[SOCKS4] Packet parser & builder (#1047)

abhinavsingh · pre-commit-ci[bot] · web-flow · commit 7845cbb28d9b · 2022-01-23T16:57:58.000+05:30
* Initial commit * Parse socks4 packet * Lint check * [pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.ci * fix lint issues * [pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.ci * Add handler test skeleton * [pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.ci Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
diff --git a/proxy/socks/__init__.py b/proxy/socks/__init__.py
@@ -0,0 +1,23 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+from .client import SocksClientConnection
+from .packet import Socks4Packet
+from .handler import SocksProtocolHandler
+from .operations import Socks4Operations, socks4Operations
+
+
+__all__ = [
+    'Socks4Packet',
+    'socks4Operations',
+    'Socks4Operations',
+    'SocksProtocolHandler',
+    'SocksClientConnection',
+]
diff --git a/proxy/socks/client.py b/proxy/socks/client.py
@@ -0,0 +1,15 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+from ..core.connection import TcpClientConnection
+
+
+class SocksClientConnection(TcpClientConnection):
+    pass
diff --git a/proxy/socks/handler.py b/proxy/socks/handler.py
@@ -0,0 +1,28 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+from typing import Any, Optional
+
+from .client import SocksClientConnection
+from ..core.base import BaseTcpServerHandler
+
+
+class SocksProtocolHandler(BaseTcpServerHandler[SocksClientConnection]):
+    """Reference https://www.openssh.com/txt/socks4.protocol"""
+
+    def __init__(self, *args: Any, **kwargs: Any) -> None:
+        super().__init__(*args, **kwargs)
+
+    @staticmethod
+    def create(**kwargs: Any) -> SocksClientConnection:
+        return SocksClientConnection(**kwargs)
+
+    def handle_data(self, data: memoryview) -> Optional[bool]:
+        return super().handle_data(data)
diff --git a/proxy/socks/operations.py b/proxy/socks/operations.py
@@ -0,0 +1,21 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+from typing import NamedTuple
+
+
+Socks4Operations = NamedTuple(
+    'Socks4Operations', [
+        ('CONNECT', int),
+        ('BIND', int),
+    ],
+)
+
+socks4Operations = Socks4Operations(1, 2)
diff --git a/proxy/socks/packet.py b/proxy/socks/packet.py
@@ -0,0 +1,69 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+import struct
+from typing import Optional
+
+
+NULL = b'\x00'
+
+
+class Socks4Packet:
+    """SOCKS4 and SOCKS4a protocol parser.
+
+    FIXME: Currently doesn't buffer during parsing and expects
+    packet to arrive within a single socket receive event.
+    """
+
+    def __init__(self) -> None:
+        # 1 byte, must be equal to 4
+        self.vn: Optional[int] = None
+        # 1 byte
+        self.cd: Optional[int] = None
+        # 2 bytes
+        self.dstport: Optional[int] = None
+        # 4 bytes
+        self.dstip: Optional[bytes] = None
+        # Variable bytes, NULL terminated
+        self.userid: Optional[bytes] = None
+
+    def parse(self, raw: memoryview) -> None:
+        cursor = 0
+        # Parse vn
+        if self.vn is None:
+            assert int(raw[cursor]) == 4
+            self.vn = 4
+        cursor += 1
+        # Parse cd
+        self.cd = raw[cursor]
+        cursor += 1
+        # Parse dstport
+        self.dstport = struct.unpack('!H', raw[cursor:cursor+2])[0]
+        cursor += 2
+        # Parse dstip
+        self.dstip = struct.unpack('!4s', raw[cursor:cursor+4])[0]
+        cursor += 4
+        # Parse userid
+        ulen = len(raw) - cursor - 1
+        self.userid = struct.unpack(
+            '!%ds' % ulen, raw[cursor:cursor+ulen],
+        )[0]
+        cursor += ulen
+        # Assert null terminated
+        assert raw[cursor] == NULL[0]
+
+    def pack(self) -> bytes:
+        user_id = self.userid or b''
+        return struct.pack(
+            '!bbH4s%ds' % len(user_id),
+            self.vn, self.cd,
+            self.dstport, self.dstip,
+            user_id,
+        ) + NULL
diff --git a/tests/socks/__init__.py b/tests/socks/__init__.py
@@ -0,0 +1,10 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
diff --git a/tests/socks/test_handler.py b/tests/socks/test_handler.py
@@ -0,0 +1,40 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+import pytest
+
+from pytest_mock import MockerFixture
+
+from proxy.socks import SocksProtocolHandler, SocksClientConnection
+from proxy.common.flag import FlagParser
+from ..test_assertions import Assertions
+
+
+class TestHttpProtocolHandlerWithoutServerMock(Assertions):
+
+    @pytest.fixture(autouse=True)   # type: ignore[misc]
+    def _setUp(self, mocker: MockerFixture) -> None:
+        self.mock_fromfd = mocker.patch('socket.fromfd')
+        self.mock_selector = mocker.patch('selectors.DefaultSelector')
+
+        self.fileno = 10
+        self._addr = ('127.0.0.1', 54382)
+        self._conn = self.mock_fromfd.return_value
+
+        self.flags = FlagParser.initialize(threaded=True)
+
+        self.handler = SocksProtocolHandler(
+            SocksClientConnection(conn=self._conn, addr=self._addr),
+            flags=self.flags,
+        )
+        self.handler.initialize()
+
+    def test(self) -> None:
+        self.assertEqual(1, 1)
diff --git a/tests/socks/test_packet.py b/tests/socks/test_packet.py
@@ -0,0 +1,52 @@
+# -*- coding: utf-8 -*-
+"""
+    proxy.py
+    ~~~~~~~~
+    ⚡⚡⚡ Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on
+    Network monitoring, controls & Application development, testing, debugging.
+
+    :copyright: (c) 2013-present by Abhinav Singh and contributors.
+    :license: BSD, see LICENSE for more details.
+"""
+import re
+import socket
+import binascii
+
+import unittest
+
+from proxy.socks import Socks4Packet, socks4Operations
+
+
+def unhexlify(raw: str) -> bytes:
+    return binascii.unhexlify(re.sub(r'\s', '', raw))
+
+
+# Examples taken from https://en.wikipedia.org/wiki/SOCKS
+CLIENT_CONNECT_REQ = unhexlify('04 01 00 50 42 66 07 63 46 72 65 64 00')
+SERVER_CONNECT_OK = unhexlify('00 5A')
+
+
+class TestSocks4Packet(unittest.TestCase):
+
+    def test_pack(self) -> None:
+        pkt = Socks4Packet()
+        pkt.vn = 4
+        pkt.cd = socks4Operations.CONNECT
+        pkt.dstport = 80
+        pkt.dstip = socket.inet_aton('66.102.7.99')
+        pkt.userid = b'Fred'
+        self.assertEqual(
+            pkt.pack(),
+            CLIENT_CONNECT_REQ,
+        )
+
+    def test_parse(self) -> None:
+        wiki = memoryview(CLIENT_CONNECT_REQ)
+        pkt = Socks4Packet()
+        pkt.parse(wiki)
+        self.assertEqual(pkt.vn, 4)
+        self.assertEqual(pkt.cd, socks4Operations.CONNECT)
+        self.assertEqual(pkt.dstport, 80)
+        assert pkt.dstip
+        self.assertEqual(socket.inet_ntoa(pkt.dstip), '66.102.7.99')
+        self.assertEqual(pkt.userid, b'Fred')
