Skip to content

Commit

Permalink
Simplify open_priv_sock
Browse files Browse the repository at this point in the history
  • Loading branch information
@Kraemii
Kraemii committed Nov 25, 2024
1 parent 285ea44 commit 8f45082
Showing 1 changed file with 62 additions and 58 deletions.
120 changes: 62 additions & 58 deletions rust/src/nasl/builtin/network/socket.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
// SPDX-License-Identifier: GPL-2.0-or-later

use std::{
io::{BufRead, Read, Write},
io::{self, BufRead, Read, Write},
net::IpAddr,
sync::RwLock,
thread::sleep,
Expand Down Expand Up @@ -465,7 +465,7 @@ impl NaslSockets {
// TODO: set timeout to global recv timeout * 2 when available
let timeout = convert_timeout(timeout).unwrap_or(Duration::from_secs(10));
// TODO: for every vhost
let vhosts = vec!["localhost"];
let vhosts = ["localhost"];
let sockets: Vec<Option<NaslSocket>> = vhosts
.iter()
.map(|vhost| {
Expand All @@ -476,7 +476,7 @@ impl NaslSockets {
Ok(NaslValue::Fork(
sockets
.into_iter()
.filter_map(|socket| socket)
.flatten()
.map(|socket| {
let fd = self.add(socket);
NaslValue::Number(fd as i64)
Expand Down Expand Up @@ -513,44 +513,57 @@ impl NaslSockets {
Ok(NaslValue::Number(fd as i64))
}

/// Open a privileged socket to the target host.
/// It takes three named integer arguments:
/// - dport is the destination port
/// - sport is the source port, which may be inferior to 1024. This argument is optional.
/// If it is not set, the function will try to open a socket on any port from 1 to 1023.
/// - timeout: An integer with the timeout value in seconds. The default timeout is controlled by a global value.
#[nasl_function(named(dport, sport))]
fn open_priv_sock_tcp(
fn connect_priv_sock(
&self,
context: &Context,
addr: IpAddr,
sport: u16,
dport: u16,
tcp: bool,
) -> Result<NaslValue, FunctionErrorKind> {
if tcp {
// TODO: set timeout to global recv timeout when available
let timeout = Duration::from_secs(10);
self.wait_before_next_probe();
let tcp = TcpConnection::connect_priv(addr, sport, dport, timeout)?;
Ok(NaslValue::Number(
self.add(NaslSocket::Tcp(Box::new(tcp))) as i64
))
} else {
let udp = UdpConnection::new_priv(addr, sport, dport)?;
Ok(NaslValue::Number(self.add(NaslSocket::Udp(udp)) as i64))
}
}

fn open_priv_sock(
&self,
addr: IpAddr,
dport: i64,
sport: Option<i64>,
tcp: bool,
) -> Result<NaslValue, FunctionErrorKind> {
let dport = verify_port(dport)?;

let addr = ipstr2ipaddr(context.target())?;

// TODO: set timeout to global recv timeout when available
let timeout = Duration::from_secs(10);

if let Some(sport) = sport {
let sport = verify_port(sport)?;
self.wait_before_next_probe();
let tcp = TcpConnection::connect_priv(addr, sport, dport, timeout)?;

let fd = self.add(NaslSocket::Tcp(Box::new(tcp)));
return Ok(NaslValue::Number(fd as i64));
return self.connect_priv_sock(addr, sport, dport as u16, tcp);
}

let mut sport = 1023;

while sport > 0 {
self.wait_before_next_probe();
if let Ok(tcp) = TcpConnection::connect_priv(addr, sport, dport, timeout) {
let fd = self.add(NaslSocket::Tcp(Box::new(tcp)));
return Ok(NaslValue::Number(fd as i64));
}
sport -= 1;
for sport in (1..=1023).rev() {
let fd = if tcp {
// TODO: set timeout to global recv timeout when available
let timeout = Duration::from_secs(10);
self.wait_before_next_probe();
if let Ok(tcp) = TcpConnection::connect_priv(addr, sport, dport, timeout) {
self.add(NaslSocket::Tcp(Box::new(tcp)))
} else {
continue;
}
} else if let Ok(udp) = UdpConnection::new_priv(addr, sport, dport) {
self.add(NaslSocket::Udp(udp))
} else {
continue;
};
return Ok(NaslValue::Number(fd as i64));
}
Err(FunctionErrorKind::Diagnostic(
format!(
Expand All @@ -561,6 +574,23 @@ impl NaslSockets {
))
}

/// Open a privileged socket to the target host.
/// It takes three named integer arguments:
/// - dport is the destination port
/// - sport is the source port, which may be inferior to 1024. This argument is optional.
/// If it is not set, the function will try to open a socket on any port from 1 to 1023.
/// - timeout: An integer with the timeout value in seconds. The default timeout is controlled by a global value.
#[nasl_function(named(dport, sport))]
fn open_priv_sock_tcp(
&self,
context: &Context,
dport: i64,
sport: Option<i64>,
) -> Result<NaslValue, FunctionErrorKind> {
let addr = ipstr2ipaddr(context.target())?;
self.open_priv_sock(addr, dport, sport, true)
}

/// Open a privileged UDP socket to the target host.
/// It takes three named integer arguments:
/// - dport is the destination port
Expand All @@ -573,34 +603,8 @@ impl NaslSockets {
dport: i64,
sport: Option<i64>,
) -> Result<NaslValue, FunctionErrorKind> {
let dport = verify_port(dport)?;

let addr = ipstr2ipaddr(context.target())?;

if let Some(sport) = sport {
let sport = verify_port(sport)?;
let udp = UdpConnection::new_priv(addr, sport, dport)?;

let fd = self.add(NaslSocket::Udp(udp));
return Ok(NaslValue::Number(fd as i64));
}

let mut sport = 1023;

while sport > 0 {
if let Ok(udp) = UdpConnection::new_priv(addr, sport, dport) {
let fd = self.add(NaslSocket::Udp(udp));
return Ok(NaslValue::Number(fd as i64));
}
sport -= 1;
}
Err(FunctionErrorKind::Diagnostic(
format!(
"Unable to open priv socket to {} on any socket from 1-1023",
addr
),
None,
))
self.open_priv_sock(addr, dport, sport, false)
}

/// Get the source port of a open socket
Expand Down

0 comments on commit 8f45082

Please sign in to comment.