Small cleanups mostly related to proto_reg_handoff

[obnox/wireshark/wip.git] / asn1 / spnego / spnego.cnf

# spnego.cnf
# spnego conformation file

# $Id$

#.EXPORTS

#.PDU

#.NO_EMIT

#.TYPE_RENAME
NegTokenInit/mechListMIC T_NegTokenInit_mechListMIC

#.FIELD_RENAME
NegTokenInit/mechListMIC negTokenInit_mechListMIC

#.FN_PARS MechType

  FN_VARIANT = _str  VAL_PTR = &MechType_oid

#.FN_BODY MechType

  gssapi_oid_value *value;

%(DEFAULT_BODY)s

  value = gssapi_lookup_oid_str(MechType_oid);

  /*
   * Tell our caller the first mechanism we see, so that if
   * this is a negTokenInit with a mechToken, it can interpret
   * the mechToken according to the first mechType.  (There
   * might not have been any indication of the mechType
   * in prior frames, so we can't necessarily use the
   * mechanism from the conversation; i.e., a negTokenInit
   * can contain the initial security token for the desired
   * mechanism of the initiator - that's the first mechanism
   * in the list.)
   */
  if (!saw_mechanism) {
    if (value)
      next_level_value = value;
    saw_mechanism = TRUE;
  }

#.FN_BODY InnerContextToken

  gssapi_oid_value *next_level_value;
  proto_item *item;
  proto_tree *subtree;
  tvbuff_t *token_tvb;
  int len;

  /*
   * XXX - what should we do if this OID doesn't match the value
   * attached to the frame or conversation?  (That would be
   * bogus, but that's not impossible - some broken implementation
   * might negotiate some security mechanism but put the OID
   * for some other security mechanism in GSS_Wrap tokens.)
   * Does it matter?
   */
  next_level_value = gssapi_lookup_oid_str(MechType_oid);

  /*
   * Now dissect the GSS_Wrap token; it's assumed to be in the
   * rest of the tvbuff.
   */
  item = proto_tree_add_item(tree, hf_spnego_wraptoken, tvb, offset, -1, FALSE); 

  subtree = proto_item_add_subtree(item, ett_spnego_wraptoken);

  /*
   * Now, we should be able to dispatch after creating a new TVB.
   * The subdissector must return the length of the part of the
   * token it dissected, so we can return the length of the part
   * we (and it) dissected.
   */
  token_tvb = tvb_new_subset(tvb, offset, -1, -1);
  if (next_level_value && next_level_value->wrap_handle) {
    len = call_dissector(next_level_value->wrap_handle, token_tvb, actx->pinfo,
                         subtree);
    if (len == 0)
      offset = tvb_length(tvb);
    else
      offset = offset + len;
  } else
    offset = tvb_length(tvb);

#.FN_BODY MechTypeList

  conversation_t *conversation;

  saw_mechanism = FALSE;

%(DEFAULT_BODY)s

  /* 
   * If we saw a mechType we need to store it in case the negTokenTarg
   * does not provide a supportedMech.
   */
  if(saw_mechanism){
    conversation = find_conversation(actx->pinfo->fd->num, 
                                        &actx->pinfo->src, &actx->pinfo->dst,
                                        actx->pinfo->ptype, 
                                        actx->pinfo->srcport, actx->pinfo->destport, 0);
    if(!conversation){
      conversation = conversation_new(actx->pinfo->fd->num, 
                                        &actx->pinfo->src, &actx->pinfo->dst,
                                        actx->pinfo->ptype,
                                        actx->pinfo->srcport, actx->pinfo->destport, 0);
    }
    conversation_add_proto_data(conversation, proto_spnego, next_level_value);
  }

#.FN_PARS NegTokenInit/mechToken

  VAL_PTR = &mechToken_tvb

#.FN_BODY NegTokenInit/mechToken

  tvbuff_t *mechToken_tvb = NULL;

%(DEFAULT_BODY)s

  /*
   * Now, we should be able to dispatch, if we've gotten a tvbuff for
   * the token and we have information on how to dissect its contents.
   */
  if (mechToken_tvb && next_level_value)
     call_dissector(next_level_value->handle, mechToken_tvb, actx->pinfo, tree);


#.FN_BODY NegTokenInit/mechListMIC

  gint8 class;
  gboolean pc;
  gint32 tag;
  tvbuff_t *mechListMIC_tvb;

  /*
   * There seems to be two different forms this can take,
   * one as an octet string, and one as a general string in a 
   * sequence.
   *
   * Peek at the header, and then decide which it is we're seeing.
   */
  get_ber_identifier(tvb, offset, &class, &pc, &tag);
  if (class == BER_CLASS_UNI && pc && tag == BER_UNI_TAG_SEQUENCE) {
    /*
     * It's a sequence.
     */
    return dissect_spnego_PrincipalSeq(FALSE, tvb, offset, actx, tree,
                                       hf_spnego_mechListMIC);
  } else {
    /*
     * It's not a sequence, so dissect it as an octet string,
     * which is what it's supposed to be; that'll cause the
     * right error report if it's not an octet string, either.
     */
    offset = dissect_ber_octet_string(FALSE, actx, tree, tvb, offset,
                                      hf_spnego_mechListMIC, &mechListMIC_tvb);

    /*
     * Now, we should be able to dispatch with that tvbuff.
     */
    if (mechListMIC_tvb && next_level_value)
      call_dissector(next_level_value->handle, mechListMIC_tvb, actx->pinfo, tree);
    return offset;
  }

#.FN_BODY NegTokenTarg/supportedMech

  conversation_t *conversation;

  saw_mechanism = FALSE;

%(DEFAULT_BODY)s

  /*
   * If we saw an explicit mechType we store this in the conversation so that
   * it will override any mechType we might have picked up from the 
   * negTokenInit.
   */
  if(saw_mechanism){
    conversation = find_conversation(actx->pinfo->fd->num, 
                                        &actx->pinfo->src, &actx->pinfo->dst,
                                        actx->pinfo->ptype, 
                                        actx->pinfo->srcport, actx->pinfo->destport, 0);
    if(!conversation){
      conversation = conversation_new(actx->pinfo->fd->num, 
                                        &actx->pinfo->src, &actx->pinfo->dst,
                                        actx->pinfo->ptype,
                                        actx->pinfo->srcport, actx->pinfo->destport, 0);
    }
    conversation_add_proto_data(conversation, proto_spnego, next_level_value);
  }


#.FN_PARS NegTokenTarg/responseToken

  VAL_PTR = &responseToken_tvb

#.FN_BODY NegTokenTarg/responseToken

  tvbuff_t *responseToken_tvb;


%(DEFAULT_BODY)s


  /*
   * Now, we should be able to dispatch, if we've gotten a tvbuff for
   * the token and we have information on how to dissect its contents.
   * However, we should make sure that there is something in the 
   * response token ...
   */
  if (responseToken_tvb && (tvb_reported_length(responseToken_tvb) > 0) ){
    gssapi_oid_value *value=next_level_value;

    if(value){
      call_dissector(value->handle, responseToken_tvb, actx->pinfo, tree);
    }
  }


#.FN_PARS NegTokenTarg/mechListMIC

  VAL_PTR = &mechListMIC_tvb

#.FN_BODY NegTokenTarg/mechListMIC

  tvbuff_t *mechListMIC_tvb;


%(DEFAULT_BODY)s


  /*
   * Now, we should be able to dispatch, if we've gotten a tvbuff for
   * the MIC and we have information on how to dissect its contents.
   */
  if (mechListMIC_tvb && (tvb_reported_length(mechListMIC_tvb) > 0) ){
    gssapi_oid_value *value=next_level_value;

    if(value){
      call_dissector(value->handle, mechListMIC_tvb, actx->pinfo, tree);
    }
  }


#.END