2 * Routines for BXXP packet disassembly
4 * $Id: packet-bxxp.c,v 1.21 2001/09/03 10:33:05 guy Exp $
6 * Copyright (c) 2000 by Richard Sharpe <rsharpe@ns.aus.com>
8 * Developed with funding from InvisibleWorlds (www.invisibleworlds.com) via
11 * Ethereal - Network traffic analyzer
13 * Copyright 1999 Gerald Combs
14 * This program is free software; you can redistribute it and/or
15 * modify it under the terms of the GNU General Public License
16 * as published by the Free Software Foundation; either version 2
17 * of the License, or (at your option) any later version.
19 * This program is distributed in the hope that it will be useful,
20 * but WITHOUT ANY WARRANTY; without even the implied warranty of
21 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22 * GNU General Public License for more details.
24 * You should have received a copy of the GNU General Public License
25 * along with this program; if not, write to the Free Software
26 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
33 #ifdef HAVE_SYS_TYPES_H
34 # include <sys/types.h>
37 #ifdef HAVE_NETINET_IN_H
38 #include <netinet/in.h>
50 #include "conversation.h"
52 #define TCP_PORT_BXXP 10288
53 void proto_reg_handoff_bxxp(void);
56 static int global_bxxp_tcp_port = TCP_PORT_BXXP;
57 static int global_bxxp_strict_term = TRUE;
59 static int proto_bxxp = -1;
61 static int hf_bxxp_req = -1;
62 static int hf_bxxp_req_chan = -1;
63 static int hf_bxxp_rsp_chan = -1;
64 static int hf_bxxp_seq_chan = -1;
65 static int hf_bxxp_rsp = -1;
66 static int hf_bxxp_seq = -1;
67 static int hf_bxxp_end = -1;
68 static int hf_bxxp_proto_viol = -1;
69 static int hf_bxxp_complete = -1; /* No More data follows */
70 static int hf_bxxp_intermediate = -1; /* More data follows */
71 static int hf_bxxp_serial = -1;
72 static int hf_bxxp_seqno = -1;
73 static int hf_bxxp_size = -1;
74 static int hf_bxxp_channel = -1;
75 static int hf_bxxp_positive = -1;
76 static int hf_bxxp_negative = -1;
77 static int hf_bxxp_ackno = -1;
78 static int hf_bxxp_window = -1;
80 /* Arrays of hf entry pointers for some routines to use. If you want more
81 * hidden items added for a field, add them to the list before the NULL,
82 * and the various routines that these are passed to will add them.
85 static int *req_serial_hfa[] = { &hf_bxxp_serial, NULL };
86 static int *req_seqno_hfa[] = { &hf_bxxp_seqno, NULL };
87 static int *req_size_hfa[] = { &hf_bxxp_size, NULL };
88 static int *req_chan_hfa[] = { &hf_bxxp_channel, &hf_bxxp_req_chan, NULL };
89 static int *rsp_serial_hfa[] = { &hf_bxxp_serial, NULL };
90 static int *rsp_seqno_hfa[] = { &hf_bxxp_seqno, NULL };
91 static int *rsp_size_hfa[] = { &hf_bxxp_size, NULL };
92 static int *seq_chan_hfa[] = { &hf_bxxp_channel, &hf_bxxp_seq_chan, NULL };
93 static int *seq_ackno_hfa[] = { &hf_bxxp_ackno, NULL };
94 static int *seq_window_hfa[] = { &hf_bxxp_window, NULL };
96 static int ett_bxxp = -1;
97 static int ett_mime_header = -1;
98 static int ett_header = -1;
99 static int ett_trailer = -1;
101 static unsigned int tcp_port = 0;
103 /* Get the state of the more flag ... */
106 #define BXXP_INTERMEDIATE 1
107 #define BXXP_COMPLETE 2
112 * pl_left is the amount of data in this packet that belongs to another
115 * It relies on TCP segments not being re-ordered too much ...
117 struct bxxp_proto_data {
118 int pl_left; /* Payload at beginning of frame */
119 int pl_size; /* Payload in current message ...*/
120 int mime_hdr; /* Whether we expect a mime header. 1 on first, 0 on rest
128 static int bxxp_packet_init_count = 100;
130 struct bxxp_request_key {
131 guint32 conversation;
134 struct bxxp_request_val {
135 guint16 processed; /* Have we processed this conversation? */
136 int size; /* Size of the message */
137 /* We need an indication in each dirn of
138 * whether on not a mime header is expected
140 int c_mime_hdr, s_mime_hdr;
143 GHashTable *bxxp_request_hash = NULL;
144 GMemChunk *bxxp_request_keys = NULL;
145 GMemChunk *bxxp_request_vals = NULL;
146 GMemChunk *bxxp_packet_infos = NULL;
150 bxxp_equal(gconstpointer v, gconstpointer w)
152 struct bxxp_request_key *v1 = (struct bxxp_request_key *)v;
153 struct bxxp_request_key *v2 = (struct bxxp_request_key *)w;
155 #if defined(DEBUG_BXXP_HASH)
156 printf("Comparing %08X\n and %08X\n",
157 v1->conversation, v2->conversation);
160 if (v1->conversation == v2->conversation)
168 bxxp_hash(gconstpointer v)
170 struct bxxp_request_key *key = (struct bxxp_request_key *)v;
173 val = key->conversation;
175 #if defined(DEBUG_BXXP_HASH)
176 printf("BXXP Hash calculated as %u\n", val);
184 bxxp_init_protocol(void)
186 #if defined(DEBUG_BXXP_HASH)
187 fprintf(stderr, "Initializing BXXP hashtable area\n");
190 if (bxxp_request_hash)
191 g_hash_table_destroy(bxxp_request_hash);
192 if (bxxp_request_keys)
193 g_mem_chunk_destroy(bxxp_request_keys);
194 if (bxxp_request_vals)
195 g_mem_chunk_destroy(bxxp_request_vals);
196 if (bxxp_packet_infos)
197 g_mem_chunk_destroy(bxxp_packet_infos);
199 bxxp_request_hash = g_hash_table_new(bxxp_hash, bxxp_equal);
200 bxxp_request_keys = g_mem_chunk_new("bxxp_request_keys",
201 sizeof(struct bxxp_request_key),
202 bxxp_packet_init_count * sizeof(struct bxxp_request_key), G_ALLOC_AND_FREE);
203 bxxp_request_vals = g_mem_chunk_new("bxxp_request_vals",
204 sizeof(struct bxxp_request_val),
205 bxxp_packet_init_count * sizeof(struct bxxp_request_val), G_ALLOC_AND_FREE);
206 bxxp_packet_infos = g_mem_chunk_new("bxxp_packet_infos",
207 sizeof(struct bxxp_proto_data),
208 bxxp_packet_init_count * sizeof(struct bxxp_proto_data), G_ALLOC_AND_FREE);
215 static int bxxp_get_more(char more)
219 return BXXP_COMPLETE;
220 else if (more == '*')
221 return BXXP_INTERMEDIATE;
226 /* dissect the more flag, and return a value of:
229 * -1 -> Proto violation
233 dissect_bxxp_more(tvbuff_t *tvb, int offset, frame_data *fd,
238 switch (bxxp_get_more(tvb_get_guint8(tvb, offset))) {
243 proto_tree_add_boolean_hidden(tree, hf_bxxp_complete, tvb, offset, 1, TRUE);
244 proto_tree_add_text(tree, tvb, offset, 1, "More: Complete");
251 case BXXP_INTERMEDIATE:
254 proto_tree_add_boolean_hidden(tree, hf_bxxp_intermediate, tvb, offset, 1, TRUE);
255 proto_tree_add_text(tree, tvb, offset, 1, "More: Intermediate");
265 proto_tree_add_boolean_hidden(tree, hf_bxxp_proto_viol, tvb, offset, 1, TRUE);
266 proto_tree_add_text(tree, tvb, offset, 1, "PROTOCOL VIOLATION: Expected More Flag (* or .)");
276 static void dissect_bxxp_status(tvbuff_t *tvb, int offset, frame_data *fd,
280 /* FIXME: We should return a value to indicate all OK. */
282 switch(tvb_get_guint8(tvb, offset)) {
287 proto_tree_add_boolean_hidden(tree, hf_bxxp_positive, tvb, offset, 1, TRUE);
288 proto_tree_add_text(tree, tvb, offset, 1, "Status: Positive");
296 proto_tree_add_boolean_hidden(tree, hf_bxxp_negative, tvb, offset, 1, TRUE);
297 proto_tree_add_text(tree, tvb, offset, 1, "Status: Negative");
302 default: /* Proto violation: FIXME */
310 static int num_len(tvbuff_t *tvb, int offset)
314 while (isdigit(tvb_get_guint8(tvb, offset + i))) i++;
321 * We check for a terminator. This can be CRLF, which will be recorded
322 * as a terminator, or CR or LF by itself, which will be redorded as
323 * an incorrect terminator ... We build the tree at this point
324 * However, we depend on the variable bxxp_strict_term
328 check_term(tvbuff_t *tvb, int offset, proto_tree *tree)
331 /* First, check for CRLF, or, if global_bxxp_strict_term is false,
332 * one of CR or LF ... If neither of these hold, we add an element
333 * that complains of a protocol violation, and return -1, else
334 * we add a terminator to the tree (possibly non-standard) and return
335 * the count of characters we saw ... This may throw off the rest of the
336 * dissection ... so-be-it!
339 if ((tvb_get_guint8(tvb, offset) == 0x0d &&
340 tvb_get_guint8(tvb, offset + 1) == 0x0a)){ /* Correct terminator */
343 proto_tree_add_text(tree, tvb, offset, 2, "Terminator: CRLF");
348 else if ((tvb_get_guint8(tvb, offset) == 0x0d) && !global_bxxp_strict_term) {
351 proto_tree_add_text(tree, tvb, offset, 1, "Nonstandard Terminator: CR");
352 proto_tree_add_boolean_hidden(tree, hf_bxxp_proto_viol, tvb, offset, 1, TRUE);
357 else if ((tvb_get_guint8(tvb, offset) == 0x0a) && !global_bxxp_strict_term) {
360 proto_tree_add_text(tree, tvb, offset, 1, "Nonstandard Terminator: LF");
361 proto_tree_add_boolean_hidden(tree, hf_bxxp_proto_viol, tvb, offset, 1, TRUE);
369 proto_tree_add_text(tree, tvb, offset, 2, "PROTOCOL VIOLATION, Invalid Terminator: %s", tvb_format_text(tvb, offset, 2));
370 proto_tree_add_boolean_hidden(tree, hf_bxxp_proto_viol, tvb, offset, 2, TRUE);
378 /* Get the header length, up to CRLF or CR or LF */
379 static int header_len(tvbuff_t *tvb, int offset)
384 /* FIXME: Have to make sure we stop looking at the end of the tvb ... */
386 /* We look for CRLF, or CR or LF if global_bxxp_strict_term is
392 if (tvb_length_remaining(tvb, offset + i) < 1)
393 return i; /* Not enough characters left ... */
395 if ((sc = tvb_get_guint8(tvb, offset + i)) == 0x0d
396 && tvb_get_guint8(tvb, offset + i + 1) == 0x0a)
397 return i; /* Done here ... */
399 if (!global_bxxp_strict_term && (sc == 0x0d || sc == 0x0a))
400 return i; /* Done here also ... */
408 dissect_bxxp_mime_header(tvbuff_t *tvb, int offset,
409 struct bxxp_proto_data *frame_data,
412 proto_tree *ti = NULL, *mime_tree = NULL;
413 int mime_length = header_len(tvb, offset), cc = 0;
415 if (frame_data && !frame_data->mime_hdr) return 0;
419 /* FIXME: Should calculate the whole length of the mime headers */
421 ti = proto_tree_add_text(tree, tvb, offset, mime_length, "Mime header: %s", tvb_format_text(tvb, offset, mime_length));
422 mime_tree = proto_item_add_subtree(ti, ett_mime_header);
425 if (mime_length == 0) { /* Default header */
428 proto_tree_add_text(mime_tree, tvb, offset, 0, "Default values");
431 if ((cc = check_term(tvb, offset, mime_tree)) <= 0) {
433 /* Ignore it, it will cause funnies in the rest of the dissect */
438 else { /* FIXME: Process the headers */
441 proto_tree_add_text(mime_tree, tvb, offset, mime_length, "Header: %s",
442 tvb_format_text(tvb, offset, mime_length));
445 if ((cc = check_term(tvb, offset + mime_length, mime_tree)) <= 0) {
447 /* Ignore it, it will cause funnies in the rest of the dissect */
453 return mime_length + cc; /* FIXME: Check that the CRLF is there */
458 dissect_bxxp_int(tvbuff_t *tvb, int offset, frame_data *fd,
459 proto_tree *tree, int hf, int *val, int *hfa[])
462 unsigned int i = num_len(tvb, offset);
463 guint8 int_buff[100];
465 memset(int_buff, '\0', sizeof(int_buff));
467 tvb_memcpy(tvb, int_buff, offset, MIN(sizeof(int_buff), i));
469 sscanf(int_buff, "%d", &ival); /* FIXME: Dangerous */
472 proto_tree_add_uint(tree, hf, tvb, offset, i, ival);
477 proto_tree_add_uint_hidden(tree, *hfa[ind], tvb, offset, i, ival);
482 *val = ival; /* Return the value */
489 set_mime_hdr_flags(int more, struct bxxp_request_val *request_val,
490 struct bxxp_proto_data *frame_data, packet_info *pinfo)
493 if (!request_val) return; /* Nothing to do ??? */
495 if (pinfo->destport == tcp_port) { /* Going to the server ... client */
497 if (request_val->c_mime_hdr) {
499 frame_data->mime_hdr = 0;
501 if (!more) request_val->c_mime_hdr = 0;
506 frame_data->mime_hdr = 1;
508 if (more) request_val->c_mime_hdr = 1;
515 if (request_val->s_mime_hdr) {
517 frame_data->mime_hdr = 0;
519 if (!more) request_val->s_mime_hdr = 0;
524 frame_data->mime_hdr = 1;
526 if (more) request_val->s_mime_hdr = 1;
536 * A return value of <= 0 says we bailed out, skip the rest of this message,
539 * A return value > 0 is the count of bytes we consumed ...
543 dissect_bxxp_tree(tvbuff_t *tvb, int offset, packet_info *pinfo,
544 proto_tree *tree, struct bxxp_request_val *request_val,
545 struct bxxp_proto_data *frame_data)
547 proto_tree *ti = NULL, *hdr = NULL;
548 int st_offset, serial, seqno, size, channel, ackno, window, cc,
553 if (tvb_strneql(tvb, offset, "REQ ", 4) == 0) {
556 ti = proto_tree_add_text(tree, tvb, offset, header_len(tvb, offset) + 2, "Header");
558 hdr = proto_item_add_subtree(ti, ett_header);
560 proto_tree_add_boolean_hidden(hdr, hf_bxxp_req, tvb, offset, 3, TRUE);
561 proto_tree_add_text(hdr, tvb, offset, 3, "Command: REQ");
567 if (tvb_get_guint8(tvb, offset) != ' ') { /* Protocol violation */
569 /* Hmm, FIXME ... Add some code here ... */
574 offset += 1; /* Skip the space */
576 /* Insert the more elements ... */
578 if ((more = dissect_bxxp_more(tvb, offset, pinfo->fd, hdr)) >= 0) {
580 /* Figure out which direction this is in and what mime_hdr flag to
581 * add to the frame_data. If there are missing segments, this code
585 set_mime_hdr_flags(more, request_val, frame_data, pinfo);
588 else { /* Protocol violation, so dissect rest as undisectable */
592 proto_tree_add_text(hdr, tvb, offset,
593 tvb_length_remaining(tvb, offset),
594 "Undissected Payload: %s",
595 tvb_format_text(tvb, offset,
596 tvb_length_remaining(tvb, offset)
608 /* Check the space ... */
612 /* Dissect the serial */
614 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_serial, &serial, req_serial_hfa);
619 /* now for the seqno */
621 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_seqno, &seqno, req_seqno_hfa);
627 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_size, &size, req_size_hfa);
628 if (request_val) /* FIXME, is this the right order ... */
629 request_val -> size = size; /* Stash this away */
631 frame_data->pl_size = size;
632 if (frame_data->pl_size < 0) frame_data->pl_size = 0; /* FIXME: OK? */
635 /* Check the space */
639 /* Get the channel */
641 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_channel, &channel, req_chan_hfa);
643 if ((cc = check_term(tvb, offset, hdr)) <= 0) {
645 /* We dissect the rest as data and bail ... */
648 proto_tree_add_text(hdr, tvb, offset,
649 tvb_length_remaining(tvb, offset),
650 "Undissected Payload: %s",
651 tvb_format_text(tvb, offset,
652 tvb_length_remaining(tvb, offset)
663 /* Insert MIME header ... */
665 if (frame_data && frame_data->mime_hdr)
666 offset += dissect_bxxp_mime_header(tvb, offset, frame_data, hdr);
668 /* Now for the payload, if any */
670 if (tvb_length_remaining(tvb, offset) > 0) { /* Dissect what is left as payload */
672 int pl_size = MIN(size, tvb_length_remaining(tvb, offset));
674 /* Except, check the payload length, and only dissect that much */
676 /* We need to keep track, in the conversation, of how much is left
677 * so in the next packet, we can figure out what is part of the payload
678 * and what is the next message
682 proto_tree_add_text(tree, tvb, offset, pl_size, "Payload: %s", tvb_format_text(tvb, offset, pl_size));
689 request_val->size -= pl_size;
690 if (request_val->size < 0) request_val->size = 0;
693 frame_data->pl_size -= pl_size;
694 if (frame_data->pl_size < 0) frame_data->pl_size = 0;
698 /* If anything else left, dissect it ... */
700 if (tvb_length_remaining(tvb, offset) > 0)
701 offset += dissect_bxxp_tree(tvb, offset, pinfo, tree, request_val, frame_data);
703 } else if (tvb_strneql(tvb, offset, "RSP ", 4) == 0) {
707 ti = proto_tree_add_text(tree, tvb, offset, header_len(tvb, offset) + 2, "Header");
709 hdr = proto_item_add_subtree(ti, ett_header);
711 proto_tree_add_boolean_hidden(hdr, hf_bxxp_rsp, tvb, offset, 3, TRUE);
712 proto_tree_add_text(hdr, tvb, offset, 3, "Command: RSP");
718 /* Now check the space: FIXME */
722 /* Next, the 'more' flag ... */
724 if ((more = dissect_bxxp_more(tvb, offset, pinfo->fd, hdr)) >= 0) {
726 set_mime_hdr_flags(more, request_val, frame_data, pinfo);
733 proto_tree_add_text(hdr, tvb, offset,
734 tvb_length_remaining(tvb, offset),
735 "Undissected Payload: %s",
736 tvb_format_text(tvb, offset,
737 tvb_length_remaining(tvb, offset)
749 /* Check the space */
753 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_serial, &serial, rsp_serial_hfa);
758 /* now for the seqno */
760 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_seqno, &seqno, rsp_seqno_hfa);
766 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, hdr, hf_bxxp_size, &size, rsp_size_hfa);
768 request_val->size = size;
770 frame_data->pl_size = size;
772 /* Check the space ... */
776 dissect_bxxp_status(tvb, offset, pinfo->fd, hdr);
780 if ((cc = check_term(tvb, offset, hdr)) <= 0) {
782 /* We dissect the rest as data and bail ... */
785 proto_tree_add_text(hdr, tvb, offset,
786 tvb_length_remaining(tvb, offset),
787 "Undissected Payload: %s",
788 tvb_format_text(tvb, offset,
789 tvb_length_remaining(tvb, offset)
800 /* Insert MIME header ... */
802 if (frame_data && frame_data->mime_hdr)
803 offset += dissect_bxxp_mime_header(tvb, offset, frame_data, hdr);
805 /* Now for the payload, if any */
807 if (tvb_length_remaining(tvb, offset) > 0) { /* Dissect what is left as payload */
809 int pl_size = MIN(size, tvb_length_remaining(tvb, offset));
811 /* Except, check the payload length, and only dissect that much */
814 proto_tree_add_text(tree, tvb, offset, pl_size, "Payload: %s", tvb_format_text(tvb, offset, pl_size));
820 request_val->size -= pl_size;
821 if (request_val->size < 0) request_val->size = 0;
824 frame_data->pl_size -= pl_size;
825 if (frame_data->pl_size < 0) frame_data->pl_size = 0;
829 /* If anything else left, dissect it ... As what? */
831 if (tvb_length_remaining(tvb, offset) > 0)
832 offset += dissect_bxxp_tree(tvb, offset, pinfo, tree, request_val, frame_data);
834 } else if (tvb_strneql(tvb, offset, "SEQ ", 4) == 0) {
837 proto_tree_add_boolean_hidden(tree, hf_bxxp_seq, tvb, offset, 3, TRUE);
838 proto_tree_add_text(tree, tvb, offset, 3, "Command: SEQ");
843 /* Now check the space: FIXME */
847 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, tree, hf_bxxp_channel, &channel, seq_chan_hfa);
849 /* Check the space: FIXME */
853 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, tree, hf_bxxp_ackno, &ackno, seq_ackno_hfa);
855 /* Check the space: FIXME */
859 offset += dissect_bxxp_int(tvb, offset, pinfo->fd, tree, hf_bxxp_window, &window, seq_window_hfa);
861 if ((cc = check_term(tvb, offset, tree)) <= 0) {
863 /* We dissect the rest as data and bail ... */
866 proto_tree_add_text(tree, tvb, offset,
867 tvb_length_remaining(tvb, offset),
868 "Undissected Payload: %s",
869 tvb_format_text(tvb, offset,
870 tvb_length_remaining(tvb, offset)
881 } else if (tvb_strneql(tvb, offset, "END", 3) == 0) {
883 proto_tree *tr = NULL;
886 ti = proto_tree_add_text(tree, tvb, offset, MIN(5, tvb_length_remaining(tvb, offset)), "Trailer");
888 tr = proto_item_add_subtree(ti, ett_trailer);
890 proto_tree_add_boolean_hidden(tr, hf_bxxp_end, tvb, offset, 3, TRUE);
891 proto_tree_add_text(tr, tvb, offset, 3, "Command: END");
897 if ((cc = check_term(tvb, offset, tr)) <= 0) {
899 /* We dissect the rest as data and bail ... */
902 proto_tree_add_text(tr, tvb, offset, tvb_length_remaining(tvb, offset),
903 "Undissected Payload: %s",
904 tvb_format_text(tvb, offset,
905 tvb_length_remaining(tvb, offset)
918 if (tvb_length_remaining(tvb, offset) > 0) { /* Dissect anything left over */
924 pl_size = MIN(request_val->size, tvb_length_remaining(tvb, offset));
926 /* FIXME: May be redundent ... */
928 if (pl_size == 0 && offset == st_offset) { /* The whole of the rest must be payload */
930 pl_size = tvb_length_remaining(tvb, offset); /* Right place ? */
934 } else if (frame_data) {
935 pl_size = MIN(frame_data->pl_size, tvb_length_remaining(tvb, offset));
936 } else { /* Just in case */
937 pl_size = tvb_length_remaining(tvb, offset);
940 /* Take care here to handle the payload correctly, and if there is
941 * another message here, then handle it correctly as well.
944 /* If the pl_size == 0 and the offset == st_offset, then we have not
945 * processed anything in this frame above, so we better treat all this
946 * data as payload to avoid recursion loops
949 if (pl_size == 0 && offset == st_offset)
950 pl_size = tvb_length_remaining(tvb, offset);
955 proto_tree_add_text(tree, tvb, offset, pl_size, "Payload: %s",
956 tvb_format_text(tvb, offset, pl_size));
959 offset += pl_size; /* Advance past the payload */
962 request_val->size -= pl_size; /* Reduce payload by what we added */
963 if (request_val->size < 0) request_val->size = 0;
966 frame_data->pl_size -= pl_size;
967 if (frame_data->pl_size < 0) frame_data->pl_size = 0;
971 if (tvb_length_remaining(tvb, offset) > 0) {
972 offset += dissect_bxxp_tree(tvb, offset, pinfo, tree, request_val, frame_data);
976 return offset - st_offset;
981 dissect_bxxp(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree)
984 struct bxxp_proto_data *frame_data = NULL;
985 proto_tree *bxxp_tree = NULL, *ti = NULL;
986 conversation_t *conversation = NULL;
987 struct bxxp_request_key request_key, *new_request_key;
988 struct bxxp_request_val *request_val = NULL;
992 /* If we have per frame data, use that, else, we must have lost the per-
993 * frame data, and we have to do a full dissect pass again.
995 * The per-frame data tells us how much of this frame is left over from a
996 * previous frame, so we dissect it as payload and then try to dissect the
999 * We use the conversation to build up info on the first pass over the
1000 * packets of type BXXP, and record anything that is needed if the user
1001 * does random dissects of packets in per packet data.
1003 * Once we have per-packet data, we don't need the conversation stuff
1004 * anymore, but if per-packet data and conversation stuff gets deleted, as
1005 * it does under some circumstances when a rescan is done, it all gets
1009 /* Find out what conversation this packet is part of ... but only
1010 * if we have no information on this packet, so find the per-frame
1014 frame_data = p_get_proto_data(pinfo->fd, proto_bxxp);
1018 conversation = find_conversation(&pinfo->src, &pinfo->dst, pinfo->ptype,
1019 pinfo->srcport, pinfo->destport, 0);
1020 if (conversation == NULL) { /* No conversation, create one */
1021 conversation = conversation_new(&pinfo->src, &pinfo->dst, pinfo->ptype,
1022 pinfo->srcport, pinfo->destport, 0);
1027 * Check for and insert an entry in the request table if does not exist
1029 request_key.conversation = conversation->index;
1031 request_val = (struct bxxp_request_val *)g_hash_table_lookup(bxxp_request_hash, &request_key);
1033 if (!request_val) { /* Create one */
1035 new_request_key = g_mem_chunk_alloc(bxxp_request_keys);
1036 new_request_key->conversation = conversation->index;
1038 request_val = g_mem_chunk_alloc(bxxp_request_vals);
1039 request_val->processed = 0;
1040 request_val->size = 0;
1042 g_hash_table_insert(bxxp_request_hash, new_request_key, request_val);
1047 if (check_col(pinfo->fd, COL_PROTOCOL))
1048 col_set_str(pinfo->fd, COL_PROTOCOL, "BXXP");
1050 if (check_col(pinfo->fd, COL_INFO)) { /* Check the type ... */
1052 /* "tvb_format_text()" is passed a value that won't go past the end
1053 * of the packet, so it won't throw an exception. */
1054 col_add_str(pinfo->fd, COL_INFO, tvb_format_text(tvb, offset, tvb_length_remaining(tvb, offset)));
1058 /* Here, we parse the message so we can retrieve the info we need, which
1059 * is that there is some payload left from a previous segment on the
1060 * front of this segment ... This all depends on TCP segments not getting
1063 * As a huge kludge, we push the checking for the tree down into the code
1064 * and process as if we were given a tree but not call the routines that
1065 * adorn the protocol tree if they were NULL.
1068 if (tree) { /* Build the tree info ... */
1070 ti = proto_tree_add_item(tree, proto_bxxp, tvb, offset, tvb_length(tvb), FALSE);
1072 bxxp_tree = proto_item_add_subtree(ti, ett_bxxp);
1076 /* Check the per-frame data and the conversation for any left-over
1077 * payload from the previous frame
1079 * We check that per-frame data exists first, and if so, use it,
1080 * else we use the conversation data.
1082 * We create per-frame data here as well, but we must ensure we create it
1083 * after we have done the check for per-frame or conversation data.
1085 * We also depend on the first frame in a group having a pl_size of 0.
1088 if (frame_data && frame_data->pl_left > 0) {
1090 int pl_left = frame_data->pl_left;
1092 pl_left = MIN(pl_left, tvb_length_remaining(tvb, offset));
1094 /* Add the payload bit, only if we have a tree */
1096 proto_tree_add_text(bxxp_tree, tvb, offset, pl_left, "Payload: %s",
1097 tvb_format_text(tvb, offset, pl_left));
1101 else if (request_val && request_val->size > 0) {
1103 int pl_left = request_val->size;
1105 request_val->size = 0;
1107 /* We create the frame data here for this case, and
1108 * elsewhere for other frames
1111 frame_data = g_mem_chunk_alloc(bxxp_packet_infos);
1113 frame_data->pl_left = pl_left;
1114 frame_data->pl_size = 0;
1115 frame_data->mime_hdr = 0;
1117 p_add_proto_data(pinfo->fd, proto_bxxp, frame_data);
1121 /* Set up the per-frame data here if not already done so
1122 * This _must_ come after the checks above ...
1125 if (frame_data == NULL) {
1127 frame_data = g_mem_chunk_alloc(bxxp_packet_infos);
1129 frame_data->pl_left = 0;
1130 frame_data->pl_size = 0;
1131 frame_data->mime_hdr = 0;
1133 p_add_proto_data(pinfo->fd, proto_bxxp, frame_data);
1137 if (tvb_length_remaining(tvb, offset) > 0) {
1139 offset += dissect_bxxp_tree(tvb, offset, pinfo, bxxp_tree, request_val, frame_data);
1145 /* Register all the bits needed with the filtering engine */
1148 proto_register_bxxp(void)
1150 static hf_register_info hf[] = {
1151 { &hf_bxxp_proto_viol,
1152 { "Protocol Violation", "bxxp.violation", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1155 { "Request", "bxxp.req", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1157 { &hf_bxxp_req_chan,
1158 { "Request Channel Number", "bxxp.req.channel", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1161 { "Response", "bxxp.rsp", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1163 { &hf_bxxp_rsp_chan,
1164 { "Response Channel Number", "bxxp.rsp.channel", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1167 { "Sequence", "bxxp.seq", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1169 { &hf_bxxp_seq_chan,
1170 { "Sequence Channel Number", "bxxp.seq.channel", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1173 { "End", "bxxp.end", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1175 { &hf_bxxp_complete,
1176 { "Complete", "bxxp.more.complete", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1178 { &hf_bxxp_intermediate,
1179 { "Intermediate", "bxxp.more.intermediate", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1182 { "Serial", "bxxp.serial", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1185 { "Seqno", "bxxp.seqno", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1188 { "Size", "bxxp.size", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1191 { "Channel", "bxxp.channel", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1193 { &hf_bxxp_negative,
1194 { "Negative", "bxxp.status.negative", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1196 { &hf_bxxp_positive,
1197 { "Positive", "bxxp.status.positive", FT_BOOLEAN, BASE_NONE, NULL, 0x0, "", HFILL }},
1200 { "Ackno", "bxxp.seq.ackno", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1203 { "Window", "bxxp.seq.window", FT_UINT32, BASE_DEC, NULL, 0x0, "", HFILL }},
1206 static gint *ett[] = {
1212 module_t *bxxp_module;
1214 proto_bxxp = proto_register_protocol("Blocks eXtensible eXchange Protocol",
1217 proto_register_field_array(proto_bxxp, hf, array_length(hf));
1218 proto_register_subtree_array(ett, array_length(ett));
1219 register_init_routine(&bxxp_init_protocol);
1221 /* Register our configuration options for BXXP, particularly our port */
1223 bxxp_module = prefs_register_protocol(proto_bxxp, proto_reg_handoff_bxxp);
1225 prefs_register_uint_preference(bxxp_module, "tcp.port", "BXXP TCP Port",
1226 "Set the port for BXXP messages (if other"
1227 " than the default of 10288)",
1228 10, &global_bxxp_tcp_port);
1230 prefs_register_bool_preference(bxxp_module, "strict_header_terminator",
1231 "BXXP Header Requires CRLF",
1232 "Specifies that BXXP requires CRLF as a "
1233 "terminator, and not just CR or LF",
1234 &global_bxxp_strict_term);
1237 /* The registration hand-off routine */
1239 proto_reg_handoff_bxxp(void)
1241 static int bxxp_prefs_initialized = FALSE;
1243 if (bxxp_prefs_initialized) {
1245 dissector_delete("tcp.port", tcp_port, dissect_bxxp);
1250 bxxp_prefs_initialized = TRUE;
1254 /* Set our port number for future use */
1256 tcp_port = global_bxxp_tcp_port;
1258 dissector_add("tcp.port", global_bxxp_tcp_port, dissect_bxxp, proto_bxxp);
git.samba.org / obnox / wireshark / wip.git / blob