3 * Copyright (c) 2000 by Gilbert Ramirez <gram@alumni.rice.edu>
5 * Wireshark - Network traffic analyzer
6 * By Gerald Combs <gerald@wireshark.org>
7 * Copyright 1998 Gerald Combs
9 * SPDX-License-Identifier: GPL-2.0-or-later
25 #include <wsutil/ws_printf.h> /* ws_debug_printf */
30 * Uncompresses a zlib compressed packet inside a message of tvb at offset with
31 * length comprlen. Returns an uncompressed tvbuffer if uncompression
32 * succeeded or NULL if uncompression failed.
34 #define TVB_Z_MIN_BUFSIZ 32768
35 #define TVB_Z_MAX_BUFSIZ 1048576 * 10
36 /* #define TVB_Z_DEBUG 1 */
40 tvb_uncompress(tvbuff_t *tvb, const int offset, int comprlen)
45 guint8 *uncompr = NULL;
46 tvbuff_t *uncompr_tvb = NULL;
50 gint wbits = MAX_WBITS;
54 guint inflate_passes = 0;
55 guint bytes_in = tvb_captured_length_remaining(tvb, offset);
58 if (tvb == NULL || comprlen <= 0) {
62 compr = (guint8 *)tvb_memdup(NULL, tvb, offset, comprlen);
68 * Assume that the uncompressed data is at least twice as big as
69 * the compressed size.
71 bufsiz = tvb_captured_length_remaining(tvb, offset) * 2;
72 bufsiz = CLAMP(bufsiz, TVB_Z_MIN_BUFSIZ, TVB_Z_MAX_BUFSIZ);
75 ws_debug_printf("bufsiz: %u bytes\n", bufsiz);
80 strm = g_new0(z_stream, 1);
82 strm->avail_in = comprlen;
84 strmbuf = (Bytef *)g_malloc0(bufsiz);
85 strm->next_out = strmbuf;
86 strm->avail_out = bufsiz;
88 err = inflateInit2(strm, wbits);
93 wmem_free(NULL, compr);
99 memset(strmbuf, '\0', bufsiz);
100 strm->next_out = strmbuf;
101 strm->avail_out = bufsiz;
103 err = inflate(strm, Z_SYNC_FLUSH);
105 if (err == Z_OK || err == Z_STREAM_END) {
106 guint bytes_pass = bufsiz - strm->avail_out;
112 if (uncompr == NULL) {
114 * This is ugly workaround for bug #6480
115 * (https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6480)
117 * g_memdup(..., 0) returns NULL (g_malloc(0) also)
118 * when uncompr is NULL logic below doesn't create tvb
119 * which is later interpreted as decompression failed.
121 uncompr = (guint8 *)((bytes_pass || err != Z_STREAM_END) ?
122 g_memdup(strmbuf, bytes_pass) :
125 guint8 *new_data = (guint8 *)g_malloc0(bytes_out + bytes_pass);
127 memcpy(new_data, uncompr, bytes_out);
128 memcpy(new_data + bytes_out, strmbuf, bytes_pass);
134 bytes_out += bytes_pass;
136 if (err == Z_STREAM_END) {
142 } else if (err == Z_BUF_ERROR) {
144 * It's possible that not enough frames were captured
145 * to decompress this fully, so return what we've done
152 if (uncompr != NULL) {
155 wmem_free(NULL, compr);
159 } else if (err == Z_DATA_ERROR && inits_done == 1
160 && uncompr == NULL && comprlen >= 2 &&
161 (*compr == 0x1f) && (*(compr + 1) == 0x8b)) {
163 * inflate() is supposed to handle both gzip and deflate
164 * streams automatically, but in reality it doesn't
165 * seem to handle either (at least not within the
166 * context of an HTTP response.) We have to try
167 * several tweaks, depending on the type of data and
168 * version of the library installed.
172 * Gzip file format. Skip past the header, since the
173 * fix to make it work (setting windowBits to 31)
174 * doesn't work with all versions of the library.
176 Bytef *c = compr + 2;
179 /* we read two bytes already (0x1f, 0x8b) and
180 need at least Z_DEFLATED, 1 byte flags, 4
181 bytes MTIME, 1 byte XFL, 1 byte OS */
182 if (comprlen < 10 || *c != Z_DEFLATED) {
185 wmem_free(NULL, compr);
194 /* Skip past the MTIME (4 bytes),
195 XFL, and OS fields (1 byte each). */
198 if (flags & (1 << 2)) {
199 /* An Extra field is present. It
200 consists of 2 bytes xsize and xsize
202 Read byte-by-byte (least significant
203 byte first) to make sure we abort
204 cleanly when the xsize is truncated
205 after the first byte. */
208 if (c-compr < comprlen) {
212 if (c-compr < comprlen) {
220 if (flags & (1 << 3)) {
221 /* A null terminated filename */
223 while ((c - compr) < comprlen && *c != '\0') {
230 if (flags & (1 << 4)) {
231 /* A null terminated comment */
233 while ((c - compr) < comprlen && *c != '\0') {
241 if (c - compr > comprlen) {
244 wmem_free(NULL, compr);
248 /* Drop gzip header */
249 comprlen -= (int) (c - compr);
253 strm->next_in = next;
254 strm->avail_in = comprlen;
257 inflateInit2(strm, wbits);
259 } else if (err == Z_DATA_ERROR && uncompr == NULL &&
263 * Re-init the stream with a negative
264 * MAX_WBITS. This is necessary due to
265 * some servers (Apache) not sending
266 * the deflate header with the
267 * content-encoded response.
273 strm->next_in = next;
274 strm->avail_in = comprlen;
277 memset(strmbuf, '\0', bufsiz);
278 strm->next_out = strmbuf;
279 strm->avail_out = bufsiz;
281 err = inflateInit2(strm, wbits);
288 wmem_free(NULL, compr);
298 if (uncompr == NULL) {
299 wmem_free(NULL, compr);
308 ws_debug_printf("inflate() total passes: %u\n", inflate_passes);
309 ws_debug_printf("bytes in: %u\nbytes out: %u\n\n", bytes_in, bytes_out);
312 if (uncompr != NULL) {
313 uncompr_tvb = tvb_new_real_data(uncompr, bytes_out, bytes_out);
314 tvb_set_free_cb(uncompr_tvb, g_free);
316 wmem_free(NULL, compr);
321 tvb_uncompress(tvbuff_t *tvb _U_, const int offset _U_, int comprlen _U_)
328 tvb_child_uncompress(tvbuff_t *parent, tvbuff_t *tvb, const int offset, int comprlen)
330 tvbuff_t *new_tvb = tvb_uncompress(tvb, offset, comprlen);
332 tvb_set_child_real_data_tvbuff (parent, new_tvb);
337 * Editor modelines - http://www.wireshark.org/tools/modelines.html
342 * indent-tabs-mode: t
345 * vi: set shiftwidth=8 tabstop=8 noexpandtab:
346 * :indentSize=8:tabSize=8:noTabs=false:
git.samba.org / metze / wireshark / wip.git / blob