Diffstat (limited to 'noncore/net/wellenreiter/daemon/source/sniffer.cc') (more/less context) (ignore whitespace changes)
| -rw-r--r-- | noncore/net/wellenreiter/daemon/source/sniffer.cc | 95 |
1 files changed, 7 insertions, 88 deletions
diff --git a/noncore/net/wellenreiter/daemon/source/sniffer.cc b/noncore/net/wellenreiter/daemon/source/sniffer.cc index c837505..65c8579 100644 --- a/noncore/net/wellenreiter/daemon/source/sniffer.cc +++ b/noncore/net/wellenreiter/daemon/source/sniffer.cc @@ -4,123 +4,38 @@ * able driver and not with wifi stuff. * * $Id$ */ #include "config.hh" +#include "cardmode.hh" #include "sniffer.hh" #include "ieee802_11.hh" #include "extract.hh" -int sniffer(void) +int main(void) { if(card_into_monitormode (SNIFFER_DEVICE, CARD_TYPE_NG) < 0) return 0; start_sniffing (SNIFFER_DEVICE); return 1; } -int card_into_monitormode (char *device, int cardtype) -{ - - int datalink; /* used for getting the pcap datalink type */ - char CiscoRFMON[35] = "/proc/driver/aironet/"; - FILE *CISCO_CONFIG_FILE; - char errbuf[PCAP_ERRBUF_SIZE]; - pcap_t *handle; - - /* Checks if we have a device to sniff on */ - if(device == NULL) - { - printf ("Fatal error i did not have any interfaces to sniff on\n"); - return 0; - } - - /* Setting the prmiscous and up flag to the interface */ - if (card_set_promisc_up (device) == 0) - { - printf ("Interface flags correctly set using ifconfig\n"); - } - - /* Check the cardtype and executes the commands to go into monitor mode */ - if (cardtype == CARD_TYPE_CISCO) /* I got a cisco card */ - { - /* bring the sniffer into rfmon mode */ - snprintf(CiscoRFMON, sizeof(CiscoRFMON),DEFAULT_PATH, device); - CISCO_CONFIG_FILE = fopen(CiscoRFMON,"w"); - fputs ("Mode: r",CISCO_CONFIG_FILE); - fputs ("Mode: y",CISCO_CONFIG_FILE); - fputs ("XmitPower: 1",CISCO_CONFIG_FILE); - fclose(CISCO_CONFIG_FILE); - } - else if (cardtype == CARD_TYPE_NG) - { - char wlanngcmd[62]; - snprintf(wlanngcmd, sizeof(wlanngcmd),"%s %s lnxreq_wlansniff channel=1 enable=true",WLANCTL_PATH,device); - if (system (wlanngcmd) != 0) - { - printf ("\n Fatal error could not set %s in raw mode, check cardtype\n",device); - return 0; - } - } - else if (cardtype == CARD_TYPE_HOSTAP) - { - printf ("Got a host-ap card, nothing is implemented now\n"); - } - - - /* Check the interface if it is in the correct raw mode */ - handle = pcap_open_live(device, BUFSIZ, 1, 0, errbuf); - - /* getting the datalink type */ - datalink = pcap_datalink(handle); - - if (datalink == DLT_IEEE802_11) /* Rawmode is IEEE802_11 */ - { - printf ("Your successfully listen on %s in 802.11 raw mode\n",device); - pcap_close(handle); - return 0; - - } - else - { - printf ("Fatal error, cannot continue, your interface %s does not work in the correct 802.11 raw mode, check you driver please\n",device); - pcap_close(handle); - return 0; - } -} - -int card_set_promisc_up (char * device) -{ - int ret; - char ifconfigcmd[32]; - snprintf(ifconfigcmd,sizeof(ifconfigcmd),SBIN_PATH, device); - ret = system (ifconfigcmd); - if (ret > 0) - { - printf ("\nFatal error, could not execute %s please check your card,binary location and permission\n",ifconfigcmd); - return 0; - } - return 1; -} - int start_sniffing (char * device) { pcap_t *handletopcap; char errbuf[PCAP_ERRBUF_SIZE]; /* opening the pcap for sniffing */ handletopcap = pcap_open_live(device, BUFSIZ, 1, 1000, errbuf); - /* Next few lines a taken out of kismet */ #ifdef HAVE_PCAP_NONBLOCK pcap_setnonblock(handletopcap, 1, errstr); #endif - /*start scanning */ pcap_loop(handletopcap,-1,process_packets,NULL); printf("\nDone processing packets... wheew!\n"); return 1; } @@ -136,12 +51,13 @@ void process_packets(u_char *useless,const struct pcap_pkthdr* pkthdr,const u_ch struct packetinfo pinfo; struct packetinfo *pinfoptr; pinfoptr=&pinfo; pinfoptr->isvalid = 0; pinfoptr->pktlen = pkthdr->len; + if (caplen < IEEE802_11_FC_LEN) { /* This is a garbage packet, because is does not long enough to hold a 802.11b header */ pinfoptr->isvalid = 0; return; @@ -179,19 +95,21 @@ void process_packets(u_char *useless,const struct pcap_pkthdr* pkthdr,const u_ch case T_MGMT: switch (FC_SUBTYPE(fc)) { /* Is it a beacon frame? */ case ST_BEACON: if (handle_beacon(fc, packet,pinfoptr) ==0) { + printf ("\n\tOn network : %s",pinfoptr->ssid); if (!strcmp(pinfoptr->desthwaddr,"ff:ff:ff:ff:ff:ff") == 0) { /* Every beacon must have the broadcast as destination so it must be a shitti packet */ pinfoptr->isvalid = 0; return; } + if (pinfoptr->cap_ESS == pinfoptr->cap_IBSS) { /* Only one of both are possible, so must be a noise packet, if this comes up */ pinfoptr->isvalid = 0; return; @@ -325,12 +243,13 @@ int handle_beacon(u_int16_t fc, const u_char *p,struct packetinfo *ppinfo) { ppinfo->ssid = (char *)pbody.ssid.ssid; } ppinfo->ssid_len = pbody.ssid.length; } break; + case E_CHALLENGE: memcpy(&(pbody.challenge),p+offset,2); offset += 2; if (pbody.challenge.length > 0) { memcpy(&(pbody.challenge.text),p+offset,pbody.challenge.length); offset += pbody.challenge.length; pbody.challenge.text[pbody.challenge.length]='\0'; @@ -361,13 +280,13 @@ int handle_beacon(u_int16_t fc, const u_char *p,struct packetinfo *ppinfo) default: offset+= *(p+offset+1) + 2; break; } /* end of switch*/ } /* end of for loop */ - return 1; + return 0; } /* End of handle_beacon */ static int GetHeaderLength(u_int16_t fc) { |