Network protocol will be managed by a plugin, which means we can switch between several protocols by switching between plugins. It allows us to have both a centralized and a de-centralized worm. Our first implementation will be the decentralized one. Here are the specs:
Since there is no central nodes, each packet will be sent over udp (stealthier, don't have to maintain a lot of connections).
However, we have to add a way to verify if the packet has been well received. If not, the remote host may be offline, so it is required to feedback the packet's transmission failure. (We might try to re-send it several times, depending on the message priority, before assuming the host is offline).
The nodes will not know the other nodes, they will be limited to a certain amount. So there will be a forward system, which is only managed by the plugin.
magic_number: 32 bits
packet_id: 32 bits
TTL: 8 bits
destination_host: 32 bits (random id)
destination_plugin: 32 bits
body_length: 16 bits
body: 65000 bytesbody_length is 65000 because max size of a UDP is limited to 65KiB. It is a limitation of UDP which might fragment packets over 65KB (less IPHL, UDHL and header length).destination_host is a random id assigned to each instance of the worm. Each instance will associate IDs with the hosts he knows (ip, port).destination_plugin is the identifier of the packet (id, version, ...)magic_number: 32 bits
packet_id: 32 bitsfeature: 8 bitsparams: union:message:
ttl: 8 bitshost_id: 32 bits
plugin_id: 16 bitsbody_length: 16 bitsbody: void*new_host:
ip: unionipv4: 32 bitsipv6: 128 bitsport: 16 bits