gerald [Thu, 24 Aug 2006 16:29:49 +0000 (16:29 +0000)]
Copy over files from the release.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19015
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Thu, 24 Aug 2006 16:23:32 +0000 (16:23 +0000)]
Bump the version to 0.99.4.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19014
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Thu, 24 Aug 2006 16:19:49 +0000 (16:19 +0000)]
Add missing files to the distribution.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19012
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 23 Aug 2006 21:19:02 +0000 (21:19 +0000)]
fix #927: Win32: delete an existing file, if the user want's to overwrite a file and confirmed this already
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19008
f5534014-38df-0310-8fa8-
9805f1628bb7
jake [Wed, 23 Aug 2006 15:51:15 +0000 (15:51 +0000)]
From Toralf Foerster (in bug 1044):
Add new primary sources, fix typo.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19007
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 23 Aug 2006 09:48:16 +0000 (09:48 +0000)]
testdrive the request/response README and implement request/response matching for DNS
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19003
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 23 Aug 2006 08:05:28 +0000 (08:05 +0000)]
Counter64 should be a FT_UINT64 and not a FT_UINT32
fixes bug 1047
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19002
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 23 Aug 2006 07:41:43 +0000 (07:41 +0000)]
move the include for emem.h so that size_t is defined before emem.h is invoked
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@19001
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Tue, 22 Aug 2006 20:39:20 +0000 (20:39 +0000)]
Complete clean targets
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18999
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Tue, 22 Aug 2006 19:55:31 +0000 (19:55 +0000)]
From David Buechi:
Add support for the ETHERNET Powerlink protocol
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18998
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Tue, 22 Aug 2006 19:43:38 +0000 (19:43 +0000)]
(slightly) further dissection of the Option (Organizationally specific) block
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18997
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Tue, 22 Aug 2006 19:42:04 +0000 (19:42 +0000)]
fix TLB block alignment to be compatible with the current MRP draft. Would be nice if included in the 0.99.3
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18996
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Tue, 22 Aug 2006 15:55:42 +0000 (15:55 +0000)]
Bail out of an infinite loop. Fixes bug 1048. (This was introduced after
the 0.99.3 trunk was created.) Remove a couple of static buffers. Fix up
whitespace.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18995
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Tue, 22 Aug 2006 14:46:51 +0000 (14:46 +0000)]
From Florent Drouin:
I found a loop in the q2931 dissector, whereas I was dissecting Ranap
Traces with a bad wireshark configuration.
Wireshark did crash, after eating all the memory.
Make other loop checks more paranoid.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18992
f5534014-38df-0310-8fa8-
9805f1628bb7
martinm [Tue, 22 Aug 2006 14:00:18 +0000 (14:00 +0000)]
Fix iuup.delta FT_ type mismatch
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18991
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 21 Aug 2006 23:36:59 +0000 (23:36 +0000)]
Indicate in the synopsis that you can put the capture filter at the end
of the command line without "-f".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18990
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 21 Aug 2006 23:28:19 +0000 (23:28 +0000)]
Initialize the cfilter field of a capture_opts structure to a null
pointer, so we can determine whether a capture filter has been set or
not.
Use that to check in TShark whether the user specified a filter with
"-f" or not, rather than using the no-longer-set
"capture_filter_specified" variable.
Also, check for multiple "-f" options.
If no capture filter is specified, use a null string, to work around
broken versions of Linux libpcap.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18989
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 21 Aug 2006 23:23:22 +0000 (23:23 +0000)]
Squelch a compiler warning.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18988
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Mon, 21 Aug 2006 23:06:40 +0000 (23:06 +0000)]
Add to a comment.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18987
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Mon, 21 Aug 2006 21:58:30 +0000 (21:58 +0000)]
From Florent Drouin:
This patch introduce the decoding of the RP-Cause element in the Release SMS message for Camel.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18986
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Mon, 21 Aug 2006 21:24:42 +0000 (21:24 +0000)]
From Florent Drouin:
This patch provide a correction for the element "Channel Needed" in the Paging message. and some improvements for the display of AUTH,SRES,RAND etc..
With some further changes to APDU and LSA Identifier dissection.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18985
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Mon, 21 Aug 2006 21:19:48 +0000 (21:19 +0000)]
From Florent Drouin:
This patch allow to change the value of the SSN associated to the bssap dissector.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18984
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Mon, 21 Aug 2006 19:22:33 +0000 (19:22 +0000)]
Fix up copyrights and whitespace.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18981
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 21 Aug 2006 16:17:24 +0000 (16:17 +0000)]
Update FAQ
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18979
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 21 Aug 2006 16:16:01 +0000 (16:16 +0000)]
Update manuf list
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18978
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Mon, 21 Aug 2006 14:40:05 +0000 (14:40 +0000)]
AirPcap fix from Florent Drouin:
Since version 18928, there is a GTK warning at wireshark startup.
I think a #ifdef HAVE_AIRPCAP is missing in ./gtk/menu.c
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18976
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Mon, 21 Aug 2006 13:44:37 +0000 (13:44 +0000)]
prettify the MMS dissector by at least putting the pdu name in the info column
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18975
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Mon, 21 Aug 2006 13:32:07 +0000 (13:32 +0000)]
from Angel de Juan
make mms bitstrings easier to read
--
Hi, this is my new mms with some changes in order to display some data in
binary instead of hex.
Excuse me because is not a diff from the repository, but I don't know how to
create a diff.
I also have the compiled packet-mms.c and packet-mms.h if you want it only
mail me.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18974
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Mon, 21 Aug 2006 13:05:18 +0000 (13:05 +0000)]
get rid of a rotating buffer
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18973
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Mon, 21 Aug 2006 13:00:55 +0000 (13:00 +0000)]
move a few arrays off the stack
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18972
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Mon, 21 Aug 2006 12:41:59 +0000 (12:41 +0000)]
remove two hashtables and replace with binary trees
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18971
f5534014-38df-0310-8fa8-
9805f1628bb7
martinm [Mon, 21 Aug 2006 11:52:20 +0000 (11:52 +0000)]
The xmlns attribute isn't really part of the schema, so probably shouldn't be #REQUIRED (not that the XML dissector currently uses this property)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18970
f5534014-38df-0310-8fa8-
9805f1628bb7
martinm [Mon, 21 Aug 2006 11:45:37 +0000 (11:45 +0000)]
Make apply-as-filter strings work for FT_UINT_STRING (rather than using frame[...])
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18969
f5534014-38df-0310-8fa8-
9805f1628bb7
martinm [Mon, 21 Aug 2006 11:41:32 +0000 (11:41 +0000)]
Use FT_UINT_STRING for TBCP DENY reason-phrase
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18968
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Mon, 21 Aug 2006 11:26:34 +0000 (11:26 +0000)]
make the scsi statistics dialogs easier to understand for scsi novices
explain what the commandsets refer to SBC==disk SSC=tape MMC=cd
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18967
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Sun, 20 Aug 2006 21:18:43 +0000 (21:18 +0000)]
Dissect some more H.245 messages in MEGACO
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18966
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Sun, 20 Aug 2006 06:00:16 +0000 (06:00 +0000)]
in LDAP over TCP
use tcp_dissect_pdus() which works insterad of trying to do the pdu tracking and signalling for reassembly manually.
This makes ldap pdu tracking and reassembly work properly for cases when hosts are streaming lpad over tcp and there is little or none alignlemt of pdus to the start of a segment
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18965
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Sun, 20 Aug 2006 05:18:10 +0000 (05:18 +0000)]
we have to search for multisegments starting PRIOR to the start of the current semgent or elsae it will break for the case when one multisegment ends in this segment there are a few smaller ones completely within this segment and then another segment starts that spans across future segments.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18964
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Sun, 20 Aug 2006 01:19:56 +0000 (01:19 +0000)]
Make sure a preference exists before we try to use it.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18961
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Sat, 19 Aug 2006 21:42:25 +0000 (21:42 +0000)]
Improve parsing a bit and correctly dissect errorDescriptor in Reply.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18960
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Sat, 19 Aug 2006 09:22:20 +0000 (09:22 +0000)]
add some well known rids from s4 security.idl and code to show the name of this rid
when dissecting a security descriptor
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18959
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 19 Aug 2006 03:01:53 +0000 (03:01 +0000)]
Fix some g_warning() calls.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18958
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 19 Aug 2006 03:01:15 +0000 (03:01 +0000)]
Fix some format strings and format string arguments.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18957
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 19 Aug 2006 03:00:16 +0000 (03:00 +0000)]
Squelch a compiler warning.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18956
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 19 Aug 2006 02:58:48 +0000 (02:58 +0000)]
Define "char_def_alphabet_ext_decode()" with a return type - and define
it as static as it's not used outside this file.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18955
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 19 Aug 2006 02:56:16 +0000 (02:56 +0000)]
Squelch a compiler warning.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18954
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Sat, 19 Aug 2006 00:24:40 +0000 (00:24 +0000)]
Fix cut-and-pasteo.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18953
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Fri, 18 Aug 2006 20:18:38 +0000 (20:18 +0000)]
Fix CID 209 (possible NULL dereference).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18950
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Fri, 18 Aug 2006 18:18:36 +0000 (18:18 +0000)]
From Gisle Vanem: export the new GUID functions.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18949
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Fri, 18 Aug 2006 15:46:43 +0000 (15:46 +0000)]
Add an attribution.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18948
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Fri, 18 Aug 2006 09:32:19 +0000 (09:32 +0000)]
guids are not olnly used in dcerpc interfaces and they often occur in many other protocols such as ldap and smb/smb2
move the initialization of the guid mapping table from the dcerpc dissector to a more neutral place
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18947
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Fri, 18 Aug 2006 09:27:40 +0000 (09:27 +0000)]
change the guid mapping code to use a tree isntead of a hashtable
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18946
f5534014-38df-0310-8fa8-
9805f1628bb7
guy [Fri, 18 Aug 2006 09:01:20 +0000 (09:01 +0000)]
Rework some of the header processing, to handle some additional nettl
files, and to clean the code up a bit - and incorporate some fixes to
the rework, and other fixes, from Mark C. Brown.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18945
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Fri, 18 Aug 2006 08:46:31 +0000 (08:46 +0000)]
from stephen f
new protocol: veritas low latency transport
---
Attached is a patch file that adds a new dissector for the LLT protocol
(Veritas Low Level Transport, used for server clustering). Â They use
ethertype 0xCAFE even though it isn't assigned to them :(. Â There are
other fields and possibly other message types directly between servers
it does not yet dissect as no one outside of Veritas knows what they
are. Â This dissector understands the one people will run across most -
multiple servers broadcasting these heartbeats all over the place. Â I
figured out these fields through many Internet searches.
I will add the protocol to the Wiki after it is committed.
Thanks,
 Steve
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18944
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Fri, 18 Aug 2006 00:22:48 +0000 (00:22 +0000)]
Fix two remaining off-by-one errors. Remove a static buffer.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18943
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Thu, 17 Aug 2006 23:35:45 +0000 (23:35 +0000)]
Include strutil.h.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18942
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Thu, 17 Aug 2006 20:32:06 +0000 (20:32 +0000)]
From Stephen Fisher:
the attached patch removes the
redundant "Cisco Discovery Protocol" from the info column:
Before:
Cisco Discovery Protocol Device ID: myswitch.domain.com Port ID: GigabitEthernet3/17
After:
Device ID: myswitch.domain.com Port ID: GigabitEthernet3/17
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18941
f5534014-38df-0310-8fa8-
9805f1628bb7
etxrab [Thu, 17 Aug 2006 20:24:05 +0000 (20:24 +0000)]
From Hannes Gredler:
A patch that adds support for dissection of
libpcap DLT_JUNIPER_VP frames. In addition i have fixed
also the indent for DLT_JUNIPER_GGSN.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18940
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Thu, 17 Aug 2006 19:09:41 +0000 (19:09 +0000)]
some further work on the GUID/UUID resolvings
most of the relevant code moved to guid_utils
lot of corresponding code cleanup in packet-dcerpc.c
still using GHashTable
still not using a manuf like file
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18939
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Thu, 17 Aug 2006 11:56:35 +0000 (11:56 +0000)]
Muthu Krishnan V <muthukrishnanv@gmail.com>
As per RFC 4090, In the FAST_REROUTE Object, Include-any starts
at the 12th byte and Exclude-any starts at the 16th byte.
Ethereal has inter-changed these two fields in its display.
*Ethereal* bug 1043.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18938
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Thu, 17 Aug 2006 08:17:48 +0000 (08:17 +0000)]
add trees with PErmanent allocation scope which will be useful for constructing
associative arrays for globally unique and persistent mappings such as
oid to name
sid to name
guid to name
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18937
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Thu, 17 Aug 2006 07:35:58 +0000 (07:35 +0000)]
add missing _WIN32 encapsulation so braces match and compilation under non-win32 works
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18936
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 16 Aug 2006 23:13:26 +0000 (23:13 +0000)]
various UUID/GUID based changes.
I think I've changed all corresponding appearances from FT_STRING to FT_GUID, so assert the FT_ type as it should only be a FT_GUID now.
Add a generic implementation in guid_utils.h to have a way to store data about GUID to name resolving (something like value_string for e.g. int). It might be better to have a single registry for all GUID's of all dissectors and implement the GUID name resolving into the proto_tree_add... functions.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18935
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 16 Aug 2006 22:59:55 +0000 (22:59 +0000)]
FT_STRING -> FT_GUID
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18934
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 16 Aug 2006 22:56:55 +0000 (22:56 +0000)]
lower the expert info levels WARN -> NOTE for missing references
fix an iteration bug in cba_connection_disconnectme()
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18933
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 16 Aug 2006 22:45:51 +0000 (22:45 +0000)]
rollback some IMO unintended changes to the config settings
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18932
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 16 Aug 2006 20:55:21 +0000 (20:55 +0000)]
FT_STRING -> FT_GUID
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18931
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Wed, 16 Aug 2006 20:52:51 +0000 (20:52 +0000)]
Don't mark a TCP packet as a "Duplicate ACK" if the flags don't have the ACK flag set (IMHO it's not an ACK in that case). This happens sometimes between FIN and RST packets.
Ronnie, could you check if this change is ok?
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18930
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 16 Aug 2006 19:38:39 +0000 (19:38 +0000)]
add tracking of fid type to objects opened by NT CREATE so that we can dissect aces properly also for these fids
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18929
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Wed, 16 Aug 2006 18:01:25 +0000 (18:01 +0000)]
Add support for AirPcap, an upcoming wireless product from CACE. Support
is disabled by default, and can be enabled by setting AIRPCAP_CONFIG
in config.nmake. The code is currently limited to Windows, but should
be adaptable to other platforms.
The official announcement won't come until next week, so you'll have to
read the source for details. :)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18928
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 16 Aug 2006 10:35:04 +0000 (10:35 +0000)]
use the same structure to pass the fid type information from nt transaction parameter to nt transaction data dissector for both ssd and qsd instead of two different ones
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18927
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 16 Aug 2006 09:22:36 +0000 (09:22 +0000)]
track fid types between NT TRans QUERY_SECURITY_DESCRIPTOR and dissect the ACEs properly
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18926
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 16 Aug 2006 09:02:15 +0000 (09:02 +0000)]
add dissection of DIRECTORY specific bits of the accessmask for SET_SECURITY_DESCRIPTOR
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18925
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 16 Aug 2006 08:48:00 +0000 (08:48 +0000)]
add code to dissect FILE specific bits for the accessmask inside a security descriptor and have SET_SECURITY_DESCRIPTOR use it so that security descriptors for files held inside SET_SECURITY_DESCRIPTOR are decoded properly
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18924
f5534014-38df-0310-8fa8-
9805f1628bb7
kukosa [Wed, 16 Aug 2006 08:07:30 +0000 (08:07 +0000)]
- add value_ptr into struct _asn1_ctx_t
- small changes in h225.cnf
- H.225 regenerated
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18923
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Wed, 16 Aug 2006 08:00:46 +0000 (08:00 +0000)]
add a type field for the fid tracking structure and initialize it to UNKNOWN
when files are opened using NTCreateAndX and if we recognize the type set the type field to either FILE, DIR or PIPE
This is useful to know when dissecting things like security descriptors since it tells us how to dissect the specific bits of the access mask.
Only do this for NTCreateAndX for now. It is trivial to add similar tracking to some of the older obsolete calls used to open fids but no clients ever use those old calls any more.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18922
f5534014-38df-0310-8fa8-
9805f1628bb7
kukosa [Wed, 16 Aug 2006 05:58:39 +0000 (05:58 +0000)]
ASN.1 dissectors regenerated with new asn2wrs to get updated field blurb
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18921
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Wed, 16 Aug 2006 00:12:02 +0000 (00:12 +0000)]
Always print length as well as type in Option line.
Count amount of padding.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18920
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Tue, 15 Aug 2006 20:54:51 +0000 (20:54 +0000)]
Update for 0.99.3.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18919
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 20:46:13 +0000 (20:46 +0000)]
Steve Karg <skarg@users.sourceforge.net>
I made a small change in packet-bacapp.c to fix the following:
1. Corrected Signed value decoding for a one octet value.
2. Corrected Priority values to decode as Unsigned values.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18918
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Tue, 15 Aug 2006 20:35:52 +0000 (20:35 +0000)]
export ep_free_all
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18917
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 20:32:08 +0000 (20:32 +0000)]
Complete: Make dhcp options filterable
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18916
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Tue, 15 Aug 2006 19:28:07 +0000 (19:28 +0000)]
Fix CIDs 204 - 208.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18915
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 18:16:56 +0000 (18:16 +0000)]
Eric Fung <efung@certicom.com>
A very tiny patch that corrects decoding of the Next Payload field in
the IKEv2 header. RFC 4306, Sec 3.2 says that a payload type of 0
means "No Next Payload" and not RESERVED. The patch just uses the
same string the dissector uses for IKEv1, namely, "NONE".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18914
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 18:13:35 +0000 (18:13 +0000)]
Mike Duigou <wireshark@duigou.org>
The enclosed patch updates the set of mime types for line oriented text
data per RFC 2046.
Me:
Remove application/postscript, as it may be binary.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18913
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 13:24:02 +0000 (13:24 +0000)]
Start making dhcp options filterable (special cases still missing)
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18912
f5534014-38df-0310-8fa8-
9805f1628bb7
kukosa [Tue, 15 Aug 2006 13:24:00 +0000 (13:24 +0000)]
filed blurb changed to "proto.WrsType" variant
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18911
f5534014-38df-0310-8fa8-
9805f1628bb7
kukosa [Tue, 15 Aug 2006 13:14:43 +0000 (13:14 +0000)]
Ply updated to version 1.8
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18910
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 11:44:25 +0000 (11:44 +0000)]
Update svn:ignore to changed names (eug->wsug etc).
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18909
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 11:31:55 +0000 (11:31 +0000)]
Mark Lewis <mlewis@altera.com>
I have developed a plugin for Pro-MPEG FEC packets over RTP (see
previous posts on ethereal-dev). I have added a page and example capture
file to the Wiki (http://wiki.wireshark.org/2dParityFEC). The source and
Windows makefile for the plugin are attached. Unfortunately I do not
have access to other systems so this plugin has been tested on Windows
only.
The attached version of my plug-in has only had the copyright header
added.
I will translate this into a proper dissector rather than a plug-in as
requested, but this may take a little time as I have a lot of other
things
to do at the moment.
Me:
Convert into a normal dissector
Reorder / reformat code a bit
Added Marks name to the top of the file.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18908
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 09:49:06 +0000 (09:49 +0000)]
Remove no longer needed dummy files
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18907
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Tue, 15 Aug 2006 06:40:26 +0000 (06:40 +0000)]
Stephen Fisher <stephentfisher@yahoo.com>
Could you apply the attached patch also to finish it off - I
failed to include it in the original e-mail.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18906
f5534014-38df-0310-8fa8-
9805f1628bb7
sahlberg [Tue, 15 Aug 2006 02:21:08 +0000 (02:21 +0000)]
add decode of trust attribute flags as documented in samba4 netlogon idl
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18905
f5534014-38df-0310-8fa8-
9805f1628bb7
ulfl [Mon, 14 Aug 2006 23:39:48 +0000 (23:39 +0000)]
various minor DCOM dissection enhancements:
- add a generic guid register to dissect UUID's (move this to a seperate file?)
- this enables us to set some known names for special UUID's
- use standard DCOM fields for IID and alike in remunk.c
- cleanup dcom_protseq_vals handling
- some FT_STRING to FT_GUID changes
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18904
f5534014-38df-0310-8fa8-
9805f1628bb7
gerald [Mon, 14 Aug 2006 22:34:46 +0000 (22:34 +0000)]
Put protocol preferences in a scrolled window, in case a particular
protocol has a lot of preference items. Change the number of
configurable ESP SAs to 16 (in case someone needs do decrypt many
sessions in a single trace file). Fix up whitespace.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18903
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 14 Aug 2006 22:04:05 +0000 (22:04 +0000)]
The checkin from three weeks ago missed two files...
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18902
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 14 Aug 2006 21:46:05 +0000 (21:46 +0000)]
Stephen Fisher <stephentfisher@yahoo.com>
Attached is a patch to packet-http.c that calls a subdissector for
traffic flowing through a proxy via the HTTP CONNECT method. Most
protocols, especially SSL, can be tunneled through an HTTP proxy.
Wireshark currently says this traffic is "Continuation or non-HTTP
traffic" but this patch turns the payload over to the dissector for the
protocol being tunneled. This is similar to how the Socks dissector
works.
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18901
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 14 Aug 2006 21:37:12 +0000 (21:37 +0000)]
Carlos Pignataro <cpignata@cisco.com>
Please find attached a patch with updates to l2tpv3's l2_sublayer_vals
and pw_types_vals numbers (and pw type decoding).
The previous values belong to a different number space, "MPLS Pseudowire
Types Registry" in http://www.iana.org/assignments/pwe3-parameters, used
by LDP. The new values belong to the correct number space, "L2TPv3
Pseudowire Types" in http://www.iana.org/assignments/l2tp-parameters,
used by L2TPv3. Note that one is a 15-bit number while the other is a
16-bit number. So it's not really removing half of the values; even
though there are some numerical "matches" in the two registries, there
are differences (see for example 12 and 13, and some name changes). From
my knowledge the values not registered are also not used (and part of
the intention of the patch is that they are not misused); a fair
assumption is that it was a clerical error mis-assuming the two
protocols, LDP and L2TPv3, used the same space for "PW Types".
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18900
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 14 Aug 2006 21:28:37 +0000 (21:28 +0000)]
Update
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18899
f5534014-38df-0310-8fa8-
9805f1628bb7
jmayer [Mon, 14 Aug 2006 21:24:00 +0000 (21:24 +0000)]
Update from samba tree revision 16838 to 17541
============================ Samba log start ============
svn: When specifying working copy paths, only one target may be given
============================ Samba log end ==============
git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@18898
f5534014-38df-0310-8fa8-
9805f1628bb7