Added PPPoE, PPTP, GRE, and ISAKMP dissectors.

svn path=/trunk/; revision=303
author: Gilbert Ramirez <gram@alumni.rice.edu> 1999-06-11 15:30:55 +0000
committer: Gilbert Ramirez <gram@alumni.rice.edu> 1999-06-11 15:30:55 +0000
commit: 34450a8a3570e8f03c503d849e78f7a2ac5e9349 (patch)
tree: 869d1bd0afd3386bab96cd39e66045ac8f345f24 /packet-isakmp.c
parent: 6d7cf738f0f933f83f0475a1514c09de7d20cb4a (diff)
1 files changed, 1040 insertions, 0 deletions
diff --git a/packet-isakmp.c b/packet-isakmp.c
new file mode 100644
index 0000000000..b2d5a8a8a7
--- /dev/null
+++ b/packet-isakmp.c
@@ -0,0 +1,1040 @@
+/* packet-gre.c
+ * Routines for the Internet Security Association and Key Management Protocol (ISAKMP)
+ * Brad Robel-Forrest <brad.robel-forrest@watchguard.com>
+ *
+ * $Id: packet-isakmp.c,v 1.1 1999/06/11 15:30:38 gram Exp $
+ *
+ * Ethereal - Network traffic analyzer
+ * By Gerald Combs <gerald@unicom.net>
+ * Copyright 1998 Gerald Combs
+ *
+ * 
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU General Public License
+ * as published by the Free Software Foundation; either version 2
+ * of the License, or (at your option) any later version.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
+ */
+
+#ifdef HAVE_CONFIG_H
+# include "config.h"
+#endif
+
+#ifdef HAVE_SYS_TYPES_H
+# include <sys/types.h>
+#endif
+
+#include <stdio.h>
+#include <netinet/in.h>
+#include <glib.h>
+#include "packet.h"
+
+#define NUM_PROTO_TYPES	5
+#define proto2str(t)	\
+  ((t < NUM_PROTO_TYPES) ? prototypestr[t] : "UNKNOWN-PROTO-TYPE")
+
+static const char *prototypestr[NUM_PROTO_TYPES] = {
+  "RESERVED",
+  "ISAKMP",
+  "IPSEC_AH",
+  "IPSEC_ESP",
+  "IPCOMP"
+};
+
+#define NUM_ATT_TYPES	13
+#define atttype2str(t)	\
+  ((t < NUM_ATT_TYPES) ? atttypestr[t] : "UNKNOWN-ATTRIBUTE-TYPE")
+
+static const char *atttypestr[NUM_ATT_TYPES] = {
+  "UNKNOWN-ATTRIBUTE-TYPE",
+  "SA-Life-Type",
+  "SA-Life-Duration",
+  "Group-Description",
+  "Encapsulation-Mode",
+  "Authentication-Algorithm",
+  "Key-Length",
+  "Key-Rounds",
+  "Compress-Dictinary-Size",
+  "Compress-Private-Algorithm"
+  "UNKNOWN-ATTRIBUTE-TYPE",
+  "Oakley-Life",
+  "Oakley-Value",
+  "Oakley-Life-Duration"
+};
+
+#define NUM_TRANS_TYPES	2
+#define trans2str(t)	\
+  ((t < NUM_TRANS_TYPES) ? transtypestr[t] : "UNKNOWN-TRANS-TYPE")
+
+static const char *transtypestr[NUM_TRANS_TYPES] = {
+  "RESERVED",
+  "KEY_IKE"
+};
+
+#define NUM_ID_TYPES	12
+#define id2str(t)	\
+  ((t < NUM_ID_TYPES) ? idtypestr[t] : "UNKNOWN-ID-TYPE")
+
+static const char *idtypestr[NUM_ID_TYPES] = {
+  "RESERVED",
+  "IPV4_ADDR",
+  "FQDN",
+  "USER_FQDN",
+  "IPV4_ADDR_SUBNET",
+  "IPV6_ADDR",
+  "IPV6_ADDR_SUBNET",
+  "IPV4_ADDR_RANGE",
+  "IPV6_ADDR_RANGE",
+  "DER_ASN1_DN",
+  "DER_ASN1_GN",
+  "KEY_ID"
+};
+
+struct isakmp_hdr {
+  guint8	icookie[8];
+  guint8	rcookie[8];
+  guint8	next_payload;
+  guint8	version;
+  guint8	exch_type;
+  guint8	flags;
+#define E_FLAG		0x01
+#define C_FLAG		0x02
+#define A_FLAG		0x04
+  guint32	message_id;
+  guint32	length;
+};
+
+struct sa_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint32	doi;
+  guint32	situation;
+};
+
+struct proposal_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint8	proposal_num;
+  guint8	protocol_id;
+  guint8	spi_size;
+  guint8	num_transforms;
+};
+
+struct trans_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint8	transform_num;
+  guint8	transform_id;
+  guint16	reserved2;
+};
+
+#define TRANS_LEN(p)	(pntohs(&((struct trans_hdr *)(p))->length))
+
+struct ke_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+};
+
+struct id_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint8	id_type;
+  guint8	protocol_id;
+  guint16	port;
+};
+
+struct cert_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint8	cert_enc;
+};
+
+struct certreq_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint8	cert_type;
+};
+
+struct hash_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+};
+
+struct sig_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+};
+
+struct nonce_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+};
+
+struct notif_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint32	doi;
+  guint8	protocol_id;
+  guint8	spi_size;
+  guint16	msgtype;
+};
+
+struct delete_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+  guint32	doi;
+  guint8	protocol_id;
+  guint8	spi_size;
+  guint16	num_spis;
+};
+
+struct vid_hdr {
+  guint8	next_payload;
+  guint8	reserved;
+  guint16	length;
+};
+
+static void dissect_none(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_sa(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_proposal(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_transform(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_key_exch(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_id(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_cert(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_certreq(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_hash(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_sig(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_nonce(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_notif(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_delete(const u_char *, int, frame_data *, proto_tree *);
+static void dissect_vid(const u_char *, int, frame_data *, proto_tree *);
+
+static const char *payloadtype2str(guint8);
+static const char *exchtype2str(guint8);
+static const char *doitype2str(guint32);
+static const char *msgtype2str(guint16);
+static const char *situation2str(guint32);
+static const char *value2str(guint16, guint16);
+static const char *num2str(const guint8 *, guint16);
+
+#define NUM_LOAD_TYPES		14
+#define loadtype2str(t)	\
+  ((t < NUM_LOAD_TYPES) ? strfuncs[t].str : "Unknown payload type")
+
+static struct strfunc {
+  const char *	str;
+  void          (*func)(const u_char *, int, frame_data *, proto_tree *);
+} strfuncs[NUM_LOAD_TYPES] = {
+  {"NONE",			dissect_none      },
+  {"Security Association",	dissect_sa        },
+  {"Proposal",			dissect_proposal  },
+  {"Transform",			dissect_transform },
+  {"Key Exchange",		dissect_key_exch  },
+  {"Identification",		dissect_id        },
+  {"Certificate",		dissect_cert      },
+  {"Certificate Request",	dissect_certreq   },
+  {"Hash",			dissect_hash      },
+  {"Signature",			dissect_sig       },
+  {"Nonce",			dissect_nonce     },
+  {"Notification",		dissect_notif     },
+  {"Delete",			dissect_delete    },
+  {"Vendor ID",			dissect_vid       }
+};
+
+void dissect_isakmp(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+  
+  struct isakmp_hdr *	hdr = (struct isakmp_hdr *)(pd + offset);
+  guint32		len;
+  
+  if (check_col(fd, COL_PROTOCOL))
+    col_add_str(fd, COL_PROTOCOL, "ISAKMP");
+  
+  len = pntohl(&hdr->length);
+  
+  if (check_col(fd, COL_INFO))
+    col_add_fstr(fd, COL_INFO, "%s", exchtype2str(hdr->exch_type));
+  
+  if (fd->cap_len > offset && tree) {
+    proto_item *	ti;
+    proto_tree *	isakmp_tree;
+    
+    ti = proto_tree_add_item(tree, offset, len,
+			     "Internet Security Association and Key Management Protocol");
+    isakmp_tree = proto_tree_new();
+    proto_item_add_subtree(ti, isakmp_tree, ETT_ISAKMP);
+    
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->icookie),
+			"Initiator cookie");
+    offset += sizeof(hdr->icookie);
+    
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->rcookie),
+			"Responder cookie");
+    offset += sizeof(hdr->rcookie);
+
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->next_payload),
+			"Next payload: %s (%u)",
+			payloadtype2str(hdr->next_payload), hdr->next_payload);
+    offset += sizeof(hdr->next_payload);
+
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->version),
+			"Version: %u.%u",
+			hi_nibble(hdr->version), lo_nibble(hdr->version));
+    offset += sizeof(hdr->version);
+    
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->exch_type),
+			"Exchange type: %s (%u)",
+			exchtype2str(hdr->exch_type), hdr->exch_type);
+    offset += sizeof(hdr->exch_type);
+    
+    {
+      proto_item *	fti;
+      proto_tree *	ftree;
+      
+      fti   = proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->flags), "Flags");
+      ftree = proto_tree_new();
+      proto_item_add_subtree(fti, ftree, ETT_ISAKMP_FLAGS);
+      
+      proto_tree_add_item(ftree, offset, 1, "%s",
+			  decode_boolean_bitfield(hdr->flags, E_FLAG, sizeof(hdr->flags)*8,
+						  "Encryption", "No encryption"));
+      proto_tree_add_item(ftree, offset, 1, "%s",
+			  decode_boolean_bitfield(hdr->flags, C_FLAG, sizeof(hdr->flags)*8,
+						  "Commit", "No commit"));
+      proto_tree_add_item(ftree, offset, 1, "%s",
+			  decode_boolean_bitfield(hdr->flags, A_FLAG, sizeof(hdr->flags)*8,
+						  "Authentication", "No authentication"));
+      offset += sizeof(hdr->flags);
+    }
+
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->message_id), "Message ID");
+    offset += sizeof(hdr->message_id);
+    
+    proto_tree_add_item(isakmp_tree, offset, sizeof(hdr->length),
+			"Length: %u", len);
+    offset += sizeof(hdr->length);
+
+    if (hdr->next_payload < NUM_LOAD_TYPES)
+      (*strfuncs[hdr->next_payload].func)(pd, offset, fd, isakmp_tree);
+    else
+      dissect_data(pd, offset, fd, isakmp_tree);
+  }
+}
+
+static void
+dissect_none(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+}
+
+static void
+dissect_sa(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct sa_hdr *	hdr	  = (struct sa_hdr *)(pd + offset);
+  guint16		length	  = pntohs(&hdr->length);
+  guint32		doi	  = pntohl(&hdr->doi);
+  guint32		situation = pntohl(&hdr->situation);
+  proto_item *		ti	  = proto_tree_add_item(tree, offset, length, "Security Association payload");
+  proto_tree *		ntree	  = proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(doi),
+		      "Domain of interpretation: %s (%u)",
+		      doitype2str(doi), doi);
+  offset += sizeof(doi);
+  
+  proto_tree_add_item(ntree, offset, sizeof(situation),
+		      "Situation: %s (%u)",
+		      situation2str(situation), situation);
+  offset += sizeof(situation);
+  
+  dissect_proposal(pd, offset, fd, ntree);
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_proposal(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct proposal_hdr *	hdr	= (struct proposal_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Proposal payload");
+  proto_tree *		ntree	= proto_tree_new();
+  guint8		i;
+  
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->proposal_num),
+		      "Proposal number: %u", hdr->proposal_num);
+  offset += sizeof(hdr->proposal_num);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->protocol_id),
+		      "Protocol ID: %s (%u)",
+		      proto2str(hdr->protocol_id), hdr->protocol_id);
+  offset += sizeof(hdr->protocol_id);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->spi_size),
+		      "SPI size: %u", hdr->spi_size);
+  offset += sizeof(hdr->spi_size);
+  
+  if (hdr->spi_size) {
+    proto_tree_add_item(ntree, offset, hdr->spi_size, "SPI");
+    offset += hdr->spi_size;
+  }
+
+  proto_tree_add_item(ntree, offset, sizeof(hdr->num_transforms),
+		      "Number of transforms: %u", hdr->num_transforms);
+  offset += sizeof(hdr->num_transforms);
+  
+  for (i = 0; i < hdr->num_transforms; ++i) {
+    dissect_transform(pd, offset, fd, ntree);
+    offset += TRANS_LEN(pd+offset);
+  }
+
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_transform(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct trans_hdr *	hdr	= (struct trans_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Transform payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->transform_num),
+		      "Transform number: %u", hdr->transform_num);
+  offset += sizeof(hdr->transform_num);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->transform_id),
+		      "Transform ID: %s (%u)",
+		      trans2str(hdr->transform_id), hdr->transform_id);
+  offset += sizeof(hdr->transform_id) + sizeof(hdr->reserved2);
+  
+  length -= sizeof(*hdr);
+  while (length) {
+    guint16 type    = pntohs(pd + offset) & 0x7fff;
+    guint16 val_len = pntohs(pd + offset + 2);
+    
+    if (pd[offset] & 0xf0) {
+      proto_tree_add_item(ntree, offset, 4,
+			  "%s (%u): %s (%u)",
+			  atttype2str(type), type,
+			  value2str(type, val_len), val_len);
+      offset += 4;
+      length -= 4;
+    }
+    else {
+      guint16	pack_len = 4 + val_len;
+      
+      proto_tree_add_item(ntree, offset, pack_len,
+			  "%s (%u): %s",
+			  atttype2str(type), type,
+			  num2str(pd + offset + 4, val_len));
+      offset += pack_len;
+      length -= pack_len;
+    }
+  }
+
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_key_exch(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct ke_hdr *	hdr	= (struct ke_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Key Exchange payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Key Exchange Data");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_id(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct id_hdr *	hdr	= (struct id_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Identification payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->id_type),
+		      "ID type: %s (%u)", id2str(hdr->id_type), hdr->id_type);
+  offset += sizeof(hdr->id_type);
+
+  proto_tree_add_item(ntree, offset, sizeof(hdr->protocol_id),
+		      "Protocol ID: %u", hdr->protocol_id);
+  offset += sizeof(hdr->protocol_id);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->port),
+		      "Port: %u", pntohs(&hdr->port));
+  offset += sizeof(hdr->port);
+  
+  switch (hdr->id_type) {
+    case 1:
+    case 4:
+      proto_tree_add_item(ntree, offset, length-sizeof(*hdr),
+			  "Identification data: %s", ip_to_str(pd+offset));
+      break;
+    case 2:
+    case 3:
+      proto_tree_add_item(ntree, offset, length-sizeof(*hdr),
+			  "Identification data: %s", (char *)(pd+offset));
+      break;
+    default:
+      proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Identification Data");
+  }
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_cert(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct cert_hdr *	hdr	= (struct cert_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Certificate payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->cert_enc),
+		      "Certificate encoding: %u", hdr->cert_enc);
+  offset += sizeof(hdr->cert_enc);
+
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Certificate Data");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_certreq(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct certreq_hdr *	hdr	= (struct certreq_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Certificate Request payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->cert_type),
+		      "Certificate type: %u", hdr->cert_type);
+  offset += sizeof(hdr->cert_type);
+
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Certificate Authority");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_hash(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct hash_hdr *	hdr	= (struct hash_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Hash payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Hash Data");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_sig(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct sig_hdr *	hdr	= (struct sig_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Signature payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Signature Data");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_nonce(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct nonce_hdr *	hdr	= (struct nonce_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Nonce payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Nonce Data");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_notif(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct notif_hdr *	hdr	= (struct notif_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  guint32		doi	= pntohl(&hdr->doi);
+  guint16		msgtype = pntohs(&hdr->msgtype);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Notification payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(doi),
+		      "Domain of Interpretation: %s (%u)", doitype2str(doi), doi);
+  offset += sizeof(doi);
+
+  proto_tree_add_item(ntree, offset, sizeof(hdr->protocol_id),
+		      "Protocol ID: %s (%u)",
+		      proto2str(hdr->protocol_id), hdr->protocol_id);
+  offset += sizeof(hdr->protocol_id);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->spi_size),
+		      "SPI size: %u", hdr->spi_size);
+  offset += sizeof(hdr->spi_size);
+  
+  proto_tree_add_item(ntree, offset, sizeof(msgtype),
+		      "Message type: %s (%u)", msgtype2str(msgtype), msgtype);
+  offset += sizeof(msgtype);
+
+  if (hdr->spi_size) {
+    proto_tree_add_item(ntree, offset, hdr->spi_size, "Security Parameter Index");
+    offset += hdr->spi_size;
+  }
+
+  if (length - sizeof(*hdr)) {
+    proto_tree_add_item(ntree, offset, length - sizeof(*hdr) - hdr->spi_size,
+			"Notification Data");
+    offset += (length - sizeof(*hdr) - hdr->spi_size);
+  }
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_delete(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct delete_hdr *	hdr	 = (struct delete_hdr *)(pd + offset);
+  guint16		length	 = pntohs(&hdr->length);
+  guint32		doi	 = pntohl(&hdr->doi);
+  guint16		num_spis = pntohs(&hdr->num_spis);
+  proto_item *		ti	 = proto_tree_add_item(tree, offset, length, "Delete payload");
+  proto_tree *		ntree	 = proto_tree_new();
+  guint16		i;
+  
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, sizeof(doi),
+		      "Domain of Interpretation: %s (%u)", doitype2str(doi), doi);
+  offset += sizeof(doi);
+
+  proto_tree_add_item(ntree, offset, sizeof(hdr->protocol_id),
+		      "Protocol ID: %s (%u)",
+		      proto2str(hdr->protocol_id), hdr->protocol_id);
+  offset += sizeof(hdr->protocol_id);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->spi_size),
+		      "SPI size: %u", hdr->spi_size);
+  offset += sizeof(hdr->spi_size);
+  
+  proto_tree_add_item(ntree, offset, num_spis,
+		      "Number of SPIs: %u", num_spis);
+  offset += sizeof(hdr->num_spis);
+  
+  for (i = 0; i < num_spis; ++i) {
+    proto_tree_add_item(ntree, offset, hdr->spi_size,
+			"SPI (%d)", i);
+    offset += hdr->spi_size;
+  }
+
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static void
+dissect_vid(const u_char *pd, int offset, frame_data *fd, proto_tree *tree) {
+
+  struct vid_hdr *	hdr	= (struct vid_hdr *)(pd + offset);
+  guint16		length	= pntohs(&hdr->length);
+  proto_item *		ti	= proto_tree_add_item(tree, offset, length, "Vendor ID payload");
+  proto_tree *		ntree	= proto_tree_new();
+
+  proto_item_add_subtree(ti, ntree, ETT_ISAKMP_PAYLOAD);
+  
+  proto_tree_add_item(ntree, offset, sizeof(hdr->next_payload),
+		      "Next payload: %s (%u)",
+		      payloadtype2str(hdr->next_payload), hdr->next_payload);
+  offset += sizeof(hdr->next_payload) * 2;
+  
+  proto_tree_add_item(ntree, offset, sizeof(length),
+		      "Length: %u", length);
+  offset += sizeof(length);
+  
+  proto_tree_add_item(ntree, offset, length - sizeof(*hdr), "Vendor ID");
+  offset += (length - sizeof(*hdr));
+  
+  if (hdr->next_payload < NUM_LOAD_TYPES)
+    (*strfuncs[hdr->next_payload].func)(pd, offset, fd, tree);
+  else
+    dissect_data(pd, offset, fd, tree);
+}
+
+static const char *
+payloadtype2str(guint8 type) {
+
+  if (type < NUM_LOAD_TYPES) return strfuncs[type].str;
+  if (type < 128)            return "RESERVED";
+  if (type < 256)            return "Private USE";
+
+  return "Huh? You should never see this! Shame on you!";
+}
+
+static const char *
+exchtype2str(guint8 type) {
+
+#define NUM_EXCHSTRS	6
+  static const char * exchstrs[NUM_EXCHSTRS] = {
+    "NONE",
+    "Base",
+    "Identity Protection",
+    "Authentication Only",
+    "Aggressive",
+    "Informational"
+  };
+  
+  if (type < NUM_EXCHSTRS) return exchstrs[type];
+  if (type < 32)           return "ISAKMP Future Use";
+  if (type < 240)          return "DOI Specific Use";
+  if (type < 256)          return "Private Use";
+  
+  return "Huh? You should never see this! Shame on you!";
+}
+
+static const char *
+doitype2str(guint32 type) {
+  if (type == 1) return "IPSEC";
+  return "Unknown DOI Type";
+}
+
+static const char *
+msgtype2str(guint16 type) {
+
+#define NUM_PREDEFINED	31
+  static const char *msgs[NUM_PREDEFINED] = {
+    "<UNKNOWN>",
+    "INVALID-PAYLOAD-TYPE",
+    "DOI-NOT-SUPPORTED",
+    "SITUATION-NOT-SUPPORTED",
+    "INVALID-COOKIE",
+    "INVALID-MAJOR-VERSION",
+    "INVALID-MINOR-VERSION",
+    "INVALID-EXCHANGE-TYPE",
+    "INVALID-FLAGS",
+    "INVALID-MESSAGE-ID",
+    "INVALID-PROTOCOL-ID",
+    "INVALID-SPI",
+    "INVALID-TRANSFORM-ID",
+    "ATTRIBUTES-NOT-SUPPORTED",
+    "NO-PROPOSAL-CHOSEN",
+    "BAD-PROPOSAL-SYNTAX",
+    "PAYLOAD-MALFORMED",
+    "INVALID-KEY-INFORMATION",
+    "INVALID-ID-INFORMATION",
+    "INVALID-CERT-ENCODING",
+    "INVALID-CERTIFICATE",
+    "CERT-TYPE-UNSUPPORTED",
+    "INVALID-CERT-AUTHORITY",
+    "INVALID-HASH-INFORMATION",
+    "AUTHENTICATION-FAILED",
+    "INVALID-SIGNATURE",
+    "ADDRESS-NOTIFICATION",
+    "NOTIFY-SA-LIFETIME",
+    "CERTIFICATE-UNAVAILABLE",
+    "UNSUPPORTED-EXCHANGE-TYPE",
+    "UNEQUAL-PAYLOAD-LENGTHS"
+  };
+
+  if (type < NUM_PREDEFINED) return msgs[type];
+  if (type < 8192)           return "RESERVED (Future Use)";
+  if (type < 16384)          return "Private Use";
+  if (type < 16385)          return "CONNECTED";
+  if (type < 24576)          return "RESERVED (Future Use) - status";
+  if (type < 24577)          return "RESPONDER-LIFETIME";
+  if (type < 24578)          return "REPLAY-STATUS";
+  if (type < 24579)          return "INITIAL-CONTACT";
+  if (type < 32768)          return "DOI-specific codes";
+  if (type < 40960)          return "Private Use - status";
+  if (type < 65535)          return "RESERVED (Future Use) - status (2)";
+
+  return "Huh? You should never see this! Shame on you!";
+}
+
+static const char *
+situation2str(guint32 type) {
+
+#define SIT_MSG_NUM	1024
+#define SIT_IDENTITY	0x01
+#define SIT_SECRECY	0x02
+#define SIT_INTEGRITY	0x04
+
+  static char	msg[SIT_MSG_NUM];
+  int		n = 0;
+  char *	sep = "";
+  
+  if (type & SIT_IDENTITY) {
+    n += snprintf(msg, SIT_MSG_NUM-n, "%sIDENTITY", sep);
+    sep = " & ";
+  }
+  if (type & SIT_SECRECY) {
+    n += snprintf(msg, SIT_MSG_NUM-n, "%sSECRECY", sep);
+    sep = " & ";
+  }
+  if (type & SIT_INTEGRITY) {
+    n += snprintf(msg, SIT_MSG_NUM-n, "%sINTEGRITY", sep);
+    sep = " & ";
+  }
+
+  return msg;
+}
+
+static const char *
+value2str(guint16 att_type, guint16 value) {
+  
+  if (value == 0) return "RESERVED";
+  
+  switch (att_type) {
+    case 1:
+    case 2:
+      switch (value) {
+        case 1:  return "Seconds";
+        case 2:  return "Kilobytes";
+        default: return "UNKNOWN-SA-VALUE";
+      }
+    case 3:
+      return "Group-Value";
+    case 4:
+      switch (value) {
+        case 1:  return "Tunnel";
+        case 2:  return "Transport";
+        default: return "UNKNOWN-ENCAPSULATION-VALUE";
+      }
+    case 5:
+      switch (value) {
+        case 1:  return "HMAC-MD5";
+        case 2:  return "HMAC-SHA";
+        case 3:  return "DES-MAC";
+        case 4:  return "KPDK";
+        default: return "UNKNOWN-AUTHENTICATION-VALUE";
+      }
+    case 11:
+      return "Life-Type";
+    default: return "UNKNOWN-ATTRIBUTE-TYPE";
+  }
+}
+
+static const char *
+num2str(const guint8 *pd, guint16 len) {
+
+#define NUMSTR_LEN	1024
+  static char		numstr[NUMSTR_LEN];
+  
+  switch (len) {
+  case 1:
+    snprintf(numstr, NUMSTR_LEN, "%u", *pd);
+    break;
+  case 2:
+    snprintf(numstr, NUMSTR_LEN, "%u", pntohs(pd));
+    break;
+  case 3:
+    snprintf(numstr, NUMSTR_LEN, "%lu", pntohl(pd) & 0x0fff);
+    break;
+  case 4:
+    snprintf(numstr, NUMSTR_LEN, "%lu", pntohl(pd));
+    break;
+  default:
+    snprintf(numstr, NUMSTR_LEN, "<too big>");
+  }
+
+  return numstr;
+}
+
author	Gilbert Ramirez <gram@alumni.rice.edu>	1999-06-11 15:30:55 +0000
committer	Gilbert Ramirez <gram@alumni.rice.edu>	1999-06-11 15:30:55 +0000
commit	34450a8a3570e8f03c503d849e78f7a2ac5e9349 (patch)
tree	869d1bd0afd3386bab96cd39e66045ac8f345f24 /packet-isakmp.c
parent	6d7cf738f0f933f83f0475a1514c09de7d20cb4a (diff)