summaryrefslogtreecommitdiff
path: root/src/libosfp_fingerprint.h
blob: a7a47eaa31aad3be97a0b799c06acf7fbbf7a3f7 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60

#ifndef __LIBOSFP_FINGERPRINT_H__
#define __LIBOSFP_FINGERPRINT_H__

#define LIBOSFP_FINGERPRINT_VALUE_BUFFER_MAX 128

typedef enum libosfp_field_id {
    LIBOSFP_FIELD_IP_ID,
    LIBOSFP_FIELD_IP_TOS,
    LIBOSFP_FIELD_IP_TOTAL_LENGTH,
    LIBOSFP_FIELD_IP_TTL,
    LIBOSFP_FIELD_TCP_OFF,
    LIBOSFP_FIELD_TCP_TIMESTAMP,
    LIBOSFP_FIELD_TCP_TIMESTAMP_ECHO_REPLY,
    LIBOSFP_FIELD_TCP_WINDOW_SCALING,
    LIBOSFP_FIELD_TCP_WINDOW_SIZE,
    LIBOSFP_FIELD_TCP_FLAGS,
    LIBOSFP_FIELD_TCP_MSS,
    LIBOSFP_FIELD_TCP_OPTIONS,
    LIBOSFP_FIELD_TCP_OPTIONS_ORDERED,
    LIBOSFP_FIELD_OS,
    LIBOSFP_FIELD_MAX,
} libosfp_field_id_t;

typedef enum libosfp_field_type {
    LIBOSFP_FIELD_TYPE_UNKNOWN,
    LIBOSFP_FIELD_TYPE_UINT,
    LIBOSFP_FIELD_TYPE_STRING,
    LIBOSFP_FIELD_TYPE_MAX
} libosfp_field_type_t;

typedef struct libosfp_fingerprint_field {
    char            *name;
    unsigned int    enabled;
    unsigned int    type;
    unsigned int    importance;
    void            *value;
    unsigned int    value_len;
} libosfp_fingerprint_field_t;

typedef struct libosfp_fingerprint {
    libosfp_fingerprint_field_t fields[LIBOSFP_FIELD_MAX];
    char                        value_buffer[LIBOSFP_FINGERPRINT_VALUE_BUFFER_MAX];
    unsigned                    value_buffer_used;
} libosfp_fingerprint_t;


char *libosfp_fingerprint_get_field_name(libosfp_field_id_t field_id);
unsigned int libosfp_fingerprint_get_field_enabled(libosfp_field_id_t field_id);
unsigned int libosfp_fingerprint_get_field_importance(libosfp_field_id_t field_id);
unsigned int libosfp_fingerprint_get_field_type(libosfp_field_id_t field_id);
int libosfp_fingerprint_to_json_buf(libosfp_fingerprint_t *fp, char *strbuf, unsigned int buf_len);
void libosfp_fingerprint_setup_field(libosfp_fingerprint_t *fp, libosfp_field_id_t field_id, void *value, unsigned int len);

void libosfp_fingerprinting_tcp_option(unsigned char *pkt, unsigned int pktlen, libosfp_fingerprint_t *fp);
int libosfp_fingerprinting_tcp(struct tcphdr *tcph, libosfp_fingerprint_t *fp);
int libosfp_fingerprinting_ipv4(struct iphdr *iph, libosfp_fingerprint_t *fp);
int libosfp_fingerprinting_ipv6(struct ipv6hdr *iph, libosfp_fingerprint_t *fp);
int libosfp_fingerprinting(unsigned char *iphdr, unsigned char *tcphdr, libosfp_fingerprint_t *fp);

#endif
generated by cgit v1.2.3 (git 2.39.1) at 2025-12-30 14:31:36 +0000