]> The Tcpdump Group git mirrors - tcpdump/blob - print-rx.c
projects / tcpdump / blob


534278bcba8c8e3ab8734e49f62182cadb05fc90
[tcpdump] / print-rx.c
1 /*
2 * Copyright: (c) 2000 United States Government as represented by the
3 * Secretary of the Navy. All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 *
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
11 * 2. Redistributions in binary form must reproduce the above copyright
12 * notice, this list of conditions and the following disclaimer in
13 * the documentation and/or other materials provided with the
14 * distribution.
15 * 3. The names of the authors may not be used to endorse or promote
16 * products derived from this software without specific prior
17 * written permission.
18 *
19 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
20 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
21 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
22 */
23
24 /* \summary: AFS RX printer */
25
26 /*
27 * This code unmangles RX packets. RX is the mutant form of RPC that AFS
28 * uses to communicate between clients and servers.
29 *
30 * In this code, I mainly concern myself with decoding the AFS calls, not
31 * with the guts of RX, per se.
32 *
33 * Bah. If I never look at rx_packet.h again, it will be too soon.
34 *
35 * Ken Hornstein <kenh@cmf.nrl.navy.mil>
36 */
37
38 #ifdef HAVE_CONFIG_H
39 #include <config.h>
40 #endif
41
42 #include <stdio.h>
43 #include <stdlib.h>
44 #include <string.h>
45 #include "netdissect-stdinc.h"
46
47 #include "netdissect.h"
48 #include "addrtoname.h"
49 #include "extract.h"
50
51 #include "ip.h"
52
53 #define FS_RX_PORT 7000
54 #define CB_RX_PORT 7001
55 #define PROT_RX_PORT 7002
56 #define VLDB_RX_PORT 7003
57 #define KAUTH_RX_PORT 7004
58 #define VOL_RX_PORT 7005
59 #define ERROR_RX_PORT 7006 /* Doesn't seem to be used */
60 #define BOS_RX_PORT 7007
61
62 #define AFSNAMEMAX 256
63 #define AFSOPAQUEMAX 1024
64 #define PRNAMEMAX 64
65 #define VLNAMEMAX 65
66 #define KANAMEMAX 64
67 #define BOSNAMEMAX 256
68
69 #define PRSFS_READ 1 /* Read files */
70 #define PRSFS_WRITE 2 /* Write files */
71 #define PRSFS_INSERT 4 /* Insert files into a directory */
72 #define PRSFS_LOOKUP 8 /* Lookup files into a directory */
73 #define PRSFS_DELETE 16 /* Delete files */
74 #define PRSFS_LOCK 32 /* Lock files */
75 #define PRSFS_ADMINISTER 64 /* Change ACL's */
76
77 struct rx_header {
78 nd_uint32_t epoch;
79 nd_uint32_t cid;
80 nd_uint32_t callNumber;
81 nd_uint32_t seq;
82 nd_uint32_t serial;
83 nd_uint8_t type;
84 #define RX_PACKET_TYPE_DATA 1
85 #define RX_PACKET_TYPE_ACK 2
86 #define RX_PACKET_TYPE_BUSY 3
87 #define RX_PACKET_TYPE_ABORT 4
88 #define RX_PACKET_TYPE_ACKALL 5
89 #define RX_PACKET_TYPE_CHALLENGE 6
90 #define RX_PACKET_TYPE_RESPONSE 7
91 #define RX_PACKET_TYPE_DEBUG 8
92 #define RX_PACKET_TYPE_PARAMS 9
93 #define RX_PACKET_TYPE_VERSION 13
94 nd_uint8_t flags;
95 #define RX_CLIENT_INITIATED 1
96 #define RX_REQUEST_ACK 2
97 #define RX_LAST_PACKET 4
98 #define RX_MORE_PACKETS 8
99 #define RX_FREE_PACKET 16
100 #define RX_SLOW_START_OK 32
101 #define RX_JUMBO_PACKET 32
102 nd_uint8_t userStatus;
103 nd_uint8_t securityIndex;
104 nd_uint16_t spare; /* How clever: even though the AFS */
105 nd_uint16_t serviceId; /* header files indicate that the */
106 }; /* serviceId is first, it's really */
107 /* encoded _after_ the spare field */
108 /* I wasted a day figuring that out! */
109
110 #define NUM_RX_FLAGS 7
111
112 #define RX_MAXACKS 255
113
114 struct rx_ackPacket {
115 nd_uint16_t bufferSpace; /* Number of packet buffers available */
116 nd_uint16_t maxSkew; /* Max diff between ack'd packet and */
117 /* highest packet received */
118 nd_uint32_t firstPacket; /* The first packet in ack list */
119 nd_uint32_t previousPacket; /* Previous packet recv'd (obsolete) */
120 nd_uint32_t serial; /* # of packet that prompted the ack */
121 nd_uint8_t reason; /* Reason for acknowledgement */
122 nd_uint8_t nAcks; /* Number of acknowledgements */
123 /* Followed by nAcks acknowledgments */
124 #if 0
125 uint8_t acks[RX_MAXACKS]; /* Up to RX_MAXACKS acknowledgements */
126 #endif
127 };
128
129 /*
130 * Values for the acks array
131 */
132
133 #define RX_ACK_TYPE_NACK 0 /* Don't have this packet */
134 #define RX_ACK_TYPE_ACK 1 /* I have this packet */
135
136 static const struct tok rx_types[] = {
137 { RX_PACKET_TYPE_DATA, "data" },
138 { RX_PACKET_TYPE_ACK, "ack" },
139 { RX_PACKET_TYPE_BUSY, "busy" },
140 { RX_PACKET_TYPE_ABORT, "abort" },
141 { RX_PACKET_TYPE_ACKALL, "ackall" },
142 { RX_PACKET_TYPE_CHALLENGE, "challenge" },
143 { RX_PACKET_TYPE_RESPONSE, "response" },
144 { RX_PACKET_TYPE_DEBUG, "debug" },
145 { RX_PACKET_TYPE_PARAMS, "params" },
146 { RX_PACKET_TYPE_VERSION, "version" },
147 { 0, NULL },
148 };
149
150 static const struct double_tok {
151 uint32_t flag; /* Rx flag */
152 uint32_t packetType; /* Packet type */
153 const char *s; /* Flag string */
154 } rx_flags[] = {
155 { RX_CLIENT_INITIATED, 0, "client-init" },
156 { RX_REQUEST_ACK, 0, "req-ack" },
157 { RX_LAST_PACKET, 0, "last-pckt" },
158 { RX_MORE_PACKETS, 0, "more-pckts" },
159 { RX_FREE_PACKET, 0, "free-pckt" },
160 { RX_SLOW_START_OK, RX_PACKET_TYPE_ACK, "slow-start" },
161 { RX_JUMBO_PACKET, RX_PACKET_TYPE_DATA, "jumbogram" }
162 };
163
164 static const struct tok fs_req[] = {
165 { 130, "fetch-data" },
166 { 131, "fetch-acl" },
167 { 132, "fetch-status" },
168 { 133, "store-data" },
169 { 134, "store-acl" },
170 { 135, "store-status" },
171 { 136, "remove-file" },
172 { 137, "create-file" },
173 { 138, "rename" },
174 { 139, "symlink" },
175 { 140, "link" },
176 { 141, "makedir" },
177 { 142, "rmdir" },
178 { 143, "oldsetlock" },
179 { 144, "oldextlock" },
180 { 145, "oldrellock" },
181 { 146, "get-stats" },
182 { 147, "give-cbs" },
183 { 148, "get-vlinfo" },
184 { 149, "get-vlstats" },
185 { 150, "set-vlstats" },
186 { 151, "get-rootvl" },
187 { 152, "check-token" },
188 { 153, "get-time" },
189 { 154, "nget-vlinfo" },
190 { 155, "bulk-stat" },
191 { 156, "setlock" },
192 { 157, "extlock" },
193 { 158, "rellock" },
194 { 159, "xstat-ver" },
195 { 160, "get-xstat" },
196 { 161, "dfs-lookup" },
197 { 162, "dfs-flushcps" },
198 { 163, "dfs-symlink" },
199 { 220, "residency" },
200 { 65536, "inline-bulk-status" },
201 { 65537, "fetch-data-64" },
202 { 65538, "store-data-64" },
203 { 65539, "give-up-all-cbs" },
204 { 65540, "get-caps" },
205 { 65541, "cb-rx-conn-addr" },
206 { 0, NULL },
207 };
208
209 static const struct tok cb_req[] = {
210 { 204, "callback" },
211 { 205, "initcb" },
212 { 206, "probe" },
213 { 207, "getlock" },
214 { 208, "getce" },
215 { 209, "xstatver" },
216 { 210, "getxstat" },
217 { 211, "initcb2" },
218 { 212, "whoareyou" },
219 { 213, "initcb3" },
220 { 214, "probeuuid" },
221 { 215, "getsrvprefs" },
222 { 216, "getcellservdb" },
223 { 217, "getlocalcell" },
224 { 218, "getcacheconf" },
225 { 65536, "getce64" },
226 { 65537, "getcellbynum" },
227 { 65538, "tellmeaboutyourself" },
228 { 0, NULL },
229 };
230
231 static const struct tok pt_req[] = {
232 { 500, "new-user" },
233 { 501, "where-is-it" },
234 { 502, "dump-entry" },
235 { 503, "add-to-group" },
236 { 504, "name-to-id" },
237 { 505, "id-to-name" },
238 { 506, "delete" },
239 { 507, "remove-from-group" },
240 { 508, "get-cps" },
241 { 509, "new-entry" },
242 { 510, "list-max" },
243 { 511, "set-max" },
244 { 512, "list-entry" },
245 { 513, "change-entry" },
246 { 514, "list-elements" },
247 { 515, "same-mbr-of" },
248 { 516, "set-fld-sentry" },
249 { 517, "list-owned" },
250 { 518, "get-cps2" },
251 { 519, "get-host-cps" },
252 { 520, "update-entry" },
253 { 521, "list-entries" },
254 { 530, "list-super-groups" },
255 { 0, NULL },
256 };
257
258 static const struct tok vldb_req[] = {
259 { 501, "create-entry" },
260 { 502, "delete-entry" },
261 { 503, "get-entry-by-id" },
262 { 504, "get-entry-by-name" },
263 { 505, "get-new-volume-id" },
264 { 506, "replace-entry" },
265 { 507, "update-entry" },
266 { 508, "setlock" },
267 { 509, "releaselock" },
268 { 510, "list-entry" },
269 { 511, "list-attrib" },
270 { 512, "linked-list" },
271 { 513, "get-stats" },
272 { 514, "probe" },
273 { 515, "get-addrs" },
274 { 516, "change-addr" },
275 { 517, "create-entry-n" },
276 { 518, "get-entry-by-id-n" },
277 { 519, "get-entry-by-name-n" },
278 { 520, "replace-entry-n" },
279 { 521, "list-entry-n" },
280 { 522, "list-attrib-n" },
281 { 523, "linked-list-n" },
282 { 524, "update-entry-by-name" },
283 { 525, "create-entry-u" },
284 { 526, "get-entry-by-id-u" },
285 { 527, "get-entry-by-name-u" },
286 { 528, "replace-entry-u" },
287 { 529, "list-entry-u" },
288 { 530, "list-attrib-u" },
289 { 531, "linked-list-u" },
290 { 532, "regaddr" },
291 { 533, "get-addrs-u" },
292 { 534, "list-attrib-n2" },
293 { 0, NULL },
294 };
295
296 static const struct tok kauth_req[] = {
297 { 1, "auth-old" },
298 { 21, "authenticate" },
299 { 22, "authenticate-v2" },
300 { 2, "change-pw" },
301 { 3, "get-ticket-old" },
302 { 23, "get-ticket" },
303 { 4, "set-pw" },
304 { 5, "set-fields" },
305 { 6, "create-user" },
306 { 7, "delete-user" },
307 { 8, "get-entry" },
308 { 9, "list-entry" },
309 { 10, "get-stats" },
310 { 11, "debug" },
311 { 12, "get-pw" },
312 { 13, "get-random-key" },
313 { 14, "unlock" },
314 { 15, "lock-status" },
315 { 0, NULL },
316 };
317
318 static const struct tok vol_req[] = {
319 { 100, "create-volume" },
320 { 101, "delete-volume" },
321 { 102, "restore" },
322 { 103, "forward" },
323 { 104, "end-trans" },
324 { 105, "clone" },
325 { 106, "set-flags" },
326 { 107, "get-flags" },
327 { 108, "trans-create" },
328 { 109, "dump" },
329 { 110, "get-nth-volume" },
330 { 111, "set-forwarding" },
331 { 112, "get-name" },
332 { 113, "get-status" },
333 { 114, "sig-restore" },
334 { 115, "list-partitions" },
335 { 116, "list-volumes" },
336 { 117, "set-id-types" },
337 { 118, "monitor" },
338 { 119, "partition-info" },
339 { 120, "reclone" },
340 { 121, "list-one-volume" },
341 { 122, "nuke" },
342 { 123, "set-date" },
343 { 124, "x-list-volumes" },
344 { 125, "x-list-one-volume" },
345 { 126, "set-info" },
346 { 127, "x-list-partitions" },
347 { 128, "forward-multiple" },
348 { 65536, "convert-ro" },
349 { 65537, "get-size" },
350 { 65538, "dump-v2" },
351 { 0, NULL },
352 };
353
354 static const struct tok bos_req[] = {
355 { 80, "create-bnode" },
356 { 81, "delete-bnode" },
357 { 82, "set-status" },
358 { 83, "get-status" },
359 { 84, "enumerate-instance" },
360 { 85, "get-instance-info" },
361 { 86, "get-instance-parm" },
362 { 87, "add-superuser" },
363 { 88, "delete-superuser" },
364 { 89, "list-superusers" },
365 { 90, "list-keys" },
366 { 91, "add-key" },
367 { 92, "delete-key" },
368 { 93, "set-cell-name" },
369 { 94, "get-cell-name" },
370 { 95, "get-cell-host" },
371 { 96, "add-cell-host" },
372 { 97, "delete-cell-host" },
373 { 98, "set-t-status" },
374 { 99, "shutdown-all" },
375 { 100, "restart-all" },
376 { 101, "startup-all" },
377 { 102, "set-noauth-flag" },
378 { 103, "re-bozo" },
379 { 104, "restart" },
380 { 105, "start-bozo-install" },
381 { 106, "uninstall" },
382 { 107, "get-dates" },
383 { 108, "exec" },
384 { 109, "prune" },
385 { 110, "set-restart-time" },
386 { 111, "get-restart-time" },
387 { 112, "start-bozo-log" },
388 { 113, "wait-all" },
389 { 114, "get-instance-strings" },
390 { 115, "get-restricted" },
391 { 116, "set-restricted" },
392 { 0, NULL },
393 };
394
395 static const struct tok ubik_req[] = {
396 { 10000, "vote-beacon" },
397 { 10001, "vote-debug-old" },
398 { 10002, "vote-sdebug-old" },
399 { 10003, "vote-getsyncsite" },
400 { 10004, "vote-debug" },
401 { 10005, "vote-sdebug" },
402 { 10006, "vote-xdebug" },
403 { 10007, "vote-xsdebug" },
404 { 20000, "disk-begin" },
405 { 20001, "disk-commit" },
406 { 20002, "disk-lock" },
407 { 20003, "disk-write" },
408 { 20004, "disk-getversion" },
409 { 20005, "disk-getfile" },
410 { 20006, "disk-sendfile" },
411 { 20007, "disk-abort" },
412 { 20008, "disk-releaselocks" },
413 { 20009, "disk-truncate" },
414 { 20010, "disk-probe" },
415 { 20011, "disk-writev" },
416 { 20012, "disk-interfaceaddr" },
417 { 20013, "disk-setversion" },
418 { 0, NULL },
419 };
420
421 #define VOTE_LOW 10000
422 #define VOTE_HIGH 10007
423 #define DISK_LOW 20000
424 #define DISK_HIGH 20013
425
426 static const struct tok cb_types[] = {
427 { 1, "exclusive" },
428 { 2, "shared" },
429 { 3, "dropped" },
430 { 0, NULL },
431 };
432
433 static const struct tok ubik_lock_types[] = {
434 { 1, "read" },
435 { 2, "write" },
436 { 3, "wait" },
437 { 0, NULL },
438 };
439
440 static const char *voltype[] = { "read-write", "read-only", "backup" };
441
442 static const struct tok afs_fs_errors[] = {
443 { 101, "salvage volume" },
444 { 102, "no such vnode" },
445 { 103, "no such volume" },
446 { 104, "volume exist" },
447 { 105, "no service" },
448 { 106, "volume offline" },
449 { 107, "voline online" },
450 { 108, "diskfull" },
451 { 109, "diskquota exceeded" },
452 { 110, "volume busy" },
453 { 111, "volume moved" },
454 { 112, "AFS IO error" },
455 { 0xffffff9c, "restarting fileserver" }, /* -100, sic! */
456 { 0, NULL }
457 };
458
459 /*
460 * Reasons for acknowledging a packet
461 */
462
463 static const struct tok rx_ack_reasons[] = {
464 { 1, "ack requested" },
465 { 2, "duplicate packet" },
466 { 3, "out of sequence" },
467 { 4, "exceeds window" },
468 { 5, "no buffer space" },
469 { 6, "ping" },
470 { 7, "ping response" },
471 { 8, "delay" },
472 { 9, "idle" },
473 { 0, NULL },
474 };
475
476 /*
477 * Cache entries we keep around so we can figure out the RX opcode
478 * numbers for replies. This allows us to make sense of RX reply packets.
479 */
480
481 struct rx_cache_entry {
482 uint32_t callnum; /* Call number (net order) */
483 struct in_addr client; /* client IP address (net order) */
484 struct in_addr server; /* server IP address (net order) */
485 u_int dport; /* server port (host order) */
486 uint16_t serviceId; /* Service identifier (net order) */
487 uint32_t opcode; /* RX opcode (host order) */
488 };
489
490 #define RX_CACHE_SIZE 64
491
492 static struct rx_cache_entry rx_cache[RX_CACHE_SIZE];
493
494 static uint32_t rx_cache_next = 0;
495 static uint32_t rx_cache_hint = 0;
496 static void rx_cache_insert(netdissect_options *, const u_char *, const struct ip *, u_int);
497 static int rx_cache_find(const struct rx_header *, const struct ip *,
498 uint32_t, uint32_t *);
499
500 static void fs_print(netdissect_options *, const u_char *, u_int);
501 static void fs_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
502 static void acl_print(netdissect_options *, u_char *, int, u_char *);
503 static void cb_print(netdissect_options *, const u_char *, u_int);
504 static void cb_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
505 static void prot_print(netdissect_options *, const u_char *, u_int);
506 static void prot_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
507 static void vldb_print(netdissect_options *, const u_char *, u_int);
508 static void vldb_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
509 static void kauth_print(netdissect_options *, const u_char *, u_int);
510 static void kauth_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
511 static void vol_print(netdissect_options *, const u_char *, u_int);
512 static void vol_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
513 static void bos_print(netdissect_options *, const u_char *, u_int);
514 static void bos_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
515 static void ubik_print(netdissect_options *, const u_char *);
516 static void ubik_reply_print(netdissect_options *, const u_char *, u_int, uint32_t);
517
518 static void rx_ack_print(netdissect_options *, const u_char *, u_int);
519
520 static int is_ubik(uint32_t);
521
522 /*
523 * Handle the rx-level packet. See if we know what port it's going to so
524 * we can peek at the afs call inside
525 */
526
527 void
528 rx_print(netdissect_options *ndo,
529 const u_char *bp, u_int length, u_int sport, u_int dport,
530 const u_char *bp2)
531 {
532 const struct rx_header *rxh;
533 uint32_t i;
534 uint8_t type, flags;
535 uint32_t opcode;
536
537 ndo->ndo_protocol = "rx";
538 if (!ND_TTEST_LEN(bp, sizeof(struct rx_header))) {
539 ND_PRINT(" [|rx] (%u)", length);
540 return;
541 }
542
543 rxh = (const struct rx_header *) bp;
544
545 type = EXTRACT_U_1(rxh->type);
546 ND_PRINT(" rx %s", tok2str(rx_types, "type %u", type));
547
548 flags = EXTRACT_U_1(rxh->flags);
549 if (ndo->ndo_vflag) {
550 int firstflag = 0;
551
552 if (ndo->ndo_vflag > 1)
553 ND_PRINT(" cid %08x call# %u",
554 EXTRACT_BE_U_4(rxh->cid),
555 EXTRACT_BE_U_4(rxh->callNumber));
556
557 ND_PRINT(" seq %u ser %u",
558 EXTRACT_BE_U_4(rxh->seq),
559 EXTRACT_BE_U_4(rxh->serial));
560
561 if (ndo->ndo_vflag > 2)
562 ND_PRINT(" secindex %u serviceid %hu",
563 EXTRACT_U_1(rxh->securityIndex),
564 EXTRACT_BE_U_2(rxh->serviceId));
565
566 if (ndo->ndo_vflag > 1)
567 for (i = 0; i < NUM_RX_FLAGS; i++) {
568 if (flags & rx_flags[i].flag &&
569 (!rx_flags[i].packetType ||
570 type == rx_flags[i].packetType)) {
571 if (!firstflag) {
572 firstflag = 1;
573 ND_PRINT(" ");
574 } else {
575 ND_PRINT(",");
576 }
577 ND_PRINT("<%s>", rx_flags[i].s);
578 }
579 }
580 }
581
582 /*
583 * Try to handle AFS calls that we know about. Check the destination
584 * port and make sure it's a data packet. Also, make sure the
585 * seq number is 1 (because otherwise it's a continuation packet,
586 * and we can't interpret that). Also, seems that reply packets
587 * do not have the client-init flag set, so we check for that
588 * as well.
589 */
590
591 if (type == RX_PACKET_TYPE_DATA &&
592 EXTRACT_BE_U_4(rxh->seq) == 1 &&
593 flags & RX_CLIENT_INITIATED) {
594
595 /*
596 * Insert this call into the call cache table, so we
597 * have a chance to print out replies
598 */
599
600 rx_cache_insert(ndo, bp, (const struct ip *) bp2, dport);
601
602 switch (dport) {
603 case FS_RX_PORT: /* AFS file service */
604 fs_print(ndo, bp, length);
605 break;
606 case CB_RX_PORT: /* AFS callback service */
607 cb_print(ndo, bp, length);
608 break;
609 case PROT_RX_PORT: /* AFS protection service */
610 prot_print(ndo, bp, length);
611 break;
612 case VLDB_RX_PORT: /* AFS VLDB service */
613 vldb_print(ndo, bp, length);
614 break;
615 case KAUTH_RX_PORT: /* AFS Kerberos auth service */
616 kauth_print(ndo, bp, length);
617 break;
618 case VOL_RX_PORT: /* AFS Volume service */
619 vol_print(ndo, bp, length);
620 break;
621 case BOS_RX_PORT: /* AFS BOS service */
622 bos_print(ndo, bp, length);
623 break;
624 default:
625 ;
626 }
627
628 /*
629 * If it's a reply (client-init is _not_ set, but seq is one)
630 * then look it up in the cache. If we find it, call the reply
631 * printing functions Note that we handle abort packets here,
632 * because printing out the return code can be useful at times.
633 */
634
635 } else if (((type == RX_PACKET_TYPE_DATA &&
636 EXTRACT_BE_U_4(rxh->seq) == 1) ||
637 type == RX_PACKET_TYPE_ABORT) &&
638 (flags & RX_CLIENT_INITIATED) == 0 &&
639 rx_cache_find(rxh, (const struct ip *) bp2,
640 sport, &opcode)) {
641
642 switch (sport) {
643 case FS_RX_PORT: /* AFS file service */
644 fs_reply_print(ndo, bp, length, opcode);
645 break;
646 case CB_RX_PORT: /* AFS callback service */
647 cb_reply_print(ndo, bp, length, opcode);
648 break;
649 case PROT_RX_PORT: /* AFS PT service */
650 prot_reply_print(ndo, bp, length, opcode);
651 break;
652 case VLDB_RX_PORT: /* AFS VLDB service */
653 vldb_reply_print(ndo, bp, length, opcode);
654 break;
655 case KAUTH_RX_PORT: /* AFS Kerberos auth service */
656 kauth_reply_print(ndo, bp, length, opcode);
657 break;
658 case VOL_RX_PORT: /* AFS Volume service */
659 vol_reply_print(ndo, bp, length, opcode);
660 break;
661 case BOS_RX_PORT: /* AFS BOS service */
662 bos_reply_print(ndo, bp, length, opcode);
663 break;
664 default:
665 ;
666 }
667
668 /*
669 * If it's an RX ack packet, then use the appropriate ack decoding
670 * function (there isn't any service-specific information in the
671 * ack packet, so we can use one for all AFS services)
672 */
673
674 } else if (type == RX_PACKET_TYPE_ACK)
675 rx_ack_print(ndo, bp, length);
676
677
678 ND_PRINT(" (%u)", length);
679 }
680
681 /*
682 * Insert an entry into the cache. Taken from print-nfs.c
683 */
684
685 static void
686 rx_cache_insert(netdissect_options *ndo,
687 const u_char *bp, const struct ip *ip, u_int dport)
688 {
689 struct rx_cache_entry *rxent;
690 const struct rx_header *rxh = (const struct rx_header *) bp;
691
692 if (!ND_TTEST_4(bp + sizeof(struct rx_header)))
693 return;
694
695 rxent = &rx_cache[rx_cache_next];
696
697 if (++rx_cache_next >= RX_CACHE_SIZE)
698 rx_cache_next = 0;
699
700 rxent->callnum = EXTRACT_BE_U_4(rxh->callNumber);
701 UNALIGNED_MEMCPY(&rxent->client, ip->ip_src, sizeof(uint32_t));
702 UNALIGNED_MEMCPY(&rxent->server, ip->ip_dst, sizeof(uint32_t));
703 rxent->dport = dport;
704 rxent->serviceId = EXTRACT_BE_U_4(rxh->serviceId);
705 rxent->opcode = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
706 }
707
708 /*
709 * Lookup an entry in the cache. Also taken from print-nfs.c
710 *
711 * Note that because this is a reply, we're looking at the _source_
712 * port.
713 */
714
715 static int
716 rx_cache_find(const struct rx_header *rxh, const struct ip *ip, u_int sport,
717 uint32_t *opcode)
718 {
719 uint32_t i;
720 struct rx_cache_entry *rxent;
721 uint32_t clip;
722 uint32_t sip;
723
724 UNALIGNED_MEMCPY(&clip, ip->ip_dst, sizeof(uint32_t));
725 UNALIGNED_MEMCPY(&sip, ip->ip_src, sizeof(uint32_t));
726
727 /* Start the search where we last left off */
728
729 i = rx_cache_hint;
730 do {
731 rxent = &rx_cache[i];
732 if (rxent->callnum == EXTRACT_BE_U_4(rxh->callNumber) &&
733 rxent->client.s_addr == clip &&
734 rxent->server.s_addr == sip &&
735 rxent->serviceId == EXTRACT_BE_U_4(rxh->serviceId) &&
736 rxent->dport == sport) {
737
738 /* We got a match! */
739
740 rx_cache_hint = i;
741 *opcode = rxent->opcode;
742 return(1);
743 }
744 if (++i >= RX_CACHE_SIZE)
745 i = 0;
746 } while (i != rx_cache_hint);
747
748 /* Our search failed */
749 return(0);
750 }
751
752 /*
753 * These extrememly grody macros handle the printing of various AFS stuff.
754 */
755
756 #define FIDOUT() { uint32_t n1, n2, n3; \
757 ND_TCHECK_LEN(bp, sizeof(uint32_t) * 3); \
758 n1 = EXTRACT_BE_U_4(bp); \
759 bp += sizeof(uint32_t); \
760 n2 = EXTRACT_BE_U_4(bp); \
761 bp += sizeof(uint32_t); \
762 n3 = EXTRACT_BE_U_4(bp); \
763 bp += sizeof(uint32_t); \
764 ND_PRINT(" fid %u/%u/%u", n1, n2, n3); \
765 }
766
767 #define STROUT(MAX) { uint32_t _i; \
768 ND_TCHECK_LEN(bp, sizeof(uint32_t)); \
769 _i = EXTRACT_BE_U_4(bp); \
770 if (_i > (MAX)) \
771 goto trunc; \
772 bp += sizeof(uint32_t); \
773 ND_PRINT(" \""); \
774 if (fn_printn(ndo, bp, _i, ndo->ndo_snapend)) \
775 goto trunc; \
776 ND_PRINT("\""); \
777 bp += ((_i + sizeof(uint32_t) - 1) / sizeof(uint32_t)) * sizeof(uint32_t); \
778 }
779
780 #define INTOUT() { int32_t _i; \
781 ND_TCHECK_4(bp); \
782 _i = EXTRACT_BE_S_4(bp); \
783 bp += sizeof(int32_t); \
784 ND_PRINT(" %d", _i); \
785 }
786
787 #define UINTOUT() { uint32_t _i; \
788 ND_TCHECK_4(bp); \
789 _i = EXTRACT_BE_U_4(bp); \
790 bp += sizeof(uint32_t); \
791 ND_PRINT(" %u", _i); \
792 }
793
794 #define UINT64OUT() { uint64_t _i; \
795 ND_TCHECK_LEN(bp, sizeof(uint64_t)); \
796 _i = EXTRACT_BE_U_8(bp); \
797 bp += sizeof(uint64_t); \
798 ND_PRINT(" %" PRIu64, _i); \
799 }
800
801 #define DATEOUT() { time_t _t; struct tm *tm; char str[256]; \
802 ND_TCHECK_4(bp); \
803 _t = (time_t) EXTRACT_BE_S_4(bp); \
804 bp += sizeof(int32_t); \
805 tm = localtime(&_t); \
806 strftime(str, 256, "%Y/%m/%d %H:%M:%S", tm); \
807 ND_PRINT(" %s", str); \
808 }
809
810 #define STOREATTROUT() { uint32_t mask, _i; \
811 ND_TCHECK_LEN(bp, (sizeof(uint32_t) * 6)); \
812 mask = EXTRACT_BE_U_4(bp); bp += sizeof(uint32_t); \
813 if (mask) ND_PRINT(" StoreStatus"); \
814 if (mask & 1) { ND_PRINT(" date"); DATEOUT(); } \
815 else bp += sizeof(uint32_t); \
816 _i = EXTRACT_BE_U_4(bp); bp += sizeof(uint32_t); \
817 if (mask & 2) ND_PRINT(" owner %u", _i); \
818 _i = EXTRACT_BE_U_4(bp); bp += sizeof(uint32_t); \
819 if (mask & 4) ND_PRINT(" group %u", _i); \
820 _i = EXTRACT_BE_U_4(bp); bp += sizeof(uint32_t); \
821 if (mask & 8) ND_PRINT(" mode %o", _i & 07777); \
822 _i = EXTRACT_BE_U_4(bp); bp += sizeof(uint32_t); \
823 if (mask & 16) ND_PRINT(" segsize %u", _i); \
824 /* undocumented in 3.3 docu */ \
825 if (mask & 1024) ND_PRINT(" fsync"); \
826 }
827
828 #define UBIK_VERSIONOUT() {uint32_t epoch; uint32_t counter; \
829 ND_TCHECK_LEN(bp, sizeof(uint32_t) * 2); \
830 epoch = EXTRACT_BE_U_4(bp); \
831 bp += sizeof(uint32_t); \
832 counter = EXTRACT_BE_U_4(bp); \
833 bp += sizeof(uint32_t); \
834 ND_PRINT(" %u.%u", epoch, counter); \
835 }
836
837 #define AFSUUIDOUT() {uint32_t temp; int _i; \
838 ND_TCHECK_LEN(bp, 11 * sizeof(uint32_t)); \
839 temp = EXTRACT_BE_U_4(bp); \
840 bp += sizeof(uint32_t); \
841 ND_PRINT(" %08x", temp); \
842 temp = EXTRACT_BE_U_4(bp); \
843 bp += sizeof(uint32_t); \
844 ND_PRINT("%04x", temp); \
845 temp = EXTRACT_BE_U_4(bp); \
846 bp += sizeof(uint32_t); \
847 ND_PRINT("%04x", temp); \
848 for (_i = 0; _i < 8; _i++) { \
849 temp = EXTRACT_BE_U_4(bp); \
850 bp += sizeof(uint32_t); \
851 ND_PRINT("%02x", (unsigned char) temp); \
852 } \
853 }
854
855 /*
856 * This is the sickest one of all
857 */
858
859 #define VECOUT(MAX) { u_char *sp; \
860 u_char s[AFSNAMEMAX]; \
861 uint32_t k; \
862 if ((MAX) + 1 > sizeof(s)) \
863 goto trunc; \
864 ND_TCHECK_LEN(bp, (MAX) * sizeof(uint32_t)); \
865 sp = s; \
866 for (k = 0; k < (MAX); k++) { \
867 *sp++ = (u_char) EXTRACT_BE_U_4(bp); \
868 bp += sizeof(uint32_t); \
869 } \
870 s[(MAX)] = '\0'; \
871 ND_PRINT(" \""); \
872 fn_print(ndo, s, NULL); \
873 ND_PRINT("\""); \
874 }
875
876 #define DESTSERVEROUT() { uint32_t n1, n2, n3; \
877 ND_TCHECK_LEN(bp, sizeof(uint32_t) * 3); \
878 n1 = EXTRACT_BE_U_4(bp); \
879 bp += sizeof(uint32_t); \
880 n2 = EXTRACT_BE_U_4(bp); \
881 bp += sizeof(uint32_t); \
882 n3 = EXTRACT_BE_U_4(bp); \
883 bp += sizeof(uint32_t); \
884 ND_PRINT(" server %u:%u:%u", n1, n2, n3); \
885 }
886
887 /*
888 * Handle calls to the AFS file service (fs)
889 */
890
891 static void
892 fs_print(netdissect_options *ndo,
893 const u_char *bp, u_int length)
894 {
895 uint32_t fs_op;
896 uint32_t i;
897
898 if (length <= sizeof(struct rx_header))
899 return;
900
901 /*
902 * Print out the afs call we're invoking. The table used here was
903 * gleaned from fsint/afsint.xg
904 */
905
906 ND_TCHECK_4(bp + sizeof(struct rx_header));
907 fs_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
908
909 ND_PRINT(" fs call %s", tok2str(fs_req, "op#%u", fs_op));
910
911 /*
912 * Print out arguments to some of the AFS calls. This stuff is
913 * all from afsint.xg
914 */
915
916 bp += sizeof(struct rx_header) + 4;
917
918 /*
919 * Sigh. This is gross. Ritchie forgive me.
920 */
921
922 switch (fs_op) {
923 case 130: /* Fetch data */
924 FIDOUT();
925 ND_PRINT(" offset");
926 UINTOUT();
927 ND_PRINT(" length");
928 UINTOUT();
929 break;
930 case 131: /* Fetch ACL */
931 case 132: /* Fetch Status */
932 case 143: /* Old set lock */
933 case 144: /* Old extend lock */
934 case 145: /* Old release lock */
935 case 156: /* Set lock */
936 case 157: /* Extend lock */
937 case 158: /* Release lock */
938 FIDOUT();
939 break;
940 case 135: /* Store status */
941 FIDOUT();
942 STOREATTROUT();
943 break;
944 case 133: /* Store data */
945 FIDOUT();
946 STOREATTROUT();
947 ND_PRINT(" offset");
948 UINTOUT();
949 ND_PRINT(" length");
950 UINTOUT();
951 ND_PRINT(" flen");
952 UINTOUT();
953 break;
954 case 134: /* Store ACL */
955 {
956 char a[AFSOPAQUEMAX+1];
957 FIDOUT();
958 ND_TCHECK_4(bp);
959 i = EXTRACT_BE_U_4(bp);
960 bp += sizeof(uint32_t);
961 ND_TCHECK_LEN(bp, i);
962 i = min(AFSOPAQUEMAX, i);
963 strncpy(a, (const char *) bp, i);
964 a[i] = '\0';
965 acl_print(ndo, (u_char *) a, sizeof(a), (u_char *) a + i);
966 break;
967 }
968 case 137: /* Create file */
969 case 141: /* MakeDir */
970 FIDOUT();
971 STROUT(AFSNAMEMAX);
972 STOREATTROUT();
973 break;
974 case 136: /* Remove file */
975 case 142: /* Remove directory */
976 FIDOUT();
977 STROUT(AFSNAMEMAX);
978 break;
979 case 138: /* Rename file */
980 ND_PRINT(" old");
981 FIDOUT();
982 STROUT(AFSNAMEMAX);
983 ND_PRINT(" new");
984 FIDOUT();
985 STROUT(AFSNAMEMAX);
986 break;
987 case 139: /* Symlink */
988 FIDOUT();
989 STROUT(AFSNAMEMAX);
990 ND_PRINT(" link to");
991 STROUT(AFSNAMEMAX);
992 break;
993 case 140: /* Link */
994 FIDOUT();
995 STROUT(AFSNAMEMAX);
996 ND_PRINT(" link to");
997 FIDOUT();
998 break;
999 case 148: /* Get volume info */
1000 STROUT(AFSNAMEMAX);
1001 break;
1002 case 149: /* Get volume stats */
1003 case 150: /* Set volume stats */
1004 ND_PRINT(" volid");
1005 UINTOUT();
1006 break;
1007 case 154: /* New get volume info */
1008 ND_PRINT(" volname");
1009 STROUT(AFSNAMEMAX);
1010 break;
1011 case 155: /* Bulk stat */
1012 case 65536: /* Inline bulk stat */
1013 {
1014 uint32_t j;
1015 ND_TCHECK_4(bp);
1016 j = EXTRACT_BE_U_4(bp);
1017 bp += sizeof(uint32_t);
1018
1019 for (i = 0; i < j; i++) {
1020 FIDOUT();
1021 if (i != j - 1)
1022 ND_PRINT(",");
1023 }
1024 if (j == 0)
1025 ND_PRINT(" <none!>");
1026 }
1027 case 65537: /* Fetch data 64 */
1028 FIDOUT();
1029 ND_PRINT(" offset");
1030 UINT64OUT();
1031 ND_PRINT(" length");
1032 UINT64OUT();
1033 break;
1034 case 65538: /* Store data 64 */
1035 FIDOUT();
1036 STOREATTROUT();
1037 ND_PRINT(" offset");
1038 UINT64OUT();
1039 ND_PRINT(" length");
1040 UINT64OUT();
1041 ND_PRINT(" flen");
1042 UINT64OUT();
1043 break;
1044 case 65541: /* CallBack rx conn address */
1045 ND_PRINT(" addr");
1046 UINTOUT();
1047 default:
1048 ;
1049 }
1050
1051 return;
1052
1053 trunc:
1054 ND_PRINT(" [|fs]");
1055 }
1056
1057 /*
1058 * Handle replies to the AFS file service
1059 */
1060
1061 static void
1062 fs_reply_print(netdissect_options *ndo,
1063 const u_char *bp, u_int length, uint32_t opcode)
1064 {
1065 uint32_t i;
1066 const struct rx_header *rxh;
1067 uint8_t type;
1068
1069 if (length <= sizeof(struct rx_header))
1070 return;
1071
1072 rxh = (const struct rx_header *) bp;
1073
1074 /*
1075 * Print out the afs call we're invoking. The table used here was
1076 * gleaned from fsint/afsint.xg
1077 */
1078
1079 ND_PRINT(" fs reply %s", tok2str(fs_req, "op#%u", opcode));
1080
1081 type = EXTRACT_U_1(rxh->type);
1082 bp += sizeof(struct rx_header);
1083
1084 /*
1085 * If it was a data packet, interpret the response
1086 */
1087
1088 if (type == RX_PACKET_TYPE_DATA) {
1089 switch (opcode) {
1090 case 131: /* Fetch ACL */
1091 {
1092 char a[AFSOPAQUEMAX+1];
1093 ND_TCHECK_4(bp);
1094 i = EXTRACT_BE_U_4(bp);
1095 bp += sizeof(uint32_t);
1096 ND_TCHECK_LEN(bp, i);
1097 i = min(AFSOPAQUEMAX, i);
1098 strncpy(a, (const char *) bp, i);
1099 a[i] = '\0';
1100 acl_print(ndo, (u_char *) a, sizeof(a), (u_char *) a + i);
1101 break;
1102 }
1103 case 137: /* Create file */
1104 case 141: /* MakeDir */
1105 ND_PRINT(" new");
1106 FIDOUT();
1107 break;
1108 case 151: /* Get root volume */
1109 ND_PRINT(" root volume");
1110 STROUT(AFSNAMEMAX);
1111 break;
1112 case 153: /* Get time */
1113 DATEOUT();
1114 break;
1115 default:
1116 ;
1117 }
1118 } else if (type == RX_PACKET_TYPE_ABORT) {
1119 /*
1120 * Otherwise, just print out the return code
1121 */
1122 int32_t errcode;
1123
1124 ND_TCHECK_4(bp);
1125 errcode = EXTRACT_BE_S_4(bp);
1126 bp += sizeof(int32_t);
1127
1128 ND_PRINT(" error %s", tok2str(afs_fs_errors, "#%d", errcode));
1129 } else {
1130 ND_PRINT(" strange fs reply of type %u", type);
1131 }
1132
1133 return;
1134
1135 trunc:
1136 ND_PRINT(" [|fs]");
1137 }
1138
1139 /*
1140 * Print out an AFS ACL string. An AFS ACL is a string that has the
1141 * following format:
1142 *
1143 * <positive> <negative>
1144 * <uid1> <aclbits1>
1145 * ....
1146 *
1147 * "positive" and "negative" are integers which contain the number of
1148 * positive and negative ACL's in the string. The uid/aclbits pair are
1149 * ASCII strings containing the UID/PTS record and an ASCII number
1150 * representing a logical OR of all the ACL permission bits
1151 */
1152
1153 static void
1154 acl_print(netdissect_options *ndo,
1155 u_char *s, int maxsize, u_char *end)
1156 {
1157 int pos, neg, acl;
1158 int n, i;
1159 char *user;
1160 char fmt[1024];
1161
1162 if ((user = (char *)malloc(maxsize)) == NULL)
1163 (*ndo->ndo_error)(ndo, S_ERR_ND_MEM_ALLOC, "acl_print: malloc");
1164
1165 if (sscanf((char *) s, "%d %d\n%n", &pos, &neg, &n) != 2)
1166 goto finish;
1167
1168 s += n;
1169
1170 if (s > end)
1171 goto finish;
1172
1173 /*
1174 * This wacky order preserves the order used by the "fs" command
1175 */
1176
1177 #define ACLOUT(acl) \
1178 ND_PRINT("%s%s%s%s%s%s%s", \
1179 acl & PRSFS_READ ? "r" : "", \
1180 acl & PRSFS_LOOKUP ? "l" : "", \
1181 acl & PRSFS_INSERT ? "i" : "", \
1182 acl & PRSFS_DELETE ? "d" : "", \
1183 acl & PRSFS_WRITE ? "w" : "", \
1184 acl & PRSFS_LOCK ? "k" : "", \
1185 acl & PRSFS_ADMINISTER ? "a" : "");
1186
1187 for (i = 0; i < pos; i++) {
1188 nd_snprintf(fmt, sizeof(fmt), "%%%ds %%d\n%%n", maxsize - 1);
1189 if (sscanf((char *) s, fmt, user, &acl, &n) != 2)
1190 goto finish;
1191 s += n;
1192 ND_PRINT(" +{");
1193 fn_print(ndo, (u_char *)user, NULL);
1194 ND_PRINT(" ");
1195 ACLOUT(acl);
1196 ND_PRINT("}");
1197 if (s > end)
1198 goto finish;
1199 }
1200
1201 for (i = 0; i < neg; i++) {
1202 nd_snprintf(fmt, sizeof(fmt), "%%%ds %%d\n%%n", maxsize - 1);
1203 if (sscanf((char *) s, fmt, user, &acl, &n) != 2)
1204 goto finish;
1205 s += n;
1206 ND_PRINT(" -{");
1207 fn_print(ndo, (u_char *)user, NULL);
1208 ND_PRINT(" ");
1209 ACLOUT(acl);
1210 ND_PRINT("}");
1211 if (s > end)
1212 goto finish;
1213 }
1214
1215 finish:
1216 free(user);
1217 return;
1218 }
1219
1220 #undef ACLOUT
1221
1222 /*
1223 * Handle calls to the AFS callback service
1224 */
1225
1226 static void
1227 cb_print(netdissect_options *ndo,
1228 const u_char *bp, u_int length)
1229 {
1230 uint32_t cb_op;
1231 uint32_t i;
1232
1233 if (length <= sizeof(struct rx_header))
1234 return;
1235
1236 /*
1237 * Print out the afs call we're invoking. The table used here was
1238 * gleaned from fsint/afscbint.xg
1239 */
1240
1241 ND_TCHECK_4(bp + sizeof(struct rx_header));
1242 cb_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
1243
1244 ND_PRINT(" cb call %s", tok2str(cb_req, "op#%u", cb_op));
1245
1246 bp += sizeof(struct rx_header) + 4;
1247
1248 /*
1249 * Print out the afs call we're invoking. The table used here was
1250 * gleaned from fsint/afscbint.xg
1251 */
1252
1253 switch (cb_op) {
1254 case 204: /* Callback */
1255 {
1256 uint32_t j, t;
1257 ND_TCHECK_4(bp);
1258 j = EXTRACT_BE_U_4(bp);
1259 bp += sizeof(uint32_t);
1260
1261 for (i = 0; i < j; i++) {
1262 FIDOUT();
1263 if (i != j - 1)
1264 ND_PRINT(",");
1265 }
1266
1267 if (j == 0)
1268 ND_PRINT(" <none!>");
1269
1270 ND_TCHECK_4(bp);
1271 j = EXTRACT_BE_U_4(bp);
1272 bp += sizeof(uint32_t);
1273
1274 if (j != 0)
1275 ND_PRINT(";");
1276
1277 for (i = 0; i < j; i++) {
1278 ND_PRINT(" ver");
1279 INTOUT();
1280 ND_PRINT(" expires");
1281 DATEOUT();
1282 ND_TCHECK_4(bp);
1283 t = EXTRACT_BE_U_4(bp);
1284 bp += sizeof(uint32_t);
1285 tok2str(cb_types, "type %u", t);
1286 }
1287 }
1288 case 214: {
1289 ND_PRINT(" afsuuid");
1290 AFSUUIDOUT();
1291 break;
1292 }
1293 default:
1294 ;
1295 }
1296
1297 return;
1298
1299 trunc:
1300 ND_PRINT(" [|cb]");
1301 }
1302
1303 /*
1304 * Handle replies to the AFS Callback Service
1305 */
1306
1307 static void
1308 cb_reply_print(netdissect_options *ndo,
1309 const u_char *bp, u_int length, uint32_t opcode)
1310 {
1311 const struct rx_header *rxh;
1312 uint8_t type;
1313
1314 if (length <= sizeof(struct rx_header))
1315 return;
1316
1317 rxh = (const struct rx_header *) bp;
1318
1319 /*
1320 * Print out the afs call we're invoking. The table used here was
1321 * gleaned from fsint/afscbint.xg
1322 */
1323
1324 ND_PRINT(" cb reply %s", tok2str(cb_req, "op#%u", opcode));
1325
1326 type = EXTRACT_U_1(rxh->type);
1327 bp += sizeof(struct rx_header);
1328
1329 /*
1330 * If it was a data packet, interpret the response.
1331 */
1332
1333 if (type == RX_PACKET_TYPE_DATA)
1334 switch (opcode) {
1335 case 213: /* InitCallBackState3 */
1336 AFSUUIDOUT();
1337 break;
1338 default:
1339 ;
1340 }
1341 else {
1342 /*
1343 * Otherwise, just print out the return code
1344 */
1345 ND_PRINT(" errcode");
1346 INTOUT();
1347 }
1348
1349 return;
1350
1351 trunc:
1352 ND_PRINT(" [|cb]");
1353 }
1354
1355 /*
1356 * Handle calls to the AFS protection database server
1357 */
1358
1359 static void
1360 prot_print(netdissect_options *ndo,
1361 const u_char *bp, u_int length)
1362 {
1363 uint32_t i;
1364 uint32_t pt_op;
1365
1366 if (length <= sizeof(struct rx_header))
1367 return;
1368
1369 /*
1370 * Print out the afs call we're invoking. The table used here was
1371 * gleaned from ptserver/ptint.xg
1372 */
1373
1374 ND_TCHECK_4(bp + sizeof(struct rx_header));
1375 pt_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
1376
1377 ND_PRINT(" pt");
1378
1379 if (is_ubik(pt_op)) {
1380 ubik_print(ndo, bp);
1381 return;
1382 }
1383
1384 ND_PRINT(" call %s", tok2str(pt_req, "op#%u", pt_op));
1385
1386 /*
1387 * Decode some of the arguments to the PT calls
1388 */
1389
1390 bp += sizeof(struct rx_header) + 4;
1391
1392 switch (pt_op) {
1393 case 500: /* I New User */
1394 STROUT(PRNAMEMAX);
1395 ND_PRINT(" id");
1396 INTOUT();
1397 ND_PRINT(" oldid");
1398 INTOUT();
1399 break;
1400 case 501: /* Where is it */
1401 case 506: /* Delete */
1402 case 508: /* Get CPS */
1403 case 512: /* List entry */
1404 case 514: /* List elements */
1405 case 517: /* List owned */
1406 case 518: /* Get CPS2 */
1407 case 519: /* Get host CPS */
1408 case 530: /* List super groups */
1409 ND_PRINT(" id");
1410 INTOUT();
1411 break;
1412 case 502: /* Dump entry */
1413 ND_PRINT(" pos");
1414 INTOUT();
1415 break;
1416 case 503: /* Add to group */
1417 case 507: /* Remove from group */
1418 case 515: /* Is a member of? */
1419 ND_PRINT(" uid");
1420 INTOUT();
1421 ND_PRINT(" gid");
1422 INTOUT();
1423 break;
1424 case 504: /* Name to ID */
1425 {
1426 uint32_t j;
1427 ND_TCHECK_4(bp);
1428 j = EXTRACT_BE_U_4(bp);
1429 bp += sizeof(uint32_t);
1430
1431 /*
1432 * Who designed this chicken-shit protocol?
1433 *
1434 * Each character is stored as a 32-bit
1435 * integer!
1436 */
1437
1438 for (i = 0; i < j; i++) {
1439 VECOUT(PRNAMEMAX);
1440 }
1441 if (j == 0)
1442 ND_PRINT(" <none!>");
1443 }
1444 break;
1445 case 505: /* Id to name */
1446 {
1447 uint32_t j;
1448 ND_PRINT(" ids:");
1449 ND_TCHECK_4(bp);
1450 i = EXTRACT_BE_U_4(bp);
1451 bp += sizeof(uint32_t);
1452 for (j = 0; j < i; j++)
1453 INTOUT();
1454 if (j == 0)
1455 ND_PRINT(" <none!>");
1456 }
1457 break;
1458 case 509: /* New entry */
1459 STROUT(PRNAMEMAX);
1460 ND_PRINT(" flag");
1461 INTOUT();
1462 ND_PRINT(" oid");
1463 INTOUT();
1464 break;
1465 case 511: /* Set max */
1466 ND_PRINT(" id");
1467 INTOUT();
1468 ND_PRINT(" gflag");
1469 INTOUT();
1470 break;
1471 case 513: /* Change entry */
1472 ND_PRINT(" id");
1473 INTOUT();
1474 STROUT(PRNAMEMAX);
1475 ND_PRINT(" oldid");
1476 INTOUT();
1477 ND_PRINT(" newid");
1478 INTOUT();
1479 break;
1480 case 520: /* Update entry */
1481 ND_PRINT(" id");
1482 INTOUT();
1483 STROUT(PRNAMEMAX);
1484 break;
1485 default:
1486 ;
1487 }
1488
1489
1490 return;
1491
1492 trunc:
1493 ND_PRINT(" [|pt]");
1494 }
1495
1496 /*
1497 * Handle replies to the AFS protection service
1498 */
1499
1500 static void
1501 prot_reply_print(netdissect_options *ndo,
1502 const u_char *bp, u_int length, uint32_t opcode)
1503 {
1504 const struct rx_header *rxh;
1505 uint8_t type;
1506 uint32_t i;
1507
1508 if (length < sizeof(struct rx_header))
1509 return;
1510
1511 rxh = (const struct rx_header *) bp;
1512
1513 /*
1514 * Print out the afs call we're invoking. The table used here was
1515 * gleaned from ptserver/ptint.xg. Check to see if it's a
1516 * Ubik call, however.
1517 */
1518
1519 ND_PRINT(" pt");
1520
1521 if (is_ubik(opcode)) {
1522 ubik_reply_print(ndo, bp, length, opcode);
1523 return;
1524 }
1525
1526 ND_PRINT(" reply %s", tok2str(pt_req, "op#%u", opcode));
1527
1528 type = EXTRACT_U_1(rxh->type);
1529 bp += sizeof(struct rx_header);
1530
1531 /*
1532 * If it was a data packet, interpret the response
1533 */
1534
1535 if (type == RX_PACKET_TYPE_DATA)
1536 switch (opcode) {
1537 case 504: /* Name to ID */
1538 {
1539 uint32_t j;
1540 ND_PRINT(" ids:");
1541 ND_TCHECK_4(bp);
1542 i = EXTRACT_BE_U_4(bp);
1543 bp += sizeof(uint32_t);
1544 for (j = 0; j < i; j++)
1545 INTOUT();
1546 if (j == 0)
1547 ND_PRINT(" <none!>");
1548 }
1549 break;
1550 case 505: /* ID to name */
1551 {
1552 uint32_t j;
1553 ND_TCHECK_4(bp);
1554 j = EXTRACT_BE_U_4(bp);
1555 bp += sizeof(uint32_t);
1556
1557 /*
1558 * Who designed this chicken-shit protocol?
1559 *
1560 * Each character is stored as a 32-bit
1561 * integer!
1562 */
1563
1564 for (i = 0; i < j; i++) {
1565 VECOUT(PRNAMEMAX);
1566 }
1567 if (j == 0)
1568 ND_PRINT(" <none!>");
1569 }
1570 break;
1571 case 508: /* Get CPS */
1572 case 514: /* List elements */
1573 case 517: /* List owned */
1574 case 518: /* Get CPS2 */
1575 case 519: /* Get host CPS */
1576 {
1577 uint32_t j;
1578 ND_TCHECK_4(bp);
1579 j = EXTRACT_BE_U_4(bp);
1580 bp += sizeof(uint32_t);
1581 for (i = 0; i < j; i++) {
1582 INTOUT();
1583 }
1584 if (j == 0)
1585 ND_PRINT(" <none!>");
1586 }
1587 break;
1588 case 510: /* List max */
1589 ND_PRINT(" maxuid");
1590 INTOUT();
1591 ND_PRINT(" maxgid");
1592 INTOUT();
1593 break;
1594 default:
1595 ;
1596 }
1597 else {
1598 /*
1599 * Otherwise, just print out the return code
1600 */
1601 ND_PRINT(" errcode");
1602 INTOUT();
1603 }
1604
1605 return;
1606
1607 trunc:
1608 ND_PRINT(" [|pt]");
1609 }
1610
1611 /*
1612 * Handle calls to the AFS volume location database service
1613 */
1614
1615 static void
1616 vldb_print(netdissect_options *ndo,
1617 const u_char *bp, u_int length)
1618 {
1619 uint32_t vldb_op;
1620 uint32_t i;
1621
1622 if (length <= sizeof(struct rx_header))
1623 return;
1624
1625 /*
1626 * Print out the afs call we're invoking. The table used here was
1627 * gleaned from vlserver/vldbint.xg
1628 */
1629
1630 ND_TCHECK_4(bp + sizeof(struct rx_header));
1631 vldb_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
1632
1633 ND_PRINT(" vldb");
1634
1635 if (is_ubik(vldb_op)) {
1636 ubik_print(ndo, bp);
1637 return;
1638 }
1639 ND_PRINT(" call %s", tok2str(vldb_req, "op#%u", vldb_op));
1640
1641 /*
1642 * Decode some of the arguments to the VLDB calls
1643 */
1644
1645 bp += sizeof(struct rx_header) + 4;
1646
1647 switch (vldb_op) {
1648 case 501: /* Create new volume */
1649 case 517: /* Create entry N */
1650 VECOUT(VLNAMEMAX);
1651 break;
1652 case 502: /* Delete entry */
1653 case 503: /* Get entry by ID */
1654 case 507: /* Update entry */
1655 case 508: /* Set lock */
1656 case 509: /* Release lock */
1657 case 518: /* Get entry by ID N */
1658 ND_PRINT(" volid");
1659 INTOUT();
1660 ND_TCHECK_4(bp);
1661 i = EXTRACT_BE_U_4(bp);
1662 bp += sizeof(uint32_t);
1663 if (i <= 2)
1664 ND_PRINT(" type %s", voltype[i]);
1665 break;
1666 case 504: /* Get entry by name */
1667 case 519: /* Get entry by name N */
1668 case 524: /* Update entry by name */
1669 case 527: /* Get entry by name U */
1670 STROUT(VLNAMEMAX);
1671 break;
1672 case 505: /* Get new vol id */
1673 ND_PRINT(" bump");
1674 INTOUT();
1675 break;
1676 case 506: /* Replace entry */
1677 case 520: /* Replace entry N */
1678 ND_PRINT(" volid");
1679 INTOUT();
1680 ND_TCHECK_4(bp);
1681 i = EXTRACT_BE_U_4(bp);
1682 bp += sizeof(uint32_t);
1683 if (i <= 2)
1684 ND_PRINT(" type %s", voltype[i]);
1685 VECOUT(VLNAMEMAX);
1686 break;
1687 case 510: /* List entry */
1688 case 521: /* List entry N */
1689 ND_PRINT(" index");
1690 INTOUT();
1691 break;
1692 default:
1693 ;
1694 }
1695
1696 return;
1697
1698 trunc:
1699 ND_PRINT(" [|vldb]");
1700 }
1701
1702 /*
1703 * Handle replies to the AFS volume location database service
1704 */
1705
1706 static void
1707 vldb_reply_print(netdissect_options *ndo,
1708 const u_char *bp, u_int length, uint32_t opcode)
1709 {
1710 const struct rx_header *rxh;
1711 uint8_t type;
1712 uint32_t i;
1713
1714 if (length < sizeof(struct rx_header))
1715 return;
1716
1717 rxh = (const struct rx_header *) bp;
1718
1719 /*
1720 * Print out the afs call we're invoking. The table used here was
1721 * gleaned from vlserver/vldbint.xg. Check to see if it's a
1722 * Ubik call, however.
1723 */
1724
1725 ND_PRINT(" vldb");
1726
1727 if (is_ubik(opcode)) {
1728 ubik_reply_print(ndo, bp, length, opcode);
1729 return;
1730 }
1731
1732 ND_PRINT(" reply %s", tok2str(vldb_req, "op#%u", opcode));
1733
1734 type = EXTRACT_U_1(rxh->type);
1735 bp += sizeof(struct rx_header);
1736
1737 /*
1738 * If it was a data packet, interpret the response
1739 */
1740
1741 if (type == RX_PACKET_TYPE_DATA)
1742 switch (opcode) {
1743 case 510: /* List entry */
1744 ND_PRINT(" count");
1745 INTOUT();
1746 ND_PRINT(" nextindex");
1747 INTOUT();
1748 case 503: /* Get entry by id */
1749 case 504: /* Get entry by name */
1750 { uint32_t nservers, j;
1751 VECOUT(VLNAMEMAX);
1752 ND_TCHECK_4(bp);
1753 bp += sizeof(uint32_t);
1754 ND_PRINT(" numservers");
1755 ND_TCHECK_4(bp);
1756 nservers = EXTRACT_BE_U_4(bp);
1757 bp += sizeof(uint32_t);
1758 ND_PRINT(" %u", nservers);
1759 ND_PRINT(" servers");
1760 for (i = 0; i < 8; i++) {
1761 ND_TCHECK_4(bp);
1762 if (i < nservers)
1763 ND_PRINT(" %s",
1764 intoa(EXTRACT_IPV4_TO_NETWORK_ORDER(bp)));
1765 bp += sizeof(nd_ipv4);
1766 }
1767 ND_PRINT(" partitions");
1768 for (i = 0; i < 8; i++) {
1769 ND_TCHECK_4(bp);
1770 j = EXTRACT_BE_U_4(bp);
1771 if (i < nservers && j <= 26)
1772 ND_PRINT(" %c", 'a' + j);
1773 else if (i < nservers)
1774 ND_PRINT(" %u", j);
1775 bp += sizeof(uint32_t);
1776 }
1777 ND_TCHECK_LEN(bp, 8 * sizeof(uint32_t));
1778 bp += 8 * sizeof(uint32_t);
1779 ND_PRINT(" rwvol");
1780 UINTOUT();
1781 ND_PRINT(" rovol");
1782 UINTOUT();
1783 ND_PRINT(" backup");
1784 UINTOUT();
1785 }
1786 break;
1787 case 505: /* Get new volume ID */
1788 ND_PRINT(" newvol");
1789 UINTOUT();
1790 break;
1791 case 521: /* List entry */
1792 case 529: /* List entry U */
1793 ND_PRINT(" count");
1794 INTOUT();
1795 ND_PRINT(" nextindex");
1796 INTOUT();
1797 case 518: /* Get entry by ID N */
1798 case 519: /* Get entry by name N */
1799 { uint32_t nservers, j;
1800 VECOUT(VLNAMEMAX);
1801 ND_PRINT(" numservers");
1802 ND_TCHECK_4(bp);
1803 nservers = EXTRACT_BE_U_4(bp);
1804 bp += sizeof(uint32_t);
1805 ND_PRINT(" %u", nservers);
1806 ND_PRINT(" servers");
1807 for (i = 0; i < 13; i++) {
1808 ND_TCHECK_4(bp);
1809 if (i < nservers)
1810 ND_PRINT(" %s",
1811 intoa(EXTRACT_IPV4_TO_NETWORK_ORDER(bp)));
1812 bp += sizeof(nd_ipv4);
1813 }
1814 ND_PRINT(" partitions");
1815 for (i = 0; i < 13; i++) {
1816 ND_TCHECK_4(bp);
1817 j = EXTRACT_BE_U_4(bp);
1818 if (i < nservers && j <= 26)
1819 ND_PRINT(" %c", 'a' + j);
1820 else if (i < nservers)
1821 ND_PRINT(" %u", j);
1822 bp += sizeof(uint32_t);
1823 }
1824 ND_TCHECK_LEN(bp, 13 * sizeof(uint32_t));
1825 bp += 13 * sizeof(uint32_t);
1826 ND_PRINT(" rwvol");
1827 UINTOUT();
1828 ND_PRINT(" rovol");
1829 UINTOUT();
1830 ND_PRINT(" backup");
1831 UINTOUT();
1832 }
1833 break;
1834 case 526: /* Get entry by ID U */
1835 case 527: /* Get entry by name U */
1836 { uint32_t nservers, j;
1837 VECOUT(VLNAMEMAX);
1838 ND_PRINT(" numservers");
1839 ND_TCHECK_4(bp);
1840 nservers = EXTRACT_BE_U_4(bp);
1841 bp += sizeof(uint32_t);
1842 ND_PRINT(" %u", nservers);
1843 ND_PRINT(" servers");
1844 for (i = 0; i < 13; i++) {
1845 if (i < nservers) {
1846 ND_PRINT(" afsuuid");
1847 AFSUUIDOUT();
1848 } else {
1849 ND_TCHECK_LEN(bp, 44);
1850 bp += 44;
1851 }
1852 }
1853 ND_TCHECK_LEN(bp, 4 * 13);
1854 bp += 4 * 13;
1855 ND_PRINT(" partitions");
1856 for (i = 0; i < 13; i++) {
1857 ND_TCHECK_4(bp);
1858 j = EXTRACT_BE_U_4(bp);
1859 if (i < nservers && j <= 26)
1860 ND_PRINT(" %c", 'a' + j);
1861 else if (i < nservers)
1862 ND_PRINT(" %u", j);
1863 bp += sizeof(uint32_t);
1864 }
1865 ND_TCHECK_LEN(bp, 13 * sizeof(uint32_t));
1866 bp += 13 * sizeof(uint32_t);
1867 ND_PRINT(" rwvol");
1868 UINTOUT();
1869 ND_PRINT(" rovol");
1870 UINTOUT();
1871 ND_PRINT(" backup");
1872 UINTOUT();
1873 }
1874 default:
1875 ;
1876 }
1877
1878 else {
1879 /*
1880 * Otherwise, just print out the return code
1881 */
1882 ND_PRINT(" errcode");
1883 INTOUT();
1884 }
1885
1886 return;
1887
1888 trunc:
1889 ND_PRINT(" [|vldb]");
1890 }
1891
1892 /*
1893 * Handle calls to the AFS Kerberos Authentication service
1894 */
1895
1896 static void
1897 kauth_print(netdissect_options *ndo,
1898 const u_char *bp, u_int length)
1899 {
1900 uint32_t kauth_op;
1901
1902 if (length <= sizeof(struct rx_header))
1903 return;
1904
1905 /*
1906 * Print out the afs call we're invoking. The table used here was
1907 * gleaned from kauth/kauth.rg
1908 */
1909
1910 ND_TCHECK_4(bp + sizeof(struct rx_header));
1911 kauth_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
1912
1913 ND_PRINT(" kauth");
1914
1915 if (is_ubik(kauth_op)) {
1916 ubik_print(ndo, bp);
1917 return;
1918 }
1919
1920
1921 ND_PRINT(" call %s", tok2str(kauth_req, "op#%u", kauth_op));
1922
1923 /*
1924 * Decode some of the arguments to the KA calls
1925 */
1926
1927 bp += sizeof(struct rx_header) + 4;
1928
1929 switch (kauth_op) {
1930 case 1: /* Authenticate old */
1931 case 21: /* Authenticate */
1932 case 22: /* Authenticate-V2 */
1933 case 2: /* Change PW */
1934 case 5: /* Set fields */
1935 case 6: /* Create user */
1936 case 7: /* Delete user */
1937 case 8: /* Get entry */
1938 case 14: /* Unlock */
1939 case 15: /* Lock status */
1940 ND_PRINT(" principal");
1941 STROUT(KANAMEMAX);
1942 STROUT(KANAMEMAX);
1943 break;
1944 case 3: /* GetTicket-old */
1945 case 23: /* GetTicket */
1946 {
1947 uint32_t i;
1948 ND_PRINT(" kvno");
1949 INTOUT();
1950 ND_PRINT(" domain");
1951 STROUT(KANAMEMAX);
1952 ND_TCHECK_4(bp);
1953 i = EXTRACT_BE_U_4(bp);
1954 bp += sizeof(uint32_t);
1955 ND_TCHECK_LEN(bp, i);
1956 bp += i;
1957 ND_PRINT(" principal");
1958 STROUT(KANAMEMAX);
1959 STROUT(KANAMEMAX);
1960 break;
1961 }
1962 case 4: /* Set Password */
1963 ND_PRINT(" principal");
1964 STROUT(KANAMEMAX);
1965 STROUT(KANAMEMAX);
1966 ND_PRINT(" kvno");
1967 INTOUT();
1968 break;
1969 case 12: /* Get password */
1970 ND_PRINT(" name");
1971 STROUT(KANAMEMAX);
1972 break;
1973 default:
1974 ;
1975 }
1976
1977 return;
1978
1979 trunc:
1980 ND_PRINT(" [|kauth]");
1981 }
1982
1983 /*
1984 * Handle replies to the AFS Kerberos Authentication Service
1985 */
1986
1987 static void
1988 kauth_reply_print(netdissect_options *ndo,
1989 const u_char *bp, u_int length, uint32_t opcode)
1990 {
1991 const struct rx_header *rxh;
1992 uint8_t type;
1993
1994 if (length <= sizeof(struct rx_header))
1995 return;
1996
1997 rxh = (const struct rx_header *) bp;
1998
1999 /*
2000 * Print out the afs call we're invoking. The table used here was
2001 * gleaned from kauth/kauth.rg
2002 */
2003
2004 ND_PRINT(" kauth");
2005
2006 if (is_ubik(opcode)) {
2007 ubik_reply_print(ndo, bp, length, opcode);
2008 return;
2009 }
2010
2011 ND_PRINT(" reply %s", tok2str(kauth_req, "op#%u", opcode));
2012
2013 type = EXTRACT_U_1(rxh->type);
2014 bp += sizeof(struct rx_header);
2015
2016 /*
2017 * If it was a data packet, interpret the response.
2018 */
2019
2020 if (type == RX_PACKET_TYPE_DATA)
2021 /* Well, no, not really. Leave this for later */
2022 ;
2023 else {
2024 /*
2025 * Otherwise, just print out the return code
2026 */
2027 ND_PRINT(" errcode");
2028 INTOUT();
2029 }
2030
2031 return;
2032
2033 trunc:
2034 ND_PRINT(" [|kauth]");
2035 }
2036
2037 /*
2038 * Handle calls to the AFS Volume location service
2039 */
2040
2041 static void
2042 vol_print(netdissect_options *ndo,
2043 const u_char *bp, u_int length)
2044 {
2045 uint32_t vol_op;
2046
2047 if (length <= sizeof(struct rx_header))
2048 return;
2049
2050 /*
2051 * Print out the afs call we're invoking. The table used here was
2052 * gleaned from volser/volint.xg
2053 */
2054
2055 ND_TCHECK_4(bp + sizeof(struct rx_header));
2056 vol_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
2057
2058 ND_PRINT(" vol call %s", tok2str(vol_req, "op#%u", vol_op));
2059
2060 bp += sizeof(struct rx_header) + 4;
2061
2062 switch (vol_op) {
2063 case 100: /* Create volume */
2064 ND_PRINT(" partition");
2065 UINTOUT();
2066 ND_PRINT(" name");
2067 STROUT(AFSNAMEMAX);
2068 ND_PRINT(" type");
2069 UINTOUT();
2070 ND_PRINT(" parent");
2071 UINTOUT();
2072 break;
2073 case 101: /* Delete volume */
2074 case 107: /* Get flags */
2075 ND_PRINT(" trans");
2076 UINTOUT();
2077 break;
2078 case 102: /* Restore */
2079 ND_PRINT(" totrans");
2080 UINTOUT();
2081 ND_PRINT(" flags");
2082 UINTOUT();
2083 break;
2084 case 103: /* Forward */
2085 ND_PRINT(" fromtrans");
2086 UINTOUT();
2087 ND_PRINT(" fromdate");
2088 DATEOUT();
2089 DESTSERVEROUT();
2090 ND_PRINT(" desttrans");
2091 INTOUT();
2092 break;
2093 case 104: /* End trans */
2094 ND_PRINT(" trans");
2095 UINTOUT();
2096 break;
2097 case 105: /* Clone */
2098 ND_PRINT(" trans");
2099 UINTOUT();
2100 ND_PRINT(" purgevol");
2101 UINTOUT();
2102 ND_PRINT(" newtype");
2103 UINTOUT();
2104 ND_PRINT(" newname");
2105 STROUT(AFSNAMEMAX);
2106 break;
2107 case 106: /* Set flags */
2108 ND_PRINT(" trans");
2109 UINTOUT();
2110 ND_PRINT(" flags");
2111 UINTOUT();
2112 break;
2113 case 108: /* Trans create */
2114 ND_PRINT(" vol");
2115 UINTOUT();
2116 ND_PRINT(" partition");
2117 UINTOUT();
2118 ND_PRINT(" flags");
2119 UINTOUT();
2120 break;
2121 case 109: /* Dump */
2122 case 655537: /* Get size */
2123 ND_PRINT(" fromtrans");
2124 UINTOUT();
2125 ND_PRINT(" fromdate");
2126 DATEOUT();
2127 break;
2128 case 110: /* Get n-th volume */
2129 ND_PRINT(" index");
2130 UINTOUT();
2131 break;
2132 case 111: /* Set forwarding */
2133 ND_PRINT(" tid");
2134 UINTOUT();
2135 ND_PRINT(" newsite");
2136 UINTOUT();
2137 break;
2138 case 112: /* Get name */
2139 case 113: /* Get status */
2140 ND_PRINT(" tid");
2141 break;
2142 case 114: /* Signal restore */
2143 ND_PRINT(" name");
2144 STROUT(AFSNAMEMAX);
2145 ND_PRINT(" type");
2146 UINTOUT();
2147 ND_PRINT(" pid");
2148 UINTOUT();
2149 ND_PRINT(" cloneid");
2150 UINTOUT();
2151 break;
2152 case 116: /* List volumes */
2153 ND_PRINT(" partition");
2154 UINTOUT();
2155 ND_PRINT(" flags");
2156 UINTOUT();
2157 break;
2158 case 117: /* Set id types */
2159 ND_PRINT(" tid");
2160 UINTOUT();
2161 ND_PRINT(" name");
2162 STROUT(AFSNAMEMAX);
2163 ND_PRINT(" type");
2164 UINTOUT();
2165 ND_PRINT(" pid");
2166 UINTOUT();
2167 ND_PRINT(" clone");
2168 UINTOUT();
2169 ND_PRINT(" backup");
2170 UINTOUT();
2171 break;
2172 case 119: /* Partition info */
2173 ND_PRINT(" name");
2174 STROUT(AFSNAMEMAX);
2175 break;
2176 case 120: /* Reclone */
2177 ND_PRINT(" tid");
2178 UINTOUT();
2179 break;
2180 case 121: /* List one volume */
2181 case 122: /* Nuke volume */
2182 case 124: /* Extended List volumes */
2183 case 125: /* Extended List one volume */
2184 case 65536: /* Convert RO to RW volume */
2185 ND_PRINT(" partid");
2186 UINTOUT();
2187 ND_PRINT(" volid");
2188 UINTOUT();
2189 break;
2190 case 123: /* Set date */
2191 ND_PRINT(" tid");
2192 UINTOUT();
2193 ND_PRINT(" date");
2194 DATEOUT();
2195 break;
2196 case 126: /* Set info */
2197 ND_PRINT(" tid");
2198 UINTOUT();
2199 break;
2200 case 128: /* Forward multiple */
2201 ND_PRINT(" fromtrans");
2202 UINTOUT();
2203 ND_PRINT(" fromdate");
2204 DATEOUT();
2205 {
2206 uint32_t i, j;
2207 ND_TCHECK_4(bp);
2208 j = EXTRACT_BE_U_4(bp);
2209 bp += sizeof(uint32_t);
2210 for (i = 0; i < j; i++) {
2211 DESTSERVEROUT();
2212 if (i != j - 1)
2213 ND_PRINT(",");
2214 }
2215 if (j == 0)
2216 ND_PRINT(" <none!>");
2217 }
2218 break;
2219 case 65538: /* Dump version 2 */
2220 ND_PRINT(" fromtrans");
2221 UINTOUT();
2222 ND_PRINT(" fromdate");
2223 DATEOUT();
2224 ND_PRINT(" flags");
2225 UINTOUT();
2226 break;
2227 default:
2228 ;
2229 }
2230 return;
2231
2232 trunc:
2233 ND_PRINT(" [|vol]");
2234 }
2235
2236 /*
2237 * Handle replies to the AFS Volume Service
2238 */
2239
2240 static void
2241 vol_reply_print(netdissect_options *ndo,
2242 const u_char *bp, u_int length, uint32_t opcode)
2243 {
2244 const struct rx_header *rxh;
2245 uint8_t type;
2246
2247 if (length <= sizeof(struct rx_header))
2248 return;
2249
2250 rxh = (const struct rx_header *) bp;
2251
2252 /*
2253 * Print out the afs call we're invoking. The table used here was
2254 * gleaned from volser/volint.xg
2255 */
2256
2257 ND_PRINT(" vol reply %s", tok2str(vol_req, "op#%u", opcode));
2258
2259 type = EXTRACT_U_1(rxh->type);
2260 bp += sizeof(struct rx_header);
2261
2262 /*
2263 * If it was a data packet, interpret the response.
2264 */
2265
2266 if (type == RX_PACKET_TYPE_DATA) {
2267 switch (opcode) {
2268 case 100: /* Create volume */
2269 ND_PRINT(" volid");
2270 UINTOUT();
2271 ND_PRINT(" trans");
2272 UINTOUT();
2273 break;
2274 case 104: /* End transaction */
2275 UINTOUT();
2276 break;
2277 case 105: /* Clone */
2278 ND_PRINT(" newvol");
2279 UINTOUT();
2280 break;
2281 case 107: /* Get flags */
2282 UINTOUT();
2283 break;
2284 case 108: /* Transaction create */
2285 ND_PRINT(" trans");
2286 UINTOUT();
2287 break;
2288 case 110: /* Get n-th volume */
2289 ND_PRINT(" volume");
2290 UINTOUT();
2291 ND_PRINT(" partition");
2292 UINTOUT();
2293 break;
2294 case 112: /* Get name */
2295 STROUT(AFSNAMEMAX);
2296 break;
2297 case 113: /* Get status */
2298 ND_PRINT(" volid");
2299 UINTOUT();
2300 ND_PRINT(" nextuniq");
2301 UINTOUT();
2302 ND_PRINT(" type");
2303 UINTOUT();
2304 ND_PRINT(" parentid");
2305 UINTOUT();
2306 ND_PRINT(" clone");
2307 UINTOUT();
2308 ND_PRINT(" backup");
2309 UINTOUT();
2310 ND_PRINT(" restore");
2311 UINTOUT();
2312 ND_PRINT(" maxquota");
2313 UINTOUT();
2314 ND_PRINT(" minquota");
2315 UINTOUT();
2316 ND_PRINT(" owner");
2317 UINTOUT();
2318 ND_PRINT(" create");
2319 DATEOUT();
2320 ND_PRINT(" access");
2321 DATEOUT();
2322 ND_PRINT(" update");
2323 DATEOUT();
2324 ND_PRINT(" expire");
2325 DATEOUT();
2326 ND_PRINT(" backup");
2327 DATEOUT();
2328 ND_PRINT(" copy");
2329 DATEOUT();
2330 break;
2331 case 115: /* Old list partitions */
2332 break;
2333 case 116: /* List volumes */
2334 case 121: /* List one volume */
2335 {
2336 uint32_t i, j;
2337 ND_TCHECK_4(bp);
2338 j = EXTRACT_BE_U_4(bp);
2339 bp += sizeof(uint32_t);
2340 for (i = 0; i < j; i++) {
2341 ND_PRINT(" name");
2342 VECOUT(32);
2343 ND_PRINT(" volid");
2344 UINTOUT();
2345 ND_PRINT(" type");
2346 bp += sizeof(uint32_t) * 21;
2347 if (i != j - 1)
2348 ND_PRINT(",");
2349 }
2350 if (j == 0)
2351 ND_PRINT(" <none!>");
2352 }
2353 break;
2354
2355
2356 default:
2357 ;
2358 }
2359 } else {
2360 /*
2361 * Otherwise, just print out the return code
2362 */
2363 ND_PRINT(" errcode");
2364 INTOUT();
2365 }
2366
2367 return;
2368
2369 trunc:
2370 ND_PRINT(" [|vol]");
2371 }
2372
2373 /*
2374 * Handle calls to the AFS BOS service
2375 */
2376
2377 static void
2378 bos_print(netdissect_options *ndo,
2379 const u_char *bp, u_int length)
2380 {
2381 uint32_t bos_op;
2382
2383 if (length <= sizeof(struct rx_header))
2384 return;
2385
2386 /*
2387 * Print out the afs call we're invoking. The table used here was
2388 * gleaned from bozo/bosint.xg
2389 */
2390
2391 ND_TCHECK_4(bp + sizeof(struct rx_header));
2392 bos_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
2393
2394 ND_PRINT(" bos call %s", tok2str(bos_req, "op#%u", bos_op));
2395
2396 /*
2397 * Decode some of the arguments to the BOS calls
2398 */
2399
2400 bp += sizeof(struct rx_header) + 4;
2401
2402 switch (bos_op) {
2403 case 80: /* Create B node */
2404 ND_PRINT(" type");
2405 STROUT(BOSNAMEMAX);
2406 ND_PRINT(" instance");
2407 STROUT(BOSNAMEMAX);
2408 break;
2409 case 81: /* Delete B node */
2410 case 83: /* Get status */
2411 case 85: /* Get instance info */
2412 case 87: /* Add super user */
2413 case 88: /* Delete super user */
2414 case 93: /* Set cell name */
2415 case 96: /* Add cell host */
2416 case 97: /* Delete cell host */
2417 case 104: /* Restart */
2418 case 106: /* Uninstall */
2419 case 108: /* Exec */
2420 case 112: /* Getlog */
2421 case 114: /* Get instance strings */
2422 STROUT(BOSNAMEMAX);
2423 break;
2424 case 82: /* Set status */
2425 case 98: /* Set T status */
2426 STROUT(BOSNAMEMAX);
2427 ND_PRINT(" status");
2428 INTOUT();
2429 break;
2430 case 86: /* Get instance parm */
2431 STROUT(BOSNAMEMAX);
2432 ND_PRINT(" num");
2433 INTOUT();
2434 break;
2435 case 84: /* Enumerate instance */
2436 case 89: /* List super users */
2437 case 90: /* List keys */
2438 case 91: /* Add key */
2439 case 92: /* Delete key */
2440 case 95: /* Get cell host */
2441 INTOUT();
2442 break;
2443 case 105: /* Install */
2444 STROUT(BOSNAMEMAX);
2445 ND_PRINT(" size");
2446 INTOUT();
2447 ND_PRINT(" flags");
2448 INTOUT();
2449 ND_PRINT(" date");
2450 INTOUT();
2451 break;
2452 default:
2453 ;
2454 }
2455
2456 return;
2457
2458 trunc:
2459 ND_PRINT(" [|bos]");
2460 }
2461
2462 /*
2463 * Handle replies to the AFS BOS Service
2464 */
2465
2466 static void
2467 bos_reply_print(netdissect_options *ndo,
2468 const u_char *bp, u_int length, uint32_t opcode)
2469 {
2470 const struct rx_header *rxh;
2471 uint8_t type;
2472
2473 if (length <= sizeof(struct rx_header))
2474 return;
2475
2476 rxh = (const struct rx_header *) bp;
2477
2478 /*
2479 * Print out the afs call we're invoking. The table used here was
2480 * gleaned from volser/volint.xg
2481 */
2482
2483 ND_PRINT(" bos reply %s", tok2str(bos_req, "op#%u", opcode));
2484
2485 type = EXTRACT_U_1(rxh->type);
2486 bp += sizeof(struct rx_header);
2487
2488 /*
2489 * If it was a data packet, interpret the response.
2490 */
2491
2492 if (type == RX_PACKET_TYPE_DATA)
2493 /* Well, no, not really. Leave this for later */
2494 ;
2495 else {
2496 /*
2497 * Otherwise, just print out the return code
2498 */
2499 ND_PRINT(" errcode");
2500 INTOUT();
2501 }
2502
2503 return;
2504
2505 trunc:
2506 ND_PRINT(" [|bos]");
2507 }
2508
2509 /*
2510 * Check to see if this is a Ubik opcode.
2511 */
2512
2513 static int
2514 is_ubik(uint32_t opcode)
2515 {
2516 if ((opcode >= VOTE_LOW && opcode <= VOTE_HIGH) ||
2517 (opcode >= DISK_LOW && opcode <= DISK_HIGH))
2518 return(1);
2519 else
2520 return(0);
2521 }
2522
2523 /*
2524 * Handle Ubik opcodes to any one of the replicated database services
2525 */
2526
2527 static void
2528 ubik_print(netdissect_options *ndo,
2529 const u_char *bp)
2530 {
2531 uint32_t ubik_op;
2532 uint32_t temp;
2533
2534 /*
2535 * Print out the afs call we're invoking. The table used here was
2536 * gleaned from ubik/ubik_int.xg
2537 */
2538
2539 /* Every function that calls this function first makes a bounds check
2540 * for (sizeof(rx_header) + 4) bytes, so long as it remains this way
2541 * the line below will not over-read.
2542 */
2543 ubik_op = EXTRACT_BE_U_4(bp + sizeof(struct rx_header));
2544
2545 ND_PRINT(" ubik call %s", tok2str(ubik_req, "op#%u", ubik_op));
2546
2547 /*
2548 * Decode some of the arguments to the Ubik calls
2549 */
2550
2551 bp += sizeof(struct rx_header) + 4;
2552
2553 switch (ubik_op) {
2554 case 10000: /* Beacon */
2555 ND_TCHECK_4(bp);
2556 temp = EXTRACT_BE_U_4(bp);
2557 bp += sizeof(uint32_t);
2558 ND_PRINT(" syncsite %s", temp ? "yes" : "no");
2559 ND_PRINT(" votestart");
2560 DATEOUT();
2561 ND_PRINT(" dbversion");
2562 UBIK_VERSIONOUT();
2563 ND_PRINT(" tid");
2564 UBIK_VERSIONOUT();
2565 break;
2566 case 10003: /* Get sync site */
2567 ND_PRINT(" site");
2568 UINTOUT();
2569 break;
2570 case 20000: /* Begin */
2571 case 20001: /* Commit */
2572 case 20007: /* Abort */
2573 case 20008: /* Release locks */
2574 case 20010: /* Writev */
2575 ND_PRINT(" tid");
2576 UBIK_VERSIONOUT();
2577 break;
2578 case 20002: /* Lock */
2579 ND_PRINT(" tid");
2580 UBIK_VERSIONOUT();
2581 ND_PRINT(" file");
2582 INTOUT();
2583 ND_PRINT(" pos");
2584 INTOUT();
2585 ND_PRINT(" length");
2586 INTOUT();
2587 ND_TCHECK_4(bp);
2588 temp = EXTRACT_BE_U_4(bp);
2589 bp += sizeof(uint32_t);
2590 tok2str(ubik_lock_types, "type %u", temp);
2591 break;
2592 case 20003: /* Write */
2593 ND_PRINT(" tid");
2594 UBIK_VERSIONOUT();
2595 ND_PRINT(" file");
2596 INTOUT();
2597 ND_PRINT(" pos");
2598 INTOUT();
2599 break;
2600 case 20005: /* Get file */
2601 ND_PRINT(" file");
2602 INTOUT();
2603 break;
2604 case 20006: /* Send file */
2605 ND_PRINT(" file");
2606 INTOUT();
2607 ND_PRINT(" length");
2608 INTOUT();
2609 ND_PRINT(" dbversion");
2610 UBIK_VERSIONOUT();
2611 break;
2612 case 20009: /* Truncate */
2613 ND_PRINT(" tid");
2614 UBIK_VERSIONOUT();
2615 ND_PRINT(" file");
2616 INTOUT();
2617 ND_PRINT(" length");
2618 INTOUT();
2619 break;
2620 case 20012: /* Set version */
2621 ND_PRINT(" tid");
2622 UBIK_VERSIONOUT();
2623 ND_PRINT(" oldversion");
2624 UBIK_VERSIONOUT();
2625 ND_PRINT(" newversion");
2626 UBIK_VERSIONOUT();
2627 break;
2628 default:
2629 ;
2630 }
2631
2632 return;
2633
2634 trunc:
2635 ND_PRINT(" [|ubik]");
2636 }
2637
2638 /*
2639 * Handle Ubik replies to any one of the replicated database services
2640 */
2641
2642 static void
2643 ubik_reply_print(netdissect_options *ndo,
2644 const u_char *bp, u_int length, uint32_t opcode)
2645 {
2646 const struct rx_header *rxh;
2647 uint8_t type;
2648
2649 if (length < sizeof(struct rx_header))
2650 return;
2651
2652 rxh = (const struct rx_header *) bp;
2653
2654 /*
2655 * Print out the ubik call we're invoking. This table was gleaned
2656 * from ubik/ubik_int.xg
2657 */
2658
2659 ND_PRINT(" ubik reply %s", tok2str(ubik_req, "op#%u", opcode));
2660
2661 type = EXTRACT_U_1(rxh->type);
2662 bp += sizeof(struct rx_header);
2663
2664 /*
2665 * If it was a data packet, print out the arguments to the Ubik calls
2666 */
2667
2668 if (type == RX_PACKET_TYPE_DATA)
2669 switch (opcode) {
2670 case 10000: /* Beacon */
2671 ND_PRINT(" vote no");
2672 break;
2673 case 20004: /* Get version */
2674 ND_PRINT(" dbversion");
2675 UBIK_VERSIONOUT();
2676 break;
2677 default:
2678 ;
2679 }
2680
2681 /*
2682 * Otherwise, print out "yes" it it was a beacon packet (because
2683 * that's how yes votes are returned, go figure), otherwise
2684 * just print out the error code.
2685 */
2686
2687 else
2688 switch (opcode) {
2689 case 10000: /* Beacon */
2690 ND_PRINT(" vote yes until");
2691 DATEOUT();
2692 break;
2693 default:
2694 ND_PRINT(" errcode");
2695 INTOUT();
2696 }
2697
2698 return;
2699
2700 trunc:
2701 ND_PRINT(" [|ubik]");
2702 }
2703
2704 /*
2705 * Handle RX ACK packets.
2706 */
2707
2708 static void
2709 rx_ack_print(netdissect_options *ndo,
2710 const u_char *bp, u_int length)
2711 {
2712 const struct rx_ackPacket *rxa;
2713 uint8_t nAcks;
2714 int i, start, last;
2715 uint32_t firstPacket;
2716
2717 if (length < sizeof(struct rx_header))
2718 return;
2719
2720 bp += sizeof(struct rx_header);
2721
2722 ND_TCHECK_LEN(bp, sizeof(struct rx_ackPacket));
2723
2724 rxa = (const struct rx_ackPacket *) bp;
2725 bp += sizeof(struct rx_ackPacket);
2726
2727 /*
2728 * Print out a few useful things from the ack packet structure
2729 */
2730
2731 if (ndo->ndo_vflag > 2)
2732 ND_PRINT(" bufspace %u maxskew %u",
2733 EXTRACT_BE_U_2(rxa->bufferSpace),
2734 EXTRACT_BE_U_2(rxa->maxSkew));
2735
2736 firstPacket = EXTRACT_BE_U_4(rxa->firstPacket);
2737 ND_PRINT(" first %u serial %u reason %s",
2738 firstPacket, EXTRACT_BE_U_4(rxa->serial),
2739 tok2str(rx_ack_reasons, "#%u", EXTRACT_U_1(rxa->reason)));
2740
2741 /*
2742 * Okay, now we print out the ack array. The way _this_ works
2743 * is that we start at "first", and step through the ack array.
2744 * If we have a contiguous range of acks/nacks, try to
2745 * collapse them into a range.
2746 *
2747 * If you're really clever, you might have noticed that this
2748 * doesn't seem quite correct. Specifically, due to structure
2749 * padding, sizeof(struct rx_ackPacket) - RX_MAXACKS won't actually
2750 * yield the start of the ack array (because RX_MAXACKS is 255
2751 * and the structure will likely get padded to a 2 or 4 byte
2752 * boundary). However, this is the way it's implemented inside
2753 * of AFS - the start of the extra fields are at
2754 * sizeof(struct rx_ackPacket) - RX_MAXACKS + nAcks, which _isn't_
2755 * the exact start of the ack array. Sigh. That's why we aren't
2756 * using bp, but instead use rxa->acks[]. But nAcks gets added
2757 * to bp after this, so bp ends up at the right spot. Go figure.
2758 */
2759
2760 nAcks = EXTRACT_U_1(rxa->nAcks);
2761 if (nAcks != 0) {
2762
2763 ND_TCHECK_LEN(bp, nAcks);
2764
2765 /*
2766 * Sigh, this is gross, but it seems to work to collapse
2767 * ranges correctly.
2768 */
2769
2770 for (i = 0, start = last = -2; i < nAcks; i++)
2771 if (EXTRACT_U_1(bp + i) == RX_ACK_TYPE_ACK) {
2772
2773 /*
2774 * I figured this deserved _some_ explanation.
2775 * First, print "acked" and the packet seq
2776 * number if this is the first time we've
2777 * seen an acked packet.
2778 */
2779
2780 if (last == -2) {
2781 ND_PRINT(" acked %u", firstPacket + i);
2782 start = i;
2783 }
2784
2785 /*
2786 * Otherwise, if there is a skip in
2787 * the range (such as an nacked packet in
2788 * the middle of some acked packets),
2789 * then print the current packet number
2790 * seperated from the last number by
2791 * a comma.
2792 */
2793
2794 else if (last != i - 1) {
2795 ND_PRINT(",%u", firstPacket + i);
2796 start = i;
2797 }
2798
2799 /*
2800 * We always set last to the value of
2801 * the last ack we saw. Conversely, start
2802 * is set to the value of the first ack
2803 * we saw in a range.
2804 */
2805
2806 last = i;
2807
2808 /*
2809 * Okay, this bit a code gets executed when
2810 * we hit a nack ... in _this_ case we
2811 * want to print out the range of packets
2812 * that were acked, so we need to print
2813 * the _previous_ packet number seperated
2814 * from the first by a dash (-). Since we
2815 * already printed the first packet above,
2816 * just print the final packet. Don't
2817 * do this if there will be a single-length
2818 * range.
2819 */
2820 } else if (last == i - 1 && start != last)
2821 ND_PRINT("-%u", firstPacket + i - 1);
2822
2823 /*
2824 * So, what's going on here? We ran off the end of the
2825 * ack list, and if we got a range we need to finish it up.
2826 * So we need to determine if the last packet in the list
2827 * was an ack (if so, then last will be set to it) and
2828 * we need to see if the last range didn't start with the
2829 * last packet (because if it _did_, then that would mean
2830 * that the packet number has already been printed and
2831 * we don't need to print it again).
2832 */
2833
2834 if (last == i - 1 && start != last)
2835 ND_PRINT("-%u", firstPacket + i - 1);
2836
2837 /*
2838 * Same as above, just without comments
2839 */
2840
2841 for (i = 0, start = last = -2; i < nAcks; i++)
2842 if (EXTRACT_U_1(bp + i) == RX_ACK_TYPE_NACK) {
2843 if (last == -2) {
2844 ND_PRINT(" nacked %u", firstPacket + i);
2845 start = i;
2846 } else if (last != i - 1) {
2847 ND_PRINT(",%u", firstPacket + i);
2848 start = i;
2849 }
2850 last = i;
2851 } else if (last == i - 1 && start != last)
2852 ND_PRINT("-%u", firstPacket + i - 1);
2853
2854 if (last == i - 1 && start != last)
2855 ND_PRINT("-%u", firstPacket + i - 1);
2856
2857 bp += nAcks;
2858 }
2859
2860 /* Padding. */
2861 bp += 3;
2862
2863 /*
2864 * These are optional fields; depending on your version of AFS,
2865 * you may or may not see them
2866 */
2867
2868 #define TRUNCRET(n) if (ndo->ndo_snapend - bp + 1 <= n) return;
2869
2870 if (ndo->ndo_vflag > 1) {
2871 TRUNCRET(4);
2872 ND_PRINT(" ifmtu");
2873 UINTOUT();
2874
2875 TRUNCRET(4);
2876 ND_PRINT(" maxmtu");
2877 UINTOUT();
2878
2879 TRUNCRET(4);
2880 ND_PRINT(" rwind");
2881 UINTOUT();
2882
2883 TRUNCRET(4);
2884 ND_PRINT(" maxpackets");
2885 UINTOUT();
2886 }
2887
2888 return;
2889
2890 trunc:
2891 ND_PRINT(" [|ack]");
2892 }
2893 #undef TRUNCRET
[mirror] the TCPdump network dissector