git.samba.org / metze / wireshark / wip.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
opa: Add dissectors for Intel’s Omni-Path Architecture (OPA)
[metze/wireshark/wip.git] / wiretap / mime_file.c
diff --git a/wiretap/mime_file.c b/wiretap/mime_file.c
index 90eafcd9c029dec2a6e6320f9100777d99763c90..17bb9608a5c34f5d43248fb47f2eac39c541a0a9 100644 (file)
--- a/wiretap/mime_file.c
+++ b/wiretap/mime_file.c
@@ -11,8 +11,6 @@
  * The "MIME file" dissector does the reassembly, and hands the result
  * off to heuristic dissectors to try to identify the file's contents.
  *
  * The "MIME file" dissector does the reassembly, and hands the result
  * off to heuristic dissectors to try to identify the file's contents.
  *
- * $Id$
- *
  * Wiretap Library
  * This program is free software; you can redistribute it and/or
  * modify it under the terms of the GNU General Public License
  * Wiretap Library
  * This program is free software; you can redistribute it and/or
  * modify it under the terms of the GNU General Public License
@@ -26,12 +24,10 @@
  *
  * You should have received a copy of the GNU General Public License
  * along with this program; if not, write to the Free Software
  *
  * You should have received a copy of the GNU General Public License
  * along with this program; if not, write to the Free Software
- * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
  */
 
  */
 
-#ifdef HAVE_CONFIG_H
 #include "config.h"
 #include "config.h"
-#endif
 
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
 
 #ifdef HAVE_SYS_TYPES_H
 #include <sys/types.h>
@@ -48,14 +44,9 @@
 
 #include "wtap-int.h"
 #include "file_wrappers.h"
 
 #include "wtap-int.h"
 #include "file_wrappers.h"
-#include "buffer.h"
+#include <wsutil/buffer.h>
 #include "mime_file.h"
 
 #include "mime_file.h"
 
-typedef struct {
-       gboolean last_packet;
-
-} mime_file_private_t;
-
 typedef struct {
        const guint8 *magic;
        guint magic_len;
 typedef struct {
        const guint8 *magic;
        guint magic_len;
@@ -74,126 +65,176 @@ static const guint8 jpeg_jfif_magic[] = { 0xFF, 0xD8, /* SOF */
                                        };
 
 /* <?xml */
                                        };
 
 /* <?xml */
-static const guint8 xml_magic[] = { '<', '?', 'x', 'm', 'l' };
+static const guint8 xml_magic[]    = { '<', '?', 'x', 'm', 'l' };
+static const guint8 png_magic[]    = { 0x89, 'P', 'N', 'G', '\r', '\n', 0x1A, '\n' };
+static const guint8 gif87a_magic[] = { 'G', 'I', 'F', '8', '7', 'a'};
+static const guint8 gif89a_magic[] = { 'G', 'I', 'F', '8', '9', 'a'};
+static const guint8 elf_magic[]    = { 0x7F, 'E', 'L', 'F'};
+static const guint8 btsnoop_magic[]    = { 'b', 't', 's', 'n', 'o', 'o', 'p', 0};
+static const guint8 pcap_magic[]           = { 0xA1, 0xB2, 0xC3, 0xD4 };
+static const guint8 pcap_swapped_magic[]   = { 0xD4, 0xC3, 0xB2, 0xA1 };
+static const guint8 pcapng_premagic[]      = { 0x0A, 0x0D, 0x0D, 0x0A };
+
+/* File does not start with it */
+static const guint8 pcapng_xmagic[]         = { 0x1A, 0x2B, 0x3C, 0x4D };
+static const guint8 pcapng_swapped_xmagic[] = { 0x4D, 0x3C, 0x2B, 0x1A };
 
 static const mime_files_t magic_files[] = {
        { jpeg_jfif_magic, sizeof(jpeg_jfif_magic) },
 
 static const mime_files_t magic_files[] = {
        { jpeg_jfif_magic, sizeof(jpeg_jfif_magic) },
-       { xml_magic, sizeof(xml_magic) }
+       { xml_magic, sizeof(xml_magic) },
+       { png_magic, sizeof(png_magic) },
+       { gif87a_magic, sizeof(gif87a_magic) },
+       { gif89a_magic, sizeof(gif89a_magic) },
+       { elf_magic, sizeof(elf_magic) },
+       { btsnoop_magic, sizeof(btsnoop_magic) },
+       { pcap_magic, sizeof(pcap_magic) },
+       { pcap_swapped_magic, sizeof(pcap_swapped_magic) },
+       { pcapng_premagic, sizeof(pcapng_premagic) }
 };
 
 #define        N_MAGIC_TYPES   (sizeof(magic_files) / sizeof(magic_files[0]))
 
 };
 
 #define        N_MAGIC_TYPES   (sizeof(magic_files) / sizeof(magic_files[0]))
 
+/*
+ * Impose a not-too-large limit on the maximum file size, to avoid eating
+ * up 99% of the (address space, swap partition, disk space for swap/page
+ * files); if we were to return smaller chunks and let the dissector do
+ * reassembly, it would *still* have to allocate a buffer the size of
+ * the file, so it's not as if we'd neve try to allocate a buffer the
+ * size of the file.
+ */
+#define MAX_FILE_SIZE  G_MAXINT
+
 static gboolean
 static gboolean
-mime_read(wtap *wth, int *err, gchar **err_info, gint64 *data_offset)
+mime_read_file(wtap *wth, FILE_T fh, struct wtap_pkthdr *phdr,
+    Buffer *buf, int *err, gchar **err_info)
 {
 {
-       mime_file_private_t *priv = (mime_file_private_t *) wth->priv;
-
-       char _buf[WTAP_MAX_PACKET_SIZE];
-       guint8 *buf;
+       gint64 file_size;
        int packet_size;
 
        int packet_size;
 
-       if (priv->last_packet) {
-               *err = file_error(wth->fh, err_info);
+       if ((file_size = wtap_file_size(wth, err)) == -1)
+               return FALSE;
+
+       if (file_size > MAX_FILE_SIZE) {
+               /*
+                * Don't blow up trying to allocate space for an
+                * immensely-large file.
+                */
+               *err = WTAP_ERR_BAD_FILE;
+               *err_info = g_strdup_printf("mime_file: File has %" G_GINT64_MODIFIER "d-byte packet, bigger than maximum of %u",
+                               file_size, MAX_FILE_SIZE);
                return FALSE;
        }
                return FALSE;
        }
+       packet_size = (int)file_size;
 
 
-       wth->phdr.presence_flags = 0;
+       phdr->rec_type = REC_TYPE_PACKET;
+       phdr->presence_flags = 0; /* yes, we have no bananas^Wtime stamp */
 
 
-       wth->phdr.ts.secs = 0;
-       wth->phdr.ts.nsecs = 0;
+       phdr->caplen = packet_size;
+       phdr->len = packet_size;
 
 
-       *data_offset = wth->data_offset;
+       phdr->ts.secs = 0;
+       phdr->ts.nsecs = 0;
+
+       return wtap_read_packet_bytes(fh, buf, packet_size, err, err_info);
+}
+
+static gboolean
+mime_read(wtap *wth, int *err, gchar **err_info, gint64 *data_offset)
+{
+       gint64 offset;
 
 
-       /* try to read max WTAP_MAX_PACKET_SIZE bytes */
-       packet_size = file_read(_buf, sizeof(_buf), wth->fh);
+       *err = 0;
 
 
-       if (packet_size <= 0) {
-               priv->last_packet = TRUE;
-               /* signal error for packet-mime-encap */
-               if (packet_size < 0)
-                       wth->phdr.ts.nsecs = 1000000000;
+       offset = file_tell(wth->fh);
 
 
-               wth->phdr.caplen = 0;
-               wth->phdr.len = 0;
-               return TRUE;
-       }
+       /* there is only ever one packet */
+       if (offset != 0)
+               return FALSE;
 
 
-       /* copy to wth frame buffer */
-       buffer_assure_space(wth->frame_buffer, packet_size);
-       buf = buffer_start_ptr(wth->frame_buffer);
-       memcpy(buf, _buf, packet_size);
+       *data_offset = offset;
 
 
-       wth->data_offset += packet_size;
-       wth->phdr.caplen = packet_size;
-       wth->phdr.len = packet_size;
-       return TRUE;
+       return mime_read_file(wth, wth->fh, &wth->phdr, wth->frame_buffer, err, err_info);
 }
 
 static gboolean
 }
 
 static gboolean
-mime_seek_read(wtap *wth, gint64 seek_off, union wtap_pseudo_header *pseudo_header _U_, guint8 *pd, int length, int *err, gchar **err_info)
+mime_seek_read(wtap *wth, gint64 seek_off, struct wtap_pkthdr *phdr, Buffer *buf, int *err, gchar **err_info)
 {
 {
-       if (file_seek(wth->random_fh, seek_off, SEEK_SET, err) == -1) {
-               *err_info = NULL;
+       /* there is only one packet */
+       if (seek_off > 0) {
+               *err = 0;
                return FALSE;
        }
 
                return FALSE;
        }
 
-       wtap_file_read_expected_bytes(pd, length, wth->random_fh, err, err_info);
+       if (file_seek(wth->random_fh, seek_off, SEEK_SET, err) == -1)
+               return FALSE;
 
 
-       *err = 0;
-       *err_info = NULL;
-       return TRUE;
+       return mime_read_file(wth, wth->random_fh, phdr, buf, err, err_info);
 }
 
 }
 
-int
+wtap_open_return_val
 mime_file_open(wtap *wth, int *err, gchar **err_info)
 {
        char magic_buf[128]; /* increase buffer size when needed */
        int bytes_read;
 mime_file_open(wtap *wth, int *err, gchar **err_info)
 {
        char magic_buf[128]; /* increase buffer size when needed */
        int bytes_read;
-       int ret;
+       gboolean found_file;
+       /* guint file_ok; */
        guint i;
 
        guint i;
 
-       guint read_bytes = 0;
+       guint read_bytes = 12;
 
        for (i = 0; i < N_MAGIC_TYPES; i++)
                read_bytes = MAX(read_bytes, magic_files[i].magic_len);
 
 
        for (i = 0; i < N_MAGIC_TYPES; i++)
                read_bytes = MAX(read_bytes, magic_files[i].magic_len);
 
-       read_bytes = MIN(read_bytes, sizeof(magic_buf));
+       read_bytes = (guint)MIN(read_bytes, sizeof(magic_buf));
        bytes_read = file_read(magic_buf, read_bytes, wth->fh);
 
        bytes_read = file_read(magic_buf, read_bytes, wth->fh);
 
-       if (bytes_read > 0) {
-               gboolean found_file = FALSE;
-               /* guint file_ok; */
-
-               for (i = 0; i < N_MAGIC_TYPES; i++) {
-                       if ((guint) bytes_read >= magic_files[i].magic_len && !memcmp(magic_buf, magic_files[i].magic, MIN(magic_files[i].magic_len, (guint) bytes_read))) {
-                               if (!found_file) {
-                                       found_file = TRUE;
-                                       /* file_ok = i; */
-                               } else
-                                       return 0;       /* many files matched, bad file */
-                       }
+       if (bytes_read < 0) {
+               *err = file_error(wth->fh, err_info);
+               return WTAP_OPEN_ERROR;
+       }
+       if (bytes_read == 0)
+               return WTAP_OPEN_NOT_MINE;
+
+       found_file = FALSE;
+       for (i = 0; i < N_MAGIC_TYPES; i++) {
+               if ((guint) bytes_read >= magic_files[i].magic_len && !memcmp(magic_buf, magic_files[i].magic, MIN(magic_files[i].magic_len, (guint) bytes_read))) {
+                       if (!found_file) {
+                               if (magic_files[i].magic == pcapng_premagic) {
+                                       if (memcmp(magic_buf + 8, pcapng_xmagic, sizeof(pcapng_xmagic)) &&
+                                                       memcmp(magic_buf + 8, pcapng_swapped_xmagic, sizeof(pcapng_swapped_xmagic)))
+                                               continue;
+                               }
+                               found_file = TRUE;
+                       } else
+                               return WTAP_OPEN_NOT_MINE;      /* many files matched, bad file */
                }
                }
+       }
 
 
-               if (!found_file)
-                       return 0;
-
-               if (file_seek(wth->fh, 0, SEEK_SET, err) == -1)
-                       return -1;
+       if (!found_file)
+               return WTAP_OPEN_NOT_MINE;
 
 
-               wth->file_type = WTAP_FILE_MIME;
-               wth->file_encap = WTAP_ENCAP_MIME;
-               wth->tsprecision = WTAP_FILE_TSPREC_SEC;
-               wth->subtype_read = mime_read;
-               wth->subtype_seek_read = mime_seek_read;
-               wth->snapshot_length = 0;
-               ret = 1;
+       if (file_seek(wth->fh, 0, SEEK_SET, err) == -1)
+               return WTAP_OPEN_ERROR;
 
 
-               wth->priv = g_malloc0(sizeof(mime_file_private_t));
+       wth->file_type_subtype = WTAP_FILE_TYPE_SUBTYPE_MIME;
+       wth->file_encap = WTAP_ENCAP_MIME;
+       wth->file_tsprec = WTAP_TSPREC_SEC;
+       wth->subtype_read = mime_read;
+       wth->subtype_seek_read = mime_seek_read;
+       wth->snapshot_length = 0;
 
 
-       } else {
-               *err = file_error(wth->fh, err_info);
-               ret = -1;
-       }
-       return ret;
+       return WTAP_OPEN_MINE;
 }
 
 }
 
+/*
+ * Editor modelines  -  http://www.wireshark.org/tools/modelines.html
+ *
+ * Local variables:
+ * c-basic-offset: 8
+ * tab-width: 8
+ * indent-tabs-mode: t
+ * End:
+ *
+ * vi: set shiftwidth=8 tabstop=8 noexpandtab:
+ * :indentSize=8:tabSize=8:noTabs=false:
+ */
Unnamed repository; edit this file to name it for gitweb.