mtuping/mtuping.py at master · pjsg/mtuping · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
#!/usr/bin/env python
"""Usage: mtuping.py [--mtu mtu] [--verbose] <host>

 -h --help          Show this
 -m mtu, --mtu=mtu  The MTU to simulate [default: 1280]
 -v --verbose       Show verbose information

"""

from docopt import docopt
from scapy.all import *
import sys
import socket
import random
import re
from collections import OrderedDict

explanations = OrderedDict([
		( '.:.:S:.:.:.', 'Site uses small TCP MSS. Probably have few problems.' ),
		( 'N:N:N:0:0:N', 'Unreachable.' ),
		( '.:Y:.:2:2:Y', 'Unable to test. Returns fragments without prompting.' ),
		( '.:Y:.:0:0:Y', 'Unable to test. Doesn\'t respond to large echo requests.' ),
		( '.:Y:.:Y:0:Y', 'Site does not generate fragmented echo replies. Does change behavior after receiving PTB.' ),
		( '.:.:.:Y:2:.', 'Site generated fragmented echo reply after receving PTB. Success!' ),
		( '.:Y:L:Y:Y:Y', 'Site ignored PTB message and uses large MSS. This will cause problems.' ),
		( '.:Y:N:Y:Y:Y', 'Site ignored PTB message, but did not respond to SYN. This may cause problems.' ),
	])

def print_matching(dstaddr, packets, verbose=False):
	result = 0
	for resp in packets:
	    if IPv6 in resp:
		v6 = resp[IPv6]
		if v6.src == dstaddr:
		    if TCP not in resp:
		        result = result + 1
			if verbose:
			    print "Packet length ", len(str(resp)), ": ", resp.summary()

	return str(result)


def doping(args):
	dest = args['<host>']
	mtu = int(args['--mtu'])
	verbose = args['--verbose']
	debug.recv[:] = []
	conf.debug_match = 1

        id = random.randint(0, 65535)
	seq = 0

	dest = Net6(dest)
	ip = IPv6(dst=dest)
	dstaddr = inet_ntop(socket.AF_INET6, ip.dst.net)

	debug.recv[:] = []

	if verbose:
		print "Testing ", dstaddr

	status = []

	z3 = sr1(ip/ICMPv6EchoRequest(data='Q' * 16, id=id, seq=seq), verbose=0, timeout=1)
	seq = seq + 1
	if z3:
		if verbose:
		    print "Ping size 16 returned"
		status.append('Y')
	else:
		if verbose:
		    print "Very small ping failed"
		status.append('N')


	z3 = sr1(ip/ICMPv6EchoRequest(data='Q' * 1200, id=id, seq=seq), verbose=0, timeout=1)
	seq += 1

	if z3:
		if verbose:
		    print "Ping size 1200 returned"
		status.append('Y')
	else:
		if verbose:
		    print "Small ping failed"
		status.append('N')

	# See if we can figure out the MSS
	z = sr1(ip/TCP(dport=80, sport = random.randint(5555,11111), options=[('MSS', 1440)]), verbose=0, timeout=1)

	if not z:
		if verbose:
		    print "No TCP response"
		status.append('N')

	else:
	        options = dict(z[TCP].options)
		mss = options.get('MSS')
		if mss > 1220:
		    status.append('L')
		else:
		    status.append('S')
		if verbose:
		    print "TCP Packet returned. mss=%s" % (mss), repr(z)


	z = sr1(ip/ICMPv6EchoRequest(data='P' * 1400, id=id, seq=seq), verbose=0, timeout=1)
	seq += 1

	if not z:
		if verbose:
		    print "No response"
		status.append(print_matching(dstaddr, debug.recv, verbose))

		send(ip/ICMPv6PacketTooBig(mtu=mtu)/IPv6(src=dest), verbose=0)
	else:
		status.append('Y')
		if verbose:
		    print "Packet size 1400 returned. Sending PTB"
		# Now send the PTB
		zb = str(z)

		send(ip/ICMPv6PacketTooBig(mtu=mtu)/zb[0:512], verbose=0)

	# Now send ping again

	debug.recv[:] = []

	z1 = sr1(ip/ICMPv6EchoRequest(data='Q' * 1400, id=id, seq=seq), verbose=0, timeout=1)
	seq += 1

	if z1:
		status.append('Y')
		if verbose:
		    print "PTB seems to have been ignored"
	else:
		# Search the packet chain for the ICMP
		if verbose:
		    print "No complete packet returned"
		status.append(print_matching(dstaddr, debug.recv, verbose))

	debug.recv[:] = []

	z2 = sr1(ip/ICMPv6EchoRequest(data='Q' * 1200, id=id, seq=seq), verbose=0, timeout=1)
	seq += 1

	if z2:
		status.append('Y')
		if verbose:
		    print "Ping size 1200 returned"
	else:
		status.append('N')
		if verbose:
		    print "Small ping failed"

	matched = False
	statusstring = ":".join([str(x) for x in status])
	for pattern in explanations:
		if re.match(pattern, statusstring):
			print "%s: %s" % (dstaddr, explanations[pattern])
			matched = True
			break

	if not matched:
		print "%s: Unknown (%s)" % (dstaddr, status)

if __name__ == '__main__':
    arguments = docopt(__doc__, version='mtuping 0.1')
    doping(arguments)