summaryrefslogtreecommitdiffstats
path: root/usr.sbin/tcpdump (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Don't support loading appletalk addresses from /etc/appletalk.names.akfaew2017-06-143-44/+4
| | | | OK deraadt@
* Don't describe AppleTalk's output format and bugs.akfaew2017-06-101-144/+2
| | | | | OK claudio@ jmc@ doesn't object
* MIN->MINIMUM, even though smb is currently disabled.deraadt2017-05-302-12/+10
|
* The capability error codes never made it into a standard and now errorakfaew2017-05-301-6/+6
| | | | | | code 7 is for enhanced route refresh. OK claudio@ phessler@
* Enable more error codes for BGP. These were commited some time ago, butakfaew2017-05-301-3/+15
| | | | | | | | never enabled. Also add error codes for FSM. With input from Job Snijders. OK phessler@ (previous version), claudio@, deraadt@
* Reduce differences between the two pfctl_osfp.c files.akfaew2017-05-281-3/+9
| | | | | | Apply three commits from pfctl/pfctl_osfp.c OK bluhm@
* Catch up with pfctl/pfctl_osfp.c, no binary change.akfaew2017-05-281-15/+7
| | | | OK deraadt@
* Sync NO_PID value from kernel header to tcpdump source. It isbluhm2017-05-241-2/+2
| | | | | | #ifdef _KERNEL, so it does not work automatically. This prevents some bogus uid and pid print when dumping from pflog interface. from Matthias Pitzl; OK deraadt@
* Print bgp administrative shutdown messages (draft-ietf-idr-shutdown)benno2017-04-241-3/+43
| | | | | | From Job Snijders <job -AT instituut -DOT- net>, thanks! ok canacar@, deraadt@
* Switch base tools from /dev/bpf0 to /dev/bpf. Now that /dev/bpf has beennatano2017-04-192-5/+5
| | | | | | around for two releases, it should be safe to do so. ok bluhm deraadt sthen tb yasuoka
* Fix etherip version parsing, ok dlg@jca2017-03-081-2/+2
|
* Make tcpdump show HT protection settings consistently. Previously, nothingstsp2017-03-041-9/+20
| | | | | was displayed if HT protection was disabled. Now it displays as "htprot none". ok sthen@
* Print the DNSSEC OKAY flag as "DO", like in upstream tcpdumpjca2017-02-271-2/+2
| | | | ok florian@
* Fix tcpdump(8) display of duration values provided in 802.11 control frames.stsp2017-01-291-3/+3
| | | | | These values are in microseconds, not milliseconds. ok sthen@
* do not need sys/proc.hderaadt2017-01-241-2/+1
|
* Split pledge "ioctl" into "tape" and "bpf", and allow SIOCGIFGROUP onlyderaadt2017-01-231-2/+2
| | | | upon "inet". Adjust the 4 programs that care about this.
* Another ip_ipsp.h missing, found by krw@claudio2017-01-201-1/+2
|
* Remove duplicated lines of code introduced in my previous tcpdump commit.stsp2016-12-181-4/+1
| | | | Noticed by claudio@
* Make tcpdump show "11n" for a channel which is used in 11n mode.stsp2016-12-181-2/+7
| | | | ok mpi@
* Sync extern decl of eproto_db with what's in libpcap.jca2016-12-141-4/+4
| | | | For some reason this crashes on armv7. Issue reported by Lars Nooden.
* teach tcpdump some more things about gre.dlg2016-12-132-30/+75
| | | | | | | | | gre can be encapsulated in ipv6. gre can encapsulate ipv6, mpls, and ethernet. nvgre is based on gre, so if the header could be nvgre print the vsid and flow id as well as the key. ok stsp@
* Fix some spelling errors in the OpenFlow header and update the tcpdump(8)rzalamena2016-12-021-3/+3
| | | | | | ofp_map.c file. ok reyk@
* ether_ntoa -> etheraddr_string, like elsewhere in tcpdumpjca2016-11-282-12/+6
| | | | openflow part tested by rzalamena@, ok deraadt@
* Fix some bad copy paste bits and simplify the ethernet printing function.rzalamena2016-11-251-14/+8
| | | | ok reyk@
* Fix OFP spelling for version bitmap define in ofp header and tcpdump, alsorzalamena2016-11-221-3/+3
| | | | | | change the truncation message in hello with the standard one. ok reyk@
* Extend the DLT_OPENFLOW header to include the switch datapath id.reyk2016-11-201-8/+9
| | | | OK rzalamena@
* Make tcpdump indicate basic rates listed in beacons with an asterisk.stsp2016-11-191-3/+5
| | | | ok tb@
* Add support for printing the missing OpenFlow set-queue action.rzalamena2016-11-181-2/+17
|
* Don't print the field 'actions' on features reply, because in the newrzalamena2016-11-181-3/+3
| | | | OpenFlow 1.3.5 it is a reserved field that is not being used.
* miss_send_len can also be a CONTROLLER_MAXLEN string not just a number.reyk2016-11-181-3/+5
| | | | Requested by rzalamena@
* Updates tcpdump's OpenFlow printer to use the string maps from switchdreyk2016-11-184-88/+586
| | | | | | (manually synced). Also make the output a bit more like other printers. OK rzalamena@
* Add new DLT_OPENFLOW link-type to allow using tcpdump to debug switch(4),reyk2016-11-164-15/+53
| | | | | | | | eg. tcpdump -y openflow -i switch0 Includes a minor bump for libpcap. Feedback and OK rzalamena@
* If a length from an ip packet encapsulated in gre or etherip would causejsg2016-10-301-1/+3
| | | | the position to go past snapend truncate. Found with afl.
* Replace a snapend test in ip_print() with a call to TCHECK2 as therejsg2016-10-301-5/+2
| | | | is already a trunc label with the same printf in the function.
* Return early from atalk_print_llap() if the length is less than thejsg2016-10-281-1/+6
| | | | | size of a header to avoid an integer underflow. Found with afl.
* Don't assume s->ifname is NUL terminated and printable.jsg2016-10-281-3/+9
| | | | | As in pfsync_print_clr() use vis(3) in print_state(). This was also found with afl though with a different input.
* Don't assume clr->ifname is a NUL-terminated printable string.millert2016-10-271-3/+11
| | | | | Use vis(3) to safely print ifname and stop at IFNAMSIZ bytes. Found with afl by jsg@. OK jsg@
* Huawei squatted on BGP Path Attribute 30, and Cisco squatted on 31. So,phessler2016-10-271-3/+4
| | | | | IANA moved the Large Communities attribute to 32, which is a nice pun on the problem it is solving.
* Add missing OpenBSD keyword in the first line.rzalamena2016-10-251-1/+1
|
* Teach tcpdump(8) how to read OpenFlow packets. This initial implementationrzalamena2016-10-224-5/+1179
| | | | | | | | | | | supports the following message types: hello, error, echo request/reply, feature request/reply, set config, packet-in, packet-out, flow removed and flow mod. We currently only support printing this messages for OpenFlow 1.3.5, however it is possible to reuse some functions and get other versions working too. ok deraadt@
* Teach tcpdump to decode bgp path attribute draft-ietf-idr-large-communityphessler2016-10-131-2/+19
| | | | | | Patch from Job Snijders, thanks! OK sthen@
* Make tcpdump show MCS stored in radiotap's rate field.stsp2016-10-081-3/+8
| | | | ok kettenis@
* Make tcpdump print details about association requests in verbose mode.stsp2016-09-021-17/+61
| | | | | Refactor such that we can share some of the code for beacon printing. ok sthen@
* Use long labs(3) for pointer arithmetic.bluhm2016-07-281-2/+2
| | | | Found by David Hill with clang.
* err() instead of errx(); noted by timderaadt2016-07-251-3/+2
|
* Split the root vs not-root cases better with regards to chroot setup.deraadt2016-07-241-9/+12
| | | | ok kettenis benno tedu canacar
* 2004 privsep caused "tcpdump -r" to became a priviledged operation becausederaadt2016-07-211-32/+20
| | | | | | | | | | | we felt chroot-containment was also necessary for off-line analysis. Today use of pledge "stdio" for the packet parser acts as an even better sandbox. We can therefore silently ignore chroot setup failure, and regain tcpdump -r support. Result of a discussion with tedu -- which probably happened because we became aware of the laughable retarded -Z option in upstream tcpdump. ok tedu sthen guenther stsp
* Teach tcpdump to recognize MPLS pseudowire with control words. Addedrzalamena2016-07-113-18/+64
| | | | | | support to print encapsulated ethernet packets as well. "Looks good" deraadt@
* Use /dev/bpf0 instead of /dev/bpf (without loop though), as suggested bynatano2016-05-082-5/+5
| | | | | | sthen@. to make remote upgrades without media less painful. ok tb@
* Print RA Route Information prefix, preference and lifetime.jca2016-05-071-2/+41
| | | | ok mpi@
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.