diff options
Diffstat (limited to 'epan/decode_as.c')
-rw-r--r-- | epan/decode_as.c | 309 |
1 files changed, 309 insertions, 0 deletions
diff --git a/epan/decode_as.c b/epan/decode_as.c index 81c4749f2b..0342d423aa 100644 --- a/epan/decode_as.c +++ b/epan/decode_as.c @@ -26,8 +26,14 @@ #include "decode_as.h" #include "packet.h" +#include "prefs.h" +#include "prefs-int.h" +#include "wsutil/file_util.h" +#include "wsutil/filesystem.h" +#include "epan/dissectors/packet-dcerpc.h" #include <stdio.h> #include <stdlib.h> +#include <errno.h> GList *decode_as_list = NULL; @@ -134,6 +140,309 @@ gboolean decode_as_default_change(const gchar *name, gconstpointer pattern, gpoi return TRUE; } +/* Some useful utilities for Decode As */ + +/* + * A list of dissectors that need to be reset. + */ +static GSList *dissector_reset_list = NULL; + +/* + * A callback function to parse each "decode as" entry in the file and apply the change + */ +static prefs_set_pref_e +read_set_decode_as_entries(gchar *key, const gchar *value, + void *user_data _U_, + gboolean return_range_errors _U_) +{ + gchar *values[4] = {NULL, NULL, NULL, NULL}; + gchar delimiter[4] = {',', ',', ',','\0'}; + gchar *pch; + guint i, j; + dissector_table_t sub_dissectors; + prefs_set_pref_e retval = PREFS_SET_OK; + gboolean is_valid = FALSE; + + if (strcmp(key, DECODE_AS_ENTRY) == 0) { + /* Parse csv into table, selector, initial, current */ + for (i = 0; i < 4; i++) { + pch = strchr(value, delimiter[i]); + if (pch == NULL) { + for (j = 0; j < i; j++) { + g_free(values[j]); + } + return PREFS_SET_SYNTAX_ERR; + } + values[i] = g_strndup(value, pch - value); + value = pch + 1; + } + sub_dissectors = find_dissector_table(values[0]); + if (sub_dissectors != NULL) { + dissector_handle_t handle; + ftenum_t selector_type; + pref_t* pref_value; + + selector_type = dissector_table_get_type(sub_dissectors); + + handle = dissector_table_get_dissector_handle(sub_dissectors, values[3]); + if (handle != NULL || g_ascii_strcasecmp(values[3], DECODE_AS_NONE) == 0) { + is_valid = TRUE; + } + + if (is_valid) { + if (IS_FT_STRING(selector_type)) { + dissector_change_string(values[0], values[1], handle); + } else { + char *p; + long long_value; + + long_value = strtol(values[1], &p, 0); + if (p == values[0] || *p != '\0' || long_value < 0 || + (unsigned long)long_value > UINT_MAX) { + retval = PREFS_SET_SYNTAX_ERR; + is_valid = FALSE; + } else { + dissector_change_uint(values[0], (guint)long_value, handle); + } + + /* Now apply the value data back to dissector table preference */ + pref_value = prefs_find_preference(prefs_find_module(proto_get_protocol_filter_name(dissector_handle_get_protocol_index(handle))), values[0]); + if (pref_value != NULL) { + switch(pref_value->type) + { + case PREF_DECODE_AS_UINT: + /* This doesn't support multiple values for a dissector in Decode As because the + preference only supports a single value. This leads to a "last port for + dissector in Decode As wins" */ + *pref_value->varp.uint = (guint)long_value; + break; + case PREF_DECODE_AS_RANGE: + range_add_value(pref_value->varp.range, (guint)long_value); + break; + default: + /* XXX - Worth asserting over? */ + break; + } + } + + } + } + if (is_valid) { + decode_build_reset_list(values[0], selector_type, values[1], NULL, NULL); + } + } else { + retval = PREFS_SET_SYNTAX_ERR; + } + + } else { + retval = PREFS_SET_NO_SUCH_PREF; + } + + for (i = 0; i < 4; i++) { + g_free(values[i]); + } + return retval; +} + +void +load_decode_as_entries(void) +{ + char *daf_path; + FILE *daf; + + if (dissector_reset_list) { + decode_clear_all(); + } + + daf_path = get_persconffile_path(DECODE_AS_ENTRIES_FILE_NAME, TRUE); + if ((daf = ws_fopen(daf_path, "r")) != NULL) { + read_prefs_file(daf_path, daf, read_set_decode_as_entries, NULL); + fclose(daf); + } + g_free(daf_path); +} + +static void +decode_as_write_entry (const gchar *table_name, ftenum_t selector_type, + gpointer key, gpointer value, gpointer user_data) +{ + FILE *da_file = (FILE *)user_data; + dissector_handle_t current, initial; + const gchar *current_proto_name, *initial_proto_name; + + current = dtbl_entry_get_handle((dtbl_entry_t *)value); + if (current == NULL) + current_proto_name = DECODE_AS_NONE; + else + current_proto_name = dissector_handle_get_short_name(current); + initial = dtbl_entry_get_initial_handle((dtbl_entry_t *)value); + if (initial == NULL) + initial_proto_name = DECODE_AS_NONE; + else + initial_proto_name = dissector_handle_get_short_name(initial); + + switch (selector_type) { + + case FT_UINT8: + case FT_UINT16: + case FT_UINT24: + case FT_UINT32: + /* + * XXX - write these in decimal, regardless of the base of + * the dissector table's selector, as older versions of + * Wireshark used atoi() when reading this file, and + * failed to handle hex or octal numbers. + * + * That will be fixed in future 1.10 and 1.12 releases, + * but pre-1.10 releases are at end-of-life and won't + * be fixed. + */ + fprintf (da_file, + DECODE_AS_ENTRY ": %s,%u,%s,%s\n", + table_name, GPOINTER_TO_UINT(key), initial_proto_name, + current_proto_name); + break; + + case FT_STRING: + case FT_STRINGZ: + case FT_UINT_STRING: + case FT_STRINGZPAD: + fprintf (da_file, + DECODE_AS_ENTRY ": %s,%s,%s,%s\n", + table_name, (gchar *)key, initial_proto_name, + current_proto_name); + break; + + default: + g_assert_not_reached(); + break; + } +} + +int +save_decode_as_entries(gchar** err) +{ + char *pf_dir_path; + char *daf_path; + FILE *da_file; + + if (create_persconffile_dir(&pf_dir_path) == -1) { + *err = g_strdup_printf("Can't create directory\n\"%s\"\nfor recent file: %s.", + pf_dir_path, g_strerror(errno)); + g_free(pf_dir_path); + return -1; + } + + daf_path = get_persconffile_path(DECODE_AS_ENTRIES_FILE_NAME, TRUE); + if ((da_file = ws_fopen(daf_path, "w")) == NULL) { + *err = g_strdup_printf("Can't open decode_as_entries file\n\"%s\": %s.", + daf_path, g_strerror(errno)); + g_free(daf_path); + return -1; + } + + fputs("# \"Decode As\" entries file for Wireshark " VERSION ".\n" + "#\n" + "# This file is regenerated each time \"Decode As\" preferences\n" + "# are saved within Wireshark. Making manual changes should be safe,\n" + "# however.\n", da_file); + + dissector_all_tables_foreach_changed(decode_as_write_entry, da_file); + fclose(da_file); + return 0; +} + +/* + * Data structure for tracking which dissector need to be reset. This + * structure is necessary as a hash table entry cannot be removed + * while a g_hash_table_foreach walk is in progress. + */ +typedef struct dissector_delete_item { + /* The name of the dissector table */ + gchar *ddi_table_name; + /* The type of the selector in that dissector table */ + ftenum_t ddi_selector_type; + /* The selector in the dissector table */ + union { + guint sel_uint; + char *sel_string; + } ddi_selector; +} dissector_delete_item_t; + +void +decode_build_reset_list (const gchar *table_name, ftenum_t selector_type, + gpointer key, gpointer value _U_, + gpointer user_data _U_) +{ + dissector_delete_item_t *item; + + item = g_new(dissector_delete_item_t,1); + item->ddi_table_name = g_strdup(table_name); + item->ddi_selector_type = selector_type; + switch (selector_type) { + + case FT_UINT8: + case FT_UINT16: + case FT_UINT24: + case FT_UINT32: + item->ddi_selector.sel_uint = GPOINTER_TO_UINT(key); + break; + + case FT_STRING: + case FT_STRINGZ: + case FT_UINT_STRING: + case FT_STRINGZPAD: + item->ddi_selector.sel_string = g_strdup((char *)key); + break; + + default: + g_assert_not_reached(); + } + dissector_reset_list = g_slist_prepend(dissector_reset_list, item); +} + +/* clear all settings */ +void +decode_clear_all(void) +{ + dissector_delete_item_t *item; + GSList *tmp; + + dissector_all_tables_foreach_changed(decode_build_reset_list, NULL); + + for (tmp = dissector_reset_list; tmp; tmp = g_slist_next(tmp)) { + item = (dissector_delete_item_t *)tmp->data; + switch (item->ddi_selector_type) { + + case FT_UINT8: + case FT_UINT16: + case FT_UINT24: + case FT_UINT32: + dissector_reset_uint(item->ddi_table_name, + item->ddi_selector.sel_uint); + break; + + case FT_STRING: + case FT_STRINGZ: + case FT_UINT_STRING: + case FT_STRINGZPAD: + dissector_reset_string(item->ddi_table_name, + item->ddi_selector.sel_string); + g_free(item->ddi_selector.sel_string); + break; + + default: + g_assert_not_reached(); + } + g_free(item->ddi_table_name); + g_free(item); + } + g_slist_free(dissector_reset_list); + dissector_reset_list = NULL; + + decode_dcerpc_reset_all(); +} + /* * Editor modelines * |