summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
...
| * More correctly and completely describe what -Z does now.Guy Harris2010-11-061-1/+4
| |
| * Switch user ID/root directory with -Z before opening savefiles for output.Paul Ferrell2010-11-062-10/+26
| | | | | | | | | | | | | | | | | | | | In addition to Paul's change, I added a comment explaining why we do this, and explaining that doing so after opening the first savefile doesn't help with subsequent savefiles, so you'll have to come up with a better fix if you want the savefiles opened by the original UID or outside the chroot. Reviewed-By: Guy Harris <guy@alum.mit.edu>
* | updated RPL type code to RPL-17 draftMichael Richardson2010-12-312-11/+30
|/ | | | | added secure bit updated single test case
* make test cases a bit quieterMichael Richardson2010-10-071-3/+4
|
* added support and test case for QinQ packetsMichael Richardson2010-10-076-1/+2252
|
* updated test with extra length printedMichael Richardson2010-10-071-1/+1
|
* reworked print-ether to use netdissectMichael Richardson2010-10-0713-72/+82
|
* Mark various IPv4 and IPv6 headers as unaligned.Guy Harris2010-08-314-54/+50
| | | | | | | | | | | | | This prevents GCC on SPARC from generating code that assumes those structures are aligned naturally, which they are not guaranteed to be. Move some #defines from interface.h to tcpdump-stdinc.h to make them available to code that doesn't include interface.h. Move the declaration of nextproto6_cksum() to ip6.h, so that only files that use it get it declared, and thus so that you don't need to define "struct ip6_hdr" in everything that includes interface.h. Don't include ip6.h in tcpdump-stdinc.h.
* Point users to the pcap-tstamp-type man page for information for -j.Guy Harris2010-08-231-2/+6
|
* Document -j and -J. List -h in the usage message.Guy Harris2010-08-232-2/+14
|
* Merge branch 'master' of git+ssh://bpf.tcpdump.org/tcpdump/master/git/tcpdumpGuy Harris2010-08-238-691/+1
|\
| * Get rid of another unused win32/Include header.Guy Harris2010-08-232-41/+0
| |
| * As with libpcap, get rid of autom4te.cache when doing "make distclean".Guy Harris2010-08-231-0/+1
| |
| * Get rid of some more include files we no longer need.Guy Harris2010-08-234-556/+0
| | | | | | | | | | | | We have our own copies of those include files, which we use; we haven't used the system versions for a long time, so we don't need to drag them along for compiling WinDump.
| * Clean up handling of tftp.h.Guy Harris2010-08-234-94/+0
| | | | | | | | | | | | | | | | Don't include the win32/Include/Arpa copy in print-udp.c; don't put that copy into the release tarball; and don't talk about <arpa/tftp.h>, or work around its deficiencies in some OSes, as we no longer include it, we include our own tftp.h, which has a th_stuff array in its structure definition.
* | Handle DLT_IEEE802_15_4_NOFCS like DLT_IEEE802_15_4.Guy Harris2010-08-221-0/+3
|/
* Print a -L-like header for -J.Guy Harris2010-08-221-0/+7
|
* Add support for setting the time stamp type for a capture.Guy Harris2010-08-227-13/+195
| | | | | | Based on a patch from Scott Mcmillan <scott.a.mcmillan@intel.com>. While we're at it, make some error messages a bit less geeky.
* Fix credits item for Pawel Worach.Guy Harris2010-08-221-1/+1
| | | | | (This is for the "Correctly check for various values of the ICMP type field." fixes to print-icmp6.c.)
* Correctly check for various values of the ICMP type field.Guy Harris2010-08-192-8/+8
| | | | | clang+llvm warnings pointed out some incorrect code - you can't, in C, check for multiple values for a variable that way.
* Print IPX network numbers as 8 hex digits, as we do elsewhere.Guy Harris2010-08-171-2/+2
|
* Add additional length checking, print unsigned lengths with %u.Guy Harris2010-08-161-11/+19
|
* Print AppleTalk layer-3 network numbers as 16-bit unsigned decimal numbers.Guy Harris2010-08-161-13/+9
| | | | | | | | | | | | | | Pick up from FreeBSD: revision 1.3 date: 1996/09/11 06:18:26; author: pst; state: Exp; lines: +9 -12 branches: 1.3.2; Print appletalk layer 3 addresses as 16 bit unsigned decimal numbers, not two 8 bit values. This conforms to industry standard. These changes have been sent back to LBL. Inside AppleTalk(R), Second Edition speaks of node numbers as 16-bit.
* Get rid of no-longer-valid comment.Guy Harris2010-08-161-8/+0
| | | | | | We no longer guarantee alignment in any printer routine; all printers must use the EXTRACT_ macros to extract integral quantities - and the Appletalk printers now do so.
* Prevent GCC from doing some alignment-unsafe optimizations on SPARC.Guy Harris2010-08-142-2/+35
| | | | | | | | | | | | | | | | | | At least some versions of GCC will, on SPARC, generate code for if (bp->bp_htype == 1 && bp->bp_hlen == 6 && bp->bp_op == BOOTPREQUEST) { where bp is a pointer to a struct bootp, that loads the first 4-byte word in that structure, masks out the field in that structure that's not being compared, and compares against a word with the appropriate values in the other fields. That won't work, because there's no guarantee that bp points to a value aligned on a 4-byte boundary. Declaring "struct bootp" to be packed appears to keep at least GCC 4.2.4 from performing that optimization; we define an "UNALIGNED" tag to apply to structures to prevent that optimization, and apply that tag to the structures in bootp.h. (We'll apply it to other structures as we discover the need for it.)
* from Anton Bernal:Hannes Gredler2010-08-082-52/+87
| | | | -add support for BGP / LDP FEC 129 interworking
* List the 4.1.x fixes we've checked in so far.Guy Harris2010-07-201-3/+16
| | | | Also, clean up the item for the post-4.1.x changes.
* Add the contributors of the recent man page changes to the credits.Guy Harris2010-06-051-1/+3
| | | | (And sort the credits by first name while we're at it.)
* If -U is specified, flush the file after creating it, so it's not zero-length.Romain Francoise2010-06-052-0/+5
| | | | | | | | | | Reading from a capture file that has not yet received any packets fails with "truncated dump file"; to avoid this, flush the file (forcing the pcap header out) immediately after opening it. (Added Romain to the credits.) Reviewed-By: Guy Harris <guy@alum.mit.edu>
* Merge back changes from the Debian package:Romain Francoise2010-06-041-6/+5
| | | | | | | | | - fix TCP flags output description, by Christophe Rhodes <csr21@cantab.net> Original patch submitted in http://bugs.debian.org/575724 - two remaining typo fixes, by A Costa <agcosta@gis.net> Original patch submitted in http://bugs.debian.org/342310 Reviewed-By: Guy Harris <guy@alum.mit.edu>
* Add ACK decoding and add PGMCC DATA and FEEDBACK options.Steve-o2010-05-291-0/+88
| | | | Reviewed-By: Guy Harris <guy@alum.mit.edu>
* Handle the reserved value for the addressing modes.Guy Harris2010-05-281-1/+7
| | | | | Report an error if the source or destination addressing mode has the reserved value. Also, squelch a warning.
* Add a -h flag, and only attempt to recognize 802.11s mesh headers if it's set.Guy Harris2010-05-275-3/+13
| | | | | | | | | | | | | | | | | I give up. I have no access to the 802.11s drafts, I can't find anything that suggests whether a heuristic check for an 802.11s header should check for To DS and From DS both being set or either being set or unset, or whether it should check for a QoS frame type (the examples in all the documentation I can find have To DS and From DS set, and have a QoS field, in the 802.11 header, but that might just be an example 802.11 header showing all the fields), so I'm just adding a -h command-line flag; you need to specify it to get tcpdump to try to guess whether a frame has a mesh header or not. I'll leave it up to somebody else to figure out what the best heuristic for detecting the presence of mesh headers is (note that tcpdump and Wireshark have different heuristics, both of which can probably get false positives, especially with encrypted frames where the first payload byte just *happens* not to have any of the reserved bits in the mesh header flags set).
* Fix check for malformed frames.Guy Harris2010-05-181-6/+9
| | | | | | | Don't get confused by some malformed frames - always return -1 - and assign the result of extract_header_length() to an int, so we don't get warnings when we compare it against -1. (Its return value always fits in an int.)
* Merge branch 'master' of git+ssh://bpf.tcpdump.org/tcpdump/master/git/tcpdumpMichael Richardson2010-05-136-24/+23
|\
| * When printing the link-layer type list, send *all* output to stderr.Guy Harris2010-05-071-1/+1
| |
| * Add a comment to the AC_DEFINE for _SUN, matching what we do in libpcap.Guy Harris2010-04-164-8/+6
| |
| * Include the CFLAGS setting when configure was run in the compiler flags.Guy Harris2010-04-161-15/+16
| |
* | moved ieee802.15.4 to NDO systemMichael Richardson2010-05-134-17/+18
| |
* | give credit to Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>Michael Richardson2010-05-132-0/+5
| |
* | Merge commit 'lumag/master'Michael Richardson2010-05-136-5/+211
|\ \ | |/ |/|
| * print_802_15_4.c: extend 802.15.4 printer to dump header informationDmitry Eremin-Solenikov2010-03-091-1/+136
| | | | | | | | Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * tcpdump.c: fix merge error: ieee802_15_4_if_print isn't a new style printerDmitry Eremin-Solenikov2010-03-091-3/+3
| | | | | | | | Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * Makefile.in: fix print-802_15_4.c file orderDmitry Eremin-Solenikov2010-03-091-1/+1
| | | | | | | | Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * addrtoname.[ch]: add a printer for Little-Endian 64-bit addressDmitry Eremin-Solenikov2010-03-092-0/+29
| | | | | | | | Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * Merge remote branch 'origin/master'Dmitry Eremin-Solenikov2010-03-09100-1262/+7649
| |\
| * | Add support for IEEE 802.15.4 packetsDmitry Eremin-Solenikov2009-08-094-5/+47
| | | | | | | | | | | | | | | | | | Add a dummy printer for ieee 802.15.4 pakets. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
* | | Build fat appropriately for Leopard.Guy Harris2010-04-062-0/+18
| | |
* | | OS X has its own optimized ntoh[ls]; use them, don't define our own.Guy Harris2010-04-041-1/+1
| | |
* | | Fix error, pick up stuff from libpcap bittypes.h.Guy Harris2010-04-041-1/+11
| | |
View Lorry Controller Status