h"dZddlZddlZddlmZddlmZmZmZm Z m Z ddl m Z m Z mZddlmZmZmZddlmZddlmZdd lmZdd lmZdd lmZmZmZmZdd l m!Z!ej"rdd l#m$Z$ddl%m&Z&m'Z'm(Z(ne!j)ddZ*dZ+dZ,Gdde-Z.Gdde Z/ee/eeee/eeeee/eeee/eeee/edS)z# Classes and functions for MACsec. N)conf)BitFieldConditionalFieldIntField PacketFieldXShortEnumField)PacketRaw bind_layers)EtherDot1ADDot1Q) MACsecSCI)IP)IPv6raw) ETH_P_MACSEC ETHER_TYPESETH_P_IP ETH_P_IPV6) log_loading)default_backend)Cipher algorithmsmodeszRCan't import python-cryptography v1.7+. Disabled MACsec encryption/authentication.cveZdZdZddZdZeddZdZd Z ed Z d Z d Z dd Z ddZdS)MACsecSAzRepresentation of a MACsec Secure Association Provides encapsulation, decapsulation, encryption, and decryption of MACsec frames FNc @t|trtjd||_n,t|t r||_nt d||_||_||_ ||_ ||_ ||_ ||_ |j rt| trtjd| |_n,t| t r| |_nt dt| t r | |_dSt ddS)N!QzSCI must be either bytes or intz!Lz SSCI must be either bytes or intzSalt must be bytes) isinstanceintstructpackscibytes TypeErroranpnkeyicvlen do_encryptsend_scixpn_ensscisalt) selfr(r+r,r-r.encryptr0r1r2r3s X/mounts/lovelace/software/anaconda3/lib/python3.11/site-packages/scapy/contrib/macsec.py__init__zMACsecSA.__init__3s c3   ?{4--DHH U # # ?DHH=>> > !   ; 6$$$ D"Kd33 D%(( D   BCCC$&& 6   4555 6 6c |jr|jdz|tjdzz}|jt jd|z}ttdtt|t|j DS|j t jd|tjzS)zgenerate an IV for the packetlr#cg|] \}}||z  Sr<).0abs r6 z$MACsecSA.make_iv..Ts #c#c#cdaAE#c#c#cr8z!I) r1r,MACsecPNr2r&r'r) bytearrayzipr3r()r4pkttmp_pntmp_ivs r6make_ivzMACsecSA.make_ivOs ; @g 22s6{~ 7RSFYT6!:!::F#c#cc)F:K:KYW[W`MaMa6b6b#c#c#cddee e8fk$F ??? ?r8rct|}|d|}|r|| d}||| }n d}||d}|||fS)zj split the packet into associated data, plaintext or ciphertext, and optional ICV Nr8r)rEassoclenr.dataassocicvencs r6 split_pktzMACsecSA.split_pktXsd 3xxYhY  "wxx.Cx'(CCCxyy/Cc3r8c|jS)z?returns the value of the E bit for packets sent through this SA)r/r4s r6e_bitzMACsecSA.e_biths r8c0|jp|jtkS)z?returns the value of the C bit for packets sent through this SA)r/r.DEFAULT_ICV_LENrQs r6c_bitzMACsecSA.c_bitls@$+"@@r8c:t|dz }|dkr|SdS)z:determine shortlen for a raw packet (not encapsulated yet) 0r)len)rEdatalens r6shortlenzMACsecSA.shortlenps'c((U" R<<Nqr8c |jtjkrtdtj|}|j}|`t |j|j|j | | t ||jdz|j}t |_||z |z S)z1encapsulate a frame using this Secure Associationz5cannot encapsulate packet in MACsec, must be Ethernetr:)SCIANSCECSLrBtype)namer r*copydeepcopypayloadrAr(r+r0rRrUr!r[r,rcr)r4rEhdrrgtags r6encapzMACsecSA.encapxs 8uww| # #STT TmC  + Kdg zz||tzz|| ))#..:-SX ???  Sy7""r8ct|trt|jtst dt j|}|tj}|tj|_|tj}|`|j tj krtt||z S||z S)zdecapsulate a MACsec framez9cannot decapsulate MACsec packet, must be Ethernet/MACsec) r$r rgrAr*rerf underlayerrcrdr)r4orig_pktpacket prev_layer next_layers r6decapzMACsecSA.decaps(E** x/88 K x((F^.  .- F^+   ?eggl * *Z*45566 6J&&r8ctj|}|t`|t`t |}|jrttz}nt}||j s |j r|}n|}| |}t ||\}}} ttj|jt#j|t'} | || || z} t1|||| z| jz|t_|S)z2encrypt a MACsec frame for this Secure AssociationNbackend)rerfrArgrcrYr0 NOSCI_LENSCI_LENr/rHr!rOrrAESr-rGCMr encryptorauthenticate_additional_dataupdatefinalizer ri) r4rmrJrhpktlenhdrlenivrLpt_rycts r6r5zMACsecSA.encryptsGmH%% K  K X = (FFF  4?  "!! \\( # #))(H== r1 N48 $ $ IbMM#%%    )++  ..u555   b ! !I$6$6$8$8 8!%x"82"= "MNNF  r8cTtj|}|t`t |}|jrt tz}nt }||js|jr|}n ||j z }| |}t |||j \}}} ttj|jt#j|| t'} | ||||} | | |z } | | z } t1jd| ddd|t_t7| dd|t_|S)z2decrypt a MACsec frame for this Secure AssociationNrsz!Hr)rerfrArgrYr0rurvr/r.rHr!rOrrrwr-rrxr decryptorrzr{r|r&unpackrcr ) r4rmrJrhr}r~rrLrrMrrs r6decryptzMACsecSA.decryptszmH%% K X = (FFF  4?  0!!DK/ \\#  !++Hh LLr3 N48 $ $ Ib#  #%%    )++  ..u555 6(? # ir""" i  """!=r!A#w77:F !"QRR&kkF  r8)FNN)rN)__name__ __module__ __qualname____doc__r7rH staticmethodrOrRrUr[rjrqr5rr<r8r6r!r!-s 66668@@@   \ AAA\ # # #"''' 6r8r!cxeZdZdZdZdddddZedd d ed d d ed d d ed d d edd d edd d edd dedd dedd dedd ee dde dee dde dg Z dZdS)rAz"representation of one MACsec framez802.1AE)r^2.4.4)rBr)r]r)rbr)r+r,r(r[VerrESr_SCBr`rar^rreservedrbrBr]Nc|jSr)r_rEs r6zMACsec.sr8rccd|jvS)Nrc)fieldsrs r6rzMACsec.s Vsz%9r8c|d}|jr||dz }|j||dz }|S)NzAN=%MACsec.AN%, PN=%MACsec.PN%z, SCI=%MACsec.SCI%z, %MACsec.type%)sprintfr_rc)r4summarys r6 mysummaryzMACsec.mysummarysY,,?@@ 7 : t||$899 9G 9 t||$566 6Gr8)rrrrrddeprecated_fieldsrrrrrrr fields_descrr<r8r6rArAsG,, D#  1q!q!1aaq!Q""q!q KtY / /    {CC99 ; ;)rs 11111111110000000000&&&&&& ######FFFFFFFFFFFF###### C<<<<<< KBCCC  bbbbbvbbbJ'''''V'''T FBX&&&& FDz**** FF.... E6 ---- E6 ------r8