X-Git-Url: https://git.tcpdump.org/tcpdump/blobdiff_plain/caa364c8ca97f9a338dd7edba4c45b0d65bd90e8..82cfcd4391f9f6c748634bfd7b48a44f42e6a53d:/print-juniper.c diff --git a/print-juniper.c b/print-juniper.c index 0061b2ba..13d8f837 100644 --- a/print-juniper.c +++ b/print-juniper.c @@ -30,6 +30,7 @@ __RCSID("NetBSD: print-juniper.c,v 1.3 2007/07/25 06:31:32 dogcow Exp "); #include +#define ND_LONGJMP_FROM_TCHECK #include "netdissect.h" #include "addrtoname.h" #include "extract.h" @@ -484,6 +485,7 @@ juniper_ggsn_if_print(netdissect_options *ndo, uint8_t proto; ndo->ndo_protocol = "juniper_ggsn"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_GGSN; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -515,11 +517,6 @@ juniper_ggsn_if_print(netdissect_options *ndo, } ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -541,6 +538,7 @@ juniper_es_if_print(netdissect_options *ndo, const struct juniper_ipsec_header *ih; ndo->ndo_protocol = "juniper_es"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_ES; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -597,11 +595,6 @@ juniper_es_if_print(netdissect_options *ndo, ip_print(ndo, p, l2info.length); ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -620,6 +613,7 @@ juniper_monitor_if_print(netdissect_options *ndo, const struct juniper_monitor_header *mh; ndo->ndo_protocol = "juniper_monitor"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_MONITOR; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -640,11 +634,6 @@ juniper_monitor_if_print(netdissect_options *ndo, ip_heuristic_guess (ndo, p, l2info.length); ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -664,6 +653,7 @@ juniper_services_if_print(netdissect_options *ndo, const struct juniper_services_header *sh; ndo->ndo_protocol = "juniper_services"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_SERVICES; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -685,11 +675,6 @@ juniper_services_if_print(netdissect_options *ndo, ip_heuristic_guess (ndo, p, l2info.length); ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -701,6 +686,7 @@ juniper_pppoe_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_pppoe"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_PPPOE; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -709,7 +695,7 @@ juniper_pppoe_if_print(netdissect_options *ndo, p+=l2info.header_len; /* this DLT contains nothing but raw ethernet frames */ - ether_print(ndo, p, l2info.length, l2info.caplen, NULL, NULL, FALSE); + ether_print(ndo, p, l2info.length, l2info.caplen, NULL, NULL); ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -722,6 +708,7 @@ juniper_ether_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_ether"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_ETHER; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -730,8 +717,9 @@ juniper_ether_if_print(netdissect_options *ndo, p+=l2info.header_len; /* this DLT contains nothing but raw Ethernet frames */ - ether_print(ndo, p, l2info.length, l2info.caplen, NULL, NULL, TRUE); - ndo->ndo_ll_hdr_len += l2info.header_len; + ndo->ndo_ll_hdr_len += + l2info.header_len + + ether_print(ndo, p, l2info.length, l2info.caplen, NULL, NULL); } #endif @@ -743,6 +731,7 @@ juniper_ppp_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_ppp"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_PPP; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -764,6 +753,7 @@ juniper_frelay_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_frelay"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_FRELAY; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -785,6 +775,7 @@ juniper_chdlc_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_chdlc"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_CHDLC; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -807,6 +798,7 @@ juniper_pppoe_atm_if_print(netdissect_options *ndo, uint16_t extracted_ethertype; ndo->ndo_protocol = "juniper_pppoe_atm"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_PPPOE_ATM; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -815,7 +807,6 @@ juniper_pppoe_atm_if_print(netdissect_options *ndo, p+=l2info.header_len; - ND_TCHECK_2(p); extracted_ethertype = GET_BE_U_2(p); /* this DLT contains nothing but raw PPPoE frames, * prepended with a type field*/ @@ -828,11 +819,6 @@ juniper_pppoe_atm_if_print(netdissect_options *ndo, ND_PRINT("unknown ethertype 0x%04x", extracted_ethertype); ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -844,6 +830,7 @@ juniper_mlppp_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_mlppp"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_MLPPP; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -962,6 +949,8 @@ juniper_mfr_if_print(netdissect_options *ndo, ND_PRINT("Bundle-ID %u, ", l2info.bundle); switch (l2info.proto) { case (LLCSAP_ISONS<<8 | LLCSAP_ISONS): + /* At least one byte is required */ + ND_TCHECK_1(p); isoclns_print(ndo, p + 1, l2info.length - 1); break; case (LLC_UI<<8 | NLPID_Q933): @@ -986,6 +975,7 @@ juniper_mlfr_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_mlfr"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_MLFR; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -1035,6 +1025,7 @@ juniper_atm1_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_atm1"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_ATM1; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -1049,7 +1040,6 @@ juniper_atm1_if_print(netdissect_options *ndo, return; } - ND_TCHECK_3(p); if (GET_BE_U_3(p) == 0xfefe03 || /* NLPID encaps ? */ GET_BE_U_3(p) == 0xaaaa03) { /* SNAP encaps ? */ @@ -1061,6 +1051,8 @@ juniper_atm1_if_print(netdissect_options *ndo, } if (GET_U_1(p) == 0x03) { /* Cisco style NLPID encaps ? */ + /* At least one byte is required */ + ND_TCHECK_1(p); isoclns_print(ndo, p + 1, l2info.length - 1); /* FIXME check if frame was recognized */ ndo->ndo_ll_hdr_len += l2info.header_len; @@ -1073,11 +1065,6 @@ juniper_atm1_if_print(netdissect_options *ndo, } ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } #endif @@ -1099,6 +1086,7 @@ juniper_atm2_if_print(netdissect_options *ndo, struct juniper_l2info_t l2info; ndo->ndo_protocol = "juniper_atm2"; + memset(&l2info, 0, sizeof(l2info)); l2info.pictype = DLT_JUNIPER_ATM2; if (juniper_parse_header(ndo, p, h, &l2info) == 0) { ndo->ndo_ll_hdr_len += l2info.header_len; @@ -1113,7 +1101,6 @@ juniper_atm2_if_print(netdissect_options *ndo, return; } - ND_TCHECK_3(p); if (GET_BE_U_3(p) == 0xfefe03 || /* NLPID encaps ? */ GET_BE_U_3(p) == 0xaaaa03) { /* SNAP encaps ? */ @@ -1127,12 +1114,14 @@ juniper_atm2_if_print(netdissect_options *ndo, if (l2info.direction != JUNIPER_BPF_PKT_IN && /* ether-over-1483 encaps ? */ /* use EXTRACT_, not GET_ (not packet buffer pointer) */ (EXTRACT_BE_U_4(l2info.cookie) & ATM2_GAP_COUNT_MASK)) { - ether_print(ndo, p, l2info.length, l2info.caplen, NULL, NULL, FALSE); + ether_print(ndo, p, l2info.length, l2info.caplen, NULL, NULL); ndo->ndo_ll_hdr_len += l2info.header_len; return; } if (GET_U_1(p) == 0x03) { /* Cisco style NLPID encaps ? */ + /* At least one byte is required */ + ND_TCHECK_1(p); isoclns_print(ndo, p + 1, l2info.length - 1); /* FIXME check if frame was recognized */ ndo->ndo_ll_hdr_len += l2info.header_len; @@ -1150,11 +1139,6 @@ juniper_atm2_if_print(netdissect_options *ndo, } ndo->ndo_ll_hdr_len += l2info.header_len; - return; - -trunc: - nd_print_trunc(ndo); - ndo->ndo_ll_hdr_len += l2info.header_len; } /* try to guess, based on all PPP protos that are supported in @@ -1284,7 +1268,7 @@ juniper_parse_header(netdissect_options *ndo, const u_char *p, const struct pcap_pkthdr *h, struct juniper_l2info_t *l2info) { const struct juniper_cookie_table_t *lp = juniper_cookie_table; - u_int idx, jnx_ext_len, jnx_header_len = 0; + u_int idx, extension_length, jnx_header_len = 0; uint8_t tlv_type,tlv_len; #ifdef DLT_JUNIPER_ATM2 uint32_t control_word; @@ -1300,7 +1284,6 @@ juniper_parse_header(netdissect_options *ndo, l2info->length = h->len; l2info->caplen = h->caplen; - ND_TCHECK_4(p); l2info->flags = GET_U_1(p + 3); l2info->direction = GET_U_1(p + 3) & JUNIPER_BPF_PKT_IN; @@ -1325,21 +1308,20 @@ juniper_parse_header(netdissect_options *ndo, tptr = p+jnx_header_len; /* ok to read extension length ? */ - ND_TCHECK_2(tptr); - jnx_ext_len = GET_BE_U_2(tptr); + extension_length = GET_BE_U_2(tptr); jnx_header_len += 2; tptr +=2; /* nail up the total length - * just in case something goes wrong * with TLV parsing */ - jnx_header_len += jnx_ext_len; + jnx_header_len += extension_length; if (ndo->ndo_vflag > 1) - ND_PRINT(", PCAP Extension(s) total length %u", jnx_ext_len); + ND_PRINT(", PCAP Extension(s) total length %u", extension_length); - ND_TCHECK_LEN(tptr, jnx_ext_len); - while (jnx_ext_len > JUNIPER_EXT_TLV_OVERHEAD) { + ND_TCHECK_LEN(tptr, extension_length); + while (extension_length > JUNIPER_EXT_TLV_OVERHEAD) { tlv_type = GET_U_1(tptr); tptr++; tlv_len = GET_U_1(tptr); @@ -1349,8 +1331,8 @@ juniper_parse_header(netdissect_options *ndo, /* sanity checks */ if (tlv_type == 0 || tlv_len == 0) break; - if (tlv_len+JUNIPER_EXT_TLV_OVERHEAD > jnx_ext_len) - goto trunc; + ND_ICHECK_U(extension_length, <, + tlv_len + JUNIPER_EXT_TLV_OVERHEAD); if (ndo->ndo_vflag > 1) ND_PRINT("\n\t %s Extension TLV #%u, length %u, value ", @@ -1393,7 +1375,7 @@ juniper_parse_header(netdissect_options *ndo, } tptr+=tlv_len; - jnx_ext_len -= tlv_len+JUNIPER_EXT_TLV_OVERHEAD; + extension_length -= tlv_len+JUNIPER_EXT_TLV_OVERHEAD; } if (ndo->ndo_vflag > 1) @@ -1480,7 +1462,6 @@ juniper_parse_header(netdissect_options *ndo, if (ndo->ndo_eflag) ND_PRINT(": "); /* print demarc b/w L2/L3*/ - ND_TCHECK_2(p + l2info->cookie_len); l2info->proto = GET_BE_U_2(p + l2info->cookie_len); break; } @@ -1511,7 +1492,6 @@ juniper_parse_header(netdissect_options *ndo, case DLT_JUNIPER_MLFR: switch (l2info->cookie_type) { case LS_COOKIE_ID: - ND_TCHECK_2(p); l2info->bundle = l2info->cookie[1]; l2info->proto = GET_BE_U_2(p); l2info->header_len += 2; @@ -1536,7 +1516,6 @@ juniper_parse_header(netdissect_options *ndo, case DLT_JUNIPER_MFR: switch (l2info->cookie_type) { case LS_COOKIE_ID: - ND_TCHECK_2(p); l2info->bundle = l2info->cookie[1]; l2info->proto = GET_BE_U_2(p); l2info->header_len += 2; @@ -1606,12 +1585,12 @@ juniper_parse_header(netdissect_options *ndo, break; } - if (ndo->ndo_eflag > 1) + if (ndo->ndo_eflag) ND_PRINT("hlen %u, proto 0x%04x, ", l2info->header_len, l2info->proto); return 1; /* everything went ok so far. continue parsing */ -trunc: - nd_print_trunc(ndo); +invalid: + nd_print_invalid(ndo); return 0; } #endif /* defined(DLT_JUNIPER_GGSN) || defined(DLT_JUNIPER_ES) || \