Windows/Crypto rework: CertTree, Kerberos PKINIT, Netlogon's Kerberos secure channel, better NTLM variants #4879
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Codecov Report❌ Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## master #4879 +/- ##
==========================================
- Coverage 80.86% 80.79% -0.07%
==========================================
Files 368 368
Lines 90271 90565 +294
==========================================
+ Hits 72996 73174 +178
- Misses 17275 17391 +116
🚀 New features to boost your workflow:
|
gpotter2
force-pushed
the
begin-pkinit
branch
2 times, most recently
from
e7169e7 to
c583fe1
Compare
gpotter2
force-pushed
the
begin-pkinit
branch
from
c583fe1 to
144df4e
Compare
gpotter2
force-pushed
the
begin-pkinit
branch
from
076eb9b to
20d4fb2
Compare
gpotter2
force-pushed
the
begin-pkinit
branch
from
20d4fb2 to
5915554
Compare
gpotter2
force-pushed
the
begin-pkinit
branch
from
704eb05 to
064221d
Compare
gpotter2
force-pushed
the
begin-pkinit
branch
from
5a6678e to
7ea2540
Compare
gpotter2
changed the title
gpotter2
changed the title
Contributor
There was a problem hiding this comment.
Pull request overview
This PR significantly refactors Scapy's Windows cryptography infrastructure with major improvements to certificate handling, Kerberos PKINIT support, and DCE/RPC functionality.
Key Changes:
- Replaces the
Chainhelper class with a more sophisticatedCertTreeclass that properly organizes certificates in a tree structure with ROOT CA verification - Implements PKINIT (Public Key Cryptography for Initial Authentication in Kerberos) with Diffie-Hellman key exchange
- Adds support for loading Kerberos credentials from KRB5CCNAME environment variable and ccache files
- Introduces NTLM variant support (WindowsNT, Windows2000, Windows2003+) for backward compatibility
- Implements CMS (Cryptographic Message Syntax) signing and verification
- Adds Kerberos secure channel support in MS-NRPC (Netlogon)
- Improves DCE/RPC context management and binding
Reviewed changes
Copilot reviewed 23 out of 23 changed files in this pull request and generated 6 comments.
Show a summary per file
| File | Description |
|---|---|
| scapy/layers/tls/cert.py | Major refactor: adds CertTree, CertList, CMS_Engine classes; improves certificate verification |
| scapy/layers/x509.py | Enhanced X509_AlgorithmIdentifier with proper RFC compliance and MultipleTypeField handling |
| scapy/layers/kerberos.py | PKINIT implementation, octetstring2key, enhanced KerberosSSP with TGT support |
| scapy/layers/ntlm.py | NTLM_VARIANT system for supporting different Windows versions |
| scapy/layers/spnego.py | KRB5CCNAME support, ccache loading, improved from_cli_arguments |
| scapy/modules/ticketer.py | Enhanced ssp() method to distinguish TGT/ST, added iter_tickets() |
| scapy/layers/msrpce/rpcclient.py | Better context management, endpoint resolution, impersonation level support |
| scapy/layers/msrpce/msnrpc.py | Kerberos secure channel in Netlogon |
| scapy/libs/rfc3961.py | RFC4556 octetstring2key implementation |
| test files | Comprehensive test coverage for new features |
Comments suppressed due to low confidence (2)
scapy/layers/smbclient.py:695
- This expression mutates a default value.
use_ioctl=kwargs.pop("use_ioctl", True),
scapy/layers/smbclient.py:696
- This expression mutates a default value.
timeout=kwargs.pop("timeout", 3),
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+542
to
+549
| OFFSET = lambda pkt: ( | ||
| 32 | ||
| if ( | ||
| pkt.VARIANT == NTLM_VARIANT.NT_OR_2000 | ||
| or (pkt.DomainNameBufferOffset or 40) <= 32 | ||
| ) | ||
| else 40 | ||
| ) |
There was a problem hiding this comment.
The OFFSET lambda expressions are overly complex and difficult to read. Consider extracting this logic into a helper method or breaking it into multiple simpler conditional expressions for better maintainability.
Suggested change
| OFFSET = lambda pkt: ( | |
| 32 | |
| if ( | |
| pkt.VARIANT == NTLM_VARIANT.NT_OR_2000 | |
| or (pkt.DomainNameBufferOffset or 40) <= 32 | |
| ) | |
| else 40 | |
| ) | |
| @staticmethod | |
| def get_offset(pkt): | |
| """ | |
| Helper method to compute the offset for NTLM_NEGOTIATE. | |
| """ | |
| if ( | |
| pkt.VARIANT == NTLM_VARIANT.NT_OR_2000 | |
| or (pkt.DomainNameBufferOffset or 40) <= 32 | |
| ): | |
| return 32 | |
| else: | |
| return 40 | |
| OFFSET = get_offset |
Comment on lines
+3533
to
+3534
| # XXX UNFINISHED | ||
| raise NotImplementedError |
There was a problem hiding this comment.
The comment on line 3534 says "XXX UNFINISHED" and raises NotImplementedError for PUBLIC_KEY method in PKINIT. This incomplete implementation should either be completed or documented as a limitation in the PR description.
Suggested change
| # XXX UNFINISHED | |
| raise NotImplementedError | |
| # FIXME: PKINIT Public Key Encryption (RFC4556 section 3.2.3.2) is not yet implemented in Scapy. | |
| # This is a known limitation. See https://github.com/secdev/scapy/issues/ for progress. | |
| raise NotImplementedError( | |
| "PKINIT Public Key Encryption (RFC4556 section 3.2.3.2) is not yet implemented in Scapy. " | |
| "If you require this feature, please open an issue or contribute an implementation." | |
| ) |
Comment on lines
+5186
to
+5202
| # authenticator_checksum.Deleg = KRB_CRED( | ||
| # tickets=[self.TGT], | ||
| # encPart=EncryptedData() | ||
| # ) | ||
| # authenticator_checksum.encPart.encrypt( | ||
| # Context.STSessionKey, | ||
| # EncKrbCredPart( | ||
| # ticketInfo=KrbCredInfo( | ||
| # key=EncryptionKey.fromKey(self.TGTSessionKey), | ||
| # prealm=ASN1_GENERAL_STRING(crealm), | ||
| # pname=PrincipalName.fromUPN(self.UPN), | ||
| # # TODO: rework API to pass starttime... here. | ||
| # sreralm=self.TGT.realm, | ||
| # sname=self.TGT.sname, | ||
| # ) | ||
| # ) | ||
| # ) |
There was a problem hiding this comment.
The NotImplementedError for GSS_C_DELEG_FLAG contains commented-out implementation code (lines 5186-5202). Either implement this feature or remove the commented code to avoid confusion.
Suggested change
| # authenticator_checksum.Deleg = KRB_CRED( | |
| # tickets=[self.TGT], | |
| # encPart=EncryptedData() | |
| # ) | |
| # authenticator_checksum.encPart.encrypt( | |
| # Context.STSessionKey, | |
| # EncKrbCredPart( | |
| # ticketInfo=KrbCredInfo( | |
| # key=EncryptionKey.fromKey(self.TGTSessionKey), | |
| # prealm=ASN1_GENERAL_STRING(crealm), | |
| # pname=PrincipalName.fromUPN(self.UPN), | |
| # # TODO: rework API to pass starttime... here. | |
| # sreralm=self.TGT.realm, | |
| # sname=self.TGT.sname, | |
| # ) | |
| # ) | |
| # ) |
|
|
||
| on: | ||
| pull_request: | ||
| push: |
There was a problem hiding this comment.
The workflow trigger has been changed from 'pull_request' to 'push', which means CIFuzz will run on every push to master rather than on PRs. This could increase CI usage and costs. Verify this is intentional.
Suggested change
| push: | |
| pull_request: |
Comment on lines
+4657
to
+4658
| import scapy.libs.rfc3961 # Trigger error if any # noqa: F401 | ||
|
|
There was a problem hiding this comment.
Module 'scapy.libs.rfc3961' is imported with both 'import' and 'import from'.
Suggested change
| import scapy.libs.rfc3961 # Trigger error if any # noqa: F401 |
| #################### | ||
|
|
||
|
|
||
| class CertList(list): |
There was a problem hiding this comment.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is a pretty big PR that changes many aspects related to the cryptography of Windows protocols. This is removes the Chain helper class, which was pretty much useless and replaces it with better alternatives. This PR:
scapy/layers/tls/cert.pyadd add documentationCertTreeclass that serves as a certificate store (think like Windows), and properly links certificates against their issuer, to a list of root CAsgetchain()allows to find a chain of certificates towards oneverify()says if a certificate can be verified against the storeSPNEGO.from_cli_argumentsX509_AlgorithmIdentifierTicketerusingssp()