diff options
| author | Martin Kaiser <wireshark@kaiser.cx> | 2019-06-04 22:54:15 +0200 |
|---|---|---|
| committer | Anders Broman <a.broman58@gmail.com> | 2019-06-10 23:45:35 +0000 |
| commit | 56600f5e24a075f499d6be8f4e9db31b1928e1ef (patch) | |
| tree | 1ceefe6ef61880623c23206554563690ffff92ff | |
| parent | c0a49d7237fc24dd45dac0eb5b45afa2d4359493 (diff) | |
iso7816: dissector table for non-standard APDUs
Define a new dissector table for non-standard ISO7816 APDUs. If the
ISO7816 class byte indicates that an APDU does not conform to the
standard structure and encoding, we pass the entire APDU to a subdissector
from this table (if available).
Change-Id: I1e802506a66bdb2c9994d42893fa6825eb9fa5fe
Reviewed-on: https://code.wireshark.org/review/33550
Reviewed-by: Martin Kaiser <wireshark@kaiser.cx>
Petri-Dish: Martin Kaiser <wireshark@kaiser.cx>
Tested-by: Petri Dish Buildbot
Reviewed-by: Anders Broman <a.broman58@gmail.com>
| -rw-r--r-- | epan/dissectors/packet-iso7816.c | 23 |
1 files changed, 20 insertions, 3 deletions
diff --git a/epan/dissectors/packet-iso7816.c b/epan/dissectors/packet-iso7816.c index 545b111dcb..fe4783d16b 100644 --- a/epan/dissectors/packet-iso7816.c +++ b/epan/dissectors/packet-iso7816.c @@ -22,6 +22,8 @@ #include <epan/packet.h> #include <epan/expert.h> +#include <epan/decode_as.h> + void proto_register_iso7816(void); void proto_reg_handoff_iso7816(void); @@ -33,6 +35,8 @@ static dissector_handle_t iso7816_atr_handle; static wmem_tree_t *transactions = NULL; +static dissector_table_t iso7816_apdu_pld_table; + static int ett_iso7816 = -1; static int ett_iso7816_class = -1; static int ett_iso7816_param = -1; @@ -623,10 +627,17 @@ dissect_iso7816_cmd_apdu(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) if (ret==-1) { /* the class byte says that the remaining APDU is not in ISO7816 format */ - col_append_sep_str(pinfo->cinfo, COL_INFO, NULL, - "Command APDU using proprietary format"); - return 1; /* we only dissected the class byte */ + ret = dissector_try_payload_new(iso7816_apdu_pld_table, + tvb, pinfo, tree, TRUE, NULL); + + if (ret == 0) { + col_append_sep_str(pinfo->cinfo, COL_INFO, NULL, + "Command APDU using proprietary format"); + return 1; /* we only dissected the class byte */ + } + + return ret; } offset += ret; @@ -969,6 +980,12 @@ proto_register_iso7816(void) proto_iso7816_atr = proto_register_protocol_in_name_only("ISO/IEC 7816-3", "ISO 7816-3", "iso7816.atr", proto_iso7816, FT_PROTOCOL); iso7816_atr_handle = register_dissector("iso7816.atr", dissect_iso7816_atr, proto_iso7816_atr); + + iso7816_apdu_pld_table = + register_decode_as_next_proto(proto_iso7816, + "ISO7816 proprietary APDU dissector", + "iso7816.apdu_payload", + "ISO7816 proprietary APDU dissector", NULL); } |