POC: Pure Python NFS client

[twiggler]

This is an experimental NFS V3 client which supports:

• Querying of PortMapper to discover ports of programs
• Mounting of a root directory
• Reading of directory entries
• Reading (downloading) of a file.
• Authentication using AuthNull & AuthUnix

A demo is also included.
Some coarse tests are included.

The code is considered POC quality and thus a bit rough around the edges.

References:

• https://datatracker.ietf.org/doc/html/rfc1057
• https://datatracker.ietf.org/doc/html/rfc1813
• https://datatracker.ietf.org/doc/html/rfc1014

[codecov]

Codecov Report

Attention: Patch coverage is 82.41135% with 124 lines in your changes missing coverage. Please review.

Project coverage is 78.13%. Comparing base (a0a8c3e) to head (635fc45).
Report is 1 commits behind head on main.

Files with missing lines	Patch %	Lines
dissect/target/helpers/nfs/demo.py	0.00%	44 Missing ⚠️
dissect/target/helpers/sunrpc/serializer.py	85.09%	31 Missing ⚠️
dissect/target/helpers/nfs/client.py	69.09%	17 Missing ⚠️
dissect/target/helpers/nfs/serializer.py	84.26%	14 Missing ⚠️
dissect/target/helpers/sunrpc/client.py	86.53%	14 Missing ⚠️
dissect/target/helpers/nfs/nfs3.py	98.44%	2 Missing ⚠️
dissect/target/helpers/sunrpc/sunrpc.py	97.36%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #997      +/-   ##
==========================================
+ Coverage   78.02%   78.13%   +0.10%     
==========================================
  Files         328      335       +7     
  Lines       28919    29624     +705     
==========================================
+ Hits        22565    23146     +581     
- Misses       6354     6478     +124     

Flag	Coverage Δ
unittests	78.13% <82.41%> (+0.10%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[Miauwkeru]

Maybe just raising an exception would be better, so we have a consistent output of the deserialize function?

[twiggler]

I think I keep this as-is to closely follow the rfc here, and then throw an exception in a MountClient (to be created), which can be built on top of the sunrpc.Client. Or perhaps I add a mount method to the NfsClient, which is simpler.

I will add a comment in the demo

[Miauwkeru]

Maybe it is a better idea to have something like this:

class Serializable(ABC):
    @abstractmethod
    def serialize(self) -> bytes:
        pass

@dataclass
class CookieVerf3(Serializer):

    def serialize(self) -> bytes:
        ... # Do the serialize code here

Then the serialization can be done in the dataclasses instead of multiple different serializers.

[twiggler]

(see reply on following comment)

[Miauwkeru]

Might it be an idea to do something like this:

# Reference to self
from typing_extensions import Self


class Deserializable(ABC):
    @classmethod
    def from_bytes(cls, payload: bytes) -> Self:
        return self.deserialize(io.BytesIO(payload))

    @abstractmethod
    @classmethod
    def deserialize(cls, _: io.BytesIO) -> Self:
        pass

    ...

@dataclass
class FileAttributes3(Deserializer):
    def deserialize(cls, payload: io.BytesIO) -> Self:
        ...
        return cls(...)

All the _read_* functions would need to be converted to a classmethod to to use it in the deserialize functions.

However, it would bring the serialization/deserialization closer to the data it actually tries to deserialize/serialize which i feel makes more sense.

[twiggler]

Generally speaking, I think it is not a bad idea to treat serialization to a specific format as a separate concern, especially since the cost seems to be low.

Related, if we make deserializable a class method then I wonder how we can for example deserialize the params and result child members in the Message(Serializer). I don´t think python has support for reifying the type parameters at run time, and hence we would not know which deserializer to use for fields of generic dataclasses .

Finally coupling the data to the deserializer makes it harder to compose parsers.
I favored to keep things simple, but for example the _read_optional and _read_var_length could be made more flexible by returning parsers themselves if so required in later stories:

_read_var_length(self, payload: io.BytesIO, deserializer: Deserializer[ElementType]) -> Deserializer[list[ElementType]]:,

_read_optional(self, payload: io.BytesIO, deserializer: Deserializer[ElementType]) -> Deserializer[ElementType | None]

, so that they can be chained futher. Another example is a or combinator.
When we couple the data to the deserialization, we shut this down.

[twiggler]

Discussed with @Miauwkeru IRL:

His proposal is to use polymorphism and replace fields which are dependent on a type parameter with Deserializable, as in the following:

X = TypeVar("Verifier")


class Deserializable():
    @classmethod
    def deserialize(cls, data: bytes) -> Deserializable:
        pass


@dataclass
class Z(Deserializable):
    @classmethod
    def deserialize(cls, data: bytes) -> Z:
        return cls(s="Roel", i=5)

    s: str
    i: int


@dataclass
class K(Generic[X], Deserializable):
    z: Deserializable
    a: X


z = Z(s="Roel", i=5)

# Access through either Generic or Deserializable 
k = K[Z](z=z, a=z)

k.z.i   # type error (Any), access through super class
z2: Z = k.z, z.i  # ok, but tedious
cast(Z, k.a).i  # ok, but tedious

k.a.i   # ok, access through field dependent on type parameter

The downside to this approach is that we lose type inference if we access z through k.z.i, compared to the approach with generics, as in k.a.i.

This type inference is for example used in Client::readdirplus, where results gets correctly inferred to be ReadDirPlusResult3 | NfsStat.

It needs to be carefully weighed if the strong locality of Serializer with its data offsets the loss of type inference.
Besided that, shutting down of composition of deserializers is also a concern.

[Miauwkeru]

Reduces indentation a bit

Suggested change

	if messageType == MessageType.REPLY:
	replyStat = self._read_enum(payload, ReplyStat)
	if replyStat == ReplyStat.MSG_ACCEPTED:
	reply = self._read_accepted_reply(payload)
	elif replyStat == ReplyStat.MSG_DENIED:
	reply = self._read_rejected_reply(payload)
	return sunrpc.Message(xid, reply)
	raise NotImplementedError("Only REPLY messages are deserializable")
	if messageType != MessageType.REPLY:
	raise NotImplementedError("Only REPLY messages are deserializable")
	replyStat = self._read_enum(payload, ReplyStat)
	if replyStat == ReplyStat.MSG_ACCEPTED:
	reply = self._read_accepted_reply(payload)
	elif replyStat == ReplyStat.MSG_DENIED:
	reply = self._read_rejected_reply(payload)
	return sunrpc.Message(xid, reply)

[Miauwkeru]

An idea to remove the MNT3 prefix for less visual noise?

[Miauwkeru]

A suggestion for a bit of additional usability, would it be an idea to also make this a context manager or create a context manager for this class?

that will allow you to do:

with Client(...):
   ...

and will automatically clean up the connections it makes.

[twiggler]

Yeah thought about it but it did not make the cut.

Probably more pressing than I originally thought, given that the demo was eating up ports

[Miauwkeru]

snake_case

[Miauwkeru]

What do the numbers mean?

[Miauwkeru]

just to avoid any weird shenanigans, maybe still a good idea to put reply as None above the conditions. So it is at least defined.

[Miauwkeru]

the annotations allow you to not use the "Client" but Client instead, if i r

Suggested change

	) -> "Client":
	) -> Client:

[Miauwkeru]

Suggested change

	def connect_port_mapper(cls, hostname: str) -> "Client":
	def connect_port_mapper(cls, hostname: str) -> Client:

[Miauwkeru]

snake_case

[Miauwkeru]

snake case

[Miauwkeru]

snake_case

[Miauwkeru]

snake_case

[Miauwkeru]

Suggested change

	def serialize(self, i: int) -> bytes:
	return i.to_bytes(length=4, byteorder="big", signed=True)
	def deserialize(self, payload: io.BytesIO) -> int:
	return int.from_bytes(payload.read(4), byteorder="big", signed=True)
	class UInt32Serializer(Serializer[int], Deserializer[int]):
	def serialize(self, i: int) -> bytes:
	return i.to_bytes(length=4, byteorder="big", signed=False)
	def deserialize(self, payload: io.BytesIO) -> int:
	return int.from_bytes(payload.read(4), byteorder="big", signed=False)
	_signed = True
	def serialize(self, i: int) -> bytes:
	return i.to_bytes(length=4, byteorder="big", signed=self._signed)
	def deserialize(self, payload: io.BytesIO) -> int:
	return int.from_bytes(payload.read(4), byteorder="big", signed=self._signed)
	class UInt32Serializer(Int32Serializer):
	_signed = False

wouldn't something like this work?

[Miauwkeru]

Maybe an idea to add bound for every type var?

[twiggler]

On second thought, there is no bound on any of the other TypeVars

[Miauwkeru]

Suggested change

	from contextlib import AbstractContextManager
	from types import TracebackType
	from typing import Generic, Iterator, NamedTuple, TypeVar
	from dissect.target.helpers.nfs.nfs3 import (
	CookieVerf3,
	EntryPlus3,
	FileAttributes3,
	FileHandle3,
	Nfs3Stat,
	Read3args,
	ReadDirPlusParams,
	ReadDirPlusProc,
	ReadFileProc,
	)
	from dissect.target.helpers.nfs.serializer import (
	Read3ArgsSerializer,
	Read3ResultDeserializer,
	ReadDirPlusParamsSerializer,
	ReadDirPlusResultDeserializer,
	)
	from dissect.target.helpers.sunrpc.client import AuthScheme
	from dissect.target.helpers.sunrpc.client import Client as SunRpcClient
	from contextlib import AbstractContextManager
	from typing import TYPE_CHECKING, Generic, Iterator, NamedTuple, TypeVar
	from dissect.target.helpers.nfs.nfs3 import (
	CookieVerf3,
	EntryPlus3,
	FileAttributes3,
	FileHandle3,
	Nfs3Stat,
	Read3args,
	ReadDirPlusParams,
	ReadDirPlusProc,
	ReadFileProc,
	)
	from dissect.target.helpers.nfs.serializer import (
	Read3ArgsSerializer,
	Read3ResultDeserializer,
	ReadDirPlusParamsSerializer,
	ReadDirPlusResultDeserializer,
	)
	from dissect.target.helpers.sunrpc.client import AuthScheme
	from dissect.target.helpers.sunrpc.client import Client as SunRpcClient
	if TYPE_CHECKING:
	from types import TracebackType

[Miauwkeru]

Suggested change

	import random
	import socket
	from contextlib import AbstractContextManager
	from dataclasses import dataclass
	from types import TracebackType
	from typing import Generic, TypeVar
	from dissect.target.helpers.nfs.nfs3 import ProcedureDescriptor
	from dissect.target.helpers.sunrpc import sunrpc
	from dissect.target.helpers.sunrpc.serializer import (
	AuthNullSerializer,
	AuthSerializer,
	AuthUnixSerializer,
	MessageSerializer,
	XdrDeserializer,
	XdrSerializer,
	)
	import random
	import socket
	from contextlib import AbstractContextManager
	from dataclasses import dataclass
	from typing import TYPE_CHECKING, Generic, TypeVar
	from dissect.target.helpers.sunrpc import sunrpc
	from dissect.target.helpers.sunrpc.serializer import (
	AuthNullSerializer,
	AuthSerializer,
	AuthUnixSerializer,
	MessageSerializer,
	XdrDeserializer,
	XdrSerializer,
	)
	if TYPE_CHECKING:
	from types import TracebackType
	from dissect.target.helpers.nfs.nfs3 import ProcedureDescriptor

[Miauwkeru]

Suggested change

	from typing import Generic, Type, TypeVar
	from typing import Generic, TypeVar

[Miauwkeru]

Suggested change

	def _read_enum(self, payload: io.BytesIO, enum: Type[EnumType]) -> EnumType:
	def _read_enum(self, payload: io.BytesIO, enum: type[EnumType]) -> EnumType:

You don't need to use Type, as type does the same since python3.9

[Miauwkeru]

the else is technically not needed, only saying this due to indentation allergies