pr review

Author: jesusprubio

protocol/sip/helper.go

@@ -20,28 +20,23 @@ import (
 	"net"
 	"strconv"
 	"strings"
+	"time"
 
 	"github.com/emiago/sipgo/sip"
 	"github.com/google/uuid"
 	"github.com/vulncheck-oss/go-exploit/output"
 	"github.com/vulncheck-oss/go-exploit/protocol"
+	"github.com/vulncheck-oss/go-exploit/random"
 )
 
 const (
 	// SIP over UDP message size should be lower than 1300 bytes.
 	// https://datatracker.ietf.org/doc/html/rfc3261#section-18.1.1
-	UDPMessageLength         = 1300
-	errMsgRequiredParam      = "Required parameter: %s"
-	DefaultMaxForwards       = 70
-	DefaultCSeq              = 1
-	DefaultInviteContentType = "application/sdp"
-	DefaultInviteBodyContent = `v=0
-o=caller 123456 654321 IN IP4 192.168.1.100
-s=-
-c=IN IP4 192.168.1.100
-t=0 0
-m=audio 5004 RTP/AVP 0
-a=rtpmap:0 PCMU/8000`
+	UDPMessageLength          = 1300
+	errMsgRequiredParam       = "Required parameter: %s"
+	DefaultMaxForwards        = 70
+	DefaultCSeq               = 1
+	DefaultInviteContentType  = "application/sdp"
 	DefaultMessageContentType = "text/plain"
 	DefaultMessageBodyContent = "Hello, this is a test message."
 	DefaultInfoContentType    = "application/dtmf-relay"
@@ -50,26 +45,6 @@ a=rtpmap:0 PCMU/8000`
 	DefaultRackCSeq           = 1
 	DefaultRackInviteCSeq     = 314159
 	ContentTypePidf           = "application/pidf+xml"
-	DefaultPublishBodyContent = `<?xml version="1.0" encoding="UTF-8"?>
-<presence xmlns="urn:ietf:params:xml:ns:pidf"
-          entity="sip:[email protected]:5060">
-  <tuple id="sg89ae">
-    <status>
-      <basic>open</basic>
-    </status>
-  </tuple>
-</presence>
-`
-	DefaultNotifyBodyContent = `<?xml version="1.0"?>
-<presence xmlns="urn:ietf:params:xml:ns:pidf"
-  <tuple id="sg89ae">
-    <status>
-      <basic>open</basic>
-    </status>
-    <contact>sip:[email protected]</contact>
-    <timestamp>2023-06-15T14:23:00Z</timestamp>
-  </tuple>
-</presence>`
 	// Even though the specification requires "\r\n", it is common to see
 	// implementations using "\n" as a line ending.
 	// https://datatracker.ietf.org/doc/html/rfc3261#section-7.5
@@ -301,7 +276,7 @@ func NewSipRequest(
 	}
 	callID, err := uuid.NewRandom()
 	if err != nil {
-		output.PrintfFrameworkError("Generating UUID: %s", err.Error())
+		output.PrintfFrameworkError("Could not generate UUID: %s", err.Error())
 
 		return nil, false
 	}
@@ -491,19 +466,103 @@ func AddMethodHeaders(req *sip.Request, method sip.RequestMethod) bool {
 func NewRequestBody(method sip.RequestMethod) (string, string) {
 	switch method {
 	case sip.INVITE:
-		return DefaultInviteBodyContent, DefaultInviteContentType
+		return NewDefaultInviteBody("", "", ""), DefaultInviteContentType
 	case sip.MESSAGE:
 		return DefaultMessageBodyContent, DefaultMessageContentType
 	case sip.INFO:
 		return DefaultInfoBodyContent, DefaultInfoContentType
 	case sip.PUBLISH:
-		return DefaultPublishBodyContent, ContentTypePidf
+		return NewDefaultPublishBody("", "", ""), ContentTypePidf
 	case sip.NOTIFY:
-		return DefaultNotifyBodyContent, ContentTypePidf
+		return NewDefaultNotifyBody("", "", "", ""), ContentTypePidf
 	case sip.ACK, sip.CANCEL, sip.BYE, sip.REGISTER, sip.OPTIONS, sip.SUBSCRIBE, sip.REFER, sip.PRACK, sip.UPDATE:
 
 		return "", ""
 	}
 
 	return "", ""
 }
+
+// Returns a default body for an INVITE request.
+//
+// Default parameters:
+// - host: "randomIPv4()".
+// - sessid: random digits.
+// - sessver: random digits.
+func NewDefaultInviteBody(host, sessid, sessver string) string {
+	if host == "" {
+		host = random.RandIPv4().String()
+	}
+	if sessid == "" {
+		sessid = random.RandDigits(6)
+	}
+	if sessver == "" {
+		sessver = random.RandDigits(6)
+	}
+	return fmt.Sprintf(`v=0
+o=caller %s %s IN IP4 %s
+s=-
+c=IN IP4 %s
+t=0 0
+m=audio 5004 RTP/AVP 0
+a=rtpmap:0 PCMU/8000`, sessid, sessver, host, host)
+}
+
+// Returns a default body for a PUBLISH request.
+//
+// Default parameters:
+// - id: random letters.
+// - status: "open".
+// - entity: "sip:bob@randomIPv4():5060".
+func NewDefaultPublishBody(id, status, entity string) string {
+	if id == "" {
+		id = random.RandLetters(6)
+	}
+	if status == "" {
+		status = "open"
+	}
+	if entity == "" {
+		entity = fmt.Sprintf("sip:bob@%s:5060", random.RandIPv4())
+	}
+	return fmt.Sprintf(`<?xml version="1.0" encoding="UTF-8"?>
+<presence xmlns="urn:ietf:params:xml:ns:pidf"
+					entity="%s">
+	<tuple id="%s">
+		<status>
+			<basic>%s</basic>
+		</status>
+	</tuple>
+</presence>`, entity, id, status)
+}
+
+// Returns a default body for a NOTIFY request.
+//
+// Default parameters:
+// - id: random letters.
+// - status: "open".
+// - contact: "sip:bob@randomIPv4():5060".
+// - ts: current UTC time in RFC 3339 format.
+func NewDefaultNotifyBody(id, status, contact, ts string) string {
+	if id == "" {
+		id = random.RandLetters(6)
+	}
+	if status == "" {
+		status = "open"
+	}
+	if contact == "" {
+		contact = fmt.Sprintf("sip:bob@%s:5060", random.RandIPv4())
+	}
+	if ts == "" {
+		ts = time.Now().UTC().Format(time.RFC3339)
+	}
+	return fmt.Sprintf(`<?xml version="1.0"?>
+<presence xmlns="urn:ietf:params:xml:ns:pidf">
+	<tuple id="%s">
+		<status>
+			<basic>%s</basic>
+		</status>
+		<contact>%s</contact>
+		<timestamp>%s</timestamp>
+	</tuple>
+</presence>`, id, status, contact, ts)
+}

protocol/sip/helper_test.go

@@ -305,7 +305,7 @@ func TestNewSipRequest(t *testing.T) {
 		if req.Body() == nil {
 			t.Fatal("got 'nil' body")
 		}
-		expectedBody := "o=caller 123456 654321 IN IP4 192.168.1.100"
+		expectedBody := "o=caller"
 		if !strings.Contains(string(req.Body()), expectedBody) {
 			t.Fatalf("got body %s, want %s", req.Body(), expectedBody)
 		}
@@ -652,7 +652,7 @@ func TestNewRequestBody(t *testing.T) {
 		{
 			"INVITE",
 			sip.INVITE,
-			"o=caller 123456 654321 IN IP4 192.168.1.100",
+			"o=caller",
 			"application/sdp",
 		},
 		{
@@ -699,3 +699,113 @@ func TestNewRequestBody(t *testing.T) {
 		})
 	}
 }
+
+func TestNewDefaultInviteBody(t *testing.T) {
+	t.Run("returns a valid body", func(t *testing.T) {
+		body := NewDefaultInviteBody("", "", "")
+		if body == "" {
+			t.Fatal("got empty")
+		}
+		if !strings.Contains(body, "o=caller") {
+			t.Fatalf("got %s, want o=caller", body)
+		}
+		if !strings.Contains(body, "s=-") {
+			t.Fatalf("got %s, want s=-", body)
+		}
+		if !strings.Contains(body, "c=IN IP4") {
+			t.Fatalf("got %s, want c=IN IP4", body)
+		}
+		expected := `t=0 0
+m=audio 5004 RTP/AVP 0
+a=rtpmap:0 PCMU/8000`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+	})
+	t.Run("returns a valid body with custom parameters", func(t *testing.T) {
+		body := NewDefaultInviteBody("host-0", "sess-0", "sessver-0")
+		expected := `v=0
+o=caller sess-0 sessver-0 IN IP4 host-0
+s=-
+c=IN IP4 host-0
+t=0 0
+m=audio 5004 RTP/AVP 0
+a=rtpmap:0 PCMU/8000`
+		if body != expected {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+	})
+}
+
+func TestNewDefaultPublishBody(t *testing.T) {
+	t.Run("returns a valid body", func(t *testing.T) {
+		body := NewDefaultPublishBody("", "", "")
+		if body == "" {
+			t.Fatal("got empty")
+		}
+		expected := `<?xml version="1.0" encoding="UTF-8"?>
+<presence xmlns="urn:ietf:params:xml:ns:pidf"`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+		if !strings.Contains(body, "<tuple id=") {
+			t.Fatalf("got %s, want <tuple id=", body)
+		}
+		expected = `<status>
+			<basic>open</basic>
+		</status>
+	</tuple>
+</presence>`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+	})
+	t.Run("returns a valid body with custom parameters", func(t *testing.T) {
+		body := NewDefaultPublishBody("id-0", "status-0", "entity-0")
+		expected := `<?xml version="1.0" encoding="UTF-8"?>
+<presence xmlns="urn:ietf:params:xml:ns:pidf"
+					entity="entity-0">
+	<tuple id="id-0">
+		<status>
+			<basic>status-0</basic>
+		</status>
+	</tuple>
+</presence>`
+		if body != expected {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+	})
+}
+
+func TestNewDefaultNotifyBody(t *testing.T) {
+	t.Run("returns a valid body", func(t *testing.T) {
+		body := NewDefaultNotifyBody("", "", "", "")
+		if body == "" {
+			t.Fatal("got empty")
+		}
+		expected := `<?xml version="1.0"?>
+<presence xmlns="urn:ietf:params:xml:ns:pidf">
+	<tuple id="`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+		expected = `<status>
+			<basic>open</basic>
+		</status>
+		<contact>sip:bob@`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+		expected = `</contact>
+		<timestamp>`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+		expected = `</timestamp>
+	</tuple>
+</presence>`
+		if !strings.Contains(body, expected) {
+			t.Fatalf("got %s, want %s", body, expected)
+		}
+	})
+}

random/random.go

@@ -3,6 +3,7 @@ package random
 import (
 	"crypto/rand"
 	"math/big"
+	"net"
 	"strings"
 
 	"github.com/vulncheck-oss/go-exploit/output"
@@ -140,3 +141,22 @@ var CommonTLDs = []string{
 	"org",
 	"net",
 }
+
+// RandIPv4 generates a random IPv4 address.
+func RandIPv4() net.IP {
+	return net.IPv4(
+		byte(RandIntRange(1, 256)),
+		byte(RandIntRange(1, 256)),
+		byte(RandIntRange(1, 256)),
+		byte(RandIntRange(1, 256)),
+	)
+}
+
+// RandIPv6 generates a random IPv6 address.
+func RandIPv6() net.IP {
+	ip := make(net.IP, net.IPv6len)
+	for i := range net.IPv6len {
+		ip[i] = byte(RandIntRange(1, 256))
+	}
+	return ip
+}

random/random_test.go

@@ -1,6 +1,7 @@
 package random
 
 import (
+	"net"
 	"strings"
 	"testing"
 )
@@ -165,3 +166,29 @@ func Test_RandEmail(t *testing.T) {
 		}
 	}
 }
+
+func TestRandIPv4(t *testing.T) {
+	for range 100 {
+		r := RandIPv4()
+		parsed := net.ParseIP(r.String())
+		if parsed == nil {
+			t.Error("Generated IP is nil: " + r.String())
+		}
+		if parsed.To4() == nil {
+			t.Error("Generated IP is not a valid IPv4 address: " + r.String())
+		}
+	}
+}
+
+func TestRandIPv6(t *testing.T) {
+	for range 100 {
+		r := RandIPv6()
+		parsed := net.ParseIP(r.String())
+		if parsed == nil {
+			t.Error("Generated IP is nil: " + r.String())
+		}
+		if parsed.To4() != nil {
+			t.Error("Generated IP is not a valid IPv6 address: " + r.String())
+		}
+	}
+}