h<dZddlZddlmZddlmZmZddlmZddlm Z ddl m Z ddl m Z ddlZddlZdd lmZejeZd Zd ZGd d ZGddeZGddeZdZdZdZdZdZddZdZ ddZ! ddZ"dS)zeZdZedZedZdZdS)TCPAOAlgctNNotImplementedError)cls master_keycontexts rkdfz TCPAOAlg.kdf1"###rctr(r))r+ traffic_keyr-s rmacz TCPAOAlg.mac6r/rN__name__ __module__ __qualname__ classmethodr.r2maclenrrr&r&0sI$$[$$$[$FFFrr&c>eZdZedZedZdZdS)TCPAOAlg_HMAC_SHA1c2d|zdz}t||S)NTCP-AOsr)r+r,r-inputs rr.zTCPAOAlg_HMAC_SHA1.kdf?s#$g- ; U333rc2t||ddSN r?)r+r1messages rr2zTCPAOAlg_HMAC_SHA1.macEs!g66ss;;rrCNr4r:rrr<r<>sI44[4 <<[<FFFrr<c>eZdZedZedZdZdS)TCPAOAlg_CMAC_AESczt|dkr|}ntd|}t|d|zdzS)Nsr>s)lenr$)selfr,r-rs rr.zTCPAOAlg_CMAC_AES.kdfNsE z??b CC"<<>>rct|trttj|jSt|t rttj|jStdrS) rTrr rUrVdstrrXrYrZs r _get_ipvx_dstr`sr]rct|t|ks&t|dkr"t|dkrtd||ztjd||||zS)7Build context bytes as specified by RFC5925 section 5.2rHz3saddr and daddr must be 4-byte or 16-byte addressesz!HHII)rIrNstructpack)saddrdaddrsportdportsrc_isndst_isns r build_contextrl}s{ 5zzSZZCJJ!OOE b8H8HNOOO             rc|t}tt|jt |j|j|j||S)rb)rrlr\ underlayerr`rhri)prjrktcps rbuild_context_from_packetrqsI C&C cn%%cn%%     rTc8t}|tjd|z }|t|tz }t |t}||ddz }|dz }||ddz }d}|t}|j}|Ft|d ||j }d|d zd zz}|d z} || krt||} |d z }| d ks| d kr|r|t| gz }Ct||} |d z }|| zd z | krt d| | n| d krt d| | no| dkrB| d krt d| | nF|||d z |d zz }|| d z dzz }n|r|||d z || zd z z }|| d z z }|| k|t |tjz }|S)z7Build message bytes as described by RFC5925 section 5.1z!INrHsoptionsrcrz0bad tcp option %d optlen %d beyond end-of-headerz)bad tcp option %d optlen %d less than twozbad tcp option %d optlen %d) bytearrayrdrerrr!dataofsrI get_fieldi2mrurloggerinfopayload) roinclude_optionssneresultth_bytesposthdoffopt_len tcphdr_optendoptnumoptlens rbuild_message_from_packetrsj[[F fk$$$$F qv&&&FQsV}}H hssmF kF hr"uoF C 3B :D |bll9--11"bjAABBWq[Q&'1HM  Xc]## q Q;;&A++ .)VH--- Xc]## q rsCB%%%%%%%%......######%%%%%%   8 $ $555                   $GGG??????2$2222jIII  ******r