search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
epan/dissectors/pidl/samr/samr.cnf cnf_dissect_lsa_BinaryString => lsarpc_dissect_str...
[wireshark-sm.git] / epan / dissectors / packet-cattp.c
blob3e8587a66f83f328b0ea8e4c08a5885d2bcae4b0
1 /* packet-cattp.c
2 * Routines for packet dissection of
3 * ETSI TS 102 127 v6.13.0 (Release 6 / 2009-0r45)
4 * Card Application Toolkit - Transport Protocol over UDP
5 *
6 * Copyright 2014-2014 by Sebastian Kloeppel <sk [at] nakedape.net>
7 * Cristina E. Vintila <cristina.vintila [at] gmail.com>
8 *
9 * Wireshark - Network traffic analyzer
10 * By Gerald Combs <gerald@wireshark.org>
11 * Copyright 1998 Gerald Combs
12 *
13 * SPDX-License-Identifier: GPL-2.0-or-later
14 */
15 #include "config.h"
16
17 #include <epan/packet.h>
18 #include <epan/prefs.h>
19 #include <epan/expert.h>
20 #include <epan/in_cksum.h>
21 #include <epan/unit_strings.h>
22
23 #define CATTP_SHORTNAME "CAT-TP"
24 #define CATTP_HBLEN 18
25
26 #define F_SYN 0x80
27 #define F_ACK 0x40
28 #define F_EAK 0x20
29 #define F_RST 0x10
30 #define F_NUL 0x08
31 #define F_SEG 0x04
32
33 /* bit masks for the first header byte. */
34 #define M_FLAGS 0xFC /* flags only, no version */
35 #define M_PDU_SYN 0xB8 /* SYN (ACK, SEG don't care) without version */
36 #define M_PDU_ACK 0xD0 /* ACK (EAK, SEG, NUL don't care) without version */
37 #define M_PDU_RST 0xBC /* RST (ACK don't care) without version */
38 #define M_VERSION 0x03 /* only Version */
39
40 #define ICCID_PREFIX 0x98
41
42 static dissector_handle_t cattp_handle;
43
44 static int proto_cattp;
45
46 static int ett_cattp;
47 static int ett_cattp_id;
48 static int ett_cattp_flags;
49 static int ett_cattp_eaks;
50
51 static int hf_cattp_flags;
52
53 /* flag components */
54 static int hf_cattp_flag_syn;
55 static int hf_cattp_flag_ack;
56 static int hf_cattp_flag_eak;
57 static int hf_cattp_flag_rst;
58 static int hf_cattp_flag_nul;
59 static int hf_cattp_flag_seg;
60 static int hf_cattp_version;
61
62 /* structure of flag components */
63 static int * const cattp_flags[] = {
64 &hf_cattp_flag_syn,
65 &hf_cattp_flag_ack,
66 &hf_cattp_flag_eak,
67 &hf_cattp_flag_rst,
68 &hf_cattp_flag_nul,
69 &hf_cattp_flag_seg,
70 &hf_cattp_version,
71 NULL
72 };
73
74 static int hf_cattp_hlen;
75 static int hf_cattp_srcport;
76 static int hf_cattp_dstport;
77 static int hf_cattp_datalen;
78 static int hf_cattp_seq;
79 static int hf_cattp_ack;
80 static int hf_cattp_windowsize;
81 static int hf_cattp_checksum;
82 static int hf_cattp_checksum_status;
83 static int hf_cattp_identification;
84 static int hf_cattp_iccid;
85 static int hf_cattp_idlen;
86 static int hf_cattp_maxpdu;
87 static int hf_cattp_maxsdu;
88 static int hf_cattp_rc;
89 static int hf_cattp_eaklen;
90 static int hf_cattp_eaks;
91
92 static expert_field ei_cattp_checksum;
93
94 /* Preference to control whether to check the CATTP checksum */
95 static bool cattp_check_checksum = true;
96
97 /* Reason code mapping */
98 static const value_string cattp_reset_reason[] = {
99 { 0, "Normal Ending" },
100 { 1, "Connection set-up failed, illegal parameters" },
101 { 2, "Temporarily unable to set up this connection" },
102 { 3, "Requested Port not available" },
103 { 4, "Unexpected PDU received" },
104 { 5, "Maximum retries exceeded" },
105 { 6, "Version not supported" },
106 { 7, "RFU" },
107 { 0, NULL }
108 };
109
110 static const unit_name_string units_pdu = { "PDU", "PDUs" };
111
112 /* Forward declaration due to use of heuristic dissection preference. */
113 void proto_reg_handoff_cattp(void);
114 void proto_register_cattp(void);
115
116 /* Dissection of SYN PDUs */
117 static uint32_t
118 dissect_cattp_synpdu(tvbuff_t *tvb, packet_info *pinfo, proto_tree *cattp_tree, uint32_t offset)
119 {
120 proto_item *idi, *id_tree;
121 uint8_t idlen;
122
123 proto_tree_add_item(cattp_tree, hf_cattp_maxpdu, tvb, offset, 2, ENC_BIG_ENDIAN);
124 offset += 2;
125
126 proto_tree_add_item(cattp_tree, hf_cattp_maxsdu, tvb, offset, 2, ENC_BIG_ENDIAN);
127 offset += 2;
128
129 idlen = tvb_get_uint8(tvb, offset);
130 idi = proto_tree_add_uint(cattp_tree, hf_cattp_idlen, tvb, offset, 1, idlen);
131 offset += 1;
132
133 col_append_fstr(pinfo->cinfo, COL_INFO, " IdLen=%u ", idlen);
134
135 id_tree = proto_item_add_subtree(idi, ett_cattp_id);
136
137 if (idlen > 0) {
138 uint8_t first_id_byte;
139
140 first_id_byte = tvb_get_uint8(tvb, offset);
141 proto_tree_add_item(id_tree, hf_cattp_identification, tvb, offset, idlen, ENC_NA);
142
143 /* Optional code. Checks whether identification field may be an ICCID.
144 * It has to be considered to move this logic to another layer / dissector.
145 * However it is common to send ICCID as Identification for OTA download. */
146 if (idlen <= 10 && idlen >= 9 && ICCID_PREFIX == first_id_byte) {
147 wmem_strbuf_t *buf;
148 int i;
149
150 buf = wmem_strbuf_new(pinfo->pool, "");
151
152 /* switch nibbles */
153 for (i = 0; i < idlen; i++) {
154 uint8_t c, n;
155
156 c = tvb_get_uint8(tvb, offset + i);
157 n = ((c & 0xF0) >> 4) + ((c & 0x0F) << 4);
158 wmem_strbuf_append_printf(buf, "%02X", n);
159 }
160
161 proto_tree_add_string(id_tree, hf_cattp_iccid, tvb, offset,
162 idlen, wmem_strbuf_get_str(buf));
163 }
164 offset += idlen;
165 }
166 return offset;
167 }
168
169 /* Dissection of Extended Acknowledgement PDUs */
170 static uint32_t
171 dissect_cattp_eakpdu(tvbuff_t *tvb, packet_info *pinfo, proto_tree *cattp_tree, uint32_t offset, uint8_t hlen)
172 {
173 proto_item *eaki;
174 uint8_t eak_count;
175
176 eak_count = (hlen - offset) >> 1;
177 eaki = proto_tree_add_uint(cattp_tree, hf_cattp_eaklen, tvb, offset, eak_count * 2, eak_count);
178
179 if (eak_count > 0) {
180 proto_item *eak_tree;
181 int i;
182
183 col_append_fstr(pinfo->cinfo, COL_INFO, " EAKs=%u", eak_count);
184 eak_tree = proto_item_add_subtree(eaki, ett_cattp_eaks);
185
186 for (i = 0; i < eak_count; i++) {
187 proto_tree_add_item(eak_tree, hf_cattp_eaks, tvb, offset, 2, ENC_BIG_ENDIAN);
188 offset += 2;
189 }
190 }
191
192 return offset;
193 }
194
195 /* Dissection of Extended Acknowledgement PDUs */
196 static uint32_t
197 dissect_cattp_rstpdu(tvbuff_t *tvb, packet_info *pinfo, proto_tree *cattp_tree, uint32_t offset)
198 {
199 uint8_t rc;
200 const char *rc_str;
201
202 rc = tvb_get_uint8(tvb, offset); /* reason code of RST */
203 rc_str = val_to_str(rc, cattp_reset_reason, "Unknown reason code: 0x%02x");
204 col_append_fstr(pinfo->cinfo, COL_INFO, " Reason=\"%s\" ", rc_str);
205
206 proto_tree_add_item(cattp_tree, hf_cattp_rc, tvb, offset, 1, ENC_BIG_ENDIAN);
207 return ++offset;
208 }
209
210 /* Dissection of the base header */
211 static int
212 dissect_cattp(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void* data _U_)
213 {
214 const char *pdutype = "[Unknown PDU]";
215 proto_item *ti, *cattp_tree;
216 uint32_t offset;
217 vec_t cksum_vec[1];
218 int header_offset;
219 unsigned cksum_data_len;
220 uint8_t flags, first_byte, hlen, ver;
221 uint16_t plen, ackno, seqno, wsize, sport, dport;
222
223 col_set_str(pinfo->cinfo, COL_PROTOCOL, CATTP_SHORTNAME);
224
225 /* Clear out stuff in the info column */
226 col_clear(pinfo->cinfo, COL_INFO);
227
228 hlen = tvb_get_uint8(tvb, 3); /* lookahead header len. */
229
230 offset = 0;
231 ti = proto_tree_add_protocol_format(tree, proto_cattp, tvb, offset, hlen,
232 "Card Application Toolkit Transport Protocol");
233
234 cattp_tree = proto_item_add_subtree(ti, ett_cattp);
235
236 /* render flags tree */
237 first_byte = tvb_get_uint8(tvb, offset);
238 flags = first_byte & M_FLAGS; /* discard version from first byte for flags */
239 ver = first_byte & M_VERSION; /* discard flags for version */
240 proto_tree_add_bitmask(cattp_tree, tvb, offset, hf_cattp_flags, ett_cattp_flags, cattp_flags, ENC_BIG_ENDIAN);
241 offset += 3; /* skip RFU and header len */
242
243 /* Header length, varies for SYN(identification) and EAKs */
244 proto_tree_add_uint(cattp_tree, hf_cattp_hlen, tvb, offset, 1, hlen);
245 offset += 1;
246
247 /* Parse cattp source port. */
248 sport = tvb_get_ntohs(tvb, offset);
249 proto_tree_add_uint(cattp_tree, hf_cattp_srcport, tvb, offset, 2, sport);
250 offset += 2;
251
252 /* Parse cattp destination port. */
253 dport = tvb_get_ntohs(tvb, offset);
254 proto_tree_add_uint(cattp_tree, hf_cattp_dstport, tvb, offset, 2, dport);
255 offset += 2;
256
257 proto_item_append_text(ti, " (v%u, Src Port: %u, Dst Port: %u)", ver, sport, dport);
258 col_add_fstr(pinfo->cinfo, COL_INFO, "%u > %u ", sport, dport);
259
260 /* Parse length of payload. */
261 plen = tvb_get_ntohs(tvb, offset);
262 proto_tree_add_uint(cattp_tree, hf_cattp_datalen, tvb, offset, 2, plen);
263 offset += 2;
264
265 /* Parse sequence number. */
266 seqno = tvb_get_ntohs(tvb, offset);
267 proto_tree_add_uint(cattp_tree, hf_cattp_seq, tvb, offset, 2, seqno);
268 offset += 2;
269
270 /* Parse acknowledgement number. */
271 ackno = tvb_get_ntohs(tvb, offset);
272 proto_tree_add_uint(cattp_tree, hf_cattp_ack, tvb, offset, 2, ackno);
273 offset += 2;
274
275 /* Parse window size. */
276 wsize = tvb_get_ntohs(tvb, offset);
277 proto_tree_add_uint(cattp_tree, hf_cattp_windowsize, tvb, offset, 2, wsize);
278 offset += 2;
279
280 if (flags & F_SYN)
281 pdutype = "[SYN PDU]";
282 else if (flags & F_ACK)
283 pdutype = "[ACK PDU]";
284 else if (flags & F_RST)
285 pdutype = "[RST PDU]";
286
287 col_append_fstr(pinfo->cinfo, COL_INFO, "%s Flags=0x%02X Ack=%u Seq=%u WSize=%u", pdutype, flags, ackno, seqno, wsize);
288
289 /* Parse and verify checksum */
290 header_offset = 0;
291 cksum_data_len = hlen + plen;
292 if (!cattp_check_checksum) {
293 /* We have turned checksum checking off; we do NOT checksum it. */
294 proto_tree_add_checksum(cattp_tree, tvb, offset, hf_cattp_checksum, hf_cattp_checksum_status, &ei_cattp_checksum,
295 pinfo, 0, ENC_BIG_ENDIAN, PROTO_CHECKSUM_NO_FLAGS);
296 } else {
297 /* We haven't turned checksum checking off; checksum it. */
298
299 /* Unlike TCP, CATTP does not make use of a pseudo-header for checksum */
300 SET_CKSUM_VEC_TVB(cksum_vec[0], tvb, header_offset, cksum_data_len);
301 proto_tree_add_checksum(cattp_tree, tvb, offset, hf_cattp_checksum, hf_cattp_checksum_status, &ei_cattp_checksum,
302 pinfo, in_cksum(cksum_vec, 1), ENC_BIG_ENDIAN, PROTO_CHECKSUM_VERIFY|PROTO_CHECKSUM_IN_CKSUM);
303 } /* End of checksum code */
304 offset += 2;
305
306 if (flags & F_SYN)
307 offset = dissect_cattp_synpdu(tvb, pinfo, cattp_tree, offset);
308 else if (flags & F_EAK)
309 offset = dissect_cattp_eakpdu(tvb, pinfo, cattp_tree, offset, hlen);
310 else if (flags & F_RST)
311 offset = dissect_cattp_rstpdu(tvb, pinfo, cattp_tree, offset);
312 /* for other PDU types nothing special to be displayed in detail tree. */
313
314 if (plen > 0) { /* Call generic data handle if data exists. */
315 col_append_fstr(pinfo->cinfo, COL_INFO, " DataLen=%u", plen);
316 tvb = tvb_new_subset_remaining(tvb, offset);
317 call_data_dissector(tvb, pinfo, tree);
318 }
319 return tvb_captured_length(tvb);
320 }
321
322 /* The heuristic dissector function checks if the UDP packet may be a cattp packet */
323 static bool
324 dissect_cattp_heur(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void *data)
325 {
326 if (tvb_captured_length(tvb) >= CATTP_HBLEN) { /* check of data is big enough for base header. */
327 uint8_t flags, ver, hlen;
328 uint16_t plen;
329
330 hlen = tvb_get_uint8(tvb, 3); /* header len */
331 plen = tvb_get_ntohs(tvb, 8); /* payload len */
332
333 if (hlen+plen != tvb_reported_length(tvb)) /* check if data length is ok. */
334 return false;
335
336 /* ETSI TS 102 127 V15.0.0 and earlier releases say explicitly that
337 the version bits must be 0. */
338 ver = tvb_get_uint8(tvb, 0) & M_VERSION;
339 if (ver != 0)
340 return false;
341
342 flags = tvb_get_uint8(tvb, 0) & M_FLAGS;
343 if ( (flags & M_PDU_SYN) == F_SYN ||
344 (flags & M_PDU_RST) == F_RST ||
345 (flags & M_PDU_ACK) == F_ACK ) { /* check if flag combi is valid */
346 dissect_cattp(tvb, pinfo, tree, data);
347 return true;
348 }
349 }
350 return false;
351 }
352
353 /* Function to register the dissector, called by infrastructure. */
354 void
355 proto_register_cattp(void)
356 {
357 static hf_register_info hf[] = {
358 {
359 &hf_cattp_flags,
360 {
361 "Flags", "cattp.flags", FT_UINT8, BASE_HEX, NULL, 0x0,
362 NULL, HFILL
363 }
364 },
365 {
366 &hf_cattp_flag_syn,
367 {
368 "Synchronize Flag", "cattp.flags.syn", FT_UINT8, BASE_DEC, NULL, F_SYN,
369 NULL, HFILL
370 }
371 },
372 {
373 &hf_cattp_flag_ack,
374 {
375 "Acknowledge Flag", "cattp.flags.ack", FT_UINT8, BASE_DEC, NULL, F_ACK,
376 NULL, HFILL
377 }
378 },
379 {
380 &hf_cattp_flag_eak,
381 {
382 "Extended Acknowledge Flag", "cattp.flags.eak", FT_UINT8, BASE_DEC, NULL, F_EAK,
383 NULL, HFILL
384 }
385 },
386 {
387 &hf_cattp_flag_rst,
388 {
389 "Reset Flag", "cattp.flags.rst", FT_UINT8, BASE_DEC, NULL, F_RST,
390 NULL, HFILL
391 }
392 },
393 {
394 &hf_cattp_flag_nul,
395 {
396 "NULL Flag", "cattp.flags.nul", FT_UINT8, BASE_DEC, NULL, F_NUL,
397 NULL, HFILL
398 }
399 },
400 {
401 &hf_cattp_flag_seg,
402 {
403 "Segmentation Flag", "cattp.flags.seg", FT_UINT8, BASE_DEC, NULL, F_SEG,
404 NULL, HFILL
405 }
406 },
407 {
408 &hf_cattp_version,
409 {
410 "Version", "cattp.version", FT_UINT8, BASE_HEX, NULL, M_VERSION,
411 NULL, HFILL
412 }
413 },
414 {
415 &hf_cattp_hlen,
416 {
417 "Header Length", "cattp.hlen", FT_UINT8, BASE_DEC, NULL, 0x0,
418 NULL, HFILL
419 }
420 },
421 {
422 &hf_cattp_srcport,
423 {
424 "Source Port", "cattp.srcport", FT_UINT16, BASE_DEC, NULL, 0x0,
425 NULL, HFILL
426 }
427 },
428 {
429 &hf_cattp_dstport,
430 {
431 "Destination Port", "cattp.dstport", FT_UINT16, BASE_DEC, NULL, 0x0,
432 NULL, HFILL
433 }
434 },
435 {
436 &hf_cattp_datalen,
437 {
438 "Data Length", "cattp.datalen", FT_UINT16, BASE_DEC, NULL, 0x0,
439 NULL, HFILL
440 }
441 },
442 {
443 &hf_cattp_seq,
444 {
445 "Sequence Number", "cattp.seq", FT_UINT16, BASE_DEC, NULL, 0x0,
446 NULL, HFILL
447 }
448 },
449 {
450 &hf_cattp_ack,
451 {
452 "Acknowledgement Number", "cattp.ack", FT_UINT16, BASE_DEC, NULL, 0x0,
453 NULL, HFILL
454 }
455 },
456 {
457 &hf_cattp_windowsize,
458 {
459 "Window Size", "cattp.windowsize", FT_UINT16, BASE_DEC, NULL, 0x0,
460 NULL, HFILL
461 }
462 },
463 {
464 &hf_cattp_checksum,
465 {
466 "Checksum", "cattp.checksum", FT_UINT16, BASE_HEX, NULL, 0x0,
467 NULL, HFILL
468 }
469 },
470 {
471 &hf_cattp_checksum_status,
472 {
473 "Checksum Status", "cattp.checksum.status", FT_UINT8, BASE_NONE, VALS(proto_checksum_vals), 0x0,
474 NULL, HFILL
475 }
476 },
477 {
478 &hf_cattp_identification,
479 {
480 "Identification", "cattp.identification", FT_BYTES, BASE_NONE, NULL, 0x0,
481 NULL, HFILL
482 }
483 },
484 {
485 &hf_cattp_iccid,
486 {
487 "ICCID", "cattp.iccid", FT_STRING, BASE_NONE, NULL, 0x0,
488 NULL, HFILL
489 }
490 },
491 {
492 &hf_cattp_maxpdu,
493 {
494 "Maxpdu", "cattp.maxpdu", FT_UINT16, BASE_DEC, NULL, 0x0,
495 NULL, HFILL
496 }
497 },
498 {
499 &hf_cattp_maxsdu,
500 {
501 "Maxsdu", "cattp.maxsdu", FT_UINT16, BASE_DEC, NULL, 0x0,
502 NULL, HFILL
503 }
504 },
505 {
506 &hf_cattp_rc,
507 {
508 "Reason Code", "cattp.rc", FT_UINT8, BASE_DEC, VALS(cattp_reset_reason), 0x0,
509 NULL, HFILL
510 }
511 },
512 {
513 &hf_cattp_idlen,
514 {
515 "Identification Length", "cattp.idlen", FT_UINT8, BASE_DEC, NULL, 0x0,
516 NULL, HFILL
517 }
518 },
519 {
520 &hf_cattp_eaks,
521 {
522 "Acknowledgement Number", "cattp.eak", FT_UINT16, BASE_DEC, NULL, 0x0,
523 NULL, HFILL
524 }
525 },
526 {
527 &hf_cattp_eaklen,
528 {
529 "Extended Acknowledgement Numbers", "cattp.eaks", FT_UINT16, BASE_DEC|BASE_UNIT_STRING, UNS(&units_pdu), 0x0,
530 NULL, HFILL
531 }
532 }
533 };
534
535 /* Setup protocol subtree array */
536 static int *ett[] = {
537 &ett_cattp,
538 &ett_cattp_flags,
539 &ett_cattp_id,
540 &ett_cattp_eaks
541 };
542
543 static ei_register_info ei[] = {
544 { &ei_cattp_checksum, { "cattp.bad_checksum", PI_CHECKSUM, PI_ERROR, "Bad checksum", EXPFILL }},
545 };
546
547 module_t *cattp_module;
548 expert_module_t* expert_cattp;
549
550 proto_cattp = proto_register_protocol (
551 "ETSI Card Application Toolkit Transport Protocol", /* name */
552 CATTP_SHORTNAME, /* short name */
553 "cattp" /* abbrev */
554 );
555
556 proto_register_field_array(proto_cattp, hf, array_length(hf));
557 proto_register_subtree_array(ett, array_length(ett));
558 expert_cattp = expert_register_protocol(proto_cattp);
559 expert_register_field_array(expert_cattp, ei, array_length(ei));
560
561 cattp_module = prefs_register_protocol(proto_cattp, NULL);
562 prefs_register_bool_preference(cattp_module, "checksum",
563 "Validate checksum of all messages",
564 "Whether the checksum of all messages should be validated or not",
565 &cattp_check_checksum);
566
567 prefs_register_obsolete_preference(cattp_module, "enable");
568
569 /* Register dissector handle */
570 cattp_handle = register_dissector("cattp", dissect_cattp, proto_cattp);
571
572 }
573
574 /* Handoff */
575 void
576 proto_reg_handoff_cattp(void)
577 {
578 heur_dissector_add("udp", dissect_cattp_heur, "CAT-TP over UDP", "cattp_udp", proto_cattp, HEURISTIC_DISABLE);
579 dissector_add_for_decode_as_with_preference("udp.port", cattp_handle);
580 }
581
582 /*
583 * Editor modelines - https://www.wireshark.org/tools/modelines.html
584 *
585 * Local variables:
586 * c-basic-offset: 4
587 * tab-width: 8
588 * indent-tabs-mode: nil
589 * End:
590 *
591 * vi: set shiftwidth=4 tabstop=8 expandtab:
592 * :indentSize=4:tabSize=8:noTabs=true:
593 */
Metzes wireshark repo