📄 mystar.c
字号:
/*首先还是要感谢mystar的作者netxray,mystar.c大多代码都是引自mystar*/#include "mystar.h"#include "sendpacket.h"#include "myerr.h"/* Note that: in this file, the global variables (defined without a leading "static") from here to the beginning of the definition of main() are referenced by sendpacket.c ( we reference them in the form of "extern ..." in sendpacket.c) *//* These info should be retrieved from mystar.conf */char *m_name=NULL;//用户名char *m_password=NULL;//密码static char *m_nic=NULL;//网卡static int m_intelligentReconnect=-1; // 0:don't use it, 1: ues it. NOTE: not supported NOW!!static char *m_fakeAddress=NULL; // or set to "123.45.67.89" etc./* These information should be worked out by initialization portion. */unsigned char m_localMAC[6];//本机的MAC地址unsigned char m_destMAC[6];//服务器的MAC地址.unsigned char m_ip[4]; //当前选择的网卡的IP地址static unsigned char m_netmask[4];//当前选择的网卡的子网掩码static unsigned char m_netgate[4];//当前选择的网卡的网关static unsigned char m_dns1[4]; //当前选择的网卡的DNS/* 当前认证状态 0:未找到服务器 1:已找到服务器,未通过用户名认证 2:已通过用户名认证,未通过MD5认证 3:已通过MD5认证,通网成功 */static volatile sig_atomic_t m_state=0;//当前认证状态//ULONG_BYTEARRAY m_serialNo; //序列号,收到第一个有效的Authentication-Success-packet时初始化//ULONG_BYTEARRAY m_key; //密码加密键值,在main()函数开始时初始化static void sig_intr(int signo); //do some cleanup work on exit with Ctrl+Cstatic void checkAndSetConfig(void); //configure related parametersint main(int argc, char* argv[]){ libnet_t * l=NULL; u_int32_t l_ip; char l_errbuf[LIBNET_ERRBUF_SIZE]; struct libnet_ether_addr *l_ether_addr; pcap_t *p=NULL; int p_fd; fd_set read_set; char filter_buf[256]; struct bpf_program filter_code; u_int32_t p_netaddr,p_netmask; struct pcap_pkthdr *pkt_hdr; const u_char *pkt_data; char p_errbuf[PCAP_ERRBUF_SIZE]; int linkto; u_int16_t offset; int msgLen; char msgBuf[256]; char *pmsgBuf; int isFirstPacketFromServer=1; sigset_t sigset_full,sigset_zero; struct timespec timeout; int packetCount_SentFindServer=0; int packetCount_SentName=0; int packetCount_SentPassword=0; int dhcpmod; checkAndSetConfig();if((l=libnet_init(LIBNET_LINK, m_nic,l_errbuf))==NULL) err_quit("libnet_init: %s\n", l_errbuf); if((p=pcap_open_live(m_nic,65536,0, 500, p_errbuf))==NULL) { err_msg("pcap_open_live: %s\n",p_errbuf); goto err1; } p_fd=pcap_fileno(p); //we can pselect() it in the following code. if((l_ether_addr=libnet_get_hwaddr(l))==NULL) { err_msg("unable to get local mac address :%s\n",libnet_geterror(l)); goto err2; }; memcpy(m_localMAC,l_ether_addr,sizeof(m_localMAC)); if(m_fakeAddress==NULL) { if((l_ip=libnet_get_ipaddr4(l))==-1) { err_msg("unable to get ip address--ingored... :%s\n",libnet_geterror(l)); l_ip=0; } memcpy(m_ip,&l_ip,sizeof(m_ip)); } else {}; //in this case , m_ip has been initialized in checkandSetConfig() if(pcap_lookupnet(m_nic,&p_netaddr,&p_netmask,p_errbuf)==-1) { err_msg("unable to get netmask--igored... %s\n",p_errbuf); p_netmask=0;} memcpy(m_netmask,&p_netmask,sizeof(m_netmask)); snprintf(filter_buf,sizeof(filter_buf),FILTER_STR, m_localMAC[0],m_localMAC[1], m_localMAC[2],m_localMAC[3],m_localMAC[4],m_localMAC[5],m_localMAC[6]); if(pcap_compile(p, &filter_code,filter_buf, 0, p_netmask)==-1) { err_msg("pcap_compile(): %s", pcap_geterr(p)); goto err2; } if(pcap_setfilter(p, &filter_code)==-1) { err_msg("pcap_setfilter(): %s", pcap_geterr(p)); goto err2; } pcap_freecode(&filter_code); // avoid memory-leak (void)signal(SIGINT,sig_intr); //We can exit with Ctrl+C (void)sigfillset(&sigset_full); (void)sigprocmask(SIG_BLOCK,&sigset_full,NULL); //block all signals. //search for the server beginAuthentication: m_state=0; (void)SendFindServerPacket(l); //the first time to search for server packetCount_SentFindServer=1; packetCount_SentName=0; packetCount_SentPassword=0; while(1) { (void)sigfillset(&sigset_full); (void)sigdelset(&sigset_full,SIGINT); FD_ZERO(&read_set); FD_SET(p_fd, &read_set); timeout.tv_sec =3; timeout.tv_nsec =0; // 1 second //wait with all signals(except SIGINT) blocked. switch ( pselect(p_fd+1,&read_set,NULL,NULL,&timeout,&sigset_full) ) { case -1: //Normally, this case should not happen since sig_intr() never returns! goto err2; case 0: //timed out switch(m_state) { case 0: if(++packetCount_SentFindServer>3) { puts("Time out,Restarting authenticaton!"); goto beginAuthentication; } (void)SendFindServerPacket(l); continue; //jump to next loop of while(1) to receive next packet case 1: if(++packetCount_SentName>3) { puts("Restarting authenticaton!"); goto beginAuthentication; } (void)SendNamePacket(l, pkt_data); continue; case 2: if(++packetCount_SentPassword>3) { puts("Restarting authenticaton!"); goto beginAuthentication; } (void)SendPasswordPacket(l, pkt_data); continue; case 3: continue; default: goto err2; } } //Here return value of pselect must be 1 if((pcap_next_ex(p,&pkt_hdr,&pkt_data))!=1) continue; //收到的第二个及其以后的有效packet的源MAC必须等于头次收到的有效分组的源MAC if ((!isFirstPacketFromServer)&&(memcmp(m_destMAC,pkt_data+6,6)!=0)) continue; //if (!isFirstPacketFromServer) continue; //received a packet successfully. for convenience, SUPPOSE it's the RIGHT packet!! but maybe WRONG!! //for example, we have NEVER vefified the length of packet, fancying the packet's length is 0x11 ?! switch( pkt_data[0x12] ) //分析EAP包类型 { case 0x01: //表示请求 switch( pkt_data[0x16] ) { case 0x01: //type 1,以用户名应答 if (m_state==3) //已连接, 服务器要求更新连接 puts("Refresh linkage,requesting user name...\n"); else if(m_state==0) { //尚未未连接 m_state=1; fputs("@@ Server found, requesting user name...\n",stdout); if (isFirstPacketFromServer) //获得服务器的MAC地址 { memcpy( m_destMAC, pkt_data+6, 6); isFirstPacketFromServer=0;} ++packetCount_SentName; } else continue; (void)SendNamePacket(l, pkt_data); break; case 0x52: //type 0x52,挑战,以MD5计算得到的值应答 if(m_state!=1) continue; m_state=2; fputs("@@ User name valid, requesting password...\n",stdout); ++packetCount_SentPassword; (void)SendPasswordPacket(l, pkt_data); break; } break; case 0x03: //认证成功 if (m_state == 3) { puts("Refresh linkage Success!\n"); continue; } if(m_state != 2) continue; m_state=3; fputs("@@ Password valid, authentication SUCCESS!!! :)\n",stdout); //信号处理 (void)sigemptyset(&sigset_zero); (void)sigaddset(&sigset_zero,SIGINT); (void)sigprocmask(SIG_UNBLOCK,&sigset_zero,NULL); // continue echoing sleep(120); fputs("Keeping sending echo... \n",stdout); while(SendEchoPacket(l)==0) sleep(120); goto err2; //this should never happen. break; case 0x04://认证失败(用户名或密码错误/不在上网时段内/重复上网等) if(m_state==0) continue; if (m_state==3){ puts("Refresh linkage fail!\n"); (void)SendEndCertPacket(l); goto done; } m_state=0; puts("Authenticaton failed!!!check your usrname&password.\n"); (void)SendEndCertPacket(l); goto done; break; //should never come here }// end switch }// end while done: pcap_close(p); libnet_destroy(l); return 0; err2: pcap_close(p); err1: libnet_destroy(l); return 1;}static void checkAndSetConfig(void){ FILE *fp; char buf[4096]; char *p; int i,len; static char name[32]; static char password[32]; static char nic[32]; static char fakeAddress[32]; int intelligentReconnect=-1; int echoInterval=-1; int authenticationMode=-1; //the check and anylysis against mystar.conf *don't* work perfectly. //this may be improved in the later version. if( (fp=fopen("mystar.conf","r"))==NULL ) err_quit("cannot open file mystar.conf ! check it.\n"); while(fgets(buf,sizeof(buf),fp)!=NULL) { if( (buf[0]=='#') || (buf[0]=='\n') ) continue; len=strlen(buf); if(buf[len-1]=='\n') buf[len-1]='\0'; if( ( (p=strchr(buf,'=')) == NULL) || (p==buf) ) continue; //the code above doesn't detect ALL the errors!! it should be improved in future. *p++='\0'; for(i=0; i<strlen(buf); i++) buf[i]=tolower(buf[i]); if(strcmp(buf,"name")==0) { strncpy(name,p,sizeof(name)-1); name[sizeof(name)-1]=0; m_name=name; } else if(strcmp(buf,"password")==0) { strncpy(password,p,sizeof(password)-1); password[sizeof(password)-1]=0; m_password=password; } else if(strcmp(buf,"nic")==0) { for(i=0; i<strlen(p); i++) p[i]=tolower(p[i]); strncpy(nic,p,sizeof(nic)-1); nic[sizeof(nic)-1]=0; m_nic=nic; } else if(strcmp(buf,"intelligentreconnect")==0) { intelligentReconnect=atoi(p); m_intelligentReconnect=intelligentReconnect; } else if(strcmp(buf,"fakeaddress")==0) { strncpy(fakeAddress,p,sizeof(fakeAddress)-1); fakeAddress[sizeof(fakeAddress)-1]=0; if( inet_pton(AF_INET,fakeAddress,m_ip)<=0 ) err_msg("invalid fakeAddress found in mystar.conf, ignored...\n"); else m_fakeAddress=fakeAddress; } else continue; } if(ferror(fp)) err_quit("cannot read mystar.conf ! check it.\n"); fclose(fp); if((m_name==NULL)||(m_name[0]==0)) err_quit("invalid name found in mystar.conf!\n"); if((m_password==NULL)||(m_password[0]==0)) err_quit("invalid password found in mystar.conf!\n"); if( (m_nic==NULL) || (strcmp(m_nic,"")==0) || (strcmp(m_nic,"any")==0) ) err_quit("invalid nic found in mystar.conf!\n"); //just set them to zero since they don't seem to be important. //printf("password = %s",m_name); memset(m_netgate,0,sizeof(m_netgate)); memset(m_dns1,0,sizeof(m_dns1));}static void sig_intr(int signo){ libnet_t *l=NULL; char l_errbuf[LIBNET_ERRBUF_SIZE]; if(m_state==3) { if((l=libnet_init(LIBNET_LINK, m_nic,l_errbuf))==NULL) _exit(0); (void)SendEndCertPacket(l); system("killall -9 dhclient"); libnet_destroy(l); } _exit(0);}⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -