diff options
| author | guy <guy@f5534014-38df-0310-8fa8-9805f1628bb7> | 2005-09-27 00:03:45 +0000 |
|---|---|---|
| committer | guy <guy@f5534014-38df-0310-8fa8-9805f1628bb7> | 2005-09-27 00:03:45 +0000 |
| commit | 79078d0c225dbad192b3c21862cb4cfc929ef760 (patch) | |
| tree | ebd9b9623c75f553b08ba7371f5a2fba5023aa6b /epan/dissectors | |
| parent | 6d1d1967301a03772c9aa040901c2f0d27260186 (diff) | |
Give more details about too-short AVPs, give up immediately for AVPs
shorter than 2 bytes, and make the item for an AVP with a length < 2 a
generated item.
Put the top-level item for an AVP into the tree the same way regardless
of whether it's Vendor-Specific or not, and skip past the type and
length right after that, before we check for Vendor-Specific. (This
means we no longer treat "vendor ID = 0" as an indication that this
isn't Vendor-Specific - nothing prevents a packet from getting onto the
wire with a vendor ID of 0; this fixes bug 485.)
Don't require a Vendor-Specific AVP to be at least 6 bytes long; it
might not be particularly useful to have one that has a vendor ID and
nothing else, but we might as well dissect the vendor ID portion.
Do some other cleanups.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@16015 f5534014-38df-0310-8fa8-9805f1628bb7
Diffstat (limited to 'epan/dissectors')
| -rw-r--r-- | epan/dissectors/packet-radius.c | 76 |
1 files changed, 36 insertions, 40 deletions
diff --git a/epan/dissectors/packet-radius.c b/epan/dissectors/packet-radius.c index 1ce6126915..22867e3cde 100644 --- a/epan/dissectors/packet-radius.c +++ b/epan/dissectors/packet-radius.c @@ -515,7 +515,7 @@ static void dissect_attribute_value_pairs(proto_tree *tree, packet_info *pinfo, gint tvb_len; guint32 avp_type; guint32 avp_length; - guint32 vendor_id = 0; + guint32 vendor_id; proto_item* avp_item; proto_item* avp_len_item; @@ -530,9 +530,10 @@ static void dissect_attribute_value_pairs(proto_tree *tree, packet_info *pinfo, avp_type = tvb_get_guint8(tvb,offset); avp_length = tvb_get_guint8(tvb,offset+1); - if (avp_length < 1) { - proto_tree_add_text(tree, tvb, offset+1, 1, - "[AVP too short]"); + if (avp_length < 2) { + item = proto_tree_add_text(tree, tvb, offset, 0, + "AVP too short: length %u < 2", avp_length); + PROTO_ITEM_SET_GENERATED(item); return; } @@ -545,55 +546,50 @@ static void dissect_attribute_value_pairs(proto_tree *tree, packet_info *pinfo, length -= avp_length; - avp_item = proto_tree_add_text(tree,tvb,offset,avp_length,"AVP: l=%u ",avp_length); + dictionary_entry = g_hash_table_lookup(dict->attrs_by_id,GUINT_TO_POINTER(avp_type)); + + if (! dictionary_entry ) { + dictionary_entry = &no_dictionary_entry; + } + + avp_item = proto_tree_add_text(tree, tvb, offset, avp_length, + "AVP: l=%u t=%s(%u)", avp_length, + dictionary_entry->name, avp_type); + avp_length -= 2; + offset += 2; + if (avp_type == RADIUS_VENDOR_SPECIFIC_CODE) { + radius_vendor_info_t* vendor; + proto_tree* vendor_tree; + gint max_offset = offset + avp_length; + const gchar* vendor_str; + /* XXX TODO: handle 2 byte codes for USR */ - if (avp_length < 8) { - proto_item_append_text(avp_item, "[AVP too short]"); + if (avp_length < 4) { + proto_item_append_text(avp_item, " [AVP too short; no room for vendor ID]"); offset += avp_length; continue; } - vendor_id = tvb_get_ntohl(tvb,offset+2); + vendor_id = tvb_get_ntohl(tvb,offset); - avp_length -= 6; - offset += 6; - } else { - dictionary_entry = g_hash_table_lookup(dict->attrs_by_id,GUINT_TO_POINTER(avp_type)); - - if (! dictionary_entry ) { - dictionary_entry = &no_dictionary_entry; - } - - proto_item_append_text(avp_item, " t=%s(%u)", dictionary_entry->name, avp_type); - - if (avp_length < 2) { - proto_item_append_text(avp_item, "[AVP too short]"); - offset += avp_length; - continue; - } - avp_length -= 2; - offset += 2; - } - - if(vendor_id) { - radius_vendor_info_t* vendor = g_hash_table_lookup(dict->vendors_by_id,GUINT_TO_POINTER(vendor_id)); - proto_tree* vendor_tree; - gint max_offset = offset + avp_length; - gchar* vendor_str; + avp_length -= 4; + offset += 4; + vendor = g_hash_table_lookup(dict->vendors_by_id,GUINT_TO_POINTER(vendor_id)); if (vendor) { - vendor_str = ep_strdup_printf("v=%s(%u)", vendor->name, vendor_id); - proto_item_append_text(avp_item, " t=Vendor-Specific(26) %s", vendor_str); + vendor_str = vendor->name; } else { - proto_item_append_text(avp_item, " t=Vendor-Specific(26) v=%s(%u)", val_to_str(vendor_id, sminmpec_values, "Unknown"), vendor_id); + vendor_str = val_to_str(vendor_id, sminmpec_values, "Unknown"); vendor = &no_vendor; } + proto_item_append_text(avp_item, " v=%s(%u)", vendor_str, + vendor_id); vendor_tree = proto_item_add_subtree(avp_item,vendor->ett); - do { + while (offset < max_offset) { guint32 avp_vsa_type = tvb_get_guint8(tvb,offset++); guint32 avp_vsa_len = tvb_get_guint8(tvb,offset++); @@ -628,11 +624,11 @@ static void dissect_attribute_value_pairs(proto_tree *tree, packet_info *pinfo, add_avp_to_tree(avp_tree, avp_item, pinfo, tvb, dictionary_entry, avp_vsa_len, offset); offset += avp_vsa_len; - } while (offset < max_offset); + }; continue; - } else { - avp_tree = proto_item_add_subtree(avp_item,dictionary_entry->ett); } + + avp_tree = proto_item_add_subtree(avp_item,dictionary_entry->ett); if (show_length) { avp_len_item = proto_tree_add_uint(avp_tree, |