/* packet-rpl.c * Routines for RPL * Jochen Friedrich * * Wireshark - Network traffic analyzer * By Gerald Combs * Copyright 1998 Gerald Combs * * SPDX-License-Identifier: GPL-2.0-or-later */ #include "config.h" #include #include #include "packet-llc.h" void proto_register_rpl(void); void proto_reg_handoff_rpl(void); static int proto_rpl; static int hf_rpl_type; static int hf_rpl_len; static int hf_rpl_corrval; static int hf_rpl_respval; static int hf_rpl_maxframe; static int hf_rpl_connclass; static int hf_rpl_lmac; static int hf_rpl_smac; static int hf_rpl_sap; static int hf_rpl_equipment; static int hf_rpl_memsize; static int hf_rpl_bsmversion; static int hf_rpl_adapterid; static int hf_rpl_shortname; static int hf_rpl_laddress; static int hf_rpl_xaddress; static int hf_rpl_sequence; static int hf_rpl_config; static int hf_rpl_flags; static int hf_rpl_data; static int hf_rpl_ec; static int ett_rpl; static int ett_rpl_0004; static int ett_rpl_0008; static int ett_rpl_4003; static int ett_rpl_4006; static int ett_rpl_4007; static int ett_rpl_4009; static int ett_rpl_400a; static int ett_rpl_400b; static int ett_rpl_400c; static int ett_rpl_4011; static int ett_rpl_4018; static int ett_rpl_c005; static int ett_rpl_c014; static int ett_rpl_unkn; static dissector_handle_t rpl_handle; static const value_string rpl_type_vals[] = { { 1, "FIND Command" }, { 2, "FOUND Frame" }, { 4, "Search Vector" }, { 8, "Connect Info Vector" }, { 0x10, "Send File Request" }, { 0x20, "File Data Response" }, { 0x4003, "Correlator Vector" }, { 0x4006, "Loader Address Vector" }, { 0x4007, "Loader SAP Vector" }, { 0x4009, "Frame Size Sub-Vector" }, { 0x400a, "Connect Class Sub-Vector" }, { 0x400b, "Response Correlator" }, { 0x400c, "Set Address Vector" }, { 0x4011, "Sequence Header" }, { 0x4018, "File Data Vector" }, { 0xc005, "Loader Info Sub-Vector" }, { 0xc014, "Loader Header" }, { 0x0, NULL } }; static void // NOLINTNEXTLINE(misc-no-recursion) dissect_rpl_container(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree) { uint16_t len, type, sublen, subtyp; proto_tree *rpl_container_tree; uint16_t offset; int ett_type; int length, reported_length; len = tvb_get_ntohs(tvb, 0); proto_tree_add_item(tree, hf_rpl_len, tvb, 0, 2, ENC_BIG_ENDIAN); type = tvb_get_ntohs(tvb, 2); proto_tree_add_item(tree, hf_rpl_type, tvb, 2, 2, ENC_BIG_ENDIAN); offset = 4; switch (type) { case 1: case 2: case 4: case 8: case 0x10: case 0x20: while (len >= offset+4) { sublen = tvb_get_ntohs(tvb, offset); subtyp = tvb_get_ntohs(tvb, offset+2); ett_type = ett_rpl_unkn; if(subtyp == 0x0004) ett_type = ett_rpl_0004; if(subtyp == 0x0008) ett_type = ett_rpl_0008; if(subtyp == 0x4003) ett_type = ett_rpl_4003; if(subtyp == 0x4006) ett_type = ett_rpl_4006; if(subtyp == 0x4007) ett_type = ett_rpl_4007; if(subtyp == 0x4009) ett_type = ett_rpl_4009; if(subtyp == 0x400a) ett_type = ett_rpl_400a; if(subtyp == 0x400b) ett_type = ett_rpl_400b; if(subtyp == 0x400c) ett_type = ett_rpl_400c; if(subtyp == 0x4011) ett_type = ett_rpl_4011; if(subtyp == 0x4018) ett_type = ett_rpl_4018; if(subtyp == 0xc005) ett_type = ett_rpl_c005; if(subtyp == 0xc014) ett_type = ett_rpl_c014; rpl_container_tree = proto_tree_add_subtree(tree, tvb, offset, sublen, ett_type, NULL, val_to_str_const(subtyp, rpl_type_vals, "Unknown Type")); length = tvb_captured_length_remaining(tvb, offset); if (length > sublen) length = sublen; reported_length = tvb_reported_length_remaining(tvb, offset); if (reported_length > sublen) reported_length = sublen; if ( length > 0) { dissect_rpl_container(tvb_new_subset_length_caplen(tvb, offset, length, reported_length), pinfo, rpl_container_tree); offset += reported_length; } else { /* no more data, exit the loop */ offset += reported_length; break; } } break; case 0x4003: proto_tree_add_item(tree, hf_rpl_corrval, tvb, offset, 4, ENC_BIG_ENDIAN); offset += 4; break; case 0x4006: proto_tree_add_item(tree, hf_rpl_lmac, tvb, offset, 6, ENC_NA); offset += 6; break; case 0x4007: proto_tree_add_item(tree, hf_rpl_sap, tvb, offset, 1, ENC_BIG_ENDIAN); offset ++; break; case 0x4009: proto_tree_add_item(tree, hf_rpl_maxframe, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; break; case 0x400a: proto_tree_add_item(tree, hf_rpl_connclass, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; break; case 0x400b: proto_tree_add_item(tree, hf_rpl_respval, tvb, offset, 1, ENC_BIG_ENDIAN); offset ++; break; case 0x400c: proto_tree_add_item(tree, hf_rpl_smac, tvb, offset, 6, ENC_NA); offset += 6; break; case 0x4011: proto_tree_add_item(tree, hf_rpl_sequence, tvb, offset, 4, ENC_BIG_ENDIAN); offset += 4; break; case 0x4018: proto_tree_add_item(tree, hf_rpl_data, tvb, offset, len-4, ENC_NA); offset += len - 4; break; case 0xc005: proto_tree_add_item(tree, hf_rpl_config, tvb, offset, 8, ENC_NA); offset += 8; proto_tree_add_item(tree, hf_rpl_equipment, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; proto_tree_add_item(tree, hf_rpl_memsize, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; proto_tree_add_item(tree, hf_rpl_bsmversion, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; proto_tree_add_item(tree, hf_rpl_ec, tvb, offset, 6, ENC_NA); offset += 6; proto_tree_add_item(tree, hf_rpl_adapterid, tvb, offset, 2, ENC_BIG_ENDIAN); offset += 2; proto_tree_add_item(tree, hf_rpl_shortname, tvb, offset, 10, ENC_NA); offset += 10; break; case 0xc014: proto_tree_add_item(tree, hf_rpl_laddress, tvb, offset, 4, ENC_BIG_ENDIAN); offset += 4; proto_tree_add_item(tree, hf_rpl_xaddress, tvb, offset, 4, ENC_BIG_ENDIAN); offset += 4; proto_tree_add_item(tree, hf_rpl_flags, tvb, offset, 1, ENC_BIG_ENDIAN); offset ++; break; default: call_data_dissector(tvb_new_subset_remaining(tvb, 4), pinfo, tree); break; } if (tvb_reported_length(tvb) > offset) call_data_dissector(tvb_new_subset_remaining(tvb, offset), pinfo, tree); } static int dissect_rpl(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void* data _U_) { uint16_t rpl_len, rpl_type; proto_item *ti; proto_tree *rpl_tree; tvbuff_t *next_tvb; col_set_str(pinfo->cinfo, COL_PROTOCOL, "RPL"); rpl_len = tvb_get_ntohs(tvb, 0); rpl_type = tvb_get_ntohs(tvb, 2); col_set_str(pinfo->cinfo, COL_INFO, val_to_str_const(rpl_type, rpl_type_vals, "Unknown Type")); ti = proto_tree_add_item(tree, proto_rpl, tvb, 0, rpl_len, ENC_NA); rpl_tree = proto_item_add_subtree(ti, ett_rpl); next_tvb = tvb_new_subset_remaining(tvb, 0); set_actual_length(next_tvb, rpl_len); dissect_rpl_container(next_tvb, pinfo, rpl_tree); if (tvb_reported_length(tvb) > rpl_len) call_data_dissector(tvb_new_subset_remaining(tvb, rpl_len), pinfo, tree); return tvb_captured_length(tvb); } void proto_register_rpl(void) { static hf_register_info hf[] = { { &hf_rpl_type, { "Type", "rpl.type", FT_UINT16, BASE_DEC, VALS(rpl_type_vals), 0x0, "RPL Packet Type", HFILL }}, { &hf_rpl_len, { "Length", "rpl.len", FT_UINT16, BASE_DEC, NULL, 0x0, "RPL Packet Length", HFILL }}, { &hf_rpl_corrval, { "Correlator Value", "rpl.corrval", FT_UINT32, BASE_HEX, NULL, 0x0, "RPL Correlator Value", HFILL }}, { &hf_rpl_respval, { "Response Code", "rpl.respval", FT_UINT8, BASE_DEC, NULL, 0x0, "RPL Response Code", HFILL }}, { &hf_rpl_maxframe, { "Maximum Frame Size", "rpl.maxframe", FT_UINT16, BASE_DEC, NULL, 0x0, "RPL Maximum Frame Size", HFILL }}, { &hf_rpl_connclass, { "Connection Class", "rpl.connclass", FT_UINT16, BASE_HEX, NULL, 0x0, "RPL Connection Class", HFILL }}, { &hf_rpl_lmac, { "Loader MAC Address", "rpl.lmac", FT_ETHER, BASE_NONE, NULL, 0x0, "RPL Loader MAC Address", HFILL }}, { &hf_rpl_smac, { "Set MAC Address", "rpl.smac", FT_ETHER, BASE_NONE, NULL, 0x0, "RPL Set MAC Address", HFILL }}, { &hf_rpl_sap, { "SAP", "rpl.sap", FT_UINT8, BASE_HEX, VALS(sap_vals), 0x0, "RPL SAP", HFILL }}, { &hf_rpl_equipment, { "Equipment", "rpl.equipment", FT_UINT16, BASE_HEX, NULL, 0x0, "RPL Equipment - AX from INT 11h", HFILL }}, { &hf_rpl_memsize, { "Memory Size", "rpl.memsize", FT_UINT16, BASE_DEC, NULL, 0x0, "RPL Memory Size - AX from INT 12h MINUS 32k MINUS the Boot ROM Size", HFILL }}, { &hf_rpl_bsmversion, { "BSM Version", "rpl.bsmversion", FT_UINT16, BASE_HEX, NULL, 0x0, "RPL Version of BSM.obj", HFILL }}, { &hf_rpl_adapterid, { "Adapter ID", "rpl.adapterid", FT_UINT16, BASE_HEX, NULL, 0x0, "RPL Adapter ID", HFILL }}, { &hf_rpl_shortname, { "Short Name", "rpl.shortname", FT_BYTES, BASE_NONE, NULL, 0x0, "RPL BSM Short Name", HFILL }}, { &hf_rpl_laddress, { "Locate Address", "rpl.laddress", FT_UINT32, BASE_HEX, NULL, 0x0, "RPL Locate Address", HFILL }}, { &hf_rpl_xaddress, { "XFER Address", "rpl.xaddress", FT_UINT32, BASE_HEX, NULL, 0x0, "RPL Transfer Control Address", HFILL }}, { &hf_rpl_sequence, { "Sequence Number", "rpl.sequence", FT_UINT32, BASE_HEX, NULL, 0x0, "RPL Sequence Number", HFILL }}, { &hf_rpl_config, { "Configuration", "rpl.config", FT_BYTES, BASE_NONE, NULL, 0x0, "RPL Configuration", HFILL }}, { &hf_rpl_flags, { "Flags", "rpl.flags", FT_UINT8, BASE_HEX, NULL, 0x0, "RPL Bit Significant Option Flags", HFILL }}, { &hf_rpl_data, { "Data", "rpl.data", FT_BYTES, BASE_NONE, NULL, 0x0, "RPL Binary File Data", HFILL }}, { &hf_rpl_ec, { "EC", "rpl.ec", FT_BYTES, BASE_NONE, NULL, 0x0, "RPL EC", HFILL }}, }; static int *ett[] = { &ett_rpl, &ett_rpl_0004, &ett_rpl_0008, &ett_rpl_4003, &ett_rpl_4006, &ett_rpl_4007, &ett_rpl_4009, &ett_rpl_400a, &ett_rpl_400b, &ett_rpl_400c, &ett_rpl_4011, &ett_rpl_4018, &ett_rpl_c005, &ett_rpl_c014, &ett_rpl_unkn }; proto_rpl = proto_register_protocol("Remote Program Load", "RPL", "rpl"); proto_register_field_array(proto_rpl, hf, array_length(hf)); proto_register_subtree_array(ett, array_length(ett)); rpl_handle = register_dissector("rpl", dissect_rpl, proto_rpl); } void proto_reg_handoff_rpl(void) { dissector_add_uint("llc.dsap", SAP_RPL, rpl_handle); } /* * Editor modelines - https://www.wireshark.org/tools/modelines.html * * Local variables: * c-basic-offset: 8 * tab-width: 8 * indent-tabs-mode: t * End: * * vi: set shiftwidth=8 tabstop=8 noexpandtab: * :indentSize=8:tabSize=8:noTabs=false: */