apple/swift-nio-extras
1
0
Fork 0
mirror of https://github.com/apple/swift-nio-extras.git synced 2025-05-15 09:22:38 +08:00
Code Issues Packages Projects Releases Wiki Activity
swift-nio-extras/Tests/NIOExtrasTests/WritePCAPHandlerTest.swift
Johannes Weiss 96e8335180
write PCAP handler (#46) 
Motivation:

Especially with TLS but also without, in real production environments it
can be handy to be able to write pcap files from NIO directly.

Modifications:

add a ChannelHandler that can write a PCAP trace from what's going on in
the ChannelPipeline.

Result:

easier debugging in production
2019-04-12 15:08:10 +01:00

681 lines
34 KiB
Swift
Raw Blame History

//===----------------------------------------------------------------------===//
//
// This source file is part of the SwiftNIO open source project
//
// Copyright (c) 2019 Apple Inc. and the SwiftNIO project authors
// Licensed under Apache License v2.0
//
// See LICENSE.txt for license information
// See CONTRIBUTORS.txt for the list of SwiftNIO project authors
//
// SPDX-License-Identifier: Apache-2.0
//
//===----------------------------------------------------------------------===//
import Foundation
import XCTest
import NIO
@testable import NIOExtras
class WritePCAPHandlerTest: XCTestCase {
private var accumulatedPackets: [ByteBuffer]!
private var channel: EmbeddedChannel!
private var scratchBuffer: ByteBuffer!
private var testAddressA: SocketAddress.IPv6Address!
private var _mode: NIOWritePCAPHandler.Mode = .client
var mode: NIOWritePCAPHandler.Mode {
get {
return self._mode
}
set {
self.channel = EmbeddedChannel(handler: NIOWritePCAPHandler(mode: newValue,
fakeLocalAddress: nil,
fakeRemoteAddress: nil,
fileSink: {
self.accumulatedPackets.append($0)
}))
self._mode = newValue
}
}
override func setUp() {
self.accumulatedPackets = []
self.channel = EmbeddedChannel(handler: NIOWritePCAPHandler(mode: .client,
fakeLocalAddress: nil,
fakeRemoteAddress: nil,
fileSink: {
self.accumulatedPackets.append($0)
}))
self.scratchBuffer = self.channel.allocator.buffer(capacity: 128)
}
override func tearDown() {
self.accumulatedPackets = nil
self.channel = nil
self.scratchBuffer = nil
}
func assertEqual(expectedAddress: SocketAddress?,
actualIPv4Address: in_addr,
actualPort: UInt16,
file: StaticString = #file,
line: UInt = #line) {
guard let port = expectedAddress?.port else {
XCTFail("expected address nil or has no port", file: file, line: line)
return
}
switch expectedAddress {
case .some(.v4(let expectedAddress)):
XCTAssertEqual(expectedAddress.address.sin_addr.s_addr,
actualIPv4Address.s_addr,
"IP addresses don't match",
file: file, line: line)
XCTAssertEqual(port, Int(actualPort), "ports don't match", file: file, line: line)
default:
XCTFail("expected address not an IPv4 address", file: file, line: line)
}
}
func assertEqual(expectedAddress: SocketAddress?,
actualIPv6Address: in6_addr,
actualPort: UInt16,
file: StaticString = #file,
line: UInt = #line) {
guard let port = expectedAddress?.port else {
XCTFail("expected address nil or has no port", file: file, line: line)
return
}
switch expectedAddress {
case .some(.v6(let expectedAddress)):
var actualIPv6Address = actualIPv6Address
var expectedAddress = expectedAddress.address
withUnsafeBytes(of: &actualIPv6Address) { actualAddressBytes in
withUnsafeBytes(of: &expectedAddress.sin6_addr) { expectedAddressBytes in
XCTAssertEqual(actualAddressBytes.count, expectedAddressBytes.count)
}
}
XCTAssertEqual(port, Int(actualPort), "ports don't match", file: file, line: line)
default:
XCTFail("expected address not an IPv4 address", file: file, line: line)
}
}
func testConnectIssuesThreePacketsForIPv4() {
XCTAssertEqual([], self.accumulatedPackets)
self.channel.localAddress = try! SocketAddress(ipAddress: "255.255.255.254", port: Int(UInt16.max) - 1)
XCTAssertNoThrow(try self.channel.connect(to: .init(ipAddress: "1.2.3.4", port: 5678)).wait())
XCTAssertNoThrow(try self.channel.throwIfErrorCaught())
XCTAssertEqual(1, self.accumulatedPackets.count) // the WritePCAPHandler will batch all into one write
var buffer = self.accumulatedPackets.first
let records = [buffer?.readPCAPRecord() /* SYN */,
buffer?.readPCAPRecord() /* SYN+ACK */,
buffer?.readPCAPRecord() /* ACK */]
var ipPackets: [TCPIPv4Packet] = []
for var record in records {
XCTAssertNotNil(record) // we must have been able to parse a record
XCTAssertGreaterThan(record?.payload.readableBytes ?? -1, 0) // there must be some TCP/IP packet in there
XCTAssertEqual(2, record?.pcapProtocolID) // 2 is IPv4
if let ipPacket = record?.payload.readTCPIPv4() {
ipPackets.append(ipPacket)
XCTAssertEqual(0, ipPacket.tcpPayload.readableBytes)
XCTAssertEqual(40, ipPacket.wholeIPPacketLength) // in IPv4 it's payload + IP + TCP header
}
}
XCTAssertEqual(3, ipPackets.count)
// SYN, local should be source, remote is destination
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.syn], ipPackets[0].tcpHeader.flags)
// SYN+ACK, local should be destination, remote should be source
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[1].src,
actualPort: ipPackets[1].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[1].dst,
actualPort: ipPackets[1].tcpHeader.dstPort)
XCTAssertEqual([.syn, .ack], ipPackets[1].tcpHeader.flags)
// ACK
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.ack], ipPackets[2].tcpHeader.flags)
XCTAssertEqual(0, buffer?.readableBytes) // there shouldn't be anything else left
}
func testConnectIssuesThreePacketsForIPv6() {
XCTAssertEqual([], self.accumulatedPackets)
self.channel.localAddress = try! SocketAddress(ipAddress: "1:2:3:4:5:6:7:8", port: Int(UInt16.max) - 1)
XCTAssertNoThrow(try self.channel.connect(to: .init(ipAddress: "::1", port: 5678)).wait())
XCTAssertNoThrow(try self.channel.throwIfErrorCaught())
XCTAssertEqual(1, self.accumulatedPackets.count) // the WritePCAPHandler will batch all into one write
var buffer = self.accumulatedPackets.first
let records = [buffer?.readPCAPRecord() /* SYN */,
buffer?.readPCAPRecord() /* SYN+ACK */,
buffer?.readPCAPRecord() /* ACK */]
var ipPackets: [TCPIPv6Packet] = []
for var record in records {
XCTAssertNotNil(record) // we must have been able to parse a record
XCTAssertGreaterThan(record?.payload.readableBytes ?? -1, 0) // there must be some TCP/IP packet in there
XCTAssertEqual(24, record?.pcapProtocolID) // 24 is IPv6
if let ipPacket = record?.payload.readTCPIPv6() {
ipPackets.append(ipPacket)
XCTAssertEqual(0, ipPacket.tcpPayload.readableBytes)
XCTAssertEqual(20, ipPacket.payloadLength) // in IPv6 it's just the payload, ie. payload + TCP header
}
}
XCTAssertEqual(3, ipPackets.count)
// SYN, local should be source, remote is destination
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv6Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv6Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.syn], ipPackets[0].tcpHeader.flags)
// SYN+ACK, local should be destination, remote should be source
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv6Address: ipPackets[1].src,
actualPort: ipPackets[1].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv6Address: ipPackets[1].dst,
actualPort: ipPackets[1].tcpHeader.dstPort)
XCTAssertEqual([.syn, .ack], ipPackets[1].tcpHeader.flags)
// ACK
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv6Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv6Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.ack], ipPackets[2].tcpHeader.flags)
XCTAssertEqual(0, buffer?.readableBytes) // there shouldn't be anything else left
}
func testAcceptConnectionFromRemote() {
self.mode = .server
XCTAssertEqual([], self.accumulatedPackets)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "1.2.3.4", port: 5678)
self.channel.localAddress = try! SocketAddress(ipAddress: "255.255.255.254", port: Int(UInt16.max) - 1)
channel.pipeline.fireChannelActive()
XCTAssertNoThrow(try self.channel.throwIfErrorCaught())
XCTAssertEqual(1, self.accumulatedPackets.count) // the WritePCAPHandler will batch all into one write
var buffer = self.accumulatedPackets.first
let records = [buffer?.readPCAPRecord() /* SYN */,
buffer?.readPCAPRecord() /* SYN+ACK */,
buffer?.readPCAPRecord() /* ACK */]
var ipPackets: [TCPIPv4Packet] = []
for var record in records {
XCTAssertNotNil(record) // we must have been able to parse a record
XCTAssertGreaterThan(record?.payload.readableBytes ?? -1, 0) // there must be some TCP/IP packet in there
XCTAssertEqual(2, record?.pcapProtocolID) // 2 is IPv4
if let ipPacket = record?.payload.readTCPIPv4() {
ipPackets.append(ipPacket)
XCTAssertEqual(0, ipPacket.tcpPayload.readableBytes)
}
}
XCTAssertEqual(3, ipPackets.count)
// SYN, local should be dst, remote is src
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.syn], ipPackets[0].tcpHeader.flags)
// SYN+ACK, local should be src, remote should be dst
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[1].src,
actualPort: ipPackets[1].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[1].dst,
actualPort: ipPackets[1].tcpHeader.dstPort)
XCTAssertEqual([.syn, .ack], ipPackets[1].tcpHeader.flags)
// ACK
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.ack], ipPackets[2].tcpHeader.flags)
XCTAssertEqual(0, buffer?.readableBytes) // there shouldn't be anything else left
}
func testCloseOriginatingFromLocal() {
self.channel.localAddress = try! SocketAddress(ipAddress: "1.1.1.1", port: 1)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "2.2.2.2", port: 2)
XCTAssertNoThrow(try self.channel.close().wait())
XCTAssertEqual(1, self.accumulatedPackets.count) // we're batching again.
var buffer = self.accumulatedPackets.first
let records = [buffer?.readPCAPRecord() /* FIN */,
buffer?.readPCAPRecord() /* FIN+ACK */,
buffer?.readPCAPRecord() /* ACK */]
XCTAssertEqual(0, buffer?.readableBytes) // nothing left
var ipPackets: [TCPIPv4Packet] = []
for var record in records {
XCTAssertNotNil(record) // we must have been able to parse a record
XCTAssertGreaterThan(record?.payload.readableBytes ?? -1, 0) // there must be some TCP/IP packet in there
if let ipPacket = record?.payload.readTCPIPv4() {
ipPackets.append(ipPacket)
XCTAssertEqual(0, ipPacket.tcpPayload.readableBytes)
}
}
// FIN, local should be source, remote is destination
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.fin], ipPackets[0].tcpHeader.flags)
// FIN+ACK, local should be destination, remote should be source
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[1].src,
actualPort: ipPackets[1].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[1].dst,
actualPort: ipPackets[1].tcpHeader.dstPort)
XCTAssertEqual([.fin, .ack], ipPackets[1].tcpHeader.flags)
// ACK
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.ack], ipPackets[2].tcpHeader.flags)
}
func testCloseOriginatingFromRemote() {
self.channel.localAddress = try! SocketAddress(ipAddress: "1.1.1.1", port: 1)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "2.2.2.2", port: 2)
self.channel.pipeline.fireChannelInactive()
XCTAssertEqual(1, self.accumulatedPackets.count) // we're batching again.
var buffer = self.accumulatedPackets.first
let records = [buffer?.readPCAPRecord() /* FIN */,
buffer?.readPCAPRecord() /* FIN+ACK */,
buffer?.readPCAPRecord() /* ACK */]
XCTAssertEqual(0, buffer?.readableBytes) // nothing left
var ipPackets: [TCPIPv4Packet] = []
for var record in records {
XCTAssertNotNil(record) // we must have been able to parse a record
XCTAssertGreaterThan(record?.payload.readableBytes ?? -1, 0) // there must be some TCP/IP packet in there
if let ipPacket = record?.payload.readTCPIPv4() {
ipPackets.append(ipPacket)
XCTAssertEqual(0, ipPacket.tcpPayload.readableBytes)
}
}
// FIN, local should be dst, remote is src
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.fin], ipPackets[0].tcpHeader.flags)
// FIN+ACK, local should be src, remote should be dst
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[1].src,
actualPort: ipPackets[1].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[1].dst,
actualPort: ipPackets[1].tcpHeader.dstPort)
XCTAssertEqual([.fin, .ack], ipPackets[1].tcpHeader.flags)
// ACK
self.assertEqual(expectedAddress: self.channel?.remoteAddress,
actualIPv4Address: ipPackets[0].src,
actualPort: ipPackets[0].tcpHeader.srcPort)
self.assertEqual(expectedAddress: self.channel?.localAddress,
actualIPv4Address: ipPackets[0].dst,
actualPort: ipPackets[0].tcpHeader.dstPort)
XCTAssertEqual([.ack], ipPackets[2].tcpHeader.flags)
}
func testInboundData() {
self.channel.localAddress = try! SocketAddress(ipAddress: "1.2.3.4", port: 1111)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "9.8.7.6", port: 2222)
self.scratchBuffer.writeStaticString("hello")
XCTAssertNoThrow(try self.channel.writeInbound(self.scratchBuffer))
XCTAssertEqual(1, self.accumulatedPackets.count)
guard var packetBytes = self.accumulatedPackets.first else {
XCTFail("couldn't read bytes of first packet")
return
}
guard var payload = packetBytes.readPCAPRecord() else {
XCTFail("couldn't read payload from PCAP record")
return
}
XCTAssertEqual(0, packetBytes.readableBytes) // check nothing is left over
guard let tcpIPPacket = payload.payload.readTCPIPv4() else {
XCTFail("couldn't read TCP/IPv4 packet")
return
}
XCTAssertEqual(1111, tcpIPPacket.tcpHeader.dstPort)
XCTAssertEqual(2222, tcpIPPacket.tcpHeader.srcPort)
XCTAssertEqual("hello", String(decoding: tcpIPPacket.tcpPayload.readableBytesView, as: Unicode.UTF8.self))
}
func testOutboundData() {
self.channel.localAddress = try! SocketAddress(ipAddress: "1.2.3.4", port: 1111)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "9.8.7.6", port: 2222)
self.scratchBuffer.writeStaticString("hello")
XCTAssertNoThrow(try self.channel.writeOutbound(self.scratchBuffer))
XCTAssertEqual(1, self.accumulatedPackets.count)
guard var packetBytes = self.accumulatedPackets.first else {
XCTFail("couldn't read bytes of first packet")
return
}
guard var payload = packetBytes.readPCAPRecord() else {
XCTFail("couldn't read payload from PCAP record")
return
}
XCTAssertEqual(0, packetBytes.readableBytes) // check nothing is left over
guard let tcpIPPacket = payload.payload.readTCPIPv4() else {
XCTFail("couldn't read TCP/IPv4 packet")
return
}
XCTAssertEqual(2222, tcpIPPacket.tcpHeader.dstPort)
XCTAssertEqual(1111, tcpIPPacket.tcpHeader.srcPort)
XCTAssertEqual("hello", String(decoding: tcpIPPacket.tcpPayload.readableBytesView, as: Unicode.UTF8.self))
}
func testOversizedInboundDataComesAsTwoPacketsIPv4() {
self.channel.localAddress = try! SocketAddress(ipAddress: "1.2.3.4", port: 1111)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "9.8.7.6", port: 2222)
let expectedData = String(repeating: "X", count: Int(UInt16.max) * 2 - 300)
self.scratchBuffer.writeString(expectedData)
XCTAssertNoThrow(try self.channel.writeInbound(self.scratchBuffer))
XCTAssertEqual(1, self.accumulatedPackets.count)
guard var packetBytes = self.accumulatedPackets.first else {
XCTFail("couldn't read bytes of first packet")
return
}
guard var payload1 = packetBytes.readPCAPRecord(), var payload2 = packetBytes.readPCAPRecord() else {
XCTFail("couldn't read payloads from PCAP record")
return
}
XCTAssertEqual(0, packetBytes.readableBytes) // check nothing is left over
guard let tcpIPPacket1 = payload1.payload.readTCPIPv4(), let tcpIPPacket2 = payload2.payload.readTCPIPv4() else {
XCTFail("couldn't read TCP/IPv4 packets")
return
}
XCTAssertEqual(1111, tcpIPPacket1.tcpHeader.dstPort)
XCTAssertEqual(2222, tcpIPPacket1.tcpHeader.srcPort)
XCTAssertEqual(1111, tcpIPPacket2.tcpHeader.dstPort)
XCTAssertEqual(2222, tcpIPPacket2.tcpHeader.srcPort)
let actualData = String(decoding: tcpIPPacket1.tcpPayload.readableBytesView, as: Unicode.UTF8.self) +
String(decoding: tcpIPPacket2.tcpPayload.readableBytesView, as: Unicode.UTF8.self)
XCTAssertEqual(expectedData, actualData)
}
func testOversizedInboundDataComesAsTwoPacketsIPv6() {
self.channel.localAddress = try! SocketAddress(ipAddress: "::1", port: 1111)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "::2", port: 2222)
let expectedData = String(repeating: "X", count: Int(UInt16.max) * 2 - 300)
self.scratchBuffer.writeString(expectedData)
XCTAssertNoThrow(try self.channel.writeInbound(self.scratchBuffer))
XCTAssertEqual(1, self.accumulatedPackets.count)
guard var packetBytes = self.accumulatedPackets.first else {
XCTFail("couldn't read bytes of first packet")
return
}
guard var payload1 = packetBytes.readPCAPRecord(), var payload2 = packetBytes.readPCAPRecord() else {
XCTFail("couldn't read payloads from PCAP record")
return
}
XCTAssertEqual(0, packetBytes.readableBytes) // check nothing is left over
guard let tcpIPPacket1 = payload1.payload.readTCPIPv6(), let tcpIPPacket2 = payload2.payload.readTCPIPv6() else {
XCTFail("couldn't read TCP/IPv6 packets")
return
}
XCTAssertEqual(1111, tcpIPPacket1.tcpHeader.dstPort)
XCTAssertEqual(2222, tcpIPPacket1.tcpHeader.srcPort)
XCTAssertEqual(1111, tcpIPPacket2.tcpHeader.dstPort)
XCTAssertEqual(2222, tcpIPPacket2.tcpHeader.srcPort)
let actualData = String(decoding: tcpIPPacket1.tcpPayload.readableBytesView, as: Unicode.UTF8.self) +
String(decoding: tcpIPPacket2.tcpPayload.readableBytesView, as: Unicode.UTF8.self)
XCTAssertEqual(expectedData, actualData)
}
func testOversizedOutboundDataComesAsTwoPacketsIPv4() {
self.channel.localAddress = try! SocketAddress(ipAddress: "1.2.3.4", port: 1111)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "9.8.7.6", port: 2222)
let expectedData = String(repeating: "X", count: Int(UInt16.max) * 2 - 300)
self.scratchBuffer.writeString(expectedData)
XCTAssertNoThrow(try self.channel.writeOutbound(self.scratchBuffer))
XCTAssertEqual(1, self.accumulatedPackets.count)
guard var packetBytes = self.accumulatedPackets.first else {
XCTFail("couldn't read bytes of first packet")
return
}
guard var payload1 = packetBytes.readPCAPRecord(), var payload2 = packetBytes.readPCAPRecord() else {
XCTFail("couldn't read payloads from PCAP record")
return
}
XCTAssertEqual(0, packetBytes.readableBytes) // check nothing is left over
guard let tcpIPPacket1 = payload1.payload.readTCPIPv4(), let tcpIPPacket2 = payload2.payload.readTCPIPv4() else {
XCTFail("couldn't read TCP/IPv4 packets")
return
}
XCTAssertEqual(2222, tcpIPPacket1.tcpHeader.dstPort)
XCTAssertEqual(1111, tcpIPPacket1.tcpHeader.srcPort)
XCTAssertEqual(2222, tcpIPPacket2.tcpHeader.dstPort)
XCTAssertEqual(1111, tcpIPPacket2.tcpHeader.srcPort)
let actualData = String(decoding: tcpIPPacket1.tcpPayload.readableBytesView, as: Unicode.UTF8.self) +
String(decoding: tcpIPPacket2.tcpPayload.readableBytesView, as: Unicode.UTF8.self)
XCTAssertEqual(expectedData, actualData)
}
func testOversizedOutboundDataComesAsTwoPacketsIPv6() {
self.channel.localAddress = try! SocketAddress(ipAddress: "::1", port: 1111)
self.channel.remoteAddress = try! SocketAddress(ipAddress: "::2", port: 2222)
let expectedData = String(repeating: "X", count: Int(UInt16.max) * 2 - 300)
self.scratchBuffer.writeString(expectedData)
XCTAssertNoThrow(try self.channel.writeOutbound(self.scratchBuffer))
XCTAssertEqual(1, self.accumulatedPackets.count)
guard var packetBytes = self.accumulatedPackets.first else {
XCTFail("couldn't read bytes of first packet")
return
}
guard var payload1 = packetBytes.readPCAPRecord(), var payload2 = packetBytes.readPCAPRecord() else {
XCTFail("couldn't read payloads from PCAP record")
return
}
XCTAssertEqual(0, packetBytes.readableBytes) // check nothing is left over
guard let tcpIPPacket1 = payload1.payload.readTCPIPv6(), let tcpIPPacket2 = payload2.payload.readTCPIPv6() else {
XCTFail("couldn't read TCP/IPv6 packets")
return
}
XCTAssertEqual(2222, tcpIPPacket1.tcpHeader.dstPort)
XCTAssertEqual(1111, tcpIPPacket1.tcpHeader.srcPort)
XCTAssertEqual(2222, tcpIPPacket2.tcpHeader.dstPort)
XCTAssertEqual(1111, tcpIPPacket2.tcpHeader.srcPort)
let actualData = String(decoding: tcpIPPacket1.tcpPayload.readableBytesView, as: Unicode.UTF8.self) +
String(decoding: tcpIPPacket2.tcpPayload.readableBytesView, as: Unicode.UTF8.self)
XCTAssertEqual(expectedData, actualData)
}
}
struct PCAPRecord {
var time: timeval
var header: PCAPRecordHeader
var pcapProtocolID: UInt32
var payload: ByteBuffer
}
struct TCPIPv4Packet {
var src: in_addr
var dst: in_addr
var wholeIPPacketLength: Int
var tcpHeader: TCPHeader
var tcpPayload: ByteBuffer
}
struct TCPIPv6Packet {
var src: in6_addr
var dst: in6_addr
var payloadLength: Int
var tcpHeader: TCPHeader
var tcpPayload: ByteBuffer
}
extension ByteBuffer {
// read & parse a TCP packet, containing everything belonging to it (including payload)
mutating func readTCPHeader() -> TCPHeader? {
let saveSelf = self
guard let srcPort = self.readInteger(as: UInt16.self),
let dstPort = self.readInteger(as: UInt16.self),
let seqNo = self.readInteger(as: UInt32.self), // seq no
let ackNo = self.readInteger(as: UInt32.self), // ack no
let flagsAndFriends = self.readInteger(as: UInt16.self), // data offset + reserved bits + fancy stuff
let _ = self.readInteger(as: UInt16.self), // window size
let _ = self.readInteger(as: UInt16.self), // checksum
let _ = self.readInteger(as: UInt16.self), // urgent pointer
(flagsAndFriends & (0xf << 12)) == (0x5 << 12) /* check that the data offset is right */ else {
self = saveSelf
return nil
}
return TCPHeader(flags: .init(rawValue: UInt8(flagsAndFriends & 0xfff)),
ackNumber: ackNo == 0 ? nil : Int(ackNo),
sequenceNumber: Int(seqNo),
srcPort: srcPort,
dstPort: dstPort)
}
// read & parse a TCP/IPv4 packet, containing everything belonging to it (including payload)
mutating func readTCPIPv4() -> TCPIPv4Packet? {
let saveSelf = self
guard let version = self.readInteger(as: UInt8.self),
let _ = self.readInteger(as: UInt8.self), // DSCP
let ipv4WholeLength = self.readInteger(as: UInt16.self),
let _ = self.readInteger(as: UInt16.self), // identification
let _ = self.readInteger(as: UInt16.self), // flags & fragment offset
let _ = self.readInteger(as: UInt8.self), // TTL
let innerProtocolID = self.readInteger(as: UInt8.self), // TCP
let _ = self.readInteger(as: UInt16.self), // checksum
let srcRaw = self.readInteger(endianness: .host, as: UInt32.self),
let dstRaw = self.readInteger(endianness: .host, as: UInt32.self),
version == 0x45,
innerProtocolID == 6, // TCP is 6
var payload = self.readSlice(length: Int(ipv4WholeLength - 20)),
let tcp = payload.readTCPHeader() else {
self = saveSelf
return nil
}
let src = in_addr(s_addr: srcRaw)
let dst = in_addr(s_addr: dstRaw)
return TCPIPv4Packet(src: src,
dst: dst,
wholeIPPacketLength: .init(ipv4WholeLength),
tcpHeader: tcp,
tcpPayload: payload)
}
// read & parse a TCP/IPv6 packet, containing everything belonging to it (including payload)
mutating func readTCPIPv6() -> TCPIPv6Packet? {
let saveSelf = self
guard let versionAndFancyStuff = self.readInteger(as: UInt32.self), // IP version (6) & fancy stuff
let payloadLength = self.readInteger(as: UInt16.self),
let innerProtocolID = self.readInteger(as: UInt8.self), // TCP
let _ = self.readInteger(as: UInt8.self), // hop limit (like TTL)
versionAndFancyStuff >> 28 == 6, // IPv_6_
innerProtocolID == 6, /* TCP is 6 */
var srcAddrBuffer = self.readSlice(length: MemoryLayout<in6_addr>.size),
var dstAddrBuffer = self.readSlice(length: MemoryLayout<in6_addr>.size),
var payload = self.readSlice(length: Int(payloadLength)),
let tcp = payload.readTCPHeader() else {
self = saveSelf
return nil
}
var srcAddress = in6_addr()
var dstAddress = in6_addr()
withUnsafeMutableBytes(of: &srcAddress) { copyDestPtr in
_ = srcAddrBuffer.readWithUnsafeReadableBytes { copySrcPtr in
precondition(copyDestPtr.count == copySrcPtr.count)
copyDestPtr.copyMemory(from: copySrcPtr)
return copyDestPtr.count
}
}
withUnsafeMutableBytes(of: &dstAddress) { copyDestPtr in
_ = dstAddrBuffer.readWithUnsafeReadableBytes { copySrcPtr in
precondition(copyDestPtr.count == copySrcPtr.count)
copyDestPtr.copyMemory(from: copySrcPtr)
return copyDestPtr.count
}
}
return TCPIPv6Packet(src: srcAddress,
dst: dstAddress,
payloadLength: .init(payloadLength),
tcpHeader: tcp,
tcpPayload: payload)
}
// read a PCAP record, including all its payload
mutating func readPCAPRecord() -> PCAPRecord? {
let saveSelf = self // save the buffer in case we don't have enough to parse
guard let timeSecs = self.readInteger(endianness: .host, as: UInt32.self),
let timeUSecs = self.readInteger(endianness: .host, as: UInt32.self),
let lenPacket = self.readInteger(endianness: .host, as: UInt32.self),
let lenDisk = self.readInteger(endianness: .host, as: UInt32.self),
let pcapProtocolID = self.readInteger(endianness: .host, as: UInt32.self),
let payload = self.readSlice(length: Int(lenDisk - 4)) else {
self = saveSelf
return nil
}
assert(lenPacket == lenDisk, "\(lenPacket) != \(lenDisk)")
let notImplementedAddress = try! SocketAddress(ipAddress: "9.9.9.9", port: 0xbad)
let tcp = TCPHeader(flags: [], ackNumber: nil, sequenceNumber: -1, srcPort: 0xbad, dstPort: 0xbad)
return .init(time: timeval(tv_sec: .init(timeSecs), tv_usec: .init(timeUSecs)),
header: try! PCAPRecordHeader(payloadLength: .init(lenPacket),
src: notImplementedAddress,
dst: notImplementedAddress,
tcp: tcp),
pcapProtocolID: pcapProtocolID,
payload: payload)
}
}
Reference in New Issue View Git Blame Copy Permalink