From 46b4176da440ffe3bf6e12d31307fb093153e031 Mon Sep 17 00:00:00 2001
From: Ana Custura <ana@netstat.org.uk>
Date: Sat, 16 Nov 2019 19:28:04 +0000
Subject: [PATCH 1/2] Adds support for IPv6 options in the observer

---
 pathspider/observer.py | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/pathspider/observer.py b/pathspider/observer.py
index fecb475..f49bac2 100644
--- a/pathspider/observer.py
+++ b/pathspider/observer.py
@@ -46,12 +46,20 @@ def _flow6_ids(ip6):
             quotation_fid = True
 
     protos_with_ports = {6, 17, 132, 136}
+    hdr_opts = {0, 60}
     if ip6.proto in protos_with_ports:
+        # key gets the protocol from the IPv6 HBH or Destination Options header
+        if ip6.next_hdr in hdr_opts:
+            fid = ip6.src_prefix.addr + ip6.dst_prefix.addr + ip6.data[
+                40:41] + ip6.payload[0:4]
+            rid = ip6.dst_prefix.addr + ip6.src_prefix.addr + ip6.data[
+                40:41] + ip6.payload[2:4] + ip6.payload[0:2]
         # key includes ports
-        fid = ip6.src_prefix.addr + ip6.dst_prefix.addr + ip6.data[
-            6:7] + ip6.payload[0:4]
-        rid = ip6.dst_prefix.addr + ip6.src_prefix.addr + ip6.data[
-            6:7] + ip6.payload[2:4] + ip6.payload[0:2]
+        else:
+            fid = ip6.src_prefix.addr + ip6.dst_prefix.addr + ip6.data[
+                6:7] + ip6.payload[0:4]
+            rid = ip6.dst_prefix.addr + ip6.src_prefix.addr + ip6.data[
+                6:7] + ip6.payload[2:4] + ip6.payload[0:2]
     else:
         # no ports, just 3-tuple
         fid = ip6.src_prefix.addr + ip6.dst_prefix.addr + ip6.data[6:7]

From 7a17e038990137eb00349551d95792a62a6c1d74 Mon Sep 17 00:00:00 2001
From: Ana Custura <ana@netstat.org.uk>
Date: Tue, 10 Dec 2019 16:19:26 +0000
Subject: [PATCH 2/2] adds hbhopt plugin

---
 pathspider/plugins/hbhopt.py | 46 ++++++++++++++++++++++++++++++++++++
 1 file changed, 46 insertions(+)
 create mode 100644 pathspider/plugins/hbhopt.py

diff --git a/pathspider/plugins/hbhopt.py b/pathspider/plugins/hbhopt.py
new file mode 100644
index 0000000..2530b4d
--- /dev/null
+++ b/pathspider/plugins/hbhopt.py
@@ -0,0 +1,46 @@
+
+from scapy.all import IPv6       # pylint: disable=E0611
+from scapy.all import UDP        # pylint: disable=E0611
+from scapy.all import DNS        # pylint: disable=E0611
+from scapy.all import DNSQR      # pylint: disable=E0611
+from scapy.all import RandShort  # pylint: disable=E0611
+
+import pathspider.base
+from pathspider.base import PluggableSpider
+from pathspider.single import DesynchronizedSpider
+from pathspider.chains.basic import BasicChain
+from pathspider.chains.dns import DNSChain
+from pathspider.helpers.dns import connect_dns_udp
+from pathspider.helpers.dns import connect_dns
+
+class HBHOPT(DesynchronizedSpider, PluggableSpider):
+
+    name = "hbhopt"
+    description = "Hop-by-hop options testing"
+    version = pathspider.base.__version__
+    chains = [BasicChain, DNSChain]
+
+
+    def con_normal(self, job, config):
+        return connect_dns_udp(self.source, job, self.args.timeout, sockopts=None)
+
+    def con_hhb(self, job, config):
+        opt =[(41, 54, b'\x00\x00\x00\x00\x00\x00\x00\x00')]
+        return connect_dns_udp(self.source, job, self.args.timeout, sockopts=opt)
+
+    def con_dopts(self, job, config):
+        opt =[(41, 59, b'\x00\x00\x00\x00\x00\x00\x00\x00')]
+        return connect_dns_udp(self.source, job, self.args.timeout, sockopts=opt)
+
+    connections = [con_normal, con_hhb, con_dopts]
+
+    def combine_flows(self, flows):
+        for flow in flows:
+            if not flow['observed']:
+                return ['pathspider.not_observed']
+        conditions = []
+        conditions.append(self.combine_connectivity(flows[0]['dns_response_valid'],
+                                          flows[1]['dns_response_valid'], prefix ='hbh_opts'))
+        conditions.append(self.combine_connectivity(flows[0]['dns_response_valid'],
+                                          flows[2]['dns_response_valid'], prefix='dst_opts'))
+        return conditions