2006-09-28 16:29:18 +00:00
|
|
|
/* packet-newmail.c
|
|
|
|
* Routines for Exchange New Mail Notification dissection
|
2009-05-31 05:55:15 +00:00
|
|
|
* Copyright 2006, Stephen Fisher (see AUTHORS file)
|
2006-09-28 16:29:18 +00:00
|
|
|
*
|
|
|
|
* Wireshark - Network traffic analyzer
|
|
|
|
* By Gerald Combs <gerald@wireshark.org>
|
|
|
|
* Copyright 1998 Gerald Combs
|
|
|
|
*
|
|
|
|
* This program is free software; you can redistribute it and/or
|
|
|
|
* modify it under the terms of the GNU General Public License
|
|
|
|
* as published by the Free Software Foundation; either version 2
|
|
|
|
* of the License, or (at your option) any later version.
|
2011-10-21 02:10:19 +00:00
|
|
|
*
|
2006-09-28 16:29:18 +00:00
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
2011-10-21 02:10:19 +00:00
|
|
|
*
|
2006-09-28 16:29:18 +00:00
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
* along with this program; if not, write to the Free Software
|
2012-06-28 23:18:38 +00:00
|
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
2006-09-28 16:29:18 +00:00
|
|
|
*/
|
|
|
|
|
2012-09-20 02:03:38 +00:00
|
|
|
#include "config.h"
|
2006-09-28 16:29:18 +00:00
|
|
|
|
|
|
|
#include <glib.h>
|
|
|
|
|
|
|
|
#include <epan/packet.h>
|
|
|
|
#include <epan/prefs.h>
|
|
|
|
|
2013-12-14 16:09:57 +00:00
|
|
|
void proto_register_newmail(void);
|
2006-09-28 16:29:18 +00:00
|
|
|
void proto_reg_handoff_newmail(void);
|
|
|
|
|
|
|
|
/* Variables for preferences */
|
2008-09-19 17:39:44 +00:00
|
|
|
static guint preference_default_port = 0;
|
2006-09-28 16:29:18 +00:00
|
|
|
|
|
|
|
/* Initialize the protocol and registered fields */
|
|
|
|
static int proto_newmail = -1;
|
|
|
|
static int hf_newmail_payload = -1;
|
|
|
|
|
|
|
|
/* Initialize the subtree pointers */
|
|
|
|
static gint ett_newmail = -1;
|
|
|
|
|
|
|
|
/* Code to actually dissect the packets */
|
|
|
|
static void
|
|
|
|
dissect_newmail(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree)
|
|
|
|
{
|
|
|
|
/* Set up structures needed to add the protocol subtree and manage it */
|
|
|
|
proto_item *ti;
|
|
|
|
proto_tree *newmail_tree;
|
|
|
|
|
|
|
|
/* Make entries in Protocol column and Info column on summary display */
|
2009-08-09 06:26:46 +00:00
|
|
|
col_set_str(pinfo->cinfo, COL_PROTOCOL, "NEWMAIL");
|
2006-09-28 16:29:18 +00:00
|
|
|
|
2009-08-09 07:01:26 +00:00
|
|
|
col_set_str(pinfo->cinfo, COL_INFO, "Microsoft Exchange new mail notification");
|
2006-09-28 16:29:18 +00:00
|
|
|
|
|
|
|
if (tree) {
|
2011-10-21 02:10:19 +00:00
|
|
|
ti = proto_tree_add_item(tree, proto_newmail, tvb, 0, -1, ENC_NA);
|
2006-09-28 16:29:18 +00:00
|
|
|
|
|
|
|
newmail_tree = proto_item_add_subtree(ti, ett_newmail);
|
|
|
|
|
2011-10-04 22:44:31 +00:00
|
|
|
proto_tree_add_item(newmail_tree, hf_newmail_payload, tvb, 0, 8, ENC_NA);
|
2006-09-28 16:29:18 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* Register the protocol with Wireshark */
|
|
|
|
void
|
|
|
|
proto_register_newmail(void)
|
2011-10-21 02:10:19 +00:00
|
|
|
{
|
2006-09-28 16:29:18 +00:00
|
|
|
|
|
|
|
/* Setup list of header fields See Section 1.6.1 for details*/
|
|
|
|
static hf_register_info hf[] = {
|
|
|
|
{ &hf_newmail_payload,
|
|
|
|
{ "Notification payload", "newmail.notification_payload",
|
2011-10-21 02:10:19 +00:00
|
|
|
FT_BYTES, BASE_NONE, NULL, 0x0,
|
2006-09-28 16:29:18 +00:00
|
|
|
"Payload requested by client in the MAPI register push notification packet", HFILL }
|
|
|
|
},
|
|
|
|
};
|
|
|
|
|
|
|
|
/* Setup protocol subtree array */
|
|
|
|
static gint *ett[] = {
|
|
|
|
&ett_newmail,
|
|
|
|
};
|
|
|
|
|
|
|
|
module_t *newmail_module;
|
|
|
|
|
|
|
|
proto_newmail = proto_register_protocol("Microsoft Exchange New Mail Notification",
|
|
|
|
"NEWMAIL", "newmail");
|
|
|
|
|
|
|
|
proto_register_field_array(proto_newmail, hf, array_length(hf));
|
|
|
|
proto_register_subtree_array(ett, array_length(ett));
|
|
|
|
|
|
|
|
register_dissector("newmail", dissect_newmail, proto_newmail);
|
2011-10-21 02:10:19 +00:00
|
|
|
|
2006-09-28 16:29:18 +00:00
|
|
|
newmail_module = prefs_register_protocol(proto_newmail,
|
|
|
|
proto_reg_handoff_newmail);
|
|
|
|
|
|
|
|
prefs_register_uint_preference(newmail_module,
|
|
|
|
"default_port",
|
|
|
|
"Default UDP port (optional)",
|
2012-05-03 21:01:22 +00:00
|
|
|
"Always dissect this port's traffic as newmail notifications."
|
|
|
|
" Additional ports will be dynamically registered as they"
|
|
|
|
" are seen in MAPI register push notification packets.",
|
2006-09-28 16:29:18 +00:00
|
|
|
10, &preference_default_port);
|
2011-10-21 02:10:19 +00:00
|
|
|
|
2006-09-28 16:29:18 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
void
|
|
|
|
proto_reg_handoff_newmail(void)
|
|
|
|
{
|
2006-10-03 05:50:28 +00:00
|
|
|
static gboolean inited = FALSE;
|
2008-09-19 17:39:44 +00:00
|
|
|
static dissector_handle_t newmail_handle;
|
2012-05-03 21:01:22 +00:00
|
|
|
static guint preference_default_port_last;
|
2006-10-03 05:50:28 +00:00
|
|
|
|
|
|
|
if(!inited) {
|
2008-09-19 17:39:44 +00:00
|
|
|
newmail_handle = find_dissector("newmail");
|
2014-06-20 16:43:28 +00:00
|
|
|
dissector_add_for_decode_as("udp.port", newmail_handle);
|
2006-10-03 05:50:28 +00:00
|
|
|
inited = TRUE;
|
2008-09-19 17:39:44 +00:00
|
|
|
} else {
|
2012-05-03 21:01:22 +00:00
|
|
|
if (preference_default_port_last != 0) {
|
|
|
|
dissector_delete_uint("udp.port", preference_default_port_last, newmail_handle);
|
|
|
|
}
|
|
|
|
}
|
2008-09-19 17:39:44 +00:00
|
|
|
|
2011-10-21 02:10:19 +00:00
|
|
|
if(preference_default_port != 0) {
|
2010-12-20 05:35:29 +00:00
|
|
|
dissector_add_uint("udp.port", preference_default_port, newmail_handle);
|
2006-09-28 16:29:18 +00:00
|
|
|
}
|
2012-05-03 21:01:22 +00:00
|
|
|
preference_default_port_last = preference_default_port;
|
2006-09-28 16:29:18 +00:00
|
|
|
}
|