diff options
| author | Mikael Kanstrup <mikael.kanstrup@gmail.com> | 2018-03-27 08:38:16 +0200 |
|---|---|---|
| committer | Michal Labedzki <michal.labedzki@wireshark.org> | 2018-03-27 15:22:12 +0000 |
| commit | 2fb9c8244eaf9d1066f3c86fefd69819fd9b96dc (patch) | |
| tree | f7539aaeb2361ebcf24a1c5b37d7fc9e07ecebc7 /extcap/androiddump.c | |
| parent | 850336443f6d38f1eef176b0250bec04eb6bbb43 (diff) | |
androiddump: Read btsnoop header separately from rest of data
The code to read and skip btsnoop header was written in a way where
it reads up to PACKET_LENGTH bytes of data, skips the header, then
move rest of data back start of buffer. So far so good. The code
then resets number of bytes used in buffer making it skip rest of
all data read.
Many times this works fine but only by luck. When there's no data
transfers first recv call will always only return the header
(sender side writes header separately right after accept).
When data transfers are ongoing first recv call will return both
header and data. Then initial data is lost but more importantly
risk parsing data with invalid offset.
Fix by reading btsnoop header separately from rest of data.
Change-Id: Ie52c33f943d8b311e0cd5638ec1a7d4840e271b8
Reviewed-on: https://code.wireshark.org/review/26659
Petri-Dish: Anders Broman <a.broman58@gmail.com>
Tested-by: Petri Dish Buildbot
Reviewed-by: Michal Labedzki <michal.labedzki@wireshark.org>
Diffstat (limited to 'extcap/androiddump.c')
| -rw-r--r-- | extcap/androiddump.c | 11 |
1 files changed, 4 insertions, 7 deletions
diff --git a/extcap/androiddump.c b/extcap/androiddump.c index db08dab0de..0104228783 100644 --- a/extcap/androiddump.c +++ b/extcap/androiddump.c @@ -125,6 +125,8 @@ #define ADB_HEX4_FORMAT "%04zx" #define ADB_HEX4_LEN 4 +#define BTSNOOP_HDR_LEN 16 + enum exit_code { EXIT_CODE_SUCCESS = 0, EXIT_CODE_CANNOT_GET_INTERFACES_LIST = 1, @@ -1926,20 +1928,15 @@ static int capture_android_bluetooth_btsnoop_net(char *interface, char *fifo, } /* Read "btsnoop" header - 16 bytes */ - while (used_buffer_length < 16) { - length = recv(sock, packet + used_buffer_length, (int)(PACKET_LENGTH - used_buffer_length), 0); - + while (used_buffer_length < BTSNOOP_HDR_LEN) { + length = recv(sock, packet + used_buffer_length, (int)(BTSNOOP_HDR_LEN - used_buffer_length), 0); if (length <= 0) { g_warning("Broken socket connection."); closesocket(sock); return EXIT_CODE_GENERIC; } - used_buffer_length += length; } - if (used_buffer_length > 16) - memmove(packet, packet + 16, used_buffer_length - 16); - used_buffer_length = 0; while (endless_loop) { |