X-Git-Url: https://git.tcpdump.org/tcpdump/blobdiff_plain/d57e945e5eb1a24ed43670f9cca6d51cf6d6fd99..b07acab03ae9f76fe822ff9239d705f48efd270d:/print-eigrp.c diff --git a/print-eigrp.c b/print-eigrp.c index 83a9f31a..c9b35267 100644 --- a/print-eigrp.c +++ b/print-eigrp.c @@ -1,5 +1,5 @@ /* - * Copyright (c) 1998-2004 Hannes Gredler + * Copyright (c) 1998-2004 Hannes Gredler * The TCPDUMP project * * Redistribution and use in source and binary forms, with or without @@ -14,32 +14,34 @@ * FOR A PARTICULAR PURPOSE. */ -#define NETDISSECT_REWORKED +/* \summary: Enhanced Interior Gateway Routing Protocol (EIGRP) printer */ + #ifdef HAVE_CONFIG_H #include "config.h" #endif -#include +#include #include -#include "interface.h" +#include "netdissect.h" #include "extract.h" #include "addrtoname.h" /* * packet format documented at * http://www.rhyshaden.com/eigrp.htm + * RFC 7868 */ struct eigrp_common_header { - u_int8_t version; - u_int8_t opcode; - u_int8_t checksum[2]; - u_int8_t flags[4]; - u_int8_t seq[4]; - u_int8_t ack[4]; - u_int8_t asn[4]; + uint8_t version; + uint8_t opcode; + uint8_t checksum[2]; + uint8_t flags[4]; + uint8_t seq[4]; + uint8_t ack[4]; + uint8_t asn[4]; }; #define EIGRP_VERSION 2 @@ -68,8 +70,8 @@ static const struct tok eigrp_common_header_flag_values[] = { }; struct eigrp_tlv_header { - u_int8_t type[2]; - u_int8_t length[2]; + uint8_t type[2]; + uint8_t length[2]; }; #define EIGRP_TLV_GENERAL_PARM 0x0001 @@ -102,91 +104,91 @@ static const struct tok eigrp_tlv_values[] = { }; struct eigrp_tlv_general_parm_t { - u_int8_t k1; - u_int8_t k2; - u_int8_t k3; - u_int8_t k4; - u_int8_t k5; - u_int8_t res; - u_int8_t holdtime[2]; + uint8_t k1; + uint8_t k2; + uint8_t k3; + uint8_t k4; + uint8_t k5; + uint8_t res; + uint8_t holdtime[2]; }; struct eigrp_tlv_sw_version_t { - u_int8_t ios_major; - u_int8_t ios_minor; - u_int8_t eigrp_major; - u_int8_t eigrp_minor; + uint8_t ios_major; + uint8_t ios_minor; + uint8_t eigrp_major; + uint8_t eigrp_minor; }; struct eigrp_tlv_ip_int_t { - u_int8_t nexthop[4]; - u_int8_t delay[4]; - u_int8_t bandwidth[4]; - u_int8_t mtu[3]; - u_int8_t hopcount; - u_int8_t reliability; - u_int8_t load; - u_int8_t reserved[2]; - u_int8_t plen; - u_int8_t destination; /* variable length [1-4] bytes encoding */ + uint8_t nexthop[4]; + uint8_t delay[4]; + uint8_t bandwidth[4]; + uint8_t mtu[3]; + uint8_t hopcount; + uint8_t reliability; + uint8_t load; + uint8_t reserved[2]; + uint8_t plen; + uint8_t destination; /* variable length [1-4] bytes encoding */ }; struct eigrp_tlv_ip_ext_t { - u_int8_t nexthop[4]; - u_int8_t origin_router[4]; - u_int8_t origin_as[4]; - u_int8_t tag[4]; - u_int8_t metric[4]; - u_int8_t reserved[2]; - u_int8_t proto_id; - u_int8_t flags; - u_int8_t delay[4]; - u_int8_t bandwidth[4]; - u_int8_t mtu[3]; - u_int8_t hopcount; - u_int8_t reliability; - u_int8_t load; - u_int8_t reserved2[2]; - u_int8_t plen; - u_int8_t destination; /* variable length [1-4] bytes encoding */ + uint8_t nexthop[4]; + uint8_t origin_router[4]; + uint8_t origin_as[4]; + uint8_t tag[4]; + uint8_t metric[4]; + uint8_t reserved[2]; + uint8_t proto_id; + uint8_t flags; + uint8_t delay[4]; + uint8_t bandwidth[4]; + uint8_t mtu[3]; + uint8_t hopcount; + uint8_t reliability; + uint8_t load; + uint8_t reserved2[2]; + uint8_t plen; + uint8_t destination; /* variable length [1-4] bytes encoding */ }; struct eigrp_tlv_at_cable_setup_t { - u_int8_t cable_start[2]; - u_int8_t cable_end[2]; - u_int8_t router_id[4]; + uint8_t cable_start[2]; + uint8_t cable_end[2]; + uint8_t router_id[4]; }; struct eigrp_tlv_at_int_t { - u_int8_t nexthop[4]; - u_int8_t delay[4]; - u_int8_t bandwidth[4]; - u_int8_t mtu[3]; - u_int8_t hopcount; - u_int8_t reliability; - u_int8_t load; - u_int8_t reserved[2]; - u_int8_t cable_start[2]; - u_int8_t cable_end[2]; + uint8_t nexthop[4]; + uint8_t delay[4]; + uint8_t bandwidth[4]; + uint8_t mtu[3]; + uint8_t hopcount; + uint8_t reliability; + uint8_t load; + uint8_t reserved[2]; + uint8_t cable_start[2]; + uint8_t cable_end[2]; }; struct eigrp_tlv_at_ext_t { - u_int8_t nexthop[4]; - u_int8_t origin_router[4]; - u_int8_t origin_as[4]; - u_int8_t tag[4]; - u_int8_t proto_id; - u_int8_t flags; - u_int8_t metric[2]; - u_int8_t delay[4]; - u_int8_t bandwidth[4]; - u_int8_t mtu[3]; - u_int8_t hopcount; - u_int8_t reliability; - u_int8_t load; - u_int8_t reserved2[2]; - u_int8_t cable_start[2]; - u_int8_t cable_end[2]; + uint8_t nexthop[4]; + uint8_t origin_router[4]; + uint8_t origin_as[4]; + uint8_t tag[4]; + uint8_t proto_id; + uint8_t flags; + uint8_t metric[2]; + uint8_t delay[4]; + uint8_t bandwidth[4]; + uint8_t mtu[3]; + uint8_t hopcount; + uint8_t reliability; + uint8_t load; + uint8_t reserved2[2]; + uint8_t cable_start[2]; + uint8_t cable_end[2]; }; static const struct tok eigrp_ext_proto_id_values[] = { @@ -205,13 +207,13 @@ static const struct tok eigrp_ext_proto_id_values[] = { }; void -eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int len) { - +eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int len) +{ const struct eigrp_common_header *eigrp_com_header; const struct eigrp_tlv_header *eigrp_tlv_header; const u_char *tptr,*tlv_tptr; u_int tlen,eigrp_tlv_len,eigrp_tlv_type,tlv_tlen, byte_length, bit_length; - u_int8_t prefix[4]; + uint8_t prefix[4]; union { const struct eigrp_tlv_general_parm_t *eigrp_tlv_general_parm; @@ -245,6 +247,12 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int /* ok they seem to want to know everything - lets fully decode it */ + if (len < sizeof(struct eigrp_common_header)) { + ND_PRINT((ndo, "EIGRP %s, length: %u (too short, < %u)", + tok2str(eigrp_opcode_values, "unknown (%u)",eigrp_com_header->opcode), + len, (u_int) sizeof(struct eigrp_common_header))); + return; + } tlen=len-sizeof(struct eigrp_common_header); /* FIXME print other header info */ @@ -285,6 +293,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int eigrp_tlv_type, eigrp_tlv_len)); + if (eigrp_tlv_len < sizeof(struct eigrp_tlv_header)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) sizeof(struct eigrp_tlv_header))); + break; + } tlv_tptr=tptr+sizeof(struct eigrp_tlv_header); tlv_tlen=eigrp_tlv_len-sizeof(struct eigrp_tlv_header); @@ -295,6 +308,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_GENERAL_PARM: tlv_ptr.eigrp_tlv_general_parm = (const struct eigrp_tlv_general_parm_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_general_parm)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_general_parm)))); + break; + } ND_PRINT((ndo, "\n\t holdtime: %us, k1 %u, k2 %u, k3 %u, k4 %u, k5 %u", EXTRACT_16BITS(tlv_ptr.eigrp_tlv_general_parm->holdtime), @@ -307,6 +325,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_SW_VERSION: tlv_ptr.eigrp_tlv_sw_version = (const struct eigrp_tlv_sw_version_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_sw_version)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_sw_version)))); + break; + } ND_PRINT((ndo, "\n\t IOS version: %u.%u, EIGRP version %u.%u", tlv_ptr.eigrp_tlv_sw_version->ios_major, @@ -317,6 +340,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_IP_INT: tlv_ptr.eigrp_tlv_ip_int = (const struct eigrp_tlv_ip_int_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_ip_int)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_ip_int)))); + break; + } bit_length = tlv_ptr.eigrp_tlv_ip_int->plen; if (bit_length > 32) { @@ -325,15 +353,16 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int } byte_length = (bit_length + 7) / 8; /* variable length encoding */ memset(prefix, 0, 4); + ND_TCHECK2(tlv_ptr.eigrp_tlv_ip_int->destination, byte_length); memcpy(prefix,&tlv_ptr.eigrp_tlv_ip_int->destination,byte_length); ND_PRINT((ndo, "\n\t IPv4 prefix: %15s/%u, nexthop: ", - ipaddr_string(prefix), + ipaddr_string(ndo, prefix), bit_length)); if (EXTRACT_32BITS(&tlv_ptr.eigrp_tlv_ip_int->nexthop) == 0) ND_PRINT((ndo, "self")); else - ND_PRINT((ndo, "%s",ipaddr_string(&tlv_ptr.eigrp_tlv_ip_int->nexthop))); + ND_PRINT((ndo, "%s",ipaddr_string(ndo, &tlv_ptr.eigrp_tlv_ip_int->nexthop))); ND_PRINT((ndo, "\n\t delay %u ms, bandwidth %u Kbps, mtu %u, hop %u, reliability %u, load %u", (EXTRACT_32BITS(&tlv_ptr.eigrp_tlv_ip_int->delay)/100), @@ -346,6 +375,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_IP_EXT: tlv_ptr.eigrp_tlv_ip_ext = (const struct eigrp_tlv_ip_ext_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_ip_ext)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_ip_ext)))); + break; + } bit_length = tlv_ptr.eigrp_tlv_ip_ext->plen; if (bit_length > 32) { @@ -354,18 +388,19 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int } byte_length = (bit_length + 7) / 8; /* variable length encoding */ memset(prefix, 0, 4); + ND_TCHECK2(tlv_ptr.eigrp_tlv_ip_ext->destination, byte_length); memcpy(prefix,&tlv_ptr.eigrp_tlv_ip_ext->destination,byte_length); ND_PRINT((ndo, "\n\t IPv4 prefix: %15s/%u, nexthop: ", - ipaddr_string(prefix), + ipaddr_string(ndo, prefix), bit_length)); if (EXTRACT_32BITS(&tlv_ptr.eigrp_tlv_ip_ext->nexthop) == 0) ND_PRINT((ndo, "self")); else - ND_PRINT((ndo, "%s",ipaddr_string(&tlv_ptr.eigrp_tlv_ip_ext->nexthop))); + ND_PRINT((ndo, "%s",ipaddr_string(ndo, &tlv_ptr.eigrp_tlv_ip_ext->nexthop))); ND_PRINT((ndo, "\n\t origin-router %s, origin-as %u, origin-proto %s, flags [0x%02x], tag 0x%08x, metric %u", - ipaddr_string(tlv_ptr.eigrp_tlv_ip_ext->origin_router), + ipaddr_string(ndo, tlv_ptr.eigrp_tlv_ip_ext->origin_router), EXTRACT_32BITS(tlv_ptr.eigrp_tlv_ip_ext->origin_as), tok2str(eigrp_ext_proto_id_values,"unknown",tlv_ptr.eigrp_tlv_ip_ext->proto_id), tlv_ptr.eigrp_tlv_ip_ext->flags, @@ -383,6 +418,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_AT_CABLE_SETUP: tlv_ptr.eigrp_tlv_at_cable_setup = (const struct eigrp_tlv_at_cable_setup_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_at_cable_setup)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_at_cable_setup)))); + break; + } ND_PRINT((ndo, "\n\t Cable-range: %u-%u, Router-ID %u", EXTRACT_16BITS(&tlv_ptr.eigrp_tlv_at_cable_setup->cable_start), @@ -392,6 +432,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_AT_INT: tlv_ptr.eigrp_tlv_at_int = (const struct eigrp_tlv_at_int_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_at_int)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_at_int)))); + break; + } ND_PRINT((ndo, "\n\t Cable-Range: %u-%u, nexthop: ", EXTRACT_16BITS(&tlv_ptr.eigrp_tlv_at_int->cable_start), @@ -415,6 +460,11 @@ eigrp_print(netdissect_options *ndo, register const u_char *pptr, register u_int case EIGRP_TLV_AT_EXT: tlv_ptr.eigrp_tlv_at_ext = (const struct eigrp_tlv_at_ext_t *)tlv_tptr; + if (tlv_tlen < sizeof(*tlv_ptr.eigrp_tlv_at_ext)) { + ND_PRINT((ndo, " (too short, < %u)", + (u_int) (sizeof(struct eigrp_tlv_header) + sizeof(*tlv_ptr.eigrp_tlv_at_ext)))); + break; + } ND_PRINT((ndo, "\n\t Cable-Range: %u-%u, nexthop: ", EXTRACT_16BITS(&tlv_ptr.eigrp_tlv_at_ext->cable_start),