mirror of
https://github.com/nmap/nmap.git
synced 2025-12-06 04:31:29 +00:00
221 lines
11 KiB
C++
221 lines
11 KiB
C++
|
|
/***************************************************************************
|
|
* targets.h -- Functions relating to "ping scanning" as well as *
|
|
* determining the exact IPs to hit based on CIDR and other input formats. *
|
|
* *
|
|
***********************IMPORTANT NMAP LICENSE TERMS************************
|
|
* *
|
|
* The Nmap Security Scanner is (C) 1996-2004 Insecure.Com LLC. Nmap *
|
|
* is also a registered trademark of Insecure.Com LLC. This program is *
|
|
* free software; you may redistribute and/or modify it under the *
|
|
* terms of the GNU General Public License as published by the Free *
|
|
* Software Foundation; Version 2. This guarantees your right to use, *
|
|
* modify, and redistribute this software under certain conditions. If *
|
|
* you wish to embed Nmap technology into proprietary software, we may be *
|
|
* willing to sell alternative licenses (contact sales@insecure.com). *
|
|
* Many security scanner vendors already license Nmap technology such as *
|
|
* our remote OS fingerprinting database and code, service/version *
|
|
* detection system, and port scanning code. *
|
|
* *
|
|
* Note that the GPL places important restrictions on "derived works", yet *
|
|
* it does not provide a detailed definition of that term. To avoid *
|
|
* misunderstandings, we consider an application to constitute a *
|
|
* "derivative work" for the purpose of this license if it does any of the *
|
|
* following: *
|
|
* o Integrates source code from Nmap *
|
|
* o Reads or includes Nmap copyrighted data files, such as *
|
|
* nmap-os-fingerprints or nmap-service-probes. *
|
|
* o Executes Nmap and parses the results (as opposed to typical shell or *
|
|
* execution-menu apps, which simply display raw Nmap output and so are *
|
|
* not derivative works.) *
|
|
* o Integrates/includes/aggregates Nmap into a proprietary executable *
|
|
* installer, such as those produced by InstallShield. *
|
|
* o Links to a library or executes a program that does any of the above *
|
|
* *
|
|
* The term "Nmap" should be taken to also include any portions or derived *
|
|
* works of Nmap. This list is not exclusive, but is just meant to *
|
|
* clarify our interpretation of derived works with some common examples. *
|
|
* These restrictions only apply when you actually redistribute Nmap. For *
|
|
* example, nothing stops you from writing and selling a proprietary *
|
|
* front-end to Nmap. Just distribute it by itself, and point people to *
|
|
* http://www.insecure.org/nmap/ to download Nmap. *
|
|
* *
|
|
* We don't consider these to be added restrictions on top of the GPL, but *
|
|
* just a clarification of how we interpret "derived works" as it applies *
|
|
* to our GPL-licensed Nmap product. This is similar to the way Linus *
|
|
* Torvalds has announced his interpretation of how "derived works" *
|
|
* applies to Linux kernel modules. Our interpretation refers only to *
|
|
* Nmap - we don't speak for any other GPL products. *
|
|
* *
|
|
* If you have any questions about the GPL licensing restrictions on using *
|
|
* Nmap in non-GPL works, we would be happy to help. As mentioned above, *
|
|
* we also offer alternative license to integrate Nmap into proprietary *
|
|
* applications and appliances. These contracts have been sold to many *
|
|
* security vendors, and generally include a perpetual license as well as *
|
|
* providing for priority support and updates as well as helping to fund *
|
|
* the continued development of Nmap technology. Please email *
|
|
* sales@insecure.com for further information. *
|
|
* *
|
|
* As a special exception to the GPL terms, Insecure.Com LLC grants *
|
|
* permission to link the code of this program with any version of the *
|
|
* OpenSSL library which is distributed under a license identical to that *
|
|
* listed in the included Copying.OpenSSL file, and distribute linked *
|
|
* combinations including the two. You must obey the GNU GPL in all *
|
|
* respects for all of the code used other than OpenSSL. If you modify *
|
|
* this file, you may extend this exception to your version of the file, *
|
|
* but you are not obligated to do so. *
|
|
* *
|
|
* If you received these files with a written license agreement or *
|
|
* contract stating terms other than the terms above, then that *
|
|
* alternative license agreement takes precedence over these comments. *
|
|
* *
|
|
* Source is provided to this software because we believe users have a *
|
|
* right to know exactly what a program is going to do before they run it. *
|
|
* This also allows you to audit the software for security holes (none *
|
|
* have been found so far). *
|
|
* *
|
|
* Source code also allows you to port Nmap to new platforms, fix bugs, *
|
|
* and add new features. You are highly encouraged to send your changes *
|
|
* to fyodor@insecure.org for possible incorporation into the main *
|
|
* distribution. By sending these changes to Fyodor or one the *
|
|
* Insecure.Org development mailing lists, it is assumed that you are *
|
|
* offering Fyodor and Insecure.Com LLC the unlimited, non-exclusive right *
|
|
* to reuse, modify, and relicense the code. Nmap will always be *
|
|
* available Open Source, but this is important because the inability to *
|
|
* relicense code has caused devastating problems for other Free Software *
|
|
* projects (such as KDE and NASM). We also occasionally relicense the *
|
|
* code to third parties as discussed above. If you wish to specify *
|
|
* special license conditions of your contributions, just say so when you *
|
|
* send them. *
|
|
* *
|
|
* This program is distributed in the hope that it will be useful, but *
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of *
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU *
|
|
* General Public License for more details at *
|
|
* http://www.gnu.org/copyleft/gpl.html , or in the COPYING file included *
|
|
* with Nmap. *
|
|
* *
|
|
***************************************************************************/
|
|
|
|
/* $Id$ */
|
|
|
|
#ifndef TARGETS_H
|
|
#define TARGETS_H
|
|
|
|
#ifdef HAVE_CONFIG_H
|
|
#include "config.h"
|
|
#else
|
|
#ifdef WIN32
|
|
#include "nmap_winconfig.h"
|
|
#endif /* WIN32 */
|
|
#endif /* HAVE_CONFIG_H */
|
|
|
|
/* This contains pretty much everythign we need ... */
|
|
#if HAVE_SYS_TIME_H
|
|
#include <sys/time.h>
|
|
#endif
|
|
|
|
#if HAVE_UNISTD_H
|
|
#include <unistd.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_SYS_PARAM_H
|
|
#include <sys/param.h> /* Defines MAXHOSTNAMELEN on BSD*/
|
|
#endif
|
|
|
|
#include "nmap.h"
|
|
#include "global_structures.h"
|
|
|
|
class HostGroupState;
|
|
|
|
/**************************STRUCTURES******************************/
|
|
struct pingtune {
|
|
int up_this_block;
|
|
int down_this_block;
|
|
int block_tries;
|
|
int block_unaccounted;
|
|
int max_tries;
|
|
int num_responses;
|
|
int dropthistry;
|
|
double group_size;
|
|
int min_group_size; /* The group size must never go below this value */
|
|
int group_start;
|
|
int group_end;
|
|
u16 seq_offset; // For distinguishing between received packets from this
|
|
// execution vs. concurrent nmaps
|
|
};
|
|
|
|
struct tcpqueryinfo {
|
|
int *sockets[MAX_PROBE_PORTS];
|
|
int maxsd;
|
|
fd_set fds_r;
|
|
fd_set fds_w;
|
|
fd_set fds_x;
|
|
int sockets_out;
|
|
};
|
|
|
|
struct pingtech {
|
|
unsigned int icmpscan: 1,
|
|
rawicmpscan: 1,
|
|
connecttcpscan: 1,
|
|
rawtcpscan: 1,
|
|
rawudpscan: 1;
|
|
};
|
|
|
|
|
|
int get_ping_results(int sd, pcap_t *pd, Target *hostbatch[],
|
|
int pingtype, struct timeval *time, struct pingtune *pt,
|
|
struct timeout_info *to, int id, struct pingtech *ptech,
|
|
struct scan_lists *ports);
|
|
int sendpingqueries(int sd, int rawsd, Target *target,
|
|
u16 seq, unsigned short id, struct scanstats *ss,
|
|
struct timeval *time, int pingtype, struct pingtech ptech);
|
|
int sendpingquery(int sd, int rawsd, Target *target,
|
|
u16 seq, unsigned short id, struct scanstats *ss,
|
|
struct timeval *time, int pingtype, struct pingtech ptech);
|
|
int sendrawtcpudppingqueries(int rawsd, Target *target, int pingtype,
|
|
u16 seq, struct timeval *time, struct pingtune *pt);
|
|
int sendrawtcppingquery(int rawsd, Target *target, int pingtype, u16 probe_port,
|
|
u16 seq, struct timeval *time, struct pingtune *pt);
|
|
int sendrawudppingquery(int rawsd, Target *target, u16 probe_port,
|
|
u16 seq, struct timeval *time, struct pingtune *pt);
|
|
int sendconnecttcpqueries(Target *hostbatch[], struct tcpqueryinfo *tqi, Target *target,
|
|
u16 seq, struct timeval *time, struct pingtune *pt, struct timeout_info *to, int max_sockets);
|
|
int sendconnecttcpquery(Target *hostbatch[], struct tcpqueryinfo *tqi, Target *target, int probe_port_num,
|
|
u16 seq, struct timeval *time, struct pingtune *pt, struct timeout_info *to, int max_sockets);
|
|
int get_connecttcpscan_results(struct tcpqueryinfo *tqi,
|
|
Target *hostbatch[],
|
|
struct timeval *time, struct pingtune *pt,
|
|
struct timeout_info *to);
|
|
char *readhoststate(int state);
|
|
void massping(Target *hostbatch[], int numhosts,
|
|
struct scan_lists *ports, int pingtype);
|
|
void hoststructfry(Target *hostbatch[], int nelem);
|
|
/* Ports is the list of ports the user asked to be scanned (0 terminated),
|
|
you can just pass NULL (it is only a stupid optimization that needs it) */
|
|
Target *nexthost(HostGroupState *hs, TargetGroup *exclude_group,
|
|
struct scan_lists *ports, int *pingtype);
|
|
/* loads an exclude file into a excluded target list */
|
|
TargetGroup* load_exclude(FILE *fExclude, char *szExclude);
|
|
/* is the host we're passed in one that
|
|
* should be excluded?
|
|
*/
|
|
int hostInExclude(struct sockaddr *checksock, size_t checksocklen,
|
|
TargetGroup *exclude_group);
|
|
/* a debugging routine to dump an exclude list to stdout. */
|
|
int dumpExclude(TargetGroup*exclude_group);
|
|
/* Returns the last host obtained by nexthost. It will be given again the next
|
|
time you call nexthost(). */
|
|
void returnhost(HostGroupState *hs);
|
|
#endif /* TARGETS_H */
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|