summaryrefslogtreecommitdiffstats
path: root/usr.sbin/tcpdump/tcpdump.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Add new DLT_OPENFLOW link-type to allow using tcpdump to debug switch(4),reyk2016-11-161-1/+2
| | | | | | | | eg. tcpdump -y openflow -i switch0 Includes a minor bump for libpcap. Feedback and OK rzalamena@
* assign pointers to NULL rather than 0mmcc2015-12-221-2/+2
|
* Remove remaining instances of the register keyword.mmcc2015-11-161-8/+8
| | | | ok deraadt@
* pcap_stat fields are unsigned, print them as suchjca2015-10-281-3/+3
| | | | Patch from Kevin Reay.
* Remove conditional compilation and #defines around signal handlingguenther2015-10-141-12/+6
| | | | | | | Don't catch signals that were ignored on entry Suppress SIGCHLD if our kid is stopped: we don't care and it's not an error ok millert@
* Change all tame callers to namechange to pledge(2).deraadt2015-10-091-3/+3
|
* tcpdump is two-process privsep.deraadt2015-10-031-1/+3
| | | | | | | | | | | | | | | the packet processor pid is initialized on a socketpair, and then only does byte analysis. it can be protected using a "stdio" tame request. an successfull attack against it will find it cannot open files nor sockets, and faces various other limitations described in the tame(2) manual page. the monitor process can be restricted to "malloc cmsg inet ioctl dns rpath". that sounds like a large subset, but notice it cannot create or write files. maybe this set can be wittled down by hoisting more initialization code upwards? with help from canacar a while back.
* Move the BIOCGSTATS ioctl operation done by the tcpdump processderaadt2015-07-141-2/+2
| | | | | (at ^C time) into a services provided by the privsep monitor. ok canacar
* For ASCII dumps, tighten printable characters. \v and \f aren't.naddy2015-07-121-3/+5
| | | | ok semarie@ sthen@
* Convert many atoi() calls to strtonum(), adding range checks and failurederaadt2015-04-181-7/+10
| | | | | handling along the way. Reviews by Brendan MacDonell, Jeremy Devenport, florian, doug, millert
* opt{ind,err,arg} are already knownderaadt2015-04-151-5/+1
|
* clean up flags++ instances around getopt()deraadt2015-02-091-16/+16
| | | | ok florian
* Prefer setvbuf() to setlinebuf() for portability; ok deraadt@millert2014-11-261-5/+1
|
* remove backwards compat layer for alpha osf1. back then compilers andderaadt2014-06-301-4/+1
| | | | | | the parsers sucked, so byte misalignment repair was requested. These days it means the parsers should improve. ok lteo
* cleanup offset argument in default_print_* functions, pointed out by Mike Smallsthen2012-07-111-9/+8
| | | | ok theo
* support -A to print the ascii text of captured packets. ok deraadt@sthen2012-07-101-3/+29
|
* remove support for the old pflog format, replaced in 2003henning2010-06-261-2/+1
| | | | ok ryan theo & herr reyksminister
* rcsid[] and sccsid[] and copyright[] are essentially unmaintained (andderaadt2009-10-271-9/+1
| | | | | | | unmaintainable). these days, people use source. these id's do not provide any benefit, and do hurt the small install media (the 33,000 line diff is essentially mechanical) ok with the idea millert, ok dms
* increase the default snaplen to 116, allows capture of pflog+ipv6+tcpsthen2009-02-141-3/+7
| | | | without knobs. ok djm, deraadt.
* add filtering on direction; ok mpf@ deraadt@ feedback jmc@djm2008-04-181-8/+18
|
* trash $Header goo which is just annoying; 5595deraadt2007-10-071-2/+2
|
* add -I option for printing the interfaces;markus2007-08-281-5/+11
| | | | ok hshoexer, henning, mcbridge (some time ago)
* No need to #include <netinet/in.h> twice. Noticed by Diego Casati.krw2007-08-131-3/+2
| | | | ok stevesk@
* Move a useless warning to the only case that uses it (-f) from canacar@todd2007-06-011-3/+4
| | | | ok beck@
* printing these version numbers in usage is ugly and uselessderaadt2006-06-161-9/+4
|
* Set signal handlers directly after the fork(2), so that we avoidmoritz2006-04-221-10/+15
| | | | | | | situations, where the privileged child dies before the unprivileged parent has set a signal handler for SIGCHLD. ok deraadt@ canacar@
* Remove remaining stuff from state QUIT, adjust some commentsmoritz2006-04-221-3/+3
| | | | and close a fd leak in read_infile(). ok deraadt@
* Add comments to please lint. No code changes. OK deraadtcloder2006-04-211-2/+4
|
* initialize program_name before we privsep, otherwise the child does notderaadt2006-04-171-14/+8
| | | | know our name
* Simplify error() and warning() a bit. From Alexey Dobriyan.moritz2006-03-131-3/+3
| | | | ok jaredy@ otto@
* Initialize snaplen also when reading a dump file. Fixes problemsotto2006-02-151-8/+7
| | | | | on 64bit archs when processing files with large snaplens, as seen by Alf Schlichting. ok moritz@ canacar@
* use new libpcap-provided datalink_x_to_y functions instead of local copiesdjm2005-11-181-61/+4
| | | | (with different prototypes); ok mpf@
* KNFmpf2005-10-071-3/+3
|
* support decapsulation of 802.11 data framesreyk2005-05-281-3/+6
| | | | ok canacar@
* fix signal race in statistics output. ok cloder@ henning@moritz2005-05-221-6/+32
|
* output final summary to stderr instead of stdout,moritz2005-03-301-5/+5
| | | | | so it won't get mixed when tcpdump -w - is used. ok henning@ deraadt@
* whitespacemoritz2005-03-251-3/+3
|
* add a printer for 802.11 and for additional radiotap headers,reyk2005-03-071-3/+18
| | | | | | use -y IEEE802_11 or IEEE802_11_RADIO if supported by the driver. ok canacar@
* uppercase takes precedence over lower when sorting options;jmc2005-03-061-3/+3
|
* add support for multiple DLTs using the -L and -y options.reyk2005-03-061-27/+145
| | | | ok canacar@
* add -T tcp to enforce interpretation as TCPmarkus2004-09-161-2/+4
|
* - do not use __attribute__((volatile)) as its a synonym for __dead nowadaysavsm2004-06-201-3/+3
| | | | | - bad format string "\%s" -> "%s" in print-ike.c fixes parsing using CIL, discussed with millert@ niklas@
* add DLT_PPP_ETHER support plus some fixes for pppoe_if_print().brad2004-05-211-2/+3
| | | | | | ok canacar@ From: Marc Huber <pppoe at pro-bono-publico dot de>
* Make tcpdump print carp as carp. Printing vrrp can be forced with -T vrrp.mcbride2004-04-281-2/+4
| | | | ok markus@ pb@
* privilege separated tcpdump, joint work with otto@canacar2004-01-281-40/+46
| | | | | tested by avsm@ vincent@ dhartmei@ markus@ hshoexer@ and others go for it deraadt@
* - simplify macrosjmc2003-09-251-4/+4
| | | | | | - sort options - typos and formatting improvements - sync usage() and SYNOPSIS
* print the operating system of TCP SYN packets with the -o optionfrantzen2003-08-211-3/+18
|
* add support for ESP decryption; ok deraadt@; feedback mickey@;markus2003-07-171-6/+13
| | | | many manpage fixes from jmc@
* libpcap and tcpdump now understand the new pflog datalink type.canacar2003-05-141-2/+3
| | | | | | old datalink type is still recognized. ok henning@ dhartmei@ frantzen@
* pfsync support; deraadt@ okmickey2002-11-301-2/+3
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.