mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-27 03:11:52 +01:00
437 lines
17 KiB
C
437 lines
17 KiB
C
/*
|
|
* Copyright (c) 1988-1997
|
|
* The Regents of the University of California. All rights reserved.
|
|
*
|
|
* Copyright (c) 1998-2004 Michael Richardson <mcr@tcpdump.org>
|
|
* The TCPDUMP project
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that: (1) source code distributions
|
|
* retain the above copyright notice and this paragraph in its entirety, (2)
|
|
* distributions including binary code include the above copyright notice and
|
|
* this paragraph in its entirety in the documentation or other materials
|
|
* provided with the distribution, and (3) all advertising materials mentioning
|
|
* features or use of this software display the following acknowledgement:
|
|
* ``This product includes software developed by the University of California,
|
|
* Lawrence Berkeley Laboratory and its contributors.'' Neither the name of
|
|
* the University nor the names of its contributors may be used to endorse
|
|
* or promote products derived from this software without specific prior
|
|
* written permission.
|
|
* THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
|
|
* WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
|
|
* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
|
|
*
|
|
* @(#) $Header: /tcpdump/master/tcpdump/netdissect.h,v 1.16.2.4 2006/02/08 01:40:09 hannes Exp $ (LBL)
|
|
*/
|
|
|
|
#ifndef netdissect_h
|
|
#define netdissect_h
|
|
|
|
#ifdef HAVE_OS_PROTO_H
|
|
#include "os-proto.h"
|
|
#endif
|
|
#include <sys/types.h>
|
|
|
|
#ifndef HAVE___ATTRIBUTE__
|
|
#define __attribute__(x)
|
|
#endif
|
|
|
|
/* snprintf et al */
|
|
|
|
#include <stdarg.h>
|
|
|
|
#if !defined(HAVE_SNPRINTF)
|
|
int snprintf (char *str, size_t sz, const char *format, ...)
|
|
__attribute__ ((format (printf, 3, 4)));
|
|
#endif
|
|
|
|
#if !defined(HAVE_VSNPRINTF)
|
|
int vsnprintf (char *str, size_t sz, const char *format, va_list ap)
|
|
__attribute__((format (printf, 3, 0)));
|
|
#endif
|
|
|
|
#ifndef HAVE_STRLCAT
|
|
extern size_t strlcat (char *, const char *, size_t);
|
|
#endif
|
|
#ifndef HAVE_STRLCPY
|
|
extern size_t strlcpy (char *, const char *, size_t);
|
|
#endif
|
|
|
|
#ifndef HAVE_STRDUP
|
|
extern char *strdup (const char *str);
|
|
#endif
|
|
|
|
#ifndef HAVE_STRSEP
|
|
extern char *strsep(char **, const char *);
|
|
#endif
|
|
|
|
struct tok {
|
|
int v; /* value */
|
|
const char *s; /* string */
|
|
};
|
|
|
|
#define TOKBUFSIZE 128
|
|
extern const char *tok2strbuf(const struct tok *, const char *, int,
|
|
char *buf, size_t bufsize);
|
|
|
|
/* tok2str is deprecated */
|
|
extern const char *tok2str(const struct tok *, const char *, int);
|
|
extern char *bittok2str(const struct tok *, const char *, int);
|
|
|
|
|
|
typedef struct netdissect_options netdissect_options;
|
|
|
|
struct netdissect_options {
|
|
int ndo_aflag; /* translate network and broadcast addresses */
|
|
int ndo_eflag; /* print ethernet header */
|
|
int ndo_fflag; /* don't translate "foreign" IP address */
|
|
int ndo_nflag; /* leave addresses as numbers */
|
|
int ndo_Nflag; /* remove domains from printed host names */
|
|
int ndo_qflag; /* quick (shorter) output */
|
|
int ndo_Rflag; /* print sequence # field in AH/ESP*/
|
|
int ndo_sflag; /* use the libsmi to translate OIDs */
|
|
int ndo_Sflag; /* print raw TCP sequence numbers */
|
|
int ndo_tflag; /* print packet arrival time */
|
|
int ndo_Uflag; /* "unbuffered" output of dump files */
|
|
int ndo_uflag; /* Print undecoded NFS handles */
|
|
int ndo_vflag; /* verbose */
|
|
int ndo_xflag; /* print packet in hex */
|
|
int ndo_Xflag; /* print packet in hex/ascii */
|
|
int ndo_Aflag; /* print packet only in ascii observing TAB,
|
|
* LF, CR and SPACE as graphical chars
|
|
*/
|
|
int ndo_Oflag; /* run filter code optimizer */
|
|
int ndo_dlt; /* if != -1, ask libpcap for the DLT it names*/
|
|
int ndo_pflag; /* don't go promiscuous */
|
|
|
|
int ndo_Cflag; /* rotate dump files after this many bytes */
|
|
int ndo_Cflag_count; /* Keep track of which file number we're writing */
|
|
int ndo_Wflag; /* recycle output files after this number of files */
|
|
int ndo_WflagChars;
|
|
int ndo_suppress_default_print; /* don't use default_print() for unknown packet types */
|
|
const char *ndo_dltname;
|
|
|
|
char *ndo_espsecret;
|
|
struct sa_list *ndo_sa_list_head; /* used by print-esp.c */
|
|
struct sa_list *ndo_sa_default;
|
|
|
|
char *ndo_tcpmd5secret; /* TCP-MD5 secret key */
|
|
|
|
struct esp_algorithm *ndo_espsecret_xform; /* cache of decoded */
|
|
char *ndo_espsecret_key;
|
|
|
|
int ndo_packettype; /* as specified by -T */
|
|
|
|
char *ndo_program_name; /*used to generate self-identifying messages */
|
|
|
|
int32_t ndo_thiszone; /* seconds offset from gmt to local time */
|
|
|
|
int ndo_snaplen;
|
|
|
|
/*global pointers to beginning and end of current packet (during printing) */
|
|
const u_char *ndo_packetp;
|
|
const u_char *ndo_snapend;
|
|
|
|
/* bookkeeping for ^T output */
|
|
int ndo_infodelay;
|
|
|
|
/* pointer to void function to output stuff */
|
|
void (*ndo_default_print)(netdissect_options *,
|
|
register const u_char *bp, register u_int length);
|
|
void (*ndo_info)(netdissect_options *, int verbose);
|
|
|
|
int (*ndo_printf)(netdissect_options *,
|
|
const char *fmt, ...);
|
|
void (*ndo_error)(netdissect_options *,
|
|
const char *fmt, ...);
|
|
void (*ndo_warning)(netdissect_options *,
|
|
const char *fmt, ...);
|
|
};
|
|
|
|
#define PT_VAT 1 /* Visual Audio Tool */
|
|
#define PT_WB 2 /* distributed White Board */
|
|
#define PT_RPC 3 /* Remote Procedure Call */
|
|
#define PT_RTP 4 /* Real-Time Applications protocol */
|
|
#define PT_RTCP 5 /* Real-Time Applications control protocol */
|
|
#define PT_SNMP 6 /* Simple Network Management Protocol */
|
|
#define PT_CNFP 7 /* Cisco NetFlow protocol */
|
|
|
|
#ifndef min
|
|
#define min(a,b) ((a)>(b)?(b):(a))
|
|
#endif
|
|
#ifndef max
|
|
#define max(a,b) ((b)>(a)?(b):(a))
|
|
#endif
|
|
|
|
#ifndef INET6
|
|
/*
|
|
* The default snapshot length. This value allows most printers to print
|
|
* useful information while keeping the amount of unwanted data down.
|
|
* In particular, it allows for an ethernet header, tcp/ip header, and
|
|
* 14 bytes of data (assuming no ip options).
|
|
*/
|
|
#define DEFAULT_SNAPLEN 68
|
|
#else
|
|
#define DEFAULT_SNAPLEN 96
|
|
#endif
|
|
|
|
#ifndef BIG_ENDIAN
|
|
#define BIG_ENDIAN 4321
|
|
#define LITTLE_ENDIAN 1234
|
|
#endif
|
|
|
|
#define ESRC(ep) ((ep)->ether_shost)
|
|
#define EDST(ep) ((ep)->ether_dhost)
|
|
|
|
#ifndef NTOHL
|
|
#define NTOHL(x) (x) = ntohl(x)
|
|
#define NTOHS(x) (x) = ntohs(x)
|
|
#define HTONL(x) (x) = htonl(x)
|
|
#define HTONS(x) (x) = htons(x)
|
|
#endif
|
|
|
|
/*
|
|
* True if "l" bytes of "var" were captured.
|
|
*
|
|
* The "ndo->ndo_snapend - (l) <= ndo->ndo_snapend" checks to make sure
|
|
* "l" isn't so large that "ndo->ndo_snapend - (l)" underflows.
|
|
*
|
|
* The check is for <= rather than < because "l" might be 0.
|
|
*/
|
|
#define ND_TTEST2(var, l) (ndo->ndo_snapend - (l) <= ndo->ndo_snapend && \
|
|
(const u_char *)&(var) <= ndo->ndo_snapend - (l))
|
|
|
|
/* True if "var" was captured */
|
|
#define ND_TTEST(var) ND_TTEST2(var, sizeof(var))
|
|
|
|
/* Bail if "l" bytes of "var" were not captured */
|
|
#define ND_TCHECK2(var, l) if (!ND_TTEST2(var, l)) goto trunc
|
|
|
|
/* Bail if "var" was not captured */
|
|
#define ND_TCHECK(var) ND_TCHECK2(var, sizeof(var))
|
|
|
|
#define ND_PRINT(STUFF) (*ndo->ndo_printf)STUFF
|
|
#define ND_DEFAULTPRINT(ap, length) (*ndo->ndo_default_print)(ndo, ap, length)
|
|
|
|
#if 0
|
|
extern void ts_print(netdissect_options *ipdo,
|
|
const struct timeval *);
|
|
extern void relts_print(int);
|
|
#endif
|
|
|
|
extern int fn_print(const u_char *, const u_char *);
|
|
extern int fn_printn(const u_char *, u_int, const u_char *);
|
|
extern const char *tok2str(const struct tok *, const char *, int);
|
|
|
|
extern void wrapup(int);
|
|
|
|
#if 0
|
|
extern char *read_infile(netdissect_options *, char *);
|
|
extern char *copy_argv(netdissect_options *, char **);
|
|
#endif
|
|
|
|
extern void safeputchar(int);
|
|
extern void safeputs(const char *, int);
|
|
|
|
#if 0
|
|
extern const char *isonsap_string(netdissect_options *, const u_char *);
|
|
extern const char *protoid_string(netdissect_options *, const u_char *);
|
|
extern const char *dnname_string(netdissect_options *, u_short);
|
|
extern const char *dnnum_string(netdissect_options *, u_short);
|
|
#endif
|
|
|
|
/* The printer routines. */
|
|
|
|
#include <pcap.h>
|
|
|
|
|
|
extern void eap_print(netdissect_options *,const u_char *, u_int);
|
|
extern int esp_print(netdissect_options *,
|
|
register const u_char *bp, int len, register const u_char *bp2,
|
|
int *nhdr, int *padlen);
|
|
extern void arp_print(netdissect_options *,const u_char *, u_int, u_int);
|
|
extern void isakmp_print(netdissect_options *,const u_char *,
|
|
u_int, const u_char *);
|
|
extern void isakmp_rfc3948_print(netdissect_options *,const u_char *,
|
|
u_int, const u_char *);
|
|
extern void ip_print(netdissect_options *,const u_char *, u_int);
|
|
extern void ip_print_inner(netdissect_options *ndo,
|
|
const u_char *bp, u_int length, u_int nh,
|
|
const u_char *bp2);
|
|
|
|
/* stuff that has not yet been rototiled */
|
|
#if 0
|
|
extern void ascii_print(netdissect_options *,u_int);
|
|
extern void hex_and_ascii_print_with_offset(netdissect_options *,const char *,
|
|
u_int, u_int);
|
|
extern void hex_and_ascii_print(netdissect_options *,const char *, u_int);
|
|
extern void hex_print_with_offset(netdissect_options *,const char *,
|
|
u_int, u_int);
|
|
extern void hex_print(netdissect_options *,const char *, u_int);
|
|
extern void telnet_print(netdissect_options *,const u_char *, u_int);
|
|
extern int ether_encap_print(netdissect_options *,u_short, const u_char *,
|
|
u_int, u_int, u_short *);
|
|
extern int llc_print(netdissect_options *,
|
|
const u_char *, u_int, u_int, const u_char *,
|
|
const u_char *, u_short *);
|
|
extern void aarp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void atalk_print(netdissect_options *,const u_char *, u_int);
|
|
extern void atm_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
extern void bootp_print(netdissect_options *,const u_char *,
|
|
u_int, u_short, u_short);
|
|
extern void bgp_print(netdissect_options *,const u_char *, int);
|
|
extern void bxxp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void chdlc_if_print(u_char *user, const struct pcap_pkthdr *h,
|
|
register const u_char *p);
|
|
extern void chdlc_print(netdissect_options *ndo,
|
|
register const u_char *p, u_int length, u_int caplen);
|
|
extern void cisco_autorp_print(netdissect_options *,
|
|
const u_char *, u_int);
|
|
extern void cnfp_print(netdissect_options *,const u_char *cp,
|
|
u_int len, const u_char *bp);
|
|
extern void decnet_print(netdissect_options *,const u_char *,
|
|
u_int, u_int);
|
|
extern void default_print(netdissect_options *,const u_char *, u_int);
|
|
extern void dvmrp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void egp_print(netdissect_options *,const u_char *, u_int,
|
|
const u_char *);
|
|
|
|
extern void arcnet_if_print(u_char*,const struct pcap_pkthdr *,const u_char *);
|
|
extern void ether_if_print(u_char *,const struct pcap_pkthdr *,const u_char *);
|
|
extern void token_if_print(u_char *,const struct pcap_pkthdr *,const u_char *);
|
|
extern void fddi_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
|
|
extern void gre_print(netdissect_options *,const u_char *, u_int);
|
|
extern void icmp_print(netdissect_options *,const u_char *, u_int,
|
|
const u_char *);
|
|
extern void hsrp_print(netdissect_options *ndo,
|
|
register const u_char *bp, register u_int len);
|
|
extern void ieee802_11_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
extern void igmp_print(netdissect_options *,
|
|
register const u_char *, u_int);
|
|
extern void igrp_print(netdissect_options *,const u_char *, u_int,
|
|
const u_char *);
|
|
extern void ipN_print(netdissect_options *,const u_char *, u_int);
|
|
extern void ipx_print(netdissect_options *,const u_char *, u_int);
|
|
extern void isoclns_print(netdissect_options *,const u_char *,
|
|
u_int, u_int, const u_char *, const u_char *);
|
|
extern void krb_print(netdissect_options *,const u_char *, u_int);
|
|
extern void llap_print(netdissect_options *,const u_char *, u_int);
|
|
extern const char *linkaddr_string(netdissect_options *ndo,
|
|
const u_char *ep, const unsigned int len);
|
|
extern void ltalk_if_print(netdissect_options *ndo,
|
|
u_char *user, const struct pcap_pkthdr *h,
|
|
const u_char *p);
|
|
extern void mpls_print(netdissect_options *ndo,
|
|
const u_char *bp, u_int length);
|
|
extern void msdp_print(netdissect_options *ndo,
|
|
const unsigned char *sp, u_int length);
|
|
extern void nfsreply_print(netdissect_options *,const u_char *,
|
|
u_int, const u_char *);
|
|
extern void nfsreq_print(netdissect_options *,const u_char *,
|
|
u_int, const u_char *);
|
|
extern void ns_print(netdissect_options *,const u_char *, u_int);
|
|
extern void ntp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void null_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
extern void ospf_print(netdissect_options *,const u_char *,
|
|
u_int, const u_char *);
|
|
extern void pimv1_print(netdissect_options *,const u_char *, u_int);
|
|
extern void mobile_print(netdissect_options *,const u_char *, u_int);
|
|
extern void pim_print(netdissect_options *,const u_char *, u_int);
|
|
extern void pppoe_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
extern void pppoe_print(netdissect_options *,const u_char *, u_int);
|
|
extern void ppp_print(netdissect_options *,
|
|
register const u_char *, u_int);
|
|
|
|
extern void ppp_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
extern void ppp_hdlc_if_print(u_char *,
|
|
const struct pcap_pkthdr *, const u_char *);
|
|
extern void ppp_bsdos_if_print(u_char *,
|
|
const struct pcap_pkthdr *, const u_char *);
|
|
|
|
extern int vjc_print(netdissect_options *,register const char *,
|
|
register u_int, u_short);
|
|
|
|
extern void raw_if_print(u_char *,
|
|
const struct pcap_pkthdr *, const u_char *);
|
|
|
|
extern void rip_print(netdissect_options *,const u_char *, u_int);
|
|
|
|
extern void sctp_print(netdissect_options *ndo,
|
|
const u_char *bp, const u_char *bp2,
|
|
u_int sctpPacketLength);
|
|
|
|
extern void sl_if_print(u_char *,const struct pcap_pkthdr *, const u_char *);
|
|
|
|
extern void lane_if_print(u_char *,const struct pcap_pkthdr *,const u_char *);
|
|
extern void cip_if_print(u_char *,const struct pcap_pkthdr *,const u_char *);
|
|
extern void sl_bsdos_if_print(u_char *,
|
|
const struct pcap_pkthdr *, const u_char *);
|
|
extern void sll_if_print(u_char *,
|
|
const struct pcap_pkthdr *, const u_char *);
|
|
|
|
extern void snmp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void sunrpcrequest_print(netdissect_options *,const u_char *,
|
|
u_int, const u_char *);
|
|
extern void tcp_print(netdissect_options *,const u_char *, u_int,
|
|
const u_char *, int);
|
|
extern void tftp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void timed_print(netdissect_options *,const u_char *, u_int);
|
|
extern void udp_print(netdissect_options *,const u_char *, u_int,
|
|
const u_char *, int);
|
|
extern void wb_print(netdissect_options *,const void *, u_int);
|
|
extern int ah_print(netdissect_options *,register const u_char *,
|
|
register const u_char *);
|
|
extern void esp_print_decodesecret(netdissect_options *ndo);
|
|
extern int ipcomp_print(netdissect_options *,register const u_char *,
|
|
register const u_char *, int *);
|
|
extern void rx_print(netdissect_options *,register const u_char *,
|
|
int, int, int, u_char *);
|
|
extern void netbeui_print(netdissect_options *,u_short,
|
|
const u_char *, int);
|
|
extern void ipx_netbios_print(netdissect_options *,const u_char *, u_int);
|
|
extern void nbt_tcp_print(netdissect_options *,const u_char *, int);
|
|
extern void nbt_udp137_print(netdissect_options *,
|
|
const u_char *data, int);
|
|
extern void nbt_udp138_print(netdissect_options *,
|
|
const u_char *data, int);
|
|
extern char *smb_errstr(netdissect_options *,int, int);
|
|
extern const char *nt_errstr(netdissect_options *, u_int32_t);
|
|
extern void print_data(netdissect_options *,const unsigned char *, int);
|
|
extern void l2tp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void lcp_print(netdissect_options *,const u_char *, u_int);
|
|
extern void vrrp_print(netdissect_options *,const u_char *bp,
|
|
u_int len, int ttl);
|
|
extern void cdp_print(netdissect_options *,const u_char *,
|
|
u_int, u_int, const u_char *, const u_char *);
|
|
extern void stp_print(netdissect_options *,const u_char *p, u_int length);
|
|
extern void radius_print(netdissect_options *,const u_char *, u_int);
|
|
extern void lwres_print(netdissect_options *,const u_char *, u_int);
|
|
extern void pptp_print(netdissect_options *,const u_char *, u_int);
|
|
|
|
#ifdef INET6
|
|
extern void ip6_print(netdissect_options *,const u_char *, u_int);
|
|
extern void ip6_opt_print(netdissect_options *,const u_char *, int);
|
|
extern int hbhopt_print(netdissect_options *,const u_char *);
|
|
extern int dstopt_print(netdissect_options *,const u_char *);
|
|
extern int frag6_print(netdissect_options *,const u_char *,
|
|
const u_char *);
|
|
extern void icmp6_print(netdissect_options *,const u_char *,
|
|
const u_char *);
|
|
extern void ripng_print(netdissect_options *,const u_char *, int);
|
|
extern int rt6_print(netdissect_options *,const u_char *, const u_char *);
|
|
extern void ospf6_print(netdissect_options *,const u_char *, u_int);
|
|
extern void dhcp6_print(netdissect_options *,const u_char *,
|
|
u_int, u_int16_t, u_int16_t);
|
|
|
|
extern void zephyr_print(netdissect_options * ndo,
|
|
const u_char *cp, int length);
|
|
|
|
#endif /*INET6*/
|
|
extern u_short in_cksum(const u_short *,
|
|
register u_int, int);
|
|
|
|
#endif
|
|
|
|
#endif /* netdissect_h */
|