]> The Tcpdump Group git mirrors - tcpdump/blob - util-print.c
projects / tcpdump / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Add a test from Kamil Frankowicz for the BFD dissector.
[tcpdump] / util-print.c
1 /*
2 * Copyright (c) 1990, 1991, 1993, 1994, 1995, 1996, 1997
3 * The Regents of the University of California. All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that: (1) source code distributions
7 * retain the above copyright notice and this paragraph in its entirety, (2)
8 * distributions including binary code include the above copyright notice and
9 * this paragraph in its entirety in the documentation or other materials
10 * provided with the distribution, and (3) all advertising materials mentioning
11 * features or use of this software display the following acknowledgement:
12 * ``This product includes software developed by the University of California,
13 * Lawrence Berkeley Laboratory and its contributors.'' Neither the name of
14 * the University nor the names of its contributors may be used to endorse
15 * or promote products derived from this software without specific prior
16 * written permission.
17 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
18 * WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
19 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
20 */
21
22 /*
23 * txtproto_print() derived from original code by Hannes Gredler
24 * (hannes@gredler.at):
25 *
26 * Redistribution and use in source and binary forms, with or without
27 * modification, are permitted provided that: (1) source code
28 * distributions retain the above copyright notice and this paragraph
29 * in its entirety, and (2) distributions including binary code include
30 * the above copyright notice and this paragraph in its entirety in
31 * the documentation or other materials provided with the distribution.
32 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND
33 * WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, WITHOUT
34 * LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
35 * FOR A PARTICULAR PURPOSE.
36 */
37
38 #ifdef HAVE_CONFIG_H
39 #include <config.h>
40 #endif
41
42 #include "netdissect-stdinc.h"
43
44 #include <sys/stat.h>
45
46 #ifdef HAVE_FCNTL_H
47 #include <fcntl.h>
48 #endif
49 #include <ctype.h>
50 #include <stdio.h>
51 #include <stdarg.h>
52 #include <stdlib.h>
53 #include <string.h>
54
55 #include "netdissect.h"
56 #include "extract.h"
57 #include "ascii_strcasecmp.h"
58 #include "timeval-operations.h"
59
60 int32_t thiszone; /* seconds offset from gmt to local time */
61 /* invalid string to print '(invalid)' for malformed or corrupted packets */
62 const char istr[] = " (invalid)";
63
64 /*
65 * timestamp display buffer size, the biggest size of both formats is needed
66 * sizeof("0000000000.000000000") > sizeof("00:00:00.000000000")
67 */
68 #define TS_BUF_SIZE sizeof("0000000000.000000000")
69
70 #define TOKBUFSIZE 128
71
72 /*
73 * Print out a character, filtering out the non-printable ones
74 */
75 void
76 fn_print_char(netdissect_options *ndo, u_char c)
77 {
78 if (!ND_ISASCII(c)) {
79 c = ND_TOASCII(c);
80 ND_PRINT("M-");
81 }
82 if (!ND_ISPRINT(c)) {
83 c ^= 0x40; /* DEL to ?, others to alpha */
84 ND_PRINT("^");
85 }
86 ND_PRINT("%c", c);
87 }
88
89 /*
90 * Print a null-terminated string, filtering out non-printable characters.
91 * DON'T USE IT with a pointer on the packet buffer because there is no
92 * truncation check. For this use, see the nd_printX() functions below.
93 */
94 void
95 fn_print_str(netdissect_options *ndo, const u_char *s)
96 {
97 while (*s != '\0') {
98 fn_print_char(ndo, *s);
99 s++;
100 }
101 }
102
103 /*
104 * Print out a null-terminated filename (or other ASCII string), part of
105 * the packet buffer.
106 * If ep is NULL, assume no truncation check is needed.
107 * Return true if truncated.
108 * Stop at ep (if given) or before the null char, whichever is first.
109 */
110 int
111 nd_print(netdissect_options *ndo,
112 const u_char *s, const u_char *ep)
113 {
114 int ret;
115 u_char c;
116
117 ret = 1; /* assume truncated */
118 while (ep == NULL || s < ep) {
119 c = EXTRACT_U_1(s);
120 s++;
121 if (c == '\0') {
122 ret = 0;
123 break;
124 }
125 fn_print_char(ndo, c);
126 }
127 return(ret);
128 }
129
130 /*
131 * Print out a null-terminated filename (or other ASCII string) from
132 * a fixed-length field in the packet buffer, or from what remains of
133 * the packet.
134 *
135 * n is the length of the fixed-length field, or the number of bytes
136 * remaining in the packet based on its on-the-network length.
137 *
138 * If ep is non-null, it should point just past the last captured byte
139 * of the packet, e.g. ndo->ndo_snapend. If ep is NULL, we assume no
140 * truncation check, other than the checks of the field length/remaining
141 * packet data length, is needed.
142 *
143 * Return the number of bytes of string processed, including the
144 * terminating null, if not truncated; as the terminating null is
145 * included in the count, and as there must be a terminating null,
146 * this will always be non-zero. Return 0 if truncated.
147 */
148 u_int
149 nd_printztn(netdissect_options *ndo,
150 const u_char *s, u_int n, const u_char *ep)
151 {
152 u_int bytes;
153 u_char c;
154
155 bytes = 0;
156 for (;;) {
157 if (n == 0 || (ep != NULL && s >= ep)) {
158 /*
159 * Truncated. This includes "no null before we
160 * got to the end of the fixed-length buffer or
161 * the end of the packet".
162 *
163 * XXX - BOOTP says "null-terminated", which
164 * means the maximum length of the string, in
165 * bytes, is 1 less than the size of the buffer,
166 * as there must always be a terminating null.
167 */
168 bytes = 0;
169 break;
170 }
171
172 c = EXTRACT_U_1(s);
173 s++;
174 bytes++;
175 n--;
176 if (c == '\0') {
177 /* End of string */
178 break;
179 }
180 fn_print_char(ndo, c);
181 }
182 return(bytes);
183 }
184
185 /*
186 * Print out a counted filename (or other ASCII string), part of
187 * the packet buffer.
188 * If ep is NULL, assume no truncation check is needed.
189 * Return true if truncated.
190 * Stop at ep (if given) or after n bytes, whichever is first.
191 */
192 int
193 nd_printn(netdissect_options *ndo,
194 const u_char *s, u_int n, const u_char *ep)
195 {
196 u_char c;
197
198 while (n > 0 && (ep == NULL || s < ep)) {
199 n--;
200 c = EXTRACT_U_1(s);
201 s++;
202 fn_print_char(ndo, c);
203 }
204 return (n == 0) ? 0 : 1;
205 }
206
207 /*
208 * Print out a null-padded filename (or other ASCII string), part of
209 * the packet buffer.
210 * If ep is NULL, assume no truncation check is needed.
211 * Return true if truncated.
212 * Stop at ep (if given) or after n bytes or before the null char,
213 * whichever is first.
214 */
215 int
216 nd_printzp(netdissect_options *ndo,
217 const u_char *s, u_int n,
218 const u_char *ep)
219 {
220 int ret;
221 u_char c;
222
223 ret = 1; /* assume truncated */
224 while (n > 0 && (ep == NULL || s < ep)) {
225 n--;
226 c = EXTRACT_U_1(s);
227 s++;
228 if (c == '\0') {
229 ret = 0;
230 break;
231 }
232 fn_print_char(ndo, c);
233 }
234 return (n == 0) ? 0 : ret;
235 }
236
237 /*
238 * Format the timestamp
239 */
240 static char *
241 ts_format(netdissect_options *ndo
242 #ifndef HAVE_PCAP_SET_TSTAMP_PRECISION
243 _U_
244 #endif
245 , int sec, int usec, char *buf)
246 {
247 const char *format;
248
249 #ifdef HAVE_PCAP_SET_TSTAMP_PRECISION
250 switch (ndo->ndo_tstamp_precision) {
251
252 case PCAP_TSTAMP_PRECISION_MICRO:
253 format = "%02d:%02d:%02d.%06u";
254 break;
255
256 case PCAP_TSTAMP_PRECISION_NANO:
257 format = "%02d:%02d:%02d.%09u";
258 break;
259
260 default:
261 format = "%02d:%02d:%02d.{unknown}";
262 break;
263 }
264 #else
265 format = "%02d:%02d:%02d.%06u";
266 #endif
267
268 nd_snprintf(buf, TS_BUF_SIZE, format,
269 sec / 3600, (sec % 3600) / 60, sec % 60, usec);
270
271 return buf;
272 }
273
274 /*
275 * Format the timestamp - Unix timeval style
276 */
277 static char *
278 ts_unix_format(netdissect_options *ndo
279 #ifndef HAVE_PCAP_SET_TSTAMP_PRECISION
280 _U_
281 #endif
282 , int sec, int usec, char *buf)
283 {
284 const char *format;
285
286 #ifdef HAVE_PCAP_SET_TSTAMP_PRECISION
287 switch (ndo->ndo_tstamp_precision) {
288
289 case PCAP_TSTAMP_PRECISION_MICRO:
290 format = "%u.%06u";
291 break;
292
293 case PCAP_TSTAMP_PRECISION_NANO:
294 format = "%u.%09u";
295 break;
296
297 default:
298 format = "%u.{unknown}";
299 break;
300 }
301 #else
302 format = "%u.%06u";
303 #endif
304
305 nd_snprintf(buf, TS_BUF_SIZE, format,
306 (unsigned)sec, (unsigned)usec);
307
308 return buf;
309 }
310
311 /*
312 * Print the timestamp
313 */
314 void
315 ts_print(netdissect_options *ndo,
316 const struct timeval *tvp)
317 {
318 int s;
319 struct tm *tm;
320 time_t Time;
321 char buf[TS_BUF_SIZE];
322 static struct timeval tv_ref;
323 struct timeval tv_result;
324 int negative_offset;
325 int nano_prec;
326
327 switch (ndo->ndo_tflag) {
328
329 case 0: /* Default */
330 s = (tvp->tv_sec + thiszone) % 86400;
331 ND_PRINT("%s ", ts_format(ndo, s, tvp->tv_usec, buf));
332 break;
333
334 case 1: /* No time stamp */
335 break;
336
337 case 2: /* Unix timeval style */
338 ND_PRINT("%s ", ts_unix_format(ndo,
339 tvp->tv_sec, tvp->tv_usec, buf));
340 break;
341
342 case 3: /* Microseconds/nanoseconds since previous packet */
343 case 5: /* Microseconds/nanoseconds since first packet */
344 #ifdef HAVE_PCAP_SET_TSTAMP_PRECISION
345 switch (ndo->ndo_tstamp_precision) {
346 case PCAP_TSTAMP_PRECISION_MICRO:
347 nano_prec = 0;
348 break;
349 case PCAP_TSTAMP_PRECISION_NANO:
350 nano_prec = 1;
351 break;
352 default:
353 nano_prec = 0;
354 break;
355 }
356 #else
357 nano_prec = 0;
358 #endif
359 if (!(netdissect_timevalisset(&tv_ref)))
360 tv_ref = *tvp; /* set timestamp for first packet */
361
362 negative_offset = netdissect_timevalcmp(tvp, &tv_ref, <);
363 if (negative_offset)
364 netdissect_timevalsub(&tv_ref, tvp, &tv_result, nano_prec);
365 else
366 netdissect_timevalsub(tvp, &tv_ref, &tv_result, nano_prec);
367
368 ND_PRINT((negative_offset ? "-" : " "));
369
370 ND_PRINT("%s ", ts_format(ndo,
371 tv_result.tv_sec, tv_result.tv_usec, buf));
372
373 if (ndo->ndo_tflag == 3)
374 tv_ref = *tvp; /* set timestamp for previous packet */
375 break;
376
377 case 4: /* Default + Date */
378 s = (tvp->tv_sec + thiszone) % 86400;
379 Time = (tvp->tv_sec + thiszone) - s;
380 tm = gmtime (&Time);
381 if (!tm)
382 ND_PRINT("Date fail ");
383 else
384 ND_PRINT("%04d-%02d-%02d %s ",
385 tm->tm_year+1900, tm->tm_mon+1, tm->tm_mday,
386 ts_format(ndo, s, tvp->tv_usec, buf));
387 break;
388 }
389 }
390
391 /*
392 * Print an unsigned relative number of seconds (e.g. hold time, prune timer)
393 * in the form 5m1s. This does no truncation, so 32230861 seconds
394 * is represented as 1y1w1d1h1m1s.
395 */
396 void
397 unsigned_relts_print(netdissect_options *ndo,
398 uint32_t secs)
399 {
400 static const char *lengths[] = {"y", "w", "d", "h", "m", "s"};
401 static const u_int seconds[] = {31536000, 604800, 86400, 3600, 60, 1};
402 const char **l = lengths;
403 const u_int *s = seconds;
404
405 if (secs == 0) {
406 ND_PRINT("0s");
407 return;
408 }
409 while (secs > 0) {
410 if (secs >= *s) {
411 ND_PRINT("%u%s", secs / *s, *l);
412 secs -= (secs / *s) * *s;
413 }
414 s++;
415 l++;
416 }
417 }
418
419 /*
420 * Print a signed relative number of seconds (e.g. hold time, prune timer)
421 * in the form 5m1s. This does no truncation, so 32230861 seconds
422 * is represented as 1y1w1d1h1m1s.
423 */
424 void
425 signed_relts_print(netdissect_options *ndo,
426 int32_t secs)
427 {
428 if (secs < 0) {
429 ND_PRINT("-");
430 if (secs == INT32_MIN) {
431 /*
432 * -2^31; you can't fit its absolute value into
433 * a 32-bit signed integer.
434 *
435 * Just directly pass said absolute value to
436 * unsigned_relts_print() directly.
437 *
438 * (XXX - does ISO C guarantee that -(-2^n),
439 * when calculated and cast to an n-bit unsigned
440 * integer type, will have the value 2^n?)
441 */
442 unsigned_relts_print(ndo, 2147483648U);
443 } else {
444 /*
445 * We now know -secs will fit into an int32_t;
446 * negate it and pass that to unsigned_relts_print().
447 */
448 unsigned_relts_print(ndo, -secs);
449 }
450 return;
451 }
452 unsigned_relts_print(ndo, secs);
453 }
454
455 /* Print the truncated string */
456 void nd_print_trunc(netdissect_options *ndo)
457 {
458 ND_PRINT(" [|%s]", ndo->ndo_protocol);
459 }
460
461 /*
462 * this is a generic routine for printing unknown data;
463 * we pass on the linefeed plus indentation string to
464 * get a proper output - returns 0 on error
465 */
466
467 int
468 print_unknown_data(netdissect_options *ndo, const u_char *cp,const char *ident,int len)
469 {
470 if (len < 0) {
471 ND_PRINT("%sDissector error: print_unknown_data called with negative length",
472 ident);
473 return(0);
474 }
475 if (ndo->ndo_snapend - cp < len)
476 len = ndo->ndo_snapend - cp;
477 if (len < 0) {
478 ND_PRINT("%sDissector error: print_unknown_data called with pointer past end of packet",
479 ident);
480 return(0);
481 }
482 hex_print(ndo, ident,cp,len);
483 return(1); /* everything is ok */
484 }
485
486 /*
487 * Convert a token value to a string; use "fmt" if not found.
488 */
489 const char *
490 tok2strbuf(const struct tok *lp, const char *fmt,
491 u_int v, char *buf, size_t bufsize)
492 {
493 if (lp != NULL) {
494 while (lp->s != NULL) {
495 if (lp->v == v)
496 return (lp->s);
497 ++lp;
498 }
499 }
500 if (fmt == NULL)
501 fmt = "#%d";
502
503 (void)nd_snprintf(buf, bufsize, fmt, v);
504 return (const char *)buf;
505 }
506
507 /*
508 * Convert a token value to a string; use "fmt" if not found.
509 * Uses tok2strbuf() on one of four local static buffers of size TOKBUFSIZE
510 * in round-robin fashion.
511 */
512 const char *
513 tok2str(const struct tok *lp, const char *fmt,
514 u_int v)
515 {
516 static char buf[4][TOKBUFSIZE];
517 static int idx = 0;
518 char *ret;
519
520 ret = buf[idx];
521 idx = (idx+1) & 3;
522 return tok2strbuf(lp, fmt, v, ret, sizeof(buf[0]));
523 }
524
525 /*
526 * Convert a bit token value to a string; use "fmt" if not found.
527 * this is useful for parsing bitfields, the output strings are seperated
528 * if the s field is positive.
529 */
530 static char *
531 bittok2str_internal(const struct tok *lp, const char *fmt,
532 u_int v, const char *sep)
533 {
534 static char buf[1024+1]; /* our string buffer */
535 char *bufp = buf;
536 size_t space_left = sizeof(buf), string_size;
537 u_int rotbit; /* this is the bit we rotate through all bitpositions */
538 u_int tokval;
539 const char * sepstr = "";
540
541 while (lp != NULL && lp->s != NULL) {
542 tokval=lp->v; /* load our first value */
543 rotbit=1;
544 while (rotbit != 0) {
545 /*
546 * lets AND the rotating bit with our token value
547 * and see if we have got a match
548 */
549 if (tokval == (v&rotbit)) {
550 /* ok we have found something */
551 if (space_left <= 1)
552 return (buf); /* only enough room left for NUL, if that */
553 string_size = strlcpy(bufp, sepstr, space_left);
554 if (string_size >= space_left)
555 return (buf); /* we ran out of room */
556 bufp += string_size;
557 space_left -= string_size;
558 if (space_left <= 1)
559 return (buf); /* only enough room left for NUL, if that */
560 string_size = strlcpy(bufp, lp->s, space_left);
561 if (string_size >= space_left)
562 return (buf); /* we ran out of room */
563 bufp += string_size;
564 space_left -= string_size;
565 sepstr = sep;
566 break;
567 }
568 rotbit=rotbit<<1; /* no match - lets shift and try again */
569 }
570 lp++;
571 }
572
573 if (bufp == buf)
574 /* bummer - lets print the "unknown" message as advised in the fmt string if we got one */
575 (void)nd_snprintf(buf, sizeof(buf), fmt == NULL ? "#%08x" : fmt, v);
576 return (buf);
577 }
578
579 /*
580 * Convert a bit token value to a string; use "fmt" if not found.
581 * this is useful for parsing bitfields, the output strings are not seperated.
582 */
583 char *
584 bittok2str_nosep(const struct tok *lp, const char *fmt,
585 u_int v)
586 {
587 return (bittok2str_internal(lp, fmt, v, ""));
588 }
589
590 /*
591 * Convert a bit token value to a string; use "fmt" if not found.
592 * this is useful for parsing bitfields, the output strings are comma seperated.
593 */
594 char *
595 bittok2str(const struct tok *lp, const char *fmt,
596 u_int v)
597 {
598 return (bittok2str_internal(lp, fmt, v, ", "));
599 }
600
601 /*
602 * Convert a value to a string using an array; the macro
603 * tok2strary() in <netdissect.h> is the public interface to
604 * this function and ensures that the second argument is
605 * correct for bounds-checking.
606 */
607 const char *
608 tok2strary_internal(const char **lp, int n, const char *fmt,
609 int v)
610 {
611 static char buf[TOKBUFSIZE];
612
613 if (v >= 0 && v < n && lp[v] != NULL)
614 return lp[v];
615 if (fmt == NULL)
616 fmt = "#%d";
617 (void)nd_snprintf(buf, sizeof(buf), fmt, v);
618 return (buf);
619 }
620
621 /*
622 * Convert a 32-bit netmask to prefixlen if possible
623 * the function returns the prefix-len; if plen == -1
624 * then conversion was not possible;
625 */
626
627 int
628 mask2plen(uint32_t mask)
629 {
630 uint32_t bitmasks[33] = {
631 0x00000000,
632 0x80000000, 0xc0000000, 0xe0000000, 0xf0000000,
633 0xf8000000, 0xfc000000, 0xfe000000, 0xff000000,
634 0xff800000, 0xffc00000, 0xffe00000, 0xfff00000,
635 0xfff80000, 0xfffc0000, 0xfffe0000, 0xffff0000,
636 0xffff8000, 0xffffc000, 0xffffe000, 0xfffff000,
637 0xfffff800, 0xfffffc00, 0xfffffe00, 0xffffff00,
638 0xffffff80, 0xffffffc0, 0xffffffe0, 0xfffffff0,
639 0xfffffff8, 0xfffffffc, 0xfffffffe, 0xffffffff
640 };
641 int prefix_len = 32;
642
643 /* let's see if we can transform the mask into a prefixlen */
644 while (prefix_len >= 0) {
645 if (bitmasks[prefix_len] == mask)
646 break;
647 prefix_len--;
648 }
649 return (prefix_len);
650 }
651
652 int
653 mask62plen(const u_char *mask)
654 {
655 u_char bitmasks[9] = {
656 0x00,
657 0x80, 0xc0, 0xe0, 0xf0,
658 0xf8, 0xfc, 0xfe, 0xff
659 };
660 int byte;
661 int cidr_len = 0;
662
663 for (byte = 0; byte < 16; byte++) {
664 u_int bits;
665
666 for (bits = 0; bits < (sizeof (bitmasks) / sizeof (bitmasks[0])); bits++) {
667 if (mask[byte] == bitmasks[bits]) {
668 cidr_len += bits;
669 break;
670 }
671 }
672
673 if (mask[byte] != 0xff)
674 break;
675 }
676 return (cidr_len);
677 }
678
679 /*
680 * Routine to print out information for text-based protocols such as FTP,
681 * HTTP, SMTP, RTSP, SIP, ....
682 */
683 #define MAX_TOKEN 128
684
685 /*
686 * Fetch a token from a packet, starting at the specified index,
687 * and return the length of the token.
688 *
689 * Returns 0 on error; yes, this is indistinguishable from an empty
690 * token, but an "empty token" isn't a valid token - it just means
691 * either a space character at the beginning of the line (this
692 * includes a blank line) or no more tokens remaining on the line.
693 */
694 static int
695 fetch_token(netdissect_options *ndo, const u_char *pptr, u_int idx, u_int len,
696 u_char *tbuf, size_t tbuflen)
697 {
698 size_t toklen = 0;
699
700 for (; idx < len; idx++) {
701 if (!ND_TTEST_1(pptr + idx)) {
702 /* ran past end of captured data */
703 return (0);
704 }
705 if (!isascii(EXTRACT_U_1(pptr + idx))) {
706 /* not an ASCII character */
707 return (0);
708 }
709 if (isspace(EXTRACT_U_1(pptr + idx))) {
710 /* end of token */
711 break;
712 }
713 if (!isprint(EXTRACT_U_1(pptr + idx))) {
714 /* not part of a command token or response code */
715 return (0);
716 }
717 if (toklen + 2 > tbuflen) {
718 /* no room for this character and terminating '\0' */
719 return (0);
720 }
721 tbuf[toklen] = EXTRACT_U_1(pptr + idx);
722 toklen++;
723 }
724 if (toklen == 0) {
725 /* no token */
726 return (0);
727 }
728 tbuf[toklen] = '\0';
729
730 /*
731 * Skip past any white space after the token, until we see
732 * an end-of-line (CR or LF).
733 */
734 for (; idx < len; idx++) {
735 if (!ND_TTEST_1(pptr + idx)) {
736 /* ran past end of captured data */
737 break;
738 }
739 if (EXTRACT_U_1(pptr + idx) == '\r' || EXTRACT_U_1(pptr + idx) == '\n') {
740 /* end of line */
741 break;
742 }
743 if (!isascii(EXTRACT_U_1(pptr + idx)) || !isprint(EXTRACT_U_1(pptr + idx))) {
744 /* not a printable ASCII character */
745 break;
746 }
747 if (!isspace(EXTRACT_U_1(pptr + idx))) {
748 /* beginning of next token */
749 break;
750 }
751 }
752 return (idx);
753 }
754
755 /*
756 * Scan a buffer looking for a line ending - LF or CR-LF.
757 * Return the index of the character after the line ending or 0 if
758 * we encounter a non-ASCII or non-printable character or don't find
759 * the line ending.
760 */
761 static u_int
762 print_txt_line(netdissect_options *ndo, const char *protoname,
763 const char *prefix, const u_char *pptr, u_int idx, u_int len)
764 {
765 u_int startidx;
766 u_int linelen;
767
768 startidx = idx;
769 while (idx < len) {
770 ND_TCHECK_1(pptr + idx);
771 if (EXTRACT_U_1(pptr + idx) == '\n') {
772 /*
773 * LF without CR; end of line.
774 * Skip the LF and print the line, with the
775 * exception of the LF.
776 */
777 linelen = idx - startidx;
778 idx++;
779 goto print;
780 } else if (EXTRACT_U_1(pptr + idx) == '\r') {
781 /* CR - any LF? */
782 if ((idx+1) >= len) {
783 /* not in this packet */
784 return (0);
785 }
786 ND_TCHECK_1(pptr + idx + 1);
787 if (EXTRACT_U_1(pptr + idx + 1) == '\n') {
788 /*
789 * CR-LF; end of line.
790 * Skip the CR-LF and print the line, with
791 * the exception of the CR-LF.
792 */
793 linelen = idx - startidx;
794 idx += 2;
795 goto print;
796 }
797
798 /*
799 * CR followed by something else; treat this
800 * as if it were binary data, and don't print
801 * it.
802 */
803 return (0);
804 } else if (!isascii(EXTRACT_U_1(pptr + idx)) ||
805 (!isprint(EXTRACT_U_1(pptr + idx)) &&
806 EXTRACT_U_1(pptr + idx) != '\t')) {
807 /*
808 * Not a printable ASCII character and not a tab;
809 * treat this as if it were binary data, and
810 * don't print it.
811 */
812 return (0);
813 }
814 idx++;
815 }
816
817 /*
818 * All printable ASCII, but no line ending after that point
819 * in the buffer; treat this as if it were truncated.
820 */
821 trunc:
822 linelen = idx - startidx;
823 ND_PRINT("%s%.*s[!%s]", prefix, (int)linelen, pptr + startidx,
824 protoname);
825 return (0);
826
827 print:
828 ND_PRINT("%s%.*s", prefix, (int)linelen, pptr + startidx);
829 return (idx);
830 }
831
832 void
833 txtproto_print(netdissect_options *ndo, const u_char *pptr, u_int len,
834 const char *protoname, const char **cmds, u_int flags)
835 {
836 u_int idx, eol;
837 u_char token[MAX_TOKEN+1];
838 const char *cmd;
839 int print_this = 0;
840 const char *pnp;
841
842 if (cmds != NULL) {
843 /*
844 * This protocol has more than just request and
845 * response lines; see whether this looks like a
846 * request or response and, if so, print it and,
847 * in verbose mode, print everything after it.
848 *
849 * This is for HTTP-like protocols, where we
850 * want to print requests and responses, but
851 * don't want to print continuations of request
852 * or response bodies in packets that don't
853 * contain the request or response line.
854 */
855 idx = fetch_token(ndo, pptr, 0, len, token, sizeof(token));
856 if (idx != 0) {
857 /* Is this a valid request name? */
858 while ((cmd = *cmds++) != NULL) {
859 if (ascii_strcasecmp((const char *)token, cmd) == 0) {
860 /* Yes. */
861 print_this = 1;
862 break;
863 }
864 }
865
866 /*
867 * No - is this a valid response code (3 digits)?
868 *
869 * Is this token the response code, or is the next
870 * token the response code?
871 */
872 if (flags & RESP_CODE_SECOND_TOKEN) {
873 /*
874 * Next token - get it.
875 */
876 idx = fetch_token(ndo, pptr, idx, len, token,
877 sizeof(token));
878 }
879 if (idx != 0) {
880 if (isdigit(token[0]) && isdigit(token[1]) &&
881 isdigit(token[2]) && token[3] == '\0') {
882 /* Yes. */
883 print_this = 1;
884 }
885 }
886 }
887 } else {
888 /*
889 * Either:
890 *
891 * 1) This protocol has only request and response lines
892 * (e.g., FTP, where all the data goes over a different
893 * connection); assume the payload is a request or
894 * response.
895 *
896 * or
897 *
898 * 2) This protocol is just text, so that we should
899 * always, at minimum, print the first line and,
900 * in verbose mode, print all lines.
901 */
902 print_this = 1;
903 }
904
905 /* Capitalize the protocol name */
906 for (pnp = protoname; *pnp != '\0'; pnp++)
907 ND_PRINT("%c", toupper((u_char)*pnp));
908
909 if (print_this) {
910 /*
911 * In non-verbose mode, just print the protocol, followed
912 * by the first line.
913 *
914 * In verbose mode, print lines as text until we run out
915 * of characters or see something that's not a
916 * printable-ASCII line.
917 */
918 if (ndo->ndo_vflag) {
919 /*
920 * We're going to print all the text lines in the
921 * request or response; just print the length
922 * on the first line of the output.
923 */
924 ND_PRINT(", length: %u", len);
925 for (idx = 0;
926 idx < len && (eol = print_txt_line(ndo, protoname, "\n\t", pptr, idx, len)) != 0;
927 idx = eol)
928 ;
929 } else {
930 /*
931 * Just print the first text line.
932 */
933 print_txt_line(ndo, protoname, ": ", pptr, 0, len);
934 }
935 }
936 }
937
938 #if (defined(__i386__) || defined(_M_IX86) || defined(__X86__) || defined(__x86_64__) || defined(_M_X64)) || \
939 (defined(__arm__) || defined(_M_ARM) || defined(__aarch64__)) || \
940 (defined(__m68k__) && (!defined(__mc68000__) && !defined(__mc68010__))) || \
941 (defined(__ppc__) || defined(__ppc64__) || defined(_M_PPC) || defined(_ARCH_PPC) || defined(_ARCH_PPC64)) || \
942 (defined(__s390__) || defined(__s390x__) || defined(__zarch__)) || \
943 defined(__vax__)
944 /*
945 * The procesor natively handles unaligned loads, so just use memcpy()
946 * and memcmp(), to enable those optimizations.
947 *
948 * XXX - are those all the x86 tests we need?
949 * XXX - do we need to worry about ARMv1 through ARMv5, which didn't
950 * support unaligned loads, and, if so, do we need to worry about all
951 * of them, or just some of them, e.g. ARMv5?
952 * XXX - are those the only 68k tests we need not to generated
953 * unaligned accesses if the target is the 68000 or 68010?
954 * XXX - are there any tests we don't need, because some definitions are for
955 * compilers that also predefine the GCC symbols?
956 * XXX - do we need to test for both 32-bit and 64-bit versions of those
957 * architectures in all cases?
958 */
959 #else
960 /*
961 * The processor doesn't natively handle unaligned loads,
962 * and the compiler might "helpfully" optimize memcpy()
963 * and memcmp(), when handed pointers that would normally
964 * be properly aligned, into sequences that assume proper
965 * alignment.
966 *
967 * Do copies and compares of possibly-unaligned data by
968 * calling routines that wrap memcpy() and memcmp(), to
969 * prevent that optimization.
970 */
971 void
972 unaligned_memcpy(void *p, const void *q, size_t l)
973 {
974 memcpy(p, q, l);
975 }
976
977 /* As with memcpy(), so with memcmp(). */
978 int
979 unaligned_memcmp(const void *p, const void *q, size_t l)
980 {
981 return (memcmp(p, q, l));
982 }
983 #endif
984
[mirror] the TCPdump network dissector