xref: /aosp_15_r20/external/tcpdump/print-mobility.c (revision 05b00f6010a2396e3db2409989fc67270046269f) 
1*05b00f60SXin Li /*
2*05b00f60SXin Li  * Copyright (C) 2002 WIDE Project.
3*05b00f60SXin Li  * All rights reserved.
4*05b00f60SXin Li  *
5*05b00f60SXin Li  * Redistribution and use in source and binary forms, with or without
6*05b00f60SXin Li  * modification, are permitted provided that the following conditions
7*05b00f60SXin Li  * are met:
8*05b00f60SXin Li  * 1. Redistributions of source code must retain the above copyright
9*05b00f60SXin Li  *    notice, this list of conditions and the following disclaimer.
10*05b00f60SXin Li  * 2. Redistributions in binary form must reproduce the above copyright
11*05b00f60SXin Li  *    notice, this list of conditions and the following disclaimer in the
12*05b00f60SXin Li  *    documentation and/or other materials provided with the distribution.
13*05b00f60SXin Li  * 3. Neither the name of the project nor the names of its contributors
14*05b00f60SXin Li  *    may be used to endorse or promote products derived from this software
15*05b00f60SXin Li  *    without specific prior written permission.
16*05b00f60SXin Li  *
17*05b00f60SXin Li  * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
18*05b00f60SXin Li  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19*05b00f60SXin Li  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20*05b00f60SXin Li  * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
21*05b00f60SXin Li  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22*05b00f60SXin Li  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23*05b00f60SXin Li  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24*05b00f60SXin Li  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25*05b00f60SXin Li  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26*05b00f60SXin Li  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27*05b00f60SXin Li  * SUCH DAMAGE.
28*05b00f60SXin Li  */
29*05b00f60SXin Li 
30*05b00f60SXin Li /* \summary: IPv6 mobility printer */
31*05b00f60SXin Li /* RFC 3775 */
32*05b00f60SXin Li 
33*05b00f60SXin Li #ifdef HAVE_CONFIG_H
34*05b00f60SXin Li #include <config.h>
35*05b00f60SXin Li #endif
36*05b00f60SXin Li 
37*05b00f60SXin Li #include "netdissect-stdinc.h"
38*05b00f60SXin Li 
39*05b00f60SXin Li #include "netdissect.h"
40*05b00f60SXin Li #include "addrtoname.h"
41*05b00f60SXin Li #include "extract.h"
42*05b00f60SXin Li 
43*05b00f60SXin Li #include "ip6.h"
44*05b00f60SXin Li 
45*05b00f60SXin Li 
46*05b00f60SXin Li /* Mobility header */
47*05b00f60SXin Li struct ip6_mobility {
48*05b00f60SXin Li 	nd_uint8_t ip6m_pproto;	/* following payload protocol (for PG) */
49*05b00f60SXin Li 	nd_uint8_t ip6m_len;	/* length in units of 8 octets */
50*05b00f60SXin Li 	nd_uint8_t ip6m_type;	/* message type */
51*05b00f60SXin Li 	nd_uint8_t reserved;	/* reserved */
52*05b00f60SXin Li 	nd_uint16_t ip6m_cksum;	/* sum of IPv6 pseudo-header and MH */
53*05b00f60SXin Li 	union {
54*05b00f60SXin Li 		nd_uint16_t	ip6m_un_data16[1]; /* type-specific field */
55*05b00f60SXin Li 		nd_uint8_t	ip6m_un_data8[2];  /* type-specific field */
56*05b00f60SXin Li 	} ip6m_dataun;
57*05b00f60SXin Li };
58*05b00f60SXin Li 
59*05b00f60SXin Li #define ip6m_data16	ip6m_dataun.ip6m_un_data16
60*05b00f60SXin Li #define ip6m_data8	ip6m_dataun.ip6m_un_data8
61*05b00f60SXin Li 
62*05b00f60SXin Li #define IP6M_MINLEN	8
63*05b00f60SXin Li 
64*05b00f60SXin Li /* https://www.iana.org/assignments/mobility-parameters/mobility-parameters.xhtml */
65*05b00f60SXin Li 
66*05b00f60SXin Li /* message type */
67*05b00f60SXin Li #define IP6M_BINDING_REQUEST	0	/* Binding Refresh Request */
68*05b00f60SXin Li #define IP6M_HOME_TEST_INIT	1	/* Home Test Init */
69*05b00f60SXin Li #define IP6M_CAREOF_TEST_INIT	2	/* Care-of Test Init */
70*05b00f60SXin Li #define IP6M_HOME_TEST		3	/* Home Test */
71*05b00f60SXin Li #define IP6M_CAREOF_TEST	4	/* Care-of Test */
72*05b00f60SXin Li #define IP6M_BINDING_UPDATE	5	/* Binding Update */
73*05b00f60SXin Li #define IP6M_BINDING_ACK	6	/* Binding Acknowledgement */
74*05b00f60SXin Li #define IP6M_BINDING_ERROR	7	/* Binding Error */
75*05b00f60SXin Li #define IP6M_MAX		7
76*05b00f60SXin Li 
77*05b00f60SXin Li static const struct tok ip6m_str[] = {
78*05b00f60SXin Li 	{ IP6M_BINDING_REQUEST,  "BRR"  },
79*05b00f60SXin Li 	{ IP6M_HOME_TEST_INIT,   "HoTI" },
80*05b00f60SXin Li 	{ IP6M_CAREOF_TEST_INIT, "CoTI" },
81*05b00f60SXin Li 	{ IP6M_HOME_TEST,        "HoT"  },
82*05b00f60SXin Li 	{ IP6M_CAREOF_TEST,      "CoT"  },
83*05b00f60SXin Li 	{ IP6M_BINDING_UPDATE,   "BU"   },
84*05b00f60SXin Li 	{ IP6M_BINDING_ACK,      "BA"   },
85*05b00f60SXin Li 	{ IP6M_BINDING_ERROR,    "BE"   },
86*05b00f60SXin Li 	{ 0, NULL }
87*05b00f60SXin Li };
88*05b00f60SXin Li 
89*05b00f60SXin Li static const unsigned ip6m_hdrlen[IP6M_MAX + 1] = {
90*05b00f60SXin Li 	IP6M_MINLEN,      /* IP6M_BINDING_REQUEST  */
91*05b00f60SXin Li 	IP6M_MINLEN + 8,  /* IP6M_HOME_TEST_INIT   */
92*05b00f60SXin Li 	IP6M_MINLEN + 8,  /* IP6M_CAREOF_TEST_INIT */
93*05b00f60SXin Li 	IP6M_MINLEN + 16, /* IP6M_HOME_TEST        */
94*05b00f60SXin Li 	IP6M_MINLEN + 16, /* IP6M_CAREOF_TEST      */
95*05b00f60SXin Li 	IP6M_MINLEN + 4,  /* IP6M_BINDING_UPDATE   */
96*05b00f60SXin Li 	IP6M_MINLEN + 4,  /* IP6M_BINDING_ACK      */
97*05b00f60SXin Li 	IP6M_MINLEN + 16, /* IP6M_BINDING_ERROR    */
98*05b00f60SXin Li };
99*05b00f60SXin Li 
100*05b00f60SXin Li /* Mobility Header Options */
101*05b00f60SXin Li #define IP6MOPT_MINLEN		2
102*05b00f60SXin Li #define IP6MOPT_PAD1          0x0	/* Pad1 */
103*05b00f60SXin Li #define IP6MOPT_PADN          0x1	/* PadN */
104*05b00f60SXin Li #define IP6MOPT_REFRESH	      0x2	/* Binding Refresh Advice */
105*05b00f60SXin Li #define IP6MOPT_REFRESH_MINLEN  4
106*05b00f60SXin Li #define IP6MOPT_ALTCOA        0x3	/* Alternate Care-of Address */
107*05b00f60SXin Li #define IP6MOPT_ALTCOA_MINLEN  18
108*05b00f60SXin Li #define IP6MOPT_NONCEID       0x4	/* Nonce Indices */
109*05b00f60SXin Li #define IP6MOPT_NONCEID_MINLEN  6
110*05b00f60SXin Li #define IP6MOPT_AUTH          0x5	/* Binding Authorization Data */
111*05b00f60SXin Li #define IP6MOPT_AUTH_MINLEN    12
112*05b00f60SXin Li 
113*05b00f60SXin Li static const struct tok ip6m_binding_update_bits [] = {
114*05b00f60SXin Li 	{ 0x08, "A" },
115*05b00f60SXin Li 	{ 0x04, "H" },
116*05b00f60SXin Li 	{ 0x02, "L" },
117*05b00f60SXin Li 	{ 0x01, "K" },
118*05b00f60SXin Li 	{ 0, NULL }
119*05b00f60SXin Li };
120*05b00f60SXin Li 
121*05b00f60SXin Li static int
mobility_opt_print(netdissect_options * ndo,const u_char * bp,const unsigned len)122*05b00f60SXin Li mobility_opt_print(netdissect_options *ndo,
123*05b00f60SXin Li                    const u_char *bp, const unsigned len)
124*05b00f60SXin Li {
125*05b00f60SXin Li 	unsigned i, optlen;
126*05b00f60SXin Li 
127*05b00f60SXin Li 	for (i = 0; i < len; i += optlen) {
128*05b00f60SXin Li 		if (GET_U_1(bp + i) == IP6MOPT_PAD1)
129*05b00f60SXin Li 			optlen = 1;
130*05b00f60SXin Li 		else {
131*05b00f60SXin Li 			if (i + 1 < len) {
132*05b00f60SXin Li 				optlen = GET_U_1(bp + i + 1) + 2;
133*05b00f60SXin Li 			}
134*05b00f60SXin Li 			else
135*05b00f60SXin Li 				goto trunc;
136*05b00f60SXin Li 		}
137*05b00f60SXin Li 		if (i + optlen > len)
138*05b00f60SXin Li 			goto trunc;
139*05b00f60SXin Li 		ND_TCHECK_1(bp + i + optlen);
140*05b00f60SXin Li 
141*05b00f60SXin Li 		switch (GET_U_1(bp + i)) {
142*05b00f60SXin Li 		case IP6MOPT_PAD1:
143*05b00f60SXin Li 			ND_PRINT("(pad1)");
144*05b00f60SXin Li 			break;
145*05b00f60SXin Li 		case IP6MOPT_PADN:
146*05b00f60SXin Li 			if (len - i < IP6MOPT_MINLEN) {
147*05b00f60SXin Li 				ND_PRINT("(padn: trunc)");
148*05b00f60SXin Li 				goto trunc;
149*05b00f60SXin Li 			}
150*05b00f60SXin Li 			ND_PRINT("(padn)");
151*05b00f60SXin Li 			break;
152*05b00f60SXin Li 		case IP6MOPT_REFRESH:
153*05b00f60SXin Li 			if (len - i < IP6MOPT_REFRESH_MINLEN) {
154*05b00f60SXin Li 				ND_PRINT("(refresh: trunc)");
155*05b00f60SXin Li 				goto trunc;
156*05b00f60SXin Li 			}
157*05b00f60SXin Li 			/* units of 4 secs */
158*05b00f60SXin Li 			ND_PRINT("(refresh: %u)",
159*05b00f60SXin Li 				GET_BE_U_2(bp + i + 2) << 2);
160*05b00f60SXin Li 			break;
161*05b00f60SXin Li 		case IP6MOPT_ALTCOA:
162*05b00f60SXin Li 			if (len - i < IP6MOPT_ALTCOA_MINLEN) {
163*05b00f60SXin Li 				ND_PRINT("(altcoa: trunc)");
164*05b00f60SXin Li 				goto trunc;
165*05b00f60SXin Li 			}
166*05b00f60SXin Li 			ND_PRINT("(alt-CoA: %s)", GET_IP6ADDR_STRING(bp + i + 2));
167*05b00f60SXin Li 			break;
168*05b00f60SXin Li 		case IP6MOPT_NONCEID:
169*05b00f60SXin Li 			if (len - i < IP6MOPT_NONCEID_MINLEN) {
170*05b00f60SXin Li 				ND_PRINT("(ni: trunc)");
171*05b00f60SXin Li 				goto trunc;
172*05b00f60SXin Li 			}
173*05b00f60SXin Li 			ND_PRINT("(ni: ho=0x%04x co=0x%04x)",
174*05b00f60SXin Li 				GET_BE_U_2(bp + i + 2),
175*05b00f60SXin Li 				GET_BE_U_2(bp + i + 4));
176*05b00f60SXin Li 			break;
177*05b00f60SXin Li 		case IP6MOPT_AUTH:
178*05b00f60SXin Li 			if (len - i < IP6MOPT_AUTH_MINLEN) {
179*05b00f60SXin Li 				ND_PRINT("(auth: trunc)");
180*05b00f60SXin Li 				goto trunc;
181*05b00f60SXin Li 			}
182*05b00f60SXin Li 			ND_PRINT("(auth)");
183*05b00f60SXin Li 			break;
184*05b00f60SXin Li 		default:
185*05b00f60SXin Li 			if (len - i < IP6MOPT_MINLEN) {
186*05b00f60SXin Li 				ND_PRINT("(sopt_type %u: trunc)",
187*05b00f60SXin Li 					 GET_U_1(bp + i));
188*05b00f60SXin Li 				goto trunc;
189*05b00f60SXin Li 			}
190*05b00f60SXin Li 			ND_PRINT("(type-0x%02x: len=%u)", GET_U_1(bp + i),
191*05b00f60SXin Li 				 GET_U_1(bp + i + 1));
192*05b00f60SXin Li 			break;
193*05b00f60SXin Li 		}
194*05b00f60SXin Li 	}
195*05b00f60SXin Li 	return 0;
196*05b00f60SXin Li 
197*05b00f60SXin Li trunc:
198*05b00f60SXin Li 	return 1;
199*05b00f60SXin Li }
200*05b00f60SXin Li 
201*05b00f60SXin Li /*
202*05b00f60SXin Li  * Mobility Header
203*05b00f60SXin Li  */
204*05b00f60SXin Li int
mobility_print(netdissect_options * ndo,const u_char * bp,const u_char * bp2 _U_)205*05b00f60SXin Li mobility_print(netdissect_options *ndo,
206*05b00f60SXin Li                const u_char *bp, const u_char *bp2 _U_)
207*05b00f60SXin Li {
208*05b00f60SXin Li 	const struct ip6_mobility *mh;
209*05b00f60SXin Li 	const u_char *ep;
210*05b00f60SXin Li 	unsigned mhlen, hlen;
211*05b00f60SXin Li 	uint8_t type;
212*05b00f60SXin Li 
213*05b00f60SXin Li 	ndo->ndo_protocol = "mobility";
214*05b00f60SXin Li 	mh = (const struct ip6_mobility *)bp;
215*05b00f60SXin Li 
216*05b00f60SXin Li 	/* 'ep' points to the end of available data. */
217*05b00f60SXin Li 	ep = ndo->ndo_snapend;
218*05b00f60SXin Li 
219*05b00f60SXin Li 	if (!ND_TTEST_1(mh->ip6m_len)) {
220*05b00f60SXin Li 		/*
221*05b00f60SXin Li 		 * There's not enough captured data to include the
222*05b00f60SXin Li 		 * mobility header length.
223*05b00f60SXin Li 		 *
224*05b00f60SXin Li 		 * Our caller expects us to return the length, however,
225*05b00f60SXin Li 		 * so return a value that will run to the end of the
226*05b00f60SXin Li 		 * captured data.
227*05b00f60SXin Li 		 *
228*05b00f60SXin Li 		 * XXX - "ip6_print()" doesn't do anything with the
229*05b00f60SXin Li 		 * returned length, however, as it breaks out of the
230*05b00f60SXin Li 		 * header-processing loop.
231*05b00f60SXin Li 		 */
232*05b00f60SXin Li 		mhlen = (unsigned)(ep - bp);
233*05b00f60SXin Li 		goto trunc;
234*05b00f60SXin Li 	}
235*05b00f60SXin Li 	mhlen = (GET_U_1(mh->ip6m_len) + 1) << 3;
236*05b00f60SXin Li 
237*05b00f60SXin Li 	/* XXX ip6m_cksum */
238*05b00f60SXin Li 
239*05b00f60SXin Li 	type = GET_U_1(mh->ip6m_type);
240*05b00f60SXin Li 	if (type <= IP6M_MAX && mhlen < ip6m_hdrlen[type]) {
241*05b00f60SXin Li 		ND_PRINT("(header length %u is too small for type %u)", mhlen, type);
242*05b00f60SXin Li 		goto trunc;
243*05b00f60SXin Li 	}
244*05b00f60SXin Li 	ND_PRINT("mobility: %s", tok2str(ip6m_str, "type-#%u", type));
245*05b00f60SXin Li 	switch (type) {
246*05b00f60SXin Li 	case IP6M_BINDING_REQUEST:
247*05b00f60SXin Li 		hlen = IP6M_MINLEN;
248*05b00f60SXin Li 		break;
249*05b00f60SXin Li 	case IP6M_HOME_TEST_INIT:
250*05b00f60SXin Li 	case IP6M_CAREOF_TEST_INIT:
251*05b00f60SXin Li 		hlen = IP6M_MINLEN;
252*05b00f60SXin Li 		if (ndo->ndo_vflag) {
253*05b00f60SXin Li 			ND_PRINT(" %s Init Cookie=%08x:%08x",
254*05b00f60SXin Li 			       type == IP6M_HOME_TEST_INIT ? "Home" : "Care-of",
255*05b00f60SXin Li 			       GET_BE_U_4(bp + hlen),
256*05b00f60SXin Li 			       GET_BE_U_4(bp + hlen + 4));
257*05b00f60SXin Li 		}
258*05b00f60SXin Li 		hlen += 8;
259*05b00f60SXin Li 		break;
260*05b00f60SXin Li 	case IP6M_HOME_TEST:
261*05b00f60SXin Li 	case IP6M_CAREOF_TEST:
262*05b00f60SXin Li 		ND_PRINT(" nonce id=0x%x", GET_BE_U_2(mh->ip6m_data16[0]));
263*05b00f60SXin Li 		hlen = IP6M_MINLEN;
264*05b00f60SXin Li 		if (ndo->ndo_vflag) {
265*05b00f60SXin Li 			ND_PRINT(" %s Init Cookie=%08x:%08x",
266*05b00f60SXin Li 			       type == IP6M_HOME_TEST ? "Home" : "Care-of",
267*05b00f60SXin Li 			       GET_BE_U_4(bp + hlen),
268*05b00f60SXin Li 			       GET_BE_U_4(bp + hlen + 4));
269*05b00f60SXin Li 		}
270*05b00f60SXin Li 		hlen += 8;
271*05b00f60SXin Li 		if (ndo->ndo_vflag) {
272*05b00f60SXin Li 			ND_PRINT(" %s Keygen Token=%08x:%08x",
273*05b00f60SXin Li 			       type == IP6M_HOME_TEST ? "Home" : "Care-of",
274*05b00f60SXin Li 			       GET_BE_U_4(bp + hlen),
275*05b00f60SXin Li 			       GET_BE_U_4(bp + hlen + 4));
276*05b00f60SXin Li 		}
277*05b00f60SXin Li 		hlen += 8;
278*05b00f60SXin Li 		break;
279*05b00f60SXin Li 	case IP6M_BINDING_UPDATE:
280*05b00f60SXin Li 	    {
281*05b00f60SXin Li 		int bits;
282*05b00f60SXin Li 		ND_PRINT(" seq#=%u", GET_BE_U_2(mh->ip6m_data16[0]));
283*05b00f60SXin Li 		hlen = IP6M_MINLEN;
284*05b00f60SXin Li 		ND_TCHECK_2(bp + hlen);
285*05b00f60SXin Li 		bits = (GET_U_1(bp + hlen) & 0xf0) >> 4;
286*05b00f60SXin Li 		if (bits) {
287*05b00f60SXin Li 			ND_PRINT(" ");
288*05b00f60SXin Li 			ND_PRINT("%s",
289*05b00f60SXin Li 				 bittok2str_nosep(ip6m_binding_update_bits,
290*05b00f60SXin Li 				 "bits-#0x%x", bits));
291*05b00f60SXin Li 		}
292*05b00f60SXin Li 		/* Reserved (4bits) */
293*05b00f60SXin Li 		hlen += 1;
294*05b00f60SXin Li 		/* Reserved (8bits) */
295*05b00f60SXin Li 		hlen += 1;
296*05b00f60SXin Li 		/* units of 4 secs */
297*05b00f60SXin Li 		ND_PRINT(" lifetime=%u", GET_BE_U_2(bp + hlen) << 2);
298*05b00f60SXin Li 		hlen += 2;
299*05b00f60SXin Li 		break;
300*05b00f60SXin Li 	    }
301*05b00f60SXin Li 	case IP6M_BINDING_ACK:
302*05b00f60SXin Li 		ND_PRINT(" status=%u", GET_U_1(mh->ip6m_data8[0]));
303*05b00f60SXin Li 		if (GET_U_1(mh->ip6m_data8[1]) & 0x80)
304*05b00f60SXin Li 			ND_PRINT(" K");
305*05b00f60SXin Li 		/* Reserved (7bits) */
306*05b00f60SXin Li 		hlen = IP6M_MINLEN;
307*05b00f60SXin Li 		ND_PRINT(" seq#=%u", GET_BE_U_2(bp + hlen));
308*05b00f60SXin Li 		hlen += 2;
309*05b00f60SXin Li 		/* units of 4 secs */
310*05b00f60SXin Li 		ND_PRINT(" lifetime=%u", GET_BE_U_2(bp + hlen) << 2);
311*05b00f60SXin Li 		hlen += 2;
312*05b00f60SXin Li 		break;
313*05b00f60SXin Li 	case IP6M_BINDING_ERROR:
314*05b00f60SXin Li 		ND_PRINT(" status=%u", GET_U_1(mh->ip6m_data8[0]));
315*05b00f60SXin Li 		/* Reserved */
316*05b00f60SXin Li 		hlen = IP6M_MINLEN;
317*05b00f60SXin Li 		ND_PRINT(" homeaddr %s", GET_IP6ADDR_STRING(bp + hlen));
318*05b00f60SXin Li 		hlen += 16;
319*05b00f60SXin Li 		break;
320*05b00f60SXin Li 	default:
321*05b00f60SXin Li 		ND_PRINT(" len=%u", GET_U_1(mh->ip6m_len));
322*05b00f60SXin Li 		return(mhlen);
323*05b00f60SXin Li 		break;
324*05b00f60SXin Li 	}
325*05b00f60SXin Li 	if (ndo->ndo_vflag)
326*05b00f60SXin Li 		if (mobility_opt_print(ndo, bp + hlen, mhlen - hlen))
327*05b00f60SXin Li 			goto trunc;
328*05b00f60SXin Li 
329*05b00f60SXin Li 	return(mhlen);
330*05b00f60SXin Li 
331*05b00f60SXin Li  trunc:
332*05b00f60SXin Li 	nd_print_trunc(ndo);
333*05b00f60SXin Li 	return(-1);
334*05b00f60SXin Li }
335