Add CBOR implementation following the ASN.1 implementation paradigm (by Copilot) (#4916)

* Implement CBOR parser following ASN.1 paradigm

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

Address code review comments: improve error messages and implement proper half-float decoding

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

Add cbor2 interoperability tests (cbor2 used ONLY in tests)

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

Document cbor2 as test-only dependency in test file header

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

Add CBOR documentation to advanced_usage.rst following ASN.1 pattern

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

Add cbor2 to tox.ini testenv deps for CBOR interoperability tests

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

* Reorder imports in `cbor.py` and `cborcodec.py` for better organization; remove trailing whitespaces.

* Add adapted tests from PR #4875 for CBOR encoding edge cases

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

* Remove `advanced_usage.rst` documentation.

* Fix codacy issues

* Fix UTF-8 encoding test failures on Windows by specifying encoding in file opens

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

* Reorganize imports in `cbor.py` to improve readability.

* Add RandCBORObject for fuzzing and comprehensive unit tests

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

* Fix extremely slow CBOR fuzzing tests by optimizing recursive structure generation

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

* Fix syntax errors in CBOR unit tests by adding blank lines before assertions

Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>

* cleanup CBOR docs

* fix flake8

* fix ci issues

* Reformat CBOR code for improved readability and compliance with style guidelines.

* Update import path in CBOR documentation for consistency

* Update import path in `cbor.py` for consistency with module structure

* Adjust warning level in CBOR logging and suppress additional Sphinx warnings

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: polybassa <1676055+polybassa@users.noreply.github.com>
Co-authored-by: Nils Weiss <nils.weiss@dissecto.com>

Author: 3 people

doc/scapy/advanced_usage/cbor.rst

@@ -0,0 +1,167 @@
+CBOR
+====
+
+What is CBOR?
+-------------
+
+.. note::
+
+   This section provides a practical introduction to CBOR from Scapy's perspective. For the complete specification, see RFC 8949.
+
+CBOR (Concise Binary Object Representation) is a data format whose goal is to provide a compact, self-describing binary data interchange format based on the JSON data model. It is defined in RFC 8949 and is designed to be small in code size, reasonably small in message size, and extensible without the need for version negotiation.
+
+CBOR provides basic data types including:
+
+* **Unsigned integers** (major type 0): Non-negative integers
+* **Negative integers** (major type 1): Negative integers
+* **Byte strings** (major type 2): Raw binary data
+* **Text strings** (major type 3): UTF-8 encoded strings
+* **Arrays** (major type 4): Ordered sequences of values
+* **Maps** (major type 5): Unordered key-value pairs
+* **Semantic tags** (major type 6): Tagged values with additional semantics
+* **Simple values and floats** (major type 7): Booleans, null, undefined, and floating-point numbers
+
+Each CBOR data item begins with an initial byte that encodes the major type (in the top 3 bits) and additional information (in the low 5 bits). This design allows for compact encoding while maintaining self-describing properties.
+
+Scapy and CBOR
+--------------
+
+
+Creating CBOR objects
+^^^^^^^^^^^^^^^^^^^^^
+
+CBOR objects can be easily created and composed::
+
+    >>> from scapy.cbor import CBOR_UNSIGNED_INTEGER, CBOR_TEXT_STRING, CBOR_BYTE_STRING, CBOR_ARRAY
+    >>> # Create basic types
+    >>> num = CBOR_UNSIGNED_INTEGER(42)
+    >>> text = CBOR_TEXT_STRING("Hello, CBOR!")
+    >>> data = CBOR_BYTE_STRING(b'\x01\x02\x03')
+    >>> 
+    >>> # Create collections
+    >>> arr = CBOR_ARRAY([CBOR_UNSIGNED_INTEGER(1), 
+    ...                    CBOR_UNSIGNED_INTEGER(2),
+    ...                    CBOR_TEXT_STRING("three")])
+    >>> arr
+    <CBOR_ARRAY[[<CBOR_UNSIGNED_INTEGER[1]>, <CBOR_UNSIGNED_INTEGER[2]>, <CBOR_TEXT_STRING['three']>]]>
+    >>> 
+    >>> # Create maps
+    >>> from scapy.cbor.cborcodec import CBORcodec_MAP
+    >>> mapping = {"name": "Alice", "age": 30, "active": True}
+
+Encoding and decoding
+^^^^^^^^^^^^^^^^^^^^^
+
+CBOR objects are encoded using their ``.enc()`` method. All codecs are referenced in the ``CBOR_Codecs`` object. The default codec is ``CBOR_Codecs.CBOR``::
+
+    >>> num = CBOR_UNSIGNED_INTEGER(42)
+    >>> encoded = bytes(num)
+    >>> encoded.hex()
+    '182a'
+    >>> 
+    >>> # Decode back
+    >>> decoded, remainder = CBOR_Codecs.CBOR.dec(encoded)
+    >>> decoded.val
+    42
+    >>> isinstance(decoded, CBOR_UNSIGNED_INTEGER)
+    True
+
+Encoding collections::
+
+    >>> from scapy.cbor import CBORcodec_ARRAY, CBORcodec_MAP
+    >>> # Encode an array
+    >>> encoded = CBORcodec_ARRAY.enc([1, 2, 3, 4, 5])
+    >>> encoded.hex()
+    '850102030405'
+    >>> 
+    >>> # Decode the array
+    >>> decoded, _ = CBOR_Codecs.CBOR.dec(encoded)
+    >>> [item.val for item in decoded.val]
+    [1, 2, 3, 4, 5]
+    >>> 
+    >>> # Encode a map
+    >>> encoded = CBORcodec_MAP.enc({"x": 100, "y": 200})
+    >>> decoded, _ = CBOR_Codecs.CBOR.dec(encoded)
+    >>> isinstance(decoded, CBOR_MAP)
+    True
+
+Working with different types
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+CBOR supports various data types::
+
+    >>> # Booleans
+    >>> true_val = CBOR_TRUE()
+    >>> false_val = CBOR_FALSE()
+    >>> bytes(true_val).hex()
+    'f5'
+    >>> bytes(false_val).hex()
+    'f4'
+    >>> 
+    >>> # Null and undefined
+    >>> null_val = CBOR_NULL()
+    >>> undef_val = CBOR_UNDEFINED()
+    >>> bytes(null_val).hex()
+    'f6'
+    >>> bytes(undef_val).hex()
+    'f7'
+    >>> 
+    >>> # Floating point
+    >>> float_val = CBOR_FLOAT(3.14159)
+    >>> bytes(float_val).hex()
+    'fb400921f9f01b866e'
+    >>> 
+    >>> # Negative integers
+    >>> neg = CBOR_NEGATIVE_INTEGER(-100)
+    >>> bytes(neg).hex()
+    '3863'
+
+Complex structures
+^^^^^^^^^^^^^^^^^^
+
+CBOR supports nested structures::
+
+    >>> # Nested arrays
+    >>> nested = CBORcodec_ARRAY.enc([1, [2, 3], [4, [5, 6]]])
+    >>> decoded, _ = CBOR_Codecs.CBOR.dec(nested)
+    >>> isinstance(decoded, CBOR_ARRAY)
+    True
+    >>> 
+    >>> # Complex maps with mixed types
+    >>> data = {
+    ...     "name": "Bob",
+    ...     "age": 25,
+    ...     "active": True,
+    ...     "tags": ["user", "admin"]
+    ... }
+    >>> encoded = CBORcodec_MAP.enc(data)
+    >>> decoded, _ = CBOR_Codecs.CBOR.dec(encoded)
+    >>> len(decoded.val)
+    4
+
+Semantic tags
+^^^^^^^^^^^^^
+
+CBOR supports semantic tags (major type 6) for providing additional meaning to data items::
+
+    >>> # Tag 1 is for Unix epoch timestamps
+    >>> import time
+    >>> timestamp = int(time.time())
+    >>> tagged = CBOR_SEMANTIC_TAG((1, CBOR_UNSIGNED_INTEGER(timestamp)))
+    >>> encoded = bytes(tagged)
+    >>> decoded, _ = CBOR_Codecs.CBOR.dec(encoded)
+    >>> decoded.val[0]  # Tag number
+    1
+
+
+Error handling
+^^^^^^^^^^^^^^
+
+Scapy provides safe decoding with error handling::
+
+    >>> # Safe decoding returns error objects for invalid data
+    >>> invalid_data = b'\xff\xff\xff'
+    >>> obj, remainder = CBOR_Codecs.CBOR.safedec(invalid_data)
+    >>> isinstance(obj, CBOR_DECODING_ERROR)
+    True
+

doc/scapy/conf.py

@@ -194,4 +194,4 @@
      'Miscellaneous'),
 ]
 
-suppress_warnings = ["app.add_directive"]
+suppress_warnings = ["app.add_directive", "ref.python"]

scapy/cbor/__init__.py

@@ -0,0 +1,84 @@
+# SPDX-License-Identifier: GPL-2.0-only
+# This file is part of Scapy
+# See https://scapy.net/ for more information
+
+"""
+Package holding CBOR (Concise Binary Object Representation) related modules.
+Follows the same paradigm as ASN.1 implementation.
+"""
+
+from scapy.cbor.cbor import (
+    CBOR_Error,
+    CBOR_Encoding_Error,
+    CBOR_Decoding_Error,
+    CBOR_BadTag_Decoding_Error,
+    CBOR_Codecs,
+    CBOR_MajorTypes,
+    CBOR_Object,
+    CBOR_UNSIGNED_INTEGER,
+    CBOR_NEGATIVE_INTEGER,
+    CBOR_BYTE_STRING,
+    CBOR_TEXT_STRING,
+    CBOR_ARRAY,
+    CBOR_MAP,
+    CBOR_SEMANTIC_TAG,
+    CBOR_SIMPLE_VALUE,
+    CBOR_FALSE,
+    CBOR_TRUE,
+    CBOR_NULL,
+    CBOR_UNDEFINED,
+    CBOR_FLOAT,
+    CBOR_DECODING_ERROR,
+    RandCBORObject,
+)
+
+from scapy.cbor.cborcodec import (
+    CBORcodec_Object,
+    CBORcodec_UNSIGNED_INTEGER,
+    CBORcodec_NEGATIVE_INTEGER,
+    CBORcodec_BYTE_STRING,
+    CBORcodec_TEXT_STRING,
+    CBORcodec_ARRAY,
+    CBORcodec_MAP,
+    CBORcodec_SEMANTIC_TAG,
+    CBORcodec_SIMPLE_AND_FLOAT,
+)
+
+__all__ = [
+    # Exceptions
+    "CBOR_Error",
+    "CBOR_Encoding_Error",
+    "CBOR_Decoding_Error",
+    "CBOR_BadTag_Decoding_Error",
+    # Codecs
+    "CBOR_Codecs",
+    "CBOR_MajorTypes",
+    # Objects
+    "CBOR_Object",
+    "CBOR_UNSIGNED_INTEGER",
+    "CBOR_NEGATIVE_INTEGER",
+    "CBOR_BYTE_STRING",
+    "CBOR_TEXT_STRING",
+    "CBOR_ARRAY",
+    "CBOR_MAP",
+    "CBOR_SEMANTIC_TAG",
+    "CBOR_SIMPLE_VALUE",
+    "CBOR_FALSE",
+    "CBOR_TRUE",
+    "CBOR_NULL",
+    "CBOR_UNDEFINED",
+    "CBOR_FLOAT",
+    "CBOR_DECODING_ERROR",
+    # Random/Fuzzing
+    "RandCBORObject",
+    # Codec classes
+    "CBORcodec_Object",
+    "CBORcodec_UNSIGNED_INTEGER",
+    "CBORcodec_NEGATIVE_INTEGER",
+    "CBORcodec_BYTE_STRING",
+    "CBORcodec_TEXT_STRING",
+    "CBORcodec_ARRAY",
+    "CBORcodec_MAP",
+    "CBORcodec_SEMANTIC_TAG",
+    "CBORcodec_SIMPLE_AND_FLOAT",
+]