diff options
| author | Jörg Mayer <jmayer@loplof.de> | 2012-01-14 15:22:10 +0000 |
|---|---|---|
| committer | Jörg Mayer <jmayer@loplof.de> | 2012-01-14 15:22:10 +0000 |
| commit | 6197143d6c549ad6ab2197683773507bd8149500 (patch) | |
| tree | a9e56c42142de8215020c054e4c443e7bfe5e298 | |
| parent | 8e8453df1bfd8d0477581bd4f1dab9eccc629ad3 (diff) | |
Ed Beroset <beroset@mindspring.com> via bug 5531
The ANSI C12.22 protocol is a smart grid protocol for utility meters, including
gas, water and electric. The dissector implemented in the patch file includes
full support for all EPSEM (Extended Protocol Specification for Electricity
Metering) services and includes a full implementation of the C12.22 security
modes.
[...]
To decrypt the attached sample file, you need to set up the key table in the
preferences to include key 0 with a value of 6624C7E23034E4036FE5CB3A8B5DAB44.
Me: Fixes for:
[ 64%] Building C object epan/CMakeFiles/epan.dir/dissectors/packet-c1222.c.o
../../asn1/c1222/packet-c1222-template.c: In function ‘dissect_epsem’:
../../asn1/c1222/packet-c1222-template.c:860:15: error: variable ‘ft’ set but not used [-Werror=unused-but-set-variable]
[ 5%] Building C object epan/CMakeFiles/epan.dir/dissectors/packet-c1222.c.o
../../asn1/c1222/packet-c1222-template.c:103:19: error: ‘c1222_flags’ defined but not used [-Werror=unused-variable]
svn path=/trunk/; revision=40500
| -rw-r--r-- | asn1/Makefile.am | 1 | ||||
| -rw-r--r-- | configure.in | 1 | ||||
| -rw-r--r-- | epan/CMakeLists.txt | 2 | ||||
| -rw-r--r-- | epan/Makefile.common | 2 | ||||
| -rw-r--r-- | epan/crypt/Makefile.common | 4 | ||||
| -rw-r--r-- | epan/crypt/eax.c | 252 | ||||
| -rw-r--r-- | epan/crypt/eax.h | 57 | ||||
| -rw-r--r-- | epan/dissectors/Makefile.common | 2 | ||||
| -rw-r--r-- | epan/dissectors/packet-c1222.c | 1916 | ||||
| -rw-r--r-- | epan/dissectors/packet-c1222.h | 39 |
10 files changed, 2274 insertions, 2 deletions
diff --git a/asn1/Makefile.am b/asn1/Makefile.am index 1e3ae9bf72..fd10d3d7b3 100644 --- a/asn1/Makefile.am +++ b/asn1/Makefile.am @@ -29,6 +29,7 @@ SUBDIRS = \ acse \ ansi_map \ ansi_tcap \ + c1222 \ camel \ cdt \ charging_ase \ diff --git a/configure.in b/configure.in index 4451da7052..225c788311 100644 --- a/configure.in +++ b/configure.in @@ -1872,6 +1872,7 @@ AC_OUTPUT( asn1/acse/Makefile asn1/ansi_map/Makefile asn1/ansi_tcap/Makefile + asn1/c1222/Makefile asn1/camel/Makefile asn1/cdt/Makefile asn1/charging_ase/Makefile diff --git a/epan/CMakeLists.txt b/epan/CMakeLists.txt index 82e222ab5d..e9d6ad2f67 100644 --- a/epan/CMakeLists.txt +++ b/epan/CMakeLists.txt @@ -51,6 +51,7 @@ set(CRYPT_FILES crypt/crypt-md5.c crypt/crypt-rc4.c crypt/crypt-sha1.c + crypt/eax.c ) set(DFILTER_FILES @@ -185,6 +186,7 @@ set(ASN1_DISSECTOR_SRC dissectors/packet-acp133.c dissectors/packet-acse.c dissectors/packet-ansi_tcap.c + dissectors/packet-c1222.c dissectors/packet-camel.c dissectors/packet-cdt.c dissectors/packet-charging_ase.c diff --git a/epan/Makefile.common b/epan/Makefile.common index 737e6a0f10..e8e0a778ef 100644 --- a/epan/Makefile.common +++ b/epan/Makefile.common @@ -155,7 +155,7 @@ LIBWIRESHARK_INCLUDES = \ dissector_filters.h \ dtd.h \ dtd_parse.h \ - eap.h \ + eap.h \ emem.h \ epan.h \ epan_dissect.h \ diff --git a/epan/crypt/Makefile.common b/epan/crypt/Makefile.common index 02d2a753fb..b2119bdf04 100644 --- a/epan/crypt/Makefile.common +++ b/epan/crypt/Makefile.common @@ -34,7 +34,8 @@ LIBAIRPDCAP_SRC = \ crypt-md4.c \ crypt-md5.c \ crypt-rc4.c \ - crypt-sha1.c + crypt-sha1.c \ + eax.c LIBAIRPDCAP_INCLUDES = \ airpdcap_debug.h \ @@ -50,4 +51,5 @@ LIBAIRPDCAP_INCLUDES = \ crypt-md5.h \ crypt-rc4.h \ crypt-sha1.h \ + eax.h \ wep-wpadefs.h diff --git a/epan/crypt/eax.c b/epan/crypt/eax.c new file mode 100644 index 0000000000..ad879d2fa4 --- /dev/null +++ b/epan/crypt/eax.c @@ -0,0 +1,252 @@ +/* eax.c + * Encryption and decryption routines implementing the EAX' encryption mode + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ +#ifdef HAVE_CONFIG_H +#include "config.h" +#endif +#include <stdlib.h> +#ifdef HAVE_LIBGCRYPT +#include <string.h> +/* Use libgcrypt for cipher libraries. */ +#include <gcrypt.h> +#include "eax.h" + +typedef struct { + guint8 L[EAX_SIZEOF_KEY]; + guint8 D[EAX_SIZEOF_KEY]; + guint8 Q[EAX_SIZEOF_KEY]; +} eax_s; + +static eax_s instance; + +/* these are defined as macros so they'll be easy to redo in assembly if desired */ +#define BLK_CPY(dst, src) { memcpy(dst, src, EAX_SIZEOF_KEY); } +#define BLK_XOR(dst, src) { int z; for (z=0; z < EAX_SIZEOF_KEY; z++) dst[z] ^= src[z]; } +static void Dbl(guint8 *out, const guint8 *in); +static void CTR(const guint8 *ws, guint8 *pK, guint8 *pN, guint16 SizeN); +static void CMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN); +static void dCMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN, const guint8 *pC, guint16 SizeC); +void AesEncrypt(unsigned char msg[EAX_SIZEOF_KEY], unsigned char key[EAX_SIZEOF_KEY]); + +/*! + Decrypts cleartext data using EAX' mode (see ANSI Standard C12.22-2008). + + @param[in] pN pointer to cleartext (canonified form) + @param[in] pK pointer to secret key + @param[in,out] pC pointer to ciphertext + @param[in] SizeN byte length of cleartext (pN) buffer + @param[in] SizeK byte length of secret key (pK) + @param[in] SizeC byte length of ciphertext (pC) buffer + @param[in] pMac four-byte Message Authentication Code + @param[in] Mode EAX_MODE_CLEARTEXT_AUTH or EAX_MODE_CIPHERTEXT_AUTH + @return TRUE if message has been authenticated; FALSE if not + authenticated, invalid Mode or error + */ +gboolean Eax_Decrypt(guint8 *pN, guint8 *pK, guint8 *pC, + guint32 SizeN, guint32 SizeK, guint32 SizeC, MAC_T *pMac, + guint8 Mode) +{ + guint8 wsn[EAX_SIZEOF_KEY]; + guint8 wsc[EAX_SIZEOF_KEY]; + int i; + + /* key size must match this implementation */ + if (SizeK != EAX_SIZEOF_KEY) + return FALSE; + + /* the key is new */ + for (i = 0; i < EAX_SIZEOF_KEY; i++) + instance.L[i] = 0; + AesEncrypt(instance.L, pK); + Dbl(instance.D, instance.L); + Dbl(instance.Q, instance.D); + /* the key is set up */ + /* first copy the nonce into our working space */ + BLK_CPY(wsn, instance.D); + if (Mode == EAX_MODE_CLEARTEXT_AUTH) { + dCMAC(pK, wsn, pN, SizeN, pC, SizeC); + } else { + CMAC(pK, wsn, pN, SizeN); + } + /* + * In authentication mode the inputs are: pN, pK (and associated sizes), + * the result is the 4 byte MAC. + */ + if (Mode == EAX_MODE_CLEARTEXT_AUTH) + { + return (memcmp(pMac, &wsn[EAX_SIZEOF_KEY-sizeof(*pMac)], sizeof(*pMac)) ? FALSE : TRUE); + + } + + /* + * In cipher mode the inputs are: pN, pK, pP (and associated sizes), + * the results are pC (and its size) along with the 4 byte MAC. + */ + else if (Mode == EAX_MODE_CIPHERTEXT_AUTH) + { + if (SizeC == 0) + return (memcmp(pMac, &wsn[EAX_SIZEOF_KEY-sizeof(*pMac)], sizeof(*pMac)) ? FALSE : TRUE); + { + /* first copy the nonce into our working space */ + BLK_CPY(wsc, instance.Q); + CMAC(pK, wsc, pC, SizeC); + BLK_XOR(wsc, wsn); + } + if (memcmp(pMac, &wsc[EAX_SIZEOF_KEY-sizeof(*pMac)], sizeof(*pMac)) == 0) + { + CTR(wsn, pK, pC, SizeC); + return TRUE; + } + } + return FALSE; +} + +/* set up D or Q from L */ +static void Dbl(guint8 *out, const guint8 *in) +{ + int i; + guint8 carry = 0; + + /* this might be a lot more efficient in assembly language */ + for (i=0; i < EAX_SIZEOF_KEY; i++) + { + out[i] = ( in[i] << 1 ) | carry; + carry = (in[i] & 0x80) ? 1 : 0; + } + if (carry) + out[0] ^= 0x87; +} + +static void CMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN) +{ + dCMAC(pK, ws, pN, SizeN, NULL, 0); +} + +static void dCMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN, const guint8 *pC, guint16 SizeC) +{ + gcry_cipher_hd_t cipher_hd; + guint8 *work; + guint8 *ptr; + guint16 SizeT = SizeN + SizeC; + guint16 worksize = SizeT; + + /* worksize must be an integral multiple of 16 */ + if (SizeT & 0xf) { + worksize += 0x10 - (worksize & 0xf); + } + work = g_malloc(worksize); + if (work == NULL) { + return; + } + memcpy(work, pN, SizeN); + memcpy(&work[SizeN], pC, SizeC); + /* + * pad the data if necessary, and XOR Q or D, depending on + * whether data was padded or not + */ + if (worksize != SizeT) { + work[SizeT] = 0x80; + for (ptr = &work[SizeT+1]; ptr < &work[worksize]; ptr++) + *ptr = 0; + ptr= &work[worksize-0x10]; + BLK_XOR(ptr, instance.Q); + } else { + ptr = &work[worksize-0x10]; + BLK_XOR(ptr, instance.D); + } + /* open the cipher */ + if (gcry_cipher_open(&cipher_hd, GCRY_CIPHER_AES128, GCRY_CIPHER_MODE_CBC,0)){/* GCRY_CIPHER_CBC_MAC)) { */ + g_free(work); + return; + } + if (gcry_cipher_setkey(cipher_hd, pK, EAX_SIZEOF_KEY)) { + g_free(work); + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_setiv(cipher_hd, ws, EAX_SIZEOF_KEY)) { + g_free(work); + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_encrypt(cipher_hd, work, worksize, work, worksize)) { + g_free(work); + gcry_cipher_close(cipher_hd); + return; + } + memcpy(ws, ptr, EAX_SIZEOF_KEY); + + g_free(work); + gcry_cipher_close(cipher_hd); + return; +} + +static void CTR(const guint8 *ws, guint8 *pK, guint8 *pN, guint16 SizeN) +{ + gcry_cipher_hd_t cipher_hd; + guint8 ctr[EAX_SIZEOF_KEY]; + + BLK_CPY(ctr, ws); + ctr[12] &= 0x7f; + ctr[14] &= 0x7f; + /* open the cipher */ + if (gcry_cipher_open(&cipher_hd, GCRY_CIPHER_AES128, GCRY_CIPHER_MODE_CTR, 0)) { + return; + } + if (gcry_cipher_setkey(cipher_hd, pK, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_setctr(cipher_hd, ctr, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_encrypt(cipher_hd, pN, SizeN, pN, SizeN)) { + gcry_cipher_close(cipher_hd); + return; + } + gcry_cipher_close(cipher_hd); + return; +} + +void AesEncrypt(unsigned char msg[EAX_SIZEOF_KEY], unsigned char key[EAX_SIZEOF_KEY]) +{ + gcry_cipher_hd_t cipher_hd; + + /* open the cipher */ + if (gcry_cipher_open(&cipher_hd, GCRY_CIPHER_AES128, GCRY_CIPHER_MODE_ECB, 0)) { + return; + } + if (gcry_cipher_setkey(cipher_hd, key, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_encrypt(cipher_hd, msg, EAX_SIZEOF_KEY, msg, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + gcry_cipher_close(cipher_hd); + return; +} +#endif /* HAVE_LIBGCRYPT */ diff --git a/epan/crypt/eax.h b/epan/crypt/eax.h new file mode 100644 index 0000000000..f9950e7120 --- /dev/null +++ b/epan/crypt/eax.h @@ -0,0 +1,57 @@ +/* eax.h + * Encryption and decryption routines implementing the EAX' encryption mode + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ +#ifdef HAVE_CONFIG_H +#include "config.h" +#endif + +#include <glib.h> +typedef struct tagMAC_T +{ + guint8 Mac[4]; +} MAC_T; + +#define EAX_MODE_CLEARTEXT_AUTH 1 +#define EAX_MODE_CIPHERTEXT_AUTH 2 + +#define EAX_SIZEOF_KEY 16 + +/*! + Decrypts cleartext data using EAX' mode (see ANSI Standard C12.22-2008). + + @param[in] pN pointer to cleartext (canonified form) + @param[in] pK pointer to secret key + @param[in,out] pC pointer to ciphertext + @param[in] SizeN byte length of cleartext (pN) buffer + @param[in] SizeK byte length of secret key (pK) + @param[in] SizeC byte length of ciphertext (pC) buffer + @param[in] pMac four-byte Message Authentication Code + @param[in] Mode EAX_MODE_CLEARTEXT_AUTH or EAX_MODE_CIPHERTEXT_AUTH + @return TRUE if message has been authenticated; FALSE if not + authenticated, invalid Mode or error + */ +gboolean Eax_Decrypt(guint8 *pN, guint8 *pK, guint8 *pC, + guint32 SizeN, guint32 SizeK, guint32 SizeC, MAC_T *pMac, + guint8 Mode); + diff --git a/epan/dissectors/Makefile.common b/epan/dissectors/Makefile.common index 88240cfeae..eca3de3112 100644 --- a/epan/dissectors/Makefile.common +++ b/epan/dissectors/Makefile.common @@ -100,6 +100,7 @@ ASN1_DISSECTOR_SRC = \ packet-acp133.c \ packet-acse.c \ packet-ansi_tcap.c \ + packet-c1222.c \ packet-camel.c \ packet-cdt.c \ packet-charging_ase.c \ @@ -1111,6 +1112,7 @@ DISSECTOR_INCLUDES = \ packet-btl2cap.h \ packet-btrfcomm.h \ packet-btsdp.h \ + packet-c1222.h \ packet-camel.h \ packet-cdt.h \ packet-charging_ase.h \ diff --git a/epan/dissectors/packet-c1222.c b/epan/dissectors/packet-c1222.c new file mode 100644 index 0000000000..06cb39b543 --- /dev/null +++ b/epan/dissectors/packet-c1222.c @@ -0,0 +1,1916 @@ +/* Do not modify this file. */ +/* It is created automatically by the ASN.1 to Wireshark dissector compiler */ +/* packet-c1222.c */ +/* ../../../tools/asn2wrs.py -b -p c1222 -c ../../../asn1/c1222/c1222.cnf -s ../../../asn1/c1222/packet-c1222-template -D ../../../asn1/c1222 -O ../../../epan/dissectors c1222.asn */ + +/* Input file: packet-c1222-template.c */ + +#line 1 "../../asn1/c1222/packet-c1222-template.c" +/* packet-c1222.c + * Routines for ANSI C12.22 packet dissection + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ + +#ifdef HAVE_CONFIG_H +# include "config.h" +#endif + +#include <glib.h> +#include <epan/conversation.h> +#include <wsutil/crc16.h> +#include <epan/expert.h> +#include <epan/packet.h> +#include <epan/prefs.h> +#include <epan/strutil.h> +#include <epan/dissectors/packet-ber.h> +#include <epan/dissectors/packet-tcp.h> +#include <epan/uat.h> +#include <epan/crypt/eax.h> + +#include <stdio.h> +#include <string.h> + +#include "packet-c1222.h" + +#define PNAME "ANSI C12.22" +#define PSNAME "C12.22" +#define PFNAME "c1222" +#define C1222_PORT 1153 /* TCP port */ + +/* C12.22 flag definitions */ +#define C1222_EPSEM_FLAG_RESERVED 0x80 +#define C1222_EPSEM_FLAG_RECOVERY_SESSION 0x40 +#define C1222_EPSEM_FLAG_PROXY_SERVICE_USED 0x20 +#define C1222_EPSEM_FLAG_ED_CLASS_INCLUDED 0x10 +#define C1222_EPSEM_FLAG_SECURITY_MODE 0x0c +#define C1222_EPSEM_FLAG_RESPONSE_CONTROL 0x03 + +/* if the packet is encrypted, it can be + * good, bad, or simply not checked + */ +#define C1222_EPSEM_CRYPTO_GOOD 0x01 +#define C1222_EPSEM_CRYPTO_BAD 0x02 + +/* these defines are for each of the C12.22 services */ +#define C1222_CMD_IDENTIFY 0x20 +#define C1222_CMD_TERMINATE 0x21 +#define C1222_CMD_DISCONNECT 0x22 +#define C1222_CMD_FULL_READ 0x30 +#define C1222_CMD_DEFAULT_READ 0x3E +#define C1222_CMD_PARTIAL_READ_OFFSET 0x3F +#define C1222_CMD_FULL_WRITE 0x40 +#define C1222_CMD_DEFAULT_WRITE 0x4E +#define C1222_CMD_PARTIAL_WRITE_OFFSET 0x4F +#define C1222_CMD_LOGON 0x50 +#define C1222_CMD_SECURITY 0x51 +#define C1222_CMD_LOGOFF 0x52 +#define C1222_CMD_AUTHENTICATE 0x53 +#define C1222_CMD_NEGOTIATE 0x60 +#define C1222_CMD_WAIT 0x70 +#define C1222_CMD_TIMING_SETUP 0x71 + +static dissector_handle_t c1222_handle=NULL; + +/* Initialize the protocol and registered fields */ +static int proto_c1222 = -1; +static int global_c1222_port = C1222_PORT; +static gboolean c1222_desegment = TRUE; +static gboolean c1222_decrypt = TRUE; + + +/*--- Included file: packet-c1222-hf.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-hf.c" +static int hf_c1222_C1222_MESSAGE_PDU = -1; /* C1222_MESSAGE */ +static int hf_c1222_aSO_context = -1; /* ASO_qualifier */ +static int hf_c1222_called_AP_title = -1; /* Called_AP_title */ +static int hf_c1222_called_AP_invocation_id = -1; /* Called_AP_invocation_id */ +static int hf_c1222_calling_AP_title = -1; /* Calling_AP_title */ +static int hf_c1222_calling_AE_qualifier = -1; /* Calling_AE_qualifier */ +static int hf_c1222_calling_AP_invocation_id = -1; /* Calling_AP_invocation_id */ +static int hf_c1222_mechanism_name = -1; /* Mechanism_name */ +static int hf_c1222_calling_authentication_value = -1; /* Calling_authentication_value */ +static int hf_c1222_user_information = -1; /* User_information */ +static int hf_c1222_calling_authentication_value_indirect = -1; /* INTEGER */ +static int hf_c1222_calling_authentication_value_encoding = -1; /* Authentication_value_encoding */ +static int hf_c1222_calling_authentication_value_single_asn1 = -1; /* Calling_authentication_value_single_asn1 */ +static int hf_c1222_calling_authentication_value_octet_aligned = -1; /* OCTET_STRING */ +static int hf_c1222_calling_authentication_value_c1222 = -1; /* Calling_authentication_value_c1222 */ +static int hf_c1222_calling_authentication_value_c1221 = -1; /* Calling_authentication_value_c1221 */ +static int hf_c1222_key_id_element = -1; /* Key_id_element */ +static int hf_c1222_iv_element = -1; /* Iv_element */ +static int hf_c1222_c1221_auth_identification = -1; /* OCTET_STRING_SIZE_CONSTR001 */ +static int hf_c1222_c1221_auth_request = -1; /* OCTET_STRING_SIZE_1_255 */ +static int hf_c1222_c1221_auth_response = -1; /* OCTET_STRING_SIZE_CONSTR002 */ + +/*--- End of included file: packet-c1222-hf.c ---*/ +#line 93 "../../asn1/c1222/packet-c1222-template.c" +/* These are the EPSEM pieces */ +/* first, the flag components */ +static int hf_c1222_epsem_flags = -1; +static int hf_c1222_epsem_flags_reserved = -1; +static int hf_c1222_epsem_flags_recovery = -1; +static int hf_c1222_epsem_flags_proxy = -1; +static int hf_c1222_epsem_flags_ed_class = -1; +static int hf_c1222_epsem_flags_security_modes = -1; +static int hf_c1222_epsem_flags_response_control = -1; +/* and the structure of the flag components */ +/* +static const int *c1222_flags[] = { + &hf_c1222_epsem_flags_reserved, + &hf_c1222_epsem_flags_recovery, + &hf_c1222_epsem_flags_proxy, + &hf_c1222_epsem_flags_ed_class, + &hf_c1222_epsem_flags_security_modes, + &hf_c1222_epsem_flags_response_control, + NULL +}; +*/ +/* next the optional ed_class */ +static int hf_c1222_epsem_ed_class = -1; +/* now the aggregate epsem */ +static int hf_c1222_epsem_total = -1; +/* generic command */ +static int hf_c1222_cmd = -1; +static int hf_c1222_err = -1; +static int hf_c1222_data = -1; +static int hf_c1222_crc = -1; +/* individual epsem fields */ +static int hf_c1222_logon_id = -1; +static int hf_c1222_logon_user = -1; +static int hf_c1222_security_password = -1; +static int hf_c1222_auth_len = -1; +static int hf_c1222_auth_data = -1; +static int hf_c1222_read_table = -1; +static int hf_c1222_read_offset = -1; +static int hf_c1222_read_count = -1; +static int hf_c1222_write_table = -1; +static int hf_c1222_write_offset = -1; +static int hf_c1222_write_size = -1; +static int hf_c1222_write_data = -1; +static int hf_c1222_write_chksum = -1; +static int hf_c1222_wait_secs = -1; +static int hf_c1222_neg_pkt_size = -1; +static int hf_c1222_neg_nbr_pkts = -1; +static int hf_c1222_timing_setup_traffic = -1; +static int hf_c1222_timing_setup_inter_char = -1; +static int hf_c1222_timing_setup_resp_to = -1; +static int hf_c1222_timing_setup_nbr_retries = -1; + +/* the MAC */ +static int hf_c1222_epsem_mac = -1; + +/* crypto result flags */ +static int hf_c1222_epsem_crypto_good = -1; +static int hf_c1222_epsem_crypto_bad = -1; + +/* Initialize the subtree pointers */ +static int ett_c1222 = -1; +static int ett_c1222_epsem = -1; +static int ett_c1222_flags = -1; +static int ett_c1222_crypto = -1; +static int ett_c1222_cmd = -1; + +#ifdef HAVE_LIBGCRYPT +/* these pointers are for the header elements that may be needed to verify the crypto */ +static guint8 *aSO_context = NULL; +static guint8 *called_AP_title = NULL; +static guint8 *called_AP_invocation_id = NULL; +static guint8 *calling_AE_qualifier = NULL; +static guint8 *calling_AP_invocation_id = NULL; +static guint8 *mechanism_name = NULL; +static guint8 *calling_authentication_value = NULL; +static guint8 *user_information = NULL; +static guint8 *calling_AP_title = NULL; +static guint8 *key_id_element = NULL; +static guint8 *iv_element = NULL; + +/* these are the related lengths */ +static guint32 aSO_context_len = 0; +static guint32 called_AP_title_len = 0; +static guint32 called_AP_invocation_id_len = 0; +static guint32 calling_AE_qualifier_len = 0; +static guint32 calling_AP_invocation_id_len = 0; +static guint32 mechanism_name_len = 0; +static guint32 calling_authentication_value_len = 0; +static guint32 user_information_len = 0; +static guint32 calling_AP_title_len = 0; +static guint32 key_id_element_len = 0; +static guint32 iv_element_len = 0; +#endif /* HAVE_LIBGCRYPT */ + + +/*--- Included file: packet-c1222-ett.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-ett.c" +static gint ett_c1222_C1222_MESSAGE_U = -1; +static gint ett_c1222_Calling_authentication_value_U = -1; +static gint ett_c1222_Authentication_value_encoding = -1; +static gint ett_c1222_Calling_authentication_value_single_asn1 = -1; +static gint ett_c1222_Calling_authentication_value_c1222_U = -1; +static gint ett_c1222_Calling_authentication_value_c1221_U = -1; + +/*--- End of included file: packet-c1222-ett.c ---*/ +#line 188 "../../asn1/c1222/packet-c1222-template.c" + + +/*------------------------------ + * Data Structures + *------------------------------ + */ +typedef struct _c1222_uat_data { + guint keynum; + guchar *key; + guint keylen; +} c1222_uat_data_t; + +static const value_string c1222_security_modes[] = { + { 0x00, "Cleartext"}, + { 0x01, "Cleartext with authentication"}, + { 0x02, "Ciphertext with authentication"}, + { 0, NULL } +}; + +static const value_string c1222_response_control[] = { + { 0x00, "Always respond"}, + { 0x01, "Respond on exception"}, + { 0x02, "Never respond"}, + { 0, NULL } +}; + +static const value_string tableflags[] = { + { 0x00, "ST" }, + { 0x08, "MT" }, + { 0x10, "Pending ST" }, + { 0x18, "Pending MT" }, + { 0, NULL } +}; + +static const value_string procflags[] = { + { 0x00, "SF" }, + { 0x01, "MF" }, + { 0, NULL } +}; + +static const value_string commandnames[] = { +/* error codes are in the range 0x00 - 0x1f inclusive */ + { 0x00, "OK" }, + { 0x01, "Error" }, + { 0x02, "Service Not Supported" }, + { 0x03, "Insufficient Security Clearance" }, + { 0x04, "Operation Not Possible" }, + { 0x05, "Inappropriate Action Requested" }, + { 0x06, "Device Busy" }, + { 0x07, "Data Not Ready" }, + { 0x08, "Data Locked" }, + { 0x09, "Renegotiate Request" }, + { 0x0A, "Invalid Service Sequence State" }, + { 0x0B, "Security Mechanism Error" }, + { 0x0C, "Unknown Application Title" }, + { 0x0D, "Network Time-out" }, + { 0x0E, "Network Not Reachable" }, + { 0x0F, "Request Too Large" }, + { 0x10, "Response Too Large" }, + { 0x11, "Segmentation Not Possible" }, + { 0x12, "Segmentation Error" }, +/* commands are in the range 0x20 - 0x7f inclusive */ + {C1222_CMD_IDENTIFY, "Identify" }, + {C1222_CMD_TERMINATE, "Terminate" }, + {C1222_CMD_DISCONNECT, "Disconnect" }, + {C1222_CMD_FULL_READ, "Full Read" }, + {C1222_CMD_DEFAULT_READ, "Default Read" }, + {C1222_CMD_PARTIAL_READ_OFFSET, "Partial Read Offset" }, + {C1222_CMD_FULL_WRITE, "Full Write" }, + {C1222_CMD_DEFAULT_WRITE, "Default Write" }, + {C1222_CMD_PARTIAL_WRITE_OFFSET, "Partial Write Offset" }, + {C1222_CMD_LOGON, "Logon" }, + {C1222_CMD_SECURITY, "Security" }, + {C1222_CMD_LOGOFF, "Logoff" }, + {C1222_CMD_AUTHENTICATE, "Authenticate" }, + {C1222_CMD_NEGOTIATE, "Negotiate" }, + {C1222_CMD_NEGOTIATE | 0x1, "Negotiate w/ 1 Baud Rate" }, + {C1222_CMD_NEGOTIATE | 0x2, "Negotiate w/ 2 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x3, "Negotiate w/ 3 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x4, "Negotiate w/ 4 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x5, "Negotiate w/ 5 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x6, "Negotiate w/ 6 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x7, "Negotiate w/ 7 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x8, "Negotiate w/ 8 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x9, "Negotiate w/ 9 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0xA, "Negotiate w/ 10 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0xB, "Negotiate w/ 11 Baud Rates" }, + {C1222_CMD_WAIT, "Wait" }, + {C1222_CMD_TIMING_SETUP, "Timing Setup" }, + { 0, NULL } +}; + +#ifdef HAVE_LIBGCRYPT +/* these are for the key tables */ +UAT_HEX_CB_DEF(c1222_users, keynum, c1222_uat_data_t) +UAT_BUFFER_CB_DEF(c1222_users, key, c1222_uat_data_t, key, keylen) + +static c1222_uat_data_t *c1222_uat_data = NULL; +static guint num_c1222_uat_data = 0; +static uat_t *c1222_uat; + +/* these macros ares used to populate fields needed to verify crypto */ +#define FILL_START int length, start_offset = offset; +#define FILL_TABLE(fieldname) \ + length = offset - start_offset; \ + fieldname = tvb_memdup(tvb, start_offset, length); \ + fieldname##_len = length; +#define FILL_TABLE_TRUNCATE(fieldname, len) \ + length = 1 + 2*(offset - start_offset); \ + fieldname = tvb_memdup(tvb, start_offset, length); \ + fieldname##_len = len; +#else /* HAVE_LIBGCRYPT */ +#define FILL_TABLE(fieldname) +#define FILL_TABLE_TRUNCATE(fieldname, len) +#define FILL_START +#endif /* HAVE_LIBGCRYPT */ + +/*------------------------------ + * Function Prototypes + *------------------------------ + */ +void proto_reg_handoff_c1222(void); + + +/*------------------------------ + * Code + *------------------------------ + */ + +/** + * Calculates simple one's complement checksum. + * + * \param tvb pointer to tvbuff containing data to be checksummed + * \param offset offset within tvbuff to beginning of data + * \param len length of data to be checksummed + * \returns calculated checksum + */ +static guint8 +c1222_cksum(tvbuff_t *tvb, gint offset, int len) +{ + guint8 sum; + for (sum = 0; len; offset++, len--) + sum += tvb_get_guint8(tvb, offset); + return ~sum + 1; +} +/** + * Dissects C12.22 packet in detail (with a tree). + * + * \param tvb input buffer containing packet to be dissected + * \param pinfo + * \param tree + * \param length + * \param offset + */ +static void +parse_c1222_detailed(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int cmd, guint32 *length, int *offset) +{ + guint16 user_id = 0; + guint8 *user_name = NULL; + guint8 *password = NULL; + guint8 auth_len = 0; + gchar *auth_req = NULL; + guint16 table = 0; + guint16 tblsize = 0; + guint8 chksum = 0; + guint16 calcsum = 0; + guint8 wait_seconds = 0; + int numrates = 0; + guint16 packet_size; + guint8 nbr_packet; + /* timing setup parameters */ + guint8 traffic; + guint8 inter_char; + guint8 resp_to; + guint8 nbr_retries; + proto_item *item = NULL; + + /* special case to simplify handling of Negotiate service */ + if ((cmd & 0xF0) == C1222_CMD_NEGOTIATE) { + numrates = cmd & 0x0F; + cmd = C1222_CMD_NEGOTIATE; + } + proto_tree_add_uint(tree, cmd >= 0x20 ? hf_c1222_cmd : hf_c1222_err, tvb, *offset, 1, cmd); + (*offset)++; + (*length)--; + switch (cmd) { + case C1222_CMD_LOGON: + if (*length >= 12) { + user_id = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_logon_id, tvb, *offset, 2, user_id); + *offset += 2; + user_name = tvb_get_ephemeral_string(tvb, *offset, 10); + proto_tree_add_string(tree, hf_c1222_logon_user, tvb, *offset, 10, user_name); + *offset += 10; + *length -= 12; + proto_item_set_text(tree, "C12.22 EPSEM: %s (id %d, user \"%s\")", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), user_id, user_name); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 LOGON command truncated"); + } + break; + case C1222_CMD_SECURITY: + if (*length >= 20) { + password = tvb_get_ephemeral_string(tvb, *offset, 20); + proto_tree_add_string(tree, hf_c1222_security_password, tvb, *offset, 20, password); + *offset += 20; + *length -= 20; + if (*length >= 2) { + user_id = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_logon_id, tvb, *offset, 2, user_id); + *offset += 2; + *length -= 2; + proto_item_set_text(tree, "C12.22 EPSEM: %s (password \"%s\", id %d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), password, user_id); + } else { + proto_item_set_text(tree, "C12.22 EPSEM: %s (password \"%s\")", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), password); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 SECURITY command truncated"); + } + break; + case C1222_CMD_AUTHENTICATE: + if (*length >= 1) { + auth_len = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_auth_len, tvb, *offset, 1, auth_len); + *offset += 1; + if (*length >= auth_len) { + auth_req = tvb_bytes_to_str(tvb, *offset, auth_len); + proto_tree_add_item(tree, hf_c1222_auth_data, tvb, *offset, auth_len, ENC_NA); + *offset += auth_len; + *length -= auth_len + 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (%d bytes: %s)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), auth_len, auth_req); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 AUTHENTICATE command truncated"); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 AUTHENTICATE command truncated"); + } + break; + case C1222_CMD_FULL_READ: + if (*length >= 2) { + table = tvb_get_ntohs(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_read_table, tvb, *offset, 2, table); + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + *offset += 2; + *length -= 2; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 READ command truncated"); + } + break; + case C1222_CMD_PARTIAL_READ_OFFSET: + if (*length >= 7) { + table = tvb_get_ntohs(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_read_table, tvb, *offset, 2, table); + *offset += 2; + *length -= 2; + proto_tree_add_item(tree, hf_c1222_read_offset, tvb, *offset, 3, ENC_BIG_ENDIAN); + *offset += 3; + *length -= 3; + proto_tree_add_item(tree, hf_c1222_read_count, tvb, *offset, 2, ENC_BIG_ENDIAN); + *offset += 2; + *length -= 2; + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 READ command truncated"); + } + break; + case C1222_CMD_FULL_WRITE: + if (*length >= 5) { + table = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_table, tvb, *offset, 2, table); + *offset += 2; + *length -= 2; + tblsize = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_size, tvb, *offset, 2, tblsize); + *offset += 2; + *length -= 2; + if (*length >= tblsize+1U) { + proto_tree_add_item(tree, hf_c1222_write_data, tvb, *offset, tblsize, ENC_NA); + *offset += tblsize; + *length -= tblsize; + chksum = tvb_get_guint8(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_write_chksum, tvb, *offset, 1, chksum); + calcsum = c1222_cksum(tvb, (*offset)-tblsize, tblsize); + if (chksum != calcsum) { + expert_add_info_format(pinfo, item, PI_CHECKSUM, PI_ERROR, "Bad checksum [should be 0x%02x]", calcsum); + } + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + *offset += 1; + *length -= 1; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + break; + case C1222_CMD_PARTIAL_WRITE_OFFSET: + if (*length >= 8) { + table = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_table, tvb, *offset, 2, table); + *offset += 2; + *length -= 2; + proto_tree_add_item(tree, hf_c1222_write_offset, tvb, *offset, 3, ENC_BIG_ENDIAN); + *offset += 3; + *length -= 3; + tblsize = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_size, tvb, *offset, 2, tblsize); + *offset += 2; + *length -= 2; + if (*length >= tblsize+1U) { + proto_tree_add_item(tree, hf_c1222_write_data, tvb, *offset, tblsize, ENC_NA); + *offset += tblsize; + *length -= tblsize; + chksum = tvb_get_guint8(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_write_chksum, tvb, *offset, 1, chksum); + calcsum = c1222_cksum(tvb, (*offset)-tblsize, tblsize); + if (chksum != calcsum) { + expert_add_info_format(pinfo, item, PI_CHECKSUM, PI_ERROR, "Bad checksum [should be 0x%02x]", calcsum); + } + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + *offset += 1; + *length -= 1; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + break; + case C1222_CMD_WAIT: + if (*length >= 1) { + wait_seconds = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_wait_secs, tvb, *offset, 1, wait_seconds); + *offset += 1; + *length -= 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (%d seconds)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), wait_seconds); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WAIT command truncated"); + } + break; + case C1222_CMD_NEGOTIATE: + if (*length >= 3) { + packet_size = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_neg_pkt_size, tvb, *offset, 2, packet_size); + *offset += 2; + *length -= 2; + nbr_packet = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_neg_nbr_pkts, tvb, *offset, 1, nbr_packet); + *offset += 1; + *length -= 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (pkt size %d, num pkts %d, with %d baud rates)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), packet_size, nbr_packet, numrates); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 NEGOTIATE command truncated"); + } + break; + case C1222_CMD_TIMING_SETUP: + if (*length >= 4) { + traffic = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_traffic, tvb, *offset, 1, traffic); + *offset += 1; + *length -= 1; + inter_char = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_inter_char, tvb, *offset, 1, inter_char); + *offset += 1; + *length -= 1; + resp_to = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_resp_to, tvb, *offset, 1, resp_to); + *offset += 1; + *length -= 1; + nbr_retries = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_nbr_retries, tvb, *offset, 1, nbr_retries); + *offset += 1; + *length -= 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (traffic to %d s, inter-char to %d s, response to %d s, %d retries)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), traffic, inter_char, resp_to, nbr_retries); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 NEGOTIATE command truncated"); + } + break; + + default: + /* don't do anything */ + proto_item_set_text(tree, "C12.22 EPSEM: %s", val_to_str(cmd, commandnames, "Unknown (0x%02x)")); + if (*length) { + if (*length >= *length) { + proto_tree_add_item(tree, hf_c1222_data, tvb, *offset, *length, ENC_NA); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 unknown command truncated"); + } + } + break; + } +} + +#ifdef HAVE_LIBGCRYPT +typedef struct tagTOP_ELEMENT_CONTROL +{ + /* TRUE if this tag is required */ + gboolean required; + /* TRUE if we must truncate this tag */ + gboolean truncate; + /* actual hex value of the tag we're seeking */ + guint8 tag; + /* if TRUE, add tag and length before copying */ + gboolean addtag; + /* pointer to pointer to memory copy of element */ + guint8 **element; + /* pointer to element length */ + guint32 *length; +} TOP_ELEMENT_CONTROL; + +static const TOP_ELEMENT_CONTROL canonifyTable[] = { + { FALSE, FALSE, 0xA1, TRUE, &aSO_context, &aSO_context_len }, + { TRUE , FALSE, 0xA2, TRUE, &called_AP_title, &called_AP_title_len }, + { FALSE, FALSE, 0xA4, TRUE, &called_AP_invocation_id, &called_AP_invocation_id_len }, + { FALSE, FALSE, 0xA3, TRUE, &calling_AE_qualifier, &calling_AE_qualifier_len }, + { TRUE, FALSE, 0xA8, TRUE, &calling_AP_invocation_id, &calling_AP_invocation_id_len }, + { FALSE, FALSE, 0x8B, TRUE, &mechanism_name, &mechanism_name_len }, + { FALSE, FALSE, 0xAC, TRUE, &calling_authentication_value, &calling_authentication_value_len }, + { TRUE , TRUE , 0xBE, TRUE, &user_information, &user_information_len }, + { FALSE, FALSE, 0xA6, TRUE, &calling_AP_title, &calling_AP_title_len }, + { FALSE, FALSE, 0xAC, FALSE, &key_id_element, &key_id_element_len }, + { FALSE, FALSE, 0xAC, FALSE, &iv_element, &iv_element_len }, + { FALSE, FALSE, 0x0, TRUE, NULL, NULL } +}; + +/** + * Calculates the size of the passed number n as encoded as a BER length field. + * + * \param n is the length value to be BER encoded + * \returns the sized of the encoding + */ +static guint32 +get_ber_len_size(guint32 n) +{ + guint32 len = 1; + if (n > 0x7f) len++; + if (n > 0xff) len++; + if (n > 0xffff) len++; + if (n > 0xffffff) len++; + return len; +} +/** + * Encodes the passed value n as a BER-encoded length at puts it in memory. + * + * \param ptr points to the buffer to be written + * \param n is the length to be BER encoded + * \maxsize is the maximum number of bytes we're allowed to write + * \returns length of encoded value in bytes + */ +static int +encode_ber_len(guint8 *ptr, guint32 n, int maxsize) +{ + int len = get_ber_len_size(n); + if (len > maxsize) return 0; + if (len == 1) { + *ptr = 0x7f & n; + } else { + *ptr = (len -1) | 0x80; + for (ptr += len-1; n; n >>= 8) + *ptr-- = n & 0xff; + } + return len; + +} + +/** + * Checks a new encryption table item for validity. + * + * \param n points to the new record + * \param err is updated to point to an error string if needed + */ +static void +c1222_uat_data_update_cb(void* n, const char** err) +{ + c1222_uat_data_t* new_rec = n; + + if (new_rec->keynum > 0xff) { + *err = "Invalid key number; must be less than 256"; + } + if (new_rec->keylen != EAX_SIZEOF_KEY) { + *err = "Invalid key size; must be 16 bytes"; + } +} + +/** + * Canonifies header fields in preparation for authenticating and/or decrypting the packet. + * + * \param buff points to the allocated canonization buffer + * \param offset points to start of unallocated space in buffer and + is updated as we put bytes into buffer + * \param buffsize total size of allocated buffer + * \return FALSE if element is required and not present; otherwise TRUE + */ +static gboolean +canonify_unencrypted_header(guchar *buff, guint32 *offset, guint32 buffsize) +{ + const TOP_ELEMENT_CONTROL *t = canonifyTable; + guint32 len; + + for (t = canonifyTable; t->element != NULL; t++) + { + len = *(t->length); + if (t->required && *(t->element) == NULL) + return FALSE; + if (*(t->element) != NULL) { + if (t->addtag) { + /* recreate original tag and length */ + buff[(*offset)++] = t->tag; + (*offset) += encode_ber_len(&buff[*offset], len, 4); + } + if (t->truncate) { + len = 3+2*get_ber_len_size(len); + } + /* bail out if the cannonization buffer is too small */ + /* this should never happen! */ + if (buffsize < *offset + len) { + return FALSE; + } + memcpy(&buff[*offset], *(t->element), len); + (*offset) += len; + g_free(*(t->element)); + *(t->element) = NULL; + } + } + return TRUE; +} + +/** + * Looks up the required key in the key table. + * + * \param keybuf is updated with a copy of the key data if successful lookup. + * \param keyid is the ID number of the desired key + * \returns TRUE if key was found; otherwise FALSE + */ +static gboolean +keylookup(guint8 *keybuff, guint8 keyid) +{ + guint i; + + if (c1222_uat_data == NULL) + return FALSE; + for (i = 0; i < num_c1222_uat_data; i++) { + if (c1222_uat_data[i].keynum == keyid) { + memcpy(keybuff, c1222_uat_data[i].key, EAX_SIZEOF_KEY); + return TRUE; + } + } + return FALSE; +} +#endif /* HAVE_LIBGCRYPT */ + +/** + * Authenticates and decrypts the passed packet. + * + * \param buffer points to a memory copy of the packet to be authenticated/decrypted + * and contains the decrypted value on successful return. + * \param length lenth of input packet + * \param decrypt TRUE if packet is to be authenticated and decrypted; FALSE if authentication only is requested + * \returns TRUE if the requested operation was successful; otherwise FALSE + */ +static gboolean +decrypt_packet(guchar *buffer, guint32 length, gboolean decrypt) +{ +#ifdef HAVE_LIBGCRYPT +#define CANONBUFFSIZE 300U + guchar canonbuff[CANONBUFFSIZE]; + guint8 c1222_key[EAX_SIZEOF_KEY]; + guchar key_id = 0; + guint32 offset = 0; + gboolean status = FALSE; + + /* must be at least 4 bytes long to include the MAC */ + if (length < 4) + return status; + if (key_id_element != NULL) + key_id = key_id_element[0]; + /* extract unencrypted header information */ + if (!canonify_unencrypted_header(canonbuff, &offset, CANONBUFFSIZE)) + return status; + /* decrypt and authenticate in place */ +/* PARAMETERS: pN : Pointer to ClearText (Input, Canonified form). */ +/* pK : Pointer to secret key (Input). */ +/* pC : Pointer to CipherText (Input/Output). */ +/* SizeN : Byte length of ClearText buffer. */ +/* SizeK : Byte length of secret key. */ +/* SizeC : Byte length of CipherText buffer. */ +/* pMac : Four byte Message Authentication Code. */ +/* Mode : Operating mode (See EAX_MODE_xxx). */ +/* RETURNS: TRUE if message has been authenticated. */ +/* FALSE if not authenticated, invalid Mode, or error. */ + if (offset) { + if (!keylookup((guint8 *)&c1222_key, key_id)) + return FALSE; + status = Eax_Decrypt(canonbuff, c1222_key, buffer, + offset, EAX_SIZEOF_KEY, length-4, + (MAC_T *)&buffer[length-4], + decrypt ? EAX_MODE_CIPHERTEXT_AUTH : EAX_MODE_CLEARTEXT_AUTH); + } + return status; +#else /* HAVE_LIBCRYPT */ + /* these are to silence compiler unreferenced variable warnings */ + buffer=buffer; + length=length; + decrypt=decrypt; + return FALSE; +#endif /* HAVE_LIBGCRYPT */ +} + +/** + * Checks to make sure that a complete, valid BER-encoded length is in the buffer. + * + * \param tvb contains the buffer to be examined + * \param offset is the offset within the buffer at which the BER-encded length begins + * \returns TRUE if a complete, valid BER-encoded length is in the buffer; otherwise FALSE + */ +static gboolean +ber_len_ok(tvbuff_t *tvb, int offset) +{ + guint8 ch; + + if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } else if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } else if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } else if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } + } + } + } + } + return FALSE; +} + +/** + * Dissects the EPSEM portion of the User-information part of a C12.22 message. + * + * \param tvb + * \param offset + * \param len + * \param pinfo + * \param tree + */ +static int +dissect_epsem(tvbuff_t *tvb, int offset, guint32 len, packet_info *pinfo, proto_tree *tree) +{ + /* proto_tree *ft = NULL; */ + proto_tree *cmd_tree = NULL; + proto_tree *ct = NULL; + proto_tree *crypto_tree = NULL; + proto_tree *yt = NULL; + proto_item *item = NULL; + guint8 flags; + int local_offset; + guint32 len2; + int cmd_err; + gboolean ind; + guchar *buffer; + tvbuff_t *epsem_buffer = NULL; + gboolean crypto_good = FALSE; + gboolean crypto_bad = FALSE; + gboolean hasmac = FALSE; + gboolean encrypted = FALSE; + + if ((tvb == NULL) && (len == 0)) { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 EPSEM missing"); + return offset; + } + /* parse the flags byte which is always unencrypted */ + flags = tvb_get_guint8(tvb, offset); + /* ft = proto_tree_add_bitmask(tree, tvb, offset, hf_c1222_epsem_flags, ett_c1222_flags, c1222_flags, FALSE); */ + offset++; + switch ((flags & C1222_EPSEM_FLAG_SECURITY_MODE) >> 2) { + case EAX_MODE_CIPHERTEXT_AUTH: + /* mode is ciphertext with authentication */ + hasmac = TRUE; + len2 = tvb_length_remaining(tvb, offset); + encrypted = TRUE; + if (c1222_decrypt) { + buffer = tvb_memdup(tvb, offset, len2); + if (!decrypt_packet(buffer, len2, TRUE)) { + g_free(buffer); + crypto_bad = TRUE; + } else { + epsem_buffer = tvb_new_real_data(buffer, len2, len2); + tvb_set_child_real_data_tvbuff(tvb, epsem_buffer); + add_new_data_source(pinfo, epsem_buffer, "Decrypted EPSEM Data"); + crypto_good = TRUE; + encrypted = FALSE; + } + } + break; + case EAX_MODE_CLEARTEXT_AUTH: + /* mode is cleartext with authentication */ + hasmac = TRUE; + len2 = tvb_length_remaining(tvb, offset); + buffer = tvb_memdup(tvb, offset, len2); + epsem_buffer = tvb_new_subset(tvb, offset, -1, -1); + if (c1222_decrypt) { + if (!decrypt_packet(buffer, len2, FALSE)) { +#ifdef HAVE_LIBGCRYPT + crypto_bad = TRUE; + expert_add_info_format(pinfo, tree, PI_SECURITY, PI_ERROR, "C12.22 EPSEM failed authentication"); +#else /* HAVE_LIBGCRYPT */ + expert_add_info_format(pinfo, tree, PI_SECURITY, PI_WARN, "C12.22 EPSEM could not be authenticated"); +#endif /* HAVE_LIBGCRYPT */ + } else { + crypto_good = TRUE; + } + } + break; + default: + /* it's not encrypted */ + epsem_buffer = tvb_new_subset(tvb, offset, -1, -1); + } + /* it's only encrypted if we have an undecrypted payload */ + if (encrypted) { + proto_tree_add_item(tree, hf_c1222_epsem_total, tvb, offset, -1, ENC_NA); + expert_add_info_format(pinfo, tree, PI_UNDECODED, PI_WARN, "C12.22 EPSEM could not be decrypted"); + local_offset = offset+len2-4; + epsem_buffer = tvb; + } else { /* it's not (now) encrypted */ + local_offset = 0; + /* retrieve the ed_class if it's there */ + if (flags & C1222_EPSEM_FLAG_ED_CLASS_INCLUDED) { + if (tvb_offset_exists(epsem_buffer, local_offset+4-1)) { + proto_tree_add_item(tree, hf_c1222_epsem_ed_class, epsem_buffer, local_offset, 4, ENC_NA); + local_offset += 4; + } else { + expert_add_info_format(pinfo, tree, PI_SECURITY, PI_ERROR, "C12.22 ED Class missing"); + } + } + /* what follows are one or more <epsem-data> elements possibly followed by + * a <mac>. Each <epsem-data> element is defined as <service-length><res-req>, + * so we fetch such pairs until there isn't anything left (except possibly + * the <mac>). + */ + while (tvb_offset_exists(epsem_buffer, local_offset+(hasmac?5:1))) { + if (ber_len_ok(epsem_buffer, local_offset)) { + local_offset = dissect_ber_length(pinfo, tree, epsem_buffer, local_offset, &len2, &ind); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 EPSEM BER length error"); + return offset+len; + } + if (tvb_offset_exists(epsem_buffer, local_offset+len2-1)) { + cmd_err = tvb_get_guint8(epsem_buffer, local_offset); + ct = proto_tree_add_item(tree, hf_c1222_epsem_total, epsem_buffer, local_offset, len2, ENC_NA); + cmd_tree = proto_item_add_subtree(ct, ett_c1222_cmd); + parse_c1222_detailed(epsem_buffer, pinfo, cmd_tree, cmd_err, &len2, &local_offset); + local_offset += len2; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 EPSEM field length error"); + return offset+len; + } + } + } + if (hasmac) { + if (tvb_offset_exists(epsem_buffer, local_offset+4-1)) { + yt = proto_tree_add_item(tree, hf_c1222_epsem_mac, epsem_buffer, local_offset, 4, ENC_NA); + /* now we have enough information to fill in the crypto subtree */ + crypto_tree = proto_item_add_subtree(yt, ett_c1222_crypto); + item = proto_tree_add_boolean(crypto_tree, hf_c1222_epsem_crypto_good, tvb, local_offset, 4, crypto_good); + PROTO_ITEM_SET_GENERATED(item); + item = proto_tree_add_boolean(crypto_tree, hf_c1222_epsem_crypto_bad, tvb, local_offset, 4, crypto_bad); + PROTO_ITEM_SET_GENERATED(item); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 MAC missing"); + return offset+len; + } + } + return offset; +} + + +/*--- Included file: packet-c1222-fn.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-fn.c" + + +static int +dissect_c1222_ASO_qualifier(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 50 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_object_identifier(implicit_tag, actx, tree, tvb, offset, hf_index, NULL); + + FILL_TABLE(aSO_context); + + + + return offset; +} + + + +static int +dissect_c1222_AP_title(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_object_identifier(implicit_tag, actx, tree, tvb, offset, hf_index, NULL); + + return offset; +} + + + +static int +dissect_c1222_Called_AP_title(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 55 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_title(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(called_AP_title); + + + + return offset; +} + + + +static int +dissect_c1222_AP_invocation_id(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_integer(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Called_AP_invocation_id(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 60 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_invocation_id(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(called_AP_invocation_id); + + + + return offset; +} + + + +static int +dissect_c1222_Calling_AP_title(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 85 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_title(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(calling_AP_title); + + + + return offset; +} + + + +static int +dissect_c1222_AE_qualifier(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_integer(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Calling_AE_qualifier(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 65 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AE_qualifier(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(calling_AE_qualifier); + + + + return offset; +} + + + +static int +dissect_c1222_Calling_AP_invocation_id(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 70 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_invocation_id(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(calling_AP_invocation_id); + + + + return offset; +} + + + +static int +dissect_c1222_Mechanism_name(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 75 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_object_identifier(implicit_tag, actx, tree, tvb, offset, hf_index, NULL); + + FILL_TABLE(mechanism_name); + + + + return offset; +} + + + +static int +dissect_c1222_INTEGER(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_integer(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Key_id_element(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 90 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + FILL_TABLE(key_id_element); + + + + return offset; +} + + + +static int +dissect_c1222_Iv_element(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 95 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + FILL_TABLE(iv_element); + + + + return offset; +} + + +static const ber_sequence_t Calling_authentication_value_c1222_U_sequence[] = { + { &hf_c1222_key_id_element, BER_CLASS_CON, 0, BER_FLAGS_OPTIONAL|BER_FLAGS_IMPLTAG, dissect_c1222_Key_id_element }, + { &hf_c1222_iv_element , BER_CLASS_CON, 1, BER_FLAGS_OPTIONAL|BER_FLAGS_IMPLTAG, dissect_c1222_Iv_element }, + { NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_c1222_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_sequence(implicit_tag, actx, tree, tvb, offset, + Calling_authentication_value_c1222_U_sequence, hf_index, ett_c1222_Calling_authentication_value_c1222_U); + + return offset; +} + + + +static int +dissect_c1222_Calling_authentication_value_c1222(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_CON, 1, TRUE, dissect_c1222_Calling_authentication_value_c1222_U); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING_SIZE_CONSTR001(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING_SIZE_1_255(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING_SIZE_CONSTR002(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + +static const value_string c1222_Calling_authentication_value_c1221_U_vals[] = { + { 0, "c1221-auth-identification" }, + { 0, "c1221-auth-request" }, + { 0, "c1221-auth-response" }, + { 0, NULL } +}; + +static const ber_choice_t Calling_authentication_value_c1221_U_choice[] = { + { 0, &hf_c1222_c1221_auth_identification, BER_CLASS_CON, 0, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING_SIZE_CONSTR001 }, + { 0, &hf_c1222_c1221_auth_request, BER_CLASS_CON, 0, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING_SIZE_1_255 }, + { 0, &hf_c1222_c1221_auth_response, BER_CLASS_CON, 0, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING_SIZE_CONSTR002 }, + { 0, NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_c1221_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_choice(actx, tree, tvb, offset, + Calling_authentication_value_c1221_U_choice, hf_index, ett_c1222_Calling_authentication_value_c1221_U, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Calling_authentication_value_c1221(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_CON, 0, TRUE, dissect_c1222_Calling_authentication_value_c1221_U); + + return offset; +} + + +static const value_string c1222_Calling_authentication_value_single_asn1_vals[] = { + { 1, "calling-authentication-value-c1222" }, + { 0, "calling-authentication-value-c1221" }, + { 0, NULL } +}; + +static const ber_choice_t Calling_authentication_value_single_asn1_choice[] = { + { 1, &hf_c1222_calling_authentication_value_c1222, BER_CLASS_CON, 1, BER_FLAGS_NOOWNTAG, dissect_c1222_Calling_authentication_value_c1222 }, + { 0, &hf_c1222_calling_authentication_value_c1221, BER_CLASS_CON, 0, BER_FLAGS_NOOWNTAG, dissect_c1222_Calling_authentication_value_c1221 }, + { 0, NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_single_asn1(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_choice(actx, tree, tvb, offset, + Calling_authentication_value_single_asn1_choice, hf_index, ett_c1222_Calling_authentication_value_single_asn1, + NULL); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + +static const value_string c1222_Authentication_value_encoding_vals[] = { + { 0, "calling-authentication-value-single-asn1" }, + { 1, "calling-authentication-value-octet-aligned" }, + { 0, NULL } +}; + +static const ber_choice_t Authentication_value_encoding_choice[] = { + { 0, &hf_c1222_calling_authentication_value_single_asn1, BER_CLASS_CON, 0, 0, dissect_c1222_Calling_authentication_value_single_asn1 }, + { 1, &hf_c1222_calling_authentication_value_octet_aligned, BER_CLASS_CON, 1, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING }, + { 0, NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Authentication_value_encoding(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_choice(actx, tree, tvb, offset, + Authentication_value_encoding_choice, hf_index, ett_c1222_Authentication_value_encoding, + NULL); + + return offset; +} + + +static const ber_sequence_t Calling_authentication_value_U_sequence[] = { + { &hf_c1222_calling_authentication_value_indirect, BER_CLASS_UNI, BER_UNI_TAG_INTEGER, BER_FLAGS_OPTIONAL|BER_FLAGS_NOOWNTAG, dissect_c1222_INTEGER }, + { &hf_c1222_calling_authentication_value_encoding, BER_CLASS_ANY/*choice*/, -1/*choice*/, BER_FLAGS_NOOWNTAG|BER_FLAGS_NOTCHKTAG, dissect_c1222_Authentication_value_encoding }, + { NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_sequence(implicit_tag, actx, tree, tvb, offset, + Calling_authentication_value_U_sequence, hf_index, ett_c1222_Calling_authentication_value_U); + + return offset; +} + + + +static int +dissect_c1222_Calling_authentication_value(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 80 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_CON, 2, TRUE, dissect_c1222_Calling_authentication_value_U); + + FILL_TABLE(calling_authentication_value); + + + + return offset; +} + + + +static int +dissect_c1222_User_information(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 26 "../../asn1/c1222/c1222.cnf" + gint8 class; + gboolean pc, ind; + gint32 tag; + guint32 len; + proto_item *tf = NULL; + proto_tree *epsem_tree = NULL; + FILL_START; + + /* get Tag and Length */ + offset = dissect_ber_identifier(actx->pinfo, tree, tvb, offset, &class, &pc, &tag); + offset = dissect_ber_length(actx->pinfo, tree, tvb, offset, &len, &ind); + FILL_TABLE_TRUNCATE(user_information, len+offset-start_offset); + if (tag == 0x8) { /* BER_TAG_EXTERNAL */ + offset = dissect_ber_identifier(actx->pinfo, tree, tvb, offset, &class, &pc, &tag); + offset = dissect_ber_length(actx->pinfo, tree, tvb, offset, &len, &ind); + if (tag == 0x1) { /* implicit octet string */ + tf = proto_tree_add_item(tree, hf_c1222_user_information, tvb, offset, len, FALSE); + epsem_tree = proto_item_add_subtree(tf, ett_c1222_epsem); + dissect_epsem(tvb, offset, len, actx->pinfo, epsem_tree); + offset += len; + } + } + + + + return offset; +} + + +static const ber_sequence_t C1222_MESSAGE_U_sequence[] = { + { &hf_c1222_aSO_context , BER_CLASS_CON, 1, BER_FLAGS_OPTIONAL, dissect_c1222_ASO_qualifier }, + { &hf_c1222_called_AP_title, BER_CLASS_CON, 2, BER_FLAGS_OPTIONAL, dissect_c1222_Called_AP_title }, + { &hf_c1222_called_AP_invocation_id, BER_CLASS_CON, 4, BER_FLAGS_OPTIONAL, dissect_c1222_Called_AP_invocation_id }, + { &hf_c1222_calling_AP_title, BER_CLASS_CON, 6, BER_FLAGS_OPTIONAL, dissect_c1222_Calling_AP_title }, + { &hf_c1222_calling_AE_qualifier, BER_CLASS_CON, 7, BER_FLAGS_OPTIONAL, dissect_c1222_Calling_AE_qualifier }, + { &hf_c1222_calling_AP_invocation_id, BER_CLASS_CON, 8, 0, dissect_c1222_Calling_AP_invocation_id }, + { &hf_c1222_mechanism_name, BER_CLASS_CON, 11, BER_FLAGS_OPTIONAL|BER_FLAGS_IMPLTAG, dissect_c1222_Mechanism_name }, + { &hf_c1222_calling_authentication_value, BER_CLASS_CON, 12, BER_FLAGS_OPTIONAL, dissect_c1222_Calling_authentication_value }, + { &hf_c1222_user_information, BER_CLASS_CON, 30, 0, dissect_c1222_User_information }, + { NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_C1222_MESSAGE_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_sequence(implicit_tag, actx, tree, tvb, offset, + C1222_MESSAGE_U_sequence, hf_index, ett_c1222_C1222_MESSAGE_U); + + return offset; +} + + + +static int +dissect_c1222_C1222_MESSAGE(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_APP, 0, TRUE, dissect_c1222_C1222_MESSAGE_U); + + return offset; +} + +/*--- PDUs ---*/ + +static void dissect_C1222_MESSAGE_PDU(tvbuff_t *tvb _U_, packet_info *pinfo _U_, proto_tree *tree _U_) { + asn1_ctx_t asn1_ctx; + asn1_ctx_init(&asn1_ctx, ASN1_ENC_BER, TRUE, pinfo); + dissect_c1222_C1222_MESSAGE(FALSE, tvb, 0, &asn1_ctx, tree, hf_c1222_C1222_MESSAGE_PDU); +} + + +/*--- End of included file: packet-c1222-fn.c ---*/ +#line 990 "../../asn1/c1222/packet-c1222-template.c" + +/** + * Dissects a a full (reassembled) C12.22 message. + * + * \param tvb + * \param pinfo + * \param tree + */ +static void +dissect_c1222_full(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) +{ + proto_item *c1222_item = NULL; + proto_tree *c1222_tree = NULL; + + /* make entry in the Protocol column on summary display */ + col_set_str(pinfo->cinfo, COL_PROTOCOL, PNAME); + + /* create the c1222 protocol tree */ + if (tree) { + c1222_item = proto_tree_add_item(tree, proto_c1222, tvb, 0, -1, ENC_NA); + c1222_tree = proto_item_add_subtree(c1222_item, ett_c1222); + dissect_C1222_MESSAGE_PDU(tvb, pinfo, c1222_tree); + } +} + +/** + * Fetches the length of an entire C12.22 message to assist in reassembly. + * + * \param pinfo + * \param tvb + * \param offset + * \returns length of entire C12.22 message + */ +static guint +get_c1222_message_len(packet_info *pinfo, tvbuff_t *tvb, int offset) +{ + int orig_offset; + guint length; + gboolean ind; + + orig_offset = offset; + /* note that this assumes a Tag length of 1 which is always valid for C12.22 */ + offset = dissect_ber_length(pinfo, NULL, tvb, offset+1, &length, &ind); + return length+(offset - orig_offset); +} + +/** + * Reassembles and dissects C12.22 messages. + * + * \param tvb + * \param pinfo + * \param tree + */ +static void +dissect_c1222(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) +{ + tcp_dissect_pdus(tvb, pinfo, tree, c1222_desegment, 5, + get_c1222_message_len, dissect_c1222_full); +} + +/*--- proto_register_c1222 -------------------------------------------*/ +void proto_register_c1222(void) { + + /* List of fields */ + static hf_register_info hf[] = { + { &hf_c1222_epsem_flags, + { "C12.22 EPSEM Flags", "c1222.epsem.flags", + FT_UINT8, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_reserved, + { "C12.22 Reserved Flag", "c1222.epsem.flags.reserved", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_RESERVED, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_recovery, + { "C12.22 Recovery Flag", "c1222.epsem.flags.recovery", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_RECOVERY_SESSION, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_proxy, + { "C12.22 Proxy Service Used Flag", "c1222.epsem.flags.proxy", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_PROXY_SERVICE_USED, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_ed_class, + { "C12.22 ED Class Flag", "c1222.epsem.flags.ed_class", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_ED_CLASS_INCLUDED, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_security_modes, + { "C12.22 Security Mode Flags", "c1222.epsem.flags.security", + FT_UINT8, BASE_HEX, + VALS(c1222_security_modes), C1222_EPSEM_FLAG_SECURITY_MODE, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_response_control, + { "C12.22 Response Control Flags", "c1222.epsem.flags.response_control", + FT_UINT8, BASE_HEX, + VALS(c1222_response_control), C1222_EPSEM_FLAG_RESPONSE_CONTROL, + NULL, HFILL } + }, + { &hf_c1222_epsem_ed_class, + { "C12.22 EPSEM ED Class", "c1222.epsem.edclass", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_total, + { "C12.22 EPSEM", "c1222.epsem.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_mac, + { "C12.22 EPSEM MAC", "c1222.epsem.mac", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_cmd, + { "C12.22 Command", "c1222.cmd", + FT_UINT8, BASE_HEX, + VALS(commandnames), 0x0, + NULL, HFILL } + }, + { &hf_c1222_err, + { "C12.22 Response", "c1222.err", + FT_UINT8, BASE_HEX, + VALS(commandnames), 0x0, + NULL, HFILL } + }, + { &hf_c1222_logon_id, + { "C12.22 Logon User-Id", "c1222.logon.id", + FT_UINT16, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_logon_user, + { "C12.22 Logon User", "c1222.logon.user", + FT_STRING, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_security_password, + { "C12.22 Security Password", "c1222.security.password", + FT_STRING, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_auth_len, + { "C12.22 Authenticate Request Length", "c1222.authenticate.len", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_auth_data, + { "C12.22 Authenticate Data", "c1222.authenticate.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_read_table, + { "C12.22 Table", "c1222.read.table", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_read_offset, + { "C12.22 Offset", "c1222.read.offset", + FT_UINT24, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_read_count, + { "C12.22 Count", "c1222.read.count", + FT_UINT16, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_table, + { "C12.22 Table", "c1222.write.table", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_offset, + { "C12.22 Offset", "c1222.write.offset", + FT_UINT24, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_size, + { "C12.22 Table Size", "c1222.write.size", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_data, + { "C12.22 Table Data", "c1222.write.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_chksum, + { "C12.22 Table Data Checksum", "c1222.write.chksum", + FT_UINT8, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_neg_pkt_size, + { "C12.22 Negotiate Packet Size", "c1222.negotiate.pktsize", + FT_UINT16, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_neg_nbr_pkts, + { "C12.22 Negotiate Number of Packets", "c1222.negotiate.numpkts", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_wait_secs, + { "C12.22 Wait Seconds", "c1222.wait.seconds", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_traffic, + { "C12.22 Timing Setup Channel Traffic Timeout", "c1222.timingsetup.traffic", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_inter_char, + { "C12.22 Timing Setup Intercharacter Timeout", "c1222.timingsetup.interchar", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_resp_to, + { "C12.22 Timing Setup Response Timeout", "c1222.timingsetup.respto", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_nbr_retries, + { "C12.22 Timing Setup Number of Retries", "c1222.timingsetup.nbrretries", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_data, + { "C12.22 data", "c1222.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_crc, + { "C12.22 CRC", "c1222.crc", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_crypto_good, + { "Crypto good", "c1222.crypto_good", + FT_BOOLEAN, BASE_NONE, + NULL, 0x0, + "True: crypto ok; False: doesn't match or not checked", HFILL } + }, + { &hf_c1222_epsem_crypto_bad, + { "Crypto bad", "c1222.crypto_bad", + FT_BOOLEAN, BASE_NONE, + NULL, 0x0, + "True: crypto bad; False: crypto ok or not checked", HFILL } + }, + +/*--- Included file: packet-c1222-hfarr.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-hfarr.c" + { &hf_c1222_C1222_MESSAGE_PDU, + { "C1222-MESSAGE", "c1222.C1222_MESSAGE", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_aSO_context, + { "aSO-context", "c1222.aSO_context", + FT_OID, BASE_NONE, NULL, 0, + "ASO_qualifier", HFILL }}, + { &hf_c1222_called_AP_title, + { "called-AP-title", "c1222.called_AP_title", + FT_OID, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_called_AP_invocation_id, + { "called-AP-invocation-id", "c1222.called_AP_invocation_id", + FT_INT32, BASE_DEC, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_AP_title, + { "calling-AP-title", "c1222.calling_AP_title", + FT_OID, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_AE_qualifier, + { "calling-AE-qualifier", "c1222.calling_AE_qualifier", + FT_INT32, BASE_DEC, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_AP_invocation_id, + { "calling-AP-invocation-id", "c1222.calling_AP_invocation_id", + FT_INT32, BASE_DEC, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_mechanism_name, + { "mechanism-name", "c1222.mechanism_name", + FT_OID, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value, + { "calling-authentication-value", "c1222.calling_authentication_value", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_user_information, + { "user-information", "c1222.user_information", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value_indirect, + { "calling-authentication-value-indirect", "c1222.calling_authentication_value_indirect", + FT_INT32, BASE_DEC, NULL, 0, + "INTEGER", HFILL }}, + { &hf_c1222_calling_authentication_value_encoding, + { "calling-authentication-value-encoding", "c1222.calling_authentication_value_encoding", + FT_UINT32, BASE_DEC, VALS(c1222_Authentication_value_encoding_vals), 0, + "Authentication_value_encoding", HFILL }}, + { &hf_c1222_calling_authentication_value_single_asn1, + { "calling-authentication-value-single-asn1", "c1222.calling_authentication_value_single_asn1", + FT_UINT32, BASE_DEC, VALS(c1222_Calling_authentication_value_single_asn1_vals), 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value_octet_aligned, + { "calling-authentication-value-octet-aligned", "c1222.calling_authentication_value_octet_aligned", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING", HFILL }}, + { &hf_c1222_calling_authentication_value_c1222, + { "calling-authentication-value-c1222", "c1222.calling_authentication_value_c1222", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value_c1221, + { "calling-authentication-value-c1221", "c1222.calling_authentication_value_c1221", + FT_UINT32, BASE_DEC, VALS(c1222_Calling_authentication_value_c1221_U_vals), 0, + NULL, HFILL }}, + { &hf_c1222_key_id_element, + { "key-id-element", "c1222.key_id_element", + FT_BYTES, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_iv_element, + { "iv-element", "c1222.iv_element", + FT_BYTES, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_c1221_auth_identification, + { "c1221-auth-identification", "c1222.c1221_auth_identification", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING_SIZE_CONSTR001", HFILL }}, + { &hf_c1222_c1221_auth_request, + { "c1221-auth-request", "c1222.c1221_auth_request", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING_SIZE_1_255", HFILL }}, + { &hf_c1222_c1221_auth_response, + { "c1221-auth-response", "c1222.c1221_auth_response", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING_SIZE_CONSTR002", HFILL }}, + +/*--- End of included file: packet-c1222-hfarr.c ---*/ +#line 1272 "../../asn1/c1222/packet-c1222-template.c" + }; + + /* List of subtrees */ + static gint *ett[] = { + &ett_c1222, + &ett_c1222_epsem, + &ett_c1222_flags, + &ett_c1222_crypto, + &ett_c1222_cmd, + +/*--- Included file: packet-c1222-ettarr.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-ettarr.c" + &ett_c1222_C1222_MESSAGE_U, + &ett_c1222_Calling_authentication_value_U, + &ett_c1222_Authentication_value_encoding, + &ett_c1222_Calling_authentication_value_single_asn1, + &ett_c1222_Calling_authentication_value_c1222_U, + &ett_c1222_Calling_authentication_value_c1221_U, + +/*--- End of included file: packet-c1222-ettarr.c ---*/ +#line 1282 "../../asn1/c1222/packet-c1222-template.c" + }; + + module_t *c1222_module; + +#ifdef HAVE_LIBGCRYPT + static uat_field_t c1222_uat_flds[] = { + UAT_FLD_HEX(c1222_users,keynum,"Key ID","Key identifier in hexadecimal"), + UAT_FLD_BUFFER(c1222_users, key, "Key", "Encryption key as 16-byte hex string"), + UAT_END_FIELDS + }; +#endif /* HAVE_LIBGCRYPT */ + + /* Register protocol */ + proto_c1222 = proto_register_protocol(PNAME, PSNAME, PFNAME); + /* Register fields and subtrees */ + proto_register_field_array(proto_c1222, hf, array_length(hf)); + proto_register_subtree_array(ett, array_length(ett)); + c1222_module = prefs_register_protocol(proto_c1222, proto_reg_handoff_c1222); + prefs_register_bool_preference(c1222_module, "desegment", + "Reassemble all C12.22 messages spanning multiple TCP segments", + "Whether the C12.22 dissector should reassemble all messages spanning multiple TCP segments", + &c1222_desegment); +#ifdef HAVE_LIBGCRYPT + prefs_register_bool_preference(c1222_module, "decrypt", + "Verify crypto for all applicable C12.22 messages", + "Whether the C12.22 dissector should verify the crypto for all relevant messages", + &c1222_decrypt); + + c1222_uat = uat_new("Decryption Table", + sizeof(c1222_uat_data_t), /* record size */ + "c1222_decryption_table", /* filename */ + TRUE, /* from_profile */ + (void*)&c1222_uat_data, /* data_ptr */ + &num_c1222_uat_data, /* numitems_ptr */ + UAT_CAT_CRYPTO, /* category */ + NULL, /* help */ + NULL, /* copy callback */ + c1222_uat_data_update_cb, /* update callback */ + NULL, /* free callback */ + NULL, /* post update callback */ + c1222_uat_flds); /* UAT field definitions */ + + prefs_register_uat_preference(c1222_module, + "decryption_table", + "Decryption Table", + "Table of security parameters for decryption of C12.22 packets", + c1222_uat); +#endif /* HAVE_LIBGCRYPT */ +} + +/*--- proto_reg_handoff_c1222 ---------------------------------------*/ +void +proto_reg_handoff_c1222(void) +{ + static gboolean initialized = FALSE; + + if( !initialized ) { + c1222_handle = create_dissector_handle(dissect_c1222, proto_c1222); + dissector_add_uint("tcp.port", global_c1222_port, c1222_handle); + initialized = TRUE; + } +} diff --git a/epan/dissectors/packet-c1222.h b/epan/dissectors/packet-c1222.h new file mode 100644 index 0000000000..a6af319831 --- /dev/null +++ b/epan/dissectors/packet-c1222.h @@ -0,0 +1,39 @@ +/* Do not modify this file. */ +/* It is created automatically by the ASN.1 to Wireshark dissector compiler */ +/* packet-c1222.h */ +/* ../../../tools/asn2wrs.py -b -p c1222 -c ../../../asn1/c1222/c1222.cnf -s ../../../asn1/c1222/packet-c1222-template -D ../../../asn1/c1222 -O ../../../epan/dissectors c1222.asn */ + +/* Input file: packet-c1222-template.h */ + +#line 1 "../../asn1/c1222/packet-c1222-template.h" +/* packet-c1222.h + * Routines for ANSI C12.22 packet dissection + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ + +#ifndef PACKET_C1222_H +#define PACKET_C1222_H + +#endif /* PACKET_C1222_H */ + + |