-
Notifications
You must be signed in to change notification settings - Fork 9
/
GRE.cpp
110 lines (91 loc) · 3.31 KB
/
GRE.cpp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
#include "GRE.h"
#define RecvBufSize 32768
[[noreturn]] void GRE::receiver(HMODULE wintun) {
sockaddr_in SenderAddr{};
int is_flooding = 0;
int SenderAddrSize = sizeof(sockaddr_in);
int rBufLen;
static char RecvBuf[RecvBufSize];
if (!wintun || !InitializeWintun(wintun) || !Session) {
LOG(ERROR) << "Could not load wintun.dll";
exit(-1);
}
el::Logger* defaultLogger = el::Loggers::getLogger("default");
while (true) {
rBufLen = recvfrom(s, RecvBuf, RecvBufSize, 0, (SOCKADDR*)&SenderAddr, &SenderAddrSize);
if (rBufLen == SOCKET_ERROR)
{
LOG_N_TIMES(3, WARNING) << "Socket error: " << WSAGetLastError();
continue;
}
// Check if the packet is the server one
if (SenderAddr.sin_addr.S_un.S_addr != RecvAddr.sin_addr.S_un.S_addr) {
LOG_N_TIMES(3, INFO) << "Received malformed packet. Size: " << rBufLen;
continue;
}
// Minimum packet length is 24
if (rBufLen < GRE_SIZE + 20) {
LOG_N_TIMES(3, INFO) << "Received malformed packet. Size: " << rBufLen;
continue;
}
// Prevent IPv6 & Bogus packets
if (RecvBuf[0] >> 4 != 4)
continue;
int iphl = ((RecvBuf[0] & 0x0f) * 32) / 8; // This take the second half of a byte then *32/8 -> length of the ip header
int totalSize = rBufLen - iphl - GRE_SIZE;
int startSize = iphl + GRE_SIZE;
// Check IP header length
if (iphl > 60 || iphl < 20) {
LOG_N_TIMES(3, INFO) << "Received a packet with a invalid IPHL: " << iphl;
continue;
}
// Check for a valid IPv4 GRE Header (No key/sequence support)
if (memcmp(RecvBuf + iphl, "\0\0\x08\0", GRE_SIZE) != 0) {
LOG_N_TIMES(3, INFO) << "Received a packet with an invalid GRE Header";
continue;
}
// Check if the contained packet is a IPv4 one
if ((RecvBuf+startSize)[0] >> 4 != 4)
continue;
// Whitelist protocols
int protocol = (RecvBuf + startSize)[9];
if (protocol != IPPROTO_TCP && protocol != IPPROTO_ICMP && protocol != IPPROTO_UDP) {
LOG_N_TIMES(3, INFO) << "Received a packet with an invalid protocol: " << protocol;
continue;
}
BYTE* OutgoingPacket = WintunAllocateSendPacket(Session, totalSize);
if (!OutgoingPacket)
{
DWORD lastError = GetLastError();
LOG_EVERY_N(100, WARNING) << "Could not allocate enough memory to send packet " << totalSize << " : " << lastError;
// Looks like we can't receive any more packets so we are going to restart the driver's session
if (lastError == ERROR_HANDLE_EOF) {
reset_adapter = true;
LOG(WARNING) << "Restarting WinTun session due to an invalid packet.";
WintunEndSession(Session);
Session = WintunStartSession(Adapter, WINTUN_MAX_RING_CAPACITY / 2);
if (!Session) {
WintunCloseAdapter(Adapter);
LOG(FATAL) << "Could not create session";
exit(-1);
}
reset_adapter = false;
LOG(INFO) << "Successfully restarted WinTun Session.";
}
continue;
}
memcpy(OutgoingPacket, (RecvBuf + startSize), totalSize);
WintunSendPacket(Session, OutgoingPacket);
}
}
void GRE::sender(char* packet, unsigned int size) {
int newSize = size + GRE_SIZE; // GRE size
if (newSize > SEND_BUFFER)
{
LOG(WARNING) << "Sending buffer overflowed: " << newSize << " bytes";
return;
}
// To modify the GRE Header (keys, sequences..) it'll need to be done here
memcpy(sendBuf + GRE_SIZE, packet, size);
sendto(s, sendBuf, newSize, 0, (SOCKADDR*)&RecvAddr, sizeof(RecvAddr));
}