I install the module scapy for python 2.6 and when I import this module I get this warning:
WARNING: can't import layer ipsec: 'module' object has no attribute 'IPPROTO_AH'
I looked in the socket attributes and i didnt find the 'IPPROTO_AH' attribute In addition, i tried to edit the module ipsec.py and find way to replace IPPROTO_AH with something else but then i got WARNING WITH IPPROTO_ESP !
I tried edit lines in ipsec.py such as:
overload_fields = {
IP: {'proto': IPTest},
IPv6: {'nh': IPTest},
IPv6ExtHdrHopByHop: {'nh': socket.IPPROTO_AH},
IPv6ExtHdrDestOpt: {'nh': socket.IPPROTO_AH},
IPv6ExtHdrRouting: {'nh': socket.IPPROTO_AH},}
bind_layers(IP, AH, proto=socket.IPPROTO_AH)
bind_layers(IPv6, AH, nh=socket.IPPROTO_AH)
how can i fix this ?
I think I have it... it's not a clean solution, but it will do the trick. I've seen it in other ScaPy files...
All you need to do is edit ipsec.py, look for the line import socket, and just under it, add these conditionals:
if not hasattr(socket, "IPPROTO_ESP"):
socket.IPPROTO_ESP = 50
if not hasattr(socket, "IPPROTO_AH"):
socket.IPPROTO_AH = 51
Reference: [IETF.DataTracker]: (RFC 2292) Advanced Sockets API for IPv6 - IPv6 Next Header Values.
In Ubuntu, their definitions can typically be found in /usr/include/netinet/in.h (or /usr/include/linux/in.h).
As I mentioned in one of the comments, I tested using Python 2.7.10 on a variety of OSes (Linuxes, Sol, AIX, HP-UX, OSX) and the values seem to be consistent.
On Win, they don't exist. Seems like MS removed them from WinSock2.h between (VStudio) v2005 and v2010, but they are back (same values) since v2012 (ws2def.h - for XP and above).
In Python 3(.8), they seem to be present (checked on Nix (Ubuntu) and Win).