当前位置:   article > 正文

linux传输数据包丢失,pcap_next偶尔会丢失Linux上的数据包

pcap_loop 丢包

昨天,我问我的asynchronous use of libpcap was making me lose packets。今天,我看起来更进一步,似乎问题不在于异步使用libpcap,而在于使用pcap_next_ex。偶尔(10个用完了1000个),pcap_next_ex将在pcap句柄超时过期之前返回,告诉程序没有要读取的数据包(即使它们在那里)。

下面的概念验证再现了这个问题。它依赖于libpcap,pthread,boost和libcrafter(一个漂亮的C++数据包制作库)。基本上,它会向目标发送一组TCP-SYN数据包,并尝试使用libpcap获取响应。调用pcap_loop的线程是并行运行的 - 当主程序错过某些响应(如上所述)时,该线程捕获所有数据包。

#include

#include

#include

#include

#include

#include

#include

#include

#include

#include

using namespace boost;

using namespace Crafter;

using namespace std;

int captureThreadCount = 0;

typedef vector, posix_time::time_duration> > PacketTimestamp;

PacketTimestamp capturedThreadPackets;

void captureThreadCallback(u_char* user, const struct pcap_pkthdr* h, const u_char* bytes)

{

shared_ptr packet = make_shared();

packet->PacketFromIP(bytes + 16, h->caplen - 16);

posix_time::time_duration timestamp = posix_time::seconds(h->ts.tv_sec) +

posix_time::microseconds(h->ts.tv_usec);

capturedThreadPackets.push_back(make_pair(packet, timestamp));

++captureThreadCount;

}

void* captureThread(void* arg)

{

pcap_t* pcap = (pcap_t*) arg;

pcap_loop(pcap, -1, captureThreadCallback, NULL);

}

int main(int argc, char* argv[])

{

if (argc != 5) {

cout << "Usage: " << argv[0] << " " << endl;

exit(1);

}

InitCrafter();

// Parameters.

string sourceIp = argv[1];

string destinationIp = argv[2];

int port = atoi(argv[3]);

int nTries = atoi(argv[4]);

char errorBuffer[1024];

// Socket for sending,

int sd = socket(PF_INET, SOCK_RAW, IPPROTO_RAW);

// And sockaddr_in to send to.

struct sockaddr_in sin;

sin.sin_family = AF_INET;

sin.sin_port = htons(port);

sin.sin_addr.s_addr = inet_addr(destinationIp.c_str());

// One pcap for the main thread (calling pcap_next),

pcap_t* pcapForNext = pcap_open_live(NULL, BUFSIZ, false, 1000, errorBuffer);

// Another pcap for a capture thread (calling pcap_loop),

pcap_t* pcapCapture = pcap_open_live(NULL, BUFSIZ, false, 1000, errorBuffer);

// Both filtered for SYN+ACK or RST+ACK from destination:port to source.

string filterExpression = (boost::format("ip src %s and dst %s and src port %d and ((tcp[tcpflags] & (tcp-syn|tcp-ack) != 0) or (tcp[tcpflags] & (tcp-rst|tcp-ack) != 0))") % destinationIp % sourceIp % port).str();

struct bpf_program filter;

pcap_compile(pcapForNext, &filter, filterExpression.c_str(), false, 0);

pcap_setfilter(pcapForNext, &filter);

pcap_setfilter(pcapCapture, &filter);

pcap_freecode(&filter);

// Don't forget the capture thread!

pthread_t thread;

pthread_create(&thread, NULL, captureThread, pcapCapture);

// Some statistics.

int packetsSent = 0;

int packetsReceived = 0;

int packetsTimeout = 0;

int packetsFailed = 0;

// Let's probe.

for (int i = 0; i < nTries; ++i) {

// Create packet,

IP ipHeader;

ipHeader.SetSourceIP(sourceIp);

ipHeader.SetDestinationIP(destinationIp);

TCP tcpHeader;

tcpHeader.SetSrcPort(12345 + i);

tcpHeader.SetDstPort(port);

tcpHeader.SetFlags(TCP::SYN);

shared_ptr packet = make_shared(ipHeader / tcpHeader);

// Check the time,

struct timeval tv;

gettimeofday(&tv, NULL);

posix_time::time_duration sentTime =

posix_time::seconds(tv.tv_sec) + posix_time::microseconds(tv.tv_usec);

// And send it.

if (packet->SocketSend(sd) > 0) {

cerr << "Sent packet " << i << " at " << sentTime << "." << endl;

++packetsSent;

}

else {

cerr << "Sending packet " << i << " failed." << endl;

continue;

}

struct pcap_pkthdr* pktHeader;

const u_char* pktData;

int r;

// Wait for the response.

if ((r = pcap_next_ex(pcapForNext, &pktHeader, &pktData)) > 0) {

posix_time::time_duration timestamp =

posix_time::seconds(pktHeader->ts.tv_sec) +

posix_time::microseconds(pktHeader->ts.tv_usec);

cerr << "Response " << i << " received at " << timestamp << "." << endl;

++packetsReceived;

}

else if (r == 0) {

cerr << "Timeout receiving response for " << i << "." << endl;

++packetsTimeout;

}

else {

cerr << "Failed receiving response for " << i << "." << endl;

++packetsFailed;

}

}

// Wait (to ensure "fast packets" are captured by the capture thread),

usleep(500000); // 500 ms.

for (PacketTimestamp::iterator i = capturedThreadPackets.begin();

i != capturedThreadPackets.end(); ++i) {

TCP* tcpLayer = GetTCP(*i->first);

cout << "Captured packet " << (tcpLayer->GetDstPort() - 12345) << " at " << i->second << "." << endl;

}

cout << "SNT=" << packetsSent <<

", RCV=" << packetsReceived <<

", TIM=" << packetsTimeout <<

", FLD=" << packetsFailed <<

", CAP=" << captureThreadCount << "." << endl;

CleanCrafter();

}

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/菜鸟追梦旅行/article/detail/162507
推荐阅读
相关标签
  

闽ICP备14008679号