2 * Routines for capture file summary info
6 * Wireshark - Network traffic analyzer
7 * By Gerald Combs <gerald@wireshark.org>
8 * Copyright 1998 Gerald Combs
10 * This program is free software; you can redistribute it and/or
11 * modify it under the terms of the GNU General Public License
12 * as published by the Free Software Foundation; either version 2
13 * of the License, or (at your option) any later version.
15 * This program is distributed in the hope that it will be useful,
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 * GNU General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
29 #ifdef HAVE_SYS_TYPES_H
30 #include <sys/types.h>
33 #include <epan/packet.h>
37 #include "capture_ui_utils.h"
42 tally_frame_data(frame_data *cur_frame, summary_tally *sum_tally)
46 sum_tally->bytes += cur_frame->pkt_len;
47 if (cur_frame->flags.passed_dfilter){
48 sum_tally->filtered_count++;
49 sum_tally->filtered_bytes += cur_frame->pkt_len;
51 if (cur_frame->flags.marked){
52 sum_tally->marked_count++;
53 sum_tally->marked_bytes += cur_frame->pkt_len;
55 if (cur_frame->flags.ignored){
56 sum_tally->ignored_count++;
59 if (cur_frame->flags.has_ts) {
60 /* This packet has a time stamp. */
61 cur_time = nstime_to_sec(&cur_frame->abs_ts);
63 sum_tally->packet_count_ts++;
64 if (cur_time < sum_tally->start_time) {
65 sum_tally->start_time = cur_time;
67 if (cur_time > sum_tally->stop_time){
68 sum_tally->stop_time = cur_time;
70 if (cur_frame->flags.passed_dfilter){
71 sum_tally->filtered_count_ts++;
73 * If we've seen one filtered packet, this is the first
76 if (sum_tally->filtered_count == 1){
77 sum_tally->filtered_start= cur_time;
78 sum_tally->filtered_stop = cur_time;
80 if (cur_time < sum_tally->filtered_start) {
81 sum_tally->filtered_start = cur_time;
83 if (cur_time > sum_tally->filtered_stop) {
84 sum_tally->filtered_stop = cur_time;
88 if (cur_frame->flags.marked){
89 sum_tally->marked_count_ts++;
91 * If we've seen one marked packet, this is the first
94 if (sum_tally->marked_count == 1){
95 sum_tally->marked_start= cur_time;
96 sum_tally->marked_stop = cur_time;
98 if (cur_time < sum_tally->marked_start) {
99 sum_tally->marked_start = cur_time;
101 if (cur_time > sum_tally->marked_stop) {
102 sum_tally->marked_stop = cur_time;
110 summary_fill_in(capture_file *cf, summary_tally *st)
113 frame_data *first_frame, *cur_frame;
115 wtapng_section_t* shb_inf;
117 st->packet_count_ts = 0;
121 st->filtered_count = 0;
122 st->filtered_count_ts = 0;
123 st->filtered_start = 0;
124 st->filtered_stop = 0;
125 st->filtered_bytes = 0;
126 st->marked_count = 0;
127 st->marked_count_ts = 0;
128 st->marked_start = 0;
130 st->marked_bytes = 0;
131 st->ignored_count = 0;
133 /* initialize the tally */
134 if (cf->count != 0) {
135 first_frame = frame_data_sequence_find(cf->frames, 1);
136 st->start_time = nstime_to_sec(&first_frame->abs_ts);
137 st->stop_time = nstime_to_sec(&first_frame->abs_ts);
139 for (framenum = 1; framenum <= cf->count; framenum++) {
140 cur_frame = frame_data_sequence_find(cf->frames, framenum);
141 tally_frame_data(cur_frame, st);
145 st->filename = cf->filename;
146 st->file_length = cf->f_datalen;
147 st->file_type = cf->cd_t;
148 st->is_tempfile = cf->is_tempfile;
149 st->encap_type = cf->lnk_t;
150 st->has_snap = cf->has_snap;
152 st->elapsed_time = nstime_to_sec(&cf->elapsed_time);
153 st->packet_count = cf->count;
154 st->drops_known = cf->drops_known;
155 st->drops = cf->drops;
156 st->dfilter = cf->dfilter;
158 /* Get info from SHB */
159 shb_inf = wtap_file_get_shb_info(cf->wth);
161 shb_inf = wtap_file_get_shb_info(cf->wth);
162 st->opt_comment = shb_inf->opt_comment;
163 st->shb_hardware = shb_inf->shb_hardware;
164 st->shb_os = shb_inf->shb_os;
165 st->shb_user_appl = shb_inf->shb_user_appl;
168 st->ifaces = g_array_new(FALSE, FALSE, sizeof(iface_options));
174 summary_fill_in_capture(capture_file *cf,capture_options *capture_opts, summary_tally *st)
179 wtapng_iface_descriptions_t* idb_info;
180 wtapng_if_descr_t wtapng_if_descr;
182 while (st->ifaces->len > 0) {
183 iface = g_array_index(st->ifaces, iface_options, 0);
184 st->ifaces = g_array_remove_index(st->ifaces, 0);
187 g_free(iface.cfilter);
189 if (st->is_tempfile) {
190 for (i = 0; i < capture_opts->all_ifaces->len; i++) {
191 device = g_array_index(capture_opts->all_ifaces, interface_t, i);
192 if (!device.selected) {
195 iface.cfilter = g_strdup(device.cfilter);
196 iface.name = g_strdup(device.name);
197 iface.descr = g_strdup(device.display_name);
198 iface.drops_known = cf->drops_known;
199 iface.drops = cf->drops;
200 iface.has_snap = device.has_snaplen;
201 iface.snap = device.snaplen;
202 iface.linktype = device.active_dlt;
203 g_array_append_val(st->ifaces, iface);
206 idb_info = wtap_file_get_idb_info(cf->wth);
207 for (i = 0; i < idb_info->number_of_interfaces; i++) {
208 wtapng_if_descr = g_array_index(idb_info->interface_data, wtapng_if_descr_t, i);
209 iface.cfilter = g_strdup(wtapng_if_descr.if_filter);
210 iface.name = g_strdup(wtapng_if_descr.if_name);
211 iface.descr = g_strdup(wtapng_if_descr.if_description);
212 iface.drops_known = FALSE;
214 iface.snap = wtapng_if_descr.snap_len;
215 iface.has_snap = (iface.snap != 65535);
216 iface.linktype = wtapng_if_descr.link_type;
217 g_array_append_val(st->ifaces, iface);
225 summary_update_comment(capture_file *cf, gchar *comment)
228 /* Get info from SHB */
229 wtap_write_shb_comment(cf->wth, comment);