Главная Обзор Помощь
Вход
yosoyhendrix
/
psiphon-tunnel-core
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: ceb7b5400a
Ветки Метки
psiphon-tunnel-...
/
vendor
/
github.com
/
google
/
gopacket
/
layers
/
ipsec.go

ipsec.go 2.2 KB
История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. // Copyright 2012 Google, Inc. All rights reserved.
    2. 

  2. //
    3. 

  3. // Use of this source code is governed by a BSD-style license
    4. 

  4. // that can be found in the LICENSE file in the root of the source
    5. 

  5. // tree.
    6. 

  6. 

  7. package layers
    8. 

  8. 

  9. import (
    10. 

  10. 	"encoding/binary"
    11. 

  11. 	"errors"
    12. 

  12. 	"github.com/google/gopacket"
    13. 

  13. )
    14. 

  14. 

  15. // IPSecAH is the authentication header for IPv4/6 defined in
    16. 

  16. // http://tools.ietf.org/html/rfc2402
    17. 

  17. type IPSecAH struct {
    18. 

  18. 	// While the auth header can be used for both IPv4 and v6, its format is that of
    19. 

  19. 	// an IPv6 extension (NextHeader, PayloadLength, etc...), so we use ipv6ExtensionBase
    20. 

  20. 	// to build it.
    21. 

  21. 	ipv6ExtensionBase
    22. 

  22. 	Reserved           uint16
    23. 

  23. 	SPI, Seq           uint32
    24. 

  24. 	AuthenticationData []byte
    25. 

  25. }
    26. 

  26. 

  27. // LayerType returns LayerTypeIPSecAH.
    28. 

  28. func (i *IPSecAH) LayerType() gopacket.LayerType { return LayerTypeIPSecAH }
    29. 

  29. 

  30. func decodeIPSecAH(data []byte, p gopacket.PacketBuilder) error {
    31. 

  31. 	if len(data) < 12 {
    32. 

  32. 		p.SetTruncated()
    33. 

  33. 		return errors.New("IPSec AH packet less than 12 bytes")
    34. 

  34. 	}
    35. 

  35. 	i := &IPSecAH{
    36. 

  36. 		ipv6ExtensionBase: ipv6ExtensionBase{
    37. 

  37. 			NextHeader:   IPProtocol(data[0]),
    38. 

  38. 			HeaderLength: data[1],
    39. 

  39. 		},
    40. 

  40. 		Reserved: binary.BigEndian.Uint16(data[2:4]),
    41. 

  41. 		SPI:      binary.BigEndian.Uint32(data[4:8]),
    42. 

  42. 		Seq:      binary.BigEndian.Uint32(data[8:12]),
    43. 

  43. 	}
    44. 

  44. 	i.ActualLength = (int(i.HeaderLength) + 2) * 4
    45. 

  45. 	if len(data) < i.ActualLength {
    46. 

  46. 		p.SetTruncated()
    47. 

  47. 		return errors.New("Truncated AH packet < ActualLength")
    48. 

  48. 	}
    49. 

  49. 	i.AuthenticationData = data[12:i.ActualLength]
    50. 

  50. 	i.Contents = data[:i.ActualLength]
    51. 

  51. 	i.Payload = data[i.ActualLength:]
    52. 

  52. 	p.AddLayer(i)
    53. 

  53. 	return p.NextDecoder(i.NextHeader)
    54. 

  54. }
    55. 

  55. 

  56. // IPSecESP is the encapsulating security payload defined in
    57. 

  57. // http://tools.ietf.org/html/rfc2406
    58. 

  58. type IPSecESP struct {
    59. 

  59. 	BaseLayer
    60. 

  60. 	SPI, Seq uint32
    61. 

  61. 	// Encrypted contains the encrypted set of bytes sent in an ESP
    62. 

  62. 	Encrypted []byte
    63. 

  63. }
    64. 

  64. 

  65. // LayerType returns LayerTypeIPSecESP.
    66. 

  66. func (i *IPSecESP) LayerType() gopacket.LayerType { return LayerTypeIPSecESP }
    67. 

  67. 

  68. func decodeIPSecESP(data []byte, p gopacket.PacketBuilder) error {
    69. 

  69. 	i := &IPSecESP{
    70. 

  70. 		BaseLayer: BaseLayer{data, nil},
    71. 

  71. 		SPI:       binary.BigEndian.Uint32(data[:4]),
    72. 

  72. 		Seq:       binary.BigEndian.Uint32(data[4:8]),
    73. 

  73. 		Encrypted: data[8:],
    74. 

  74. 	}
    75. 

  75. 	p.AddLayer(i)
    76. 

  76. 	return nil
    77. 

  77. }
    78.