xref: /openbsd-src/regress/sys/kern/sosplice/scapy/scapy-delay-synack.py (revision 8feac64083c74a2316e2b206bf271dd90e50442a)

#!/usr/local/bin/python3
# send data from client via relay before server handshake is completed

import os
import sys
import threading
from addr import *
from scapy.all import *

client=os.getpid() & 0xffff
relay=int(sys.argv[2])
server=int(sys.argv[1])

class Sniff1(threading.Thread):
	filter = None
	captured = None
	packet = None
	def __init__(self):
		# clear packets buffered by scapy bpf
		sniff(iface=LOCAL_IF, timeout=1)
		super(Sniff1, self).__init__()
	def run(self):
		self.captured = sniff(iface=LOCAL_IF, filter=self.filter,
		    count=1, timeout=5)
		if self.captured:
			self.packet = self.captured[0]

ip=IP(src=FAKE_NET_ADDR, dst=REMOTE_ADDR)

print("Send SYN packet, receive SYN+ACK")
syn=TCP(sport=client, dport=relay, seq=0, flags='S', window=(2**16)-1)
synack=sr1(ip/syn, iface=LOCAL_IF, timeout=5)

if synack is None:
	print("ERROR: No matching SYN+ACK packet received")
	exit(1)

print("Expect spliced SYN")
sniffer = Sniff1();
sniffer.filter = "src %s and dst %s and tcp port %u " \
    "and tcp[tcpflags] = tcp-syn" % (ip.dst, ip.src, server)
sniffer.start()
time.sleep(1)

print("Send ACK packet to finish handshake")
ack=TCP(sport=synack.dport, dport=synack.sport,
    seq=1, ack=synack.seq+1,  flags='A')
send(ip/ack, iface=LOCAL_IF)

sniffer.join(timeout=7)
spliced_syn = sniffer.packet

if spliced_syn is None:
	print("ERROR: No spliced SYN packet received")
	exit(1)

print("Send 10 bytes payload")
data="0123456789"
payload=TCP(sport=synack.dport, dport=synack.sport,
    seq=1, ack=synack.seq+1,  flags='AP')/data
payload_ack=sr1(ip/payload, iface=LOCAL_IF)

if payload_ack is None:
	print("ERROR: No payload ACK packet received")
	exit(1)
if payload_ack.ack != len(data)+1:
	print("ERROR: Expected ack %d, got %d in payload ACK" %
	    (len(data)+1, payload_ack.ack))
	exit(1)

time.sleep(1)

print("Expect spliced payload")
sniffer = Sniff1();
sniffer.filter = "src %s and dst %s and tcp port %u " \
    "and tcp[tcpflags] = tcp-ack|tcp-push" % (ip.dst, ip.src, server)
sniffer.start()
time.sleep(1)

print("Send spliced SYN+ACK packet to finish handshake")
spliced_synack=TCP(sport=spliced_syn.dport, dport=spliced_syn.sport,
    seq=0, ack=spliced_syn.seq+1, flags='SA')
spliced_ack=sr1(ip/spliced_synack, iface=LOCAL_IF)

if spliced_ack is None:
	print("ERROR: No spliced ACK packet received")
	exit(1)

sniffer.join(timeout=7)
spliced_payload = sniffer.packet

if spliced_payload is None:
	print("ERROR: No spliced payload packet received")
	exit(1)
if spliced_payload.seq != spliced_ack.seq:
	print("ERROR: Expected seq %d, got %d in spliced payload" %
	    (spliced_ack.seq, spliced_payload.seq))
	exit(1)
if spliced_payload.len-20-20 != len(data):
	print("ERROR: Expected len %d, got %d in spliced payload" %
	    (len(data), spliced_payload.len-20-20))
	exit(1)

print("Expect spliced ACK retransmission")
sniffer = Sniff1();
sniffer.filter = "src %s and dst %s and tcp port %u " \
    "and tcp[tcpflags] = tcp-ack" % (ip.dst, ip.src, server)
sniffer.start()
time.sleep(1)

print("Retransmit spliced SYN+ACK packet to trigger ACK")
send(ip/spliced_synack, iface=LOCAL_IF)

sniffer.join(timeout=7)
spliced_ack_retrans = sniffer.packet

if spliced_ack_retrans is None:
	print("ERROR: No spliced ACK retransmit packet received")
	exit(1)
if spliced_ack_retrans.seq != spliced_syn.seq+1+len(data):
	print("ERROR: Expected seq %d, got %d in retransmitted spliced ack" %
	    (spliced_syn.seq+1+len(data), spliced_ack_retrans.seq))
	exit(1)
if spliced_ack_retrans.ack != 1:
	print("ERROR: Expected ack %d, got %d in retransmitted spliced ack" %
	    (1, spliced_ack_retrans.ack))
	exit(1)
if spliced_ack_retrans.len-20-20 != 0:
	print("ERROR: Expected len %d, got %d in retransmitted spliced ack" %
	    (0, spliced_ack_retrans.len-20-20))
	exit(1)

print("Kill connections with RST")
spliced_rst=TCP(sport=spliced_ack.dport, dport=spliced_ack.sport,
    seq=1, ack=spliced_ack.seq, flags='RA')
send(ip/spliced_rst, iface=LOCAL_IF)
rst=TCP(sport=synack.dport, dport=synack.sport,
    seq=payload_ack.ack, ack=synack.seq+1, flags='RA')
send(ip/rst, iface=LOCAL_IF)

exit(0)