osmith
/
wireshark
forked from osmocom/wireshark
1
0
Fork 0
Code Pull Requests Releases Wiki Activity
wireshark/epan/dissectors/packet-interlink.c

236 lines
6.6 KiB
C
Raw Normal View History

This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
/* packet-interlink.c
* Routines for Interlink protocol packet disassembly
* By Uwe Girlich <uwe.girlich@philosys.de>
* Copyright 2010 Uwe Girlich
*
* Wireshark - Network traffic analyzer
* By Gerald Combs <gerald@wireshark.org>
* Copyright 1998 Gerald Combs
*
dissectors: use SPDX identifiers. Change-Id: I92c94448e6641716d03158a5f332c8b53709423a Reviewed-on: https://code.wireshark.org/review/25756 Petri-Dish: Dario Lombardo <lomato@gmail.com> Reviewed-by: Anders Broman <a.broman58@gmail.com>
2018-02-12 11:23:27 +00:00
* SPDX-License-Identifier: GPL-2.0-or-later
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
*/
#include "config.h"
#include <epan/packet.h>
Fix warnings svn path=/trunk/; revision=54089
2013-12-14 12:45:57 +00:00
void proto_register_interlink(void);
void proto_reg_handoff_interlink(void);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
/*
* No public information available.
*/
static int proto_interlink = -1;
static int hf_interlink_id = -1;
static int hf_interlink_version = -1;
static int hf_interlink_cmd = -1;
static int hf_interlink_seq = -1;
static int hf_interlink_flags = -1;
static int hf_interlink_flags_req_ack = -1;
static int hf_interlink_flags_inc_ack_port = -1;
static int hf_interlink_block_type = -1;
static int hf_interlink_block_version = -1;
static int hf_interlink_block_length = -1;
static gint ett_interlink = -1;
static gint ett_interlink_header = -1;
static gint ett_interlink_flags = -1;
static gint ett_interlink_block = -1;
static dissector_handle_t data_handle;
static dissector_table_t subdissector_table;
Dissectors don't need a journey of self discovery. They already know who they are when they register themselves. Saving the handle then to avoid finding it later. Not sure if this will increase unnecessary register_dissector functions (instead of using create_dissector_handle in proto_reg_handoff function) when other dissectors copy/paste, but it should make startup time a few microseconds better. Change-Id: I3839be791b32b84887ac51a6a65fb5733e9f1f43 Reviewed-on: https://code.wireshark.org/review/19481 Petri-Dish: Michael Mann <mmann78@netscape.net> Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org> Reviewed-by: Anders Broman <a.broman58@gmail.com>
2016-12-17 01:06:11 +00:00
static dissector_handle_t interlink_handle;
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
static const value_string names_cmd[] = {
{ 1, "Data" },
{ 2, "Ack" },
{ 0, NULL }
};
Convert some UDP subdissectors to "new" style. Change-Id: I3c1ee97f68af4539b97d50b75c03ff82147dbc5e Reviewed-on: https://code.wireshark.org/review/11649 Reviewed-by: Michael Mann <mmann78@netscape.net>
2015-11-09 01:15:22 +00:00
static int
dissect_interlink(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void* data _U_)
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
{
int offset = 0;
proto_tree_add_subtree[_format] Change-Id: I7e016f10fcfdc0523bf2fe8c11295c0334f7c332 Reviewed-on: https://code.wireshark.org/review/2694 Reviewed-by: Michael Mann <mmann78@netscape.net>
2014-06-29 13:13:51 +00:00
proto_tree *il_tree;
proto_item *il_item;
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
proto_tree *ilh_tree = NULL;
proto_tree *ilb_tree = NULL;
guint8 ilb_type;
guint8 ilb_version;
guint16 type_version = 0;
dissector_handle_t handle;
tvbuff_t *next_tvb;
Whitespace cleanup svn path=/trunk/; revision=32205
2010-03-16 07:45:12 +00:00
col_set_str(pinfo->cinfo, COL_PROTOCOL, "INTERLINK");
col_clear(pinfo->cinfo, COL_INFO);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
proto_tree_add_subtree[_format] Change-Id: I7e016f10fcfdc0523bf2fe8c11295c0334f7c332 Reviewed-on: https://code.wireshark.org/review/2694 Reviewed-by: Michael Mann <mmann78@netscape.net>
2014-06-29 13:13:51 +00:00
il_item = proto_tree_add_item(tree, proto_interlink,
tvb, 0, 16, ENC_NA);
il_tree = proto_item_add_subtree(il_item, ett_interlink);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
proto_tree_add_subtree[_format] Change-Id: I7e016f10fcfdc0523bf2fe8c11295c0334f7c332 Reviewed-on: https://code.wireshark.org/review/2694 Reviewed-by: Michael Mann <mmann78@netscape.net>
2014-06-29 13:13:51 +00:00
ilh_tree = proto_tree_add_subtree(il_tree, tvb, 0, 12, ett_interlink_header, NULL, "Interlink Header");
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
if (ilh_tree) {
Convert proto_tree_add_item() 'encoding' arg for field types FT_STRING, FT_STRINGZ, FT_UINT_STRING as follows: 1. If there's no character encoding (ENC_ASCII, ...) specified then use ENC_ASCII. 2. For all but FT_UINT_STRING, always use ENC_NA (replacing any existing True/1/FALSE/0 /ENC_BIG_ENDIAN/ENC_LITTLE_ENDIAN). svn path=/trunk/; revision=39426
2011-10-15 18:46:26 +00:00
proto_tree_add_item(ilh_tree, hf_interlink_id, tvb, offset, 4, ENC_ASCII|ENC_NA);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 4;
Convert 'encoding' parameter of certain proto_tree_add_item() calls in non-autogenerated epan/dissectors: Specifically: Replace FALSE|0 and TRUE|1 by ENC_BIG_ENDIAN|ENC_LITTLE_ENDIAN as the encoding parameter for proto_tree_add_item() calls which directly reference an item in hf[] which has a type of: FT_UINT8 FT_UINT16 FT_UINT24 FT_UINT32 FT_UINT64 FT_INT8 FT_INT16 FT_INT24 FT_INT32 FT_INT64 FT_FLOAT FT_DOUBLE svn path=/trunk/; revision=39288
2011-10-06 03:35:44 +00:00
proto_tree_add_item(ilh_tree, hf_interlink_version, tvb, offset, 2, ENC_LITTLE_ENDIAN);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 2;
Convert 'encoding' parameter of certain proto_tree_add_item() calls in non-autogenerated epan/dissectors: Specifically: Replace FALSE|0 and TRUE|1 by ENC_BIG_ENDIAN|ENC_LITTLE_ENDIAN as the encoding parameter for proto_tree_add_item() calls which directly reference an item in hf[] which has a type of: FT_UINT8 FT_UINT16 FT_UINT24 FT_UINT32 FT_UINT64 FT_INT8 FT_INT16 FT_INT24 FT_INT32 FT_INT64 FT_FLOAT FT_DOUBLE svn path=/trunk/; revision=39288
2011-10-06 03:35:44 +00:00
proto_tree_add_item(ilh_tree, hf_interlink_cmd, tvb, offset, 2, ENC_LITTLE_ENDIAN);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 2;
Convert 'encoding' parameter of certain proto_tree_add_item() calls in non-autogenerated epan/dissectors: Specifically: Replace FALSE|0 and TRUE|1 by ENC_BIG_ENDIAN|ENC_LITTLE_ENDIAN as the encoding parameter for proto_tree_add_item() calls which directly reference an item in hf[] which has a type of: FT_UINT8 FT_UINT16 FT_UINT24 FT_UINT32 FT_UINT64 FT_INT8 FT_INT16 FT_INT24 FT_INT32 FT_INT64 FT_FLOAT FT_DOUBLE svn path=/trunk/; revision=39288
2011-10-06 03:35:44 +00:00
proto_tree_add_item(ilh_tree, hf_interlink_seq, tvb, offset, 2, ENC_LITTLE_ENDIAN);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 2;
Track offset even when tree==NULL. svn path=/trunk/; revision=34239
2010-09-24 18:46:28 +00:00
} else {
offset += 10;
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
}
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
if (ilh_tree) {
Fix the type of arrays of pointers to hf_ values for bitfield routines. The static arrays are supposed to be arrays of const pointers to int, not arrays of non-const pointers to const int. Fixing that means some bugs (scribbling on what's *supposed* to be a const array) will be caught (see packet-ieee80211-radiotap.c for examples, the first of which inspired this change and the second of which was discovered while testing compiles with this change), and removes the need for some annoying casts. Also make some of those arrays static while we're at it. Update documentation and dissector-generator tools. Change-Id: I789da5fc60aadc15797cefecfd9a9fbe9a130ccc Reviewed-on: https://code.wireshark.org/review/37517 Petri-Dish: Guy Harris <gharris@sonic.net> Tested-by: Petri Dish Buildbot Reviewed-by: Anders Broman <a.broman58@gmail.com>
2020-06-19 01:14:46 +00:00
static int * const flags[] = {
Use proto_tree_add_bitmask for groups of proto_tree_add_boolean. Part 2 of many Change-Id: I50815e7738b011382392f3078a7107d3d9eec4ec Reviewed-on: https://code.wireshark.org/review/5542 Reviewed-by: Michael Mann <mmann78@netscape.net> Petri-Dish: Michael Mann <mmann78@netscape.net> Reviewed-by: Anders Broman <a.broman58@gmail.com>
2014-11-30 17:51:30 +00:00
&hf_interlink_flags_req_ack,
&hf_interlink_flags_inc_ack_port,
NULL
};
proto_tree_add_bitmask(ilh_tree, tvb, offset, hf_interlink_flags, ett_interlink_flags, flags, ENC_LITTLE_ENDIAN);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
}
offset += 2;
proto_tree_add_subtree[_format] Change-Id: I7e016f10fcfdc0523bf2fe8c11295c0334f7c332 Reviewed-on: https://code.wireshark.org/review/2694 Reviewed-by: Michael Mann <mmann78@netscape.net>
2014-06-29 13:13:51 +00:00
ilb_tree = proto_tree_add_subtree(il_tree, tvb, offset, 4, ett_interlink_block, NULL, "Block Header");
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
ilb_type = tvb_get_guint8(tvb, offset);
ilb_version = tvb_get_guint8(tvb, offset + 1);
type_version = ilb_type << 8 | ilb_version;
interlink type is decimal some keyword substitution added svn path=/trunk/; revision=34178
2010-09-22 07:18:49 +00:00
col_append_fstr(pinfo->cinfo, COL_INFO, "Type: %d, Version: %d",
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
ilb_type, ilb_version);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
if (ilb_tree) {
Convert 'encoding' parameter of certain proto_tree_add_item() calls in non-autogenerated epan/dissectors: Specifically: Replace FALSE|0 and TRUE|1 by ENC_BIG_ENDIAN|ENC_LITTLE_ENDIAN as the encoding parameter for proto_tree_add_item() calls which directly reference an item in hf[] which has a type of: FT_UINT8 FT_UINT16 FT_UINT24 FT_UINT32 FT_UINT64 FT_INT8 FT_INT16 FT_INT24 FT_INT32 FT_INT64 FT_FLOAT FT_DOUBLE svn path=/trunk/; revision=39288
2011-10-06 03:35:44 +00:00
proto_tree_add_item(ilb_tree, hf_interlink_block_type, tvb, offset, 1, ENC_BIG_ENDIAN);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 1;
Convert 'encoding' parameter of certain proto_tree_add_item() calls in non-autogenerated epan/dissectors: Specifically: Replace FALSE|0 and TRUE|1 by ENC_BIG_ENDIAN|ENC_LITTLE_ENDIAN as the encoding parameter for proto_tree_add_item() calls which directly reference an item in hf[] which has a type of: FT_UINT8 FT_UINT16 FT_UINT24 FT_UINT32 FT_UINT64 FT_INT8 FT_INT16 FT_INT24 FT_INT32 FT_INT64 FT_FLOAT FT_DOUBLE svn path=/trunk/; revision=39288
2011-10-06 03:35:44 +00:00
proto_tree_add_item(ilb_tree, hf_interlink_block_version, tvb, offset, 1, ENC_BIG_ENDIAN);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 1;
Convert 'encoding' parameter of certain proto_tree_add_item() calls in non-autogenerated epan/dissectors: Specifically: Replace FALSE|0 and TRUE|1 by ENC_BIG_ENDIAN|ENC_LITTLE_ENDIAN as the encoding parameter for proto_tree_add_item() calls which directly reference an item in hf[] which has a type of: FT_UINT8 FT_UINT16 FT_UINT24 FT_UINT32 FT_UINT64 FT_INT8 FT_INT16 FT_INT24 FT_INT32 FT_INT64 FT_FLOAT FT_DOUBLE svn path=/trunk/; revision=39288
2011-10-06 03:35:44 +00:00
proto_tree_add_item(ilb_tree, hf_interlink_block_length, tvb, offset, 2, ENC_LITTLE_ENDIAN);
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
offset += 2;
Track offset even when tree==NULL. svn path=/trunk/; revision=34239
2010-09-24 18:46:28 +00:00
} else {
offset += 4;
Some if (tree) cleanup svn path=/trunk/; revision=32207
2010-03-16 07:53:48 +00:00
}
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
/* Generate a new tvb for the rest. */
next_tvb = tvb_new_subset_remaining(tvb, offset);
/* Probably a sub-dissector exists for this type/version combination. */
Rename the routines that handle dissector tables with unsigned integer keys to have _uint in their names, to match the routines that handle dissector tables with string keys. (Using _port can confuse people into thinking they're intended solely for use with TCP/UDP/etc. ports when, in fact, they work better for things such as Ethernet types, where the binding of particular values to particular protocols are a lot stronger.) svn path=/trunk/; revision=35224
2010-12-20 05:35:29 +00:00
handle = dissector_get_uint_handle(subdissector_table, type_version);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
/* Without a proper sub-dissector, we use "data". */
if (handle == NULL) handle = data_handle;
/* Call the sub-dissector. */
call_dissector(handle, next_tvb, pinfo, tree);
Convert some UDP subdissectors to "new" style. Change-Id: I3c1ee97f68af4539b97d50b75c03ff82147dbc5e Reviewed-on: https://code.wireshark.org/review/11649 Reviewed-by: Michael Mann <mmann78@netscape.net>
2015-11-09 01:15:22 +00:00
return tvb_captured_length(tvb);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
}
static gboolean
Complete process of moving packet-interlink to a built-in dissector: - Add packet-interlink.c to Makefile.common (Not included in SVN #37610-37612); See: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6005 - Also: update signature for dissect_interlink_heur() (as per recent changes). svn path=/trunk/; revision=44927
2012-09-16 17:26:49 +00:00
dissect_interlink_heur(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void *data _U_)
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
{
if (!tvb_bytes_exist(tvb, 0, 4)) {
return FALSE;
}
if (
tvb_get_guint8(tvb,0) != 'I' ||
tvb_get_guint8(tvb,1) != 'L' ||
tvb_get_guint8(tvb,2) != 'N' ||
tvb_get_guint8(tvb,3) != 'K'
)
return FALSE;
Convert some UDP subdissectors to "new" style. Change-Id: I3c1ee97f68af4539b97d50b75c03ff82147dbc5e Reviewed-on: https://code.wireshark.org/review/11649 Reviewed-by: Michael Mann <mmann78@netscape.net>
2015-11-09 01:15:22 +00:00
dissect_interlink(tvb, pinfo, tree, data);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
return TRUE;
}
void
proto_register_interlink(void)
{
static hf_register_info hf[] = {
{ &hf_interlink_id, {
"Magic ID", "interlink.id", FT_STRING,
BASE_NONE, NULL, 0, NULL, HFILL }},
{ &hf_interlink_version, {
"Version", "interlink.version", FT_UINT16,
BASE_DEC, NULL, 0, NULL, HFILL }},
{ &hf_interlink_cmd, {
"Command", "interlink.cmd", FT_UINT16,
BASE_DEC, VALS(names_cmd), 0, NULL, HFILL }},
{ &hf_interlink_seq, {
"Sequence", "interlink.seq", FT_UINT16,
BASE_DEC, NULL, 0, NULL, HFILL }},
{ &hf_interlink_flags, {
"Flags", "interlink.flags", FT_UINT16,
BASE_HEX, NULL, 0, NULL, HFILL }},
{ &hf_interlink_flags_req_ack, {
"REQ_ACK", "interlink.flags.req_ack", FT_BOOLEAN,
Find and fix dissectors that should be using a default tfs. Found using tools/check_tfs.py, included in this commit. Here are the reports that were fixed here: Examining: All dissector modules epan/dissectors/packet-assa_r3.c tfs_mortisepins_flags - could have used tfs_high_low from tfs.c instead: {High,Low} epan/dissectors/packet-btle.c tfs_present_bit - could have used tfs_present_not_present from tfs.c instead: {Present,Not Present} epan/dissectors/packet-dhcp.c tfs_fqdn_s - could have used tfs_server_client from tfs.c instead: {Server,Client} epan/dissectors/packet-docsis-macmgmt.c mdd_tfs_on_off - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-docsis-macmgmt.c mdd_tfs_en_dis - could have used tfs_enabled_disabled from tfs.c instead: {Enabled,Disabled} epan/dissectors/packet-docsis-macmgmt.c req_not_req_tfs - could have used tfs_requested_not_requested from tfs.c instead: {Requested,Not Requested} epan/dissectors/packet-docsis-tlv.c on_off_tfs - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-docsis-tlv.c activation_tfs - could have used tfs_active_inactive from tfs.c instead: {Active,Inactive} epan/dissectors/packet-docsis.c ena_dis_tfs - could have used tfs_enabled_disabled from tfs.c instead: {Enabled,Disabled} epan/dissectors/packet-ecmp.c tfs_not_expected_expected - could have used tfs_odd_even from tfs.c instead: {Odd,Even} epan/dissectors/packet-erf.c erf_link_status_tfs - could have used tfs_up_down from tfs.c instead: {Up,Down} epan/dissectors/packet-h263.c on_off_flg - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-h263.c cpm_flg - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-interlink.c flags_set_notset - could have used tfs_set_notset from tfs.c instead: {Set,Not set} epan/dissectors/packet-ip.c tos_set_low - could have used tfs_low_normal from tfs.c instead: {Low,Normal} epan/dissectors/packet-ip.c tos_set_high - could have used tfs_high_normal from tfs.c instead: {High,Normal} epan/dissectors/packet-isakmp.c flag_r - could have used tfs_response_request from tfs.c instead: {Response,Request} epan/dissectors/packet-isis-lsp.c tfs_metric_supported_not_supported - could have used tfs_no_yes from tfs.c instead: {No,Yes} epan/dissectors/packet-kerberos.c supported_tfs - could have used tfs_supported_not_supported from tfs.c instead: {Supported,Not supported} epan/dissectors/packet-kerberos.c set_tfs - could have used tfs_set_notset from tfs.c instead: {Set,Not set} epan/dissectors/packet-mac-lte.c mac_lte_scell_status_vals - could have used tfs_activated_deactivated from tfs.c instead: {Activated,Deactivated} epan/dissectors/packet-p_mul.c no_yes - could have used tfs_no_yes from tfs.c instead: {No,Yes} epan/dissectors/packet-pgm.c opts_present - could have used tfs_present_not_present from tfs.c instead: {Present,Not Present} epan/dissectors/packet-rsl.c rsl_ms_fpc_epc_mode_vals - could have used tfs_inuse_not_inuse from tfs.c instead: {In use,Not in use} epan/dissectors/packet-sita.c tfs_sita_on_off - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-vines.c tfs_vine_rtp_no_yes - could have used tfs_no_yes from tfs.c instead: {No,Yes} epan/dissectors/packet-vnc.c button_mask_tfs - could have used tfs_pressed_not_pressed from tfs.c instead: {Pressed,Not pressed} 27 issues found Change-Id: I7e53b491f20289955c9e9caa8357197d9010a5aa Reviewed-on: https://code.wireshark.org/review/38087 Petri-Dish: Martin Mathieson <martin.r.mathieson@googlemail.com> Reviewed-by: Anders Broman <a.broman58@gmail.com>
2020-08-07 20:15:46 +00:00
16, TFS(&tfs_set_notset), 0x01, NULL, HFILL }},
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
{ &hf_interlink_flags_inc_ack_port, {
"INC_ACK_PORT", "interlink.flags.inc_ack_port", FT_BOOLEAN,
Find and fix dissectors that should be using a default tfs. Found using tools/check_tfs.py, included in this commit. Here are the reports that were fixed here: Examining: All dissector modules epan/dissectors/packet-assa_r3.c tfs_mortisepins_flags - could have used tfs_high_low from tfs.c instead: {High,Low} epan/dissectors/packet-btle.c tfs_present_bit - could have used tfs_present_not_present from tfs.c instead: {Present,Not Present} epan/dissectors/packet-dhcp.c tfs_fqdn_s - could have used tfs_server_client from tfs.c instead: {Server,Client} epan/dissectors/packet-docsis-macmgmt.c mdd_tfs_on_off - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-docsis-macmgmt.c mdd_tfs_en_dis - could have used tfs_enabled_disabled from tfs.c instead: {Enabled,Disabled} epan/dissectors/packet-docsis-macmgmt.c req_not_req_tfs - could have used tfs_requested_not_requested from tfs.c instead: {Requested,Not Requested} epan/dissectors/packet-docsis-tlv.c on_off_tfs - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-docsis-tlv.c activation_tfs - could have used tfs_active_inactive from tfs.c instead: {Active,Inactive} epan/dissectors/packet-docsis.c ena_dis_tfs - could have used tfs_enabled_disabled from tfs.c instead: {Enabled,Disabled} epan/dissectors/packet-ecmp.c tfs_not_expected_expected - could have used tfs_odd_even from tfs.c instead: {Odd,Even} epan/dissectors/packet-erf.c erf_link_status_tfs - could have used tfs_up_down from tfs.c instead: {Up,Down} epan/dissectors/packet-h263.c on_off_flg - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-h263.c cpm_flg - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-interlink.c flags_set_notset - could have used tfs_set_notset from tfs.c instead: {Set,Not set} epan/dissectors/packet-ip.c tos_set_low - could have used tfs_low_normal from tfs.c instead: {Low,Normal} epan/dissectors/packet-ip.c tos_set_high - could have used tfs_high_normal from tfs.c instead: {High,Normal} epan/dissectors/packet-isakmp.c flag_r - could have used tfs_response_request from tfs.c instead: {Response,Request} epan/dissectors/packet-isis-lsp.c tfs_metric_supported_not_supported - could have used tfs_no_yes from tfs.c instead: {No,Yes} epan/dissectors/packet-kerberos.c supported_tfs - could have used tfs_supported_not_supported from tfs.c instead: {Supported,Not supported} epan/dissectors/packet-kerberos.c set_tfs - could have used tfs_set_notset from tfs.c instead: {Set,Not set} epan/dissectors/packet-mac-lte.c mac_lte_scell_status_vals - could have used tfs_activated_deactivated from tfs.c instead: {Activated,Deactivated} epan/dissectors/packet-p_mul.c no_yes - could have used tfs_no_yes from tfs.c instead: {No,Yes} epan/dissectors/packet-pgm.c opts_present - could have used tfs_present_not_present from tfs.c instead: {Present,Not Present} epan/dissectors/packet-rsl.c rsl_ms_fpc_epc_mode_vals - could have used tfs_inuse_not_inuse from tfs.c instead: {In use,Not in use} epan/dissectors/packet-sita.c tfs_sita_on_off - could have used tfs_on_off from tfs.c instead: {On,Off} epan/dissectors/packet-vines.c tfs_vine_rtp_no_yes - could have used tfs_no_yes from tfs.c instead: {No,Yes} epan/dissectors/packet-vnc.c button_mask_tfs - could have used tfs_pressed_not_pressed from tfs.c instead: {Pressed,Not pressed} 27 issues found Change-Id: I7e53b491f20289955c9e9caa8357197d9010a5aa Reviewed-on: https://code.wireshark.org/review/38087 Petri-Dish: Martin Mathieson <martin.r.mathieson@googlemail.com> Reviewed-by: Anders Broman <a.broman58@gmail.com>
2020-08-07 20:15:46 +00:00
16, TFS(&tfs_set_notset), 0x02, NULL, HFILL }},
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
{ &hf_interlink_block_type, {
"Type", "interlink.type", FT_UINT8,
interlink type is decimal some keyword substitution added svn path=/trunk/; revision=34178
2010-09-22 07:18:49 +00:00
BASE_DEC, NULL, 0, NULL, HFILL }},
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
{ &hf_interlink_block_version, {
"Version", "interlink.block_version", FT_UINT8,
BASE_DEC, NULL, 0, NULL, HFILL }},
{ &hf_interlink_block_length, {
"Length", "interlink.length", FT_UINT16,
BASE_DEC, NULL, 0, NULL, HFILL }},
};
static gint *ett[] = {
&ett_interlink,
&ett_interlink_header,
&ett_interlink_flags,
&ett_interlink_block,
};
proto_interlink = proto_register_protocol("Interlink Protocol",
"Interlink",
"interlink");
proto_register_field_array(proto_interlink, hf, array_length(hf));
proto_register_subtree_array(ett, array_length(ett));
Dissectors don't need a journey of self discovery. They already know who they are when they register themselves. Saving the handle then to avoid finding it later. Not sure if this will increase unnecessary register_dissector functions (instead of using create_dissector_handle in proto_reg_handoff function) when other dissectors copy/paste, but it should make startup time a few microseconds better. Change-Id: I3839be791b32b84887ac51a6a65fb5733e9f1f43 Reviewed-on: https://code.wireshark.org/review/19481 Petri-Dish: Michael Mann <mmann78@netscape.net> Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org> Reviewed-by: Anders Broman <a.broman58@gmail.com>
2016-12-17 01:06:11 +00:00
interlink_handle = register_dissector("interlink", dissect_interlink, proto_interlink);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
/* Probably someone will write sub-dissectors. You can never know. */
subdissector_table = register_dissector_table("interlink.type_version",
Don't do any Decode As stuff for dissector tables not used with Decode As. Have all dissector tables have a "supports Decode As" flag, which defaults to FALSE, and which is set to TRUE if a register_decode_as() refers to it. When adding a dissector to a dissector table with a given key, only add it for Decode As if the dissector table supports it. For non-FT_STRING dissector tables, always check for multiple entries for the same protocol with different dissectors, and report an error if we found them. This means there's no need for the creator of a dissector table to specify whether duplicates of that sort should be allowed - we always do the check when registering something for "Decode As" (in a non-FT_STRING dissector table), and just don't bother registering anything for "Decode As" if the dissector table doesn't support "Decode As", so there's no check done for those dissector tables. Change-Id: I4a1fdea3bddc2af27a65cfbca23edc99b26c0eed Reviewed-on: https://code.wireshark.org/review/17402 Petri-Dish: Guy Harris <guy@alum.mit.edu> Reviewed-by: Guy Harris <guy@alum.mit.edu>
2016-08-30 22:51:54 +00:00
"Interlink type_version", proto_interlink, FT_UINT16, BASE_HEX);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
}
void
proto_reg_handoff_interlink(void)
{
/* Allow "Decode As" with any UDP packet. */
Convert most UDP dissectors to use "auto" preferences. Similar to the "tcp.port" changes in I99604f95d426ad345f4b494598d94178b886eb67, convert dissectors that use "udp.port". More cleanup done on dissectors that use both TCP and UDP dissector tables, so that less preference callbacks exist. Change-Id: If07be9b9e850c244336a7069599cd554ce312dd3 Reviewed-on: https://code.wireshark.org/review/18120 Petri-Dish: Michael Mann <mmann78@netscape.net> Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org> Reviewed-by: Michael Mann <mmann78@netscape.net>
2016-10-05 20:33:54 +00:00
dissector_add_for_decode_as_with_preference("udp.port", interlink_handle);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
/* Add our heuristic packet finder. */
Remove all preferences related to enabling/disabling heuristic dissectors. The preferences are still supported for backwards compatibility, but the heuristic_protos file has final say on the "preference" to enable/disable a heuristic dissector. Also add parameter to heur_dissector_add() for the "default" enable/disable of a heuristic dissector. With this parameter, a few more (presumably weak) heuristic dissectors have been "registered" but of course default to being disabled. Change-Id: I51bebb2146ef3fbb8418d4f5c7f2cb2b58003a22 Reviewed-on: https://code.wireshark.org/review/9610 Petri-Dish: Michael Mann <mmann78@netscape.net> Reviewed-by: Roland Knall <rknall@gmail.com> Reviewed-by: Hadriel Kaplan <hadrielk@yahoo.com> Reviewed-by: Michael Mann <mmann78@netscape.net>
2015-07-13 00:40:31 +00:00
heur_dissector_add("udp", dissect_interlink_heur, "Interlink over UDP", "interlink_udp", proto_interlink, HEURISTIC_ENABLE);
This adds a new dissector plugin: INTERLINK. This protocol is used in (real and simulated) BMW cars for all kinds of gadget communication. My plugin only dissects the high level infrastructure and not any particular messages. It uses a heuristic dissector to detect INTERLINK packets. svn path=/trunk/; revision=32202
2010-03-16 06:58:25 +00:00
data_handle = find_dissector("data");
}
Add editor modelines; Adjust whitespace; Remove boilerplate comments Change-Id: I1f5f83ed441f6009125cf2cbe5023af04986898a Reviewed-on: https://code.wireshark.org/review/4392 Reviewed-by: Bill Meier <wmeier@newsguy.com>
2014-09-30 20:59:17 +00:00
/*
HTTPS (almost) everywhere. Change all wireshark.org URLs to use https. Fix some broken links while we're at it. Change-Id: I161bf8eeca43b8027605acea666032da86f5ea1c Reviewed-on: https://code.wireshark.org/review/34089 Reviewed-by: Guy Harris <guy@alum.mit.edu>
2019-07-26 18:43:17 +00:00
* Editor modelines - https://www.wireshark.org/tools/modelines.html
Add editor modelines; Adjust whitespace; Remove boilerplate comments Change-Id: I1f5f83ed441f6009125cf2cbe5023af04986898a Reviewed-on: https://code.wireshark.org/review/4392 Reviewed-by: Bill Meier <wmeier@newsguy.com>
2014-09-30 20:59:17 +00:00
*
* Local variables:
* c-basic-offset: 8
* tab-width: 8
* indent-tabs-mode: t
* End:
*
* vi: set shiftwidth=8 tabstop=8 noexpandtab:
* :indentSize=8:tabSize=8:noTabs=false:
*/