aboutsummaryrefslogtreecommitdiffstats
path: root/AUTHORS
Commit message (Collapse)AuthorAgeFilesLines
* From Andrew Feren via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5377 :Jeff Morriss2010-12-071-0/+1
| | | | | | | | | | Add a bunch of NetFlow/IPFIX extensions from Plixer and ntop. A little cleanup as well. From me: remove duplicate blurbs. svn path=/trunk/; revision=35142
* Added Alex Badea for his contribution via bug #4149.Chris Maynard2010-12-011-0/+1
| | | | svn path=/trunk/; revision=35089
* From Emil Wojak via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5391 :Jeff Morriss2010-11-221-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | | I'd like to share my enhancements to the TDS dissector with everyone. The list of improvements follows: - nearly complete dissection of RPC calls, - detection and dissection of the ALL_HEADERS rule, - corrected some existing proto_tree fields to support filters, - other minor fixes where the interpretation of data conflicted with the official documentation from MS. I tested the new code on a variety of different TDS captures with many diverse RPC calls. The code compiles and works on 32-bit Linux, I didn't check those changes on other platforms though. From me: - terminate all value_strings - change ++*offset to *offset += 1 (I think that's more readable) - replace all the dissector assertions which could be caused by malformed packets with expert infos - Don't throw ReportedBoundsError when the packets have unexpected data in them, just report an expert info and continue on svn path=/trunk/; revision=35007
* From Stephane Bryant via ↵Jeff Morriss2010-11-221-0/+1
| | | | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5358 : This is a dissector for reload framed message: ReLOAD packets can be inserted in frame message, as described in draft-ietf-p2psip-base-10 From me: remove some unnecessary includes. svn path=/trunk/; revision=35005
* From Yaniv Kaul via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5366 :Jeff Morriss2010-11-191-0/+1
| | | | | | | Several fixes that make Tight VNC negotiation properly parsed. It was not parsed correctly previously, for multiple reasons. svn path=/trunk/; revision=34976
* Add Stéphane Bryant (RELOAD dissector). Since this file accepts UTF-8, put ↵Jeff Morriss2010-11-191-1/+5
| | | | | | the o-umlaut back in Toralf Förster's name. svn path=/trunk/; revision=34968
* From Jon Ellch via bug #5175: Add PPI-GPS protocol dissector patchStephen Fisher2010-11-181-0/+1
| | | | | | | Minor changes by me as detailed in the bug's comment #8. svn path=/trunk/; revision=34956
* From Toralf Foerster via ↵Jeff Morriss2010-11-171-0/+4
| | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5376 : A dissector for the SAMETIME protocol. From me: no need to include gmodule.h, use only ASCII in the author's name. svn path=/trunk/; revision=34930
* From David Katz via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5166 :Jeff Morriss2010-11-171-0/+4
| | | | | | | | | | | | | | | | | | | | | | Add a configuration parameter of the NWG version for WiMAX ASN CP dissector. The format and meaning of TLVs, as well as function types and messages changed between the different NWG versions. Added support for the version number of TLVs in the dictionary xml, its parser, and of course in the packet itself. Added support for the version number of function-types and message-types by extending the value_string structure to contain also a "since" version number. Successfully tested with a live capture and capture file, containing WiMAX ASN packets (full Network entry). Also fuzzed 500 passes successfully. The XML doesn't contain all existing NWG versions, only selected ones. This is a little tedious work to go over all TLVs of each version, so I'll add some newer versions later on. can add a short how-to of adding a new version, for others to use, if needed. svn path=/trunk/; revision=34919
* From Slava via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5335 :Jeff Morriss2010-11-171-0/+1
| | | | | | | | | | | | | | | | This patch adds to Wireshark the ability to dissect Infiniband SDP (Socket Direct Protocol) and CM MADs traffic. It also contains various other bug-fixes and enhancements. SDP traffic can be identified automatically (analyzing SDP CM MADs) or manually. SDP, or Sockets Direct Protocol, is a protocol developed by the Infiniband Trade Association which enables existing socket-based applications to transparently utilize the Infiniband capabilities. This patch is submitted on behalf of Mellanox Technologies Ltd. svn path=/trunk/; revision=34918
* From Gerhard Gappmeier via ↵Jeff Morriss2010-11-161-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5410 : This patch adds support for displaying OPC UA ExtensionObjects. An ExtensionObject is a mechanism to transport user defined structures as serialized blobs. Some types of ExtensionObjects are already defined by the OPC Foundation's OPC UA Specifications. These types can be implemented by this dissector, because they are well-known. Real user-defined or vendor-defined types are unlikely to be implemented by a passive dissector, because this would require browsing of the UA server's address space to retrieve the type information. Currently only the following types are supported: * DataChangeNotification * EventNotification Others OPC defined types will follow. From me: fix warnings: "format not a string literal and no format arguments" svn path=/trunk/; revision=34906
* From Yaniv Kaul via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5400 :Jeff Morriss2010-11-161-0/+1
| | | | | | | | The attached patch adds many more DAAP codes to be parsed properly by the DAAP dissector. In addition, it fixes some prints. svn path=/trunk/; revision=34899
* From Alexis La Goutte via ↵Jeff Morriss2010-10-281-0/+1
| | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5290 : A patch to add support of Mongo Wire Protocol (Used by MongoDB) From me: use ENC_xxx in proto_tree_add_item() calls. svn path=/trunk/; revision=34680
* From Jouni Malinen: preliminary version of Wi-Fi P2P (Wi-Fi Direct) dissector.Bill Meier2010-10-251-0/+2
| | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5196 From me: Add packet-wifi-p2p.h to Makefile.common DISSECTOR_INCLUDES Add dissectors/packet-wifi-p2p.c to epan/CMakelists.txt svn path=/trunk/; revision=34642
* From Thomas Boehne via ↵Jeff Morriss2010-10-251-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5324 : The company I work for uses two proprietary protocols, for which I initially developed wireshark plugins. Now we would like to integrate them into the public wireshark repository. I followed the READMEs and converted the plugins into a static dissectors. I cleaned up the code until checkAPI.pl was silent, translated all terms to english and ran randpkt and fuzz-testing for a long time. All that I found was a bug in a different dissector. From me: - Fold the header files into the dissectors - Clean up some memory leaks - Strengthen the heuristics of adwin-config (the TCP heuristics are still pretty weak) - Make packet-adwin.c a "new style" dissector - Use find_or_create_conversation() - Remove most of the check_col()'s svn path=/trunk/; revision=34640
* From Lori Tribble: Add vendor identifier dissector access to BACnet Private ↵Bill Meier2010-10-221-1/+6
| | | | | | | | | | | | | | | | | | | | | Transfer Msgs BACnet has a private transfer service which is vendor specific. The start of each request and response contains the vendor identifier. I've added a way for vendors to provide their own dissectors by registering their vendor identifier. The packet-bacapp.c method fConfirmedPrivateTransfer has been modified to look for a vendor specified dissector. If found it will be run. If not found we default to running the standard dissection included in packet-bacapp.c. I modified the summary column display for private transfer messages so that the summary now displays the Vendor Identifier (V=xx) and the Service Number (SN=xx). https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5250 From me: Rename sub-dissector tablle to "bacapp.vendor_identifier" Change subdissector ui_name to "BACapp Vendor Identifier" svn path=/trunk/; revision=34625
* From Srinivasa Pradeep: LDP dissector: Add/update PseudoWire TLV suport.Bill Meier2010-10-211-0/+4
| | | | | | | | | | | | | | RFC 4447 describes new TLV called Generalised PWid FEC in LDP messages with the id 0x81. This is related to PsuedoWire setup and maintenance. Related to this, following are the TLVs which are defined in RFC 4447 and RFC 4446. 1. PW Status TLV 2. PW Interface parameters 3. PW Group TLV From me: remove some unused variables; Mark fcn arg as unused. svn path=/trunk/; revision=34606
* From Alexis La Goutte via ↵Jeff Morriss2010-10-211-1/+1
| | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5325 : It is a rework of PAP PPP dissector - Replace proto_tree_add_text by proto_tree_add_item - add col_append_fstr to show information (Peer-ID, Password...) svn path=/trunk/; revision=34604
* From Alexis La Goutte via ↵Jeff Morriss2010-10-201-0/+1
| | | | | | | | | | | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5270 : Add dissector for PAPI (Aruba AP Control Protocol), used by Aruba WLAN Controller). There is no documentation on this protocol, the dissector is based on my analysis ... There is also an experimental "debug dissector" (not enable by default) for dissecting the rest of data. Changes by me: - make it a new-style dissector - change the name of the "debug" preference - other minor changes svn path=/trunk/; revision=34587
* From Colin O'Flynn and Owen Kirby via ↵Jeff Morriss2010-10-201-0/+5
| | | | | | | | | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5266 : The attached patch begins to add support for RPL to the ICMPv6 file. All locations that RPL code have been added are marked with a comment allowing this patch to be reverted at a future time if it is decided to e.g. move all the RPL code to it's own dissector. A few values await IANA assignment and are also clearly marked (in packet-ipv6.h). Only the 'metric' option is left unsupported, as it is primarily defined in another I-D. svn path=/trunk/; revision=34579
* From Hadriel Kaplan: IPFIX file format support.Bill Meier2010-10-201-0/+4
| | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5242 svn path=/trunk/; revision=34576
* From Alexis La Goutte:Anders Broman2010-10-191-1/+1
| | | | | | | | GRE Enhancements https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5314 svn path=/trunk/; revision=34574
* From Holger Grandy: ETCH dissectorBill Meier2010-10-181-0/+4
| | | | | | | | | | | See: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5095 From me: Fix a bug in add_symbol which caused occasional Wireshark crashes; Add additional checking during parse of symbol hash file; Improve "directory not found" error message; Do misc code cleanup and simplification. svn path=/trunk/; revision=34558
* From Shoichi Sakane via bug 5270:Stig Bjørlykke2010-10-171-0/+1
| | | | | | | | | Added COAP protocol support. From me: Made the port number configurable. svn path=/trunk/; revision=34530
* From Alexis La Goutte via ↵Jeff Morriss2010-10-141-0/+1
| | | | | | | | | | | | | | | https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5295 : Hi a patch to enchance the PPTP Dissector It is a rework of PPTP dissector - Replace proto_tree_add_text by proto_tree_add_item - Replace not standard table and function by standard value_string - .... The code is checked and fuzzed (more 200 pass) ! with personnal PPTP Sample and PPTP Sample from pcapr.net svn path=/trunk/; revision=34504
* Add Alexander Koeppe to the list.Anders Broman2010-10-081-0/+4
| | | | svn path=/trunk/; revision=34432
* From Giuliano Fabris: Enhanced DVB Simulcrypt protocol dissector:Bill Meier2010-10-041-1/+9
| | | | | | | | | | "Implemented EIS <-> SCS support, (P)SIG <-> MUX support, MUX <-> CiM support and (P) <-> CiP support." See: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5212 From me: (Trivial) Whitespace/indentation cleanup. svn path=/trunk/; revision=34376
* Updated my entry...Sake Blok2010-09-251-7/+12
| | | | svn path=/trunk/; revision=34249
* Jason Masker <jason at masker.net>:Jörg Mayer2010-09-231-0/+3
| | | | | | Updates for the Cisco ERSPAN type III (version 2) protocol. svn path=/trunk/; revision=34209
* From Lukasz Kotasa and Lukasz Suchy via bug 5248:Stig Bjørlykke2010-09-221-2/+6
| | | | | | | | | Added dissector for WAI authentication protocol. From me: Some cleanup. svn path=/trunk/; revision=34181
* Update Cal Turney's entry for the tshark SCSI tapJeff Morriss2010-09-181-1/+2
| | | | svn path=/trunk/; revision=34153
* From Cal Turney via https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5197 :Jeff Morriss2010-09-171-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | The NFS dissector (all versions) show access types that have not been requested to be checked as "not allowed" in the call and reply. This is incorrect and misleading. At present one must manually compare what was requested in order to assess if access was actually denied for that type. When there are hundreds or thousands of these ACCESS requests in a capture, it is not possible or practical to manually check each one. The submitted patch does the following: * Passes the access mask in the call to the reply for comparison * Adds filterable fields for each supported (v4) and access type * Adds a pseudo field, nfs.access_denied * Lists the access types to be checked in the summary and tree * Separately lists the supported, denied, and allowed access types in the summary and tree The changes are applied to all NFS versions. From me: a couple of small changes to make it compile without warnings. svn path=/trunk/; revision=34141
* From Juha Siltanen :Sake Blok2010-09-151-0/+4
| | | | | | | | | | When sorting a capture by protocol, some RTP packets are shown only as FLIP, even though the dissection windows shows the RTP tree. (https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5215) svn path=/trunk/; revision=34128
* From Frank Lahm via bug #5169: Provide initial support for the undocumentedStephen Fisher2010-09-081-0/+1
| | | | | | | AFP FPSpotlightRPC call. svn path=/trunk/; revision=34083
* Added Owen Kirby as authorStig Bjørlykke2010-08-271-0/+3
| | | | svn path=/trunk/; revision=33965
* From Tom Hughes: FastCGI dissector.Bill Meier2010-08-171-0/+4
| | | | | | | | | | | | See: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5067 From me: - Fix one bug; - Add a comment about some code which doesn't display info in COL_INFO as intended due to what seems to be a Wireshark bug in tcp_dissect_pdus() when there are multiple records in a TCP frame. svn path=/trunk/; revision=33824
* From Herbert Lischka: "corrected the dissection of reassembled UDP packets".Bill Meier2010-08-091-0/+4
| | | | | | | | | | | See: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5051 From me: - Move proto_register... and proto_reg_handoff.. to the end of the file; - Define a function as static; - Minor reformatting and whitespace cleanup. svn path=/trunk/; revision=33747
* From Cal Turney: Need 6 dec places of SRT precision in WS SRT dialogs and ↵Bill Meier2010-08-051-0/+2
| | | | | | | | | | | | | the values should be rounded to the nearest 1us. From me: -Slight revision of the patch to prevent overflows when time_t is 32 bits (eg: on 32 bit Linux); -Other minor changes. See: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4956 svn path=/trunk/; revision=33721
* Updated with some items.Stig Bjørlykke2010-07-151-0/+8
| | | | svn path=/trunk/; revision=33537
* From Petr Lautrbach: when capturing, return the exit status of dumpcap,Guy Harris2010-07-011-0/+1
| | | | | | | | | | so we give a non-zero exit status for invalid interfaces or capture filters. From me: don't exit immediately if dumpcap failed, print out information from taps and the like. svn path=/trunk/; revision=33393
* From Haakon Nessjoen: New dissector for Digiums TDMoE protocolBill Meier2010-06-231-0/+1
| | | | | | | | | | From me: A few minor changes: - col-clear() not req'd; - Use 'gint32 length' rather than 'guint8 length'; - Use ENC_NA instead of FALSE/TRUE in two cases; - Move global tdmoe_handle to be local to proto_reg_handoff... svn path=/trunk/; revision=33307
* From Robin Seggelmann: Improve SCTP chunk statistics.Michael Tüxen2010-06-231-0/+1
| | | | svn path=/trunk/; revision=33297
* FromToshihiro Kataoka:Anders Broman2010-06-231-0/+3
| | | | | | | Dissect 3GPP S1AP UE Capability Info Indication. https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4904 svn path=/trunk/; revision=33294
* Added Håkon Nessjøen.Stig Bjørlykke2010-06-221-0/+4
| | | | svn path=/trunk/; revision=33290
* Changed Jose Pico's email, added David Perez as co-author.Stig Bjørlykke2010-06-151-1/+5
| | | | svn path=/trunk/; revision=33229
* From David Perez & Jose Pico from Taddong S.L. via bug 4451:Stig Bjørlykke2010-06-151-0/+4
| | | | | | | | | | | This functionality keeps track of all SMB objects contained in a capture, and is able to export to a file a full or partial captured file that has been transfered through the SMB protocol. In a partial capture, the holes produced by the non-captured information are filled out with zeros. It includes the needed modifications of the SMB dissector in the way it keeps track of the opened SMB files and also to feed the eo_smb tap listener. svn path=/trunk/; revision=33227
* From Rolf Fiedler: support for writing EyeSDN trace files.Guy Harris2010-06-051-1/+1
| | | | svn path=/trunk/; revision=33107
* From Holger Freyther via bug 4841:Stig Bjørlykke2010-06-041-0/+4
| | | | | | | | | Add a new dissector for the NexusWare C7 MTP over UDP/TCP protocol. One of NexusWare's example applications provide a way to forward MTP Level 3 messages via UDP/TCP. This is a dissector for this protocol (which is lacking an IANA assigned port). svn path=/trunk/; revision=33082
* From Sven Eckelmann via but 2631:Gerald Combs2010-06-021-1/+2
| | | | | | | | | | | | | | | | | | | | | | | The wireless meshing protocol B.A.T.M.A.N. Advanced changed their packet format in such a way that now versions can be identified and so correct dissection of the packets can be supported by wireshark. Since it is a ever moving target it is very possible that the packet format is changing slightly. The dissector was written in such a way that new version can be supported relative easy. I hope that it sufficient for the inclusion in wireshark. I tried to fuzzing it some hours and no error was reported. From me: Initialize our dissector handles. Merge packet-batadv.h into packet-batadv.c. It isn't included anywhere else. Fuzz 500 passes using attached capture files. svn path=/trunk/; revision=33052
* From Jim Young via bug 4331:Gerald Combs2010-06-021-0/+1
| | | | | | | | | | | | | | This patch adds a new '-S' option to editcap that will rewrite timestamps of packets to insure that the new capture file is in strict chronological order. This option's primary use case is to fixup the occasional timestamps that have a negative delta time relative to previous packet. This feature is related to (but does not depend on) capinfos enhancement submitted in bug #4315 which helps identify tracefiles with "out-of-order" packets. svn path=/trunk/; revision=33042
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-26 17:38:40 +0000