import asyncdispatch from nativesockets import SOCK_RAW, bindAddr, htons from posix import setsockopt, SockAddr, SockLen, SocketHandle import network_interface type RawSocketError* = object of CatchableError Sockaddr_ll {.importc: "struct sockaddr_ll", pure, final, header: "".} = object sll_family: cushort # Always AF_PACKET sll_protocol: cushort # Physical-layer protocol sll_ifindex: cint # Interface number sll_hatype: cushort # ARP hardware type sll_pkttype: cuchar # Packet type sll_halen: cuchar # Length of address sll_addr: array[8, cuchar] # Physical-layer address Packet_mreq {.importc: "struct packet_mreq", pure, final, header: "".} = object mr_ifindex: cint mr_type: cushort mr_alen: cushort mr_address: array[8, cuchar] var AF_PACKET {.importc: "AF_PACKET", header: "".}: cushort SOL_PACKET {.importc: "SOL_PACKET", header: "".}: cushort ETH_P_ALL {.importc: "ETH_P_ALL", header: "".}: cushort PACKET_ADD_MEMBERSHIP {.importc: "PACKET_ADD_MEMBERSHIP", header: "".}: cushort PACKET_MR_PROMISC {.importc: "PACKET_MR_PROMISC", header: "".}: cushort proc setupRawSocket*(iface: NetworkInterface): AsyncFD = # Create a raw packet socket. For accessing outgoing packets we need to use # ETH_P_ALL which is needed in network byte order, see packet(7) man page. result = createAsyncNativeSocket(AF_PACKET.cint, SOCK_RAW.cint, htons(ETH_P_ALL).cint) # Limit capturing of packets to the desired network interface, see # netdevice(7) man page echo "interface: ", iface.name, ", index: ", iface.index var sa = Sockaddr_ll(sll_family: AF_PACKET, sll_protocol: htons(ETH_P_ALL), sll_ifindex: iface.index) if bindAddr(result.SocketHandle, cast[ptr SockAddr](addr sa), sizeof(Sockaddr_ll).SockLen) != 0: raise newException(RawSocketError, "cannot bind to interface") # Enable promiscuous mode, see netdevice(7) man page var req = Packet_mreq(mr_ifindex: iface.index, mr_type: PACKET_MR_PROMISC) if setsockopt(result.SocketHandle, SOL_PACKET.cint, PACKET_ADD_MEMBERSHIP.cint, addr req, sizeof(req).SockLen) != 0: raise newException(RawSocketError, "cannot enable promiscuous mode")