青海民族大学5.2.1p版使用latest-pppoe.py的问题

[sobrietie]

大家好！ PC端和路由器上都是heart response failed。 尝试了#82 中ly0大神提供， JerryChaox 同学测试成功的脚本，还是不行，不知道该怎么办了。附上在路由器上debug模式下产生的log。 另外还有个可能很白痴的问题，就是一直没明白为啥p版的config部分没有提供用户名和密码。 drcom_client.log.txt

[mchome]

• 第一个问题： 尝试一下

  
  #!/usr/bin/env python
  # -*- coding: utf-8 -*-
  import socket
  import struct
  import time
  import sys
  import random
  import os
  import hashlib

CONFIG

server = '219.247.255.18' pppoe_flag = '\x27' keep_alive2_flag = '\xDC'

CONFIG_END

host_ip = server IS_TEST = True CONF = "/etc/drcom.conf" DEBUG = False #log saves to file if IS_TEST: CONF = '' DEBUG = False LOG_PATH = 'drcom_client.log'

def log(*args, *kwargs): s = ' '.join(args) if 'pkt' in kwargs and DEBUG == True: s += '\n\tpacket:' + kwargs['pkt'].encode('hex') print '[] ', s if DEBUG: with open(LOG_PATH,'ab') as f: try: f.write(s) f.write('\n') except: f.write('FUCK WINDOWS' + '\n') def dump(n): s = '%x' % n if len(s) & 1: s = '0' + s return s.decode('hex')

def gbk2utf8(string): try: import platform if platform.uname()[0] != 'Windows': return string.decode('gb2312').encode().decode() else: return string.decode('gb2312') except Exception as e: return 'You have witnessed too much...'

def gen_crc(data, encrypt_type): DRCOM_DIAL_EXT_PROTO_CRC_INIT = 20000711 ret = '' if encrypt_type == 0:

加密方式无

    return struct.pack('<I',DRCOM_DIAL_EXT_PROTO_CRC_INIT) + struct.pack('<I',126), False
elif encrypt_type == 1:
    # 加密方式为 md5
    foo = hashlib.md5(data).digest()
    ret += foo[2]
    ret += foo[3]
    ret += foo[8]
    ret += foo[9]
    ret += foo[5]
    ret += foo[6]
    ret += foo[13]
    ret += foo[14]
    return ret, True
elif encrypt_type == 2:
    # md4
    foo = hashlib.new('md4', data).digest()
    ret += foo[1]
    ret += foo[2]
    ret += foo[8]
    ret += foo[9]
    ret += foo[4]
    ret += foo[5]
    ret += foo[11]
    ret += foo[12]
    return ret, True
elif encrypt_type == 3:
    # sha1
    foo = hashlib.sha1(data).digest()
    ret += foo[2]
    ret += foo[3]
    ret += foo[9]
    ret += foo[10]
    ret += foo[5]
    ret += foo[6]
    ret += foo[15]
    ret += foo[16]
    return ret, True

class Socket: def init(self, server, port=61440): self.s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)

self.s.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)

    self.s.bind(("0.0.0.0", 61440))
    log("open local port:" + str(port))
    log("DEBUG MODE:"+ str(DEBUG))
    self.server = server
    self.port = port
    self.s.settimeout(3)

def send(self, data):
    self.s.sendto(data, (self.server, self.port))

def recv(self):
    while True:
        data, address = self.s.recvfrom(1024)
        if data[0] == '\x4d':
            log('received message packet, dropped. message: ' + gbk2utf8(data[4:]))
            continue
        return data, address

def get_socket(self):
    return self.s

def sendto(self, data, *args):
    self.send(data)

def recvfrom(self, *args):
    return self.recv()

class PPPOEHeartbeat: def init(self, num=1): self.count = num # 计数器 def _make_challenge(self): data = '\x07' data += chr(self.count) data += '\x08\x00\x01\x00' data+= '\x00\x00' return data

def _DrcomCRC32(self, data, init = 0):
  ret = init
  for i in range(len(data))[::4]:
      ret ^= struct.unpack('<I', data[i:i+4])[0]
      ret &= 0xFFFFFFFF
  return ret

def _make_heartbeat(self, sip, challenge_seed, first=False):
    # DrcomDialExtProtoHeader - 5 bytes
    data = '\x07' # code
    data += chr(self.count) # id
    data += '\x60\x00' # length
    data += '\x03' # type
    data += '\x00' # uid length
    data += '\x00\x00\x00\x00\x00\x00' # mac
    data += sip # AuthHostIP
    if first:
        data += '\x00\x62\x00' + pppoe_flag # 非第一次则是 data += '\x00\x62\x00\x14'
    else:
        data += '\x00\x63\x00' + pppoe_flag
    data += challenge_seed # Challenge Seed
    data += struct.pack('I',20000711) # DRCOM_DIAL_EXT_PROTO_CRC_INIT
    data += struct.pack('I',126)
    crc = (self._DrcomCRC32(data) * 19680126) & 0xFFFFFFFF
    data = data[:-8] + struct.pack("I", crc) + '\x00\x00\x00\x00'
    # - DrcomDialExtProtoHeader end -
    data += '\x00'*16 # ip1
    data += '\x00'*16 # ip2
    data += '\x00'*16 # ip3
    data += '\x00'*16 # ip4
    return data

def send(self, s):
    while True:
        #1. challenge
        data = self._make_challenge()
        log('pppoe: send challenge request', pkt=data)
        s.send(data)
        data, address = s.recv()
        log('pppoe: received challenge response', pkt=data)

        self.count += 1
        self.count %= 0xFF

        #2. heartbeat
        seed = data[8:12]
        sip = data[12:16]
        if self.count != 2 and self.count != 1:
            data = self._make_heartbeat(sip=sip, challenge_seed=seed)
        else:
            data = self._make_heartbeat(sip=sip, challenge_seed=seed, first=True)
        log('pppoe: send heartbeat request', pkt=data)
        s.send(data)
        try:
            data, address = s.recv()
            log('pppoe: received heartbeat response', pkt=data)
            break
        except:
            log('pppoe: heartbeat response failed, retry')
            log('pppoe: reset idx to 0x01')
            self.count = 1
            continue

        self.count += 1
        self.count %= 0xFF

def keep_alive_package_builder(number,random,tail,type=1,first=False): data = '\x07'+ chr(number) + '\x28\x00\x0b' + chr(type) if first : data += '\x0f\x27' else: data += keep_alive2_flag + '\x02' data += '\x2f\x12' + '\x00' * 6 data += tail

data += '\x00' * 4

#data += struct.pack("!H",0xdc02)
if type == 3:
    # print('type == 3')
    foo = ''.join([chr(int(i)) for i in '0.0.0.0'.split('.')]) # host_ip
    #CRC
    # edited on 2014/5/12, filled zeros to checksum
    # crc = packet_CRC(data+foo)
    encrypt_mode = struct.unpack('<I', tail)[0] & 3
    crc, val = gen_crc(data, encrypt_mode)
    #crc = '\x00' * 4
    #data += struct.pack("!I",crc) + foo + '\x00' * 8
    data += crc + foo + '\x00' * 8
else: #packet type = 1
    data += '\x00' * 20
return data

def keep_alive2(s, pppoe): tail = '' packet = '' svr = server

ran = random.randint(0,0xFFFF)
ran += random.randint(1,10)
# 2014/10/15 add by latyas, maybe svr sends back a file packet
svr_num = 0
packet = keep_alive_package_builder(svr_num,dump(ran),'\x00'*4,1,True)
while True:
    log('[keep-alive2] send1', pkt=packet)
    s.sendto(packet, (svr, 61440))
    data, address = s.recvfrom(1024)
    if data[0] == '\x07' and data[2] == '\x28':
        break
    elif data[0] == '\x07' and data[2] == '\x10':
        log('[keep-alive2] recv file, resending..')
        svr_num = svr_num + 1
        packet = keep_alive_package_builder(svr_num,dump(ran),'\x00'*4,svr_num,False)
    else:
        log('[keep-alive2] recv1/unexpected', pkt=data)
log('[keep-alive2] recv1', pkt=data)

ran += random.randint(1,10)
packet = keep_alive_package_builder(svr_num, dump(ran),'\x00'*4,1,False)
log('[keep-alive2] send2', pkt=packet)
s.sendto(packet, (svr, 61440))
while True:
    data, address = s.recvfrom(1024)
    if data[0] == '\x07':
        svr_num = svr_num + 1
        break
    else:
        log('[keep-alive2] recv2/unexpected', pkt=data)
log('[keep-alive2] recv2', pkt=data)
tail = data[16:20]

ran += random.randint(1,10)
packet = keep_alive_package_builder(svr_num,dump(ran),tail,3,False)
log('[keep-alive2] send3', pkt=packet)
s.sendto(packet, (svr, 61440))
while True:
    data, address = s.recvfrom(1024)
    if data[0] == '\x07':
        svr_num = svr_num + 1
        break
    else:
        log('[keep-alive2] recv3/unexpected', pkt=data)
log('[keep-alive2] recv3', pkt=data)
tail = data[16:20]
log("[keep-alive2] keep-alive2 loop was in daemon.")

i = svr_num
while True:
    try:
        ran += random.randint(1,10)
        packet = keep_alive_package_builder(i,dump(ran),tail,1,False)
        log('[keep_alive2] send',str(i), pkt=packet)
        s.sendto(packet, (svr, 61440))
        data, address = s.recvfrom(1024)
        log('[keep_alive2] recv', pkt=data)
        tail = data[16:20]

        ran += random.randint(1,10)
        packet = keep_alive_package_builder(i+1,dump(ran),tail,3,False)
        s.sendto(packet, (svr, 61440))
        log('[keep_alive2] send',str(i+1), pkt=packet)
        data, address = s.recvfrom(1024)
        log('[keep_alive2] recv', pkt=data)
        tail = data[16:20]
        i = (i+2) % 0xFF
        time.sleep(10)
        #send pppoe heartbeat once
        pppoe.send(s)
    except:
        pass

def daemon(): with open('/var/run/drcom_p.pid','w') as f: f.write(str(os.getpid()))

def main(): if not IS_TEST: daemon() execfile(CONF, globals()) log('auth svr: ' + server) log('pppoe_flag: ' + pppoe_flag.encode('hex')) log('keep_alive2_flag: ' + keep_alive2_flag.encode('hex'))

s = Socket(server)
while True:
    pppoe = PPPOEHeartbeat(1)
    pppoe.send(s)
    keep_alive2(s, pppoe)

if name == 'main': main()

- 第二个问题
p版账号密码仅用于pppoe拨号。

[sobrietie]

非常感谢您的耐心回复！我去试试，稍后回来报告使用情况。

[sobrietie]

感谢 @mchome 大神的热心帮助，然而我还是没搞定。。。 试了下二楼的脚本，还是不行，提示 heartbeat response failed retry。

另外wiki里p版的使用说明太简略了，我看得一头雾水，希望能有好心的大神写个详细版的。

我又参考了其他地方的一些教程， 按提示在luCI里把wan口设置为pppoe，结果就完全连不上了。

真的不知道该怎么办了。

我的诉求是：用刷了pandorabox的路由器连接校园网（使用5.2.1p版客户端），实现长期在线，同时共享无线。

这几天学习之后的理解是：1用wireshark抓包，找到服务器、认证方式等信息；2 根据1得到的信息修改drcom脚本里的config； 3 在路由器luCI界面设置wan口为pppoe，填入用户名和密码；4 在路由器里运行ppp_esc.sh脚本，这个脚本的功能是修改ppp.sh文件里的用户名密码信息；5在路由器里装pythonmini，运行2修改好的drcom；6 设置路由器无线等。

目前的状态是 1和2都完成了，3 把wan口设置为pppoe后完全连不上网，此时运行drcom提示Network unreachable，如果wan口改回默认的dhcp客户端，可以连到校园网，但是drcom运行提示 heartbeat response failed,并且这时候不知道该在哪儿输入用户名和密码。 然后就不知道怎么做了。后边的4 5 6 都完成了，但是没啥卵用。。

不知道是我哪里理解有问题，还请大家多指点，谢谢。

[mchome]

• 请你先在电脑上测试好。
• ppp_esc.sh仅适用于原版openwrt

[zhenyadoc]

电脑测试好了吗？有空可以微信交流:1083200253

[sobrietie]

抱歉，前几天被领导抓去写材料，忙死。。。 在电脑上测试了好几次，也没能成功，我都怀疑自己智商了。。。 电脑直接插网线，用ubuntu自带的pppoeconf 和 rp-pppoe 都不能建立连接。 在旁边同事的windows系统电脑上发现，他电脑上用drcom客户端登录后，ipconfig 里会多出个 "ppp 适配器 Dr.COM"，而我在ubuntu里没法实现 因为没法完成拨号这一步，所以也就没能在电脑上做后面的测试。 我是不是太笨了。。。

[mchome]

看这里 关于P版的PPPoE拨号问题

[sobrietie]

大神回复得好快！ 我试了下这次的问题是 Link is down -- could not find interface corresponding to pppd pid 24047 最后那个数字试了几次各不相同

[mchome]

你看下你的账号和抓包的一样不，检测\r\n字符，ubuntu不熟悉的话，在windows上用pppoe-dailer试下