aboutsummaryrefslogtreecommitdiffstats
path: root/epan/decode_as.c
diff options
context:
space:
mode:
Diffstat (limited to 'epan/decode_as.c')
-rw-r--r--epan/decode_as.c309
1 files changed, 309 insertions, 0 deletions
diff --git a/epan/decode_as.c b/epan/decode_as.c
index 81c4749f2b..0342d423aa 100644
--- a/epan/decode_as.c
+++ b/epan/decode_as.c
@@ -26,8 +26,14 @@
#include "decode_as.h"
#include "packet.h"
+#include "prefs.h"
+#include "prefs-int.h"
+#include "wsutil/file_util.h"
+#include "wsutil/filesystem.h"
+#include "epan/dissectors/packet-dcerpc.h"
#include <stdio.h>
#include <stdlib.h>
+#include <errno.h>
GList *decode_as_list = NULL;
@@ -134,6 +140,309 @@ gboolean decode_as_default_change(const gchar *name, gconstpointer pattern, gpoi
return TRUE;
}
+/* Some useful utilities for Decode As */
+
+/*
+ * A list of dissectors that need to be reset.
+ */
+static GSList *dissector_reset_list = NULL;
+
+/*
+ * A callback function to parse each "decode as" entry in the file and apply the change
+ */
+static prefs_set_pref_e
+read_set_decode_as_entries(gchar *key, const gchar *value,
+ void *user_data _U_,
+ gboolean return_range_errors _U_)
+{
+ gchar *values[4] = {NULL, NULL, NULL, NULL};
+ gchar delimiter[4] = {',', ',', ',','\0'};
+ gchar *pch;
+ guint i, j;
+ dissector_table_t sub_dissectors;
+ prefs_set_pref_e retval = PREFS_SET_OK;
+ gboolean is_valid = FALSE;
+
+ if (strcmp(key, DECODE_AS_ENTRY) == 0) {
+ /* Parse csv into table, selector, initial, current */
+ for (i = 0; i < 4; i++) {
+ pch = strchr(value, delimiter[i]);
+ if (pch == NULL) {
+ for (j = 0; j < i; j++) {
+ g_free(values[j]);
+ }
+ return PREFS_SET_SYNTAX_ERR;
+ }
+ values[i] = g_strndup(value, pch - value);
+ value = pch + 1;
+ }
+ sub_dissectors = find_dissector_table(values[0]);
+ if (sub_dissectors != NULL) {
+ dissector_handle_t handle;
+ ftenum_t selector_type;
+ pref_t* pref_value;
+
+ selector_type = dissector_table_get_type(sub_dissectors);
+
+ handle = dissector_table_get_dissector_handle(sub_dissectors, values[3]);
+ if (handle != NULL || g_ascii_strcasecmp(values[3], DECODE_AS_NONE) == 0) {
+ is_valid = TRUE;
+ }
+
+ if (is_valid) {
+ if (IS_FT_STRING(selector_type)) {
+ dissector_change_string(values[0], values[1], handle);
+ } else {
+ char *p;
+ long long_value;
+
+ long_value = strtol(values[1], &p, 0);
+ if (p == values[0] || *p != '\0' || long_value < 0 ||
+ (unsigned long)long_value > UINT_MAX) {
+ retval = PREFS_SET_SYNTAX_ERR;
+ is_valid = FALSE;
+ } else {
+ dissector_change_uint(values[0], (guint)long_value, handle);
+ }
+
+ /* Now apply the value data back to dissector table preference */
+ pref_value = prefs_find_preference(prefs_find_module(proto_get_protocol_filter_name(dissector_handle_get_protocol_index(handle))), values[0]);
+ if (pref_value != NULL) {
+ switch(pref_value->type)
+ {
+ case PREF_DECODE_AS_UINT:
+ /* This doesn't support multiple values for a dissector in Decode As because the
+ preference only supports a single value. This leads to a "last port for
+ dissector in Decode As wins" */
+ *pref_value->varp.uint = (guint)long_value;
+ break;
+ case PREF_DECODE_AS_RANGE:
+ range_add_value(pref_value->varp.range, (guint)long_value);
+ break;
+ default:
+ /* XXX - Worth asserting over? */
+ break;
+ }
+ }
+
+ }
+ }
+ if (is_valid) {
+ decode_build_reset_list(values[0], selector_type, values[1], NULL, NULL);
+ }
+ } else {
+ retval = PREFS_SET_SYNTAX_ERR;
+ }
+
+ } else {
+ retval = PREFS_SET_NO_SUCH_PREF;
+ }
+
+ for (i = 0; i < 4; i++) {
+ g_free(values[i]);
+ }
+ return retval;
+}
+
+void
+load_decode_as_entries(void)
+{
+ char *daf_path;
+ FILE *daf;
+
+ if (dissector_reset_list) {
+ decode_clear_all();
+ }
+
+ daf_path = get_persconffile_path(DECODE_AS_ENTRIES_FILE_NAME, TRUE);
+ if ((daf = ws_fopen(daf_path, "r")) != NULL) {
+ read_prefs_file(daf_path, daf, read_set_decode_as_entries, NULL);
+ fclose(daf);
+ }
+ g_free(daf_path);
+}
+
+static void
+decode_as_write_entry (const gchar *table_name, ftenum_t selector_type,
+ gpointer key, gpointer value, gpointer user_data)
+{
+ FILE *da_file = (FILE *)user_data;
+ dissector_handle_t current, initial;
+ const gchar *current_proto_name, *initial_proto_name;
+
+ current = dtbl_entry_get_handle((dtbl_entry_t *)value);
+ if (current == NULL)
+ current_proto_name = DECODE_AS_NONE;
+ else
+ current_proto_name = dissector_handle_get_short_name(current);
+ initial = dtbl_entry_get_initial_handle((dtbl_entry_t *)value);
+ if (initial == NULL)
+ initial_proto_name = DECODE_AS_NONE;
+ else
+ initial_proto_name = dissector_handle_get_short_name(initial);
+
+ switch (selector_type) {
+
+ case FT_UINT8:
+ case FT_UINT16:
+ case FT_UINT24:
+ case FT_UINT32:
+ /*
+ * XXX - write these in decimal, regardless of the base of
+ * the dissector table's selector, as older versions of
+ * Wireshark used atoi() when reading this file, and
+ * failed to handle hex or octal numbers.
+ *
+ * That will be fixed in future 1.10 and 1.12 releases,
+ * but pre-1.10 releases are at end-of-life and won't
+ * be fixed.
+ */
+ fprintf (da_file,
+ DECODE_AS_ENTRY ": %s,%u,%s,%s\n",
+ table_name, GPOINTER_TO_UINT(key), initial_proto_name,
+ current_proto_name);
+ break;
+
+ case FT_STRING:
+ case FT_STRINGZ:
+ case FT_UINT_STRING:
+ case FT_STRINGZPAD:
+ fprintf (da_file,
+ DECODE_AS_ENTRY ": %s,%s,%s,%s\n",
+ table_name, (gchar *)key, initial_proto_name,
+ current_proto_name);
+ break;
+
+ default:
+ g_assert_not_reached();
+ break;
+ }
+}
+
+int
+save_decode_as_entries(gchar** err)
+{
+ char *pf_dir_path;
+ char *daf_path;
+ FILE *da_file;
+
+ if (create_persconffile_dir(&pf_dir_path) == -1) {
+ *err = g_strdup_printf("Can't create directory\n\"%s\"\nfor recent file: %s.",
+ pf_dir_path, g_strerror(errno));
+ g_free(pf_dir_path);
+ return -1;
+ }
+
+ daf_path = get_persconffile_path(DECODE_AS_ENTRIES_FILE_NAME, TRUE);
+ if ((da_file = ws_fopen(daf_path, "w")) == NULL) {
+ *err = g_strdup_printf("Can't open decode_as_entries file\n\"%s\": %s.",
+ daf_path, g_strerror(errno));
+ g_free(daf_path);
+ return -1;
+ }
+
+ fputs("# \"Decode As\" entries file for Wireshark " VERSION ".\n"
+ "#\n"
+ "# This file is regenerated each time \"Decode As\" preferences\n"
+ "# are saved within Wireshark. Making manual changes should be safe,\n"
+ "# however.\n", da_file);
+
+ dissector_all_tables_foreach_changed(decode_as_write_entry, da_file);
+ fclose(da_file);
+ return 0;
+}
+
+/*
+ * Data structure for tracking which dissector need to be reset. This
+ * structure is necessary as a hash table entry cannot be removed
+ * while a g_hash_table_foreach walk is in progress.
+ */
+typedef struct dissector_delete_item {
+ /* The name of the dissector table */
+ gchar *ddi_table_name;
+ /* The type of the selector in that dissector table */
+ ftenum_t ddi_selector_type;
+ /* The selector in the dissector table */
+ union {
+ guint sel_uint;
+ char *sel_string;
+ } ddi_selector;
+} dissector_delete_item_t;
+
+void
+decode_build_reset_list (const gchar *table_name, ftenum_t selector_type,
+ gpointer key, gpointer value _U_,
+ gpointer user_data _U_)
+{
+ dissector_delete_item_t *item;
+
+ item = g_new(dissector_delete_item_t,1);
+ item->ddi_table_name = g_strdup(table_name);
+ item->ddi_selector_type = selector_type;
+ switch (selector_type) {
+
+ case FT_UINT8:
+ case FT_UINT16:
+ case FT_UINT24:
+ case FT_UINT32:
+ item->ddi_selector.sel_uint = GPOINTER_TO_UINT(key);
+ break;
+
+ case FT_STRING:
+ case FT_STRINGZ:
+ case FT_UINT_STRING:
+ case FT_STRINGZPAD:
+ item->ddi_selector.sel_string = g_strdup((char *)key);
+ break;
+
+ default:
+ g_assert_not_reached();
+ }
+ dissector_reset_list = g_slist_prepend(dissector_reset_list, item);
+}
+
+/* clear all settings */
+void
+decode_clear_all(void)
+{
+ dissector_delete_item_t *item;
+ GSList *tmp;
+
+ dissector_all_tables_foreach_changed(decode_build_reset_list, NULL);
+
+ for (tmp = dissector_reset_list; tmp; tmp = g_slist_next(tmp)) {
+ item = (dissector_delete_item_t *)tmp->data;
+ switch (item->ddi_selector_type) {
+
+ case FT_UINT8:
+ case FT_UINT16:
+ case FT_UINT24:
+ case FT_UINT32:
+ dissector_reset_uint(item->ddi_table_name,
+ item->ddi_selector.sel_uint);
+ break;
+
+ case FT_STRING:
+ case FT_STRINGZ:
+ case FT_UINT_STRING:
+ case FT_STRINGZPAD:
+ dissector_reset_string(item->ddi_table_name,
+ item->ddi_selector.sel_string);
+ g_free(item->ddi_selector.sel_string);
+ break;
+
+ default:
+ g_assert_not_reached();
+ }
+ g_free(item->ddi_table_name);
+ g_free(item);
+ }
+ g_slist_free(dissector_reset_list);
+ dissector_reset_list = NULL;
+
+ decode_dcerpc_reset_all();
+}
+
/*
* Editor modelines
*
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-25 06:49:03 +0000