Crash_Override/esp32_bluetooth_classic_sniffer
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
esp32_bluetooth_classic_sni.../libs/scapy/contrib/rtr.py

346 lines
11 KiB
Python
Raw Normal View History

initial commit todo: add documentation & wireshark dissector
2021-08-31 11:51:03 +00:00
# This file is part of Scapy
# Scapy is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# any later version.
#
# Scapy is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Scapy. If not, see <http://www.gnu.org/licenses/>.
# Copyright (C) 2018 Francois Contat <francois.contat@ssi.gouv.fr>
# Based on RTR RFC 6810 https://tools.ietf.org/html/rfc6810 for version 0
# Based on RTR RFC 8210 https://tools.ietf.org/html/rfc8210 for version 1
# scapy.contrib.description = The RPKI to Router Protocol
# scapy.contrib.status = loads
# Start dev
import struct
from scapy.packet import Packet, bind_layers, Raw
from scapy.fields import ByteEnumField, ByteField, IntField, ShortField
from scapy.fields import IPField, IP6Field, StrLenField
from scapy.fields import FieldLenField
from scapy.fields import StrFixedLenField, ShortEnumField
from scapy.layers.inet import TCP
from scapy.compat import orb
STATIC_SERIAL_NOTIFY_LENGTH = 12
STATIC_SERIAL_QUERY_LENGTH = 12
STATIC_RESET_QUERY_LENGTH = 8
STATIC_CACHE_RESET_LENGTH = 8
STATIC_CACHE_RESPONSE_LENGTH = 8
STATIC_IPV4_PREFIX_LENGTH = 20
STATIC_IPV6_PREFIX_LENGTH = 32
STATIC_END_OF_DATA_V0_LENGTH = 12
STATIC_END_OF_DATA_V1_LENGTH = 24
RTR_VERSION = {0: '0',
1: '1'}
PDU_TYPE = {0: 'Serial Notify',
1: 'Serial Query',
2: 'Reset Query',
3: 'Cache Response',
4: 'IPv4 Prefix',
6: 'IPv6 Prefix',
7: 'End of Data',
8: 'Cache Reset',
9: 'Router Key',
10: 'Error Report',
255: 'Reserved'}
ERROR_LIST = {0: 'Corrupt Data',
1: 'Internal Error',
2: 'No data Available',
3: 'Invalid Request',
4: 'Unsupported Protocol Version',
5: 'Unsupported PDU Type',
6: 'Withdrawal of Unknown Record',
7: 'Duplicate Announcement Received',
8: 'Unexpected Protocol Version'}
class RTRSerialNotify(Packet):
'''
Serial Notify packet from section 5.2
https://tools.ietf.org/html/rfc6810#section-5.2
'''
name = 'Serial Notify'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 0, PDU_TYPE),
ShortField('session_id', 0),
IntField('length', STATIC_SERIAL_NOTIFY_LENGTH),
IntField('serial_number', 0)]
class RTRSerialQuery(Packet):
'''
Serial Query packet from section 5.3
https://tools.ietf.org/html/rfc6810#section-5.3
'''
name = 'Serial Query'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 1, PDU_TYPE),
ShortField('session_id', 0),
IntField('length', STATIC_SERIAL_QUERY_LENGTH),
IntField('serial_number', 0)]
class RTRResetQuery(Packet):
'''
Reset Query packet from section 5.4
https://tools.ietf.org/html/rfc6810#section-5.4
'''
name = 'Reset Query'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 2, PDU_TYPE),
ShortField('reserved', 0),
IntField('length', STATIC_RESET_QUERY_LENGTH)]
class RTRCacheResponse(Packet):
'''
Cache Response packet from section 5.5
https://tools.ietf.org/html/rfc6810#section-5.5
'''
name = 'Cache Response'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 3, PDU_TYPE),
ShortField('session_id', 0),
IntField('length', STATIC_CACHE_RESPONSE_LENGTH)]
def guess_payload_class(self, payload):
return RTR
class RTRIPv4Prefix(Packet):
'''
IPv4 Prefix packet from section 5.6
https://tools.ietf.org/html/rfc6810#section-5.6
'''
name = 'IPv4 Prefix'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 4, PDU_TYPE),
ShortField('reserved', 0),
IntField('length', STATIC_IPV4_PREFIX_LENGTH),
ByteField('flags', 0),
ByteField('shortest_length', 0),
ByteField('longest_length', 0),
ByteField('zeros', 0),
IPField('prefix', '0.0.0.0'),
IntField('asn', 0)]
def guess_payload_class(self, payload):
return RTR
class RTRIPv6Prefix(Packet):
'''
IPv6 Prefix packet from section 5.7
https://tools.ietf.org/html/rfc6810#section-5.7
'''
name = 'IPv6 Prefix'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 6, PDU_TYPE),
ShortField('reserved', 0),
IntField('length', STATIC_IPV6_PREFIX_LENGTH),
ByteField('flags', 0),
ByteField('shortest_length', 0),
ByteField('longest_length', 0),
ByteField('zeros', 0),
IP6Field("prefix", "::"),
IntField('asn', 0)]
def guess_payload_class(self, payload):
return RTR
class RTREndofDatav0(Packet):
'''
End of Data packet from version 0 standard section 5.8
https://tools.ietf.org/html/rfc6810#section-5.8
'''
name = 'End of Data - version 0'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 7, PDU_TYPE),
ShortField('session_id', 0),
IntField('length', STATIC_END_OF_DATA_V0_LENGTH),
IntField('serial_number', 0)]
class RTREndofDatav1(Packet):
'''
End of Data packet from version 1 standard section 5.8
https://tools.ietf.org/html/rfc8210#section-5.8
'''
name = 'End of Data - version 1'
fields_desc = [ByteEnumField('rtr_version', 1, RTR_VERSION),
ByteEnumField('pdu_type', 7, PDU_TYPE),
ShortField('session_id', 0),
IntField('length', STATIC_END_OF_DATA_V1_LENGTH),
IntField('serial_number', 0),
IntField('refresh_interval', 0),
IntField('retry_interval', 0),
IntField('expire_interval', 0)]
class RTRCacheReset(Packet):
'''
Cache Reset packet from section 5.9
https://tools.ietf.org/html/rfc6810#section-5.9
'''
name = 'Reset Query'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 8, PDU_TYPE),
ShortField('reserved', 0),
IntField('length', STATIC_CACHE_RESET_LENGTH)]
class RTRRouterKey(Packet):
'''
Router Key packet from version 1 standard section 5.10
https://tools.ietf.org/html/rfc8210#section-5.10
'''
name = 'Router Key'
fields_desc = [ByteEnumField('rtr_version', 1, RTR_VERSION),
ByteEnumField('pdu_type', 9, PDU_TYPE),
ByteField('flags', 0),
ByteField('zeros', 0),
IntField('length', None),
StrFixedLenField('subject_key_identifier', '', 20),
IntField('asn', 0),
StrLenField('subject_PKI', '',
length_from=lambda x: x.length - 32)]
def post_build(self, pkt, pay):
temp_len = len(pkt) + 2
if not self.length:
pkt = pkt[:2] + struct.pack('!I', temp_len) + pkt[6:]
return pkt + pay
class RTRErrorReport(Packet):
'''
Error Report packet from section 5.10
https://tools.ietf.org/html/rfc6810#section-5.10
'''
name = 'Error Report'
fields_desc = [ByteEnumField('rtr_version', 0, RTR_VERSION),
ByteEnumField('pdu_type', 10, PDU_TYPE),
ShortEnumField('error_code', 0, ERROR_LIST),
IntField('length', None),
FieldLenField('length_of_encaps_PDU',
None, fmt='!I', length_of='erroneous_PDU'),
StrLenField('erroneous_PDU', '',
length_from=lambda x: x.length_of_encaps_PDU),
FieldLenField('length_of_error_text', None, fmt='!I',
length_of='error_text'),
StrLenField('error_text', '',
length_from=lambda x: x.length_of_error_text)]
def post_build(self, pkt, pay):
temp_len = len(pkt) + 2
if not self.length:
pkt = pkt[:2] + struct.pack('!I', temp_len) + pkt[6:]
return pkt + pay
PDU_CLASS_VERSION_0 = {0: RTRSerialNotify,
1: RTRSerialQuery,
2: RTRResetQuery,
3: RTRCacheResponse,
4: RTRIPv4Prefix,
6: RTRIPv6Prefix,
7: RTREndofDatav0,
8: RTRCacheReset,
10: RTRErrorReport}
PDU_CLASS_VERSION_1 = {0: RTRSerialNotify,
1: RTRSerialQuery,
2: RTRResetQuery,
3: RTRCacheResponse,
4: RTRIPv4Prefix,
6: RTRIPv6Prefix,
7: RTREndofDatav1,
8: RTRCacheReset,
9: RTRRouterKey,
10: RTRErrorReport}
class RTR(Packet):
'''
Dummy RPKI to Router generic packet for pre-sorting the packet type
eg. https://tools.ietf.org/html/rfc6810#section-5.2
'''
name = 'RTR dissector'
@classmethod
def dispatch_hook(cls, _pkt=None, *args, **kargs):
'''
Attribution of correct type depending on version and pdu_type
'''
if _pkt and len(_pkt) >= 2:
version = orb(_pkt[0])
pdu_type = orb(_pkt[1])
if version == 0:
return PDU_CLASS_VERSION_0[pdu_type]
elif version == 1:
return PDU_CLASS_VERSION_1[pdu_type]
return Raw
bind_layers(TCP, RTR, dport=323) # real reserved port
bind_layers(TCP, RTR, sport=323) # real reserved port
bind_layers(TCP, RTR, dport=8282) # RIPE implementation default port
bind_layers(TCP, RTR, sport=8282) # RIPE implementation default port
bind_layers(TCP, RTR, dport=2222) # gortr implementation default port
bind_layers(TCP, RTR, sport=2222) # gortr implementation default port
if __name__ == '__main__':
from scapy.main import interact
interact(mydict=globals(), mybanner='RPKI to Router')
Reference in a new issue Copy permalink