mirror of https://gerrit.osmocom.org/osmo-pcap
364 lines
9.5 KiB
C
364 lines
9.5 KiB
C
/*
|
|
* osmo-pcap-client code
|
|
*
|
|
* (C) 2011-2016 by Holger Hans Peter Freyther <holger@moiji-mobile.com>
|
|
* (C) 2011 by On-Waves
|
|
* All Rights Reserved
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as published by
|
|
* the Free Software Foundation; either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*
|
|
*/
|
|
|
|
#include <osmo-pcap/osmo_pcap_client.h>
|
|
#include <osmo-pcap/common.h>
|
|
|
|
#include <osmocom/core/talloc.h>
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
|
#define PCAP_STRING "PCAP related functions\n"
|
|
#define SERVER_STRING "Server string\n"
|
|
|
|
static struct cmd_node client_node = {
|
|
CLIENT_NODE,
|
|
"%s(client)#",
|
|
1,
|
|
};
|
|
|
|
DEFUN(cfg_client,
|
|
cfg_client_cmd,
|
|
"client",
|
|
"Enter the client configuration\n")
|
|
{
|
|
vty->node = CLIENT_NODE;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
static int config_write_client(struct vty *vty)
|
|
{
|
|
vty_out(vty, "client%s", VTY_NEWLINE);
|
|
|
|
if (pcap_client->device)
|
|
vty_out(vty, " pcap device %s%s",
|
|
pcap_client->device, VTY_NEWLINE);
|
|
|
|
if (pcap_client->filter_string)
|
|
vty_out(vty, " pcap filter %s%s",
|
|
pcap_client->filter_string, VTY_NEWLINE);
|
|
vty_out(vty, " pcap detect-loop %d%s",
|
|
pcap_client->filter_itself, VTY_NEWLINE);
|
|
if (pcap_client->gprs_filtering)
|
|
vty_out(vty, " pcap add-filter gprs%s", VTY_NEWLINE);
|
|
|
|
if (pcap_client->tls_on) {
|
|
vty_out(vty, " enable tls%s", VTY_NEWLINE);
|
|
vty_out(vty, " tls hostname %s%s", pcap_client->tls_hostname, VTY_NEWLINE);
|
|
vty_out(vty, " %stls verify-cert%s",
|
|
pcap_client->tls_verify ? "" : "no ", VTY_NEWLINE);
|
|
if (pcap_client->tls_capath)
|
|
vty_out(vty, " tls capath %s%s", pcap_client->tls_capath, VTY_NEWLINE);
|
|
if (pcap_client->tls_client_cert)
|
|
vty_out(vty, " tls client-cert %s%s",
|
|
pcap_client->tls_client_cert, VTY_NEWLINE);
|
|
if (pcap_client->tls_client_key)
|
|
vty_out(vty, " tls client-key %s%s",
|
|
pcap_client->tls_client_key, VTY_NEWLINE);
|
|
if (pcap_client->tls_priority)
|
|
vty_out(vty, " tls priority %s%s",
|
|
pcap_client->tls_priority, VTY_NEWLINE);
|
|
vty_out(vty, " tls log-level %d%s",
|
|
pcap_client->tls_log_level, VTY_NEWLINE);
|
|
}
|
|
|
|
if (pcap_client->srv_ip)
|
|
vty_out(vty, " server ip %s%s",
|
|
pcap_client->srv_ip, VTY_NEWLINE);
|
|
|
|
if (pcap_client->srv_port > 0)
|
|
vty_out(vty, " server port %d%s",
|
|
pcap_client->srv_port, VTY_NEWLINE);
|
|
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_client_device,
|
|
cfg_client_device_cmd,
|
|
"pcap device NAME",
|
|
PCAP_STRING "the device to filter\n" "device name\n")
|
|
{
|
|
osmo_client_capture(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_client_add_gprs,
|
|
cfg_client_add_gprs_cmd,
|
|
"pcap add-filter gprs",
|
|
PCAP_STRING "Add-filter\n" "Custom filtering for GPRS\n")
|
|
{
|
|
pcap_client->gprs_filtering = 1;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_client_del_gprs,
|
|
cfg_client_del_gprs_cmd,
|
|
"no pcap add-filter gprs",
|
|
NO_STR PCAP_STRING "Add-filter\n" "Custom filter for GPRS\n")
|
|
{
|
|
pcap_client->gprs_filtering = 0;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_client_filter,
|
|
cfg_client_filter_cmd,
|
|
"pcap filter .NAME",
|
|
PCAP_STRING "filter string in pcap syntax\n" "filter\n")
|
|
{
|
|
char *filter = argv_concat(argv, argc, 0);
|
|
if (!filter) {
|
|
vty_out(vty, "Failed to allocate buffer.%s", VTY_NEWLINE);
|
|
return CMD_WARNING;
|
|
}
|
|
|
|
|
|
if (osmo_client_filter(pcap_client, filter) != 0) {
|
|
vty_out(vty, "Failed to set the device.%s", VTY_NEWLINE);
|
|
talloc_free(filter);
|
|
return CMD_WARNING;
|
|
}
|
|
|
|
talloc_free(filter);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_client_loop,
|
|
cfg_client_loop_cmd,
|
|
"pcap detect-loop (0|1)",
|
|
PCAP_STRING "detect loop and drop\n" "No detection\n" "Detection\n")
|
|
{
|
|
pcap_client->filter_itself = atoi(argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
|
|
#define TLS_STR "Transport Layer Security\n"
|
|
|
|
DEFUN(cfg_enable_tls,
|
|
cfg_enable_tls_cmd,
|
|
"enable tls",
|
|
"Enable\n" "Transport Layer Security\n")
|
|
{
|
|
if (!pcap_client->tls_on) {
|
|
if (pcap_client->wqueue.bfd.fd >= 0)
|
|
osmo_client_reconnect(pcap_client);
|
|
}
|
|
|
|
pcap_client->tls_on = true;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_disable_tls,
|
|
cfg_disable_tls_cmd,
|
|
"disable tls",
|
|
"Disable\n" "Transport Layer Security\n")
|
|
{
|
|
if (pcap_client->tls_on)
|
|
osmo_client_reconnect(pcap_client);
|
|
|
|
pcap_client->tls_on = false;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_hostname,
|
|
cfg_tls_hostname_cmd,
|
|
"tls hostname NAME",
|
|
TLS_STR "hostname for certificate validation\n" "name\n")
|
|
{
|
|
talloc_free(pcap_client->tls_hostname);
|
|
pcap_client->tls_hostname = talloc_strdup(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_no_tls_hostname,
|
|
cfg_no_tls_hostname_cmd,
|
|
"no tls hostname",
|
|
NO_STR TLS_STR "hostname for certificate validation\n")
|
|
{
|
|
talloc_free(pcap_client->tls_hostname);
|
|
pcap_client->tls_hostname = NULL;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_verify,
|
|
cfg_tls_verify_cmd,
|
|
"tls verify-cert",
|
|
TLS_STR "Verify certificates\n")
|
|
{
|
|
pcap_client->tls_verify = true;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_no_tls_verify,
|
|
cfg_no_tls_verify_cmd,
|
|
"no tls verify-cert",
|
|
NO_STR TLS_STR "Verify certificates\n")
|
|
{
|
|
pcap_client->tls_verify = false;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_capath,
|
|
cfg_tls_capath_cmd,
|
|
"tls capath .PATH",
|
|
TLS_STR "Trusted root certificates\n" "Filename\n")
|
|
{
|
|
talloc_free(pcap_client->tls_capath);
|
|
pcap_client->tls_capath = talloc_strdup(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_no_tls_capath,
|
|
cfg_no_tls_capath_cmd,
|
|
"no tls capath",
|
|
NO_STR TLS_STR "Trusted root certificates\n")
|
|
{
|
|
talloc_free(pcap_client->tls_capath);
|
|
pcap_client->tls_capath = NULL;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_client_cert,
|
|
cfg_tls_client_cert_cmd,
|
|
"tls client-cert .PATH",
|
|
TLS_STR "Client certificate for authentication\n" "Filename\n")
|
|
{
|
|
talloc_free(pcap_client->tls_client_cert);
|
|
pcap_client->tls_client_cert = talloc_strdup(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_no_tls_client_cert,
|
|
cfg_no_tls_client_cert_cmd,
|
|
"no tls client-cert",
|
|
NO_STR TLS_STR "Client certificate for authentication\n")
|
|
{
|
|
talloc_free(pcap_client->tls_client_cert);
|
|
pcap_client->tls_client_cert = NULL;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_client_key,
|
|
cfg_tls_client_key_cmd,
|
|
"tls client-key .PATH",
|
|
TLS_STR "Client private key\n" "Filename\n")
|
|
{
|
|
talloc_free(pcap_client->tls_client_key);
|
|
pcap_client->tls_client_key = talloc_strdup(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_no_tls_client_key,
|
|
cfg_no_tls_client_key_cmd,
|
|
"no tls client-key",
|
|
NO_STR TLS_STR "Client private key\n")
|
|
{
|
|
talloc_free(pcap_client->tls_client_key);
|
|
pcap_client->tls_client_key = NULL;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_priority,
|
|
cfg_tls_priority_cmd,
|
|
"tls priority STR",
|
|
TLS_STR "Priority string for GNUtls\n" "Priority string\n")
|
|
{
|
|
talloc_free(pcap_client->tls_priority);
|
|
pcap_client->tls_priority = talloc_strdup(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_no_tls_priority,
|
|
cfg_no_tls_priority_cmd,
|
|
"no tls priority",
|
|
NO_STR TLS_STR "Priority string for GNUtls\n")
|
|
{
|
|
talloc_free(pcap_client->tls_priority);
|
|
pcap_client->tls_priority = NULL;
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_tls_log_level,
|
|
cfg_tls_log_level_cmd,
|
|
"tls log-level <0-255>",
|
|
TLS_STR "Log-level\n" "GNUtls debug level\n")
|
|
{
|
|
pcap_client->tls_log_level = atoi(argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_server_ip,
|
|
cfg_server_ip_cmd,
|
|
"server ip A.B.C.D",
|
|
SERVER_STRING "IP Address of the server\n" "IP\n")
|
|
{
|
|
talloc_free(pcap_client->srv_ip);
|
|
pcap_client->srv_ip = talloc_strdup(pcap_client, argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
DEFUN(cfg_server_port,
|
|
cfg_server_port_cmd,
|
|
"server port <1-65535>",
|
|
SERVER_STRING "Port\n" "Number\n")
|
|
{
|
|
pcap_client->srv_port = atoi(argv[0]);
|
|
return CMD_SUCCESS;
|
|
}
|
|
|
|
|
|
int vty_client_init(struct osmo_pcap_client *pcap)
|
|
{
|
|
install_element(CONFIG_NODE, &cfg_client_cmd);
|
|
install_node(&client_node, config_write_client);
|
|
install_default(CLIENT_NODE);
|
|
|
|
install_element(CLIENT_NODE, &cfg_client_device_cmd);
|
|
install_element(CLIENT_NODE, &cfg_client_filter_cmd);
|
|
install_element(CLIENT_NODE, &cfg_client_loop_cmd);
|
|
|
|
install_element(CLIENT_NODE, &cfg_server_ip_cmd);
|
|
install_element(CLIENT_NODE, &cfg_server_port_cmd);
|
|
|
|
install_element(CLIENT_NODE, &cfg_enable_tls_cmd);
|
|
install_element(CLIENT_NODE, &cfg_disable_tls_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_hostname_cmd);
|
|
install_element(CLIENT_NODE, &cfg_no_tls_hostname_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_verify_cmd);
|
|
install_element(CLIENT_NODE, &cfg_no_tls_verify_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_capath_cmd);
|
|
install_element(CLIENT_NODE, &cfg_no_tls_capath_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_client_cert_cmd);
|
|
install_element(CLIENT_NODE, &cfg_no_tls_client_cert_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_client_key_cmd);
|
|
install_element(CLIENT_NODE, &cfg_no_tls_client_key_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_priority_cmd);
|
|
install_element(CLIENT_NODE, &cfg_no_tls_priority_cmd);
|
|
install_element(CLIENT_NODE, &cfg_tls_log_level_cmd);
|
|
|
|
install_element(CLIENT_NODE, &cfg_client_add_gprs_cmd);
|
|
install_element(CLIENT_NODE, &cfg_client_del_gprs_cmd);
|
|
|
|
return 0;
|
|
}
|