Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
A Node.js module that provides simple client and server objects for communicating with devices using the E1.31 (sACN) protocol. A lot of information about E.131 (sACN) can be found on this Wiki article.
To install, use npm
:
$ npm install e131
The Client class implements a UDP client for sending E1.31 (sACN) traffic. The class constructor is as follows:
var e131 = require('e131');
var client = new e131.Client(arg, [port]);
The first argument can be a host address, name or universe number. If port
is omitted, the default E1.31 port 5568
is used.
If a universe is given, the client will automatically join the relevant Multicast group.
The client automatically increments (and wraps around if necessary) the sequence number of the transmitted packet.
The client provides two methods:
createPacket(numSlots)
: creates a new E1.31 (sACN) packet to be used for sending.send(packet)
: sends a E1.31 (sACN) packet to the remote host or multicast group.Full code example for the Client class:
var e131 = require('e131');
var client = new e131.Client('192.168.1.12'); // or use a universe
var packet = client.createPacket(24); // we want 8 RGB (x3) slots
var slotsData = packet.getSlotsData();
packet.setSourceName('test E1.31 client');
packet.setUniverse(0x01); // make universe number consistent with the client
packet.setOption(packet.Options.PREVIEW, true); // don't really change any fixture
packet.setPriority(packet.DEFAULT_PRIORITY); // not strictly needed, done automatically
// slotsData is a Buffer view, you can use it directly
var color = 0;
function cycleColor() {
for (var idx=0; idx<slotsData.length; idx++) {
slotsData[idx] = color % 0xff;
color = color + 90;
}
client.send(packet, function () {
setTimeout(cycleColor, 125);
});
}
cycleColor();
The Server class implements a UDP server for receiving E1.31 (sACN) traffic. The class constructor is as follows:
var e131 = require('e131');
var server = new e131.Server([universes], [port]);
The universes
argument can be an array (for joining multiple universes) or a single integer for joining a single universe. If universes
is omitted, a single value of 1
is assumed. If port
is omitted, the default E1.31 port 5568
is used.
The server will join the corresponding Multicast groups for each provided universe automatically and starts listening as soon as it is created.
The server performs basic out-of-order detection on received packets. If an out-of-order packet is received, it is discarded.
The server supports the following events that you can listen to:
listening
: fires as soon as the server starts listening.close
: fires when the server is closed.error
: fires when an error occurs within the server.packet
: (packet) fires when a valid E1.31 (sACN) packet is received.packet-out-of-order
: (packet) fires when an out-of-order packet is received.packet-error
: (packet, err) fires when an invalid packet is received.Full code example for the Server class:
var e131 = require('e131');
var server = new e131.Server([0x0001, 0x0002]);
server.on('listening', function() {
console.log('server listening on port %d, universes %j', this.port, this.universes);
});
server.on('packet', function (packet) {
var sourceName = packet.getSourceName();
var sequenceNumber = packet.getSequenceNumber();
var universe = packet.getUniverse();
var slotsData = packet.getSlotsData();
console.log('source="%s", seq=%d, universe=%d, slots=%d',
sourceName, sequenceNumber, universe, slotsData.length);
console.log('slots data = %s', slotsData.toString('hex'));
});
The E1.31 Packet class contains a number of useful setter methods:
setCID(uuid)
: sets the CID field into the root layer.setSourceName(name)
: sets source name field into the frame layer.setPriority(priority)
: sets the priority field into the frame layer.setSequenceNumber(number)
: sets the sequence number into the frame layer.setOption(option, state)
: sets the state of a framing option into the frame layer.setUniverse(universe)
: sets the DMX universe into the frame layer.setSlotsData(buffer)
: sets the DMX slots data into the DMP layer.Also the following getter methods are provided:
getCID()
: gets the CID field from the root layer.getSourceName()
: gets the source name field from the frame layer.getPriority()
: gets the priority field from the frame layer.getSequenceNumber()
: gets the sequence number from the frame layer.getOption(option)
: gets the state of a framing option from the frame layer.getUniverse()
: gets the DMX universe from the frame layer.getSlotsData()
: gets the DMX slots data from the DMP layer.Available E1.31 framing options are:
Options.TERMINATED
: the current packet is the last one in the stream. The receiver should stop processing further packets.Options.PREVIEW
: the data in the packet should be only used for preview purposes, e.g. console display, and not to drive live fixtures.Available constants in the Packet class are:
DEFAULT_PRIORITY
: the default priority number used to initialize new packets.If a packet fails validation, the following errors can be returned:
ERR_ROOT_LAYER:
mismatch in the ACN PID or vector fields of the root layer.ERR_FRAME_LAYER:
mismatch in the vector field of the frame layer.ERR_DMP_LAYER:
mismatch in the type, addresses or vector fields of the DMP layer.FAQs
Node.js client/server library for the E1.31 (sACN) protocol
The npm package e131 receives a total of 30 weekly downloads. As such, e131 popularity was classified as not popular.
We found that e131 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.