| blob | d76df034d7eaafda3ef7aab42c41e57b69e2a1ba |
1 /* packet-giop.c
2 * Routines for CORBA GIOP/IIOP packet disassembly
3 *
4 * Initial Code by,
5 * Laurent Deniel <laurent.deniel@free.fr>
6 * Craig Rodrigues <rodrigc@attbi.com>
7 *
8 * GIOP API extensions by,
9 * Frank Singleton <frank.singleton@ericsson.com>
10 * Trevor Shepherd <eustrsd@am1.ericsson.se>
11 *
12 * $Id$
13 *
14 * Wireshark - Network traffic analyzer
15 * By Gerald Combs <gerald@wireshark.org>
16 * Copyright 1998 Gerald Combs
17 *
18 * This program is free software; you can redistribute it and/or
19 * modify it under the terms of the GNU General Public License
20 * as published by the Free Software Foundation; either version 2
21 * of the License, or (at your option) any later version.
22 *
23 * This program is distributed in the hope that it will be useful,
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
26 * GNU General Public License for more details.
27 *
28 * You should have received a copy of the GNU General Public License
29 * along with this program; if not, write to the Free Software
30 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
31 */
34 /*
35 * TODO: -- FS
36 * 1. heuristic giop dissector table [started]
37 * 2. GUI options, see 20
38 * 3. Remove unneccessary reply_status in heuristic dissector calls (now
39 * part of MessageHeader) [done]
40 * 4. get_CDR_xxx should be passed an alignment offset value
41 * rather than GIOP_HEADER_SIZE, as alignment can also change in a
42 * octet stream when eg: encapsulation is used [done]
43 * 5. GIOP users should eventually get there own tvbuff, and
44 * not rely on the GIOP tvbuff, more robust
45 * 6. get_CDR_string,wchar,wstring etc should handle different
46 * GIOP versions [started]
47 * 7. Fix situation where req_id is not unique in a logfile [done, use FN/MFN, needs improving.]
48 *
49 * 8. Keep request_1_2 in step with request_1_1 [started]
50 * 9. Explicit module name dissection [done]
51 * 10. Decode IOR and put in a useful struct [IOR decode started]
52 * 11. Fix encapsulation of IOR etc and boundary [done]
53 * 12. handle get_CDR_typeCode() [started]
54 * 13. Handle different IOR profiles
55 * 14. Change printable_string to RETURN a new string, not to modify the old.
56 * or, new function, make_printable_string [done, make_printable_string]
57 *
58 * 15. Handle "TCKind", and forget about eg: enum translation to symbolic values
59 * otherwise need knowledge of sub dissectors data - YUK [done]
60 * 16. Handle multiple RepoId representations, besides IDL:Echo:1.0 (see 13.)
61 * 17. Pass subset of RepoID to explicit dissector.
62 * eg : If IDL:Mod1/Mod2/Int3:1.0 then pass "Mod1/Mode2/Int3" to sub dissector[done]
63 * 18. Better hashing algorithms
64 * 19. Handle hash collision properly .
65 * 20. Allow users to paste a stringified IOR into the GUI, and tie it
66 * to a sub_dissector.
67 * 21. Add complete_request_packet_list and complete_reply_packet_hash.[done]
68 * 22. Handle case where users click in any order, AND try and match
69 * REPLY msg to the correct REQUEST msg when we have a request_id collision.[done]
70 * 23. Clean up memory management for all those g_malloc's etc
71 * 24. register_giop_user_module could return a key for every distinct Module/Interface
72 * the sub_dissector uses. So, instead of strcmp()'s when handling the
73 * namespace of an operation, we could have a lookup table instead.
74 * 25. A few typedefs in the right place.
75 * 26 Improve handling of gchar * and use const gchar * where possible.
76 * 27. Read/write IOR etc to/from file, allows objkey hash to be built from
77 * external data [read done, write incomplete]
78 * 28. Call sub dissector only if tvb_offset_exists(). [Done, this is checked
79 * inside try_explicit_giop_dissector() ]
80 *
81 * 29. Make add/delete routine for objkey hash as it may be useful when say reading
82 * stringified IOR's from a file to add them to our hash. ie: There are other ways
83 * to populate our object key hash besides REPLY's to RESOLVE(request) [done]
84 *
85 * 30. Add routine to encode/decode stringified IOR's [decode done]
86 * 31. Add routine to read IOR's from file [done]
87 * 32. TypeCode -none-, needs decoding.
88 * 33. Complete dissect_data_for_typecode.
89 * 34. For complex TypeCodes need to check final offset against original offset + sequence length.
90 * 35. Update REQUEST/REPLY 1_2 according to IDL (eg; ServiceContextList etc).
91 * 36. Adding decode_ServiceContextList, incomplete.
92 * 37. Helper functions should not ALWAYS rely on header to find current endianness. It should
93 * be passed from user, eg Use stream_is_big_endian. [started]
94 * 38. Remove unwanted/unused function parameters, see decode_IOR [started]
95 * 40. Add sequence <IOP::TaggedComponent> components to IIOP IOR profile. Perhaps
96 * decode_IOP_TaggedComponents as a helper function. [done - NOT helper]
97 *
98 * 41. Make important field searchable from Message header. ie: Remove add_text_
99 * 42. Use sub-tree for decode_ServiceContextList, looks better.
100 * 43. dissect_reply_body, no exception dissector calls
101 * - call subdiss directly, as we already have handle.
102 * - add repoid to heuristic call also.
103 *
104 * 44. typedef using xxx_t in .h file.
105 * 45. Subdissectors should not be passed MessageHeader to find endianness and
106 * version, they should be passed directly ?
107 * 46. get_CDR_wchar and wstring need wide chars decoded (just dumped in
108 * any readable form at present, not handled well at all, suggestions welcome -- FS
109 * 47. Change ...add_text to ...add_xxx (ie use hf fields).
110 *
111 * 48. BUG - file load with a GIOP filter set, causes the FN/MFN data struct to be
112 * not initiated properly. Hit "Reload" as a workaround, til I fix this -- FS
113 *
114 */
118 /*
119 * Intended Decode strategy:
120 * =========================
121 *
122 * Initial Pass
123 * ------------
124 * REQUEST: objkey -> Repo_ID -> Module/Interface -> giop_sub_handle_t
125 * and populate complete_request_packet_hash
126 *
127 * REPLY: FN -> MFN (via complete_reply_packet_hash) = Request FN -> giop_sub_handle_t
128 *
129 * User Clicks
130 * -----------
131 *
132 * REQUEST: FN -> giop_sub_handle_t directly (via complete_request_packet_hash)
133 *
134 * REPLY: FN -> MFN (via complete_reply_packet_hash) = Request FN -> giop_sub_handle_t
135 * (via complete_request_packet_hash
136 *
137 *
138 * Limitations.
139 * ============
140 *
141 * 1. Request_ID's are unique only per connection.
142 *
143 * 2. You must be monitoring the network when the client does
144 * a REQUEST(resolve), otherwise I have no knowledge of the
145 * association between object_key and REPOID. I could talk to
146 * a Nameserver, but then I would start "generating" packets.
147 * This is probably not a good thing for a protocol analyser.
148 * Also, how could I decode logfiles offline.
149 *
150 * TODO -- Read stringified IORs from an input file.[done]
151 *
152 * 3. User clicks (REQUEST) is currently handle the same as
153 * the initial pass handling.
154 *
155 * ie: objkey -> Repo_ID -> Module/Interface -> giop_sub_handle_t
156 */
159 /*
160 * Important Data Structures:
161 *
162 * giop_module_hash
163 * ----------------
164 *
165 * This is a hash table that maps IDL Module/Interface Names (Key)
166 * to sub_dissector handles, giop_sub_handle_t. It is populated
167 * by subdissectors, via register_giop_user_module(). This
168 * table is used when we have a REPOID, and explicitly wish to
169 * call the subdissector that has registered responsibility for
170 * that IDL module/interface.
171 *
172 *
173 * giop_sub_list
174 * -------------
175 *
176 * This singly linked list is used to hold entries for
177 * heuristic based subdissectors. It is populated by sub_dissectors
178 * wishing to be called via heuristic mechanisms. They do this
179 * via the register_giop_user() function.
180 *
181 *
182 * giop_objkey_hash
183 * ----------------
184 *
185 * This hash table maps object_key's (key) onto REPOID's (val).
186 * Once a client has REQUEST(resolve) an object , it knows about
187 * an object (interface) via its object_key (see IOR). So in order to follow
188 * packets that contain an object_key only, and to be able to forward it
189 * to the correct explicit subdissector, we need this table.
190 *
191 * So, I listen in on REQUEST(resolve) messages between client and
192 * Nameserver, and store the respones (REPLY/Objkey,Repo_ID) here.
193 *
194 * Also, stringified IOR's can be read from a file "IOR.txt" and used
195 * to populate this hash also.
196 *
197 *
198 * Other Data structures
199 * =======================
200 *
201 * These structures have been added to minimise the possibility
202 * of incorrectly interpreted packets when people click all
203 * over the place, in no particular order, when the request_id's are
204 * not unique as captured. If all request_is'd are unique, as captured, then
205 * we would not have to deal with this problem.
206 *
207 *
208 * When the logfile or packets are initially being processed, I will
209 * build 2 structures. The intent is to be able to map a REPLY message
210 * back to the most recent REQUEST message with the same Request_ID
211 * (TODO and matching port and IP address ??)
212 *
213 * Abbrevs:
214 * --------
215 *
216 * FN - Frame Number
217 * MFN - Matching Frame Number
218 *
219 *
220 * complete_request_packet_list
221 * ----------------------------
222 *
223 * This is a list that contains ALL the FN's that are REQUEST's, along with
224 * operation,request_id and giop_sub_handle_t
225 *
226 * complete_reply_packet_hash
227 * --------------------------
228 *
229 * This is a hash table. It is populated with FN (key) and MFN (val).
230 * This allows me to handle the case, where if you click on any REPLY
231 * message, I can lookup the matching request. This can improve
232 * the match rate between REQUEST and REPLY when people click in
233 * any old fashion, but is NOT foolproof.
234 *
235 * The algorithm I use to populate this hash during initial pass,
236 * is as follows.
237 *
238 * If packet is a REPLY, note the reqid, and then traverse backwards
239 * through the complete_request_packet_list from its tail, looking
240 * for a FN that has the same Request_id. Once found, take the found FN
241 * from complete_reply_packet_hash, and insert it into the MFN field
242 * of the complete_reply_packet_hash.
243 *
244 *
245 * See TODO for improvements to above algorithm.
246 *
247 * So now when people click on a REQUEST packet, I can call lookup the
248 * giop_sub_handle_t directly from complete_request_packet_list.
249 *
250 * And, when they click on a REPLY, I grab the MFN of this FN from
251 * complete_reply_packet_hash, then look that up in the complete_request_packet_list
252 * and call the sub_dissector directly.
253 *
254 * So, how do I differentiate between the initial processing of incoming
255 * packets, and a user clickin on one ? Good question.
256 *
257 * I leverage the pinfo_fd->flags.visited on a per frame
258 * basis.
259 *
260 * To quote from the ever helpful development list
261 *
262 * " When a capture file is initially loaded, all "visited" flags
263 * are 0. Wireshark then makes the first pass through file,
264 * sequentially dissecting each packet. After the packet is
265 * dissected the first time, "visited" is 1. (See the end of
266 * dissect_packet() in epan/packet.c; that's the code that
267 * sets "visited" to 1).
269 * By the time a user clicks on a packet, "visited" will already
270 * be 1 because Wireshark will have already done its first pass
271 * through the packets.
273 * Reload acts just like a normal Close/Open, except that it
274 * doesn't need to ask for a filename. So yes, the reload button
275 * clears the flags and re-dissects the file, just as if the file
276 * had been "opened". "
277 *
278 */
283 #include <string.h>
284 #include <stdio.h>
285 #include <errno.h>
286 #include <ctype.h>
287 #include <glib.h>
288 #include <math.h>
292 #include <epan/packet.h>
293 #include <epan/exceptions.h>
294 #include <epan/conversation.h>
295 #include <epan/wmem/wmem.h>
296 #include <epan/prefs.h>
297 #include <epan/expert.h>
302 #include <wsutil/file_util.h>
303 #include <wsutil/pint.h>
306 /*
307 * Set to 1 for DEBUG output - TODO make this a runtime option
308 */
310 #define DEBUG 0
312 /*
313 * ------------------------------------------------------------------------------------------+
314 * Private Helper function Declarations
315 * ------------------------------------------------------------------------------------------+
316 */
319 static void decode_IIOP_IOR_profile(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int *offset,
322 gboolean store_flag);
324 static void decode_TaggedProfile(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int *offset,
331 gboolean stream_is_big_endian,
332 guint32 boundary);
334 /*
335 * ------------------------------------------------------------------------------------------+
336 * Data/Variables/Structs
337 * ------------------------------------------------------------------------------------------+
338 */
365 /* static int hf_giop_compressed = -1; */
366 /* static int hf_giop_IOR_tag = -1; */
426 /*
427 * (sub)Tree declares
428 */
459 NULL
460 };
465 #define GIOP_MESSAGE_FLAGS_ZIOP_ENABLED 0x08
466 #define GIOP_MESSAGE_FLAGS_ZIOP_SUPPORTED 0x04
467 #define GIOP_MESSAGE_FLAGS_FRAGMENT 0x02
468 #define GIOP_MESSAGE_FLAGS_ENDIANNESS 0x01
470 /* GIOP endianness */
476 };
483 };
485 /*
486 static const value_string sync_scope[] = {
487 { 0x0, "SYNC_NONE" },
488 { 0x1, "SYNC_WITH_TRANSPORT"},
489 { 0x2, "SYNC_WITH_SERVER"},
490 { 0x3, "SYNC_WITH_TARGET"},
491 { 0, NULL}
492 };
493 Bug fix:
494 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2800
495 http://ethereal.netmirror.org/lists/ethereal-users/200303/msg00135.html
496 */
502 };
504 /* Profile ID's */
512 };
524 };
534 };
571 };
573 /*
574 * These values are taken from the CORBA 3.0.2 standard,
575 * section 13.7.1 "Standard Service Contexts".
576 */
597 };
599 /*
600 * From Section 13.10.2.5 of the CORBA 3.0 spec.
601 *
602 * module CONV_FRAME {
603 * typedef unsigned long CodeSetId;
604 * struct CodeSetContext {
605 * CodeSetId char_data;
606 * CodeSetId wchar_data;
607 * };
608 * };
609 *
610 * Code sets are identified by a 32-bit integer id from OSF.
611 * See: ftp://ftp.opengroup.org/pub/code_set_registry
612 */
807 };
812 /*
813 * TAGS for IOR Profiles
814 *
815 * Chapter 13 Corba 2.4.2
816 *
817 */
819 #define IOP_TAG_INTERNET_IOP 0
820 #define IOP_TAG_MULTIPLE_COMPONENTS 1
823 /* Max Supported versions */
828 /* 1 Mb Used as a sanity check to ensure correct endian of message size field */
829 #define GIOP_MAX_MESSAGE_SIZE 1024*1000
840 };
845 {
846 UNKNOWN_OBJECT,
847 OBJECT_HERE,
848 OBJECT_FORWARD,
851 LOC_NEEDS_ADDRESSING_MODE /* new value for GIOP 1.2 */
852 }
853 LocateStatusType_t;
856 {
857 guint32 request_id;
858 guint32 locate_status;
859 }
860 LocateReplyHeader_t;
863 /*
864 * DATA - complete_request_list
865 */
875 };
880 /*
881 * DATA - complete_reply_hash
882 *
883 * Maps reply FN to request MFN
884 */
888 };
892 };
896 /*
897 * DATA - Module Hash stuff to store data from register_giop_user_module
898 *
899 * ie: module (or interface ?) name, and ptr to sub_dissector handle
900 *
901 * With this knowledge, we can call a sub dissector directly,
902 * by :
903 *
904 * objkey -> repoid -> sub_dissector via registered module/interface
905 *
906 */
911 };
915 };
920 /*
921 * DATA - GSList to store list of function (dissector) pointers.
922 * for heuristic dissection.
923 *
924 */
928 /*
929 * DATA - Hash stuff to follow request/reply. This is so if we get a REPLY
930 * to a REQUEST (resolve), we can dump/store the RepoId and Object Key.
931 *
932 * With this knowledge, we can call a sub dissector directly later
933 * by :
934 *
935 * objkey -> repoid -> sub_dissector via registered module/interface
936 *
937 * rather than heuristic calls that do not provide operation context.
938 * (unless we pass the RepoID for a given objkey -- hmmm)
939 *
940 */
942 /*
943 * Interesting operation list, add more if you want to save
944 * interesting data.
945 */
952 /*
953 * Enums for interesting local operations, that we may need to monitor
954 * with their subsequent replies
955 *
956 */
962 request_get_INIT_op_val /* finding Nameserver */
964 };
967 /*
968 * hash for mapping object keys onto object namespaces, so
969 * I can call the correct dissector.
970 *
971 *
972 */
974 /*
975 * Where did I get the IOR from.
976 */
980 ior_src_file /* stringified IOR' in a file */
982 };
988 /*
989 * Enums for my lists and hash's
990 */
994 cd_module_hash,
995 cd_objkey_hash,
996 cd_complete_request_list,
997 cd_complete_reply_hash
998 };
1007 };
1012 };
1020 /*
1021 * ------------------------------------------------------------------------------------------+
1022 * Private helper functions
1023 * ------------------------------------------------------------------------------------------+
1024 */
1028 /*
1029 * Insert FN,reqid,operation and sub handle in list. DOES not check for duplicates yet.
1030 */
1032 static GList *insert_in_comp_req_list(GList *list, guint32 fn, guint32 reqid, const gchar * op, giop_sub_handle_t *sh ) {
1044 }
1047 /*
1048 * Used to find an entry with matching Frame Number FN
1049 * in the complete_request_list list.
1050 */
1063 }
1065 }
1068 }
1071 /*
1072 * Add/update a sub_dissector handle and repoid to a FN entry in the complete_request_list
1073 *
1074 * Call this when you know a FN and matching giop_sub_handle_t and repoid
1075 *
1076 * This is done in say, try_explicit_dissector for example.
1077 *
1078 */
1080 static void add_sub_handle_repoid_to_comp_req_list(guint32 fn, giop_sub_handle_t *sh, gchar *repoid ) {
1089 }
1090 }
1095 /* giop_complete_reply_hash "EQUAL" Functions */
1103 }
1106 }
1108 /* giop_complete_reply_hash "HASH" Functions */
1117 }
1120 /*
1121 * Insert the FN and MFN together in our complete_reply_hash.
1122 */
1135 }
1145 }
1147 /*
1148 * Find the MFN values from a given FN key.
1149 * Assumes the complete_reply_hash is already populated.
1150 */
1163 }
1167 }
1169 /*
1170 * Attempt to find the MFN for this FN, and return it.
1171 * Return MFN if found, or just FN if not. This is
1172 * only used when we are building
1173 */
1180 /* Need Some pretty snappy code */
1182 /* Loop back from current end of complete_request_list looking for */
1183 /* a FN with the same reqid -- TODO enhance with port/address checks -- FS */
1185 /*
1186 * As this routine is only called during initial pass of data,
1187 * and NOT when a user clicks, it is ok to start from Current
1188 * end of complete_request_list when searching for a match.
1189 * As that list is bing populated in the same order as FN's
1190 * are being read.
1191 *
1192 * Also, can make check for same reqid more detailed, but I start
1193 * with reqid. Could add say port or address checks etc later ??
1194 */
1203 }
1205 }
1208 }
1211 /* Module Hash "EQUAL" Functions */
1219 }
1222 }
1224 /* Module Hash "HASH" Functions */
1233 /*
1234 * Hmm, try this simple hashing scheme for now.
1235 * ie: Simple summation, FIX later -- FS
1236 *
1237 *
1238 */
1244 }
1248 }
1251 /*
1252 * ------------------------------------------------------------------------------------------+
1253 * Public Utility functions
1254 * ------------------------------------------------------------------------------------------+
1255 */
1260 /*
1261 * Routine to allow giop users to register their sub dissector function, name, and
1262 * IDL module/interface name. Store in giop_module_hash. Also pass along their proto_XXX
1263 * value returned from their proto_register_protocol(), so we can enable/disbale it
1264 * through the GUI (edit protocols).
1265 *
1266 * This is used by try_explicit_giop_dissector() to find the
1267 * correct sub-dissector.
1268 *
1269 */
1271 void register_giop_user_module(giop_sub_dissector_t *sub, const gchar *name, const gchar *module, int sub_proto) {
1282 }
1284 /* So, passed module name should NOT exist in hash at this point.*/
1286 #if DEBUG
1289 #endif
1300 module_val->subh->sub_proto = find_protocol_by_id(sub_proto); /* save protocol_t for subdissector's protocol */
1304 }
1309 /* Object Key Hash "EQUAL" Functions */
1318 /* Now do a byte comparison */
1322 }
1324 #if DEBUG
1326 #endif
1329 }
1331 /* Object Key Hash "HASH" Functions */
1336 guint32 i;
1340 /*
1341 * Hmm, try this simple hashing scheme for now.
1342 * ie: Simple summation
1343 *
1344 *
1345 */
1347 #if DEBUG
1349 #endif
1353 }
1357 }
1359 /*
1360 * Routine to take an object key octet sequence, and length, and ptr to
1361 * a (null terminated )repository ID string, and store them in the obect key hash.
1362 *
1363 * Blindly Inserts even if it does exist, See TODO at top for reason.
1364 */
1366 static void insert_in_objkey_hash(GHashTable *hash, const gchar *obj, guint32 len, const gchar *repoid, ior_src_t src) {
1374 /* Look it up to see if it exists */
1378 /* CHANGED -- Same reqid, so abandon old entry */
1382 }
1384 /* So, passed key should NOT exist in hash at this point.*/
1388 new_objkey_key->objkey = (guint8 *) wmem_memdup(wmem_file_scope(), obj,len); /* copy from object and allocate ptr */
1391 objkey_val->repo_id = wmem_strdup(wmem_file_scope(), repoid); /* duplicate and store Respository ID string */
1395 #if DEBUG
1398 #endif
1402 }
1406 /*
1407 * convert an ascii char representing a hex value,
1408 * to a numeric value.
1409 *
1410 * returns value, or -1 if problem.
1411 *
1412 */
1415 gint8 retval ;
1419 }
1423 }
1429 }
1432 }
1434 }
1436 /*
1437 * Convert from stringified IOR of the kind IOR:af4f7e459f....
1438 * to an IOR octet sequence.
1439 *
1440 * Creates a new tvbuff and call decode_IOR with a NULL tree, just to
1441 * grab repoid etc for our objkey hash.
1442 *
1443 */
1446 gint8 tmpval_lsb;
1447 gint8 tmpval_msb;
1449 guint32 i;
1455 }
1457 /* skip past IOR: and convert character pairs to guint8 */
1465 }
1469 }
1475 }
1477 /* hmm */
1479 }
1481 }
1485 }
1489 /*
1490 * Simple "get a line" routine, copied from somewhere :)
1491 *
1492 */
1498 else
1501 }
1504 /*
1505 * Read a list of stringified IOR's from a named file, convert to IOR's
1506 * and store in object key hash
1507 */
1517 gboolean stream_is_big_endian;
1526 }
1537 /* XXX - can this throw an exception in this case? If so, we
1538 need to catch it and clean up, but we really shouldn't allow
1539 it - or "get_CDR_octet()", or "decode_IOR()" - to throw an
1540 exception. */
1549 }
1550 }
1553 }
1557 /*
1558 * Init routine, setup our request hash stuff, or delete old ref's
1559 *
1560 * Cannot setup the module hash here as my init() may not be called before
1561 * users start registering. So I will move the module_hash stuff to
1562 * proto_register_giop, as is done with packet-rpc
1563 *
1564 *
1565 *
1566 * Also, setup our objectkey/repoid hash here.
1567 *
1568 */
1573 /*
1574 * Create objkey/repoid hash, use my "equal" and "hash" functions.
1575 * Note: keys and values are se_alloc'd so they don't need to be freed.
1576 *
1577 */
1582 /*
1583 * Create hash, use my "equal" and "hash" functions.
1584 *
1585 */
1590 /*
1591 * Create complete_reply_hash, use my "equal" and "hash" functions.
1592 * Note: keys and values are se_alloc'd so they don't need to be freed.
1593 *
1594 */
1599 /*
1600 * Create hash, use my "equal" and "hash" functions.
1601 *
1602 */
1607 /*
1608 * Free giop_complete_request_list (if necessary)
1609 * Note: The data elements are se_alloc'd so only the
1610 * actual list elements need to be freed.
1611 */
1616 }
1621 }
1624 /*
1625 * Insert an entry in the GIOP Heuristic User table.
1626 * Uses a GList.
1627 * Uses giop_sub_handle_t to wrap giop user info.
1628 *
1629 */
1639 subh->sub_proto = find_protocol_by_id(sub_proto); /* protocol_t for sub dissectors's proto_register_protocol() */
1643 }
1646 /*
1647 * Lookup an object key in our object key hash, and return the corresponding
1648 * Repo Id.
1649 *
1650 */
1660 /* Look it up to see if it exists */
1665 #if DEBUG
1667 #endif
1669 }
1671 #if DEBUG
1673 #endif
1676 }
1680 /*
1681 * Extract top level module/interface from repoid
1682 *
1683 * eg from - "IDL:Echo/interface1:1.0"
1684 * get "Echo"
1685 *
1686 * Or, from "IDL:linux.org/Penguin/Teeth:1.0" get
1687 * get linux.org/Penguin/Teeth
1688 *
1689 *
1690 * User must free returned ptr after use.
1691 *
1692 * TODO -- generalize for other Repoid encodings
1693 */
1703 /* Must start with IDL: , otherwise I get confused */
1708 /* Looks like a RepoID to me, so get Module or interface name */
1710 /* TODO -- put some code here to get Module name */
1718 }
1720 /* Now create a new string based on start and stop and \0 */
1726 }
1728 /*
1729 * DEBUG CODE
1730 *
1731 */
1734 #if DEBUG
1735 /*
1736 * Display a "module" hash entry
1737 */
1748 }
1750 /*
1751 * Display a "complete_reply " hash entry
1752 */
1763 }
1766 /*
1767 * Display an "objkey" hash entry
1768 */
1771 guint32 i;
1780 }
1782 /*
1783 * If read from file, mark it as such..
1784 */
1788 }
1791 }
1795 }
1797 /*
1798 * Display all giop_sub_list (GSList) entries
1799 */
1806 /* Get length of list */
1815 }
1817 }
1819 /*
1820 * Display all complete_request_list (GList) entries
1821 */
1828 /* Get length of list */
1835 entry = (comp_req_list_entry_t *) g_list_nth_data(giop_complete_request_list,i); /* grab entry */
1836 printf("giop:Index = %8i , FN = %8i, reqid = %8u , operation = %20s , repoid = %30s \n", i, entry->fn,
1838 }
1840 }
1845 /* Dump Hash/List contents
1846 *
1847 * collection_type specifies the list or hash to dump
1848 *
1849 */
1923 }
1926 }
1931 /*
1932 * Loop through all subdissectors, and call them until someone
1933 * answers (returns TRUE). This function then returns TRUE, otherwise
1934 * it return FALSE
1935 *
1936 * But skip a subdissector if it has been disabled in GUI "edit protocols".
1937 */
1939 static gboolean try_heuristic_giop_dissector(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint32 *offset,
1952 {
1953 guint32 message_size;
1958 else
1963 }
1972 res = (subh->sub_fn)(tvb,pinfo,tree,offset,header,operation,NULL); /* callit TODO - replace NULL */
1976 }
1985 }
1988 /*
1989 * Find the matching repoid in the module hash and call
1990 * the dissector function if offset exists.
1991 *
1992 *
1993 * Repoid is eg IDL:tux.antarctic/Penguin/Teeth:1.0 but subdissectors
1994 * will register possibly "tux.antarctic/Penguin" and "tux.antarctic/Penguin/Teeth".
1995 *
1996 *
1997 *
1998 */
2000 static gboolean try_explicit_giop_dissector(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int *offset,
2011 /*
2012 * Get top level module/interface from complete repoid
2013 */
2018 }
2021 /* Search for Module or interface name */
2028 }
2033 /* Add giop_sub_handle_t and repoid into complete_request_list, so REPLY can */
2034 /* look it up directly, later ie: FN -> MFN -> giop_sub_handle_t and repoid */
2035 /* but only if user not clicking */
2041 /* Call subdissector if current offset exists , and dissector is enabled in GUI "edit protocols" */
2044 #if DEBUG
2045 printf("giop:try_explicit_dissector calling sub = %s with module = (%s) \n", subdiss->sub_name , modname);
2046 #endif
2053 res = (subdiss->sub_fn)(tvb,pinfo,tree,offset,header,operation, modname); /* callit, TODO replace NULL with idlname */
2061 }
2065 /* Take in an array of char and create a new ephemeral string.
2066 * Replace non-printable characters with periods.
2067 *
2068 * The array may contain \0's so dont use strdup
2069 * The string is \0 terminated, and thus longer than
2070 * the initial sequence.
2071 */
2077 print_string = (gchar * )wmem_alloc0(wmem_packet_scope(), len + 1); /* make some space and zero it */
2083 }
2086 }
2088 /* Determine the byte order from the GIOP MessageHeader */
2098 else
2104 else
2109 }
2111 }
2115 /*
2116 * Calculate new offset, based on the current offset, and user supplied
2117 * "offset delta" value, and the alignment requirement.
2118 *
2119 *
2120 *
2121 * eg: Used for GIOP 1.2 where Request and Reply bodies are
2122 * aligned on 8 byte boundaries.
2123 */
2131 }
2133 /*
2134 * Helper functions for dissecting TypeCodes
2135 *
2136 * These functions decode the complex parameter lists
2137 * of TypeCodes as defined in the CORBA spec chapter 15.
2138 */
2140 /*
2141 * For a given data type, given by a TypeCode gets the associated data
2142 * and displays it in the relevant tree.
2143 */
2166 /* Grab the data according to data type */
2170 /* nothing to decode */
2173 /* nothing to decode */
2236 }
2263 }
2264 }
2273 }
2286 expert_add_info_format(pinfo, item, &ei_giop_unknown_typecode_datatype, "Unknown typecode data type %u", data_type);
2288 }
2289 }
2291 /*
2292 * gets a TypeCode complex string parameter and
2293 * displays it in the relevant tree.
2294 */
2302 /* get string */
2308 }
2309 }
2319 /* get sequence length, new endianness and boundary for encapsulation */
2324 /* get repository ID */
2326 hf_giop_repoid);
2328 /* get name */
2330 hf_giop_typecode_name);
2332 }
2335 static void dissect_tk_struct_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2346 /* get sequence length new endianness and boundary for encapsulation */
2351 /* get repository ID */
2353 hf_giop_repoid);
2355 /* get name */
2357 hf_giop_typecode_name);
2359 /* get count of tuples */
2364 }
2366 /* get all tuples */
2368 /* get member name */
2370 hf_giop_typecode_member_name);
2372 /* get member type */
2374 }
2376 }
2379 static void dissect_tk_union_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, proto_item* item,
2393 /* get sequence length, new endianness and boundary for encapsulation */
2398 /* get repository ID */
2400 hf_giop_repoid);
2402 /* get name */
2404 hf_giop_typecode_name);
2406 /* get discriminant type */
2407 TCKind = get_CDR_typeCode(tvb, pinfo, tree, offset, new_stream_is_big_endian, new_boundary, header);
2409 /* get default used */
2414 /* get count of tuples */
2418 /* get all tuples */
2420 /* get label value, based on TCKind above */
2421 dissect_data_for_typecode(tvb, pinfo, tree, item, offset, new_stream_is_big_endian, new_boundary, header, TCKind );
2423 /* get member name */
2425 hf_giop_typecode_member_name);
2427 /* get member type */
2429 }
2431 }
2444 /* get sequence length, new endianness and boundary for encapsulation */
2449 /* get repository ID */
2451 hf_giop_repoid);
2453 /* get name */
2455 hf_giop_typecode_name);
2457 /* get count of tuples */
2462 /* get all tuples */
2464 /* get member name */
2466 hf_giop_typecode_member_name);
2467 }
2469 }
2472 static void dissect_tk_sequence_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2483 /* get sequence length, new endianness and boundary for encapsulation */
2488 /* get element type */
2491 /* get max length */
2495 }
2498 static void dissect_tk_array_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2509 /* get sequence length, new endianness and boundary for encapsulation */
2514 /* get element type */
2517 /* get length */
2521 }
2524 static void dissect_tk_alias_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2533 /* get sequence legnth, new endianness and boundary for encapsulation */
2538 /* get repository ID */
2540 hf_giop_repoid);
2542 /* get name */
2544 hf_giop_typecode_name);
2546 /* get ??? (noname) TypeCode */
2549 }
2552 static void dissect_tk_except_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2563 /* get sequence length, new endianness and boundary for encapsulation */
2568 /* get repository ID */
2570 hf_giop_repoid);
2572 /* get name */
2574 hf_giop_typecode_name);
2576 /* get count of tuples */
2581 }
2583 /* get all tuples */
2585 /* get member name */
2587 hf_giop_typecode_member_name);
2589 /* get member type */
2591 }
2593 }
2595 static void dissect_tk_value_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2608 /* get sequence length, new endianness and boundary for encapsulation */
2613 /* get repository ID */
2615 hf_giop_repoid);
2617 /* get name */
2619 hf_giop_typecode_name);
2621 /* get ValueModifier */
2626 /* get conrete base */
2629 /* get count of tuples */
2634 /* get all tuples */
2636 /* get member name */
2638 hf_giop_typecode_member_name);
2640 /* get member type */
2643 /* get Visibility */
2648 }
2649 }
2651 }
2654 static void dissect_tk_value_box_params(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, gint *offset,
2663 /* get sequence length, new endianness and boundary for encapsulation */
2668 /* get repository ID */
2670 hf_giop_repoid);
2672 /* get name */
2674 hf_giop_typecode_name);
2676 /* get ??? (noname) TypeCode */
2678 }
2689 /* get sequence length, new endianness and boundary for encapsulation */
2694 /* get repository ID */
2696 hf_giop_repoid);
2698 /* get name */
2700 hf_giop_typecode_name);
2702 }
2705 static void dissect_tk_abstract_interface_params(tvbuff_t *tvb, proto_tree *tree, gint *offset,
2713 /* get sequence length, new endianness and boundary for encapsulation */
2718 /* get repository ID */
2720 hf_giop_repoid);
2722 /* get name */
2724 hf_giop_typecode_name);
2726 }
2728 /* Typecode parameter lists are encoded as encapsulations and
2729 * this function gets the encapsulation information; see
2730 * CORBA spec chapter 15
2731 *
2732 *
2733 * Renamed to get_CDR_encap_info() for any encapsulation
2734 * we come across, useful helper function
2735 *
2736 * Also, should return immediately if seqlen == 0.
2737 * ie: Forget about trying to grab endianness for
2738 * zero length sequence.
2739 *
2740 * Caller must always check seqlen == 0, and not assume its value
2741 *
2742 *
2743 * Note: there seemed to be considerable confusion in corba
2744 * circles as to the correct interpretation of encapsulations,
2745 * and zero length sequences etc, but this is our best bet at the
2746 * moment.
2747 *
2748 * -- FS
2749 *
2750 */
2757 guint8 giop_endianness;
2759 /* Get sequence length of parameter list */
2764 /*
2765 * seqlen == 0, implies no endianness and no data
2766 * so just return. Populate new_boundary_ptr and
2767 * new_stream_is_big_endian_ptr with current (old)
2768 * values, just to keep everyone happy. -- FS
2769 *
2770 */
2776 }
2778 /* Start of encapsulation of parameter list */
2784 /*
2785 * Glib: typedef gint gboolean;
2786 * ie: It is not a guint8, so cannot use sizeof to correctly
2787 * highlight octet.
2788 */
2793 }
2795 /*
2796 * ------------------------------------------------------------------------------------------+
2797 * Public get_CDR_xxx functions.
2798 * ------------------------------------------------------------------------------------------+
2799 */
2803 /*
2804 * Gets data of type any. This is encoded as a TypeCode
2805 * followed by the encoded value.
2806 */
2814 /* get TypeCode of any */
2817 /* dissect data of type TCKind */
2818 dissect_data_for_typecode(tvb, pinfo, tree, item, offset, stream_is_big_endian, boundary, header, TCKind );
2819 }
2822 /* Copy a 1 octet sequence from the tvbuff
2823 * which represents a boolean value, and convert
2824 * it to a boolean value.
2825 * Offset is then incremented by 1, to indicate the 1 octet which
2826 * has been processed.
2827 */
2830 guint8 val;
2835 }
2837 /* Copy a 1 octet sequence from the tvbuff
2838 * which represents a char, and convert
2839 * it to an char value.
2840 * offset is then incremented by 1, to indicate the 1 octet which
2841 * has been processed.
2842 */
2845 guint8 val;
2850 }
2854 /*
2855 * Floating Point Data Type double IEEE 754-1985
2856 *
2857 * Copy an 8 octet sequence from the tvbuff
2858 * which represents a double value, and convert
2859 * it to a double value, taking into account byte order.
2860 * offset is first incremented so that it falls on a proper alignment
2861 * boundary for double values.
2862 * offset is then incremented by 8, to indicate the 8 octets which
2863 * have been processed.
2864 */
2866 gdouble get_CDR_double(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
2868 gdouble val;
2870 /* double values must be aligned on a 8 byte boundary */
2881 }
2884 /* Copy a 4 octet sequence from the tvbuff
2885 * which represents an enum value, and convert
2886 * it to an enum value, taking into account byte order.
2887 * offset is first incremented so that it falls on a proper alignment
2888 * boundary for an enum (4)
2889 * offset is then incremented by 4, to indicate the 4 octets which
2890 * have been processed.
2891 *
2892 * Enum values are encoded as unsigned long.
2893 */
2896 guint32 get_CDR_enum(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
2900 }
2903 /*
2904 * Copy an octet sequence from the tvbuff
2905 * which represents a Fixed point decimal type, and create a string representing
2906 * a Fixed point decimal type. There are no alignment restrictions.
2907 * Size and scale of fixed decimal type is determined by IDL.
2908 *
2909 * digits - IDL specified number of "digits" for this fixed type
2910 * scale - IDL specified "scale" for this fixed type
2911 *
2912 *
2913 * eg: typedef fixed <5,2> fixed_t;
2914 * could represent numbers like 123.45, 789.12,
2915 *
2916 *
2917 * As the fixed type could be any size, I will not try to fit it into our
2918 * simple types like gdouble or glong etc. I will just create a string buffer holding
2919 * a representation (after scale is applied), and with a decimal point or zero padding
2920 * inserted at the right place if necessary. The string is null terminated
2921 *
2922 * so string may look like
2923 *
2924 *
2925 * "+1.234" or "-3456.78" or "1234567309475760377365465897891" or "-2789000000" etc
2926 *
2927 * According to spec, digits <= 31
2928 * and scale is positive (except for constants eg: 1000 has digit=1 and implied scale = -3)
2929 * or <4,0> ?
2930 *
2931 */
2938 /* this does not include sign, decimal point and \0 */
2943 /*
2944 * how many bytes to hold digits and scale (if scale <0)
2945 *
2946 * eg: fixed <5,2> = 5 digits
2947 * fixed <5,-2> = 7 digits (5 + 2 added 0's)
2948 */
2950 #if DEBUG
2952 #endif
2958 }
2960 #if DEBUG
2962 #endif
2966 /* If even , grab 1st dig */
2970 #if DEBUG
2972 #endif
2974 sindex++;
2975 }
2977 /*
2978 * Loop, but stop BEFORE we hit last digit and sign
2979 * if digits = 1 or 2, then this part is skipped
2980 */
2985 #if DEBUG
2987 #endif
2990 sindex++;
2992 sindex++;
2994 }
2997 #if DEBUG
2999 #endif
3002 /* Last digit and sign if digits >1, or 1st dig and sign if digits = 1 */
3005 #if DEBUG
3007 #endif
3009 sindex++;
3013 /* So now, we have all digits in an array, and the sign byte
3014 * so lets generate a printable string, taking into account the scale
3015 * and sign values.
3016 */
3019 *seq = wmem_alloc0_array(wmem_packet_scope(), gchar, slen + 3); /* allocate temp buffer , including space for sign, decimal point and
3020 * \0 -- TODO check slen is reasonable first */
3021 #if DEBUG
3023 #endif
3037 }
3039 sindex++;
3041 /* Add decimal point or padding 0's, depending if scale is positive or
3042 * negative, respectively
3043 */
3048 sindex++;
3049 }
3052 sindex++;
3056 sindex++;
3057 }
3063 /* negative scale, dump digits and pad out with 0's */
3070 }
3071 sindex++;
3072 }
3076 }
3078 #if DEBUG
3080 #endif
3084 }
3088 /*
3089 * Floating Point Data Type float IEEE 754-1985
3090 *
3091 * Copy an 4 octet sequence from the tvbuff
3092 * which represents a float value, and convert
3093 * it to a float value, taking into account byte order.
3094 * offset is first incremented so that it falls on a proper alignment
3095 * boundary for float values.
3096 * offset is then incremented by 4, to indicate the 4 octets which
3097 * have been processed.
3098 */
3100 gfloat get_CDR_float(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
3102 gfloat val;
3104 /* float values must be aligned on a 4 byte boundary */
3115 }
3118 /*
3119 * Decode an Interface type, and display it on the tree.
3120 */
3129 }
3132 /* Copy a 4 octet sequence from the tvbuff
3133 * which represents a signed long value, and convert
3134 * it to an signed long vaule, taking into account byte order.
3135 * offset is first incremented so that it falls on a proper alignment
3136 * boundary for long values.
3137 * offset is then incremented by 4, to indicate the 4 octets which
3138 * have been processed.
3139 */
3143 gint32 val;
3145 /* unsigned long values must be aligned on a 4 byte boundary */
3154 }
3156 /* Copy a 8 octet sequence from the tvbuff
3157 * which represents a signed long long value, and convert
3158 * it to an signed long long vaule, taking into account byte order.
3159 * offset is first incremented so that it falls on a proper alignment
3160 * boundary for long long values.
3161 * offset is then incremented by 8, to indicate the 8 octets which
3162 * have been processed.
3163 */
3165 gint64 get_CDR_long_long(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
3167 gint64 val;
3169 /* unsigned long long values must be aligned on a 8 byte boundary */
3178 }
3180 /*
3181 * Decode an Object type, and display it on the tree.
3182 */
3190 }
3193 /* Copy a 1 octet sequence from the tvbuff
3194 * which represents a octet, and convert
3195 * it to an octet value.
3196 * offset is then incremented by 1, to indicate the 1 octet which
3197 * has been processed.
3198 */
3201 guint8 val;
3206 }
3209 /* Copy a sequence of octets from the tvbuff.
3210 * Memory is allocated in packet pool and will be
3211 * automatically freed once the packet dissection is finished.
3212 * This function also increments offset by len.
3213 */
3218 /*
3219 * Make sure that the entire sequence of octets is in the buffer before
3220 * allocating the buffer, so that we don't try to allocate a buffer bigger
3221 * than the data we'll actually be copying, and thus don't run the risk
3222 * of crashing if the buffer is *so* big that we fail to allocate it
3223 * and "wmem_alloc0_array()" aborts.
3224 */
3227 /*
3228 * XXX - should we just allocate "len" bytes, and have "get_CDR_string()"
3229 * do what we do now, and null-terminate the string (which also means
3230 * we don't need to zero out the entire allocation, just the last byte)?
3231 */
3236 }
3239 /* Copy a 2 octet sequence from the tvbuff
3240 * which represents a signed short value, and convert
3241 * it to a signed short value, taking into account byte order.
3242 * offset is first incremented so that it falls on a proper alignment
3243 * boundary for short values.
3244 * offset is then incremented by 2, to indicate the 2 octets which
3245 * have been processed.
3246 */
3248 gint16 get_CDR_short(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
3250 gint16 val;
3252 /* short values must be aligned on a 2 byte boundary */
3261 }
3264 /* Add an octet string to the tree. This function exists in an attempt
3265 * to eliminate function-local variables in packet-parlay.c .
3266 */
3267 void
3270 {
3271 guint32 u_octet4;
3276 }
3279 /* Copy an octet sequence from the tvbuff
3280 * which represents a string, and convert
3281 * it to an string value, taking into account byte order.
3282 * offset is first incremented so that it falls on a proper alignment
3283 * boundary for string values. (begins with an unsigned long LI)
3284 *
3285 * String sequence is copied to a buffer "seq".
3286 * Memory is allocated in packet pool and will be
3287 * automatically freed once the packet dissection is finished.
3288 * offset is then incremented, to indicate the octets which
3289 * have been processed.
3290 *
3291 * returns number of octets in the sequence
3292 *
3293 * Note: This function only supports single byte encoding at the
3294 * moment until I get a handle on multibyte encoding etc.
3295 *
3296 */
3299 guint32 get_CDR_string(tvbuff_t *tvb, const gchar **seq, int *offset, gboolean stream_is_big_endian,
3302 guint32 slength;
3303 gint reported_length;
3307 #if 0
3309 #endif
3313 /* Size exceeds packet size, so just grab the rest of the packet */
3314 /* XXX - add expert_add_info_format note */
3317 }
3322 }
3326 }
3328 /* Process a sequence of octets that represent the
3329 * Pseudo Object Type "TypeCode". Typecodes are used for example,
3330 * by "Any values".
3331 * This function also increments offset to the correct position.
3332 *
3333 * It will parse the TypeCode and output data to the "tree" provided
3334 * by the user
3335 *
3336 * It returns a guint32 representing a TCKind value.
3337 */
3342 guint32 val;
3352 /* Grab the data according to Typecode Table - Corba Chapter 15 */
3390 dissect_tk_union_params(tvb, pinfo, tree, ti, offset, stream_is_big_endian, boundary, header );
3401 }
3429 }
3437 }
3443 }
3450 dissect_tk_value_box_params(tvb, pinfo, tree, offset, stream_is_big_endian, boundary, header );
3464 }
3468 /* Copy a 4 octet sequence from the tvbuff
3469 * which represents an unsigned long value, and convert
3470 * it to an unsigned long value, taking into account byte order.
3471 * offset is first incremented so that it falls on a proper alignment
3472 * boundary for unsigned long values.
3473 * offset is then incremented by 4, to indicate the 4 octets which
3474 * have been processed.
3475 */
3477 guint32 get_CDR_ulong(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
3479 guint32 val;
3481 /* unsigned long values must be aligned on a 4 byte boundary */
3490 }
3492 /* Copy a 8 octet sequence from the tvbuff
3493 * which represents an unsigned long long value, and convert
3494 * it to an unsigned long long vaule, taking into account byte order.
3495 * offset is first incremented so that it falls on a proper alignment
3496 * boundary for unsigned long long values.
3497 * offset is then incremented by 4, to indicate the 4 octets which
3498 * have been processed.
3499 */
3501 guint64 get_CDR_ulong_long(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
3503 guint64 val;
3505 /* unsigned long long values must be aligned on a 8 byte boundary */
3514 }
3516 /* Copy a 2 octet sequence from the tvbuff
3517 * which represents an unsigned short value, and convert
3518 * it to an unsigned short value, taking into account byte order.
3519 * offset is first incremented so that it falls on a proper alignment
3520 * boundary for unsigned short values.
3521 * offset is then incremented by 2, to indicate the 2 octets which
3522 * have been processed.
3523 */
3525 guint16 get_CDR_ushort(tvbuff_t *tvb, int *offset, gboolean stream_is_big_endian, int boundary) {
3527 guint16 val;
3529 /* unsigned short values must be aligned on a 2 byte boundary */
3538 }
3542 /* Copy a wchar from the tvbuff.
3543 * Memory is allocated in packet pool and will be
3544 * automatically freed once the packet dissection is finished.
3545 * This function also increments offset according to
3546 * the wchar size.
3547 *
3548 * For GIOP 1.1 read 2 octets and return size -2. The
3549 * negation means there is no size element in the packet
3550 * and therefore no size to add to the tree.
3551 *
3552 * For GIOP 1.2 read size of wchar and the size
3553 * octets. size is returned as a gint8.
3554 *
3555 * For both GIOP versions the wchar is returned
3556 * as a printable string.
3557 *
3558 */
3560 /* NOTE: This is very primitive in that it just reads
3561 * the wchar as a series of octets and returns them
3562 * to the user. No translation is attempted based on
3563 * byte orientation, nor on code set. I.e it only
3564 * really reads past the wchar and sets the offset
3565 * correctly.
3566 */
3568 /* The "decoding" is done according to CORBA chapter 15.
3569 * Wchar is not supported for GIOP 1.0.
3570 */
3574 gint slength;
3577 /* CORBA chapter 15:
3578 * - prior to GIOP 1.2 wchar limited to two octet fixed length.
3579 * - GIOP 1.2 wchar is encoded as an unsigned binary octet
3580 * followed by the elements of the octet sequence representing
3581 * the encoded value of the wchar.
3582 */
3591 /* ??? assume alignment is ok for GIOP 1.1 ??? */
3594 /* now turn octets (wchar) into something that can be printed by the user */
3596 }
3598 /* if GIOP 1.1 negate length to indicate not an item to add to tree */
3604 }
3607 /* Copy a wstring from the tvbuff.
3608 * Memory is allocated in packet pool and will be
3609 * automatically freed once the packet dissection is finished.
3610 * This function also increments offset, according to
3611 * wstring length. length is returned as guint32
3612 */
3614 /* NOTE: This is very primitive in that it just reads
3615 * the wstring as a series of octets and returns them
3616 * to the user. No translation is attempted based on
3617 * byte orientation, nor on code set. I.e it only
3618 * really reads past the wstring and sets the offset
3619 * correctly.
3620 */
3622 /* The "decoding" is done according to CORBA chapter 15.
3623 * Wstring is not supported for GIOP 1.0.
3624 */
3627 guint32 get_CDR_wstring(tvbuff_t *tvb, const gchar **seq, int *offset, gboolean stream_is_big_endian,
3630 guint32 slength;
3631 gint reported_length;
3634 /* CORBA chapter 15:
3635 * - prior to GIOP 1.2 wstring limited to two octet fixed length.
3636 * length and string are NUL terminated (length???).
3637 * - GIOP 1.2 length is total number of octets. wstring is NOT NUL
3638 * terminated.
3639 */
3643 /* get length, same for all GIOP versions,
3644 * although for 1.2 CORBA doesnt say, so assume.
3645 */
3648 #ifdef DEBUG
3652 }
3653 #endif
3656 #if 0
3658 #endif
3659 /* assume length is number of characters and not octets, spec not clear */
3661 }
3666 /* XXX - add expert_add_info_format note */
3667 }
3672 /* now turn octets (wstring) into something that can be printed by the user */
3674 }
3678 }
3680 /**
3681 * Dissects a TargetAddress which is defined in (CORBA 2.4, section 15.4.2)
3682 * GIOP 1.2
3683 * typedef short AddressingDisposition;
3684 * const short KeyAddr = 0;
3685 * const short ProfileAddr = 1;
3686 * const short ReferenceAddr = 2;
3687 * struct IORAddressingInfo {
3688 * unsigned long selected_profile_index;
3689 * IOP::IOR ior;
3690 * };
3691 *
3692 * union TargetAddress switch (AddressingDisposition) {
3693 * case KeyAddr: sequence <octet> object_key;
3694 * case ProfileAddr: IOP::TaggedProfile profile;
3695 * case ReferenceAddr: IORAddressingInfo ior;
3696 * };
3697 */
3699 static void
3703 {
3704 guint16 discriminant;
3707 guint32 u_octet4;
3711 proto_tree_add_uint (tree, hf_giop_target_address_discriminant, tvb, *offset -2, 2, discriminant);
3714 {
3720 expert_add_info_format(pinfo, ti, &ei_giop_length_too_big, "KeyAddr key length bigger than packet size");
3722 }
3733 }
3736 }
3737 }
3751 }
3752 }
3756 /* The boundary being passed in is the offset where the context_data
3757 * sequence begins. */
3759 guint32 code_set_id;
3761 /* We pass in -boundary, because the alignment is calculated relative to
3762 the beginning of the context_data sequence.
3763 Inside get_CDR_ulong(), the calculation will be (offset +(- boundary)) % 4
3764 to determine the correct alignment of the short. */
3770 }
3772 }
3774 /*
3775 * From Section 2.7.3 of the Real-time CORBA 1.1 Standard, the CORBA priority
3776 * is represented in the GIOP service request as:
3777 *
3778 * module IOP {
3779 * typedef short ServiceId;
3780 * const ServiceId RTCorbaPriority = 10;
3781 * };
3782 *
3783 * The RT-CORBA priority is a CDR encoded short value in a sequence<octet>
3784 * buffer.
3785 */
3789 /* The boundary being passed in is the offset where the context_data
3790 * sequence begins. */
3792 gint16 rtpriority;
3794 /* RTCorbaPriority is stored as a CDR encoded short */
3795 /* We pass in -boundary, because the alignment is calculated relative to
3796 the beginning of the context_data sequence.
3797 Inside get_CDR_short(), the calculation will be (offset + (- boundary)) % 2
3798 to determine the correct alignment of the short. */
3801 /* Highlight all of context_data except for the first endian byte */
3803 }
3805 static void decode_UnknownServiceContext(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int *offset,
3808 guint32 context_data_len;
3812 /* get sequence length, and NO encapsulation */
3814 ti = proto_tree_add_uint(tree, hf_giop_context_data_len, tvb, *offset - 4, 4, context_data_len);
3817 expert_add_info_format(pinfo, ti, &ei_giop_length_too_big, "Context data length bigger than packet size");
3819 }
3821 /* return if zero length sequence */
3825 /*
3826 * Now decode sequence according to vendor ServiceId, but I dont
3827 * have that yet, so just dump it as data.
3828 */
3830 /* fetch all octets in this sequence */
3834 /* Make a printable string */
3837 }
3839 /*
3840 * Corba , chp 13.7
3841 *
3842 *
3843 *
3844 * typedef unsigned long ServiceID;
3845 *
3846 * struct ServiceContext {
3847 * ServiceID context_id;
3848 * sequence <octet> context_data;
3849 * };
3850 * typedef sequence <ServiceContext> ServiceContextList;
3851 *
3852 *
3853 * Note: Spec says context_data is an encapsulation.
3854 *
3855 *
3856 */
3858 static void decode_ServiceContextList(tvbuff_t *tvb, packet_info *pinfo, proto_tree *ptree, int *offset,
3868 guint32 context_id;
3870 guint32 i;
3872 guint32 scid;
3873 gboolean encapsulation_is_be;
3874 guint32 encapsulation_boundary;
3878 /* create a subtree */
3880 /* set length to 0 now and correct with proto_item_set_len() later */
3884 /* Get sequence length (number of elements) */
3889 /* return if zero length sequence */
3896 }
3899 }
3901 /* Loop for all ServiceContext's */
3916 /* The OMG has vscid of 0 reserved */
3920 }
3922 /* get sequence length, new endianness and boundary for encapsulation */
3933 /* See CORBA 3.0.2 standard, section Section 15.3.3 "Encapsulation",
3934 * for how CDR types can be marshalled into a sequence<octet>.
3935 * The first octet in the sequence determines endian order,
3936 * 0 == big-endian, 1 == little-endian
3937 */
3940 {
3951 /* Need to fill these in as we learn them */
3954 boundary);
3956 }
3957 /* Set the offset to the end of the context_data sequence */
3963 }
3965 static void
3970 guint sequence_length;
3972 gint reply_body_length;
3974 /*
3975 * comp_req_list stuff
3976 */
3980 guint32 mfn;
3983 {
3993 sequence_length);
3996 {
4002 }
4004 /*
4005 * Now just fall through to the NO_EXCEPTION part
4006 * as this is common .
4007 */
4014 /* lookup MFN in hash directly */
4021 /* get entry for this MFN */
4028 /*
4029 * If this packet is a REPLY to a RESOLVE(request)
4030 * then decode IOR.
4031 * TODO - make this lookup faster -- FS
4032 */
4037 }
4039 /* TODO -- Put stuff here for other "interesting operations" */
4041 /*
4042 *
4043 * Call sub dissector.
4044 * First try an find a explicit sub_dissector, then if that
4045 * fails, try the heuristic method.
4046 */
4050 exres = try_explicit_giop_dissector(tvb,pinfo,clnp_tree, &offset, header, entry->operation, entry->repoid );
4051 }
4053 /* Only call heuristic if no explicit dissector was found */
4057 }
4062 }
4069 }
4084 guint16 addr_disp;
4088 }
4097 }
4098 }
4104 /* The format of the Reply Header for GIOP 1.0 and 1.1
4105 * is documented in Section 15.4.3.1 of the CORBA 2.4 standard.
4107 struct ReplyHeader_1_0 {
4108 IOP::ServiceContextList service_context;
4109 unsigned long request_id;
4110 ReplyStatusType_1_0 reply_status;
4111 };
4112 */
4116 gboolean stream_is_big_endian) {
4119 guint32 request_id;
4120 guint32 reply_status;
4128 /*
4129 * Decode IOP::ServiceContextList
4130 */
4132 decode_ServiceContextList(tvb, pinfo, reply_tree, &offset,stream_is_big_endian, GIOP_HEADER_SIZE);
4146 /*
4147 * Save FN and MFN in complete_reply_hash, only if user is NOT clicking
4148 */
4154 }
4155 }
4160 /* Do we have a body */
4164 }
4166 /** The format of the GIOP 1.2 Reply header is very similar to the 1.0
4167 * and 1.1 header, only the fields have been rearranged. From Section
4168 * 15.4.3.1 of the CORBA 2.4 specification:
4169 *
4170 * struct ReplyHeader_1_2 {
4171 * unsigned long request_id;
4172 * ReplyStatusType_1_2 reply_status;
4173 * IOP:ServiceContextList service_context;
4174 * };
4175 */
4180 gboolean stream_is_big_endian) {
4183 guint32 request_id;
4184 guint32 reply_status;
4202 /*
4203 * Decode IOP::ServiceContextList
4204 */
4206 decode_ServiceContextList(tvb, pinfo, reply_tree, &offset,stream_is_big_endian, GIOP_HEADER_SIZE);
4208 /*
4209 * GIOP 1.2 Reply body must fall on an 8 octet alignment.
4210 */
4214 /*
4215 * Save FN and MFN in complete_reply_hash, only if user is NOT clicking
4216 */
4222 }
4223 }
4225 /*
4226 * Add header to argument list so sub dissector can get header info.
4227 */
4234 }
4238 gboolean stream_is_big_endian) {
4241 guint32 request_id;
4251 }
4253 /** The formats for GIOP 1.0 and 1.1 Request messages are defined
4254 * in section 15.4.2.1 of the CORBA 2.4 specification.
4255 *
4256 * struct RequestHeader{
4257 * IOP::ServiceContextList service_context;
4258 * unsigned long request_id;
4259 * boolean response_expected;
4260 * octet reserved[3]; // Only in GIOP 1.1
4261 * sequence<octet> object_key;
4262 * string operation;
4263 * CORBA::OctetSeq requesting_principal;
4264 * }
4265 */
4266 static void
4270 {
4272 guint32 request_id;
4281 guint8 response_expected;
4292 /*
4293 * Decode IOP::ServiceContextList
4294 */
4310 {
4313 }
4315 /* Prior to GIOP 1.2, MIOP profile address prefixed with 'MIOP' */
4323 {
4327 }
4328 else
4329 {
4330 /* Wind back if not MIOP profile */
4334 /* Length of object_key sequence */
4336 GIOP_HEADER_SIZE);
4340 expert_add_info_format(pinfo, tf, &ei_giop_length_too_big, "Object key length bigger than packet size");
4342 }
4345 {
4349 }
4350 }
4352 /* length of operation string and string */
4357 {
4360 }
4362 /* length of requesting_principal string */
4367 expert_add_info_format(pinfo, tf, &ei_giop_length_too_big, "Requesting Principal length bigger than packet size");
4369 }
4372 {
4376 }
4379 /*
4380 * Save FN,reqid,and operation for later. Add sub_handle later.
4381 * But only if user is NOT clicking.
4382 */
4384 giop_complete_request_list = insert_in_comp_req_list(giop_complete_request_list,pinfo->fd->num,
4388 /*
4389 * Call subdissector here before freeing "operation" and "key"
4390 * pass request_id also.
4391 * First try an find an explicit sub_dissector, then if that
4392 * fails, try the heuristic method.
4393 *
4394 */
4403 }
4405 /* Only call heuristic if no explicit dissector was found */
4409 }
4416 }
4422 }
4423 }
4425 /** The format of a GIOP 1.2 RequestHeader message is
4426 * (CORBA 2.4, sec. 15.4.2):
4427 *
4428 * struct RequestHeader_1_2 {
4429 * unsigned long request_id;
4430 * octet response_flags;
4431 * octet reserved[3];
4432 * TargetAddress target;
4433 * string operation;
4434 * IOP::ServiceContextList service_context;
4435 * // requesting_principal not in GIOP 1.2
4436 * };
4437 */
4438 static void
4442 {
4444 guint32 request_id;
4475 }
4477 /* length of operation string and string */
4482 {
4485 }
4487 /*
4488 * Decode IOP::ServiceContextList
4489 */
4490 decode_ServiceContextList(tvb, pinfo, request_tree, &offset, stream_is_big_endian, GIOP_HEADER_SIZE);
4492 /*
4493 * GIOP 1.2 Request body must fall on an 8 octet alignment, taking into
4494 * account we are in a new tvbuff, GIOP_HEADER_SIZE octets from the
4495 * GIOP octet stream start.
4496 */
4499 {
4501 }
4503 /*
4504 * Save FN,reqid,and operation for later. Add sub_handle later.
4505 * But only if user is NOT clicking.
4506 */
4509 giop_complete_request_list = insert_in_comp_req_list(giop_complete_request_list,pinfo->fd->num,
4512 /*
4513 *
4514 * Call sub dissector.
4515 * First try an find a explicit sub_dissector, then if that
4516 * fails, try the heuristic method.
4517 */
4521 }
4523 /* Only call heuristic if no explicit dissector was found */
4527 }
4534 }
4541 }
4542 }
4544 static void
4547 gboolean stream_is_big_endian)
4548 {
4550 guint32 request_id;
4563 {
4568 expert_add_info_format(pinfo, tf, &ei_giop_length_too_big, "Object key length bigger than packet size");
4570 }
4574 }
4575 }
4577 {
4580 }
4581 }
4583 static void
4586 gboolean stream_is_big_endian)
4587 {
4589 guint32 request_id;
4590 guint32 locate_status;
4591 guint16 addr_disp;
4604 proto_tree_add_uint (locate_reply_tree, hf_giop_locale_status, tvb, offset-4, 4, locate_status);
4606 /* Decode the LocateReply body.
4607 *
4608 * For GIOP 1.0 and 1.1 body immediately follows header.
4609 * For GIOP 1.2 it is aligned on 8 octet boundary so need to
4610 * spin up.
4611 */
4616 }
4632 }
4634 }
4636 static void
4638 gboolean stream_is_big_endian)
4639 {
4641 guint32 request_id;
4651 }
4654 /* Main entry point */
4656 static int dissect_giop_common (tvbuff_t * tvb, packet_info * pinfo, proto_tree * tree, void* data _U_) {
4658 MessageHeader header;
4663 guint message_size;
4664 gboolean stream_is_big_endian;
4666 /* DEBUG */
4668 #if DEBUG
4674 #endif
4684 /* Get raw header data */
4688 /* Dissect GIOP header */
4701 {
4702 /* Bad version number; should we note that and dissect the rest
4703 as data, or should this be done outside dissect_giop_common()
4704 (which is called as the PDU dissector for GIOP-over-TCP,
4705 so it can't return anything), with the test returning FALSE
4706 on the theory that it might have been some other packet that
4707 happened to begin with "GIOP"? We do the former, for now.
4708 If we should return FALSE, we should do so *without* setting
4709 the "Info" column, *without* setting the "Protocol" column,
4710 and *without* adding anything to the protocol tree. */
4714 expert_add_info_format(pinfo, version_item, &ei_giop_version_not_supported, "Version %u.%u not supported",
4720 }
4723 {
4730 proto_item_append_text(ti, ", (Big Endian)"); /* hack to show "Big Endian" when endianness flag == 0 */
4736 ti = proto_tree_add_boolean(header_tree, hf_giop_message_flags_little_endian, tvb, 6, 1, stream_is_big_endian ? 0 : 1);
4739 }
4744 {
4746 }
4747 else
4748 {
4750 }
4755 message_size);
4759 {
4763 }
4766 {
4767 gint rem_len;
4777 /* Decompression failed. */
4778 /* XXX: Consider: add expert item ? do data dissection ? */
4780 }
4783 }
4786 {
4790 {
4793 }
4794 else
4795 {
4798 }
4805 {
4807 stream_is_big_endian);
4808 }
4809 else
4810 {
4813 }
4817 stream_is_big_endian);
4821 stream_is_big_endian);
4825 stream_is_big_endian);
4829 stream_is_big_endian);
4836 }
4838 static guint
4840 {
4842 MessageHeader header;
4843 guint message_size;
4848 /* Get minimal header information to determine endianness, size */
4854 else
4857 /* Make sure the size is reasonable, otherwise just take the header */
4862 }
4864 static gboolean
4870 }
4873 static int
4883 }
4888 }
4890 static gboolean
4893 guint tot_len;
4896 /* check magic number and version */
4899 /*define END_OF_GIOP_MESSAGE (offset - first_offset - GIOP_HEADER_SIZE) */
4904 {
4905 /* Not enough data captured to hold the GIOP header; don't try
4906 to interpret it as GIOP. */
4908 }
4914 {
4915 /*
4916 * Make the GIOP dissector the dissector for this conversation.
4917 *
4918 * If this isn't the first time this packet has been processed,
4919 * we've already done this work, so we don't need to do it
4920 * again.
4921 */
4923 {
4926 /* Set dissector */
4928 }
4930 }
4931 else
4932 {
4934 }
4938 }
4940 void
4942 {
4947 },
4951 },
4955 },
4959 },
4964 },
4969 },
4974 },
4979 },
4984 },
4989 },
4994 },
4999 },
5004 },
5009 },
5015 },
5020 },
5025 }
5026 ,
5030 },
5032 #if 0
5036 },
5037 #endif
5042 },
5047 },
5052 },
5057 },
5062 },
5067 },
5072 },
5077 },
5082 },
5087 },
5092 },
5097 },
5102 },
5107 },
5112 },
5114 #if 0
5118 },
5119 #endif
5124 },
5129 },
5134 },
5139 },
5145 },
5150 },
5155 },
5160 },
5165 },
5170 },
5175 },
5182 },
5187 },
5192 },
5197 },
5199 /*
5200 * float as double ?? -- FIX
5201 */
5206 },
5211 },
5216 },
5221 },
5226 },
5231 },
5236 },
5238 /*
5239 * IIOP Module - Chapter 15.10.2
5240 */
5245 },
5250 },
5252 /*
5253 * IIOP ServiceContext
5254 */
5259 },
5264 },
5269 },
5274 },
5279 },
5284 },
5289 },
5294 },
5299 },
5304 },
5309 },
5314 },
5319 },
5324 },
5329 },
5334 },
5339 },
5344 },
5349 },
5354 },
5355 };
5370 &ett_giop_ior
5372 };
5375 { &ei_giop_unknown_typecode_datatype, { "giop.unknown_typecode_datatype", PI_PROTOCOL, PI_WARN, "Unknown typecode data type", EXPFILL }},
5376 { &ei_giop_unknown_sign_value, { "giop.unknown_sign_value", PI_PROTOCOL, PI_WARN, "Unknown sign value in fixed type", EXPFILL }},
5377 { &ei_giop_unknown_tckind, { "giop.unknown_tckind", PI_PROTOCOL, PI_WARN, "Unknown TCKind", EXPFILL }},
5378 { &ei_giop_length_too_big, { "giop.length_too_big", PI_MALFORMED, PI_ERROR, "length bigger than packet size", EXPFILL }},
5379 { &ei_giop_version_not_supported, { "giop.version_not_supported", PI_PROTOCOL, PI_WARN, "Version not supported", EXPFILL }},
5380 { &ei_giop_message_size_too_big, { "giop.message_size_too_big", PI_PROTOCOL, PI_WARN, "Message size is too big", EXPFILL }},
5381 { &ei_giop_invalid_v_minor, { "giop.invalid_v_minor", PI_PROTOCOL, PI_WARN, "Invalid v_minor value", EXPFILL }},
5382 };
5389 /* Register by name */
5398 /* register init routine */
5402 /* register preferences */
5406 "Whether the GIOP dissector should reassemble messages spanning multiple TCP segments."
5407 " To use this option, you must also enable \"Allow subdissectors to reassemble TCP streams\" in the TCP protocol settings.",
5412 /*
5413 * Init the giop user module hash tables here, as giop users
5414 * will populate it via register_giop_user_module BEFORE my
5415 * own giop_init() is called.
5416 */
5420 }
5427 /* Support DIOP (GIOP/UDP) */
5430 }
5435 /*
5436 * Decode IOR
5437 *
5438 * Ref Corba v2.4.2 Chapter 13
5439 *
5440 */
5442 /*
5444 module IOP{
5446 typedef unsigned long ProfileId;
5448 const ProfileId TAG_INTERNET_IOP = 0;
5449 const ProfileId TAG_MULTIPLE_COMPONENTS = 1;
5451 struct TaggedProfile {
5452 ProfileId tag;
5453 sequence <octet> profile_data;
5454 };
5456 struct IOR {
5457 string type_id;
5458 sequence <TaggedProfile> profiles;
5459 };
5461 typedef unsigned long ComponentId;
5463 struct TaggedComponent {
5464 ComponentId tag;
5465 sequence <octet> component_data;
5466 };
5468 typedef sequence <TaggedComponent> MultipleComponentProfile;
5470 };
5472 */
5479 guint32 u_octet4;
5486 guint32 i;
5488 /* create a subtree */
5492 /* Get type_id == Repository ID */
5500 }
5502 /* Now get a sequence of profiles */
5503 /* Get sequence length (number of elements) */
5509 /* fetch all TaggedProfiles in this sequence */
5512 }
5513 }
5515 static void decode_TaggedProfile(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int *offset,
5525 /* Get ProfileId tag */
5530 /* get sequence length, new endianness and boundary for encapsulation */
5535 /* return if zero length sequence */
5540 /*
5541 * Lets see what kind of TAG it is. If TAG_INTERNET_IOP then
5542 * decode it, otherwise just dump the octet sequence
5543 *
5544 * also, store IOR in our objectkey hash
5545 *
5546 * TODO - handle other TAGS
5547 */
5552 decode_IIOP_IOR_profile(tvb, pinfo, tree, offset, new_boundary, new_big_endianness, repobuf, TRUE);
5558 expert_add_info_format(pinfo, ti, &ei_giop_length_too_big, "Profile data bigger than packet size");
5560 }
5562 /* fetch all octets in this sequence , but skip endianness */
5565 /* Make a printable string */
5569 }
5570 }
5574 /*
5575 * Decode IIOP IOR Profile
5576 * Ref Chap 15.7.2 in Corba Spec
5577 */
5580 static void decode_IIOP_IOR_profile(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int *offset,
5583 gboolean store_flag) {
5597 /* Get major/minor version */
5607 /* host */
5614 }
5616 /* Port */
5622 /* Object Key - sequence<octet> object_key */
5627 expert_add_info_format(pinfo, ti, &ei_giop_length_too_big, "Sequence length bigger than packet size");
5629 }
5632 /* fetch all octets in this sequence */
5635 /*
5636 * Now we may have the Repository ID from earlier, as well
5637 * as the object key sequence and lengh. So lets store them in
5638 * our objectkey hash and free buffers.
5639 *
5640 * But only insert if user is not clicking and repo id not NULL.
5641 *
5642 */
5648 }
5651 /*
5652 * No pinfo, but store anyway if flag set. eg: IOR read from file
5653 */
5657 }
5658 }
5661 }
5663 /*
5664 * Now see if if it's v1.1 or 1.2, as they can contain
5665 * extra sequence of IOP::TaggedComponents
5666 *
5667 */
5672 /* nothing extra */
5678 /* sequence of IOP::TaggedComponents */
5679 /* Ref Chap 13 in Corba Spec */
5681 /* get sequence length */
5687 /* get tag */
5691 /* get component_data */
5696 expert_add_info_format(pinfo, ti, &ei_giop_length_too_big, "Sequence length bigger than packet size");
5698 }
5704 }
5706 }
5710 expert_add_info_format(pinfo, ti_minor, &ei_giop_invalid_v_minor, "Invalid v_minor value = %u", v_minor);
5712 }
5714 }
5716 /* Decode SystemExceptionReplyBody as defined in the CORBA spec chapter 15.
5717 */
5720 gboolean stream_is_big_endian,
5721 guint32 boundary) {
5724 guint32 minor_code_value;
5725 guint32 completion_status;
5741 }
5743 /*
5744 * Editor modelines - http://www.wireshark.org/tools/modelines.html
5745 *
5746 * Local variables:
5747 * c-basic-offset: 2
5748 * tab-width: 8
5749 * indent-tabs-mode: nil
5750 * End:
5751 *
5752 * vi: set shiftwidth=2 tabstop=8 expandtab:
5753 * :indentSize=2:tabSize=8:noTabs=true:
5754 */