search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
HACK: pinfo->private_data points to smb_info again
[wireshark-wip.git] / epan / dissectors / packet-sccp.c
blob3b77eb51cdc68d56368238bc88a38bfad5f8978f
1 /* packet-sccp.c
2 * Routines for Signalling Connection Control Part (SCCP) dissection
3 *
4 * It is hopefully compliant to:
5 * ANSI T1.112.3-2001
6 * ITU-T Q.713 7/1996
7 * YDN 038-1997 (Chinese ITU variant)
8 * JT-Q713 and NTT-Q713 (Japan)
9 *
10 * Note that Japan-specific GTT is incomplete; in particular, the specific
11 * TTs that are defined in TTC and NTT are not decoded in detail.
12 *
13 * Copyright 2002, Jeff Morriss <jeff.morriss.ws [AT] gmail.com>
14 *
15 * $Id$
16 *
17 * Wireshark - Network traffic analyzer
18 * By Gerald Combs <gerald@wireshark.org>
19 * Copyright 1998 Gerald Combs
20 *
21 * Copied from packet-m2pa.c
22 *
23 * This program is free software; you can redistribute it and/or
24 * modify it under the terms of the GNU General Public License
25 * as published by the Free Software Foundation; either version 2
26 * of the License, or (at your option) any later version.
27 *
28 * This program is distributed in the hope that it will be useful,
29 * but WITHOUT ANY WARRANTY; without even the implied warranty of
30 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
31 * GNU General Public License for more details.
32 *
33 * You should have received a copy of the GNU General Public License
34 * along with this program; if not, write to the Free Software
35 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
36 */
37
38
39 #include "config.h"
40
41 #include <string.h>
42
43 #include <glib.h>
44
45 #include <epan/packet.h>
46 #include <epan/prefs.h>
47 #include <epan/emem.h>
48 #include <epan/wmem/wmem.h>
49 #include <epan/reassemble.h>
50 #include <epan/asn1.h>
51 #include <epan/uat.h>
52 #include <epan/strutil.h>
53 #include <epan/expert.h>
54 #include <epan/tap.h>
55 #include <address.h>
56 #include "packet-mtp3.h"
57 #include "packet-tcap.h"
58 #include "packet-sccp.h"
59 #include "packet-e164.h"
60 #include "packet-e212.h"
61 #include "packet-frame.h"
62
63 /* function prototypes */
64 void proto_reg_handoff_sccp(void);
65
66 static Standard_Type decode_mtp3_standard;
67
68 #define SCCP_MSG_TYPE_OFFSET 0
69 #define SCCP_MSG_TYPE_LENGTH 1
70 #define POINTER_LENGTH 1
71 #define POINTER_LENGTH_LONG 2
72
73 #define INVALID_LR 0xffffff /* a reserved value */
74
75 /* Same as below but with names typed out */
76 static const value_string sccp_message_type_values[] = {
77 { SCCP_MSG_TYPE_CR, "Connection Request" },
78 { SCCP_MSG_TYPE_CC, "Connection Confirm" },
79 { SCCP_MSG_TYPE_CREF, "Connection Refused" },
80 { SCCP_MSG_TYPE_RLSD, "Released" },
81 { SCCP_MSG_TYPE_RLC, "Release Complete" },
82 { SCCP_MSG_TYPE_DT1, "Data Form 1" },
83 { SCCP_MSG_TYPE_DT2, "Data Form 2" },
84 { SCCP_MSG_TYPE_AK, "Data Acknowledgement" },
85 { SCCP_MSG_TYPE_UDT, "Unitdata" },
86 { SCCP_MSG_TYPE_UDTS, "Unitdata Service" },
87 { SCCP_MSG_TYPE_ED, "Expedited Data" },
88 { SCCP_MSG_TYPE_EA, "Expedited Data Acknowledgement" },
89 { SCCP_MSG_TYPE_RSR, "Reset Request" },
90 { SCCP_MSG_TYPE_RSC, "Reset Confirmation" },
91 { SCCP_MSG_TYPE_ERR, "Error" },
92 { SCCP_MSG_TYPE_IT, "Inactivity Timer" },
93 { SCCP_MSG_TYPE_XUDT, "Extended Unitdata" },
94 { SCCP_MSG_TYPE_XUDTS, "Extended Unitdata Service" },
95 { SCCP_MSG_TYPE_LUDT, "Long Unitdata" },
96 { SCCP_MSG_TYPE_LUDTS, "Long Unitdata Service" },
97 { 0, NULL } };
98
99 /* Same as above but in acronym form (for the Info column) */
100 const value_string sccp_message_type_acro_values[] = {
101 { SCCP_MSG_TYPE_CR, "CR" },
102 { SCCP_MSG_TYPE_CC, "CC" },
103 { SCCP_MSG_TYPE_CREF, "CREF" },
104 { SCCP_MSG_TYPE_RLSD, "RLSD" },
105 { SCCP_MSG_TYPE_RLC, "RLC" },
106 { SCCP_MSG_TYPE_DT1, "DT1" },
107 { SCCP_MSG_TYPE_DT2, "DT2" },
108 { SCCP_MSG_TYPE_AK, "AK" },
109 { SCCP_MSG_TYPE_UDT, "UDT" },
110 { SCCP_MSG_TYPE_UDTS, "UDTS" },
111 { SCCP_MSG_TYPE_ED, "ED" },
112 { SCCP_MSG_TYPE_EA, "EA" },
113 { SCCP_MSG_TYPE_RSR, "RSR" },
114 { SCCP_MSG_TYPE_RSC, "RSC" },
115 { SCCP_MSG_TYPE_ERR, "ERR" },
116 { SCCP_MSG_TYPE_IT, "IT" },
117 { SCCP_MSG_TYPE_XUDT, "XUDT" },
118 { SCCP_MSG_TYPE_XUDTS, "XUDTS" },
119 { SCCP_MSG_TYPE_LUDT, "LUDT" },
120 { SCCP_MSG_TYPE_LUDTS, "LUDTS" },
121 { 0, NULL } };
122
123 #define PARAMETER_LENGTH_LENGTH 1
124 #define PARAMETER_LONG_DATA_LENGTH_LENGTH 2
125 #define PARAMETER_TYPE_LENGTH 1
126
127 #define PARAMETER_END_OF_OPTIONAL_PARAMETERS 0x00
128 #define PARAMETER_DESTINATION_LOCAL_REFERENCE 0x01
129 #define PARAMETER_SOURCE_LOCAL_REFERENCE 0x02
130 #define PARAMETER_CALLED_PARTY_ADDRESS 0x03
131 #define PARAMETER_CALLING_PARTY_ADDRESS 0x04
132 #define PARAMETER_CLASS 0x05
133 #define PARAMETER_SEGMENTING_REASSEMBLING 0x06
134 #define PARAMETER_RECEIVE_SEQUENCE_NUMBER 0x07
135 #define PARAMETER_SEQUENCING_SEGMENTING 0x08
136 #define PARAMETER_CREDIT 0x09
137 #define PARAMETER_RELEASE_CAUSE 0x0a
138 #define PARAMETER_RETURN_CAUSE 0x0b
139 #define PARAMETER_RESET_CAUSE 0x0c
140 #define PARAMETER_ERROR_CAUSE 0x0d
141 #define PARAMETER_REFUSAL_CAUSE 0x0e
142 #define PARAMETER_DATA 0x0f
143 #define PARAMETER_SEGMENTATION 0x10
144 #define PARAMETER_HOP_COUNTER 0x11
145 /* Importance is ITU only */
146 #define PARAMETER_IMPORTANCE 0x12
147 #define PARAMETER_LONG_DATA 0x13
148 /* ISNI is ANSI only */
149 #define PARAMETER_ISNI 0xfa
150
151 static const value_string sccp_parameter_values[] = {
152 { PARAMETER_END_OF_OPTIONAL_PARAMETERS, "End of Optional Parameters" },
153 { PARAMETER_DESTINATION_LOCAL_REFERENCE, "Destination Local Reference" },
154 { PARAMETER_SOURCE_LOCAL_REFERENCE, "Source Local Reference" },
155 { PARAMETER_CALLED_PARTY_ADDRESS, "Called Party Address" },
156 { PARAMETER_CALLING_PARTY_ADDRESS, "Calling Party Address" },
157 { PARAMETER_CLASS, "Protocol Class" },
158 { PARAMETER_SEGMENTING_REASSEMBLING, "Segmenting/Reassembling" },
159 { PARAMETER_RECEIVE_SEQUENCE_NUMBER, "Receive Sequence Number" },
160 { PARAMETER_SEQUENCING_SEGMENTING, "Sequencing/Segmenting" },
161 { PARAMETER_CREDIT, "Credit" },
162 { PARAMETER_RELEASE_CAUSE, "Release Cause" },
163 { PARAMETER_RETURN_CAUSE, "Return Cause" },
164 { PARAMETER_RESET_CAUSE, "Reset Cause" },
165 { PARAMETER_ERROR_CAUSE, "Error Cause" },
166 { PARAMETER_REFUSAL_CAUSE, "Refusal Cause" },
167 { PARAMETER_DATA, "Data" },
168 { PARAMETER_SEGMENTATION, "Segmentation" },
169 { PARAMETER_HOP_COUNTER, "Hop Counter" },
170 { PARAMETER_IMPORTANCE, "Importance (ITU)" },
171 { PARAMETER_LONG_DATA, "Long Data" },
172 { PARAMETER_ISNI, "Intermediate Signaling Network Identification (ANSI)" },
173 { 0, NULL } };
174
175
176 #define END_OF_OPTIONAL_PARAMETERS_LENGTH 1
177 #define DESTINATION_LOCAL_REFERENCE_LENGTH 3
178 #define SOURCE_LOCAL_REFERENCE_LENGTH 3
179 #define PROTOCOL_CLASS_LENGTH 1
180 #define RECEIVE_SEQUENCE_NUMBER_LENGTH 1
181 #define CREDIT_LENGTH 1
182 #define RELEASE_CAUSE_LENGTH 1
183 #define RETURN_CAUSE_LENGTH 1
184 #define RESET_CAUSE_LENGTH 1
185 #define ERROR_CAUSE_LENGTH 1
186 #define REFUSAL_CAUSE_LENGTH 1
187 #define HOP_COUNTER_LENGTH 1
188 #define IMPORTANCE_LENGTH 1
189
190
191 /* Parts of the Called and Calling Address parameters */
192 /* Address Indicator */
193 #define ADDRESS_INDICATOR_LENGTH 1
194 #define ITU_RESERVED_MASK 0x80
195 #define ANSI_NATIONAL_MASK 0x80
196 #define ROUTING_INDICATOR_MASK 0x40
197 #define GTI_MASK 0x3C
198 #define GTI_SHIFT 2
199 #define ITU_SSN_INDICATOR_MASK 0x02
200 #define ITU_PC_INDICATOR_MASK 0x01
201 #define ANSI_PC_INDICATOR_MASK 0x02
202 #define ANSI_SSN_INDICATOR_MASK 0x01
203
204 static const value_string sccp_ansi_national_indicator_values[] = {
205 { 0x0, "Address coded to International standard" },
206 { 0x1, "Address coded to National standard" },
207 { 0, NULL } };
208
209 #define ROUTE_ON_GT 0x0
210 #define ROUTE_ON_SSN 0x1
211 #define ROUTING_INDICATOR_SHIFT 6
212 static const value_string sccp_routing_indicator_values[] = {
213 { ROUTE_ON_GT, "Route on GT" },
214 { ROUTE_ON_SSN, "Route on SSN" },
215 { 0, NULL } };
216
217 #define AI_GTI_NO_GT 0x0
218 #define ITU_AI_GTI_NAI 0x1
219 #define AI_GTI_TT 0x2
220 #define ITU_AI_GTI_TT_NP_ES 0x3
221 #define ITU_AI_GTI_TT_NP_ES_NAI 0x4
222 static const value_string sccp_itu_global_title_indicator_values[] = {
223 { AI_GTI_NO_GT, "No Global Title" },
224 { ITU_AI_GTI_NAI, "Nature of Address Indicator only" },
225 { AI_GTI_TT, "Translation Type only" },
226 { ITU_AI_GTI_TT_NP_ES, "Translation Type, Numbering Plan, and Encoding Scheme included" },
227 { ITU_AI_GTI_TT_NP_ES_NAI, "Translation Type, Numbering Plan, Encoding Scheme, and Nature of Address Indicator included" },
228 { 0, NULL } };
229
230 /* #define AI_GTI_NO_GT 0x0 */
231 #define ANSI_AI_GTI_TT_NP_ES 0x1
232 /* #define AI_GTI_TT 0x2 */
233 static const value_string sccp_ansi_global_title_indicator_values[] = {
234 { AI_GTI_NO_GT, "No Global Title" },
235 { ANSI_AI_GTI_TT_NP_ES, "Translation Type, Numbering Plan, and Encoding Scheme included" },
236 { AI_GTI_TT, "Translation Type only" },
237 { 0, NULL } };
238
239 static const value_string sccp_ai_pci_values[] = {
240 { 0x1, "Point Code present" },
241 { 0x0, "Point Code not present" },
242 { 0, NULL } };
243
244 static const value_string sccp_ai_ssni_values[] = {
245 { 0x1, "SSN present" },
246 { 0x0, "SSN not present" },
247 { 0, NULL } };
248
249 #define ADDRESS_SSN_LENGTH 1
250 #define INVALID_SSN 0xff
251 /* Some values from 3GPP TS 23.003 */
252 /* Japan TTC and NTT define a lot of SSNs, some of which conflict with
253 * these. They are not added for now.
254 */
255 static const value_string sccp_ssn_values[] = {
256 { 0x00, "SSN not known/not used" },
257 { 0x01, "SCCP management" },
258 { 0x02, "Reserved for ITU-T allocation" },
259 { 0x03, "ISDN User Part" },
260 { 0x04, "OMAP (Operation, Maintenance, and Administration Part)" },
261 { 0x05, "MAP (Mobile Application Part)" },
262 { 0x06, "HLR (Home Location Register)" },
263 { 0x07, "VLR (Visitor Location Register)" },
264 { 0x08, "MSC (Mobile Switching Center)" },
265 { 0x09, "EIC/EIR (Equipment Identifier Center/Equipment Identification Register)" },
266 { 0x0a, "AUC/AC (Authentication Center)" },
267 { 0x0b, "ISDN supplementary services (ITU only)" },
268 { 0x0c, "Reserved for international use (ITU only)" },
269 { 0x0d, "Broadband ISDN edge-to-edge applications (ITU only)" },
270 { 0x0e, "TC test responder (ITU only)" },
271 /* The following national network subsystem numbers have been allocated for use within and
272 * between GSM/UMTS networks:
273 */
274 { 0x8e, "RANAP" },
275 { 0x8f, "RNSAP" },
276 { 0x91, "GMLC(MAP)" },
277 { 0x92, "CAP" },
278 { 0x93, "gsmSCF (MAP) or IM-SSF (MAP) or Presence Network Agent" },
279 { 0x94, "SIWF (MAP)" },
280 { 0x95, "SGSN (MAP)" },
281 { 0x96, "GGSN (MAP)" },
282 /* The following national network subsystem numbers have been allocated for use within GSM/UMTS networks:*/
283 { 0xf9, "PCAP" },
284 { 0xfa, "BSC (BSSAP-LE)" },
285 { 0xfb, "MSC (BSSAP-LE)" },
286 { 0xfc, "IOS or SMLC (BSSAP-LE)" },
287 { 0xfd, "BSS O&M (A interface)" },
288 { 0xfe, "BSSAP/BSAP" },
289 { 0, NULL } };
290
291
292 /* * * * * * * * * * * * * * * * *
293 * Global Title: ITU GTI == 0001 *
294 * * * * * * * * * * * * * * * * */
295 #define GT_NAI_MASK 0x7F
296 #define GT_NAI_LENGTH 1
297 #define GT_NAI_UNKNOWN 0x00
298 #define GT_NAI_SUBSCRIBER_NUMBER 0x01
299 #define GT_NAI_RESERVED_NATIONAL 0x02
300 #define GT_NAI_NATIONAL_SIG_NUM 0x03
301 #define GT_NAI_INTERNATIONAL_NUM 0x04
302 static const value_string sccp_nai_values[] = {
303 { GT_NAI_UNKNOWN, "NAI unknown" },
304 { GT_NAI_SUBSCRIBER_NUMBER, "Subscriber Number" },
305 { GT_NAI_RESERVED_NATIONAL, "Reserved for national use" },
306 { GT_NAI_NATIONAL_SIG_NUM, "National significant number" },
307 { GT_NAI_INTERNATIONAL_NUM, "International number" },
308 { 0, NULL } };
309
310
311 #define GT_OE_MASK 0x80
312 #define GT_OE_EVEN 0
313 #define GT_OE_ODD 1
314 static const value_string sccp_oe_values[] = {
315 { GT_OE_EVEN, "Even number of address signals" },
316 { GT_OE_ODD, "Odd number of address signals" },
317 { 0, NULL } };
318
319 const value_string sccp_address_signal_values[] = {
320 { 0, "0" },
321 { 1, "1" },
322 { 2, "2" },
323 { 3, "3" },
324 { 4, "4" },
325 { 5, "5" },
326 { 6, "6" },
327 { 7, "7" },
328 { 8, "8" },
329 { 9, "9" },
330 { 10, "(spare)" },
331 { 11, "11" },
332 { 12, "12" },
333 { 13, "(spare)" },
334 { 14, "(spare)" },
335 { 15, "ST" },
336 { 0, NULL } };
337
338
339 /* * * * * * * * * * * * * * * * * * * * *
340 * Global Title: ITU and ANSI GTI == 0010 *
341 * * * * * * * * * * * * * * * * * * * * */
342 #define GT_TT_LENGTH 1
343
344
345 /* * * * * * * * * * * * * * * * * * * * * * * * * *
346 * Global Title: ITU GTI == 0011, ANSI GTI == 0001 *
347 * * * * * * * * * * * * * * * * * * * * * * * * * */
348 #define GT_NP_MASK 0xf0
349 #define GT_NP_SHIFT 4
350 #define GT_NP_ES_LENGTH 1
351 #define GT_NP_UNKNOWN 0x00
352 #define GT_NP_ISDN 0x01
353 #define GT_NP_GENERIC_RESERVED 0x02
354 #define GT_NP_DATA 0x03
355 #define GT_NP_TELEX 0x04
356 #define GT_NP_MARITIME_MOBILE 0x05
357 #define GT_NP_LAND_MOBILE 0x06
358 #define GT_NP_ISDN_MOBILE 0x07
359 #define GT_NP_PRIVATE_NETWORK 0x0e
360 #define GT_NP_RESERVED 0x0f
361 static const value_string sccp_np_values[] = {
362 { GT_NP_UNKNOWN, "Unknown" },
363 { GT_NP_ISDN, "ISDN/telephony" },
364 { GT_NP_GENERIC_RESERVED, "Generic (ITU)/Reserved (ANSI)" },
365 { GT_NP_DATA, "Data" },
366 { GT_NP_TELEX, "Telex" },
367 { GT_NP_MARITIME_MOBILE, "Maritime mobile" },
368 { GT_NP_LAND_MOBILE, "Land mobile" },
369 { GT_NP_ISDN_MOBILE, "ISDN/mobile" },
370 { GT_NP_PRIVATE_NETWORK, "Private network or network-specific" },
371 { GT_NP_RESERVED, "Reserved" },
372 { 0, NULL } };
373
374 #define GT_ES_MASK 0x0f
375 #define GT_ES_UNKNOWN 0x0
376 #define GT_ES_BCD_ODD 0x1
377 #define GT_ES_BCD_EVEN 0x2
378 #define GT_ES_NATIONAL 0x3
379 #define GT_ES_RESERVED 0xf
380 static const value_string sccp_es_values[] = {
381 { GT_ES_UNKNOWN, "Unknown" },
382 { GT_ES_BCD_ODD, "BCD, odd number of digits" },
383 { GT_ES_BCD_EVEN, "BCD, even number of digits" },
384 { GT_ES_NATIONAL, "National specific" },
385 { GT_ES_RESERVED, "Reserved (ITU)/Spare (ANSI)" },
386 { 0, NULL } };
387
388 /* Address signals above */
389
390
391 /* * * * * * * * * * * * * * * * *
392 * Global Title: ITU GTI == 0100 *
393 * * * * * * * * * * * * * * * * */
394 /* NP above */
395 /* ES above */
396 /* NAI above */
397 /* Address signals above */
398
399
400 #define CLASS_CLASS_MASK 0xf
401 #define CLASS_SPARE_HANDLING_MASK 0xf0
402 #define CLASS_SPARE_HANDLING_SHIFT 4
403 static const value_string sccp_class_handling_values [] = {
404 { 0x0, "No special options" },
405 { 0x8, "Return message on error" },
406 { 0, NULL } };
407
408
409 #define SEGMENTING_REASSEMBLING_LENGTH 1
410 #define SEGMENTING_REASSEMBLING_MASK 0x01
411 #define NO_MORE_DATA 0
412 #define MORE_DATA 1
413 /* This is also used by sequencing-segmenting parameter */
414 static const value_string sccp_segmenting_reassembling_values [] = {
415 { NO_MORE_DATA, "No more data" },
416 { MORE_DATA, "More data" },
417 { 0, NULL } };
418
419
420 #define RECEIVE_SEQUENCE_NUMBER_LENGTH 1
421 #define RSN_MASK 0xfe
422
423 #define SEQUENCING_SEGMENTING_LENGTH 2
424 #define SEQUENCING_SEGMENTING_SSN_LENGTH 1
425 #define SEQUENCING_SEGMENTING_RSN_LENGTH 1
426 #define SEND_SEQUENCE_NUMBER_MASK 0xfe
427 #define RECEIVE_SEQUENCE_NUMBER_MASK 0xfe
428 #define SEQUENCING_SEGMENTING_MORE_MASK 0x01
429
430
431 #define CREDIT_LENGTH 1
432
433 #define RELEASE_CAUSE_LENGTH 1
434 const value_string sccp_release_cause_values [] = {
435 { 0x00, "End user originated" },
436 { 0x01, "End user congestion" },
437 { 0x02, "End user failure" },
438 { 0x03, "SCCP user originated" },
439 { 0x04, "Remote procedure error" },
440 { 0x05, "Inconsistent connection data" },
441 { 0x06, "Access failure" },
442 { 0x07, "Access congestion" },
443 { 0x08, "Subsystem failure" },
444 { 0x09, "Subsystem congestion" },
445 { 0x0a, "MTP failure" },
446 { 0x0b, "Network congestion" },
447 { 0x0c, "Expiration of reset timer" },
448 { 0x0d, "Expiration of receive inactivity timer" },
449 { 0x0e, "Reserved" },
450 { 0x0f, "Unqualified" },
451 { 0x10, "SCCP failure (ITU only)" },
452 { 0, NULL } };
453
454
455 #define RETURN_CAUSE_LENGTH 1
456 const value_string sccp_return_cause_values [] = {
457 { 0x00, "No translation for an address of such nature" },
458 { 0x01, "No translation for this specific address" },
459 { 0x02, "Subsystem congestion" },
460 { 0x03, "Subsystem failure" },
461 { 0x04, "Unequipped failure" },
462 { 0x05, "MTP failure" },
463 { 0x06, "Network congestion" },
464 { 0x07, "Unqualified" },
465 { 0x08, "Error in message transport" },
466 { 0x09, "Error in local processing" },
467 { 0x0a, "Destination cannot perform reassembly" },
468 { 0x0b, "SCCP failure" },
469 { 0x0c, "Hop counter violation" },
470 { 0x0d, "Segmentation not supported" },
471 { 0x0e, "Segmentation failure" },
472 { 0xf7, "Message change failure (ANSI only)" },
473 { 0xf8, "Invalid INS routing request (ANSI only)" },
474 { 0xf9, "Invalid ISNI routing request (ANSI only)"},
475 { 0xfa, "Unauthorized message (ANSI only)" },
476 { 0xfb, "Message incompatibility (ANSI only)" },
477 { 0xfc, "Cannot perform ISNI constrained routing (ANSI only)" },
478 { 0xfd, "Redundant ISNI constrained routing (ANSI only)" },
479 { 0xfe, "Unable to perform ISNI identification (ANSI only)" },
480 { 0, NULL } };
481
482
483 #define RESET_CAUSE_LENGTH 1
484 const value_string sccp_reset_cause_values [] = {
485 { 0x00, "End user originated" },
486 { 0x01, "SCCP user originated" },
487 { 0x02, "Message out of order - incorrect send sequence number" },
488 { 0x03, "Message out of order - incorrect receive sequence number" },
489 { 0x04, "Remote procedure error - message out of window" },
490 { 0x05, "Remote procedure error - incorrect send sequence number after (re)initialization" },
491 { 0x06, "Remote procedure error - general" },
492 { 0x07, "Remote end user operational" },
493 { 0x08, "Network operational" },
494 { 0x09, "Access operational" },
495 { 0x0a, "Network congestion" },
496 { 0x0b, "Reserved (ITU)/Not obtainable (ANSI)" },
497 { 0x0c, "Unqualified" },
498 { 0, NULL } };
499
500
501 #define ERROR_CAUSE_LENGTH 1
502 const value_string sccp_error_cause_values [] = {
503 { 0x00, "Local Reference Number (LRN) mismatch - unassigned destination LRN" },
504 { 0x01, "Local Reference Number (LRN) mismatch - inconsistent source LRN" },
505 { 0x02, "Point code mismatch" },
506 { 0x03, "Service class mismatch" },
507 { 0x04, "Unqualified" },
508 { 0, NULL } };
509
510
511 #define REFUSAL_CAUSE_LENGTH 1
512 const value_string sccp_refusal_cause_values [] = {
513 { 0x00, "End user originated" },
514 { 0x01, "End user congestion" },
515 { 0x02, "End user failure" },
516 { 0x03, "SCCP user originated" },
517 { 0x04, "Destination address unknown" },
518 { 0x05, "Destination inaccessible" },
519 { 0x06, "Network resource - QOS not available/non-transient" },
520 { 0x07, "Network resource - QOS not available/transient" },
521 { 0x08, "Access failure" },
522 { 0x09, "Access congestion" },
523 { 0x0a, "Subsystem failure" },
524 { 0x0b, "Subsystem congestion" },
525 { 0x0c, "Expiration of connection establishment timer" },
526 { 0x0d, "Incompatible user data" },
527 { 0x0e, "Reserved" },
528 { 0x0f, "Unqualified" },
529 { 0x10, "Hop counter violation" },
530 { 0x11, "SCCP failure (ITU only)" },
531 { 0x12, "No translation for an address of such nature" },
532 { 0x13, "Unequipped user" },
533 { 0, NULL } };
534
535
536 #define SEGMENTATION_LENGTH 4
537 #define SEGMENTATION_FIRST_SEGMENT_MASK 0x80
538 #define SEGMENTATION_CLASS_MASK 0x40
539 #define SEGMENTATION_SPARE_MASK 0x30
540 #define SEGMENTATION_REMAINING_MASK 0x0f
541 static const value_string sccp_segmentation_first_segment_values [] = {
542 { 1, "First segment" },
543 { 0, "Not first segment" },
544 { 0, NULL } };
545 static const value_string sccp_segmentation_class_values [] = {
546 { 0, "Class 0 selected" },
547 { 1, "Class 1 selected" },
548 { 0, NULL } };
549
550
551 #define HOP_COUNTER_LENGTH 1
552
553 #define IMPORTANCE_LENGTH 1
554 #define IMPORTANCE_IMPORTANCE_MASK 0x7
555
556
557 #define ANSI_ISNI_ROUTING_CONTROL_LENGTH 1
558 #define ANSI_ISNI_MI_MASK 0x01
559 #define ANSI_ISNI_IRI_MASK 0x06
560 #define ANSI_ISNI_RES_MASK 0x08
561 #define ANSI_ISNI_TI_MASK 0x10
562 #define ANSI_ISNI_TI_SHIFT 4
563 #define ANSI_ISNI_COUNTER_MASK 0xe0
564 #define ANSI_ISNI_NETSPEC_MASK 0x03
565
566 static const value_string sccp_isni_mark_for_id_values [] = {
567 { 0x0, "Do not identify networks" },
568 { 0x1, "Identify networks" },
569 { 0, NULL } };
570
571 static const value_string sccp_isni_iri_values [] = {
572 { 0x0, "Neither constrained nor suggested ISNI routing" },
573 { 0x1, "Constrained ISNI routing" },
574 { 0x2, "Reserved for suggested ISNI routing" },
575 { 0x3, "Spare" },
576 { 0, NULL } };
577
578 #define ANSI_ISNI_TYPE_0 0x0
579 #define ANSI_ISNI_TYPE_1 0x1
580 static const value_string sccp_isni_ti_values [] = {
581 { ANSI_ISNI_TYPE_0, "Type zero ISNI parameter format" },
582 { ANSI_ISNI_TYPE_1, "Type one ISNI parameter format" },
583 { 0, NULL } };
584
585
586 /* Initialize the protocol and registered fields */
587 static int proto_sccp = -1;
588 static int hf_sccp_message_type = -1;
589 static int hf_sccp_variable_pointer1 = -1;
590 static int hf_sccp_variable_pointer2 = -1;
591 static int hf_sccp_variable_pointer3 = -1;
592 static int hf_sccp_optional_pointer = -1;
593 static int hf_sccp_param_length = -1;
594 static int hf_sccp_ssn = -1;
595 static int hf_sccp_gt_digits = -1;
596
597 /* Called Party address */
598 static int hf_sccp_called_ansi_national_indicator = -1;
599 static int hf_sccp_called_itu_natl_use_bit = -1;
600 static int hf_sccp_called_routing_indicator = -1;
601 static int hf_sccp_called_itu_global_title_indicator = -1;
602 static int hf_sccp_called_ansi_global_title_indicator = -1;
603 static int hf_sccp_called_itu_ssn_indicator = -1;
604 static int hf_sccp_called_itu_point_code_indicator = -1;
605 static int hf_sccp_called_ansi_ssn_indicator = -1;
606 static int hf_sccp_called_ansi_point_code_indicator = -1;
607 static int hf_sccp_called_ssn = -1;
608 static int hf_sccp_called_pc_member = -1;
609 static int hf_sccp_called_pc_cluster = -1;
610 static int hf_sccp_called_pc_network = -1;
611 static int hf_sccp_called_ansi_pc = -1;
612 static int hf_sccp_called_chinese_pc = -1;
613 static int hf_sccp_called_itu_pc = -1;
614 static int hf_sccp_called_japan_pc = -1;
615 static int hf_sccp_called_gt_nai = -1;
616 static int hf_sccp_called_gt_oe = -1;
617 static int hf_sccp_called_gt_tt = -1;
618 static int hf_sccp_called_gt_np = -1;
619 static int hf_sccp_called_gt_es = -1;
620 static int hf_sccp_called_gt_digits = -1;
621 static int hf_sccp_called_gt_digits_length = -1;
622
623 /* Calling party address */
624 static int hf_sccp_calling_ansi_national_indicator = -1;
625 static int hf_sccp_calling_itu_natl_use_bit = -1;
626 static int hf_sccp_calling_routing_indicator = -1;
627 static int hf_sccp_calling_itu_global_title_indicator = -1;
628 static int hf_sccp_calling_ansi_global_title_indicator = -1;
629 static int hf_sccp_calling_itu_ssn_indicator = -1;
630 static int hf_sccp_calling_itu_point_code_indicator = -1;
631 static int hf_sccp_calling_ansi_ssn_indicator = -1;
632 static int hf_sccp_calling_ansi_point_code_indicator = -1;
633 static int hf_sccp_calling_ssn = -1;
634 static int hf_sccp_calling_pc_member = -1;
635 static int hf_sccp_calling_pc_cluster = -1;
636 static int hf_sccp_calling_pc_network = -1;
637 static int hf_sccp_calling_ansi_pc = -1;
638 static int hf_sccp_calling_chinese_pc = -1;
639 static int hf_sccp_calling_itu_pc = -1;
640 static int hf_sccp_calling_japan_pc = -1;
641 static int hf_sccp_calling_gt_nai = -1;
642 static int hf_sccp_calling_gt_oe = -1;
643 static int hf_sccp_calling_gt_tt = -1;
644 static int hf_sccp_calling_gt_np = -1;
645 static int hf_sccp_calling_gt_es = -1;
646 static int hf_sccp_calling_gt_digits = -1;
647 static int hf_sccp_calling_gt_digits_length = -1;
648
649 /* Other parameter values */
650 static int hf_sccp_dlr = -1;
651 static int hf_sccp_slr = -1;
652 static int hf_sccp_lr = -1;
653 static int hf_sccp_class = -1;
654 static int hf_sccp_handling = -1;
655 static int hf_sccp_more = -1;
656 static int hf_sccp_rsn = -1;
657 static int hf_sccp_sequencing_segmenting_ssn = -1;
658 static int hf_sccp_sequencing_segmenting_rsn = -1;
659 static int hf_sccp_sequencing_segmenting_more = -1;
660 static int hf_sccp_credit = -1;
661 static int hf_sccp_release_cause = -1;
662 static int hf_sccp_return_cause = -1;
663 static int hf_sccp_reset_cause = -1;
664 static int hf_sccp_error_cause = -1;
665 static int hf_sccp_refusal_cause = -1;
666 static int hf_sccp_segmentation_first = -1;
667 static int hf_sccp_segmentation_class = -1;
668 static int hf_sccp_segmentation_remaining = -1;
669 static int hf_sccp_segmentation_slr = -1;
670 static int hf_sccp_hop_counter = -1;
671 static int hf_sccp_importance = -1;
672 static int hf_sccp_ansi_isni_mi = -1;
673 static int hf_sccp_ansi_isni_iri = -1;
674 static int hf_sccp_ansi_isni_ti = -1;
675 static int hf_sccp_ansi_isni_netspec = -1;
676 static int hf_sccp_ansi_isni_counter = -1;
677 static int hf_sccp_ansi_isni_network = -1;
678 static int hf_sccp_ansi_isni_cluster = -1;
679 static int hf_sccp_xudt_msg_fragments = -1;
680 static int hf_sccp_xudt_msg_fragment = -1;
681 static int hf_sccp_xudt_msg_fragment_overlap = -1;
682 static int hf_sccp_xudt_msg_fragment_overlap_conflicts = -1;
683 static int hf_sccp_xudt_msg_fragment_multiple_tails = -1;
684 static int hf_sccp_xudt_msg_fragment_too_long_fragment = -1;
685 static int hf_sccp_xudt_msg_fragment_error = -1;
686 static int hf_sccp_xudt_msg_fragment_count = -1;
687 static int hf_sccp_xudt_msg_reassembled_in = -1;
688 static int hf_sccp_xudt_msg_reassembled_length = -1;
689 static int hf_sccp_assoc_msg = -1;
690 static int hf_sccp_assoc_id = -1;
691
692 /* Initialize the subtree pointers */
693 static gint ett_sccp = -1;
694 static gint ett_sccp_called = -1;
695 static gint ett_sccp_called_ai = -1;
696 static gint ett_sccp_called_pc = -1;
697 static gint ett_sccp_called_gt = -1;
698 static gint ett_sccp_called_gt_digits = -1;
699 static gint ett_sccp_calling = -1;
700 static gint ett_sccp_calling_ai = -1;
701 static gint ett_sccp_calling_pc = -1;
702 static gint ett_sccp_calling_gt = -1;
703 static gint ett_sccp_calling_gt_digits = -1;
704 static gint ett_sccp_sequencing_segmenting = -1;
705 static gint ett_sccp_segmentation = -1;
706 static gint ett_sccp_ansi_isni_routing_control = -1;
707 static gint ett_sccp_xudt_msg_fragment = -1;
708 static gint ett_sccp_xudt_msg_fragments = -1;
709 static gint ett_sccp_assoc = -1;
710
711 static expert_field ei_sccp_wrong_length = EI_INIT;
712 static expert_field ei_sccp_international_standard_address = EI_INIT;
713 static expert_field ei_sccp_no_ssn_present = EI_INIT;
714 static expert_field ei_sccp_ssn_zero = EI_INIT;
715 static expert_field ei_sccp_class_unexpected = EI_INIT;
716 static expert_field ei_sccp_handling_invalid = EI_INIT;
717
718
719 /* Declarations to desegment XUDT Messages */
720 static gboolean sccp_xudt_desegment = TRUE;
721 static gboolean show_key_params = FALSE;
722 static gboolean set_addresses = FALSE;
723
724 static int sccp_tap = -1;
725
726
727 static const fragment_items sccp_xudt_msg_frag_items = {
728 /* Fragment subtrees */
729 &ett_sccp_xudt_msg_fragment,
730 &ett_sccp_xudt_msg_fragments,
731 /* Fragment fields */
732 &hf_sccp_xudt_msg_fragments,
733 &hf_sccp_xudt_msg_fragment,
734 &hf_sccp_xudt_msg_fragment_overlap,
735 &hf_sccp_xudt_msg_fragment_overlap_conflicts,
736 &hf_sccp_xudt_msg_fragment_multiple_tails,
737 &hf_sccp_xudt_msg_fragment_too_long_fragment,
738 &hf_sccp_xudt_msg_fragment_error,
739 &hf_sccp_xudt_msg_fragment_count,
740 /* Reassembled in field */
741 &hf_sccp_xudt_msg_reassembled_in,
742 /* Reassembled length field */
743 &hf_sccp_xudt_msg_reassembled_length,
744 /* Reassembled data field */
745 NULL,
746 /* Tag */
747 "SCCP XUDT Message fragments"
748 };
749
750 static reassembly_table sccp_xudt_msg_reassembly_table;
751
752
753 #define SCCP_USER_DATA 0
754 #define SCCP_USER_TCAP 1
755 #define SCCP_USER_RANAP 2
756 #define SCCP_USER_BSSAP 3
757 #define SCCP_USER_GSMMAP 4
758 #define SCCP_USER_CAMEL 5
759 #define SCCP_USER_INAP 6
760
761 typedef struct _sccp_user_t {
762 guint ni;
763 range_t *called_pc;
764 range_t *called_ssn;
765 guint user;
766 gboolean uses_tcap;
767 dissector_handle_t *handlep;
768 } sccp_user_t;
769
770 static sccp_user_t *sccp_users;
771 static guint num_sccp_users;
772
773 static dissector_handle_t data_handle;
774 static dissector_handle_t tcap_handle;
775 static dissector_handle_t ranap_handle;
776 static dissector_handle_t bssap_handle;
777 static dissector_handle_t gsmmap_handle;
778 static dissector_handle_t camel_handle;
779 static dissector_handle_t inap_handle;
780 static dissector_handle_t default_handle;
781
782 static const char *default_payload = NULL;
783
784 static const value_string sccp_users_vals[] = {
785 { SCCP_USER_DATA, "Data"},
786 { SCCP_USER_TCAP, "TCAP"},
787 { SCCP_USER_RANAP, "RANAP"},
788 { SCCP_USER_BSSAP, "BSSAP"},
789 { SCCP_USER_GSMMAP, "GSM MAP"},
790 { SCCP_USER_CAMEL, "CAMEL"},
791 { SCCP_USER_INAP, "INAP"},
792 { 0, NULL }
793 };
794
795 /*
796 * Here are the global variables associated with
797 * the various user definable characteristics of the dissection
798 */
799 static guint32 sccp_source_pc_global = 0;
800 static gboolean sccp_show_length = FALSE;
801
802 static heur_dissector_list_t heur_subdissector_list;
803
804 /* Keep track of SSN value of current message so if/when we get to the data
805 * parameter, we can call appropriate sub-dissector. TODO: can this info
806 * be stored elsewhere?
807 */
808
809 static guint8 message_type = 0;
810 static guint dlr = 0;
811 static guint slr = 0;
812
813 static dissector_table_t sccp_ssn_dissector_table;
814
815 static wmem_tree_t *assocs = NULL;
816 static sccp_assoc_info_t *assoc;
817 static sccp_msg_info_t *sccp_msg;
818 static sccp_assoc_info_t no_assoc = {0,0,0,0,0,FALSE,FALSE,NULL,NULL,SCCP_PLOAD_NONE,NULL,NULL,NULL,0};
819 static gboolean trace_sccp = FALSE;
820 static guint32 next_assoc_id = 0;
821
822 static const value_string assoc_protos[] = {
823 { SCCP_PLOAD_BSSAP, "BSSAP" },
824 { SCCP_PLOAD_RANAP, "RANAP" },
825 { 0, NULL }
826 };
827
828 #define is_connectionless(m) \
829 ( m == SCCP_MSG_TYPE_UDT || m == SCCP_MSG_TYPE_UDTS \
830 || m == SCCP_MSG_TYPE_XUDT|| m == SCCP_MSG_TYPE_XUDTS \
831 || m == SCCP_MSG_TYPE_LUDT|| m == SCCP_MSG_TYPE_LUDTS)
832
833 #define RETURN_FALSE \
834 do { \
835 /*g_warning("Frame %d not protocol %d @ line %d", frame_num, my_mtp3_standard, __LINE__);*/ \
836 return FALSE; \
837 } while (0)
838
839 static gboolean
840 sccp_called_calling_looks_valid(guint32 frame_num _U_, tvbuff_t *tvb, guint8 my_mtp3_standard, gboolean is_co)
841 {
842 guint8 ai, ri, gti, ssni, pci;
843 guint8 len_needed = 1; /* need at least the Address Indicator */
844 guint len = tvb_length(tvb);
845
846 ai = tvb_get_guint8(tvb, 0);
847 if ((my_mtp3_standard == ANSI_STANDARD) && ((ai & ANSI_NATIONAL_MASK) == 0))
848 RETURN_FALSE;
849
850 gti = (ai & GTI_MASK) >> GTI_SHIFT;
851 if (my_mtp3_standard == ANSI_STANDARD) {
852 if (gti > 2)
853 RETURN_FALSE;
854 } else {
855 if (gti > 4)
856 RETURN_FALSE;
857 }
858
859 ri = (ai & ROUTING_INDICATOR_MASK) >> ROUTING_INDICATOR_SHIFT;
860 if (my_mtp3_standard == ANSI_STANDARD) {
861 pci = ai & ANSI_PC_INDICATOR_MASK;
862 ssni = ai & ANSI_SSN_INDICATOR_MASK;
863 } else {
864 ssni = ai & ITU_SSN_INDICATOR_MASK;
865 pci = ai & ITU_PC_INDICATOR_MASK;
866 }
867
868 /* Route on SSN with no SSN? */
869 if ((ri == ROUTE_ON_SSN) && (ssni == 0))
870 RETURN_FALSE;
871
872 /* Route on GT with no GT? */
873 if ((ri == ROUTE_ON_GT) && (gti == AI_GTI_NO_GT))
874 RETURN_FALSE;
875
876 /* GT routed and connection-oriented (Class-2)?
877 * Yes, that's theoretically possible, but it's not used.
878 */
879 if ((ri == ROUTE_ON_GT) && is_co)
880 RETURN_FALSE;
881
882 if (ssni)
883 len_needed += ADDRESS_SSN_LENGTH;
884 if (pci) {
885 if (my_mtp3_standard == ANSI_STANDARD ||
886 my_mtp3_standard == CHINESE_ITU_STANDARD)
887 len_needed += ANSI_PC_LENGTH;
888 else
889 len_needed += ITU_PC_LENGTH;
890 }
891 if (gti)
892 len_needed += 2;
893
894 if (len_needed > len)
895 RETURN_FALSE;
896
897 return TRUE;
898 }
899
900 gboolean
901 looks_like_valid_sccp(guint32 frame_num _U_, tvbuff_t *tvb, guint8 my_mtp3_standard)
902 {
903 guint offset;
904 guint8 msgtype, msg_class, cause;
905 guint called_ptr = 0;
906 guint calling_ptr = 0;
907 guint data_ptr = 0;
908 guint opt_ptr = 0;
909 guint8 pointer_length = POINTER_LENGTH;
910 guint len = tvb_length(tvb);
911
912 /* Ensure we can do some basic checks without throwing an exception.
913 * Accesses beyond this length need to check the length first because
914 * we don't want to throw an exception in here...
915 */
916 if (len < 5)
917 RETURN_FALSE;
918
919 msgtype = tvb_get_guint8(tvb, SCCP_MSG_TYPE_OFFSET);
920 if (!try_val_to_str(msgtype, sccp_message_type_acro_values)) {
921 RETURN_FALSE;
922 }
923 offset = SCCP_MSG_TYPE_LENGTH;
924
925 switch (msgtype) {
926 case SCCP_MSG_TYPE_UDT:
927 case SCCP_MSG_TYPE_XUDT:
928 case SCCP_MSG_TYPE_LUDT:
929 case SCCP_MSG_TYPE_UDTS:
930 case SCCP_MSG_TYPE_XUDTS:
931 case SCCP_MSG_TYPE_LUDTS:
932 {
933 if (msgtype == SCCP_MSG_TYPE_XUDT || msgtype == SCCP_MSG_TYPE_XUDTS) {
934 if (SCCP_MSG_TYPE_LENGTH +
935 PROTOCOL_CLASS_LENGTH + /* or Cause for XUDTS */
936 HOP_COUNTER_LENGTH +
937 POINTER_LENGTH +
938 POINTER_LENGTH +
939 POINTER_LENGTH +
940 POINTER_LENGTH > len)
941 RETURN_FALSE;
942 }
943
944 if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS) {
945 if (SCCP_MSG_TYPE_LENGTH +
946 PROTOCOL_CLASS_LENGTH + /* or Cause for LUDTS */
947 HOP_COUNTER_LENGTH +
948 POINTER_LENGTH_LONG +
949 POINTER_LENGTH_LONG +
950 POINTER_LENGTH_LONG +
951 POINTER_LENGTH_LONG > len)
952 RETURN_FALSE;
953
954 pointer_length = POINTER_LENGTH_LONG;
955 }
956
957 if (msgtype == SCCP_MSG_TYPE_UDT || msgtype == SCCP_MSG_TYPE_XUDT ||
958 msgtype == SCCP_MSG_TYPE_LUDT) {
959
960 msg_class = tvb_get_guint8(tvb, offset) & CLASS_CLASS_MASK;
961 if (msg_class > 1)
962 RETURN_FALSE;
963 offset += PROTOCOL_CLASS_LENGTH;
964 }
965
966 if (msgtype == SCCP_MSG_TYPE_XUDT || msgtype == SCCP_MSG_TYPE_LUDT)
967 offset += HOP_COUNTER_LENGTH;
968
969 if (msgtype == SCCP_MSG_TYPE_UDTS ||
970 msgtype == SCCP_MSG_TYPE_XUDTS ||
971 msgtype == SCCP_MSG_TYPE_LUDTS) {
972
973 cause = tvb_get_guint8(tvb, offset);
974 if (!try_val_to_str(cause, sccp_return_cause_values))
975 RETURN_FALSE;
976 offset += RETURN_CAUSE_LENGTH;
977 }
978
979 if (msgtype == SCCP_MSG_TYPE_XUDTS || msgtype == SCCP_MSG_TYPE_LUDTS)
980 offset += HOP_COUNTER_LENGTH;
981
982 if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS)
983 called_ptr = tvb_get_letohs(tvb, offset);
984 else
985 called_ptr = tvb_get_guint8(tvb, offset);
986 if (called_ptr == 0) /* Mandatory variable parameters must be present */
987 RETURN_FALSE;
988 called_ptr += offset;
989 offset += pointer_length;
990
991 if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS)
992 calling_ptr = tvb_get_letohs(tvb, offset);
993 else
994 calling_ptr = tvb_get_guint8(tvb, offset);
995 if (calling_ptr == 0) /* Mandatory variable parameters must be present */
996 RETURN_FALSE;
997 calling_ptr += offset;
998 offset += pointer_length;
999
1000 if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS)
1001 data_ptr = tvb_get_letohs(tvb, offset);
1002 else
1003 data_ptr = tvb_get_guint8(tvb, offset);
1004 if (data_ptr == 0) /* Mandatory variable parameters must be present */
1005 RETURN_FALSE;
1006 data_ptr += offset;
1007 offset += pointer_length;
1008
1009 if (msgtype == SCCP_MSG_TYPE_XUDT || msgtype == SCCP_MSG_TYPE_XUDTS) {
1010 opt_ptr = tvb_get_guint8(tvb, offset);
1011 offset += POINTER_LENGTH;
1012 } else if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS) {
1013 opt_ptr = tvb_get_letohs(tvb, offset);
1014 offset += POINTER_LENGTH_LONG;
1015 }
1016
1017 if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS) {
1018 /* Long pointers count from the 2nd (MSB) octet of the pointer */
1019 called_ptr += 1;
1020 calling_ptr += 1;
1021 data_ptr += 1;
1022 if (opt_ptr)
1023 opt_ptr += 1;
1024 }
1025
1026 /* Check that the variable pointers are within bounds */
1027 if (called_ptr > len || calling_ptr > len || data_ptr > len)
1028 RETURN_FALSE;
1029
1030 /* Check that the lengths of the variable parameters are within bounds */
1031 if (tvb_get_guint8(tvb, called_ptr)+called_ptr > len ||
1032 tvb_get_guint8(tvb, calling_ptr)+calling_ptr > len)
1033 RETURN_FALSE;
1034 if (msgtype == SCCP_MSG_TYPE_LUDT || msgtype == SCCP_MSG_TYPE_LUDTS) {
1035 if (tvb_get_letohs(tvb, data_ptr)+data_ptr > len)
1036 RETURN_FALSE;
1037 } else {
1038 if (tvb_get_guint8(tvb, data_ptr)+data_ptr > len)
1039 RETURN_FALSE;
1040 }
1041 }
1042 break;
1043 case SCCP_MSG_TYPE_CR:
1044 {
1045 if (len < SCCP_MSG_TYPE_LENGTH
1046 + DESTINATION_LOCAL_REFERENCE_LENGTH
1047 + PROTOCOL_CLASS_LENGTH
1048 + POINTER_LENGTH
1049 + POINTER_LENGTH)
1050 RETURN_FALSE;
1051
1052 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1053
1054 /* Class is only the lower 4 bits, but the upper 4 bits are spare
1055 * in Class-2. Don't mask them off so the below comparison also
1056 * fails if any of those spare bits are set.
1057 */
1058 msg_class = tvb_get_guint8(tvb, offset);
1059 if (msg_class != 2)
1060 RETURN_FALSE;
1061
1062 offset += PROTOCOL_CLASS_LENGTH;
1063 data_ptr = tvb_get_guint8(tvb, offset);
1064 if (data_ptr == 0)
1065 RETURN_FALSE;
1066
1067 offset += POINTER_LENGTH;
1068 opt_ptr = tvb_get_guint8(tvb, offset);
1069 if (opt_ptr == 0)
1070 RETURN_FALSE;
1071
1072 offset += POINTER_LENGTH;
1073 }
1074 break;
1075 case SCCP_MSG_TYPE_CC:
1076 {
1077 if (len < SCCP_MSG_TYPE_LENGTH
1078 + DESTINATION_LOCAL_REFERENCE_LENGTH
1079 + SOURCE_LOCAL_REFERENCE_LENGTH
1080 + PROTOCOL_CLASS_LENGTH
1081 + POINTER_LENGTH)
1082 RETURN_FALSE;
1083
1084 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1085 offset += SOURCE_LOCAL_REFERENCE_LENGTH;
1086
1087 /* Class is only the lower 4 bits, but the upper 4 bits are spare
1088 * in Class-2. Don't mask them off so the below comparison also
1089 * fails if any of those spare bits are set.
1090 */
1091 msg_class = tvb_get_guint8(tvb, offset);
1092 if (msg_class != 2)
1093 RETURN_FALSE;
1094 offset += PROTOCOL_CLASS_LENGTH;
1095
1096 opt_ptr = tvb_get_guint8(tvb, offset);
1097 offset += POINTER_LENGTH;
1098
1099 /* If the pointer isn't 0 (no optional parameters) or 1 (optional
1100 * parameter starts immediately after the pointer) then what would
1101 * be between the pointer and the parameter?
1102 */
1103 if (opt_ptr > 1)
1104 RETURN_FALSE;
1105
1106 /* If there are no optional parameters, are we at the end of the
1107 * message?
1108 */
1109 if ((opt_ptr == 0) && (offset != len))
1110 RETURN_FALSE;
1111 }
1112 break;
1113 case SCCP_MSG_TYPE_CREF:
1114 {
1115 if (len < SCCP_MSG_TYPE_LENGTH
1116 + DESTINATION_LOCAL_REFERENCE_LENGTH
1117 + REFUSAL_CAUSE_LENGTH
1118 + POINTER_LENGTH)
1119 RETURN_FALSE;
1120
1121 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1122
1123 cause = tvb_get_guint8(tvb, offset);
1124 if (!try_val_to_str(cause, sccp_refusal_cause_values))
1125 RETURN_FALSE;
1126 offset += REFUSAL_CAUSE_LENGTH;
1127
1128 opt_ptr = tvb_get_guint8(tvb, offset);
1129 offset += POINTER_LENGTH;
1130
1131 /* If the pointer isn't 0 (no optional parameters) or 1 (optional
1132 * parameter starts immediately after the pointer) then what would
1133 * be between the pointer and the parameter?
1134 */
1135 if (opt_ptr > 1)
1136 RETURN_FALSE;
1137
1138 /* If there are no optional parameters, are we at the end of the
1139 * message?
1140 */
1141 if ((opt_ptr == 0) && (offset != len))
1142 RETURN_FALSE;
1143 }
1144 break;
1145 case SCCP_MSG_TYPE_RLSD:
1146 {
1147 if (len < SCCP_MSG_TYPE_LENGTH
1148 + DESTINATION_LOCAL_REFERENCE_LENGTH
1149 + SOURCE_LOCAL_REFERENCE_LENGTH
1150 + RELEASE_CAUSE_LENGTH
1151 + POINTER_LENGTH)
1152 RETURN_FALSE;
1153
1154 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1155 offset += SOURCE_LOCAL_REFERENCE_LENGTH;
1156
1157 cause = tvb_get_guint8(tvb, offset);
1158 if (!try_val_to_str(cause, sccp_release_cause_values))
1159 RETURN_FALSE;
1160 offset += RELEASE_CAUSE_LENGTH;
1161
1162 opt_ptr = tvb_get_guint8(tvb, offset);
1163 offset += POINTER_LENGTH;
1164
1165 /* If the pointer isn't 0 (no optional parameters) or 1 (optional
1166 * parameter starts immediately after the pointer) then what would
1167 * be between the pointer and the parameter?
1168 */
1169 if (opt_ptr > 1)
1170 RETURN_FALSE;
1171
1172 /* If there are no optional parameters, are we at the end of the
1173 * message?
1174 */
1175 if ((opt_ptr == 0) && (offset != len))
1176 RETURN_FALSE;
1177 }
1178 break;
1179 case SCCP_MSG_TYPE_RLC:
1180 {
1181 if (len != SCCP_MSG_TYPE_LENGTH
1182 + DESTINATION_LOCAL_REFERENCE_LENGTH
1183 + SOURCE_LOCAL_REFERENCE_LENGTH)
1184 RETURN_FALSE;
1185 }
1186 break;
1187 case SCCP_MSG_TYPE_ERR:
1188 {
1189 if (len != SCCP_MSG_TYPE_LENGTH
1190 + DESTINATION_LOCAL_REFERENCE_LENGTH
1191 + ERROR_CAUSE_LENGTH)
1192 RETURN_FALSE;
1193
1194 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1195
1196 cause = tvb_get_guint8(tvb, offset);
1197 if (!try_val_to_str(cause, sccp_error_cause_values))
1198 RETURN_FALSE;
1199 }
1200 break;
1201 case SCCP_MSG_TYPE_DT1:
1202 {
1203 if (len < SCCP_MSG_TYPE_LENGTH
1204 + DESTINATION_LOCAL_REFERENCE_LENGTH
1205 + SEGMENTING_REASSEMBLING_LENGTH
1206 + POINTER_LENGTH
1207 + PARAMETER_LENGTH_LENGTH
1208 + 1) /* At least 1 byte of payload */
1209 RETURN_FALSE;
1210 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1211
1212 /* Are any of the spare bits in set? */
1213 if (tvb_get_guint8(tvb, offset) & ~SEGMENTING_REASSEMBLING_MASK)
1214 RETURN_FALSE;
1215 offset += SEGMENTING_REASSEMBLING_LENGTH;
1216
1217 data_ptr = tvb_get_guint8(tvb, offset) + offset;
1218 /* Verify the data pointer is within bounds */
1219 if (data_ptr > len)
1220 RETURN_FALSE;
1221 offset += POINTER_LENGTH;
1222
1223 /* Verify the data length uses the rest of the message */
1224 if (tvb_get_guint8(tvb, data_ptr) + offset + 1U != len)
1225 RETURN_FALSE;
1226 }
1227 break;
1228 case SCCP_MSG_TYPE_IT:
1229 {
1230 if (len < SCCP_MSG_TYPE_LENGTH
1231 + DESTINATION_LOCAL_REFERENCE_LENGTH
1232 + SOURCE_LOCAL_REFERENCE_LENGTH
1233 + PROTOCOL_CLASS_LENGTH
1234 + SEQUENCING_SEGMENTING_LENGTH
1235 + CREDIT_LENGTH)
1236 RETURN_FALSE;
1237
1238 offset += DESTINATION_LOCAL_REFERENCE_LENGTH;
1239 offset += SOURCE_LOCAL_REFERENCE_LENGTH;
1240
1241 /* Class is only the lower 4 bits, but the upper 4 bits are spare
1242 * in Class-2. Don't mask them off so the below comparison also
1243 * fails if any of those spare bits are set.
1244 */
1245 msg_class = tvb_get_guint8(tvb, offset);
1246 if (msg_class != 2)
1247 RETURN_FALSE;
1248 offset += PROTOCOL_CLASS_LENGTH;
1249 }
1250 break;
1251 case SCCP_MSG_TYPE_AK:
1252 case SCCP_MSG_TYPE_DT2:
1253 case SCCP_MSG_TYPE_EA:
1254 case SCCP_MSG_TYPE_ED:
1255 case SCCP_MSG_TYPE_RSC:
1256 case SCCP_MSG_TYPE_RSR:
1257 /* Class-3 is never actually used in the real world */
1258 RETURN_FALSE;
1259 break;
1260
1261 default:
1262 DISSECTOR_ASSERT_NOT_REACHED();
1263 }
1264
1265 if (called_ptr) {
1266 guint8 param_len = tvb_get_guint8(tvb, called_ptr);
1267 tvbuff_t *param_tvb;
1268
1269 if (param_len == 0)
1270 RETURN_FALSE;
1271 param_tvb = tvb_new_subset(tvb, called_ptr+1, param_len, param_len);
1272
1273 if (!sccp_called_calling_looks_valid(frame_num, param_tvb, my_mtp3_standard, !is_connectionless(msgtype)))
1274 RETURN_FALSE;
1275 }
1276
1277 if (calling_ptr) {
1278 guint8 param_len = tvb_get_guint8(tvb, calling_ptr);
1279 tvbuff_t *param_tvb;
1280
1281 if (param_len == 0)
1282 RETURN_FALSE;
1283 param_tvb = tvb_new_subset(tvb, calling_ptr+1, param_len, param_len);
1284
1285 if (!sccp_called_calling_looks_valid(frame_num, param_tvb, my_mtp3_standard, !is_connectionless(msgtype)))
1286 RETURN_FALSE;
1287 }
1288
1289 if (opt_ptr) {
1290 guint8 opt_param;
1291
1292 opt_ptr += offset-pointer_length; /* (offset was already incremented) */
1293
1294 /* Check that the optional pointer is within bounds */
1295 if (opt_ptr > len)
1296 RETURN_FALSE;
1297
1298 opt_param = tvb_get_guint8(tvb, opt_ptr);
1299 /* Check if the (1st) optional parameter tag is valid */
1300 if (!try_val_to_str(opt_param, sccp_parameter_values))
1301 RETURN_FALSE;
1302
1303 /* Check that the (1st) parameter length is within bounds */
1304 if ((opt_param != PARAMETER_END_OF_OPTIONAL_PARAMETERS) &&
1305 ((opt_ptr+1U) <= len) &&
1306 ((tvb_get_guint8(tvb, opt_ptr+1U)+offset) > len))
1307 RETURN_FALSE;
1308
1309 /* If we're at the end of the parameters, are we also at the end of the
1310 * message?
1311 */
1312 if ((opt_param == PARAMETER_END_OF_OPTIONAL_PARAMETERS) && ((opt_ptr+1U) != len))
1313 RETURN_FALSE;
1314 }
1315
1316 return TRUE;
1317 }
1318
1319 static sccp_assoc_info_t *
1320 new_assoc(guint32 calling, guint32 called)
1321 {
1322 sccp_assoc_info_t *a = wmem_new0(wmem_file_scope(), sccp_assoc_info_t);
1323
1324 a->id = next_assoc_id++;
1325 a->calling_dpc = calling;
1326 a->called_dpc = called;
1327 a->calling_ssn = INVALID_SSN;
1328 a->called_ssn = INVALID_SSN;
1329 a->msgs = NULL;
1330 a->curr_msg = NULL;
1331 a->payload = SCCP_PLOAD_NONE;
1332 a->calling_party = NULL;
1333 a->called_party = NULL;
1334 a->extra_info = NULL;
1335
1336 return a;
1337 }
1338
1339 void
1340 reset_sccp_assoc(void)
1341 {
1342 assoc = NULL;
1343 }
1344
1345 sccp_assoc_info_t *
1346 get_sccp_assoc(packet_info *pinfo, guint offset, guint32 src_lr, guint32 dst_lr, guint msg_type)
1347 {
1348 guint32 opck, dpck;
1349 address *opc = &(pinfo->src);
1350 address *dpc = &(pinfo->dst);
1351 guint framenum = PINFO_FD_NUM(pinfo);
1352
1353 if (assoc)
1354 return assoc;
1355
1356 opck = opc->type == AT_SS7PC ? mtp3_pc_hash((const mtp3_addr_pc_t *)opc->data) : g_str_hash(ep_address_to_str(opc));
1357 dpck = dpc->type == AT_SS7PC ? mtp3_pc_hash((const mtp3_addr_pc_t *)dpc->data) : g_str_hash(ep_address_to_str(dpc));
1358
1359
1360 switch (msg_type) {
1361 case SCCP_MSG_TYPE_CR:
1362 {
1363 /* CR contains the opc,dpc,dlr key of backward messages swapped as dpc,opc,slr */
1364 wmem_tree_key_t bw_key[] = {
1365 {1, &dpck},
1366 {1, &opck},
1367 {1, &src_lr},
1368 {0, NULL}
1369 };
1370
1371 if (! ( assoc = (sccp_assoc_info_t *)wmem_tree_lookup32_array(assocs, bw_key) ) && ! PINFO_FD_VISITED(pinfo) ) {
1372 assoc = new_assoc(opck, dpck);
1373 wmem_tree_insert32_array(assocs, bw_key, assoc);
1374 assoc->has_bw_key = TRUE;
1375 }
1376
1377 pinfo->p2p_dir = P2P_DIR_SENT;
1378
1379 break;
1380 }
1381 case SCCP_MSG_TYPE_CC:
1382 {
1383 wmem_tree_key_t fw_key[] = {
1384 {1, &dpck}, {1, &opck}, {1, &src_lr}, {0, NULL}
1385 };
1386 wmem_tree_key_t bw_key[] = {
1387 {1, &opck}, {1, &dpck}, {1, &dst_lr}, {0, NULL}
1388 };
1389
1390 if ( ( assoc = (sccp_assoc_info_t *)wmem_tree_lookup32_array(assocs, bw_key) ) ) {
1391 goto got_assoc;
1392 }
1393
1394 if ( (assoc = (sccp_assoc_info_t *)wmem_tree_lookup32_array(assocs, fw_key) ) ) {
1395 goto got_assoc;
1396 }
1397
1398 assoc = new_assoc(dpck, opck);
1399
1400 got_assoc:
1401
1402 pinfo->p2p_dir = P2P_DIR_RECV;
1403
1404 if ( ! PINFO_FD_VISITED(pinfo) && ! assoc->has_bw_key ) {
1405 wmem_tree_insert32_array(assocs, bw_key, assoc);
1406 assoc->has_bw_key = TRUE;
1407 }
1408
1409 if ( ! PINFO_FD_VISITED(pinfo) && ! assoc->has_fw_key ) {
1410 wmem_tree_insert32_array(assocs, fw_key, assoc);
1411 assoc->has_fw_key = TRUE;
1412 }
1413
1414 break;
1415 }
1416 case SCCP_MSG_TYPE_RLC:
1417 {
1418 wmem_tree_key_t bw_key[] = {
1419 {1, &dpck}, {1, &opck}, {1, &src_lr}, {0, NULL}
1420 };
1421 wmem_tree_key_t fw_key[] = {
1422 {1, &opck}, {1, &dpck}, {1, &dst_lr}, {0, NULL}
1423 };
1424 if ( ( assoc = (sccp_assoc_info_t *)wmem_tree_lookup32_array(assocs, bw_key) ) ) {
1425 goto got_assoc_rlc;
1426 }
1427
1428 if ( (assoc = (sccp_assoc_info_t *)wmem_tree_lookup32_array(assocs, fw_key) ) ) {
1429 goto got_assoc_rlc;
1430 }
1431
1432 assoc = new_assoc(dpck, opck);
1433
1434 got_assoc_rlc:
1435
1436 pinfo->p2p_dir = P2P_DIR_SENT;
1437
1438 if ( ! PINFO_FD_VISITED(pinfo) && ! assoc->has_bw_key ) {
1439 wmem_tree_insert32_array(assocs, bw_key, assoc);
1440 assoc->has_bw_key = TRUE;
1441 }
1442
1443 if ( ! PINFO_FD_VISITED(pinfo) && ! assoc->has_fw_key ) {
1444 wmem_tree_insert32_array(assocs, fw_key, assoc);
1445 assoc->has_fw_key = TRUE;
1446 }
1447 break;
1448 }
1449 default:
1450 {
1451 wmem_tree_key_t key[] = {
1452 {1, &opck}, {1, &dpck}, {1, &dst_lr}, {0, NULL}
1453 };
1454
1455 assoc = (sccp_assoc_info_t *)wmem_tree_lookup32_array(assocs, key);
1456
1457 if (assoc) {
1458 if (assoc->calling_dpc == dpck) {
1459 pinfo->p2p_dir = P2P_DIR_RECV;
1460 } else {
1461 pinfo->p2p_dir = P2P_DIR_SENT;
1462 }
1463 }
1464
1465 break;
1466 }
1467 }
1468
1469 if (assoc && trace_sccp) {
1470 if ( ! PINFO_FD_VISITED(pinfo)) {
1471 sccp_msg_info_t *msg = wmem_new0(wmem_file_scope(), sccp_msg_info_t);
1472 msg->framenum = framenum;
1473 msg->offset = offset;
1474 msg->data.co.next = NULL;
1475 msg->data.co.assoc = assoc;
1476 msg->data.co.label = NULL;
1477 msg->data.co.comment = NULL;
1478 msg->type = msg_type;
1479
1480 if (assoc->msgs) {
1481 sccp_msg_info_t *m;
1482 for (m = assoc->msgs; m->data.co.next; m = m->data.co.next) ;
1483 m->data.co.next = msg;
1484 } else {
1485 assoc->msgs = msg;
1486 }
1487
1488 assoc->curr_msg = msg;
1489
1490 } else {
1491
1492 sccp_msg_info_t *m;
1493
1494 for (m = assoc->msgs; m; m = m->data.co.next) {
1495 if ((m->framenum == framenum) && (m->offset == offset)) {
1496 assoc->curr_msg = m;
1497 break;
1498 }
1499 }
1500 }
1501 }
1502
1503 return assoc ? assoc : &no_assoc;
1504 }
1505
1506
1507 static void
1508 dissect_sccp_unknown_message(tvbuff_t *message_tvb, proto_tree *sccp_tree)
1509 {
1510 guint32 message_length;
1511
1512 message_length = tvb_length(message_tvb);
1513
1514 proto_tree_add_text(sccp_tree, message_tvb, 0, message_length,
1515 "Unknown message (%u byte%s)",
1516 message_length, plurality(message_length, "", "s"));
1517 }
1518
1519 static void
1520 dissect_sccp_unknown_param(tvbuff_t *tvb, proto_tree *tree, guint8 type, guint length)
1521 {
1522 proto_tree_add_text(tree, tvb, 0, length, "Unknown parameter 0x%x (%u byte%s)",
1523 type, length, plurality(length, "", "s"));
1524 }
1525
1526 static void
1527 dissect_sccp_dlr_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
1528 {
1529 proto_item *lr_item;
1530
1531 if (length != 3) {
1532 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
1533 "Wrong length indicated. Expected 3, got %u", length);
1534 return;
1535 }
1536
1537 dlr = tvb_get_letoh24(tvb, 0);
1538 proto_tree_add_uint(tree, hf_sccp_dlr, tvb, 0, length, dlr);
1539 lr_item = proto_tree_add_uint(tree, hf_sccp_lr, tvb, 0, length, dlr);
1540 PROTO_ITEM_SET_HIDDEN(lr_item);
1541
1542 if (show_key_params)
1543 col_append_fstr(pinfo->cinfo, COL_INFO, "DLR=%d ", dlr);
1544 }
1545
1546 static void
1547 dissect_sccp_slr_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
1548 {
1549 proto_item *lr_item;
1550
1551 if (length != 3) {
1552 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
1553 "Wrong length indicated. Expected 3, got %u", length);
1554 return;
1555 }
1556
1557 slr = tvb_get_letoh24(tvb, 0);
1558 proto_tree_add_uint(tree, hf_sccp_slr, tvb, 0, length, slr);
1559 lr_item = proto_tree_add_uint(tree, hf_sccp_lr, tvb, 0, length, slr);
1560 PROTO_ITEM_SET_HIDDEN(lr_item);
1561
1562 if (show_key_params)
1563 col_append_fstr(pinfo->cinfo, COL_INFO, "SLR=%d ", slr);
1564 }
1565
1566 static proto_tree *
1567 dissect_sccp_gt_address_information(tvbuff_t *tvb, packet_info *pinfo,
1568 proto_tree *tree, guint length,
1569 gboolean even_length, gboolean called,
1570 gboolean route_on_gt)
1571 {
1572 guint offset = 0;
1573 guint8 odd_signal, even_signal;
1574 proto_item *digits_item;
1575 proto_tree *digits_tree;
1576 char *gt_digits;
1577
1578 gt_digits = (char *)wmem_alloc0(wmem_packet_scope(), GT_MAX_SIGNALS+1);
1579
1580 while (offset < length) {
1581 odd_signal = tvb_get_guint8(tvb, offset) & GT_ODD_SIGNAL_MASK;
1582 even_signal = tvb_get_guint8(tvb, offset) & GT_EVEN_SIGNAL_MASK;
1583 even_signal >>= GT_EVEN_SIGNAL_SHIFT;
1584
1585 g_strlcat(gt_digits, val_to_str(odd_signal, sccp_address_signal_values,
1586 "Unknown: %d"), GT_MAX_SIGNALS+1);
1587
1588 /* If the last signal is NOT filler */
1589 if (offset != (length - 1) || even_length == TRUE)
1590 g_strlcat(gt_digits, val_to_str(even_signal, sccp_address_signal_values,
1591 "Unknown: %d"), GT_MAX_SIGNALS+1);
1592
1593 offset += GT_SIGNAL_LENGTH;
1594 }
1595
1596 if (is_connectionless(message_type) && sccp_msg) {
1597 guint8 **gt_ptr = called ? &(sccp_msg->data.ud.called_gt) : &(sccp_msg->data.ud.calling_gt);
1598
1599 *gt_ptr = (guint8 *)wmem_strdup(wmem_packet_scope(), gt_digits);
1600 }
1601
1602 digits_item = proto_tree_add_string(tree, called ? hf_sccp_called_gt_digits
1603 : hf_sccp_calling_gt_digits,
1604 tvb, 0, length, gt_digits);
1605 digits_tree = proto_item_add_subtree(digits_item, called ? ett_sccp_called_gt_digits
1606 : ett_sccp_calling_gt_digits);
1607
1608 if (set_addresses && route_on_gt) {
1609 if (called) {
1610 SET_ADDRESS(&pinfo->dst, AT_STRINGZ, 1+(int)strlen(gt_digits), gt_digits);
1611 } else {
1612 SET_ADDRESS(&pinfo->src, AT_STRINGZ, 1+(int)strlen(gt_digits), gt_digits);
1613 }
1614 }
1615
1616 proto_tree_add_string(digits_tree, hf_sccp_gt_digits, tvb, 0, length, gt_digits);
1617 proto_tree_add_uint(digits_tree, called ? hf_sccp_called_gt_digits_length
1618 : hf_sccp_calling_gt_digits_length,
1619 tvb, 0, length, (guint32)strlen(gt_digits));
1620
1621 return digits_tree;
1622 }
1623
1624 static void
1625 dissect_sccp_global_title(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length,
1626 guint8 gti, gboolean route_on_gt, gboolean called)
1627 {
1628 proto_item *gt_item;
1629 proto_tree *gt_tree;
1630 proto_tree *digits_tree;
1631 tvbuff_t *signals_tvb;
1632 guint offset = 0;
1633 guint8 odd_even, nai = 0, np = 0, es;
1634 gboolean even = TRUE;
1635
1636 /* Shift GTI to where we can work with it */
1637 gti >>= GTI_SHIFT;
1638
1639 gt_item = proto_tree_add_text(tree, tvb, offset, length,
1640 "Global Title 0x%x (%u byte%s)",
1641 gti, length, plurality(length,"", "s"));
1642 gt_tree = proto_item_add_subtree(gt_item, called ? ett_sccp_called_gt
1643 : ett_sccp_calling_gt);
1644
1645 /* Decode Transation Type (if present) */
1646 if ((gti == AI_GTI_TT) ||
1647 ((decode_mtp3_standard != ANSI_STANDARD) &&
1648 ((gti == ITU_AI_GTI_TT_NP_ES) || (gti == ITU_AI_GTI_TT_NP_ES_NAI))) ||
1649 ((decode_mtp3_standard == ANSI_STANDARD) && (gti == ANSI_AI_GTI_TT_NP_ES))) {
1650
1651 proto_tree_add_item(gt_tree, called ? hf_sccp_called_gt_tt
1652 : hf_sccp_calling_gt_tt,
1653 tvb, offset, GT_TT_LENGTH, ENC_NA);
1654 offset += GT_TT_LENGTH;
1655 }
1656
1657 if (gti == AI_GTI_TT) {
1658 /* Protocol doesn't tell us, so we ASSUME even... */
1659 even = TRUE;
1660 }
1661
1662 /* Decode Numbering Plan and Encoding Scheme (if present) */
1663 if (((decode_mtp3_standard != ANSI_STANDARD) &&
1664 ((gti == ITU_AI_GTI_TT_NP_ES) || (gti == ITU_AI_GTI_TT_NP_ES_NAI))) ||
1665 ((decode_mtp3_standard == ANSI_STANDARD) && (gti == ANSI_AI_GTI_TT_NP_ES))) {
1666
1667 np = tvb_get_guint8(tvb, offset) & GT_NP_MASK;
1668 proto_tree_add_uint(gt_tree, called ? hf_sccp_called_gt_np
1669 : hf_sccp_calling_gt_np,
1670 tvb, offset, GT_NP_ES_LENGTH, np);
1671
1672 es = tvb_get_guint8(tvb, offset) & GT_ES_MASK;
1673 proto_tree_add_uint(gt_tree, called ? hf_sccp_called_gt_es
1674 : hf_sccp_calling_gt_es,
1675 tvb, offset, GT_NP_ES_LENGTH, es);
1676
1677 even = (es == GT_ES_BCD_EVEN) ? TRUE : FALSE;
1678
1679 offset += GT_NP_ES_LENGTH;
1680 }
1681
1682 /* Decode Nature of Address Indicator (if present) */
1683 if ((decode_mtp3_standard != ANSI_STANDARD) &&
1684 ((gti == ITU_AI_GTI_NAI) || (gti == ITU_AI_GTI_TT_NP_ES_NAI))) {
1685
1686 /* Decode Odd/Even Indicator (if present) */
1687 if (gti == ITU_AI_GTI_NAI) {
1688 odd_even = tvb_get_guint8(tvb, offset) & GT_OE_MASK;
1689 proto_tree_add_uint(gt_tree, called ? hf_sccp_called_gt_oe
1690 : hf_sccp_calling_gt_oe,
1691 tvb, offset, GT_NAI_LENGTH, odd_even);
1692 even = (odd_even == GT_OE_EVEN) ? TRUE : FALSE;
1693 }
1694
1695 nai = tvb_get_guint8(tvb, offset) & GT_NAI_MASK;
1696 proto_tree_add_uint(gt_tree, called ? hf_sccp_called_gt_nai
1697 : hf_sccp_calling_gt_nai,
1698 tvb, offset, GT_NAI_LENGTH, nai);
1699
1700 offset += GT_NAI_LENGTH;
1701 }
1702
1703 /* Decode address signal(s) */
1704 if (length < offset)
1705 return;
1706
1707 signals_tvb = tvb_new_subset(tvb, offset, (length - offset),
1708 (length - offset));
1709
1710 digits_tree = dissect_sccp_gt_address_information(signals_tvb, pinfo, gt_tree,
1711 (length - offset),
1712 even, called, route_on_gt);
1713
1714 /* Display the country code (if we can) */
1715 switch (np >> GT_NP_SHIFT) {
1716 case GT_NP_ISDN:
1717 case GT_NP_ISDN_MOBILE:
1718 if (nai == GT_NAI_INTERNATIONAL_NUM) {
1719 dissect_e164_cc(signals_tvb, digits_tree, 0, TRUE);
1720 }
1721 break;
1722 case GT_NP_LAND_MOBILE:
1723 dissect_e212_mcc_mnc_in_address(signals_tvb, pinfo, digits_tree, 0);
1724 break;
1725 default:
1726 break;
1727 }
1728 }
1729
1730 static int
1731 dissect_sccp_3byte_pc(tvbuff_t *tvb, proto_tree *call_tree, guint offset,
1732 gboolean called)
1733 {
1734 int hf_pc;
1735
1736 if (decode_mtp3_standard == ANSI_STANDARD)
1737 {
1738 if (called)
1739 hf_pc = hf_sccp_called_ansi_pc;
1740 else
1741 hf_pc = hf_sccp_calling_ansi_pc;
1742 } else /* CHINESE_ITU_STANDARD */ {
1743 if (called)
1744 hf_pc = hf_sccp_called_chinese_pc;
1745 else
1746 hf_pc = hf_sccp_calling_chinese_pc;
1747 }
1748
1749 /* create and fill the PC tree */
1750 dissect_mtp3_3byte_pc(tvb, offset, call_tree,
1751 called ? ett_sccp_called_pc : ett_sccp_calling_pc,
1752 hf_pc,
1753 called ? hf_sccp_called_pc_network : hf_sccp_calling_pc_network,
1754 called ? hf_sccp_called_pc_cluster : hf_sccp_calling_pc_cluster,
1755 called ? hf_sccp_called_pc_member : hf_sccp_calling_pc_member,
1756 0, 0);
1757
1758 return(offset + ANSI_PC_LENGTH);
1759 }
1760
1761 /* FUNCTION dissect_sccp_called_calling_param():
1762 * Dissect the Calling or Called Party Address parameters.
1763 *
1764 * The boolean 'called' describes whether this function is decoding a
1765 * called (TRUE) or calling (FALSE) party address. There is simply too
1766 * much code in this function to have 2 copies of it (one for called, one
1767 * for calling).
1768 *
1769 * NOTE: this function is called even when (!tree) so that we can get
1770 * the SSN and subsequently call subdissectors (if and when there's a data
1771 * parameter). Realistically we should put if (!tree)'s around a lot of the
1772 * code, but I think that would make it unreadable--and the expense of not
1773 * doing so does not appear to be very high.
1774 */
1775 static void
1776 dissect_sccp_called_calling_param(tvbuff_t *tvb, proto_tree *tree, packet_info *pinfo,
1777 guint length, gboolean called)
1778 {
1779 proto_item *call_item = 0, *call_ai_item = 0, *item, *hidden_item, *expert_item;
1780 proto_tree *call_tree = 0, *call_ai_tree = 0;
1781 guint offset;
1782 guint8 national = 0xFFU, routing_ind, gti, pci, ssni, ssn;
1783 tvbuff_t *gt_tvb;
1784 dissector_handle_t ssn_dissector = NULL, tcap_ssn_dissector = NULL;
1785 const char *ssn_dissector_short_name = NULL;
1786 const char *tcap_ssn_dissector_short_name = NULL;
1787
1788 call_item = proto_tree_add_text(tree, tvb, 0, length,
1789 "%s Party address (%u byte%s)",
1790 called ? "Called" : "Calling", length,
1791 plurality(length, "", "s"));
1792 call_tree = proto_item_add_subtree(call_item, called ? ett_sccp_called : ett_sccp_calling);
1793
1794 call_ai_item = proto_tree_add_text(call_tree, tvb, 0,
1795 ADDRESS_INDICATOR_LENGTH,
1796 "Address Indicator");
1797 call_ai_tree = proto_item_add_subtree(call_ai_item, called ? ett_sccp_called_ai : ett_sccp_calling_ai);
1798
1799 if (decode_mtp3_standard == ANSI_STANDARD) {
1800 national = tvb_get_guint8(tvb, 0) & ANSI_NATIONAL_MASK;
1801 expert_item = proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_ansi_national_indicator
1802 : hf_sccp_calling_ansi_national_indicator,
1803 tvb, 0, ADDRESS_INDICATOR_LENGTH, national);
1804 if (national == 0)
1805 expert_add_info(pinfo, expert_item, &ei_sccp_international_standard_address);
1806 } else {
1807 guint8 natl_use_bit = tvb_get_guint8(tvb, 0) & ITU_RESERVED_MASK;
1808
1809 proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_itu_natl_use_bit
1810 : hf_sccp_calling_itu_natl_use_bit,
1811 tvb, 0, ADDRESS_INDICATOR_LENGTH, natl_use_bit);
1812 }
1813
1814 routing_ind = tvb_get_guint8(tvb, 0) & ROUTING_INDICATOR_MASK;
1815 proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_routing_indicator : hf_sccp_calling_routing_indicator,
1816 tvb, 0, ADDRESS_INDICATOR_LENGTH, routing_ind);
1817 /* Only shift off the other bits after adding the item */
1818 routing_ind >>= ROUTING_INDICATOR_SHIFT;
1819
1820 gti = tvb_get_guint8(tvb, 0) & GTI_MASK;
1821
1822 if (decode_mtp3_standard == ITU_STANDARD ||
1823 decode_mtp3_standard == CHINESE_ITU_STANDARD ||
1824 decode_mtp3_standard == JAPAN_STANDARD ||
1825 national == 0) {
1826
1827 proto_tree_add_uint(call_ai_tree,
1828 called ? hf_sccp_called_itu_global_title_indicator : hf_sccp_calling_itu_global_title_indicator,
1829 tvb, 0, ADDRESS_INDICATOR_LENGTH, gti);
1830
1831 ssni = tvb_get_guint8(tvb, 0) & ITU_SSN_INDICATOR_MASK;
1832 expert_item = proto_tree_add_uint(call_ai_tree,
1833 called ? hf_sccp_called_itu_ssn_indicator : hf_sccp_calling_itu_ssn_indicator,
1834 tvb, 0, ADDRESS_INDICATOR_LENGTH, ssni);
1835 if ((routing_ind == ROUTE_ON_SSN) && (ssni == 0)) {
1836 expert_add_info(pinfo, expert_item, &ei_sccp_no_ssn_present);
1837 }
1838
1839 pci = tvb_get_guint8(tvb, 0) & ITU_PC_INDICATOR_MASK;
1840 proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_itu_point_code_indicator : hf_sccp_calling_itu_point_code_indicator,
1841 tvb, 0, ADDRESS_INDICATOR_LENGTH, pci);
1842
1843 offset = ADDRESS_INDICATOR_LENGTH;
1844
1845 /* Dissect PC (if present) */
1846 if (pci) {
1847 if (decode_mtp3_standard == ITU_STANDARD || national == 0) {
1848 if (length < offset + ITU_PC_LENGTH) {
1849 proto_tree_add_expert_format(call_tree, pinfo, &ei_sccp_wrong_length, tvb, 0, -1,
1850 "Wrong length indicated (%u) should be at least %u, PC is %u octets",
1851 length, offset + ITU_PC_LENGTH, ITU_PC_LENGTH);
1852 return;
1853 }
1854 proto_tree_add_item(call_tree, called ? hf_sccp_called_itu_pc : hf_sccp_calling_itu_pc,
1855 tvb, offset, ITU_PC_LENGTH, ENC_LITTLE_ENDIAN);
1856 offset += ITU_PC_LENGTH;
1857
1858 } else if (decode_mtp3_standard == JAPAN_STANDARD) {
1859
1860 if (length < offset + JAPAN_PC_LENGTH) {
1861 proto_tree_add_expert_format(call_tree, pinfo, &ei_sccp_wrong_length, tvb, 0, -1,
1862 "Wrong length indicated (%u) should be at least %u, PC is %u octets",
1863 length, offset + JAPAN_PC_LENGTH, JAPAN_PC_LENGTH);
1864 return;
1865 }
1866 proto_tree_add_item(call_tree, called ? hf_sccp_called_japan_pc : hf_sccp_calling_japan_pc,
1867 tvb, offset, JAPAN_PC_LENGTH, ENC_LITTLE_ENDIAN);
1868
1869 offset += JAPAN_PC_LENGTH;
1870
1871 } else /* CHINESE_ITU_STANDARD */ {
1872
1873 if (length < offset + ANSI_PC_LENGTH) {
1874 proto_tree_add_expert_format(call_tree, pinfo, &ei_sccp_wrong_length, tvb, 0, -1,
1875 "Wrong length indicated (%u) should be at least %u, PC is %u octets",
1876 length, offset + ANSI_PC_LENGTH, ANSI_PC_LENGTH);
1877 return;
1878 }
1879 offset = dissect_sccp_3byte_pc(tvb, call_tree, offset, called);
1880
1881 }
1882 }
1883
1884 /* Dissect SSN (if present) */
1885 if (ssni) {
1886 ssn = tvb_get_guint8(tvb, offset);
1887
1888 if ((routing_ind == ROUTE_ON_SSN) && (ssn == 0)) {
1889 expert_add_info(pinfo, expert_item, &ei_sccp_ssn_zero);
1890 }
1891
1892 if (called && assoc)
1893 assoc->called_ssn = ssn;
1894 else if (assoc)
1895 assoc->calling_ssn = ssn;
1896
1897 if (is_connectionless(message_type) && sccp_msg) {
1898 guint *ssn_ptr = called ? &(sccp_msg->data.ud.called_ssn) : &(sccp_msg->data.ud.calling_ssn);
1899
1900 *ssn_ptr = ssn;
1901 }
1902
1903 proto_tree_add_uint(call_tree, called ? hf_sccp_called_ssn
1904 : hf_sccp_calling_ssn,
1905 tvb, offset, ADDRESS_SSN_LENGTH, ssn);
1906 hidden_item = proto_tree_add_uint(call_tree, hf_sccp_ssn, tvb, offset,
1907 ADDRESS_SSN_LENGTH, ssn);
1908 PROTO_ITEM_SET_HIDDEN(hidden_item);
1909
1910 offset += ADDRESS_SSN_LENGTH;
1911
1912 /* Get the dissector handle of the dissector registered for this ssn
1913 * And print its name.
1914 */
1915 ssn_dissector = dissector_get_uint_handle(sccp_ssn_dissector_table, ssn);
1916
1917 if (ssn_dissector) {
1918 ssn_dissector_short_name = dissector_handle_get_short_name(ssn_dissector);
1919
1920 if (ssn_dissector_short_name) {
1921 item = proto_tree_add_text(call_tree, tvb, offset - 1, ADDRESS_SSN_LENGTH,
1922 "Linked to %s", ssn_dissector_short_name);
1923 PROTO_ITEM_SET_GENERATED(item);
1924
1925 if (g_ascii_strncasecmp("TCAP", ssn_dissector_short_name, 4)== 0) {
1926 tcap_ssn_dissector = get_itu_tcap_subdissector(ssn);
1927
1928 if (tcap_ssn_dissector) {
1929 tcap_ssn_dissector_short_name = dissector_handle_get_short_name(tcap_ssn_dissector);
1930 proto_item_append_text(item,", TCAP SSN linked to %s", tcap_ssn_dissector_short_name);
1931 }
1932 }
1933 } /* short name */
1934 } /* ssn_dissector */
1935 } /* ssni */
1936
1937 /* Dissect GT (if present) */
1938 if (gti != AI_GTI_NO_GT) {
1939 if (length < offset)
1940 return;
1941
1942 gt_tvb = tvb_new_subset(tvb, offset, (length - offset),
1943 (length - offset));
1944 dissect_sccp_global_title(gt_tvb, pinfo, call_tree, (length - offset), gti,
1945 (routing_ind == ROUTE_ON_GT), called);
1946 }
1947
1948 } else if (decode_mtp3_standard == ANSI_STANDARD) {
1949
1950 proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_ansi_global_title_indicator
1951 : hf_sccp_calling_ansi_global_title_indicator,
1952 tvb, 0, ADDRESS_INDICATOR_LENGTH, gti);
1953
1954 pci = tvb_get_guint8(tvb, 0) & ANSI_PC_INDICATOR_MASK;
1955 proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_ansi_point_code_indicator
1956 : hf_sccp_calling_ansi_point_code_indicator,
1957 tvb, 0, ADDRESS_INDICATOR_LENGTH, pci);
1958
1959 ssni = tvb_get_guint8(tvb, 0) & ANSI_SSN_INDICATOR_MASK;
1960 expert_item = proto_tree_add_uint(call_ai_tree, called ? hf_sccp_called_ansi_ssn_indicator
1961 : hf_sccp_calling_ansi_ssn_indicator,
1962 tvb, 0, ADDRESS_INDICATOR_LENGTH, ssni);
1963 if ((routing_ind == ROUTE_ON_SSN) && (ssni == 0)) {
1964 expert_add_info(pinfo, expert_item, &ei_sccp_no_ssn_present);
1965 }
1966
1967 offset = ADDRESS_INDICATOR_LENGTH;
1968
1969 /* Dissect SSN (if present) */
1970 if (ssni) {
1971 ssn = tvb_get_guint8(tvb, offset);
1972
1973 if ((routing_ind == ROUTE_ON_SSN) && (ssn == 0)) {
1974 expert_add_info(pinfo, expert_item, &ei_sccp_ssn_zero);
1975 }
1976
1977 if (called && assoc) {
1978 assoc->called_ssn = ssn;
1979 } else if (assoc) {
1980 assoc->calling_ssn = ssn;
1981 }
1982
1983 if (is_connectionless(message_type) && sccp_msg) {
1984 guint *ssn_ptr = called ? &(sccp_msg->data.ud.called_ssn) : &(sccp_msg->data.ud.calling_ssn);
1985
1986 *ssn_ptr = ssn;
1987 }
1988
1989 proto_tree_add_uint(call_tree, called ? hf_sccp_called_ssn
1990 : hf_sccp_calling_ssn,
1991 tvb, offset, ADDRESS_SSN_LENGTH, ssn);
1992 hidden_item = proto_tree_add_uint(call_tree, hf_sccp_ssn, tvb, offset,
1993 ADDRESS_SSN_LENGTH, ssn);
1994 PROTO_ITEM_SET_HIDDEN(hidden_item);
1995
1996 offset += ADDRESS_SSN_LENGTH;
1997 }
1998
1999 /* Dissect PC (if present) */
2000 if (pci) {
2001 offset = dissect_sccp_3byte_pc(tvb, call_tree, offset, called);
2002 }
2003
2004 /* Dissect GT (if present) */
2005 if (gti != AI_GTI_NO_GT) {
2006 if (length < offset)
2007 return;
2008 gt_tvb = tvb_new_subset(tvb, offset, (length - offset),
2009 (length - offset));
2010 dissect_sccp_global_title(gt_tvb, pinfo, call_tree, (length - offset), gti,
2011 (routing_ind == ROUTE_ON_GT), called);
2012 }
2013
2014 }
2015
2016 }
2017
2018 static void
2019 dissect_sccp_called_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2020 {
2021 dissect_sccp_called_calling_param(tvb, tree, pinfo, length, TRUE);
2022 }
2023
2024 static void
2025 dissect_sccp_calling_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2026 {
2027 dissect_sccp_called_calling_param(tvb, tree, pinfo, length, FALSE);
2028 }
2029
2030 static void
2031 dissect_sccp_class_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2032 {
2033 guint8 msg_class;
2034 proto_item *pi;
2035 gboolean invalid_class = FALSE;
2036
2037 if (length != 1) {
2038 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2039 "Wrong length indicated. Expected 1, got %u", length);
2040 return;
2041 }
2042
2043 msg_class = tvb_get_guint8(tvb, 0) & CLASS_CLASS_MASK;
2044 pi = proto_tree_add_uint(tree, hf_sccp_class, tvb, 0, length, msg_class);
2045
2046 switch (message_type) {
2047 case SCCP_MSG_TYPE_DT1:
2048 if (msg_class != 2)
2049 invalid_class = TRUE;
2050 break;
2051 case SCCP_MSG_TYPE_DT2:
2052 case SCCP_MSG_TYPE_AK:
2053 case SCCP_MSG_TYPE_ED:
2054 case SCCP_MSG_TYPE_EA:
2055 case SCCP_MSG_TYPE_RSR:
2056 case SCCP_MSG_TYPE_RSC:
2057 if (msg_class != 3)
2058 invalid_class = TRUE;
2059 break;
2060 case SCCP_MSG_TYPE_CR:
2061 case SCCP_MSG_TYPE_CC:
2062 case SCCP_MSG_TYPE_CREF:
2063 case SCCP_MSG_TYPE_RLSD:
2064 case SCCP_MSG_TYPE_RLC:
2065 case SCCP_MSG_TYPE_ERR:
2066 case SCCP_MSG_TYPE_IT:
2067 if ((msg_class != 2) && (msg_class != 3))
2068 invalid_class = TRUE;
2069 break;
2070 case SCCP_MSG_TYPE_UDT:
2071 case SCCP_MSG_TYPE_UDTS:
2072 case SCCP_MSG_TYPE_XUDT:
2073 case SCCP_MSG_TYPE_XUDTS:
2074 case SCCP_MSG_TYPE_LUDT:
2075 case SCCP_MSG_TYPE_LUDTS:
2076 if ((msg_class != 0) && (msg_class != 1))
2077 invalid_class = TRUE;
2078 break;
2079 }
2080
2081 if (invalid_class)
2082 expert_add_info(pinfo, pi, &ei_sccp_class_unexpected);
2083
2084 if (msg_class == 0 || msg_class == 1) {
2085 guint8 handling = tvb_get_guint8(tvb, 0) & CLASS_SPARE_HANDLING_MASK;
2086
2087 pi = proto_tree_add_item(tree, hf_sccp_handling, tvb, 0, length, ENC_NA);
2088 handling >>= CLASS_SPARE_HANDLING_SHIFT;
2089
2090 if (try_val_to_str(handling, sccp_class_handling_values) == NULL) {
2091 expert_add_info(pinfo, pi, &ei_sccp_handling_invalid);
2092 }
2093 }
2094 }
2095
2096 static void
2097 dissect_sccp_segmenting_reassembling_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2098 {
2099 if (length != 1) {
2100 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2101 "Wrong length indicated. Expected 1, got %u", length);
2102 return;
2103 }
2104
2105 proto_tree_add_item(tree, hf_sccp_more, tvb, 0, length, ENC_BIG_ENDIAN);
2106 }
2107
2108 static void
2109 dissect_sccp_receive_sequence_number_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2110 {
2111 guint8 rsn;
2112
2113 if (length != 1) {
2114 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2115 "Wrong length indicated. Expected 1, got %u", length);
2116 return;
2117 }
2118
2119 rsn = tvb_get_guint8(tvb, 0) >> 1;
2120 proto_tree_add_uint(tree, hf_sccp_rsn, tvb, 0, length, rsn);
2121 }
2122
2123 static void
2124 dissect_sccp_sequencing_segmenting_param(tvbuff_t *tvb, proto_tree *tree, guint length)
2125 {
2126 guint8 rsn, ssn;
2127 proto_item *param_item;
2128 proto_tree *param_tree;
2129
2130 ssn = tvb_get_guint8(tvb, 0) >> 1;
2131 rsn = tvb_get_guint8(tvb, SEQUENCING_SEGMENTING_SSN_LENGTH) >> 1;
2132
2133 param_item = proto_tree_add_text(tree, tvb, 0, length, "%s",
2134 val_to_str(PARAMETER_SEQUENCING_SEGMENTING,
2135 sccp_parameter_values, "Unknown: %d"));
2136 param_tree = proto_item_add_subtree(param_item,
2137 ett_sccp_sequencing_segmenting);
2138
2139 proto_tree_add_uint(param_tree, hf_sccp_sequencing_segmenting_ssn, tvb, 0,
2140 SEQUENCING_SEGMENTING_SSN_LENGTH, ssn);
2141 proto_tree_add_uint(param_tree, hf_sccp_sequencing_segmenting_rsn, tvb,
2142 SEQUENCING_SEGMENTING_SSN_LENGTH,
2143 SEQUENCING_SEGMENTING_RSN_LENGTH, rsn);
2144 proto_tree_add_item(param_tree, hf_sccp_sequencing_segmenting_more, tvb,
2145 SEQUENCING_SEGMENTING_SSN_LENGTH,
2146 SEQUENCING_SEGMENTING_RSN_LENGTH, ENC_NA);
2147 }
2148
2149 static void
2150 dissect_sccp_credit_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2151 {
2152 if (length != 1) {
2153 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2154 "Wrong length indicated. Expected 1, got %u", length);
2155 return;
2156 }
2157
2158 proto_tree_add_item(tree, hf_sccp_credit, tvb, 0, length, ENC_NA);
2159 }
2160
2161 static void
2162 dissect_sccp_release_cause_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2163 {
2164 if (length != 1) {
2165 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2166 "Wrong length indicated. Expected 1, got %u", length);
2167 return;
2168 }
2169
2170 proto_tree_add_item(tree, hf_sccp_release_cause, tvb, 0, length, ENC_LITTLE_ENDIAN);
2171
2172 if (show_key_params)
2173 col_append_fstr(pinfo->cinfo, COL_INFO, "Cause=%d ", tvb_get_guint8(tvb, 0));
2174 }
2175
2176 static void
2177 dissect_sccp_return_cause_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2178 {
2179 if (length != 1) {
2180 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2181 "Wrong length indicated. Expected 1, got %u", length);
2182 return;
2183 }
2184
2185 proto_tree_add_item(tree, hf_sccp_return_cause, tvb, 0, length, ENC_LITTLE_ENDIAN);
2186
2187 if (show_key_params)
2188 col_append_fstr(pinfo->cinfo, COL_INFO, "Cause=%d ", tvb_get_guint8(tvb, 0));
2189 }
2190
2191 static void
2192 dissect_sccp_reset_cause_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2193 {
2194 if (length != 1) {
2195 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2196 "Wrong length indicated. Expected 1, got %u", length);
2197 return;
2198 }
2199
2200 proto_tree_add_item(tree, hf_sccp_reset_cause, tvb, 0, length, ENC_LITTLE_ENDIAN);
2201
2202 if (show_key_params)
2203 col_append_fstr(pinfo->cinfo, COL_INFO, "Cause=%d ", tvb_get_guint8(tvb, 0));
2204 }
2205
2206 static void
2207 dissect_sccp_error_cause_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2208 {
2209 if (length != 1) {
2210 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2211 "Wrong length indicated. Expected 1, got %u", length);
2212 return;
2213 }
2214
2215 proto_tree_add_item(tree, hf_sccp_error_cause, tvb, 0, length, ENC_LITTLE_ENDIAN);
2216
2217 if (show_key_params)
2218 col_append_fstr(pinfo->cinfo, COL_INFO, "Cause=%d ", tvb_get_guint8(tvb, 0));
2219 }
2220
2221 static void
2222 dissect_sccp_refusal_cause_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2223 {
2224 if (length != 1) {
2225 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2226 "Wrong length indicated. Expected 1, got %u", length);
2227 return;
2228 }
2229
2230 proto_tree_add_item(tree, hf_sccp_refusal_cause, tvb, 0, length, ENC_LITTLE_ENDIAN);
2231
2232 if (show_key_params)
2233 col_append_fstr(pinfo->cinfo, COL_INFO, "Cause=%d ", tvb_get_guint8(tvb, 0));
2234 }
2235
2236
2237 /* This function is used for both data and long data (ITU only) parameters */
2238 static void
2239 dissect_sccp_data_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree)
2240 {
2241 guint8 ssn = INVALID_SSN;
2242 guint8 other_ssn = INVALID_SSN;
2243 const mtp3_addr_pc_t *dpc = NULL;
2244 const mtp3_addr_pc_t *opc = NULL;
2245
2246 if ((trace_sccp) && (assoc && assoc != &no_assoc)) {
2247 pinfo->sccp_info = assoc->curr_msg;
2248 } else {
2249 pinfo->sccp_info = NULL;
2250 }
2251
2252 if (assoc) {
2253 switch (pinfo->p2p_dir) {
2254 case P2P_DIR_SENT:
2255 ssn = assoc->calling_ssn;
2256 other_ssn = assoc->called_ssn;
2257 dpc = (const mtp3_addr_pc_t*)pinfo->dst.data;
2258 opc = (const mtp3_addr_pc_t*)pinfo->src.data;
2259 break;
2260 case P2P_DIR_RECV:
2261 ssn = assoc->called_ssn;
2262 other_ssn = assoc->calling_ssn;
2263 dpc = (const mtp3_addr_pc_t*)pinfo->src.data;
2264 opc = (const mtp3_addr_pc_t*)pinfo->dst.data;
2265 break;
2266 default:
2267 ssn = assoc->called_ssn;
2268 other_ssn = assoc->calling_ssn;
2269 dpc = (const mtp3_addr_pc_t*)pinfo->dst.data;
2270 opc = (const mtp3_addr_pc_t*)pinfo->src.data;
2271 break;
2272 }
2273 }
2274
2275
2276 if ((num_sccp_users) && (pinfo->src.type == AT_SS7PC)) {
2277 guint i;
2278 dissector_handle_t handle = NULL;
2279 gboolean uses_tcap = FALSE;
2280
2281 for (i=0; i < num_sccp_users; i++) {
2282 sccp_user_t *u = &(sccp_users[i]);
2283
2284 if (!dpc || dpc->ni != u->ni) continue;
2285
2286 if (value_is_in_range(u->called_ssn, ssn) && value_is_in_range(u->called_pc, dpc->pc) ) {
2287 handle = *(u->handlep);
2288 uses_tcap = u->uses_tcap;
2289 break;
2290 } else if (value_is_in_range(u->called_ssn, other_ssn) && opc && value_is_in_range(u->called_pc, opc->pc) ) {
2291 handle = *(u->handlep);
2292 uses_tcap = u->uses_tcap;
2293 break;
2294 }
2295 }
2296
2297 if (handle) {
2298 if (uses_tcap) {
2299 call_tcap_dissector(handle, tvb, pinfo, tree);
2300 } else {
2301 call_dissector(handle, tvb, pinfo, tree);
2302 }
2303 return;
2304 }
2305
2306 }
2307
2308 if ((ssn != INVALID_SSN) && dissector_try_uint(sccp_ssn_dissector_table, ssn, tvb, pinfo, tree)) {
2309 return;
2310 }
2311
2312 if ((other_ssn != INVALID_SSN) && dissector_try_uint(sccp_ssn_dissector_table, other_ssn, tvb, pinfo, tree)) {
2313 return;
2314 }
2315
2316 /* try heuristic subdissector list to see if there are any takers */
2317 if (dissector_try_heuristic(heur_subdissector_list, tvb, pinfo, tree, NULL)) {
2318 return;
2319 }
2320
2321 /* try user default subdissector */
2322 if (default_handle) {
2323 call_dissector(default_handle, tvb, pinfo, tree);
2324 return;
2325 }
2326
2327 /* No sub-dissection occurred, treat it as raw data */
2328 call_dissector(data_handle, tvb, pinfo, tree);
2329
2330 }
2331
2332 static void
2333 dissect_sccp_segmentation_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2334 {
2335 proto_item *param_item;
2336 proto_tree *param_tree;
2337
2338 param_item = proto_tree_add_text(tree, tvb, 0, length, "%s",
2339 val_to_str(PARAMETER_SEGMENTATION,
2340 sccp_parameter_values, "Unknown: %d"));
2341 param_tree = proto_item_add_subtree(param_item, ett_sccp_segmentation);
2342
2343 proto_tree_add_item(param_tree, hf_sccp_segmentation_first, tvb, 0, 1, ENC_NA);
2344 proto_tree_add_item(param_tree, hf_sccp_segmentation_class, tvb, 0, 1, ENC_NA);
2345 proto_tree_add_item(param_tree, hf_sccp_segmentation_remaining, tvb, 0, 1, ENC_NA);
2346
2347 if (length-1 != 3) {
2348 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length-1,
2349 "Wrong length indicated. Expected 3, got %u", length-1);
2350 return;
2351 }
2352
2353 proto_tree_add_item(param_tree, hf_sccp_segmentation_slr, tvb, 1, length-1, ENC_LITTLE_ENDIAN);
2354 }
2355
2356 static void
2357 dissect_sccp_hop_counter_param(tvbuff_t *tvb, proto_tree *tree, guint length)
2358 {
2359 guint8 hops;
2360
2361 hops = tvb_get_guint8(tvb, 0);
2362 proto_tree_add_uint(tree, hf_sccp_hop_counter, tvb, 0, length, hops);
2363 }
2364
2365 static void
2366 dissect_sccp_importance_param(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, guint length)
2367 {
2368 if (length != 1) {
2369 proto_tree_add_expert_format(tree, pinfo, &ei_sccp_wrong_length, tvb, 0, length,
2370 "Wrong length indicated. Expected 1, got %u", length);
2371 return;
2372 }
2373
2374 proto_tree_add_item(tree, hf_sccp_importance, tvb, 0, length, ENC_NA);
2375 }
2376
2377 static void
2378 dissect_sccp_isni_param(tvbuff_t *tvb, proto_tree *tree, guint length)
2379 {
2380 guint8 ti;
2381 guint offset = 0;
2382 proto_item *param_item;
2383 proto_tree *param_tree;
2384
2385 /* Create a subtree for ISNI Routing Control */
2386 param_item = proto_tree_add_text(tree, tvb, offset, ANSI_ISNI_ROUTING_CONTROL_LENGTH,
2387 "ISNI Routing Control");
2388 param_tree = proto_item_add_subtree(param_item,
2389 ett_sccp_ansi_isni_routing_control);
2390
2391 proto_tree_add_item(param_tree, hf_sccp_ansi_isni_mi, tvb, offset,
2392 ANSI_ISNI_ROUTING_CONTROL_LENGTH, ENC_NA);
2393
2394 proto_tree_add_item(param_tree, hf_sccp_ansi_isni_iri, tvb, offset,
2395 ANSI_ISNI_ROUTING_CONTROL_LENGTH, ENC_NA);
2396
2397 ti = tvb_get_guint8(tvb, offset) & ANSI_ISNI_TI_MASK;
2398 proto_tree_add_uint(param_tree, hf_sccp_ansi_isni_ti, tvb, offset,
2399 ANSI_ISNI_ROUTING_CONTROL_LENGTH, ti);
2400
2401 proto_tree_add_item(param_tree, hf_sccp_ansi_isni_counter, tvb, offset,
2402 ANSI_ISNI_ROUTING_CONTROL_LENGTH, ENC_NA);
2403
2404 offset += ANSI_ISNI_ROUTING_CONTROL_LENGTH;
2405
2406 if ((ti >> ANSI_ISNI_TI_SHIFT) == ANSI_ISNI_TYPE_1) {
2407 proto_tree_add_uint(param_tree, hf_sccp_ansi_isni_netspec, tvb, offset,
2408 ANSI_ISNI_ROUTING_CONTROL_LENGTH, ti);
2409 offset += ANSI_ISNI_ROUTING_CONTROL_LENGTH;
2410 }
2411
2412 while (offset < length) {
2413
2414 proto_tree_add_item(tree, hf_sccp_ansi_isni_network, tvb, offset,
2415 ANSI_NCM_LENGTH, ENC_NA);
2416 offset++;
2417
2418 proto_tree_add_item(tree, hf_sccp_ansi_isni_cluster, tvb, offset,
2419 ANSI_NCM_LENGTH, ENC_NA);
2420 offset++;
2421 }
2422
2423 }
2424
2425 /* FUNCTION dissect_sccp_parameter():
2426 * Dissect a parameter given its type, offset into tvb, and length.
2427 */
2428 static guint16
2429 dissect_sccp_parameter(tvbuff_t *tvb, packet_info *pinfo, proto_tree *sccp_tree,
2430 proto_tree *tree, guint8 parameter_type, guint16 offset,
2431 guint16 parameter_length)
2432 {
2433 tvbuff_t *parameter_tvb;
2434
2435 switch (parameter_type) {
2436 case PARAMETER_CALLED_PARTY_ADDRESS:
2437 case PARAMETER_CALLING_PARTY_ADDRESS:
2438 case PARAMETER_DATA:
2439 case PARAMETER_LONG_DATA:
2440 case PARAMETER_SOURCE_LOCAL_REFERENCE:
2441 case PARAMETER_DESTINATION_LOCAL_REFERENCE:
2442 case PARAMETER_RELEASE_CAUSE:
2443 case PARAMETER_RETURN_CAUSE:
2444 case PARAMETER_RESET_CAUSE:
2445 case PARAMETER_ERROR_CAUSE:
2446 case PARAMETER_REFUSAL_CAUSE:
2447
2448 /* These parameters must be dissected even if !sccp_tree (so that
2449 * assoc information can be created).
2450 */
2451 break;
2452
2453 default:
2454 if (!sccp_tree) return(parameter_length);
2455
2456 }
2457
2458 parameter_tvb = tvb_new_subset(tvb, offset, parameter_length, parameter_length);
2459
2460 switch (parameter_type) {
2461
2462 case PARAMETER_END_OF_OPTIONAL_PARAMETERS:
2463 proto_tree_add_text(sccp_tree, tvb, offset, parameter_length,
2464 "End of Optional");
2465 break;
2466
2467 case PARAMETER_DESTINATION_LOCAL_REFERENCE:
2468 dissect_sccp_dlr_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2469 break;
2470
2471 case PARAMETER_SOURCE_LOCAL_REFERENCE:
2472 dissect_sccp_slr_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2473 break;
2474
2475 case PARAMETER_CALLED_PARTY_ADDRESS:
2476 dissect_sccp_called_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2477 break;
2478
2479 case PARAMETER_CALLING_PARTY_ADDRESS:
2480 dissect_sccp_calling_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2481 break;
2482
2483 case PARAMETER_CLASS:
2484 dissect_sccp_class_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2485 break;
2486
2487 case PARAMETER_SEGMENTING_REASSEMBLING:
2488 dissect_sccp_segmenting_reassembling_param(parameter_tvb, pinfo, sccp_tree,
2489 parameter_length);
2490 break;
2491
2492 case PARAMETER_RECEIVE_SEQUENCE_NUMBER:
2493 dissect_sccp_receive_sequence_number_param(parameter_tvb, pinfo, sccp_tree,
2494 parameter_length);
2495 break;
2496
2497 case PARAMETER_SEQUENCING_SEGMENTING:
2498 dissect_sccp_sequencing_segmenting_param(parameter_tvb, sccp_tree,
2499 parameter_length);
2500 break;
2501
2502 case PARAMETER_CREDIT:
2503 dissect_sccp_credit_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2504 break;
2505
2506 case PARAMETER_RELEASE_CAUSE:
2507 dissect_sccp_release_cause_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2508 break;
2509
2510 case PARAMETER_RETURN_CAUSE:
2511 dissect_sccp_return_cause_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2512 break;
2513
2514 case PARAMETER_RESET_CAUSE:
2515 dissect_sccp_reset_cause_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2516 break;
2517
2518 case PARAMETER_ERROR_CAUSE:
2519 dissect_sccp_error_cause_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2520 break;
2521
2522 case PARAMETER_REFUSAL_CAUSE:
2523 dissect_sccp_refusal_cause_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2524 break;
2525
2526 case PARAMETER_DATA:
2527 dissect_sccp_data_param(parameter_tvb, pinfo, tree);
2528
2529 /* TODO? Re-adjust length of SCCP item since it may be sub-dissected */
2530 /* sccp_length = proto_item_get_len(sccp_item);
2531 * sccp_length -= parameter_length;
2532 * proto_item_set_len(sccp_item, sccp_length);
2533 */
2534 break;
2535
2536 case PARAMETER_SEGMENTATION:
2537 dissect_sccp_segmentation_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2538 break;
2539
2540 case PARAMETER_HOP_COUNTER:
2541 dissect_sccp_hop_counter_param(parameter_tvb, sccp_tree, parameter_length);
2542 break;
2543
2544 case PARAMETER_IMPORTANCE:
2545 if (decode_mtp3_standard != ANSI_STANDARD)
2546 dissect_sccp_importance_param(parameter_tvb, pinfo, sccp_tree, parameter_length);
2547 else
2548 dissect_sccp_unknown_param(parameter_tvb, sccp_tree, parameter_type,
2549 parameter_length);
2550 break;
2551
2552 case PARAMETER_LONG_DATA:
2553 dissect_sccp_data_param(parameter_tvb, pinfo, tree);
2554 break;
2555
2556 case PARAMETER_ISNI:
2557 if (decode_mtp3_standard != ANSI_STANDARD)
2558 dissect_sccp_unknown_param(parameter_tvb, sccp_tree, parameter_type,
2559 parameter_length);
2560 else
2561 dissect_sccp_isni_param(parameter_tvb, sccp_tree, parameter_length);
2562 break;
2563
2564 default:
2565 dissect_sccp_unknown_param(parameter_tvb, sccp_tree, parameter_type,
2566 parameter_length);
2567 break;
2568 }
2569
2570 return(parameter_length);
2571 }
2572
2573 /* FUNCTION dissect_sccp_variable_parameter():
2574 * Dissect a variable parameter given its type and offset into tvb. Length
2575 * of the parameter is gotten from tvb[0].
2576 * Length returned is sum of (length + parameter).
2577 */
2578 static guint16
2579 dissect_sccp_variable_parameter(tvbuff_t *tvb, packet_info *pinfo,
2580 proto_tree *sccp_tree, proto_tree *tree,
2581 guint8 parameter_type, guint16 offset)
2582 {
2583 guint16 parameter_length;
2584 guint8 length_length;
2585 proto_item *pi;
2586
2587 if (parameter_type != PARAMETER_LONG_DATA) {
2588 parameter_length = tvb_get_guint8(tvb, offset);
2589 length_length = PARAMETER_LENGTH_LENGTH;
2590 } else {
2591 /* Long data parameter has 16 bit length */
2592 parameter_length = tvb_get_letohs(tvb, offset);
2593 length_length = PARAMETER_LONG_DATA_LENGTH_LENGTH;
2594 }
2595
2596 pi = proto_tree_add_uint_format(sccp_tree, hf_sccp_param_length, tvb, offset,
2597 length_length, parameter_length, "%s length: %d",
2598 val_to_str(parameter_type, sccp_parameter_values,
2599 "Unknown: %d"),
2600 parameter_length);
2601 if (!sccp_show_length) {
2602 /* The user doesn't want to see it... */
2603 PROTO_ITEM_SET_HIDDEN(pi);
2604 }
2605
2606 offset += length_length;
2607
2608 dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree, parameter_type, offset,
2609 parameter_length);
2610
2611 return(parameter_length + length_length);
2612 }
2613
2614 /* FUNCTION dissect_sccp_optional_parameters():
2615 * Dissect all the optional parameters given the start of the optional
2616 * parameters into tvb. Parameter types and lengths are read from tvb.
2617 */
2618 static void
2619 dissect_sccp_optional_parameters(tvbuff_t *tvb, packet_info *pinfo,
2620 proto_tree *sccp_tree, proto_tree *tree,
2621 guint16 offset)
2622 {
2623 guint8 parameter_type;
2624
2625 while ((parameter_type = tvb_get_guint8(tvb, offset)) !=
2626 PARAMETER_END_OF_OPTIONAL_PARAMETERS) {
2627
2628 offset += PARAMETER_TYPE_LENGTH;
2629 offset += dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2630 parameter_type, offset);
2631 }
2632
2633 /* Process end of optional parameters */
2634 dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree, parameter_type, offset,
2635 END_OF_OPTIONAL_PARAMETERS_LENGTH);
2636
2637 }
2638
2639 static sccp_msg_info_t *
2640 new_ud_msg(packet_info *pinfo, guint32 msg_type _U_)
2641 {
2642 sccp_msg_info_t *m = wmem_new0(wmem_packet_scope(), sccp_msg_info_t);
2643 m->framenum = PINFO_FD_NUM(pinfo);
2644 m->data.ud.calling_gt = NULL;
2645 m->data.ud.called_gt = NULL;
2646
2647 register_frame_end_routine(pinfo, reset_sccp_assoc);
2648 return m;
2649 }
2650
2651 static int
2652 dissect_sccp_message(tvbuff_t *tvb, packet_info *pinfo, proto_tree *sccp_tree,
2653 proto_tree *tree)
2654 {
2655 guint16 variable_pointer1 = 0, variable_pointer2 = 0, variable_pointer3 = 0;
2656 guint16 optional_pointer = 0, orig_opt_ptr = 0;
2657 guint16 offset = 0;
2658 gboolean save_fragmented;
2659 tvbuff_t *new_tvb = NULL;
2660 fragment_head *frag_msg = NULL;
2661 guint32 source_local_ref = 0;
2662 guint8 more;
2663 guint msg_offset = tvb_offset_from_real_beginning(tvb);
2664
2665 /* Macro for getting pointer to mandatory variable parameters */
2666 #define VARIABLE_POINTER(var, hf_var, ptr_size) \
2667 do { \
2668 if (ptr_size == POINTER_LENGTH) \
2669 var = tvb_get_guint8(tvb, offset); \
2670 else \
2671 var = tvb_get_letohs(tvb, offset); \
2672 proto_tree_add_uint(sccp_tree, hf_var, tvb, \
2673 offset, ptr_size, var); \
2674 var += offset; \
2675 if (ptr_size == POINTER_LENGTH_LONG) \
2676 var += 1; \
2677 offset += ptr_size; \
2678 } while (0)
2679
2680 /* Macro for getting pointer to optional parameters */
2681 #define OPTIONAL_POINTER(ptr_size) \
2682 do { \
2683 if (ptr_size == POINTER_LENGTH) \
2684 orig_opt_ptr = optional_pointer = tvb_get_guint8(tvb, offset); \
2685 else \
2686 orig_opt_ptr = optional_pointer = tvb_get_letohs(tvb, offset); \
2687 proto_tree_add_uint(sccp_tree, hf_sccp_optional_pointer, tvb, \
2688 offset, ptr_size, optional_pointer); \
2689 optional_pointer += offset; \
2690 if (ptr_size == POINTER_LENGTH_LONG) \
2691 optional_pointer += 1; \
2692 offset += ptr_size; \
2693 } while (0)
2694
2695
2696 /* Extract the message type; all other processing is based on this */
2697 message_type = tvb_get_guint8(tvb, SCCP_MSG_TYPE_OFFSET);
2698 offset = SCCP_MSG_TYPE_LENGTH;
2699
2700 /* Do not change col_add_fstr() to col_append_fstr() here: we _want_
2701 * this call to overwrite whatever's currently in the INFO column (e.g.,
2702 * "DATA" from the SCTP dissector).
2703 *
2704 * If there's something there that should not be overwritten, whoever
2705 * put that info there should call col_set_fence() to protect it.
2706 */
2707 col_add_fstr(pinfo->cinfo, COL_INFO, "%s ",
2708 val_to_str(message_type, sccp_message_type_acro_values, "Unknown: %d"));
2709
2710 if (sccp_tree) {
2711 /* add the message type to the protocol tree */
2712 proto_tree_add_uint(sccp_tree, hf_sccp_message_type, tvb,
2713 SCCP_MSG_TYPE_OFFSET, SCCP_MSG_TYPE_LENGTH, message_type);
2714
2715 };
2716
2717 /* Starting a new message dissection; clear the global assoc, SLR, and DLR values */
2718 dlr = INVALID_LR;
2719 slr = INVALID_LR;
2720 assoc = NULL;
2721
2722 no_assoc.calling_dpc = 0;
2723 no_assoc.called_dpc = 0;
2724 no_assoc.calling_ssn = INVALID_SSN;
2725 no_assoc.called_ssn = INVALID_SSN;
2726 no_assoc.has_fw_key = FALSE;
2727 no_assoc.has_bw_key = FALSE;
2728 no_assoc.payload = SCCP_PLOAD_NONE;
2729 no_assoc.called_party = NULL;
2730 no_assoc.calling_party = NULL;
2731 no_assoc.extra_info = NULL;
2732
2733 switch (message_type) {
2734 case SCCP_MSG_TYPE_CR:
2735 /* TTC and NTT (Japan) say that the connection-oriented messages are
2736 * deleted (not standardized), but they appear to be used anyway, so
2737 * we'll dissect it...
2738 */
2739 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2740 PARAMETER_SOURCE_LOCAL_REFERENCE,
2741 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
2742 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2743 PARAMETER_CLASS, offset,
2744 PROTOCOL_CLASS_LENGTH);
2745 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2746
2747 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
2748 OPTIONAL_POINTER(POINTER_LENGTH);
2749
2750 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2751 PARAMETER_CALLED_PARTY_ADDRESS,
2752 variable_pointer1);
2753 break;
2754
2755 case SCCP_MSG_TYPE_CC:
2756 /* TODO: connection has been established; theoretically we could keep
2757 * keep track of the SLR/DLR with the called/calling from the CR and
2758 * track the connection (e.g., on subsequent messages regarding this
2759 * SLR we could set the global vars "call*_ssn" so data could get
2760 * sub-dissected).
2761 */
2762 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2763 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2764 offset,
2765 DESTINATION_LOCAL_REFERENCE_LENGTH);
2766 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2767 PARAMETER_SOURCE_LOCAL_REFERENCE,
2768 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
2769
2770 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2771
2772 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2773 PARAMETER_CLASS, offset,
2774 PROTOCOL_CLASS_LENGTH);
2775 OPTIONAL_POINTER(POINTER_LENGTH);
2776 break;
2777
2778 case SCCP_MSG_TYPE_CREF:
2779 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2780 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2781 offset,
2782 DESTINATION_LOCAL_REFERENCE_LENGTH);
2783
2784 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2785
2786 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2787 PARAMETER_REFUSAL_CAUSE, offset,
2788 REFUSAL_CAUSE_LENGTH);
2789 OPTIONAL_POINTER(POINTER_LENGTH);
2790 break;
2791
2792 case SCCP_MSG_TYPE_RLSD:
2793 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2794 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2795 offset,
2796 DESTINATION_LOCAL_REFERENCE_LENGTH);
2797 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2798 PARAMETER_SOURCE_LOCAL_REFERENCE,
2799 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
2800
2801 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2802
2803 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2804 PARAMETER_RELEASE_CAUSE, offset,
2805 RELEASE_CAUSE_LENGTH);
2806
2807 OPTIONAL_POINTER(POINTER_LENGTH);
2808 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2809 break;
2810
2811 case SCCP_MSG_TYPE_RLC:
2812 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2813 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2814 offset,
2815 DESTINATION_LOCAL_REFERENCE_LENGTH);
2816 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2817 PARAMETER_SOURCE_LOCAL_REFERENCE,
2818 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
2819
2820 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2821 break;
2822
2823 case SCCP_MSG_TYPE_DT1:
2824 source_local_ref = tvb_get_letoh24(tvb, offset);
2825 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2826 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2827 offset,
2828 DESTINATION_LOCAL_REFERENCE_LENGTH);
2829
2830 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2831
2832 more = tvb_get_guint8(tvb, offset) & SEGMENTING_REASSEMBLING_MASK;
2833
2834 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2835 PARAMETER_SEGMENTING_REASSEMBLING,
2836 offset, SEGMENTING_REASSEMBLING_LENGTH);
2837 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
2838
2839 /* Reassemble */
2840 if (!sccp_xudt_desegment) {
2841 proto_tree_add_text(sccp_tree, tvb, variable_pointer1,
2842 tvb_get_guint8(tvb, variable_pointer1)+1,
2843 "Segmented Data");
2844 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2845 PARAMETER_DATA, variable_pointer1);
2846
2847 } else {
2848 save_fragmented = pinfo->fragmented;
2849 pinfo->fragmented = TRUE;
2850 frag_msg = fragment_add_seq_next(&sccp_xudt_msg_reassembly_table,
2851 tvb, variable_pointer1 + 1,
2852 pinfo,
2853 source_local_ref, /* ID for fragments belonging together */
2854 NULL,
2855 tvb_get_guint8(tvb, variable_pointer1), /* fragment length - to the end */
2856 more); /* More fragments? */
2857
2858 new_tvb = process_reassembled_data(tvb, variable_pointer1 + 1, pinfo,
2859 "Reassembled SCCP", frag_msg,
2860 &sccp_xudt_msg_frag_items, NULL,
2861 tree);
2862
2863 if (frag_msg && frag_msg->next) { /* Reassembled */
2864 col_append_str(pinfo->cinfo, COL_INFO, "(Message reassembled) ");
2865 } else if (more) { /* Not last packet of reassembled message */
2866 col_append_str(pinfo->cinfo, COL_INFO, "(Message fragment) ");
2867 }
2868
2869 pinfo->fragmented = save_fragmented;
2870
2871 if (new_tvb)
2872 dissect_sccp_data_param(new_tvb, pinfo, tree);
2873 }
2874
2875 /* End reassemble */
2876 break;
2877
2878 case SCCP_MSG_TYPE_DT2:
2879 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2880 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2881 offset,
2882 DESTINATION_LOCAL_REFERENCE_LENGTH);
2883
2884 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2885
2886 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2887 PARAMETER_SEQUENCING_SEGMENTING, offset,
2888 SEQUENCING_SEGMENTING_LENGTH);
2889 break;
2890
2891 case SCCP_MSG_TYPE_AK:
2892 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2893 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2894 offset,
2895 DESTINATION_LOCAL_REFERENCE_LENGTH);
2896
2897 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2898
2899 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2900 PARAMETER_RECEIVE_SEQUENCE_NUMBER,
2901 offset, RECEIVE_SEQUENCE_NUMBER_LENGTH);
2902 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2903 PARAMETER_CREDIT, offset, CREDIT_LENGTH);
2904 break;
2905
2906 case SCCP_MSG_TYPE_UDT:
2907 pinfo->sccp_info = sccp_msg = new_ud_msg(pinfo, message_type);
2908
2909 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2910 PARAMETER_CLASS, offset,
2911 PROTOCOL_CLASS_LENGTH);
2912 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
2913 VARIABLE_POINTER(variable_pointer2, hf_sccp_variable_pointer2, POINTER_LENGTH);
2914 VARIABLE_POINTER(variable_pointer3, hf_sccp_variable_pointer3, POINTER_LENGTH);
2915
2916 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2917
2918 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2919 PARAMETER_CALLED_PARTY_ADDRESS,
2920 variable_pointer1);
2921 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2922 PARAMETER_CALLING_PARTY_ADDRESS,
2923 variable_pointer2);
2924
2925 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree, PARAMETER_DATA,
2926 variable_pointer3);
2927 break;
2928
2929 case SCCP_MSG_TYPE_UDTS:
2930 {
2931 gboolean save_in_error_pkt = pinfo->flags.in_error_pkt;
2932 pinfo->flags.in_error_pkt = TRUE;
2933
2934 pinfo->sccp_info = sccp_msg = new_ud_msg(pinfo, message_type);
2935
2936 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2937 PARAMETER_RETURN_CAUSE, offset,
2938 RETURN_CAUSE_LENGTH);
2939
2940 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
2941 VARIABLE_POINTER(variable_pointer2, hf_sccp_variable_pointer2, POINTER_LENGTH);
2942 VARIABLE_POINTER(variable_pointer3, hf_sccp_variable_pointer3, POINTER_LENGTH);
2943
2944 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2945
2946 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2947 PARAMETER_CALLED_PARTY_ADDRESS,
2948 variable_pointer1);
2949
2950 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
2951 PARAMETER_CALLING_PARTY_ADDRESS,
2952 variable_pointer2);
2953
2954 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree, PARAMETER_DATA,
2955 variable_pointer3);
2956 pinfo->flags.in_error_pkt = save_in_error_pkt;
2957 break;
2958 }
2959
2960 case SCCP_MSG_TYPE_ED:
2961 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2962 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2963 offset,
2964 DESTINATION_LOCAL_REFERENCE_LENGTH);
2965
2966 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2967
2968 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
2969
2970 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree, PARAMETER_DATA,
2971 variable_pointer1);
2972 break;
2973
2974 case SCCP_MSG_TYPE_EA:
2975 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2976 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2977 offset,
2978 DESTINATION_LOCAL_REFERENCE_LENGTH);
2979 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2980 break;
2981
2982 case SCCP_MSG_TYPE_RSR:
2983 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2984 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2985 offset,
2986 DESTINATION_LOCAL_REFERENCE_LENGTH);
2987 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2988 PARAMETER_SOURCE_LOCAL_REFERENCE,
2989 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
2990 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2991 PARAMETER_RESET_CAUSE, offset,
2992 RESET_CAUSE_LENGTH);
2993 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
2994 break;
2995
2996 case SCCP_MSG_TYPE_RSC:
2997 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
2998 PARAMETER_DESTINATION_LOCAL_REFERENCE,
2999 offset,
3000 DESTINATION_LOCAL_REFERENCE_LENGTH);
3001 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3002 PARAMETER_SOURCE_LOCAL_REFERENCE,
3003 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
3004 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3005 break;
3006
3007 case SCCP_MSG_TYPE_ERR:
3008 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3009 PARAMETER_DESTINATION_LOCAL_REFERENCE,
3010 offset,
3011 DESTINATION_LOCAL_REFERENCE_LENGTH);
3012 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3013 PARAMETER_ERROR_CAUSE, offset,
3014 ERROR_CAUSE_LENGTH);
3015 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3016 break;
3017
3018 case SCCP_MSG_TYPE_IT:
3019 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3020 PARAMETER_DESTINATION_LOCAL_REFERENCE,
3021 offset,
3022 DESTINATION_LOCAL_REFERENCE_LENGTH);
3023 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3024 PARAMETER_SOURCE_LOCAL_REFERENCE,
3025 offset, SOURCE_LOCAL_REFERENCE_LENGTH);
3026 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3027 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3028 PARAMETER_CLASS, offset,
3029 PROTOCOL_CLASS_LENGTH);
3030 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3031 PARAMETER_SEQUENCING_SEGMENTING,
3032 offset, SEQUENCING_SEGMENTING_LENGTH);
3033 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3034 PARAMETER_CREDIT, offset, CREDIT_LENGTH);
3035 break;
3036
3037 case SCCP_MSG_TYPE_XUDT:
3038 pinfo->sccp_info = sccp_msg = new_ud_msg(pinfo, message_type);
3039 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3040 PARAMETER_CLASS, offset,
3041 PROTOCOL_CLASS_LENGTH);
3042 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3043 PARAMETER_HOP_COUNTER, offset,
3044 HOP_COUNTER_LENGTH);
3045
3046 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
3047 VARIABLE_POINTER(variable_pointer2, hf_sccp_variable_pointer2, POINTER_LENGTH);
3048 VARIABLE_POINTER(variable_pointer3, hf_sccp_variable_pointer3, POINTER_LENGTH);
3049 OPTIONAL_POINTER(POINTER_LENGTH);
3050
3051 /* Optional parameters are Segmentation and Importance
3052 * NOTE 2 - Segmentation Should not be present in case of a single XUDT
3053 * message.
3054 */
3055
3056 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3057
3058 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3059 PARAMETER_CALLED_PARTY_ADDRESS,
3060 variable_pointer1);
3061 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3062 PARAMETER_CALLING_PARTY_ADDRESS,
3063 variable_pointer2);
3064
3065 if (tvb_get_guint8(tvb, optional_pointer) == PARAMETER_SEGMENTATION) {
3066 if (!sccp_xudt_desegment) {
3067 proto_tree_add_text(sccp_tree, tvb, variable_pointer3, tvb_get_guint8(tvb, variable_pointer3)+1, "Segmented Data");
3068 } else {
3069 guint8 octet;
3070 gboolean more_frag = TRUE;
3071
3072 /* Get the first octet of parameter Segmentation, Ch 3.17 in Q.713
3073 * Bit 8 of octet 1 is used for First segment indication
3074 * Bit 7 of octet 1 is used to keep in the message in sequence
3075 * delivery option required by the SCCP user
3076 * Bits 6 and 5 in octet 1 are spare bits.
3077 * Bits 4-1 of octet 1 are used to indicate the number of
3078 * remaining segments.
3079 * The values 0000 to 1111 are possible; the value 0000 indicates
3080 * the last segment.
3081 */
3082 octet = tvb_get_guint8(tvb, optional_pointer+2);
3083 source_local_ref = tvb_get_letoh24(tvb, optional_pointer+3);
3084
3085 if ((octet & 0x0f) == 0)
3086 more_frag = FALSE;
3087
3088 save_fragmented = pinfo->fragmented;
3089 pinfo->fragmented = TRUE;
3090 frag_msg = fragment_add_seq_next(&sccp_xudt_msg_reassembly_table,
3091 tvb, variable_pointer3 + 1,
3092 pinfo,
3093 source_local_ref, /* ID for fragments belonging together */
3094 NULL,
3095 tvb_get_guint8(tvb, variable_pointer3), /* fragment length - to the end */
3096 more_frag); /* More fragments? */
3097
3098 if ((octet & 0x80) == 0x80) /*First segment, set number of segments*/
3099 fragment_set_tot_len(&sccp_xudt_msg_reassembly_table,
3100 pinfo, source_local_ref, NULL, (octet & 0xf));
3101
3102 new_tvb = process_reassembled_data(tvb, variable_pointer3 + 1,
3103 pinfo, "Reassembled SCCP",
3104 frag_msg,
3105 &sccp_xudt_msg_frag_items,
3106 NULL, tree);
3107
3108 if (frag_msg) { /* Reassembled */
3109 col_append_str(pinfo->cinfo, COL_INFO,"(Message reassembled) ");
3110 } else { /* Not last packet of reassembled message */
3111 col_append_str(pinfo->cinfo, COL_INFO,"(Message fragment) ");
3112 }
3113
3114 pinfo->fragmented = save_fragmented;
3115
3116 if (new_tvb)
3117 dissect_sccp_data_param(new_tvb, pinfo, tree);
3118 }
3119 } else {
3120 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3121 PARAMETER_DATA, variable_pointer3);
3122 }
3123 break;
3124
3125 case SCCP_MSG_TYPE_XUDTS:
3126 {
3127 gboolean save_in_error_pkt = pinfo->flags.in_error_pkt;
3128 pinfo->flags.in_error_pkt = TRUE;
3129
3130 pinfo->sccp_info = sccp_msg = new_ud_msg(pinfo, message_type);
3131 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3132 PARAMETER_RETURN_CAUSE, offset,
3133 RETURN_CAUSE_LENGTH);
3134 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3135 PARAMETER_HOP_COUNTER, offset,
3136 HOP_COUNTER_LENGTH);
3137
3138 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH);
3139 VARIABLE_POINTER(variable_pointer2, hf_sccp_variable_pointer2, POINTER_LENGTH);
3140 VARIABLE_POINTER(variable_pointer3, hf_sccp_variable_pointer3, POINTER_LENGTH);
3141 OPTIONAL_POINTER(POINTER_LENGTH);
3142
3143 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3144
3145 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3146 PARAMETER_CALLED_PARTY_ADDRESS,
3147 variable_pointer1);
3148 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3149 PARAMETER_CALLING_PARTY_ADDRESS,
3150 variable_pointer2);
3151
3152 if (tvb_get_guint8(tvb, optional_pointer) == PARAMETER_SEGMENTATION) {
3153 if (!sccp_xudt_desegment) {
3154 proto_tree_add_text(sccp_tree, tvb, variable_pointer3, tvb_get_guint8(tvb, variable_pointer3)+1, "Segmented Data");
3155
3156 } else {
3157 guint8 octet;
3158 gboolean more_frag = TRUE;
3159
3160
3161 /* Get the first octet of parameter Segmentation, Ch 3.17 in Q.713
3162 * Bit 8 of octet 1 is used for First segment indication
3163 * Bit 7 of octet 1 is used to keep in the message in sequence
3164 * delivery option required by the SCCP user
3165 * Bits 6 and 5 in octet 1 are spare bits.
3166 * Bits 4-1 of octet 1 are used to indicate the number of
3167 * remaining segments.
3168 * The values 0000 to 1111 are possible; the value 0000 indicates
3169 * the last segment.
3170 */
3171 octet = tvb_get_guint8(tvb, optional_pointer+2);
3172 source_local_ref = tvb_get_letoh24(tvb, optional_pointer+3);
3173
3174 if ((octet & 0x0f) == 0)
3175 more_frag = FALSE;
3176
3177 save_fragmented = pinfo->fragmented;
3178 pinfo->fragmented = TRUE;
3179 frag_msg = fragment_add_seq_next(&sccp_xudt_msg_reassembly_table,
3180 tvb, variable_pointer3 + 1,
3181 pinfo,
3182 source_local_ref, /* ID for fragments belonging together */
3183 NULL,
3184 tvb_get_guint8(tvb, variable_pointer3), /* fragment length - to the end */
3185 more_frag); /* More fragments? */
3186
3187 if ((octet & 0x80) == 0x80) /*First segment, set number of segments*/
3188 fragment_set_tot_len(&sccp_xudt_msg_reassembly_table,
3189 pinfo, source_local_ref, NULL, (octet & 0xf));
3190
3191 new_tvb = process_reassembled_data(tvb, variable_pointer3 + 1,
3192 pinfo, "Reassembled SCCP",
3193 frag_msg,
3194 &sccp_xudt_msg_frag_items,
3195 NULL, tree);
3196
3197 if (frag_msg) { /* Reassembled */
3198 col_append_str(pinfo->cinfo, COL_INFO, "(Message reassembled) ");
3199 } else { /* Not last packet of reassembled message */
3200 col_append_str(pinfo->cinfo, COL_INFO, "(Message fragment) ");
3201 }
3202
3203 pinfo->fragmented = save_fragmented;
3204
3205 if (new_tvb)
3206 dissect_sccp_data_param(new_tvb, pinfo, tree);
3207 }
3208 } else {
3209 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3210 PARAMETER_DATA, variable_pointer3);
3211 }
3212 pinfo->flags.in_error_pkt = save_in_error_pkt;
3213 break;
3214 }
3215 case SCCP_MSG_TYPE_LUDT:
3216 pinfo->sccp_info = sccp_msg = new_ud_msg(pinfo, message_type);
3217
3218 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3219 PARAMETER_CLASS, offset,
3220 PROTOCOL_CLASS_LENGTH);
3221 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3222 PARAMETER_HOP_COUNTER, offset,
3223 HOP_COUNTER_LENGTH);
3224
3225 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH_LONG);
3226 VARIABLE_POINTER(variable_pointer2, hf_sccp_variable_pointer2, POINTER_LENGTH_LONG);
3227 VARIABLE_POINTER(variable_pointer3, hf_sccp_variable_pointer3, POINTER_LENGTH_LONG);
3228 OPTIONAL_POINTER(POINTER_LENGTH_LONG);
3229
3230 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3231
3232 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3233 PARAMETER_CALLED_PARTY_ADDRESS,
3234 variable_pointer1);
3235 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3236 PARAMETER_CALLING_PARTY_ADDRESS,
3237 variable_pointer2);
3238 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3239 PARAMETER_LONG_DATA, variable_pointer3);
3240 break;
3241
3242 case SCCP_MSG_TYPE_LUDTS:
3243 pinfo->sccp_info = sccp_msg = new_ud_msg(pinfo, message_type);
3244 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3245 PARAMETER_RETURN_CAUSE, offset,
3246 RETURN_CAUSE_LENGTH);
3247 offset += dissect_sccp_parameter(tvb, pinfo, sccp_tree, tree,
3248 PARAMETER_HOP_COUNTER, offset,
3249 HOP_COUNTER_LENGTH);
3250
3251 VARIABLE_POINTER(variable_pointer1, hf_sccp_variable_pointer1, POINTER_LENGTH_LONG);
3252 VARIABLE_POINTER(variable_pointer2, hf_sccp_variable_pointer2, POINTER_LENGTH_LONG);
3253 VARIABLE_POINTER(variable_pointer3, hf_sccp_variable_pointer3, POINTER_LENGTH_LONG);
3254 OPTIONAL_POINTER(POINTER_LENGTH_LONG);
3255
3256 assoc = get_sccp_assoc(pinfo, msg_offset, slr, dlr, message_type);
3257
3258 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3259 PARAMETER_CALLED_PARTY_ADDRESS,
3260 variable_pointer1);
3261 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3262 PARAMETER_CALLING_PARTY_ADDRESS,
3263 variable_pointer2);
3264 dissect_sccp_variable_parameter(tvb, pinfo, sccp_tree, tree,
3265 PARAMETER_LONG_DATA, variable_pointer3);
3266 break;
3267
3268 default:
3269 dissect_sccp_unknown_message(tvb, sccp_tree);
3270 }
3271
3272 if (orig_opt_ptr)
3273 dissect_sccp_optional_parameters(tvb, pinfo, sccp_tree, tree,
3274 optional_pointer);
3275
3276 if (trace_sccp && assoc && (assoc != &no_assoc)) {
3277 proto_item *pi = proto_tree_add_uint(sccp_tree, hf_sccp_assoc_id, tvb, 0, 0, assoc->id);
3278 proto_tree *pt = proto_item_add_subtree(pi, ett_sccp_assoc);
3279 PROTO_ITEM_SET_GENERATED(pi);
3280 if (assoc->msgs) {
3281 sccp_msg_info_t *m;
3282 for(m = assoc->msgs; m ; m = m->data.co.next) {
3283 pi = proto_tree_add_uint(pt, hf_sccp_assoc_msg, tvb, 0, 0, m->framenum);
3284
3285 if (assoc->payload != SCCP_PLOAD_NONE)
3286 proto_item_append_text(pi," %s", val_to_str(assoc->payload, assoc_protos, "Unknown: %d"));
3287
3288 if (m->data.co.label)
3289 proto_item_append_text(pi," %s", m->data.co.label);
3290
3291 if ((m->framenum == PINFO_FD_NUM(pinfo)) && (m->offset == msg_offset) ) {
3292 tap_queue_packet(sccp_tap, pinfo, m);
3293 proto_item_append_text(pi," (current)");
3294 }
3295 PROTO_ITEM_SET_GENERATED(pi);
3296 }
3297 }
3298 }
3299
3300 return offset;
3301 }
3302
3303 static void
3304 dissect_sccp(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree)
3305 {
3306 proto_item *sccp_item = NULL;
3307 proto_tree *sccp_tree = NULL;
3308 const mtp3_addr_pc_t *mtp3_addr_p;
3309
3310 if ((pinfo->src.type == AT_SS7PC) &&
3311 ((mtp3_addr_p = (const mtp3_addr_pc_t *)pinfo->src.data)->type <= CHINESE_ITU_STANDARD)) {
3312 /*
3313 * Allow a protocol beneath to specify how the SCCP layer should be
3314 * dissected.
3315 *
3316 * It is possible to have multiple sets of SCCP traffic some of which is
3317 * ITU and some of which is ANSI.
3318 * An example is A-interface traffic having ANSI MTP3/ANSI SCCP/3GPP2 IOS
3319 * and at the same time ITU MTP3/ITU SCCP/ANSI TCAP/ANSI MAP.
3320 */
3321 decode_mtp3_standard = mtp3_addr_p->type;
3322 } else {
3323 decode_mtp3_standard = (Standard_Type)mtp3_standard;
3324 }
3325
3326 /* Make entry in the Protocol column on summary display */
3327 switch (decode_mtp3_standard) {
3328 case ITU_STANDARD:
3329 col_set_str(pinfo->cinfo, COL_PROTOCOL, "SCCP (Int. ITU)");
3330 break;
3331 case ANSI_STANDARD:
3332 col_set_str(pinfo->cinfo, COL_PROTOCOL, "SCCP (ANSI)");
3333 break;
3334 case CHINESE_ITU_STANDARD:
3335 col_set_str(pinfo->cinfo, COL_PROTOCOL, "SCCP (Chin. ITU)");
3336 break;
3337 case JAPAN_STANDARD:
3338 col_set_str(pinfo->cinfo, COL_PROTOCOL, "SCCP (Japan)");
3339 break;
3340 };
3341
3342 /* In the interest of speed, if "tree" is NULL, don't do any work not
3343 necessary to generate protocol tree items. */
3344 if (tree) {
3345 /* create the sccp protocol tree */
3346 sccp_item = proto_tree_add_item(tree, proto_sccp, tvb, 0, -1, ENC_NA);
3347 sccp_tree = proto_item_add_subtree(sccp_item, ett_sccp);
3348 }
3349
3350 /* Set whether message is UPLINK, DOWNLINK, or of UNKNOWN direction */
3351
3352 if (pinfo->src.type == AT_SS7PC) {
3353 /*
3354 * XXX - we assume that the "data" pointers of the source and destination
3355 * addresses are set to point to "mtp3_addr_pc_t" structures, so that
3356 * we can safely cast them.
3357 */
3358 mtp3_addr_p = (const mtp3_addr_pc_t *)pinfo->src.data;
3359
3360 if (sccp_source_pc_global == mtp3_addr_p->pc) {
3361 pinfo->p2p_dir = P2P_DIR_SENT;
3362 } else {
3363 /* assuming if src was SS7 PC then dst will be too */
3364 mtp3_addr_p = (const mtp3_addr_pc_t *)pinfo->dst.data;
3365
3366 if (sccp_source_pc_global == mtp3_addr_p->pc)
3367 {
3368 pinfo->p2p_dir = P2P_DIR_RECV;
3369 } else {
3370 pinfo->p2p_dir = P2P_DIR_UNKNOWN;
3371 }
3372 }
3373 }
3374
3375 /* dissect the message */
3376 dissect_sccp_message(tvb, pinfo, sccp_tree, tree);
3377
3378 }
3379
3380 /*** SccpUsers Table **/
3381
3382 static struct _sccp_ul {
3383 guint id;
3384 gboolean uses_tcap;
3385 dissector_handle_t *handlep;
3386 } user_list[] = {
3387
3388 {SCCP_USER_DATA, FALSE, &data_handle},
3389 {SCCP_USER_TCAP, FALSE, &tcap_handle},
3390 {SCCP_USER_RANAP, FALSE, &ranap_handle},
3391 {SCCP_USER_BSSAP, FALSE, &bssap_handle},
3392 {SCCP_USER_GSMMAP, TRUE, &gsmmap_handle},
3393 {SCCP_USER_CAMEL, TRUE, &camel_handle},
3394 {SCCP_USER_INAP, TRUE, &inap_handle},
3395 {0, FALSE, NULL}
3396 };
3397
3398 static void
3399 sccp_users_update_cb(void *r, const char **err)
3400 {
3401 sccp_user_t *u = (sccp_user_t *)r;
3402 struct _sccp_ul *c;
3403 range_t *empty;
3404
3405 empty = range_empty();
3406 if (ranges_are_equal(u->called_pc, empty)) {
3407 *err = g_strdup("Must specify a PC");
3408 return;
3409 }
3410
3411 if (ranges_are_equal(u->called_ssn, empty)) {
3412 *err = g_strdup("Must specify an SSN");
3413 return;
3414 }
3415
3416 for (c=user_list; c->handlep; c++) {
3417 if (c->id == u->user) {
3418 u->uses_tcap = c->uses_tcap;
3419 u->handlep = c->handlep;
3420 return;
3421 }
3422 }
3423
3424 u->uses_tcap = FALSE;
3425 u->handlep = &data_handle;
3426 }
3427
3428 static void *
3429 sccp_users_copy_cb(void *n, const void *o, size_t siz _U_)
3430 {
3431 const sccp_user_t *u = (const sccp_user_t *)o;
3432 sccp_user_t *un = (sccp_user_t *)n;
3433
3434 un->ni = u->ni;
3435 un->user = u->user;
3436 un->uses_tcap = u->uses_tcap;
3437 un->handlep = u->handlep;
3438
3439 if (u->called_pc)
3440 un->called_pc = range_copy(u->called_pc);
3441 if (u->called_ssn)
3442 un->called_ssn = range_copy(u->called_ssn);
3443
3444 return n;
3445 }
3446
3447 static void
3448 sccp_users_free_cb(void *r)
3449 {
3450 sccp_user_t *u = (sccp_user_t *)r;
3451 if (u->called_pc) g_free(u->called_pc);
3452 if (u->called_ssn) g_free(u->called_ssn);
3453 }
3454
3455
3456 UAT_DEC_CB_DEF(sccp_users, ni, sccp_user_t)
3457 UAT_RANGE_CB_DEF(sccp_users, called_pc, sccp_user_t)
3458 UAT_RANGE_CB_DEF(sccp_users, called_ssn, sccp_user_t)
3459 UAT_VS_DEF(sccp_users, user, sccp_user_t, guint, SCCP_USER_DATA, "Data")
3460
3461 /** End SccpUsersTable **/
3462
3463
3464 static void
3465 init_sccp(void)
3466 {
3467 next_assoc_id = 1;
3468 reassembly_table_init (&sccp_xudt_msg_reassembly_table,
3469 &addresses_reassembly_table_functions);
3470 }
3471
3472 /* Register the protocol with Wireshark */
3473 void
3474 proto_register_sccp(void)
3475 {
3476 /* Setup list of header fields */
3477 static hf_register_info hf[] = {
3478 { &hf_sccp_message_type,
3479 { "Message Type", "sccp.message_type",
3480 FT_UINT8, BASE_HEX, VALS(sccp_message_type_values), 0x0,
3481 NULL, HFILL}
3482 },
3483 { &hf_sccp_variable_pointer1,
3484 { "Pointer to first Mandatory Variable parameter", "sccp.variable_pointer1",
3485 FT_UINT16, BASE_DEC, NULL, 0x0,
3486 NULL, HFILL}
3487 },
3488 { &hf_sccp_variable_pointer2,
3489 { "Pointer to second Mandatory Variable parameter", "sccp.variable_pointer2",
3490 FT_UINT16, BASE_DEC, NULL, 0x0,
3491 NULL, HFILL}
3492 },
3493 { &hf_sccp_variable_pointer3,
3494 { "Pointer to third Mandatory Variable parameter", "sccp.variable_pointer3",
3495 FT_UINT16, BASE_DEC, NULL, 0x0,
3496 NULL, HFILL}
3497 },
3498 { &hf_sccp_optional_pointer,
3499 { "Pointer to Optional parameter", "sccp.optional_pointer",
3500 FT_UINT16, BASE_DEC, NULL, 0x0,
3501 NULL, HFILL}
3502 },
3503 { &hf_sccp_param_length,
3504 { "Variable parameter length", "sccp.parameter_length",
3505 FT_UINT16, BASE_DEC, NULL, 0x0,
3506 NULL, HFILL}
3507 },
3508 { &hf_sccp_ssn,
3509 { "Called or Calling SubSystem Number", "sccp.ssn",
3510 FT_UINT8, BASE_DEC, VALS(sccp_ssn_values), 0x0,
3511 NULL, HFILL}
3512 },
3513 { &hf_sccp_gt_digits,
3514 { "Called or Calling GT Digits", "sccp.digits",
3515 FT_STRING, BASE_NONE, NULL, 0x0,
3516 NULL, HFILL }
3517 },
3518 { &hf_sccp_called_ansi_national_indicator,
3519 { "National Indicator", "sccp.called.ni",
3520 FT_UINT8, BASE_HEX, VALS(sccp_ansi_national_indicator_values), ANSI_NATIONAL_MASK,
3521 NULL, HFILL}
3522 },
3523 { &hf_sccp_called_itu_natl_use_bit,
3524 { "Reserved for national use", "sccp.called.reserved",
3525 FT_UINT8, BASE_HEX, NULL, ITU_RESERVED_MASK,
3526 NULL, HFILL}
3527 },
3528 { &hf_sccp_called_routing_indicator,
3529 { "Routing Indicator", "sccp.called.ri",
3530 FT_UINT8, BASE_HEX, VALS(sccp_routing_indicator_values), ROUTING_INDICATOR_MASK,
3531 NULL, HFILL}
3532 },
3533 { &hf_sccp_called_itu_global_title_indicator,
3534 { "Global Title Indicator", "sccp.called.gti",
3535 FT_UINT8, BASE_HEX, VALS(sccp_itu_global_title_indicator_values), GTI_MASK,
3536 NULL, HFILL}
3537 },
3538 { &hf_sccp_called_ansi_global_title_indicator,
3539 { "Global Title Indicator", "sccp.called.gti",
3540 FT_UINT8, BASE_HEX, VALS(sccp_ansi_global_title_indicator_values), GTI_MASK,
3541 NULL, HFILL}
3542 },
3543 { &hf_sccp_called_itu_ssn_indicator,
3544 { "SubSystem Number Indicator", "sccp.called.ssni",
3545 FT_UINT8, BASE_HEX, VALS(sccp_ai_ssni_values), ITU_SSN_INDICATOR_MASK,
3546 NULL, HFILL}
3547 },
3548 { &hf_sccp_called_itu_point_code_indicator,
3549 { "Point Code Indicator", "sccp.called.pci",
3550 FT_UINT8, BASE_HEX, VALS(sccp_ai_pci_values), ITU_PC_INDICATOR_MASK,
3551 NULL, HFILL}
3552 },
3553 { &hf_sccp_called_ansi_ssn_indicator,
3554 { "SubSystem Number Indicator", "sccp.called.ssni",
3555 FT_UINT8, BASE_HEX, VALS(sccp_ai_ssni_values), ANSI_SSN_INDICATOR_MASK,
3556 NULL, HFILL}
3557 },
3558 { &hf_sccp_called_ansi_point_code_indicator,
3559 { "Point Code Indicator", "sccp.called.pci",
3560 FT_UINT8, BASE_HEX, VALS(sccp_ai_pci_values), ANSI_PC_INDICATOR_MASK,
3561 NULL, HFILL}
3562 },
3563 { &hf_sccp_called_ssn,
3564 { "SubSystem Number", "sccp.called.ssn",
3565 FT_UINT8, BASE_DEC, VALS(sccp_ssn_values), 0x0,
3566 NULL, HFILL}
3567 },
3568 { &hf_sccp_called_itu_pc,
3569 { "PC", "sccp.called.pc",
3570 FT_UINT16, BASE_DEC, NULL, ITU_PC_MASK,
3571 NULL, HFILL}
3572 },
3573 { &hf_sccp_called_ansi_pc,
3574 { "PC", "sccp.called.ansi_pc",
3575 FT_STRING, BASE_NONE, NULL, 0x0,
3576 NULL, HFILL}
3577 },
3578 { &hf_sccp_called_chinese_pc,
3579 { "PC", "sccp.called.chinese_pc",
3580 FT_STRING, BASE_NONE, NULL, 0x0,
3581 NULL, HFILL}
3582 },
3583 { &hf_sccp_called_japan_pc,
3584 { "PC", "sccp.called.pc",
3585 FT_UINT16, BASE_DEC, NULL, 0x0,
3586 NULL, HFILL}
3587 },
3588 { &hf_sccp_called_pc_network,
3589 { "PC Network", "sccp.called.network",
3590 FT_UINT24, BASE_DEC, NULL, ANSI_NETWORK_MASK,
3591 NULL, HFILL }
3592 },
3593 { &hf_sccp_called_pc_cluster,
3594 { "PC Cluster", "sccp.called.cluster",
3595 FT_UINT24, BASE_DEC, NULL, ANSI_CLUSTER_MASK,
3596 NULL, HFILL }
3597 },
3598 { &hf_sccp_called_pc_member,
3599 { "PC Member", "sccp.called.member",
3600 FT_UINT24, BASE_DEC, NULL, ANSI_MEMBER_MASK,
3601 NULL, HFILL }
3602 },
3603 { &hf_sccp_called_gt_nai,
3604 { "Nature of Address Indicator", "sccp.called.nai",
3605 FT_UINT8, BASE_HEX, VALS(sccp_nai_values), GT_NAI_MASK,
3606 NULL, HFILL }
3607 },
3608 { &hf_sccp_called_gt_oe,
3609 { "Odd/Even Indicator", "sccp.called.oe",
3610 FT_UINT8, BASE_HEX, VALS(sccp_oe_values), GT_OE_MASK,
3611 NULL, HFILL }
3612 },
3613 { &hf_sccp_called_gt_tt,
3614 { "Translation Type", "sccp.called.tt",
3615 FT_UINT8, BASE_HEX, NULL, 0x0,
3616 NULL, HFILL }
3617 },
3618 { &hf_sccp_called_gt_np,
3619 { "Numbering Plan", "sccp.called.np",
3620 FT_UINT8, BASE_HEX, VALS(sccp_np_values), GT_NP_MASK,
3621 NULL, HFILL }
3622 },
3623 { &hf_sccp_called_gt_es,
3624 { "Encoding Scheme", "sccp.called.es",
3625 FT_UINT8, BASE_HEX, VALS(sccp_es_values), GT_ES_MASK,
3626 NULL, HFILL }
3627 },
3628 { &hf_sccp_called_gt_digits,
3629 { "Called Party Digits", "sccp.called.digits",
3630 FT_STRING, BASE_NONE, NULL, 0x0,
3631 NULL, HFILL }
3632 },
3633 { &hf_sccp_called_gt_digits_length,
3634 { "Number of Called Party Digits", "sccp.called.digits.length",
3635 FT_UINT8, BASE_DEC, NULL, 0x0,
3636 NULL, HFILL }
3637 },
3638 { &hf_sccp_calling_ansi_national_indicator,
3639 { "National Indicator", "sccp.calling.ni",
3640 FT_UINT8, BASE_HEX, VALS(sccp_ansi_national_indicator_values), ANSI_NATIONAL_MASK,
3641 NULL, HFILL}
3642 },
3643 { &hf_sccp_calling_itu_natl_use_bit,
3644 { "Reserved for national use", "sccp.calling.reserved",
3645 FT_UINT8, BASE_HEX, NULL, ITU_RESERVED_MASK,
3646 NULL, HFILL}
3647 },
3648 { &hf_sccp_calling_routing_indicator,
3649 { "Routing Indicator", "sccp.calling.ri",
3650 FT_UINT8, BASE_HEX, VALS(sccp_routing_indicator_values), ROUTING_INDICATOR_MASK,
3651 NULL, HFILL}
3652 },
3653 { &hf_sccp_calling_itu_global_title_indicator,
3654 { "Global Title Indicator", "sccp.calling.gti",
3655 FT_UINT8, BASE_HEX, VALS(sccp_itu_global_title_indicator_values), GTI_MASK,
3656 NULL, HFILL}
3657 },
3658 { &hf_sccp_calling_ansi_global_title_indicator,
3659 { "Global Title Indicator", "sccp.calling.gti",
3660 FT_UINT8, BASE_HEX, VALS(sccp_ansi_global_title_indicator_values), GTI_MASK,
3661 NULL, HFILL}
3662 },
3663 { &hf_sccp_calling_itu_ssn_indicator,
3664 { "SubSystem Number Indicator", "sccp.calling.ssni",
3665 FT_UINT8, BASE_HEX, VALS(sccp_ai_ssni_values), ITU_SSN_INDICATOR_MASK,
3666 NULL, HFILL}
3667 },
3668 { &hf_sccp_calling_itu_point_code_indicator,
3669 { "Point Code Indicator", "sccp.calling.pci",
3670 FT_UINT8, BASE_HEX, VALS(sccp_ai_pci_values), ITU_PC_INDICATOR_MASK,
3671 NULL, HFILL}
3672 },
3673 { &hf_sccp_calling_ansi_ssn_indicator,
3674 { "SubSystem Number Indicator", "sccp.calling.ssni",
3675 FT_UINT8, BASE_HEX, VALS(sccp_ai_ssni_values), ANSI_SSN_INDICATOR_MASK,
3676 NULL, HFILL}
3677 },
3678 { &hf_sccp_calling_ansi_point_code_indicator,
3679 { "Point Code Indicator", "sccp.calling.pci",
3680 FT_UINT8, BASE_HEX, VALS(sccp_ai_pci_values), ANSI_PC_INDICATOR_MASK,
3681 NULL, HFILL}
3682 },
3683 { &hf_sccp_calling_ssn,
3684 { "SubSystem Number", "sccp.calling.ssn",
3685 FT_UINT8, BASE_DEC, VALS(sccp_ssn_values), 0x0,
3686 NULL, HFILL}
3687 },
3688 { &hf_sccp_calling_itu_pc,
3689 { "PC", "sccp.calling.pc",
3690 FT_UINT16, BASE_DEC, NULL, ITU_PC_MASK,
3691 NULL, HFILL}
3692 },
3693 { &hf_sccp_calling_ansi_pc,
3694 { "PC", "sccp.calling.ansi_pc",
3695 FT_STRING, BASE_NONE, NULL, 0x0,
3696 NULL, HFILL}
3697 },
3698 { &hf_sccp_calling_chinese_pc,
3699 { "PC", "sccp.calling.chinese_pc",
3700 FT_STRING, BASE_NONE, NULL, 0x0,
3701 NULL, HFILL}
3702 },
3703 { &hf_sccp_calling_japan_pc,
3704 { "PC", "sccp.calling.pc",
3705 FT_UINT16, BASE_DEC, NULL, 0x0,
3706 NULL, HFILL}
3707 },
3708 { &hf_sccp_calling_pc_network,
3709 { "PC Network", "sccp.calling.network",
3710 FT_UINT24, BASE_DEC, NULL, ANSI_NETWORK_MASK,
3711 NULL, HFILL }
3712 },
3713 { &hf_sccp_calling_pc_cluster,
3714 { "PC Cluster", "sccp.calling.cluster",
3715 FT_UINT24, BASE_DEC, NULL, ANSI_CLUSTER_MASK,
3716 NULL, HFILL }
3717 },
3718 { &hf_sccp_calling_pc_member,
3719 { "PC Member", "sccp.calling.member",
3720 FT_UINT24, BASE_DEC, NULL, ANSI_MEMBER_MASK,
3721 NULL, HFILL }
3722 },
3723 { &hf_sccp_calling_gt_nai,
3724 { "Nature of Address Indicator", "sccp.calling.nai",
3725 FT_UINT8, BASE_HEX, VALS(sccp_nai_values), GT_NAI_MASK,
3726 NULL, HFILL }
3727 },
3728 { &hf_sccp_calling_gt_oe,
3729 { "Odd/Even Indicator", "sccp.calling.oe",
3730 FT_UINT8, BASE_HEX, VALS(sccp_oe_values), GT_OE_MASK,
3731 NULL, HFILL }
3732 },
3733 { &hf_sccp_calling_gt_tt,
3734 { "Translation Type", "sccp.calling.tt",
3735 FT_UINT8, BASE_HEX, NULL, 0x0,
3736 NULL, HFILL }
3737 },
3738 { &hf_sccp_calling_gt_np,
3739 { "Numbering Plan", "sccp.calling.np",
3740 FT_UINT8, BASE_HEX, VALS(sccp_np_values), GT_NP_MASK,
3741 NULL, HFILL }
3742 },
3743 { &hf_sccp_calling_gt_es,
3744 { "Encoding Scheme", "sccp.calling.es",
3745 FT_UINT8, BASE_HEX, VALS(sccp_es_values), GT_ES_MASK,
3746 NULL, HFILL }
3747 },
3748 { &hf_sccp_calling_gt_digits,
3749 { "Calling Party Digits", "sccp.calling.digits",
3750 FT_STRING, BASE_NONE, NULL, 0x0,
3751 NULL, HFILL }
3752 },
3753 { &hf_sccp_calling_gt_digits_length,
3754 { "Number of Calling Party Digits", "sccp.calling.digits.length",
3755 FT_UINT8, BASE_DEC, NULL, 0x0,
3756 NULL, HFILL }
3757 },
3758 { &hf_sccp_dlr,
3759 { "Destination Local Reference", "sccp.dlr",
3760 FT_UINT24, BASE_HEX, NULL, 0x0,
3761 NULL, HFILL}
3762 },
3763 { &hf_sccp_slr,
3764 { "Source Local Reference", "sccp.slr",
3765 FT_UINT24, BASE_HEX, NULL, 0x0,
3766 NULL, HFILL}
3767 },
3768 { &hf_sccp_lr,
3769 { "Local Reference", "sccp.lr",
3770 FT_UINT24, BASE_HEX, NULL, 0x0,
3771 NULL, HFILL}
3772 },
3773 { &hf_sccp_class,
3774 { "Class", "sccp.class",
3775 FT_UINT8, BASE_HEX, NULL, CLASS_CLASS_MASK,
3776 NULL, HFILL}
3777 },
3778 { &hf_sccp_handling,
3779 { "Message handling", "sccp.handling",
3780 FT_UINT8, BASE_HEX, VALS(sccp_class_handling_values), CLASS_SPARE_HANDLING_MASK,
3781 NULL, HFILL}
3782 },
3783 { &hf_sccp_more,
3784 { "More data", "sccp.more",
3785 FT_UINT8, BASE_HEX, VALS(sccp_segmenting_reassembling_values), SEGMENTING_REASSEMBLING_MASK,
3786 NULL, HFILL}
3787 },
3788 { &hf_sccp_rsn,
3789 { "Receive Sequence Number", "sccp.rsn",
3790 FT_UINT8, BASE_HEX, NULL, RSN_MASK,
3791 NULL, HFILL}
3792 },
3793 { &hf_sccp_sequencing_segmenting_ssn,
3794 { "Sequencing Segmenting: Send Sequence Number", "sccp.sequencing_segmenting.ssn",
3795 FT_UINT8, BASE_HEX, NULL, SEND_SEQUENCE_NUMBER_MASK,
3796 NULL, HFILL}
3797 },
3798 { &hf_sccp_sequencing_segmenting_rsn,
3799 { "Sequencing Segmenting: Receive Sequence Number", "sccp.sequencing_segmenting.rsn",
3800 FT_UINT8, BASE_HEX, NULL, RECEIVE_SEQUENCE_NUMBER_MASK,
3801 NULL, HFILL}
3802 },
3803 { &hf_sccp_sequencing_segmenting_more,
3804 { "Sequencing Segmenting: More", "sccp.sequencing_segmenting.more",
3805 FT_UINT8, BASE_HEX, VALS(sccp_segmenting_reassembling_values), SEQUENCING_SEGMENTING_MORE_MASK,
3806 NULL, HFILL}
3807 },
3808 { &hf_sccp_credit,
3809 { "Credit", "sccp.credit",
3810 FT_UINT8, BASE_HEX, NULL, 0x0,
3811 NULL, HFILL}
3812 },
3813 { &hf_sccp_release_cause,
3814 { "Release Cause", "sccp.release_cause",
3815 FT_UINT8, BASE_HEX, VALS(sccp_release_cause_values), 0x0,
3816 NULL, HFILL}
3817 },
3818 { &hf_sccp_return_cause,
3819 { "Return Cause", "sccp.return_cause",
3820 FT_UINT8, BASE_HEX, VALS(sccp_return_cause_values), 0x0,
3821 NULL, HFILL}
3822 },
3823 { &hf_sccp_reset_cause,
3824 { "Reset Cause", "sccp.reset_cause",
3825 FT_UINT8, BASE_HEX, VALS(sccp_reset_cause_values), 0x0,
3826 NULL, HFILL}
3827 },
3828 { &hf_sccp_error_cause,
3829 { "Error Cause", "sccp.error_cause",
3830 FT_UINT8, BASE_HEX, VALS(sccp_error_cause_values), 0x0,
3831 NULL, HFILL}
3832 },
3833 { &hf_sccp_refusal_cause,
3834 { "Refusal Cause", "sccp.refusal_cause",
3835 FT_UINT8, BASE_HEX, VALS(sccp_refusal_cause_values), 0x0,
3836 NULL, HFILL}
3837 },
3838 { &hf_sccp_segmentation_first,
3839 { "Segmentation: First", "sccp.segmentation.first",
3840 FT_UINT8, BASE_HEX, VALS(sccp_segmentation_first_segment_values), SEGMENTATION_FIRST_SEGMENT_MASK,
3841 NULL, HFILL}
3842 },
3843 { &hf_sccp_segmentation_class,
3844 { "Segmentation: Class", "sccp.segmentation.class",
3845 FT_UINT8, BASE_HEX, VALS(sccp_segmentation_class_values), SEGMENTATION_CLASS_MASK,
3846 NULL, HFILL}
3847 },
3848 { &hf_sccp_segmentation_remaining,
3849 { "Segmentation: Remaining", "sccp.segmentation.remaining",
3850 FT_UINT8, BASE_HEX, NULL, SEGMENTATION_REMAINING_MASK,
3851 NULL, HFILL}
3852 },
3853 { &hf_sccp_segmentation_slr,
3854 { "Segmentation: Source Local Reference", "sccp.segmentation.slr",
3855 FT_UINT24, BASE_HEX, NULL, 0x0,
3856 NULL, HFILL}
3857 },
3858 { &hf_sccp_hop_counter,
3859 { "Hop Counter", "sccp.hops",
3860 FT_UINT8, BASE_HEX, NULL, 0x0,
3861 NULL, HFILL}
3862 },
3863 { &hf_sccp_importance,
3864 { "Importance", "sccp.importance",
3865 FT_UINT8, BASE_HEX, NULL, IMPORTANCE_IMPORTANCE_MASK,
3866 NULL, HFILL}
3867 },
3868 /* ISNI is ANSI only */
3869 { &hf_sccp_ansi_isni_mi,
3870 { "ISNI Mark for Identification Indicator", "sccp.isni.mi",
3871 FT_UINT8, BASE_HEX, VALS(sccp_isni_mark_for_id_values), ANSI_ISNI_MI_MASK,
3872 NULL, HFILL}
3873 },
3874 { &hf_sccp_ansi_isni_iri,
3875 { "ISNI Routing Indicator", "sccp.isni.iri",
3876 FT_UINT8, BASE_HEX, VALS(sccp_isni_iri_values), ANSI_ISNI_IRI_MASK,
3877 NULL, HFILL}
3878 },
3879 { &hf_sccp_ansi_isni_ti,
3880 { "ISNI Type Indicator", "sccp.isni.ti",
3881 FT_UINT8, BASE_HEX, VALS(sccp_isni_ti_values), ANSI_ISNI_TI_MASK,
3882 NULL, HFILL}
3883 },
3884 { &hf_sccp_ansi_isni_netspec,
3885 { "ISNI Network Specific (Type 1)", "sccp.isni.netspec",
3886 FT_UINT8, BASE_HEX, NULL, ANSI_ISNI_NETSPEC_MASK,
3887 NULL, HFILL}
3888 },
3889 { &hf_sccp_ansi_isni_counter,
3890 { "ISNI Counter", "sccp.isni.counter",
3891 FT_UINT8, BASE_DEC, NULL, ANSI_ISNI_COUNTER_MASK,
3892 NULL, HFILL}
3893 },
3894 { &hf_sccp_ansi_isni_network,
3895 { "Network ID network", "sccp.isni.network",
3896 FT_UINT8, BASE_DEC, NULL, 0x0,
3897 NULL, HFILL}
3898 },
3899 { &hf_sccp_ansi_isni_cluster,
3900 { "Network ID cluster", "sccp.isni.cluster",
3901 FT_UINT8, BASE_DEC, NULL, 0x0,
3902 NULL, HFILL}
3903 },
3904 {&hf_sccp_xudt_msg_fragments,
3905 { "Message fragments", "sccp.msg.fragments",
3906 FT_NONE, BASE_NONE, NULL, 0x00,
3907 NULL, HFILL }
3908 },
3909 {&hf_sccp_xudt_msg_fragment,
3910 { "Message fragment", "sccp.msg.fragment",
3911 FT_FRAMENUM, BASE_NONE, NULL, 0x00,
3912 NULL, HFILL }
3913 },
3914 {&hf_sccp_xudt_msg_fragment_overlap,
3915 { "Message fragment overlap", "sccp.msg.fragment.overlap",
3916 FT_BOOLEAN, BASE_NONE, NULL, 0x0,
3917 NULL, HFILL }
3918 },
3919 {&hf_sccp_xudt_msg_fragment_overlap_conflicts,
3920 { "Message fragment overlapping with conflicting data", "sccp.msg.fragment.overlap.conflicts",
3921 FT_BOOLEAN, BASE_NONE, NULL, 0x0,
3922 NULL, HFILL }
3923 },
3924 {&hf_sccp_xudt_msg_fragment_multiple_tails,
3925 { "Message has multiple tail fragments", "sccp.msg.fragment.multiple_tails",
3926 FT_BOOLEAN, BASE_NONE, NULL, 0x0,
3927 NULL, HFILL }
3928 },
3929 {&hf_sccp_xudt_msg_fragment_too_long_fragment,
3930 { "Message fragment too long", "sccp.msg.fragment.too_long_fragment",
3931 FT_BOOLEAN, BASE_NONE, NULL, 0x0,
3932 NULL, HFILL }
3933 },
3934 {&hf_sccp_xudt_msg_fragment_error,
3935 { "Message defragmentation error", "sccp.msg.fragment.error",
3936 FT_FRAMENUM, BASE_NONE, NULL, 0x00,
3937 NULL, HFILL }
3938 },
3939 {&hf_sccp_xudt_msg_fragment_count,
3940 { "Message fragment count", "sccp.msg.fragment.count",
3941 FT_UINT32, BASE_DEC, NULL, 0x00,
3942 NULL, HFILL }
3943 },
3944 {&hf_sccp_xudt_msg_reassembled_in,
3945 { "Reassembled in", "sccp.msg.reassembled.in",
3946 FT_FRAMENUM, BASE_NONE, NULL, 0x00,
3947 NULL, HFILL }
3948 },
3949 {&hf_sccp_xudt_msg_reassembled_length,
3950 { "Reassembled SCCP length", "sccp.msg.reassembled.length",
3951 FT_UINT32, BASE_DEC, NULL, 0x00,
3952 NULL, HFILL }
3953 },
3954 { &hf_sccp_assoc_id,
3955 { "Association ID", "sccp.assoc.id",
3956 FT_UINT32, BASE_DEC, NULL, 0x0,
3957 NULL, HFILL}
3958 },
3959 {&hf_sccp_assoc_msg,
3960 { "Message in frame", "sccp.assoc.msg",
3961 FT_FRAMENUM, BASE_NONE, NULL, 0x00,
3962 NULL, HFILL }
3963 },
3964 };
3965
3966 /* Setup protocol subtree array */
3967 static gint *ett[] = {
3968 &ett_sccp,
3969 &ett_sccp_called,
3970 &ett_sccp_called_ai,
3971 &ett_sccp_called_pc,
3972 &ett_sccp_called_gt,
3973 &ett_sccp_called_gt_digits,
3974 &ett_sccp_calling,
3975 &ett_sccp_calling_ai,
3976 &ett_sccp_calling_pc,
3977 &ett_sccp_calling_gt,
3978 &ett_sccp_calling_gt_digits,
3979 &ett_sccp_sequencing_segmenting,
3980 &ett_sccp_segmentation,
3981 &ett_sccp_ansi_isni_routing_control,
3982 &ett_sccp_xudt_msg_fragment,
3983 &ett_sccp_xudt_msg_fragments,
3984 &ett_sccp_assoc
3985 };
3986
3987 static ei_register_info ei[] = {
3988 { &ei_sccp_wrong_length, { "sccp.wrong_length", PI_MALFORMED, PI_ERROR, "Wrong length indicated.", EXPFILL }},
3989 { &ei_sccp_international_standard_address, { "sccp.international_standard_address", PI_MALFORMED, PI_WARN,
3990 "Address is coded to international standards. This doesn't normally happen in ANSI networks.", EXPFILL }},
3991 { &ei_sccp_no_ssn_present, { "sccp.ssn.not_present", PI_PROTOCOL, PI_WARN, "Message is routed on SSN, but SSN is not present", EXPFILL }},
3992 { &ei_sccp_ssn_zero, { "sccp.ssn.is_zero", PI_PROTOCOL, PI_WARN, "Message is routed on SSN, but SSN is zero (unspecified)", EXPFILL }},
3993 { &ei_sccp_class_unexpected, { "sccp.class_unexpected", PI_MALFORMED, PI_ERROR, "Unexpected message class for this message type", EXPFILL }},
3994 { &ei_sccp_handling_invalid, { "sccp.handling_invalid", PI_MALFORMED, PI_ERROR, "Invalid message handling", EXPFILL }},
3995 };
3996
3997 module_t *sccp_module;
3998 expert_module_t* expert_sccp;
3999
4000 static uat_field_t users_flds[] = {
4001 UAT_FLD_DEC(sccp_users, ni, "Network Indicator", "Network Indicator"),
4002 UAT_FLD_RANGE(sccp_users, called_pc, "Called DPCs", 0xFFFFFF, "DPCs for which this protocol is to be used"),
4003 UAT_FLD_RANGE(sccp_users, called_ssn, "Called SSNs", 255, "Called SSNs for which this protocol is to be used"),
4004 UAT_FLD_VS(sccp_users, user, "User protocol", sccp_users_vals, "The User Protocol"),
4005 UAT_END_FIELDS
4006 };
4007
4008
4009 uat_t *users_uat = uat_new("SCCP Users Table", sizeof(sccp_user_t),
4010 "sccp_users", TRUE, (void**) &sccp_users,
4011 &num_sccp_users, UAT_AFFECTS_DISSECTION,
4012 "ChSccpUsers", sccp_users_copy_cb,
4013 sccp_users_update_cb, sccp_users_free_cb,
4014 NULL, users_flds );
4015
4016 /* Register the protocol name and description */
4017 proto_sccp = proto_register_protocol("Signalling Connection Control Part",
4018 "SCCP", "sccp");
4019
4020 register_dissector("sccp", dissect_sccp, proto_sccp);
4021
4022 /* Required function calls to register the header fields and subtrees used */
4023 proto_register_field_array(proto_sccp, hf, array_length(hf));
4024 proto_register_subtree_array(ett, array_length(ett));
4025 expert_sccp = expert_register_protocol(proto_sccp);
4026 expert_register_field_array(expert_sccp, ei, array_length(ei));
4027
4028 sccp_ssn_dissector_table = register_dissector_table("sccp.ssn", "SCCP SSN", FT_UINT8, BASE_DEC);
4029
4030 register_heur_dissector_list("sccp", &heur_subdissector_list);
4031
4032 sccp_module = prefs_register_protocol(proto_sccp, proto_reg_handoff_sccp);
4033
4034 prefs_register_uint_preference(sccp_module, "source_pc",
4035 "Source PC (in hex)",
4036 "The source point code (usually MSC) (to determine whether message is uplink or downlink)",
4037 16, &sccp_source_pc_global);
4038
4039 prefs_register_bool_preference(sccp_module, "show_length", "Show length",
4040 "Show parameter length in the protocol tree",
4041 &sccp_show_length);
4042
4043 prefs_register_bool_preference(sccp_module, "defragment_xudt",
4044 "Reassemble XUDT messages",
4045 "Whether XUDT messages should be reassembled",
4046 &sccp_xudt_desegment);
4047
4048 prefs_register_bool_preference(sccp_module, "trace_sccp",
4049 "Trace Associations",
4050 "Whether to keep information about messages and their associations",
4051 &trace_sccp);
4052
4053
4054 prefs_register_bool_preference(sccp_module, "show_more_info",
4055 "Show key parameters in Info Column",
4056 "Show SLR, DLR, and CAUSE Parameters in the Information Column of the Summary",
4057 &show_key_params);
4058
4059
4060 prefs_register_uat_preference(sccp_module, "users_table", "Users Table",
4061 "A table that enumerates user protocols to be used against specific PCs and SSNs",
4062 users_uat);
4063
4064 prefs_register_bool_preference(sccp_module, "set_addresses", "Set source and destination GT addresses",
4065 "Set the source and destination addresses to the GT digits (if RI=GT)."
4066 " This may affect TCAP's ability to recognize which messages belong to which TCAP session.",
4067 &set_addresses);
4068
4069 prefs_register_string_preference(sccp_module, "default_payload", "Default Payload",
4070 "The protocol which should be used to dissect the payload if nothing else has claimed it",
4071 &default_payload);
4072
4073 register_init_routine(&init_sccp);
4074
4075 assocs = wmem_tree_new_autoreset(wmem_epan_scope(), wmem_file_scope());
4076
4077 sccp_tap = register_tap("sccp");
4078
4079 }
4080
4081 void
4082 proto_reg_handoff_sccp(void)
4083 {
4084 dissector_handle_t sccp_handle;
4085
4086 static gboolean initialised = FALSE;
4087
4088 if (!initialised) {
4089 sccp_handle = find_dissector("sccp");
4090
4091 dissector_add_uint("wtap_encap", WTAP_ENCAP_SCCP, sccp_handle);
4092 dissector_add_uint("mtp3.service_indicator", MTP_SI_SCCP, sccp_handle);
4093 dissector_add_string("tali.opcode", "sccp", sccp_handle);
4094
4095 data_handle = find_dissector("data");
4096 tcap_handle = find_dissector("tcap");
4097 ranap_handle = find_dissector("ranap");
4098 bssap_handle = find_dissector("bssap");
4099 gsmmap_handle = find_dissector("gsm_map");
4100 camel_handle = find_dissector("camel");
4101 inap_handle = find_dissector("inap");
4102
4103 initialised = TRUE;
4104 }
4105
4106 default_handle = find_dissector(default_payload);
4107 }