gram [Tue, 11 May 1999 20:07:47 +0000 (20:07 +0000)]
Fixed problem where filename of capture file would not be displayed in
status bar if invoked by "ethereal -r filename".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@278
f5534014-38df-0310-8fa8-
9805f1628bb7
deniel [Tue, 11 May 1999 20:07:12 +0000 (20:07 +0000)]
Live data capture and display enhancement that allows network capture and
display of fully decoded packets at the same time.
Options added:
-F : fork capture process
-S : sync mode ala tail -f (implies -F)
-f : filter expression
-Q : exit after capture (implies -k)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@277
f5534014-38df-0310-8fa8-
9805f1628bb7
deniel [Tue, 11 May 1999 18:51:10 +0000 (18:51 +0000)]
Live data capture and display enhancement that allows network capture and
display of fully decoded packets at the same time.
Options added:
-F : fork capture process
-S : sync mode ala tail -f (implies -F)
-f : filter expression
-Q : exit after capture (implies -k)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@276
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 11 May 1999 08:21:39 +0000 (08:21 +0000)]
Turn "arpaddr_to_str()" into "bytes_to_str()", and make it public, so it
can be used by dissectors other than ARP to display byte arrays as
strings of hex digits.
Add a routine to extract a null-terminated Unicode string and turn it
into an ISO 8859-1 string for display. (Ultimately, we should determine
what character sets the X server or printer or whatever can handle, and
turn it into the appropriate character set.)
Display the challenge in "core-to-LANMAN-2.1" Negotiate Protocol
responses as a string of hex digits - but only if the length is
non-zero. (It's a counted array, not a null-terminated string.)
Display some additional security mode bits in an NT LM 0.12 Negotiate
Protocol response.
Display some additional bits in the "capabilities" field of the
Negotiate Protocol response.
Display the challenge in an NT LM 0.12 Negotiate Protocol response as a
string of hex digits (it's a counted array, not a null-terminated
string).
Display the domain name as Unicode in an NT LM 0.12 Negotiate Protocol
response if the capabilities field has the "supports Unicode" bit set
(no, not the "Unicode" bit in the "flags2" field - NT doesn't set that
in the response, even though it sends the domain name over in Unicode!).
Display some additional bits in the "flags2" field of an SMB.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@275
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 11 May 1999 07:22:31 +0000 (07:22 +0000)]
Add some SMB codes and error codes from the
"draft-leach-cifs-v1-spec-01.txt" CIFS Internet draft.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@274
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 11 May 1999 01:18:30 +0000 (01:18 +0000)]
Add decoding of DOS-format dates and times (one of the N different
date/time formats used in SMB...).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@273
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 11 May 1999 00:28:18 +0000 (00:28 +0000)]
Some of my fixes did get lost - put 'em back.
Fix the "proto_tree_add_item()" used when the server didn't support any
of the dialects the client offered not to print the dialect index.
In the "Core to LANMAN 2.1" "negotiate protocol" decode, show the time
zone as minutes from UTC, just as is done for the "post-LANMAN 2.1"
decode.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@272
f5534014-38df-0310-8fa8-
9805f1628bb7
sharpe [Tue, 11 May 1999 00:00:40 +0000 (00:00 +0000)]
Some clean-ups. I hope I have not disturbed any of Guy's
fixes, as I had to manually apply his fixes. It is a long story,
but my development environment is, umm, interesting.
Thanks to Guy for spotting the problems in my Core Proto to LanMan 2.0
decode probs.
I did not spot them and I do not have any such traces to check
against.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@271
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 22:07:09 +0000 (22:07 +0000)]
Pass NBDS packets on to SMB even if we're only generating a summary
line, so that they show up as SMB packets, rather than NBDS packets, in
the summary display.
Put SMB at the top level of the decode tree for NBDS packets, as is done
for NBSS packets.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@270
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 21:50:13 +0000 (21:50 +0000)]
Decode SMB requests inside NetBIOS Datagram Service packets.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@269
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 21:36:40 +0000 (21:36 +0000)]
Fix up the decode of "greater than core and up to and including LANMAN
2.1" "negotiate protocol" responses.
Display unsigned fields in "negotiate protocol" as unsigned, rather than
signed, values.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@268
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 10 May 1999 20:51:36 +0000 (20:51 +0000)]
Fixed the number of parameters for the other super-IPX protocols so that
the table of dissect functions that IPX needs only needs to store pointers to
on type of function. Now all super-IPX protocols have an 'int max_data' argument.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@267
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 20:30:27 +0000 (20:30 +0000)]
Decode the "flags2" field in the SMB header.
Squelch another "variable may be used without being initialized"
complaint (also due to insufficiently sophisticated dataflow analysis by
EGCS 1.1), and a number of "unused variable" complaints, as well as
"assigning a 'const XXX *' to an 'XXX *'" complaints.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@266
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 20:17:36 +0000 (20:17 +0000)]
Get rid of the "P*" macros, as we're not using them (Ethereal only reads
packets, it doesn't store into them), and make the "G*" macros use
"pletohs()" and "pletohl()", making them platform-independent.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@265
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 20:02:57 +0000 (20:02 +0000)]
EGCS 1.1's dataflow analysis (and probably that of other versions of
GCC) isn't sophisticated enough to figure out that "nbss_tree" isn't
used if "tree" is null (or doesn't trust it not to change out from under
it), so we have to initialize "nbss_tree" to NULL to squelch complaints
about it being used but uninitialized.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@264
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 10 May 1999 19:26:48 +0000 (19:26 +0000)]
Check in updated version, reflecting the changes to "Makefile.am".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@263
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 10 May 1999 19:01:32 +0000 (19:01 +0000)]
This small change lets me read SMBtrans packets that come over NBIPX.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@262
f5534014-38df-0310-8fa8-
9805f1628bb7
sharpe [Mon, 10 May 1999 00:27:32 +0000 (00:27 +0000)]
Mode decoded SMBs ... Now decode part of a TCONX request,
but not the responses, and do not handle the ANDX part yet,
but I have a Linux course to develop, so that is enough for
now.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@261
f5534014-38df-0310-8fa8-
9805f1628bb7
sharpe [Sun, 9 May 1999 12:56:12 +0000 (12:56 +0000)]
Minor changes to check if log info is working
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@260
f5534014-38df-0310-8fa8-
9805f1628bb7
sharpe [Sun, 9 May 1999 04:20:59 +0000 (04:20 +0000)]
Added new files for SMB decode: packet-smb.c, alignment.h, smb.h
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@259
f5534014-38df-0310-8fa8-
9805f1628bb7
sharpe [Sun, 9 May 1999 04:16:36 +0000 (04:16 +0000)]
Added initial support for SMB plus most of negprot decode ..
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@258
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 7 May 1999 03:33:42 +0000 (03:33 +0000)]
Made the executable portable; it will now work on machines other than my
own. It allocates and fills in its own wtap struct.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@257
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Thu, 6 May 1999 05:45:58 +0000 (05:45 +0000)]
Default the capture size to the maximum capture size, rather than the
minimum capture size.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@256
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 4 May 1999 18:26:22 +0000 (18:26 +0000)]
Update it to note that GTK+ has stable 1.2.x versions now.
Add a note warning that if you installed GTK+ from a binary package, it
may be a "user's" package, and you may also have to install the
"developer's" package.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@255
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Sat, 1 May 1999 05:39:06 +0000 (05:39 +0000)]
Changed variable type of argument 'pd' in hex printing routine to match
prototype.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@254
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Sat, 1 May 1999 05:19:25 +0000 (05:19 +0000)]
Fixed 0.6.0 packaging problems.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@252
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 1 May 1999 04:38:42 +0000 (04:38 +0000)]
Add "gtkpacket.h" and "packet-ip.h" to the list of source files, so they
get put into the tarball by "make dist".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@251
f5534014-38df-0310-8fa8-
9805f1628bb7
deniel [Fri, 30 Apr 1999 21:16:31 +0000 (21:16 +0000)]
Miscellaneous updates of README and README.tru64 created.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@250
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 30 Apr 1999 20:31:56 +0000 (20:31 +0000)]
Docs updated for ethereal-0.6.0
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@248
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Fri, 30 Apr 1999 03:16:03 +0000 (03:16 +0000)]
Add support for the NetBIOS Session Service.
Improve the descriptions of the NetBIOS Name Service errors a bit.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@247
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 16 Apr 1999 18:39:07 +0000 (18:39 +0000)]
Separate the 16-byte view into 2 8-byte views in the hex dump. Patch from
"Mattia Cazzola" <mattiac@alinet.it>
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@246
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 9 Apr 1999 13:32:31 +0000 (13:32 +0000)]
Changed the flowinfo field in the ipv6 header to flow info + traffic class, as
per RFC2460. Thanks to Jun-ichiro for the patch.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@245
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 9 Apr 1999 13:31:15 +0000 (13:31 +0000)]
Removed 2 blocks of code that if #ifdef'ed out. They're just not needed.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@244
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Tue, 6 Apr 1999 16:35:47 +0000 (16:35 +0000)]
Touch-up fixes to my previous fix of making the packet-capture facility save
to a file unknown to the user first. The manpage has now been updated to reflect
the ability of the user to use the TMPDIR environment variable to change the
location of this capture file. And now the capture file is deleted when
ethereal exits, if the user has not saved the trace file.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@243
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Tue, 6 Apr 1999 16:24:50 +0000 (16:24 +0000)]
Capturing packets from ethereal now saves the capture in an "anonymous" buffer. That is, it's
a random name chosen by tempnam(), unknown to the user. If the user decides to save that
trace, he then uses File | Save to save it to a file. File | Save As lets him make a copy
of his named trace file as well. I also updated my e-mail address in the various credit
locations.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@242
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 6 Apr 1999 02:02:12 +0000 (02:02 +0000)]
Add NNTP support.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@241
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 5 Apr 1999 23:39:51 +0000 (23:39 +0000)]
Add an RCS ID.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@240
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 5 Apr 1999 22:51:44 +0000 (22:51 +0000)]
Get rid of include of <strings.h> from "util.c", as it's not needed, and
change include of <strings.h> in "menu.c" to include <string.h>, the
latter being the ANSI standard include file for string functions; that
eliminates all use of <strings.h< so get rid of test for its existence
in "configure.in" as well.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@239
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 5 Apr 1999 22:25:00 +0000 (22:25 +0000)]
The joys of "automake" being run in different environments - undo the
change my local environment inserted, setting TAR to "gtar" rather than
"tar".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@238
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 5 Apr 1999 21:54:41 +0000 (21:54 +0000)]
FTP, POP, and Telnet support from Richard Sharpe.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@237
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sun, 4 Apr 1999 02:49:23 +0000 (02:49 +0000)]
Make the AUTHORS list and the contributors list in the "Help/About
Ethereal" dialog match.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@236
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Wed, 31 Mar 1999 08:20:28 +0000 (08:20 +0000)]
Move the bitfield-decoding routines to "packet.h", along with other
helper routines for packet dissecting, and away from "util.c", which is
now all GUI-related. (Among other things, this makes life more pleasant
for Gilbert Ramirez's "tethereal" stuff, although a lot more separation
of GUI from other stuff needs to be done to make that - or a
"curses"-based variant of Ethereal, or a variant using some other GUI
toolkit - work smoothly.)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@235
f5534014-38df-0310-8fa8-
9805f1628bb7
hannes [Tue, 30 Mar 1999 20:40:12 +0000 (20:40 +0000)]
Bugfix: The IP Precedence (first three bits in the TOS field) has been cleared
by accident -> It should be displayed correctly with this fix
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@234
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 30 Mar 1999 04:41:01 +0000 (04:41 +0000)]
Changes to the routines to help decode text-oriented protocols (FTP,
SMTP, POP, HTTP, etc.) for the benefit of Richard Sharpe's FTP and POP
dissectors.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@233
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 29 Mar 1999 02:24:29 +0000 (02:24 +0000)]
A fix for Solaris 2.5.1 compilation.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@232
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 29 Mar 1999 02:21:34 +0000 (02:21 +0000)]
Two more files for ipv6.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@231
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Sun, 28 Mar 1999 18:42:47 +0000 (18:42 +0000)]
Gave Jun-ichiro credit for his IPv6 patch.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@230
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Sun, 28 Mar 1999 18:32:03 +0000 (18:32 +0000)]
Jun-ichiro's IPv6 patch is merged in with ethereal and now uses the new
proto*() functions. The configure script tries to use ipv6 name resolution if
it knows the type of ipv6 stack the user has (this can be avoided with the
--disable-ipv6 switch) Additionally, the configure script now deals with wiretap
better. If the user doesn't want to compile wiretap, the wiretap is never
visited. A few unnecessary #includes were removed from some wiretap files, and
a CPP macro was moved from bpf.c to wtap.h.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@229
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Thu, 25 Mar 1999 06:34:32 +0000 (06:34 +0000)]
The program that produced the version 2.001 file was Sniffer Pro 2.50.05
(presumably a Windows version).
Note also that version 2.001 files appear to have microsecond time
stamps, like version 1.1 files.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@228
f5534014-38df-0310-8fa8-
9805f1628bb7
deniel [Tue, 23 Mar 1999 20:25:50 +0000 (20:25 +0000)]
Fixes to the TCP reassembly code to correctly handle too short
caplen or incomplete data (avoid crashes or erroneous display).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@227
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Tue, 23 Mar 1999 19:41:51 +0000 (19:41 +0000)]
Fixed compilation warning on Solaris 2.6
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@226
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 23 Mar 1999 03:58:59 +0000 (03:58 +0000)]
Move the include of "snprintf.h" after a bunch of other includes, so
that "size_t" will be defined before it's included (it uses "size_t").
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@225
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 23 Mar 1999 03:54:46 +0000 (03:54 +0000)]
Include "snprintf.h" if necessary, to declare "vsnprintf()".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@224
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Tue, 23 Mar 1999 03:14:46 +0000 (03:14 +0000)]
Removed all references to gtk objects from packet*.[ch] files. They now
reference the protocol tree with struct proto_tree and struct proto_item
objects. That way, the packet decoding source code file can be used with
non-gtk packet decoders, like a curses-based ethereal, e.g. I also re-arranged
some of the information in packet.h to more appropriate places (like other
packet-*.[ch] files).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@223
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 22 Mar 1999 23:31:05 +0000 (23:31 +0000)]
Add #defines for more T_ types.
In the detailed expansion of an RR, give a more detailed description of
the RR type, as per Peter Hawkins' suggestion, but leave the record type
in the summary line for the RR, along the lines of John McDermott's
suggestion.
Decode PTR and CNAME RRs.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@222
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 22 Mar 1999 15:02:25 +0000 (15:02 +0000)]
Got rid of "hdr_size may not be initialized" warning, even though it was
innocuous.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@221
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 22 Mar 1999 03:56:34 +0000 (03:56 +0000)]
Well, that was dumb. I didn't have to add a "capture_data()" routine; I
just had to make "sap_capture_func()" return NULL if it didn't find an
entry for the SAP it was passed.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@220
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 22 Mar 1999 03:44:44 +0000 (03:44 +0000)]
Have "sap_capture_func()" return "capture_data" rather than
"dissect_data"; if you call "dissect_data()" with an argument list of
the type expected by a "capture_XXX()" routine, it won't do the right
thing (and may do the wrong thing, e.g. crash).
Have "sap_capture_func()" (and "sap_dissect_func()") return function
pointers rather than "void *"s, so that I don't make a mistake like the
above in the future....
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@219
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 22 Mar 1999 02:46:46 +0000 (02:46 +0000)]
Add support for file format version 2.001 (used by Sniffer Basic 2.0?).
This assumes that the time stamps are still in units of microseconds; I
don't yet have a text decode of the version-2.001 file from the program
that decoded it, so I can't check the time stamps.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@218
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 20 Mar 1999 09:10:49 +0000 (09:10 +0000)]
Add support for file format version 2.001 (used by Sniffer Basic 2.0?).
This assumes that the time stamps are still in units of microseconds; I
don't yet have a text decode of the version-2.001 file from the program
that decoded it, so I can't check the time stamps.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@217
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Sat, 20 Mar 1999 04:41:04 +0000 (04:41 +0000)]
Added g_slist_nth_data() to glib-new.o so that glib-1.0.x, x < 4, will work.
It seems that a stable version of the library received a new function. This
should help RedHat folks, since they seem to have glib-1.0.1.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@216
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Sat, 20 Mar 1999 04:38:57 +0000 (04:38 +0000)]
Re-wrote the NCP module in accordance with how NCP is really organized.
NCP is still not decoded much, but the infrastructure for doing so is now in
place, including a hashtable to record the NCP type of each request so that we
now how to parse the response.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@215
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 13 Mar 1999 08:39:08 +0000 (08:39 +0000)]
Add "phtons()" and "phtonl()" macros, which handle unaligned quantities,
and use them to extract stuff in "bpf_mk_bytecmp()", so as to avoid core
dumps on processors that require strict alignment.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@214
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 9 Mar 1999 02:52:37 +0000 (02:52 +0000)]
Decode more stuff in an ICMP packet.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@213
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 9 Mar 1999 01:45:06 +0000 (01:45 +0000)]
Make the arrays of pointers to strings for ICMP decoding static, as
they're not used outside this file.
Compute their sizes with the standard "number of elements in an array" C
idiom, rather than hardcoding them as numbers.
Add the "information request" and "information reply" ICMP packet types.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@212
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 5 Mar 1999 06:09:39 +0000 (06:09 +0000)]
IPX addresses in the Destination/Source fields of the "column" part of the GUI
are now written in NNNNNNNN.hhhhhhhhhhhh form, N=IPX network, h=hwaddr.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@211
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 5 Mar 1999 05:20:12 +0000 (05:20 +0000)]
dissect_sap() no longer assumes that packets are the proper length. It
checks for enough bytes for a SAP record before dissecting the bytes.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@210
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Wed, 3 Mar 1999 08:51:58 +0000 (08:51 +0000)]
It's not a problem if we don't have GLib 1.1.x or later, so don't
complain about it.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@209
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Wed, 3 Mar 1999 08:31:43 +0000 (08:31 +0000)]
Include "config.h", so we know whether we have GLib 1.0[.x] or later, so
we know whether to include "glib-new.h".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@208
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Tue, 2 Mar 1999 20:50:05 +0000 (20:50 +0000)]
Add the right byte count to fddi's initial add_item_to_tree so that the entire
FDDI header is highlighted in the hex dump.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@207
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Tue, 2 Mar 1999 19:32:33 +0000 (19:32 +0000)]
Fixed for glib-1.x.y, x > 0
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@206
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 2 Mar 1999 07:04:55 +0000 (07:04 +0000)]
Have "rt-scanner.l" and "rt-grammar.y" depend on the filter description
files used to generate them.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@205
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 1 Mar 1999 22:59:47 +0000 (22:59 +0000)]
It turns out that the first of the unknown fields in the NetXRay header
appears to be the UNIX "time_t" when the capture started, so use that to
figure out the time when a packet was captured.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@204
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 1 Mar 1999 21:50:20 +0000 (21:50 +0000)]
lex_init() changed to wtap_lex_init()
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@203
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 1 Mar 1999 21:48:30 +0000 (21:48 +0000)]
Guy noticed that lex_init was a function in both libpcap and wiretap. Fixed.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@202
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 1 Mar 1999 21:45:54 +0000 (21:45 +0000)]
Add an "acinclude.m4", from which "aclocal.m4" is made.
Add "HAVE_GLIB10" to "acconfig.h", so that all the "auto*" stuff is
happy.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@201
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 1 Mar 1999 20:35:33 +0000 (20:35 +0000)]
Fix a typo, and note that we can read Token Ring captures from Sniffer
Basic/Windows Sniffer Pro.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@200
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 1 Mar 1999 20:32:54 +0000 (20:32 +0000)]
Disables "Follow TCP Stream" if compiled with wiretap.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@199
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 1 Mar 1999 18:57:07 +0000 (18:57 +0000)]
Added display filters to wiretap.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@198
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 1 Mar 1999 18:28:12 +0000 (18:28 +0000)]
Small fixes for alignment, and #include for gtk+-1.1.x/glib-1.1.x
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@197
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Sun, 28 Feb 1999 16:10:39 +0000 (16:10 +0000)]
* Added Didier Joran to authors list.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@196
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 20 Feb 1999 08:12:20 +0000 (08:12 +0000)]
Update to reflect support for NetXRay format.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@195
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 20 Feb 1999 06:49:27 +0000 (06:49 +0000)]
Add support for Cinco Networks NetXRay - which is, after their acquision
by Network General (subsequently merged with McAfee Associates into
Network Associates), called "Sniffer Basic".
A similar format appears to be used by the Windows Sniffer Pro.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@194
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 20 Feb 1999 06:46:57 +0000 (06:46 +0000)]
Make the "magic number" a "const" string.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@193
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 20 Feb 1999 06:46:33 +0000 (06:46 +0000)]
Fix a typo in a comment, and make the "magic number" a "const" string.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@192
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Fri, 19 Feb 1999 05:28:38 +0000 (05:28 +0000)]
Added Richard Sharpe's TFTP support. (I missed this in my initial
checkin of that stuff.)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@191
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 15 Feb 1999 06:36:57 +0000 (06:36 +0000)]
Added Richard Sharpe's TFTP support.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@190
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 15 Feb 1999 06:36:19 +0000 (06:36 +0000)]
Add support for "%i" (it's the same as "%d", according to the ANSI C
standard).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@189
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 12 Feb 1999 16:26:09 +0000 (16:26 +0000)]
Change to wtap.c switch() statement to allow compilation under IBM's C compiler.
It didn't like an empty default case. And <time.h> was forgotten in netmon.c
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@188
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Fri, 12 Feb 1999 09:03:42 +0000 (09:03 +0000)]
Add a first cut at HTTP decoding.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@187
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Thu, 11 Feb 1999 07:11:45 +0000 (07:11 +0000)]
Have MIN_PACKET_SIZE, rather than 1, be the minimum value in the spin
box for the capture size.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@186
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Thu, 11 Feb 1999 06:17:30 +0000 (06:17 +0000)]
Make the minimum and maximum packet sizes #defines.
Crank the maximum packet size up to 65535 bytes.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@185
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 9 Feb 1999 00:35:38 +0000 (00:35 +0000)]
When doing a capture, decode enough of the incoming packets to correctly
update the packet counts and percentages in the dialog box popped up
during a capture, even for non-Ethernet captures.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@184
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Mon, 8 Feb 1999 20:02:35 +0000 (20:02 +0000)]
I removed the bit-fields that depended upon gcc's ability to use any type
of variable as a bit field container. ANSI specs only allow unsigned ints
to host bit fields; IBM's C compiler is very ANSI-strict.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@183
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Fri, 5 Feb 1999 00:52:19 +0000 (00:52 +0000)]
Copy the RIP header to a buffer, so that we don't blow up if it's
misaligned.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@182
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Tue, 2 Feb 1999 02:53:24 +0000 (02:53 +0000)]
No need to disable filter-related widgets for packet capture if we're
using wiretap - we use "libpcap" for packet capture, and it still lets
you filter.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@181
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 30 Jan 1999 10:35:19 +0000 (10:35 +0000)]
Add Network Monitor and "iptrace" to the list of capture file formats
"wiretap" can read.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@180
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 30 Jan 1999 09:44:21 +0000 (09:44 +0000)]
Correct and expand the discussion of ATM Sniffer captures.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@179
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Fri, 29 Jan 1999 17:06:56 +0000 (17:06 +0000)]
Modified code to allow compilation under IBM's C compiler for AIX.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@178
f5534014-38df-0310-8fa8-
9805f1628bb7
gram [Thu, 28 Jan 1999 21:29:36 +0000 (21:29 +0000)]
Added guy's time and DHCP patch.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@177
f5534014-38df-0310-8fa8-
9805f1628bb7