2 * Routines for SNMP (simple network management protocol)
3 * Copyright (C) 1998 Didier Jorand
5 * See RFC 1157 for SNMPv1.
7 * See RFCs 1901, 1905, and 1906 for SNMPv2c.
9 * See RFCs 1905, 1906, 1909, and 1910 for SNMPv2u.
11 * $Id: packet-snmp.c,v 1.95 2002/08/21 21:25:23 tpot Exp $
13 * Ethereal - Network traffic analyzer
14 * By Gerald Combs <gerald@ethereal.com>
15 * Copyright 1998 Gerald Combs
19 * GXSNMP -- An snmp mangament application
20 * Copyright (C) 1998 Gregory McLean & Jochen Friedrich
21 * Beholder RMON ethernet network monitor,Copyright (C) 1993 DNPAP group
23 * This program is free software; you can redistribute it and/or
24 * modify it under the terms of the GNU General Public License
25 * as published by the Free Software Foundation; either version 2
26 * of the License, or (at your option) any later version.
28 * This program is distributed in the hope that it will be useful,
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
31 * GNU General Public License for more details.
33 * You should have received a copy of the GNU General Public License
34 * along with this program; if not, write to the Free Software
35 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
48 #include <epan/packet.h>
49 #include <epan/strutil.h>
50 #include <epan/conversation.h>
52 #include "packet-ipx.h"
55 # include <ucd-snmp/ucd-snmp-config.h>
56 # include <ucd-snmp/asn1.h>
57 # include <ucd-snmp/snmp_api.h>
58 # include <ucd-snmp/snmp_impl.h>
59 # include <ucd-snmp/mib.h>
60 # include <ucd-snmp/default_store.h>
61 # include <ucd-snmp/read_config.h>
62 # include <ucd-snmp/tools.h>
65 * Define values "sprint_realloc_value()" expects.
67 # define VALTYPE_INTEGER ASN_INTEGER
68 # define VALTYPE_COUNTER ASN_COUNTER
69 # define VALTYPE_GAUGE ASN_GAUGE
70 # define VALTYPE_TIMETICKS ASN_TIMETICKS
71 # define VALTYPE_STRING ASN_OCTET_STR
72 # define VALTYPE_IPADDR ASN_IPADDRESS
73 # define VALTYPE_OPAQUE ASN_OPAQUE
74 # define VALTYPE_NSAP ASN_NSAP
75 # define VALTYPE_OBJECTID ASN_OBJECT_ID
76 # define VALTYPE_BITSTR ASN_BIT_STR
77 # define VALTYPE_COUNTER64 ASN_COUNTER64
83 #include "packet-snmp.h"
84 #include "format-oid.h"
86 /* Null string of type "guchar[]". */
87 static const guchar nullstring[] = "";
89 /* Take a pointer that may be null and return a pointer that's not null
90 by turning null pointers into pointers to the above null string. */
91 #define SAFE_STRING(s) (((s) != NULL) ? (s) : nullstring)
93 static int proto_snmp = -1;
94 static int proto_smux = -1;
96 static gint ett_snmp = -1;
97 static gint ett_smux = -1;
98 static gint ett_parameters = -1;
99 static gint ett_parameters_qos = -1;
100 static gint ett_global = -1;
101 static gint ett_flags = -1;
102 static gint ett_secur = -1;
104 static int hf_snmpv3_flags = -1;
105 static int hf_snmpv3_flags_auth = -1;
106 static int hf_snmpv3_flags_crypt = -1;
107 static int hf_snmpv3_flags_report = -1;
109 static dissector_handle_t snmp_handle;
110 static dissector_handle_t data_handle;
113 #define TH_CRYPT 0x02
114 #define TH_REPORT 0x04
116 #define UDP_PORT_SNMP 161
117 #define UDP_PORT_SNMP_TRAP 162
118 #define TCP_PORT_SMUX 199
120 /* Protocol version numbers */
121 #define SNMP_VERSION_1 0
122 #define SNMP_VERSION_2c 1
123 #define SNMP_VERSION_2u 2
124 #define SNMP_VERSION_3 3
126 static const value_string versions[] = {
127 { SNMP_VERSION_1, "1" },
128 { SNMP_VERSION_2c, "2C" },
129 { SNMP_VERSION_2u, "2U" },
130 { SNMP_VERSION_3, "3" },
135 #define SNMP_MSG_GET 0
136 #define SNMP_MSG_GETNEXT 1
137 #define SNMP_MSG_RESPONSE 2
138 #define SNMP_MSG_SET 3
139 #define SNMP_MSG_TRAP 4
141 #define SNMP_MSG_GETBULK 5
142 #define SNMP_MSG_INFORM 6
143 #define SNMP_MSG_TRAP2 7
144 #define SNMP_MSG_REPORT 8
146 static const value_string pdu_types[] = {
147 { SNMP_MSG_GET, "GET" },
148 { SNMP_MSG_GETNEXT, "GET-NEXT" },
149 { SNMP_MSG_SET, "SET" },
150 { SNMP_MSG_RESPONSE, "RESPONSE" },
151 { SNMP_MSG_TRAP, "TRAP-V1" },
152 { SNMP_MSG_GETBULK, "GETBULK" },
153 { SNMP_MSG_INFORM, "INFORM" },
154 { SNMP_MSG_TRAP2, "TRAP-V2" },
155 { SNMP_MSG_REPORT, "REPORT" },
160 #define SMUX_MSG_OPEN 0
161 #define SMUX_MSG_CLOSE 1
162 #define SMUX_MSG_RREQ 2
163 #define SMUX_MSG_RRSP 3
164 #define SMUX_MSG_SOUT 4
166 static const value_string smux_types[] = {
167 { SMUX_MSG_OPEN, "Open" },
168 { SMUX_MSG_CLOSE, "Close" },
169 { SMUX_MSG_RREQ, "Registration Request" },
170 { SMUX_MSG_RRSP, "Registration Response" },
171 { SMUX_MSG_SOUT, "Commit Or Rollback" },
175 /* SMUX Closing causes */
176 #define SMUX_CLOSE_DOWN 0
177 #define SMUX_CLOSE_VERSION 1
178 #define SMUX_CLOSE_PACKET 2
179 #define SMUX_CLOSE_PROTOCOL 3
180 #define SMUX_CLOSE_INTERNAL 4
181 #define SMUX_CLOSE_NOAUTH 5
183 static const value_string smux_close[] = {
184 { SMUX_CLOSE_DOWN, "Going down" },
185 { SMUX_CLOSE_VERSION, "Unsupported Version" },
186 { SMUX_CLOSE_PACKET, "Packet Format Error" },
187 { SMUX_CLOSE_PROTOCOL, "Protocol Error" },
188 { SMUX_CLOSE_INTERNAL, "Internal Error" },
189 { SMUX_CLOSE_NOAUTH, "Unauthorized" },
193 /* SMUX Request codes */
194 #define SMUX_RREQ_DELETE 0
195 #define SMUX_RREQ_READONLY 1
196 #define SMUX_RREQ_READWRITE 2
198 static const value_string smux_rreq[] = {
199 { SMUX_RREQ_DELETE, "Delete" },
200 { SMUX_RREQ_READONLY, "Read Only" },
201 { SMUX_RREQ_READWRITE, "Read Write" },
205 static const value_string smux_prio[] = {
210 /* SMUX SOut codes */
211 #define SMUX_SOUT_COMMIT 0
212 #define SMUX_SOUT_ROLLBACK 1
214 static const value_string smux_sout[] = {
215 { SMUX_SOUT_COMMIT, "Commit" },
216 { SMUX_SOUT_ROLLBACK, "Rollback" },
220 /* Error status values */
221 #define SNMP_ERR_NOERROR 0
222 #define SNMP_ERR_TOOBIG 1
223 #define SNMP_ERR_NOSUCHNAME 2
224 #define SNMP_ERR_BADVALUE 3
225 #define SNMP_ERR_READONLY 4
226 #define SNMP_ERR_GENERROR 5
228 #define SNMP_ERR_NOACCESS 6
229 #define SNMP_ERR_WRONGTYPE 7
230 #define SNMP_ERR_WRONGLENGTH 8
231 #define SNMP_ERR_WRONGENCODING 9
232 #define SNMP_ERR_WRONGVALUE 10
233 #define SNMP_ERR_NOCREATION 11
234 #define SNMP_ERR_INCONSISTENTVALUE 12
235 #define SNMP_ERR_RESOURCEUNAVAILABLE 13
236 #define SNMP_ERR_COMMITFAILED 14
237 #define SNMP_ERR_UNDOFAILED 15
238 #define SNMP_ERR_AUTHORIZATIONERROR 16
239 #define SNMP_ERR_NOTWRITABLE 17
240 #define SNMP_ERR_INCONSISTENTNAME 18
242 static const value_string error_statuses[] = {
243 { SNMP_ERR_NOERROR, "NO ERROR" },
244 { SNMP_ERR_TOOBIG, "TOOBIG" },
245 { SNMP_ERR_NOSUCHNAME, "NO SUCH NAME" },
246 { SNMP_ERR_BADVALUE, "BAD VALUE" },
247 { SNMP_ERR_READONLY, "READ ONLY" },
248 { SNMP_ERR_GENERROR, "GENERIC ERROR" },
249 { SNMP_ERR_NOACCESS, "NO ACCESS" },
250 { SNMP_ERR_WRONGTYPE, "WRONG TYPE" },
251 { SNMP_ERR_WRONGLENGTH, "WRONG LENGTH" },
252 { SNMP_ERR_WRONGENCODING, "WRONG ENCODING" },
253 { SNMP_ERR_WRONGVALUE, "WRONG VALUE" },
254 { SNMP_ERR_NOCREATION, "NO CREATION" },
255 { SNMP_ERR_INCONSISTENTVALUE, "INCONSISTENT VALUE" },
256 { SNMP_ERR_RESOURCEUNAVAILABLE, "RESOURCE UNAVAILABLE" },
257 { SNMP_ERR_COMMITFAILED, "COMMIT FAILED" },
258 { SNMP_ERR_UNDOFAILED, "UNDO FAILED" },
259 { SNMP_ERR_AUTHORIZATIONERROR, "AUTHORIZATION ERROR" },
260 { SNMP_ERR_NOTWRITABLE, "NOT WRITABLE" },
261 { SNMP_ERR_INCONSISTENTNAME, "INCONSISTENT NAME" },
265 /* General SNMP V1 Traps */
267 #define SNMP_TRAP_COLDSTART 0
268 #define SNMP_TRAP_WARMSTART 1
269 #define SNMP_TRAP_LINKDOWN 2
270 #define SNMP_TRAP_LINKUP 3
271 #define SNMP_TRAP_AUTHFAIL 4
272 #define SNMP_TRAP_EGPNEIGHBORLOSS 5
273 #define SNMP_TRAP_ENTERPRISESPECIFIC 6
275 static const value_string trap_types[] = {
276 { SNMP_TRAP_COLDSTART, "COLD START" },
277 { SNMP_TRAP_WARMSTART, "WARM START" },
278 { SNMP_TRAP_LINKDOWN, "LINK DOWN" },
279 { SNMP_TRAP_LINKUP, "LINK UP" },
280 { SNMP_TRAP_AUTHFAIL, "AUTHENTICATION FAILED" },
281 { SNMP_TRAP_EGPNEIGHBORLOSS, "EGP NEIGHBORLOSS" },
282 { SNMP_TRAP_ENTERPRISESPECIFIC, "ENTERPRISE SPECIFIC" },
286 /* Security Models */
288 #define SNMP_SEC_ANY 0
289 #define SNMP_SEC_V1 1
290 #define SNMP_SEC_V2C 2
291 #define SNMP_SEC_USM 3
293 static const value_string sec_models[] = {
294 { SNMP_SEC_ANY, "Any" },
295 { SNMP_SEC_V1, "V1" },
296 { SNMP_SEC_V2C, "V2C" },
297 { SNMP_SEC_USM, "USM" },
303 #define SNMP_IPA 0 /* IP Address */
304 #define SNMP_CNT 1 /* Counter (Counter32) */
305 #define SNMP_GGE 2 /* Gauge (Gauge32) */
306 #define SNMP_TIT 3 /* TimeTicks */
307 #define SNMP_OPQ 4 /* Opaque */
308 #define SNMP_NSP 5 /* NsapAddress */
309 #define SNMP_C64 6 /* Counter64 */
310 #define SNMP_U32 7 /* Uinteger32 */
319 #define SNMP_INTEGER 1 /* l */
320 #define SNMP_OCTETSTR 2 /* c */
321 #define SNMP_DISPLAYSTR 2 /* c */
322 #define SNMP_OBJECTID 3 /* ul */
323 #define SNMP_IPADDR 4 /* uc */
324 #define SNMP_COUNTER 5 /* ul */
325 #define SNMP_GAUGE 6 /* ul */
326 #define SNMP_TIMETICKS 7 /* ul */
327 #define SNMP_OPAQUE 8 /* c */
329 /* additional SNMPv2 Types */
331 #define SNMP_UINTEGER 5 /* ul */
332 #define SNMP_BITSTR 9 /* uc */
333 #define SNMP_NSAP 10 /* uc */
334 #define SNMP_COUNTER64 11 /* ul */
335 #define SNMP_NOSUCHOBJECT 12
336 #define SNMP_NOSUCHINSTANCE 13
337 #define SNMP_ENDOFMIBVIEW 14
339 typedef struct _SNMP_CNV SNMP_CNV;
349 static SNMP_CNV SnmpCnv [] =
351 {ASN1_UNI, ASN1_NUL, SNMP_NULL, "NULL"},
352 {ASN1_UNI, ASN1_INT, SNMP_INTEGER, "INTEGER"},
353 {ASN1_UNI, ASN1_OTS, SNMP_OCTETSTR, "OCTET STRING"},
354 {ASN1_UNI, ASN1_OJI, SNMP_OBJECTID, "OBJECTID"},
355 {ASN1_APL, SNMP_IPA, SNMP_IPADDR, "IPADDR"},
356 {ASN1_APL, SNMP_CNT, SNMP_COUNTER, "COUNTER"}, /* Counter32 */
357 {ASN1_APL, SNMP_GGE, SNMP_GAUGE, "GAUGE"}, /* Gauge32 == Unsigned32 */
358 {ASN1_APL, SNMP_TIT, SNMP_TIMETICKS, "TIMETICKS"},
359 {ASN1_APL, SNMP_OPQ, SNMP_OPAQUE, "OPAQUE"},
361 /* SNMPv2 data types and errors */
363 {ASN1_UNI, ASN1_BTS, SNMP_BITSTR, "BITSTR"},
364 {ASN1_APL, SNMP_C64, SNMP_COUNTER64, "COUNTER64"},
365 {ASN1_CTX, SERR_NSO, SNMP_NOSUCHOBJECT, "NOSUCHOBJECT"},
366 {ASN1_CTX, SERR_NSI, SNMP_NOSUCHINSTANCE, "NOSUCHINSTANCE"},
367 {ASN1_CTX, SERR_EOM, SNMP_ENDOFMIBVIEW, "ENDOFMIBVIEW"},
372 * NAME: g_snmp_tag_cls2syntax
373 * SYNOPSIS: gboolean g_snmp_tag_cls2syntax
379 * DESCRIPTION: Converts ASN1 tag and class to Syntax tag and name.
380 * See SnmpCnv for conversion.
381 * RETURNS: name on success, NULL on failure
385 snmp_tag_cls2syntax ( guint tag, guint cls, gushort *syntax)
390 while (cnv->syntax != -1)
392 if (cnv->tag == tag && cnv->class == cls)
394 *syntax = cnv->syntax;
403 dissect_snmp_parse_error(tvbuff_t *tvb, int offset, packet_info *pinfo,
404 proto_tree *tree, const char *field_name, int ret)
408 errstr = asn1_err_to_str(ret);
410 if (check_col(pinfo->cinfo, COL_INFO)) {
411 col_add_fstr(pinfo->cinfo, COL_INFO,
412 "ERROR: Couldn't parse %s: %s", field_name, errstr);
415 proto_tree_add_text(tree, tvb, offset, 0,
416 "ERROR: Couldn't parse %s: %s", field_name, errstr);
417 call_dissector(data_handle,
418 tvb_new_subset(tvb, offset, -1, -1), pinfo, tree);
423 dissect_snmp_error(tvbuff_t *tvb, int offset, packet_info *pinfo,
424 proto_tree *tree, const char *message)
426 if (check_col(pinfo->cinfo, COL_INFO))
427 col_add_str(pinfo->cinfo, COL_INFO, message);
430 proto_tree_add_text(tree, tvb, offset, 0, "%s", message);
431 call_dissector(data_handle,
432 tvb_new_subset(tvb, offset, -1, -1), pinfo, tree);
437 format_oid(subid_t *oid, guint oid_length)
446 size_t oid_string_len;
450 result_len = oid_length * 22;
454 * Get the decoded form of the OID, and add its length to the
455 * length of the result string.
457 * XXX - check for "malloc" and "sprint_realloc_objid()" failure.
459 oid_string_len = 256;
460 oid_string = malloc(oid_string_len);
463 sprint_realloc_objid(&oid_string, &oid_string_len, &oid_out_len, 1,
465 result_len += strlen(oid_string) + 3;
468 result = g_malloc(result_len + 1);
470 len = sprintf(buf, "%lu", (unsigned long)oid[0]);
472 for (i = 1; i < oid_length;i++) {
473 len = sprintf(buf, ".%lu", (unsigned long)oid[i]);
479 * Append the decoded form of the OID.
481 sprintf(buf, " (%s)", oid_string);
490 check_var_length(guint vb_length, guint required_length)
493 static const char badlen_fmt[] = "Length is %u, should be %u";
495 if (vb_length != required_length) {
496 /* Enough room for the largest "Length is XXX,
497 should be XXX" message - 10 digits for each
499 buf = malloc(sizeof badlen_fmt + 10 + 10);
500 sprintf(buf, badlen_fmt, vb_length, required_length);
503 return NULL; /* length is OK */
507 format_var(struct variable_list *variable, subid_t *variable_oid,
508 guint variable_oid_length, gushort vb_type, guint val_len)
517 /* Length has to be 4 bytes. */
518 buf = check_var_length(val_len, 4);
520 return buf; /* it's not 4 bytes */
524 /* Length has to be 8 bytes. */
525 buf = check_var_length(val_len, 8);
527 return buf; /* it's not 8 bytes */
534 variable->next_variable = NULL;
535 variable->name = variable_oid;
536 variable->name_length = variable_oid_length;
540 variable->type = VALTYPE_INTEGER;
544 variable->type = VALTYPE_COUNTER;
548 variable->type = VALTYPE_GAUGE;
552 variable->type = VALTYPE_TIMETICKS;
556 variable->type = VALTYPE_STRING;
560 variable->type = VALTYPE_IPADDR;
564 variable->type = VALTYPE_OPAQUE;
568 variable->type = VALTYPE_NSAP;
572 variable->type = VALTYPE_OBJECTID;
576 variable->type = VALTYPE_BITSTR;
580 variable->type = VALTYPE_COUNTER64;
583 variable->val_len = val_len;
586 * XXX - check for "malloc" and "sprint_realloc_objid()" failure.
589 buf = malloc(buf_len);
592 sprint_realloc_value(&buf, &buf_len, &out_len, 1, variable_oid,
593 variable_oid_length, variable);
599 snmp_variable_decode(proto_tree *snmp_tree,
600 subid_t *variable_oid
601 #ifndef HAVE_UCD_SNMP
605 guint variable_oid_length
606 #ifndef HAVE_UCD_SNMP
610 ASN1_SCK *asn1, int offset, guint *lengthp)
621 gint32 vb_integer_value;
622 guint32 vb_uinteger_value;
624 guint8 *vb_octet_string;
629 gchar *vb_display_string;
632 struct variable_list variable;
634 #else /* HAVE_UCD_SNMP */
638 #endif /* HAVE_UCD_SNMP */
640 /* parse the type of the object */
641 start = asn1->offset;
642 ret = asn1_header_decode (asn1, &cls, &con, &tag, &def, &vb_length);
643 if (ret != ASN1_ERR_NOERROR)
646 return ASN1_ERR_LENGTH_NOT_DEFINITE;
648 /* Convert the class, constructed flag, and tag to a type. */
649 vb_type_name = snmp_tag_cls2syntax(tag, cls, &vb_type);
650 if (vb_type_name == NULL) {
653 * Dissect the value as an opaque string of octets.
655 vb_type_name = "unsupported type";
656 vb_type = SNMP_OPAQUE;
659 /* parse the value */
663 ret = asn1_int32_value_decode(asn1, vb_length,
665 if (ret != ASN1_ERR_NOERROR)
667 length = asn1->offset - start;
670 value = vb_integer_value;
671 variable.val.integer = &value;
672 vb_display_string = format_var(&variable,
673 variable_oid, variable_oid_length, vb_type,
675 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
677 "Value: %s", vb_display_string);
678 free(vb_display_string);
679 #else /* HAVE_UCD_SNMP */
680 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
682 "Value: %s: %d (%#x)", vb_type_name,
683 vb_integer_value, vb_integer_value);
684 #endif /* HAVE_UCD_SNMP */
691 ret = asn1_uint32_value_decode(asn1, vb_length,
693 if (ret != ASN1_ERR_NOERROR)
695 length = asn1->offset - start;
698 value = vb_uinteger_value;
699 variable.val.integer = &value;
700 vb_display_string = format_var(&variable,
701 variable_oid, variable_oid_length, vb_type,
703 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
705 "Value: %s", vb_display_string);
706 free(vb_display_string);
707 #else /* HAVE_UCD_SNMP */
708 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
710 "Value: %s: %u (%#x)", vb_type_name,
711 vb_uinteger_value, vb_uinteger_value);
712 #endif /* HAVE_UCD_SNMP */
722 ret = asn1_string_value_decode (asn1, vb_length,
724 if (ret != ASN1_ERR_NOERROR)
726 length = asn1->offset - start;
729 variable.val.string = vb_octet_string;
730 vb_display_string = format_var(&variable,
731 variable_oid, variable_oid_length, vb_type,
733 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
735 "Value: %s", vb_display_string);
736 free(vb_display_string);
737 #else /* HAVE_UCD_SNMP */
739 * If some characters are not printable, display
740 * the string as bytes.
742 for (i = 0; i < vb_length; i++) {
743 if (!(isprint(vb_octet_string[i])
744 || isspace(vb_octet_string[i])))
749 * We stopped, due to a non-printable
750 * character, before we got to the end
753 vb_display_string = g_malloc(4*vb_length);
754 buf = &vb_display_string[0];
755 len = sprintf(buf, "%03u", vb_octet_string[0]);
757 for (i = 1; i < vb_length; i++) {
758 len = sprintf(buf, ".%03u",
762 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
764 "Value: %s: %s", vb_type_name,
766 g_free(vb_display_string);
768 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
770 "Value: %s: %.*s", vb_type_name,
772 SAFE_STRING(vb_octet_string));
774 #endif /* HAVE_UCD_SNMP */
776 g_free(vb_octet_string);
780 ret = asn1_null_decode (asn1, vb_length);
781 if (ret != ASN1_ERR_NOERROR)
783 length = asn1->offset - start;
785 proto_tree_add_text(snmp_tree, asn1->tvb, offset, length,
786 "Value: %s", vb_type_name);
791 ret = asn1_oid_value_decode (asn1, vb_length, &vb_oid,
793 if (ret != ASN1_ERR_NOERROR)
795 length = asn1->offset - start;
798 variable.val.objid = vb_oid;
799 vb_display_string = format_var(&variable,
800 variable_oid, variable_oid_length, vb_type,
801 vb_oid_length * sizeof (subid_t));
802 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
804 "Value: %s", vb_display_string);
805 free(vb_display_string);
806 #else /* HAVE_UCD_SNMP */
807 vb_display_string = format_oid(vb_oid, vb_oid_length);
808 proto_tree_add_text(snmp_tree, asn1->tvb, offset,
810 "Value: %s: %s", vb_type_name, vb_display_string);
811 g_free(vb_display_string);
812 #endif /* HAVE_UCD_SNMP */
817 case SNMP_NOSUCHOBJECT:
818 length = asn1->offset - start;
820 proto_tree_add_text(snmp_tree, asn1->tvb, offset, length,
821 "Value: %s: no such object", vb_type_name);
825 case SNMP_NOSUCHINSTANCE:
826 length = asn1->offset - start;
828 proto_tree_add_text(snmp_tree, asn1->tvb, offset, length,
829 "Value: %s: no such instance", vb_type_name);
833 case SNMP_ENDOFMIBVIEW:
834 length = asn1->offset - start;
836 proto_tree_add_text(snmp_tree, asn1->tvb, offset, length,
837 "Value: %s: end of mib view", vb_type_name);
842 g_assert_not_reached();
843 return ASN1_ERR_WRONG_TYPE;
846 return ASN1_ERR_NOERROR;
850 dissect_common_pdu(tvbuff_t *tvb, int offset, packet_info *pinfo,
851 proto_tree *tree, ASN1_SCK asn1, guint pdu_type, int start)
855 guint sequence_length;
859 guint32 error_status;
863 char *pdu_type_string;
866 guint enterprise_length;
868 guint8 *agent_address;
869 guint agent_address_length;
873 guint32 specific_type;
876 guint timestamp_length;
880 guint variable_bindings_length;
883 guint variable_length;
884 subid_t *variable_oid;
885 guint variable_oid_length;
890 pdu_type_string = val_to_str(pdu_type, pdu_types,
891 "Unknown PDU type %#x");
892 if (check_col(pinfo->cinfo, COL_INFO))
893 col_add_str(pinfo->cinfo, COL_INFO, pdu_type_string);
894 length = asn1.offset - start;
896 proto_tree_add_text(tree, tvb, offset, length,
897 "PDU type: %s", pdu_type_string);
901 /* get the fields in the PDU preceeding the variable-bindings sequence */
905 case SNMP_MSG_GETNEXT:
906 case SNMP_MSG_RESPONSE:
908 case SNMP_MSG_GETBULK:
909 case SNMP_MSG_INFORM:
911 case SNMP_MSG_REPORT:
913 ret = asn1_uint32_decode (&asn1, &request_id, &length);
914 if (ret != ASN1_ERR_NOERROR) {
915 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
920 proto_tree_add_text(tree, tvb, offset, length,
921 "Request Id: %#x", request_id);
925 /* error status, or getbulk non-repeaters */
926 ret = asn1_uint32_decode (&asn1, &error_status, &length);
927 if (ret != ASN1_ERR_NOERROR) {
928 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
929 (pdu_type == SNMP_MSG_GETBULK) ? "non-repeaters"
935 if (pdu_type == SNMP_MSG_GETBULK) {
936 proto_tree_add_text(tree, tvb, offset,
937 length, "Non-repeaters: %u", error_status);
939 proto_tree_add_text(tree, tvb, offset,
940 length, "Error Status: %s",
941 val_to_str(error_status, error_statuses,
947 /* error index, or getbulk max-repetitions */
948 ret = asn1_uint32_decode (&asn1, &error_index, &length);
949 if (ret != ASN1_ERR_NOERROR) {
950 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
951 (pdu_type == SNMP_MSG_GETBULK) ? "max repetitions"
957 if (pdu_type == SNMP_MSG_GETBULK) {
958 proto_tree_add_text(tree, tvb, offset,
959 length, "Max repetitions: %u", error_index);
961 proto_tree_add_text(tree, tvb, offset,
962 length, "Error Index: %u", error_index);
970 ret = asn1_oid_decode (&asn1, &enterprise, &enterprise_length,
972 if (ret != ASN1_ERR_NOERROR) {
973 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
974 "enterprise OID", ret);
978 oid_string = format_oid(enterprise, enterprise_length);
979 proto_tree_add_text(tree, tvb, offset, length,
980 "Enterprise: %s", oid_string);
988 ret = asn1_header_decode (&asn1, &cls, &con, &tag,
989 &def, &agent_address_length);
990 if (ret != ASN1_ERR_NOERROR) {
991 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
992 "agent address", ret);
995 if (!((cls == ASN1_APL && con == ASN1_PRI && tag == SNMP_IPA) ||
996 (cls == ASN1_UNI && con == ASN1_PRI && tag == ASN1_OTS))) {
997 /* GXSNMP 0.0.15 says the latter is "needed for
999 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1000 "agent_address", ASN1_ERR_WRONG_TYPE);
1003 if (agent_address_length != 4) {
1004 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1005 "agent_address", ASN1_ERR_WRONG_LENGTH_FOR_TYPE);
1008 ret = asn1_string_value_decode (&asn1,
1009 agent_address_length, &agent_address);
1010 if (ret != ASN1_ERR_NOERROR) {
1011 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1012 "agent address", ret);
1015 length = asn1.offset - start;
1017 if (agent_address_length != 4) {
1018 proto_tree_add_text(tree, tvb, offset,
1020 "Agent address: <length is %u, not 4>",
1021 agent_address_length);
1023 proto_tree_add_text(tree, tvb, offset,
1025 "Agent address: %s",
1026 ip_to_str(agent_address));
1029 g_free(agent_address);
1032 /* generic trap type */
1033 ret = asn1_uint32_decode (&asn1, &trap_type, &length);
1034 if (ret != ASN1_ERR_NOERROR) {
1035 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1036 "generic trap type", ret);
1040 proto_tree_add_text(tree, tvb, offset, length,
1042 val_to_str(trap_type, trap_types, "Unknown (%u)"));
1046 /* specific trap type */
1047 ret = asn1_uint32_decode (&asn1, &specific_type, &length);
1048 if (ret != ASN1_ERR_NOERROR) {
1049 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1050 "specific trap type", ret);
1054 proto_tree_add_text(tree, tvb, offset, length,
1055 "Specific trap type: %u (%#x)",
1056 specific_type, specific_type);
1061 start = asn1.offset;
1062 ret = asn1_header_decode (&asn1, &cls, &con, &tag,
1063 &def, ×tamp_length);
1064 if (ret != ASN1_ERR_NOERROR) {
1065 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1069 if (!((cls == ASN1_APL && con == ASN1_PRI && tag == SNMP_TIT) ||
1070 (cls == ASN1_UNI && con == ASN1_PRI && tag == ASN1_INT))) {
1071 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1072 "timestamp", ASN1_ERR_WRONG_TYPE);
1075 ret = asn1_uint32_value_decode(&asn1, timestamp_length,
1077 if (ret != ASN1_ERR_NOERROR) {
1078 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1082 length = asn1.offset - start;
1084 proto_tree_add_text(tree, tvb, offset, length,
1085 "Timestamp: %u", timestamp);
1091 /* variable bindings */
1092 /* get header for variable-bindings sequence */
1093 ret = asn1_sequence_decode(&asn1, &variable_bindings_length, &length);
1094 if (ret != ASN1_ERR_NOERROR) {
1095 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1096 "variable bindings header", ret);
1101 /* loop on variable bindings */
1103 while (variable_bindings_length > 0) {
1105 sequence_length = 0;
1108 ret = asn1_sequence_decode(&asn1, &variable_length, &length);
1109 if (ret != ASN1_ERR_NOERROR) {
1110 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1111 "variable binding header", ret);
1114 sequence_length += length;
1116 /* parse object identifier */
1117 ret = asn1_oid_decode (&asn1, &variable_oid,
1118 &variable_oid_length, &length);
1119 if (ret != ASN1_ERR_NOERROR) {
1120 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1121 "variable binding OID", ret);
1124 sequence_length += length;
1127 oid_string = format_oid(variable_oid,
1128 variable_oid_length);
1129 proto_tree_add_text(tree, tvb, offset, sequence_length,
1130 "Object identifier %d: %s", vb_index, oid_string);
1133 offset += sequence_length;
1134 variable_bindings_length -= sequence_length;
1136 /* Parse the variable's value */
1137 ret = snmp_variable_decode(tree, variable_oid,
1138 variable_oid_length, &asn1, offset, &length);
1139 if (ret != ASN1_ERR_NOERROR) {
1140 dissect_snmp_parse_error(tvb, offset, pinfo, tree,
1145 variable_bindings_length -= length;
1149 static const value_string qos_vals[] = {
1150 { 0x0, "No authentication or privacy" },
1151 { 0x1, "Authentication, no privacy" },
1152 { 0x2, "Authentication and privacy" },
1153 { 0x3, "Authentication and privacy" },
1158 dissect_snmp2u_parameters(proto_tree *tree, tvbuff_t *tvb, int offset, int length,
1159 guchar *parameters, int parameters_length)
1162 proto_tree *parameters_tree;
1163 proto_tree *qos_tree;
1168 item = proto_tree_add_text(tree, tvb, offset, length,
1170 parameters_tree = proto_item_add_subtree(item, ett_parameters);
1171 offset += length - parameters_length;
1173 if (parameters_length < 1)
1175 model = *parameters;
1176 proto_tree_add_text(parameters_tree, tvb, offset, 1,
1177 "model: %u", model);
1180 parameters_length -= 1;
1182 /* Unknown model. */
1183 proto_tree_add_text(parameters_tree, tvb, offset,
1184 parameters_length, "parameters: %s",
1185 bytes_to_str(parameters, parameters_length));
1189 if (parameters_length < 1)
1192 item = proto_tree_add_text(parameters_tree, tvb, offset, 1,
1194 qos_tree = proto_item_add_subtree(item, ett_parameters_qos);
1195 proto_tree_add_text(qos_tree, tvb, offset, 1, "%s",
1196 decode_boolean_bitfield(qos, 0x04,
1197 8, "Generation of report PDU allowed",
1198 "Generation of report PDU not allowed"));
1199 proto_tree_add_text(qos_tree, tvb, offset, 1, "%s",
1200 decode_enumerated_bitfield(qos, 0x03,
1201 8, qos_vals, "%s"));
1204 parameters_length -= 1;
1206 if (parameters_length < 12)
1208 proto_tree_add_text(parameters_tree, tvb, offset, 12,
1209 "agentID: %s", bytes_to_str(parameters, 12));
1212 parameters_length -= 12;
1214 if (parameters_length < 4)
1216 proto_tree_add_text(parameters_tree, tvb, offset, 4,
1217 "agentBoots: %u", pntohl(parameters));
1220 parameters_length -= 4;
1222 if (parameters_length < 4)
1224 proto_tree_add_text(parameters_tree, tvb, offset, 4,
1225 "agentTime: %u", pntohl(parameters));
1228 parameters_length -= 4;
1230 if (parameters_length < 2)
1232 proto_tree_add_text(parameters_tree, tvb, offset, 2,
1233 "maxSize: %u", pntohs(parameters));
1236 parameters_length -= 2;
1238 if (parameters_length < 1)
1241 proto_tree_add_text(parameters_tree, tvb, offset, 1,
1242 "userLen: %u", len);
1245 parameters_length -= 1;
1247 if (parameters_length < len)
1249 proto_tree_add_text(parameters_tree, tvb, offset, len,
1250 "userName: %.*s", len, parameters);
1253 parameters_length -= len;
1255 if (parameters_length < 1)
1258 proto_tree_add_text(parameters_tree, tvb, offset, 1,
1259 "authLen: %u", len);
1262 parameters_length -= 1;
1264 if (parameters_length < len)
1266 proto_tree_add_text(parameters_tree, tvb, offset, len,
1267 "authDigest: %s", bytes_to_str(parameters, len));
1270 parameters_length -= len;
1272 if (parameters_length < 1)
1274 proto_tree_add_text(parameters_tree, tvb, offset, parameters_length,
1275 "contextSelector: %s", bytes_to_str(parameters, parameters_length));
1279 dissect_snmp_pdu(tvbuff_t *tvb, int offset, packet_info *pinfo,
1280 proto_tree *tree, char *proto_name, int proto, gint ett)
1287 guint message_length;
1288 guint global_length;
1294 guint32 engineboots;
1307 int msgflags_length;
1308 int community_length;
1310 int cengineid_length;
1312 int cryptpdu_length;
1313 int aengineid_length;
1314 int username_length;
1321 proto_tree *snmp_tree = NULL;
1322 proto_tree *global_tree = NULL;
1323 proto_tree *flags_tree = NULL;
1324 proto_tree *secur_tree = NULL;
1325 proto_item *item = NULL;
1327 guint cls, con, tag;
1329 if (check_col(pinfo->cinfo, COL_PROTOCOL))
1330 col_add_str(pinfo->cinfo, COL_PROTOCOL, proto_name);
1333 item = proto_tree_add_item(tree, proto, tvb, offset, -1, FALSE);
1334 snmp_tree = proto_item_add_subtree(item, ett);
1337 /* NOTE: we have to parse the message piece by piece, since the
1338 * capture length may be less than the message length: a 'global'
1339 * parsing is likely to fail.
1341 /* parse the SNMP header */
1342 asn1_open(&asn1, tvb, offset);
1343 ret = asn1_sequence_decode(&asn1, &message_length, &length);
1344 if (ret != ASN1_ERR_NOERROR) {
1345 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1346 "message header", ret);
1351 ret = asn1_uint32_decode (&asn1, &version, &length);
1352 if (ret != ASN1_ERR_NOERROR) {
1353 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1354 "version number", ret);
1358 proto_tree_add_text(snmp_tree, tvb, offset, length,
1360 val_to_str(version, versions, "Unknown version %#x"));
1366 case SNMP_VERSION_1:
1367 case SNMP_VERSION_2c:
1368 ret = asn1_octet_string_decode (&asn1, &community,
1369 &community_length, &length);
1370 if (ret != ASN1_ERR_NOERROR) {
1371 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1376 proto_tree_add_text(snmp_tree, tvb, offset, length,
1377 "Community: %.*s", community_length,
1378 SAFE_STRING(community));
1383 case SNMP_VERSION_2u:
1384 ret = asn1_octet_string_decode (&asn1, &community,
1385 &community_length, &length);
1387 dissect_snmp2u_parameters(snmp_tree, tvb, offset, length,
1388 community, community_length);
1393 case SNMP_VERSION_3:
1394 ret = asn1_sequence_decode(&asn1, &global_length, &length);
1395 if (ret != ASN1_ERR_NOERROR) {
1396 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1397 "message global header", ret);
1401 item = proto_tree_add_text(snmp_tree, tvb, offset,
1402 global_length + length, "Message Global Header");
1403 global_tree = proto_item_add_subtree(item, ett_global);
1404 proto_tree_add_text(global_tree, tvb, offset,
1406 "Message Global Header Length: %d", global_length);
1409 ret = asn1_uint32_decode (&asn1, &msgid, &length);
1410 if (ret != ASN1_ERR_NOERROR) {
1411 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1416 proto_tree_add_text(global_tree, tvb, offset,
1417 length, "Message ID: %d", msgid);
1420 ret = asn1_uint32_decode (&asn1, &msgmax, &length);
1421 if (ret != ASN1_ERR_NOERROR) {
1422 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1423 "message max size", ret);
1427 proto_tree_add_text(global_tree, tvb, offset,
1428 length, "Message Max Size: %d", msgmax);
1431 ret = asn1_octet_string_decode (&asn1, &msgflags,
1432 &msgflags_length, &length);
1433 if (ret != ASN1_ERR_NOERROR) {
1434 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1435 "message flags", ret);
1438 if (msgflags_length != 1) {
1439 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1440 "message flags wrong length", ret);
1445 item = proto_tree_add_uint_format(global_tree,
1446 hf_snmpv3_flags, tvb, offset, length,
1447 msgflags[0], "Flags: 0x%02x", msgflags[0]);
1448 flags_tree = proto_item_add_subtree(item, ett_flags);
1449 proto_tree_add_boolean(flags_tree, hf_snmpv3_flags_report,
1450 tvb, offset, length, msgflags[0]);
1451 proto_tree_add_boolean(flags_tree, hf_snmpv3_flags_crypt,
1452 tvb, offset, length, msgflags[0]);
1453 proto_tree_add_boolean(flags_tree, hf_snmpv3_flags_auth,
1454 tvb, offset, length, msgflags[0]);
1456 encrypted = msgflags[0] & TH_CRYPT;
1459 ret = asn1_uint32_decode (&asn1, &msgsec, &length);
1460 if (ret != ASN1_ERR_NOERROR) {
1461 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1462 "message security model", ret);
1466 proto_tree_add_text(global_tree, tvb, offset,
1467 length, "Message Security Model: %s",
1468 val_to_str(msgsec, sec_models,
1469 "Unknown model %#x"));
1474 start = asn1.offset;
1475 ret = asn1_header_decode (&asn1, &cls, &con, &tag,
1476 &def, &secparm_length);
1477 length = asn1.offset - start;
1478 if (cls != ASN1_UNI && con != ASN1_PRI &&
1480 dissect_snmp_parse_error(tvb, offset, pinfo,
1481 snmp_tree, "Message Security Parameters",
1482 ASN1_ERR_WRONG_TYPE);
1486 item = proto_tree_add_text(snmp_tree, tvb,
1487 offset, secparm_length + length,
1488 "Message Security Parameters");
1489 secur_tree = proto_item_add_subtree(item,
1491 proto_tree_add_text(secur_tree, tvb, offset,
1493 "Message Security Parameters Length: %d",
1497 ret = asn1_sequence_decode(&asn1, &secparm_length,
1499 if (ret != ASN1_ERR_NOERROR) {
1500 dissect_snmp_parse_error(tvb, offset, pinfo,
1501 snmp_tree, "USM sequence header", ret);
1505 ret = asn1_octet_string_decode (&asn1, &aengineid,
1506 &aengineid_length, &length);
1507 if (ret != ASN1_ERR_NOERROR) {
1508 dissect_snmp_parse_error(tvb, offset, pinfo,
1509 snmp_tree, "authoritative engine id", ret);
1513 proto_tree_add_text(secur_tree, tvb, offset,
1514 length, "Authoritative Engine ID: %s",
1515 bytes_to_str(aengineid, aengineid_length));
1519 ret = asn1_uint32_decode (&asn1, &engineboots, &length);
1520 if (ret != ASN1_ERR_NOERROR) {
1521 dissect_snmp_parse_error(tvb, offset, pinfo,
1522 snmp_tree, "engine boots", ret);
1526 proto_tree_add_text(secur_tree, tvb,
1527 offset, length, "Engine Boots: %d",
1531 ret = asn1_uint32_decode (&asn1, &enginetime, &length);
1532 if (ret != ASN1_ERR_NOERROR) {
1533 dissect_snmp_parse_error(tvb, offset, pinfo,
1534 snmp_tree, "engine time", ret);
1538 proto_tree_add_text(secur_tree, tvb,
1539 offset, length, "Engine Time: %d",
1543 ret = asn1_octet_string_decode (&asn1, &username,
1544 &username_length, &length);
1545 if (ret != ASN1_ERR_NOERROR) {
1546 dissect_snmp_parse_error(tvb, offset, pinfo,
1547 snmp_tree, "user name", ret);
1551 proto_tree_add_text(secur_tree, tvb, offset,
1552 length, "User Name: %.*s",
1554 SAFE_STRING(username));
1558 ret = asn1_octet_string_decode (&asn1, &authpar,
1559 &authpar_length, &length);
1560 if (ret != ASN1_ERR_NOERROR) {
1561 dissect_snmp_parse_error(tvb, offset, pinfo,
1562 snmp_tree, "authentication parameter", ret);
1566 proto_tree_add_text(secur_tree, tvb, offset,
1567 length, "Authentication Parameter: %s",
1568 bytes_to_str(authpar, authpar_length));
1572 ret = asn1_octet_string_decode (&asn1, &privpar,
1573 &privpar_length, &length);
1574 if (ret != ASN1_ERR_NOERROR) {
1575 dissect_snmp_parse_error(tvb, offset, pinfo,
1576 snmp_tree, "privacy parameter", ret);
1580 proto_tree_add_text(secur_tree, tvb, offset,
1581 length, "Privacy Parameter: %s",
1582 bytes_to_str(privpar, privpar_length));
1588 ret = asn1_octet_string_decode (&asn1,
1589 &secparm, &secparm_length, &length);
1590 if (ret != ASN1_ERR_NOERROR) {
1591 dissect_snmp_parse_error(tvb, offset, pinfo,
1592 snmp_tree, "Message Security Parameters",
1597 proto_tree_add_text(snmp_tree, tvb, offset,
1599 "Message Security Parameters Data"
1600 " (%d bytes)", secparm_length);
1606 /* PDU starts here */
1608 ret = asn1_octet_string_decode (&asn1, &cryptpdu,
1609 &cryptpdu_length, &length);
1610 if (ret != ASN1_ERR_NOERROR) {
1611 dissect_snmp_parse_error(tvb, offset, pinfo,
1612 snmp_tree, "encrypted PDU header", ret);
1615 proto_tree_add_text(snmp_tree, tvb, offset, length,
1616 "Encrypted PDU (%d bytes)", length);
1618 if (check_col(pinfo->cinfo, COL_INFO))
1619 col_set_str(pinfo->cinfo, COL_INFO, "Encrypted PDU");
1622 ret = asn1_sequence_decode(&asn1, &global_length, &length);
1623 if (ret != ASN1_ERR_NOERROR) {
1624 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1629 ret = asn1_octet_string_decode (&asn1, &cengineid,
1630 &cengineid_length, &length);
1631 if (ret != ASN1_ERR_NOERROR) {
1632 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1633 "context engine id", ret);
1637 proto_tree_add_text(snmp_tree, tvb, offset, length,
1638 "Context Engine ID: %s",
1639 bytes_to_str(cengineid, cengineid_length));
1643 ret = asn1_octet_string_decode (&asn1, &cname,
1644 &cname_length, &length);
1645 if (ret != ASN1_ERR_NOERROR) {
1646 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1647 "context name", ret);
1651 proto_tree_add_text(snmp_tree, tvb, offset, length,
1652 "Context Name: %.*s", cname_length,
1653 SAFE_STRING(cname));
1659 dissect_snmp_error(tvb, offset, pinfo, snmp_tree,
1660 "PDU for unknown version of SNMP");
1664 start = asn1.offset;
1665 ret = asn1_header_decode (&asn1, &cls, &con, &pdu_type, &def,
1667 if (ret != ASN1_ERR_NOERROR) {
1668 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1672 if (cls != ASN1_CTX || con != ASN1_CON) {
1673 dissect_snmp_parse_error(tvb, offset, pinfo, snmp_tree,
1674 "PDU type", ASN1_ERR_WRONG_TYPE);
1677 dissect_common_pdu(tvb, offset, pinfo, snmp_tree, asn1, pdu_type, start);
1681 dissect_smux_pdu(tvbuff_t *tvb, int offset, packet_info *pinfo,
1682 proto_tree *tree, int proto, gint ett)
1690 char *pdu_type_string;
1700 int password_length;
1702 guchar *application;
1703 int application_length;
1710 proto_tree *smux_tree = NULL;
1711 proto_item *item = NULL;
1715 if (check_col(pinfo->cinfo, COL_PROTOCOL))
1716 col_set_str(pinfo->cinfo, COL_PROTOCOL, "SMUX");
1719 item = proto_tree_add_item(tree, proto, tvb, offset, -1, FALSE);
1720 smux_tree = proto_item_add_subtree(item, ett);
1723 /* NOTE: we have to parse the message piece by piece, since the
1724 * capture length may be less than the message length: a 'global'
1725 * parsing is likely to fail.
1727 /* parse the SNMP header */
1728 asn1_open(&asn1, tvb, offset);
1729 start = asn1.offset;
1730 ret = asn1_header_decode (&asn1, &cls, &con, &pdu_type, &def,
1732 if (ret != ASN1_ERR_NOERROR) {
1733 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1738 /* Dissect SMUX here */
1739 if (cls == ASN1_APL && con == ASN1_CON && pdu_type == SMUX_MSG_OPEN) {
1740 pdu_type_string = val_to_str(pdu_type, smux_types,
1741 "Unknown PDU type %#x");
1742 if (check_col(pinfo->cinfo, COL_INFO))
1743 col_add_str(pinfo->cinfo, COL_INFO, pdu_type_string);
1744 length = asn1.offset - start;
1746 proto_tree_add_text(smux_tree, tvb, offset, length,
1747 "PDU type: %s", pdu_type_string);
1750 ret = asn1_uint32_decode (&asn1, &version, &length);
1751 if (ret != ASN1_ERR_NOERROR) {
1752 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1757 proto_tree_add_text(smux_tree, tvb, offset, length,
1758 "Version: %d", version);
1762 ret = asn1_oid_decode (&asn1, ®id, ®id_length, &length);
1763 if (ret != ASN1_ERR_NOERROR) {
1764 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1765 "registration OID", ret);
1769 oid_string = format_oid(regid, regid_length);
1770 proto_tree_add_text(smux_tree, tvb, offset, length,
1771 "Registration: %s", oid_string);
1777 ret = asn1_octet_string_decode (&asn1, &application,
1778 &application_length, &length);
1779 if (ret != ASN1_ERR_NOERROR) {
1780 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1781 "application", ret);
1785 proto_tree_add_text(smux_tree, tvb, offset, length,
1786 "Application: %.*s", application_length,
1787 SAFE_STRING(application));
1789 g_free(application);
1792 ret = asn1_octet_string_decode (&asn1, &password,
1793 &password_length, &length);
1794 if (ret != ASN1_ERR_NOERROR) {
1795 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1800 proto_tree_add_text(smux_tree, tvb, offset, length,
1801 "Password: %.*s", password_length,
1802 SAFE_STRING(password));
1808 if (cls == ASN1_APL && con == ASN1_PRI && pdu_type == SMUX_MSG_CLOSE) {
1809 pdu_type_string = val_to_str(pdu_type, smux_types,
1810 "Unknown PDU type %#x");
1811 if (check_col(pinfo->cinfo, COL_INFO))
1812 col_add_str(pinfo->cinfo, COL_INFO, pdu_type_string);
1813 length = asn1.offset - start;
1815 proto_tree_add_text(smux_tree, tvb, offset, length,
1816 "PDU type: %s", pdu_type_string);
1819 ret = asn1_uint32_value_decode (&asn1, pdu_length, &cause);
1820 if (ret != ASN1_ERR_NOERROR) {
1821 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1826 proto_tree_add_text(smux_tree, tvb, offset,
1827 pdu_length, "Cause: %s",
1828 val_to_str(cause, smux_close,
1829 "Unknown cause %#x"));
1831 offset += pdu_length;
1834 if (cls == ASN1_APL && con == ASN1_CON && pdu_type == SMUX_MSG_RREQ) {
1835 pdu_type_string = val_to_str(pdu_type, smux_types,
1836 "Unknown PDU type %#x");
1837 if (check_col(pinfo->cinfo, COL_INFO))
1838 col_add_str(pinfo->cinfo, COL_INFO, pdu_type_string);
1839 length = asn1.offset - start;
1841 proto_tree_add_text(smux_tree, tvb, offset, length,
1842 "PDU type: %s", pdu_type_string);
1845 ret = asn1_oid_decode (&asn1, ®id, ®id_length, &length);
1846 if (ret != ASN1_ERR_NOERROR) {
1847 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1848 "registration subtree", ret);
1852 oid_string = format_oid(regid, regid_length);
1853 proto_tree_add_text(smux_tree, tvb, offset, length,
1854 "Registration: %s", oid_string);
1860 ret = asn1_uint32_decode (&asn1, &priority, &length);
1861 if (ret != ASN1_ERR_NOERROR) {
1862 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1867 proto_tree_add_text(smux_tree, tvb, offset, length,
1868 "Priority: %d", priority);
1872 ret = asn1_uint32_decode (&asn1, &operation, &length);
1873 if (ret != ASN1_ERR_NOERROR) {
1874 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1879 proto_tree_add_text(smux_tree, tvb, offset, length,
1881 val_to_str(operation, smux_rreq,
1882 "Unknown operation %#x"));
1887 if (cls == ASN1_APL && con == ASN1_PRI && pdu_type == SMUX_MSG_RRSP) {
1888 pdu_type_string = val_to_str(pdu_type, smux_types,
1889 "Unknown PDU type %#x");
1890 if (check_col(pinfo->cinfo, COL_INFO))
1891 col_add_str(pinfo->cinfo, COL_INFO, pdu_type_string);
1892 length = asn1.offset - start;
1894 proto_tree_add_text(smux_tree, tvb, offset, length,
1895 "PDU type: %s", pdu_type_string);
1898 ret = asn1_uint32_value_decode (&asn1, pdu_length, &priority);
1899 if (ret != ASN1_ERR_NOERROR) {
1900 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1905 proto_tree_add_text(smux_tree, tvb, offset,
1907 val_to_str(priority, smux_prio,
1910 offset += pdu_length;
1913 if (cls == ASN1_APL && con == ASN1_PRI && pdu_type == SMUX_MSG_SOUT) {
1914 pdu_type_string = val_to_str(pdu_type, smux_types,
1915 "Unknown PDU type %#x");
1916 if (check_col(pinfo->cinfo, COL_INFO))
1917 col_add_str(pinfo->cinfo, COL_INFO, pdu_type_string);
1918 length = asn1.offset - start;
1920 proto_tree_add_text(smux_tree, tvb, offset, length,
1921 "PDU type: %s", pdu_type_string);
1924 ret = asn1_uint32_value_decode (&asn1, pdu_length, &commit);
1925 if (ret != ASN1_ERR_NOERROR) {
1926 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1931 proto_tree_add_text(smux_tree, tvb, offset,
1933 val_to_str(commit, smux_sout,
1934 "Unknown SOUT Value: %#x"));
1936 offset += pdu_length;
1939 if (cls != ASN1_CTX || con != ASN1_CON) {
1940 dissect_snmp_parse_error(tvb, offset, pinfo, smux_tree,
1941 "PDU type", ASN1_ERR_WRONG_TYPE);
1944 dissect_common_pdu(tvb, offset, pinfo, smux_tree, asn1, pdu_type, start);
1948 dissect_snmp(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree)
1950 conversation_t *conversation;
1953 * The first SNMP packet goes to the SNMP port; the second one
1954 * may come from some *other* port, but goes back to the same
1955 * IP address and port as the ones from which the first packet
1956 * came; all subsequent packets presumably go between those two
1957 * IP addresses and ports.
1959 * If this packet went to the SNMP port, we check to see if
1960 * there's already a conversation with one address/port pair
1961 * matching the source IP address and port of this packet,
1962 * the other address matching the destination IP address of this
1963 * packet, and any destination port.
1965 * If not, we create one, with its address 1/port 1 pair being
1966 * the source address/port of this packet, its address 2 being
1967 * the destination address of this packet, and its port 2 being
1968 * wildcarded, and give it the SNMP dissector as a dissector.
1970 if (pinfo->destport == UDP_PORT_SNMP) {
1971 conversation = find_conversation(&pinfo->src, &pinfo->dst, PT_UDP,
1972 pinfo->srcport, 0, NO_PORT_B);
1973 if (conversation == NULL) {
1974 conversation = conversation_new(&pinfo->src, &pinfo->dst, PT_UDP,
1975 pinfo->srcport, 0, NO_PORT2);
1976 conversation_set_dissector(conversation, snmp_handle);
1980 dissect_snmp_pdu(tvb, 0, pinfo, tree, "SNMP", proto_snmp, ett_snmp);
1984 dissect_smux(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree)
1986 dissect_smux_pdu(tvb, 0, pinfo, tree, proto_smux, ett_smux);
1990 proto_register_snmp(void)
1992 static hf_register_info hf[] = {
1994 { "SNMPv3 Flags", "snmpv3.flags", FT_UINT8, BASE_HEX, NULL,
1996 { &hf_snmpv3_flags_auth,
1997 { "Authenticated", "snmpv3.flags.auth", FT_BOOLEAN, 8,
1998 TFS(&flags_set_truth), TH_AUTH, "", HFILL }},
1999 { &hf_snmpv3_flags_crypt,
2000 { "Encrypted", "snmpv3.flags.crypt", FT_BOOLEAN, 8,
2001 TFS(&flags_set_truth), TH_CRYPT, "", HFILL }},
2002 { &hf_snmpv3_flags_report,
2003 { "Reportable", "snmpv3.flags.report", FT_BOOLEAN, 8,
2004 TFS(&flags_set_truth), TH_REPORT, "", HFILL }},
2006 static gint *ett[] = {
2010 &ett_parameters_qos,
2016 #ifdef HAVE_UCD_SNMP
2018 * Suppress warnings about unknown tokens - we aren't initializing
2019 * UCD SNMP in its entirety, we're just initializing the
2020 * MIB-handling part because that's all we're using, which
2021 * means that entries in the configuration file for other
2022 * pars of the library will not be handled, and we don't want
2023 * the config file reading code to whine about that.
2025 ds_set_boolean(DS_LIBRARY_ID, DS_LIB_NO_TOKEN_WARNINGS, TRUE);
2026 ds_set_int(DS_LIBRARY_ID, DS_LIB_PRINT_SUFFIX_ONLY, 2);
2027 register_mib_handlers();
2028 read_premib_configs();
2031 #endif /* HAVE_UCD_SNMP */
2032 proto_snmp = proto_register_protocol("Simple Network Management Protocol",
2034 proto_smux = proto_register_protocol("SNMP Multiplex Protocol",
2036 proto_register_field_array(proto_snmp, hf, array_length(hf));
2037 proto_register_subtree_array(ett, array_length(ett));
2038 snmp_handle = create_dissector_handle(dissect_snmp, proto_snmp);
2042 proto_reg_handoff_snmp(void)
2044 dissector_handle_t smux_handle;
2046 dissector_add("udp.port", UDP_PORT_SNMP, snmp_handle);
2047 dissector_add("udp.port", UDP_PORT_SNMP_TRAP, snmp_handle);
2048 smux_handle = create_dissector_handle(dissect_smux, proto_smux);
2049 dissector_add("tcp.port", TCP_PORT_SMUX, smux_handle);
2050 dissector_add("ethertype", ETHERTYPE_SNMP, snmp_handle);
2051 dissector_add("ipx.socket", IPX_SOCKET_SNMP_AGENT, snmp_handle);
2052 dissector_add("ipx.socket", IPX_SOCKET_SNMP_SINK, snmp_handle);
2053 data_handle = find_dissector("data");
git.samba.org / obnox / wireshark / wip.git / blob