Age | Commit message (Collapse) | Author | Files | Lines |
|
Also move ncp222.py, x11-fields, process-x11-fields.pl,
make-reg-dotc, and make-reg-dotc.py.
Adjust #include lines in files that include packet-*.h
files.
svn path=/trunk/; revision=11410
|
|
they have LF at the end of the line on UN*X and CR/LF on Windows;
hopefully this means that if a CR/LF version is checked in on Windows,
the CRs will be stripped so that they show up only when checked out on
Windows, not on UN*X.
svn path=/trunk/; revision=11400
|
|
svn path=/trunk/; revision=11155
|
|
values passed via that parameter.
Fix indentation.
svn path=/trunk/; revision=9262
|
|
"warning C4761: Gr��enkonflikt im Argument. Konvertierung vorgenommen"
-> size conflict in argument, conversion done
svn path=/trunk/; revision=9244
|
|
svn path=/trunk/; revision=9229
|
|
header, and give up if it is.
svn path=/trunk/; revision=9227
|
|
1) fix description of Check Point version 5004;
2) add description of Check Point version 5005.
svn path=/trunk/; revision=9142
|
|
number.
svn path=/trunk/; revision=9138
|
|
draft-ietf-ipsec-udp-encaps-06 says "The UDP port numbers are the same
as used by IKE traffic, as defined in [Kiv05]", and "[Kiv05]" is
draft-ietf-ipsec-nat-t-ike-05, which has been superseded by
draft-ietf-ipsec-nat-t-ike-07; the latter appears to imply that it goes
over port 4500, not port 500.
We already have a draft-ietf-ipsec-udp-encaps-06 dissector for port
4500 (packet-ipsec-udp.c), and it's not entirely clear to me how, if
draft-ietf-ipsec-udp-encaps-06 traffic *did* go over port 500, you'd
distinguish it from regular ISAKMP traffic.
svn path=/trunk/; revision=8882
|
|
svn path=/trunk/; revision=8654
|
|
the version-independent part of the draft ID for "Negotiation of
NAT-Traversal in the IKE" rather than giving a URL for the draft (the
URL in question was out-of-date, and a future one runs the risk of
becoming out of date, given that the -07 draft expired a few days
ago...).
svn path=/trunk/; revision=8644
|
|
through the null dissector pointer, just dissect it as "Payload".
svn path=/trunk/; revision=8610
|
|
per RFC 3566.
svn path=/trunk/; revision=8473
|
|
Packets" dissector uses it.
svn path=/trunk/; revision=8155
|
|
svn path=/trunk/; revision=7918
|
|
svn path=/trunk/; revision=7746
|
|
svn path=/trunk/; revision=7740
|
|
Fix a typo.
svn path=/trunk/; revision=7739
|
|
but not for <buf_size> or greater. Discovered by Timo Sirainen.
svn path=/trunk/; revision=7731
|
|
SafeNet's VID.
svn path=/trunk/; revision=7594
|
|
1. Add NAT-D and NAT-OA to the known payloads (does not dissect NAT-D
yet, though),
2. Add types 3 and 4 as enapsulated tunnel and transport.
svn path=/trunk/; revision=6947
|
|
winapi_cleanup tool written by Patrik Stridvall for the wine
project.
svn path=/trunk/; revision=6117
|
|
1. Add parsing of group description attribute (donno why it was
missed so far).
2. Enumeration of # of transforms and # of payloads (just makes
it easier to look at).
3. Parsing of Vendor ID:
3.1 Identify several vendors' Vendor ID string (Microsoft,
CyberGuard, SafeNet, Check Point at the moment) - if
anyone has more VendorID strings, I'd be more than
happy to add them.
3.2 Identify Vendor ID string of draft_ietf_ipsec_nat_t_ike_03
(NAT traversal RFC draft).
3.3 Further parsing of Check Point's Vendor ID string, to
include Check Point product and version. If anyone has
other vendors' parsing knowledge, again, I'd be happy
to add it.
svn path=/trunk/; revision=6033
|
|
1. Proper extraction of data from packet (removed bad
tvb_get_ptr() and casting the resulting pointer to a
structure method).
2. Printout of Initator and Responder cookies (per request from
VPNC organization).
svn path=/trunk/; revision=6013
|
|
equivalents for the toplevel directory. The removal of winsock2.h will
hopefully not cause any problems under MSVC++, as those files using
struct timeval still include wtap.h, which still includes winsock2.h.
svn path=/trunk/; revision=5932
|
|
UDP-encapsulated AH packet support.
svn path=/trunk/; revision=5512
|
|
svn path=/trunk/; revision=5340
|
|
svn path=/trunk/; revision=4592
|
|
"epan/..." pathnames, so as to avoid collisions with header files in any
of the directories in which we look (e.g., "proto.h", as some other
package has its own "proto.h" file which it installs in the top-level
include directory).
Don't add "-I" flags to search "epan", as that's no longer necessary
(and we want includes of "epan" headers to fail if the "epan/" is left
out, so that we don't re-introduce includes lacking "epan/").
svn path=/trunk/; revision=4586
|
|
structure to the "packet_info" structure; only stuff that's permanently
stored with each frame should be in the "frame_data" structure, and the
"column_info" structure is not guaranteed to hold the column values for
that frame at all times - it was only in the "frame_data" structure so
that it could be passed to dissectors, and, as all dissectors are now
passed a pointer to a "packet_info" structure, it could just as well be
put in the "packet_info" structure.
That saves memory, by shrinking the "frame_data" structure (there's one
of those per frame), and also lets us clean up the code a bit.
svn path=/trunk/; revision=4370
|
|
take a dissector handle as an argument, rather than a pointer to a
dissector function and a protocol ID. Associate dissector handles with
dissector table entries.
svn path=/trunk/; revision=4308
|
|
accordance with http://www.vpnc.org/draft-beaulieu-ike-xauth.
From Yaniv Kaul <ykaul@checkpoint.com>
svn path=/trunk/; revision=4200
|
|
<a.stockmeier[AT]avm.de>.
svn path=/trunk/; revision=4162
|
|
pass -1 in the cases where it's not called from "dissect_proposal()",
i.e. where there *is* no protocol ID to pass it, and have it dissect
the transform ID only as a number if the protocol ID isn't one of the
ones we know about.
Give the payload dissectors other than "dissect_transform()" an extra
"int" argument, so that their signature is the same as that of
"dissect_transform()", put "dissect_transform()" back in the
"strfuncs[]" table, and get rid of the special-casing of
"dissect_transform()" in "dissect_payloads()".
svn path=/trunk/; revision=4086
|
|
"dissect_none()".
svn path=/trunk/; revision=4082
|
|
common routine that loops over payloads.
Have that routine check for a payload of type "None", which means that
there's extra data after a payload that claimed to be the last one (by
virtue of having a next payload type of "None").
When dissecting a Security Association payload, make sure we have enough
data for the Domain of Interpretation field before putting it into the
tree, dissect the situation as a 4-byte quantity followed by a set of
sub-payloads only of the DOI is "IPSEC" (otherwise dissect it as raw
data), and make sure we have enough data for the 4-byte situation field
before putting it into the tree.
When dissecting a Proposal payload, show the raw bytes of the SPI.
svn path=/trunk/; revision=4081
|
|
svn path=/trunk/; revision=4059
|
|
room, it might return -1 in some versions of glibc; check for that, and
quit if that happens.
It might also return the number of characters that would've been printed
had there been enough room; this means that a loop that does
n += snprintf (buf + n, BUF_LENGTH - n, ...);
may end up making "n" bigger than BUF_LENGTH, and "snprintf()" might not
sanely handle being passed a negative length, so if "n" isn't less than
the total length of the string buffer, don't add stuff to it.
The "capabilitiesStart" variable in "add_capabilities()" in the WSP
dissector is an offset into the PDU data; there's no guarantee that said
offet is < 256, and, even if there were, there's no point in making it
an 8-bit variable.
Add some additional buffer overflow checks to the WSP dissector.
svn path=/trunk/; revision=3953
|
|
svn path=/trunk/; revision=3889
|
|
the ISAKMP dissector to be called for TCP port 500.
svn path=/trunk/; revision=3883
|
|
svn path=/trunk/; revision=3882
|
|
svn path=/trunk/; revision=3881
|
|
"ipproto.h" header file.
svn path=/trunk/; revision=3313
|
|
(the minimum) if it's less than 4; also, add code to put a note that the
payload length is bogus into the protocol tree.
svn path=/trunk/; revision=3253
|
|
Handle the payloads iteratively rather than recursively, so that the
code that knows how to iterate over payloads is confined to a small
number of places rather than being in every single payload dissector.
Pull the code to dissect the generic payload header into a single
routine, and do it in the code that iterates over payloads rather than
in the dissectors for each payload.
Clean up some other things.
svn path=/trunk/; revision=3085
|
|
symbolically.
svn path=/trunk/; revision=3031
|
|
"{old_}heur_dissector_add()", "{old_}conv_dissector_add()", and
"register_dissector()", so that an entry in those tables has associated
with it the protocol index of the protocol the dissector handles (or -1,
if there is no protocol index for it).
This is for future use in a number of places.
(Arguably, "proto_register_protocol()" should take a dissector pointer
as an argument, but
1) it'd have to handle both regular and heuristic dissectors;
2) making it take either a "dissector_t" or a union of that and
a "heur_dissector_t" introduces some painful header-file
interdependencies
so I'm punting on that for now. As with other Ethereal internal APIs,
these APIs are subject to change in the future, at least until Ethereal
1.0 comes out....)
svn path=/trunk/; revision=2849
|
|
protocols, in addition to adding structures to the list of filterable
fields. Give it an extra argument that specifies a "short name" for the
protocol, for use in such places as
pinfo->current_proto;
the dialog box for constructing filters;
the preferences tab for the protocol;
and so on (although we're not yet using it in all those places).
Make the preference name that appears in the preferences file and the
command line for the DIAMETER protocol "diameter", not "Diameter"; the
convention is that the name in question be all-lower-case.
Make some routines and variables that aren't exported static.
Update a comment in the ICP dissector to make it clear that the
dissector won't see fragments other than the first fragment of a
fragmented datagram.
svn path=/trunk/; revision=2810
|
|
svn path=/trunk/; revision=2750
|