1*05b00f60SXin Li /*
2*05b00f60SXin Li * Copyright (c) 1998-2006 The TCPDUMP project
3*05b00f60SXin Li *
4*05b00f60SXin Li * Redistribution and use in source and binary forms, with or without
5*05b00f60SXin Li * modification, are permitted provided that: (1) source code
6*05b00f60SXin Li * distributions retain the above copyright notice and this paragraph
7*05b00f60SXin Li * in its entirety, and (2) distributions including binary code include
8*05b00f60SXin Li * the above copyright notice and this paragraph in its entirety in
9*05b00f60SXin Li * the documentation or other materials provided with the distribution.
10*05b00f60SXin Li * THIS SOFTWARE IS PROVIDED ``AS IS'' AND
11*05b00f60SXin Li * WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, WITHOUT
12*05b00f60SXin Li * LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
13*05b00f60SXin Li * FOR A PARTICULAR PURPOSE.
14*05b00f60SXin Li *
15*05b00f60SXin Li * Original code by Carles Kishimoto <[email protected]>
16*05b00f60SXin Li */
17*05b00f60SXin Li
18*05b00f60SXin Li /* \summary: Cisco VLAN Query Protocol (VQP) printer */
19*05b00f60SXin Li
20*05b00f60SXin Li #ifdef HAVE_CONFIG_H
21*05b00f60SXin Li #include <config.h>
22*05b00f60SXin Li #endif
23*05b00f60SXin Li
24*05b00f60SXin Li #include "netdissect-stdinc.h"
25*05b00f60SXin Li
26*05b00f60SXin Li #define ND_LONGJMP_FROM_TCHECK
27*05b00f60SXin Li #include "netdissect.h"
28*05b00f60SXin Li #include "extract.h"
29*05b00f60SXin Li #include "addrtoname.h"
30*05b00f60SXin Li
31*05b00f60SXin Li #define VQP_VERSION 1
32*05b00f60SXin Li
33*05b00f60SXin Li /*
34*05b00f60SXin Li * VQP common header
35*05b00f60SXin Li *
36*05b00f60SXin Li * 0 1 2 3
37*05b00f60SXin Li * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
38*05b00f60SXin Li * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
39*05b00f60SXin Li * | Constant | Packet type | Error Code | nitems |
40*05b00f60SXin Li * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
41*05b00f60SXin Li * | Packet Sequence Number (4 bytes) |
42*05b00f60SXin Li * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
43*05b00f60SXin Li */
44*05b00f60SXin Li
45*05b00f60SXin Li struct vqp_common_header_t {
46*05b00f60SXin Li nd_uint8_t version;
47*05b00f60SXin Li nd_uint8_t msg_type;
48*05b00f60SXin Li nd_uint8_t error_code;
49*05b00f60SXin Li nd_uint8_t nitems;
50*05b00f60SXin Li nd_uint32_t sequence;
51*05b00f60SXin Li };
52*05b00f60SXin Li
53*05b00f60SXin Li struct vqp_obj_tlv_t {
54*05b00f60SXin Li nd_uint32_t obj_type;
55*05b00f60SXin Li nd_uint16_t obj_length;
56*05b00f60SXin Li };
57*05b00f60SXin Li
58*05b00f60SXin Li #define VQP_OBJ_REQ_JOIN_PORT 0x01
59*05b00f60SXin Li #define VQP_OBJ_RESP_VLAN 0x02
60*05b00f60SXin Li #define VQP_OBJ_REQ_RECONFIRM 0x03
61*05b00f60SXin Li #define VQP_OBJ_RESP_RECONFIRM 0x04
62*05b00f60SXin Li
63*05b00f60SXin Li static const struct tok vqp_msg_type_values[] = {
64*05b00f60SXin Li { VQP_OBJ_REQ_JOIN_PORT, "Request, Join Port"},
65*05b00f60SXin Li { VQP_OBJ_RESP_VLAN, "Response, VLAN"},
66*05b00f60SXin Li { VQP_OBJ_REQ_RECONFIRM, "Request, Reconfirm"},
67*05b00f60SXin Li { VQP_OBJ_RESP_RECONFIRM, "Response, Reconfirm"},
68*05b00f60SXin Li { 0, NULL}
69*05b00f60SXin Li };
70*05b00f60SXin Li
71*05b00f60SXin Li static const struct tok vqp_error_code_values[] = {
72*05b00f60SXin Li { 0x00, "No error"},
73*05b00f60SXin Li { 0x03, "Access denied"},
74*05b00f60SXin Li { 0x04, "Shutdown port"},
75*05b00f60SXin Li { 0x05, "Wrong VTP domain"},
76*05b00f60SXin Li { 0, NULL}
77*05b00f60SXin Li };
78*05b00f60SXin Li
79*05b00f60SXin Li /* FIXME the heading 0x0c looks ugly - those must be flags etc. */
80*05b00f60SXin Li #define VQP_OBJ_IP_ADDRESS 0x0c01
81*05b00f60SXin Li #define VQP_OBJ_PORT_NAME 0x0c02
82*05b00f60SXin Li #define VQP_OBJ_VLAN_NAME 0x0c03
83*05b00f60SXin Li #define VQP_OBJ_VTP_DOMAIN 0x0c04
84*05b00f60SXin Li #define VQP_OBJ_ETHERNET_PKT 0x0c05
85*05b00f60SXin Li #define VQP_OBJ_MAC_NULL 0x0c06
86*05b00f60SXin Li #define VQP_OBJ_MAC_ADDRESS 0x0c08
87*05b00f60SXin Li
88*05b00f60SXin Li static const struct tok vqp_obj_values[] = {
89*05b00f60SXin Li { VQP_OBJ_IP_ADDRESS, "Client IP Address" },
90*05b00f60SXin Li { VQP_OBJ_PORT_NAME, "Port Name" },
91*05b00f60SXin Li { VQP_OBJ_VLAN_NAME, "VLAN Name" },
92*05b00f60SXin Li { VQP_OBJ_VTP_DOMAIN, "VTP Domain" },
93*05b00f60SXin Li { VQP_OBJ_ETHERNET_PKT, "Ethernet Packet" },
94*05b00f60SXin Li { VQP_OBJ_MAC_NULL, "MAC Null" },
95*05b00f60SXin Li { VQP_OBJ_MAC_ADDRESS, "MAC Address" },
96*05b00f60SXin Li { 0, NULL}
97*05b00f60SXin Li };
98*05b00f60SXin Li
99*05b00f60SXin Li void
vqp_print(netdissect_options * ndo,const u_char * pptr,u_int len)100*05b00f60SXin Li vqp_print(netdissect_options *ndo, const u_char *pptr, u_int len)
101*05b00f60SXin Li {
102*05b00f60SXin Li const struct vqp_common_header_t *vqp_common_header;
103*05b00f60SXin Li const struct vqp_obj_tlv_t *vqp_obj_tlv;
104*05b00f60SXin Li
105*05b00f60SXin Li const u_char *tptr;
106*05b00f60SXin Li uint8_t version;
107*05b00f60SXin Li uint16_t vqp_obj_len;
108*05b00f60SXin Li uint32_t vqp_obj_type;
109*05b00f60SXin Li u_int tlen;
110*05b00f60SXin Li uint8_t nitems;
111*05b00f60SXin Li
112*05b00f60SXin Li ndo->ndo_protocol = "vqp";
113*05b00f60SXin Li tptr=pptr;
114*05b00f60SXin Li tlen = len;
115*05b00f60SXin Li vqp_common_header = (const struct vqp_common_header_t *)pptr;
116*05b00f60SXin Li ND_TCHECK_SIZE(vqp_common_header);
117*05b00f60SXin Li if (sizeof(struct vqp_common_header_t) > tlen)
118*05b00f60SXin Li goto invalid;
119*05b00f60SXin Li version = GET_U_1(vqp_common_header->version);
120*05b00f60SXin Li
121*05b00f60SXin Li /*
122*05b00f60SXin Li * Sanity checking of the header.
123*05b00f60SXin Li */
124*05b00f60SXin Li if (version != VQP_VERSION) {
125*05b00f60SXin Li ND_PRINT("VQP version %u packet not supported",
126*05b00f60SXin Li version);
127*05b00f60SXin Li return;
128*05b00f60SXin Li }
129*05b00f60SXin Li
130*05b00f60SXin Li /* in non-verbose mode just lets print the basic Message Type */
131*05b00f60SXin Li if (ndo->ndo_vflag < 1) {
132*05b00f60SXin Li ND_PRINT("VQPv%u %s Message, error-code %s (%u), length %u",
133*05b00f60SXin Li version,
134*05b00f60SXin Li tok2str(vqp_msg_type_values, "unknown (%u)",GET_U_1(vqp_common_header->msg_type)),
135*05b00f60SXin Li tok2str(vqp_error_code_values, "unknown", GET_U_1(vqp_common_header->error_code)),
136*05b00f60SXin Li GET_U_1(vqp_common_header->error_code),
137*05b00f60SXin Li len);
138*05b00f60SXin Li return;
139*05b00f60SXin Li }
140*05b00f60SXin Li
141*05b00f60SXin Li /* ok they seem to want to know everything - lets fully decode it */
142*05b00f60SXin Li nitems = GET_U_1(vqp_common_header->nitems);
143*05b00f60SXin Li ND_PRINT("\n\tVQPv%u, %s Message, error-code %s (%u), seq 0x%08x, items %u, length %u",
144*05b00f60SXin Li version,
145*05b00f60SXin Li tok2str(vqp_msg_type_values, "unknown (%u)",GET_U_1(vqp_common_header->msg_type)),
146*05b00f60SXin Li tok2str(vqp_error_code_values, "unknown", GET_U_1(vqp_common_header->error_code)),
147*05b00f60SXin Li GET_U_1(vqp_common_header->error_code),
148*05b00f60SXin Li GET_BE_U_4(vqp_common_header->sequence),
149*05b00f60SXin Li nitems,
150*05b00f60SXin Li len);
151*05b00f60SXin Li
152*05b00f60SXin Li /* skip VQP Common header */
153*05b00f60SXin Li tptr+=sizeof(struct vqp_common_header_t);
154*05b00f60SXin Li tlen-=sizeof(struct vqp_common_header_t);
155*05b00f60SXin Li
156*05b00f60SXin Li while (nitems != 0 && tlen != 0) {
157*05b00f60SXin Li
158*05b00f60SXin Li vqp_obj_tlv = (const struct vqp_obj_tlv_t *)tptr;
159*05b00f60SXin Li ND_TCHECK_SIZE(vqp_obj_tlv);
160*05b00f60SXin Li if (sizeof(struct vqp_obj_tlv_t) > tlen)
161*05b00f60SXin Li goto invalid;
162*05b00f60SXin Li vqp_obj_type = GET_BE_U_4(vqp_obj_tlv->obj_type);
163*05b00f60SXin Li vqp_obj_len = GET_BE_U_2(vqp_obj_tlv->obj_length);
164*05b00f60SXin Li tptr+=sizeof(struct vqp_obj_tlv_t);
165*05b00f60SXin Li tlen-=sizeof(struct vqp_obj_tlv_t);
166*05b00f60SXin Li
167*05b00f60SXin Li ND_PRINT("\n\t %s Object (0x%08x), length %u, value: ",
168*05b00f60SXin Li tok2str(vqp_obj_values, "Unknown", vqp_obj_type),
169*05b00f60SXin Li vqp_obj_type, vqp_obj_len);
170*05b00f60SXin Li
171*05b00f60SXin Li /* basic sanity check */
172*05b00f60SXin Li if (vqp_obj_type == 0 || vqp_obj_len ==0) {
173*05b00f60SXin Li return;
174*05b00f60SXin Li }
175*05b00f60SXin Li
176*05b00f60SXin Li /* did we capture enough for fully decoding the object ? */
177*05b00f60SXin Li ND_TCHECK_LEN(tptr, vqp_obj_len);
178*05b00f60SXin Li if (vqp_obj_len > tlen)
179*05b00f60SXin Li goto invalid;
180*05b00f60SXin Li
181*05b00f60SXin Li switch(vqp_obj_type) {
182*05b00f60SXin Li case VQP_OBJ_IP_ADDRESS:
183*05b00f60SXin Li if (vqp_obj_len != 4)
184*05b00f60SXin Li goto invalid;
185*05b00f60SXin Li ND_PRINT("%s (0x%08x)", GET_IPADDR_STRING(tptr),
186*05b00f60SXin Li GET_BE_U_4(tptr));
187*05b00f60SXin Li break;
188*05b00f60SXin Li /* those objects have similar semantics - fall through */
189*05b00f60SXin Li case VQP_OBJ_PORT_NAME:
190*05b00f60SXin Li case VQP_OBJ_VLAN_NAME:
191*05b00f60SXin Li case VQP_OBJ_VTP_DOMAIN:
192*05b00f60SXin Li case VQP_OBJ_ETHERNET_PKT:
193*05b00f60SXin Li nd_printjnp(ndo, tptr, vqp_obj_len);
194*05b00f60SXin Li break;
195*05b00f60SXin Li /* those objects have similar semantics - fall through */
196*05b00f60SXin Li case VQP_OBJ_MAC_ADDRESS:
197*05b00f60SXin Li case VQP_OBJ_MAC_NULL:
198*05b00f60SXin Li if (vqp_obj_len != MAC_ADDR_LEN)
199*05b00f60SXin Li goto invalid;
200*05b00f60SXin Li ND_PRINT("%s", GET_ETHERADDR_STRING(tptr));
201*05b00f60SXin Li break;
202*05b00f60SXin Li default:
203*05b00f60SXin Li if (ndo->ndo_vflag <= 1)
204*05b00f60SXin Li print_unknown_data(ndo,tptr, "\n\t ", vqp_obj_len);
205*05b00f60SXin Li break;
206*05b00f60SXin Li }
207*05b00f60SXin Li tptr += vqp_obj_len;
208*05b00f60SXin Li tlen -= vqp_obj_len;
209*05b00f60SXin Li nitems--;
210*05b00f60SXin Li }
211*05b00f60SXin Li return;
212*05b00f60SXin Li invalid:
213*05b00f60SXin Li nd_print_invalid(ndo);
214*05b00f60SXin Li }
215