ipmondlg.cpp

sniffer 用原始套接字写的sniffer软件

// ipmonDlg.cpp : implementation file
//


#include "stdafx.h"
#include "ipmon.h"
#include "ipmonDlg.h"
#include "mstcpip.h"
//#include "Winsock2.h"
#include "Iphlpapi.h"
#include"math.h"


#ifdef _DEBUG
#define new DEBUG_NEW
#undef THIS_FILE
static char THIS_FILE[] = __FILE__;
#endif


/////////////////////////////////////////////////////////////////////////////
// CAboutDlg dialog used for App About
//int List_index;				//list控件的行数
struct packbuf
{
	CString pack;	
}packet[1000];
CSTRING_IP iphead[1000];
CSTRING_TCP tcphead[1000];
CSTRING_UDP udphead[1000];
CSTRING_ICMP icmphead[1000];


int List_index,pcount;			//用来接收包的个数和list中当前第几项
int edit_tcp,edit_udp,edit_icmp,edit_all,edit_other; 
BOOL NO;			//控制开始暂停
PROTN2T aOfProto [ PROTO_NUM + 1] =			//协议结构体数组protn2t有两个变量
{  
	{ IPPROTO_IP   , "IP" },
	{ IPPROTO_ICMP , "ICMP" },  
	{ IPPROTO_IGMP , "IGMP" }, 
	{ IPPROTO_GGP  , "GGP" },  
	{ IPPROTO_TCP  , "TCP" },  
	{ IPPROTO_PUP  , "PUP" },  
	{ IPPROTO_UDP  , "UDP" },  
	{ IPPROTO_IDP  , "IDP" },  
	{ IPPROTO_ND   , "NP"  },  
	{ IPPROTO_RAW  , "RAW" },  
	{ IPPROTO_MAX  , "MAX" },
	{ NULL , "" } 
} ;  
char *get_proto_name( unsigned char proto )//获取协议名
{
	BOOL bFound = FALSE ;
	for( int i = 0 ; i < PROTO_NUM ; i++ )
	{
		if( aOfProto[i].proto == proto )
		{
			bFound = TRUE ;
			break ;
		}	
	}
	if( bFound )
		return aOfProto[i].pprototext ;
	return aOfProto[PROTO_NUM].pprototext ;
}

class CAboutDlg : public CDialog
{
public:
	CAboutDlg();

// Dialog Data
	//{{AFX_DATA(CAboutDlg)
	enum { IDD = IDD_ABOUTBOX };
	//}}AFX_DATA

	// ClassWizard generated virtual function overrides
	//{{AFX_VIRTUAL(CAboutDlg)
	protected:
	virtual void DoDataExchange(CDataExchange* pDX);    // DDX/DDV support
	//}}AFX_VIRTUAL

// Implementation
protected:
	//{{AFX_MSG(CAboutDlg)
	//}}AFX_MSG
	DECLARE_MESSAGE_MAP()
};

CAboutDlg::CAboutDlg() : CDialog(CAboutDlg::IDD)
{
	//{{AFX_DATA_INIT(CAboutDlg)
	//}}AFX_DATA_INIT
}

void CAboutDlg::DoDataExchange(CDataExchange* pDX)
{
	CDialog::DoDataExchange(pDX);
	//{{AFX_DATA_MAP(CAboutDlg)
	//}}AFX_DATA_MAP
}

BEGIN_MESSAGE_MAP(CAboutDlg, CDialog)
	//{{AFX_MSG_MAP(CAboutDlg)
		// No message handlers
	//}}AFX_MSG_MAP
END_MESSAGE_MAP()

/////////////////////////////////////////////////////////////////////////////
// CIpmonDlg dialog

CIpmonDlg::CIpmonDlg(CWnd* pParent /*=NULL*/)
	: CDialog(CIpmonDlg::IDD, pParent)
{
	//{{AFX_DATA_INIT(CIpmonDlg)
	m_edit = _T("");
	m_edit_tcp = _T("");
	m_edit_udp = _T("");
	m_edit_icmp = _T("");
	m_edit_all = _T("");
	m_edit_other = _T("");
	//}}AFX_DATA_INIT
	// Note that LoadIcon does not require a subsequent DestroyIcon in Win32
	m_hIcon = AfxGetApp()->LoadIcon(IDR_MAINFRAME);

	m_threadID = 0  ;
	m_Multihomed = FALSE ;
	m_Local    = TRUE ;
}

void CIpmonDlg::DoDataExchange(CDataExchange* pDX)
{
	CDialog::DoDataExchange(pDX);
	//{{AFX_DATA_MAP(CIpmonDlg)
	DDX_Control(pDX, IDC_PROGRESS_OTHER, m_pro_other);
	DDX_Control(pDX, IDC_PROGRESS_ICMP, m_pro_icmp);
	DDX_Control(pDX, IDC_PROGRESS_TCP, m_pro_tcp);
	DDX_Control(pDX, IDC_PROGRESS_UDP, m_pro_udp);
	DDX_Control(pDX, IDC_TREE1, m_tree);
	DDX_Control(pDX, IDC_LIST, m_ctrList);
	DDX_Text(pDX, IDC_EDIT, m_edit);
	DDX_Text(pDX, IDC_EDIT_TCP, m_edit_tcp);
	DDX_Text(pDX, IDC_EDIT_UDP, m_edit_udp);
	DDX_Text(pDX, IDC_EDIT_ICMP, m_edit_icmp);
	DDX_Text(pDX, IDC_EDIT_ALL, m_edit_all);
	DDX_Text(pDX, IDC_EDIT_OTHER, m_edit_other);
	//}}AFX_DATA_MAP
}

BEGIN_MESSAGE_MAP(CIpmonDlg, CDialog)
	//{{AFX_MSG_MAP(CIpmonDlg)
	ON_WM_SYSCOMMAND()
	ON_WM_PAINT()
	ON_WM_QUERYDRAGICON()
	ON_COMMAND(IDM_START, OnStart)
	ON_COMMAND(IDM_STOP, OnStop)
	ON_COMMAND(IDM_EXIT, OnExit)
	ON_NOTIFY(NM_CLICK, IDC_LIST, OnClickList)
	//}}AFX_MSG_MAP
END_MESSAGE_MAP()

/////////////////////////////////////////////////////////////////////////////
// CIpmonDlg message handlers

BOOL CIpmonDlg::OnInitDialog()
{
	CDialog::OnInitDialog();

	// Add "About..." menu item to system menu.

	// IDM_ABOUTBOX must be in the system command range.
	ASSERT((IDM_ABOUTBOX & 0xFFF0) == IDM_ABOUTBOX);
	ASSERT(IDM_ABOUTBOX < 0xF000);

	CMenu* pSysMenu = GetSystemMenu(FALSE);
	if (pSysMenu != NULL)
	{
		CString strAboutMenu;
		strAboutMenu.LoadString(IDS_ABOUTBOX);
		if (!strAboutMenu.IsEmpty())
		{
			pSysMenu->AppendMenu(MF_SEPARATOR);
			pSysMenu->AppendMenu(MF_STRING, IDM_ABOUTBOX, strAboutMenu);
		}
	}

	// Set the icon for this dialog.  The framework does this automatically
	//  when the application's main window is not a dialog
	SetIcon(m_hIcon, TRUE);			// Set big icon
	SetIcon(m_hIcon, FALSE);		// Set small icon
	
	// TODO: Add extra initialization here
    
	NO=false;
	CHAR		szHostName[128] = {0};
	HOSTENT*	pHost = NULL;
	CHAR*		pszIp = NULL;
	int			iNum = 0;
	if(AfxSocketInit(NULL)==FALSE)	//初始化socket
	{
		AfxMessageBox("Sorry, socket load error!");
		return FALSE;
	}

	if(gethostname(szHostName, 128)==0)//获取主机名
	{

		
		pHost = gethostbyname(szHostName);//获取主机名资料
		if(pHost != NULL)
		{
				pszIp = inet_ntoa(*(in_addr*)pHost->h_addr_list[iNum]);//改ip为.的形式
				m_ipsource = inet_addr(pszIp);//将一个点间隔地址转换成一个in_addr
		}
		else MessageBox("pHost = NULL!");
	}
	else MessageBox("can't find host name!");

	//  ListView initialize

	m_ctrList.SetExtendedStyle(LVS_EX_FULLROWSELECT|LVS_EX_GRIDLINES);
	m_ctrList.InsertColumn(0,"编号",LVCFMT_LEFT,50);
	m_ctrList.InsertColumn(1,"协议",LVCFMT_LEFT,50);
	m_ctrList.InsertColumn(2,"源地址",LVCFMT_LEFT,100);
	m_ctrList.InsertColumn(3,"端口",LVCFMT_LEFT,60);
	m_ctrList.InsertColumn(4,"目的地址",LVCFMT_LEFT,100);
    m_ctrList.InsertColumn(5,"端口",LVCFMT_LEFT,60);
	m_ctrList.InsertColumn(6,"大小",LVCFMT_LEFT,80);
	m_ctrList.InsertColumn(7,"数据",LVCFMT_LEFT,525);

	return TRUE;   
}

void CIpmonDlg::OnSysCommand(UINT nID, LPARAM lParam)
{
	if ((nID & 0xFFF0) == IDM_ABOUTBOX)
	{
		CAboutDlg dlgAbout;
		dlgAbout.DoModal();
	}
	else
	{
		CDialog::OnSysCommand(nID, lParam);
	}
}

// If you add a minimize button to your dialog, you will need the code below
//  to draw the icon.  For MFC applications using the document/view model,
//  this is automatically done for you by the framework.

void CIpmonDlg::OnPaint() 
{
	if (IsIconic())
	{
		CPaintDC dc(this); // device context for painting

		SendMessage(WM_ICONERASEBKGND, (WPARAM) dc.GetSafeHdc(), 0);

		// Center icon in client rectangle
		int cxIcon = GetSystemMetrics(SM_CXICON);
		int cyIcon = GetSystemMetrics(SM_CYICON);
		CRect rect;
		GetClientRect(&rect);
		int x = (rect.Width() - cxIcon + 1) / 2;
		int y = (rect.Height() - cyIcon + 1) / 2;

		// Draw the icon
		dc.DrawIcon(x, y, m_hIcon);
	}
	else
	{
		CDialog::OnPaint();
	}
}

// The system calls this to obtain the cursor to display while the user drags
//  the minimized window.
HCURSOR CIpmonDlg::OnQueryDragIcon()
{
	return (HCURSOR) m_hIcon;
}


UINT threadFunc ( LPVOID p )
{
 	CIpmonDlg *pDlg = static_cast<CIpmonDlg *>(p) ;
	char  buf [1000] , *bufwork ;
	MSG   msg ;
	int   iRet ;
	DWORD dwErr ;
    char  *pSource , *pDest ;
	IPHEADER *pIpHeader ;
	in_addr ina ;
	char   szSource [16] , szDest[16] , szErr [ 50 ];
	char *pLastBuf = NULL ;

	int		HdrLen, totallen;
	WORD	sourport, destport;

	struct TCPPacketHead	*pTCPHead;
	struct ICMPPacketHead	*pICMPHead;
	struct UDPPacketHead	*pUDPHead;
	BYTE					*pdata = NULL;


	/*---------------------------------------------------------------------*/

    PeekMessage(&msg, NULL, WM_USER, WM_USER, PM_NOREMOVE)	; // 获取用户消息，不删除消息
 	pDlg->m_threadID = GetCurrentThreadId() ;					//获取当前线程号
	while( NO==TRUE )
	{				
//		pDlg->UpdateData();
		edit_all++;
        if( PeekMessage( &msg , 0 , WM_CLOSE,WM_CLOSE,PM_NOREMOVE ) )//获取close消息，不删除消息
		{
 	        closesocket( pDlg->m_s ) ;						//关闭套接字
 	        pDlg->m_threadID = 0 ;
			pDlg->m_start.EnableWindow(TRUE) ;				//将焦点设到开始按钮上
			break ;
		}
		memset( buf , 0 , sizeof(buf) ) ;					//初始化buf
		iRet = 	recv( pDlg->m_s , buf , sizeof( buf ) , 0 ) ;//接收套接字的内容，返回长度
		if( iRet == SOCKET_ERROR )							 //接收出错
		{
			dwErr = WSAGetLastError() ;
			sprintf( szErr , "Error recv() = %ld " , dwErr ) ;//打印出错原因
			continue ;
		}
		else
			if( *buf )										  //内容不为空
			{	
				pcount+=1;										//包个数加1
				char strno[10];
				sprintf(strno,"%07d",pcount);					//转换为char型
				bufwork   = buf ;								//将buf给bufwork


//////////////设置IDC_EDIT的打印格式以及内容///////////////////////////////
				packet[pcount-1].pack="";			//初始化
				int ncount=0;
				CString packtext;
				packtext="";
				for(int i=0;i<iRet;i++)
				{
					CString sp;
					sp="";
					if((i%16)==0)
					{
						ncount++;
						sp.Format("\x0d\x0a 0x%04x   ",ncount);	//打印回车以及行号
						if(i!=0)
						{
							packet[pcount-1].pack +="	"+packtext;
							packtext = "";
						}
						packet[pcount-1].pack+=sp;
					}
					sp.Format("%02x ",(u_char)buf[i]);				//buf为char型，转换成u_char型,再按格式输出
					packet[pcount-1].pack+=sp;
					sp.Format("%c",buf[i]);
					packtext+=sp;					
				}
//				if(packtext!="")
	//				packet[pcount-1].pack+=packtext;
/////////////////////////////////////////////////////////////////////////////////				
				pIpHeader = (IPHEADER *)bufwork ;				//将bufwork内容转化为IPHEADER类型
				WORD iLen = ntohs(pIpHeader->total_len);
				while( TRUE )
				{
					
 							ina.S_un.S_addr = pIpHeader->sourceIP ;//源ip地址
							pSource = inet_ntoa( ina ) ;			//转换为主机类型。
							strcpy( szSource , pSource ) ;
							//////////////////保存源ip/////////////////
							for(int j=0;j<16;j++)
							{
							iphead[pcount].sourceip +=szSource[j];
							}
							////////////////////////////////////////////
							ina.S_un.S_addr = pIpHeader->destIP ;
							pDest = inet_ntoa( ina ) ;
							strcpy( szDest , pDest ) ;