Age | Commit message (Collapse) | Author | Files | Lines |
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@3330 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@3066 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@2448 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
IPLog format.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@2231 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
1) aclocal expects autoconf/automake macros to be hidden;
2) GTK+ hid its autoconf/automake macros;
and, if both places exist but aren't the same directory, returns a "-I"
flag to tell aclocal to look in GTK+'s directory.
Then have "autogen.sh", and Makefiles in directories with "acinclude.m4"
files, use that script and pass what flag it supplies, if any, to
aclocal.
This should, I hope, avoid problems such as those FreeBSD systems where
GTK+ was installed from a port or package (and thus stuck its macros in
"/usr/X11R6/share/aclocal") but aclocal doesn't look there.
(It doesn't solve the problem of somebody downloading and installing,
say, libtool from source - which means it probably shows up under
"/usr/local", with its macros in "/usr/local/share/aclocal" - on a
system that comes with aclocal (meaning it probably just looks in
"/usr/share/aclocal", but that may be best fixed by, whenever you
download a source tarball for something that's part of your OS,
configuring it to install in the standard system directories and
*overwriting* your OS's version.)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@2165 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@2041 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
standard output, in the rules to get Flex to produce scanner code; that
way, if Flex fails to run for some reason, we don't leave around a
zero-length or otherwise incorrect "XXX-scanner.c" file that might
keep a subsequent make from thinking it has to generate that file.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@1763 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
hideous problem on FreeBSD 3.[23] (and perhaps other BSDs) if
HAVE_UNISTD_H is defined before "zlib.h" is included, turn "file_seek()"
into a subroutine defined in a file that *undefines* HAVE_UNISTD_H
before including "zlib.h", so that the *only* call to "gzseek()" is made
from a file that does not have HAVE_UNISTD_H defined when it includes
"zlib.h".
Move "file_error()" to that file while you're at it, so it holds all the
wrappers that hide the presence or absence of zlib from routines to read
capture files.
Turn "file.h", which declared those wrapper functions as well as wrapper
macros, into "file_wrapper.h" - it belongs with the "file_wrapper.c"
file that defines the wrapper functions, not with "file.c" which handles
higher-layer file access functions.
Remove the comment in "configure.in" that explained why defining
HAVE_UNISTD_H was a bad idea, as we're not obliged to define it and work
around the problem. (The comment in "file_wrapper.c" explains the
workaround.)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@1463 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
and V.120 decoder.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@1304 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
line of ISDN routers. Much like the ascend reader, this module reads an
ASCII hex dump of trace data.
Rearranged the order in which wiretap tries trace files, to keep the
ASCII-readers (ascend and toshiba) at the end, and put the binary-readers
(everything else) at the front of the list. If a telnet session of
and ascend trace or toshiba trace were captured near the beginning of
another trace, wiretap might think the trace was ascend or toshiba if it
tried that module first.
Fixed the way wtap_seek_read() selects functions to call. It was using
the encap type instead of the file type. We got lucky because
WTAP_ENCAP_ASCEND == WTAP_FILE_ASCEND
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@952 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
more display filters for X.25;
no LCN in X.25 RESTART / DIAGNOSTIC / REGISTRATION packets;
support for nettl file format (nettl is a trace tool for HP-UX).
For now, it only supports traces for X.25 interfaces (tested
with HP-UX 10.20).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@879 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
the files in the Lucent/Ascend capture file code.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@787 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
work if build tree is different than source tree. Some wiretap files
had to be added to the list of deliverables.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@717 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
family has a set of debug commands that allow you to log the traffic on a
WAN or dialup connection as text, e.g.
RECV-iguana:241:(task: B04E12C0, time: 1975358.50) 15 octets @ 8003D634
[0000]: FF 03 00 3D C0 06 C9 96 2D 04 C1 72 00 05 B8
Created wtap_seek_read() which parses the textual data for and Ascend
trace, and does a normal fseek() and fread() for any other file type.
The fseek()/fread() pairs in file.c were replaced with the new function.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@652 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
this causes "Makefile.in" to have two GPL notices - "Makefile.in" and
the "Makefile" generated from it are generated files, so maybe that's
OK).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@639 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
initial #ifdef changes to capture.c to support the win32 version of libpcap.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@428 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
wiretap support for RADCOM Ltd.'s WAN/LAN analyzers (see
http://www.radcom-inc.com/
). Note: as I remember, IEEE 802.2/ISO 8022 LLC has somewhat of an SDLC
flavor to it, just as I think LAP, LAPB, LAPD, and so on do, so we may
be able to combine some of the LLC dissection and the LAPB dissection
into common code that could, conceivably be used for other SDLC-flavored
protocols.
Make "S" a mnemonic for "Summary" in the "Tools" menu.
Move the routine, used for the "Tools/Summary" display, that turns a
wiretap file type into a descriptive string for it into the wiretap
library itself, expand on some of its descriptions, and add an entry for
files from a RADCOM analyzer.
Have "Tools/Summary" display the snapshot length for the capture.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@416 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
suggestion, this new method using a static array should use less memory
and be faster. It also has a nice side-effect of making the source-code
more readble, IMHO.
Changed the print routines to look for protocol proto_data instead of
looking at the text label as they did before, hoping that the data hex
dump field item starts with "Data (".
Added the -G keyword to ethereal to make it dump a glossary of display
filter keywords to stdout and exit. This data is then formatted with
the doc/dfilter2pod perl program to pod format, which is combined
with doc/ethereal.pod.template to create doc/ethereal.pod, from which
the ethereal manpage is created. This way we can keep the manpage up-to-date
with a list of fields that can be filtered on.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@364 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
mechanism that is built into ethereal. Wiretap is now used to read all
file formats. Libpcap is used only for capturing.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@342 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
if they just compile the source and don't modify any source files.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@280 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@252 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
proto*() functions. The configure script tries to use ipv6 name resolution if
it knows the type of ipv6 stack the user has (this can be avoided with the
--disable-ipv6 switch) Additionally, the configure script now deals with wiretap
better. If the user doesn't want to compile wiretap, the wiretap is never
visited. A few unnecessary #includes were removed from some wiretap files, and
a CPP macro was moved from bpf.c to wtap.h.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@229 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
files used to generate them.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@205 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@198 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
by Network General (subsequently merged with McAfee Associates into
Network Associates), called "Sniffer Basic".
A similar format appears to be used by the Windows Sniffer Pro.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@194 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@171 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
--with-wiretap is specified.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@169 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
* Added RPM .spec file (Martin Maciaszek)
* Added Martin to AUTHORS
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@149 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
This necessitated a change in ethereal because iptrace supports multi-NIC
packet capturing, including multi-datalink-type capturing.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@145 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
you do "make dist".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@99 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
That requires that, in the packet-reading loop, we pass to the callback
routine the offset in the file of a packet's data, because we can no
longer compute that offset by subtracting the size of the captured
packet data from the offset in the file after the data was read -
"snoop" may stick padding in after the packet data to align packet
headers on 4-byte boundaries.
Doing that required that we arrange that we do that for "libpcap"
capture files as well; the cleanest way to do that was to write our own
code for reading "libpcap" capture files, rather than using the
"libpcap" code to do it.
Make "wtap_dispatch_cb()" and "pcap_dispatch_cb()" static to "file.c",
as they're not used elsewhere.
If we're using wiretap, don't define in "file.h" stuff used only when
we're not using wiretap.
Update the wiretap README to reflect Gilbert's and my recent changes.
Clean up some memory leaks in "wiretap/lanalyzer.c" and
"wiretap/ngsniffer.c", where the capture-file-format-specific data
wasn't freed if the open failed.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@91 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
wiretap functions to be more generic and therefore allow an easier integration
of more packet-capture file types. I also put in all the GPL copyrights in the
wiretap code.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@83 f5534014-38df-0310-8fa8-9805f1628bb7
|
|
because it is still in its infancy, but it can be compiled in optionally.
The library exists in its own subdirectory ethereal/wiretap. This patch also
edits all the packet-*.c files to remove the #include <pcap.h> line which is
unnecessary in these files. In the ethereal code, file.c is the most heavily
modified with #ifdef WITH_WIRETAP lines for the optional library.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@82 f5534014-38df-0310-8fa8-9805f1628bb7
|