Re: [Wireshark-dev] Filebacked-tvbuffs : GSoC'13

2013-05-12 Thread Guy Harris
On May 12, 2013, at 11:07 PM, Anders Broman wrote: > Guy Harris skrev 2013-05-11 19:45: >> On May 11, 2013, at 7:28 AM, Ambarisha B wrote: >> >>> I was trying to move the reassembled data from the reassembled_table to >>> frame_data. > > If the pointer to the reassembled data is stored in t

Re: [Wireshark-dev] Filebacked-tvbuffs : GSoC'13

2013-05-12 Thread Guy Harris
On May 12, 2013, at 10:57 PM, Anders Broman wrote: > So either this is a bad idea, don't pursue it or everything we can read we > should be able to write in pcap-ng > as a temporary file at least. ...or if we're going to store the contents of packet *not* just generated by gluing together stu

Re: [Wireshark-dev] Filebacked-tvbuffs : GSoC'13

2013-05-12 Thread Anders Broman
Guy Harris skrev 2013-05-11 19:45: On May 11, 2013, at 7:28 AM, Ambarisha B wrote: I was trying to move the reassembled data from the reassembled_table to frame_data. If the pointer to the reassembled data is stored in the per_packet_data in frame_data the memory usage should work out to

Re: [Wireshark-dev] Filebacked-tvbuffs : GSoC'13

2013-05-12 Thread Anders Broman
Guy Harris skrev 2013-05-12 00:52: On May 2, 2013, at 9:25 AM, Anders Broman wrote: Alternatively if the file is rewritten on the first pass writing the reassembled data together with the packet holding the last fragment the reassembled data could be read together with the packet But that mi

Re: [Wireshark-dev] compiling qtshark

2013-05-12 Thread Ahmed Elshaer
ok thanks i'll read them On Mon, May 13, 2013 at 5:35 AM, Richard Turner wrote: > On 2013/5/13 7:07, Ahmed Elshaer wrote: > > i want to compile qtshark which is a port for wireshark in qt, and i just > opened a qtshark.pro > and try to compile and it gives me this erroe: > "Can't find config.p

Re: [Wireshark-dev] compiling qtshark

2013-05-12 Thread Richard Turner
On 2013/5/13 7:07, Ahmed Elshaer wrote: i want to compile qtshark which is a port for wireshark in qt, and i just opened a qtshark.pro and try to compile and it gives me this erroe: "Can't find config.pri. Have you run 'nmake -f Makefile.nmake' two directories up?" please t

[Wireshark-dev] compiling qtshark

2013-05-12 Thread Ahmed Elshaer
i want to compile qtshark which is a port for wireshark in qt, and i just opened a qtshark.pro and try to compile and it gives me this erroe: "Can't find config.pri. Have you run 'nmake -f Makefile.nmake' two directories up?" please tell me instructions or steps to compile because i never use make

Re: [Wireshark-dev] ASN1 now builds with cmake - open points

2013-05-12 Thread Pascal Quantin
2013/5/12 Joerg Mayer > I've finished adding the necessary code to generate the dissectors in the > asn1 subdirectory. > To build and copy a single dissector, just go into the subdirectory and > type "make". > To regenerate and copy all dissectors, go into the asn1 directory and type > "make". >

Re: [Wireshark-dev] GSOC ideas: protocol buffers dissector andFileshark

2013-05-12 Thread okordy
From: > I guess current file dissectors are ok (they are only not complete). I > propose start work on Fileshark by write simple file dissector for Wireshark. > You meet dissector API and Wireshark. For example: *.bmp > It sometimes used on webpages, so it is in Wireshark scope. Also you will be

Re: [Wireshark-dev] [Wireshark-commits] rev 49259: /trunk/ /trunk/ui/cli/: tap-follow.c /trunk/epan/dissectors/: packet-6lowpan.c packet-ajp13.c packet-arp.c packet-beep.c packet-brdwlk.c packet-catap

2013-05-12 Thread Anders Broman
Evan Huus skrev 2013-05-12 21:43: On Sun, May 12, 2013 at 2:11 PM, wrote: http://anonsvn.wireshark.org/viewvc/viewvc.cgi?view=rev&revision=49259 User: etxrab Date: 2013/05/12 11:11 AM Log: Add the posibillity to use a key for per-packet-data. It doesn't appear to actually be respected rig

[Wireshark-dev] ASN1 now builds with cmake - open points

2013-05-12 Thread Joerg Mayer
I've finished adding the necessary code to generate the dissectors in the asn1 subdirectory. To build and copy a single dissector, just go into the subdirectory and type "make". To regenerate and copy all dissectors, go into the asn1 directory and type "make". I'm using different make targets for

Re: [Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Evan Huus
On Sun, May 12, 2013 at 3:02 PM, Pascal Quantin wrote: > 2013/5/12 Evan Huus >> >> On Sun, May 12, 2013 at 12:34 PM, Anders Broman >> wrote: >> > If the tap is extracting information from the packet and a dissector bug >> > occurs before that >> > information is extracted that information will a

Re: [Wireshark-dev] [Wireshark-commits] rev 49259: /trunk/ /trunk/ui/cli/: tap-follow.c /trunk/epan/dissectors/: packet-6lowpan.c packet-ajp13.c packet-arp.c packet-beep.c packet-brdwlk.c packet-catap

2013-05-12 Thread Evan Huus
On Sun, May 12, 2013 at 2:11 PM, wrote: > http://anonsvn.wireshark.org/viewvc/viewvc.cgi?view=rev&revision=49259 > > User: etxrab > Date: 2013/05/12 11:11 AM > > Log: > Add the posibillity to use a key for per-packet-data. It doesn't appear to actually be respected right now. Did you intend to

Re: [Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Pascal Quantin
2013/5/12 Evan Huus > On Sun, May 12, 2013 at 12:34 PM, Anders Broman > wrote: > > If the tap is extracting information from the packet and a dissector bug > > occurs before that > > information is extracted that information will always be missing from the > > tap so having > > "correct" informa

Re: [Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Evan Huus
On Sun, May 12, 2013 at 12:34 PM, Anders Broman wrote: > If the tap is extracting information from the packet and a dissector bug > occurs before that > information is extracted that information will always be missing from the > tap so having > "correct" information from a tap is impossible if the

Re: [Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Pascal Quantin
2013/5/12 Anders Broman > Evan Huus skrev 2013-05-12 15:11: > > On Sun, May 12, 2013 at 8:58 AM, Anders Broman >> wrote: >> >>> Pascal Quantin skrev 2013-05-12 11:08: >>> >>> 2013/5/12 Anders Broman >>> Pascal Quantin skrev 2013-05-10 15:20: 2013/5/5 Anders Broman > Hi

Re: [Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Pascal Quantin
2013/5/12 Evan Huus > On Sun, May 12, 2013 at 8:58 AM, Anders Broman > wrote: > > Pascal Quantin skrev 2013-05-12 11:08: > > > > 2013/5/12 Anders Broman > >> > >> Pascal Quantin skrev 2013-05-10 15:20: > >> > >> 2013/5/5 Anders Broman > >>> > >>> Hi, > >>> I have added a basic implementation m

Re: [Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Anders Broman
Evan Huus skrev 2013-05-12 15:11: On Sun, May 12, 2013 at 8:58 AM, Anders Broman wrote: Pascal Quantin skrev 2013-05-12 11:08: 2013/5/12 Anders Broman Pascal Quantin skrev 2013-05-10 15:20: 2013/5/5 Anders Broman Hi, I have added a basic implementation making it possible to export higher

Re: [Wireshark-dev] Export PDU:s

2013-05-12 Thread Anders Broman
Pascal Quantin skrev 2013-05-12 17:50: 2013/5/12 Anders Broman > Pascal Quantin skrev 2013-05-12 11:08: 2013/5/12 Anders Broman mailto:a.bro...@bredband.net>> Pascal Quantin skrev 2013-05-10 15:20: 2013/5/5 Anders Broman mailto:a.bro...@br

Re: [Wireshark-dev] Export PDU:s

2013-05-12 Thread Pascal Quantin
2013/5/12 Anders Broman > Pascal Quantin skrev 2013-05-12 11:08: > > 2013/5/12 Anders Broman > >> Pascal Quantin skrev 2013-05-10 15:20: >> >> 2013/5/5 Anders Broman >> >>> Hi, >>> I have added a basic implementation making it possible to export higher >>> level PDU:s to file using a USER_

[Wireshark-dev] Fwd: Process Information with packets

2013-05-12 Thread Prameswar Lal
-- Forwarded message -- From: Prameswar Lal Date: Sun, 12 May 2013 19:45:13 +0530 Subject: Process Information with packets To: wireshark-us...@wireshark.org hi i am going to work on project The application and user associated with each packet should be shown in the packet deta

[Wireshark-dev] Tapping Behaviour [Was: Export PDU:s]

2013-05-12 Thread Evan Huus
On Sun, May 12, 2013 at 8:58 AM, Anders Broman wrote: > Pascal Quantin skrev 2013-05-12 11:08: > > 2013/5/12 Anders Broman >> >> Pascal Quantin skrev 2013-05-10 15:20: >> >> 2013/5/5 Anders Broman >>> >>> Hi, >>> I have added a basic implementation making it possible to export higher >>> level P

Re: [Wireshark-dev] Export PDU:s

2013-05-12 Thread Anders Broman
Pascal Quantin skrev 2013-05-12 11:08: 2013/5/12 Anders Broman > Pascal Quantin skrev 2013-05-10 15:20: 2013/5/5 Anders Broman mailto:a.bro...@bredband.net>> Hi, I have added a basic implementation making it possible to export highe

Re: [Wireshark-dev] Filebacked-tvbuffs : GSoC'13

2013-05-12 Thread Ambarisha B
On Sun, May 12, 2013 at 4:18 AM, Guy Harris wrote: > I dropped the attempt in question for now. > > A from-scratch rewrite might called for here. Can this be done this summer itself? As I see there's no point in improving the current state of things (filebacked -reassembly etc), if sooner or la

Re: [Wireshark-dev] Export PDU:s

2013-05-12 Thread Pascal Quantin
2013/5/12 Anders Broman > Pascal Quantin skrev 2013-05-10 15:20: >> 2013/5/5 Anders Broman >>> Hi, >>> I have added a basic implementation making it possible to export higher >>> level PDU:s to file using a USER_DLT. >>> The basic implementation makes it possible to export SIP traffic to a new