]> The Tcpdump Group git mirrors - tcpdump/commitdiff
projects / tcpdump / commitdiff
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: fc1f0e7)
ether: clean up MACsec processing.
authorGuy Harris <[email protected]>
Thu, 28 May 2020 08:25:09 +0000 (01:25 -0700)
committerGuy Harris <[email protected]>
Thu, 28 May 2020 08:25:09 +0000 (01:25 -0700)
Print the length early if we're printing the link-layer header.

If the payload is encrypted or otherwise modified, print it out as raw
data.

If the payload is not encrypted or otherwise modified, and we didn't
have a problem printing the header, fetch the type/length field
following the MACsec header, skip past it, and continue, rather than
looping back - there shouldn't be multiple MACsec headers, as far as I
know.  (If that's not the case, go back to looping.)

print-ether.c patch | blob | history

diff --git a/print-ether.c b/print-ether.c
index 0d8dbba9678058c4fa65f7534b7e5f8173f46f78..f8399b402c42ab4068ffd68d7d8fb339196a458d 100644 (file)
--- a/print-ether.c
+++ b/print-ether.c
@@ -204,16 +204,28 @@ recurse:
        p += 2;
        hdrlen += 2;
 
+       /*
+        * Process 802.1AE MACsec headers.
+        */
+       printed_length = 0;
        if (length_type == ETHERTYPE_MACSEC) {
                /*
                 * MACsec, aka IEEE 802.1AE-2006
                 * Print the header, and try to print the payload if it's not encrypted
                 */
+               if (ndo->ndo_eflag) {
+                       ether_type_print(ndo, length_type);
+                       ND_PRINT(", length %u: ", orig_length);
+                       printed_length = 1;
+               }
+
                int ret = macsec_print(ndo, &p, &length, &caplen, &hdrlen);
 
                if (ret == 0) {
-                       /* Payload is encrypted; just quit. */
-                       return (hdrlen + caplen);
+                       /* Payload is encrypted; print it as raw data. */
+                       if (!ndo->ndo_suppress_default_print)
+                               ND_DEFAULTPRINT(p, caplen);
+                       return (hdrlen);
                } else if (ret > 0) {
                        /* Problem printing the header; just quit. */
                        return (ret);
@@ -221,14 +233,18 @@ recurse:
                        /*
                         * Keep processing type/length fields.
                         */
-                       goto recurse;
+                       length_type = GET_BE_U_2(p);
+
+                       length -= 2;
+                       caplen -= 2;
+                       p += 2;
+                       hdrlen += 2;
                }
        }
 
        /*
         * Process VLAN tag types.
         */
-       printed_length = 0;
        while (length_type == ETHERTYPE_8021Q  ||
                length_type == ETHERTYPE_8021Q9100 ||
                length_type == ETHERTYPE_8021Q9200 ||
[mirror] the TCPdump network dissector