1998-09-16 02:39:15 +00:00
|
|
|
/* print.c
|
|
|
|
|
* Routines for printing packet analysis trees.
|
|
|
|
|
*
|
2001-11-13 23:55:44 +00:00
|
|
|
* Gilbert Ramirez <gram@alumni.rice.edu>
|
1998-09-16 02:39:15 +00:00
|
|
|
*
|
2006-05-21 05:12:17 +00:00
|
|
|
* Wireshark - Network traffic analyzer
|
|
|
|
|
* By Gerald Combs <gerald@wireshark.org>
|
1998-09-16 02:39:15 +00:00
|
|
|
* Copyright 1998 Gerald Combs
|
2002-08-28 21:04:11 +00:00
|
|
|
*
|
2018-02-08 16:59:17 +00:00
|
|
|
* SPDX-License-Identifier: GPL-2.0-or-later
|
1998-09-16 02:39:15 +00:00
|
|
|
*/
|
|
|
|
|
|
2012-09-20 01:29:52 +00:00
|
|
|
#include "config.h"
|
1998-09-16 02:39:15 +00:00
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <string.h>
|
|
|
|
|
|
2014-12-22 04:50:49 +00:00
|
|
|
#include <epan/packet.h>
|
2002-06-04 07:03:57 +00:00
|
|
|
#include <epan/epan.h>
|
|
|
|
|
#include <epan/epan_dissect.h>
|
2013-11-09 13:41:10 +00:00
|
|
|
#include <epan/to_str.h>
|
2021-09-16 13:54:09 +00:00
|
|
|
#include <epan/to_str.h>
|
2011-12-14 21:13:06 +00:00
|
|
|
#include <epan/expert.h>
|
2018-03-21 18:43:54 +00:00
|
|
|
#include <epan/column.h>
|
2017-04-23 23:48:17 +00:00
|
|
|
#include <epan/column-info.h>
|
2017-06-11 16:03:13 +00:00
|
|
|
#include <epan/color_filters.h>
|
2016-12-05 03:29:14 +00:00
|
|
|
#include <epan/prefs.h>
|
2014-11-22 03:22:54 +00:00
|
|
|
#include <epan/print.h>
|
2004-09-10 22:59:37 +00:00
|
|
|
#include <epan/charsets.h>
|
2018-12-10 12:44:03 +00:00
|
|
|
#include <wsutil/json_dumper.h>
|
2013-11-17 02:55:14 +00:00
|
|
|
#include <wsutil/filesystem.h>
|
2015-10-16 09:03:08 +00:00
|
|
|
#include <wsutil/utf8_entities.h>
|
2022-10-03 17:22:35 +00:00
|
|
|
#include <wsutil/str_util.h>
|
2021-06-18 18:21:42 +00:00
|
|
|
#include <wsutil/ws_assert.h>
|
2021-11-11 00:54:00 +00:00
|
|
|
#include <ftypes/ftypes.h>
|
2014-12-22 04:50:49 +00:00
|
|
|
|
2003-12-06 06:09:13 +00:00
|
|
|
#define PDML_VERSION "0"
|
2004-04-17 11:50:14 +00:00
|
|
|
#define PSML_VERSION "0"
|
1998-09-16 02:39:15 +00:00
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
typedef struct {
|
2013-02-23 22:37:52 +00:00
|
|
|
int level;
|
|
|
|
|
print_stream_t *stream;
|
|
|
|
|
gboolean success;
|
|
|
|
|
GSList *src_list;
|
|
|
|
|
print_dissections_e print_dissections;
|
|
|
|
|
gboolean print_hex_for_data;
|
|
|
|
|
packet_char_enc encoding;
|
2014-11-22 09:07:13 +00:00
|
|
|
GHashTable *output_only_tables; /* output only these protocols */
|
2004-07-08 10:36:29 +00:00
|
|
|
} print_data;
|
|
|
|
|
|
|
|
|
|
typedef struct {
|
2013-02-23 22:37:52 +00:00
|
|
|
int level;
|
|
|
|
|
FILE *fh;
|
|
|
|
|
GSList *src_list;
|
2023-02-14 01:55:36 +00:00
|
|
|
wmem_map_t *filter;
|
2004-07-08 10:36:29 +00:00
|
|
|
} write_pdml_data;
|
|
|
|
|
|
2016-06-13 13:47:44 +00:00
|
|
|
typedef struct {
|
|
|
|
|
GSList *src_list;
|
2023-02-14 01:55:36 +00:00
|
|
|
wmem_map_t *filter;
|
2016-06-13 13:47:44 +00:00
|
|
|
gboolean print_hex;
|
2017-02-13 08:36:02 +00:00
|
|
|
gboolean print_text;
|
2017-06-16 13:19:18 +00:00
|
|
|
proto_node_children_grouper_func node_children_grouper;
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper *dumper;
|
2016-06-13 13:47:44 +00:00
|
|
|
} write_json_data;
|
|
|
|
|
|
2007-03-26 20:17:05 +00:00
|
|
|
typedef struct {
|
2013-02-23 22:37:52 +00:00
|
|
|
output_fields_t *fields;
|
|
|
|
|
epan_dissect_t *edt;
|
2007-03-26 20:17:05 +00:00
|
|
|
} write_field_data_t;
|
|
|
|
|
|
|
|
|
|
struct _output_fields {
|
2016-06-28 11:01:25 +00:00
|
|
|
gboolean print_bom;
|
|
|
|
|
gboolean print_header;
|
|
|
|
|
gchar separator;
|
|
|
|
|
gchar occurrence;
|
|
|
|
|
gchar aggregator;
|
|
|
|
|
GPtrArray *fields;
|
|
|
|
|
GHashTable *field_indicies;
|
|
|
|
|
GPtrArray **field_values;
|
|
|
|
|
gchar quote;
|
|
|
|
|
gboolean includes_col_fields;
|
2007-03-26 20:17:05 +00:00
|
|
|
};
|
|
|
|
|
|
2014-05-18 18:21:31 +00:00
|
|
|
static gchar *get_field_hex_value(GSList *src_list, field_info *fi);
|
2003-12-04 10:59:34 +00:00
|
|
|
static void proto_tree_print_node(proto_node *node, gpointer data);
|
2004-07-08 10:36:29 +00:00
|
|
|
static void proto_tree_write_node_pdml(proto_node *node, gpointer data);
|
2017-09-03 05:33:12 +00:00
|
|
|
static void proto_tree_write_node_ek(proto_node *node, write_json_data *data);
|
2004-07-08 10:36:29 +00:00
|
|
|
static const guint8 *get_field_data(GSList *src_list, field_info *fi);
|
2014-11-29 22:43:22 +00:00
|
|
|
static void pdml_write_field_hex_value(write_pdml_data *pdata, field_info *fi);
|
2016-06-13 13:47:44 +00:00
|
|
|
static void json_write_field_hex_value(write_json_data *pdata, field_info *fi);
|
2004-07-25 08:53:38 +00:00
|
|
|
static gboolean print_hex_data_buffer(print_stream_t *stream, const guchar *cp,
|
2022-01-13 01:18:38 +00:00
|
|
|
guint length, packet_char_enc encoding,
|
|
|
|
|
guint hexdump_options);
|
2016-06-30 01:45:41 +00:00
|
|
|
static void write_specified_fields(fields_format format,
|
|
|
|
|
output_fields_t *fields,
|
2016-06-29 23:13:38 +00:00
|
|
|
epan_dissect_t *edt, column_info *cinfo,
|
2018-12-10 12:44:03 +00:00
|
|
|
FILE *fh,
|
|
|
|
|
json_dumper *dumper);
|
2004-12-30 23:42:02 +00:00
|
|
|
static void print_escaped_xml(FILE *fh, const char *unescaped_string);
|
2018-06-25 23:54:25 +00:00
|
|
|
static void print_escaped_csv(FILE *fh, const char *unescaped_string);
|
1998-09-16 02:39:15 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
typedef void (*proto_node_value_writer)(proto_node *, write_json_data *);
|
2018-12-10 12:44:03 +00:00
|
|
|
static void write_json_index(json_dumper *dumper, epan_dissect_t *edt);
|
2017-06-12 12:50:55 +00:00
|
|
|
static void write_json_proto_node_list(GSList *proto_node_list_head, write_json_data *data);
|
|
|
|
|
static void write_json_proto_node(GSList *node_values_head,
|
|
|
|
|
const char *suffix,
|
|
|
|
|
proto_node_value_writer value_writer,
|
|
|
|
|
write_json_data *data);
|
|
|
|
|
static void write_json_proto_node_value_list(GSList *node_values_head,
|
|
|
|
|
proto_node_value_writer value_writer,
|
|
|
|
|
write_json_data *data);
|
|
|
|
|
static void write_json_proto_node_filtered(proto_node *node, write_json_data *data);
|
|
|
|
|
static void write_json_proto_node_hex_dump(proto_node *node, write_json_data *data);
|
2021-05-15 13:35:01 +00:00
|
|
|
static void write_json_proto_node_dynamic(proto_node *node, write_json_data *data);
|
2017-06-12 12:50:55 +00:00
|
|
|
static void write_json_proto_node_children(proto_node *node, write_json_data *data);
|
|
|
|
|
static void write_json_proto_node_value(proto_node *node, write_json_data *data);
|
|
|
|
|
static void write_json_proto_node_no_value(proto_node *node, write_json_data *data);
|
|
|
|
|
static const char *proto_node_to_json_key(proto_node *node);
|
|
|
|
|
|
2016-09-21 16:26:16 +00:00
|
|
|
static void print_pdml_geninfo(epan_dissect_t *edt, FILE *fh);
|
2018-12-10 12:44:03 +00:00
|
|
|
static void write_ek_summary(column_info *cinfo, write_json_data *pdata);
|
2003-12-06 06:09:13 +00:00
|
|
|
|
2007-03-26 20:17:05 +00:00
|
|
|
static void proto_tree_get_node_field_values(proto_node *node, gpointer data);
|
|
|
|
|
|
2015-03-20 00:59:42 +00:00
|
|
|
/* Cache the protocols and field handles that the print functionality needs
|
|
|
|
|
This helps break explicit dependency on the dissectors. */
|
|
|
|
|
static int proto_data = -1;
|
|
|
|
|
static int proto_frame = -1;
|
|
|
|
|
|
|
|
|
|
void print_cache_field_handles(void)
|
|
|
|
|
{
|
|
|
|
|
proto_data = proto_get_id_by_short_name("Data");
|
|
|
|
|
proto_frame = proto_get_id_by_short_name("Frame");
|
|
|
|
|
}
|
|
|
|
|
|
2004-07-25 08:53:38 +00:00
|
|
|
gboolean
|
2017-04-25 09:36:18 +00:00
|
|
|
proto_tree_print(print_dissections_e print_dissections, gboolean print_hex,
|
2017-04-23 23:48:17 +00:00
|
|
|
epan_dissect_t *edt, GHashTable *output_only_tables,
|
|
|
|
|
print_stream_t *stream)
|
1999-07-23 08:29:24 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
print_data data;
|
|
|
|
|
|
|
|
|
|
/* Create the output */
|
|
|
|
|
data.level = 0;
|
|
|
|
|
data.stream = stream;
|
|
|
|
|
data.success = TRUE;
|
|
|
|
|
data.src_list = edt->pi.data_src;
|
2018-12-27 02:26:24 +00:00
|
|
|
data.encoding = (packet_char_enc)edt->pi.fd->encoding;
|
2017-04-23 23:48:17 +00:00
|
|
|
data.print_dissections = print_dissections;
|
2013-02-23 22:37:52 +00:00
|
|
|
/* If we're printing the entire packet in hex, don't
|
|
|
|
|
print uninterpreted data fields in hex as well. */
|
2017-04-25 09:36:18 +00:00
|
|
|
data.print_hex_for_data = !print_hex;
|
2014-11-22 09:07:13 +00:00
|
|
|
data.output_only_tables = output_only_tables;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
proto_tree_children_foreach(edt->tree, proto_tree_print_node, &data);
|
|
|
|
|
return data.success;
|
2001-06-08 08:50:51 +00:00
|
|
|
}
|
|
|
|
|
|
2002-06-22 01:43:57 +00:00
|
|
|
/* Print a tree's data, and any child nodes. */
|
2013-07-17 17:16:22 +00:00
|
|
|
static void
|
|
|
|
|
proto_tree_print_node(proto_node *node, gpointer data)
|
1998-09-16 02:39:15 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
field_info *fi = PNODE_FINFO(node);
|
|
|
|
|
print_data *pdata = (print_data*) data;
|
|
|
|
|
const guint8 *pd;
|
|
|
|
|
gchar label_str[ITEM_LABEL_LENGTH];
|
|
|
|
|
gchar *label_ptr;
|
|
|
|
|
|
|
|
|
|
/* dissection with an invisible proto tree? */
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fi);
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
/* Don't print invisible entries. */
|
2019-04-03 21:32:30 +00:00
|
|
|
if (proto_item_is_hidden(node) && (prefs.display_hidden_proto_items == FALSE))
|
2013-02-23 22:37:52 +00:00
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* Give up if we've already gotten an error. */
|
|
|
|
|
if (!pdata->success)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* was a free format label produced? */
|
|
|
|
|
if (fi->rep) {
|
|
|
|
|
label_ptr = fi->rep->representation;
|
|
|
|
|
}
|
|
|
|
|
else { /* no, make a generic label */
|
|
|
|
|
label_ptr = label_str;
|
|
|
|
|
proto_item_fill_label(fi, label_str);
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-03 21:32:30 +00:00
|
|
|
if (proto_item_is_generated(node))
|
2013-07-17 17:16:22 +00:00
|
|
|
label_ptr = g_strconcat("[", label_ptr, "]", NULL);
|
|
|
|
|
|
|
|
|
|
pdata->success = print_line(pdata->stream, pdata->level, label_ptr);
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2019-04-03 21:32:30 +00:00
|
|
|
if (proto_item_is_generated(node))
|
2013-07-17 17:16:22 +00:00
|
|
|
g_free(label_ptr);
|
|
|
|
|
|
|
|
|
|
if (!pdata->success)
|
2013-02-23 22:37:52 +00:00
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* If -O is specified, only display the protocols which are in the
|
|
|
|
|
* lookup table. Only check on the first level: once we start printing
|
|
|
|
|
* a tree, print the rest of the subtree. Otherwise we won't print
|
|
|
|
|
* subitems whose abbreviation doesn't match the protocol--for example
|
|
|
|
|
* text items (whose abbreviation is simply "text").
|
|
|
|
|
*/
|
2014-11-22 09:07:13 +00:00
|
|
|
if ((pdata->output_only_tables != NULL) && (pdata->level == 0)
|
|
|
|
|
&& (g_hash_table_lookup(pdata->output_only_tables, fi->hfinfo->abbrev) == NULL)) {
|
2013-02-23 22:37:52 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* If it's uninterpreted data, dump it (unless our caller will
|
|
|
|
|
be printing the entire packet in hex). */
|
|
|
|
|
if ((fi->hfinfo->id == proto_data) && (pdata->print_hex_for_data)) {
|
|
|
|
|
/*
|
|
|
|
|
* Find the data for this field.
|
|
|
|
|
*/
|
|
|
|
|
pd = get_field_data(pdata->src_list, fi);
|
|
|
|
|
if (pd) {
|
|
|
|
|
if (!print_line(pdata->stream, 0, "")) {
|
|
|
|
|
pdata->success = FALSE;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
if (!print_hex_data_buffer(pdata->stream, pd,
|
2022-01-13 01:18:38 +00:00
|
|
|
fi->length, pdata->encoding, HEXDUMP_ASCII_INCLUDE)) {
|
2013-02-23 22:37:52 +00:00
|
|
|
pdata->success = FALSE;
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* If we're printing all levels, or if this node is one with a
|
|
|
|
|
subtree and its subtree is expanded, recurse into the subtree,
|
|
|
|
|
if it exists. */
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert((fi->tree_type >= -1) && (fi->tree_type < num_tree_types));
|
2013-02-23 22:37:52 +00:00
|
|
|
if ((pdata->print_dissections == print_dissections_expanded) ||
|
|
|
|
|
((pdata->print_dissections == print_dissections_as_displayed) &&
|
2013-07-07 16:33:49 +00:00
|
|
|
(fi->tree_type >= 0) && tree_expanded(fi->tree_type))) {
|
2013-02-23 22:37:52 +00:00
|
|
|
if (node->first_child != NULL) {
|
|
|
|
|
pdata->level++;
|
|
|
|
|
proto_tree_children_foreach(node,
|
|
|
|
|
proto_tree_print_node, pdata);
|
|
|
|
|
pdata->level--;
|
|
|
|
|
if (!pdata->success)
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
|
|
|
|
|
2011-05-19 18:10:21 +00:00
|
|
|
#define PDML2HTML_XSL "pdml2html.xsl"
|
2023-01-19 16:19:46 +00:00
|
|
|
#define PDML2HTML_URL "https://gitlab.com/wireshark/wireshark/-/tree/master/resources/share/doc/wireshark/"
|
2004-07-08 10:36:29 +00:00
|
|
|
void
|
2013-02-23 22:37:52 +00:00
|
|
|
write_pdml_preamble(FILE *fh, const gchar *filename)
|
2003-12-06 06:09:13 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
time_t t = time(NULL);
|
2016-10-22 02:18:15 +00:00
|
|
|
struct tm * timeinfo;
|
2016-10-22 03:46:48 +00:00
|
|
|
char *fmt_ts;
|
|
|
|
|
const char *ts;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2016-10-22 02:18:15 +00:00
|
|
|
/* Create the output */
|
|
|
|
|
timeinfo = localtime(&t);
|
|
|
|
|
if (timeinfo != NULL) {
|
2016-10-22 03:46:48 +00:00
|
|
|
fmt_ts = asctime(timeinfo);
|
|
|
|
|
fmt_ts[strlen(fmt_ts)-1] = 0; /* overwrite \n */
|
|
|
|
|
ts = fmt_ts;
|
2016-10-22 02:18:15 +00:00
|
|
|
} else
|
|
|
|
|
ts = "Not representable";
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2016-09-23 08:46:16 +00:00
|
|
|
fprintf(fh, "<?xml version=\"1.0\" encoding=\"utf-8\"?>\n");
|
|
|
|
|
fprintf(fh, "<?xml-stylesheet type=\"text/xsl\" href=\"" PDML2HTML_XSL "\"?>\n");
|
2023-01-19 16:19:46 +00:00
|
|
|
fprintf(fh, "<!-- You can find " PDML2HTML_XSL " in %s or at "PDML2HTML_URL PDML2HTML_XSL ". -->\n", get_doc_dir());
|
2016-09-23 08:46:16 +00:00
|
|
|
fprintf(fh, "<pdml version=\"" PDML_VERSION "\" creator=\"%s/%s\" time=\"%s\" capture_file=\"", PACKAGE, VERSION, ts);
|
|
|
|
|
if (filename) {
|
|
|
|
|
/* \todo filename should be converted to UTF-8. */
|
|
|
|
|
print_escaped_xml(fh, filename);
|
|
|
|
|
}
|
|
|
|
|
fprintf(fh, "\">\n");
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
2003-12-06 06:09:13 +00:00
|
|
|
|
2023-02-14 01:55:36 +00:00
|
|
|
/* Check if the str matches the protocolfilter.
|
|
|
|
|
*
|
|
|
|
|
* @param[in] protocolfilter a map of field abbreviations that pass the filter
|
|
|
|
|
* to the flags for that field, or NULL if no filter (so all fields pass)
|
|
|
|
|
* @param[in] str the field abbreviation to lookup in the map.
|
|
|
|
|
* @param[out] flags if not NULL, gets set to the value in the map for
|
|
|
|
|
* the given key if found (undefined if return is FALSE.)
|
|
|
|
|
* @return TRUE if the filter passes the string, FALSE if the filter
|
|
|
|
|
* filters out the string.
|
|
|
|
|
*/
|
|
|
|
|
static gboolean check_protocolfilter(wmem_map_t *protocolfilter, const char *str, pf_flags *flags)
|
2016-06-20 09:03:40 +00:00
|
|
|
{
|
|
|
|
|
gboolean res = FALSE;
|
2023-02-14 01:55:36 +00:00
|
|
|
void *value;
|
2016-06-20 09:03:40 +00:00
|
|
|
|
2023-02-14 01:55:36 +00:00
|
|
|
if (protocolfilter == NULL) {
|
|
|
|
|
if (flags) {
|
|
|
|
|
*flags = PF_NONE;
|
|
|
|
|
}
|
|
|
|
|
return TRUE;
|
2016-06-20 09:03:40 +00:00
|
|
|
}
|
|
|
|
|
|
2023-02-14 01:55:36 +00:00
|
|
|
if (str == NULL) {
|
|
|
|
|
return FALSE;
|
2016-06-20 09:03:40 +00:00
|
|
|
}
|
|
|
|
|
|
2023-02-14 01:55:36 +00:00
|
|
|
res = wmem_map_lookup_extended(protocolfilter, str, NULL, &value);
|
|
|
|
|
if (res && flags) {
|
|
|
|
|
*flags = GPOINTER_TO_UINT(value);
|
|
|
|
|
}
|
2016-06-20 09:03:40 +00:00
|
|
|
return res;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
void
|
2023-02-14 01:55:36 +00:00
|
|
|
write_pdml_proto_tree(output_fields_t* fields, wmem_map_t *protocolfilter, epan_dissect_t *edt, column_info *cinfo, FILE *fh, gboolean use_color)
|
2004-07-08 10:36:29 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
write_pdml_data data;
|
2017-07-20 22:07:31 +00:00
|
|
|
const color_filter_t *cfp;
|
2004-07-05 16:42:19 +00:00
|
|
|
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(edt);
|
|
|
|
|
ws_assert(fh);
|
2016-06-28 11:01:25 +00:00
|
|
|
|
2017-07-20 22:07:31 +00:00
|
|
|
cfp = edt->pi.fd->color_filter;
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
/* Create the output */
|
2017-06-11 16:03:13 +00:00
|
|
|
if (use_color && (cfp != NULL)) {
|
2017-08-18 08:51:14 +00:00
|
|
|
fprintf(fh, "<packet foreground='#%06x' background='#%06x'>\n",
|
|
|
|
|
color_t_to_rgb(&cfp->fg_color),
|
|
|
|
|
color_t_to_rgb(&cfp->bg_color));
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-06-11 16:03:13 +00:00
|
|
|
fprintf(fh, "<packet>\n");
|
|
|
|
|
}
|
2003-12-06 06:09:13 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
/* Print a "geninfo" protocol as required by PDML */
|
2016-09-21 16:26:16 +00:00
|
|
|
print_pdml_geninfo(edt, fh);
|
2003-12-06 06:09:13 +00:00
|
|
|
|
2016-06-28 11:01:25 +00:00
|
|
|
if (fields == NULL || fields->fields == NULL) {
|
2016-06-29 23:13:38 +00:00
|
|
|
/* Write out all fields */
|
|
|
|
|
data.level = 0;
|
|
|
|
|
data.fh = fh;
|
|
|
|
|
data.src_list = edt->pi.data_src;
|
|
|
|
|
data.filter = protocolfilter;
|
|
|
|
|
|
2016-06-28 11:01:25 +00:00
|
|
|
proto_tree_children_foreach(edt->tree, proto_tree_write_node_pdml,
|
|
|
|
|
&data);
|
|
|
|
|
} else {
|
2016-06-29 23:13:38 +00:00
|
|
|
/* Write out specified fields */
|
2018-12-10 12:44:03 +00:00
|
|
|
write_specified_fields(FORMAT_XML, fields, edt, cinfo, fh, NULL);
|
2016-06-28 11:01:25 +00:00
|
|
|
}
|
2003-12-06 06:09:13 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(fh, "</packet>\n\n");
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
2016-06-13 13:47:44 +00:00
|
|
|
void
|
2017-04-23 23:48:17 +00:00
|
|
|
write_ek_proto_tree(output_fields_t* fields,
|
2017-07-19 14:24:47 +00:00
|
|
|
gboolean print_summary, gboolean print_hex,
|
2023-02-14 01:55:36 +00:00
|
|
|
wmem_map_t *protocolfilter,
|
|
|
|
|
epan_dissect_t *edt,
|
2017-12-21 13:58:07 +00:00
|
|
|
column_info *cinfo,
|
2017-04-23 23:48:17 +00:00
|
|
|
FILE *fh)
|
2016-06-13 13:47:44 +00:00
|
|
|
{
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(edt);
|
|
|
|
|
ws_assert(fh);
|
2016-06-28 11:01:25 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_data data;
|
|
|
|
|
|
|
|
|
|
json_dumper dumper = {
|
|
|
|
|
.output_file = fh,
|
|
|
|
|
.flags = JSON_DUMPER_DOT_TO_UNDERSCORE
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
data.dumper = &dumper;
|
|
|
|
|
|
|
|
|
|
json_dumper_begin_object(&dumper);
|
|
|
|
|
json_dumper_set_member_name(&dumper, "index");
|
|
|
|
|
json_dumper_begin_object(&dumper);
|
|
|
|
|
write_json_index(&dumper, edt);
|
|
|
|
|
json_dumper_set_member_name(&dumper, "_type");
|
2019-05-08 08:42:39 +00:00
|
|
|
json_dumper_value_string(&dumper, "doc");
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(&dumper);
|
|
|
|
|
json_dumper_end_object(&dumper);
|
|
|
|
|
json_dumper_finish(&dumper);
|
|
|
|
|
json_dumper_begin_object(&dumper);
|
2016-06-13 13:47:44 +00:00
|
|
|
|
|
|
|
|
/* Timestamp added for time indexing in Elasticsearch */
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(&dumper, "timestamp");
|
2021-12-16 18:06:18 +00:00
|
|
|
json_dumper_value_anyf(&dumper, "\"%" PRIu64 "%03d\"", (guint64)edt->pi.abs_ts.secs, edt->pi.abs_ts.nsecs/1000000);
|
2017-07-19 14:24:47 +00:00
|
|
|
|
|
|
|
|
if (print_summary)
|
2018-12-10 12:44:03 +00:00
|
|
|
write_ek_summary(edt->pi.cinfo, &data);
|
2017-07-19 14:24:47 +00:00
|
|
|
|
2017-10-29 01:33:46 +00:00
|
|
|
if (edt->tree) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(&dumper, "layers");
|
|
|
|
|
json_dumper_begin_object(&dumper);
|
2017-10-29 01:33:46 +00:00
|
|
|
|
|
|
|
|
if (fields == NULL || fields->fields == NULL) {
|
|
|
|
|
/* Write out all fields */
|
|
|
|
|
data.src_list = edt->pi.data_src;
|
2018-12-10 12:44:03 +00:00
|
|
|
data.filter = protocolfilter;
|
2017-10-29 01:33:46 +00:00
|
|
|
data.print_hex = print_hex;
|
|
|
|
|
proto_tree_write_node_ek(edt->tree, &data);
|
|
|
|
|
} else {
|
|
|
|
|
/* Write out specified fields */
|
2019-01-24 18:25:29 +00:00
|
|
|
write_specified_fields(FORMAT_EK, fields, edt, cinfo, NULL, data.dumper);
|
2017-10-29 01:33:46 +00:00
|
|
|
}
|
2016-06-29 23:13:38 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(&dumper);
|
2016-06-28 11:01:25 +00:00
|
|
|
}
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(&dumper);
|
|
|
|
|
json_dumper_finish(&dumper);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
|
2016-06-29 23:13:38 +00:00
|
|
|
void
|
|
|
|
|
write_fields_proto_tree(output_fields_t* fields, epan_dissect_t *edt, column_info *cinfo, FILE *fh)
|
|
|
|
|
{
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(edt);
|
|
|
|
|
ws_assert(fh);
|
2016-06-29 23:13:38 +00:00
|
|
|
|
|
|
|
|
/* Create the output */
|
2018-12-10 12:44:03 +00:00
|
|
|
write_specified_fields(FORMAT_CSV, fields, edt, cinfo, fh, NULL);
|
2016-06-29 23:13:38 +00:00
|
|
|
}
|
|
|
|
|
|
2017-02-11 14:40:24 +00:00
|
|
|
/* Indent to the correct level */
|
|
|
|
|
static void print_indent(int level, FILE *fh)
|
|
|
|
|
{
|
2020-10-17 14:49:37 +00:00
|
|
|
/* Use a buffer pre-filed with spaces */
|
|
|
|
|
#define MAX_INDENT 2048
|
|
|
|
|
static char spaces[MAX_INDENT];
|
|
|
|
|
static gboolean inited = FALSE;
|
|
|
|
|
if (!inited) {
|
|
|
|
|
for (int n=0; n < MAX_INDENT; n++) {
|
|
|
|
|
spaces[n] = ' ';
|
|
|
|
|
}
|
|
|
|
|
inited = TRUE;
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-11 14:40:24 +00:00
|
|
|
if (fh == NULL) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
2020-10-17 14:49:37 +00:00
|
|
|
|
|
|
|
|
/* Temp terminate at right length and write to fh. */
|
|
|
|
|
spaces[MIN(level*2, MAX_INDENT-1)] ='\0';
|
|
|
|
|
fputs(spaces, fh);
|
|
|
|
|
spaces[MIN(level*2, MAX_INDENT-1)] =' ';
|
2017-02-11 14:40:24 +00:00
|
|
|
}
|
|
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
/* Write out a tree's data, and any child nodes, as PDML */
|
2003-12-06 06:09:13 +00:00
|
|
|
static void
|
2004-07-08 10:36:29 +00:00
|
|
|
proto_tree_write_node_pdml(proto_node *node, gpointer data)
|
2003-12-06 06:09:13 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
field_info *fi = PNODE_FINFO(node);
|
|
|
|
|
write_pdml_data *pdata = (write_pdml_data*) data;
|
|
|
|
|
const gchar *label_ptr;
|
|
|
|
|
gchar label_str[ITEM_LABEL_LENGTH];
|
|
|
|
|
char *dfilter_string;
|
|
|
|
|
gboolean wrap_in_fake_protocol;
|
|
|
|
|
|
|
|
|
|
/* dissection with an invisible proto tree? */
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fi);
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
/* Will wrap up top-level field items inside a fake protocol wrapper to
|
|
|
|
|
preserve the PDML schema */
|
|
|
|
|
wrap_in_fake_protocol =
|
|
|
|
|
(((fi->hfinfo->type != FT_PROTOCOL) ||
|
|
|
|
|
(fi->hfinfo->id == proto_data)) &&
|
|
|
|
|
(pdata->level == 0));
|
|
|
|
|
|
2017-02-11 14:40:24 +00:00
|
|
|
print_indent(pdata->level + 1, pdata->fh);
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
if (wrap_in_fake_protocol) {
|
|
|
|
|
/* Open fake protocol wrapper */
|
|
|
|
|
fputs("<proto name=\"fake-field-wrapper\">\n", pdata->fh);
|
2017-12-03 09:28:35 +00:00
|
|
|
pdata->level++;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2017-02-11 14:40:24 +00:00
|
|
|
print_indent(pdata->level + 1, pdata->fh);
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Text label. It's printed as a field with no name. */
|
|
|
|
|
if (fi->hfinfo->id == hf_text_only) {
|
|
|
|
|
/* Get the text */
|
|
|
|
|
if (fi->rep) {
|
|
|
|
|
label_ptr = fi->rep->representation;
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
label_ptr = "";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Show empty name since it is a required field */
|
|
|
|
|
fputs("<field name=\"", pdata->fh);
|
|
|
|
|
fputs("\" show=\"", pdata->fh);
|
|
|
|
|
print_escaped_xml(pdata->fh, label_ptr);
|
|
|
|
|
|
|
|
|
|
fprintf(pdata->fh, "\" size=\"%d", fi->length);
|
|
|
|
|
if (node->parent && node->parent->finfo && (fi->start < node->parent->finfo->start)) {
|
|
|
|
|
fprintf(pdata->fh, "\" pos=\"%d", node->parent->finfo->start + fi->start);
|
|
|
|
|
} else {
|
|
|
|
|
fprintf(pdata->fh, "\" pos=\"%d", fi->start);
|
|
|
|
|
}
|
|
|
|
|
|
2014-11-01 21:08:44 +00:00
|
|
|
if (fi->length > 0) {
|
|
|
|
|
fputs("\" value=\"", pdata->fh);
|
2014-11-29 22:43:22 +00:00
|
|
|
pdml_write_field_hex_value(pdata, fi);
|
2014-11-01 21:08:44 +00:00
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
if (node->first_child != NULL) {
|
|
|
|
|
fputs("\">\n", pdata->fh);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("\"/>\n", pdata->fh);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Uninterpreted data, i.e., the "Data" protocol, is
|
|
|
|
|
* printed as a field instead of a protocol. */
|
|
|
|
|
else if (fi->hfinfo->id == proto_data) {
|
|
|
|
|
/* Write out field with data */
|
|
|
|
|
fputs("<field name=\"data\" value=\"", pdata->fh);
|
2014-11-29 22:43:22 +00:00
|
|
|
pdml_write_field_hex_value(pdata, fi);
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("\">\n", pdata->fh);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
|
|
|
|
/* Normal protocols and fields */
|
2013-02-23 22:37:52 +00:00
|
|
|
if ((fi->hfinfo->type == FT_PROTOCOL) && (fi->hfinfo->id != proto_expert)) {
|
|
|
|
|
fputs("<proto name=\"", pdata->fh);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("<field name=\"", pdata->fh);
|
|
|
|
|
}
|
|
|
|
|
print_escaped_xml(pdata->fh, fi->hfinfo->abbrev);
|
2003-12-06 06:09:13 +00:00
|
|
|
|
2004-04-17 09:02:32 +00:00
|
|
|
#if 0
|
2013-02-23 22:37:52 +00:00
|
|
|
/* PDML spec, see:
|
2017-08-22 17:37:46 +00:00
|
|
|
* https://wayback.archive.org/web/20150330045501/http://www.nbee.org/doku.php?id=netpdl:pdml_specification
|
2013-02-23 22:37:52 +00:00
|
|
|
*
|
|
|
|
|
* the show fields contains things in 'human readable' format
|
|
|
|
|
* showname: contains only the name of the field
|
|
|
|
|
* show: contains only the data of the field
|
|
|
|
|
* showdtl: contains additional details of the field data
|
|
|
|
|
* showmap: contains mappings of the field data (e.g. the hostname to an IP address)
|
|
|
|
|
*
|
|
|
|
|
* XXX - the showname shouldn't contain the field data itself
|
|
|
|
|
* (like it's contained in the fi->rep->representation).
|
|
|
|
|
* Unfortunately, we don't have the field data representation for
|
|
|
|
|
* all fields, so this isn't currently possible */
|
|
|
|
|
fputs("\" showname=\"", pdata->fh);
|
|
|
|
|
print_escaped_xml(pdata->fh, fi->hfinfo->name);
|
2004-04-17 09:02:32 +00:00
|
|
|
#endif
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (fi->rep) {
|
|
|
|
|
fputs("\" showname=\"", pdata->fh);
|
|
|
|
|
print_escaped_xml(pdata->fh, fi->rep->representation);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
label_ptr = label_str;
|
|
|
|
|
proto_item_fill_label(fi, label_str);
|
|
|
|
|
fputs("\" showname=\"", pdata->fh);
|
|
|
|
|
print_escaped_xml(pdata->fh, label_ptr);
|
|
|
|
|
}
|
|
|
|
|
|
2019-04-03 21:32:30 +00:00
|
|
|
if (proto_item_is_hidden(node) && (prefs.display_hidden_proto_items == FALSE))
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(pdata->fh, "\" hide=\"yes");
|
|
|
|
|
|
|
|
|
|
fprintf(pdata->fh, "\" size=\"%d", fi->length);
|
|
|
|
|
if (node->parent && node->parent->finfo && (fi->start < node->parent->finfo->start)) {
|
|
|
|
|
fprintf(pdata->fh, "\" pos=\"%d", node->parent->finfo->start + fi->start);
|
|
|
|
|
} else {
|
|
|
|
|
fprintf(pdata->fh, "\" pos=\"%d", fi->start);
|
|
|
|
|
}
|
|
|
|
|
/* fprintf(pdata->fh, "\" id=\"%d", fi->hfinfo->id);*/
|
|
|
|
|
|
|
|
|
|
/* show, value, and unmaskedvalue attributes */
|
|
|
|
|
switch (fi->hfinfo->type)
|
|
|
|
|
{
|
|
|
|
|
case FT_PROTOCOL:
|
|
|
|
|
break;
|
|
|
|
|
case FT_NONE:
|
|
|
|
|
fputs("\" show=\"\" value=\"", pdata->fh);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
2016-05-10 20:04:14 +00:00
|
|
|
dfilter_string = fvalue_to_string_repr(NULL, &fi->value, FTREPR_DISPLAY, fi->hfinfo->display);
|
2013-02-23 22:37:52 +00:00
|
|
|
if (dfilter_string != NULL) {
|
|
|
|
|
|
|
|
|
|
fputs("\" show=\"", pdata->fh);
|
2014-05-18 18:21:31 +00:00
|
|
|
print_escaped_xml(pdata->fh, dfilter_string);
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
2016-05-10 20:04:14 +00:00
|
|
|
wmem_free(NULL, dfilter_string);
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* XXX - should we omit "value" for any fields?
|
|
|
|
|
* What should we do for fields whose length is 0?
|
|
|
|
|
* They might come from a pseudo-header or from
|
|
|
|
|
* the capture header (e.g., time stamps), or
|
|
|
|
|
* they might be generated fields.
|
|
|
|
|
*/
|
|
|
|
|
if (fi->length > 0) {
|
|
|
|
|
fputs("\" value=\"", pdata->fh);
|
|
|
|
|
|
|
|
|
|
if (fi->hfinfo->bitmask!=0) {
|
2021-11-11 00:54:00 +00:00
|
|
|
switch (fvalue_type_ftenum(&fi->value)) {
|
2013-10-13 16:10:43 +00:00
|
|
|
case FT_INT8:
|
|
|
|
|
case FT_INT16:
|
|
|
|
|
case FT_INT24:
|
|
|
|
|
case FT_INT32:
|
|
|
|
|
fprintf(pdata->fh, "%X", (guint) fvalue_get_sinteger(&fi->value));
|
|
|
|
|
break;
|
print.c: Print FT_CHAR fields as FT_UINT8
This fixes the following asserts
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e11f90 "/home/vasko/sources/wireshark/epan/print.c", line=598, func=0x7ffff4e12e20 <__func__.18585> "proto_tree_write_node_pdml",
message=0x555555aaab70 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e11f90 "/home/vasko/sources/wireshark/epan/print.c", line=983,
func=0x7ffff4e12e40 <__func__.18697> "write_json_proto_node_hex_dump", message=0x555555aac9d0 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#4 0x00007ffff39a8f87 in write_json_proto_node_hex_dump (node=0x7fffdc86e550, data=0x7fffffffce60) at /home/vasko/sources/wireshark/epan/print.c:983
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e12010 "/home/vasko/sources/wireshark/epan/print.c", line=1299,
func=0x7ffff4e12ef0 <__func__.18804> "ek_write_hex", message=0x555555aac290 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#4 0x00007ffff39a9a32 in ek_write_hex (fi=0x7fffdc86e4e0, pdata=0x7fffffffce90) at /home/vasko/sources/wireshark/epan/print.c:1299
Change-Id: I48a7e87863fb6708cd668582a240e5ba71d1b5a0
Reviewed-on: https://code.wireshark.org/review/28891
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Tested-by: Petri Dish Buildbot
Reviewed-by: Anders Broman <a.broman58@gmail.com>
2018-07-31 17:11:24 +00:00
|
|
|
case FT_CHAR:
|
2013-10-13 16:10:43 +00:00
|
|
|
case FT_UINT8:
|
|
|
|
|
case FT_UINT16:
|
|
|
|
|
case FT_UINT24:
|
|
|
|
|
case FT_UINT32:
|
|
|
|
|
fprintf(pdata->fh, "%X", fvalue_get_uinteger(&fi->value));
|
|
|
|
|
break;
|
2014-12-17 20:19:20 +00:00
|
|
|
case FT_INT40:
|
|
|
|
|
case FT_INT48:
|
|
|
|
|
case FT_INT56:
|
2013-10-13 16:10:43 +00:00
|
|
|
case FT_INT64:
|
2021-12-16 18:06:18 +00:00
|
|
|
fprintf(pdata->fh, "%" PRIX64, fvalue_get_sinteger64(&fi->value));
|
2014-12-17 20:19:20 +00:00
|
|
|
break;
|
|
|
|
|
case FT_UINT40:
|
|
|
|
|
case FT_UINT48:
|
|
|
|
|
case FT_UINT56:
|
2013-10-13 16:10:43 +00:00
|
|
|
case FT_UINT64:
|
2016-03-22 18:06:44 +00:00
|
|
|
case FT_BOOLEAN:
|
2021-12-16 18:06:18 +00:00
|
|
|
fprintf(pdata->fh, "%" PRIX64, fvalue_get_uinteger64(&fi->value));
|
2013-10-13 16:10:43 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert_not_reached();
|
2013-10-13 16:10:43 +00:00
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("\" unmaskedvalue=\"", pdata->fh);
|
2014-11-29 22:43:22 +00:00
|
|
|
pdml_write_field_hex_value(pdata, fi);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2014-11-29 22:43:22 +00:00
|
|
|
pdml_write_field_hex_value(pdata, fi);
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (node->first_child != NULL) {
|
|
|
|
|
fputs("\">\n", pdata->fh);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else if (fi->hfinfo->id == proto_data) {
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("\">\n", pdata->fh);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("\"/>\n", pdata->fh);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-06-20 09:03:40 +00:00
|
|
|
/* We print some levels for PDML. Recurse here. */
|
2013-02-23 22:37:52 +00:00
|
|
|
if (node->first_child != NULL) {
|
2023-02-14 01:55:36 +00:00
|
|
|
pf_flags filter_flags = PF_NONE;
|
|
|
|
|
if (pdata->filter == NULL || check_protocolfilter(pdata->filter, fi->hfinfo->abbrev, &filter_flags)) {
|
|
|
|
|
wmem_map_t *_filter = NULL;
|
2017-01-19 14:37:54 +00:00
|
|
|
/* Remove protocol filter for children, if children should be included */
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2017-01-19 14:37:54 +00:00
|
|
|
_filter = pdata->filter;
|
|
|
|
|
pdata->filter = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2016-06-20 09:03:40 +00:00
|
|
|
pdata->level++;
|
|
|
|
|
proto_tree_children_foreach(node,
|
|
|
|
|
proto_tree_write_node_pdml, pdata);
|
|
|
|
|
pdata->level--;
|
2017-01-19 14:37:54 +00:00
|
|
|
|
|
|
|
|
/* Put protocol filter back */
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2017-01-19 14:37:54 +00:00
|
|
|
pdata->filter = _filter;
|
|
|
|
|
}
|
2016-06-20 09:03:40 +00:00
|
|
|
} else {
|
2017-02-11 14:40:24 +00:00
|
|
|
print_indent(pdata->level + 2, pdata->fh);
|
|
|
|
|
|
2016-06-20 09:03:40 +00:00
|
|
|
/* print dummy field */
|
|
|
|
|
fputs("<field name=\"filtered\" value=\"", pdata->fh);
|
|
|
|
|
print_escaped_xml(pdata->fh, fi->hfinfo->abbrev);
|
|
|
|
|
fputs("\" />\n", pdata->fh);
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Take back the extra level we added for fake wrapper protocol */
|
|
|
|
|
if (wrap_in_fake_protocol) {
|
|
|
|
|
pdata->level--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (node->first_child != NULL) {
|
2017-02-11 14:40:24 +00:00
|
|
|
print_indent(pdata->level + 1, pdata->fh);
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
/* Close off current element */
|
|
|
|
|
/* Data and expert "protocols" use simple tags */
|
|
|
|
|
if ((fi->hfinfo->id != proto_data) && (fi->hfinfo->id != proto_expert)) {
|
|
|
|
|
if (fi->hfinfo->type == FT_PROTOCOL) {
|
|
|
|
|
fputs("</proto>\n", pdata->fh);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("</field>\n", pdata->fh);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
fputs("</field>\n", pdata->fh);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Close off fake wrapper protocol */
|
|
|
|
|
if (wrap_in_fake_protocol) {
|
2017-12-03 09:28:35 +00:00
|
|
|
print_indent(pdata->level + 1, pdata->fh);
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("</proto>\n", pdata->fh);
|
|
|
|
|
}
|
2003-12-06 06:09:13 +00:00
|
|
|
}
|
|
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper
|
2017-06-12 12:50:55 +00:00
|
|
|
write_json_preamble(FILE *fh)
|
|
|
|
|
{
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper dumper = {
|
|
|
|
|
.output_file = fh,
|
|
|
|
|
.flags = JSON_DUMPER_FLAGS_PRETTY_PRINT
|
|
|
|
|
};
|
|
|
|
|
json_dumper_begin_array(&dumper);
|
|
|
|
|
return dumper;
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_finale(json_dumper *dumper)
|
2016-06-13 13:47:44 +00:00
|
|
|
{
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(dumper);
|
|
|
|
|
json_dumper_finish(dumper);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
write_json_index(json_dumper *dumper, epan_dissect_t *edt)
|
|
|
|
|
{
|
|
|
|
|
char ts[30];
|
|
|
|
|
struct tm * timeinfo;
|
|
|
|
|
gchar* str;
|
|
|
|
|
|
|
|
|
|
timeinfo = localtime(&edt->pi.abs_ts.secs);
|
|
|
|
|
if (timeinfo != NULL) {
|
2019-11-05 09:52:43 +00:00
|
|
|
strftime(ts, sizeof(ts), "%Y-%m-%d", timeinfo);
|
2018-12-10 12:44:03 +00:00
|
|
|
} else {
|
2021-04-30 10:18:25 +00:00
|
|
|
(void) g_strlcpy(ts, "XXXX-XX-XX", sizeof(ts)); /* XXX - better way of saying "Not representable"? */
|
2018-12-10 12:44:03 +00:00
|
|
|
}
|
|
|
|
|
json_dumper_set_member_name(dumper, "_index");
|
2021-12-16 18:06:18 +00:00
|
|
|
str = ws_strdup_printf("packets-%s", ts);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(dumper, str);
|
|
|
|
|
g_free(str);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
void
|
|
|
|
|
write_json_proto_tree(output_fields_t* fields,
|
|
|
|
|
print_dissections_e print_dissections,
|
2023-02-14 01:55:36 +00:00
|
|
|
gboolean print_hex, wmem_map_t *protocolfilter,
|
|
|
|
|
epan_dissect_t *edt, column_info *cinfo,
|
2017-06-16 13:19:18 +00:00
|
|
|
proto_node_children_grouper_func node_children_grouper,
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper *dumper)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
write_json_data data;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
data.dumper = dumper;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_object(dumper);
|
|
|
|
|
write_json_index(dumper, edt);
|
|
|
|
|
json_dumper_set_member_name(dumper, "_type");
|
2019-05-08 08:42:39 +00:00
|
|
|
json_dumper_value_string(dumper, "doc");
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(dumper, "_score");
|
|
|
|
|
json_dumper_value_string(dumper, NULL);
|
|
|
|
|
json_dumper_set_member_name(dumper, "_source");
|
|
|
|
|
json_dumper_begin_object(dumper);
|
|
|
|
|
json_dumper_set_member_name(dumper, "layers");
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
if (fields == NULL || fields->fields == NULL) {
|
|
|
|
|
/* Write out all fields */
|
|
|
|
|
data.src_list = edt->pi.data_src;
|
2018-12-10 12:44:03 +00:00
|
|
|
data.filter = protocolfilter;
|
2017-06-12 12:50:55 +00:00
|
|
|
data.print_hex = print_hex;
|
|
|
|
|
data.print_text = TRUE;
|
|
|
|
|
if (print_dissections == print_dissections_none) {
|
|
|
|
|
data.print_text = FALSE;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2017-06-16 13:19:18 +00:00
|
|
|
data.node_children_grouper = node_children_grouper;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-16 13:19:18 +00:00
|
|
|
write_json_proto_node_children(edt->tree, &data);
|
2017-06-12 12:50:55 +00:00
|
|
|
} else {
|
2018-12-10 12:44:03 +00:00
|
|
|
write_specified_fields(FORMAT_JSON, fields, edt, cinfo, NULL, dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(dumper);
|
|
|
|
|
json_dumper_end_object(dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2021-05-15 13:35:01 +00:00
|
|
|
/**
|
|
|
|
|
* Returns a boolean telling us whether that node list contains any node which has children
|
|
|
|
|
*/
|
|
|
|
|
static gboolean
|
|
|
|
|
any_has_children(GSList *node_values_list)
|
|
|
|
|
{
|
|
|
|
|
GSList *current_node = node_values_list;
|
|
|
|
|
while (current_node != NULL) {
|
|
|
|
|
proto_node *current_value = (proto_node *) current_node->data;
|
|
|
|
|
if (current_value->first_child != NULL) {
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
|
|
|
|
current_node = current_node->next;
|
|
|
|
|
}
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
/**
|
|
|
|
|
* Write a json object containing a list of key:value pairs where each key:value pair corresponds to a different json
|
|
|
|
|
* key and its associated nodes in the proto_tree.
|
|
|
|
|
* @param proto_node_list_head A 2-dimensional list containing a list of values for each different node json key. The
|
|
|
|
|
* elements themselves are a linked list of values associated with the same json key.
|
2019-01-29 19:49:03 +00:00
|
|
|
* @param pdata json writing metadata
|
2017-06-12 12:50:55 +00:00
|
|
|
*/
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node_list(GSList *proto_node_list_head, write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
GSList *current_node = proto_node_list_head;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_object(pdata->dumper);
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
// Loop over each list of nodes (differentiated by json key) and write the associated json key:value pair in the
|
|
|
|
|
// output.
|
|
|
|
|
while (current_node != NULL) {
|
|
|
|
|
// Get the list of values for the current json key.
|
|
|
|
|
GSList *node_values_list = (GSList *) current_node->data;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
// Retrieve the json key from the first value.
|
|
|
|
|
proto_node *first_value = (proto_node *) node_values_list->data;
|
|
|
|
|
const char *json_key = proto_node_to_json_key(first_value);
|
|
|
|
|
// Check if the current json key is filtered from the output with the "-j" cli option.
|
2023-02-14 01:55:36 +00:00
|
|
|
pf_flags filter_flags = PF_NONE;
|
|
|
|
|
gboolean is_filtered = pdata->filter != NULL && !check_protocolfilter(pdata->filter, json_key, &filter_flags);
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
field_info *fi = first_value->finfo;
|
|
|
|
|
char *value_string_repr = fvalue_to_string_repr(NULL, &fi->value, FTREPR_DISPLAY, fi->hfinfo->display);
|
2021-05-15 13:35:01 +00:00
|
|
|
gboolean has_children = any_has_children(node_values_list);
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
// We assume all values of a json key have roughly the same layout. Thus we can use the first value to derive
|
|
|
|
|
// attributes of all the values.
|
|
|
|
|
gboolean has_value = value_string_repr != NULL;
|
|
|
|
|
gboolean is_pseudo_text_field = fi->hfinfo->id == 0;
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
wmem_free(NULL, value_string_repr); // fvalue_to_string_repr returns allocated buffer
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
// "-x" command line option. A "_raw" suffix is added to the json key so the textual value can be printed
|
|
|
|
|
// with the original json key. If both hex and text writing are enabled the raw information of fields whose
|
|
|
|
|
// length is equal to 0 is not written to the output. If the field is a special text pseudo field no raw
|
|
|
|
|
// information is written either.
|
2018-12-10 12:44:03 +00:00
|
|
|
if (pdata->print_hex && (!pdata->print_text || fi->length > 0) && !is_pseudo_text_field) {
|
|
|
|
|
write_json_proto_node(node_values_list, "_raw", write_json_proto_node_hex_dump, pdata);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
if (pdata->print_text && has_value) {
|
|
|
|
|
write_json_proto_node(node_values_list, "", write_json_proto_node_value, pdata);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
if (has_children) {
|
2017-06-16 13:19:18 +00:00
|
|
|
// If a node has both a value and a set of children we print the value and the children in separate
|
|
|
|
|
// key:value pairs. These can't have the same key so whenever a value is already printed with the node
|
|
|
|
|
// json key we print the children with the same key with a "_tree" suffix added.
|
|
|
|
|
char *suffix = has_value ? "_tree": "";
|
|
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
if (is_filtered) {
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node(node_values_list, suffix, write_json_proto_node_filtered, pdata);
|
2017-06-12 12:50:55 +00:00
|
|
|
} else {
|
|
|
|
|
// Remove protocol filter for children, if children should be included. This functionality is enabled
|
|
|
|
|
// with the "-J" command line option. We save the filter so it can be reenabled when we are done with
|
|
|
|
|
// the current key:value pair.
|
2023-02-14 01:55:36 +00:00
|
|
|
wmem_map_t *_filter = NULL;
|
|
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2018-12-10 12:44:03 +00:00
|
|
|
_filter = pdata->filter;
|
|
|
|
|
pdata->filter = NULL;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2021-05-15 13:35:01 +00:00
|
|
|
// has_children is TRUE if any of the nodes have children. So we're not 100% sure whether this
|
|
|
|
|
// particular node has children or not => use the 'dynamic' version of 'write_json_proto_node'
|
|
|
|
|
write_json_proto_node(node_values_list, suffix, write_json_proto_node_dynamic, pdata);
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
// Put protocol filter back
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2018-12-10 12:44:03 +00:00
|
|
|
pdata->filter = _filter;
|
2016-06-24 12:13:06 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2017-02-13 08:36:02 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
if (!has_value && !has_children && (pdata->print_text || (pdata->print_hex && is_pseudo_text_field))) {
|
|
|
|
|
write_json_proto_node(node_values_list, "", write_json_proto_node_no_value, pdata);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
current_node = current_node->next;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(pdata->dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2017-01-19 14:37:54 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
/**
|
|
|
|
|
* Writes a single node as a key:value pair. The value_writer param can be used to specify how the node's value should
|
|
|
|
|
* be written.
|
|
|
|
|
* @param node_values_head Linked list containing all nodes associated with the same json key in this object.
|
|
|
|
|
* @param suffix Suffix that should be added to the json key.
|
|
|
|
|
* @param value_writer A function which writes the actual values of the node json key.
|
2019-01-29 19:49:03 +00:00
|
|
|
* @param pdata json writing metadata
|
2017-06-12 12:50:55 +00:00
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
write_json_proto_node(GSList *node_values_head,
|
|
|
|
|
const char *suffix,
|
|
|
|
|
proto_node_value_writer value_writer,
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
// Retrieve json key from first value.
|
|
|
|
|
proto_node *first_value = (proto_node *) node_values_head->data;
|
|
|
|
|
const char *json_key = proto_node_to_json_key(first_value);
|
2021-12-16 18:06:18 +00:00
|
|
|
gchar* json_key_suffix = ws_strdup_printf("%s%s", json_key, suffix);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(pdata->dumper, json_key_suffix);
|
|
|
|
|
g_free(json_key_suffix);
|
|
|
|
|
write_json_proto_node_value_list(node_values_head, value_writer, pdata);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Writes a list of values of a single json key. If multiple values are passed they are wrapped in a json array.
|
|
|
|
|
* @param node_values_head Linked list containing all values that should be written.
|
|
|
|
|
* @param value_writer Function which writes the separate values.
|
2019-01-29 19:49:03 +00:00
|
|
|
* @param pdata json writing metadata
|
2017-06-12 12:50:55 +00:00
|
|
|
*/
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node_value_list(GSList *node_values_head, proto_node_value_writer value_writer, write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
GSList *current_value = node_values_head;
|
|
|
|
|
|
|
|
|
|
// Write directly if only a single value is passed. Wrap in json array otherwise.
|
|
|
|
|
if (current_value->next == NULL) {
|
2018-12-10 12:44:03 +00:00
|
|
|
value_writer((proto_node *) current_value->data, pdata);
|
2017-06-12 12:50:55 +00:00
|
|
|
} else {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_array(pdata->dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
|
|
|
|
|
while (current_value != NULL) {
|
2018-12-10 12:44:03 +00:00
|
|
|
value_writer((proto_node *) current_value->data, pdata);
|
2017-06-12 12:50:55 +00:00
|
|
|
current_value = current_value->next;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(pdata->dumper);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
/**
|
|
|
|
|
* Writes the value for a node that's filtered from the output.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node_filtered(proto_node *node, write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
const char *json_key = proto_node_to_json_key(node);
|
2017-02-11 14:40:24 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_object(pdata->dumper);
|
|
|
|
|
json_dumper_set_member_name(pdata->dumper, "filtered");
|
|
|
|
|
json_dumper_value_string(pdata->dumper, json_key);
|
|
|
|
|
json_dumper_end_object(pdata->dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Writes the hex dump of a node. A json array is written containing the hex dump, position, length, bitmask and type of
|
|
|
|
|
* the node.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node_hex_dump(proto_node *node, write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
field_info *fi = node->finfo;
|
|
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_array(pdata->dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
|
|
|
|
|
if (fi->hfinfo->bitmask!=0) {
|
2021-11-11 00:54:00 +00:00
|
|
|
switch (fvalue_type_ftenum(&fi->value)) {
|
2017-06-12 12:50:55 +00:00
|
|
|
case FT_INT8:
|
|
|
|
|
case FT_INT16:
|
|
|
|
|
case FT_INT24:
|
|
|
|
|
case FT_INT32:
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%X\"", (guint) fvalue_get_sinteger(&fi->value));
|
2017-06-12 12:50:55 +00:00
|
|
|
break;
|
print.c: Print FT_CHAR fields as FT_UINT8
This fixes the following asserts
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e11f90 "/home/vasko/sources/wireshark/epan/print.c", line=598, func=0x7ffff4e12e20 <__func__.18585> "proto_tree_write_node_pdml",
message=0x555555aaab70 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e11f90 "/home/vasko/sources/wireshark/epan/print.c", line=983,
func=0x7ffff4e12e40 <__func__.18697> "write_json_proto_node_hex_dump", message=0x555555aac9d0 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#4 0x00007ffff39a8f87 in write_json_proto_node_hex_dump (node=0x7fffdc86e550, data=0x7fffffffce60) at /home/vasko/sources/wireshark/epan/print.c:983
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e12010 "/home/vasko/sources/wireshark/epan/print.c", line=1299,
func=0x7ffff4e12ef0 <__func__.18804> "ek_write_hex", message=0x555555aac290 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#4 0x00007ffff39a9a32 in ek_write_hex (fi=0x7fffdc86e4e0, pdata=0x7fffffffce90) at /home/vasko/sources/wireshark/epan/print.c:1299
Change-Id: I48a7e87863fb6708cd668582a240e5ba71d1b5a0
Reviewed-on: https://code.wireshark.org/review/28891
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Tested-by: Petri Dish Buildbot
Reviewed-by: Anders Broman <a.broman58@gmail.com>
2018-07-31 17:11:24 +00:00
|
|
|
case FT_CHAR:
|
2017-06-12 12:50:55 +00:00
|
|
|
case FT_UINT8:
|
|
|
|
|
case FT_UINT16:
|
|
|
|
|
case FT_UINT24:
|
|
|
|
|
case FT_UINT32:
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%X\"", fvalue_get_uinteger(&fi->value));
|
2017-06-12 12:50:55 +00:00
|
|
|
break;
|
|
|
|
|
case FT_INT40:
|
|
|
|
|
case FT_INT48:
|
|
|
|
|
case FT_INT56:
|
|
|
|
|
case FT_INT64:
|
2021-12-16 18:06:18 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%" PRIX64 "\"", fvalue_get_sinteger64(&fi->value));
|
2017-06-12 12:50:55 +00:00
|
|
|
break;
|
|
|
|
|
case FT_UINT40:
|
|
|
|
|
case FT_UINT48:
|
|
|
|
|
case FT_UINT56:
|
|
|
|
|
case FT_UINT64:
|
|
|
|
|
case FT_BOOLEAN:
|
2021-12-16 18:06:18 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%" PRIX64 "\"", fvalue_get_uinteger64(&fi->value));
|
2017-06-12 12:50:55 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert_not_reached();
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_write_field_hex_value(pdata, fi);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Dump raw hex-encoded dissected information including position, length, bitmask, type */
|
2021-12-16 18:06:18 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "%" PRId32, fi->start);
|
|
|
|
|
json_dumper_value_anyf(pdata->dumper, "%" PRId32, fi->length);
|
|
|
|
|
json_dumper_value_anyf(pdata->dumper, "%" PRIu64, fi->hfinfo->bitmask);
|
|
|
|
|
json_dumper_value_anyf(pdata->dumper, "%" PRId32, (gint32)fvalue_type_ftenum(&fi->value));
|
2017-06-12 12:50:55 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(pdata->dumper);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
|
2021-05-15 13:35:01 +00:00
|
|
|
/**
|
|
|
|
|
* Writes the value of a node, which may be a simple node with no value and no children,
|
|
|
|
|
* or a node with children -- this will be determined dynamically
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
write_json_proto_node_dynamic(proto_node *node, write_json_data *data)
|
|
|
|
|
{
|
|
|
|
|
if (node->first_child == NULL) {
|
|
|
|
|
write_json_proto_node_no_value(node, data);
|
|
|
|
|
} else {
|
|
|
|
|
write_json_proto_node_children(node, data);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
/**
|
|
|
|
|
* Writes the children of a node. Calls write_json_proto_node_list internally which recursively writes children of nodes
|
|
|
|
|
* to the output.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
|
|
|
|
write_json_proto_node_children(proto_node *node, write_json_data *data)
|
|
|
|
|
{
|
2017-06-16 13:19:18 +00:00
|
|
|
GSList *grouped_children_list = data->node_children_grouper(node);
|
|
|
|
|
write_json_proto_node_list(grouped_children_list, data);
|
|
|
|
|
g_slist_free_full(grouped_children_list, (GDestroyNotify) g_slist_free);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Writes the value of a node to the output.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node_value(proto_node *node, write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
field_info *fi = node->finfo;
|
|
|
|
|
// Get the actual value of the node as a string.
|
|
|
|
|
char *value_string_repr = fvalue_to_string_repr(NULL, &fi->value, FTREPR_DISPLAY, fi->hfinfo->display);
|
|
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, value_string_repr);
|
2017-06-12 12:50:55 +00:00
|
|
|
|
|
|
|
|
wmem_free(NULL, value_string_repr);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Write the value for a node that has no value and no children. This is the empty string for all nodes except those of
|
|
|
|
|
* type FT_PROTOCOL for which the full name is written instead.
|
|
|
|
|
*/
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_json_proto_node_no_value(proto_node *node, write_json_data *pdata)
|
2017-06-12 12:50:55 +00:00
|
|
|
{
|
|
|
|
|
field_info *fi = node->finfo;
|
|
|
|
|
|
|
|
|
|
if (fi->hfinfo->type == FT_PROTOCOL) {
|
|
|
|
|
if (fi->rep) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, fi->rep->representation);
|
2016-06-13 13:47:44 +00:00
|
|
|
} else {
|
2017-06-12 12:50:55 +00:00
|
|
|
gchar label_str[ITEM_LABEL_LENGTH];
|
|
|
|
|
proto_item_fill_label(fi, label_str);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, label_str);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2018-12-10 12:44:03 +00:00
|
|
|
} else {
|
|
|
|
|
json_dumper_value_string(pdata->dumper, "");
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2017-06-16 13:19:18 +00:00
|
|
|
* Groups each child of the node separately.
|
|
|
|
|
* @return Linked list where each element is another linked list containing a single node.
|
2017-06-12 12:50:55 +00:00
|
|
|
*/
|
2017-06-16 13:19:18 +00:00
|
|
|
GSList *
|
2017-06-12 12:50:55 +00:00
|
|
|
proto_node_group_children_by_unique(proto_node *node) {
|
|
|
|
|
GSList *unique_nodes_list = NULL;
|
|
|
|
|
proto_node *current_child = node->first_child;
|
|
|
|
|
|
|
|
|
|
while (current_child != NULL) {
|
|
|
|
|
GSList *unique_node = g_slist_prepend(NULL, current_child);
|
|
|
|
|
unique_nodes_list = g_slist_prepend(unique_nodes_list, unique_node);
|
|
|
|
|
current_child = current_child->next;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return g_slist_reverse(unique_nodes_list);
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-16 13:19:18 +00:00
|
|
|
/**
|
|
|
|
|
* Groups the children of a node by their json key. Children are put in the same group if they have the same json key.
|
|
|
|
|
* @return Linked list where each element is another linked list of nodes associated with the same json key.
|
|
|
|
|
*/
|
|
|
|
|
GSList *
|
|
|
|
|
proto_node_group_children_by_json_key(proto_node *node)
|
|
|
|
|
{
|
|
|
|
|
/**
|
|
|
|
|
* For each different json key we store a linked list of values corresponding to that json key. These lists are kept
|
|
|
|
|
* in both a linked list and a hashmap. The hashmap is used to quickly retrieve the values of a json key. The linked
|
|
|
|
|
* list is used to preserve the ordering of keys as they are encountered which is not guaranteed when only using a
|
|
|
|
|
* hashmap.
|
|
|
|
|
*/
|
|
|
|
|
GSList *same_key_nodes_list = NULL;
|
|
|
|
|
GHashTable *lookup_by_json_key = g_hash_table_new(g_str_hash, g_str_equal);
|
|
|
|
|
proto_node *current_child = node->first_child;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* For each child of the node get the key and get the list of values already associated with that key from the
|
|
|
|
|
* hashmap. If no list exist yet for that key create a new one and add it to both the linked list and hashmap. If a
|
|
|
|
|
* list already exists add the node to that list.
|
|
|
|
|
*/
|
|
|
|
|
while (current_child != NULL) {
|
|
|
|
|
char *json_key = (char *) proto_node_to_json_key(current_child);
|
|
|
|
|
GSList *json_key_nodes = (GSList *) g_hash_table_lookup(lookup_by_json_key, json_key);
|
|
|
|
|
|
|
|
|
|
if (json_key_nodes == NULL) {
|
|
|
|
|
json_key_nodes = g_slist_append(json_key_nodes, current_child);
|
|
|
|
|
// Prepending in single linked list is O(1), appending is O(n). Better to prepend here and reverse at the
|
|
|
|
|
// end than potentially looping to the end of the linked list for each child.
|
|
|
|
|
same_key_nodes_list = g_slist_prepend(same_key_nodes_list, json_key_nodes);
|
|
|
|
|
g_hash_table_insert(lookup_by_json_key, json_key, json_key_nodes);
|
|
|
|
|
} else {
|
|
|
|
|
// Store and insert value again to circumvent unused_variable warning.
|
|
|
|
|
// Append in this case since most value lists will only have a single value.
|
|
|
|
|
json_key_nodes = g_slist_append(json_key_nodes, current_child);
|
|
|
|
|
g_hash_table_insert(lookup_by_json_key, json_key, json_key_nodes);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
current_child = current_child->next;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Hash table is not needed anymore since the linked list with the correct ordering is returned.
|
|
|
|
|
g_hash_table_destroy(lookup_by_json_key);
|
|
|
|
|
|
|
|
|
|
return g_slist_reverse(same_key_nodes_list);
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-12 12:50:55 +00:00
|
|
|
/**
|
2023-02-14 01:55:36 +00:00
|
|
|
* Returns the json key of a node. Tries to use the node's abbreviated name.
|
|
|
|
|
* If the abbreviated name is not available the representation is used instead.
|
|
|
|
|
*
|
|
|
|
|
* XXX: The representation can have spaces or differ depending on the content,
|
|
|
|
|
* which makes it difficult to match text-only fields with a -j/-J filter in tshark.
|
|
|
|
|
* (Issue #17125).
|
2017-06-12 12:50:55 +00:00
|
|
|
*/
|
|
|
|
|
static const char *
|
|
|
|
|
proto_node_to_json_key(proto_node *node)
|
|
|
|
|
{
|
|
|
|
|
const char *json_key;
|
|
|
|
|
// Check if node has abbreviated name.
|
|
|
|
|
if (node->finfo->hfinfo->id != hf_text_only) {
|
|
|
|
|
json_key = node->finfo->hfinfo->abbrev;
|
|
|
|
|
} else if (node->finfo->rep != NULL) {
|
|
|
|
|
json_key = node->finfo->rep->representation;
|
|
|
|
|
} else {
|
|
|
|
|
json_key = "";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return json_key;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
static gboolean
|
2023-02-14 01:55:36 +00:00
|
|
|
ek_check_protocolfilter(wmem_map_t *protocolfilter, const char *str, pf_flags *filter_flags)
|
2017-09-03 05:33:12 +00:00
|
|
|
{
|
|
|
|
|
gchar *str_escaped = NULL;
|
2019-05-07 08:59:16 +00:00
|
|
|
gboolean check;
|
2017-09-03 05:33:12 +00:00
|
|
|
int i;
|
|
|
|
|
|
2023-02-14 01:55:36 +00:00
|
|
|
if (check_protocolfilter(protocolfilter, str, filter_flags))
|
2019-05-07 08:59:16 +00:00
|
|
|
return TRUE;
|
|
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
/* to to thread the '.' and '_' equally. The '.' is replace by print_escaped_ek for '_' */
|
|
|
|
|
if (str != NULL && strlen(str) > 0) {
|
|
|
|
|
str_escaped = g_strdup(str);
|
|
|
|
|
|
|
|
|
|
i = 0;
|
|
|
|
|
while (str_escaped[i] != '\0') {
|
|
|
|
|
if (str_escaped[i] == '.') {
|
|
|
|
|
str_escaped[i] = '_';
|
|
|
|
|
}
|
|
|
|
|
i++;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-02-14 01:55:36 +00:00
|
|
|
check = check_protocolfilter(protocolfilter, str_escaped, filter_flags);
|
2019-05-07 08:59:16 +00:00
|
|
|
g_free(str_escaped);
|
|
|
|
|
return check;
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Finds a node's descendants to be printed as EK/JSON attributes.
|
|
|
|
|
*/
|
2016-06-13 13:47:44 +00:00
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
write_ek_summary(column_info *cinfo, write_json_data* pdata)
|
2017-07-19 14:24:47 +00:00
|
|
|
{
|
|
|
|
|
gint i;
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < cinfo->num_cols; i++) {
|
2018-12-10 12:44:03 +00:00
|
|
|
if (!get_column_visible(i))
|
|
|
|
|
continue;
|
|
|
|
|
json_dumper_set_member_name(pdata->dumper, g_ascii_strdown(cinfo->columns[i].col_title, -1));
|
2022-07-09 16:34:15 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, get_column_text(cinfo, i));
|
2017-07-19 14:24:47 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Write out a tree's data, and any child nodes, as JSON for EK */
|
|
|
|
|
static void
|
2022-11-06 21:05:19 +00:00
|
|
|
ek_fill_attr(proto_node *node, GHashTable *attr_table, write_json_data *pdata)
|
2016-06-13 13:47:44 +00:00
|
|
|
{
|
2017-09-03 05:33:12 +00:00
|
|
|
field_info *fi = NULL;
|
|
|
|
|
GSList *attr_instances = NULL;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
proto_node *current_node = node->first_child;
|
|
|
|
|
while (current_node != NULL) {
|
|
|
|
|
fi = PNODE_FINFO(current_node);
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
/* dissection with an invisible proto tree? */
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fi);
|
2017-09-03 05:33:12 +00:00
|
|
|
|
2022-11-06 21:05:19 +00:00
|
|
|
attr_instances = (GSList *) g_hash_table_lookup(attr_table, fi->hfinfo->abbrev);
|
|
|
|
|
attr_instances = g_slist_append(attr_instances, current_node);
|
2017-09-03 05:33:12 +00:00
|
|
|
// Update instance list for this attr in hash table
|
2022-11-06 21:05:19 +00:00
|
|
|
g_hash_table_insert(attr_table, g_strdup(fi->hfinfo->abbrev), attr_instances);
|
2017-09-03 05:33:12 +00:00
|
|
|
|
|
|
|
|
/* Field, recurse through children*/
|
|
|
|
|
if (fi->hfinfo->type != FT_PROTOCOL && current_node->first_child != NULL) {
|
|
|
|
|
if (pdata->filter != NULL) {
|
2023-02-14 01:55:36 +00:00
|
|
|
pf_flags filter_flags = PF_NONE;
|
|
|
|
|
if (ek_check_protocolfilter(pdata->filter, fi->hfinfo->abbrev, &filter_flags)) {
|
|
|
|
|
wmem_map_t *_filter = NULL;
|
2017-09-03 05:33:12 +00:00
|
|
|
/* Remove protocol filter for children, if children should be included */
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2017-09-03 05:33:12 +00:00
|
|
|
_filter = pdata->filter;
|
|
|
|
|
pdata->filter = NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2022-11-06 21:05:19 +00:00
|
|
|
ek_fill_attr(current_node, attr_table, pdata);
|
2017-09-03 05:33:12 +00:00
|
|
|
|
|
|
|
|
/* Put protocol filter back */
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2017-09-03 05:33:12 +00:00
|
|
|
pdata->filter = _filter;
|
|
|
|
|
}
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-09-03 05:33:12 +00:00
|
|
|
// Don't traverse children if filtered out
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2022-11-06 21:05:19 +00:00
|
|
|
ek_fill_attr(current_node, attr_table, pdata);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-09-03 05:33:12 +00:00
|
|
|
// Will descend into object at another point
|
|
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
current_node = current_node->next;
|
|
|
|
|
}
|
|
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
ek_write_name(proto_node *pnode, gchar* suffix, write_json_data* pdata)
|
2017-09-03 05:33:12 +00:00
|
|
|
{
|
2019-05-07 07:42:38 +00:00
|
|
|
field_info *fi = PNODE_FINFO(pnode);
|
2018-12-10 12:44:03 +00:00
|
|
|
gchar *str;
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2019-05-07 07:42:38 +00:00
|
|
|
if (fi->hfinfo->parent != -1) {
|
|
|
|
|
header_field_info* parent = proto_registrar_get_nth(fi->hfinfo->parent);
|
2021-12-16 18:06:18 +00:00
|
|
|
str = ws_strdup_printf("%s_%s%s", parent->abbrev, fi->hfinfo->abbrev, suffix ? suffix : "");
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(pdata->dumper, str);
|
|
|
|
|
} else {
|
2021-12-16 18:06:18 +00:00
|
|
|
str = ws_strdup_printf("%s%s", fi->hfinfo->abbrev, suffix ? suffix : "");
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(pdata->dumper, str);
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
2018-12-10 12:44:03 +00:00
|
|
|
g_free(str);
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
static void
|
|
|
|
|
ek_write_hex(field_info *fi, write_json_data *pdata)
|
|
|
|
|
{
|
2019-11-07 13:49:34 +00:00
|
|
|
if (fi->hfinfo->bitmask != 0) {
|
2021-11-11 00:54:00 +00:00
|
|
|
switch (fvalue_type_ftenum(&fi->value)) {
|
2017-09-03 05:33:12 +00:00
|
|
|
case FT_INT8:
|
|
|
|
|
case FT_INT16:
|
|
|
|
|
case FT_INT24:
|
|
|
|
|
case FT_INT32:
|
2019-11-07 13:49:34 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%X\"", (guint) fvalue_get_sinteger(&fi->value));
|
2017-09-03 05:33:12 +00:00
|
|
|
break;
|
print.c: Print FT_CHAR fields as FT_UINT8
This fixes the following asserts
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e11f90 "/home/vasko/sources/wireshark/epan/print.c", line=598, func=0x7ffff4e12e20 <__func__.18585> "proto_tree_write_node_pdml",
message=0x555555aaab70 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e11f90 "/home/vasko/sources/wireshark/epan/print.c", line=983,
func=0x7ffff4e12e40 <__func__.18697> "write_json_proto_node_hex_dump", message=0x555555aac9d0 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#4 0x00007ffff39a8f87 in write_json_proto_node_hex_dump (node=0x7fffdc86e550, data=0x7fffffffce60) at /home/vasko/sources/wireshark/epan/print.c:983
#2 0x00007ffff0d270f3 in g_assertion_message (domain=0x0, file=0x7ffff4e12010 "/home/vasko/sources/wireshark/epan/print.c", line=1299,
func=0x7ffff4e12ef0 <__func__.18804> "ek_write_hex", message=0x555555aac290 "code should not be reached") at gtestutils.c:2532
#3 0x00007ffff0d8015e in g_assertion_message_expr () at gtestutils.c:2555
#4 0x00007ffff39a9a32 in ek_write_hex (fi=0x7fffdc86e4e0, pdata=0x7fffffffce90) at /home/vasko/sources/wireshark/epan/print.c:1299
Change-Id: I48a7e87863fb6708cd668582a240e5ba71d1b5a0
Reviewed-on: https://code.wireshark.org/review/28891
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Tested-by: Petri Dish Buildbot
Reviewed-by: Anders Broman <a.broman58@gmail.com>
2018-07-31 17:11:24 +00:00
|
|
|
case FT_CHAR:
|
2017-09-03 05:33:12 +00:00
|
|
|
case FT_UINT8:
|
|
|
|
|
case FT_UINT16:
|
|
|
|
|
case FT_UINT24:
|
|
|
|
|
case FT_UINT32:
|
2019-11-07 13:49:34 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%X\"", fvalue_get_uinteger(&fi->value));
|
2017-09-03 05:33:12 +00:00
|
|
|
break;
|
|
|
|
|
case FT_INT40:
|
|
|
|
|
case FT_INT48:
|
|
|
|
|
case FT_INT56:
|
|
|
|
|
case FT_INT64:
|
2021-12-16 18:06:18 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%" PRIX64 "\"", fvalue_get_sinteger64(&fi->value));
|
2017-09-03 05:33:12 +00:00
|
|
|
break;
|
|
|
|
|
case FT_UINT40:
|
|
|
|
|
case FT_UINT48:
|
|
|
|
|
case FT_UINT56:
|
|
|
|
|
case FT_UINT64:
|
|
|
|
|
case FT_BOOLEAN:
|
2021-12-16 18:06:18 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%" PRIX64 "\"", fvalue_get_uinteger64(&fi->value));
|
2017-09-03 05:33:12 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert_not_reached();
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-09-03 05:33:12 +00:00
|
|
|
json_write_field_hex_value(pdata, fi);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
2018-12-10 12:44:03 +00:00
|
|
|
ek_write_field_value(field_info *fi, write_json_data* pdata)
|
2017-09-03 05:33:12 +00:00
|
|
|
{
|
|
|
|
|
gchar label_str[ITEM_LABEL_LENGTH];
|
|
|
|
|
char *dfilter_string;
|
2019-08-01 21:17:57 +00:00
|
|
|
const nstime_t *t;
|
2021-01-28 06:15:31 +00:00
|
|
|
struct tm *tm;
|
|
|
|
|
#ifndef _WIN32
|
2019-08-01 21:17:57 +00:00
|
|
|
struct tm tm_time;
|
2021-01-28 06:15:31 +00:00
|
|
|
#endif
|
2019-08-01 21:17:57 +00:00
|
|
|
char time_string[sizeof("YYYY-MM-DDTHH:MM:SS")];
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
/* Text label */
|
|
|
|
|
if (fi->hfinfo->id == hf_text_only && fi->rep) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, fi->rep->representation);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2016-06-13 13:47:44 +00:00
|
|
|
/* show, value, and unmaskedvalue attributes */
|
2019-03-22 21:56:48 +00:00
|
|
|
switch(fi->hfinfo->type) {
|
|
|
|
|
case FT_PROTOCOL:
|
2017-09-03 05:33:12 +00:00
|
|
|
if (fi->rep) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, fi->rep->representation);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2017-09-03 05:33:12 +00:00
|
|
|
else {
|
|
|
|
|
proto_item_fill_label(fi, label_str);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, label_str);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
2019-03-22 21:56:48 +00:00
|
|
|
break;
|
|
|
|
|
case FT_NONE:
|
|
|
|
|
json_dumper_value_string(pdata->dumper, NULL);
|
|
|
|
|
break;
|
2019-05-18 22:30:11 +00:00
|
|
|
case FT_BOOLEAN:
|
|
|
|
|
if (fi->value.value.uinteger64)
|
|
|
|
|
json_dumper_value_anyf(pdata->dumper, "true");
|
|
|
|
|
else
|
|
|
|
|
json_dumper_value_anyf(pdata->dumper, "false");
|
|
|
|
|
break;
|
2019-08-01 21:17:57 +00:00
|
|
|
case FT_ABSOLUTE_TIME:
|
2022-06-18 23:31:30 +00:00
|
|
|
t = fvalue_get_time(&fi->value);
|
2019-08-01 21:17:57 +00:00
|
|
|
#ifdef _WIN32
|
2021-01-28 06:15:31 +00:00
|
|
|
/*
|
|
|
|
|
* Do not use gmtime_s(), as it will call and
|
|
|
|
|
* exception handler if the time we're providing
|
|
|
|
|
* is < 0, and that will, by default, exit.
|
|
|
|
|
* ("Programmers not bothering to check return
|
|
|
|
|
* values? Try new Microsoft Visual Studio,
|
|
|
|
|
* with Parameter Validation(R)! Kill insufficiently
|
|
|
|
|
* careful programs - *and* the processes running them -
|
|
|
|
|
* fast!")
|
|
|
|
|
*
|
|
|
|
|
* We just want to report this as an unrepresentable
|
|
|
|
|
* time. It fills in a per-thread structure, which
|
|
|
|
|
* is sufficiently thread-safe for our purposes.
|
|
|
|
|
*/
|
|
|
|
|
tm = gmtime(&t->secs);
|
2019-08-01 21:17:57 +00:00
|
|
|
#else
|
2021-01-28 06:15:31 +00:00
|
|
|
/*
|
|
|
|
|
* Use gmtime_r(), because the Single UNIX Specification
|
|
|
|
|
* does *not* guarantee that gmtime() is thread-safe.
|
|
|
|
|
* Perhaps it is on all platforms on which we run, but
|
|
|
|
|
* this way we don't have to check.
|
|
|
|
|
*/
|
|
|
|
|
tm = gmtime_r(&t->secs, &tm_time);
|
2019-08-01 21:17:57 +00:00
|
|
|
#endif
|
2021-01-28 06:15:31 +00:00
|
|
|
if (tm != NULL) {
|
2021-07-17 13:48:03 +00:00
|
|
|
/* Some platforms (MinGW-w64) do not support %F or %T. */
|
|
|
|
|
strftime(time_string, sizeof(time_string), "%Y-%m-%dT%H:%M:%S", tm);
|
2021-04-09 13:49:27 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"%s.%09uZ\"", time_string, t->nsecs);
|
2021-01-28 05:46:11 +00:00
|
|
|
} else {
|
2021-01-28 07:56:22 +00:00
|
|
|
json_dumper_value_anyf(pdata->dumper, "\"Not representable\"");
|
2021-01-28 05:46:11 +00:00
|
|
|
}
|
2019-08-01 21:17:57 +00:00
|
|
|
break;
|
2019-03-22 21:56:48 +00:00
|
|
|
default:
|
2016-06-13 13:47:44 +00:00
|
|
|
dfilter_string = fvalue_to_string_repr(NULL, &fi->value, FTREPR_DISPLAY, fi->hfinfo->display);
|
|
|
|
|
if (dfilter_string != NULL) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, dfilter_string);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
wmem_free(NULL, dfilter_string);
|
2019-03-22 21:56:48 +00:00
|
|
|
break;
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
static void
|
2017-10-29 17:51:42 +00:00
|
|
|
ek_write_attr_hex(GSList *attr_instances, write_json_data *pdata)
|
2017-09-03 05:33:12 +00:00
|
|
|
{
|
|
|
|
|
GSList *current_node = attr_instances;
|
2017-10-29 17:51:42 +00:00
|
|
|
proto_node *pnode = (proto_node *) current_node->data;
|
|
|
|
|
field_info *fi = NULL;
|
|
|
|
|
|
|
|
|
|
// Raw name
|
2018-12-10 12:44:03 +00:00
|
|
|
ek_write_name(pnode, "_raw", pdata);
|
2017-10-29 17:51:42 +00:00
|
|
|
|
|
|
|
|
if (g_slist_length(attr_instances) > 1) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_array(pdata->dumper);
|
2017-10-29 17:51:42 +00:00
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-10-29 17:51:42 +00:00
|
|
|
// Raw value(s)
|
2017-09-03 05:33:12 +00:00
|
|
|
while (current_node != NULL) {
|
|
|
|
|
pnode = (proto_node *) current_node->data;
|
|
|
|
|
fi = PNODE_FINFO(pnode);
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-10-29 17:51:42 +00:00
|
|
|
ek_write_hex(fi, pdata);
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-10-29 17:51:42 +00:00
|
|
|
current_node = current_node->next;
|
|
|
|
|
}
|
2017-09-03 05:33:12 +00:00
|
|
|
|
2017-10-29 17:51:42 +00:00
|
|
|
if (g_slist_length(attr_instances) > 1) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(pdata->dumper);
|
2017-10-29 17:51:42 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
ek_write_attr(GSList *attr_instances, write_json_data *pdata)
|
|
|
|
|
{
|
2023-02-14 01:55:36 +00:00
|
|
|
GSList *current_node = attr_instances;
|
|
|
|
|
proto_node *pnode = (proto_node *) current_node->data;
|
|
|
|
|
field_info *fi = PNODE_FINFO(pnode);
|
|
|
|
|
pf_flags filter_flags = PF_NONE;
|
2017-10-29 17:51:42 +00:00
|
|
|
|
|
|
|
|
// Hex dump -x
|
2017-11-06 15:26:34 +00:00
|
|
|
if (pdata->print_hex && fi && fi->length > 0 && fi->hfinfo->id != hf_text_only) {
|
2017-10-29 17:51:42 +00:00
|
|
|
ek_write_attr_hex(attr_instances, pdata);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Print attr name
|
2018-12-10 12:44:03 +00:00
|
|
|
ek_write_name(pnode, NULL, pdata);
|
2017-10-29 17:51:42 +00:00
|
|
|
|
|
|
|
|
if (g_slist_length(attr_instances) > 1) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_array(pdata->dumper);
|
2017-10-29 17:51:42 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
while (current_node != NULL) {
|
|
|
|
|
pnode = (proto_node *) current_node->data;
|
|
|
|
|
fi = PNODE_FINFO(pnode);
|
2017-01-19 14:37:54 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
/* Field */
|
|
|
|
|
if (fi->hfinfo->type != FT_PROTOCOL) {
|
|
|
|
|
if (pdata->filter != NULL
|
2023-02-14 01:55:36 +00:00
|
|
|
&& !ek_check_protocolfilter(pdata->filter, fi->hfinfo->abbrev, &filter_flags)) {
|
2017-01-19 14:37:54 +00:00
|
|
|
|
2016-06-24 12:13:06 +00:00
|
|
|
/* print dummy field */
|
2019-11-17 21:55:05 +00:00
|
|
|
json_dumper_begin_object(pdata->dumper);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(pdata->dumper, "filtered");
|
|
|
|
|
json_dumper_value_string(pdata->dumper, fi->hfinfo->abbrev);
|
2019-11-17 21:55:05 +00:00
|
|
|
json_dumper_end_object(pdata->dumper);
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-09-03 05:33:12 +00:00
|
|
|
ek_write_field_value(fi, pdata);
|
2016-06-24 12:13:06 +00:00
|
|
|
}
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
|
|
|
|
/* Object */
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_object(pdata->dumper);
|
2017-09-03 05:33:12 +00:00
|
|
|
|
|
|
|
|
if (pdata->filter != NULL) {
|
2023-02-14 01:55:36 +00:00
|
|
|
if (ek_check_protocolfilter(pdata->filter, fi->hfinfo->abbrev, &filter_flags)) {
|
|
|
|
|
wmem_map_t *_filter = NULL;
|
2017-09-03 05:33:12 +00:00
|
|
|
/* Remove protocol filter for children, if children should be included */
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2017-09-03 05:33:12 +00:00
|
|
|
_filter = pdata->filter;
|
|
|
|
|
pdata->filter = NULL;
|
|
|
|
|
}
|
2016-06-13 13:47:44 +00:00
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
proto_tree_write_node_ek(pnode, pdata);
|
|
|
|
|
|
|
|
|
|
/* Put protocol filter back */
|
2023-02-14 01:55:36 +00:00
|
|
|
if ((filter_flags&PF_INCLUDE_CHILDREN) == PF_INCLUDE_CHILDREN) {
|
2017-09-03 05:33:12 +00:00
|
|
|
pdata->filter = _filter;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
/* print dummy field */
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(pdata->dumper, "filtered");
|
|
|
|
|
json_dumper_value_string(pdata->dumper, fi->hfinfo->abbrev);
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-09-03 05:33:12 +00:00
|
|
|
proto_tree_write_node_ek(pnode, pdata);
|
2016-06-24 12:13:06 +00:00
|
|
|
}
|
2017-09-03 05:33:12 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(pdata->dumper);
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
current_node = current_node->next;
|
|
|
|
|
}
|
2017-10-29 17:51:42 +00:00
|
|
|
|
|
|
|
|
if (g_slist_length(attr_instances) > 1) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(pdata->dumper);
|
2017-10-29 17:51:42 +00:00
|
|
|
}
|
2017-09-03 05:33:12 +00:00
|
|
|
}
|
|
|
|
|
|
2022-11-06 21:05:19 +00:00
|
|
|
void process_ek_attrs(gpointer key _U_, gpointer value, gpointer pdata)
|
|
|
|
|
{
|
|
|
|
|
GSList *attr_instances = (GSList *) value;
|
|
|
|
|
ek_write_attr(attr_instances, pdata);
|
|
|
|
|
}
|
|
|
|
|
|
2017-09-03 05:33:12 +00:00
|
|
|
/* Write out a tree's data, and any child nodes, as JSON for EK */
|
|
|
|
|
static void
|
|
|
|
|
proto_tree_write_node_ek(proto_node *node, write_json_data *pdata)
|
|
|
|
|
{
|
|
|
|
|
GHashTable *attr_table = g_hash_table_new_full(g_str_hash, g_str_equal, g_free, NULL);
|
2022-11-06 21:05:19 +00:00
|
|
|
ek_fill_attr(node, attr_table, pdata);
|
2017-09-03 05:33:12 +00:00
|
|
|
|
|
|
|
|
// Print attributes
|
2022-11-06 21:05:19 +00:00
|
|
|
g_hash_table_foreach(attr_table, process_ek_attrs, pdata);
|
|
|
|
|
g_hash_table_destroy(attr_table);
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
|
2003-12-06 06:09:13 +00:00
|
|
|
/* Print info for a 'geninfo' pseudo-protocol. This is required by
|
2006-05-22 08:14:01 +00:00
|
|
|
* the PDML spec. The information is contained in Wireshark's 'frame' protocol,
|
2003-12-06 06:09:13 +00:00
|
|
|
* but we produce a 'geninfo' protocol in the PDML to conform to spec.
|
|
|
|
|
* The 'frame' protocol follows the 'geninfo' protocol in the PDML. */
|
|
|
|
|
static void
|
2016-09-21 16:26:16 +00:00
|
|
|
print_pdml_geninfo(epan_dissect_t *edt, FILE *fh)
|
2003-12-06 06:09:13 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
guint32 num, len, caplen;
|
|
|
|
|
GPtrArray *finfo_array;
|
|
|
|
|
field_info *frame_finfo;
|
2014-06-16 06:42:14 +00:00
|
|
|
gchar *tmp;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
/* Get frame protocol's finfo. */
|
2016-09-26 13:04:34 +00:00
|
|
|
finfo_array = proto_find_first_finfo(edt->tree, proto_frame);
|
2013-02-23 22:37:52 +00:00
|
|
|
if (g_ptr_array_len(finfo_array) < 1) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
frame_finfo = (field_info *)finfo_array->pdata[0];
|
|
|
|
|
g_ptr_array_free(finfo_array, TRUE);
|
|
|
|
|
|
2016-09-21 16:26:16 +00:00
|
|
|
/* frame.number, packet_info.num */
|
|
|
|
|
num = edt->pi.num;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2016-09-21 16:26:16 +00:00
|
|
|
/* frame.frame_len, packet_info.frame_data->pkt_len */
|
|
|
|
|
len = edt->pi.fd->pkt_len;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2016-09-21 16:26:16 +00:00
|
|
|
/* frame.cap_len --> packet_info.frame_data->cap_len */
|
|
|
|
|
caplen = edt->pi.fd->cap_len;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
/* Print geninfo start */
|
|
|
|
|
fprintf(fh,
|
2015-02-09 18:42:51 +00:00
|
|
|
" <proto name=\"geninfo\" pos=\"0\" showname=\"General information\" size=\"%d\">\n",
|
2013-02-23 22:37:52 +00:00
|
|
|
frame_finfo->length);
|
|
|
|
|
|
|
|
|
|
/* Print geninfo.num */
|
|
|
|
|
fprintf(fh,
|
2015-02-09 18:42:51 +00:00
|
|
|
" <field name=\"num\" pos=\"0\" show=\"%u\" showname=\"Number\" value=\"%x\" size=\"%d\"/>\n",
|
2013-02-23 22:37:52 +00:00
|
|
|
num, num, frame_finfo->length);
|
|
|
|
|
|
|
|
|
|
/* Print geninfo.len */
|
|
|
|
|
fprintf(fh,
|
2015-02-09 18:42:51 +00:00
|
|
|
" <field name=\"len\" pos=\"0\" show=\"%u\" showname=\"Frame Length\" value=\"%x\" size=\"%d\"/>\n",
|
2013-02-23 22:37:52 +00:00
|
|
|
len, len, frame_finfo->length);
|
|
|
|
|
|
|
|
|
|
/* Print geninfo.caplen */
|
|
|
|
|
fprintf(fh,
|
2015-02-09 18:42:51 +00:00
|
|
|
" <field name=\"caplen\" pos=\"0\" show=\"%u\" showname=\"Captured Length\" value=\"%x\" size=\"%d\"/>\n",
|
2013-02-23 22:37:52 +00:00
|
|
|
caplen, caplen, frame_finfo->length);
|
|
|
|
|
|
2016-09-21 16:26:16 +00:00
|
|
|
tmp = abs_time_to_str(NULL, &edt->pi.abs_ts, ABSOLUTE_TIME_LOCAL, TRUE);
|
2014-06-16 06:42:14 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
/* Print geninfo.timestamp */
|
|
|
|
|
fprintf(fh,
|
2015-02-09 18:42:51 +00:00
|
|
|
" <field name=\"timestamp\" pos=\"0\" show=\"%s\" showname=\"Captured Time\" value=\"%d.%09d\" size=\"%d\"/>\n",
|
2016-09-21 16:26:16 +00:00
|
|
|
tmp, (int)edt->pi.abs_ts.secs, edt->pi.abs_ts.nsecs, frame_finfo->length);
|
2014-06-16 06:42:14 +00:00
|
|
|
|
|
|
|
|
wmem_free(NULL, tmp);
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
/* Print geninfo end */
|
|
|
|
|
fprintf(fh,
|
|
|
|
|
" </proto>\n");
|
2003-12-06 06:09:13 +00:00
|
|
|
}
|
|
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
void
|
|
|
|
|
write_pdml_finale(FILE *fh)
|
|
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("</pdml>\n", fh);
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
2014-11-29 22:43:22 +00:00
|
|
|
write_psml_preamble(column_info *cinfo, FILE *fh)
|
2004-07-08 10:36:29 +00:00
|
|
|
{
|
2014-11-22 08:06:54 +00:00
|
|
|
gint i;
|
|
|
|
|
|
2016-09-23 08:46:16 +00:00
|
|
|
fprintf(fh, "<?xml version=\"1.0\" encoding=\"utf-8\"?>\n");
|
|
|
|
|
fprintf(fh, "<psml version=\"" PSML_VERSION "\" creator=\"%s/%s\">\n", PACKAGE, VERSION);
|
2014-11-22 08:06:54 +00:00
|
|
|
fprintf(fh, "<structure>\n");
|
|
|
|
|
|
2014-11-29 22:43:22 +00:00
|
|
|
for (i = 0; i < cinfo->num_cols; i++) {
|
2019-11-05 09:52:43 +00:00
|
|
|
if (!get_column_visible(i))
|
|
|
|
|
continue;
|
2014-11-22 08:06:54 +00:00
|
|
|
fprintf(fh, "<section>");
|
2015-06-27 03:00:33 +00:00
|
|
|
print_escaped_xml(fh, cinfo->columns[i].col_title);
|
2014-11-22 08:06:54 +00:00
|
|
|
fprintf(fh, "</section>\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fprintf(fh, "</structure>\n\n");
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
2017-06-11 16:03:13 +00:00
|
|
|
write_psml_columns(epan_dissect_t *edt, FILE *fh, gboolean use_color)
|
2004-07-08 10:36:29 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
gint i;
|
2017-06-11 16:03:13 +00:00
|
|
|
const color_filter_t *cfp = edt->pi.fd->color_filter;
|
2004-07-08 10:36:29 +00:00
|
|
|
|
2017-06-11 16:03:13 +00:00
|
|
|
if (use_color && (cfp != NULL)) {
|
2017-08-18 08:51:14 +00:00
|
|
|
fprintf(fh, "<packet foreground='#%06x' background='#%06x'>\n",
|
|
|
|
|
color_t_to_rgb(&cfp->fg_color),
|
|
|
|
|
color_t_to_rgb(&cfp->bg_color));
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2017-06-11 16:03:13 +00:00
|
|
|
fprintf(fh, "<packet>\n");
|
|
|
|
|
}
|
2004-07-08 10:36:29 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
for (i = 0; i < edt->pi.cinfo->num_cols; i++) {
|
2019-11-05 09:52:43 +00:00
|
|
|
if (!get_column_visible(i))
|
|
|
|
|
continue;
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(fh, "<section>");
|
2022-07-09 16:34:15 +00:00
|
|
|
print_escaped_xml(fh, get_column_text(edt->pi.cinfo, i));
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(fh, "</section>\n");
|
|
|
|
|
}
|
2004-07-08 10:36:29 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(fh, "</packet>\n\n");
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
|
|
|
|
write_psml_finale(FILE *fh)
|
|
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs("</psml>\n", fh);
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
2010-11-08 17:05:30 +00:00
|
|
|
static gchar *csv_massage_str(const gchar *source, const gchar *exceptions)
|
2005-03-11 20:56:31 +00:00
|
|
|
{
|
2010-11-08 17:05:30 +00:00
|
|
|
gchar *csv_str;
|
|
|
|
|
gchar *tmp_str;
|
|
|
|
|
|
2014-02-25 09:07:19 +00:00
|
|
|
/* In general, our output for any field can contain Unicode characters,
|
2014-01-22 13:49:38 +00:00
|
|
|
so g_strescape (which escapes any non-ASCII) is the wrong thing to do.
|
|
|
|
|
Unfortunately glib doesn't appear to provide g_unicode_strescape()... */
|
2010-11-08 17:05:30 +00:00
|
|
|
csv_str = g_strescape(source, exceptions);
|
|
|
|
|
tmp_str = csv_str;
|
2014-02-25 09:07:19 +00:00
|
|
|
/* Locate the UTF-8 right arrow character and replace it by an ASCII equivalent */
|
2015-10-16 09:03:08 +00:00
|
|
|
while ( (tmp_str = strstr(tmp_str, UTF8_RIGHTWARDS_ARROW)) != NULL ) {
|
2014-01-22 13:49:38 +00:00
|
|
|
tmp_str[0] = ' ';
|
|
|
|
|
tmp_str[1] = '>';
|
|
|
|
|
tmp_str[2] = ' ';
|
|
|
|
|
}
|
2014-02-25 09:07:19 +00:00
|
|
|
tmp_str = csv_str;
|
2010-11-08 17:54:32 +00:00
|
|
|
while ( (tmp_str = strstr(tmp_str, "\\\"")) != NULL )
|
2010-11-08 17:05:30 +00:00
|
|
|
*tmp_str = '\"';
|
|
|
|
|
return csv_str;
|
|
|
|
|
}
|
2005-03-11 20:56:31 +00:00
|
|
|
|
2010-11-08 17:05:30 +00:00
|
|
|
static void csv_write_str(const char *str, char sep, FILE *fh)
|
|
|
|
|
{
|
|
|
|
|
gchar *csv_str;
|
2005-03-11 20:56:31 +00:00
|
|
|
|
2015-10-16 09:03:08 +00:00
|
|
|
/* Do not escape the UTF-8 right arrow character */
|
|
|
|
|
csv_str = csv_massage_str(str, UTF8_RIGHTWARDS_ARROW);
|
2010-11-08 17:05:30 +00:00
|
|
|
fprintf(fh, "\"%s\"%c", csv_str, sep);
|
|
|
|
|
g_free(csv_str);
|
2011-05-04 15:24:14 +00:00
|
|
|
}
|
2010-09-01 20:54:41 +00:00
|
|
|
|
2010-11-08 17:05:30 +00:00
|
|
|
void
|
2014-11-29 22:43:22 +00:00
|
|
|
write_csv_column_titles(column_info *cinfo, FILE *fh)
|
2010-11-08 17:05:30 +00:00
|
|
|
{
|
|
|
|
|
gint i;
|
2005-03-11 20:56:31 +00:00
|
|
|
|
2018-03-21 18:43:54 +00:00
|
|
|
for (i = 0; i < cinfo->num_cols - 1; i++) {
|
2019-11-05 09:52:43 +00:00
|
|
|
if (!get_column_visible(i))
|
|
|
|
|
continue;
|
2015-06-27 03:00:33 +00:00
|
|
|
csv_write_str(cinfo->columns[i].col_title, ',', fh);
|
2018-03-21 18:43:54 +00:00
|
|
|
}
|
2015-06-27 03:00:33 +00:00
|
|
|
csv_write_str(cinfo->columns[i].col_title, '\n', fh);
|
2014-11-22 08:06:54 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
2014-11-29 22:43:22 +00:00
|
|
|
write_csv_columns(epan_dissect_t *edt, FILE *fh)
|
2014-11-22 08:06:54 +00:00
|
|
|
{
|
|
|
|
|
gint i;
|
2010-11-08 17:05:30 +00:00
|
|
|
|
2018-03-21 18:43:54 +00:00
|
|
|
for (i = 0; i < edt->pi.cinfo->num_cols - 1; i++) {
|
2019-11-05 09:52:43 +00:00
|
|
|
if (!get_column_visible(i))
|
|
|
|
|
continue;
|
2022-07-09 16:34:15 +00:00
|
|
|
csv_write_str(get_column_text(edt->pi.cinfo, i), ',', fh);
|
2018-03-21 18:43:54 +00:00
|
|
|
}
|
2022-07-09 16:34:15 +00:00
|
|
|
csv_write_str(get_column_text(edt->pi.cinfo,i), '\n', fh);
|
2005-03-11 20:56:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void
|
2014-11-29 22:43:22 +00:00
|
|
|
write_carrays_hex_data(guint32 num, FILE *fh, epan_dissect_t *edt)
|
2008-03-11 18:23:16 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
guint32 i = 0, src_num = 0;
|
|
|
|
|
GSList *src_le;
|
|
|
|
|
tvbuff_t *tvb;
|
2015-01-18 02:17:24 +00:00
|
|
|
char *name;
|
2013-02-23 22:37:52 +00:00
|
|
|
const guchar *cp;
|
|
|
|
|
guint length;
|
|
|
|
|
char ascii[9];
|
|
|
|
|
struct data_source *src;
|
|
|
|
|
|
|
|
|
|
for (src_le = edt->pi.data_src; src_le != NULL; src_le = src_le->next) {
|
|
|
|
|
memset(ascii, 0, sizeof(ascii));
|
|
|
|
|
src = (struct data_source *)src_le->data;
|
|
|
|
|
tvb = get_data_source_tvb(src);
|
2015-06-24 00:30:22 +00:00
|
|
|
length = tvb_captured_length(tvb);
|
2013-02-23 22:37:52 +00:00
|
|
|
if (length == 0)
|
|
|
|
|
continue;
|
|
|
|
|
|
|
|
|
|
cp = tvb_get_ptr(tvb, 0, length);
|
|
|
|
|
|
|
|
|
|
name = get_data_source_name(src);
|
2015-01-18 02:17:24 +00:00
|
|
|
if (name) {
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(fh, "/* %s */\n", name);
|
2015-01-18 02:17:24 +00:00
|
|
|
wmem_free(NULL, name);
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
if (src_num) {
|
|
|
|
|
fprintf(fh, "static const unsigned char pkt%u_%u[%u] = {\n",
|
|
|
|
|
num, src_num, length);
|
|
|
|
|
} else {
|
|
|
|
|
fprintf(fh, "static const unsigned char pkt%u[%u] = {\n",
|
|
|
|
|
num, length);
|
|
|
|
|
}
|
|
|
|
|
src_num++;
|
|
|
|
|
|
|
|
|
|
for (i = 0; i < length; i++) {
|
|
|
|
|
fprintf(fh, "0x%02x", *(cp + i));
|
2013-12-21 15:01:45 +00:00
|
|
|
ascii[i % 8] = g_ascii_isprint(*(cp + i)) ? *(cp + i) : '.';
|
2013-02-23 22:37:52 +00:00
|
|
|
|
|
|
|
|
if (i == (length - 1)) {
|
|
|
|
|
guint rem;
|
|
|
|
|
rem = length % 8;
|
|
|
|
|
if (rem) {
|
|
|
|
|
guint j;
|
|
|
|
|
for ( j = 0; j < 8 - rem; j++ )
|
|
|
|
|
fprintf(fh, " ");
|
|
|
|
|
}
|
|
|
|
|
fprintf(fh, " /* %s */\n};\n\n", ascii);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!((i + 1) % 8)) {
|
|
|
|
|
fprintf(fh, ", /* %s */\n", ascii);
|
|
|
|
|
memset(ascii, 0, sizeof(ascii));
|
2019-11-05 09:52:43 +00:00
|
|
|
} else {
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(fh, ", ");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2008-03-11 18:23:16 +00:00
|
|
|
}
|
|
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
/*
|
|
|
|
|
* Find the data source for a specified field, and return a pointer
|
|
|
|
|
* to the data in it. Returns NULL if the data is out of bounds.
|
|
|
|
|
*/
|
2013-02-23 22:04:12 +00:00
|
|
|
/* XXX: What am I missing ?
|
|
|
|
|
* Why bother searching for fi->ds_tvb for the matching tvb
|
|
|
|
|
* in the data_source list ?
|
|
|
|
|
* IOW: Why not just use fi->ds_tvb for the arg to tvb_get_ptr() ?
|
|
|
|
|
*/
|
|
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
static const guint8 *
|
|
|
|
|
get_field_data(GSList *src_list, field_info *fi)
|
|
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
GSList *src_le;
|
|
|
|
|
tvbuff_t *src_tvb;
|
|
|
|
|
gint length, tvbuff_length;
|
|
|
|
|
struct data_source *src;
|
|
|
|
|
|
|
|
|
|
for (src_le = src_list; src_le != NULL; src_le = src_le->next) {
|
|
|
|
|
src = (struct data_source *)src_le->data;
|
|
|
|
|
src_tvb = get_data_source_tvb(src);
|
|
|
|
|
if (fi->ds_tvb == src_tvb) {
|
|
|
|
|
/*
|
|
|
|
|
* Found it.
|
|
|
|
|
*
|
|
|
|
|
* XXX - a field can have a length that runs past
|
|
|
|
|
* the end of the tvbuff. Ideally, that should
|
|
|
|
|
* be fixed when adding an item to the protocol
|
|
|
|
|
* tree, but checking the length when doing
|
|
|
|
|
* that could be expensive. Until we fix that,
|
|
|
|
|
* we'll do the check here.
|
|
|
|
|
*/
|
2015-06-24 00:30:22 +00:00
|
|
|
tvbuff_length = tvb_captured_length_remaining(src_tvb,
|
2013-02-23 22:37:52 +00:00
|
|
|
fi->start);
|
|
|
|
|
if (tvbuff_length < 0) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
length = fi->length;
|
|
|
|
|
if (length > tvbuff_length)
|
|
|
|
|
length = tvbuff_length;
|
|
|
|
|
return tvb_get_ptr(src_tvb, fi->start, length);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return NULL; /* not found */
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Print a string, escaping out certain characters that need to
|
|
|
|
|
* escaped out for XML. */
|
|
|
|
|
static void
|
2004-12-30 23:42:02 +00:00
|
|
|
print_escaped_xml(FILE *fh, const char *unescaped_string)
|
2004-07-08 10:36:29 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
const char *p;
|
2020-10-17 14:49:37 +00:00
|
|
|
|
2022-09-28 22:11:28 +00:00
|
|
|
#define ESCAPED_BUFFER_SIZE 256
|
|
|
|
|
#define ESCAPED_BUFFER_LIMIT (ESCAPED_BUFFER_SIZE - (int)sizeof("""))
|
|
|
|
|
static char temp_buffer[ESCAPED_BUFFER_SIZE];
|
2020-10-17 14:49:37 +00:00
|
|
|
gint offset = 0;
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2016-06-28 08:43:12 +00:00
|
|
|
if (fh == NULL || unescaped_string == NULL) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2022-09-21 12:26:35 +00:00
|
|
|
/* XXX: Why not use xml_escape() from epan/strutil.h ? */
|
2022-09-28 22:11:28 +00:00
|
|
|
for (p = unescaped_string; *p != '\0' && (offset <= ESCAPED_BUFFER_LIMIT); p++) {
|
2013-02-23 22:37:52 +00:00
|
|
|
switch (*p) {
|
|
|
|
|
case '&':
|
2022-09-28 22:11:28 +00:00
|
|
|
(void) g_strlcpy(&temp_buffer[offset], "&", ESCAPED_BUFFER_SIZE-offset);
|
2020-10-17 14:49:37 +00:00
|
|
|
offset += 5;
|
2013-02-23 22:37:52 +00:00
|
|
|
break;
|
|
|
|
|
case '<':
|
2022-09-28 22:11:28 +00:00
|
|
|
(void) g_strlcpy(&temp_buffer[offset], "<", ESCAPED_BUFFER_SIZE-offset);
|
2020-10-17 14:49:37 +00:00
|
|
|
offset += 4;
|
2013-02-23 22:37:52 +00:00
|
|
|
break;
|
|
|
|
|
case '>':
|
2022-09-28 22:11:28 +00:00
|
|
|
(void) g_strlcpy(&temp_buffer[offset], ">", ESCAPED_BUFFER_SIZE-offset);
|
2020-10-17 14:49:37 +00:00
|
|
|
offset += 4;
|
2013-02-23 22:37:52 +00:00
|
|
|
break;
|
|
|
|
|
case '"':
|
2022-09-28 22:11:28 +00:00
|
|
|
(void) g_strlcpy(&temp_buffer[offset], """, ESCAPED_BUFFER_SIZE-offset);
|
2020-10-17 14:49:37 +00:00
|
|
|
offset += 6;
|
2013-02-23 22:37:52 +00:00
|
|
|
break;
|
|
|
|
|
case '\'':
|
2022-09-28 22:11:28 +00:00
|
|
|
(void) g_strlcpy(&temp_buffer[offset], "'", ESCAPED_BUFFER_SIZE-offset);
|
2020-10-17 14:49:37 +00:00
|
|
|
offset += 6;
|
2013-02-23 22:37:52 +00:00
|
|
|
break;
|
2022-09-21 12:26:35 +00:00
|
|
|
case '\t':
|
|
|
|
|
case '\n':
|
|
|
|
|
case '\r':
|
2020-10-19 21:26:18 +00:00
|
|
|
temp_buffer[offset++] = *p;
|
2022-09-21 12:26:35 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
/* XML 1.0 doesn't allow ASCII control characters, except
|
|
|
|
|
* for the three whitespace ones above (which do *not*
|
|
|
|
|
* include '\v' and '\f', so not the same group as isspace),
|
|
|
|
|
* even as character references.
|
|
|
|
|
* There's no official way to escape them, so we'll do this. */
|
|
|
|
|
if (g_ascii_iscntrl(*p)) {
|
2022-09-28 22:11:28 +00:00
|
|
|
offset += snprintf(&temp_buffer[offset], ESCAPED_BUFFER_SIZE-offset, "\\x%x", (guint8)*p);
|
2022-09-21 12:26:35 +00:00
|
|
|
} else {
|
|
|
|
|
temp_buffer[offset++] = *p;
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
2022-09-28 22:11:28 +00:00
|
|
|
if (offset > ESCAPED_BUFFER_LIMIT) {
|
2020-10-17 14:49:37 +00:00
|
|
|
/* Getting close to end of buffer so flush to fh */
|
|
|
|
|
temp_buffer[offset] = '\0';
|
|
|
|
|
fputs(temp_buffer, fh);
|
|
|
|
|
offset = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (offset) {
|
|
|
|
|
/* Flush any outstanding data */
|
|
|
|
|
temp_buffer[offset] = '\0';
|
|
|
|
|
fputs(temp_buffer, fh);
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
2018-06-25 23:54:25 +00:00
|
|
|
static void
|
|
|
|
|
print_escaped_csv(FILE *fh, const char *unescaped_string)
|
|
|
|
|
{
|
|
|
|
|
const char *p;
|
|
|
|
|
|
|
|
|
|
if (fh == NULL || unescaped_string == NULL) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (p = unescaped_string; *p != '\0'; p++) {
|
|
|
|
|
switch (*p) {
|
|
|
|
|
case '\b':
|
|
|
|
|
fputs("\\b", fh);
|
|
|
|
|
break;
|
|
|
|
|
case '\f':
|
|
|
|
|
fputs("\\f", fh);
|
|
|
|
|
break;
|
|
|
|
|
case '\n':
|
|
|
|
|
fputs("\\n", fh);
|
|
|
|
|
break;
|
|
|
|
|
case '\r':
|
|
|
|
|
fputs("\\r", fh);
|
|
|
|
|
break;
|
|
|
|
|
case '\t':
|
|
|
|
|
fputs("\\t", fh);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
fputc(*p, fh);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-07-08 10:36:29 +00:00
|
|
|
static void
|
2014-11-29 22:43:22 +00:00
|
|
|
pdml_write_field_hex_value(write_pdml_data *pdata, field_info *fi)
|
2004-07-08 10:36:29 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
int i;
|
|
|
|
|
const guint8 *pd;
|
|
|
|
|
|
|
|
|
|
if (!fi->ds_tvb)
|
|
|
|
|
return;
|
|
|
|
|
|
2015-06-24 00:30:22 +00:00
|
|
|
if (fi->length > tvb_captured_length_remaining(fi->ds_tvb, fi->start)) {
|
2013-02-23 22:37:52 +00:00
|
|
|
fprintf(pdata->fh, "field length invalid!");
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Find the data for this field. */
|
|
|
|
|
pd = get_field_data(pdata->src_list, fi);
|
|
|
|
|
|
|
|
|
|
if (pd) {
|
2020-10-17 14:49:37 +00:00
|
|
|
/* Used fixed buffer where can, otherwise temp malloc */
|
|
|
|
|
static gchar str_static[129];
|
|
|
|
|
gchar *str = str_static;
|
|
|
|
|
gchar* str_heap = NULL;
|
|
|
|
|
if (fi->length > 64) {
|
|
|
|
|
str_heap = (gchar*)g_malloc0(fi->length*2+1);
|
|
|
|
|
str = str_heap;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const char hex[] = "0123456789abcdef";
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
/* Print a simple hex dump */
|
|
|
|
|
for (i = 0 ; i < fi->length; i++) {
|
2020-10-17 14:49:37 +00:00
|
|
|
str[2*i] = hex[pd[i] >> 4];
|
|
|
|
|
str[2*i+1] = hex[pd[i] & 0xf];
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
2020-10-17 14:49:37 +00:00
|
|
|
str[2 * fi->length] = '\0';
|
|
|
|
|
fputs(str, pdata->fh);
|
|
|
|
|
g_free(str_heap);
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
2004-07-08 10:36:29 +00:00
|
|
|
}
|
|
|
|
|
|
2016-06-13 13:47:44 +00:00
|
|
|
static void
|
|
|
|
|
json_write_field_hex_value(write_json_data *pdata, field_info *fi)
|
|
|
|
|
{
|
|
|
|
|
const guint8 *pd;
|
|
|
|
|
|
|
|
|
|
if (!fi->ds_tvb)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
if (fi->length > tvb_captured_length_remaining(fi->ds_tvb, fi->start)) {
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(pdata->dumper, "field length invalid!");
|
2016-06-13 13:47:44 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Find the data for this field. */
|
|
|
|
|
pd = get_field_data(pdata->src_list, fi);
|
|
|
|
|
|
|
|
|
|
if (pd) {
|
2018-12-10 12:44:03 +00:00
|
|
|
gint i;
|
|
|
|
|
guint len = fi->length * 2 + 1;
|
|
|
|
|
gchar* str = (gchar*)g_malloc0(len);
|
|
|
|
|
static const char hex[] = "0123456789abcdef";
|
2016-06-13 13:47:44 +00:00
|
|
|
/* Print a simple hex dump */
|
2018-12-10 12:44:03 +00:00
|
|
|
for (i = 0; i < fi->length; i++) {
|
|
|
|
|
guint8 c = pd[i];
|
|
|
|
|
str[2 * i] = hex[c >> 4];
|
|
|
|
|
str[2 * i + 1] = hex[c & 0xf];
|
|
|
|
|
}
|
|
|
|
|
str[2 * fi->length] = '\0';
|
|
|
|
|
json_dumper_value_string(pdata->dumper, str);
|
|
|
|
|
g_free(str);
|
|
|
|
|
} else {
|
|
|
|
|
json_dumper_value_string(pdata->dumper, "");
|
2016-06-13 13:47:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-07-25 08:53:38 +00:00
|
|
|
gboolean
|
2022-01-13 01:18:38 +00:00
|
|
|
print_hex_data(print_stream_t *stream, epan_dissect_t *edt, guint hexdump_options)
|
2000-01-06 07:33:35 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
gboolean multiple_sources;
|
|
|
|
|
GSList *src_le;
|
|
|
|
|
tvbuff_t *tvb;
|
2015-01-18 02:17:24 +00:00
|
|
|
char *line, *name;
|
2013-02-23 22:37:52 +00:00
|
|
|
const guchar *cp;
|
|
|
|
|
guint length;
|
|
|
|
|
struct data_source *src;
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Set "multiple_sources" iff this frame has more than one
|
|
|
|
|
* data source; if it does, we need to print the name of
|
|
|
|
|
* the data source before printing the data from the
|
|
|
|
|
* data source.
|
|
|
|
|
*/
|
|
|
|
|
multiple_sources = (edt->pi.data_src->next != NULL);
|
|
|
|
|
|
|
|
|
|
for (src_le = edt->pi.data_src; src_le != NULL;
|
|
|
|
|
src_le = src_le->next) {
|
|
|
|
|
src = (struct data_source *)src_le->data;
|
|
|
|
|
tvb = get_data_source_tvb(src);
|
2022-01-13 01:18:38 +00:00
|
|
|
if (multiple_sources && (HEXDUMP_SOURCE_OPTION(hexdump_options) == HEXDUMP_SOURCE_MULTI)) {
|
2013-02-23 22:37:52 +00:00
|
|
|
name = get_data_source_name(src);
|
2021-12-16 18:06:18 +00:00
|
|
|
line = ws_strdup_printf("%s:", name);
|
2015-01-18 02:17:24 +00:00
|
|
|
wmem_free(NULL, name);
|
2013-02-23 22:37:52 +00:00
|
|
|
print_line(stream, 0, line);
|
|
|
|
|
g_free(line);
|
|
|
|
|
}
|
2015-06-24 00:30:22 +00:00
|
|
|
length = tvb_captured_length(tvb);
|
2013-02-23 22:37:52 +00:00
|
|
|
if (length == 0)
|
|
|
|
|
return TRUE;
|
|
|
|
|
cp = tvb_get_ptr(tvb, 0, length);
|
|
|
|
|
if (!print_hex_data_buffer(stream, cp, length,
|
2022-01-13 01:18:38 +00:00
|
|
|
(packet_char_enc)edt->pi.fd->encoding,
|
|
|
|
|
HEXDUMP_ASCII_OPTION(hexdump_options)))
|
2013-02-23 22:37:52 +00:00
|
|
|
return FALSE;
|
2022-01-13 01:18:38 +00:00
|
|
|
if (HEXDUMP_SOURCE_OPTION(hexdump_options) == HEXDUMP_SOURCE_PRIMARY) {
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
}
|
|
|
|
|
return TRUE;
|
2000-01-06 07:33:35 +00:00
|
|
|
}
|
|
|
|
|
|
2022-10-03 17:22:35 +00:00
|
|
|
static gboolean print_hex_data_line(void *stream, const char *line)
|
1998-09-16 02:39:15 +00:00
|
|
|
{
|
2022-10-03 17:22:35 +00:00
|
|
|
return print_line(stream, 0, line);
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2022-10-03 17:22:35 +00:00
|
|
|
static gboolean print_hex_data_buffer(print_stream_t *stream, const guchar *cp,
|
|
|
|
|
guint length, packet_char_enc encoding,
|
|
|
|
|
guint hexdump_options)
|
|
|
|
|
{
|
|
|
|
|
return hex_dump_buffer(print_hex_data_line, stream, cp, length,
|
|
|
|
|
encoding == PACKET_CHAR_ENC_CHAR_EBCDIC ? HEXDUMP_ENC_EBCDIC : HEXDUMP_ENC_ASCII,
|
|
|
|
|
hexdump_options);
|
1998-09-16 02:39:15 +00:00
|
|
|
}
|
|
|
|
|
|
2013-02-18 05:41:13 +00:00
|
|
|
gsize output_fields_num_fields(output_fields_t* fields)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fields);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (NULL == fields->fields) {
|
2007-03-26 20:17:05 +00:00
|
|
|
return 0;
|
|
|
|
|
} else {
|
|
|
|
|
return fields->fields->len;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2013-02-18 05:41:13 +00:00
|
|
|
void output_fields_free(output_fields_t* fields)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fields);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (NULL != fields->fields) {
|
2013-02-18 00:51:59 +00:00
|
|
|
gsize i;
|
2013-02-23 22:04:12 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (NULL != fields->field_indicies) {
|
2013-02-23 22:04:12 +00:00
|
|
|
/* Keys are stored in fields->fields, values are
|
|
|
|
|
* integers.
|
|
|
|
|
*/
|
|
|
|
|
g_hash_table_destroy(fields->field_indicies);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (NULL != fields->field_values) {
|
|
|
|
|
g_free(fields->field_values);
|
|
|
|
|
}
|
|
|
|
|
|
2019-11-05 09:52:43 +00:00
|
|
|
for (i = 0; i < fields->fields->len; ++i) {
|
2013-02-18 05:41:13 +00:00
|
|
|
gchar* field = (gchar *)g_ptr_array_index(fields->fields,i);
|
2007-03-26 20:17:05 +00:00
|
|
|
g_free(field);
|
|
|
|
|
}
|
|
|
|
|
g_ptr_array_free(fields->fields, TRUE);
|
|
|
|
|
}
|
|
|
|
|
|
2008-05-22 15:46:27 +00:00
|
|
|
g_free(fields);
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
|
2013-10-09 19:43:02 +00:00
|
|
|
#define COLUMN_FIELD_FILTER "_ws.col."
|
2012-12-08 02:42:40 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
void output_fields_add(output_fields_t *fields, const gchar *field)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
gchar *field_copy;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fields);
|
|
|
|
|
ws_assert(field);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (NULL == fields->fields) {
|
2007-03-26 20:17:05 +00:00
|
|
|
fields->fields = g_ptr_array_new();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
field_copy = g_strdup(field);
|
|
|
|
|
|
|
|
|
|
g_ptr_array_add(fields->fields, field_copy);
|
2012-12-08 02:42:40 +00:00
|
|
|
|
|
|
|
|
/* See if we have a column as a field entry */
|
|
|
|
|
if (!strncmp(field, COLUMN_FIELD_FILTER, strlen(COLUMN_FIELD_FILTER)))
|
|
|
|
|
fields->includes_col_fields = TRUE;
|
|
|
|
|
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
|
2014-06-25 19:37:36 +00:00
|
|
|
static void
|
|
|
|
|
output_field_check(void *data, void *user_data)
|
|
|
|
|
{
|
|
|
|
|
gchar *field = (gchar *)data;
|
2015-09-12 15:40:55 +00:00
|
|
|
GSList **invalid_fields = (GSList **)user_data;
|
2014-06-25 19:37:36 +00:00
|
|
|
|
|
|
|
|
if (!strncmp(field, COLUMN_FIELD_FILTER, strlen(COLUMN_FIELD_FILTER)))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
if (!proto_registrar_get_byname(field)) {
|
2015-09-12 15:40:55 +00:00
|
|
|
*invalid_fields = g_slist_prepend(*invalid_fields, field);
|
2014-06-25 19:37:36 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-12 15:40:55 +00:00
|
|
|
GSList *
|
2014-06-25 19:37:36 +00:00
|
|
|
output_fields_valid(output_fields_t *fields)
|
|
|
|
|
{
|
2015-09-12 15:40:55 +00:00
|
|
|
GSList *invalid_fields = NULL;
|
2014-06-27 03:25:08 +00:00
|
|
|
if (fields->fields == NULL) {
|
2015-09-12 15:40:55 +00:00
|
|
|
return NULL;
|
2014-06-27 03:25:08 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-12 15:40:55 +00:00
|
|
|
g_ptr_array_foreach(fields->fields, output_field_check, &invalid_fields);
|
2014-06-25 19:37:36 +00:00
|
|
|
|
2015-09-12 15:40:55 +00:00
|
|
|
return invalid_fields;
|
2014-06-25 19:37:36 +00:00
|
|
|
}
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
gboolean output_fields_set_option(output_fields_t *info, gchar *option)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
const gchar *option_name;
|
|
|
|
|
const gchar *option_value;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(info);
|
|
|
|
|
ws_assert(option);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if ('\0' == *option) {
|
2015-04-04 11:34:11 +00:00
|
|
|
return FALSE; /* this happens if we're called from tshark -E '' */
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
option_name = strtok(option, "=");
|
2011-03-26 15:39:35 +00:00
|
|
|
if (!option_name) {
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
option_value = option + strlen(option_name) + 1;
|
2015-04-04 11:26:21 +00:00
|
|
|
if (*option_value == '\0') {
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (0 == strcmp(option_name, "header")) {
|
2015-04-04 11:26:21 +00:00
|
|
|
switch (*option_value) {
|
2007-03-26 20:17:05 +00:00
|
|
|
case 'n':
|
|
|
|
|
info->print_header = FALSE;
|
|
|
|
|
break;
|
|
|
|
|
case 'y':
|
|
|
|
|
info->print_header = TRUE;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
2015-04-04 17:15:50 +00:00
|
|
|
else if (0 == strcmp(option_name, "separator")) {
|
2015-04-04 11:26:21 +00:00
|
|
|
switch (*option_value) {
|
2007-03-26 20:17:05 +00:00
|
|
|
case '/':
|
2013-02-23 22:37:52 +00:00
|
|
|
switch (*++option_value) {
|
2007-03-26 20:17:05 +00:00
|
|
|
case 't':
|
|
|
|
|
info->separator = '\t';
|
|
|
|
|
break;
|
|
|
|
|
case 's':
|
|
|
|
|
info->separator = ' ';
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
info->separator = '\\';
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
info->separator = *option_value;
|
|
|
|
|
break;
|
|
|
|
|
}
|
2008-05-22 15:46:27 +00:00
|
|
|
return TRUE;
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2015-04-04 17:15:50 +00:00
|
|
|
else if (0 == strcmp(option_name, "occurrence")) {
|
2015-04-04 11:26:21 +00:00
|
|
|
switch (*option_value) {
|
2010-07-14 21:53:57 +00:00
|
|
|
case 'f':
|
|
|
|
|
case 'l':
|
|
|
|
|
case 'a':
|
|
|
|
|
info->occurrence = *option_value;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
2015-04-04 17:15:50 +00:00
|
|
|
else if (0 == strcmp(option_name, "aggregator")) {
|
2015-04-04 11:26:21 +00:00
|
|
|
switch (*option_value) {
|
2010-07-14 20:28:34 +00:00
|
|
|
case '/':
|
2013-02-23 22:37:52 +00:00
|
|
|
switch (*++option_value) {
|
2010-07-14 20:28:34 +00:00
|
|
|
case 's':
|
|
|
|
|
info->aggregator = ' ';
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
info->aggregator = '\\';
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
info->aggregator = *option_value;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
2015-04-04 17:15:50 +00:00
|
|
|
else if (0 == strcmp(option_name, "quote")) {
|
2015-04-04 11:26:21 +00:00
|
|
|
switch (*option_value) {
|
2007-03-26 20:17:05 +00:00
|
|
|
case 'd':
|
2013-02-23 22:37:52 +00:00
|
|
|
info->quote = '"';
|
2007-03-26 20:17:05 +00:00
|
|
|
break;
|
|
|
|
|
case 's':
|
2013-02-23 22:37:52 +00:00
|
|
|
info->quote = '\'';
|
2007-03-26 20:17:05 +00:00
|
|
|
break;
|
|
|
|
|
case 'n':
|
2013-02-23 22:37:52 +00:00
|
|
|
info->quote = '\0';
|
2007-03-26 20:17:05 +00:00
|
|
|
break;
|
2015-04-04 11:26:21 +00:00
|
|
|
default:
|
|
|
|
|
info->quote = '\0';
|
|
|
|
|
return FALSE;
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2008-05-22 15:46:27 +00:00
|
|
|
return TRUE;
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2016-05-09 20:35:36 +00:00
|
|
|
else if (0 == strcmp(option_name, "bom")) {
|
|
|
|
|
switch (*option_value) {
|
|
|
|
|
case 'n':
|
|
|
|
|
info->print_bom = FALSE;
|
|
|
|
|
break;
|
|
|
|
|
case 'y':
|
|
|
|
|
info->print_bom = TRUE;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
return TRUE;
|
|
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void output_fields_list_options(FILE *fh)
|
|
|
|
|
{
|
|
|
|
|
fprintf(fh, "TShark: The available options for field output \"E\" are:\n");
|
2016-05-09 20:35:36 +00:00
|
|
|
fputs("bom=y|n Prepend output with the UTF-8 BOM (def: N: no)\n", fh);
|
2010-07-14 21:53:57 +00:00
|
|
|
fputs("header=y|n Print field abbreviations as first line of output (def: N: no)\n", fh);
|
2010-07-14 21:05:11 +00:00
|
|
|
fputs("separator=/t|/s|<character> Set the separator to use;\n \"/t\" = tab, \"/s\" = space (def: /t: tab)\n", fh);
|
2010-07-14 21:53:57 +00:00
|
|
|
fputs("occurrence=f|l|a Select the occurrence of a field to use;\n \"f\" = first, \"l\" = last, \"a\" = all (def: a: all)\n", fh);
|
2010-07-14 21:05:11 +00:00
|
|
|
fputs("aggregator=,|/s|<character> Set the aggregator to use;\n \",\" = comma, \"/s\" = space (def: ,: comma)\n", fh);
|
|
|
|
|
fputs("quote=d|s|n Print either d: double-quotes, s: single quotes or \n n: no quotes around field values (def: n: none)\n", fh);
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
|
2013-02-18 05:41:13 +00:00
|
|
|
gboolean output_fields_has_cols(output_fields_t* fields)
|
2012-12-08 02:42:40 +00:00
|
|
|
{
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fields);
|
2012-12-08 02:42:40 +00:00
|
|
|
return fields->includes_col_fields;
|
|
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2013-02-18 05:41:13 +00:00
|
|
|
void write_fields_preamble(output_fields_t* fields, FILE *fh)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
|
|
|
|
gsize i;
|
|
|
|
|
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fields);
|
|
|
|
|
ws_assert(fh);
|
|
|
|
|
ws_assert(fields->fields);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2016-05-09 20:35:36 +00:00
|
|
|
if (fields->print_bom) {
|
|
|
|
|
fputs(UTF8_BOM, fh);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (!fields->print_header) {
|
2007-03-26 20:17:05 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2013-02-18 05:41:13 +00:00
|
|
|
for(i = 0; i < fields->fields->len; ++i) {
|
|
|
|
|
const gchar* field = (const gchar *)g_ptr_array_index(fields->fields,i);
|
2013-02-23 22:37:52 +00:00
|
|
|
if (i != 0 ) {
|
2007-03-26 20:17:05 +00:00
|
|
|
fputc(fields->separator, fh);
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
fputs(field, fh);
|
2008-05-22 15:46:27 +00:00
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
fputc('\n', fh);
|
|
|
|
|
}
|
|
|
|
|
|
2018-02-28 18:04:25 +00:00
|
|
|
static void format_field_values(output_fields_t* fields, gpointer field_index, gchar* value)
|
2012-12-08 02:42:40 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
guint indx;
|
2013-02-23 22:04:12 +00:00
|
|
|
GPtrArray* fv_p;
|
|
|
|
|
|
2015-06-24 23:03:17 +00:00
|
|
|
if (NULL == value)
|
2013-02-23 22:04:12 +00:00
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
/* Unwrap change made to disambiguiate zero / null */
|
|
|
|
|
indx = GPOINTER_TO_UINT(field_index) - 1;
|
|
|
|
|
|
|
|
|
|
if (fields->field_values[indx] == NULL) {
|
|
|
|
|
fields->field_values[indx] = g_ptr_array_new();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Essentially: fieldvalues[indx] is a 'GPtrArray *' with each array entry */
|
|
|
|
|
/* pointing to a string which is (part of) the final output string. */
|
|
|
|
|
|
|
|
|
|
fv_p = fields->field_values[indx];
|
|
|
|
|
|
|
|
|
|
switch (fields->occurrence) {
|
|
|
|
|
case 'f':
|
|
|
|
|
/* print the value of only the first occurrence of the field */
|
2018-02-28 18:04:25 +00:00
|
|
|
if (g_ptr_array_len(fv_p) != 0) {
|
2018-03-07 08:49:28 +00:00
|
|
|
/*
|
|
|
|
|
* This isn't the first occurrence, so the value won't be used;
|
|
|
|
|
* free it.
|
|
|
|
|
*/
|
2018-02-28 18:04:25 +00:00
|
|
|
g_free(value);
|
2013-02-23 22:04:12 +00:00
|
|
|
return;
|
2018-02-28 18:04:25 +00:00
|
|
|
}
|
2013-02-23 22:04:12 +00:00
|
|
|
break;
|
|
|
|
|
case 'l':
|
|
|
|
|
/* print the value of only the last occurrence of the field */
|
2018-03-07 08:49:28 +00:00
|
|
|
if (g_ptr_array_len(fv_p) != 0) {
|
|
|
|
|
/*
|
|
|
|
|
* This isn't the first occurrence, so there's already a
|
|
|
|
|
* value in the array, which won't be used; free the
|
|
|
|
|
* first (only) element in the array, and then remove
|
|
|
|
|
* it - this value will replace it.
|
|
|
|
|
*/
|
|
|
|
|
g_free(g_ptr_array_index(fv_p, 0));
|
|
|
|
|
g_ptr_array_set_size(fv_p, 0);
|
|
|
|
|
}
|
2013-02-23 22:04:12 +00:00
|
|
|
break;
|
|
|
|
|
case 'a':
|
|
|
|
|
/* print the value of all accurrences of the field */
|
2018-03-07 08:49:28 +00:00
|
|
|
if (g_ptr_array_len(fv_p) != 0) {
|
|
|
|
|
/*
|
|
|
|
|
* This isn't the first occurrence. so add the "aggregator"
|
|
|
|
|
* character as a separator between the previous element
|
|
|
|
|
* and this element.
|
|
|
|
|
*/
|
2021-12-16 18:06:18 +00:00
|
|
|
g_ptr_array_add(fv_p, (gpointer)ws_strdup_printf("%c", fields->aggregator));
|
2012-12-08 02:42:40 +00:00
|
|
|
}
|
2013-02-23 22:04:12 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert_not_reached();
|
2013-02-23 22:04:12 +00:00
|
|
|
break;
|
2012-12-08 02:42:40 +00:00
|
|
|
}
|
2013-02-23 22:04:12 +00:00
|
|
|
|
|
|
|
|
g_ptr_array_add(fv_p, (gpointer)value);
|
2012-12-08 02:42:40 +00:00
|
|
|
}
|
|
|
|
|
|
2008-05-22 15:46:27 +00:00
|
|
|
static void proto_tree_get_node_field_values(proto_node *node, gpointer data)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
|
|
|
|
write_field_data_t *call_data;
|
2008-01-22 04:59:59 +00:00
|
|
|
field_info *fi;
|
2013-02-23 22:37:52 +00:00
|
|
|
gpointer field_index;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2010-03-11 00:36:45 +00:00
|
|
|
call_data = (write_field_data_t *)data;
|
2009-08-09 17:33:23 +00:00
|
|
|
fi = PNODE_FINFO(node);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2012-09-05 01:44:09 +00:00
|
|
|
/* dissection with an invisible proto tree? */
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fi);
|
2009-08-21 11:03:30 +00:00
|
|
|
|
2007-03-26 20:17:05 +00:00
|
|
|
field_index = g_hash_table_lookup(call_data->fields->field_indicies, fi->hfinfo->abbrev);
|
2013-02-23 22:37:52 +00:00
|
|
|
if (NULL != field_index) {
|
2014-05-09 15:16:14 +00:00
|
|
|
format_field_values(call_data->fields, field_index,
|
2014-05-18 18:21:31 +00:00
|
|
|
get_node_field_value(fi, call_data->edt) /* g_ alloc'd string */
|
2014-05-09 15:16:14 +00:00
|
|
|
);
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2008-05-22 15:46:27 +00:00
|
|
|
|
2008-01-22 04:59:59 +00:00
|
|
|
/* Recurse here. */
|
|
|
|
|
if (node->first_child != NULL) {
|
|
|
|
|
proto_tree_children_foreach(node, proto_tree_get_node_field_values,
|
|
|
|
|
call_data);
|
|
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
static void write_specified_fields(fields_format format, output_fields_t *fields, epan_dissect_t *edt, column_info *cinfo, FILE *fh, json_dumper *dumper)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2013-02-23 22:37:52 +00:00
|
|
|
gsize i;
|
|
|
|
|
gint col;
|
|
|
|
|
gchar *col_name;
|
|
|
|
|
gpointer field_index;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
|
|
|
|
write_field_data_t data;
|
|
|
|
|
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fields);
|
|
|
|
|
ws_assert(fields->fields);
|
|
|
|
|
ws_assert(edt);
|
2019-01-24 18:25:29 +00:00
|
|
|
/* JSON formats must go through json_dumper */
|
|
|
|
|
if (format == FORMAT_JSON || format == FORMAT_EK) {
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(!fh && dumper);
|
2019-01-24 18:25:29 +00:00
|
|
|
} else {
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert(fh && !dumper);
|
2019-01-24 18:25:29 +00:00
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
|
|
|
|
|
data.fields = fields;
|
2016-07-13 14:07:16 +00:00
|
|
|
data.edt = edt;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
if (NULL == fields->field_indicies) {
|
2007-03-26 20:17:05 +00:00
|
|
|
/* Prepare a lookup table from string abbreviation for field to its index. */
|
|
|
|
|
fields->field_indicies = g_hash_table_new(g_str_hash, g_str_equal);
|
|
|
|
|
|
|
|
|
|
i = 0;
|
2013-02-23 22:37:52 +00:00
|
|
|
while (i < fields->fields->len) {
|
|
|
|
|
gchar *field = (gchar *)g_ptr_array_index(fields->fields, i);
|
|
|
|
|
/* Store field indicies +1 so that zero is not a valid value,
|
|
|
|
|
* and can be distinguished from NULL as a pointer.
|
|
|
|
|
*/
|
2007-03-26 20:17:05 +00:00
|
|
|
++i;
|
2008-05-22 15:46:27 +00:00
|
|
|
g_hash_table_insert(fields->field_indicies, field, GUINT_TO_POINTER(i));
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2013-02-23 22:04:12 +00:00
|
|
|
/* Array buffer to store values for this packet */
|
|
|
|
|
/* Allocate an array for the 'GPtrarray *' the first time */
|
|
|
|
|
/* ths function is invoked for a file; */
|
|
|
|
|
/* Any and all 'GPtrArray *' are freed (after use) each */
|
|
|
|
|
/* time (each packet) this function is invoked for a flle. */
|
|
|
|
|
/* XXX: ToDo: use packet-scope'd memory & (if/when implemented) wmem ptr_array */
|
|
|
|
|
if (NULL == fields->field_values)
|
|
|
|
|
fields->field_values = g_new0(GPtrArray*, fields->fields->len); /* free'd in output_fields_free() */
|
2008-05-22 15:46:27 +00:00
|
|
|
|
2008-01-22 04:59:59 +00:00
|
|
|
proto_tree_children_foreach(edt->tree, proto_tree_get_node_field_values,
|
|
|
|
|
&data);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2017-12-21 13:58:07 +00:00
|
|
|
/* Add columns to fields */
|
|
|
|
|
if (fields->includes_col_fields) {
|
|
|
|
|
for (col = 0; col < cinfo->num_cols; col++) {
|
2019-11-05 09:52:43 +00:00
|
|
|
if (!get_column_visible(col))
|
|
|
|
|
continue;
|
2017-12-21 13:58:07 +00:00
|
|
|
/* Prepend COLUMN_FIELD_FILTER as the field name */
|
2021-12-16 18:06:18 +00:00
|
|
|
col_name = ws_strdup_printf("%s%s", COLUMN_FIELD_FILTER, cinfo->columns[col].col_title);
|
2017-12-21 13:58:07 +00:00
|
|
|
field_index = g_hash_table_lookup(fields->field_indicies, col_name);
|
|
|
|
|
g_free(col_name);
|
|
|
|
|
|
|
|
|
|
if (NULL != field_index) {
|
2022-07-09 16:34:15 +00:00
|
|
|
format_field_values(fields, field_index, g_strdup(get_column_text(cinfo, col)));
|
2012-12-08 02:42:40 +00:00
|
|
|
}
|
|
|
|
|
}
|
2017-12-21 13:58:07 +00:00
|
|
|
}
|
2012-12-08 02:42:40 +00:00
|
|
|
|
2017-12-21 13:58:07 +00:00
|
|
|
switch (format) {
|
|
|
|
|
case FORMAT_CSV:
|
2016-06-28 11:01:25 +00:00
|
|
|
for(i = 0; i < fields->fields->len; ++i) {
|
|
|
|
|
if (0 != i) {
|
|
|
|
|
fputc(fields->separator, fh);
|
|
|
|
|
}
|
|
|
|
|
if (NULL != fields->field_values[i]) {
|
|
|
|
|
GPtrArray *fv_p;
|
|
|
|
|
gchar * str;
|
|
|
|
|
gsize j;
|
|
|
|
|
fv_p = fields->field_values[i];
|
|
|
|
|
if (fields->quote != '\0') {
|
|
|
|
|
fputc(fields->quote, fh);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Output the array of (partial) field values */
|
|
|
|
|
for (j = 0; j < g_ptr_array_len(fv_p); j++ ) {
|
|
|
|
|
str = (gchar *)g_ptr_array_index(fv_p, j);
|
2018-06-25 23:54:25 +00:00
|
|
|
print_escaped_csv(fh, str);
|
2016-06-28 11:01:25 +00:00
|
|
|
g_free(str);
|
|
|
|
|
}
|
|
|
|
|
if (fields->quote != '\0') {
|
|
|
|
|
fputc(fields->quote, fh);
|
|
|
|
|
}
|
|
|
|
|
g_ptr_array_free(fv_p, TRUE); /* get ready for the next packet */
|
|
|
|
|
fields->field_values[i] = NULL;
|
|
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2016-06-28 11:01:25 +00:00
|
|
|
break;
|
|
|
|
|
case FORMAT_XML:
|
|
|
|
|
for(i = 0; i < fields->fields->len; ++i) {
|
|
|
|
|
gchar *field = (gchar *)g_ptr_array_index(fields->fields, i);
|
|
|
|
|
|
|
|
|
|
if (NULL != fields->field_values[i]) {
|
|
|
|
|
GPtrArray *fv_p;
|
|
|
|
|
gchar * str;
|
|
|
|
|
gsize j;
|
|
|
|
|
fv_p = fields->field_values[i];
|
|
|
|
|
|
|
|
|
|
/* Output the array of (partial) field values */
|
fix missing fields for json, ek and pdml when used with -e fields
Description:
when -T json,ed or pdml used in conjunction with -e fields they would
always miss the last field.
in case of json and ek, if some fields in the middle are empty,
the generated json would be invalid.
sample for ek:
{ "_index": "packets-2016-06-30", "_type": "pcap_file",
"_score": null, "_source":
{ "layers": { "e212.mcc": ["255","262"] "frame.time_epoch":
["1426550400.004751510"], "e212.mnc": ["1","1"] } } }
command:
tshark -T ek -r C:\a.pcap -e e212.mcc -e frame.comment
-e frame.time_epoch -e e212.mnc > C:\test.json
note:
the comma is missing between e212.mcc and frame.time_epoch
Change-Id: I2efae0c48036cf6313e2a064453c8dbc49f38b09
Reviewed-on: https://code.wireshark.org/review/16226
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Reviewed-by: Martin Kacer <kacer.martin@gmail.com>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
2016-06-30 17:11:15 +00:00
|
|
|
for (j = 0; j < (g_ptr_array_len(fv_p)); j+=2 ) {
|
2016-06-28 11:01:25 +00:00
|
|
|
str = (gchar *)g_ptr_array_index(fv_p, j);
|
|
|
|
|
|
|
|
|
|
fprintf(fh, " <field name=\"%s\" value=", field);
|
|
|
|
|
fputs("\"", fh);
|
|
|
|
|
print_escaped_xml(fh, str);
|
|
|
|
|
fputs("\"/>\n", fh);
|
|
|
|
|
g_free(str);
|
|
|
|
|
}
|
|
|
|
|
g_ptr_array_free(fv_p, TRUE); /* get ready for the next packet */
|
|
|
|
|
fields->field_values[i] = NULL;
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2016-06-28 11:01:25 +00:00
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case FORMAT_JSON:
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_begin_object(dumper);
|
2016-06-28 11:01:25 +00:00
|
|
|
for(i = 0; i < fields->fields->len; ++i) {
|
|
|
|
|
gchar *field = (gchar *)g_ptr_array_index(fields->fields, i);
|
|
|
|
|
|
|
|
|
|
if (NULL != fields->field_values[i]) {
|
|
|
|
|
GPtrArray *fv_p;
|
|
|
|
|
gchar * str;
|
|
|
|
|
gsize j;
|
|
|
|
|
fv_p = fields->field_values[i];
|
2013-02-23 22:04:12 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(dumper, field);
|
|
|
|
|
json_dumper_begin_array(dumper);
|
|
|
|
|
|
2016-06-28 11:01:25 +00:00
|
|
|
/* Output the array of (partial) field values */
|
fix missing fields for json, ek and pdml when used with -e fields
Description:
when -T json,ed or pdml used in conjunction with -e fields they would
always miss the last field.
in case of json and ek, if some fields in the middle are empty,
the generated json would be invalid.
sample for ek:
{ "_index": "packets-2016-06-30", "_type": "pcap_file",
"_score": null, "_source":
{ "layers": { "e212.mcc": ["255","262"] "frame.time_epoch":
["1426550400.004751510"], "e212.mnc": ["1","1"] } } }
command:
tshark -T ek -r C:\a.pcap -e e212.mcc -e frame.comment
-e frame.time_epoch -e e212.mnc > C:\test.json
note:
the comma is missing between e212.mcc and frame.time_epoch
Change-Id: I2efae0c48036cf6313e2a064453c8dbc49f38b09
Reviewed-on: https://code.wireshark.org/review/16226
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Reviewed-by: Martin Kacer <kacer.martin@gmail.com>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
2016-06-30 17:11:15 +00:00
|
|
|
for (j = 0; j < (g_ptr_array_len(fv_p)); j += 2) {
|
2017-06-12 12:50:55 +00:00
|
|
|
str = (gchar *) g_ptr_array_index(fv_p, j);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(dumper, str);
|
2016-06-28 11:01:25 +00:00
|
|
|
g_free(str);
|
2017-06-12 12:50:55 +00:00
|
|
|
}
|
fix missing fields for json, ek and pdml when used with -e fields
Description:
when -T json,ed or pdml used in conjunction with -e fields they would
always miss the last field.
in case of json and ek, if some fields in the middle are empty,
the generated json would be invalid.
sample for ek:
{ "_index": "packets-2016-06-30", "_type": "pcap_file",
"_score": null, "_source":
{ "layers": { "e212.mcc": ["255","262"] "frame.time_epoch":
["1426550400.004751510"], "e212.mnc": ["1","1"] } } }
command:
tshark -T ek -r C:\a.pcap -e e212.mcc -e frame.comment
-e frame.time_epoch -e e212.mnc > C:\test.json
note:
the comma is missing between e212.mcc and frame.time_epoch
Change-Id: I2efae0c48036cf6313e2a064453c8dbc49f38b09
Reviewed-on: https://code.wireshark.org/review/16226
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Reviewed-by: Martin Kacer <kacer.martin@gmail.com>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
2016-06-30 17:11:15 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(dumper);
|
|
|
|
|
|
2016-06-28 11:01:25 +00:00
|
|
|
g_ptr_array_free(fv_p, TRUE); /* get ready for the next packet */
|
|
|
|
|
fields->field_values[i] = NULL;
|
2013-02-23 22:04:12 +00:00
|
|
|
}
|
2016-06-28 11:01:25 +00:00
|
|
|
}
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_object(dumper);
|
2016-06-28 11:01:25 +00:00
|
|
|
break;
|
|
|
|
|
case FORMAT_EK:
|
|
|
|
|
for(i = 0; i < fields->fields->len; ++i) {
|
|
|
|
|
gchar *field = (gchar *)g_ptr_array_index(fields->fields, i);
|
|
|
|
|
|
|
|
|
|
if (NULL != fields->field_values[i]) {
|
|
|
|
|
GPtrArray *fv_p;
|
|
|
|
|
gchar * str;
|
|
|
|
|
gsize j;
|
|
|
|
|
fv_p = fields->field_values[i];
|
|
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_set_member_name(dumper, field);
|
|
|
|
|
json_dumper_begin_array(dumper);
|
|
|
|
|
|
2016-06-28 11:01:25 +00:00
|
|
|
/* Output the array of (partial) field values */
|
fix missing fields for json, ek and pdml when used with -e fields
Description:
when -T json,ed or pdml used in conjunction with -e fields they would
always miss the last field.
in case of json and ek, if some fields in the middle are empty,
the generated json would be invalid.
sample for ek:
{ "_index": "packets-2016-06-30", "_type": "pcap_file",
"_score": null, "_source":
{ "layers": { "e212.mcc": ["255","262"] "frame.time_epoch":
["1426550400.004751510"], "e212.mnc": ["1","1"] } } }
command:
tshark -T ek -r C:\a.pcap -e e212.mcc -e frame.comment
-e frame.time_epoch -e e212.mnc > C:\test.json
note:
the comma is missing between e212.mcc and frame.time_epoch
Change-Id: I2efae0c48036cf6313e2a064453c8dbc49f38b09
Reviewed-on: https://code.wireshark.org/review/16226
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Reviewed-by: Martin Kacer <kacer.martin@gmail.com>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
2016-06-30 17:11:15 +00:00
|
|
|
for (j = 0; j < (g_ptr_array_len(fv_p)); j += 2) {
|
2016-06-28 11:01:25 +00:00
|
|
|
str = (gchar *)g_ptr_array_index(fv_p, j);
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_value_string(dumper, str);
|
2016-06-28 11:01:25 +00:00
|
|
|
g_free(str);
|
2018-12-10 12:44:03 +00:00
|
|
|
}
|
2016-06-28 11:01:25 +00:00
|
|
|
|
2018-12-10 12:44:03 +00:00
|
|
|
json_dumper_end_array(dumper);
|
fix missing fields for json, ek and pdml when used with -e fields
Description:
when -T json,ed or pdml used in conjunction with -e fields they would
always miss the last field.
in case of json and ek, if some fields in the middle are empty,
the generated json would be invalid.
sample for ek:
{ "_index": "packets-2016-06-30", "_type": "pcap_file",
"_score": null, "_source":
{ "layers": { "e212.mcc": ["255","262"] "frame.time_epoch":
["1426550400.004751510"], "e212.mnc": ["1","1"] } } }
command:
tshark -T ek -r C:\a.pcap -e e212.mcc -e frame.comment
-e frame.time_epoch -e e212.mnc > C:\test.json
note:
the comma is missing between e212.mcc and frame.time_epoch
Change-Id: I2efae0c48036cf6313e2a064453c8dbc49f38b09
Reviewed-on: https://code.wireshark.org/review/16226
Petri-Dish: Pascal Quantin <pascal.quantin@gmail.com>
Reviewed-by: Martin Kacer <kacer.martin@gmail.com>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Pascal Quantin <pascal.quantin@gmail.com>
2016-06-30 17:11:15 +00:00
|
|
|
|
2016-06-28 11:01:25 +00:00
|
|
|
g_ptr_array_free(fv_p, TRUE); /* get ready for the next packet */
|
|
|
|
|
fields->field_values[i] = NULL;
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
}
|
2016-06-28 11:01:25 +00:00
|
|
|
break;
|
2016-06-29 23:13:38 +00:00
|
|
|
|
|
|
|
|
default:
|
2016-06-30 01:45:41 +00:00
|
|
|
fprintf(stderr, "Unknown fields format %d\n", format);
|
2021-06-18 18:21:42 +00:00
|
|
|
ws_assert_not_reached();
|
2016-06-29 23:13:38 +00:00
|
|
|
break;
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2013-02-18 05:41:13 +00:00
|
|
|
void write_fields_finale(output_fields_t* fields _U_ , FILE *fh _U_)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
|
|
|
|
/* Nothing to do */
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-18 18:21:31 +00:00
|
|
|
/* Returns an g_malloced string */
|
|
|
|
|
gchar* get_node_field_value(field_info* fi, epan_dissect_t* edt)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2008-01-22 04:59:59 +00:00
|
|
|
if (fi->hfinfo->id == hf_text_only) {
|
|
|
|
|
/* Text label.
|
|
|
|
|
* Get the text */
|
|
|
|
|
if (fi->rep) {
|
2014-05-18 18:21:31 +00:00
|
|
|
return g_strdup(fi->rep->representation);
|
2008-01-22 04:59:59 +00:00
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
return get_field_hex_value(edt->pi.data_src, fi);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else if (fi->hfinfo->id == proto_data) {
|
|
|
|
|
/* Uninterpreted data, i.e., the "Data" protocol, is
|
|
|
|
|
* printed as a field instead of a protocol. */
|
2007-03-26 20:17:05 +00:00
|
|
|
return get_field_hex_value(edt->pi.data_src, fi);
|
2008-01-22 04:59:59 +00:00
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
/* Normal protocols and fields */
|
|
|
|
|
gchar *dfilter_string;
|
|
|
|
|
|
|
|
|
|
switch (fi->hfinfo->type)
|
|
|
|
|
{
|
|
|
|
|
case FT_PROTOCOL:
|
2007-03-26 20:17:05 +00:00
|
|
|
/* Print out the full details for the protocol. */
|
2008-01-22 04:59:59 +00:00
|
|
|
if (fi->rep) {
|
2014-05-18 18:21:31 +00:00
|
|
|
return g_strdup(fi->rep->representation);
|
2008-01-22 04:59:59 +00:00
|
|
|
} else {
|
2007-03-26 20:17:05 +00:00
|
|
|
/* Just print out the protocol abbreviation */
|
2014-05-18 18:21:31 +00:00
|
|
|
return g_strdup(fi->hfinfo->abbrev);
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2008-01-22 04:59:59 +00:00
|
|
|
case FT_NONE:
|
|
|
|
|
/* Return "1" so that the presence of a field of type
|
|
|
|
|
* FT_NONE can be checked when using -T fields */
|
2014-05-09 07:50:51 +00:00
|
|
|
return g_strdup("1");
|
2018-11-01 11:06:26 +00:00
|
|
|
case FT_UINT_BYTES:
|
|
|
|
|
case FT_BYTES:
|
|
|
|
|
{
|
|
|
|
|
gchar *ret;
|
2022-06-18 23:31:30 +00:00
|
|
|
const guint8 *bytes = fvalue_get_bytes(&fi->value);
|
2018-11-01 11:06:26 +00:00
|
|
|
if (bytes) {
|
|
|
|
|
dfilter_string = (gchar *)wmem_alloc(NULL, 3*fvalue_length(&fi->value));
|
|
|
|
|
switch (fi->hfinfo->display) {
|
|
|
|
|
case SEP_DOT:
|
|
|
|
|
ret = bytes_to_hexstr_punct(dfilter_string, bytes, fvalue_length(&fi->value), '.');
|
|
|
|
|
break;
|
|
|
|
|
case SEP_DASH:
|
|
|
|
|
ret = bytes_to_hexstr_punct(dfilter_string, bytes, fvalue_length(&fi->value), '-');
|
|
|
|
|
break;
|
|
|
|
|
case SEP_COLON:
|
|
|
|
|
ret = bytes_to_hexstr_punct(dfilter_string, bytes, fvalue_length(&fi->value), ':');
|
|
|
|
|
break;
|
|
|
|
|
case SEP_SPACE:
|
|
|
|
|
ret = bytes_to_hexstr_punct(dfilter_string, bytes, fvalue_length(&fi->value), ' ');
|
|
|
|
|
break;
|
|
|
|
|
case BASE_NONE:
|
|
|
|
|
default:
|
|
|
|
|
ret = bytes_to_hexstr(dfilter_string, bytes, fvalue_length(&fi->value));
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
*ret = '\0';
|
|
|
|
|
ret = g_strdup(dfilter_string);
|
|
|
|
|
wmem_free(NULL, dfilter_string);
|
|
|
|
|
} else {
|
|
|
|
|
if (fi->hfinfo->display & BASE_ALLOW_ZERO) {
|
|
|
|
|
ret = g_strdup("<none>");
|
|
|
|
|
} else {
|
|
|
|
|
ret = g_strdup("<MISSING>");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
break;
|
2008-01-22 04:59:59 +00:00
|
|
|
default:
|
2016-05-10 20:04:14 +00:00
|
|
|
dfilter_string = fvalue_to_string_repr(NULL, &fi->value, FTREPR_DISPLAY, fi->hfinfo->display);
|
2008-01-22 04:59:59 +00:00
|
|
|
if (dfilter_string != NULL) {
|
2016-05-10 20:04:14 +00:00
|
|
|
gchar* ret = g_strdup(dfilter_string);
|
|
|
|
|
wmem_free(NULL, dfilter_string);
|
|
|
|
|
return ret;
|
2008-01-22 04:59:59 +00:00
|
|
|
} else {
|
|
|
|
|
return get_field_hex_value(edt->pi.data_src, fi);
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
2008-01-22 04:59:59 +00:00
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2014-05-18 18:21:31 +00:00
|
|
|
static gchar*
|
2013-02-23 22:37:52 +00:00
|
|
|
get_field_hex_value(GSList *src_list, field_info *fi)
|
2007-03-26 20:17:05 +00:00
|
|
|
{
|
2008-01-22 04:59:59 +00:00
|
|
|
const guint8 *pd;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2008-10-09 06:24:24 +00:00
|
|
|
if (!fi->ds_tvb)
|
|
|
|
|
return NULL;
|
|
|
|
|
|
2015-06-24 00:30:22 +00:00
|
|
|
if (fi->length > tvb_captured_length_remaining(fi->ds_tvb, fi->start)) {
|
2014-05-09 07:50:51 +00:00
|
|
|
return g_strdup("field length invalid!");
|
2008-01-22 04:59:59 +00:00
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2008-01-22 04:59:59 +00:00
|
|
|
/* Find the data for this field. */
|
|
|
|
|
pd = get_field_data(src_list, fi);
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2008-01-22 04:59:59 +00:00
|
|
|
if (pd) {
|
2013-02-23 22:37:52 +00:00
|
|
|
int i;
|
|
|
|
|
gchar *buffer;
|
|
|
|
|
gchar *p;
|
|
|
|
|
int len;
|
|
|
|
|
const int chars_per_byte = 2;
|
2007-03-26 20:17:05 +00:00
|
|
|
|
2013-02-23 22:37:52 +00:00
|
|
|
len = chars_per_byte * fi->length;
|
2014-05-18 18:21:31 +00:00
|
|
|
buffer = (gchar *)g_malloc(sizeof(gchar)*(len + 1));
|
2007-03-26 20:17:05 +00:00
|
|
|
buffer[len] = '\0'; /* Ensure NULL termination in bad cases */
|
|
|
|
|
p = buffer;
|
2008-01-22 04:59:59 +00:00
|
|
|
/* Print a simple hex dump */
|
|
|
|
|
for (i = 0 ; i < fi->length; i++) {
|
2021-12-16 18:06:18 +00:00
|
|
|
snprintf(p, chars_per_byte+1, "%02x", pd[i]);
|
2007-03-26 20:17:05 +00:00
|
|
|
p += chars_per_byte;
|
2008-01-22 04:59:59 +00:00
|
|
|
}
|
2007-03-26 20:17:05 +00:00
|
|
|
return buffer;
|
2008-01-22 04:59:59 +00:00
|
|
|
} else {
|
2007-03-26 20:17:05 +00:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
}
|
2013-02-23 22:37:52 +00:00
|
|
|
|
2014-11-22 03:22:54 +00:00
|
|
|
output_fields_t* output_fields_new(void)
|
|
|
|
|
{
|
|
|
|
|
output_fields_t* fields = g_new(output_fields_t, 1);
|
2016-05-09 20:35:36 +00:00
|
|
|
fields->print_bom = FALSE;
|
2014-11-22 03:22:54 +00:00
|
|
|
fields->print_header = FALSE;
|
|
|
|
|
fields->separator = '\t';
|
|
|
|
|
fields->occurrence = 'a';
|
|
|
|
|
fields->aggregator = ',';
|
|
|
|
|
fields->fields = NULL; /*Do lazy initialisation */
|
|
|
|
|
fields->field_indicies = NULL;
|
|
|
|
|
fields->field_values = NULL;
|
|
|
|
|
fields->quote ='\0';
|
|
|
|
|
fields->includes_col_fields = FALSE;
|
|
|
|
|
return fields;
|
|
|
|
|
}
|
|
|
|
|
|
2014-10-10 14:41:10 +00:00
|
|
|
/*
|
2019-07-26 18:43:17 +00:00
|
|
|
* Editor modelines - https://www.wireshark.org/tools/modelines.html
|
2014-10-10 14:41:10 +00:00
|
|
|
*
|
|
|
|
|
* Local variables:
|
|
|
|
|
* c-basic-offset: 4
|
|
|
|
|
* tab-width: 8
|
|
|
|
|
* indent-tabs-mode: nil
|
|
|
|
|
* End:
|
|
|
|
|
*
|
|
|
|
|
* vi: set shiftwidth=4 tabstop=8 expandtab:
|
|
|
|
|
* :indentSize=4:tabSize=8:noTabs=true:
|
|
|
|
|
*/
|