diff options
| -rw-r--r-- | asn1/Makefile.am | 1 | ||||
| -rw-r--r-- | configure.in | 1 | ||||
| -rw-r--r-- | epan/CMakeLists.txt | 2 | ||||
| -rw-r--r-- | epan/Makefile.common | 2 | ||||
| -rw-r--r-- | epan/crypt/Makefile.common | 4 | ||||
| -rw-r--r-- | epan/crypt/eax.c | 252 | ||||
| -rw-r--r-- | epan/crypt/eax.h | 57 | ||||
| -rw-r--r-- | epan/dissectors/Makefile.common | 2 | ||||
| -rw-r--r-- | epan/dissectors/packet-c1222.c | 1916 | ||||
| -rw-r--r-- | epan/dissectors/packet-c1222.h | 39 |
10 files changed, 2274 insertions, 2 deletions
diff --git a/asn1/Makefile.am b/asn1/Makefile.am index 1e3ae9bf72..fd10d3d7b3 100644 --- a/asn1/Makefile.am +++ b/asn1/Makefile.am @@ -29,6 +29,7 @@ SUBDIRS = \ acse \ ansi_map \ ansi_tcap \ + c1222 \ camel \ cdt \ charging_ase \ diff --git a/configure.in b/configure.in index 4451da7052..225c788311 100644 --- a/configure.in +++ b/configure.in @@ -1872,6 +1872,7 @@ AC_OUTPUT( asn1/acse/Makefile asn1/ansi_map/Makefile asn1/ansi_tcap/Makefile + asn1/c1222/Makefile asn1/camel/Makefile asn1/cdt/Makefile asn1/charging_ase/Makefile diff --git a/epan/CMakeLists.txt b/epan/CMakeLists.txt index 82e222ab5d..e9d6ad2f67 100644 --- a/epan/CMakeLists.txt +++ b/epan/CMakeLists.txt @@ -51,6 +51,7 @@ set(CRYPT_FILES crypt/crypt-md5.c crypt/crypt-rc4.c crypt/crypt-sha1.c + crypt/eax.c ) set(DFILTER_FILES @@ -185,6 +186,7 @@ set(ASN1_DISSECTOR_SRC dissectors/packet-acp133.c dissectors/packet-acse.c dissectors/packet-ansi_tcap.c + dissectors/packet-c1222.c dissectors/packet-camel.c dissectors/packet-cdt.c dissectors/packet-charging_ase.c diff --git a/epan/Makefile.common b/epan/Makefile.common index 737e6a0f10..e8e0a778ef 100644 --- a/epan/Makefile.common +++ b/epan/Makefile.common @@ -155,7 +155,7 @@ LIBWIRESHARK_INCLUDES = \ dissector_filters.h \ dtd.h \ dtd_parse.h \ - eap.h \ + eap.h \ emem.h \ epan.h \ epan_dissect.h \ diff --git a/epan/crypt/Makefile.common b/epan/crypt/Makefile.common index 02d2a753fb..b2119bdf04 100644 --- a/epan/crypt/Makefile.common +++ b/epan/crypt/Makefile.common @@ -34,7 +34,8 @@ LIBAIRPDCAP_SRC = \ crypt-md4.c \ crypt-md5.c \ crypt-rc4.c \ - crypt-sha1.c + crypt-sha1.c \ + eax.c LIBAIRPDCAP_INCLUDES = \ airpdcap_debug.h \ @@ -50,4 +51,5 @@ LIBAIRPDCAP_INCLUDES = \ crypt-md5.h \ crypt-rc4.h \ crypt-sha1.h \ + eax.h \ wep-wpadefs.h diff --git a/epan/crypt/eax.c b/epan/crypt/eax.c new file mode 100644 index 0000000000..ad879d2fa4 --- /dev/null +++ b/epan/crypt/eax.c @@ -0,0 +1,252 @@ +/* eax.c + * Encryption and decryption routines implementing the EAX' encryption mode + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ +#ifdef HAVE_CONFIG_H +#include "config.h" +#endif +#include <stdlib.h> +#ifdef HAVE_LIBGCRYPT +#include <string.h> +/* Use libgcrypt for cipher libraries. */ +#include <gcrypt.h> +#include "eax.h" + +typedef struct { + guint8 L[EAX_SIZEOF_KEY]; + guint8 D[EAX_SIZEOF_KEY]; + guint8 Q[EAX_SIZEOF_KEY]; +} eax_s; + +static eax_s instance; + +/* these are defined as macros so they'll be easy to redo in assembly if desired */ +#define BLK_CPY(dst, src) { memcpy(dst, src, EAX_SIZEOF_KEY); } +#define BLK_XOR(dst, src) { int z; for (z=0; z < EAX_SIZEOF_KEY; z++) dst[z] ^= src[z]; } +static void Dbl(guint8 *out, const guint8 *in); +static void CTR(const guint8 *ws, guint8 *pK, guint8 *pN, guint16 SizeN); +static void CMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN); +static void dCMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN, const guint8 *pC, guint16 SizeC); +void AesEncrypt(unsigned char msg[EAX_SIZEOF_KEY], unsigned char key[EAX_SIZEOF_KEY]); + +/*! + Decrypts cleartext data using EAX' mode (see ANSI Standard C12.22-2008). + + @param[in] pN pointer to cleartext (canonified form) + @param[in] pK pointer to secret key + @param[in,out] pC pointer to ciphertext + @param[in] SizeN byte length of cleartext (pN) buffer + @param[in] SizeK byte length of secret key (pK) + @param[in] SizeC byte length of ciphertext (pC) buffer + @param[in] pMac four-byte Message Authentication Code + @param[in] Mode EAX_MODE_CLEARTEXT_AUTH or EAX_MODE_CIPHERTEXT_AUTH + @return TRUE if message has been authenticated; FALSE if not + authenticated, invalid Mode or error + */ +gboolean Eax_Decrypt(guint8 *pN, guint8 *pK, guint8 *pC, + guint32 SizeN, guint32 SizeK, guint32 SizeC, MAC_T *pMac, + guint8 Mode) +{ + guint8 wsn[EAX_SIZEOF_KEY]; + guint8 wsc[EAX_SIZEOF_KEY]; + int i; + + /* key size must match this implementation */ + if (SizeK != EAX_SIZEOF_KEY) + return FALSE; + + /* the key is new */ + for (i = 0; i < EAX_SIZEOF_KEY; i++) + instance.L[i] = 0; + AesEncrypt(instance.L, pK); + Dbl(instance.D, instance.L); + Dbl(instance.Q, instance.D); + /* the key is set up */ + /* first copy the nonce into our working space */ + BLK_CPY(wsn, instance.D); + if (Mode == EAX_MODE_CLEARTEXT_AUTH) { + dCMAC(pK, wsn, pN, SizeN, pC, SizeC); + } else { + CMAC(pK, wsn, pN, SizeN); + } + /* + * In authentication mode the inputs are: pN, pK (and associated sizes), + * the result is the 4 byte MAC. + */ + if (Mode == EAX_MODE_CLEARTEXT_AUTH) + { + return (memcmp(pMac, &wsn[EAX_SIZEOF_KEY-sizeof(*pMac)], sizeof(*pMac)) ? FALSE : TRUE); + + } + + /* + * In cipher mode the inputs are: pN, pK, pP (and associated sizes), + * the results are pC (and its size) along with the 4 byte MAC. + */ + else if (Mode == EAX_MODE_CIPHERTEXT_AUTH) + { + if (SizeC == 0) + return (memcmp(pMac, &wsn[EAX_SIZEOF_KEY-sizeof(*pMac)], sizeof(*pMac)) ? FALSE : TRUE); + { + /* first copy the nonce into our working space */ + BLK_CPY(wsc, instance.Q); + CMAC(pK, wsc, pC, SizeC); + BLK_XOR(wsc, wsn); + } + if (memcmp(pMac, &wsc[EAX_SIZEOF_KEY-sizeof(*pMac)], sizeof(*pMac)) == 0) + { + CTR(wsn, pK, pC, SizeC); + return TRUE; + } + } + return FALSE; +} + +/* set up D or Q from L */ +static void Dbl(guint8 *out, const guint8 *in) +{ + int i; + guint8 carry = 0; + + /* this might be a lot more efficient in assembly language */ + for (i=0; i < EAX_SIZEOF_KEY; i++) + { + out[i] = ( in[i] << 1 ) | carry; + carry = (in[i] & 0x80) ? 1 : 0; + } + if (carry) + out[0] ^= 0x87; +} + +static void CMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN) +{ + dCMAC(pK, ws, pN, SizeN, NULL, 0); +} + +static void dCMAC(guint8 *pK, guint8 *ws, const guint8 *pN, guint16 SizeN, const guint8 *pC, guint16 SizeC) +{ + gcry_cipher_hd_t cipher_hd; + guint8 *work; + guint8 *ptr; + guint16 SizeT = SizeN + SizeC; + guint16 worksize = SizeT; + + /* worksize must be an integral multiple of 16 */ + if (SizeT & 0xf) { + worksize += 0x10 - (worksize & 0xf); + } + work = g_malloc(worksize); + if (work == NULL) { + return; + } + memcpy(work, pN, SizeN); + memcpy(&work[SizeN], pC, SizeC); + /* + * pad the data if necessary, and XOR Q or D, depending on + * whether data was padded or not + */ + if (worksize != SizeT) { + work[SizeT] = 0x80; + for (ptr = &work[SizeT+1]; ptr < &work[worksize]; ptr++) + *ptr = 0; + ptr= &work[worksize-0x10]; + BLK_XOR(ptr, instance.Q); + } else { + ptr = &work[worksize-0x10]; + BLK_XOR(ptr, instance.D); + } + /* open the cipher */ + if (gcry_cipher_open(&cipher_hd, GCRY_CIPHER_AES128, GCRY_CIPHER_MODE_CBC,0)){/* GCRY_CIPHER_CBC_MAC)) { */ + g_free(work); + return; + } + if (gcry_cipher_setkey(cipher_hd, pK, EAX_SIZEOF_KEY)) { + g_free(work); + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_setiv(cipher_hd, ws, EAX_SIZEOF_KEY)) { + g_free(work); + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_encrypt(cipher_hd, work, worksize, work, worksize)) { + g_free(work); + gcry_cipher_close(cipher_hd); + return; + } + memcpy(ws, ptr, EAX_SIZEOF_KEY); + + g_free(work); + gcry_cipher_close(cipher_hd); + return; +} + +static void CTR(const guint8 *ws, guint8 *pK, guint8 *pN, guint16 SizeN) +{ + gcry_cipher_hd_t cipher_hd; + guint8 ctr[EAX_SIZEOF_KEY]; + + BLK_CPY(ctr, ws); + ctr[12] &= 0x7f; + ctr[14] &= 0x7f; + /* open the cipher */ + if (gcry_cipher_open(&cipher_hd, GCRY_CIPHER_AES128, GCRY_CIPHER_MODE_CTR, 0)) { + return; + } + if (gcry_cipher_setkey(cipher_hd, pK, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_setctr(cipher_hd, ctr, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_encrypt(cipher_hd, pN, SizeN, pN, SizeN)) { + gcry_cipher_close(cipher_hd); + return; + } + gcry_cipher_close(cipher_hd); + return; +} + +void AesEncrypt(unsigned char msg[EAX_SIZEOF_KEY], unsigned char key[EAX_SIZEOF_KEY]) +{ + gcry_cipher_hd_t cipher_hd; + + /* open the cipher */ + if (gcry_cipher_open(&cipher_hd, GCRY_CIPHER_AES128, GCRY_CIPHER_MODE_ECB, 0)) { + return; + } + if (gcry_cipher_setkey(cipher_hd, key, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + if (gcry_cipher_encrypt(cipher_hd, msg, EAX_SIZEOF_KEY, msg, EAX_SIZEOF_KEY)) { + gcry_cipher_close(cipher_hd); + return; + } + gcry_cipher_close(cipher_hd); + return; +} +#endif /* HAVE_LIBGCRYPT */ diff --git a/epan/crypt/eax.h b/epan/crypt/eax.h new file mode 100644 index 0000000000..f9950e7120 --- /dev/null +++ b/epan/crypt/eax.h @@ -0,0 +1,57 @@ +/* eax.h + * Encryption and decryption routines implementing the EAX' encryption mode + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ +#ifdef HAVE_CONFIG_H +#include "config.h" +#endif + +#include <glib.h> +typedef struct tagMAC_T +{ + guint8 Mac[4]; +} MAC_T; + +#define EAX_MODE_CLEARTEXT_AUTH 1 +#define EAX_MODE_CIPHERTEXT_AUTH 2 + +#define EAX_SIZEOF_KEY 16 + +/*! + Decrypts cleartext data using EAX' mode (see ANSI Standard C12.22-2008). + + @param[in] pN pointer to cleartext (canonified form) + @param[in] pK pointer to secret key + @param[in,out] pC pointer to ciphertext + @param[in] SizeN byte length of cleartext (pN) buffer + @param[in] SizeK byte length of secret key (pK) + @param[in] SizeC byte length of ciphertext (pC) buffer + @param[in] pMac four-byte Message Authentication Code + @param[in] Mode EAX_MODE_CLEARTEXT_AUTH or EAX_MODE_CIPHERTEXT_AUTH + @return TRUE if message has been authenticated; FALSE if not + authenticated, invalid Mode or error + */ +gboolean Eax_Decrypt(guint8 *pN, guint8 *pK, guint8 *pC, + guint32 SizeN, guint32 SizeK, guint32 SizeC, MAC_T *pMac, + guint8 Mode); + diff --git a/epan/dissectors/Makefile.common b/epan/dissectors/Makefile.common index 88240cfeae..eca3de3112 100644 --- a/epan/dissectors/Makefile.common +++ b/epan/dissectors/Makefile.common @@ -100,6 +100,7 @@ ASN1_DISSECTOR_SRC = \ packet-acp133.c \ packet-acse.c \ packet-ansi_tcap.c \ + packet-c1222.c \ packet-camel.c \ packet-cdt.c \ packet-charging_ase.c \ @@ -1111,6 +1112,7 @@ DISSECTOR_INCLUDES = \ packet-btl2cap.h \ packet-btrfcomm.h \ packet-btsdp.h \ + packet-c1222.h \ packet-camel.h \ packet-cdt.h \ packet-charging_ase.h \ diff --git a/epan/dissectors/packet-c1222.c b/epan/dissectors/packet-c1222.c new file mode 100644 index 0000000000..06cb39b543 --- /dev/null +++ b/epan/dissectors/packet-c1222.c @@ -0,0 +1,1916 @@ +/* Do not modify this file. */ +/* It is created automatically by the ASN.1 to Wireshark dissector compiler */ +/* packet-c1222.c */ +/* ../../../tools/asn2wrs.py -b -p c1222 -c ../../../asn1/c1222/c1222.cnf -s ../../../asn1/c1222/packet-c1222-template -D ../../../asn1/c1222 -O ../../../epan/dissectors c1222.asn */ + +/* Input file: packet-c1222-template.c */ + +#line 1 "../../asn1/c1222/packet-c1222-template.c" +/* packet-c1222.c + * Routines for ANSI C12.22 packet dissection + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ + +#ifdef HAVE_CONFIG_H +# include "config.h" +#endif + +#include <glib.h> +#include <epan/conversation.h> +#include <wsutil/crc16.h> +#include <epan/expert.h> +#include <epan/packet.h> +#include <epan/prefs.h> +#include <epan/strutil.h> +#include <epan/dissectors/packet-ber.h> +#include <epan/dissectors/packet-tcp.h> +#include <epan/uat.h> +#include <epan/crypt/eax.h> + +#include <stdio.h> +#include <string.h> + +#include "packet-c1222.h" + +#define PNAME "ANSI C12.22" +#define PSNAME "C12.22" +#define PFNAME "c1222" +#define C1222_PORT 1153 /* TCP port */ + +/* C12.22 flag definitions */ +#define C1222_EPSEM_FLAG_RESERVED 0x80 +#define C1222_EPSEM_FLAG_RECOVERY_SESSION 0x40 +#define C1222_EPSEM_FLAG_PROXY_SERVICE_USED 0x20 +#define C1222_EPSEM_FLAG_ED_CLASS_INCLUDED 0x10 +#define C1222_EPSEM_FLAG_SECURITY_MODE 0x0c +#define C1222_EPSEM_FLAG_RESPONSE_CONTROL 0x03 + +/* if the packet is encrypted, it can be + * good, bad, or simply not checked + */ +#define C1222_EPSEM_CRYPTO_GOOD 0x01 +#define C1222_EPSEM_CRYPTO_BAD 0x02 + +/* these defines are for each of the C12.22 services */ +#define C1222_CMD_IDENTIFY 0x20 +#define C1222_CMD_TERMINATE 0x21 +#define C1222_CMD_DISCONNECT 0x22 +#define C1222_CMD_FULL_READ 0x30 +#define C1222_CMD_DEFAULT_READ 0x3E +#define C1222_CMD_PARTIAL_READ_OFFSET 0x3F +#define C1222_CMD_FULL_WRITE 0x40 +#define C1222_CMD_DEFAULT_WRITE 0x4E +#define C1222_CMD_PARTIAL_WRITE_OFFSET 0x4F +#define C1222_CMD_LOGON 0x50 +#define C1222_CMD_SECURITY 0x51 +#define C1222_CMD_LOGOFF 0x52 +#define C1222_CMD_AUTHENTICATE 0x53 +#define C1222_CMD_NEGOTIATE 0x60 +#define C1222_CMD_WAIT 0x70 +#define C1222_CMD_TIMING_SETUP 0x71 + +static dissector_handle_t c1222_handle=NULL; + +/* Initialize the protocol and registered fields */ +static int proto_c1222 = -1; +static int global_c1222_port = C1222_PORT; +static gboolean c1222_desegment = TRUE; +static gboolean c1222_decrypt = TRUE; + + +/*--- Included file: packet-c1222-hf.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-hf.c" +static int hf_c1222_C1222_MESSAGE_PDU = -1; /* C1222_MESSAGE */ +static int hf_c1222_aSO_context = -1; /* ASO_qualifier */ +static int hf_c1222_called_AP_title = -1; /* Called_AP_title */ +static int hf_c1222_called_AP_invocation_id = -1; /* Called_AP_invocation_id */ +static int hf_c1222_calling_AP_title = -1; /* Calling_AP_title */ +static int hf_c1222_calling_AE_qualifier = -1; /* Calling_AE_qualifier */ +static int hf_c1222_calling_AP_invocation_id = -1; /* Calling_AP_invocation_id */ +static int hf_c1222_mechanism_name = -1; /* Mechanism_name */ +static int hf_c1222_calling_authentication_value = -1; /* Calling_authentication_value */ +static int hf_c1222_user_information = -1; /* User_information */ +static int hf_c1222_calling_authentication_value_indirect = -1; /* INTEGER */ +static int hf_c1222_calling_authentication_value_encoding = -1; /* Authentication_value_encoding */ +static int hf_c1222_calling_authentication_value_single_asn1 = -1; /* Calling_authentication_value_single_asn1 */ +static int hf_c1222_calling_authentication_value_octet_aligned = -1; /* OCTET_STRING */ +static int hf_c1222_calling_authentication_value_c1222 = -1; /* Calling_authentication_value_c1222 */ +static int hf_c1222_calling_authentication_value_c1221 = -1; /* Calling_authentication_value_c1221 */ +static int hf_c1222_key_id_element = -1; /* Key_id_element */ +static int hf_c1222_iv_element = -1; /* Iv_element */ +static int hf_c1222_c1221_auth_identification = -1; /* OCTET_STRING_SIZE_CONSTR001 */ +static int hf_c1222_c1221_auth_request = -1; /* OCTET_STRING_SIZE_1_255 */ +static int hf_c1222_c1221_auth_response = -1; /* OCTET_STRING_SIZE_CONSTR002 */ + +/*--- End of included file: packet-c1222-hf.c ---*/ +#line 93 "../../asn1/c1222/packet-c1222-template.c" +/* These are the EPSEM pieces */ +/* first, the flag components */ +static int hf_c1222_epsem_flags = -1; +static int hf_c1222_epsem_flags_reserved = -1; +static int hf_c1222_epsem_flags_recovery = -1; +static int hf_c1222_epsem_flags_proxy = -1; +static int hf_c1222_epsem_flags_ed_class = -1; +static int hf_c1222_epsem_flags_security_modes = -1; +static int hf_c1222_epsem_flags_response_control = -1; +/* and the structure of the flag components */ +/* +static const int *c1222_flags[] = { + &hf_c1222_epsem_flags_reserved, + &hf_c1222_epsem_flags_recovery, + &hf_c1222_epsem_flags_proxy, + &hf_c1222_epsem_flags_ed_class, + &hf_c1222_epsem_flags_security_modes, + &hf_c1222_epsem_flags_response_control, + NULL +}; +*/ +/* next the optional ed_class */ +static int hf_c1222_epsem_ed_class = -1; +/* now the aggregate epsem */ +static int hf_c1222_epsem_total = -1; +/* generic command */ +static int hf_c1222_cmd = -1; +static int hf_c1222_err = -1; +static int hf_c1222_data = -1; +static int hf_c1222_crc = -1; +/* individual epsem fields */ +static int hf_c1222_logon_id = -1; +static int hf_c1222_logon_user = -1; +static int hf_c1222_security_password = -1; +static int hf_c1222_auth_len = -1; +static int hf_c1222_auth_data = -1; +static int hf_c1222_read_table = -1; +static int hf_c1222_read_offset = -1; +static int hf_c1222_read_count = -1; +static int hf_c1222_write_table = -1; +static int hf_c1222_write_offset = -1; +static int hf_c1222_write_size = -1; +static int hf_c1222_write_data = -1; +static int hf_c1222_write_chksum = -1; +static int hf_c1222_wait_secs = -1; +static int hf_c1222_neg_pkt_size = -1; +static int hf_c1222_neg_nbr_pkts = -1; +static int hf_c1222_timing_setup_traffic = -1; +static int hf_c1222_timing_setup_inter_char = -1; +static int hf_c1222_timing_setup_resp_to = -1; +static int hf_c1222_timing_setup_nbr_retries = -1; + +/* the MAC */ +static int hf_c1222_epsem_mac = -1; + +/* crypto result flags */ +static int hf_c1222_epsem_crypto_good = -1; +static int hf_c1222_epsem_crypto_bad = -1; + +/* Initialize the subtree pointers */ +static int ett_c1222 = -1; +static int ett_c1222_epsem = -1; +static int ett_c1222_flags = -1; +static int ett_c1222_crypto = -1; +static int ett_c1222_cmd = -1; + +#ifdef HAVE_LIBGCRYPT +/* these pointers are for the header elements that may be needed to verify the crypto */ +static guint8 *aSO_context = NULL; +static guint8 *called_AP_title = NULL; +static guint8 *called_AP_invocation_id = NULL; +static guint8 *calling_AE_qualifier = NULL; +static guint8 *calling_AP_invocation_id = NULL; +static guint8 *mechanism_name = NULL; +static guint8 *calling_authentication_value = NULL; +static guint8 *user_information = NULL; +static guint8 *calling_AP_title = NULL; +static guint8 *key_id_element = NULL; +static guint8 *iv_element = NULL; + +/* these are the related lengths */ +static guint32 aSO_context_len = 0; +static guint32 called_AP_title_len = 0; +static guint32 called_AP_invocation_id_len = 0; +static guint32 calling_AE_qualifier_len = 0; +static guint32 calling_AP_invocation_id_len = 0; +static guint32 mechanism_name_len = 0; +static guint32 calling_authentication_value_len = 0; +static guint32 user_information_len = 0; +static guint32 calling_AP_title_len = 0; +static guint32 key_id_element_len = 0; +static guint32 iv_element_len = 0; +#endif /* HAVE_LIBGCRYPT */ + + +/*--- Included file: packet-c1222-ett.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-ett.c" +static gint ett_c1222_C1222_MESSAGE_U = -1; +static gint ett_c1222_Calling_authentication_value_U = -1; +static gint ett_c1222_Authentication_value_encoding = -1; +static gint ett_c1222_Calling_authentication_value_single_asn1 = -1; +static gint ett_c1222_Calling_authentication_value_c1222_U = -1; +static gint ett_c1222_Calling_authentication_value_c1221_U = -1; + +/*--- End of included file: packet-c1222-ett.c ---*/ +#line 188 "../../asn1/c1222/packet-c1222-template.c" + + +/*------------------------------ + * Data Structures + *------------------------------ + */ +typedef struct _c1222_uat_data { + guint keynum; + guchar *key; + guint keylen; +} c1222_uat_data_t; + +static const value_string c1222_security_modes[] = { + { 0x00, "Cleartext"}, + { 0x01, "Cleartext with authentication"}, + { 0x02, "Ciphertext with authentication"}, + { 0, NULL } +}; + +static const value_string c1222_response_control[] = { + { 0x00, "Always respond"}, + { 0x01, "Respond on exception"}, + { 0x02, "Never respond"}, + { 0, NULL } +}; + +static const value_string tableflags[] = { + { 0x00, "ST" }, + { 0x08, "MT" }, + { 0x10, "Pending ST" }, + { 0x18, "Pending MT" }, + { 0, NULL } +}; + +static const value_string procflags[] = { + { 0x00, "SF" }, + { 0x01, "MF" }, + { 0, NULL } +}; + +static const value_string commandnames[] = { +/* error codes are in the range 0x00 - 0x1f inclusive */ + { 0x00, "OK" }, + { 0x01, "Error" }, + { 0x02, "Service Not Supported" }, + { 0x03, "Insufficient Security Clearance" }, + { 0x04, "Operation Not Possible" }, + { 0x05, "Inappropriate Action Requested" }, + { 0x06, "Device Busy" }, + { 0x07, "Data Not Ready" }, + { 0x08, "Data Locked" }, + { 0x09, "Renegotiate Request" }, + { 0x0A, "Invalid Service Sequence State" }, + { 0x0B, "Security Mechanism Error" }, + { 0x0C, "Unknown Application Title" }, + { 0x0D, "Network Time-out" }, + { 0x0E, "Network Not Reachable" }, + { 0x0F, "Request Too Large" }, + { 0x10, "Response Too Large" }, + { 0x11, "Segmentation Not Possible" }, + { 0x12, "Segmentation Error" }, +/* commands are in the range 0x20 - 0x7f inclusive */ + {C1222_CMD_IDENTIFY, "Identify" }, + {C1222_CMD_TERMINATE, "Terminate" }, + {C1222_CMD_DISCONNECT, "Disconnect" }, + {C1222_CMD_FULL_READ, "Full Read" }, + {C1222_CMD_DEFAULT_READ, "Default Read" }, + {C1222_CMD_PARTIAL_READ_OFFSET, "Partial Read Offset" }, + {C1222_CMD_FULL_WRITE, "Full Write" }, + {C1222_CMD_DEFAULT_WRITE, "Default Write" }, + {C1222_CMD_PARTIAL_WRITE_OFFSET, "Partial Write Offset" }, + {C1222_CMD_LOGON, "Logon" }, + {C1222_CMD_SECURITY, "Security" }, + {C1222_CMD_LOGOFF, "Logoff" }, + {C1222_CMD_AUTHENTICATE, "Authenticate" }, + {C1222_CMD_NEGOTIATE, "Negotiate" }, + {C1222_CMD_NEGOTIATE | 0x1, "Negotiate w/ 1 Baud Rate" }, + {C1222_CMD_NEGOTIATE | 0x2, "Negotiate w/ 2 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x3, "Negotiate w/ 3 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x4, "Negotiate w/ 4 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x5, "Negotiate w/ 5 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x6, "Negotiate w/ 6 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x7, "Negotiate w/ 7 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x8, "Negotiate w/ 8 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0x9, "Negotiate w/ 9 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0xA, "Negotiate w/ 10 Baud Rates" }, + {C1222_CMD_NEGOTIATE | 0xB, "Negotiate w/ 11 Baud Rates" }, + {C1222_CMD_WAIT, "Wait" }, + {C1222_CMD_TIMING_SETUP, "Timing Setup" }, + { 0, NULL } +}; + +#ifdef HAVE_LIBGCRYPT +/* these are for the key tables */ +UAT_HEX_CB_DEF(c1222_users, keynum, c1222_uat_data_t) +UAT_BUFFER_CB_DEF(c1222_users, key, c1222_uat_data_t, key, keylen) + +static c1222_uat_data_t *c1222_uat_data = NULL; +static guint num_c1222_uat_data = 0; +static uat_t *c1222_uat; + +/* these macros ares used to populate fields needed to verify crypto */ +#define FILL_START int length, start_offset = offset; +#define FILL_TABLE(fieldname) \ + length = offset - start_offset; \ + fieldname = tvb_memdup(tvb, start_offset, length); \ + fieldname##_len = length; +#define FILL_TABLE_TRUNCATE(fieldname, len) \ + length = 1 + 2*(offset - start_offset); \ + fieldname = tvb_memdup(tvb, start_offset, length); \ + fieldname##_len = len; +#else /* HAVE_LIBGCRYPT */ +#define FILL_TABLE(fieldname) +#define FILL_TABLE_TRUNCATE(fieldname, len) +#define FILL_START +#endif /* HAVE_LIBGCRYPT */ + +/*------------------------------ + * Function Prototypes + *------------------------------ + */ +void proto_reg_handoff_c1222(void); + + +/*------------------------------ + * Code + *------------------------------ + */ + +/** + * Calculates simple one's complement checksum. + * + * \param tvb pointer to tvbuff containing data to be checksummed + * \param offset offset within tvbuff to beginning of data + * \param len length of data to be checksummed + * \returns calculated checksum + */ +static guint8 +c1222_cksum(tvbuff_t *tvb, gint offset, int len) +{ + guint8 sum; + for (sum = 0; len; offset++, len--) + sum += tvb_get_guint8(tvb, offset); + return ~sum + 1; +} +/** + * Dissects C12.22 packet in detail (with a tree). + * + * \param tvb input buffer containing packet to be dissected + * \param pinfo + * \param tree + * \param length + * \param offset + */ +static void +parse_c1222_detailed(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, int cmd, guint32 *length, int *offset) +{ + guint16 user_id = 0; + guint8 *user_name = NULL; + guint8 *password = NULL; + guint8 auth_len = 0; + gchar *auth_req = NULL; + guint16 table = 0; + guint16 tblsize = 0; + guint8 chksum = 0; + guint16 calcsum = 0; + guint8 wait_seconds = 0; + int numrates = 0; + guint16 packet_size; + guint8 nbr_packet; + /* timing setup parameters */ + guint8 traffic; + guint8 inter_char; + guint8 resp_to; + guint8 nbr_retries; + proto_item *item = NULL; + + /* special case to simplify handling of Negotiate service */ + if ((cmd & 0xF0) == C1222_CMD_NEGOTIATE) { + numrates = cmd & 0x0F; + cmd = C1222_CMD_NEGOTIATE; + } + proto_tree_add_uint(tree, cmd >= 0x20 ? hf_c1222_cmd : hf_c1222_err, tvb, *offset, 1, cmd); + (*offset)++; + (*length)--; + switch (cmd) { + case C1222_CMD_LOGON: + if (*length >= 12) { + user_id = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_logon_id, tvb, *offset, 2, user_id); + *offset += 2; + user_name = tvb_get_ephemeral_string(tvb, *offset, 10); + proto_tree_add_string(tree, hf_c1222_logon_user, tvb, *offset, 10, user_name); + *offset += 10; + *length -= 12; + proto_item_set_text(tree, "C12.22 EPSEM: %s (id %d, user \"%s\")", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), user_id, user_name); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 LOGON command truncated"); + } + break; + case C1222_CMD_SECURITY: + if (*length >= 20) { + password = tvb_get_ephemeral_string(tvb, *offset, 20); + proto_tree_add_string(tree, hf_c1222_security_password, tvb, *offset, 20, password); + *offset += 20; + *length -= 20; + if (*length >= 2) { + user_id = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_logon_id, tvb, *offset, 2, user_id); + *offset += 2; + *length -= 2; + proto_item_set_text(tree, "C12.22 EPSEM: %s (password \"%s\", id %d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), password, user_id); + } else { + proto_item_set_text(tree, "C12.22 EPSEM: %s (password \"%s\")", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), password); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 SECURITY command truncated"); + } + break; + case C1222_CMD_AUTHENTICATE: + if (*length >= 1) { + auth_len = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_auth_len, tvb, *offset, 1, auth_len); + *offset += 1; + if (*length >= auth_len) { + auth_req = tvb_bytes_to_str(tvb, *offset, auth_len); + proto_tree_add_item(tree, hf_c1222_auth_data, tvb, *offset, auth_len, ENC_NA); + *offset += auth_len; + *length -= auth_len + 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (%d bytes: %s)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), auth_len, auth_req); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 AUTHENTICATE command truncated"); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 AUTHENTICATE command truncated"); + } + break; + case C1222_CMD_FULL_READ: + if (*length >= 2) { + table = tvb_get_ntohs(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_read_table, tvb, *offset, 2, table); + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + *offset += 2; + *length -= 2; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 READ command truncated"); + } + break; + case C1222_CMD_PARTIAL_READ_OFFSET: + if (*length >= 7) { + table = tvb_get_ntohs(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_read_table, tvb, *offset, 2, table); + *offset += 2; + *length -= 2; + proto_tree_add_item(tree, hf_c1222_read_offset, tvb, *offset, 3, ENC_BIG_ENDIAN); + *offset += 3; + *length -= 3; + proto_tree_add_item(tree, hf_c1222_read_count, tvb, *offset, 2, ENC_BIG_ENDIAN); + *offset += 2; + *length -= 2; + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 READ command truncated"); + } + break; + case C1222_CMD_FULL_WRITE: + if (*length >= 5) { + table = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_table, tvb, *offset, 2, table); + *offset += 2; + *length -= 2; + tblsize = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_size, tvb, *offset, 2, tblsize); + *offset += 2; + *length -= 2; + if (*length >= tblsize+1U) { + proto_tree_add_item(tree, hf_c1222_write_data, tvb, *offset, tblsize, ENC_NA); + *offset += tblsize; + *length -= tblsize; + chksum = tvb_get_guint8(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_write_chksum, tvb, *offset, 1, chksum); + calcsum = c1222_cksum(tvb, (*offset)-tblsize, tblsize); + if (chksum != calcsum) { + expert_add_info_format(pinfo, item, PI_CHECKSUM, PI_ERROR, "Bad checksum [should be 0x%02x]", calcsum); + } + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + *offset += 1; + *length -= 1; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + break; + case C1222_CMD_PARTIAL_WRITE_OFFSET: + if (*length >= 8) { + table = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_table, tvb, *offset, 2, table); + *offset += 2; + *length -= 2; + proto_tree_add_item(tree, hf_c1222_write_offset, tvb, *offset, 3, ENC_BIG_ENDIAN); + *offset += 3; + *length -= 3; + tblsize = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_write_size, tvb, *offset, 2, tblsize); + *offset += 2; + *length -= 2; + if (*length >= tblsize+1U) { + proto_tree_add_item(tree, hf_c1222_write_data, tvb, *offset, tblsize, ENC_NA); + *offset += tblsize; + *length -= tblsize; + chksum = tvb_get_guint8(tvb, *offset); + item = proto_tree_add_uint(tree, hf_c1222_write_chksum, tvb, *offset, 1, chksum); + calcsum = c1222_cksum(tvb, (*offset)-tblsize, tblsize); + if (chksum != calcsum) { + expert_add_info_format(pinfo, item, PI_CHECKSUM, PI_ERROR, "Bad checksum [should be 0x%02x]", calcsum); + } + proto_item_set_text(tree, "C12.22 EPSEM: %s (%s-%d)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), + val_to_str((table >> 8) & 0xF8, tableflags,"Unknown (0x%04x)"), table & 0x7FF); + *offset += 1; + *length -= 1; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WRITE command truncated"); + } + break; + case C1222_CMD_WAIT: + if (*length >= 1) { + wait_seconds = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_wait_secs, tvb, *offset, 1, wait_seconds); + *offset += 1; + *length -= 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (%d seconds)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), wait_seconds); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 WAIT command truncated"); + } + break; + case C1222_CMD_NEGOTIATE: + if (*length >= 3) { + packet_size = tvb_get_ntohs(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_neg_pkt_size, tvb, *offset, 2, packet_size); + *offset += 2; + *length -= 2; + nbr_packet = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_neg_nbr_pkts, tvb, *offset, 1, nbr_packet); + *offset += 1; + *length -= 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (pkt size %d, num pkts %d, with %d baud rates)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), packet_size, nbr_packet, numrates); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 NEGOTIATE command truncated"); + } + break; + case C1222_CMD_TIMING_SETUP: + if (*length >= 4) { + traffic = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_traffic, tvb, *offset, 1, traffic); + *offset += 1; + *length -= 1; + inter_char = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_inter_char, tvb, *offset, 1, inter_char); + *offset += 1; + *length -= 1; + resp_to = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_resp_to, tvb, *offset, 1, resp_to); + *offset += 1; + *length -= 1; + nbr_retries = tvb_get_guint8(tvb, *offset); + proto_tree_add_uint(tree, hf_c1222_timing_setup_nbr_retries, tvb, *offset, 1, nbr_retries); + *offset += 1; + *length -= 1; + proto_item_set_text(tree, "C12.22 EPSEM: %s (traffic to %d s, inter-char to %d s, response to %d s, %d retries)", + val_to_str(cmd,commandnames,"Unknown (0x%02x)"), traffic, inter_char, resp_to, nbr_retries); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 NEGOTIATE command truncated"); + } + break; + + default: + /* don't do anything */ + proto_item_set_text(tree, "C12.22 EPSEM: %s", val_to_str(cmd, commandnames, "Unknown (0x%02x)")); + if (*length) { + if (*length >= *length) { + proto_tree_add_item(tree, hf_c1222_data, tvb, *offset, *length, ENC_NA); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 unknown command truncated"); + } + } + break; + } +} + +#ifdef HAVE_LIBGCRYPT +typedef struct tagTOP_ELEMENT_CONTROL +{ + /* TRUE if this tag is required */ + gboolean required; + /* TRUE if we must truncate this tag */ + gboolean truncate; + /* actual hex value of the tag we're seeking */ + guint8 tag; + /* if TRUE, add tag and length before copying */ + gboolean addtag; + /* pointer to pointer to memory copy of element */ + guint8 **element; + /* pointer to element length */ + guint32 *length; +} TOP_ELEMENT_CONTROL; + +static const TOP_ELEMENT_CONTROL canonifyTable[] = { + { FALSE, FALSE, 0xA1, TRUE, &aSO_context, &aSO_context_len }, + { TRUE , FALSE, 0xA2, TRUE, &called_AP_title, &called_AP_title_len }, + { FALSE, FALSE, 0xA4, TRUE, &called_AP_invocation_id, &called_AP_invocation_id_len }, + { FALSE, FALSE, 0xA3, TRUE, &calling_AE_qualifier, &calling_AE_qualifier_len }, + { TRUE, FALSE, 0xA8, TRUE, &calling_AP_invocation_id, &calling_AP_invocation_id_len }, + { FALSE, FALSE, 0x8B, TRUE, &mechanism_name, &mechanism_name_len }, + { FALSE, FALSE, 0xAC, TRUE, &calling_authentication_value, &calling_authentication_value_len }, + { TRUE , TRUE , 0xBE, TRUE, &user_information, &user_information_len }, + { FALSE, FALSE, 0xA6, TRUE, &calling_AP_title, &calling_AP_title_len }, + { FALSE, FALSE, 0xAC, FALSE, &key_id_element, &key_id_element_len }, + { FALSE, FALSE, 0xAC, FALSE, &iv_element, &iv_element_len }, + { FALSE, FALSE, 0x0, TRUE, NULL, NULL } +}; + +/** + * Calculates the size of the passed number n as encoded as a BER length field. + * + * \param n is the length value to be BER encoded + * \returns the sized of the encoding + */ +static guint32 +get_ber_len_size(guint32 n) +{ + guint32 len = 1; + if (n > 0x7f) len++; + if (n > 0xff) len++; + if (n > 0xffff) len++; + if (n > 0xffffff) len++; + return len; +} +/** + * Encodes the passed value n as a BER-encoded length at puts it in memory. + * + * \param ptr points to the buffer to be written + * \param n is the length to be BER encoded + * \maxsize is the maximum number of bytes we're allowed to write + * \returns length of encoded value in bytes + */ +static int +encode_ber_len(guint8 *ptr, guint32 n, int maxsize) +{ + int len = get_ber_len_size(n); + if (len > maxsize) return 0; + if (len == 1) { + *ptr = 0x7f & n; + } else { + *ptr = (len -1) | 0x80; + for (ptr += len-1; n; n >>= 8) + *ptr-- = n & 0xff; + } + return len; + +} + +/** + * Checks a new encryption table item for validity. + * + * \param n points to the new record + * \param err is updated to point to an error string if needed + */ +static void +c1222_uat_data_update_cb(void* n, const char** err) +{ + c1222_uat_data_t* new_rec = n; + + if (new_rec->keynum > 0xff) { + *err = "Invalid key number; must be less than 256"; + } + if (new_rec->keylen != EAX_SIZEOF_KEY) { + *err = "Invalid key size; must be 16 bytes"; + } +} + +/** + * Canonifies header fields in preparation for authenticating and/or decrypting the packet. + * + * \param buff points to the allocated canonization buffer + * \param offset points to start of unallocated space in buffer and + is updated as we put bytes into buffer + * \param buffsize total size of allocated buffer + * \return FALSE if element is required and not present; otherwise TRUE + */ +static gboolean +canonify_unencrypted_header(guchar *buff, guint32 *offset, guint32 buffsize) +{ + const TOP_ELEMENT_CONTROL *t = canonifyTable; + guint32 len; + + for (t = canonifyTable; t->element != NULL; t++) + { + len = *(t->length); + if (t->required && *(t->element) == NULL) + return FALSE; + if (*(t->element) != NULL) { + if (t->addtag) { + /* recreate original tag and length */ + buff[(*offset)++] = t->tag; + (*offset) += encode_ber_len(&buff[*offset], len, 4); + } + if (t->truncate) { + len = 3+2*get_ber_len_size(len); + } + /* bail out if the cannonization buffer is too small */ + /* this should never happen! */ + if (buffsize < *offset + len) { + return FALSE; + } + memcpy(&buff[*offset], *(t->element), len); + (*offset) += len; + g_free(*(t->element)); + *(t->element) = NULL; + } + } + return TRUE; +} + +/** + * Looks up the required key in the key table. + * + * \param keybuf is updated with a copy of the key data if successful lookup. + * \param keyid is the ID number of the desired key + * \returns TRUE if key was found; otherwise FALSE + */ +static gboolean +keylookup(guint8 *keybuff, guint8 keyid) +{ + guint i; + + if (c1222_uat_data == NULL) + return FALSE; + for (i = 0; i < num_c1222_uat_data; i++) { + if (c1222_uat_data[i].keynum == keyid) { + memcpy(keybuff, c1222_uat_data[i].key, EAX_SIZEOF_KEY); + return TRUE; + } + } + return FALSE; +} +#endif /* HAVE_LIBGCRYPT */ + +/** + * Authenticates and decrypts the passed packet. + * + * \param buffer points to a memory copy of the packet to be authenticated/decrypted + * and contains the decrypted value on successful return. + * \param length lenth of input packet + * \param decrypt TRUE if packet is to be authenticated and decrypted; FALSE if authentication only is requested + * \returns TRUE if the requested operation was successful; otherwise FALSE + */ +static gboolean +decrypt_packet(guchar *buffer, guint32 length, gboolean decrypt) +{ +#ifdef HAVE_LIBGCRYPT +#define CANONBUFFSIZE 300U + guchar canonbuff[CANONBUFFSIZE]; + guint8 c1222_key[EAX_SIZEOF_KEY]; + guchar key_id = 0; + guint32 offset = 0; + gboolean status = FALSE; + + /* must be at least 4 bytes long to include the MAC */ + if (length < 4) + return status; + if (key_id_element != NULL) + key_id = key_id_element[0]; + /* extract unencrypted header information */ + if (!canonify_unencrypted_header(canonbuff, &offset, CANONBUFFSIZE)) + return status; + /* decrypt and authenticate in place */ +/* PARAMETERS: pN : Pointer to ClearText (Input, Canonified form). */ +/* pK : Pointer to secret key (Input). */ +/* pC : Pointer to CipherText (Input/Output). */ +/* SizeN : Byte length of ClearText buffer. */ +/* SizeK : Byte length of secret key. */ +/* SizeC : Byte length of CipherText buffer. */ +/* pMac : Four byte Message Authentication Code. */ +/* Mode : Operating mode (See EAX_MODE_xxx). */ +/* RETURNS: TRUE if message has been authenticated. */ +/* FALSE if not authenticated, invalid Mode, or error. */ + if (offset) { + if (!keylookup((guint8 *)&c1222_key, key_id)) + return FALSE; + status = Eax_Decrypt(canonbuff, c1222_key, buffer, + offset, EAX_SIZEOF_KEY, length-4, + (MAC_T *)&buffer[length-4], + decrypt ? EAX_MODE_CIPHERTEXT_AUTH : EAX_MODE_CLEARTEXT_AUTH); + } + return status; +#else /* HAVE_LIBCRYPT */ + /* these are to silence compiler unreferenced variable warnings */ + buffer=buffer; + length=length; + decrypt=decrypt; + return FALSE; +#endif /* HAVE_LIBGCRYPT */ +} + +/** + * Checks to make sure that a complete, valid BER-encoded length is in the buffer. + * + * \param tvb contains the buffer to be examined + * \param offset is the offset within the buffer at which the BER-encded length begins + * \returns TRUE if a complete, valid BER-encoded length is in the buffer; otherwise FALSE + */ +static gboolean +ber_len_ok(tvbuff_t *tvb, int offset) +{ + guint8 ch; + + if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } else if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } else if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } else if (tvb_offset_exists(tvb, offset)) { + ch = tvb_get_guint8(tvb, offset); + offset++; + if (!(ch & 0x80)) { + return TRUE; + } + } + } + } + } + return FALSE; +} + +/** + * Dissects the EPSEM portion of the User-information part of a C12.22 message. + * + * \param tvb + * \param offset + * \param len + * \param pinfo + * \param tree + */ +static int +dissect_epsem(tvbuff_t *tvb, int offset, guint32 len, packet_info *pinfo, proto_tree *tree) +{ + /* proto_tree *ft = NULL; */ + proto_tree *cmd_tree = NULL; + proto_tree *ct = NULL; + proto_tree *crypto_tree = NULL; + proto_tree *yt = NULL; + proto_item *item = NULL; + guint8 flags; + int local_offset; + guint32 len2; + int cmd_err; + gboolean ind; + guchar *buffer; + tvbuff_t *epsem_buffer = NULL; + gboolean crypto_good = FALSE; + gboolean crypto_bad = FALSE; + gboolean hasmac = FALSE; + gboolean encrypted = FALSE; + + if ((tvb == NULL) && (len == 0)) { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 EPSEM missing"); + return offset; + } + /* parse the flags byte which is always unencrypted */ + flags = tvb_get_guint8(tvb, offset); + /* ft = proto_tree_add_bitmask(tree, tvb, offset, hf_c1222_epsem_flags, ett_c1222_flags, c1222_flags, FALSE); */ + offset++; + switch ((flags & C1222_EPSEM_FLAG_SECURITY_MODE) >> 2) { + case EAX_MODE_CIPHERTEXT_AUTH: + /* mode is ciphertext with authentication */ + hasmac = TRUE; + len2 = tvb_length_remaining(tvb, offset); + encrypted = TRUE; + if (c1222_decrypt) { + buffer = tvb_memdup(tvb, offset, len2); + if (!decrypt_packet(buffer, len2, TRUE)) { + g_free(buffer); + crypto_bad = TRUE; + } else { + epsem_buffer = tvb_new_real_data(buffer, len2, len2); + tvb_set_child_real_data_tvbuff(tvb, epsem_buffer); + add_new_data_source(pinfo, epsem_buffer, "Decrypted EPSEM Data"); + crypto_good = TRUE; + encrypted = FALSE; + } + } + break; + case EAX_MODE_CLEARTEXT_AUTH: + /* mode is cleartext with authentication */ + hasmac = TRUE; + len2 = tvb_length_remaining(tvb, offset); + buffer = tvb_memdup(tvb, offset, len2); + epsem_buffer = tvb_new_subset(tvb, offset, -1, -1); + if (c1222_decrypt) { + if (!decrypt_packet(buffer, len2, FALSE)) { +#ifdef HAVE_LIBGCRYPT + crypto_bad = TRUE; + expert_add_info_format(pinfo, tree, PI_SECURITY, PI_ERROR, "C12.22 EPSEM failed authentication"); +#else /* HAVE_LIBGCRYPT */ + expert_add_info_format(pinfo, tree, PI_SECURITY, PI_WARN, "C12.22 EPSEM could not be authenticated"); +#endif /* HAVE_LIBGCRYPT */ + } else { + crypto_good = TRUE; + } + } + break; + default: + /* it's not encrypted */ + epsem_buffer = tvb_new_subset(tvb, offset, -1, -1); + } + /* it's only encrypted if we have an undecrypted payload */ + if (encrypted) { + proto_tree_add_item(tree, hf_c1222_epsem_total, tvb, offset, -1, ENC_NA); + expert_add_info_format(pinfo, tree, PI_UNDECODED, PI_WARN, "C12.22 EPSEM could not be decrypted"); + local_offset = offset+len2-4; + epsem_buffer = tvb; + } else { /* it's not (now) encrypted */ + local_offset = 0; + /* retrieve the ed_class if it's there */ + if (flags & C1222_EPSEM_FLAG_ED_CLASS_INCLUDED) { + if (tvb_offset_exists(epsem_buffer, local_offset+4-1)) { + proto_tree_add_item(tree, hf_c1222_epsem_ed_class, epsem_buffer, local_offset, 4, ENC_NA); + local_offset += 4; + } else { + expert_add_info_format(pinfo, tree, PI_SECURITY, PI_ERROR, "C12.22 ED Class missing"); + } + } + /* what follows are one or more <epsem-data> elements possibly followed by + * a <mac>. Each <epsem-data> element is defined as <service-length><res-req>, + * so we fetch such pairs until there isn't anything left (except possibly + * the <mac>). + */ + while (tvb_offset_exists(epsem_buffer, local_offset+(hasmac?5:1))) { + if (ber_len_ok(epsem_buffer, local_offset)) { + local_offset = dissect_ber_length(pinfo, tree, epsem_buffer, local_offset, &len2, &ind); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 EPSEM BER length error"); + return offset+len; + } + if (tvb_offset_exists(epsem_buffer, local_offset+len2-1)) { + cmd_err = tvb_get_guint8(epsem_buffer, local_offset); + ct = proto_tree_add_item(tree, hf_c1222_epsem_total, epsem_buffer, local_offset, len2, ENC_NA); + cmd_tree = proto_item_add_subtree(ct, ett_c1222_cmd); + parse_c1222_detailed(epsem_buffer, pinfo, cmd_tree, cmd_err, &len2, &local_offset); + local_offset += len2; + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 EPSEM field length error"); + return offset+len; + } + } + } + if (hasmac) { + if (tvb_offset_exists(epsem_buffer, local_offset+4-1)) { + yt = proto_tree_add_item(tree, hf_c1222_epsem_mac, epsem_buffer, local_offset, 4, ENC_NA); + /* now we have enough information to fill in the crypto subtree */ + crypto_tree = proto_item_add_subtree(yt, ett_c1222_crypto); + item = proto_tree_add_boolean(crypto_tree, hf_c1222_epsem_crypto_good, tvb, local_offset, 4, crypto_good); + PROTO_ITEM_SET_GENERATED(item); + item = proto_tree_add_boolean(crypto_tree, hf_c1222_epsem_crypto_bad, tvb, local_offset, 4, crypto_bad); + PROTO_ITEM_SET_GENERATED(item); + } else { + expert_add_info_format(pinfo, tree, PI_MALFORMED, PI_ERROR, "C12.22 MAC missing"); + return offset+len; + } + } + return offset; +} + + +/*--- Included file: packet-c1222-fn.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-fn.c" + + +static int +dissect_c1222_ASO_qualifier(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 50 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_object_identifier(implicit_tag, actx, tree, tvb, offset, hf_index, NULL); + + FILL_TABLE(aSO_context); + + + + return offset; +} + + + +static int +dissect_c1222_AP_title(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_object_identifier(implicit_tag, actx, tree, tvb, offset, hf_index, NULL); + + return offset; +} + + + +static int +dissect_c1222_Called_AP_title(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 55 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_title(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(called_AP_title); + + + + return offset; +} + + + +static int +dissect_c1222_AP_invocation_id(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_integer(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Called_AP_invocation_id(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 60 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_invocation_id(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(called_AP_invocation_id); + + + + return offset; +} + + + +static int +dissect_c1222_Calling_AP_title(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 85 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_title(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(calling_AP_title); + + + + return offset; +} + + + +static int +dissect_c1222_AE_qualifier(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_integer(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Calling_AE_qualifier(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 65 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AE_qualifier(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(calling_AE_qualifier); + + + + return offset; +} + + + +static int +dissect_c1222_Calling_AP_invocation_id(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 70 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_c1222_AP_invocation_id(implicit_tag, tvb, offset, actx, tree, hf_index); + + FILL_TABLE(calling_AP_invocation_id); + + + + return offset; +} + + + +static int +dissect_c1222_Mechanism_name(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 75 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_object_identifier(implicit_tag, actx, tree, tvb, offset, hf_index, NULL); + + FILL_TABLE(mechanism_name); + + + + return offset; +} + + + +static int +dissect_c1222_INTEGER(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_integer(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Key_id_element(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 90 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + FILL_TABLE(key_id_element); + + + + return offset; +} + + + +static int +dissect_c1222_Iv_element(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 95 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + FILL_TABLE(iv_element); + + + + return offset; +} + + +static const ber_sequence_t Calling_authentication_value_c1222_U_sequence[] = { + { &hf_c1222_key_id_element, BER_CLASS_CON, 0, BER_FLAGS_OPTIONAL|BER_FLAGS_IMPLTAG, dissect_c1222_Key_id_element }, + { &hf_c1222_iv_element , BER_CLASS_CON, 1, BER_FLAGS_OPTIONAL|BER_FLAGS_IMPLTAG, dissect_c1222_Iv_element }, + { NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_c1222_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_sequence(implicit_tag, actx, tree, tvb, offset, + Calling_authentication_value_c1222_U_sequence, hf_index, ett_c1222_Calling_authentication_value_c1222_U); + + return offset; +} + + + +static int +dissect_c1222_Calling_authentication_value_c1222(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_CON, 1, TRUE, dissect_c1222_Calling_authentication_value_c1222_U); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING_SIZE_CONSTR001(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING_SIZE_1_255(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING_SIZE_CONSTR002(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + +static const value_string c1222_Calling_authentication_value_c1221_U_vals[] = { + { 0, "c1221-auth-identification" }, + { 0, "c1221-auth-request" }, + { 0, "c1221-auth-response" }, + { 0, NULL } +}; + +static const ber_choice_t Calling_authentication_value_c1221_U_choice[] = { + { 0, &hf_c1222_c1221_auth_identification, BER_CLASS_CON, 0, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING_SIZE_CONSTR001 }, + { 0, &hf_c1222_c1221_auth_request, BER_CLASS_CON, 0, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING_SIZE_1_255 }, + { 0, &hf_c1222_c1221_auth_response, BER_CLASS_CON, 0, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING_SIZE_CONSTR002 }, + { 0, NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_c1221_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_choice(actx, tree, tvb, offset, + Calling_authentication_value_c1221_U_choice, hf_index, ett_c1222_Calling_authentication_value_c1221_U, + NULL); + + return offset; +} + + + +static int +dissect_c1222_Calling_authentication_value_c1221(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_CON, 0, TRUE, dissect_c1222_Calling_authentication_value_c1221_U); + + return offset; +} + + +static const value_string c1222_Calling_authentication_value_single_asn1_vals[] = { + { 1, "calling-authentication-value-c1222" }, + { 0, "calling-authentication-value-c1221" }, + { 0, NULL } +}; + +static const ber_choice_t Calling_authentication_value_single_asn1_choice[] = { + { 1, &hf_c1222_calling_authentication_value_c1222, BER_CLASS_CON, 1, BER_FLAGS_NOOWNTAG, dissect_c1222_Calling_authentication_value_c1222 }, + { 0, &hf_c1222_calling_authentication_value_c1221, BER_CLASS_CON, 0, BER_FLAGS_NOOWNTAG, dissect_c1222_Calling_authentication_value_c1221 }, + { 0, NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_single_asn1(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_choice(actx, tree, tvb, offset, + Calling_authentication_value_single_asn1_choice, hf_index, ett_c1222_Calling_authentication_value_single_asn1, + NULL); + + return offset; +} + + + +static int +dissect_c1222_OCTET_STRING(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_octet_string(implicit_tag, actx, tree, tvb, offset, hf_index, + NULL); + + return offset; +} + + +static const value_string c1222_Authentication_value_encoding_vals[] = { + { 0, "calling-authentication-value-single-asn1" }, + { 1, "calling-authentication-value-octet-aligned" }, + { 0, NULL } +}; + +static const ber_choice_t Authentication_value_encoding_choice[] = { + { 0, &hf_c1222_calling_authentication_value_single_asn1, BER_CLASS_CON, 0, 0, dissect_c1222_Calling_authentication_value_single_asn1 }, + { 1, &hf_c1222_calling_authentication_value_octet_aligned, BER_CLASS_CON, 1, BER_FLAGS_IMPLTAG, dissect_c1222_OCTET_STRING }, + { 0, NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Authentication_value_encoding(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_choice(actx, tree, tvb, offset, + Authentication_value_encoding_choice, hf_index, ett_c1222_Authentication_value_encoding, + NULL); + + return offset; +} + + +static const ber_sequence_t Calling_authentication_value_U_sequence[] = { + { &hf_c1222_calling_authentication_value_indirect, BER_CLASS_UNI, BER_UNI_TAG_INTEGER, BER_FLAGS_OPTIONAL|BER_FLAGS_NOOWNTAG, dissect_c1222_INTEGER }, + { &hf_c1222_calling_authentication_value_encoding, BER_CLASS_ANY/*choice*/, -1/*choice*/, BER_FLAGS_NOOWNTAG|BER_FLAGS_NOTCHKTAG, dissect_c1222_Authentication_value_encoding }, + { NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_Calling_authentication_value_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_sequence(implicit_tag, actx, tree, tvb, offset, + Calling_authentication_value_U_sequence, hf_index, ett_c1222_Calling_authentication_value_U); + + return offset; +} + + + +static int +dissect_c1222_Calling_authentication_value(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 80 "../../asn1/c1222/c1222.cnf" + FILL_START; + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_CON, 2, TRUE, dissect_c1222_Calling_authentication_value_U); + + FILL_TABLE(calling_authentication_value); + + + + return offset; +} + + + +static int +dissect_c1222_User_information(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { +#line 26 "../../asn1/c1222/c1222.cnf" + gint8 class; + gboolean pc, ind; + gint32 tag; + guint32 len; + proto_item *tf = NULL; + proto_tree *epsem_tree = NULL; + FILL_START; + + /* get Tag and Length */ + offset = dissect_ber_identifier(actx->pinfo, tree, tvb, offset, &class, &pc, &tag); + offset = dissect_ber_length(actx->pinfo, tree, tvb, offset, &len, &ind); + FILL_TABLE_TRUNCATE(user_information, len+offset-start_offset); + if (tag == 0x8) { /* BER_TAG_EXTERNAL */ + offset = dissect_ber_identifier(actx->pinfo, tree, tvb, offset, &class, &pc, &tag); + offset = dissect_ber_length(actx->pinfo, tree, tvb, offset, &len, &ind); + if (tag == 0x1) { /* implicit octet string */ + tf = proto_tree_add_item(tree, hf_c1222_user_information, tvb, offset, len, FALSE); + epsem_tree = proto_item_add_subtree(tf, ett_c1222_epsem); + dissect_epsem(tvb, offset, len, actx->pinfo, epsem_tree); + offset += len; + } + } + + + + return offset; +} + + +static const ber_sequence_t C1222_MESSAGE_U_sequence[] = { + { &hf_c1222_aSO_context , BER_CLASS_CON, 1, BER_FLAGS_OPTIONAL, dissect_c1222_ASO_qualifier }, + { &hf_c1222_called_AP_title, BER_CLASS_CON, 2, BER_FLAGS_OPTIONAL, dissect_c1222_Called_AP_title }, + { &hf_c1222_called_AP_invocation_id, BER_CLASS_CON, 4, BER_FLAGS_OPTIONAL, dissect_c1222_Called_AP_invocation_id }, + { &hf_c1222_calling_AP_title, BER_CLASS_CON, 6, BER_FLAGS_OPTIONAL, dissect_c1222_Calling_AP_title }, + { &hf_c1222_calling_AE_qualifier, BER_CLASS_CON, 7, BER_FLAGS_OPTIONAL, dissect_c1222_Calling_AE_qualifier }, + { &hf_c1222_calling_AP_invocation_id, BER_CLASS_CON, 8, 0, dissect_c1222_Calling_AP_invocation_id }, + { &hf_c1222_mechanism_name, BER_CLASS_CON, 11, BER_FLAGS_OPTIONAL|BER_FLAGS_IMPLTAG, dissect_c1222_Mechanism_name }, + { &hf_c1222_calling_authentication_value, BER_CLASS_CON, 12, BER_FLAGS_OPTIONAL, dissect_c1222_Calling_authentication_value }, + { &hf_c1222_user_information, BER_CLASS_CON, 30, 0, dissect_c1222_User_information }, + { NULL, 0, 0, 0, NULL } +}; + +static int +dissect_c1222_C1222_MESSAGE_U(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_sequence(implicit_tag, actx, tree, tvb, offset, + C1222_MESSAGE_U_sequence, hf_index, ett_c1222_C1222_MESSAGE_U); + + return offset; +} + + + +static int +dissect_c1222_C1222_MESSAGE(gboolean implicit_tag _U_, tvbuff_t *tvb _U_, int offset _U_, asn1_ctx_t *actx _U_, proto_tree *tree _U_, int hf_index _U_) { + offset = dissect_ber_tagged_type(implicit_tag, actx, tree, tvb, offset, + hf_index, BER_CLASS_APP, 0, TRUE, dissect_c1222_C1222_MESSAGE_U); + + return offset; +} + +/*--- PDUs ---*/ + +static void dissect_C1222_MESSAGE_PDU(tvbuff_t *tvb _U_, packet_info *pinfo _U_, proto_tree *tree _U_) { + asn1_ctx_t asn1_ctx; + asn1_ctx_init(&asn1_ctx, ASN1_ENC_BER, TRUE, pinfo); + dissect_c1222_C1222_MESSAGE(FALSE, tvb, 0, &asn1_ctx, tree, hf_c1222_C1222_MESSAGE_PDU); +} + + +/*--- End of included file: packet-c1222-fn.c ---*/ +#line 990 "../../asn1/c1222/packet-c1222-template.c" + +/** + * Dissects a a full (reassembled) C12.22 message. + * + * \param tvb + * \param pinfo + * \param tree + */ +static void +dissect_c1222_full(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) +{ + proto_item *c1222_item = NULL; + proto_tree *c1222_tree = NULL; + + /* make entry in the Protocol column on summary display */ + col_set_str(pinfo->cinfo, COL_PROTOCOL, PNAME); + + /* create the c1222 protocol tree */ + if (tree) { + c1222_item = proto_tree_add_item(tree, proto_c1222, tvb, 0, -1, ENC_NA); + c1222_tree = proto_item_add_subtree(c1222_item, ett_c1222); + dissect_C1222_MESSAGE_PDU(tvb, pinfo, c1222_tree); + } +} + +/** + * Fetches the length of an entire C12.22 message to assist in reassembly. + * + * \param pinfo + * \param tvb + * \param offset + * \returns length of entire C12.22 message + */ +static guint +get_c1222_message_len(packet_info *pinfo, tvbuff_t *tvb, int offset) +{ + int orig_offset; + guint length; + gboolean ind; + + orig_offset = offset; + /* note that this assumes a Tag length of 1 which is always valid for C12.22 */ + offset = dissect_ber_length(pinfo, NULL, tvb, offset+1, &length, &ind); + return length+(offset - orig_offset); +} + +/** + * Reassembles and dissects C12.22 messages. + * + * \param tvb + * \param pinfo + * \param tree + */ +static void +dissect_c1222(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) +{ + tcp_dissect_pdus(tvb, pinfo, tree, c1222_desegment, 5, + get_c1222_message_len, dissect_c1222_full); +} + +/*--- proto_register_c1222 -------------------------------------------*/ +void proto_register_c1222(void) { + + /* List of fields */ + static hf_register_info hf[] = { + { &hf_c1222_epsem_flags, + { "C12.22 EPSEM Flags", "c1222.epsem.flags", + FT_UINT8, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_reserved, + { "C12.22 Reserved Flag", "c1222.epsem.flags.reserved", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_RESERVED, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_recovery, + { "C12.22 Recovery Flag", "c1222.epsem.flags.recovery", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_RECOVERY_SESSION, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_proxy, + { "C12.22 Proxy Service Used Flag", "c1222.epsem.flags.proxy", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_PROXY_SERVICE_USED, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_ed_class, + { "C12.22 ED Class Flag", "c1222.epsem.flags.ed_class", + FT_BOOLEAN, 8, + NULL, C1222_EPSEM_FLAG_ED_CLASS_INCLUDED, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_security_modes, + { "C12.22 Security Mode Flags", "c1222.epsem.flags.security", + FT_UINT8, BASE_HEX, + VALS(c1222_security_modes), C1222_EPSEM_FLAG_SECURITY_MODE, + NULL, HFILL } + }, + { &hf_c1222_epsem_flags_response_control, + { "C12.22 Response Control Flags", "c1222.epsem.flags.response_control", + FT_UINT8, BASE_HEX, + VALS(c1222_response_control), C1222_EPSEM_FLAG_RESPONSE_CONTROL, + NULL, HFILL } + }, + { &hf_c1222_epsem_ed_class, + { "C12.22 EPSEM ED Class", "c1222.epsem.edclass", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_total, + { "C12.22 EPSEM", "c1222.epsem.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_mac, + { "C12.22 EPSEM MAC", "c1222.epsem.mac", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_cmd, + { "C12.22 Command", "c1222.cmd", + FT_UINT8, BASE_HEX, + VALS(commandnames), 0x0, + NULL, HFILL } + }, + { &hf_c1222_err, + { "C12.22 Response", "c1222.err", + FT_UINT8, BASE_HEX, + VALS(commandnames), 0x0, + NULL, HFILL } + }, + { &hf_c1222_logon_id, + { "C12.22 Logon User-Id", "c1222.logon.id", + FT_UINT16, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_logon_user, + { "C12.22 Logon User", "c1222.logon.user", + FT_STRING, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_security_password, + { "C12.22 Security Password", "c1222.security.password", + FT_STRING, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_auth_len, + { "C12.22 Authenticate Request Length", "c1222.authenticate.len", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_auth_data, + { "C12.22 Authenticate Data", "c1222.authenticate.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_read_table, + { "C12.22 Table", "c1222.read.table", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_read_offset, + { "C12.22 Offset", "c1222.read.offset", + FT_UINT24, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_read_count, + { "C12.22 Count", "c1222.read.count", + FT_UINT16, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_table, + { "C12.22 Table", "c1222.write.table", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_offset, + { "C12.22 Offset", "c1222.write.offset", + FT_UINT24, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_size, + { "C12.22 Table Size", "c1222.write.size", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_data, + { "C12.22 Table Data", "c1222.write.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_write_chksum, + { "C12.22 Table Data Checksum", "c1222.write.chksum", + FT_UINT8, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_neg_pkt_size, + { "C12.22 Negotiate Packet Size", "c1222.negotiate.pktsize", + FT_UINT16, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_neg_nbr_pkts, + { "C12.22 Negotiate Number of Packets", "c1222.negotiate.numpkts", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_wait_secs, + { "C12.22 Wait Seconds", "c1222.wait.seconds", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_traffic, + { "C12.22 Timing Setup Channel Traffic Timeout", "c1222.timingsetup.traffic", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_inter_char, + { "C12.22 Timing Setup Intercharacter Timeout", "c1222.timingsetup.interchar", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_resp_to, + { "C12.22 Timing Setup Response Timeout", "c1222.timingsetup.respto", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_timing_setup_nbr_retries, + { "C12.22 Timing Setup Number of Retries", "c1222.timingsetup.nbrretries", + FT_UINT8, BASE_DEC, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_data, + { "C12.22 data", "c1222.data", + FT_BYTES, BASE_NONE, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_crc, + { "C12.22 CRC", "c1222.crc", + FT_UINT16, BASE_HEX, + NULL, 0x0, + NULL, HFILL } + }, + { &hf_c1222_epsem_crypto_good, + { "Crypto good", "c1222.crypto_good", + FT_BOOLEAN, BASE_NONE, + NULL, 0x0, + "True: crypto ok; False: doesn't match or not checked", HFILL } + }, + { &hf_c1222_epsem_crypto_bad, + { "Crypto bad", "c1222.crypto_bad", + FT_BOOLEAN, BASE_NONE, + NULL, 0x0, + "True: crypto bad; False: crypto ok or not checked", HFILL } + }, + +/*--- Included file: packet-c1222-hfarr.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-hfarr.c" + { &hf_c1222_C1222_MESSAGE_PDU, + { "C1222-MESSAGE", "c1222.C1222_MESSAGE", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_aSO_context, + { "aSO-context", "c1222.aSO_context", + FT_OID, BASE_NONE, NULL, 0, + "ASO_qualifier", HFILL }}, + { &hf_c1222_called_AP_title, + { "called-AP-title", "c1222.called_AP_title", + FT_OID, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_called_AP_invocation_id, + { "called-AP-invocation-id", "c1222.called_AP_invocation_id", + FT_INT32, BASE_DEC, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_AP_title, + { "calling-AP-title", "c1222.calling_AP_title", + FT_OID, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_AE_qualifier, + { "calling-AE-qualifier", "c1222.calling_AE_qualifier", + FT_INT32, BASE_DEC, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_AP_invocation_id, + { "calling-AP-invocation-id", "c1222.calling_AP_invocation_id", + FT_INT32, BASE_DEC, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_mechanism_name, + { "mechanism-name", "c1222.mechanism_name", + FT_OID, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value, + { "calling-authentication-value", "c1222.calling_authentication_value", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_user_information, + { "user-information", "c1222.user_information", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value_indirect, + { "calling-authentication-value-indirect", "c1222.calling_authentication_value_indirect", + FT_INT32, BASE_DEC, NULL, 0, + "INTEGER", HFILL }}, + { &hf_c1222_calling_authentication_value_encoding, + { "calling-authentication-value-encoding", "c1222.calling_authentication_value_encoding", + FT_UINT32, BASE_DEC, VALS(c1222_Authentication_value_encoding_vals), 0, + "Authentication_value_encoding", HFILL }}, + { &hf_c1222_calling_authentication_value_single_asn1, + { "calling-authentication-value-single-asn1", "c1222.calling_authentication_value_single_asn1", + FT_UINT32, BASE_DEC, VALS(c1222_Calling_authentication_value_single_asn1_vals), 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value_octet_aligned, + { "calling-authentication-value-octet-aligned", "c1222.calling_authentication_value_octet_aligned", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING", HFILL }}, + { &hf_c1222_calling_authentication_value_c1222, + { "calling-authentication-value-c1222", "c1222.calling_authentication_value_c1222", + FT_NONE, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_calling_authentication_value_c1221, + { "calling-authentication-value-c1221", "c1222.calling_authentication_value_c1221", + FT_UINT32, BASE_DEC, VALS(c1222_Calling_authentication_value_c1221_U_vals), 0, + NULL, HFILL }}, + { &hf_c1222_key_id_element, + { "key-id-element", "c1222.key_id_element", + FT_BYTES, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_iv_element, + { "iv-element", "c1222.iv_element", + FT_BYTES, BASE_NONE, NULL, 0, + NULL, HFILL }}, + { &hf_c1222_c1221_auth_identification, + { "c1221-auth-identification", "c1222.c1221_auth_identification", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING_SIZE_CONSTR001", HFILL }}, + { &hf_c1222_c1221_auth_request, + { "c1221-auth-request", "c1222.c1221_auth_request", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING_SIZE_1_255", HFILL }}, + { &hf_c1222_c1221_auth_response, + { "c1221-auth-response", "c1222.c1221_auth_response", + FT_BYTES, BASE_NONE, NULL, 0, + "OCTET_STRING_SIZE_CONSTR002", HFILL }}, + +/*--- End of included file: packet-c1222-hfarr.c ---*/ +#line 1272 "../../asn1/c1222/packet-c1222-template.c" + }; + + /* List of subtrees */ + static gint *ett[] = { + &ett_c1222, + &ett_c1222_epsem, + &ett_c1222_flags, + &ett_c1222_crypto, + &ett_c1222_cmd, + +/*--- Included file: packet-c1222-ettarr.c ---*/ +#line 1 "../../asn1/c1222/packet-c1222-ettarr.c" + &ett_c1222_C1222_MESSAGE_U, + &ett_c1222_Calling_authentication_value_U, + &ett_c1222_Authentication_value_encoding, + &ett_c1222_Calling_authentication_value_single_asn1, + &ett_c1222_Calling_authentication_value_c1222_U, + &ett_c1222_Calling_authentication_value_c1221_U, + +/*--- End of included file: packet-c1222-ettarr.c ---*/ +#line 1282 "../../asn1/c1222/packet-c1222-template.c" + }; + + module_t *c1222_module; + +#ifdef HAVE_LIBGCRYPT + static uat_field_t c1222_uat_flds[] = { + UAT_FLD_HEX(c1222_users,keynum,"Key ID","Key identifier in hexadecimal"), + UAT_FLD_BUFFER(c1222_users, key, "Key", "Encryption key as 16-byte hex string"), + UAT_END_FIELDS + }; +#endif /* HAVE_LIBGCRYPT */ + + /* Register protocol */ + proto_c1222 = proto_register_protocol(PNAME, PSNAME, PFNAME); + /* Register fields and subtrees */ + proto_register_field_array(proto_c1222, hf, array_length(hf)); + proto_register_subtree_array(ett, array_length(ett)); + c1222_module = prefs_register_protocol(proto_c1222, proto_reg_handoff_c1222); + prefs_register_bool_preference(c1222_module, "desegment", + "Reassemble all C12.22 messages spanning multiple TCP segments", + "Whether the C12.22 dissector should reassemble all messages spanning multiple TCP segments", + &c1222_desegment); +#ifdef HAVE_LIBGCRYPT + prefs_register_bool_preference(c1222_module, "decrypt", + "Verify crypto for all applicable C12.22 messages", + "Whether the C12.22 dissector should verify the crypto for all relevant messages", + &c1222_decrypt); + + c1222_uat = uat_new("Decryption Table", + sizeof(c1222_uat_data_t), /* record size */ + "c1222_decryption_table", /* filename */ + TRUE, /* from_profile */ + (void*)&c1222_uat_data, /* data_ptr */ + &num_c1222_uat_data, /* numitems_ptr */ + UAT_CAT_CRYPTO, /* category */ + NULL, /* help */ + NULL, /* copy callback */ + c1222_uat_data_update_cb, /* update callback */ + NULL, /* free callback */ + NULL, /* post update callback */ + c1222_uat_flds); /* UAT field definitions */ + + prefs_register_uat_preference(c1222_module, + "decryption_table", + "Decryption Table", + "Table of security parameters for decryption of C12.22 packets", + c1222_uat); +#endif /* HAVE_LIBGCRYPT */ +} + +/*--- proto_reg_handoff_c1222 ---------------------------------------*/ +void +proto_reg_handoff_c1222(void) +{ + static gboolean initialized = FALSE; + + if( !initialized ) { + c1222_handle = create_dissector_handle(dissect_c1222, proto_c1222); + dissector_add_uint("tcp.port", global_c1222_port, c1222_handle); + initialized = TRUE; + } +} diff --git a/epan/dissectors/packet-c1222.h b/epan/dissectors/packet-c1222.h new file mode 100644 index 0000000000..a6af319831 --- /dev/null +++ b/epan/dissectors/packet-c1222.h @@ -0,0 +1,39 @@ +/* Do not modify this file. */ +/* It is created automatically by the ASN.1 to Wireshark dissector compiler */ +/* packet-c1222.h */ +/* ../../../tools/asn2wrs.py -b -p c1222 -c ../../../asn1/c1222/c1222.cnf -s ../../../asn1/c1222/packet-c1222-template -D ../../../asn1/c1222 -O ../../../epan/dissectors c1222.asn */ + +/* Input file: packet-c1222-template.h */ + +#line 1 "../../asn1/c1222/packet-c1222-template.h" +/* packet-c1222.h + * Routines for ANSI C12.22 packet dissection + * Copyright 2010, Edward J. Beroset, edward.j.beroset@us.elster.com + * + * $Id$ + * + * Wireshark - Network traffic analyzer + * By Gerald Combs <gerald@wireshark.org> + * Copyright 1998 Gerald Combs + * + * This program is free software; you can redistribute it and/or + * modify it under the terms of the GNU General Public License + * as published by the Free Software Foundation; either version 2 + * of the License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. + */ + +#ifndef PACKET_C1222_H +#define PACKET_C1222_H + +#endif /* PACKET_C1222_H */ + + |