metasploit-payloads/c/meterpreter/source/extensions/stdapi/server/net/config/interface.c

#include "precomp.h"
#include <ws2ipdef.h>

/*
 * Returns zero or more local interfaces to the requestor
 */
DWORD request_net_config_get_interfaces(Remote *remote, Packet *packet)
{
	Packet *response = packet_create_response(packet);
	DWORD result = ERROR_SUCCESS;
	DWORD entryCount;

#ifdef _WIN32
	Tlv entries[6];
	PMIB_IPADDRTABLE table = NULL;
	DWORD tableSize = sizeof(MIB_IPADDRROW) * 33;
	DWORD index;
	DWORD mtu_bigendian;
	DWORD interface_index_bigendian;
	MIB_IFROW iface;

	ULONG flags = GAA_FLAG_INCLUDE_PREFIX | GAA_FLAG_SKIP_DNS_SERVER;
	LPSOCKADDR sockaddr;

	ULONG family = AF_UNSPEC;
	IP_ADAPTER_ADDRESSES *pAdapters = NULL;
	IP_ADAPTER_ADDRESSES *pCurr = NULL;
	ULONG outBufLen = 0;

	IP_ADAPTER_UNICAST_ADDRESS_LH *pAddr;
	LPSOCKADDR foo;

	// Call once with a length of 0 to get how much we need to allocate
	GetAdaptersAddresses(family, flags, NULL, pAdapters, &outBufLen);

	do
	{
		// Allocate memory for reading addresses into
		if (!(pAdapters = (IP_ADAPTER_ADDRESSES *)malloc(outBufLen)))
		{
			result = ERROR_NOT_ENOUGH_MEMORY;
			break;
		}

		// Get the IP address table
		if (GetAdaptersAddresses(family, flags, NULL, pAdapters, &outBufLen))
		{
			result = GetLastError();
			break;
		}

		// Enumerate the entries
		for (pCurr = pAdapters; pCurr; pCurr = pCurr->Next)
		{
			entryCount = 0;

			interface_index_bigendian = htonl(pCurr->IfIndex);
			entries[entryCount].header.length = sizeof(DWORD);
			entries[entryCount].header.type   = TLV_TYPE_INTERFACE_INDEX;
			entries[entryCount].buffer        = (PUCHAR)&interface_index_bigendian;
			entryCount++;

			for (pAddr = (void*)pCurr->FirstUnicastAddress; pAddr; pAddr = (void*)pAddr->Next)
			{
				foo = pAddr->Address.lpSockaddr;
				if (foo->sa_family == AF_INET) {
					entries[entryCount].header.length = 4;
					entries[entryCount].header.type   = TLV_TYPE_IP;
					entries[entryCount].buffer        = (PUCHAR)&(((struct sockaddr_in *)foo)->sin_addr);
				} else {
					entries[entryCount].header.length = 16;
					entries[entryCount].header.type   = TLV_TYPE_IP;
					entries[entryCount].buffer        = (PUCHAR)&(((struct sockaddr_in6 *)foo)->sin6_addr);
				}
				entryCount++;

#if 0
				entries[entryCount].header.length = sizeof(DWORD);
				entries[entryCount].header.type   = TLV_TYPE_NETMASK;
				entries[entryCount].buffer        = (PUCHAR)&;
				entryCount++;
#endif
			}

#if 0
			// If interface information can get gotten, use it.
			if (GetIfEntry(&iface) == NO_ERROR)
			{
				entries[entryCount].header.length = iface.dwPhysAddrLen;
				entries[entryCount].header.type   = TLV_TYPE_MAC_ADDR;
				entries[entryCount].buffer        = (PUCHAR)iface.bPhysAddr;
				entryCount++;

				mtu_bigendian = htonl(iface.dwMtu);
				entries[entryCount].header.length = sizeof(DWORD);
				entries[entryCount].header.type   = TLV_TYPE_INTERFACE_MTU;
				entries[entryCount].buffer        = (PUCHAR)&mtu_bigendian;
				entryCount++;

				if (iface.bDescr)
				{
					entries[entryCount].header.length = iface.dwDescrLen + 1;
					entries[entryCount].header.type   = TLV_TYPE_MAC_NAME;
					entries[entryCount].buffer        = (PUCHAR)iface.bDescr;
					entryCount++;
				}
			}
#endif

			// Add the interface group
			packet_add_tlv_group(response, TLV_TYPE_NETWORK_INTERFACE,
					entries, entryCount);
		}

	} while (0);

	if (table)
		free(table);

#else
	struct ifaces_list *ifaces = NULL;
	int i;
	int if_error;
	uint32_t interface_index_bigendian, mtu_bigendian;
	// wild guess, should probably malloc
	Tlv entries[39];

	dprintf("Grabbing interfaces");
	if_error = netlink_get_interfaces(&ifaces);
	dprintf("Got 'em");

	if (if_error) {
		result = if_error;
	} else {
		for (i = 0; i < ifaces->entries; i++) {
			int tlv_cnt = 0;
			int j = 0;
			dprintf("Building TLV for iface %d", i);

			entries[tlv_cnt].header.length = strlen(ifaces->ifaces[i].name)+1;
			entries[tlv_cnt].header.type   = TLV_TYPE_MAC_NAME;
			entries[tlv_cnt].buffer        = (PUCHAR)ifaces->ifaces[i].name;
			tlv_cnt++;

			entries[tlv_cnt].header.length = 6;
			entries[tlv_cnt].header.type   = TLV_TYPE_MAC_ADDR;
			entries[tlv_cnt].buffer        = (PUCHAR)ifaces->ifaces[i].hwaddr;
			tlv_cnt++;

			for (j = 0; j < ifaces->ifaces[i].addr_count; j++) {
				if (ifaces->ifaces[i].addr_list[j].family == AF_INET) {
					dprintf("ip addr for %s", ifaces->ifaces[i].name);
					entries[tlv_cnt].header.length = sizeof(__u32);
					entries[tlv_cnt].header.type   = TLV_TYPE_IP;
					entries[tlv_cnt].buffer        = (PUCHAR)&ifaces->ifaces[i].addr_list[j].ip.addr;
					tlv_cnt++;

					//dprintf("netmask for %s", ifaces->ifaces[i].name);
					entries[tlv_cnt].header.length = sizeof(__u32);
					entries[tlv_cnt].header.type   = TLV_TYPE_NETMASK;
					entries[tlv_cnt].buffer        = (PUCHAR)&ifaces->ifaces[i].addr_list[j].nm.netmask;
					tlv_cnt++;
				} else {
					dprintf("-- ip six addr for %s", ifaces->ifaces[i].name);
					entries[tlv_cnt].header.length = sizeof(__u128);
					entries[tlv_cnt].header.type   = TLV_TYPE_IP;
					entries[tlv_cnt].buffer        = (PUCHAR)&ifaces->ifaces[i].addr_list[j].ip.addr6;
					tlv_cnt++;

					//dprintf("netmask6 for %s", ifaces->ifaces[i].name);
					entries[tlv_cnt].header.length = sizeof(__u128);
					entries[tlv_cnt].header.type   = TLV_TYPE_NETMASK;
					entries[tlv_cnt].buffer        = (PUCHAR)&ifaces->ifaces[i].addr_list[j].nm.netmask6;
					tlv_cnt++;
				}
			}

			mtu_bigendian            = htonl(ifaces->ifaces[i].mtu);
			entries[tlv_cnt].header.length = sizeof(uint32_t);
			entries[tlv_cnt].header.type   = TLV_TYPE_INTERFACE_MTU;
			entries[tlv_cnt].buffer        = (PUCHAR)&mtu_bigendian;
			tlv_cnt++;

			entries[tlv_cnt].header.length = strlen(ifaces->ifaces[i].flags)+1;
			entries[tlv_cnt].header.type   = TLV_TYPE_INTERFACE_FLAGS;
			entries[tlv_cnt].buffer        = (PUCHAR)ifaces->ifaces[i].flags;
			tlv_cnt++;

			interface_index_bigendian = htonl(ifaces->ifaces[i].index);
			entries[tlv_cnt].header.length = sizeof(uint32_t);
			entries[tlv_cnt].header.type   = TLV_TYPE_INTERFACE_INDEX;
			entries[tlv_cnt].buffer        = (PUCHAR)&interface_index_bigendian;
			tlv_cnt++;

			dprintf("Adding TLV to group");
			packet_add_tlv_group(response, TLV_TYPE_NETWORK_INTERFACE, entries, tlv_cnt);
			dprintf("done Adding TLV to group");
		}
	}

	if (ifaces)
		free(ifaces);
#endif

	// Transmit the response if valid
	packet_transmit_response(result, remote, response);

	return result;
}
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`#include "precomp.h"`
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`#include <ws2ipdef.h>`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00
			`/*`
			`* Returns zero or more local interfaces to the requestor`
			`*/`
			`DWORD request_net_config_get_interfaces(Remote remote, Packet packet)`
			`{`
			`Packet *response = packet_create_response(packet);`
merge in another posix meterpreter update from philip, see #2418 git-svn-id: file:///home/svn/framework3/trunk@10307 4d416f70-5f16-0410-b530-b9f4589650da 2010-09-13 14:44:00 +00:00			`DWORD result = ERROR_SUCCESS;`
			`DWORD entryCount;`

			`#ifdef _WIN32`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`Tlv entries[6];`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`PMIB_IPADDRTABLE table = NULL;`
			`DWORD tableSize = sizeof(MIB_IPADDRROW) * 33;`
merge in another posix meterpreter update from philip, see #2418 git-svn-id: file:///home/svn/framework3/trunk@10307 4d416f70-5f16-0410-b530-b9f4589650da 2010-09-13 14:44:00 +00:00			`DWORD index;`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`DWORD mtu_bigendian;`
			`DWORD interface_index_bigendian;`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`MIB_IFROW iface;`

Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`ULONG flags = GAA_FLAG_INCLUDE_PREFIX \| GAA_FLAG_SKIP_DNS_SERVER;`
			`LPSOCKADDR sockaddr;`

			`ULONG family = AF_UNSPEC;`
			`IP_ADAPTER_ADDRESSES *pAdapters = NULL;`
			`IP_ADAPTER_ADDRESSES *pCurr = NULL;`
			`ULONG outBufLen = 0;`

			`IP_ADAPTER_UNICAST_ADDRESS_LH *pAddr;`
			`LPSOCKADDR foo;`

			`// Call once with a length of 0 to get how much we need to allocate`
			`GetAdaptersAddresses(family, flags, NULL, pAdapters, &outBufLen);`

Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`do`
			`{`
			`// Allocate memory for reading addresses into`
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`if (!(pAdapters = (IP_ADAPTER_ADDRESSES *)malloc(outBufLen)))`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`{`
			`result = ERROR_NOT_ENOUGH_MEMORY;`
			`break;`
			`}`

			`// Get the IP address table`
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`if (GetAdaptersAddresses(family, flags, NULL, pAdapters, &outBufLen))`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`{`
			`result = GetLastError();`
			`break;`
			`}`

			`// Enumerate the entries`
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`for (pCurr = pAdapters; pCurr; pCurr = pCurr->Next)`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`{`
			`entryCount = 0;`

Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`interface_index_bigendian = htonl(pCurr->IfIndex);`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`entries[entryCount].header.length = sizeof(DWORD);`
			`entries[entryCount].header.type = TLV_TYPE_INTERFACE_INDEX;`
			`entries[entryCount].buffer = (PUCHAR)&interface_index_bigendian;`
			`entryCount++;`

Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`for (pAddr = (void)pCurr->FirstUnicastAddress; pAddr; pAddr = (void)pAddr->Next)`
			`{`
			`foo = pAddr->Address.lpSockaddr;`
			`if (foo->sa_family == AF_INET) {`
			`entries[entryCount].header.length = 4;`
			`entries[entryCount].header.type = TLV_TYPE_IP;`
			`entries[entryCount].buffer = (PUCHAR)&(((struct sockaddr_in *)foo)->sin_addr);`
			`} else {`
			`entries[entryCount].header.length = 16;`
			`entries[entryCount].header.type = TLV_TYPE_IP;`
			`entries[entryCount].buffer = (PUCHAR)&(((struct sockaddr_in6 *)foo)->sin6_addr);`
			`}`
			`entryCount++;`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`#if 0`
			`entries[entryCount].header.length = sizeof(DWORD);`
			`entries[entryCount].header.type = TLV_TYPE_NETMASK;`
			`entries[entryCount].buffer = (PUCHAR)&;`
			`entryCount++;`
			`#endif`
			`}`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`#if 0`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`// If interface information can get gotten, use it.`
			`if (GetIfEntry(&iface) == NO_ERROR)`
			`{`
			`entries[entryCount].header.length = iface.dwPhysAddrLen;`
			`entries[entryCount].header.type = TLV_TYPE_MAC_ADDR;`
			`entries[entryCount].buffer = (PUCHAR)iface.bPhysAddr;`
			`entryCount++;`

Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`mtu_bigendian = htonl(iface.dwMtu);`
			`entries[entryCount].header.length = sizeof(DWORD);`
			`entries[entryCount].header.type = TLV_TYPE_INTERFACE_MTU;`
			`entries[entryCount].buffer = (PUCHAR)&mtu_bigendian;`
			`entryCount++;`

Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`if (iface.bDescr)`
			`{`
			`entries[entryCount].header.length = iface.dwDescrLen + 1;`
			`entries[entryCount].header.type = TLV_TYPE_MAC_NAME;`
			`entries[entryCount].buffer = (PUCHAR)iface.bDescr;`
			`entryCount++;`
			`}`
			`}`
Adds IPv6 addrs to win32 get_interfaces response 2012-03-05 21:57:39 -07:00			`#endif`
Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00
			`// Add the interface group`
			`packet_add_tlv_group(response, TLV_TYPE_NETWORK_INTERFACE,`
			`entries, entryCount);`
			`}`

			`} while (0);`

			`if (table)`
			`free(table);`

Refactor interface listing [See #6328] 2012-02-02 00:11:52 -07:00			`#else`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`struct ifaces_list *ifaces = NULL;`
Refactor interface listing [See #6328] 2012-02-02 00:11:52 -07:00			`int i;`
			`int if_error;`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`uint32_t interface_index_bigendian, mtu_bigendian;`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`// wild guess, should probably malloc`
Append to the list instead of assigning to it All addresses are being sent to the client now. Just need a way to parse them out correctly on the other side and meterpreter will be able to list all addresses on all interfaces on Linux. Next step is to allocate the proper number of TLVs to avoid good ol' stack smashes on systems with lots of addresses and then make sure we clean all the memory leaks. [See #6476] 2012-03-04 04:25:26 -07:00			`Tlv entries[39];`
Refactor interface listing [See #6328] 2012-02-02 00:11:52 -07:00
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`dprintf("Grabbing interfaces");`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`if_error = netlink_get_interfaces(&ifaces);`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`dprintf("Got 'em");`
Refactor interface listing [See #6328] 2012-02-02 00:11:52 -07:00
			`if (if_error) {`
			`result = if_error;`
			`} else {`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`for (i = 0; i < ifaces->entries; i++) {`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`int tlv_cnt = 0;`
			`int j = 0;`
			`dprintf("Building TLV for iface %d", i);`

			`entries[tlv_cnt].header.length = strlen(ifaces->ifaces[i].name)+1;`
			`entries[tlv_cnt].header.type = TLV_TYPE_MAC_NAME;`
			`entries[tlv_cnt].buffer = (PUCHAR)ifaces->ifaces[i].name;`
			`tlv_cnt++;`

			`entries[tlv_cnt].header.length = 6;`
			`entries[tlv_cnt].header.type = TLV_TYPE_MAC_ADDR;`
			`entries[tlv_cnt].buffer = (PUCHAR)ifaces->ifaces[i].hwaddr;`
			`tlv_cnt++;`

			`for (j = 0; j < ifaces->ifaces[i].addr_count; j++) {`
			`if (ifaces->ifaces[i].addr_list[j].family == AF_INET) {`
			`dprintf("ip addr for %s", ifaces->ifaces[i].name);`
			`entries[tlv_cnt].header.length = sizeof(__u32);`
			`entries[tlv_cnt].header.type = TLV_TYPE_IP;`
			`entries[tlv_cnt].buffer = (PUCHAR)&ifaces->ifaces[i].addr_list[j].ip.addr;`
			`tlv_cnt++;`

			`//dprintf("netmask for %s", ifaces->ifaces[i].name);`
			`entries[tlv_cnt].header.length = sizeof(__u32);`
			`entries[tlv_cnt].header.type = TLV_TYPE_NETMASK;`
			`entries[tlv_cnt].buffer = (PUCHAR)&ifaces->ifaces[i].addr_list[j].nm.netmask;`
			`tlv_cnt++;`
			`} else {`
			`dprintf("-- ip six addr for %s", ifaces->ifaces[i].name);`
			`entries[tlv_cnt].header.length = sizeof(__u128);`
Don't distinguish between 4 and 6. The client can figure it out from the length. 2012-03-05 09:07:28 -07:00			`entries[tlv_cnt].header.type = TLV_TYPE_IP;`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`entries[tlv_cnt].buffer = (PUCHAR)&ifaces->ifaces[i].addr_list[j].ip.addr6;`
			`tlv_cnt++;`

			`//dprintf("netmask6 for %s", ifaces->ifaces[i].name);`
			`entries[tlv_cnt].header.length = sizeof(__u128);`
Don't distinguish between 4 and 6. The client can figure it out from the length. 2012-03-05 09:07:28 -07:00			`entries[tlv_cnt].header.type = TLV_TYPE_NETMASK;`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`entries[tlv_cnt].buffer = (PUCHAR)&ifaces->ifaces[i].addr_list[j].nm.netmask6;`
			`tlv_cnt++;`
			`}`
			`}`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00
			`mtu_bigendian = htonl(ifaces->ifaces[i].mtu);`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`entries[tlv_cnt].header.length = sizeof(uint32_t);`
			`entries[tlv_cnt].header.type = TLV_TYPE_INTERFACE_MTU;`
			`entries[tlv_cnt].buffer = (PUCHAR)&mtu_bigendian;`
			`tlv_cnt++;`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`entries[tlv_cnt].header.length = strlen(ifaces->ifaces[i].flags)+1;`
			`entries[tlv_cnt].header.type = TLV_TYPE_INTERFACE_FLAGS;`
			`entries[tlv_cnt].buffer = (PUCHAR)ifaces->ifaces[i].flags;`
			`tlv_cnt++;`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00
			`interface_index_bigendian = htonl(ifaces->ifaces[i].index);`
Lay the groundwork for returning all addresses This commit only sends the last interface in the list, but it is looping through all of them as evidenced by the log, just need to make sure we're not overwriting as we go. [See #6476] 2012-03-04 03:12:28 -07:00			`entries[tlv_cnt].header.length = sizeof(uint32_t);`
			`entries[tlv_cnt].header.type = TLV_TYPE_INTERFACE_INDEX;`
			`entries[tlv_cnt].buffer = (PUCHAR)&interface_index_bigendian;`
			`tlv_cnt++;`

			`dprintf("Adding TLV to group");`
			`packet_add_tlv_group(response, TLV_TYPE_NETWORK_INTERFACE, entries, tlv_cnt);`
			`dprintf("done Adding TLV to group");`
merge in another posix meterpreter update from philip, see #2418 git-svn-id: file:///home/svn/framework3/trunk@10307 4d416f70-5f16-0410-b530-b9f4589650da 2010-09-13 14:44:00 +00:00			`}`
			`}`

Refactor interface listing [See #6328] 2012-02-02 00:11:52 -07:00			`if (ifaces)`
Switch to netlink for listing interfaces * Adds support for listing IPv6 addresses on POSIX meterpreter * Ensures crash logs are only created if debugging is enabled * Fixes a bug in sniffer where a lock was not acquired correctly Squashed commit of the following: commit 955124b264a675c7d67187703bf23b58f0aba6d8 Author: MM <gaspmat@gmail.com> Date: Thu Feb 23 23:42:26 2012 +0100 posix meterpreter - IPv6 support for route and ipconfig using netlink sockets [Closes #196] 2012-02-24 15:27:05 -07:00			`free(ifaces);`
merge in another posix meterpreter update from philip, see #2418 git-svn-id: file:///home/svn/framework3/trunk@10307 4d416f70-5f16-0410-b530-b9f4589650da 2010-09-13 14:44:00 +00:00			`#endif`

Swapping in the latest patched copy of Meterpreter. See #275 git-svn-id: file:///home/svn/framework3/trunk@6357 4d416f70-5f16-0410-b530-b9f4589650da 2009-03-22 18:56:28 +00:00			`// Transmit the response if valid`
			`packet_transmit_response(result, remote, response);`

			`return result;`
			`}`
Replace the root-only pcap iface listing technique Leaks memory, will remedy momentarily [See #6328] 2012-02-01 16:51:18 -07:00