingDecision made by the last element in the chain.
foreach (IPacketProcessor pp in chain) {
fd = pp.process_packet (in_port, ref packet);
}
return fd;
}
}
}