2 * netsniff-ng - the packet sniffing beast
3 * Copyright 2012 Markus Amend <markus@netsniff-ng.org>, Deutsche Flugsicherung GmbH
4 * Subject to the GPL, version 2.
6 * IP Authentication Header described in RFC4302
11 #include <netinet/in.h> /* for ntohs() */
15 #include "dissector_eth.h"
20 uint8_t h_next_header
;
21 uint8_t h_payload_len
;
27 static void auth_hdr(struct pkt_buff
*pkt
)
31 struct auth_hdr
*auth_ops
;
33 auth_ops
= (struct auth_hdr
*) pkt_pull(pkt
, sizeof(*auth_ops
));
37 hdr_len
= (auth_ops
->h_payload_len
* 4) + 8;
39 tprintf(" [ Authentication Header ");
40 tprintf("NextHdr (%u), ", auth_ops
->h_next_header
);
41 if (hdr_len
> pkt_len(pkt
) || hdr_len
< 0){
42 tprintf("HdrLen (%u, %zd Bytes %s), ",
43 auth_ops
->h_payload_len
, hdr_len
,
44 colorize_start_full(black
, red
)
45 "invalid" colorize_end());
48 tprintf("HdrLen (%u, %zd Bytes), ",auth_ops
->h_payload_len
, hdr_len
);
49 tprintf("Reserved (0x%x), ", ntohs(auth_ops
->h_reserved
));
51 * Upgrade for Extended (64-bit) Sequence Number
52 * http://tools.ietf.org/html/rfc4302#section-2.5.1
54 tprintf("SPI (0x%x), ", ntohl(auth_ops
->h_spi
));
55 tprintf("SNF (0x%x), ", ntohl(auth_ops
->h_snf
));
57 for (i
= sizeof(struct auth_hdr
); i
< hdr_len
; i
++)
58 tprintf("%02x", *pkt_pull(pkt
, 1));
61 pkt_set_proto(pkt
, ð_lay3
, auth_ops
->h_next_header
);
64 static void auth_hdr_less(struct pkt_buff
*pkt
)
67 struct auth_hdr
*auth_ops
;
69 auth_ops
= (struct auth_hdr
*) pkt_pull(pkt
, sizeof(*auth_ops
));
73 hdr_len
= (auth_ops
->h_payload_len
* 4) + 8;
74 if (hdr_len
> pkt_len(pkt
) || hdr_len
< 0)
79 pkt_pull(pkt
, hdr_len
- sizeof(*auth_ops
));
80 pkt_set_proto(pkt
, ð_lay3
, auth_ops
->h_next_header
);
83 struct protocol ip_auth_ops
= {
85 .print_full
= auth_hdr
,
86 .print_less
= auth_hdr_less
,