1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
|
/* tap-sequence-analysis.h
* Flow sequence analysis
*
* Copied from gtk/graph_analysis.h
*
* Copyright 2004, Verso Technologies Inc.
* By Alejandro Vaquero <alejandrovaquero@yahoo.com>
*
* based on rtp_analysis.c and io_stat
*
*
* Wireshark - Network traffic analyzer
* By Gerald Combs <gerald@wireshark.org>
* Copyright 1998 Gerald Combs
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation; either version 2
* of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
*/
#ifndef __TAP_SEQUENCE_ANALYSIS_H__
#define __TAP_SEQUENCE_ANALYSIS_H__
#include <glib.h>
#include "cfile.h"
#include "epan/address.h"
#ifdef __cplusplus
extern "C" {
#endif /* __cplusplus */
#define MAX_NUM_NODES 40
typedef enum seq_analysis_type_ {
SEQ_ANALYSIS_ANY,
SEQ_ANALYSIS_TCP,
SEQ_ANALYSIS_VOIP
} seq_analysis_type;
/** defines an entry for the graph analysis */
typedef struct _seq_analysis_item {
frame_data *fd; /**< Holds the frame number and time information */
address src_addr;
guint16 port_src;
address dst_addr;
guint16 port_dst;
gchar *frame_label; /**< the label on top of the arrow */
gchar *time_str; /**< timestamp */
gchar *comment; /**< a comment that appears at the right of the graph */
guint16 conv_num; /**< the conversation number, each conversation will be colored */
gboolean display; /**< indicate if the packet is displayed or not in the graph */
guint src_node; /**< this is used by graph_analysis.c to identify the node */
guint dst_node; /**< a node is an IP address that will be displayed in columns */
guint16 line_style; /**< the arrow line width in pixels*/
gchar *protocol; /**< the label of the protocol defined in the IP packet */
} seq_analysis_item_t;
/** defines the graph analysis structure */
typedef struct _seq_analysis_info {
seq_analysis_type type; /**< sequence type */
gboolean all_packets; /**< all packets vs only displayed */
gboolean any_addr; /**< any addr (DL+net) vs net-only */
int nconv; /**< number of conversations in the list */
GQueue* items; /**< list of seq_analysis_info_t */
GHashTable *ht; /**< hash table of seq_analysis_info_t */
address nodes[MAX_NUM_NODES]; /**< horizontal node list */
guint32 num_nodes; /**< actual number of nodes */
} seq_analysis_info_t;
#if 0
#ifdef _MSC_VER
#define _ws_func_ __FUNCTION__
#else
#define _ws_func_ __func__
#endif
#define SEQ_ANALYSIS_DEBUG(...) { \
char *SEQ_ANALYSIS_DEBUG_MSG = g_strdup_printf(__VA_ARGS__); \
g_warning("sequence analysis: %s:%d %s", _ws_func_, __LINE__, SEQ_ANALYSIS_DEBUG_MSG); \
g_free(SEQ_ANALYSIS_DEBUG_MSG); \
}
#else
#define SEQ_ANALYSIS_DEBUG()
#endif
/** Create and initialize a seq_analysis_info_t struct
* @return A pointer to a newly allocated seq_analysis_info_t struct.
*/
seq_analysis_info_t *sequence_analysis_info_new(void);
/** Free a seq_analysis_info_t struct.
* @param sainfo A pointer to the seq_analysis_info_t struct to be freed.
*/
void sequence_analysis_info_free(seq_analysis_info_t * sainfo);
/** Fill in the segment list for sequence analysis
*
* @param cf Capture file to scan
* @param sainfo Sequence analysis information. A valid type must be set.
*/
void sequence_analysis_list_get(capture_file *cf, seq_analysis_info_t *sainfo);
void sequence_analysis_list_sort(seq_analysis_info_t *sainfo);
/** Free the segment list
*
* @param sainfo Sequence analysis information.
*/
void sequence_analysis_list_free(seq_analysis_info_t *sainfo);
/** Fill in the node address list
*
* @param sainfo Sequence analysis information.
* @return The number of transaction items (not nodes) processed.
*/
int sequence_analysis_get_nodes(seq_analysis_info_t *sainfo);
/** Write an ASCII version of the sequence diagram to a file.
*
* @param pathname Pathname of the file to write.
* @param sainfo Sequence analysis information.
* @param cf Capture file associated with the diagram.
* @param first_node Start drawing at this node.
* @return TRUE on success, FALSE on failure.
*/
gboolean sequence_analysis_dump_to_file(const char *pathname, seq_analysis_info_t *sainfo, capture_file *cf, unsigned int first_node);
#ifdef __cplusplus
}
#endif /* __cplusplus */
#endif /* __TAP_SEQUENCE_ANALYSIS_H__ */
/*
* Editor modelines
*
* Local Variables:
* c-basic-offset: 4
* tab-width: 8
* indent-tabs-mode: nil
* End:
*
* ex: set shiftwidth=4 tabstop=8 expandtab:
* :indentSize=4:tabSize=8:noTabs=true:
*/
|
