Blame - test/ipsec.uts - platform/external/scapy

blob: dfa8ce1c7842eadaf0f1fbb5ae6a185d8ff79a67 [file] [log] [blame]

Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	1	##############################
				2	% IPSec layer regression tests
				3	##############################
				4
				5	###############################################################################
				6	+ IPv4 / ESP
				7
				8	#######################################
				9	= IPv4 / ESP - Transport - AES-CBC - NULL
				10
Robin Jarry	6057906	2016-06-01 16:17:07 +0200	[diff] [blame]	11	import socket
				12
Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	13	p = IP(src='1.1.1.1', dst='2.2.2.2')
				14	p /= TCP(sport=45012, dport=80)
				15	p /= Raw('testdata')
				16	p = IP(str(p))
				17	p
				18
				19	sa = SecurityAssociation(ESP, spi=0x222,
				20	crypt_algo='AES-CBC', crypt_key='sixteenbytes key',
				21	auth_algo='NULL', auth_key=None)
				22
				23	e = sa.encrypt(p)
				24	e
				25
				26	assert(isinstance(e, IP))
				27	assert(e.src == '1.1.1.1' and e.dst == '2.2.2.2')
				28	assert(e.chksum != p.chksum)
				29	assert(e.proto == socket.IPPROTO_ESP)
				30	assert(e.haslayer(ESP))
				31	assert(not e.haslayer(TCP))
				32	assert(e[ESP].spi == sa.spi)
				33	* after encryption the original packet payload should NOT be readable
				34	assert('testdata' not in e[ESP].data)
				35
				36	d = sa.decrypt(e)
				37	d
				38
				39	* after decryption the original packet payload should be unaltered
				40	assert(d[TCP] == p[TCP])
				41
				42	#######################################
				43	= IPv4 / ESP - Transport - NULL - HMAC-SHA1-96
				44
				45	p = IP(src='1.1.1.1', dst='2.2.2.2')
				46	p /= TCP(sport=45012, dport=80)
				47	p /= Raw('testdata')
				48	p = IP(str(p))
				49	p
				50
				51	sa = SecurityAssociation(ESP, spi=0x222,
				52	crypt_algo='NULL', crypt_key=None,
				53	auth_algo='HMAC-SHA1-96', auth_key='secret key')
				54
				55	e = sa.encrypt(p)
				56	e
				57
				58	assert(isinstance(e, IP))
				59	assert(e.src == '1.1.1.1' and e.dst == '2.2.2.2')
				60	assert(e.chksum != p.chksum)
				61	assert(e.proto == socket.IPPROTO_ESP)
				62	assert(e.haslayer(ESP))
				63	assert(not e.haslayer(TCP))
				64	assert(e[ESP].spi == sa.spi)
				65	assert('testdata' in e[ESP].data)
				66
				67	* integrity verification should pass
				68	d = sa.decrypt(e)
				69
				70	* after decryption the original packet payload should be unaltered
				71	assert(d[TCP] == p[TCP])
				72
				73	#######################################
				74	= IPv4 / ESP - Transport - NULL - HMAC-SHA1-96 - altered packet
				75
				76	p = IP(src='1.1.1.1', dst='2.2.2.2')
				77	p /= TCP(sport=45012, dport=80)
				78	p /= Raw('testdata')
				79	p = IP(str(p))
				80	p
				81
				82	sa = SecurityAssociation(ESP, spi=0x222,
				83	crypt_algo='NULL', crypt_key=None,
				84	auth_algo='HMAC-SHA1-96', auth_key='secret key')
				85
				86	e = sa.encrypt(p)
				87	e
				88
				89	assert(isinstance(e, IP))
				90	assert(e.src == '1.1.1.1' and e.dst == '2.2.2.2')
				91	assert(e.chksum != p.chksum)
				92	assert(e.proto == socket.IPPROTO_ESP)
				93	assert(e.haslayer(ESP))
				94	assert(not e.haslayer(TCP))
				95	assert(e[ESP].spi == sa.spi)
				96	assert('testdata' in e[ESP].data)
				97
				98	* simulate the alteration of the packet before decryption
				99	e[ESP].data = e[ESP].data.replace('\x01', '\x21')
				100
				101	* integrity verification should fail
				102	try:
				103	d = sa.decrypt(e)
				104	assert(False)
				105	except IPSecIntegrityError, err:
				106	err
				107
				108	#######################################
				109	= IPv4 / ESP - Tunnel - AES-CTR - NULL
				110
				111	p = IP(src='1.1.1.1', dst='2.2.2.2')
				112	p /= TCP(sport=45012, dport=80)
				113	p /= Raw('testdata')
				114	p = IP(str(p))
				115	p
				116
				117	sa = SecurityAssociation(ESP, spi=0x222,
				118	crypt_algo='AES-CTR', crypt_key='16bytekey+4bytenonce',
				119	auth_algo='NULL', auth_key=None,
				120	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				121
				122	e = sa.encrypt(p)
				123	e
				124
				125	assert(isinstance(e, IP))
				126	* after encryption packet should be encapsulated with the given ip tunnel header
				127	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				128	assert(e.chksum != p.chksum)
				129	assert(e.proto == socket.IPPROTO_ESP)
				130	assert(e.haslayer(ESP))
				131	assert(not e.haslayer(TCP))
				132	assert(e[ESP].spi == sa.spi)
				133	* after encryption the original packet payload should NOT be readable
				134	assert('testdata' not in e[ESP].data)
				135
				136	d = sa.decrypt(e)
				137	d
				138
				139	* after decryption original packet should be preserved
				140	assert(d == p)
				141
				142	#######################################
Daniel Collins	620f195	2016-10-26 01:03:37 -0700	[diff] [blame]	143	= IPv4 / ESP - Tunnel - AES-GCM - NULL
				144	~ combined_modes
				145
				146	p = IP(src='1.1.1.1', dst='2.2.2.2')
				147	p /= TCP(sport=45012, dport=80)
				148	p /= Raw('testdata')
				149	p = IP(str(p))
				150	p
				151
				152	sa = SecurityAssociation(ESP, spi=0x222,
				153	crypt_algo='AES-GCM', crypt_key='16bytekey+4bytenonce',
				154	auth_algo='NULL', auth_key=None,
				155	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				156
				157	e = sa.encrypt(p)
				158	e
				159
				160	assert(isinstance(e, IP))
				161	* after encryption packet should be encapsulated with the given ip tunnel header
				162	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				163	assert(e.chksum != p.chksum)
				164	assert(e.proto == socket.IPPROTO_ESP)
				165	assert(e.haslayer(ESP))
				166	assert(not e.haslayer(TCP))
				167	assert(e[ESP].spi == sa.spi)
				168	* after encryption the original packet payload should NOT be readable
				169	assert('testdata' not in e[ESP].data)
				170
				171	d = sa.decrypt(e)
				172	d
				173
				174	* after decryption original packet should be preserved
				175	assert(d == p)
				176
				177	#######################################
				178	= IPv4 / ESP - Tunnel - AES-CCM - NULL
				179	~ combined_modes
				180
				181	p = IP(src='1.1.1.1', dst='2.2.2.2')
				182	p /= TCP(sport=45012, dport=80)
				183	p /= Raw('testdata')
				184	p = IP(str(p))
				185	p
				186
				187	sa = SecurityAssociation(ESP, spi=0x222,
				188	crypt_algo='AES-CCM', crypt_key='16bytekey+4bytenonce',
				189	auth_algo='NULL', auth_key=None,
				190	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				191
				192	e = sa.encrypt(p)
				193	e
				194
				195	assert(isinstance(e, IP))
				196	* after encryption packet should be encapsulated with the given ip tunnel header
				197	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				198	assert(e.chksum != p.chksum)
				199	assert(e.proto == socket.IPPROTO_ESP)
				200	assert(e.haslayer(ESP))
				201	assert(not e.haslayer(TCP))
				202	assert(e[ESP].spi == sa.spi)
				203	* after encryption the original packet payload should NOT be readable
				204	assert('testdata' not in e[ESP].data)
				205
				206	d = sa.decrypt(e)
				207	d
				208
				209	* after decryption original packet should be preserved
				210	assert(d == p)
				211
				212	#######################################
Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	213	= IPv4 / ESP - Tunnel - NULL - SHA2-256-128
				214
				215	p = IP(src='1.1.1.1', dst='2.2.2.2')
				216	p /= TCP(sport=45012, dport=80)
				217	p /= Raw('testdata')
				218	p = IP(str(p))
				219	p
				220
				221	sa = SecurityAssociation(ESP, spi=0x222,
				222	crypt_algo='NULL', crypt_key=None,
				223	auth_algo='SHA2-256-128', auth_key='secret key',
				224	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				225
				226	e = sa.encrypt(p)
				227	e
				228
				229	assert(isinstance(e, IP))
				230	* after encryption packet should be encapsulated with the given ip tunnel header
				231	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				232	assert(e.chksum != p.chksum)
				233	assert(e.proto == socket.IPPROTO_ESP)
				234	assert(e.haslayer(ESP))
				235	assert(not e.haslayer(TCP))
				236	assert(e[ESP].spi == sa.spi)
				237	* after encryption the original packet payload should be readable
				238	assert('testdata' in e[ESP].data)
				239
				240	* integrity verification should pass
				241	d = sa.decrypt(e)
				242
				243	* after decryption the original packet should be preserved
				244	assert(d == p)
				245
				246	#######################################
				247	= IPv4 / ESP - Tunnel - NULL - SHA2-256-128 - altered packet
				248
				249	p = IP(src='1.1.1.1', dst='2.2.2.2')
				250	p /= TCP(sport=45012, dport=80)
				251	p /= Raw('testdata')
				252	p = IP(str(p))
				253	p
				254
				255	sa = SecurityAssociation(ESP, spi=0x222,
				256	crypt_algo='NULL', crypt_key=None,
				257	auth_algo='SHA2-256-128', auth_key='secret key',
				258	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				259
				260	e = sa.encrypt(p)
				261	e
				262
				263	assert(isinstance(e, IP))
				264	* after encryption packet should be encapsulated with the given ip tunnel header
				265	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				266	assert(e.chksum != p.chksum)
				267	assert(e.proto == socket.IPPROTO_ESP)
				268	assert(e.haslayer(ESP))
				269	assert(not e.haslayer(TCP))
				270	assert(e[ESP].spi == sa.spi)
				271	* after encryption the original packet payload should be readable
				272	assert('testdata' in e[ESP].data)
				273
				274	* simulate the alteration of the packet before decryption
				275	e[ESP].data = e[ESP].data.replace('\x01', '\x21')
				276
				277	* integrity verification should fail
				278	try:
				279	d = sa.decrypt(e)
				280	assert(False)
				281	except IPSecIntegrityError, err:
				282	err
				283
				284	###############################################################################
				285	+ IPv6 / ESP
				286
				287	#######################################
				288	= IPv6 / ESP - Transport - DES - NULL
				289
				290	p = IPv6(src='11::22', dst='22::11')
				291	p /= TCP(sport=45012, dport=80)
				292	p /= Raw('testdata')
				293	p = IPv6(str(p))
				294	p
				295
				296	sa = SecurityAssociation(ESP, spi=0x222,
				297	crypt_algo='DES', crypt_key='8bytekey',
				298	auth_algo='NULL', auth_key=None)
				299
				300	e = sa.encrypt(p)
				301	e
				302
				303	assert(isinstance(e, IPv6))
				304	assert(e.src == '11::22' and e.dst == '22::11')
				305	* the encrypted packet should have an ESP layer
				306	assert(e.nh == socket.IPPROTO_ESP)
				307	assert(e.haslayer(ESP))
				308	assert(not e.haslayer(TCP))
				309	assert(e[ESP].spi == sa.spi)
				310	* after encryption the original packet payload should NOT be readable
				311	assert('testdata' not in e[ESP].data)
				312
				313	d = sa.decrypt(e)
				314	d
				315
				316	* after decryption the original packet payload should be unaltered
				317	assert(d[TCP] == p[TCP])
				318
				319	#######################################
				320	= IPv6 / ESP - Transport - NULL - HMAC-MD5-96
				321
				322	p = IPv6(src='11::22', dst='22::11')
				323	p /= TCP(sport=45012, dport=80)
				324	p /= Raw('testdata')
				325	p = IPv6(str(p))
				326	p
				327
				328	sa = SecurityAssociation(ESP, spi=0x222,
				329	crypt_algo='NULL', crypt_key=None,
				330	auth_algo='HMAC-MD5-96', auth_key='secret key')
				331
				332	e = sa.encrypt(p)
				333	e
				334
				335	assert(isinstance(e, IPv6))
				336	assert(e.src == '11::22' and e.dst == '22::11')
				337	* the encrypted packet should have an ESP layer
				338	assert(e.nh == socket.IPPROTO_ESP)
				339	assert(e.haslayer(ESP))
				340	assert(not e.haslayer(TCP))
				341	assert(e[ESP].spi == sa.spi)
				342	* after encryption the original packet payload should be readable
				343	assert('testdata' in e[ESP].data)
				344
				345	* integrity verification should pass
				346	d = sa.decrypt(e)
				347
				348	* after decryption the original packet payload should be unaltered
				349	assert(d[TCP] == p[TCP])
				350
				351	#######################################
				352	= IPv6 / ESP - Transport - NULL - HMAC-MD5-96 - altered packet
				353
				354	p = IPv6(src='11::22', dst='22::11')
				355	p /= TCP(sport=45012, dport=80)
				356	p /= Raw('testdata')
				357	p = IPv6(str(p))
				358	p
				359
				360	sa = SecurityAssociation(ESP, spi=0x222,
				361	crypt_algo='NULL', crypt_key=None,
				362	auth_algo='HMAC-MD5-96', auth_key='secret key')
				363
				364	e = sa.encrypt(p)
				365	e
				366
				367	assert(isinstance(e, IPv6))
				368	assert(e.src == '11::22' and e.dst == '22::11')
				369	* the encrypted packet should have an ESP layer
				370	assert(e.nh == socket.IPPROTO_ESP)
				371	assert(e.haslayer(ESP))
				372	assert(not e.haslayer(TCP))
				373	assert(e[ESP].spi == sa.spi)
				374	* after encryption the original packet payload should be readable
				375	assert('testdata' in e[ESP].data)
				376
				377	* simulate the alteration of the packet before decryption
				378	e[ESP].data = e[ESP].data.replace('\x01', '\x21')
				379
				380	* integrity verification should fail
				381	try:
				382	d = sa.decrypt(e)
				383	assert(False)
				384	except IPSecIntegrityError, err:
				385	err
				386
				387	#######################################
				388	= IPv6 / ESP - Tunnel - 3DES - NULL
				389
				390	p = IPv6(src='11::22', dst='22::11')
				391	p /= TCP(sport=45012, dport=80)
				392	p /= Raw('testdata')
				393	p = IPv6(str(p))
				394	p
				395
				396	sa = SecurityAssociation(ESP, spi=0x222,
				397	crypt_algo='AES-CBC', crypt_key='sixteenbytes key',
				398	auth_algo='NULL', auth_key=None,
				399	tunnel_header=IPv6(src='aa::bb', dst='bb::aa'))
				400
				401	e = sa.encrypt(p)
				402	e
				403
				404	assert(isinstance(e, IPv6))
				405	* after encryption packet should be encapsulated with the given ip tunnel header
				406	assert(e.src == 'aa::bb' and e.dst == 'bb::aa')
				407	assert(e.nh == socket.IPPROTO_ESP)
				408	assert(e.haslayer(ESP))
				409	assert(not e.haslayer(TCP))
				410	assert(e[ESP].spi == sa.spi)
				411	* after encryption the original packet payload should NOT be readable
				412	assert('testdata' not in e[ESP].data)
				413
				414	d = sa.decrypt(e)
				415	d
				416
				417	* after decryption original packet should be preserved
				418	assert(d == p)
				419
				420	#######################################
				421	= IPv6 / ESP - Tunnel - NULL - SHA2-384-192
				422
				423	p = IPv6(src='11::22', dst='22::11')
				424	p /= TCP(sport=45012, dport=80)
				425	p /= Raw('testdata')
				426	p = IPv6(str(p))
				427	p
				428
				429	sa = SecurityAssociation(ESP, spi=0x222,
				430	crypt_algo='NULL', crypt_key=None,
				431	auth_algo='SHA2-384-192', auth_key='secret key',
				432	tunnel_header=IPv6(src='aa::bb', dst='bb::aa'))
				433
				434	e = sa.encrypt(p)
				435	e
				436
				437	assert(isinstance(e, IPv6))
				438	* after encryption packet should be encapsulated with the given ip tunnel header
				439	assert(e.src == 'aa::bb' and e.dst == 'bb::aa')
				440	assert(e.nh == socket.IPPROTO_ESP)
				441	assert(e.haslayer(ESP))
				442	assert(not e.haslayer(TCP))
				443	assert(e[ESP].spi == sa.spi)
				444	* after encryption the original packet payload should be readable
				445	assert('testdata' in e[ESP].data)
				446
				447	* integrity verification should pass
				448	d = sa.decrypt(e)
				449
				450	* after decryption the original packet should be preserved
				451	assert(d == p)
				452
				453	#######################################
				454	= IPv6 / ESP - Tunnel - NULL - SHA2-384-192 - altered packet
				455
				456	p = IPv6(src='11::22', dst='22::11')
				457	p /= TCP(sport=45012, dport=80)
				458	p /= Raw('testdata')
				459	p = IPv6(str(p))
				460	p
				461
				462	sa = SecurityAssociation(ESP, spi=0x222,
				463	crypt_algo='NULL', crypt_key=None,
				464	auth_algo='SHA2-384-192', auth_key='secret key',
				465	tunnel_header=IPv6(src='aa::bb', dst='bb::aa'))
				466
				467	e = sa.encrypt(p)
				468	e
				469
				470	assert(isinstance(e, IPv6))
				471	* after encryption packet should be encapsulated with the given ip tunnel header
				472	assert(e.src == 'aa::bb' and e.dst == 'bb::aa')
				473	assert(e.nh == socket.IPPROTO_ESP)
				474	assert(e.haslayer(ESP))
				475	assert(not e.haslayer(TCP))
				476	assert(e[ESP].spi == sa.spi)
				477	* after encryption the original packet payload should be readable
				478	assert('testdata' in e[ESP].data)
				479
				480	* simulate the alteration of the packet before decryption
				481	e[ESP].data = e[ESP].data.replace('\x01', '\x21')
				482
				483	* integrity verification should fail
				484	try:
				485	d = sa.decrypt(e)
				486	assert(False)
				487	except IPSecIntegrityError, err:
				488	err
				489
				490	###############################################################################
				491	+ IPv4 / AH
				492
				493	#######################################
Robin Jarry	def2cd8	2014-06-17 18:37:05 +0200	[diff] [blame]	494	= IPv4 / AH - Transport - HMAC-SHA1-96
Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	495
				496	p = IP(src='1.1.1.1', dst='2.2.2.2')
				497	p /= TCP(sport=45012, dport=80)
				498	p /= Raw('testdata')
				499	p = IP(str(p))
				500	p
				501
				502	sa = SecurityAssociation(AH, spi=0x222,
Robin Jarry	def2cd8	2014-06-17 18:37:05 +0200	[diff] [blame]	503	auth_algo='HMAC-SHA1-96', auth_key='sixteenbytes key')
Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	504
				505	e = sa.encrypt(p)
				506	e
				507
				508	assert(isinstance(e, IP))
				509	assert(e.src == '1.1.1.1' and e.dst == '2.2.2.2')
				510	assert(e.chksum != p.chksum)
				511	* the encrypted packet should have an AH layer
				512	assert(e.proto == socket.IPPROTO_AH)
				513	assert(e.haslayer(AH))
				514	assert(e.haslayer(TCP))
				515	assert(e[AH].spi == sa.spi)
				516
				517	* alter mutable fields in the packet
				518	e.ttl = 2
				519
				520	* integrity verification should pass
				521	d = sa.decrypt(e)
				522	d
				523
				524	* after decryption the original packet payload should be unaltered
				525	assert(d[TCP] == p[TCP])
				526
				527	#######################################
Robin Jarry	def2cd8	2014-06-17 18:37:05 +0200	[diff] [blame]	528	= IPv4 / AH - Transport - HMAC-SHA1-96 - altered packet
Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	529
				530	p = IP(src='1.1.1.1', dst='2.2.2.2')
				531	p /= TCP(sport=45012, dport=80)
				532	p /= Raw('testdata')
				533	p = IP(str(p))
				534	p
				535
				536	sa = SecurityAssociation(AH, spi=0x222,
Robin Jarry	def2cd8	2014-06-17 18:37:05 +0200	[diff] [blame]	537	auth_algo='HMAC-SHA1-96', auth_key='sixteenbytes key')
Robin Jarry	f94c674	2014-03-28 12:03:01 +0100	[diff] [blame]	538
				539	e = sa.encrypt(p)
				540	e
				541
				542	assert(isinstance(e, IP))
				543	assert(e.src == '1.1.1.1' and e.dst == '2.2.2.2')
				544	assert(e.chksum != p.chksum)
				545	* the encrypted packet should have an AH layer
				546	assert(e.proto == socket.IPPROTO_AH)
				547	assert(e.haslayer(AH))
				548	assert(e.haslayer(TCP))
				549	assert(e[AH].spi == sa.spi)
				550
				551	* simulate the alteration of the packet before decryption
				552	e[TCP].sport = 5
				553
				554	* integrity verification should fail
				555	try:
				556	d = sa.decrypt(e)
				557	assert(False)
				558	except IPSecIntegrityError, err:
				559	err
				560
				561	#######################################
				562	= IPv4 / AH - Tunnel - SHA2-256-128
				563
				564	p = IP(src='1.1.1.1', dst='2.2.2.2')
				565	p /= TCP(sport=45012, dport=80)
				566	p /= Raw('testdata')
				567	p = IP(str(p))
				568	p
				569
				570	sa = SecurityAssociation(AH, spi=0x222,
				571	auth_algo='SHA2-256-128', auth_key='secret key',
				572	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				573
				574	e = sa.encrypt(p)
				575	e
				576
				577	assert(isinstance(e, IP))
				578	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				579	assert(e.chksum != p.chksum)
				580	assert(e.proto == socket.IPPROTO_AH)
				581	assert(e.haslayer(AH))
				582	assert(e.haslayer(TCP))
				583	assert(e[AH].spi == sa.spi)
				584
				585	* alter mutable fields in the packet
				586	e.ttl = 2
				587
				588	* integrity verification should pass
				589	d = sa.decrypt(e)
				590	d
				591
				592	* after decryption the original packet should be unaltered
				593	assert(d == p)
				594
				595	#######################################
				596	= IPv4 / AH - Tunnel - HMAC-SHA1-96 - altered packet
				597
				598	p = IP(src='1.1.1.1', dst='2.2.2.2')
				599	p /= TCP(sport=45012, dport=80)
				600	p /= Raw('testdata')
				601	p = IP(str(p))
				602	p
				603
				604	sa = SecurityAssociation(AH, spi=0x222,
				605	auth_algo='HMAC-SHA1-96', auth_key='secret key',
				606	tunnel_header=IP(src='11.11.11.11', dst='22.22.22.22'))
				607
				608	e = sa.encrypt(p)
				609	e
				610
				611	assert(isinstance(e, IP))
				612	assert(e.src == '11.11.11.11' and e.dst == '22.22.22.22')
				613	assert(e.chksum != p.chksum)
				614	assert(e.proto == socket.IPPROTO_AH)
				615	assert(e.haslayer(AH))
				616	assert(e.haslayer(TCP))
				617	assert(e[AH].spi == sa.spi)
				618
				619	* simulate the alteration of the packet before verification
				620	e.dst = '4.4.4.4'
				621
				622	* integrity verification should fail
				623	try:
				624	d = sa.decrypt(e)
				625	assert(False)
				626	except IPSecIntegrityError, err:
				627	err
				628
				629	###############################################################################
				630	+ IPv6 / AH
				631
				632	#######################################
				633	= IPv6 / AH - Transport - HMAC-SHA1-96
				634
				635	p = IPv6(src='11::22', dst='22::11')
				636	p /= TCP(sport=45012, dport=80)
				637	p /= Raw('testdata')
				638	p = IPv6(str(p))
				639	p
				640
				641	sa = SecurityAssociation(AH, spi=0x222,
				642	auth_algo='HMAC-SHA1-96', auth_key='secret key')
				643
				644	e = sa.encrypt(p)
				645	e
				646
				647	assert(isinstance(e, IPv6))
				648	assert(e.src == '11::22' and e.dst == '22::11')
				649	* the encrypted packet should have an AH layer
				650	assert(e.nh == socket.IPPROTO_AH)
				651	assert(e.haslayer(AH))
				652	assert(e.haslayer(TCP))
				653	assert(e[AH].spi == sa.spi)
				654
				655	* alter mutable fields in the packet
				656	e.hlim = 2
				657
				658	* integrity verification should pass
				659	d = sa.decrypt(e)
				660	d
				661
				662	* after decryption the original packet payload should be unaltered
				663	assert(d[TCP] == p[TCP])
				664
				665	#######################################
				666	= IPv6 / AH - Transport - HMAC-SHA1-96 - altered packet
				667
				668	p = IPv6(src='11::22', dst='22::11')
				669	p /= TCP(sport=45012, dport=80)
				670	p /= Raw('testdata')
				671	p = IPv6(str(p))
				672	p
				673
				674	sa = SecurityAssociation(AH, spi=0x222,
				675	auth_algo='HMAC-SHA1-96', auth_key='secret key')
				676
				677	e = sa.encrypt(p)
				678	e
				679
				680	assert(isinstance(e, IPv6))
				681	assert(e.src == '11::22' and e.dst == '22::11')
				682	* the encrypted packet should have an AH layer
				683	assert(e.nh == socket.IPPROTO_AH)
				684	assert(e.haslayer(AH))
				685	assert(e.haslayer(TCP))
				686	assert(e[AH].spi == sa.spi)
				687
				688	* simulate the alteration of the packet before verification
				689	e[TCP].dport = 46
				690
				691	* integrity verification should fail
				692	try:
				693	d = sa.decrypt(e)
				694	assert(False)
				695	except IPSecIntegrityError, err:
				696	err
				697
				698	#######################################
				699	= IPv6 / AH - Tunnel - HMAC-SHA1-96
				700
				701	p = IPv6(src='11::22', dst='22::11')
				702	p /= TCP(sport=45012, dport=80)
				703	p /= Raw('testdata')
				704	p = IPv6(str(p))
				705	p
				706
				707	sa = SecurityAssociation(AH, spi=0x222,
				708	auth_algo='HMAC-SHA1-96', auth_key='secret key',
				709	tunnel_header=IPv6(src='aa::bb', dst='bb::aa'))
				710
				711	e = sa.encrypt(p)
				712	e
				713
				714	assert(isinstance(e, IPv6))
				715	* after encryption packet should be encapsulated with the given ip tunnel header
				716	assert(e.src == 'aa::bb' and e.dst == 'bb::aa')
				717	assert(e.nh == socket.IPPROTO_AH)
				718	assert(e.haslayer(AH))
				719	assert(e.haslayer(TCP))
				720	assert(e[AH].spi == sa.spi)
				721
				722	* alter mutable fields in the packet
				723	e.hlim = 2
				724
				725	* integrity verification should pass
				726	d = sa.decrypt(e)
				727	d
				728
				729	* after decryption the original packet payload should be unaltered
				730	assert(d == p)
				731
				732	#######################################
				733	= IPv6 / AH - Tunnel - HMAC-SHA1-96 - altered packet
				734
				735	p = IPv6(src='11::22', dst='22::11')
				736	p /= TCP(sport=45012, dport=80)
				737	p /= Raw('testdata')
				738	p = IPv6(str(p))
				739	p
				740
				741	sa = SecurityAssociation(AH, spi=0x222,
				742	auth_algo='HMAC-SHA1-96', auth_key='secret key',
				743	tunnel_header=IPv6(src='aa::bb', dst='bb::aa'))
				744
				745	e = sa.encrypt(p)
				746	e
				747
				748	assert(isinstance(e, IPv6))
				749	* after encryption packet should be encapsulated with the given ip tunnel header
				750	assert(e.src == 'aa::bb' and e.dst == 'bb::aa')
				751	assert(e.nh == socket.IPPROTO_AH)
				752	assert(e.haslayer(AH))
				753	assert(e.haslayer(TCP))
				754	assert(e[AH].spi == sa.spi)
				755
				756	* simulate the alteration of the packet before verification
				757	e.src = 'cc::ee'
				758
				759	* integrity verification should fail
				760	try:
				761	d = sa.decrypt(e)
				762	assert(False)
				763	except IPSecIntegrityError, err:
				764	err
				765
				766	###############################################################################
				767	+ IPv6 + Extensions / AH
				768
				769	#######################################
				770	= IPv6 + Extensions / AH - Transport
				771
				772	p = IPv6(src='11::22', dst='22::11')
				773	p /= IPv6ExtHdrHopByHop()
				774	p /= IPv6ExtHdrDestOpt()
				775	p /= IPv6ExtHdrRouting()
				776	p /= IPv6ExtHdrDestOpt()
				777	p /= IPv6ExtHdrFragment()
				778	p /= TCP(sport=45012, dport=80)
				779	p /= Raw('testdata')
				780	p = IPv6(str(p))
				781	p
				782
				783	sa = SecurityAssociation(AH, spi=0x222,
				784	auth_algo='HMAC-SHA1-96', auth_key='secret key')
				785
				786	e = sa.encrypt(p)
				787	e
				788
				789	assert(e.src == '11::22' and e.dst == '22::11')
				790	* AH header should be inserted between the routing header and the dest options header
				791	assert(isinstance(e[AH].underlayer, IPv6ExtHdrRouting))
				792	assert(isinstance(e[AH].payload, IPv6ExtHdrDestOpt))
				793
				794	#######################################
				795	= IPv6 + Routing Header / AH - Transport
				796
				797	p = IPv6(src='11::22', dst='22::11')
				798	p /= IPv6ExtHdrHopByHop()
				799	p /= IPv6ExtHdrRouting(addresses=['aa::bb', 'cc::dd', 'ee::ff'])
				800	p /= TCP(sport=45012, dport=80)
				801	p /= Raw('testdata')
				802	p = IPv6(str(p))
				803	p
				804
				805	sa = SecurityAssociation(AH, spi=0x222,
				806	auth_algo='HMAC-SHA1-96', auth_key='secret key')
				807
				808	e = sa.encrypt(p)
				809	e
				810
				811	assert(e.src == '11::22' and e.dst == '22::11')
				812	* AH header should be inserted between the routing header and TCP
				813	assert(isinstance(e[AH].underlayer, IPv6ExtHdrRouting))
				814	assert(isinstance(e[AH].payload, TCP))
				815
				816	* reorder the routing header as the receiver will get it
				817	final = e[IPv6ExtHdrRouting].addresses.pop()
				818	e[IPv6ExtHdrRouting].addresses.insert(0, e.dst)
				819	e.dst = final
				820	e[IPv6ExtHdrRouting].segleft = 0
				821
				822	* integrity verification should pass
				823	d = sa.decrypt(e)
				824	d