Bundle standalone 'manufdb' file to comply with Wireshark changes.

[gpotter2]

This PR:

• bundles manufdb. This fixes conf.manufdb.* doesn't seem to work because Wireshark and some distros no longer ship the OUI database #4280
• introduces a caching system for files loaded in data. This was required in order not to introduce a slow down with this change.
• re-enables all manufdb tests. because we can now always fallback on it.
• .config/scapy and .cache/scapy now comply with the XDG_XXX_HOME variables.

Fun fact: a first version of this PR converted Manuf to a python dictionary. Apparently loading a file containing a very, very big Python dictionnary takes infinetly longer than loading text/binary and parsing it.

[codecov]

Codecov Report

Merging #4351 (1602125) into master (cd2fed9) will decrease coverage by 0.03%.
The diff coverage is 59.44%.

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #4351      +/-   ##
==========================================
- Coverage   82.13%   82.10%   -0.03%     
==========================================
  Files         350      352       +2     
  Lines       83136    83224      +88     
==========================================
+ Hits        68280    68334      +54     
- Misses      14856    14890      +34     

Files	Coverage Δ
scapy/arch/windows/__init__.py	61.73% <100.00%> (-0.99%)	⬇️
scapy/config.py	79.81% <100.00%> (+1.70%)	⬆️
scapy/dadict.py	92.64% <100.00%> (+0.84%)	⬆️
scapy/libs/manuf.py	100.00% <ø> (ø)
scapy/main.py	70.95% <78.26%> (-0.05%)	⬇️
scapy/data.py	90.52% <86.88%> (-0.81%)	⬇️
scapy/tools/generate_manuf.py	0.00% <0.00%> (ø)
scapy/tools/generate_ethertypes.py	0.00% <0.00%> (ø)

... and 1 file with indirect coverage changes

[polybassa]

I think it’s quite dangerous to pickle.load from an arbitrary file. Would it be a possibility to use serialisation to json instead ?

[gpotter2]

@polybassa @guedou This file is local. If you can edit it you can also add malicious code to .config/scapy/prestart.py.

Considering this I don't see how it's an issue

[polybassa]

I totally agree on that point. I just wanted to mention it.

[gpotter2]

Hm, should we gzip the blob ? It's a bit big.
I can't recall how supported gzip is on all plateforms. If I'm not mistaken zlib is often not available...

Edit: we're already using gzip as a hard dependency, so I ended up using it.

[evverx]

It took me a while but I figured out why Packit failed in https://download.copr.fedorainfracloud.org/results/packit/evverx-scapy-2/fedora-rawhide-x86_64/07331856-scapy/builder-live.log.gz. There is no ~/.config there. I reproduced it locally by launching a stripped container and running the test there. Once I manually created the ~/.config directory the tests started passing.

[gpotter2]

Thanks for looking into it.

I didn't fully read the XDG spec so I kinda assumed one shouldn't create the .config, apparently as I was wrong and it is actually standardized:

https://specifications.freedesktop.org/basedir-spec/basedir-spec-latest.html

If, when attempting to write a file, the destination directory is non-existent an attempt should be made to create it with permission 0700. If the destination directory exists already the permissions should not be changed.

[gpotter2]

/packit build

[gpotter2]

/packit build