ipxwrapper/tests/lib/IPXWrapper/Capture/IPXOverUDP.pm

# IPXWrapper test suite
# Copyright (C) 2014-2023 Daniel Collins <solemnwarning@solemnwarning.net>
#
# This program is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License version 2 as published by
# the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful, but WITHOUT
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
# FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
# more details.
#
# You should have received a copy of the GNU General Public License along with
# this program; if not, write to the Free Software Foundation, Inc., 51
# Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

use strict;
use warnings;

package IPXWrapper::Capture::IPXOverUDP;

use Net::Pcap;
use NetPacket::Ethernet;
use NetPacket::IP;
use NetPacket::UDP;
use NetPacket::IPXWrapper;

my @IGNORE_PORTS = (53, 67, 68); # DNS and DHCP

sub new
{
	my ($class, $dev) = @_;
	
	my $err;
	my $pcap = Net::Pcap::pcap_open_live($dev, 1500, 0, 1, \$err)
		or die("Cannot open device $dev: $err");
	
	Net::Pcap::pcap_setnonblock($pcap, 1, \$err);
	
	return bless(\$pcap, $class);
}

sub read_available
{
	my ($self) = @_;
	
	my @packets = ();
	
	Net::Pcap::pcap_dispatch($$self, -1, sub
	{
		my ($user_data, $header, $packet) = @_;
		
		my $ether = NetPacket::Ethernet->decode($packet);
		return unless($ether->{type} == 0x0800);
		
		my $ip = NetPacket::IP->decode($ether->{data});
		return unless($ip->{proto} == NetPacket::IP::IP_PROTO_UDP());
		
		my $udp = NetPacket::UDP->decode($ip->{data});
		
		# NetPacket::IPXWrapper tries to validate packets are in fact
		# IPXWrapper packets, but I've seen it accept DNS packets that
		# just happen to have the right bytes in places, so we ignore
		# special ports we expect unrelated traffic on.
		return if(grep { $udp->{src_port} == $_ || $udp->{dest_port} == $_ } @IGNORE_PORTS);
		
		my $ipx = NetPacket::IPXWrapper->decode($udp->{data});
		return unless(defined($ipx));
		
		my %packet = (
			src_mac => $ether->{src_mac},
			dst_mac => $ether->{dest_mac},
			
			src_ip   => $ip->{src_ip},
			src_port => $udp->{src_port},
			
			dst_ip   => $ip->{dest_ip},
			dst_port => $udp->{dest_port},
			
			src_network => $ipx->{src_network},
			src_node    => $ipx->{src_node},
			src_socket  => $ipx->{src_socket},
			
			dst_network => $ipx->{dest_network},
			dst_node    => $ipx->{dest_node},
			dst_socket  => $ipx->{dest_socket},
			
			type => $ipx->{type},
			data => $ipx->{data},
		);
		
		push(@packets, \%packet);
	}, undef);
	
	return @packets;
}

1;
Replace test suite. Dump most of the old "unit" tests which were more system tests and only tested a small amount of functionality against the host. The new test suite is a lot more thorough and tests an arbitrary Windows version over the network rather than testing within the host's WinSock environment. More documentation detailing how to run this will follow. 2014-04-23 22:45:23 +01:00			`# IPXWrapper test suite`
Set test suite packet captures to non-blocking mode. 2023-09-09 10:14:03 +01:00			`# Copyright (C) 2014-2023 Daniel Collins <solemnwarning@solemnwarning.net>`
Replace test suite. Dump most of the old "unit" tests which were more system tests and only tested a small amount of functionality against the host. The new test suite is a lot more thorough and tests an arbitrary Windows version over the network rather than testing within the host's WinSock environment. More documentation detailing how to run this will follow. 2014-04-23 22:45:23 +01:00			`#`
			`# This program is free software; you can redistribute it and/or modify it`
			`# under the terms of the GNU General Public License version 2 as published by`
			`# the Free Software Foundation.`
			`#`
			`# This program is distributed in the hope that it will be useful, but WITHOUT`
			`# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or`
			`# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for`
			`# more details.`
			`#`
			`# You should have received a copy of the GNU General Public License along with`
			`# this program; if not, write to the Free Software Foundation, Inc., 51`
			`# Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`

			`use strict;`
			`use warnings;`

			`package IPXWrapper::Capture::IPXOverUDP;`

			`use Net::Pcap;`
			`use NetPacket::Ethernet;`
			`use NetPacket::IP;`
			`use NetPacket::UDP;`
			`use NetPacket::IPXWrapper;`

Ignore DNS/DHCP traffic in tests. 2023-10-17 17:37:13 +01:00			`my @IGNORE_PORTS = (53, 67, 68); # DNS and DHCP`

Replace test suite. Dump most of the old "unit" tests which were more system tests and only tested a small amount of functionality against the host. The new test suite is a lot more thorough and tests an arbitrary Windows version over the network rather than testing within the host's WinSock environment. More documentation detailing how to run this will follow. 2014-04-23 22:45:23 +01:00			`sub new`
			`{`
			`my ($class, $dev) = @_;`

			`my $err;`
			`my $pcap = Net::Pcap::pcap_open_live($dev, 1500, 0, 1, \$err)`
			`or die("Cannot open device $dev: $err");`

Set test suite packet captures to non-blocking mode. 2023-09-09 10:14:03 +01:00			`Net::Pcap::pcap_setnonblock($pcap, 1, \$err);`

Replace test suite. Dump most of the old "unit" tests which were more system tests and only tested a small amount of functionality against the host. The new test suite is a lot more thorough and tests an arbitrary Windows version over the network rather than testing within the host's WinSock environment. More documentation detailing how to run this will follow. 2014-04-23 22:45:23 +01:00			`return bless(\$pcap, $class);`
			`}`

			`sub read_available`
			`{`
			`my ($self) = @_;`

			`my @packets = ();`

			`Net::Pcap::pcap_dispatch($$self, -1, sub`
			`{`
			`my ($user_data, $header, $packet) = @_;`

			`my $ether = NetPacket::Ethernet->decode($packet);`
			`return unless($ether->{type} == 0x0800);`

			`my $ip = NetPacket::IP->decode($ether->{data});`
			`return unless($ip->{proto} == NetPacket::IP::IP_PROTO_UDP());`

			`my $udp = NetPacket::UDP->decode($ip->{data});`

Ignore DNS/DHCP traffic in tests. 2023-10-17 17:37:13 +01:00			`# NetPacket::IPXWrapper tries to validate packets are in fact`
			`# IPXWrapper packets, but I've seen it accept DNS packets that`
			`# just happen to have the right bytes in places, so we ignore`
			`# special ports we expect unrelated traffic on.`
			`return if(grep { $udp->{src_port} == $_ \|\| $udp->{dest_port} == $_ } @IGNORE_PORTS);`

Replace test suite. Dump most of the old "unit" tests which were more system tests and only tested a small amount of functionality against the host. The new test suite is a lot more thorough and tests an arbitrary Windows version over the network rather than testing within the host's WinSock environment. More documentation detailing how to run this will follow. 2014-04-23 22:45:23 +01:00			`my $ipx = NetPacket::IPXWrapper->decode($udp->{data});`
			`return unless(defined($ipx));`

			`my %packet = (`
			`src_mac => $ether->{src_mac},`
			`dst_mac => $ether->{dest_mac},`

			`src_ip => $ip->{src_ip},`
			`src_port => $udp->{src_port},`

			`dst_ip => $ip->{dest_ip},`
			`dst_port => $udp->{dest_port},`

			`src_network => $ipx->{src_network},`
			`src_node => $ipx->{src_node},`
			`src_socket => $ipx->{src_socket},`

			`dst_network => $ipx->{dest_network},`
			`dst_node => $ipx->{dest_node},`
			`dst_socket => $ipx->{dest_socket},`

			`type => $ipx->{type},`
			`data => $ipx->{data},`
			`);`

			`push(@packets, \%packet);`
			`}, undef);`

			`return @packets;`
			`}`

			`1;`