397 lines
9.2 KiB
C
Raw Normal View History

/* $OpenBSD: print-gre.c,v 1.6 2002/10/30 03:04:04 fgsch Exp $ */
1997-05-27 02:11:31 +00:00
/*
* Copyright (c) 2002 Jason L. Wright (jason@thought.net)
* All rights reserved.
1997-05-27 02:11:31 +00:00
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. All advertising materials mentioning features or use of this software
* must display the following acknowledgement:
* This product includes software developed by Jason L. Wright
* 4. The name of the author may not be used to endorse or promote products
* derived from this software without specific prior written permission.
1997-05-27 02:11:31 +00:00
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
* DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
* INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
* ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
* POSSIBILITY OF SUCH DAMAGE.
*/
/*
* tcpdump filter for GRE - Generic Routing Encapsulation
* RFC1701 (GRE), RFC1702 (GRE IPv4), and RFC2637 (Enhanced GRE)
1997-05-27 02:11:31 +00:00
*/
2015-01-06 19:03:11 +00:00
#define NETDISSECT_REWORKED
#ifdef HAVE_CONFIG_H
#include "config.h"
1997-05-27 02:11:31 +00:00
#endif
#include <tcpdump-stdinc.h>
1997-05-27 02:11:31 +00:00
#include <string.h>
1997-05-27 02:11:31 +00:00
#include "interface.h"
#include "extract.h"
#include "ethertype.h"
1997-05-27 02:11:31 +00:00
2015-01-06 19:03:11 +00:00
static const char tstr[] = "[|gre]";
#define GRE_CP 0x8000 /* checksum present */
#define GRE_RP 0x4000 /* routing present */
#define GRE_KP 0x2000 /* key present */
#define GRE_SP 0x1000 /* sequence# present */
#define GRE_sP 0x0800 /* source routing */
#define GRE_RECRS 0x0700 /* recursion count */
#define GRE_AP 0x0080 /* acknowledgment# present */
2015-01-06 19:03:11 +00:00
static const struct tok gre_flag_values[] = {
{ GRE_CP, "checksum present"},
2015-01-06 19:03:11 +00:00
{ GRE_RP, "routing present"},
{ GRE_KP, "key present"},
{ GRE_SP, "sequence# present"},
{ GRE_sP, "source routing present"},
{ GRE_RECRS, "recursion count"},
{ GRE_AP, "ack present"},
{ 0, NULL }
};
#define GRE_VERS_MASK 0x0007 /* protocol version */
1997-05-27 02:11:31 +00:00
/* source route entry types */
#define GRESRE_IP 0x0800 /* IP */
#define GRESRE_ASN 0xfffe /* ASN */
2015-01-06 19:03:11 +00:00
static void gre_print_0(netdissect_options *, const u_char *, u_int);
static void gre_print_1(netdissect_options *, const u_char *, u_int);
static void gre_sre_print(netdissect_options *, uint16_t, uint8_t, uint8_t, const u_char *, u_int);
static void gre_sre_ip_print(netdissect_options *, uint8_t, uint8_t, const u_char *, u_int);
static void gre_sre_asn_print(netdissect_options *, uint8_t, uint8_t, const u_char *, u_int);
void
2015-01-06 19:03:11 +00:00
gre_print(netdissect_options *ndo, const u_char *bp, u_int length)
{
u_int len = length, vers;
if (len < 2) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "%s", tstr));
return;
}
vers = EXTRACT_16BITS(bp) & GRE_VERS_MASK;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "GREv%u",vers));
switch(vers) {
case 0:
2015-01-06 19:03:11 +00:00
gre_print_0(ndo, bp, len);
break;
case 1:
2015-01-06 19:03:11 +00:00
gre_print_1(ndo, bp, len);
break;
default:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, " ERROR: unknown-version"));
break;
}
}
1997-05-27 02:11:31 +00:00
2015-01-06 19:03:11 +00:00
static void
gre_print_0(netdissect_options *ndo, const u_char *bp, u_int length)
1997-05-27 02:11:31 +00:00
{
u_int len = length;
2015-01-06 19:03:11 +00:00
uint16_t flags, prot;
flags = EXTRACT_16BITS(bp);
2015-01-06 19:03:11 +00:00
if (ndo->ndo_vflag)
ND_PRINT((ndo, ", Flags [%s]",
bittok2str(gre_flag_values,"none",flags)));
len -= 2;
bp += 2;
if (len < 2)
goto trunc;
prot = EXTRACT_16BITS(bp);
len -= 2;
bp += 2;
if ((flags & GRE_CP) | (flags & GRE_RP)) {
if (len < 2)
goto trunc;
2015-01-06 19:03:11 +00:00
if (ndo->ndo_vflag)
ND_PRINT((ndo, ", sum 0x%x", EXTRACT_16BITS(bp)));
bp += 2;
len -= 2;
if (len < 2)
goto trunc;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", off 0x%x", EXTRACT_16BITS(bp)));
bp += 2;
len -= 2;
}
if (flags & GRE_KP) {
if (len < 4)
goto trunc;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", key=0x%x", EXTRACT_32BITS(bp)));
bp += 4;
len -= 4;
}
if (flags & GRE_SP) {
if (len < 4)
goto trunc;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", seq %u", EXTRACT_32BITS(bp)));
bp += 4;
len -= 4;
}
if (flags & GRE_RP) {
for (;;) {
2015-01-06 19:03:11 +00:00
uint16_t af;
uint8_t sreoff;
uint8_t srelen;
if (len < 4)
goto trunc;
af = EXTRACT_16BITS(bp);
sreoff = *(bp + 2);
srelen = *(bp + 3);
bp += 4;
len -= 4;
if (af == 0 && srelen == 0)
break;
2015-01-06 19:03:11 +00:00
gre_sre_print(ndo, af, sreoff, srelen, bp, len);
if (len < srelen)
goto trunc;
bp += srelen;
len -= srelen;
}
}
2015-01-06 19:03:11 +00:00
if (ndo->ndo_eflag)
ND_PRINT((ndo, ", proto %s (0x%04x)",
tok2str(ethertype_values,"unknown",prot),
2015-01-06 19:03:11 +00:00
prot));
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", length %u",length));
2015-01-06 19:03:11 +00:00
if (ndo->ndo_vflag < 1)
ND_PRINT((ndo, ": ")); /* put in a colon as protocol demarc */
else
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "\n\t")); /* if verbose go multiline */
switch (prot) {
case ETHERTYPE_IP:
2015-01-06 19:03:11 +00:00
ip_print(ndo, bp, len);
break;
case ETHERTYPE_IPV6:
2015-01-06 19:03:11 +00:00
ip6_print(ndo, bp, len);
break;
case ETHERTYPE_MPLS:
2015-01-06 19:03:11 +00:00
mpls_print(ndo, bp, len);
break;
case ETHERTYPE_IPX:
2015-01-06 19:03:11 +00:00
ipx_print(ndo, bp, len);
break;
case ETHERTYPE_ATALK:
2015-01-06 19:03:11 +00:00
atalk_print(ndo, bp, len);
break;
case ETHERTYPE_GRE_ISO:
2015-01-06 19:03:11 +00:00
isoclns_print(ndo, bp, len, len);
break;
Update tcpdump to 4.1.1. Changes: Thu. April 1, 2010. guy@alum.mit.edu. Summary for 4.1.1 tcpdump release Fix build on systems with PF, such as FreeBSD and OpenBSD. Don't blow up if a zero-length link-layer address is passed to linkaddr_string(). Thu. March 11, 2010. ken@netfunctional.ca/guy@alum.mit.edu. Summary for 4.1.0 tcpdump release Fix printing of MAC addresses for VLAN frames with a length field Add some additional bounds checks and use the EXTRACT_ macros more Add a -b flag to print the AS number in BGP packets in ASDOT notation rather than ASPLAIN notation Add ICMPv6 RFC 5006 support Decode the access flags in NFS access requests Handle the new DLT_ for memory-mapped USB captures on Linux Make the default snapshot (-s) the maximum Print name of device (when -L is used) Support for OpenSolaris (and SXCE build 125 and later) Print new TCP flags Add support for RPL DIO Add support for TCP User Timeout (UTO) Add support for non-standard Ethertypes used by 3com PPPoE gear Add support for 802.11n and 802.11s Add support for Transparent Ethernet Bridge ethertype in GRE Add 4 byte AS support for BGP printer Add support for the MDT SAFI 66 BG printer Add basic IPv6 support to print-olsr Add USB printer Add printer for ForCES Handle frames with an FCS Handle 802.11n Control Wrapper, Block Acq Req and Block Ack frames Fix TCP sequence number printing Report 802.2 packets as 802.2 instead of 802.3 Don't include -L/usr/lib in LDFLAGS On x86_64 Linux, look in lib64 directory too Lots of code clean ups Autoconf clean ups Update testcases to make output changes Fix compiling with/out smi (--with{,out}-smi) Fix compiling without IPv6 support (--disable-ipv6)
2010-10-28 16:23:25 +00:00
case ETHERTYPE_TEB:
2015-01-06 19:03:11 +00:00
ether_print(ndo, bp, len, len, NULL, NULL);
Update tcpdump to 4.1.1. Changes: Thu. April 1, 2010. guy@alum.mit.edu. Summary for 4.1.1 tcpdump release Fix build on systems with PF, such as FreeBSD and OpenBSD. Don't blow up if a zero-length link-layer address is passed to linkaddr_string(). Thu. March 11, 2010. ken@netfunctional.ca/guy@alum.mit.edu. Summary for 4.1.0 tcpdump release Fix printing of MAC addresses for VLAN frames with a length field Add some additional bounds checks and use the EXTRACT_ macros more Add a -b flag to print the AS number in BGP packets in ASDOT notation rather than ASPLAIN notation Add ICMPv6 RFC 5006 support Decode the access flags in NFS access requests Handle the new DLT_ for memory-mapped USB captures on Linux Make the default snapshot (-s) the maximum Print name of device (when -L is used) Support for OpenSolaris (and SXCE build 125 and later) Print new TCP flags Add support for RPL DIO Add support for TCP User Timeout (UTO) Add support for non-standard Ethertypes used by 3com PPPoE gear Add support for 802.11n and 802.11s Add support for Transparent Ethernet Bridge ethertype in GRE Add 4 byte AS support for BGP printer Add support for the MDT SAFI 66 BG printer Add basic IPv6 support to print-olsr Add USB printer Add printer for ForCES Handle frames with an FCS Handle 802.11n Control Wrapper, Block Acq Req and Block Ack frames Fix TCP sequence number printing Report 802.2 packets as 802.2 instead of 802.3 Don't include -L/usr/lib in LDFLAGS On x86_64 Linux, look in lib64 directory too Lots of code clean ups Autoconf clean ups Update testcases to make output changes Fix compiling with/out smi (--with{,out}-smi) Fix compiling without IPv6 support (--disable-ipv6)
2010-10-28 16:23:25 +00:00
break;
default:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "gre-proto-0x%x", prot));
}
return;
trunc:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "%s", tstr));
}
2015-01-06 19:03:11 +00:00
static void
gre_print_1(netdissect_options *ndo, const u_char *bp, u_int length)
{
u_int len = length;
2015-01-06 19:03:11 +00:00
uint16_t flags, prot;
flags = EXTRACT_16BITS(bp);
len -= 2;
bp += 2;
2015-01-06 19:03:11 +00:00
if (ndo->ndo_vflag)
ND_PRINT((ndo, ", Flags [%s]",
bittok2str(gre_flag_values,"none",flags)));
if (len < 2)
goto trunc;
prot = EXTRACT_16BITS(bp);
len -= 2;
bp += 2;
if (flags & GRE_KP) {
2015-01-06 19:03:11 +00:00
uint32_t k;
1997-05-27 02:11:31 +00:00
if (len < 4)
goto trunc;
k = EXTRACT_32BITS(bp);
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", call %d", k & 0xffff));
len -= 4;
bp += 4;
}
if (flags & GRE_SP) {
if (len < 4)
goto trunc;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", seq %u", EXTRACT_32BITS(bp)));
bp += 4;
len -= 4;
}
if (flags & GRE_AP) {
if (len < 4)
goto trunc;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", ack %u", EXTRACT_32BITS(bp)));
bp += 4;
len -= 4;
}
1997-05-27 02:11:31 +00:00
if ((flags & GRE_SP) == 0)
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", no-payload"));
2015-01-06 19:03:11 +00:00
if (ndo->ndo_eflag)
ND_PRINT((ndo, ", proto %s (0x%04x)",
tok2str(ethertype_values,"unknown",prot),
2015-01-06 19:03:11 +00:00
prot));
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", length %u",length));
if ((flags & GRE_SP) == 0)
return;
2015-01-06 19:03:11 +00:00
if (ndo->ndo_vflag < 1)
ND_PRINT((ndo, ": ")); /* put in a colon as protocol demarc */
else
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "\n\t")); /* if verbose go multiline */
switch (prot) {
case ETHERTYPE_PPP:
2015-01-06 19:03:11 +00:00
ppp_print(ndo, bp, len);
break;
default:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "gre-proto-0x%x", prot));
break;
}
1997-05-27 02:11:31 +00:00
return;
trunc:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, "%s", tstr));
}
2015-01-06 19:03:11 +00:00
static void
gre_sre_print(netdissect_options *ndo, uint16_t af, uint8_t sreoff,
uint8_t srelen, const u_char *bp, u_int len)
{
switch (af) {
case GRESRE_IP:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", (rtaf=ip"));
gre_sre_ip_print(ndo, sreoff, srelen, bp, len);
ND_PRINT((ndo, ") "));
break;
case GRESRE_ASN:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", (rtaf=asn"));
gre_sre_asn_print(ndo, sreoff, srelen, bp, len);
ND_PRINT((ndo, ") "));
break;
default:
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", (rtaf=0x%x) ", af));
}
}
2015-01-06 19:03:11 +00:00
static void
gre_sre_ip_print(netdissect_options *ndo, uint8_t sreoff, uint8_t srelen,
const u_char *bp, u_int len)
{
struct in_addr a;
const u_char *up = bp;
1997-05-27 02:11:31 +00:00
if (sreoff & 3) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", badoffset=%u", sreoff));
return;
}
if (srelen & 3) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", badlength=%u", srelen));
return;
}
if (sreoff >= srelen) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", badoff/len=%u/%u", sreoff, srelen));
return;
}
for (;;) {
if (len < 4 || srelen == 0)
return;
memcpy(&a, bp, sizeof(a));
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, " %s%s",
((bp - up) == sreoff) ? "*" : "",
2015-01-06 19:03:11 +00:00
inet_ntoa(a)));
bp += 4;
len -= 4;
srelen -= 4;
}
}
2015-01-06 19:03:11 +00:00
static void
gre_sre_asn_print(netdissect_options *ndo, uint8_t sreoff, uint8_t srelen,
const u_char *bp, u_int len)
{
const u_char *up = bp;
if (sreoff & 1) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", badoffset=%u", sreoff));
return;
}
if (srelen & 1) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", badlength=%u", srelen));
return;
}
if (sreoff >= srelen) {
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, ", badoff/len=%u/%u", sreoff, srelen));
return;
}
for (;;) {
if (len < 2 || srelen == 0)
return;
2015-01-06 19:03:11 +00:00
ND_PRINT((ndo, " %s%x",
((bp - up) == sreoff) ? "*" : "",
2015-01-06 19:03:11 +00:00
EXTRACT_16BITS(bp)));
bp += 2;
len -= 2;
srelen -= 2;
}
1997-05-27 02:11:31 +00:00
}