Age | Commit message (Collapse) | Author | Files | Lines |
|
The decoded value of Size Packet shown as "From the calling DTE" is the value
of "From the called DTE".
When the size packet to negotiate has any of 512, 1024, 2048 or 4096 bytes, the
value shown decoded is erroneus.
The patch attached also includes new decoded facilities:
- Extended CUG selection.
- Extended access outgoing CUG selection.
- Extended RPOA selection.
- NUI selection.
- Charging info selection.
- Call dureation.
- Segment Count.
- Monetary Unit.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24932 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Add new dissectors for the iWARP protocol stack.
The code can handle the following 3 protocols:
- MPA
- DDP
- RDMAP
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24931 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24737 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24663 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
This plugin implements a dissector for Infiniband. It is released
under the GPL v2.
Rather than using say libpcap to capture raw (unframed) IP packets
from near the top of an IPoIB stack, this plugin dissects link level
Infiniband frames.
Infiniband trace files can be read from Endace ERF format trace
files, or from libpcap DLT_ERF files containing ERF TYPE_INFINIBAND
records. There is currently no native DLT_INFINIBAND in libpcap.
Each record contains a hardware timestamp, capture metadata such as
port Id, and a complete link level Infiniband frame starting from
the Local Route Header.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24628 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24626 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
This patch adds some new ENCAP and FILE types for wiretap. It also adds new
entries to pcap_to_wtap_map[] to provide a mapping of the new types to some
pcap DLTs.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24622 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
I have added two new display filters to support filtering based on LSP-ID and
hostname for ISIS protocol.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24621 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Attached is a patch to export packets data as "C Arrays". I often have
the need to [re]send data captured with wireshark using a raw/pf_packet socket.
Output format is one char[] per packet, it looks like almost the same as
the one produced by "Follow TCP stream".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24604 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2320 : A new (heuristic) dissector for the RedBack Lawful Intercept Packet header.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24579 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Correct protocol name.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24503 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
This is a new dissector plugin for Hilscher analyzer frames.
These frames are generated by Hilscher analyzer products and are identified via
their unique source MAC address (this is a reserved MAC from Hilscher-range and
will never be used by another network device). Most likely these frames are
only generated on a virtual network interface or the generating device is
attached directly via patch cable to a real network interface, but not routed
through a network. The Ethernet-header (destination MAC, source MAC and
Length/Type) is not displayed in the protocol tree for these frames as this is
overhead-information which has no practical use in this case.
Note:
This is a heuristic Ethernet dissector which means it gets called for every
Ethernet frame. So as to not cause a performance hit for most Wireshark users
it has a preference which, by default, disables the dissector.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24495 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
a list of fields, prints the field values found in each packet.
Packet data can be specified as a libpcap DLT, e.g. "EN10MB" or an upper-layer protocol, e.g. "http".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24339 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24310 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Add a dissector for the Scripting Service Protocol provided as part of the
RSPLIB package. RSPLIB is an Open Source implementation of the upcoming
Reliable Server Pooling standard. The scripting service is an application
for load distribution, based on Reliable Server Pooling.
From me:
Shorten the protocol name to SSP.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24276 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Added support for Symbian OS btsnoop.
The bluetooth HCI layer in Symbian OS can be configured to log all packets to a
file. The log format, "btsnoop" is based on the RFC1761 "snoop" format - but
differences in the header make it incompatible.
The btsnoop format supports logging of these formats:
"H1" (raw HCI packets without framing)
"H4" (HCI UART packets including packet type header)
"H5" (HCI 3 wire UART packets including framing)
"BCSP" (HCI bluecore serial protocol including framing)
"H1" and "H4" are section numbers in the original v1 bluetooth specifications,
but still used colloquially - wireshark's existing support for Linux bluez HCI
logs uses the "H4" name.
In practice, the "H1" format is used for H5,BCSP and USB HCI logs, as the HCI
packet logs are mainly useful for debugging higher layers, bluetooth profiles
and bluetooth applications.
From me:
Deleted some unused prototypes.
Mark an unused parameter.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24263 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24225 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24214 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Fix the bug related to Option template:
- System scope (check that options scope size is == 4, not <= 4)
- Interface scope (same)
Same fix for fields BytesExported PacketsExported FlowsExported.
Also fix some tabulations in a previous patch related to IPv6 Addresses.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24138 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
it's the SMS protocol used in China.
From me: some code cleanup and convert it from a plugin to a regular
dissector.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@24060 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
From Kai Blin via bug #2134.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23968 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23963 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
New dissector for RTMP(T) protocol
via bug #2078
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23902 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23890 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
1/ patches to support the libpcap/SITA format 'WTAP_ENCAP_SITA'.
2/ patches to the LAPB dissector to accept MLP (Multi-link protocol)
(although MLP dissection has _not_ been added (yet)).
3/ New protocol dissectors for:
a) SITA's WAN layer 0 status header,
b) An airline protocol ALC,
c) An airline (and other industry) protocol UTS.
These patches are submitted as a set since the new protocol dissectors are not
useful without the libpcap/SITA related changes, and there is no point in
having those changes without the additional dissectors.
This fixes bug/enhancement 2016.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23885 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Error message when capturing too short WTAP_ENCAP_USB_LINUX type packets
contains a copy-paste typo.
From me:
Fix some addresses in AUTHORS.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23882 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Patch to do the following:
1) Dissect CIE Lists in NHRP Extensions
2) Dissect original NHRP packet in Error Indication
3) Support for Cisco NAT extensions
4) Support for Cisco NHRP Traffic Indication packet
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23587 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Wireshark is
quit. Temporary coloring filters can be set by:
- pressing <ctrl>-<digit> will create a conversation coloring filter based on the
addresses of the currently selected packet (order TCP/UDP/IP/Ethernet)
This can also be achieved from the "View|Colorize Conversation" menu.
- Rightclicking on a packet in the packet-list will give the option to
"Colorize Conversation" just as "Conversation Filter" does.
- Rightclicking on an item in the packet-detail-list will give the option to
"Colorize with filter" which works similar to "Apply as filter"
Temporary filters can be cleared from the same menus or by pressing <ctrl>-<space>.
This patch also adds an item to the above mentioned menu's to add a permanent color filter
in the same way.
The colors for the temporary coloring rules are now hardcoded as I do not know
how to change the color of menu-items and therefore I chose to use icons to
show the actual color of each of the ten temporary coloring rules. Is it at all
possible to have different menu items in different colors?
One other way of solving this is to recreate the icons on the fly after changing
the colors. I will have a look into that once it is clear whether I can use
different colors within the menu structure.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23560 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Added support for Wifi Simple Config aka Wifi Protected Setup
From me:
Added standard copyright header to packet-wps
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23549 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
This patch updates the DTLS dissector to be compatible with OpenSSL 0.9.8f in
the following ways:
* Handle both SSL version number 0xfeff (RFC 4347 and OpenSSL 0.9.8f), and
0x100 (Used by OpenSSL 0.9.8e and earlier)
* Reassemble fragmented handshake messages.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23369 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23344 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
This patch adds support for IMPS 1.3 protocol dissection and also
updates IMPS 1.2 protocol to approved release version.
From me:
- Updated vals_wbxml_public_ids table.
- Reindented file.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23078 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
found by desktop-file-validate:
wireshark.desktop: warning: value "" for key "Path" in group "Desktop Entry"
does not look like an absolute path
wireshark.desktop: warning: value "GNOME;Application;Network;" for key
"Categories" in group "Desktop Entry" contains a deprecated value
"Application"
wireshark-root.desktop: warning: key "Encoding" in group "Desktop Entry" is
deprecated
wireshark-root.desktop: warning: value "" for key "Path" in group "Desktop
Entry" does not look like an absolute path
wireshark-root.desktop: warning: value "GNOME;Application;Network;" for key
"Categories" in group "Desktop Entry" contains a deprecated value
"Application"
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@23034 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
- reassembling of fragmented TIPCv2 messages
- calling of heuristic subdissectors
- multicast upper+lower bound header fields are now shown
- corrects few typos in the comments in packet-tipc.c
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22889 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22801 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22683 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Enhancement patch:
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1758
This change gives Wireshark the ability to read ATM captures saved by UpTime
Select traffic capture.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22612 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
When LACP packets have the actor state or partner state fields set to 0x00,
wireshark prints the state like this (note the closing parenthesis):
Actor State: 0x00)
Since there are no flags set, this fields should be printed like this:
Actor State: 0x00
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22594 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22541 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Removed a unused hf_ entry
From Ian Brumby:
- Fixed decoding of 4 character and longer SICs
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22512 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
explanations from me at the top of that file
add it to the distributed files, to the Win32 NSIS and U3 packages. UNIX packages will still miss this (optional) file.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22487 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
- add support of session management for tcap ANSI.
(In fact, this support already exist for ANSI MAP subdissector, but as our
simulators can reuse the tcap transaction Id, the decoding of the response
may be wrong)
- move the code related to asn1 in tcap.cnf, and update tcap.cnf
- move the code related to the session management in tcap-persistentdata
- add a compilation option to free the entry in the hashtable for a closed
transaction. This is used only for tshark statistics generation, with huge file.
- cleanup and add some comments
Add Id tags to epan/tcap-persistentdata.{c,h}
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22415 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
last draft, draft-ietf-behave-rfc3489bis-07. Changelog:
* My employer is now sponsoring this work, so added a copyright line.
* Added a comment for each method/attribute with the RFC/I-D where is
it defined, so it will be easier to add new STUN usages.
* Removed the SHARED-SECRET method.
* Removed the PASSWORD and REFRESH-INTERVAL attributes.
* Changed "Response" to "Success Response".
* Changed "Error Reason Phase" to "Error Reason Phrase".
* Added reassembly for TCP segments on STUN2.
* Updated STUN acronym expansion.
* Renamed STUN2_ERROR to ERROR_RESPONSE.
* Changed the value of attribute FINGERPRINT from 0x8025 to 0x8028.
* Display if an unknown attribute is comprehension-optional or
comprehension-required.
* Reorganized order of attributes in the dissector code.
* The message length is now displayed in decimal.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22383 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
description in Heimdal.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22364 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
receiving a SES MAJOR SYNC POINT, as this indicates the end of the
COTP DT Data stream. Previous the RTSE dissector was called when
receiving a COTP DT Data fragment with the "last data unit" bit set,
but this does not work with messages fragmented in RTSE. Reassembly
can be turned off in the preferences.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22176 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
- Remove ethertype preference from recently added FCoE dissector
Me:
- Add Joe to the AUTHORS list
- Change previous line in AUTHORS list from @ to [AT] in e-mail address
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@22133 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@21869 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Replace the Interbase dissector by a Firebird/Interbase
dissector.
Me:
Fix warnings about unused parameters
Fix warnings about unused variables
Fix warning about unused function
Fix warning about mixed code and declaration
Declare all dissection functions static
Remove function declarations and move the switching
function down instead.
Update AUTHORS file
Add $Id$ and email address to file header
Fix filename in first comment line
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@21843 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
The attached patch adds ability of of creating radio button, drop-down
list and range type preference entries to the Lua plugin.
It also fixes a lua compile warning/error in wslua_gui.c.
The patch is written by Tamas Regos, he asked me to send it to the list.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@21655 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
Attachment is a patch for adding a new Juniper NSRP dissector. In this patch, OICQ author email address
<dubingyao@gmail.com> has also been updated to <secfire@gmail.com>.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@21599 f5534014-38df-0310-8fa8-9805f1628bb7
|