aboutsummaryrefslogtreecommitdiffstats
path: root/doc
AgeCommit message (Collapse)AuthorFilesLines
2013-12-13Add a "captype" file that just reports the type of a capture file, basedGuy Harris1-0/+49
on what libwiretap thinks it is. Update some comments to reflect the death of the hack used to include (libwiretap) plugin support in programs not built with libwireshark. svn path=/trunk/; revision=54015
2013-12-11Improve tshark command-line error help. Fixes ↵Chris Maynard1-13/+21
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9548 and adds addtional help, better formatting, sorting and some minimal documentation of the -u option to the tshark man page. svn path=/trunk/; revision=53938
2013-12-08Add a reference to STR_ASCII and STR_UNICODEPascal Quantin1-0/+4
svn path=/trunk/; revision=53868
2013-12-02Specify SI units for the max filesize autostop condition. For now, keep the ↵Chris Maynard3-23/+23
capture buffer size in IEC units, but document it as such. #BACKPORT(1.10, 1.8(?)) svn path=/trunk/; revision=53728
2013-11-30Update documentation for tcp_dissect_pdus. Bug 9491 ↵Michael Mann1-11/+18
(https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9491) From Peter Wu: update to README.dissector From me: update to WSDG_chapter_dissection.xml svn path=/trunk/; revision=53678
2013-11-29Stats_tree enhancements for sorting, averages and burst rate. Bug 9452 ↵Michael Mann1-1/+36
(https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9452) From Deon van der Westhuysen - Bug fix: object leak in stats_tree after a tap reset (for example apply statistics preferences with a stats_tree window open) - Bug fix: correct sample code in README.stats_tree - Add: slash in plug-in name now creates submenu as docs describe (was a bug?) - Add: menu separator before the stat_tree registered plug-ins - Add: stats_tree can now calculate averages for nodes; automatically calculated for range nodes. Add section in README.stats_tree describing averages. - Add: stats_tree can now calculate burst rate of each node (like rate but with a shorter, sliding time window) - Add: sorting for stats_tree plug-ins. Can sort on node name, count, average, min, max values and burst rate. - Add: preferences for stats_tree system (default sort column, burst calc params) - Add: stats_tree window copy to clipboard and export and plain text, csv and XML. - Added sample of new functionality in $srcdir/plugins/stats_tree/pinfo_stats_tree.c - Moved all stats_tree sample plug-ins to "IP Statistics" submenu. svn path=/trunk/; revision=53657
2013-11-29Rename some of pint.h macros to match common style (bits number on the end).Jakub Zawadzki1-3/+3
pntohs -> pntoh16 pntohl -> pntoh32 pletohs -> pletoh16 pletohl -> pletoh32 phtons -> phton16 phtonl -> phton32 svn path=/trunk/; revision=53652
2013-11-14Update the guidelines a bit.Gerald Combs1-3/+13
svn path=/trunk/; revision=53331
2013-11-08Add reference to qttools5-dev in README.qt documentationAlexis La Goutte1-1/+1
There is following error message with cmake : CMake Warning at CMakeLists.txt:490 (find_package): By not providing "FindQt5LinguistTools.cmake" in CMAKE_MODULE_PATH this project has asked CMake to find a package configuration file provided by "Qt5LinguistTools", but CMake did not find one. Could not find a package configuration file provided by "Qt5LinguistTools" with any of the following names: Qt5LinguistToolsConfig.cmake qt5linguisttools-config.cmake Add the installation prefix of "Qt5LinguistTools" to CMAKE_PREFIX_PATH or set "Qt5LinguistTools_DIR" to a directory containing one of the above files. If "Qt5LinguistTools" provides a separate development package or SDK, be sure it has been installed. CMake Error at ui/qt/CMakeLists.txt:205 (QT5_ADD_TRANSLATION): Unknown CMake command "QT5_ADD_TRANSLATION". svn path=/trunk/; revision=53169
2013-11-06Add support for displaying dates as year and day-of-year (1-origin).Guy Harris3-30/+68
In the process, fix various man page descriptions of the -t flag, and add support for UTC absolute times in the iousers and iostat TShark taps. svn path=/trunk/; revision=53114
2013-11-01Remove a phrase which implies that tab widths other than 8 are OK.Bill Meier1-4/+4
svn path=/trunk/; revision=53030
2013-11-01Clarify which filter types can share the same namePascal Quantin1-0/+8
svn path=/trunk/; revision=53017
2013-10-30Add some documentation to hopefully help dissector writers avoid the problemJeff Morriss1-2/+3
in https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9323 : The string added to proto_tree_add_string*() must be NULL terminated. svn path=/trunk/; revision=52984
2013-10-27More SVN properties cleanup.Jeff Morriss1-1/+1
svn path=/trunk/; revision=52884
2013-10-25Sync up with packet-pana.c.Chris Maynard1-6/+6
svn path=/trunk/; revision=52852
2013-10-25wmemify.Chris Maynard1-10/+9
svn path=/trunk/; revision=52851
2013-10-23Add the ability to collapse subtrees with Shift+Left + additional menu ↵Michael Mann1-2/+2
items. Bug 9008 (https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9008). Currently this is only for GTK, but allows users to test it to see if its worth adding to Qt (my personal opinion is yes). From Jiří Engelthaler svn path=/trunk/; revision=52790
2013-10-15From Ed Beroset via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9272Chris Maynard1-13/+40
Add tshark -G column-formats report and document the missing ftypes, heuristic-decodes and plugins reports. From me: Sort the reports. Add modelines to epan/column.c. Minor whitespace changes. svn path=/trunk/; revision=52627
2013-10-13Subsume README.binarytrees into wmem doxygen. The README was out of dateEvan Huus5-248/+0
anyways, since Michael made key operations non-destructive in r44380. svn path=/trunk/; revision=52583
2013-10-09Make column "filter name" prefixed with _ws. to be the same as other "*shark ↵Michael Mann1-2/+2
application filters" created in r52462. svn path=/trunk/; revision=52474
2013-10-09Add some license headers after emailing the respective authors to confirm.Evan Huus1-0/+20
svn path=/trunk/; revision=52471
2013-10-06Add support for RELATIVE-OID ASN.1 type. Bug 9192 ↵Michael Mann2-3/+6
(https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9192) From Ed Beroset. svn path=/trunk/; revision=52393
2013-10-05Add a link to GammaRay.Gerald Combs1-0/+6
svn path=/trunk/; revision=52389
2013-09-26From beroset@mindspring.com:Anders Broman1-2/+2
removed obsolete references to se_alloc https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9194 svn path=/trunk/; revision=52224
2013-09-22More emem -> wmem conversion:Pascal Quantin1-24/+11
- tvb_get_g_stringz()/tvb_get_ephemeral_stringz()/tvb_get_seasonal_stringz() -> tvb_get_stringz() - tvb_get_g_stringz_enc()/tvb_get_ephemeral_stringz_enc() -> tvb_get_stringz_enc() - tvb_get_ephemeral_unicode_stringz() -> tvb_get_unicode_stringz() - tvb_bcd_dig_to_ep_str() -> tvb_bcd_dig_to_wmem_packet_str() - update docs accordingly svn path=/trunk/; revision=52180
2013-09-22emem -> wmem conversion:Pascal Quantin2-37/+11
- ep_tvb_get_bits() -> wmem_packet_tvb_get_bits() - tvb_g_memdup()/ep_tvb_memdup() -> tvb_memdup() - tvb_fake_unicode()/tvb_get_ephemeral_faked_unicode() -> tvb_get_faked_unicode() - tvb_get_g_string()/tvb_get_ephemeral_string()/tvb_get_seasonal_string() -> tvb_get_string() - tvb_get_g_unicode_string()/tvb_get_ephemeral_unicode_string() -> tvb_get_unicode_string() - tvb_get_ephemeral_string_enc() -> tvb_get_string_enc() - update docs accordingly svn path=/trunk/; revision=52172
2013-09-18Update dfilter-test.py to use a much more modern test harness,Gilbert Ramirez1-30/+36
the "unittest" module that comes with Python. Specifically, this takes advantage of a couple of features in the "unittest" in Python 2.7. The tests are all the same as before, but much better managed. This is in preparation for some work on the display filter code. svn path=/trunk/; revision=52136
2013-09-13Add WIRESHARK_APPDATA description to the rawshark and tshark man pages.Jeff Morriss2-0/+12
svn path=/trunk/; revision=52024
2013-09-13Allow an alternate application data location as specified by the new ↵Chris Maynard1-0/+6
environment variable, WIRESHARK_APPDATA (chosen instead of my originally proposed WS_APPDATA name since most other Wireshark-specific environment variables were already named with the WIRESHARK_ prefix). See also: http://www.wireshark.org/lists/wireshark-users/201309/msg00013.html svn path=/trunk/; revision=52022
2013-09-11Add a link to IANA's Assigned Internet Protocol Numbers page.Chris Maynard1-1/+3
svn path=/trunk/; revision=51950
2013-09-10Fix https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9116 :Pascal Quantin1-1/+2
README.stats_tree shows the wrong function parameters for stats_tree_register svn path=/trunk/; revision=51944
2013-09-09Replace the simpler chop example with a more detailed example.Chris Maynard1-4/+17
svn path=/trunk/; revision=51901
2013-09-09Fix typo.Chris Maynard1-2/+2
svn path=/trunk/; revision=51887
2013-09-09Fix the "crossed chopping region" problem. Also, move chopping to its own ↵Chris Maynard1-6/+14
function for both clarity and correctness since we need to compute chop offsets and lengths on a per-packet basis whereas previously this was not being done. Lastly, try to improve the documentation a bit concerning chopping and provide another example depicting 2 separate chopping regions. *Maybe* this is clearer? One more example here for posterity: Given the following 75 byte packet, there are 8 different ways to chop the 2 regions marked as 10 and 20 in a single pass: <--------------------------- 75 ----------------------------> +---+-------+-----------+---------------+-------------------+ | 5 | 10 | 15 | 20 | 25 | +---+-------+-----------+---------------+-------------------+ 1) editcap -C 5:10 -C -25:-20 in.pcap out.pcap 2) editcap -C 5:10 -C 50:-20 in.pcap out.pcap 3) editcap -C -70:10 -C -25:-20 in.pcap out.pcap 4) editcap -C -70:10 -C 50:-20 in.pcap out.pcap 5) editcap -C 30:20 -C -60:-10 in.pcap out.pcap 6) editcap -C 30:20 -C 15:-10 in.pcap out.pcap 7) editcap -C -45:20 -C -60:-10 in.pcap out.pcap 8) editcap -C -45:20 -C 15:-10 in.pcap out.pcap svn path=/trunk/; revision=51886
2013-09-09Update README.qt after last change in QtShark translations (Add Preferences ↵Alexis La Goutte1-1/+4
to select language) svn path=/trunk/; revision=51879
2013-09-09Add an example of filterable expert info.Michael Mann1-7/+22
Also cleanup references to README.developer that are now README.dissector. svn path=/trunk/; revision=51858
2013-09-09OK, allow either positive or negative offsets no matter if we're chopping ↵Chris Maynard1-2/+2
from the beginning or the end. Given the following example, it's now possible to chop the 10 bytes depicted from the 100 byte packet 4 different ways and achieve the exact same results: <-------- 100 --------> Methods: 1) editcap -C 20:10 in.pcap out.pcap +------+----+---------+ 2) editcap -C -80:10 in.pcap out.pcap | 20 | 10 | 70 | 3) editcap -C -70:-10 in.pcap out.pcap +------+----+---------+ 4) editcap -C 30:-10 in.pcap out.pcap svn path=/trunk/; revision=51854
2013-09-08Specify the optional offset as a positive value, regardless of chopping from ↵Chris Maynard1-3/+3
packet beginning or packet end. I *think* this will be easier syntax to remember. svn path=/trunk/; revision=51848
2013-09-08Allow an optional offset to be specified when chopping bytes from packets.Chris Maynard1-5/+14
svn path=/trunk/; revision=51845
2013-09-03Document the current state of naming in ui/qt. Say it's OK to use C++Gerald Combs2-5/+24
comments in C++ code. svn path=/trunk/; revision=51739
2013-08-29Handle the 2GiB boundary case of the max filesize autostop condition ↵Chris Maynard3-16/+17
properly so that we avoid overflow conditions and so that we ensure we don't capture more than 2GiB. Also, document the max filesize autostop value of 2GIB as well as indicating that it's truly GiB and not GB. This fixes the problem reported on ask: http://ask.wireshark.org/questions/23891/wireshark-wont-run-with-multiple-capture-files #BACKPORT(1.10) ... not sure about 1.8? svn path=/trunk/; revision=51576
2013-08-27Add TCP sequence number (Stevens-style) graphs.Gerald Combs1-1/+4
Add the QCustomPlot widget. Thanks to Emanuel Eichhammer for granting a license change. Move some common code from ui/gtk/tcp_graph.c to ui/tap-tcp-stream.[ch]. Get rid of tcp_graph_selected_packet_enabled(). It was only used in the menu code and didn't match what we were doing elsewhere. Still quite a bit of work to do but it's a promising start. svn path=/trunk/; revision=51538
2013-08-09Move the description of the -Y <displaY filter> option to maintain a proper ↵Chris Maynard1-15/+15
sort. svn path=/trunk/; revision=51238
2013-08-08Speak of the "-d encap:" value as a linktype, rather than a DLT; if aGuy Harris1-2/+3
name is specified, it currently must be a DLT_ name rather than a LINKTYPE_ name, as we use libpcap to do the mapping and it currently has no API to map LINKTYPE_ names to values, but if a number is specified, it could either be a LINKTYPE_ name or a DLT_ name if the two are different, and we want to encourage the use of LINKTYPE_ values. Note that in comments. svn path=/trunk/; revision=51204
2013-08-01add --capture-comment to tshark's manpageMartin Kaiser2-1/+9
fix a typo in the dumpcap manpage svn path=/trunk/; revision=51096
2013-07-29The argument to the -l flag to text2pcap is a LINKTYPE_ value, not aGuy Harris1-3/+3
DLT_ value, which is good because it's a numerical value and the numerical values for some link-layer header types are OS-dependent, but the numerical values for all LINKTYPE_ values are OS-independent. Use LINKTYPE_RAW, not the value for the DLT_RAW on some but not all OSes, for raw IP. Also, 7 is LINKTYPE_ARCNET_BSD, emphasis on the "_BSD"; there's also a Linux encapsulation for ARCNet that is different. Note that it's the BSD flavor. svn path=/trunk/; revision=51005
2013-07-28If a core Wireshark developer repeatedly can't remember that theGuy Harris8-43/+45
argument to the -F flag for pcap format is "libpcap", not "pcap", we have a problem. Make it "pcap", and add a backwards-compatibility hack to support using "libpcap" as well. Update the man pages to refer to it as pcap as well, and fix the capitalization of "WinPcap" (see http://www.winpcap.org) while we're at it. Also, refer to http://www.tcpdump.org/linktypes.html for the list of link-layer header types for pcap and pcap-ng. svn path=/trunk/; revision=50989
2013-07-27add --capture-comment to dumpcap's manpageMartin Kaiser1-0/+9
svn path=/trunk/; revision=50947
2013-07-26Document that pinfo-scoped memory is also needed for anything passed toEvan Huus1-4/+5
add_new_data_source(). svn path=/trunk/; revision=50911
2013-07-25Add a UAT dialog. Make UAT preferences uat_t * instead of void *.Gerald Combs1-12/+14
C++-ize the UAT headers. Add an ElidedLabel widget. Use it in the File Set, Profile, and UAT dialogs. Update the Qt README. svn path=/trunk/; revision=50896
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-18 11:26:47 +0000