diff options
| author | etoledom <etoledom@icloud.com> | 2019-11-18 17:37:56 +0100 |
|---|---|---|
| committer | Aram Drevekenin <aram@poor.dev> | 2019-11-18 17:37:56 +0100 |
| commit | 81e95f74f5ac10c60f12b33880d3fe65a1eac549 (patch) | |
| tree | 831fad07adfbfa25238e2ba0ba5d24aa67e151a0 | |
| parent | b4b3eace371cf802f261e7b5294365bb9bec63f0 (diff) | |
refactor(macos): handle lsof in macos in a different module
* Refactor lsof connections as iterator
* Fix build issues and warnings
* Fix iterator to not finish on first wrong line
* Remove println
* Fix overflow.
Creating the regex instance on every iteration is too bad performant
* Adding connection regex as static
* Small syntax improvement
| -rw-r--r-- | Cargo.lock | 1 | ||||
| -rw-r--r-- | Cargo.toml | 1 | ||||
| -rw-r--r-- | src/os/lsof_utils.rs | 167 | ||||
| -rw-r--r-- | src/os/macos.rs | 46 | ||||
| -rw-r--r-- | src/os/mod.rs | 4 |
5 files changed, 183 insertions, 36 deletions
@@ -1253,6 +1253,7 @@ dependencies = [ "failure 0.1.6 (registry+https://github.com/rust-lang/crates.io-index)", "insta 0.11.0 (registry+https://github.com/rust-lang/crates.io-index)", "ipnetwork 0.15.0 (registry+https://github.com/rust-lang/crates.io-index)", + "lazy_static 1.4.0 (registry+https://github.com/rust-lang/crates.io-index)", "packet-builder 0.4.0 (registry+https://github.com/rust-lang/crates.io-index)", "pnet 0.23.0 (registry+https://github.com/rust-lang/crates.io-index)", "pnet_base 0.23.0 (registry+https://github.com/rust-lang/crates.io-index)", @@ -23,6 +23,7 @@ signal-hook = "0.1.10" failure = "0.1.6" chrono = "0.4" regex = "1.3.1" +lazy_static = "1.4.0" [target.'cfg(target_os="linux")'.dependencies] procfs = "0.5.3" diff --git a/src/os/lsof_utils.rs b/src/os/lsof_utils.rs new file mode 100644 index 0000000..caabd26 --- /dev/null +++ b/src/os/lsof_utils.rs @@ -0,0 +1,167 @@ +use std::process::{Command}; +use std::ffi::OsStr; +use regex::{Regex}; +use crate::network::Protocol; +use std::net::IpAddr; +use lazy_static::lazy_static; + +#[derive(Debug, Clone)] +pub struct RawConnection { + ip: String, + local_port: String, + remote_port: String, + protocol: String, + pub process_name: String, +} + +lazy_static! { + static ref CONNECTION_REGEX: Regex = Regex::new(r"([^\s]+).*(TCP|UDP).*:(.*)->(.*):(\d*)(\s|$)").unwrap(); +} + +impl RawConnection { + pub fn new(raw_line: &str) -> Option<RawConnection> { + let raw_connection_iter = CONNECTION_REGEX.captures_iter(raw_line).filter_map(|cap| { + let process_name = String::from(cap.get(1).unwrap().as_str()); + let protocol = String::from(cap.get(2).unwrap().as_str()); + let local_port = String::from(cap.get(3).unwrap().as_str()); + let ip = String::from(cap.get(4).unwrap().as_str()); + let remote_port = String::from(cap.get(5).unwrap().as_str()); + let connection = RawConnection { process_name, ip, local_port, remote_port, protocol }; + Some(connection) + }); + let raw_connection_vec = raw_connection_iter.map(|m| m).collect::<Vec<_>>(); + if raw_connection_vec.is_empty() { + None + } else { + Some(raw_connection_vec[0].clone()) + } + } + + pub fn get_protocol(&self) -> Protocol { + return Protocol::from_string(&self.protocol).unwrap(); + } + + pub fn get_ip_address(&self) -> IpAddr { + return IpAddr::V4(self.ip.parse().unwrap()); + } + + pub fn get_remote_port(&self) -> u16 { + return self.remote_port.parse::<u16>().unwrap(); + } + + pub fn get_local_port(&self) -> u16 { + return self.local_port.parse::<u16>().unwrap(); + } +} + +pub fn get_connections<'a>() -> RawConnections { + let content = run(&["-n","-P", "-i4"]); + RawConnections::new(content) +} + +fn run<'a, I, S>(args: I) -> String + where I: IntoIterator<Item=S>, S: AsRef<OsStr> +{ + let output = Command::new("lsof") + .args(args) + .output() + .expect("failed to execute process"); + + String::from_utf8(output.stdout).unwrap() +} + +pub struct RawConnections { + content: Vec<RawConnection>, +} + +impl RawConnections { + pub fn new(content: String) -> RawConnections { + let lines: Vec<RawConnection> = content.lines() + .flat_map(|string| RawConnection::new(string)) + .collect(); + + RawConnections{ content: lines } + } +} + +impl Iterator for RawConnections { + type Item = RawConnection; + + fn next(&mut self) -> Option<Self::Item> { + self.content.pop() + } +} + + +#[cfg(test)] +mod tests { + use super::*; + + const LINE_RAW_OUTPUT: &str = "ProcessName 29266 user 39u IPv4 0x28ffb9c0021196bf 0t0 UDP 192.168.0.1:1111->198.252.206.25:2222"; + const FULL_RAW_OUTPUT: &str = r#" +com.apple 590 etoledom 193u IPv4 0x28ffb9c041115627 0t0 TCP 192.168.1.37:60298->31.13.83.36:443 (ESTABLISHED) +com.apple 590 etoledom 198u IPv4 0x28ffb9c04110ea8f 0t0 TCP 192.168.1.37:60299->31.13.83.8:443 (ESTABLISHED) +com.apple 590 etoledom 203u IPv4 0x28ffb9c04110ea8f 0t0 TCP 192.168.1.37:60299->31.13.83.8:443 (ESTABLISHED) +com.apple 590 etoledom 204u IPv4 0x28ffb9c04111253f 0t0 TCP 192.168.1.37:60374->140.82.114.26:443 +"#; + + #[test] + fn test_iterator_multiline() { + let iterator = RawConnections::new(String::from(FULL_RAW_OUTPUT)); + let connections: Vec<RawConnection> = iterator.collect(); + assert_eq!(connections.len(), 4); + } + + #[test] + fn test_iterator() { + let iterator = RawConnections::new(String::from(LINE_RAW_OUTPUT)); + let mut worked = false; + for raw_connection in iterator { + worked = true; + assert_eq!(raw_connection.process_name, String::from("ProcessName")); + } + assert!(worked); + } + + #[test] + fn test_raw_connection_is_created_from_raw_output() { + let connection = RawConnection::new(LINE_RAW_OUTPUT); + assert!(connection.is_some()); + } + + #[test] + fn test_raw_connection_is_not_created_from_wrong_raw_output() { + let connection = RawConnection::new("not a process"); + assert!(connection.is_none()); + } + + #[test] + fn test_raw_connection_parse_remote_port() { + let connection = RawConnection::new(LINE_RAW_OUTPUT).unwrap(); + assert_eq!(connection.get_remote_port(), 2222); + } + + #[test] + fn test_raw_connection_parse_local_port() { + let connection = RawConnection::new(LINE_RAW_OUTPUT).unwrap(); + assert_eq!(connection.get_local_port(), 1111); + } + + #[test] + fn test_raw_connection_parse_ip_address() { + let connection = RawConnection::new(LINE_RAW_OUTPUT).unwrap(); + assert_eq!(connection.get_ip_address().to_string(), String::from("198.252.206.25")); + } + + #[test] + fn test_raw_connection_parse_protocol() { + let connection = RawConnection::new(LINE_RAW_OUTPUT).unwrap(); + assert_eq!(connection.get_protocol(), Protocol::Udp); + } + + #[test] + fn test_raw_connection_parse_process_name() { + let connection = RawConnection::new(LINE_RAW_OUTPUT).unwrap(); + assert_eq!(connection.process_name, String::from("ProcessName")); + } +} diff --git a/src/os/macos.rs b/src/os/macos.rs index 0f05e37..2bba346 100644 --- a/src/os/macos.rs +++ b/src/os/macos.rs @@ -8,15 +8,13 @@ use ::termion::input::TermRead; use ::std::collections::HashMap; use ::std::net::IpAddr; -use std::process::Command; -use regex::{Regex}; - use signal_hook::iterator::Signals; -use crate::network::{Connection, Protocol}; +use crate::network::{Connection}; use crate::OsInputOutput; use std::net::{SocketAddr}; +use super::lsof_utils; struct KeyboardEvents; @@ -58,40 +56,18 @@ struct RawConnection { fn get_open_sockets() -> HashMap<Connection, String> { let mut open_sockets = HashMap::new(); - let output = Command::new("lsof") - .args(&["-n","-P", "-i4"])//"4tcp" - .output() - .expect("failed to execute process"); - - let regex = Regex::new(r"([^\s]+).*(TCP|UDP).*:(.*)->(.*):(\d*)(\s|$)").unwrap(); - - let output_string = String::from_utf8(output.stdout).unwrap(); - let lines = output_string.lines(); + let connections = lsof_utils::get_connections(); - for line in lines { - let raw_connection_iter = regex.captures_iter(line).filter_map(|cap| { - let process_name = String::from(cap.get(1).unwrap().as_str()); - let protocol = String::from(cap.get(2).unwrap().as_str()); - let local_port = String::from(cap.get(3).unwrap().as_str()); - let ip = String::from(cap.get(4).unwrap().as_str()); - let remote_port = String::from(cap.get(5).unwrap().as_str()); - let connection = RawConnection{process_name, ip,local_port, remote_port, protocol}; - Some(connection) - }); + for raw_connection in connections { + let protocol = raw_connection.get_protocol(); + let ip_address = raw_connection.get_ip_address(); + let remote_port = raw_connection.get_remote_port(); + let local_port = raw_connection.get_local_port(); - let raw_connection_vec = raw_connection_iter.map(|m| m).collect::<Vec<_>>(); + let socket_addr = SocketAddr::new(ip_address, remote_port); + let connection = Connection::new(socket_addr, local_port, protocol).unwrap(); - if let Some(raw_connection) = raw_connection_vec.first() { - let protocol = Protocol::from_string(&raw_connection.protocol).unwrap(); - let ip_address = IpAddr::V4(raw_connection.ip.parse().unwrap()); - let remote_port = raw_connection.remote_port.parse::<u16>().unwrap(); - let local_port = raw_connection.local_port.parse::<u16>().unwrap(); - - let socket_addr = SocketAddr::new(ip_address, remote_port); - let connection = Connection::new(socket_addr, local_port, protocol).unwrap(); - - open_sockets.insert(connection, raw_connection.process_name.clone()); - } + open_sockets.insert(connection, raw_connection.process_name.clone()); } return open_sockets; diff --git a/src/os/mod.rs b/src/os/mod.rs index 0a391f5..f490ae6 100644 --- a/src/os/mod.rs +++ b/src/os/mod.rs @@ -8,4 +8,6 @@ pub use linux::*; mod macos; #[cfg(target_os = "macos")] -pub use macos::*;
\ No newline at end of file +pub use macos::*; + +mod lsof_utils; |