/src/wireshark/epan/dissectors/packet-iapp.c

Source
/* packet-iapp.c
 * Routines for IAPP dissection
 * Copyright 2002, Alfred Arnold <aarnold@elsa.de>
 *
 * Wireshark - Network traffic analyzer
 * By Gerald Combs <gerald@wireshark.org>
 * Copyright 1998 Gerald Combs
 *
 * SPDX-License-Identifier: GPL-2.0-or-later
 */

#include "config.h"

#include <epan/packet.h>
#include <epan/expert.h>
#include <epan/tfs.h>
#include <wsutil/array.h>

void proto_register_iapp(void);
void proto_reg_handoff_iapp(void);

static dissector_handle_t iapp_handle;

/* Initialize the protocol and registered fields */
static int proto_iapp;
static int hf_iapp_version;
static int hf_iapp_type;
static int hf_iapp_cap_forwarding;
static int hf_iapp_cap_wep;
static int hf_iapp_auth_status;
static int hf_iapp_auth_string;
static int hf_iapp_auth_uint;
static int hf_iapp_auth_ipaddr;
static int hf_iapp_auth_trailer;
static int hf_iapp_pdu_ssid;
static int hf_iapp_pdu_bytes;
static int hf_iapp_pdu_uint;
static int hf_iapp_pdu_phytype;
static int hf_iapp_pdu_regdomain;
static int hf_iapp_pdu_oui_ident;

/* Initialize the subtree pointers */
static int ett_iapp;
static int ett_iapp_pdu;
static int ett_iapp_subpdu;
static int ett_iapp_cap;
static int ett_iapp_auth;
static int ett_iapp_authinfo;

static expert_field ei_iapp_no_pdus;

#define UDP_PORT_IAPP     2313

#define IAPP_ANNOUNCE_REQUEST  0
#define IAPP_ANNOUNCE_RESPONSE 1
#define IAPP_HANDOVER_REQUEST  2
#define IAPP_HANDOVER_RESPONSE 3

#define IAPP_PDU_SSID 0
#define IAPP_PDU_BSSID 1
#define IAPP_PDU_OLDBSSID 2
#define IAPP_PDU_MSADDR 3
#define IAPP_PDU_CAPABILITY 4
#define IAPP_PDU_ANNOUNCEINT 5
#define IAPP_PDU_HOTIMEOUT 6
#define IAPP_PDU_MESSAGEID 7
#define IAPP_PDU_PHYTYPE 0x10
#define IAPP_PDU_REGDOMAIN 0x11
#define IAPP_PDU_CHANNEL 0x12
#define IAPP_PDU_BEACONINT 0x13
#define IAPP_PDU_OUIIDENT 0x80
#define IAPP_PDU_AUTHINFO 0x81

#define IAPP_CAP_FORWARDING 0x40
#define IAPP_CAP_WEP 0x20

#define IAPP_PHY_PROP 0x00
#define IAPP_PHY_FHSS 0x01
#define IAPP_PHY_DSSS 0x02
#define IAPP_PHY_IR 0x03
#define IAPP_PHY_OFDM 0x04

#define IAPP_DOM_FCC 0x10
#define IAPP_DOM_IC 0x20
#define IAPP_DOM_ETSI 0x30
#define IAPP_DOM_SPAIN 0x31
#define IAPP_DOM_FRANCE 0x32
#define IAPP_DOM_MKK 0x40

#define IAPP_AUTH_STATUS 0x01
#define IAPP_AUTH_USERNAME 0x02
#define IAPP_AUTH_PROVNAME 0x03
#define IAPP_AUTH_RXPKTS 0x04
#define IAPP_AUTH_TXPKTS 0x05
#define IAPP_AUTH_RXBYTES 0x06
#define IAPP_AUTH_TXBYTES 0x07
#define IAPP_AUTH_LOGINTIME 0x08
#define IAPP_AUTH_TIMELIMIT 0x09
#define IAPP_AUTH_VOLLIMIT 0x0a
#define IAPP_AUTH_ACCCYCLE 0x0b
#define IAPP_AUTH_RXGWORDS 0x0c
#define IAPP_AUTH_TXGWORDS 0x0d
#define IAPP_AUTH_IPADDR 0x0e
#define IAPP_AUTH_TRAILER 0xff

static const value_string iapp_vals[] = {
    {IAPP_ANNOUNCE_REQUEST, "Announce Request"},
    {IAPP_ANNOUNCE_RESPONSE, "Announce Response"},
    {IAPP_HANDOVER_REQUEST, "Handover Request"},
    {IAPP_HANDOVER_RESPONSE, "Handover Response"},
    {0, NULL}
};

static const value_string iapp_pdu_type_vals[] = {
    {IAPP_PDU_SSID, "Network Name"},
    {IAPP_PDU_BSSID, "BSSID"},
    {IAPP_PDU_OLDBSSID, "Old BSSID"},
    {IAPP_PDU_MSADDR, "Mobile Station Address"},
    {IAPP_PDU_CAPABILITY, "Capabilities"},
    {IAPP_PDU_ANNOUNCEINT, "Announce Interval"},
    {IAPP_PDU_HOTIMEOUT, "Handover Timeout"},
    {IAPP_PDU_MESSAGEID, "Message ID"},
    {IAPP_PDU_PHYTYPE, "PHY Type"},
    {IAPP_PDU_REGDOMAIN, "Regulatory Domain"},
    {IAPP_PDU_CHANNEL, "Radio Channel"},
    {IAPP_PDU_BEACONINT, "Beacon Interval"},
    {IAPP_PDU_OUIIDENT, "OUI Identifier"},
    {IAPP_PDU_AUTHINFO, "ELSA Authentication Info"},
    {0, NULL}
};

static const value_string iapp_phy_vals[] = {
    {IAPP_PHY_PROP, "Proprietary"},
    {IAPP_PHY_FHSS, "FHSS"},
    {IAPP_PHY_DSSS, "DSSS"},
    {IAPP_PHY_IR, "Infrared"},
    {IAPP_PHY_OFDM, "OFDM"},
    {0, NULL}
};

static const value_string iapp_dom_vals[] = {
    {IAPP_DOM_FCC, "FCC (USA)"},
    {IAPP_DOM_IC, "IC (Canada)"},
    {IAPP_DOM_ETSI, "ETSI (Europe)"},
    {IAPP_DOM_SPAIN, "Spain"},
    {IAPP_DOM_FRANCE, "France"},
    {IAPP_DOM_MKK, "MKK (Japan)"},
    {0, NULL}
};

static const value_string iapp_auth_type_vals[] = {
    {IAPP_AUTH_STATUS, "Status"},
    {IAPP_AUTH_USERNAME, "User Name"},
    {IAPP_AUTH_PROVNAME, "Provider Name"},
    {IAPP_AUTH_RXPKTS, "Received Packets"},
    {IAPP_AUTH_TXPKTS, "Transmitted Packets"},
    {IAPP_AUTH_RXBYTES, "Received Octets"},
    {IAPP_AUTH_TXBYTES, "Transmitted Octets"},
    {IAPP_AUTH_LOGINTIME, "Session Time"},
    {IAPP_AUTH_TIMELIMIT, "Time Limit"},
    {IAPP_AUTH_VOLLIMIT, "Volume Limit"},
    {IAPP_AUTH_ACCCYCLE, "Accounting Cycle"},
    {IAPP_AUTH_TRAILER, "Authenticator"},
    {IAPP_AUTH_RXGWORDS, "Received Gigawords"},
    {IAPP_AUTH_TXGWORDS, "Transmitted Gigawords"},
    {IAPP_AUTH_IPADDR, "Client IP Address"},
    {0, NULL}
};


/* dissect a capability bit field */

static void dissect_caps(proto_tree *tree, tvbuff_t *tvb, int offset)
{
    proto_tree *captree;

    captree = proto_tree_add_subtree(tree, tvb, offset, 1, ett_iapp_cap, NULL, "Capabilities");
    proto_tree_add_item(captree, hf_iapp_cap_forwarding, tvb, offset, 1, ENC_NA);
    proto_tree_add_item(captree, hf_iapp_cap_wep, tvb, offset, 1, ENC_NA);
}

static void
add_authval_str(proto_tree *tree, int type, int len, tvbuff_t *tvb, int offset)
{
    int val;

    switch (type)
    {
        case IAPP_AUTH_STATUS:
            val = tvb_get_uint8(tvb, offset);
            proto_tree_add_uint_format_value(tree, hf_iapp_auth_status, tvb, offset, 1, val, "%s", val ? "Authenticated" : "Not authenticated");
            break;
        case IAPP_AUTH_USERNAME:
        case IAPP_AUTH_PROVNAME:
            proto_tree_add_item(tree, hf_iapp_auth_string, tvb, offset, 1, ENC_ASCII);
            break;
        case IAPP_AUTH_RXPKTS:
        case IAPP_AUTH_TXPKTS:
        case IAPP_AUTH_RXBYTES:
        case IAPP_AUTH_TXBYTES:
        case IAPP_AUTH_RXGWORDS:
        case IAPP_AUTH_TXGWORDS:
        case IAPP_AUTH_VOLLIMIT:
            proto_tree_add_item(tree, hf_iapp_auth_uint, tvb, offset, 4, ENC_BIG_ENDIAN);
            break;
        case IAPP_AUTH_LOGINTIME:
        case IAPP_AUTH_TIMELIMIT:
        case IAPP_AUTH_ACCCYCLE:
            val = tvb_get_ntohl(tvb, offset);
            proto_tree_add_uint_format_value(tree, hf_iapp_auth_uint, tvb, offset, 4, val, "%d seconds", val);
            break;
        case IAPP_AUTH_IPADDR:
            proto_tree_add_item(tree, hf_iapp_auth_ipaddr, tvb, offset, 4, ENC_BIG_ENDIAN);
            break;
        case IAPP_AUTH_TRAILER:
            proto_tree_add_item(tree, hf_iapp_auth_trailer, tvb, offset, len, ENC_NA);
            break;
    }
}

/* dissect authentication info */

static void dissect_authinfo(proto_item *pitem, tvbuff_t *tvb, int offset, int sumlen)
{
    proto_tree *authtree, *value_tree;
    uint8_t pdu_type;
    uint16_t len;

    authtree = proto_item_add_subtree(pitem, ett_iapp_auth);

    while (sumlen > 0)
    {
        pdu_type = tvb_get_uint8(tvb, offset);
        len = tvb_get_ntohs(tvb, offset+1);

        value_tree = proto_tree_add_subtree_format(authtree, tvb, offset, len + 3,
            ett_iapp_authinfo, NULL, "%s (%d)",
            val_to_str_const(pdu_type, iapp_auth_type_vals, "Unknown PDU Type"),
            pdu_type);
        add_authval_str(value_tree, pdu_type, len, tvb, offset+3);

        sumlen -= (len + 3);
        offset += (len + 3);
    }
}

/* get displayable values of PDU contents */

static bool
append_pduval_str(proto_tree *tree, int type, int len, tvbuff_t *tvb, int offset,
    bool is_fhss)
{
    int val;

    switch (type)
    {
        case IAPP_PDU_SSID:
            proto_tree_add_item(tree, hf_iapp_pdu_ssid, tvb, offset, len, ENC_ASCII);
            break;
        case IAPP_PDU_BSSID:
        case IAPP_PDU_OLDBSSID:
        case IAPP_PDU_MSADDR:
            proto_tree_add_item(tree, hf_iapp_pdu_bytes, tvb, offset, len, ENC_NA);
            break;
        case IAPP_PDU_CAPABILITY:
            dissect_caps(tree, tvb, offset);
            break;
        case IAPP_PDU_ANNOUNCEINT:
            val = tvb_get_ntohs(tvb, offset);
            proto_tree_add_uint_format_value(tree, hf_iapp_pdu_uint, tvb, offset, 2, val, "%d seconds", val);
            break;
        case IAPP_PDU_HOTIMEOUT:
        case IAPP_PDU_BEACONINT:
            val = tvb_get_ntohs(tvb, offset);
            proto_tree_add_uint_format_value(tree, hf_iapp_pdu_uint, tvb, offset, 2, val, "%d Kus", val);
            break;
        case IAPP_PDU_MESSAGEID:
            proto_tree_add_item(tree, hf_iapp_pdu_uint, tvb, offset, 2, ENC_BIG_ENDIAN);
            break;
        case IAPP_PDU_PHYTYPE:
            proto_tree_add_item(tree, hf_iapp_pdu_phytype, tvb, offset, 1, ENC_BIG_ENDIAN);
            is_fhss = (tvb_get_uint8(tvb, offset) == IAPP_PHY_FHSS);
            break;
        case IAPP_PDU_REGDOMAIN:
            proto_tree_add_item(tree, hf_iapp_pdu_regdomain, tvb, offset, 1, ENC_BIG_ENDIAN);
            break;
        case IAPP_PDU_CHANNEL:
            if (is_fhss)
            {
                val = tvb_get_uint8(tvb, offset);
                proto_tree_add_uint_format(tree, hf_iapp_pdu_uint, tvb, offset, 1, val,
                        "Pattern set %d, sequence %d", ((val >> 6) & 3) + 1, (val & 31) + 1);
            }
            else
                proto_tree_add_item(tree, hf_iapp_pdu_uint, tvb, offset, 1, ENC_BIG_ENDIAN);
            break;
        case IAPP_PDU_OUIIDENT:
            proto_tree_add_item(tree, hf_iapp_pdu_oui_ident, tvb, offset, 3, ENC_BIG_ENDIAN);
            break;
    }
    return is_fhss;
}

/* code to dissect a list of PDUs */

static void
dissect_pdus(tvbuff_t *tvb, packet_info *pinfo, int offset, proto_tree *pdutree, proto_item *pduitem, int pdulen)
{
    uint8_t pdu_type;
    uint16_t len;
    proto_item *ti;
    bool is_fhss;
    proto_tree *subtree;

    if (!pdulen)
    {
        expert_add_info(pinfo, pduitem, &ei_iapp_no_pdus);
        return;
    }

    is_fhss = false;
    while (pdulen > 0)
    {
        pdu_type = tvb_get_uint8(tvb, offset);
        len = tvb_get_ntohs(tvb, offset+1);

        subtree = proto_tree_add_subtree_format(pdutree, tvb, offset, len + 3,
            ett_iapp_subpdu, &ti, "%s (%d)",
            val_to_str_const(pdu_type, iapp_pdu_type_vals, "Unknown PDU Type"),
            pdu_type);
        is_fhss = append_pduval_str(subtree, pdu_type, len, tvb,
            offset+3, is_fhss);

        if (pdu_type == IAPP_PDU_AUTHINFO)
            dissect_authinfo(ti, tvb, offset + 3, len);

        pdulen -= (len + 3);
        offset += (len + 3);
    }
}

/* code to dissect an IAPP packet */
static int
dissect_iapp(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void* data _U_)
{
    proto_item *ti, *pduitem;
    proto_tree *iapp_tree, *pdutree;
    uint8_t ia_version;
    uint8_t ia_type;
    const char *codestrval;

    col_set_str(pinfo->cinfo, COL_PROTOCOL, "IAPP");

    col_clear(pinfo->cinfo, COL_INFO);

    ia_version = tvb_get_uint8(tvb, 0);
    ia_type = tvb_get_uint8(tvb, 1);

    codestrval = val_to_str_const(ia_type, iapp_vals, "Unknown Packet");
    col_add_fstr(pinfo->cinfo, COL_INFO, "%s(%d) (version=%d)", codestrval, ia_type, ia_version);

    ti = proto_tree_add_item(tree, proto_iapp, tvb, 0, -1, ENC_NA);
    iapp_tree = proto_item_add_subtree(ti, ett_iapp);

    /* common header for all IAPP frames */

    proto_tree_add_item(iapp_tree, hf_iapp_version, tvb, 0, 1, ENC_BIG_ENDIAN);
    proto_tree_add_item(iapp_tree, hf_iapp_type, tvb, 1, 1, ENC_BIG_ENDIAN);

    pdutree = proto_tree_add_subtree(iapp_tree, tvb, 2, -1,
            ett_iapp_pdu, &pduitem, "Protocol data units");

    dissect_pdus(tvb, pinfo, 2, pdutree, pduitem,
            tvb_captured_length_remaining(tvb, 2));

    return tvb_captured_length(tvb);
}


/* Register the protocol with Wireshark */

/* this format is require because a script is used to build the C function
   that calls all the protocol registration.
*/

void
proto_register_iapp(void)
{

    static hf_register_info hf[] = {
        { &hf_iapp_version,
            { "Version", "iapp.version", FT_UINT8, BASE_DEC, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_type,
            { "Type", "iapp.type", FT_UINT8, BASE_DEC, VALS(iapp_vals), 0x00, NULL, HFILL }
        },
        { &hf_iapp_cap_forwarding,
            { "Forwarding", "iapp.cap.forwarding", FT_BOOLEAN, 8, TFS(&tfs_yes_no), IAPP_CAP_FORWARDING, NULL, HFILL }
        },
        { &hf_iapp_cap_wep,
            { "WEP", "iapp.cap.wep", FT_BOOLEAN, 8, TFS(&tfs_yes_no), IAPP_CAP_WEP, NULL, HFILL }
        },
        { &hf_iapp_auth_status,
            { "Status", "iapp.auth.status", FT_UINT8, BASE_DEC, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_auth_uint,
            { "Value", "iapp.auth.uint", FT_UINT32, BASE_DEC, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_auth_string,
            { "Value", "iapp.auth.string", FT_STRING, BASE_NONE, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_auth_ipaddr,
            { "IP Address", "iapp.auth.ipaddr", FT_IPv4, BASE_NONE, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_auth_trailer,
            { "Trailer", "iapp.auth.trailer", FT_BYTES, BASE_NONE, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_pdu_ssid,
            { "SSID", "iapp.pdu.ssid", FT_STRING, BASE_NONE, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_pdu_bytes,
            { "Value", "iapp.pdu.bytes", FT_BYTES, BASE_NONE, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_pdu_uint,
            { "Value", "iapp.pdu.uint", FT_UINT32, BASE_DEC, NULL, 0x00, NULL, HFILL }
        },
        { &hf_iapp_pdu_phytype,
            { "PHY Type", "iapp.pdu.phytype", FT_UINT8, BASE_DEC, VALS(iapp_phy_vals), 0x00, NULL, HFILL }
        },
        { &hf_iapp_pdu_regdomain,
            { "Reg domain", "iapp.pdu.regdomain", FT_UINT8, BASE_DEC, VALS(iapp_dom_vals), 0x00, NULL, HFILL }
        },
        { &hf_iapp_pdu_oui_ident,
            { "OUI", "iapp.pdu.oui_ident", FT_UINT24, BASE_OUI, NULL, 0x00, NULL, HFILL }
        },
    };

    static int *ett[] = {
        &ett_iapp,
        &ett_iapp_pdu,
        &ett_iapp_subpdu,
        &ett_iapp_cap,
        &ett_iapp_auth,
        &ett_iapp_authinfo
    };

    static ei_register_info ei[] = {
        { &ei_iapp_no_pdus, { "iapp.no_pdus", PI_PROTOCOL, PI_NOTE, "No PDUs found", EXPFILL }},
    };

    expert_module_t* expert_iapp;

/* Register the protocol name and description */
    proto_iapp = proto_register_protocol("Inter-Access-Point Protocol", "IAPP", "iapp");

/* Required function calls to register the header fields and subtrees used */
    proto_register_field_array(proto_iapp, hf, array_length(hf));
    proto_register_subtree_array(ett, array_length(ett));
    expert_iapp = expert_register_protocol(proto_iapp);
    expert_register_field_array(expert_iapp, ei, array_length(ei));

    iapp_handle = register_dissector("iapp", dissect_iapp, proto_iapp);
}


/* If this dissector uses sub-dissector registration add a registration routine.
   This format is required because a script is used to find these routines and
   create the code that calls these routines.
*/
void
proto_reg_handoff_iapp(void)
{
    dissector_add_uint_with_preference("udp.port", UDP_PORT_IAPP, iapp_handle);
}
/*
 * Editor modelines  -  https://www.wireshark.org/tools/modelines.html
 *
 * Local variables:
 * c-basic-offset: 4
 * tab-width: 8
 * indent-tabs-mode: nil
 * End:
 *
 * vi: set shiftwidth=4 tabstop=8 expandtab:
 * :indentSize=4:tabSize=8:noTabs=true:
 */

Coverage Report

Created: 2026-01-02 06:13

Line	Count	Source
1		/* packet-iapp.c
2		* Routines for IAPP dissection
3		* Copyright 2002, Alfred Arnold <aarnold@elsa.de>
4		*
5		* Wireshark - Network traffic analyzer
6		* By Gerald Combs <gerald@wireshark.org>
7		* Copyright 1998 Gerald Combs
8		*
9		* SPDX-License-Identifier: GPL-2.0-or-later
10		*/
11
12		#include "config.h"
13
14		#include <epan/packet.h>
15		#include <epan/expert.h>
16		#include <epan/tfs.h>
17		#include <wsutil/array.h>
18
19		void proto_register_iapp(void);
20		void proto_reg_handoff_iapp(void);
21
22		static dissector_handle_t iapp_handle;
23
24		/* Initialize the protocol and registered fields */
25		static int proto_iapp;
26		static int hf_iapp_version;
27		static int hf_iapp_type;
28		static int hf_iapp_cap_forwarding;
29		static int hf_iapp_cap_wep;
30		static int hf_iapp_auth_status;
31		static int hf_iapp_auth_string;
32		static int hf_iapp_auth_uint;
33		static int hf_iapp_auth_ipaddr;
34		static int hf_iapp_auth_trailer;
35		static int hf_iapp_pdu_ssid;
36		static int hf_iapp_pdu_bytes;
37		static int hf_iapp_pdu_uint;
38		static int hf_iapp_pdu_phytype;
39		static int hf_iapp_pdu_regdomain;
40		static int hf_iapp_pdu_oui_ident;
41
42		/* Initialize the subtree pointers */
43		static int ett_iapp;
44		static int ett_iapp_pdu;
45		static int ett_iapp_subpdu;
46		static int ett_iapp_cap;
47		static int ett_iapp_auth;
48		static int ett_iapp_authinfo;
49
50		static expert_field ei_iapp_no_pdus;
51
52	14	#define UDP_PORT_IAPP 2313
53
54		#define IAPP_ANNOUNCE_REQUEST 0
55		#define IAPP_ANNOUNCE_RESPONSE 1
56		#define IAPP_HANDOVER_REQUEST 2
57		#define IAPP_HANDOVER_RESPONSE 3
58
59	111	#define IAPP_PDU_SSID 0
60	3	#define IAPP_PDU_BSSID 1
61	4	#define IAPP_PDU_OLDBSSID 2
62	5	#define IAPP_PDU_MSADDR 3
63	3	#define IAPP_PDU_CAPABILITY 4
64	1	#define IAPP_PDU_ANNOUNCEINT 5
65	2	#define IAPP_PDU_HOTIMEOUT 6
66	1	#define IAPP_PDU_MESSAGEID 7
67	2	#define IAPP_PDU_PHYTYPE 0x10
68	1	#define IAPP_PDU_REGDOMAIN 0x11
69	1	#define IAPP_PDU_CHANNEL 0x12
70	3	#define IAPP_PDU_BEACONINT 0x13
71	1	#define IAPP_PDU_OUIIDENT 0x80
72	173	#define IAPP_PDU_AUTHINFO 0x81
73
74	14	#define IAPP_CAP_FORWARDING 0x40
75	14	#define IAPP_CAP_WEP 0x20
76
77		#define IAPP_PHY_PROP 0x00
78	2	#define IAPP_PHY_FHSS 0x01
79		#define IAPP_PHY_DSSS 0x02
80		#define IAPP_PHY_IR 0x03
81		#define IAPP_PHY_OFDM 0x04
82
83		#define IAPP_DOM_FCC 0x10
84		#define IAPP_DOM_IC 0x20
85		#define IAPP_DOM_ETSI 0x30
86		#define IAPP_DOM_SPAIN 0x31
87		#define IAPP_DOM_FRANCE 0x32
88		#define IAPP_DOM_MKK 0x40
89
90	2	#define IAPP_AUTH_STATUS 0x01
91	1	#define IAPP_AUTH_USERNAME 0x02
92	2	#define IAPP_AUTH_PROVNAME 0x03
93	0	#define IAPP_AUTH_RXPKTS 0x04
94	1	#define IAPP_AUTH_TXPKTS 0x05
95	1	#define IAPP_AUTH_RXBYTES 0x06
96	1	#define IAPP_AUTH_TXBYTES 0x07
97	2	#define IAPP_AUTH_LOGINTIME 0x08
98	3	#define IAPP_AUTH_TIMELIMIT 0x09
99	2	#define IAPP_AUTH_VOLLIMIT 0x0a
100	3	#define IAPP_AUTH_ACCCYCLE 0x0b
101	1	#define IAPP_AUTH_RXGWORDS 0x0c
102	2	#define IAPP_AUTH_TXGWORDS 0x0d
103	0	#define IAPP_AUTH_IPADDR 0x0e
104	1	#define IAPP_AUTH_TRAILER 0xff
105
106		static const value_string iapp_vals[] = {
107		{IAPP_ANNOUNCE_REQUEST, "Announce Request"},
108		{IAPP_ANNOUNCE_RESPONSE, "Announce Response"},
109		{IAPP_HANDOVER_REQUEST, "Handover Request"},
110		{IAPP_HANDOVER_RESPONSE, "Handover Response"},
111		{0, NULL}
112		};
113
114		static const value_string iapp_pdu_type_vals[] = {
115		{IAPP_PDU_SSID, "Network Name"},
116		{IAPP_PDU_BSSID, "BSSID"},
117		{IAPP_PDU_OLDBSSID, "Old BSSID"},
118		{IAPP_PDU_MSADDR, "Mobile Station Address"},
119		{IAPP_PDU_CAPABILITY, "Capabilities"},
120		{IAPP_PDU_ANNOUNCEINT, "Announce Interval"},
121		{IAPP_PDU_HOTIMEOUT, "Handover Timeout"},
122		{IAPP_PDU_MESSAGEID, "Message ID"},
123		{IAPP_PDU_PHYTYPE, "PHY Type"},
124		{IAPP_PDU_REGDOMAIN, "Regulatory Domain"},
125		{IAPP_PDU_CHANNEL, "Radio Channel"},
126		{IAPP_PDU_BEACONINT, "Beacon Interval"},
127		{IAPP_PDU_OUIIDENT, "OUI Identifier"},
128		{IAPP_PDU_AUTHINFO, "ELSA Authentication Info"},
129		{0, NULL}
130		};
131
132		static const value_string iapp_phy_vals[] = {
133		{IAPP_PHY_PROP, "Proprietary"},
134		{IAPP_PHY_FHSS, "FHSS"},
135		{IAPP_PHY_DSSS, "DSSS"},
136		{IAPP_PHY_IR, "Infrared"},
137		{IAPP_PHY_OFDM, "OFDM"},
138		{0, NULL}
139		};
140
141		static const value_string iapp_dom_vals[] = {
142		{IAPP_DOM_FCC, "FCC (USA)"},
143		{IAPP_DOM_IC, "IC (Canada)"},
144		{IAPP_DOM_ETSI, "ETSI (Europe)"},
145		{IAPP_DOM_SPAIN, "Spain"},
146		{IAPP_DOM_FRANCE, "France"},
147		{IAPP_DOM_MKK, "MKK (Japan)"},
148		{0, NULL}
149		};
150
151		static const value_string iapp_auth_type_vals[] = {
152		{IAPP_AUTH_STATUS, "Status"},
153		{IAPP_AUTH_USERNAME, "User Name"},
154		{IAPP_AUTH_PROVNAME, "Provider Name"},
155		{IAPP_AUTH_RXPKTS, "Received Packets"},
156		{IAPP_AUTH_TXPKTS, "Transmitted Packets"},
157		{IAPP_AUTH_RXBYTES, "Received Octets"},
158		{IAPP_AUTH_TXBYTES, "Transmitted Octets"},
159		{IAPP_AUTH_LOGINTIME, "Session Time"},
160		{IAPP_AUTH_TIMELIMIT, "Time Limit"},
161		{IAPP_AUTH_VOLLIMIT, "Volume Limit"},
162		{IAPP_AUTH_ACCCYCLE, "Accounting Cycle"},
163		{IAPP_AUTH_TRAILER, "Authenticator"},
164		{IAPP_AUTH_RXGWORDS, "Received Gigawords"},
165		{IAPP_AUTH_TXGWORDS, "Transmitted Gigawords"},
166		{IAPP_AUTH_IPADDR, "Client IP Address"},
167		{0, NULL}
168		};
169
170
171		/* dissect a capability bit field */
172
173		static void dissect_caps(proto_tree tree, tvbuff_t tvb, int offset)
174	3	{
175	3	proto_tree *captree;
176
177	3	captree = proto_tree_add_subtree(tree, tvb, offset, 1, ett_iapp_cap, NULL, "Capabilities");
178	3	proto_tree_add_item(captree, hf_iapp_cap_forwarding, tvb, offset, 1, ENC_NA);
179	3	proto_tree_add_item(captree, hf_iapp_cap_wep, tvb, offset, 1, ENC_NA);
180	3	}
181
182		static void
183		add_authval_str(proto_tree tree, int type, int len, tvbuff_t tvb, int offset)
184	135	{
185	135	int val;
186
187	135	switch (type)
188	135	{
189	2	case IAPP_AUTH_STATUS:
190	2	val = tvb_get_uint8(tvb, offset);
191	2	proto_tree_add_uint_format_value(tree, hf_iapp_auth_status, tvb, offset, 1, val, "%s", val ? "Authenticated" : "Not authenticated");
192	2	break;
193	1	case IAPP_AUTH_USERNAME:
194	2	case IAPP_AUTH_PROVNAME:
195	2	proto_tree_add_item(tree, hf_iapp_auth_string, tvb, offset, 1, ENC_ASCII);
196	2	break;
197	0	case IAPP_AUTH_RXPKTS:
198	1	case IAPP_AUTH_TXPKTS:
199	1	case IAPP_AUTH_RXBYTES:
200	1	case IAPP_AUTH_TXBYTES:
201	1	case IAPP_AUTH_RXGWORDS:
202	2	case IAPP_AUTH_TXGWORDS:
203	2	case IAPP_AUTH_VOLLIMIT:
204	2	proto_tree_add_item(tree, hf_iapp_auth_uint, tvb, offset, 4, ENC_BIG_ENDIAN);
205	2	break;
206	2	case IAPP_AUTH_LOGINTIME:
207	3	case IAPP_AUTH_TIMELIMIT:
208	3	case IAPP_AUTH_ACCCYCLE:
209	3	val = tvb_get_ntohl(tvb, offset);
210	3	proto_tree_add_uint_format_value(tree, hf_iapp_auth_uint, tvb, offset, 4, val, "%d seconds", val);
211	3	break;
212	0	case IAPP_AUTH_IPADDR:
213	0	proto_tree_add_item(tree, hf_iapp_auth_ipaddr, tvb, offset, 4, ENC_BIG_ENDIAN);
214	0	break;
215	1	case IAPP_AUTH_TRAILER:
216	1	proto_tree_add_item(tree, hf_iapp_auth_trailer, tvb, offset, len, ENC_NA);
217	1	break;
218	135	}
219	135	}
220
221		/* dissect authentication info */
222
223		static void dissect_authinfo(proto_item pitem, tvbuff_t tvb, int offset, int sumlen)
224	14	{
225	14	proto_tree authtree, value_tree;
226	14	uint8_t pdu_type;
227	14	uint16_t len;
228
229	14	authtree = proto_item_add_subtree(pitem, ett_iapp_auth);
230
231	157	while (sumlen > 0)
232	143	{
233	143	pdu_type = tvb_get_uint8(tvb, offset);
234	143	len = tvb_get_ntohs(tvb, offset+1);
235
236	143	value_tree = proto_tree_add_subtree_format(authtree, tvb, offset, len + 3,
237	143	ett_iapp_authinfo, NULL, "%s (%d)",
238	143	val_to_str_const(pdu_type, iapp_auth_type_vals, "Unknown PDU Type"),
239	143	pdu_type);
240	143	add_authval_str(value_tree, pdu_type, len, tvb, offset+3);
241
242	143	sumlen -= (len + 3);
243	143	offset += (len + 3);
244	143	}
245	14	}
246
247		/* get displayable values of PDU contents */
248
249		static bool
250		append_pduval_str(proto_tree tree, int type, int len, tvbuff_t tvb, int offset,
251		bool is_fhss)
252	171	{
253	171	int val;
254
255	171	switch (type)
256	171	{
257	111	case IAPP_PDU_SSID:
258	111	proto_tree_add_item(tree, hf_iapp_pdu_ssid, tvb, offset, len, ENC_ASCII);
259	111	break;
260	3	case IAPP_PDU_BSSID:
261	4	case IAPP_PDU_OLDBSSID:
262	5	case IAPP_PDU_MSADDR:
263	5	proto_tree_add_item(tree, hf_iapp_pdu_bytes, tvb, offset, len, ENC_NA);
264	5	break;
265	3	case IAPP_PDU_CAPABILITY:
266	3	dissect_caps(tree, tvb, offset);
267	3	break;
268	1	case IAPP_PDU_ANNOUNCEINT:
269	1	val = tvb_get_ntohs(tvb, offset);
270	1	proto_tree_add_uint_format_value(tree, hf_iapp_pdu_uint, tvb, offset, 2, val, "%d seconds", val);
271	1	break;
272	2	case IAPP_PDU_HOTIMEOUT:
273	3	case IAPP_PDU_BEACONINT:
274	3	val = tvb_get_ntohs(tvb, offset);
275	3	proto_tree_add_uint_format_value(tree, hf_iapp_pdu_uint, tvb, offset, 2, val, "%d Kus", val);
276	3	break;
277	1	case IAPP_PDU_MESSAGEID:
278	1	proto_tree_add_item(tree, hf_iapp_pdu_uint, tvb, offset, 2, ENC_BIG_ENDIAN);
279	1	break;
280	2	case IAPP_PDU_PHYTYPE:
281	2	proto_tree_add_item(tree, hf_iapp_pdu_phytype, tvb, offset, 1, ENC_BIG_ENDIAN);
282	2	is_fhss = (tvb_get_uint8(tvb, offset) == IAPP_PHY_FHSS);
283	2	break;
284	1	case IAPP_PDU_REGDOMAIN:
285	1	proto_tree_add_item(tree, hf_iapp_pdu_regdomain, tvb, offset, 1, ENC_BIG_ENDIAN);
286	1	break;
287	1	case IAPP_PDU_CHANNEL:
288	1	if (is_fhss)
289	0	{
290	0	val = tvb_get_uint8(tvb, offset);
291	0	proto_tree_add_uint_format(tree, hf_iapp_pdu_uint, tvb, offset, 1, val,
292	0	"Pattern set %d, sequence %d", ((val >> 6) & 3) + 1, (val & 31) + 1);
293	0	}
294	1	else
295	1	proto_tree_add_item(tree, hf_iapp_pdu_uint, tvb, offset, 1, ENC_BIG_ENDIAN);
296	1	break;
297	1	case IAPP_PDU_OUIIDENT:
298	1	proto_tree_add_item(tree, hf_iapp_pdu_oui_ident, tvb, offset, 3, ENC_BIG_ENDIAN);
299	1	break;
300	171	}
301	160	return is_fhss;
302	171	}
303
304		/* code to dissect a list of PDUs */
305
306		static void
307		dissect_pdus(tvbuff_t tvb, packet_info pinfo, int offset, proto_tree pdutree, proto_item pduitem, int pdulen)
308	44	{
309	44	uint8_t pdu_type;
310	44	uint16_t len;
311	44	proto_item *ti;
312	44	bool is_fhss;
313	44	proto_tree *subtree;
314
315	44	if (!pdulen)
316	1	{
317	1	expert_add_info(pinfo, pduitem, &ei_iapp_no_pdus);
318	1	return;
319	1	}
320
321	43	is_fhss = false;
322	216	while (pdulen > 0)
323	173	{
324	173	pdu_type = tvb_get_uint8(tvb, offset);
325	173	len = tvb_get_ntohs(tvb, offset+1);
326
327	173	subtree = proto_tree_add_subtree_format(pdutree, tvb, offset, len + 3,
328	173	ett_iapp_subpdu, &ti, "%s (%d)",
329	173	val_to_str_const(pdu_type, iapp_pdu_type_vals, "Unknown PDU Type"),
330	173	pdu_type);
331	173	is_fhss = append_pduval_str(subtree, pdu_type, len, tvb,
332	173	offset+3, is_fhss);
333
334	173	if (pdu_type == IAPP_PDU_AUTHINFO)
335	14	dissect_authinfo(ti, tvb, offset + 3, len);
336
337	173	pdulen -= (len + 3);
338	173	offset += (len + 3);
339	173	}
340	43	}
341
342		/* code to dissect an IAPP packet */
343		static int
344		dissect_iapp(tvbuff_t tvb, packet_info pinfo, proto_tree tree, void data _U_)
345	45	{
346	45	proto_item ti, pduitem;
347	45	proto_tree iapp_tree, pdutree;
348	45	uint8_t ia_version;
349	45	uint8_t ia_type;
350	45	const char *codestrval;
351
352	45	col_set_str(pinfo->cinfo, COL_PROTOCOL, "IAPP");
353
354	45	col_clear(pinfo->cinfo, COL_INFO);
355
356	45	ia_version = tvb_get_uint8(tvb, 0);
357	45	ia_type = tvb_get_uint8(tvb, 1);
358
359	45	codestrval = val_to_str_const(ia_type, iapp_vals, "Unknown Packet");
360	45	col_add_fstr(pinfo->cinfo, COL_INFO, "%s(%d) (version=%d)", codestrval, ia_type, ia_version);
361
362	45	ti = proto_tree_add_item(tree, proto_iapp, tvb, 0, -1, ENC_NA);
363	45	iapp_tree = proto_item_add_subtree(ti, ett_iapp);
364
365		/* common header for all IAPP frames */
366
367	45	proto_tree_add_item(iapp_tree, hf_iapp_version, tvb, 0, 1, ENC_BIG_ENDIAN);
368	45	proto_tree_add_item(iapp_tree, hf_iapp_type, tvb, 1, 1, ENC_BIG_ENDIAN);
369
370	45	pdutree = proto_tree_add_subtree(iapp_tree, tvb, 2, -1,
371	45	ett_iapp_pdu, &pduitem, "Protocol data units");
372
373	45	dissect_pdus(tvb, pinfo, 2, pdutree, pduitem,
374	45	tvb_captured_length_remaining(tvb, 2));
375
376	45	return tvb_captured_length(tvb);
377	45	}
378
379
380		/* Register the protocol with Wireshark */
381
382		/* this format is require because a script is used to build the C function
383		that calls all the protocol registration.
384		*/
385
386		void
387		proto_register_iapp(void)
388	14	{
389
390	14	static hf_register_info hf[] = {
391	14	{ &hf_iapp_version,
392	14	{ "Version", "iapp.version", FT_UINT8, BASE_DEC, NULL, 0x00, NULL, HFILL }
393	14	},
394	14	{ &hf_iapp_type,
395	14	{ "Type", "iapp.type", FT_UINT8, BASE_DEC, VALS(iapp_vals), 0x00, NULL, HFILL }
396	14	},
397	14	{ &hf_iapp_cap_forwarding,
398	14	{ "Forwarding", "iapp.cap.forwarding", FT_BOOLEAN, 8, TFS(&tfs_yes_no), IAPP_CAP_FORWARDING, NULL, HFILL }
399	14	},
400	14	{ &hf_iapp_cap_wep,
401	14	{ "WEP", "iapp.cap.wep", FT_BOOLEAN, 8, TFS(&tfs_yes_no), IAPP_CAP_WEP, NULL, HFILL }
402	14	},
403	14	{ &hf_iapp_auth_status,
404	14	{ "Status", "iapp.auth.status", FT_UINT8, BASE_DEC, NULL, 0x00, NULL, HFILL }
405	14	},
406	14	{ &hf_iapp_auth_uint,
407	14	{ "Value", "iapp.auth.uint", FT_UINT32, BASE_DEC, NULL, 0x00, NULL, HFILL }
408	14	},
409	14	{ &hf_iapp_auth_string,
410	14	{ "Value", "iapp.auth.string", FT_STRING, BASE_NONE, NULL, 0x00, NULL, HFILL }
411	14	},
412	14	{ &hf_iapp_auth_ipaddr,
413	14	{ "IP Address", "iapp.auth.ipaddr", FT_IPv4, BASE_NONE, NULL, 0x00, NULL, HFILL }
414	14	},
415	14	{ &hf_iapp_auth_trailer,
416	14	{ "Trailer", "iapp.auth.trailer", FT_BYTES, BASE_NONE, NULL, 0x00, NULL, HFILL }
417	14	},
418	14	{ &hf_iapp_pdu_ssid,
419	14	{ "SSID", "iapp.pdu.ssid", FT_STRING, BASE_NONE, NULL, 0x00, NULL, HFILL }
420	14	},
421	14	{ &hf_iapp_pdu_bytes,
422	14	{ "Value", "iapp.pdu.bytes", FT_BYTES, BASE_NONE, NULL, 0x00, NULL, HFILL }
423	14	},
424	14	{ &hf_iapp_pdu_uint,
425	14	{ "Value", "iapp.pdu.uint", FT_UINT32, BASE_DEC, NULL, 0x00, NULL, HFILL }
426	14	},
427	14	{ &hf_iapp_pdu_phytype,
428	14	{ "PHY Type", "iapp.pdu.phytype", FT_UINT8, BASE_DEC, VALS(iapp_phy_vals), 0x00, NULL, HFILL }
429	14	},
430	14	{ &hf_iapp_pdu_regdomain,
431	14	{ "Reg domain", "iapp.pdu.regdomain", FT_UINT8, BASE_DEC, VALS(iapp_dom_vals), 0x00, NULL, HFILL }
432	14	},
433	14	{ &hf_iapp_pdu_oui_ident,
434	14	{ "OUI", "iapp.pdu.oui_ident", FT_UINT24, BASE_OUI, NULL, 0x00, NULL, HFILL }
435	14	},
436	14	};
437
438	14	static int *ett[] = {
439	14	&ett_iapp,
440	14	&ett_iapp_pdu,
441	14	&ett_iapp_subpdu,
442	14	&ett_iapp_cap,
443	14	&ett_iapp_auth,
444	14	&ett_iapp_authinfo
445	14	};
446
447	14	static ei_register_info ei[] = {
448	14	{ &ei_iapp_no_pdus, { "iapp.no_pdus", PI_PROTOCOL, PI_NOTE, "No PDUs found", EXPFILL }},
449	14	};
450
451	14	expert_module_t* expert_iapp;
452
453		/* Register the protocol name and description */
454	14	proto_iapp = proto_register_protocol("Inter-Access-Point Protocol", "IAPP", "iapp");
455
456		/* Required function calls to register the header fields and subtrees used */
457	14	proto_register_field_array(proto_iapp, hf, array_length(hf));
458	14	proto_register_subtree_array(ett, array_length(ett));
459	14	expert_iapp = expert_register_protocol(proto_iapp);
460	14	expert_register_field_array(expert_iapp, ei, array_length(ei));
461
462	14	iapp_handle = register_dissector("iapp", dissect_iapp, proto_iapp);
463	14	}
464
465
466		/* If this dissector uses sub-dissector registration add a registration routine.
467		This format is required because a script is used to find these routines and
468		create the code that calls these routines.
469		*/
470		void
471		proto_reg_handoff_iapp(void)
472	14	{
473	14	dissector_add_uint_with_preference("udp.port", UDP_PORT_IAPP, iapp_handle);
474	14	}
475		/*
476		* Editor modelines - https://www.wireshark.org/tools/modelines.html
477		*
478		* Local variables:
479		* c-basic-offset: 4
480		* tab-width: 8
481		* indent-tabs-mode: nil
482		* End:
483		*
484		* vi: set shiftwidth=4 tabstop=8 expandtab:
485		* :indentSize=4:tabSize=8:noTabs=true:
486		*/